last executing test programs:

1m46.618545232s ago: executing program 2 (id=622):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0xfffffffffffffe1a, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100)=0x81, 0x4)
sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)

1m45.762727927s ago: executing program 2 (id=641):
syz_mount_image$xfs(&(0x7f0000000400), &(0x7f0000009640)='./file0\x00', 0x1a00c46, &(0x7f0000000480)={[{@lazytime}, {@noikeep}, {@quota}, {@filestreams}, {@bsdgroups}, {@nolazytime}, {@dax_never}, {@pqnoenforce}]}, 0x4, 0x968d, &(0x7f000001c300)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x41009432, &(0x7f0000000240)={0x0, 0x8, 0xfffffffffc000002})

1m44.51951926s ago: executing program 2 (id=651):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x800000)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000440)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@measure}, {@uid_gt}, {@appraise_type}]}, 0xfd, 0x588, &(0x7f0000000680)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000100)='./file2\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000002380)={{}, {}, [], {}, [], {0x10, 0x1}}, 0x24, 0x2)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000005140)='./file0\x00', 0x0, &(0x7f0000005180), 0x1, 0x50ed, &(0x7f00000051c0)="$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")
lsetxattr$security_ima(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f00000004c0)=@v2={0x5, 0x0, 0x1, 0x207}, 0x9, 0x1)
connect$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140), 0x102, 0x0)
ioctl$sock_SIOCINQ(r2, 0x541b, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

1m43.814854243s ago: executing program 2 (id=660):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
getdents(r0, 0x0, 0x0)

1m43.340903066s ago: executing program 2 (id=665):
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0xe, 0x9, 0x1, "6022f57f75157653c3099800f2001000", 0x39565559})

1m43.057757895s ago: executing program 2 (id=667):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
utimensat(0xffffffffffffff9c, &(0x7f0000002240)='.\x00', 0x0, 0x0)

1m42.889309598s ago: executing program 32 (id=667):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
utimensat(0xffffffffffffff9c, &(0x7f0000002240)='.\x00', 0x0, 0x0)

1m14.607760811s ago: executing program 0 (id=884):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_GET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)={0x2c, r1, 0x1, 0x70bd28, 0x25dfdbff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x10)

1m14.468423914s ago: executing program 0 (id=886):
r0 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000600)={0x0, 0x0, r1, r2, 0x3, 0x6, 0x7, 0x5b, {0xabac, 0x0, 0x2, 0x6, 0xffff, 0x8, 0x5, 0x8, 0xf, 0x4, 0x8000, 0x5, 0xfffffffc, 0x1, "3c07653f7bc421b2e2bd166b8459a3fcded06e494223aa5db3e5e050b399d71c"}})

1m14.380095205s ago: executing program 0 (id=888):
r0 = openat$binfmt_register(0xffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000100)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x80000001, 0x3a, '&\'$^-', 0x3a, '', 0x3a, './file0', 0x3a, [0x59]}, 0x2d)

1m14.280374618s ago: executing program 0 (id=889):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000140), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./bus\x00', 0x10040d0, 0x0, 0x20, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
getxattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=@known='system.posix_acl_default\x00', 0x0, 0x0)

1m13.960890035s ago: executing program 0 (id=892):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000a00)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x48814}, 0x14000012)
r2 = syz_io_uring_setup(0x9f, &(0x7f0000000440)={0x0, 0xc394, 0x0, 0x0, 0x207}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000080)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x14, 0x3, 0x1, 0x201, 0x0, 0x0, {0x1, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x2000051)

1m13.081133643s ago: executing program 0 (id=895):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680))
r1 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0, 0xffff1000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0})
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

1m12.936597703s ago: executing program 33 (id=895):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680))
r1 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0, 0xffff1000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0})
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

4.342057639s ago: executing program 4 (id=1531):
creat(0x0, 0x24)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000ac0), 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000480)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='quot'])
r4 = syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
ioctl$MEDIA_IOC_G_TOPOLOGY(r4, 0xc0487c04, &(0x7f0000002f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000002d80)=[{}, {}, {}], 0x0, 0x0, 0x0})
quotactl_fd$Q_GETQUOTA(0xffffffffffffffff, 0xffffffff80000701, 0xffffffffffffffff, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000200), 0xaad82, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB='\r\x00'])
syz_emit_ethernet(0x82, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x0)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="61636c2c6461782c06824bd88c6a040178494503000000000000006368655f61746567013d64697361620965642c6e6f757365000000"], 0x3, 0x1b1, &(0x7f00000000c0)="$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")

3.254436253s ago: executing program 4 (id=1533):
syz_mount_image$exfat(&(0x7f0000000140), &(0x7f0000000240)='./file2\x00', 0x22200c8c, &(0x7f0000000000)=ANY=[], 0x1, 0x1526, &(0x7f000000a000)="$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")
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000100), 0x1, 0x599, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0)
creat(0x0, 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)

2.8703042s ago: executing program 4 (id=1534):
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000001c0), 0x35c, 0x0)

2.767869059s ago: executing program 4 (id=1536):
sched_setscheduler(0x0, 0x2, 0x0)
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000280)='./bus\x00', 0x2000898, &(0x7f0000000180)={[{@barrier}, {@autodefrag}, {@ref_verify}, {@enospc_debug}, {@noflushoncommit}, {@usebackuproot}, {@max_inline={'max_inline', 0x3d, [0x37, 0x37, 0x6b, 0x37]}}, {@thread_pool={'thread_pool', 0x3d, 0x6}}, {@ssd_spread}]}, 0x1, 0x55ae, &(0x7f0000005600)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

1.224519892s ago: executing program 4 (id=1539):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x3, [@func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{0x1, 0x2}, {}, {0x0, 0x2}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x5}}]}, {0x0, [0x2e]}}, &(0x7f0000000000)=""/9, 0x57, 0x9, 0x1}, 0x20)

875.150406ms ago: executing program 4 (id=1540):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r4)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000), 0x4)
memfd_secret(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f00000025c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xf5ff, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001400000000114000000020a090100000000000000000000000014000000110001"], 0xd4}}, 0x0)

735.91176ms ago: executing program 3 (id=1542):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x60, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x4}]}]}, 0x60}}, 0x0)

735.733747ms ago: executing program 1 (id=1543):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e24, @broadcast}, 0x10)
sendmmsg(r0, &(0x7f00000007c0)=[{{&(0x7f0000000380)=@in={0x2, 0x4e24, @local}, 0x80, 0x0}}], 0x1, 0x2c000011)
sendmmsg$inet(r0, &(0x7f0000005f80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="91b0cddc18a0dae60c6346b4b6d95b0c859e0c9fc93857823368b94291ba0e80f64bc5e29ac54c68711934e943a1ae20d00600f0853df0e36611d9e8", 0x3c}, {0x0}], 0x2}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000500)="82c31d598c2ecc4cbd899632cccb7cee06839ec588c594ab09bd339c2bb30bddae03dbe47f92b7e840bc8ebea9da6cf9d3b8238aeb24", 0x36}, {0x0}], 0x2, &(0x7f0000000600)=[@ip_ttl={{0x14, 0x0, 0x2, 0x4}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}], 0x30}}, {{0x0, 0x0, &(0x7f0000000740), 0x29, &(0x7f00000038c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010101, @private=0xa050101}}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000039c0)="6a7c35052ec149c759c9589efcf79f38ed8fd30efd744948ddfaf55e", 0x1c}, {0x0}, {}, {&(0x7f0000004c80), 0xffffff14}], 0x4}}], 0x4, 0x445)

315.575409ms ago: executing program 3 (id=1544):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000001080)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$bt_hci(r0, 0x84, 0x6d, &(0x7f0000000000)=""/4102, &(0x7f0000001040)=0x1006)

234.187079ms ago: executing program 1 (id=1545):
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x4)

234.056827ms ago: executing program 3 (id=1546):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000001940), 0x400, 0x0)
pidfd_send_signal(r0, 0x25, &(0x7f0000001980)={0x11, 0x7, 0x7}, 0x0)

233.838837ms ago: executing program 1 (id=1547):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = syz_open_dev$video(&(0x7f0000000000), 0x3, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r2, 0x4020565a, &(0x7f0000000040)={0x3, 0x980001, 0x3})
close_range(r1, 0xffffffffffffffff, 0x0)

184.306649ms ago: executing program 3 (id=1548):
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xd, 0x2, 0x4, 0x4002, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000}, 0x50)

184.102172ms ago: executing program 1 (id=1549):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newlink={0x48, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x0, 0x8d5558dc7bf693d6}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @erspan={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @multicast2}]}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x48}, 0x1, 0x0, 0x0, 0x20008040}, 0x0)

124.595205ms ago: executing program 3 (id=1550):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0xffa1, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="440000001000ffff27bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="fda65f0500000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x44}, 0x1, 0x0, 0x0, 0x308}, 0x0)

124.395019ms ago: executing program 1 (id=1551):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x3, 0x4)

65.309882ms ago: executing program 1 (id=1552):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22}, 0x21)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0xae6, 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000500)=@gcm_256={{0x304}, "1f891d5b00", "11682d84dd05bb63ae661f051e1e79ceafeaa60a5bd1dc83db142ade2bd907fd", "dd6ed25e", "0000000400"}, 0x38)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000900)={0x7, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)

0s ago: executing program 3 (id=1553):
r0 = timerfd_create(0x0, 0x800)
timerfd_settime(r0, 0x3, &(0x7f000000b000)={{}, {0x0, 0x989680}}, 0x0)
clock_settime(0x0, &(0x7f0000000040)={0x77359400})
readv(r0, &(0x7f0000003200)=[{&(0x7f0000001180)=""/4096, 0x1000}], 0x1)

kernel console output (not intermixed with test programs):

fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.372525][    T9] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  152.543838][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  152.548282][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  152.558470][    T9] usb 4-1: New USB device found, idVendor=0853, idProduct=0148, bcdDevice= 0.00
[  152.562076][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.569030][    T9] usb 4-1: config 0 descriptor??
[  152.990631][    T9] topre 0003:0853:0148.000B: unknown main item tag 0x0
[  152.996589][    T9] topre 0003:0853:0148.000B: unknown main item tag 0x0
[  153.010814][    T9] topre 0003:0853:0148.000B: hidraw0: USB HID v0.00 Device [HID 0853:0148] on usb-dummy_hcd.3-1/input0
[  153.130988][ T8288] loop1: detected capacity change from 0 to 4096
[  153.171504][ T8288] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.198989][    T9] usb 4-1: USB disconnect, device number 3
[  153.281238][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.497688][ T8305] loop1: detected capacity change from 0 to 1764
[  154.236298][ T8333] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  154.279362][ T5916] usb 4-1: new low-speed USB device number 4 using dummy_hcd
[  154.464667][ T5916] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  154.467922][ T5916] usb 4-1: config 0 has no interface number 0
[  154.470234][ T5916] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  154.493706][ T5916] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  154.497431][ T5916] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  154.515075][ T5916] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.520157][ T5916] usb 4-1: config 0 descriptor??
[  154.558657][ T5916] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  154.599918][ T8350] netlink: 'syz.1.805': attribute type 10 has an invalid length.
[  154.608229][ T8350] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.611928][ T8350] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.616978][ T8350] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.619614][ T8350] bridge0: port 2(bridge_slave_1) entered forwarding state
[  154.623871][ T8350] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.626188][ T8350] bridge0: port 1(bridge_slave_0) entered forwarding state
[  154.638113][ T8350] team0: Port device bridge0 added
[  154.735295][ T8359] loop1: detected capacity change from 0 to 256
[  154.752016][ T8359] exFAT-fs (loop1): bogus data start sector
[  154.754438][ T8359] exFAT-fs (loop1): failed to read boot sector
[  154.759248][ T8323] iowarrior 4-1:0.1: Error -90 while submitting URB
[  154.767268][ T8359] exFAT-fs (loop1): failed to recognize exfat type
[  154.773548][  T971] usb 4-1: USB disconnect, device number 4
[  155.649983][ T8396] sctp: [Deprecated]: syz.0.813 (pid 8396) Use of int in max_burst socket option deprecated.
[  155.649983][ T8396] Use struct sctp_assoc_value instead
[  156.114866][ T8410] netlink: 96 bytes leftover after parsing attributes in process `syz.0.820'.
[  156.574991][ T5916] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  156.763086][ T5916] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 64
[  156.767188][ T5916] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0x3 has invalid maxpacket 32
[  156.771160][ T5916] usb 1-1: config 1 interface 0 has no altsetting 0
[  156.785928][ T5916] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  156.789262][ T5916] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.794815][ T5916] usb 1-1: Product: syz
[  156.796287][ T5916] usb 1-1: Manufacturer: syz
[  156.798056][ T5916] usb 1-1: SerialNumber: syz
[  156.811214][ T8415] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  156.815022][ T8415] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  156.843998][   T24] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  157.005435][   T24] usb 4-1: New USB device found, idVendor=0fc5, idProduct=1227, bcdDevice=da.8e
[  157.008520][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.011460][   T24] usb 4-1: Product: syz
[  157.012898][   T24] usb 4-1: Manufacturer: syz
[  157.014346][   T24] usb 4-1: SerialNumber: syz
[  157.017594][   T24] usb 4-1: config 0 descriptor??
[  157.026232][   T24] hub 4-1:0.0: bad descriptor, ignoring hub
[  157.028448][   T24] hub 4-1:0.0: probe with driver hub failed with error -5
[  157.031563][ T5916] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -71
[  157.042799][   T24] usbsevseg 4-1:0.0: USB 7 Segment device now attached
[  157.043066][ T5916] usb 1-1: USB disconnect, device number 14
[  157.063854][ T8421] (unnamed net_device) (uninitialized): option lacp_rate: invalid value (144)
[  157.118732][ T8423] loop1: detected capacity change from 0 to 1024
[  157.124110][ T8423] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  157.144634][ T8423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.169291][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.208471][ T8428] netlink: 5 bytes leftover after parsing attributes in process `syz.1.826'.
[  157.341966][ T2313] usb 4-1: USB disconnect, device number 5
[  157.345002][ T2313] usbsevseg 4-1:0.0: USB 7 Segment now disconnected
[  158.071837][   T24] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  158.269842][   T24] usb 1-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  158.278369][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.293923][   T24] usb 1-1: Product: syz
[  158.298644][   T24] usb 1-1: Manufacturer: syz
[  158.304828][   T24] usb 1-1: SerialNumber: syz
[  158.334251][   T24] usb 1-1: config 0 descriptor??
[  158.551888][   T24] hso 1-1:0.0: Failed to find BULK IN ep
[  158.563744][   T24] usb-storage 1-1:0.0: USB Mass Storage device detected
[  158.591833][ T2313] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  158.746130][ T2313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.750611][ T2313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.757128][ T2313] usb 2-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  158.760731][ T2313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.765651][   T24] usb 1-1: USB disconnect, device number 15
[  158.903843][ T2313] usb 2-1: config 0 descriptor??
[  159.367367][ T8444] kexec: Could not allocate swap buffer
[  159.620057][ T8457] tipc: Started in network mode
[  159.623297][ T8457] tipc: Node identity ac14140f, cluster identity 4711
[  159.625831][ T8457] tipc: New replicast peer: 255.255.255.255
[  159.628037][ T8457] tipc: Enabled bearer <udp:s>, priority 10
[  159.796494][ T2313] hid-led 0003:27B8:01ED.000C: hidraw0: USB HID v0.00 Device [HID 27b8:01ed] on usb-dummy_hcd.1-1/input0
[  159.830819][ T2313] hid-led 0003:27B8:01ED.000C: ThingM blink(1) initialized
[  159.998920][ T2313] usb 2-1: USB disconnect, device number 22
[  160.095158][ T8469] loop3: detected capacity change from 0 to 32768
[  160.115229][ T8469] XFS (loop3): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  160.144137][ T8469] XFS (loop3): Ending clean mount
[  160.155513][ T8469] XFS (loop3): User initiated shutdown received.
[  160.160629][ T8469] XFS (loop3): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:476).  Shutting down filesystem.
[  160.165089][ T8469] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[  160.208117][ T5851] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  160.211056][ T5851] CPU: 0 UID: 0 PID: 5851 Comm: kworker/u11:2 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  160.211089][ T5851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  160.211095][ T5851] Workqueue: hci1 hci_rx_work
[  160.211110][ T5851] Call Trace:
[  160.211115][ T5851]  <TASK>
[  160.211120][ T5851]  dump_stack_lvl+0x189/0x250
[  160.211134][ T5851]  ? __pfx_dump_stack_lvl+0x10/0x10
[  160.211144][ T5851]  ? __pfx__printk+0x10/0x10
[  160.211158][ T5851]  ? kernfs_path_from_node+0x250/0x290
[  160.211168][ T5851]  ? kernfs_path_from_node+0x2f/0x290
[  160.211179][ T5851]  sysfs_create_dir_ns+0x259/0x280
[  160.211189][ T5851]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  160.211198][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  160.211211][ T5851]  kobject_add_internal+0x59f/0xb40
[  160.211228][ T5851]  kobject_add+0x155/0x220
[  160.211242][ T5851]  ? __pfx_kobject_add+0x10/0x10
[  160.211254][ T5851]  ? _raw_spin_unlock+0x28/0x50
[  160.211267][ T5851]  ? get_device_parent+0x366/0x3a0
[  160.211278][ T5851]  device_add+0x408/0xb50
[  160.211288][ T5851]  hci_conn_add_sysfs+0xd5/0x1e0
[  160.211298][ T5851]  le_conn_complete_evt+0xc3a/0x1220
[  160.211315][ T5851]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  160.211326][ T5851]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  160.211341][ T5851]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  160.211351][ T5851]  ? skb_pull_data+0xfb/0x200
[  160.211362][ T5851]  hci_le_enh_conn_complete_evt+0x189/0x470
[  160.211378][ T5851]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  160.211391][ T5851]  hci_event_packet+0x78f/0x1200
[  160.211402][ T5851]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  160.211414][ T5851]  ? __pfx_hci_event_packet+0x10/0x10
[  160.211424][ T5851]  ? kcov_remote_start+0x4d3/0x7f0
[  160.211435][ T5851]  ? lockdep_hardirqs_on+0x90/0x150
[  160.211448][ T5851]  ? hci_send_to_monitor+0xe2/0x570
[  160.211460][ T5851]  hci_rx_work+0x46a/0xe80
[  160.211473][ T5851]  ? process_scheduled_works+0x9ef/0x17b0
[  160.211482][ T5851]  process_scheduled_works+0xae1/0x17b0
[  160.211504][ T5851]  ? __pfx_process_scheduled_works+0x10/0x10
[  160.211519][ T5851]  worker_thread+0x8a0/0xda0
[  160.211529][ T5851]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  160.211550][ T5851]  ? __kthread_parkme+0x7b/0x200
[  160.211564][ T5851]  kthread+0x711/0x8a0
[  160.211592][ T5851]  ? __pfx_worker_thread+0x10/0x10
[  160.211602][ T5851]  ? __pfx_kthread+0x10/0x10
[  160.211612][ T5851]  ? _raw_spin_unlock_irq+0x23/0x50
[  160.211623][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  160.211633][ T5851]  ? __pfx_kthread+0x10/0x10
[  160.211644][ T5851]  ret_from_fork+0x3fc/0x770
[  160.211655][ T5851]  ? __pfx_ret_from_fork+0x10/0x10
[  160.211666][ T5851]  ? __switch_to_asm+0x39/0x70
[  160.211676][ T5851]  ? __switch_to_asm+0x33/0x70
[  160.211685][ T5851]  ? __pfx_kthread+0x10/0x10
[  160.211695][ T5851]  ret_from_fork_asm+0x1a/0x30
[  160.211713][ T5851]  </TASK>
[  160.310527][ T7804] XFS (loop3): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  160.316098][ T5851] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  160.331310][ T5851] Bluetooth: hci1: failed to register connection device
[  160.538047][ T8501] loop3: detected capacity change from 0 to 2048
[  160.556177][ T8501] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  160.617854][ T8503] ALSA: mixer_oss: invalid OSS volume ''
[  160.745148][   T24] tipc: Node number set to 2886997007
[  160.926551][ T8519] loop1: detected capacity change from 0 to 512
[  160.947179][ T8519] EXT4-fs: Ignoring removed nobh option
[  160.968177][ T8519] fscrypt (loop1, inode 2): Error -61 getting encryption context
[  160.970864][ T8519] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -61
[  160.982101][ T8519] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #13: comm syz.1.860: casefold flag without casefold feature
[  160.997034][ T8519] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.860: couldn't read orphan inode 13 (err -117)
[  161.013927][ T8519] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.055262][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.155968][ T8527] netlink: 'syz.1.862': attribute type 16 has an invalid length.
[  161.159076][ T8527] netlink: 'syz.1.862': attribute type 3 has an invalid length.
[  161.165349][ T8527] netlink: 132 bytes leftover after parsing attributes in process `syz.1.862'.
[  161.214444][ T8531] loop0: detected capacity change from 0 to 22
[  161.225823][ T8531] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  161.248814][ T8531] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  161.272258][ T8531] MTD: Attempt to mount non-MTD device "./file0"
[  161.343822][ T8522] loop3: detected capacity change from 0 to 32768
[  161.350479][ T8531] ./file0: Can't open blockdev
[  161.357165][ T8522] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.861 (8522)
[  161.418652][ T8522] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  161.424138][ T8522] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  161.427556][ T8522] BTRFS info (device loop3): using free-space-tree
[  161.483629][ T8522] BTRFS info (device loop3): rebuilding free space tree
[  161.495368][ T8522] BTRFS info (device loop3): checking UUID tree
[  161.529904][   T33] audit: type=1800 audit(1755524455.233:28): pid=8522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.861" name="file1" dev="loop3" ino=260 res=0 errno=0
[  161.574748][   T33] audit: type=1800 audit(1755524455.283:29): pid=8522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.861" name="file1" dev="loop3" ino=260 res=0 errno=0
[  161.638828][ T7804] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  161.641990][ T2313] usb 2-1: new full-speed USB device number 23 using dummy_hcd
[  161.813535][ T2313] usb 2-1: config 8 has an invalid interface number: 223 but max is 0
[  161.816847][ T2313] usb 2-1: config 8 contains an unexpected descriptor of type 0x1, skipping
[  161.820280][ T2313] usb 2-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  161.826781][ T2313] usb 2-1: config 8 has no interface number 0
[  161.829292][ T2313] usb 2-1: config 8 interface 223 altsetting 0 endpoint 0x7 has invalid maxpacket 15872, setting to 64
[  161.841698][   T24] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  161.851940][ T2313] usb 2-1: config 8 interface 223 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  161.878573][ T2313] usb 2-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d
[  161.882380][ T2313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.885701][ T2313] usb 2-1: Product: syz
[  161.887307][ T2313] usb 2-1: Manufacturer: syz
[  161.889247][ T2313] usb 2-1: SerialNumber: syz
[  161.994551][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  161.998615][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  162.004503][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  162.010356][   T24] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  162.016287][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.025053][   T24] usb 1-1: config 0 descriptor??
[  162.111357][ T2313] usb 2-1: USB disconnect, device number 23
[  162.439051][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.442132][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.445133][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.448074][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.451113][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.455247][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.458238][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.461120][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.464195][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.467033][   T24] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  162.477209][   T24] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  162.649008][ T8573] loop1: detected capacity change from 0 to 512
[  162.968877][ T8587] ip6tnl1: entered promiscuous mode
[  163.006847][ T8581] loop3: detected capacity change from 0 to 32768
[  163.010133][ T8581] btrfs: Deprecated parameter 'usebackuproot'
[  163.012250][ T8581] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  163.015668][ T8581] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.878 (8581)
[  163.030846][ T8581] BTRFS info (device loop3 state S): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  163.035557][ T8581] BTRFS info (device loop3 state S): using blake2b (blake2b-256-generic) checksum algorithm
[  163.042110][ T8581] BTRFS info (device loop3 state S): disk space caching is enabled
[  163.051937][ T8581] BTRFS warning (device loop3 state S): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  163.057655][ T8581] workqueue: max_active 2097158 requested for btrfs-worker is out of range, clamping between 1 and 2048
[  163.088160][ T8581] workqueue: max_active 2097158 requested for btrfs-delalloc is out of range, clamping between 1 and 2048
[  163.115075][ T8581] workqueue: max_active 2097158 requested for btrfs-endio is out of range, clamping between 1 and 2048
[  163.132174][ T8581] workqueue: max_active 2097158 requested for btrfs-endio-meta is out of range, clamping between 1 and 2048
[  163.139281][ T8581] workqueue: max_active 2097158 requested for btrfs-rmw is out of range, clamping between 1 and 2048
[  163.147296][ T8581] workqueue: max_active 2097158 requested for btrfs-endio-write is out of range, clamping between 1 and 2048
[  163.154618][ T8581] workqueue: max_active 2097158 requested for btrfs-compressed-write is out of range, clamping between 1 and 2048
[  163.166272][   T27] BTRFS warning (device loop3 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0xb929531db417ae5491593d99afe1510df15bdaa63fb6603d26a93ec9245f098d found 0xf965c027f6d77b9b4c342b08291e847dd441e9aad90b1a136fd7cdfc868701cd level 0, ignored
[  163.189208][ T1089] BTRFS warning (device loop3 state S): checksum verify failed on logical 5337088 mirror 1 wanted 0x324c5e2d0cac2dc8f61cbfdfc8cd69d9816061b1498b9e1bff7d10a59610160b found 0x70d0bf4416057dec1c405852a49d2c6d902d8b71010d18d8d723d3736d6a6d44 level 0, ignored
[  163.206530][ T1094] BTRFS warning (device loop3 state CS): checksum verify failed on logical 5287936 mirror 1 wanted 0x31987782e3a542b4b1826f4a60605b79838e23bf27075900db4b92202c72b2fd found 0x40de0d5385bab233876729785d53dcfc8423daa8a61a4fd383291ab23ffba869 level 0, ignored
[  163.225785][ T2313] usb 1-1: USB disconnect, device number 16
[  163.301160][ T7804] BTRFS info (device loop3 state CS): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  163.462646][ T5916] usb 2-1: new low-speed USB device number 24 using dummy_hcd
[  163.513431][ T8618] netlink: 20 bytes leftover after parsing attributes in process `syz.3.887'.
[  163.624094][ T5916] usb 2-1: unable to get BOS descriptor or descriptor too short
[  163.637584][ T5916] usb 2-1: config 1 interface 0 altsetting 12 endpoint 0x81 has invalid maxpacket 512, setting to 8
[  163.645846][ T5916] usb 2-1: config 1 interface 0 has no altsetting 0
[  163.652261][ T5916] usb 2-1: string descriptor 0 read error: -22
[  163.655865][ T5916] usb 2-1: New USB device found, idVendor=05ac, idProduct=0241, bcdDevice= 0.40
[  163.659425][ T5916] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.676566][ T8607] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  163.686157][ T5916] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input16
[  163.751417][ T8623] loop0: detected capacity change from 0 to 4096
[  163.793093][ T8623] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.863780][ T8623] overlayfs: failed to create directory ./file0/work (errno: 117); mounting read-only
[  163.940233][ T5852] EXT4-fs error (device loop0): ext4_readdir:264: inode #12: block 80: comm syz-executor: path /348/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  163.964991][ T5852] EXT4-fs error (device loop0): ext4_empty_dir:3100: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  163.981026][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  163.986380][ T5852] EXT4-fs error (device loop0): ext4_readdir:264: inode #12: block 80: comm syz-executor: path /348/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  164.006431][ T5852] EXT4-fs error (device loop0): ext4_empty_dir:3100: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  164.015344][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.020494][ T5852] EXT4-fs error (device loop0): ext4_readdir:264: inode #12: block 80: comm syz-executor: path /348/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  164.033105][ T5852] EXT4-fs error (device loop0): ext4_empty_dir:3100: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  164.049250][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.055248][ T5852] EXT4-fs error (device loop0): ext4_readdir:264: inode #12: block 80: comm syz-executor: path /348/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  164.074403][ T5852] EXT4-fs error (device loop0): ext4_empty_dir:3100: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  164.082805][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.087737][ T5852] EXT4-fs error (device loop0): ext4_readdir:264: inode #12: block 80: comm syz-executor: path /348/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  164.097127][ T5852] EXT4-fs error (device loop0): ext4_empty_dir:3100: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  164.108576][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.115497][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.131026][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.147612][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.154114][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.160366][ T5852] EXT4-fs warning (device loop0): ext4_empty_dir:3103: inode #12: comm syz-executor: directory missing '..'
[  164.375118][ T5281] bcm5974 2-1:1.0: could not read from device
[  164.378715][    T9] usb 2-1: USB disconnect, device number 24
[  164.392063][ T6017] bcm5974 2-1:1.0: could not read from device
[  164.720844][ T5852] bond0: (slave syz_tun): Releasing backup interface
[  164.770089][ T5852] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.826196][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.063516][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.228802][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.408157][ T5851] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  165.411202][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.412605][ T5851] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  165.418970][ T5851] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  165.423616][ T5851] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  165.427662][ T8657] warning: `syz.1.906' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  165.428588][ T5851] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  165.791865][   T13] bridge_slave_1: left allmulticast mode
[  165.794033][   T13] bridge_slave_1: left promiscuous mode
[  165.796260][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.834244][   T13] bridge_slave_0: left allmulticast mode
[  165.836669][   T13] bridge_slave_0: left promiscuous mode
[  165.839998][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.840470][ T8674] netlink: 'syz.3.912': attribute type 1 has an invalid length.
[  165.955485][ T8678] loop1: detected capacity change from 0 to 512
[  165.964736][ T8678] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  165.976372][ T8678] netlink: 260 bytes leftover after parsing attributes in process `syz.1.914'.
[  166.765641][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  166.773267][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  166.778156][   T13] bond0 (unregistering): Released all slaves
[  166.797986][ T8686] netlink: 172 bytes leftover after parsing attributes in process `syz.1.917'.
[  166.866864][   T13] : left promiscuous mode
[  166.997639][ T8655] chnl_net:caif_netlink_parms(): no params data found
[  167.059515][   T13] tipc: Disabling bearer <udp:s>
[  167.074155][   T13] tipc: Left network mode
[  167.132278][ T2313] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  167.268593][ T8655] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.273106][ T8655] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.275979][ T8655] bridge_slave_0: entered allmulticast mode
[  167.279804][ T8655] bridge_slave_0: entered promiscuous mode
[  167.311396][ T8655] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.314514][ T2313] usb 4-1: Using ep0 maxpacket: 16
[  167.316720][ T8655] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.320223][ T8655] bridge_slave_1: entered allmulticast mode
[  167.326009][ T2313] usb 4-1: config 0 interface 0 altsetting 13 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  167.328960][ T8655] bridge_slave_1: entered promiscuous mode
[  167.330481][ T2313] usb 4-1: config 0 interface 0 has no altsetting 0
[  167.330515][ T2313] usb 4-1: New USB device found, idVendor=1b1c, idProduct=1b34, bcdDevice= 0.00
[  167.341301][ T2313] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.350710][ T2313] usb 4-1: config 0 descriptor??
[  167.398007][ T8655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  167.415083][   T13] hsr_slave_0: left promiscuous mode
[  167.418437][   T13] hsr_slave_1: left promiscuous mode
[  167.421714][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  167.424895][   T13] batadv0: mtu less than device minimum
[  167.430311][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.435809][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.441059][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.446589][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.451963][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.457350][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.462737][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.468016][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.473360][   T13] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  167.492548][   T55] Bluetooth: hci1: command tx timeout
[  167.497539][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  167.503177][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  167.529844][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  167.535574][   T13] batman_adv: batadv0: Interface deactivated: dummy0
[  167.538277][   T13] batman_adv: batadv0: Removing interface: dummy0
[  167.564354][   T13] veth1_macvtap: left promiscuous mode
[  167.566751][   T13] veth0_macvtap: left promiscuous mode
[  167.569174][   T13] veth1_vlan: left promiscuous mode
[  167.571501][   T13] veth0_vlan: left promiscuous mode
[  167.794303][ T2313] corsair 0003:1B1C:1B34.000E: hidraw0: USB HID v0.05 Device [HID 1b1c:1b34] on usb-dummy_hcd.3-1/input0
[  167.989172][   T24] usb 4-1: USB disconnect, device number 6
[  168.077947][   T13] team0 (unregistering): Port device team_slave_1 removed
[  168.123845][   T13] team0 (unregistering): Port device team_slave_0 removed
[  168.877923][ T8717] loop3: detected capacity change from 0 to 32768
[  168.900185][ T8655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.975975][ T8717] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=12,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,degraded=yes,nojournal_transaction_names
[  168.975992][ T8717]   allowing incompatible features above 0.0: (unknown version)
[  168.975997][ T8717]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  168.995141][ T8655] team0: Port device team_slave_0 added
[  168.996612][ T8655] team0: Port device team_slave_1 added
[  169.059159][ T8717] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  169.062675][ T8717] bcachefs (loop3): initializing new filesystem
[  169.077308][ T8655] batman_adv: batadv0: Adding interface: batadv_slave_0
[  169.079911][ T8655] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.101997][ T8717] bcachefs (loop3): going read-write
[  169.123784][ T8655] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  169.132985][ T8655] batman_adv: batadv0: Adding interface: batadv_slave_1
[  169.139191][ T8717] bcachefs (loop3): marking superblocks
[  169.160211][ T8655] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.174079][ T8655] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  169.235682][ T8717] bcachefs (loop3): initializing freespace
[  169.248194][ T8717] bcachefs (loop3): done initializing freespace
[  169.248299][ T8721] loop1: detected capacity change from 0 to 40427
[  169.263777][ T8717] bcachefs (loop3): reading snapshots table
[  169.265710][ T8717] bcachefs (loop3): reading snapshots done
[  169.292298][ T8721] F2FS-fs (loop1): build fault injection rate: 14
[  169.298498][ T8655] hsr_slave_0: entered promiscuous mode
[  169.300672][ T8721] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[  169.307306][ T8655] hsr_slave_1: entered promiscuous mode
[  169.309869][ T8655] debugfs: 'hsr0' already exists in 'hsr'
[  169.315770][ T8717] bcachefs (loop3): done starting filesystem
[  169.321238][ T8721] F2FS-fs (loop1): invalid crc value
[  169.337795][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  169.349414][ T8655] Cannot create hsr debugfs directory
[  169.358484][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  169.401361][ T7804] bcachefs (loop3): shutting down
[  169.406534][ T7804] bcachefs (loop3): going read-only
[  169.411314][ T7804] bcachefs (loop3): finished waiting for writes to stop
[  169.428481][ T8721] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  169.431324][ T8721] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[  169.438871][ T7804] bcachefs (loop3): flushing journal and stopping allocators, journal seq 2
[  169.450231][ T8721] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  169.489150][ T8721] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  169.489194][ T7804] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 3
[  169.498448][ T7804] bcachefs (loop3): clean shutdown complete, journal seq 4
[  169.502670][ T7804] bcachefs (loop3): marking filesystem clean
[  169.516158][ T8721] F2FS-fs (loop1): inject dquot initialize in f2fs_dquot_initialize of f2fs_new_inode+0x509/0x1050
[  169.523756][ T8721] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  169.533627][ T8721] F2FS-fs (loop1): inject inconsistent footer in sanity_check_node_footer of f2fs_get_dnode_of_data+0x249/0x1cf0
[  169.535327][ T7804] bcachefs (loop3): shutdown complete
[  169.538542][ T8721] F2FS-fs (loop1): inconsistent node block, node_type:1, nid:3, node_footer[nid:3,ino:3,ofs:0,cpver:1219692001,blkaddr:4098]
[  169.564841][   T55] Bluetooth: hci1: command tx timeout
[  169.644862][ T5848] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_grab_meta_folio+0x6a/0x1d0
[  169.725173][ T8655] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  169.737910][ T8655] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  169.746053][ T8655] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  169.752769][ T8655] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  169.836012][ T8655] 8021q: adding VLAN 0 to HW filter on device bond0
[  169.866406][ T8655] 8021q: adding VLAN 0 to HW filter on device team0
[  169.888260][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.890701][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  169.905828][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.910166][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.020806][ T8760] loop1: detected capacity change from 0 to 1024
[  170.099518][   T32] hfsplus: b-tree write err: -5, ino 3
[  170.107093][ T5848] hfsplus: node 4:3 still has 1 user(s)!
[  170.284247][ T8655] 8021q: adding VLAN 0 to HW filter on device batadv0
[  170.565925][ T8655] veth0_vlan: entered promiscuous mode
[  170.574110][ T8655] veth1_vlan: entered promiscuous mode
[  170.613873][ T8655] veth0_macvtap: entered promiscuous mode
[  170.618505][ T8655] veth1_macvtap: entered promiscuous mode
[  170.627751][ T8655] batman_adv: batadv0: Interface activated: batadv_slave_0
[  170.638346][ T8655] batman_adv: batadv0: Interface activated: batadv_slave_1
[  170.648625][ T5717] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.654290][ T5717] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.659489][ T5717] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.680861][ T5717] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.817551][ T4507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.820051][ T4507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.860385][ T4507] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.863482][ T4507] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.548866][ T8810] loop4: detected capacity change from 0 to 2048
[  171.568684][ T8810] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  171.607811][   T33] audit: type=1800 audit(1755524465.313:30): pid=8810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.933" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=1436 res=0 errno=0
[  171.632213][   T55] Bluetooth: hci1: command tx timeout
[  171.711500][ T8813] usb usb5: usbfs: process 8813 (syz.1.932) did not claim interface 0 before use
[  172.531752][    T9] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  172.684805][    T9] usb 5-1: config 0 has no interfaces?
[  172.688765][    T9] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  172.697093][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.701852][    T9] usb 5-1: Product: syz
[  172.703201][    T9] usb 5-1: Manufacturer: syz
[  172.704673][    T9] usb 5-1: SerialNumber: syz
[  172.713343][    T9] usb 5-1: config 0 descriptor??
[  172.775613][ T8843] loop3: detected capacity change from 0 to 40427
[  172.802483][ T8843] F2FS-fs (loop3): invalid crc value
[  172.858181][ T8843] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  172.880219][ T8843] F2FS-fs (loop3): Start checkpoint disabled!
[  172.885042][ T8843] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  172.917648][   T32] kworker/u9:1: attempt to access beyond end of device
[  172.917648][   T32] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  172.933769][   T32] CPU: 0 UID: 0 PID: 32 Comm: kworker/u9:1 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  172.933784][   T32] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  172.933790][   T32] Workqueue: writeback wb_workfn (flush-7:3)
[  172.933804][   T32] Call Trace:
[  172.933808][   T32]  <TASK>
[  172.933813][   T32]  dump_stack_lvl+0x189/0x250
[  172.933826][   T32]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.933835][   T32]  ? __pfx_queue_work_on+0x10/0x10
[  172.933843][   T32]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  172.933853][   T32]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  172.933867][   T32]  f2fs_handle_critical_error+0x37c/0x540
[  172.933882][   T32]  f2fs_write_end_io+0x886/0xb60
[  172.933897][   T32]  __submit_merged_bio+0x27a/0x6a0
[  172.933910][   T32]  __submit_merged_write_cond+0x255/0x530
[  172.933923][   T32]  f2fs_write_data_pages+0x261d/0x3000
[  172.933949][   T32]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  172.933965][   T32]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  172.934013][   T32]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  172.934026][   T32]  ? look_up_lock_class+0x74/0x170
[  172.934041][   T32]  ? trace_f2fs_writepages+0x7f/0x200
[  172.934051][   T32]  ? f2fs_write_node_pages+0x478/0x6e0
[  172.934064][   T32]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  172.934080][   T32]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  172.934091][   T32]  do_writepages+0x32e/0x550
[  172.934104][   T32]  ? reacquire_held_locks+0x127/0x1d0
[  172.934113][   T32]  ? writeback_sb_inodes+0x384/0x1010
[  172.934126][   T32]  __writeback_single_inode+0x145/0xff0
[  172.934136][   T32]  ? do_raw_spin_unlock+0x4d/0x240
[  172.934147][   T32]  writeback_sb_inodes+0x6c7/0x1010
[  172.934168][   T32]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  172.934196][   T32]  ? rcu_is_watching+0x15/0xb0
[  172.934209][   T32]  wb_writeback+0x43b/0xaf0
[  172.934222][   T32]  ? queue_io+0x3c1/0x590
[  172.934233][   T32]  ? __pfx_wb_writeback+0x10/0x10
[  172.934246][   T32]  ? _raw_spin_unlock_irq+0x23/0x50
[  172.934257][   T32]  wb_workfn+0x409/0xef0
[  172.934272][   T32]  ? __pfx_wb_workfn+0x10/0x10
[  172.934282][   T32]  ? __lock_acquire+0xab9/0xd20
[  172.934298][   T32]  ? process_scheduled_works+0x9ef/0x17b0
[  172.934308][   T32]  ? _raw_spin_unlock_irq+0x23/0x50
[  172.934316][   T32]  ? process_scheduled_works+0x9ef/0x17b0
[  172.934323][   T32]  ? process_scheduled_works+0x9ef/0x17b0
[  172.934331][   T32]  process_scheduled_works+0xae1/0x17b0
[  172.934352][   T32]  ? __pfx_process_scheduled_works+0x10/0x10
[  172.934367][   T32]  worker_thread+0x8a0/0xda0
[  172.934387][   T32]  kthread+0x711/0x8a0
[  172.934397][   T32]  ? __pfx_worker_thread+0x10/0x10
[  172.934405][   T32]  ? __pfx_kthread+0x10/0x10
[  172.934415][   T32]  ? _raw_spin_unlock_irq+0x23/0x50
[  172.934428][   T32]  ? lockdep_hardirqs_on+0x9c/0x150
[  172.934436][   T32]  ? __pfx_kthread+0x10/0x10
[  172.934446][   T32]  ret_from_fork+0x3fc/0x770
[  172.934455][   T32]  ? __pfx_ret_from_fork+0x10/0x10
[  172.934466][   T32]  ? __switch_to_asm+0x39/0x70
[  172.934475][   T32]  ? __switch_to_asm+0x33/0x70
[  172.934483][   T32]  ? __pfx_kthread+0x10/0x10
[  172.934492][   T32]  ret_from_fork_asm+0x1a/0x30
[  172.934509][   T32]  </TASK>
[  172.934513][   T32] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  173.713281][   T55] Bluetooth: hci1: command tx timeout
[  173.798116][   T55] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  174.195699][ T8873] loop1: detected capacity change from 0 to 32768
[  174.301776][ T8873] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=12,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,degraded=yes,nojournal_transaction_names
[  174.301800][ T8873]   allowing incompatible features above 0.0: (unknown version)
[  174.301808][ T8873]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  174.321339][ T8873] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  174.331234][ T8873] bcachefs (loop1): initializing new filesystem
[  174.341838][ T8873] bcachefs (loop1): going read-write
[  174.352642][ T8873] bcachefs (loop1): marking superblocks
[  174.375922][ T8873] bcachefs (loop1): initializing freespace
[  174.384504][ T8873] bcachefs (loop1): done initializing freespace
[  174.415150][ T8873] bcachefs (loop1): reading snapshots table
[  174.419974][ T8873] bcachefs (loop1): reading snapshots done
[  174.473260][ T8873] bcachefs (loop1): done starting filesystem
[  174.509407][   T33] audit: type=1804 audit(1755524468.213:31): pid=8873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.949" name="/newroot/249/bus/bus" dev="loop1" ino=4098 res=1 errno=0
[  174.527405][ T8873] bcachefs (loop1): requested incompat feature 1.16: reflink_p_may_update_opts currently not enabled, allowed up to 1.16: reflink_p_may_update_opts
[  174.527405][ T8873]   set version_upgrade=incompat to enable
[  174.579162][ T5848] bcachefs (loop1): shutting down
[  174.585805][ T5848] bcachefs (loop1): going read-only
[  174.590566][ T5848] bcachefs (loop1): finished waiting for writes to stop
[  174.599488][ T5848] bcachefs (loop1): flushing journal and stopping allocators, journal seq 2
[  174.642602][ T5848] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 3
[  174.647474][ T5848] bcachefs (loop1): clean shutdown complete, journal seq 4
[  174.650113][ T5848] bcachefs (loop1): marking filesystem clean
[  174.667700][ T5848] bcachefs (loop1): shutdown complete
[  174.742585][ T8910] loop3: detected capacity change from 0 to 128
[  174.753627][ T8910] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  174.758576][ T8910] ext4 filesystem being mounted at /104/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  174.819126][ T7804] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  175.117548][    T9] usb 5-1: USB disconnect, device number 2
[  175.229896][ T8924] netlink: 36 bytes leftover after parsing attributes in process `syz.4.969'.
[  175.313452][ T8926] loop4: detected capacity change from 0 to 4096
[  175.317711][ T8926] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[  175.344565][ T8926] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  175.722301][   T24] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  175.891743][   T24] usb 5-1: Using ep0 maxpacket: 8
[  175.897627][   T24] usb 5-1: New USB device found, idVendor=0c45, idProduct=614a, bcdDevice=c4.6d
[  175.901502][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.904930][   T24] usb 5-1: Product: syz
[  175.906676][   T24] usb 5-1: Manufacturer: syz
[  175.908569][   T24] usb 5-1: SerialNumber: syz
[  175.913034][   T24] usb 5-1: config 0 descriptor??
[  175.918122][   T24] gspca_main: sonixj-2.14.0 probing 0c45:614a
[  176.083075][    T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  176.233645][    T9] usb 4-1: config 0 has too many interfaces: 204, using maximum allowed: 32
[  176.237292][    T9] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 204
[  176.241139][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.247284][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  176.252588][    T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  176.257646][    T9] usb 4-1: New USB device found, idVendor=28bd, idProduct=0909, bcdDevice= 0.00
[  176.261180][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.267509][    T9] usb 4-1: config 0 descriptor??
[  176.691762][    T9] input: HID 28bd:0909 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:28BD:0909.000F/input/input17
[  176.761463][    T9] uclogic 0003:28BD:0909.000F: input,hidraw0: USB HID v0.00 Mouse [HID 28bd:0909] on usb-dummy_hcd.3-1/input0
[  176.936002][ T8935] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  176.944057][ T8935] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  176.951111][    T9] usb 4-1: USB disconnect, device number 7
[  177.129713][   T24] gspca_sonixj: reg_w1 err -71
[  177.131952][   T24] sonixj 5-1:0.0: probe with driver sonixj failed with error -71
[  177.136268][   T24] usb 5-1: USB disconnect, device number 3
[  177.784780][ T8944] loop3: detected capacity change from 0 to 40427
[  177.787881][ T8944] F2FS-fs (loop3): build fault injection rate: 771
[  177.810839][ T8944] F2FS-fs (loop3): invalid crc value
[  177.860498][ T8944] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  177.865964][ T8944] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  177.915897][ T7804] syz-executor: attempt to access beyond end of device
[  177.915897][ T7804] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  177.926165][ T7804] CPU: 1 UID: 0 PID: 7804 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  177.926188][ T7804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  177.926197][ T7804] Call Trace:
[  177.926203][ T7804]  <TASK>
[  177.926210][ T7804]  dump_stack_lvl+0x189/0x250
[  177.926235][ T7804]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.926252][ T7804]  ? __pfx_queue_work_on+0x10/0x10
[  177.926267][ T7804]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  177.926285][ T7804]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  177.926313][ T7804]  f2fs_handle_critical_error+0x37c/0x540
[  177.926339][ T7804]  f2fs_write_end_io+0x886/0xb60
[  177.926369][ T7804]  __submit_merged_bio+0x27a/0x6a0
[  177.926394][ T7804]  __submit_merged_write_cond+0x255/0x530
[  177.926420][ T7804]  f2fs_write_data_pages+0x261d/0x3000
[  177.926470][ T7804]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  177.926529][ T7804]  ? __mod_zone_page_state+0xd7/0x140
[  177.926557][ T7804]  ? folios_put_refs+0x560/0x640
[  177.926585][ T7804]  ? __lock_acquire+0xab9/0xd20
[  177.926641][ T7804]  ? do_raw_spin_lock+0x121/0x290
[  177.926669][ T7804]  ? do_raw_spin_unlock+0x4d/0x240
[  177.926687][ T7804]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  177.926708][ T7804]  do_writepages+0x32e/0x550
[  177.926738][ T7804]  ? do_raw_spin_unlock+0x4d/0x240
[  177.926760][ T7804]  filemap_fdatawrite+0x199/0x240
[  177.926779][ T7804]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  177.926840][ T7804]  ? do_raw_spin_unlock+0x4d/0x240
[  177.926860][ T7804]  f2fs_sync_dirty_inodes+0x31f/0x830
[  177.926890][ T7804]  f2fs_write_checkpoint+0x95a/0x1df0
[  177.926928][ T7804]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  177.926980][ T7804]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  177.926995][ T7804]  ? kfree+0x18e/0x440
[  177.927014][ T7804]  ? kill_f2fs_super+0x298/0x6c0
[  177.927033][ T7804]  kill_f2fs_super+0x2c3/0x6c0
[  177.927059][ T7804]  ? __pfx_kill_f2fs_super+0x10/0x10
[  177.927071][ T7804]  ? radix_tree_delete_item+0x2b6/0x400
[  177.927096][ T7804]  ? shrinker_free+0x2ce/0x3e0
[  177.927115][ T7804]  deactivate_locked_super+0xbc/0x130
[  177.927134][ T7804]  cleanup_mnt+0x425/0x4c0
[  177.927151][ T7804]  ? lockdep_hardirqs_on+0x9c/0x150
[  177.927173][ T7804]  task_work_run+0x1d4/0x260
[  177.927195][ T7804]  ? __pfx_task_work_run+0x10/0x10
[  177.927210][ T7804]  ? __x64_sys_umount+0x122/0x160
[  177.927234][ T7804]  ? exit_to_user_mode_loop+0x40/0x110
[  177.927257][ T7804]  exit_to_user_mode_loop+0xec/0x110
[  177.927276][ T7804]  do_syscall_64+0x2bd/0x3b0
[  177.927294][ T7804]  ? lockdep_hardirqs_on+0x9c/0x150
[  177.927311][ T7804]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.927326][ T7804]  ? exc_page_fault+0x9f/0xf0
[  177.927346][ T7804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.927360][ T7804] RIP: 0033:0x7fc32ab8ff17
[  177.927372][ T7804] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  177.927384][ T7804] RSP: 002b:00007ffc870f2f48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  177.927401][ T7804] RAX: 0000000000000000 RBX: 00007fc32ac11c05 RCX: 00007fc32ab8ff17
[  177.927410][ T7804] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc870f3000
[  177.927419][ T7804] RBP: 00007ffc870f3000 R08: 0000000000000000 R09: 0000000000000000
[  177.927427][ T7804] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc870f4090
[  177.927437][ T7804] R13: 00007fc32ac11c05 R14: 000000000002b67c R15: 00007ffc870f40d0
[  177.927462][ T7804]  </TASK>
[  177.927467][ T7804] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  177.982752][ T8959] loop4: detected capacity change from 0 to 512
[  178.084761][ T8959] EXT4-fs (loop4): Test dummy encryption mode enabled
[  178.087578][ T8959] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  178.094424][ T8959] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  178.105214][ T8959] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.980: bad orphan inode 131083
[  178.110859][ T8959] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.148935][ T8655] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.575816][ T8974] loop4: detected capacity change from 0 to 16
[  178.587788][ T8974] erofs (device loop4): mounted with root inode @ nid 36.
[  178.610698][ T8974] process 'syz.4.984' launched './file2' with NULL argv: empty string added
[  178.623473][ T8974] syz.4.984: attempt to access beyond end of device
[  178.623473][ T8974] loop4: rw=524288, sector=8, nr_sectors = 32 limit=16
[  178.653331][ T8974] syz.4.984: attempt to access beyond end of device
[  178.653331][ T8974] loop4: rw=524288, sector=40, nr_sectors = 64 limit=16
[  178.659284][ T8974] syz.4.984: attempt to access beyond end of device
[  178.659284][ T8974] loop4: rw=0, sector=16, nr_sectors = 8 limit=16
[  178.678841][   T33] audit: type=1800 audit(1755524472.383:32): pid=8974 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.984" name="file2" dev="loop4" ino=89 res=0 errno=0
[  178.962592][ T8991] binder: 8990:8991 ioctl c0306201 0 returned -14
[  178.967133][ T8992] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.971741][ T8992] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.976078][ T8991] binder: 8990:8991 ioctl 3b81 0 returned -22
[  178.990697][ T8977] loop3: detected capacity change from 0 to 32768
[  179.034707][ T8977] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  179.089582][ T8977] XFS (loop3): Ending clean mount
[  179.165945][ T7804] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  179.207134][ T9008] loop4: detected capacity change from 0 to 4096
[  179.219561][ T9008] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.493573][ T9021] Zero length message leads to an empty skb
[  179.705524][ T9024] loop1: detected capacity change from 0 to 1024
[  179.709990][ T9024] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[  179.761674][ T2313] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  179.945806][ T2313] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[  179.949249][ T2313] usb 4-1: config 0 has no interface number 0
[  179.951983][ T2313] usb 4-1: config 0 interface 41 has no altsetting 0
[  179.957091][ T2313] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  179.960786][ T2313] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.964076][ T2313] usb 4-1: Product: syz
[  179.965791][ T2313] usb 4-1: Manufacturer: syz
[  179.967750][ T2313] usb 4-1: SerialNumber: syz
[  179.972323][ T2313] usb 4-1: config 0 descriptor??
[  180.073678][    T9] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  180.095503][ T8655] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.243689][    T9] usb 2-1: Using ep0 maxpacket: 16
[  180.251307][    T9] usb 2-1: New USB device found, idVendor=09c0, idProduct=0201, bcdDevice= a.a4
[  180.257806][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  180.260899][    T9] usb 2-1: Product: syz
[  180.265507][    T9] usb 2-1: Manufacturer: syz
[  180.267495][    T9] usb 2-1: SerialNumber: syz
[  180.273193][    T9] usb 2-1: config 0 descriptor??
[  180.282900][    T9] dvb-usb: found a 'Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver' in warm state.
[  180.494340][    T9] gp8psk: usb in 128 operation failed.
[  180.498359][    T9] gp8psk: usb in 137 operation failed.
[  180.500851][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  180.509034][    T9] dvbdev: DVB: registering new adapter (Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver)
[  180.513325][    T9] usb 2-1: media controller created
[  180.635952][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  180.850689][    T9] gp8psk_fe: Frontend revision 1 attached
[  180.859311][    T9] usb 2-1: DVB: registering adapter 1 frontend 0 (Genpix DVB-S)...
[  180.866957][    T9] dvbdev: dvb_create_media_entity: media entity 'Genpix DVB-S' registered.
[  180.911846][ T5851] Bluetooth: hci0: command 0x0406 tx timeout
[  180.938725][    T9] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver successfully initialized and connected.
[  180.942098][    T9] gp8psk: found Genpix USB device pID = 201 (hex)
[  181.044954][ T2313] CoreChips 4-1:0.41: probe with driver CoreChips failed with error -71
[  181.055492][ T2313] usb 4-1: USB disconnect, device number 8
[  181.143255][    T9] usb 2-1: USB disconnect, device number 25
[  181.232336][    T9] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receive successfully deinitialized and disconnected.
[  181.279070][ T9043] loop4: detected capacity change from 0 to 512
[  181.289625][ T9043] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  181.305995][ T9043] EXT4-fs (loop4): orphan cleanup on readonly fs
[  181.309056][ T9043] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.1008: bad orphan inode 15
[  181.317456][ T9043] ext4_test_bit(bit=14, block=18) = 1
[  181.319783][ T9043] is_bad_inode(inode)=0
[  181.321509][ T9043] NEXT_ORPHAN(inode)=1023
[  181.323566][ T9043] max_ino=32
[  181.325070][ T9043] i_nlink=0
[  181.334747][ T9043] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #15: comm syz.4.1008: corrupted xattr block 19: e_value size too large
[  181.342713][ T9043] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  181.348773][ T9043] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  181.384734][ T8655] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.970405][ T9059] loop4: detected capacity change from 0 to 32768
[  181.977250][ T9059] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1015 (9059)
[  182.013894][ T9059] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  182.017093][ T9059] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  182.037634][ T9059] BTRFS info (device loop4): using free-space-tree
[  182.061802][    T9] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  182.122727][ T9102] loop1: detected capacity change from 0 to 128
[  182.131858][ T9102] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  182.165580][ T9102] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  182.226780][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  182.230264][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  182.236552][ T8655] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  182.246322][    T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  182.250362][    T9] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  182.259500][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.294780][    T9] usb 4-1: config 0 descriptor??
[  182.621771][ T2313] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  182.638080][ T9117] loop1: detected capacity change from 0 to 1764
[  182.726962][    T9] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  182.785045][ T2313] usb 5-1: Using ep0 maxpacket: 16
[  182.790037][ T2313] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  182.794716][ T2313] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  182.800472][ T2313] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  182.806447][ T2313] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  182.811318][ T2313] usb 5-1: Manufacturer: syz
[  182.822739][ T2313] usb 5-1: config 0 descriptor??
[  183.045847][   T51] usb 5-1: USB disconnect, device number 4
[  183.372459][    C0] plantronics 0003:047F:FFFF.0010: hid_field_extract() called with n (132) > 32! (syz-executor)
[  183.592715][   T51] usb 4-1: USB disconnect, device number 9
[  183.866058][ T9139] netlink: 'syz.4.1031': attribute type 10 has an invalid length.
[  183.869334][ T9139] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1031'.
[  184.264203][ T9150] vlan2: entered promiscuous mode
[  184.266331][ T9150] macvtap0: entered promiscuous mode
[  184.336891][ T9145] loop4: detected capacity change from 0 to 256
[  184.339865][ T9145] exfat: Deprecated parameter 'utf8'
[  184.349702][   T33] audit: type=1800 audit(1755524478.053:33): pid=9145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1032" name="file2" dev="loop4" ino=1048648 res=0 errno=0
[  184.527844][ T9162] loop3: detected capacity change from 0 to 512
[  184.535041][ T9162] EXT4-fs (loop3): Unsupported encryption level 255
[  184.641347][ T9171] debugfs: 'ttyS3' already exists in 'caif_serial'
[  184.873037][ T9186] loop4: detected capacity change from 0 to 128
[  184.881927][ T2313] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  184.888340][ T9186] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  184.899522][ T9186] ext4 filesystem being mounted at /41/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  184.931363][ T8655] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  185.074135][ T2313] usb 2-1: Using ep0 maxpacket: 32
[  185.080720][ T2313] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[  185.093821][ T2313] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  185.101559][ T2313] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[  185.112984][ T2313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  185.121746][ T2313] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  185.130684][ T2313] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  185.151710][    T9] IPVS: starting estimator thread 0...
[  185.155356][ T2313] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  185.171464][ T2313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.180684][ T2313] usb 2-1: config 0 descriptor??
[  185.261814][ T9197] IPVS: using max 64 ests per chain, 153600 per kthread
[  185.421926][ T2313] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 26 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  185.452066][ T9202] loop4: detected capacity change from 0 to 256
[  185.646993][ T2313] usb 2-1: USB disconnect, device number 26
[  185.660849][ T2313] usblp0: removed
[  186.294797][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1062'.
[  186.297948][ T9231] (unnamed net_device) (uninitialized): option mode: invalid value (7)
[  186.638645][ T9230] loop3: detected capacity change from 0 to 32768
[  186.678754][ T9230] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  186.728439][ T9230] XFS (loop3): Ending clean mount
[  186.779522][   T33] audit: type=1800 audit(1755524480.483:34): pid=9230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1061" name="file1" dev="loop3" ino=6150 res=0 errno=0
[  186.822566][ T7804] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  187.090992][ T9249] loop4: detected capacity change from 0 to 32768
[  187.127433][ T9249] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  187.207142][ T8655] (syz-executor,8655,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 72
[  187.219145][ T8655] ocfs2: Unmounting device (7,4) on (node local)
[  187.356655][ T9274] loop3: detected capacity change from 0 to 512
[  187.372520][ T9274] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  187.383326][ T9274] EXT4-fs (loop3): 1 truncate cleaned up
[  187.387538][ T9274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.399980][ T9274] EXT4-fs error (device loop3): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.3.1078: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  187.412958][ T9274] EXT4-fs error (device loop3) in ext4_delete_entry:2739: Corrupt filesystem
[  187.446301][ T7804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.757268][ T9279] loop3: detected capacity change from 0 to 32768
[  187.801707][    T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  187.816982][ T9279] JBD2: Ignoring recovery information on journal
[  187.874071][ T9279] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  187.984083][ T7804] ocfs2: Unmounting device (7,3) on (node local)
[  188.102014][    T9] usb 5-1: Using ep0 maxpacket: 16
[  188.113365][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.117315][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.120868][    T9] usb 5-1: New USB device found, idVendor=07c0, idProduct=1525, bcdDevice= 0.00
[  188.132105][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.137152][    T9] usb 5-1: config 0 descriptor??
[  188.516834][ T2313] usb 5-1: USB disconnect, device number 5
[  188.737269][ T9303] loop3: detected capacity change from 0 to 1024
[  188.863738][   T53] hfsplus: b-tree write err: -5, ino 4
[  189.069285][ T9307] loop1: detected capacity change from 0 to 32768
[  189.114713][ T9307] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  189.131416][ T9307] XFS (loop1): Ending clean mount
[  189.169255][ T5848] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  189.398491][ T9336] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1096'.
[  189.522470][  T971] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  189.526649][ T9344] syz.3.1099: attempt to access beyond end of device
[  189.526649][ T9344] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  189.532203][ T9344] exFAT-fs (loop3): unable to read boot sector
[  189.534809][ T9344] exFAT-fs (loop3): failed to read boot sector
[  189.537327][ T9344] exFAT-fs (loop3): failed to recognize exfat type
[  189.571303][ T9343] loop1: detected capacity change from 0 to 4096
[  189.578766][ T9343] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[  189.582959][ T9343] ntfs3(loop1): ino=3, mi_enum_attr
[  189.585254][ T9343] ntfs3(loop1): Failed to load $Volume (-22).
[  189.675529][  T971] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  189.679072][  T971] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  189.692101][  T971] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  189.697400][  T971] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  189.718462][  T971] usb 5-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  189.726647][  T971] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.732828][  T971] usb 5-1: config 0 descriptor??
[  189.962895][  T971] hdpvr 5-1:0.0: firmware version 0x1e dated 
[  190.098067][   T33] audit: type=1400 audit(1755524483.793:35): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=9351 comm="syz.3.1103"
[  190.182547][    T9] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  190.327818][  T971] hdpvr 5-1:0.0: device init failed
[  190.329440][  T971] hdpvr 5-1:0.0: probe with driver hdpvr failed with error -12
[  190.335191][  T971] usb 5-1: USB disconnect, device number 6
[  190.371733][    T9] usb 2-1: Using ep0 maxpacket: 16
[  190.375179][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.378746][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.384972][    T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  190.389889][    T9] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  190.392914][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.398445][    T9] usb 2-1: config 0 descriptor??
[  190.706734][ T9362] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  190.717499][ T9362] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  190.810263][    T9] HID 045e:07da: Invalid code 65791 type 1
[  190.832266][    T9] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0011/input/input19
[  190.842160][    T9] microsoft 0003:045E:07DA.0011: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  191.023105][    T9] usb 2-1: USB disconnect, device number 27
[  191.210404][ T9388] Mount JFS Failure: -22
[  191.617140][ T9401] can0: slcan on ttyS3.
[  191.623763][    T9] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  191.704474][ T9400] can0 (unregistered): slcan off ttyS3.
[  191.794092][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.801701][    T9] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[  191.820031][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.827990][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.836843][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  191.841678][    T9] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  191.853617][    T9] usb 4-1: New USB device found, idVendor=2294, idProduct=425a, bcdDevice=d1.41
[  191.857489][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.860775][    T9] usb 4-1: Product: syz
[  191.873391][    T9] usb 4-1: Manufacturer: syz
[  191.875375][    T9] usb 4-1: SerialNumber: syz
[  191.882804][    T9] usb 4-1: config 0 descriptor??
[  191.961779][ T2313] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  192.085292][ T9412] loop4: detected capacity change from 0 to 32768
[  192.098333][    T9] usb 4-1: ucan: probing device on interface #0
[  192.105659][    T9] usb 4-1: ucan: invalid endpoint configuration
[  192.108132][    T9] usb 4-1: ucan: probe failed; try to update the device firmware
[  192.128970][ T2313] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  192.133998][ T9412] ERROR: (device loop4): xtTruncate_pmap: xt_getpage: xtree page corrupt
[  192.133998][ T9412] 
[  192.139977][ T2313] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  192.143868][    T9] usb 4-1: USB disconnect, device number 10
[  192.146199][ T2313] usb 2-1: New USB device found, idVendor=0471, idProduct=030c, bcdDevice=e4.df
[  192.153051][ T2313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.155818][ T9412] ERROR: (device loop4): remounting filesystem as read-only
[  192.161091][ T9412] ERROR: (device loop4): jfs_rename: 
[  192.161091][ T9412] 
[  192.166077][ T2313] usb 2-1: config 0 descriptor??
[  192.181296][ T2313] pwc: Philips PCVC690K (Vesta Pro Scan) USB webcam detected.
[  192.199030][ T8655] ERROR: (device loop4): xtTruncate: xt_getpage: xtree page corrupt
[  192.199030][ T8655] 
[  192.375893][ T2313] pwc: send_video_command error -71
[  192.377572][ T2313] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  192.380722][ T2313] Philips webcam 2-1:0.0: probe with driver Philips webcam failed with error -71
[  192.385166][ T2313] usb 2-1: USB disconnect, device number 28
[  193.309825][ T9438] loop4: detected capacity change from 0 to 2048
[  193.327165][ T9438] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.331315][ T9438] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  193.338640][ T9438] EXT4-fs error (device loop4): __ext4_new_inode:1073: comm syz.4.1137: reserved inode found cleared - inode=1
[  193.361259][ T8655] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.454131][ T9445] loop4: detected capacity change from 0 to 256
[  193.461977][   T51] usb 2-1: new full-speed USB device number 29 using dummy_hcd
[  193.478963][ T9445] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  193.634440][   T51] usb 2-1: not running at top speed; connect to a high speed hub
[  193.645774][   T51] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  193.649319][   T51] usb 2-1: config 1 has no interface number 1
[  193.670027][   T51] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  193.710038][   T51] usb 2-1: string descriptor 0 read error: -22
[  193.713149][   T51] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  193.716787][   T51] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.776168][   T51] usb 2-1: 2:1 : no UAC_FORMAT_TYPE desc
[  194.003583][   T51] usb 2-1: USB disconnect, device number 29
[  194.010967][ T9464] loop3: detected capacity change from 0 to 512
[  194.024667][ T6049] udevd[6049]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  194.046900][ T9464] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  194.051195][ T9464] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  194.077550][ T9464] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1148: Failed to acquire dquot type 1
[  194.097856][ T9464] EXT4-fs (loop3): 1 truncate cleaned up
[  194.100974][ T9464] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.106425][ T9464] ext4 filesystem being mounted at /173/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.128558][ T9464] evm: overlay not supported
[  194.200140][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  194.203717][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  194.212660][ T7804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.895897][ T9502] tipc: Started in network mode
[  194.897788][ T9502] tipc: Node identity ea6ce0650a63, cluster identity 4711
[  194.900756][ T9502] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  194.910164][ T9502] tipc: Disabling bearer <eth:syzkaller0>
[  194.971795][ T9492] loop3: detected capacity change from 0 to 32768
[  194.989075][ T9492] (syz.3.1159,9492,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  195.004225][ T9492] (syz.3.1159,9492,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  195.030394][ T9492] JBD2: Ignoring recovery information on journal
[  195.072064][   T51] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  195.078284][ T9492] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  195.228760][   T51] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  195.233707][   T51] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.350703][ T7804] ocfs2: Unmounting device (7,3) on (node local)
[  195.351992][   T51] usb 5-1: config 0 descriptor??
[  195.368680][   T51] cp210x 5-1:0.0: cp210x converter detected
[  195.537904][ T9512] loop3: detected capacity change from 0 to 512
[  195.548281][ T9512] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  195.578535][ T9512] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.586728][ T9512] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.604161][   T51] usb 5-1: cp210x converter now attached to ttyUSB0
[  195.768414][ T7804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.803332][    T9] usb 5-1: USB disconnect, device number 7
[  195.827615][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  195.835842][    T9] cp210x 5-1:0.0: device disconnected
[  195.985402][ T9522] net_ratelimit: 30 callbacks suppressed
[  195.985418][ T9522] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  195.990838][ T9522] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  196.201771][  T971] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  196.351747][  T971] usb 4-1: Using ep0 maxpacket: 32
[  196.353507][  T971] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  196.353526][  T971] usb 4-1: config 0 has no interface number 0
[  196.353549][  T971] usb 4-1: config 0 interface 184 has no altsetting 0
[  196.355720][  T971] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  196.355742][  T971] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.355759][  T971] usb 4-1: Product: syz
[  196.355772][  T971] usb 4-1: Manufacturer: syz
[  196.355784][  T971] usb 4-1: SerialNumber: syz
[  196.357947][  T971] usb 4-1: config 0 descriptor??
[  196.361118][  T971] smsc75xx v1.0.0
[  196.988309][  T971] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  196.991963][  T971] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  197.630145][ T9544] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1178'.
[  197.634634][ T9544] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1178'.
[  197.931978][ T9548] loop1: detected capacity change from 0 to 1024
[  197.943635][ T9548] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  197.979512][ T9548] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.006007][ T9548] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: inode #11: comm syz.1.1180: missing EA_INODE flag
[  198.029639][ T9548] EXT4-fs (loop1): Remounting filesystem read-only
[  198.042045][ T9548] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  198.090800][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.221506][  T971] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  198.239551][  T971] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  198.247317][  T971] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  198.250792][  T971] smsc75xx 4-1:0.184: probe with driver smsc75xx failed with error -71
[  198.260295][  T971] usb 4-1: USB disconnect, device number 11
[  198.875927][ T9558] loop4: detected capacity change from 0 to 32768
[  198.990750][ T9558] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[  198.990774][ T9558]   allowing incompatible features above 0.0: (unknown version)
[  198.990783][ T9558]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  199.008588][ T9558] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  199.012225][ T9558] bcachefs (loop4): initializing new filesystem
[  199.019162][ T9558] bcachefs (loop4): going read-write
[  199.025642][ T9558] bcachefs (loop4): marking superblocks
[  199.057039][ T9558] bcachefs (loop4): initializing freespace
[  199.136331][ T9558] bcachefs (loop4): done initializing freespace
[  199.140820][ T9558] bcachefs (loop4): reading snapshots table
[  199.180797][ T9558] bcachefs (loop4): reading snapshots done
[  199.212657][ T9558] bcachefs (loop4): done starting filesystem
[  199.345206][   T33] audit: type=1800 audit(1755524493.033:36): pid=9558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1183" name="file1" dev="loop4" ino=4098 res=0 errno=0
[  199.384807][   T33] audit: type=1804 audit(1755524493.063:37): pid=9558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1183" name="/newroot/87/file0/file1" dev="loop4" ino=4098 res=1 errno=0
[  199.399643][ T8655] bcachefs (loop4): shutting down
[  199.405766][ T8655] bcachefs (loop4): going read-only
[  199.411834][ T8655] bcachefs (loop4): finished waiting for writes to stop
[  199.418921][ T8655] bcachefs (loop4): flushing journal and stopping allocators, journal seq 7
[  199.694425][ T8655] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 10
[  199.700690][ T8655] bcachefs (loop4): clean shutdown complete, journal seq 11
[  199.712763][ T8655] bcachefs (loop4): marking filesystem clean
[  199.739793][ T8655] bcachefs (loop4): shutdown complete
[  199.771828][    T9] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  199.946711][    T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  199.950807][    T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  199.976895][    T9] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  199.980528][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  199.984405][    T9] usb 2-1: SerialNumber: syz
[  200.221337][    T9] usb 2-1: 0:2 : does not exist
[  200.256647][    T9] usb 2-1: USB disconnect, device number 30
[  200.284626][ T6019] udevd[6019]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  200.437286][ T9593] loop3: detected capacity change from 0 to 1024
[  200.514871][ T9593] hfsplus: failed to load root directory
[  201.707204][ T9609] 9pnet: p9_errstr2errno: server reported unknown error t/event#
[  201.852124][ T2313] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  201.959077][ T9611] Unsupported ieee802154 address type: 0
[  202.001924][ T2313] usb 2-1: Using ep0 maxpacket: 32
[  202.043908][ T2313] usb 2-1: config 0 has an invalid interface number: 31 but max is 0
[  202.047249][ T2313] usb 2-1: config 0 has no interface number 0
[  202.049643][ T2313] usb 2-1: config 0 interface 31 has no altsetting 0
[  202.082643][ T2313] usb 2-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=34.16
[  202.086359][ T2313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.089637][ T2313] usb 2-1: Product: syz
[  202.091388][ T2313] usb 2-1: Manufacturer: syz
[  202.097803][ T2313] usb 2-1: SerialNumber: syz
[  202.107409][ T2313] usb 2-1: config 0 descriptor??
[  202.123613][ T2313] port100 2-1:0.31: NFC: Could not find bulk-in or bulk-out endpoint
[  202.332726][ T2313] usb 2-1: USB disconnect, device number 31
[  202.448073][ T9613] loop4: detected capacity change from 0 to 40427
[  202.453625][ T9613] F2FS-fs (loop4): build fault injection rate: 771
[  202.467496][ T9613] F2FS-fs (loop4): invalid crc value
[  202.523773][ T9613] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  202.528487][ T9613] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  202.567620][ T8655] syz-executor: attempt to access beyond end of device
[  202.567620][ T8655] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  202.573391][ T8655] CPU: 0 UID: 0 PID: 8655 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  202.573413][ T8655] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  202.573421][ T8655] Call Trace:
[  202.573427][ T8655]  <TASK>
[  202.573433][ T8655]  dump_stack_lvl+0x189/0x250
[  202.573460][ T8655]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.573477][ T8655]  ? __pfx_queue_work_on+0x10/0x10
[  202.573492][ T8655]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  202.573509][ T8655]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  202.573536][ T8655]  f2fs_handle_critical_error+0x37c/0x540
[  202.573564][ T8655]  f2fs_write_end_io+0x886/0xb60
[  202.573593][ T8655]  __submit_merged_bio+0x27a/0x6a0
[  202.573617][ T8655]  __submit_merged_write_cond+0x255/0x530
[  202.573642][ T8655]  f2fs_write_data_pages+0x261d/0x3000
[  202.573693][ T8655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  202.573786][ T8655]  ? folios_put_refs+0x559/0x640
[  202.573815][ T8655]  ? __lock_acquire+0xab9/0xd20
[  202.573842][ T8655]  ? do_raw_spin_lock+0x121/0x290
[  202.573867][ T8655]  ? do_raw_spin_unlock+0x4d/0x240
[  202.573885][ T8655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  202.573906][ T8655]  do_writepages+0x32e/0x550
[  202.573934][ T8655]  ? do_raw_spin_unlock+0x4d/0x240
[  202.573954][ T8655]  filemap_fdatawrite+0x199/0x240
[  202.573973][ T8655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  202.574034][ T8655]  ? do_raw_spin_unlock+0x4d/0x240
[  202.574055][ T8655]  f2fs_sync_dirty_inodes+0x31f/0x830
[  202.574083][ T8655]  f2fs_write_checkpoint+0x95a/0x1df0
[  202.574124][ T8655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  202.574176][ T8655]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  202.574190][ T8655]  ? kfree+0x18e/0x440
[  202.574208][ T8655]  ? kill_f2fs_super+0x298/0x6c0
[  202.574228][ T8655]  kill_f2fs_super+0x2c3/0x6c0
[  202.574247][ T8655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  202.574258][ T8655]  ? radix_tree_delete_item+0x2b6/0x400
[  202.574283][ T8655]  ? shrinker_free+0x2ce/0x3e0
[  202.574301][ T8655]  deactivate_locked_super+0xbc/0x130
[  202.574321][ T8655]  cleanup_mnt+0x425/0x4c0
[  202.574336][ T8655]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.574356][ T8655]  task_work_run+0x1d4/0x260
[  202.574377][ T8655]  ? __pfx_task_work_run+0x10/0x10
[  202.574394][ T8655]  ? __x64_sys_umount+0x122/0x160
[  202.574415][ T8655]  ? exit_to_user_mode_loop+0x40/0x110
[  202.574438][ T8655]  exit_to_user_mode_loop+0xec/0x110
[  202.574457][ T8655]  do_syscall_64+0x2bd/0x3b0
[  202.574475][ T8655]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.574491][ T8655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.574504][ T8655]  ? exc_page_fault+0x9f/0xf0
[  202.574523][ T8655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.574537][ T8655] RIP: 0033:0x7fbc20f8ff17
[  202.574551][ T8655] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  202.574563][ T8655] RSP: 002b:00007ffee8813b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  202.574577][ T8655] RAX: 0000000000000000 RBX: 00007fbc21011c05 RCX: 00007fbc20f8ff17
[  202.574586][ T8655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffee8813c40
[  202.574594][ T8655] RBP: 00007ffee8813c40 R08: 0000000000000000 R09: 0000000000000000
[  202.574603][ T8655] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee8814cd0
[  202.574611][ T8655] R13: 00007fbc21011c05 R14: 00000000000316c6 R15: 00007ffee8814d10
[  202.574637][ T8655]  </TASK>
[  202.574643][ T8655] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  202.716893][    T9] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  202.718160][ T8655] CPU: 1 UID: 0 PID: 8655 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  202.718180][ T8655] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  202.718189][ T8655] Call Trace:
[  202.718194][ T8655]  <TASK>
[  202.718200][ T8655]  dump_stack_lvl+0x189/0x250
[  202.718222][ T8655]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.718238][ T8655]  ? __pfx_queue_work_on+0x10/0x10
[  202.718252][ T8655]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  202.718269][ T8655]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  202.718294][ T8655]  f2fs_handle_critical_error+0x37c/0x540
[  202.718318][ T8655]  f2fs_write_end_io+0x886/0xb60
[  202.718345][ T8655]  __submit_merged_bio+0x27a/0x6a0
[  202.718368][ T8655]  __submit_merged_write_cond+0x255/0x530
[  202.718391][ T8655]  f2fs_write_data_pages+0x261d/0x3000
[  202.718437][ T8655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  202.718500][ T8655]  ? folios_put_refs+0x559/0x640
[  202.718525][ T8655]  ? __lock_acquire+0xab9/0xd20
[  202.718551][ T8655]  ? do_raw_spin_lock+0x121/0x290
[  202.718576][ T8655]  ? do_raw_spin_unlock+0x4d/0x240
[  202.718591][ T8655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  202.718611][ T8655]  do_writepages+0x32e/0x550
[  202.718638][ T8655]  ? do_raw_spin_unlock+0x4d/0x240
[  202.718657][ T8655]  filemap_fdatawrite+0x199/0x240
[  202.718675][ T8655]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  202.718759][ T8655]  ? do_raw_spin_unlock+0x4d/0x240
[  202.718779][ T8655]  f2fs_sync_dirty_inodes+0x31f/0x830
[  202.718804][ T8655]  f2fs_write_checkpoint+0x95a/0x1df0
[  202.718837][ T8655]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  202.718882][ T8655]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  202.718895][ T8655]  ? kfree+0x18e/0x440
[  202.718912][ T8655]  ? kill_f2fs_super+0x298/0x6c0
[  202.718930][ T8655]  kill_f2fs_super+0x2c3/0x6c0
[  202.718948][ T8655]  ? __pfx_kill_f2fs_super+0x10/0x10
[  202.718959][ T8655]  ? radix_tree_delete_item+0x2b6/0x400
[  202.718983][ T8655]  ? shrinker_free+0x2ce/0x3e0
[  202.718999][ T8655]  deactivate_locked_super+0xbc/0x130
[  202.719018][ T8655]  cleanup_mnt+0x425/0x4c0
[  202.719032][ T8655]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.719052][ T8655]  task_work_run+0x1d4/0x260
[  202.719072][ T8655]  ? __pfx_task_work_run+0x10/0x10
[  202.719087][ T8655]  ? __x64_sys_umount+0x122/0x160
[  202.719109][ T8655]  ? exit_to_user_mode_loop+0x40/0x110
[  202.719136][ T8655]  exit_to_user_mode_loop+0xec/0x110
[  202.719155][ T8655]  do_syscall_64+0x2bd/0x3b0
[  202.719172][ T8655]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.719188][ T8655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.719201][ T8655]  ? exc_page_fault+0x9f/0xf0
[  202.719220][ T8655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.719232][ T8655] RIP: 0033:0x7fbc20f8ff17
[  202.719245][ T8655] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  202.719256][ T8655] RSP: 002b:00007ffee8813b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  202.719271][ T8655] RAX: 0000000000000000 RBX: 00007fbc21011c05 RCX: 00007fbc20f8ff17
[  202.719280][ T8655] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffee8813c40
[  202.719288][ T8655] RBP: 00007ffee8813c40 R08: 0000000000000000 R09: 0000000000000000
[  202.719296][ T8655] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee8814cd0
[  202.719305][ T8655] R13: 00007fbc21011c05 R14: 00000000000316c6 R15: 00007ffee8814d10
[  202.719328][ T8655]  </TASK>
[  202.719334][ T8655] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  202.881814][    T9] usb 4-1: Using ep0 maxpacket: 16
[  202.895862][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.900409][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  202.905413][    T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  202.910690][    T9] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  202.924814][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.939506][    T9] usb 4-1: config 0 descriptor??
[  203.062507][ T9626] vlan0: entered allmulticast mode
[  203.065029][ T9626] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  203.363998][    T9] hid_parser_main: 5 callbacks suppressed
[  203.364018][    T9] microsoft 0003:045E:07DA.0012: unknown main item tag 0x6
[  203.369142][    T9] microsoft 0003:045E:07DA.0012: unbalanced collection at end of report description
[  203.378583][    T9] microsoft 0003:045E:07DA.0012: parse failed
[  203.391859][    T9] microsoft 0003:045E:07DA.0012: probe with driver microsoft failed with error -22
[  203.526535][ T9636] loop1: detected capacity change from 0 to 32768
[  203.554727][ T9636] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  203.563130][    T9] usb 4-1: USB disconnect, device number 12
[  203.604341][ T9636] XFS (loop1): Ending clean mount
[  203.615490][ T9636] XFS (loop1): Quotacheck needed: Please wait.
[  203.649513][ T9636] XFS (loop1): Quotacheck: Done.
[  203.662841][  T971] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  203.740949][ T5848] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  203.863328][  T971] usb 5-1: Using ep0 maxpacket: 32
[  203.867421][  T971] usb 5-1: config 0 has an invalid interface number: 48 but max is 0
[  203.870712][  T971] usb 5-1: config 0 has no interface number 0
[  203.882949][  T971] usb 5-1: too many endpoints for config 0 interface 48 altsetting 49: 55, using maximum allowed: 30
[  203.887250][  T971] usb 5-1: config 0 interface 48 altsetting 49 has 0 endpoint descriptors, different from the interface descriptor's value: 55
[  203.901982][  T971] usb 5-1: config 0 interface 48 has no altsetting 0
[  203.907026][  T971] usb 5-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  203.910571][  T971] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.915695][  T971] usb 5-1: Product: syz
[  203.917331][  T971] usb 5-1: Manufacturer: syz
[  203.919167][  T971] usb 5-1: SerialNumber: syz
[  203.923503][  T971] usb 5-1: config 0 descriptor??
[  204.158420][  T971] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  204.510327][  T971] gspca_ov534_9: reg_w failed -71
[  204.767616][ T9674] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  204.827940][ T9676] loop3: detected capacity change from 0 to 4096
[  204.955154][ T9678] tipc: Failed to remove unknown binding: 66,1,1/0:478380071/478380073
[  204.971863][  T971] gspca_ov534_9: Unknown sensor 0000
[  204.971916][  T971] ov534_9 5-1:0.48: probe with driver ov534_9 failed with error -22
[  204.982989][  T971] usb 5-1: USB disconnect, device number 8
[  205.166442][ T9686] No buffer was provided with the request
[  205.232033][ T9687] loop1: detected capacity change from 0 to 64
[  205.690825][ T9695] loop4: detected capacity change from 0 to 2048
[  205.706350][ T9695] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  205.892636][ T9699] netlink: 'syz.4.1235': attribute type 12 has an invalid length.
[  205.895684][ T9699] netlink: 'syz.4.1235': attribute type 29 has an invalid length.
[  205.898489][ T9699] netlink: 148 bytes leftover after parsing attributes in process `syz.4.1235'.
[  205.904693][ T9699] netlink: 'syz.4.1235': attribute type 2 has an invalid length.
[  205.905135][ T9701] loop1: detected capacity change from 0 to 512
[  205.909687][ T9699] netlink: 'syz.4.1235': attribute type 3 has an invalid length.
[  205.936330][ T9701] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  205.986867][ T9701] EXT4-fs (loop1): 1 truncate cleaned up
[  206.012543][ T9701] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.135688][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.590992][ T9735] unsupported nla_type 52263
[  206.595345][ T9735] loop4: detected capacity change from 0 to 65
[  206.600486][ T9735] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[  206.608003][ T9735] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  206.635384][ T9733] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1249'.
[  206.638532][ T9733] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  208.548921][ T9766] loop1: detected capacity change from 0 to 512
[  208.560470][ T9766] EXT4-fs (loop1): Test dummy encryption mode enabled
[  208.563100][ T9766] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  208.600043][ T9766] EXT4-fs error (device loop1): xattr_find_entry:333: inode #15: comm syz.1.1258: corrupted xattr entries
[  208.617824][ T9766] EXT4-fs (loop1): 1 orphan inode deleted
[  208.664682][ T9766] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.745980][   T33] audit: type=1800 audit(1755524502.453:38): pid=9766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1258" name="file2" dev="loop1" ino=15 res=0 errno=0
[  208.907533][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.910635][ T9775] loop4: detected capacity change from 0 to 4096
[  209.052724][ T9775] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  209.225206][ T9785] loop1: detected capacity change from 0 to 256
[  209.234761][ T8655] ntfs3(loop4): ino=9, ntfs_sync_fs failed, -22.
[  209.272031][ T9785] FAT-fs (loop1): Directory bread(block 64) failed
[  209.274801][ T9785] FAT-fs (loop1): Directory bread(block 65) failed
[  209.277051][ T9785] FAT-fs (loop1): Directory bread(block 66) failed
[  209.283779][ T9785] FAT-fs (loop1): Directory bread(block 67) failed
[  209.299683][ T9785] FAT-fs (loop1): Directory bread(block 68) failed
[  209.311401][ T9785] FAT-fs (loop1): Directory bread(block 69) failed
[  209.330633][ T9785] FAT-fs (loop1): Directory bread(block 70) failed
[  209.333742][ T9785] FAT-fs (loop1): Directory bread(block 71) failed
[  209.335811][ T9785] FAT-fs (loop1): Directory bread(block 72) failed
[  209.338137][ T9785] FAT-fs (loop1): Directory bread(block 73) failed
[  209.510104][ T9795] loop4: detected capacity change from 0 to 8192
[  209.524921][ T9795] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  209.538372][ T9795] ntfs3(loop4): $Secure::$SII is corrupted.
[  209.540251][ T9795] ntfs3(loop4): Failed to initialize $Secure (-22).
[  209.618805][ T9803] loop1: detected capacity change from 0 to 8192
[  209.636817][ T9803] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  210.083684][ T9842] loop4: detected capacity change from 0 to 1024
[  210.119844][ T9846] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1277'.
[  210.201566][ T9857] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  210.203818][ T9857] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  210.210327][ T9857] vhci_hcd vhci_hcd.0: Device attached
[  210.220122][ T9858] vhci_hcd: connection closed
[  210.224315][ T5717] vhci_hcd: stop threads
[  210.229651][ T5717] vhci_hcd: release socket
[  210.231485][ T5717] vhci_hcd: disconnect device
[  210.294104][ T9868] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1283'.
[  210.744549][ T9881] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1287'.
[  210.885021][ T9889] loop1: detected capacity change from 0 to 8
[  211.498927][ T9909] loop1: detected capacity change from 0 to 1024
[  211.575339][   T32] hfsplus: b-tree write err: -5, ino 4
[  211.882813][ T9927] ptrace attach of "/syz-executor exec"[8655] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        "[9927]
[  212.283189][ T9938] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1301'.
[  213.269447][ T9962] loop3: detected capacity change from 0 to 764
[  213.308078][ T9962] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  213.628708][ T9975] loop3: detected capacity change from 0 to 128
[  213.672818][ T9975] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  213.687334][ T9975] ext4 filesystem being mounted at /223/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  214.352535][ T9952] loop1: detected capacity change from 0 to 262144
[  214.359931][ T9952] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1306 (9952)
[  214.376727][ T9952] BTRFS info (device loop1): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  214.380741][ T9952] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[  214.386585][ T9952] BTRFS info (device loop1): using free-space-tree
[  214.470957][ T7804] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  214.570219][   T32] BTRFS warning (device loop1): checksum verify failed on logical 22036480 mirror 1 wanted 0x23e101be1e001a29 found 0x09049c5cc74d15fb level 0
[  214.592424][ T9952] BTRFS info (device loop1): read error corrected: ino 0 off 22036480 (dev /dev/loop1 sector 43040)
[  214.596900][ T9952] BTRFS info (device loop1): read error corrected: ino 0 off 22040576 (dev /dev/loop1 sector 43048)
[  214.601465][ T9952] BTRFS info (device loop1): read error corrected: ino 0 off 22044672 (dev /dev/loop1 sector 43056)
[  214.607162][ T9952] BTRFS info (device loop1): read error corrected: ino 0 off 22048768 (dev /dev/loop1 sector 43064)
[  214.717287][   T33] audit: type=1800 audit(1755524508.423:39): pid=9952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1306" name="file1" dev="loop1" ino=260 res=0 errno=0
[  214.949159][ T5848] BTRFS info (device loop1): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  215.828851][T10021] gtp0: entered promiscuous mode
[  215.844773][T10021] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1316'.
[  216.382453][    T9] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  216.475844][T10037] loop3: detected capacity change from 0 to 8192
[  216.551389][    T9] usb 5-1: config 0 has an invalid interface number: 113 but max is 0
[  216.594888][    T9] usb 5-1: config 0 has no interface number 0
[  216.607724][    T9] usb 5-1: New USB device found, idVendor=0e41, idProduct=534d, bcdDevice=98.2a
[  216.610929][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.630699][    T9] usb 5-1: Product: syz
[  216.633981][    T9] usb 5-1: Manufacturer: syz
[  216.642432][    T9] usb 5-1: SerialNumber: syz
[  216.682239][    T9] usb 5-1: config 0 descriptor??
[  217.122828][   T55] Bluetooth: hci0: unexpected event for opcode 0x1408
[  217.277728][    T9] snd_usb_variax 5-1:0.113: Line 6 Variax Workbench found
[  217.280354][    T9] usb 5-1: selecting invalid altsetting 1
[  217.292119][    T9] snd_usb_variax 5-1:0.113: set_interface failed
[  217.294314][    T9] snd_usb_variax 5-1:0.113: Line 6 Variax Workbench now disconnected
[  217.296949][    T9] snd_usb_variax 5-1:0.113: probe with driver snd_usb_variax failed with error -22
[  217.318395][    T9] usb 5-1: USB disconnect, device number 9
[  217.436322][T10084] loop1: detected capacity change from 0 to 4096
[  217.452780][T10084] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  217.463424][T10084] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 4096)
[  217.466438][T10084] NILFS (loop1): mounting unchecked fs
[  217.498746][T10084] NILFS (loop1): recovery complete
[  217.509448][T10094] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  217.536377][T10097] loop3: detected capacity change from 0 to 1024
[  217.593912][ T1091] hfsplus: b-tree write err: -5, ino 4
[  218.680055][T10149] loop1: detected capacity change from 0 to 64
[  218.689858][T10149] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing
[  218.693098][T10149] BFS-fs: bfs_fill_super(): Impossible last inode number 262303 > 513 on loop1
[  218.772988][T10162] loop1: detected capacity change from 0 to 1024
[  218.816799][T10170] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1351'.
[  218.834609][   T33] audit: type=1326 audit(1755524512.533:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10171 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32ab8ebe9 code=0x7ffc0000
[  218.853234][ T1091] hfsplus: b-tree write err: -5, ino 4
[  218.861893][   T33] audit: type=1326 audit(1755524512.533:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10171 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32ab8ebe9 code=0x7ffc0000
[  218.868700][   T33] audit: type=1326 audit(1755524512.533:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10171 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7fc32ab8ebe9 code=0x7ffc0000
[  218.878670][T10175] loop3: detected capacity change from 0 to 512
[  218.882951][T10175] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  218.887271][T10175] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843e02c, mo2=0002]
[  218.890064][T10175] System zones: 1-12
[  218.891440][T10175] EXT4-fs (loop3): orphan cleanup on readonly fs
[  218.898883][T10175] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.1353: bad orphan inode 267
[  218.914313][T10175] EXT4-fs (loop3): Remounting filesystem read-only
[  218.917101][T10175] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  218.918718][T10183] loop4: detected capacity change from 0 to 1024
[  218.928291][   T33] audit: type=1326 audit(1755524512.533:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10171 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32ab8ebe9 code=0x7ffc0000
[  218.932815][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  218.942990][   T33] audit: type=1326 audit(1755524512.533:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10171 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32ab8ebe9 code=0x7ffc0000
[  218.967672][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.002235][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.005158][T10183] syz.4.1355: attempt to access beyond end of device
[  219.005158][T10183] loop4: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  219.013018][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.037441][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.046240][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.066322][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.075048][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.080289][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.086452][T10175] EXT4-fs warning (device loop3): dx_probe:791: inode #2: lblock 0: comm syz.3.1353: error -117 reading directory block
[  219.130135][ T7804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  219.185263][T10201] loop3: detected capacity change from 0 to 4096
[  219.193581][T10201] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.206719][   T33] audit: type=1800 audit(1755524512.913:45): pid=10201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1359" name="file1" dev="loop3" ino=15 res=0 errno=0
[  219.548490][ T7804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.596701][T10218] loop4: detected capacity change from 0 to 512
[  219.620618][T10221] loop3: detected capacity change from 0 to 1024
[  219.626322][T10221] EXT4-fs: Ignoring removed bh option
[  219.635799][T10221] EXT4-fs (loop3): unable to read superblock
[  219.847317][T10241] loop4: detected capacity change from 0 to 256
[  219.859906][T10241] exfat: Deprecated parameter 'namecase'
[  219.864146][T10241] exfat: Deprecated parameter 'namecase'
[  219.877192][T10241] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  220.291327][T10261] ip6erspan0: entered promiscuous mode
[  220.386559][T10264] tipc: Cannot configure node identity twice
[  220.622955][T10270] smc: net device bond0 applied user defined pnetid SYZ0
[  220.686860][T10278] loop3: detected capacity change from 0 to 256
[  220.776910][T10284] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1377'.
[  221.970767][T10318] loop3: detected capacity change from 0 to 32768
[  221.975401][T10318] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1386 (10318)
[  221.985849][T10318] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  221.989756][T10318] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  221.998585][T10318] BTRFS info (device loop3): disk space caching is enabled
[  222.005142][T10318] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  222.139840][T10318] BTRFS info (device loop3): rebuilding free space tree
[  222.168836][T10318] BTRFS info (device loop3): disabling free space tree
[  222.170930][T10318] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  222.180126][T10318] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  222.185355][T10343] loop1: detected capacity change from 0 to 4096
[  222.191315][T10343] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  222.223792][T10343] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  222.227432][   T33] audit: type=1800 audit(1755524515.933:46): pid=10318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1386" name="file1" dev="loop3" ino=260 res=0 errno=0
[  222.232665][T10343] ntfs3(loop1): Failed to load $MFT (-2).
[  222.325620][ T7804] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  222.669671][T10363] tmpfs: Bad value for 'mpol'
[  222.934936][T10382] loop1: detected capacity change from 0 to 764
[  223.054831][T10392] loop1: detected capacity change from 0 to 4096
[  223.096531][T10392] ntfs3(loop1): ino=18, mi_enum_attr
[  223.098220][T10392] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  223.103155][T10392] ntfs3(loop1): ino=1a, mi_enum_attr
[  223.119816][T10400] loop4: detected capacity change from 0 to 1024
[  223.230639][T10411] loop1: detected capacity change from 0 to 1764
[  223.269570][T10411] iso9660: Corrupted directory entry in block 2 of inode 1920
[  223.280664][T10418] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1406'.
[  223.345361][T10426] loop4: detected capacity change from 0 to 47
[  223.560620][T10449] netlink: 'syz.4.1414': attribute type 1 has an invalid length.
[  225.548332][T10525] loop1: detected capacity change from 0 to 512
[  225.554802][T10525] EXT4-fs: journaled quota format not specified
[  225.636098][T10523] block nbd0: server does not support multiple connections per device.
[  225.652287][T10523] block nbd0: shutting down sockets
[  225.878592][T10543] tipc: Started in network mode
[  225.880931][T10543] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  225.889599][T10543] tipc: Enabled bearer <eth:team0>, priority 0
[  225.896999][ T5916] IPVS: starting estimator thread 0...
[  225.902078][  T971] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[  225.982583][T10547] IPVS: using max 44 ests per chain, 105600 per kthread
[  226.029142][T10555] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  226.034801][T10555] syzkaller0: entered promiscuous mode
[  226.036498][T10555] syzkaller0: entered allmulticast mode
[  226.055271][  T971] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  226.056452][T10555] tipc: Resetting bearer <eth:syzkaller0>
[  226.058582][  T971] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.062270][  T971] usb 4-1: config 0 descriptor??
[  226.072799][  T971] cp210x 4-1:0.0: cp210x converter detected
[  226.075768][T10554] tipc: Resetting bearer <eth:syzkaller0>
[  226.096617][T10554] tipc: Disabling bearer <eth:syzkaller0>
[  226.229754][T10572] netlink: 'syz.1.1435': attribute type 1 has an invalid length.
[  226.246712][   T24] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  226.258401][T10572] 8021q: adding VLAN 0 to HW filter on device bond1
[  226.290889][T10572] bond1: (slave bridge2): making interface the new active one
[  226.295689][T10572] bond1: (slave bridge2): Enslaving as an active interface with an up link
[  226.309963][T10572] bond1: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  226.428746][   T24] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  226.431525][   T24] usb 5-1: config 0 has no interface number 0
[  226.438065][   T24] usb 5-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  226.440851][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.446194][   T24] usb 5-1: Product: syz
[  226.447723][   T24] usb 5-1: Manufacturer: syz
[  226.449582][   T24] usb 5-1: SerialNumber: syz
[  226.456403][   T24] usb 5-1: config 0 descriptor??
[  226.490848][  T971] usb 4-1: cp210x converter now attached to ttyUSB0
[  226.664779][   T24] usb 5-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  226.674057][   T24] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  226.678198][   T24] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  226.680307][ T5916] usb 4-1: USB disconnect, device number 13
[  226.681348][   T24] usb 5-1: media controller created
[  226.694621][ T5916] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  226.696737][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  226.713274][ T5916] cp210x 4-1:0.0: device disconnected
[  226.866295][   T24] i2c i2c-2: ec100: i2c rd failed=-71 reg=33
[  226.881879][ T2313] tipc: Node number set to 11578026
[  226.908778][   T24] usb 5-1: USB disconnect, device number 10
[  228.186730][T10706] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1450'.
[  228.191547][T10706] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1450'.
[  228.423805][T10718] loop1: detected capacity change from 0 to 2048
[  228.445456][ T6019] Dev loop1: RDB in block 1 has bad checksum
[  228.454498][T10718] Dev loop1: RDB in block 1 has bad checksum
[  229.626248][T10777] loop1: detected capacity change from 0 to 40427
[  229.630166][T10777] F2FS-fs (loop1): build fault injection rate: 771
[  229.636377][T10777] F2FS-fs (loop1): invalid crc value
[  229.718522][T10777] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  229.728604][T10777] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  229.770337][T10777] syz.1.1471: attempt to access beyond end of device
[  229.770337][T10777] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  229.790022][ T5848] syz-executor: attempt to access beyond end of device
[  229.790022][ T5848] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  229.797262][ T5848] CPU: 0 UID: 0 PID: 5848 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  229.797277][ T5848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  229.797286][ T5848] Call Trace:
[  229.797291][ T5848]  <TASK>
[  229.797297][ T5848]  dump_stack_lvl+0x189/0x250
[  229.797322][ T5848]  ? __pfx_dump_stack_lvl+0x10/0x10
[  229.797337][ T5848]  ? __pfx_queue_work_on+0x10/0x10
[  229.797351][ T5848]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  229.797390][ T5848]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  229.797412][ T5848]  f2fs_handle_critical_error+0x37c/0x540
[  229.797427][ T5848]  f2fs_write_end_io+0x886/0xb60
[  229.797445][ T5848]  __submit_merged_bio+0x27a/0x6a0
[  229.797459][ T5848]  __submit_merged_write_cond+0x255/0x530
[  229.797473][ T5848]  f2fs_write_data_pages+0x261d/0x3000
[  229.797501][ T5848]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  229.797536][ T5848]  ? __kernel_text_address+0xd/0x40
[  229.797546][ T5848]  ? unwind_get_return_address+0x4d/0x90
[  229.797555][ T5848]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  229.797574][ T5848]  ? __pfx_stack_trace_save+0x10/0x10
[  229.797588][ T5848]  ? __lock_acquire+0xab9/0xd20
[  229.797607][ T5848]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  229.797619][ T5848]  do_writepages+0x32e/0x550
[  229.797636][ T5848]  ? do_raw_spin_unlock+0x4d/0x240
[  229.797648][ T5848]  filemap_fdatawrite+0x199/0x240
[  229.797659][ T5848]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  229.797728][ T5848]  ? do_raw_spin_unlock+0x4d/0x240
[  229.797741][ T5848]  f2fs_sync_dirty_inodes+0x31f/0x830
[  229.797757][ T5848]  f2fs_write_checkpoint+0x95a/0x1df0
[  229.797778][ T5848]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  229.797808][ T5848]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  229.797815][ T5848]  ? kfree+0x18e/0x440
[  229.797826][ T5848]  ? kill_f2fs_super+0x298/0x6c0
[  229.797837][ T5848]  kill_f2fs_super+0x2c3/0x6c0
[  229.797848][ T5848]  ? __pfx_kill_f2fs_super+0x10/0x10
[  229.797854][ T5848]  ? radix_tree_delete_item+0x2b6/0x400
[  229.797868][ T5848]  ? shrinker_free+0x2ce/0x3e0
[  229.797891][ T5848]  deactivate_locked_super+0xbc/0x130
[  229.797906][ T5848]  cleanup_mnt+0x425/0x4c0
[  229.797918][ T5848]  ? lockdep_hardirqs_on+0x9c/0x150
[  229.797935][ T5848]  task_work_run+0x1d4/0x260
[  229.797955][ T5848]  ? __pfx_task_work_run+0x10/0x10
[  229.797964][ T5848]  ? __x64_sys_umount+0x122/0x160
[  229.797977][ T5848]  ? exit_to_user_mode_loop+0x40/0x110
[  229.797989][ T5848]  exit_to_user_mode_loop+0xec/0x110
[  229.798000][ T5848]  do_syscall_64+0x2bd/0x3b0
[  229.798010][ T5848]  ? lockdep_hardirqs_on+0x9c/0x150
[  229.798019][ T5848]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.798027][ T5848]  ? exc_page_fault+0x9f/0xf0
[  229.798038][ T5848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.798045][ T5848] RIP: 0033:0x7f387f78ff17
[  229.798053][ T5848] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  229.798060][ T5848] RSP: 002b:00007ffeb92dc668 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  229.798070][ T5848] RAX: 0000000000000000 RBX: 00007f387f811c05 RCX: 00007f387f78ff17
[  229.798075][ T5848] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeb92dc720
[  229.798080][ T5848] RBP: 00007ffeb92dc720 R08: 0000000000000000 R09: 0000000000000000
[  229.798085][ T5848] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeb92dd7b0
[  229.798090][ T5848] R13: 00007f387f811c05 R14: 0000000000038124 R15: 00007ffeb92dd7f0
[  229.798104][ T5848]  </TASK>
[  229.799544][ T5848] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  229.952267][ T5916] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  230.116348][ T5916] usb 4-1: config 0 has no interfaces?
[  230.120938][ T5916] usb 4-1: New USB device found, idVendor=8516, idProduct=3071, bcdDevice=22.2e
[  230.129373][ T5916] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.137461][ T5916] usb 4-1: Product: syz
[  230.138980][ T5916] usb 4-1: Manufacturer: syz
[  230.142061][ T5916] usb 4-1: SerialNumber: syz
[  230.163220][ T5916] usb 4-1: config 0 descriptor??
[  230.376889][ T5916] usb 4-1: USB disconnect, device number 14
[  230.660627][T10861] netlink: 'syz.1.1496': attribute type 1 has an invalid length.
[  230.736153][T10867] loop1: detected capacity change from 0 to 2048
[  230.765653][T10871] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  230.811293][T10871] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  230.817040][T10871] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4)
[  230.832890][T10871] Remounting filesystem read-only
[  230.857240][ T5848] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer
[  231.055826][T10901] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  231.058494][T10901] IPv6: NLM_F_CREATE should be set when creating new route
[  231.060917][T10901] IPv6: NLM_F_CREATE should be set when creating new route
[  231.206888][T10914] loop4: detected capacity change from 0 to 256
[  231.212636][T10914] exfat: Deprecated parameter 'namecase'
[  231.218077][T10914] exfat: Deprecated parameter 'utf8'
[  231.233059][T10914] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d)
[  231.477687][T10927] loop4: detected capacity change from 0 to 128
[  231.663927][T10930] syz.4.1512: attempt to access beyond end of device
[  231.663927][T10930] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[  231.717068][T10930] syz.4.1512: attempt to access beyond end of device
[  231.717068][T10930] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[  231.745208][T10930] syz.4.1512: attempt to access beyond end of device
[  231.745208][T10930] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[  232.290026][T10947] loop4: detected capacity change from 0 to 256
[  232.304251][T10947] exfat: Deprecated parameter 'utf8'
[  232.320247][T10947] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  232.785859][T10973] loop1: detected capacity change from 0 to 64
[  233.305365][T10993] netlink: 'syz.3.1527': attribute type 4 has an invalid length.
[  233.308426][T10993] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1527'.
[  233.319313][T10993] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  233.391934][ T5916] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  233.426874][T10999] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1529'.
[  233.581898][ T5916] usb 2-1: Using ep0 maxpacket: 32
[  233.590664][ T5916] usb 2-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  233.595946][ T5916] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.613191][ T5916] usb 2-1: config 0 descriptor??
[  233.942171][T11010] 9pnet_fd: Insufficient options for proto=fd
[  233.949743][T11010] loop4: detected capacity change from 0 to 16
[  233.954452][T11010] erofs: Unknown parameter 'K،jxIE'
[  233.995087][ T5916] gspca_main: sq930x-2.14.0 probing 041e:403c
[  234.615895][ T5916] gspca_sq930x: ucbus_write failed -71
[  234.624274][ T5916] sq930x 2-1:0.0: probe with driver sq930x failed with error -71
[  234.635012][ T5916] usb 2-1: USB disconnect, device number 32
[  234.772995][T11031] loop4: detected capacity change from 0 to 256
[  234.792933][T11031] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  234.843174][T11031] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010364, chksum : 0x44009a1b, utbl_chksum : 0xe619d30d)
[  236.110747][T11043] loop4: detected capacity change from 0 to 32768
[  236.117475][T11043] btrfs: Deprecated parameter 'usebackuproot'
[  236.119424][T11043] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  236.131924][T11043] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1536 (11043)
[  236.151699][T11043] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  236.176488][T11043] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  236.179150][T11043] BTRFS info (device loop4): using free-space-tree
[  236.253033][T11043] BTRFS info (device loop4): rebuilding free space tree
[  236.640797][ T8655] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  237.768862][T11113] bridge0: entered promiscuous mode
[  237.771016][T11113] macvtap1: entered allmulticast mode
[  237.777917][T11113] bridge0: entered allmulticast mode
[  237.780730][T11113] bridge0: port 3(macvtap1) entered blocking state
[  237.783136][T11113] bridge0: port 3(macvtap1) entered disabled state
[  237.787518][T11113] bridge0: left allmulticast mode
[  237.789095][T11113] bridge0: left promiscuous mode
[  342.991618][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  342.993946][    C1] rcu: 	0-...!: (0 ticks this GP) idle=549c/1/0x4000000000000000 softirq=48938/48938 fqs=0
[  343.000028][    C1] rcu: 	(detected by 1, t=10506 jiffies, g=40953, q=304 ncpus=2)
[  343.002935][    C1] Sending NMI from CPU 1 to CPUs 0:
[  343.003019][    C0] NMI backtrace for cpu 0
[  343.003037][    C0] CPU: 0 UID: 0 PID: 11127 Comm: syz.3.1553 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  343.003059][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  343.003070][    C0] RIP: 0010:rcu_is_watching+0x55/0xb0
[  343.003116][    C0] Code: ed bd 8d 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 1c b7 7c 00 48 c7 c3 98 6f a1 92 49 03 1e 48 89 d8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 34 8b 03 65 ff 0d 49 e2 f9 10 74 11 83 e0
[  343.003124][    C0] RSP: 0018:ffffc90000007bb0 EFLAGS: 00000806
[  343.003133][    C0] RAX: 1ffff110096065f3 RBX: ffff88804b032f98 RCX: 5b86eec9d2751600
[  343.003138][    C0] RDX: 0000000000000000 RSI: ffffffff8be333e0 RDI: ffffffff8be333a0
[  343.003144][    C0] RBP: ffffffff899a6978 R08: 0000000000000000 R09: 0000000000000000
[  343.003149][    C0] R10: dffffc0000000000 R11: ffffed100549f05e R12: 0000000000000002
[  343.003155][    C0] R13: ffffffff8e139ee0 R14: ffffffff8dbded10 R15: dffffc0000000000
[  343.003163][    C0] FS:  00007fc32ba5b6c0(0000) GS:ffff8880b861c000(0000) knlGS:0000000000000000
[  343.003173][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  343.003180][    C0] CR2: 0000200000000040 CR3: 000000010bc82000 CR4: 00000000000006f0
[  343.003211][    C0] Call Trace:
[  343.003218][    C0]  <IRQ>
[  343.003224][    C0]  lock_acquire+0x5f/0x360
[  343.003259][    C0]  ? do_raw_spin_unlock+0x4d/0x240
[  343.003277][    C0]  ? advance_sched+0x9f8/0xc90
[  343.003286][    C0]  advance_sched+0xa14/0xc90
[  343.003293][    C0]  ? advance_sched+0x9f8/0xc90
[  343.003302][    C0]  ? __pfx_advance_sched+0x10/0x10
[  343.003309][    C0]  __hrtimer_run_queues+0x52c/0xc60
[  343.003322][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  343.003337][    C0]  hrtimer_interrupt+0x45b/0xaa0
[  343.003358][    C0]  __sysvec_apic_timer_interrupt+0x10b/0x410
[  343.003368][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  343.003381][    C0]  </IRQ>
[  343.003384][    C0]  <TASK>
[  343.003387][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  343.003396][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
[  343.003411][    C0] Code: 74 05 e8 8b 76 4b f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> f3 1d 14 f6 65 8b 05 6c 61 24 07 85 c0 74 40 48 c7 04 24 0e 36
[  343.003419][    C0] RSP: 0018:ffffc900029afb60 EFLAGS: 00000206
[  343.003430][    C0] RAX: 5b86eec9d2751600 RBX: 0000000000000a06 RCX: 5b86eec9d2751600
[  343.003437][    C0] RDX: 0000000000000007 RSI: ffffffff8d9b6dc6 RDI: 0000000000000001
[  343.003445][    C0] RBP: ffffc900029afbf0 R08: ffffffff8fa37e37 R09: 1ffffffff1f46fc6
[  343.003452][    C0] R10: dffffc0000000000 R11: fffffbfff1f46fc7 R12: dffffc0000000000
[  343.003460][    C0] R13: ffff88804b027a80 R14: ffff88804b027a80 R15: 1ffff92000535f6c
[  343.003471][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  343.003490][    C0]  clock_was_set+0x63b/0x7c0
[  343.003513][    C0]  ? __pfx_clock_was_set+0x10/0x10
[  343.003529][    C0]  ? do_settimeofday64+0x2df/0x630
[  343.003542][    C0]  ? timekeeping_update_from_shadow+0x2df/0x380
[  343.003556][    C0]  do_settimeofday64+0x41d/0x630
[  343.003571][    C0]  ? __pfx_do_settimeofday64+0x10/0x10
[  343.003586][    C0]  ? joycon_calc_imu_cal_divisors+0x6bd/0x910
[  343.003598][    C0]  ? bpf_lsm_settime+0x9/0x20
[  343.003614][    C0]  ? security_settime64+0x76/0x290
[  343.003636][    C0]  ? do_sys_settimeofday64+0x163/0x260
[  343.003652][    C0]  __x64_sys_clock_settime+0x22c/0x280
[  343.003665][    C0]  ? __pfx___x64_sys_clock_settime+0x10/0x10
[  343.003678][    C0]  ? rcu_is_watching+0x15/0xb0
[  343.003687][    C0]  ? do_syscall_64+0xbe/0x3b0
[  343.003701][    C0]  do_syscall_64+0xfa/0x3b0
[  343.003712][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  343.003724][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.003734][    C0]  ? exc_page_fault+0x9f/0xf0
[  343.003746][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.003757][    C0] RIP: 0033:0x7fc32ab8ebe9
[  343.003770][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.003780][    C0] RSP: 002b:00007fc32ba5b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e3
[  343.003791][    C0] RAX: ffffffffffffffda RBX: 00007fc32adb5fa0 RCX: 00007fc32ab8ebe9
[  343.003797][    C0] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000000
[  343.003802][    C0] RBP: 00007fc32ac11e19 R08: 0000000000000000 R09: 0000000000000000
[  343.003809][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.003814][    C0] R13: 00007fc32adb6038 R14: 00007fc32adb5fa0 R15: 00007ffc870f3cb8
[  343.003825][    C0]  </TASK>
[  343.003979][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10505 jiffies! g40953 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  343.171889][    C1] rcu: 	Possible timer handling issue on cpu=0 timer-softirq=14160
[  343.174322][    C1] rcu: rcu_preempt kthread starved for 10506 jiffies! g40953 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[  343.177791][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  343.180954][    C1] rcu: RCU grace-period kthread stack dump:
[  343.183296][    C1] task:rcu_preempt     state:I stack:27160 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[  343.187430][    C1] Call Trace:
[  343.188705][    C1]  <TASK>
[  343.189838][    C1]  __schedule+0x1798/0x4cc0
[  343.191630][    C1]  ? __lock_acquire+0xab9/0xd20
[  343.193492][    C1]  ? __pfx___schedule+0x10/0x10
[  343.195434][    C1]  ? schedule+0x91/0x360
[  343.197139][    C1]  schedule+0x165/0x360
[  343.198739][    C1]  schedule_timeout+0x12b/0x270
[  343.200696][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  343.202850][    C1]  ? __pfx_process_timeout+0x10/0x10
[  343.204945][    C1]  ? prepare_to_swait_event+0x341/0x380
[  343.207175][    C1]  rcu_gp_fqs_loop+0x301/0x1540
[  343.209149][    C1]  ? __pfx_rcu_gp_init+0x10/0x10
[  343.211170][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  343.213272][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  343.215374][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[  343.217433][    C1]  ? finish_swait+0xcd/0x1f0
[  343.219298][    C1]  rcu_gp_kthread+0x99/0x390
[  343.221105][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  343.223087][    C1]  ? __kthread_parkme+0x7b/0x200
[  343.224960][    C1]  ? __kthread_parkme+0x1a1/0x200
[  343.226910][    C1]  kthread+0x711/0x8a0
[  343.228519][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  343.230476][    C1]  ? __pfx_kthread+0x10/0x10
[  343.232245][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  343.234195][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  343.236203][    C1]  ? __pfx_kthread+0x10/0x10
[  343.237994][    C1]  ret_from_fork+0x3fc/0x770
[  343.239763][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  343.241741][    C1]  ? __switch_to_asm+0x39/0x70
[  343.243653][    C1]  ? __switch_to_asm+0x33/0x70
[  343.245550][    C1]  ? __pfx_kthread+0x10/0x10
[  343.247336][    C1]  ret_from_fork_asm+0x1a/0x30
[  343.249201][    C1]  </TASK>

VM DIAGNOSIS:
13:43:56  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff81adb128 RBX=ffff88804b027bc8 RCX=dffffc0000000000 RDX=ffff88804b027b88
RSI=0000000000000001 RDI=0000000000000020 RBP=ffffc90000007e90 RSP=ffffc90000007d38
R8 =ffffffff8fa37e37 R9 =1ffffffff1f46fc6 R10=dffffc0000000000 R11=fffffbfff1f46fc7
R12=ffff88802a4f8340 R13=0000000000000001 R14=ffff88804b027a80 R15=0000000000000001
RIP=ffffffff81bfafd8 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fc32ba5b6c0 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000000040 CR3=000000010bc82000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fc32ad87498 00007fc32ad87470 XMM03=00007fc32ad874a8 00007fc32ad874a0
XMM04=00007fc32b8ed100 00007fc32ad87460 XMM05=00007fc32ad87478 00007fc32ad874c0
XMM06=00007fc32ad874b8 00007fc32ad874b0 XMM07=00007fc32ad874a8 00007fc32ad874a0
XMM08=0000000000000000 00007fc32ac12ee7 XMM09=0000000000000000 00007fc32ac12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000034 RBX=0000000000000034 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900001e02b0
R8 =ffff8881060f0237 R9 =1ffff11020c1e046 R10=dffffc0000000000 R11=ffffffff854efeb0
R12=dffffc0000000000 R13=ffffffff99af9925 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854eff2c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c29fffb CR3=000000010c8ee000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000001 XMM01=0000000000000015 000000000003bf12
XMM02=06080176d209c4da 80100005c0b00300 XMM03=ffffff0405c08004 0610000100000008
XMM04=0000000000000000 0000000000000000 XMM05=0000555559c2cf2c 0000555559c2ce20
XMM06=0000000000000000 0000000000000000 XMM07=030ef3acd0801000 0180030fffffffff
XMM08=01ffffffffffffff ffe1080780030fff XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
