last executing test programs:

23.940420112s ago: executing program 1 (id=1247):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'veth1_virt_wifi\x00'}}, 0x1e)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
close(r1)

23.829585243s ago: executing program 1 (id=1248):
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f00000000c0)={[{@mb_optimize_scan}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x4}}]}, 0x1, 0x50f, &(0x7f0000000140)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x124)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file2\x00', 0x187842, 0x0)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
ftruncate(r2, 0x2007ffc)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000680)={0x3920e, r0, 0x7, 0x1, 0x5, 0x53000000})

23.549861335s ago: executing program 1 (id=1250):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xf, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xf, 0x63, 0xa, 0xff00}, [@call={0x55}, @exit, @map_fd, @jmp]}, &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x8, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)

23.411454492s ago: executing program 1 (id=1252):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f00000002c0)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x18)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
r1 = open(&(0x7f00000003c0)='.\x00', 0x100, 0x97)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)

23.261557306s ago: executing program 1 (id=1254):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448d4, &(0x7f0000000400)={0xffffffffffffffff, 0x200, "000002", 0xe, 0xff})

22.927440689s ago: executing program 1 (id=1259):
prctl$PR_GET_UNALIGN(0x5, 0x0)

22.616101192s ago: executing program 32 (id=1259):
prctl$PR_GET_UNALIGN(0x5, 0x0)

14.74035603s ago: executing program 2 (id=1316):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfffffffd)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x3a, &(0x7f0000000280)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @broadcast, {[@timestamp={0x44, 0x4, 0x4e, 0x0, 0x7}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x79, 0x3, 0x0, 0x4}}}}}}, 0x0)

14.651033243s ago: executing program 2 (id=1318):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x16, 0x21, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b80a000500000000", &(0x7f0000000300)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

14.590626643s ago: executing program 2 (id=1321):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f00000005c0)={[{@errors_remount}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@barrier}]}, 0x1, 0x50c, &(0x7f0000001000)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLEaGVEHsEqRsSN4pix1HsLJvQQ3rmikQlTvTIH8C5Jw7cuCC4cSkHJH5EoAaJg9GMJ6mb2o3VJHYUfz7SaObNm/r7fXH8Xuc59gtgZF2PiP2ImIiITyNiNjufy7b4qL0l1z05uLdyeHBvJRet1if/zKX1ybno+DeJa9ljFiPihw8jfpJ7Pm5jd29juVqtbGfl+WZta76xu3drvba8VlmrbJbLS4tLCx/cfr98bm19qzaRHX318R/2v/WzJK2Z7ExnO85Tu+mF4ziJ8Yj4/kUEG4KxrD0Tw06El5KPiNcj4u309T8bY+mzCQBcZa3WbLRmO8sAwFWXT+fAcvlSNhcwE/l8qdSew3sjpvPVeqN58259Z3O1PVc2F4X83fVqZSGbK5yLQi4pL6bHT8vlE+XbEfFaRPxiciotl1bq1dVh/scHAEbYtRPj/38m2+M/AHDFFYedAAAwcD3G//1B5wEADI77fwAYPcZ/ABg97fF/athpAAAD5P4fAEaP8R8ARsoPPv442VqH2fdfr362u7NR/+zWaqWxUartrJRW6ttbpbV6fS39zp7aaY9Xrde3Ft+Lnc/nvr3VaM43dvfu1Oo7m8076fd636kU0qt8sgAAhum1tx79OZeMyB9OpVt0rOVQGGpmwEXLDzsBYGjGhp0AMDRW+4LRdYZ7fNMDcEV0WaL3GcVuHxBqtVqti0sJuGA3vmT+H0ZVx/y/vwKGEWP+H0aX+X8YXa1Wrt81/6PfCwGAy80cP9Dj/f/Xs/1vsjcHfrx68ooHF5kVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXG5H6/+WsrXAZyKfL5UiXomIuSjk7q5XKwsR8WpE/GmyMJmUF4ecMwBwVvm/5bL1v27MvjvzTNWb144PJyLip7/65JefLzeb23+MmMj9a/LofPNBdr48+OwBgNMdjdPpvuNG/snBvZWjbZD5/P27EVFsxz88mIjD4/jjMZ7ui1GIiOl/57JyW65j7uIs9u9HxBe7tT8XM+kcSHvl05Pxk9ivDDR+/pn4+bSuvU9+Fl84h1xg1DxK+p+Pur3+8nE93Xd//RfTHurssv4veaiVw7QPfBr/qP8b69H/Xe83xnu/+177aOr5uvsRXx6POIp92NH/HMXP9Yj/bp/x//KVN9/uVdf6dcSN6B6/M9Z8s7Y139jdu7VeW16rrFU2y+WlxaWFD26/X55P56jne48G//jw5qu96pL2T/eIXzyl/V/vs/0P//fpj772gvjffKdb/Hy88YL4yZj4jT7jL0//ttirLom/2qP9pz3/N/uM//ive88tGw4ADE9jd29juVqtbI/kQfR38e+zH9alyHmkD5Jn4RKk0fXgO4OKNRHdq37+TvvXdDKi8xe71XqpWL16jPOYdQMug+MXfUT8d9jJAAAAAAAAAAAAAAAAXQ3iE0vDbiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABX1/8DAAD//9RMyv0=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc4}})
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

14.5172086s ago: executing program 2 (id=1323):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4080, &(0x7f0000000540)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRESDEC], 0x2, 0xc36, &(0x7f0000002540)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000001c40)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x206e)

14.32976895s ago: executing program 2 (id=1326):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000001100000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x3a)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r0}, 0x11)

14.180745806s ago: executing program 2 (id=1327):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
syz_read_part_table(0x624, &(0x7f0000000000)="$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")

14.012842493s ago: executing program 33 (id=1327):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
syz_read_part_table(0x624, &(0x7f0000000000)="$eJzs1D1oXWUYB/D/e+53TU0RB1HRDM4d7FKH0BT8oDg0KDq4OLmJQ8HBQe4NKdhJEQRx0KmgOFgEdVJ0kFQcxDqJk0hwF0SXwpFzzj3JdXBKsaT8flzu+/E870dynnPDsTbumtJ+WusPfdJ06/k8WQyT0XL+t8k0i6Su67qb2Eie+/iZx599epJ31/r9NuZtd1wyS7+25OyLbWdweG69/uiNDGdZLO779KfrgyZWDqPb5w6u1S+bZvD+1V9Lspq36vu+80ZOtO3JI/1jOBaube6t71b1JKPNaV9wj5VFG9tvanVeSjs5XVl05uski1ty/qAvyFLy81Ov7z9y42xzXHVlNak/6vf2EjvLUfselYNynh+kjjJ4JXd3s90btHO411bz9XlZuyW356ia57N7+dL4m2G2+l/KUrVNlSrzt0d/1/XOskhu1tPk4Y2cqNq6mdzWmwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHeaYZLxyvjMLHngrWorVUl+7KYy62I7SQZJfijL5HcmRz7/2ube+u7lS7NMlpuOxqOML/7xwcnT02XKODmVNOGq/bT3mD7fxzjOuuc/ypuvbf416qbW0j3t3PPLt7M+78/xdH7vq+1wkfSlkc9Wtirn2mpOv7zRFehd/z5T0QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAne2JJy9sbJ+vJklKmSapTl3dayOL9ruuB7n/qxc+evm789PrLyUXJ18kuZkLpUq9ss/2pGu/rDLJg8npYTMaZ/9K8uF7TX9wkFuSqq7n/+efyX/4JwAA//9tF2AB")

3.681363203s ago: executing program 4 (id=1428):
syz_io_uring_setup(0x27b, &(0x7f0000000540)={0x0, 0x3bce, 0x10100, 0x3, 0x313}, &(0x7f0000000240)=<r0=>0x0, &(0x7f0000000200)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x40, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0, 0x40000103})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r3, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x40000)
r4 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
keyctl$KEYCTL_PKEY_ENCRYPT(0x19, &(0x7f0000000040)={r4}, &(0x7f0000000080)={'enc=', 'oaep', ' hash=', {'sha384-ssse3\x00'}}, 0x0, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000740)='./file0\x00', 0x0, 0x0)
link(0x0, &(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
ioctl$TIOCSERGETLSR(0xffffffffffffffff, 0x5459, &(0x7f0000000400))
ioctl$FS_IOC_GETFSLABEL(r5, 0x400452c9, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
mknod$loop(&(0x7f0000000340)='./file0\x00', 0x2480, 0x1)
mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x410040, 0x0)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(0xffffffffffffffff, 0x118, 0x1, &(0x7f0000000200)=0x368, 0x4)

3.369420438s ago: executing program 4 (id=1434):
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="120000000c00000004000000b47c"], 0x50)

3.280791917s ago: executing program 4 (id=1436):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/vlan/config\x00')
preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000040)=""/57, 0x39}], 0x1, 0x47, 0x4)

3.280578206s ago: executing program 4 (id=1437):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file0\x00', 0x0, &(0x7f00000020c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000280)='binfmt_misc\x00', 0x800, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/../file0\x00')

2.349631249s ago: executing program 4 (id=1442):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x1000000)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = syz_io_uring_setup(0xb, &(0x7f00000002c0)={0x0, 0x200002f, 0x800, 0x1, 0x100020b}, &(0x7f0000000040)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0xc000000, &(0x7f0000000000)=[{0x0}], 0x1, 0x12})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)

2.03720929s ago: executing program 4 (id=1444):
r0 = socket$kcm(0x10, 0x3, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001900599c6d0eab070004000523"], 0xfe33)

1.558856505s ago: executing program 34 (id=1444):
r0 = socket$kcm(0x10, 0x3, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001900599c6d0eab070004000523"], 0xfe33)

561.642757ms ago: executing program 0 (id=1458):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x5}, 0xffffffff}, 0x20)

561.551117ms ago: executing program 3 (id=1459):
r0 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000885}, 0x40009080)

561.404106ms ago: executing program 0 (id=1460):
syz_mount_image$exfat(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000001780)=ANY=[@ANYBLOB='errors=continue,namecase=1,iocharset=none,errors=continue,fmask=00000000000000000000011,iocharset=cp950,gid=', @ANYRESHEX=0x0, @ANYBLOB="0002440000e55c55afe3461fa77fcb64aabc35b21ddae7ecc2", @ANYRESHEX=0x0, @ANYBLOB=',umask=00000000000000000127435,gid=', @ANYRES64, @ANYBLOB=',\x00'], 0x5, 0x1510, &(0x7f0000000240)="$eJzs3Am4TlX7MPD7Xmvt45D0dJLhsNa6N08yLCdJMiTJkCRJkmRKSDrJKwmJQ6akQxKS4ZAMh5AMJ0465nkekyTpJEmmTMn6rlN83t7qe//v/+17/a//uX/Xta9n3c/a99prP/czrL0N33UZWrNxrWoNiQj+LfjrQxIAxALAQAC4DgACACgXVy4uqz+nxKR/7yDsr/VI6tWeAbuauP7ZG9c/e+P6Z29c/+yN65+9cf2zN65/9sb1Zyw72zy94PW8Zd+N7/9nZ/z7/79IZumxX60tfWPXfyGF65+9cf3/1wr+Kztx/bM3rn/2xvXP3rj+2UGOP+3h+mdvXH/GsrOrff+Zt6u7Xe33H2OMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4yx7OGsv0IBwOX21Z4XY4wxxhhjjDHG/jo+x9WeAWOMMcYYY4wxxv7/QxAgQUEAMZADYiEn5AIBANdCHrgOInA9xMENkBduhHyQHwpAQYiHQlAYNBiwQBBCESgKUbgJisHNUBxKQEkoBQ5KQwLcAmXgVigLt0E5uB3Kwx1QASpCJagMd0IVuAuqwt1QDe6B6lADakItuBdqw31QB+6HuvAA1IMHoT48BA3gYWgIj0AjeBQaw2PQBB6HptAMmkMLaPnfyn8JesDL0BN6QRL0hj7wCvSFftAfBsBAeBUGwWswGF6HZBgCQ+ENGAZvwnB4C0bASBgFb8NoeAfGwFgYB+MhBSbARHgXJsF7MBmmwFSYBqkwHWbA+zATZsFs+ADmwIcwF+bBfFgAafARLIRFkA4fw2L4BDJgCSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVtsB12wE7YBbvhU9gDn8Fe+Bz2wRf/Yv6Zf8jvioCAAgUqVBiDMRiLsZgLc2FuzI15MA9GMIJxGId5MS/mw3xYAAtgPMZjYSyMBg0SEhbBIhjFKBbDYlgci2NJLIkOHSZgApbBW7EslsVyWA7LY3msgBWxIlbGylgFq2BVrIrVsBpWx+pYE2vivXgv9sY6WAfrYl2sh/Uu357ChtgQG2EjbIyNsQk2wabYFJtjc2yJLbEVtsLW2BrbYltsh+2wPbbHREzEDtgBO2JH7ISdsDN2xi7YBbtiN+yGL+UAfBlfxl5YXfTGPtgH+2Jyjv44AAfgqzgIX8PX8HVMxiE4FN/AN/BNHI6ncQSOxFE4CquId3AMjkUS4zEFU3AiTsRJOAkn4xScgtMwFafjDJyBM3EWzsIPcA5+iB/iPJyHCzAN03AhLsJ0TMfFeAYzcAkuxWW4HFfgclyFq3EVrsV1uBY34AbchJtwC27BbbgNd+AO3IUKAD/Fz/AzTMZ9uA/34348gAfwIB7ETMzEQ3gID+NhPIJH8CgexWN4HE/gcTyFp/A0nsGzeBbP43m8gC/Ef9NoV4k1ySCyKKFEjIgRsSJW5BK5RG6RW+QReURERESciBN5RV6RT+QTBUQBES/iRWFRWBhhBIkwBgBEVERFMVFMFBfFRUlRUjjhRIJIEGVEGVFWlBXlxO2ivLhDVBAVRRtXWVQWVURbV1XcLaqJaqK6qCFqilqilqgtaos6oo6oK+qKeqKeqC8eEg1Eb+yPj4isyjQWQ7CJGIpNRTMhL32DtRLDsbVoI9qKp8RIHIHtRSuXKJ4VHcQY7Cj+Jsbi86KzGI9dxIuiq+gmuouXRA/R2vUUvcRk7C36iGnYV/QT/cUAMRNriA9wTs6a4nWRLIaIoeINsQDfFMPFW2KEGClGibfFaPGOGCPGinFivEgRE8RE8a6YJN4Tk8UUMVVME6liupgh3hczxSwxW3wg5ogPxVwxT8wXC0Sa+EgsFItEuvhYLBafiAyxRCwVy8RysUKsFKvEarFGrBXrxHqxQWwUm8RmsUVsFdvEdrFD7BS7xG7xqdgjPhN7xedin/hC7BdfigPiK3FQfC0yxTfikPhWHBbfiSPie3FU/CCOiePihDgpTokfxWlxRpwV58R58ZO4IH4WF4UXIFEKKaWSgYyROWSszClzyWtkbhlcenWvl3HyBplX3ijzyfyygCwo42UhWVhqaaSVJENZRBaVUXmTLCZvlsVlCVlSlpJOlpYJ8hZZRt4qy8rbZDl5uywv75AVZEVZSVaWd8oq8i4JkV+PUV3WkDVlLXmvrC3vk3Xk/bKufEDWkw/K+vIh2UA+LBvKR2Qj+ahsLB+TTeTjsqlsJpvLFrKlfEK2kk/K1rKNbCufku3k07K9fEYmymdlB+kvvUWel53lC7KLfFF2ld1kd/mzvCi97Cl7SYDeso98RfaV/WR/OUAOlK/KQfI1OVi+LpPlEDlUviGHyTflcPmWHCFHylHybTlaviPHyLFynBwvU+QEOVG+KyfJ9+RkOUVOldNkqpwu+18aabaU/zT/3T/IH/zL0TfJzXKL3Cq3ye1yh9wpd8ndcrfcI/fIvXKv3Cf3yf1yvzwgD8iD8qDMlJnykDwkD8vD8og8Io/Ko/KYPC7PyZPylPxRnpZn5Bl5Tp6X5+WFS68BKFRCSaVUoGJUDhWrcqpc6hqVW12r8qjrVERdr+LUDSqvulHlU/lVAVVQxatCqrDSyiirSIWqiCqqouomvPSGUSVVKeVUaZWgbvlX8lUxdbMqrkr8Jv/y/JL+ZH4tVUvVSrVSrVVr1Va1Ve1UO9VetVeJKlF1UB1UR9VRdVKdVGfVWXVRXVRX1VV1V91VD9VD9VQ9VZJKUn3UK6qv6qf6qwFqoHpVDVKD1GA1WCWrZDVUDVXD1DA1XA1XI9QINUqNUqPVaDVGjVHj1DiVolLURDVRTVKT1GQ1WU1VU1WqSlUz1Aw1U81Us9VsNUfNUXPVXDVfzVdpKk0tVAtVukpXi9VilaGWqCVqmVqmVqgVapVapdaoNWqdWqc2qA0qQ21Wm9VWtVVtV9vVTrVT7Va71R61R+1Ve9U+tU/tV/vVAXVAHVQHVabKVIfUIXVYHVZH1BF1VB1Vx9QxdUKdUKfUKXVanVZn1Vl1Xp1XF9QFdVFdzFr2BSIQgQpUEBPEBLFBbJAryBXkDnIHeYI8QSSIBHFBXJA3uDHIF+QPCgQFg/igUFA40IEJbCAuFT0a3BQUC24OigclgpJBqcAFpYOE4JagTHBrUDa4LSgX3B6UD+4IKgQVg0pB5eDOoEpwV1A1uDuoFtwTVA9qBDWDWsG9Qe3gvqBOcH9QN3ggqBc8GNQPHgoaBA8HDYNHgkbBo0Hj4LGgSfB40DRoFjQPWgQt/9LxvT+d/0nXU/fSSbq37qNf0X11P91fD9AD9at6kH5ND9av62Q9RA/Vb+hh+k09XL+lR+iRepR+W4/W7+gxeqwep8frFD1BT9Tv6kn6PT1ZT9FT9TSdqqfrGfp9PVPP0rP1B3qO/lDP1fP0fL1Ap+mP9EK9SKfrj/Vi/YnO0Ev0Ur1ML9cr9Eq9Sq/Wa/RavU6v1xv0Rr1Jb9Zb9Fa9TW/XO/ROvUvv1p/qPfozvVd/rvfpL/R+/aU+oL/SB/XXOlN/ow/pb/Vh/Z0+or/XR/UP+pg+rk/ok/qU/lGf1mf0WX1On9c/6Qv6Z31R+6zFfdbPu1FGmRgTY2JNrMllcpncJrfJY/KYiImYOBNn8pq8Jp/JZwqYAibexJvCprDJQoZMEVPERE3UFDPFTHFT3JQ0JY0zziSYBFPGlDFlTVlTzpQz5U15U8FUMJVMJXOnudPcZe4yd5u7zT3mHlPD1DC1TC1T29Q2dUwdU9fUNfVMPVPf1DcNTAPT0DQ0jUwj09g0Nk1ME9PUNDXNTXPT0rQ0rUwr09q0Nm1NW9POtDPtTXuTaBJNB9PBdDQdTSfTyXQ2nU0X08V0NV1Nd9Pd9DA9TE/T0ySZJNPH9DF9TV/T3/Q3A81AM8gMMoPNYJNsks1QM9QMM8PMcDPcjDAjzaishap5x4wxY804M96kmBQz0Uw0k8wkM9lMNlPNVJNqUs0MM8PMNDPNbDPbzDFzzFwz18w3802aSTMLzUKTbtLNYrPYZJgMs9QsNcvNcrPSrDSrzWqz1qw162G92Wg2ms1ms9lqtprtZrvZaXaa3Wa32WP2mL1mr9ln9pn9Zr85YA6Yg+agyTSZ5pA5ZA6bw+aIOWKOmqPmmDlmTpgT5pQ5ZU6b0+asOWvOm/yXfi+9ibU5bS57jc1tr7V57HX2H+MCtqCNt4VsYattPpv/N7Gx1ha3JWxJW8o6W9om2Ft+F1ewFW0lW9neaavYu2zV38W17X22jr3f1rUP2Fr23t/E9eyDtr59zDZABLDNbCPbwja2j9km9nHb1DazzW0L284+bdvbZ2yifdZ2sM/9Ll5oF9nVdo1da9fZPfYze9aes4ftd/a8/cn2tL3sQPuqHWRfs4Pt6zbZDvldPMq+bUfbd+wYO9aOs+N/F0+102yqnW5n2PftTDvrd3Ga/cjOsel2rp1n59sFv8RZc0q3H9vF9hObYZfYpXaZXW5X2JV21f+d6zK7wW60m+xu+6ndarfZ7XaH3Wl3/RJnncde+7ndZ7+wh+y39oD9yh60R2ym/eaXOOv8jtjv7VH7gz1mj9sT9qQ9ZX+0p+2ZX84/69xP2p/tRestEBKQJEUBxVAOiqWclIuuodx0LeWh6yhC11Mc3UB56UbKR/mpABWkeCpEhUmTIUtEIRWhohSlm+jyOr0klSJHpSmBbqEydCuVpduoHN1O5ekOqkAVqRJVpjupCt1FVeluqkb3UHWqQTWpFt1Ltek+qkP3U116gOrRg1SfHqIG9DA1pEeoET1KjekxakKPU1NqRs2pBbWkJ6gVPUmtqQ21paeoHT1N7ekZSqRnqQM9Rx3pb9SJnqfO9AJ1oRepK3Wj7vQS9aCXqSf1oiTqTX3oFepL/ag/DaCB9CoNotdoML1OyTSEhtIbNIzepOH0Fo2gkTSK3qbR9A6NobE0jsZTCk2gifQuTaL3aDJNoak0jVJpOs2g92kmzaLZ9AHNoQ9pLs2j+bSA0ugjWkiLKJ0+psX0CWXQElpKy2g5raCVtIpW0xpaS+toPW2gjbSJNtMW2krbaDvtoJ20i3bTp7SHPqO99Dntoy9oP31JB+grOkhfUyZ9Q4foWzpM39ER+t73oh/oGB2nE3SSTtGPdJrO0Fk6R+fpJ7pAP9NF8gQhhiKUoQqDMCbMEcaGOcNc4TVh7vDaME94XRgJrw/jwhvCvOGNYb4wf1ggLBjGh4XCwqEOTWhDCsOwSFg0jIY3hcXCm8PiYYmwZFgqdGHpMCG8JSwT3hqWDW8Ly4W3h+XDO8IKYcXwsQcqh3eGVcK7wqrh3WG18J6welgjrBnWCu8Na4f3hXXC+8O64QNh2fDBsH74UNggfDhsGD4SNgofDRuHj4VNwsfDpmGzsHnYImwZPhG2Cp8MW4dtwrbhU2G78OmwffhMmBg+G3YIn/ul/8FFf96fFPYO+4SvhK+E3t8v50cXRNOiH0UXRhdF06MfRxdHP4lmRJdEl0aXRZdHV0RXRldFV0fXRNdG10XXRzdEN0Y3Rb2vlQMcOuGkUy5wMS6Hi3U5XS53jcvtrnV53HUu4q53ce4Gl9fd6PK5/K6AK+jiXSFX2GlnnHXkQlfEFXVRd5Mr5m52xV0JV9KVcs6VdgmuhWvpWrpW7knX2rVxbd1T7in3tHvaPeOecc+6Du4519H9zXVyz7vO7gX3gnvRdXXdXHf3kuvhJuT59TOZ5Pq4Pq6v6+v6u/5uoBvoBrlBbrAb7JJdshvqhrphbpgb7oa7EW6EG+VGudFutBvjxrhxbpxLcSluopvoJrlJbrKb7Ka6qS7VpboZboab6Wa6KrN+PcpcN9fNd/NdmktzC13WmjHdLXaLXYbLcEvdUrfcLXcr3Uq32q12a91at96tdxvdRrfZbXZb3Va33W13O91Ot9vtdnv8db8O6va5/W6/O+AOuIPua5fpvnGH3LfusPvOHXHfu6PuB3fMHXcn3El3yv3oTrsz7qw75867n9wF97O76LxLiUyITIy8G5kUeS8yOTIlMjUyLZIamR6ZEXk/MjMyKzI78kFkTuTDyNzIvMj8yIJIWuSjyMLIokh65OPI4sgnkYzIksjSyLLI8siKiPeFtoa+iC/qo/4mX8zf7Iv7Er6kL+WdL+0T/C2+jL/Vl/W3+XL+dl/e3+Er+Iq+kn/cN/XNfHPfwrf0T/hW/knf2rfxbf1Tvp1/2rf3z/hE/6zv4J/zHf3ffCf/vO/sX/Bd/Iu+q+/mu/uXfA//su/pe/kk39v38a/4vr6f7+8H+IH+VT/Iv+YH+9d9sh/ih/o3/DD/ph/u3/Ij/Eg/KuZtP/ryJTKM9yl+gp/o3/WT/Ht+sp/ip/ppPtVP9zP8+36mn+Vn+w/8HP+hn+vn+fl+gU/zH/mFfpFP9x/7xf4Tn+GXXL6p7Ff6VX61X+PX+nV+vd/gN/pNfrPf4rf6bX673+F3+l1+t//U7/Gf+b3+c7/Pf+H3+y/9Af+VP+i/9pn+G3/If+sP++/8Ef+9P+p/8Mf8cX/Cn/Sn/I/+tD/jz/pz/rz/yV/wP/uL/G/WGGOMMcb+SyZcaYo/6u/9B8+Jv9u5DwBcu61g5t/3Z60o1+f7td1PxLeLAMCzvbo8cnmrXj0pKenSvhkSgqLzAC7/SVCWGLgSL4G28DQkQhso84fz7ye6nad/Mn70doBcf5cTC1fiK+N/+SfjP/HUqIXlw7Nx/4/x5wEUL3olJydciZdAW5X12AbK/sn4+Vv9k/nn/CoFoPXf5eSGK/GV+SfAk/AcJP5mT8YYY4wxxhhj7Ff9RKVOl68/L/+Nzz+6Po9XV3JywJX4n12fM8YYY4wxxhhj7Op7vlv3Z55ITGzT6V9vVP1vZXHjf2rDe4DLzygA+DcHBPiPn8WW/8ixki99dP6xa/k5H8D/jFL+FY2r/MXEGGOMMcYY+8tdWfT/9nl1tSbEGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xlQ/+J/07sap8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdrX9nwAAAP//geYOMQ==")
mount$nfs(&(0x7f0000000100)='...', 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='./file1\x00', 0x0, 0x20, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)

428.994668ms ago: executing program 3 (id=1461):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10001}, 0x94)

428.854991ms ago: executing program 0 (id=1462):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
unshare(0xa020480)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000001780)={@cgroup=r1, r1, 0x2f, 0x2008, 0x4}, 0x20)

359.119962ms ago: executing program 3 (id=1463):
unshare(0x22020400)
unshare(0x22020600)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)

276.895134ms ago: executing program 0 (id=1464):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x400, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

276.705572ms ago: executing program 0 (id=1465):
socket$key(0xf, 0x3, 0x2)
syz_open_dev$media(&(0x7f0000000140), 0xc, 0x80d00)
r0 = syz_io_uring_setup(0xbdb, &(0x7f0000000640)={0x0, 0x2811, 0x8, 0x3, 0x112b}, &(0x7f0000000dc0)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0x5, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001800)=""/216, 0xd8}, {0x0}], 0x2})
io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0)

273.532728ms ago: executing program 3 (id=1466):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="85000000aa00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x90)

147.290845ms ago: executing program 3 (id=1467):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000021c0)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xf}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_TUPDATE={0x8, 0x4, 0x8}, @TCA_FQ_PIE_TARGET={0x8, 0x3, 0x4}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24008801}, 0x2000400c)

147.063311ms ago: executing program 0 (id=1468):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xbb072000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000040)=@abs, 0x6e)
setrlimit(0x3, &(0x7f0000000000)={0x6d, 0x8000000000000000})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socket$key(0xf, 0x3, 0x2)
r3 = userfaultfd(0x1)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2})
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='attr/prev\x00')
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000200)={@cgroup=r4, 0xffffffffffffffff, 0x2c, 0x2c}, 0x20)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, 0xffffffffffffffff, 0x0)

0s ago: executing program 3 (id=1469):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$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")
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ftruncate(r1, 0x81ff)
syz_usb_control_io$hid(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 got wrong btree node: got
[  124.815393][ T7495]   btree=alloc level=0 seq 98dc7e261 1
[  124.815396][ T7495]   min: POS_MIN
[  124.815400][ T7495]   max: SPOS_MAX
[  124.815403][ T7495]   loop1 btree validate error
[  124.815406][ T7495]   flagging btree alloc lost data
[  124.815410][ T7495]   running recovery pass check_topology (2), currently at recovery_pass_empty (0)
[  124.815414][ T7495]   running recovery pass check_lrus (14), currently at recovery_pass_empty (0)
[  124.815419][ T7495]   running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0)
[  124.815423][ T7495]   running recovery pass check_alloc_info (13), currently at recovery_pass_empty (0)
[  124.815428][ T7495]   ret btree_node_read_err_bad_node
[  124.889078][ T7496] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  124.893782][ T7496] F2FS-fs (loop2): Start checkpoint disabled!
[  124.910481][ T7496] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  124.911806][ T7495] bcachefs (loop1): error reading btree root btree=alloc level=0: btree_node_read_error, fixing
[  124.928954][ T7495] bcachefs (loop1): btree node read error at btree lru level 0/0
[  124.928965][ T7495]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key 0:196608:0 durability: 1 ptr: 0:28:0 gen 0
[  124.928970][ T7495]   loop1 node offset 0/16: incorrect min_key: got POS_MIN should be 0:196608:0
[  124.928975][ T7495]   loop1 btree validate error
[  124.928978][ T7495]   flagging btree lru lost data
[  124.928981][ T7495]   ret btree_node_read_err_bad_node
[  124.946270][  T985] kworker/u10:3: attempt to access beyond end of device
[  124.946270][  T985] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  124.947325][  T985] CPU: 1 UID: 0 PID: 985 Comm: kworker/u10:3 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  124.947336][  T985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  124.947341][  T985] Workqueue: writeback wb_workfn (flush-7:2)
[  124.947355][  T985] Call Trace:
[  124.947358][  T985]  <TASK>
[  124.947362][  T985]  dump_stack_lvl+0x189/0x250
[  124.947375][  T985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.947383][  T985]  ? __pfx_queue_work_on+0x10/0x10
[  124.947391][  T985]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  124.947401][  T985]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  124.947414][  T985]  f2fs_handle_critical_error+0x37c/0x540
[  124.947427][  T985]  f2fs_write_end_io+0x886/0xb60
[  124.947445][  T985]  __submit_merged_bio+0x27a/0x6a0
[  124.947457][  T985]  __submit_merged_write_cond+0x255/0x530
[  124.947469][  T985]  f2fs_write_data_pages+0x261d/0x3000
[  124.947494][  T985]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  124.947510][  T985]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  124.947536][  T985]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  124.947551][  T985]  ? trace_f2fs_writepages+0x7f/0x200
[  124.947560][  T985]  ? f2fs_write_node_pages+0x478/0x6e0
[  124.947571][  T985]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  124.947586][  T985]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  124.947596][  T985]  do_writepages+0x32e/0x550
[  124.947608][  T985]  ? reacquire_held_locks+0x127/0x1d0
[  124.947615][  T985]  ? writeback_sb_inodes+0x384/0x1010
[  124.947628][  T985]  __writeback_single_inode+0x145/0xff0
[  124.947638][  T985]  ? do_raw_spin_unlock+0x4d/0x240
[  124.947672][  T985]  writeback_sb_inodes+0x6c7/0x1010
[  124.947694][  T985]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  124.947722][  T985]  ? rcu_is_watching+0x15/0xb0
[  124.947734][  T985]  wb_writeback+0x43b/0xaf0
[  124.947747][  T985]  ? queue_io+0x371/0x590
[  124.947758][  T985]  ? __pfx_wb_writeback+0x10/0x10
[  124.947771][  T985]  ? _raw_spin_unlock_irq+0x23/0x50
[  124.947782][  T985]  wb_workfn+0x409/0xef0
[  124.947796][  T985]  ? __pfx_wb_workfn+0x10/0x10
[  124.947806][  T985]  ? __lock_acquire+0xab9/0xd20
[  124.947823][  T985]  ? process_scheduled_works+0x9ef/0x17b0
[  124.947833][  T985]  ? _raw_spin_unlock_irq+0x23/0x50
[  124.947840][  T985]  ? process_scheduled_works+0x9ef/0x17b0
[  124.947847][  T985]  ? process_scheduled_works+0x9ef/0x17b0
[  124.947854][  T985]  process_scheduled_works+0xae1/0x17b0
[  124.947875][  T985]  ? __pfx_process_scheduled_works+0x10/0x10
[  124.947896][  T985]  worker_thread+0x8a0/0xda0
[  124.947916][  T985]  kthread+0x711/0x8a0
[  124.947932][  T985]  ? __pfx_worker_thread+0x10/0x10
[  124.947939][  T985]  ? __pfx_kthread+0x10/0x10
[  124.947949][  T985]  ? _raw_spin_unlock_irq+0x23/0x50
[  124.947956][  T985]  ? lockdep_hardirqs_on+0x9c/0x150
[  124.947964][  T985]  ? __pfx_kthread+0x10/0x10
[  124.947973][  T985]  ret_from_fork+0x3fc/0x770
[  124.947983][  T985]  ? __pfx_ret_from_fork+0x10/0x10
[  124.947993][  T985]  ? __switch_to_asm+0x39/0x70
[  124.948002][  T985]  ? __switch_to_asm+0x33/0x70
[  124.948010][  T985]  ? __pfx_kthread+0x10/0x10
[  124.948019][  T985]  ret_from_fork_asm+0x1a/0x30
[  124.948036][  T985]  </TASK>
[  124.948039][  T985] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  124.951532][ T7509] netlink: 16 bytes leftover after parsing attributes in process `syz.0.600'.
[  124.957051][ T7509] bond0: entered promiscuous mode
[  124.957081][ T7509] bond_slave_0: entered promiscuous mode
[  124.957175][ T7509] bond_slave_1: entered promiscuous mode
[  124.961838][ T7509] bond0: left promiscuous mode
[  124.961853][ T7509] bond_slave_0: left promiscuous mode
[  124.961964][ T7509] bond_slave_1: left promiscuous mode
[  125.137157][ T7515] loop0: detected capacity change from 0 to 256
[  125.137610][ T7515] exfat: Deprecated parameter 'utf8'
[  125.141779][ T7515] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  125.241020][ T7495] bcachefs (loop1): error reading btree root btree=lru level=0: btree_node_read_error, fixing
[  125.247050][ T7495] bcachefs (loop1): btree node read error at btree freespace level 0/0
[  125.247059][ T7495]   u64s 11 type btree_ptr_v2 36591746972385279:U64_MAX:U32_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0
[  125.247066][ T7495]   loop1 node offset 0/32 bset u64s 0: incorrect max key SPOS_MAX
[  125.247071][ T7495]   loop1 btree validate error
[  125.247074][ T7495]   flagging btree freespace lost data
[  125.247078][ T7495]   ret btree_node_read_err_bad_node
[  125.267382][ T7495] bcachefs (loop1): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  125.272366][ T7495] bcachefs (loop1): check_topology... done
[  125.280356][ T7523] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  125.284328][ T7495] bcachefs (loop1): accounting_read... done
[  125.289504][ T7495] bcachefs (loop1): alloc_read... done
[  125.292154][ T7495] bcachefs (loop1): snapshots_read... done
[  125.294242][ T7495] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean
[  125.297555][ T7495] bcachefs (loop1): done starting filesystem
[  125.359079][ T7495] bcachefs (loop1): error going rw: -2267
[  125.396139][ T5854] bcachefs (loop1): shutting down
[  125.412054][ T7527] macvlan2: entered allmulticast mode
[  125.414518][ T7527] veth1_vlan: entered allmulticast mode
[  125.415617][ T5854] bcachefs (loop1): shutdown complete
[  125.436804][ T5942] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  125.599918][ T5942] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  125.610194][ T5942] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  125.614319][ T5942] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.632111][ T5942] usb 3-1: config 0 descriptor??
[  125.648156][ T5942] pwc: Askey VC010 type 2 USB webcam detected.
[  126.047888][ T5942] pwc: recv_control_msg error -32 req 02 val 2b00
[  126.052352][ T5942] pwc: recv_control_msg error -32 req 02 val 2700
[  126.056274][ T5942] pwc: recv_control_msg error -32 req 02 val 2c00
[  126.060485][ T5942] pwc: recv_control_msg error -32 req 04 val 1000
[  126.063917][ T5942] pwc: recv_control_msg error -32 req 04 val 1300
[  126.068217][ T5942] pwc: recv_control_msg error -32 req 04 val 1400
[  126.072353][ T5942] pwc: recv_control_msg error -32 req 02 val 2000
[  126.076431][ T5942] pwc: recv_control_msg error -32 req 02 val 2100
[  126.283126][ T5942] pwc: recv_control_msg error -71 req 02 val 2500
[  126.293200][ T5942] pwc: recv_control_msg error -71 req 02 val 2400
[  126.304000][ T5942] pwc: recv_control_msg error -71 req 02 val 2600
[  126.308675][ T5942] pwc: recv_control_msg error -71 req 02 val 2900
[  126.311434][ T5942] pwc: recv_control_msg error -71 req 02 val 2800
[  126.314374][ T5942] pwc: recv_control_msg error -71 req 04 val 1100
[  126.317223][ T5942] pwc: recv_control_msg error -71 req 04 val 1200
[  126.326044][ T5942] pwc: Registered as video103.
[  126.354409][ T5942] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input15
[  126.394734][ T5942] usb 3-1: USB disconnect, device number 14
[  126.649008][ T7541] loop1: detected capacity change from 0 to 2048
[  126.678848][ T7541] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.758319][ T5854] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.589374][ T7572] loop0: detected capacity change from 0 to 512
[  127.603845][ T7572] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  127.613062][ T7572] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=800ec018, mo2=0082]
[  127.639732][ T7572] EXT4-fs (loop0): 1 truncate cleaned up
[  127.643175][ T7572] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.662575][   T33] audit: type=1800 audit(1755053996.326:59): pid=7572 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.626" name="bus" dev="loop0" ino=18 res=0 errno=0
[  127.713101][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.907726][ T7585] loop2: detected capacity change from 0 to 164
[  127.921820][ T7585] ISOFS: unable to read i-node block
[  127.923999][ T7585] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  128.303028][ T7601] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0
[  128.719864][ T7606] process 'syz.2.636' launched './file0' with NULL argv: empty string added
[  129.189163][ T7618] loop1: detected capacity change from 0 to 16
[  129.197225][ T7618] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  129.446550][ T7631] loop1: detected capacity change from 0 to 128
[  129.452789][ T7631] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  129.459216][ T7631] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  129.970761][ T5942] libceph: connect (1)[c::]:6789 error -101
[  129.974824][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  129.981132][ T5942] libceph: connect (1)[c::]:6789 error -101
[  129.983790][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  130.059904][ T7636] loop0: detected capacity change from 0 to 32768
[  130.083184][ T7636] JBD2: Ignoring recovery information on journal
[  130.129689][ T7636] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  130.177407][ T5847] ocfs2: Unmounting device (7,0) on (node local)
[  130.610827][ T5942] libceph: connect (1)[c::]:6789 error -101
[  130.613083][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  130.761547][ T7642] ceph: No mds server is up or the cluster is laggy
[  131.136037][ T7670] loop2: detected capacity change from 0 to 1024
[  131.149648][ T7670] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.154219][ T7670] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.167392][ T7670] EXT4-fs (loop2): stripe (248) is not aligned with cluster size (16), stripe is disabled
[  131.510848][ T7670] EXT4-fs (loop2): can't enable nombcache during remount
[  131.875422][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.349365][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  132.351714][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  133.104924][   T33] audit: type=1326 audit(1755054001.766:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7698 comm="syz.0.676" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  133.118216][   T33] audit: type=1326 audit(1755054001.766:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7698 comm="syz.0.676" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  133.131596][   T33] audit: type=1326 audit(1755054001.796:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7698 comm="syz.0.676" exe="/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  133.141886][   T33] audit: type=1326 audit(1755054001.796:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7698 comm="syz.0.676" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  133.155044][   T33] audit: type=1326 audit(1755054001.796:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7698 comm="syz.0.676" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  133.220713][ T7705] bridge2: entered allmulticast mode
[  133.293122][ T7709] loop2: detected capacity change from 0 to 1764
[  133.316192][ T7709] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  133.328580][ T7708] input: syz1 as /devices/virtual/input/input16
[  133.328634][ T7709] iso9660: Corrupted directory entry in block 2 of inode 1920
[  133.494155][ T7719] warning: `syz.2.687' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  133.751443][ T7723] loop2: detected capacity change from 0 to 40427
[  133.754914][ T7723] F2FS-fs: heap/no_heap options were deprecated
[  133.760113][ T7723] F2FS-fs (loop2): Invalid log sectorsize (131081)
[  133.763059][ T7723] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  133.766873][ T7723] F2FS-fs (loop2): Encrypt feature is off
[  133.816613][ T5942] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  133.966747][ T5942] usb 1-1: Using ep0 maxpacket: 16
[  133.973002][ T5942] usb 1-1: config 0 has an invalid interface number: 34 but max is 0
[  133.980468][ T5942] usb 1-1: config 0 has no interface number 0
[  133.983116][ T5942] usb 1-1: config 0 interface 34 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  133.988136][ T5942] usb 1-1: config 0 interface 34 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  133.992334][ T5942] usb 1-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  133.996748][ T5942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.998993][ T5942] usb 1-1: config 0 descriptor??
[  134.059788][ T7731] loop2: detected capacity change from 0 to 128
[  134.076179][ T7731] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  134.087384][ T7731] ext4 filesystem being mounted at /248/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  134.098943][ T7731] fscrypt (loop2, inode 12): Unsupported encryption flags (0xea)
[  134.125928][ T5845] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  134.181172][ T7734] netlink: 'syz.2.693': attribute type 3 has an invalid length.
[  134.184579][ T7734] netlink: 766 bytes leftover after parsing attributes in process `syz.2.693'.
[  134.667180][ T5942] usb 1-1: USB disconnect, device number 12
[  135.409466][ T7755] loop0: detected capacity change from 0 to 512
[  135.628534][ T7755] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.633071][ T7755] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.684309][ T7755] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  135.689616][ T7755] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  135.693768][ T7755] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.702: Failed to acquire dquot type 1
[  135.758944][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.923667][ T7766] loop0: detected capacity change from 0 to 1024
[  135.981467][ T7766] hfsplus: small dir entry
[  135.981929][ T7768] loop1: detected capacity change from 0 to 512
[  136.030219][ T7768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.035044][ T7768] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.080307][ T7768] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  136.087513][ T7768] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 28
[  136.092338][ T7768] EXT4-fs (loop1): This should not happen!! Data will be lost
[  136.092338][ T7768] 
[  136.096093][ T7768] EXT4-fs (loop1): Total free blocks count 0
[  136.098534][ T7768] EXT4-fs (loop1): Free/Dirty block details
[  136.100972][ T7768] EXT4-fs (loop1): free_blocks=39626
[  136.103032][ T7768] EXT4-fs (loop1): dirty_blocks=2
[  136.104999][ T7768] EXT4-fs (loop1): Block reservation details
[  136.107484][ T7768] EXT4-fs (loop1): i_reserved_data_blocks=2
[  136.131923][   T26] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  136.337649][ T7783] loop2: detected capacity change from 0 to 64
[  137.366400][ T3143] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  137.686555][ T5942] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  137.838455][ T5942] usb 1-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0
[  137.842610][ T5942] usb 1-1: config 0 interface 0 has no altsetting 0
[  137.845590][ T5942] usb 1-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  137.851829][ T5942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.858141][ T5942] usb 1-1: config 0 descriptor??
[  138.186543][ T3143] usb 3-1: Using ep0 maxpacket: 16
[  138.190322][ T3143] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.193977][ T3143] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.205743][ T3143] usb 3-1: config 0 interface 0 has no altsetting 0
[  138.208142][ T3143] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  138.211648][ T3143] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.217090][ T3143] usb 3-1: config 0 descriptor??
[  138.284529][ T5942] magicmouse 0003:05AC:0269.0007: hidraw0: USB HID v10.00 Device [HID 05ac:0269] on usb-dummy_hcd.0-1/input0
[  138.466615][    T9] usb 2-1: new low-speed USB device number 21 using dummy_hcd
[  138.488193][ T5942] usb 1-1: USB disconnect, device number 13
[  138.622303][    T9] usb 2-1: config 32 has 1 interface, different from the descriptor's value: 2
[  138.626423][    T9] usb 2-1: config 32 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  138.631189][    T9] usb 2-1: config 32 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  138.637312][ T3143] hid (null): unknown global tag 0xe
[  138.645489][    T9] usb 2-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  138.649290][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.838111][ T5942] usb 3-1: USB disconnect, device number 15
[  138.862126][    T9] usb 2-1: string descriptor 0 read error: -71
[  138.874954][    T9] usb 2-1: USB disconnect, device number 21
[  139.135599][ T7826] loop0: detected capacity change from 0 to 64
[  139.141426][ T7826] BFS-fs: bfs_fill_super(): Impossible last inode number 63507505 > 513 on loop0
[  139.486984][    T9] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  139.651093][    T9] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  139.658983][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.672197][    T9] usb 1-1: config 0 descriptor??
[  139.690424][   T10] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  139.869821][   T10] usb 2-1: Using ep0 maxpacket: 16
[  139.878935][   T10] usb 2-1: config 0 interface 0 altsetting 253 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  139.888315][   T10] usb 2-1: config 0 interface 0 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  139.893841][   T10] usb 2-1: config 0 interface 0 has no altsetting 0
[  139.913401][   T10] usb 2-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  139.925222][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.942844][   T10] usb 2-1: config 0 descriptor??
[  140.365155][   T10] hid (null): global environment stack underflow
[  140.382419][   T10] uclogic 0003:28BD:0042.0009: interface is invalid, ignoring
[  140.569229][   T10] usb 2-1: USB disconnect, device number 22
[  140.981168][    T9] usb 1-1: Cannot set autoneg
[  140.983405][    T9] MOSCHIP usb-ethernet driver 1-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  141.014359][    T9] usb 1-1: USB disconnect, device number 14
[  141.248039][ T7852] loop2: detected capacity change from 0 to 7
[  141.258383][ T7852] Dev loop2: unable to read RDB block 7
[  141.262538][ T7852]  loop2: unable to read partition table
[  141.265357][ T7852] loop2: partition table beyond EOD, truncated
[  141.269491][ T7852] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5)
[  141.586789][ T7856] loop1: detected capacity change from 0 to 512
[  141.668224][ T7860] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.748'.
[  141.725950][ T7865] netlink: 'syz.2.750': attribute type 3 has an invalid length.
[  141.730240][ T7865] netlink: 'syz.2.750': attribute type 1 has an invalid length.
[  141.732769][ T7865] netlink: 220 bytes leftover after parsing attributes in process `syz.2.750'.
[  142.049627][ T5942] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  142.266457][ T5942] usb 1-1: Using ep0 maxpacket: 32
[  142.426526][ T5942] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  142.434599][ T5942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.441326][ T5942] usb 1-1: config 0 descriptor??
[  142.630575][ T7882] loop1: detected capacity change from 0 to 512
[  142.654253][ T5942] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  142.672239][ T5942] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  142.687963][ T5942] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  142.698313][ T5942] usb 1-1: media controller created
[  142.736129][ T5942] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  142.853983][ T5942] az6027: usb out operation failed. (-71)
[  142.866551][ T5942] az6027: usb out operation failed. (-71)
[  142.868882][ T5942] stb0899_attach: Driver disabled by Kconfig
[  142.871388][ T5942] az6027: no front-end attached
[  142.871388][ T5942] 
[  142.883726][ T5942] az6027: usb out operation failed. (-71)
[  142.886047][ T5942] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  142.901913][ T5942] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input17
[  142.922445][ T5942] dvb-usb: schedule remote query interval to 400 msecs.
[  143.016483][ T5942] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  143.021460][ T5942] usb 1-1: USB disconnect, device number 15
[  143.099035][ T5942] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  143.152678][ T7907] loop1: detected capacity change from 0 to 256
[  143.171924][ T7907] MINIX-fs: mounting file system with errors, running fsck is recommended
[  143.182263][ T7907] MINIX-fs warning: remounting fs with errors, running fsck is recommended
[  143.714689][   T60] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  144.122278][ T7930] loop1: detected capacity change from 0 to 256
[  144.137543][ T7930] exfat: Deprecated parameter 'utf8'
[  144.160478][ T7930] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  144.227543][   T60] usb 3-1: Using ep0 maxpacket: 8
[  144.231500][   T60] usb 3-1: config index 0 descriptor too short (expected 30, got 18)
[  144.239581][   T60] usb 3-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  144.243747][   T60] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.266504][   T60] usb 3-1: Product: syz
[  144.268415][   T60] usb 3-1: Manufacturer: syz
[  144.276481][   T60] usb 3-1: SerialNumber: syz
[  144.283286][   T60] usb 3-1: config 0 descriptor??
[  144.298184][   T60] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  144.301591][   T60] usb 3-1: setting power ON
[  144.307280][   T60] dvb-usb: bulk message failed: -22 (2/0)
[  144.313634][   T60] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  144.320065][   T60] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  144.325725][   T60] usb 3-1: media controller created
[  144.395449][   T60] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  144.464913][   T60] usb 3-1: selecting invalid altsetting 6
[  144.468044][   T60] usb 3-1: digital interface selection failed (-22)
[  144.471258][   T60] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  144.479618][   T60] usb 3-1: setting power OFF
[  144.483064][   T60] dvb-usb: bulk message failed: -22 (2/0)
[  144.487411][   T60] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  144.500493][   T60] (NULL device *): no alternate interface
[  144.648542][   T60] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  144.681227][   T60] usb 3-1: USB disconnect, device number 16
[  145.316683][ T7940] loop2: detected capacity change from 0 to 512
[  145.330217][ T7940] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  145.424798][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.443887][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.458181][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.462292][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.487436][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.493825][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.499531][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.500138][ T7943] loop1: detected capacity change from 0 to 22
[  145.503522][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.511734][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.512226][ T7943] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  145.515756][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.523673][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.530408][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.535061][ T7943] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  145.535399][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.564106][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.569526][ T7940] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  145.573554][ T7940] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  145.685589][ T7946] netlink: 'syz.2.786': attribute type 1 has an invalid length.
[  145.792554][ T7948] loop2: detected capacity change from 0 to 4096
[  145.845690][ T7952] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  145.904522][ T7956] capability: warning: `syz.1.790' uses 32-bit capabilities (legacy support in use)
[  145.933156][ T7956] program syz.1.790 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  146.236823][ T3143] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  146.395065][ T3143] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  146.399747][ T3143] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  146.410665][ T3143] usb 3-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  146.414456][ T3143] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.420834][ T3143] usb 3-1: Product: syz
[  146.422809][ T3143] usb 3-1: Manufacturer: syz
[  146.424854][ T3143] usb 3-1: SerialNumber: syz
[  146.435870][ T3143] usb 3-1: config 0 descriptor??
[  146.448063][ T7960] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  146.450971][ T7960] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  146.691228][ T7960] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  146.694233][ T7960] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  147.101266][ T3143] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  147.302083][ T3143] dm9601 3-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  147.316178][ T3143] usb 3-1: USB disconnect, device number 17
[  147.784578][ T7990] loop0: detected capacity change from 0 to 32768
[  147.830095][ T7990] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  147.890623][ T7990] XFS (loop0): Ending clean mount
[  147.900746][ T7990] XFS (loop0): Quotacheck needed: Please wait.
[  147.943146][ T7990] XFS (loop0): Quotacheck: Done.
[  147.990384][ T5847] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  148.090971][ T8022] loop2: detected capacity change from 0 to 512
[  148.113661][ T8022] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  148.156447][ T8022] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.818: bad orphan inode 131083
[  148.162522][ T8022] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.196587][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.842184][ T8026] loop0: detected capacity change from 0 to 32768
[  148.853979][ T8016] loop1: detected capacity change from 0 to 65536
[  148.867082][ T8016] XFS (loop1): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  148.872097][ T8026] ERROR: (device loop0): dbAdjCtl: the maximum free buddy is not the old root
[  148.872097][ T8026] 
[  148.877162][ T8026] ERROR: (device loop0): remounting filesystem as read-only
[  148.902413][ T8016] XFS (loop1): Ending clean mount
[  148.920387][ T5854] XFS (loop1): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  149.709860][ T8066] Invalid source name
[  149.711834][ T8066] UBIFS error (pid: 8066): cannot open "/dev/sg0", error -22
[  149.873101][ T8070] loop1: detected capacity change from 0 to 4096
[  149.897684][ T8070] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  150.043980][ T8070] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[  150.056902][ T8070] ntfs3(loop1): Failed to initialize $Secure::$SDH (-22).
[  150.060278][ T8070] ntfs3(loop1): Failed to initialize $Secure (-22).
[  150.063563][ T8070] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[  150.454904][ T8092] loop0: detected capacity change from 0 to 1024
[  150.673524][ T8102] loop0: detected capacity change from 0 to 8
[  150.775746][ T8104] Illegal XDP return value 32768 on prog  (id 80) dev N/A, expect packet loss!
[  150.797818][ T8105] SQUASHFS error: lzo decompression failed, data probably corrupt
[  150.808195][ T8105] SQUASHFS error: Failed to read block 0x71: -5
[  150.819934][ T8105] SQUASHFS error: lzo decompression failed, data probably corrupt
[  150.826794][ T8105] SQUASHFS error: Failed to read block 0x71: -5
[  150.833148][   T33] audit: type=1800 audit(1755054019.496:65): pid=8105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.849" name="file0" dev="loop0" ino=3 res=0 errno=0
[  152.189230][ T8117] loop0: detected capacity change from 0 to 256
[  152.239422][ T8117] netlink: 'syz.0.856': attribute type 16 has an invalid length.
[  152.242768][ T8117] netlink: 'syz.0.856': attribute type 3 has an invalid length.
[  152.252312][ T8117] netlink: 34014 bytes leftover after parsing attributes in process `syz.0.856'.
[  152.509833][ T8134] loop1: detected capacity change from 0 to 256
[  152.522066][   T33] audit: type=1326 audit(1755054021.186:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.536459][ T3143] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  152.557078][   T33] audit: type=1326 audit(1755054021.186:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.573363][   T33] audit: type=1326 audit(1755054021.186:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.583005][   T33] audit: type=1326 audit(1755054021.186:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.588394][ T8134] FAT-fs (loop1): Directory bread(block 64) failed
[  152.594637][ T8134] FAT-fs (loop1): Directory bread(block 65) failed
[  152.598986][   T33] audit: type=1326 audit(1755054021.186:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.608401][   T33] audit: type=1326 audit(1755054021.186:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.617574][ T8134] FAT-fs (loop1): Directory bread(block 66) failed
[  152.620870][ T8134] FAT-fs (loop1): Directory bread(block 67) failed
[  152.623712][ T8134] FAT-fs (loop1): Directory bread(block 68) failed
[  152.627479][ T8134] FAT-fs (loop1): Directory bread(block 69) failed
[  152.630390][ T8134] FAT-fs (loop1): Directory bread(block 70) failed
[  152.633034][ T8134] FAT-fs (loop1): Directory bread(block 71) failed
[  152.635833][ T8134] FAT-fs (loop1): Directory bread(block 72) failed
[  152.640901][ T8134] FAT-fs (loop1): Directory bread(block 73) failed
[  152.698168][ T3143] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  152.702250][ T3143] usb 3-1: config 0 has no interfaces?
[  152.704534][ T3143] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  152.709547][ T3143] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.715768][ T3143] usb 3-1: config 0 descriptor??
[  152.742482][   T33] audit: type=1326 audit(1755054021.406:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.770598][   T33] audit: type=1326 audit(1755054021.406:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.803125][   T33] audit: type=1326 audit(1755054021.466:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.865" exe="/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  152.942781][   T60] usb 3-1: USB disconnect, device number 18
[  153.056484][   T24] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  153.376532][   T24] usb 2-1: Using ep0 maxpacket: 8
[  153.382819][   T24] usb 2-1: unable to get BOS descriptor or descriptor too short
[  153.388387][   T24] usb 2-1: too many endpoints for config 4 interface 0 altsetting 102: 65, using maximum allowed: 30
[  153.392943][   T24] usb 2-1: config 4 interface 0 altsetting 102 has 0 endpoint descriptors, different from the interface descriptor's value: 65
[  153.398984][   T24] usb 2-1: config 4 interface 0 has no altsetting 0
[  153.404627][   T24] usb 2-1: string descriptor 0 read error: -22
[  153.406929][   T24] usb 2-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  153.410081][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.417994][   T24] usb 2-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  153.424934][   T24] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  153.429534][   T24] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  153.432692][   T24] usb 2-1: media controller created
[  153.448783][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  153.619320][   T24] zl10353_read_register: readreg error (reg=127, ret==0)
[  153.648294][   T24] usb 2-1: USB disconnect, device number 23
[  154.516472][   T24] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  154.660529][ T8155] veth1_macvtap: left promiscuous mode
[  154.662952][ T8155] macsec0: entered allmulticast mode
[  154.674457][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.675656][ T8155] veth1_macvtap: entered promiscuous mode
[  154.682575][ T8155] veth1_macvtap: entered allmulticast mode
[  154.685425][   T24] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  154.685980][ T8155] macsec0: left allmulticast mode
[  154.694227][ T8155] veth1_macvtap: left allmulticast mode
[  154.698508][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.725556][   T24] usb 2-1: config 0 descriptor??
[  155.058655][ T8164] loop2: detected capacity change from 0 to 2048
[  155.076036][ T8164] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  155.177857][   T24] prodikeys 0003:041E:2801.000A: unknown main item tag 0x2
[  155.188802][   T24] prodikeys 0003:041E:2801.000A: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.1-1/input0
[  155.379014][ T3143] usb 2-1: USB disconnect, device number 24
[  155.441603][ T8173] loop0: detected capacity change from 0 to 32768
[  155.766435][ T5942] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  155.916512][ T5942] usb 1-1: Using ep0 maxpacket: 32
[  155.920058][ T5942] usb 1-1: config 0 has an invalid interface number: 247 but max is 0
[  155.922654][ T5942] usb 1-1: config 0 has no interface number 0
[  155.936368][ T5942] usb 1-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  155.943051][ T5942] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  155.944025][ T8184] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  155.952851][ T5942] usb 1-1: Product: syz
[  155.954930][ T5942] usb 1-1: Manufacturer: syz
[  155.961004][ T5942] usb 1-1: config 0 descriptor??
[  156.316827][   T10] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  156.467820][   T10] usb 2-1: Using ep0 maxpacket: 16
[  156.482859][   T10] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.489481][   T10] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.493567][   T10] usb 2-1: config 0 interface 0 has no altsetting 0
[  156.496282][   T10] usb 2-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  156.500263][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.508386][   T10] usb 2-1: config 0 descriptor??
[  156.958807][   T10] cougar 0003:060B:500A.000B: unexpected long global item
[  156.968381][   T10] cougar 0003:060B:500A.000B: parse failed
[  156.973563][   T10] cougar 0003:060B:500A.000B: probe with driver cougar failed with error -22
[  157.137518][   T10] usb 2-1: USB disconnect, device number 25
[  157.250420][ T5890] usb 1-1: USB disconnect, device number 16
[  157.955987][ T8214] loop1: detected capacity change from 0 to 32768
[  157.981556][ T8214] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  157.991225][ T8214] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  157.994605][ T8229] loop2: detected capacity change from 0 to 256
[  158.008068][ T8229] FAT-fs (loop2): Directory bread(block 64) failed
[  158.010417][ T8229] FAT-fs (loop2): Directory bread(block 65) failed
[  158.012774][ T8229] FAT-fs (loop2): Directory bread(block 66) failed
[  158.015169][ T8229] FAT-fs (loop2): Directory bread(block 67) failed
[  158.018997][ T8229] FAT-fs (loop2): Directory bread(block 68) failed
[  158.021568][ T8229] FAT-fs (loop2): Directory bread(block 69) failed
[  158.024276][ T8229] FAT-fs (loop2): Directory bread(block 70) failed
[  158.026989][ T8229] FAT-fs (loop2): Directory bread(block 71) failed
[  158.029605][ T8229] FAT-fs (loop2): Directory bread(block 72) failed
[  158.032247][ T8229] FAT-fs (loop2): Directory bread(block 73) failed
[  158.076032][ T5854] ocfs2: Unmounting device (7,1) on (node local)
[  158.186839][ T8240] loop2: detected capacity change from 0 to 128
[  158.200997][ T8240] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  158.205870][ T8240] ext4 filesystem being mounted at /321/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  159.121586][ T5845] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  159.576828][ T5942] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  159.729802][ T5942] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  159.735864][ T5942] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  159.739426][ T5942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.746157][ T5942] usb 1-1: config 0 descriptor??
[  159.980880][ T8262] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.987521][ T8262] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  160.047650][ T8262] netlink: 'syz.0.910': attribute type 10 has an invalid length.
[  160.056259][ T8262] bridge0: port 3(dummy0) entered disabled state
[  160.059881][ T8262] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.076676][ T8262] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.128311][ T8268] netlink: 4 bytes leftover after parsing attributes in process `syz.0.910'.
[  160.130873][ T8262] bridge0: port 3(dummy0) entered blocking state
[  160.135732][ T8262] bridge0: port 3(dummy0) entered forwarding state
[  160.149390][ T8262] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.153827][ T8262] bridge0: port 2(bridge_slave_1) entered forwarding state
[  160.164388][ T8262] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.186411][ T8262] bridge0: port 1(bridge_slave_0) entered forwarding state
[  160.207669][ T8262] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  160.220552][ T8268] dummy0: left allmulticast mode
[  160.224738][ T8268] bridge0: port 3(dummy0) entered disabled state
[  160.255430][ T8268] bridge_slave_1: left allmulticast mode
[  160.261015][ T8268] bridge_slave_1: left promiscuous mode
[  160.263917][ T8268] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.297118][ T8268] bridge_slave_0: left allmulticast mode
[  160.302141][ T8268] bridge_slave_0: left promiscuous mode
[  160.315462][ T8268] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.358478][ T8268] bond0: (slave bridge0): Releasing backup interface
[  160.496198][   T10] usb 1-1: USB disconnect, device number 17
[  160.819226][ T8270] loop1: detected capacity change from 0 to 40427
[  160.821720][ T8270] F2FS-fs: heap/no_heap options were deprecated
[  160.824256][ T8270] F2FS-fs (loop1): build fault injection rate: 19
[  160.827099][ T8270] F2FS-fs (loop1): build fault injection type: 0x77e8c
[  160.839040][ T8270] F2FS-fs (loop1): invalid crc value
[  160.842790][ T8270] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1cb/0x970
[  160.849662][ T8270] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_bio+0x18f/0xaa0
[  160.853800][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  160.892576][ T8270] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  160.897059][ T8270] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  160.940833][ T8270] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_new_node_folio+0x131/0xa40
[  160.963758][ T5854] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_grab_meta_folio+0x6a/0x1d0
[  160.989359][ T5854] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x4ef/0x21b0
[  160.994522][ T5854] F2FS-fs (loop1): invalid blkaddr: 1024, type: 10, run fsck to fix.
[  161.082233][ T8290] netlink: 76 bytes leftover after parsing attributes in process `syz.2.922'.
[  161.281827][ T8308] loop1: detected capacity change from 0 to 1024
[  161.290787][ T8308] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.312917][ T8312] netlink: 332 bytes leftover after parsing attributes in process `syz.0.931'.
[  161.320460][ T8312] netlink: 104 bytes leftover after parsing attributes in process `syz.0.931'.
[  161.323947][ T8312] netlink: 32 bytes leftover after parsing attributes in process `syz.0.931'.
[  161.335664][ T5854] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.569976][   T10] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[  161.828010][  T992] Bluetooth: (null): Invalid header checksum
[  161.849931][  T992] Bluetooth: (null): Invalid header checksum
[  161.927958][  T992] Bluetooth: (null): Invalid header checksum
[  161.930488][   T10] usb 3-1: config 11 has an invalid interface number: 62 but max is 0
[  161.933888][   T10] usb 3-1: config 11 has no interface number 0
[  161.938699][   T10] usb 3-1: New USB device found, idVendor=22b8, idProduct=2d9a, bcdDevice=bf.dc
[  161.942312][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.945351][   T10] usb 3-1: Product: syz
[  161.948330][   T10] usb 3-1: Manufacturer: syz
[  161.950182][   T10] usb 3-1: SerialNumber: syz
[  162.037744][  T992] Bluetooth: (null): Invalid header checksum
[  162.148107][  T992] Bluetooth: (null): Invalid header checksum
[  162.162810][   T10] hub 3-1:11.62: bad descriptor, ignoring hub
[  162.165824][   T10] hub 3-1:11.62: probe with driver hub failed with error -5
[  162.186911][   T10] usb 3-1: USB disconnect, device number 19
[  162.256629][  T992] Bluetooth: (null): Invalid header checksum
[  162.466464][ T8331] debugfs: 'ttyS3' already exists in 'caif_serial'
[  162.760520][ T8340] loop1: detected capacity change from 0 to 40427
[  162.770506][ T8340] F2FS-fs (loop1): invalid crc value
[  162.851993][ T8340] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  162.861698][ T8340] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  162.900395][ T5854] syz-executor: attempt to access beyond end of device
[  162.900395][ T5854] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  162.911928][ T5854] CPU: 1 UID: 0 PID: 5854 Comm: syz-executor Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  162.911942][ T5854] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  162.911947][ T5854] Call Trace:
[  162.911950][ T5854]  <TASK>
[  162.911954][ T5854]  dump_stack_lvl+0x189/0x250
[  162.911968][ T5854]  ? __pfx_dump_stack_lvl+0x10/0x10
[  162.911977][ T5854]  ? __pfx_queue_work_on+0x10/0x10
[  162.911985][ T5854]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  162.911994][ T5854]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  162.912006][ T5854]  f2fs_handle_critical_error+0x37c/0x540
[  162.912019][ T5854]  f2fs_write_end_io+0x886/0xb60
[  162.912037][ T5854]  __submit_merged_bio+0x27a/0x6a0
[  162.912048][ T5854]  __submit_merged_write_cond+0x255/0x530
[  162.912060][ T5854]  f2fs_write_data_pages+0x261d/0x3000
[  162.912083][ T5854]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  162.912119][ T5854]  ? __lock_acquire+0xab9/0xd20
[  162.912161][ T5854]  ? do_raw_spin_lock+0x121/0x290
[  162.912175][ T5854]  ? do_raw_spin_unlock+0x4d/0x240
[  162.912184][ T5854]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  162.912194][ T5854]  do_writepages+0x32e/0x550
[  162.912208][ T5854]  ? do_raw_spin_unlock+0x4d/0x240
[  162.912219][ T5854]  filemap_fdatawrite+0x199/0x240
[  162.912229][ T5854]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  162.912257][ T5854]  ? do_raw_spin_unlock+0x4d/0x240
[  162.912267][ T5854]  f2fs_sync_dirty_inodes+0x31f/0x830
[  162.912283][ T5854]  f2fs_write_checkpoint+0x95a/0x1df0
[  162.912303][ T5854]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  162.912331][ T5854]  ? kill_f2fs_super+0x298/0x6c0
[  162.912344][ T5854]  kill_f2fs_super+0x2c3/0x6c0
[  162.912357][ T5854]  ? __pfx_kill_f2fs_super+0x10/0x10
[  162.912366][ T5854]  ? radix_tree_delete_item+0x2b6/0x400
[  162.912377][ T5854]  ? shrinker_free+0x2ce/0x3e0
[  162.912386][ T5854]  deactivate_locked_super+0xbc/0x130
[  162.912396][ T5854]  cleanup_mnt+0x425/0x4c0
[  162.912404][ T5854]  ? lockdep_hardirqs_on+0x9c/0x150
[  162.912414][ T5854]  task_work_run+0x1d4/0x260
[  162.912425][ T5854]  ? __pfx_task_work_run+0x10/0x10
[  162.912433][ T5854]  ? __x64_sys_umount+0x122/0x160
[  162.912444][ T5854]  ? exit_to_user_mode_loop+0x40/0x110
[  162.912474][ T5854]  exit_to_user_mode_loop+0xec/0x110
[  162.912485][ T5854]  do_syscall_64+0x2bd/0x3b0
[  162.912499][ T5854]  ? lockdep_hardirqs_on+0x9c/0x150
[  162.912507][ T5854]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.912514][ T5854]  ? exc_page_fault+0x9f/0xf0
[  162.912523][ T5854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.912530][ T5854] RIP: 0033:0x7f737858ff17
[  162.912539][ T5854] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  162.912545][ T5854] RSP: 002b:00007ffdb83be8a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  162.912554][ T5854] RAX: 0000000000000000 RBX: 00007f7378611c05 RCX: 00007f737858ff17
[  162.912559][ T5854] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdb83be960
[  162.912564][ T5854] RBP: 00007ffdb83be960 R08: 0000000000000000 R09: 0000000000000000
[  162.912568][ T5854] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdb83bf9f0
[  162.912573][ T5854] R13: 00007f7378611c05 R14: 0000000000027bd6 R15: 00007ffdb83bfa30
[  162.912585][ T5854]  </TASK>
[  162.912675][ T5854] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  163.452289][ T8363] tipc: Started in network mode
[  163.456450][ T8363] tipc: Node identity 1adf175c399b, cluster identity 4711
[  163.463638][ T8363] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  163.603888][ T8363] syzkaller0: entered promiscuous mode
[  163.609012][ T8363] syzkaller0: entered allmulticast mode
[  163.612005][ T8363] tipc: Resetting bearer <eth:syzkaller0>
[  163.654176][ T8362] tipc: Resetting bearer <eth:syzkaller0>
[  164.095045][ T8382] loop0: detected capacity change from 0 to 4096
[  164.515138][ T8382] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  164.550860][   T10] tipc: Node number set to 591664988
[  164.628673][ T8382] ntfs3(loop0): Failed to load $Extend (-22).
[  164.631055][ T8382] ntfs3(loop0): Failed to initialize $Extend.
[  164.862623][ T8390] netlink: 28 bytes leftover after parsing attributes in process `syz.2.955'.
[  165.184006][ T8397] loop0: detected capacity change from 0 to 1024
[  165.215951][ T8392] loop2: detected capacity change from 0 to 32768
[  165.229743][ T8397] EXT4-fs: Ignoring removed oldalloc option
[  165.232303][ T8397] EXT4-fs: Ignoring removed bh option
[  165.281863][ T8397] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.312897][ T8397] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[  165.396090][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.344619][ T8362] tipc: Disabling bearer <eth:syzkaller0>
[  166.681565][ T8428] netlink: 8 bytes leftover after parsing attributes in process `syz.1.972'.
[  166.685848][ T8428] IPVS: Error joining to the multicast group
[  166.756507][ T5890] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  166.907761][ T5890] usb 3-1: New USB device found, idVendor=249c, idProduct=9002, bcdDevice=de.ad
[  166.910946][ T5890] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.917750][ T5890] usb 3-1: config 0 descriptor??
[  167.124206][ T5890] usb 3-1: can't set first interface for hiFace device.
[  167.127358][ T5890] snd-usb-hiface 3-1:0.0: probe with driver snd-usb-hiface failed with error -5
[  167.134014][ T5890] usb 3-1: USB disconnect, device number 20
[  167.861309][ T8469] loop1: detected capacity change from 0 to 4096
[  168.390157][ T8479] netlink: 28 bytes leftover after parsing attributes in process `syz.1.995'.
[  168.393933][ T8479] netlink: 108 bytes leftover after parsing attributes in process `syz.1.995'.
[  168.400769][ T8479] netlink: 28 bytes leftover after parsing attributes in process `syz.1.995'.
[  168.405012][ T8479] netlink: 108 bytes leftover after parsing attributes in process `syz.1.995'.
[  168.413476][ T8479] netlink: 84 bytes leftover after parsing attributes in process `syz.1.995'.
[  169.512106][ T8500] loop0: detected capacity change from 0 to 1024
[  169.773271][ T8525] loop2: detected capacity change from 0 to 128
[  169.780486][ T8525] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  169.846828][   T68] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  170.196458][ T5942] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  170.606805][ T5942] usb 2-1: Using ep0 maxpacket: 8
[  170.612943][ T5942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  170.617488][ T5942] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  170.620835][ T5942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.630484][ T5942] usb 2-1: config 0 descriptor??
[  170.842011][ T5942] iowarrior 2-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  171.046534][   T10] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  171.194522][ T8576] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1038'.
[  171.209857][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  171.213973][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  171.218917][   T10] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  171.223580][   T10] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  171.232128][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.238492][   T10] usb 1-1: config 0 descriptor??
[  171.300613][ T3143] usb 2-1: USB disconnect, device number 26
[  171.436756][ T5942] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  171.587876][ T5942] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  171.591243][ T5942] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  171.595925][ T5942] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  171.599196][ T5942] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  171.602422][ T5942] usb 3-1: SerialNumber: syz
[  171.663958][   T10] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  171.812491][ T5942] usb 3-1: 0:2 : does not exist
[  171.844785][ T5942] usb 3-1: USB disconnect, device number 21
[  171.854863][ T8580] loop1: detected capacity change from 0 to 1024
[  171.870798][ T6833] udevd[6833]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  171.898186][ T8580] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.908191][ T8580] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: inode #11: comm syz.1.1040: missing EA_INODE flag
[  171.914445][ T8580] EXT4-fs (loop1): Remounting filesystem read-only
[  171.918355][   T10] usb 1-1: USB disconnect, device number 18
[  171.920994][ T8580] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  171.946919][ T5854] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.980127][ T8585] syz.1.1041 uses obsolete (PF_INET,SOCK_PACKET)
[  173.091441][ T8603] loop1: detected capacity change from 0 to 512
[  173.096075][ T8603] EXT4-fs: Ignoring removed mblk_io_submit option
[  173.109144][ T8603] EXT4-fs: Ignoring removed bh option
[  173.135210][ T8603] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  173.142817][ T8603] EXT4-fs (loop1): 1 truncate cleaned up
[  173.146906][ T8603] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.202701][ T5854] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.112592][ T8616] loop1: detected capacity change from 0 to 32768
[  174.123305][ T8616] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1054 (8616)
[  174.137625][ T8616] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  174.148134][ T8616] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  174.151020][ T8616] BTRFS info (device loop1): using free-space-tree
[  174.361326][ T5854] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  175.000684][ T8674] loop1: detected capacity change from 0 to 512
[  175.330950][ T8678] loop1: detected capacity change from 0 to 32768
[  175.358032][ T8678] jfs_strtoUCS: char2uni returned -22.
[  175.360613][ T8678] charset = cp949, char = 0xd4
[  175.820231][ T8687] loop2: detected capacity change from 0 to 2048
[  175.852855][ T8687] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  175.853298][ T6833] udevd[6833]: incorrect nilfs2 checksum on /dev/loop2
[  175.859466][ T8687] NILFS (loop2): mounting unchecked fs
[  175.881462][ T6833] udevd[6833]: incorrect nilfs2 checksum on /dev/loop2
[  175.899699][ T8687] NILFS (loop2): recovery complete
[  175.920865][ T8688] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  175.976691][ T8642] loop0: detected capacity change from 0 to 262144
[  176.187981][ T8642] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  176.194424][ T8642] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  176.327215][ T5942] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  176.498014][ T5942] usb 3-1: Using ep0 maxpacket: 32
[  176.513382][ T5942] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.529726][ T5942] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  176.544485][ T5942] usb 3-1: config 0 interface 0 has no altsetting 0
[  176.553171][ T5942] usb 3-1: New USB device found, idVendor=056a, idProduct=032c, bcdDevice= 0.00
[  176.557216][ T5942] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.574616][ T5942] usb 3-1: config 0 descriptor??
[  177.220853][ T8707] netlink: 'syz.1.1088': attribute type 3 has an invalid length.
[  177.223635][ T8707] netlink: 'syz.1.1088': attribute type 1 has an invalid length.
[  177.228065][ T8707] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.1088'.
[  177.408261][ T8717] loop1: detected capacity change from 0 to 256
[  177.417360][ T8717] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  177.423571][ T8717] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  177.429697][   T54] block nbd0: Receive control failed (result -32)
[  177.440627][ T5942] usb 3-1: USB disconnect, device number 22
[  177.445861][ T8717] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  178.039128][ T8722] kAFS: Can only specify source 'none' with -o dyn
[  178.632379][ T8728] loop0: detected capacity change from 0 to 1024
[  178.693591][ T8728] EXT4-fs: Ignoring removed orlov option
[  179.183977][ T8728] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  179.221212][ T8728] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.275768][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.394217][ T8740] loop0: detected capacity change from 0 to 4096
[  179.477822][   T33] kauditd_printk_skb: 2 callbacks suppressed
[  179.477835][   T33] audit: type=1326 audit(1755054048.136:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8743 comm="syz.1.1100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737858ebe9 code=0x7ffc0000
[  179.508547][   T33] audit: type=1326 audit(1755054048.136:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8743 comm="syz.1.1100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737858ebe9 code=0x7ffc0000
[  179.536209][   T33] audit: type=1326 audit(1755054048.146:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8743 comm="syz.1.1100" exe="/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f737858ebe9 code=0x7ffc0000
[  179.556038][   T33] audit: type=1326 audit(1755054048.146:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8743 comm="syz.1.1100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737858ebe9 code=0x7ffc0000
[  179.570525][   T33] audit: type=1326 audit(1755054048.146:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8743 comm="syz.1.1100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737858ebe9 code=0x7ffc0000
[  180.510108][   T53] Bluetooth: hci0: command 0x0406 tx timeout
[  180.513023][ T5851] Bluetooth: hci1: command 0x0406 tx timeout
[  181.191328][ T8779] openvswitch: netlink: Message has 8 unknown bytes.
[  181.217257][  T790] usb 2-1: new full-speed USB device number 27 using dummy_hcd
[  181.378285][  T790] usb 2-1: config 0 has an invalid interface number: 133 but max is 0
[  181.381346][  T790] usb 2-1: config 0 has no interface number 0
[  181.387172][  T790] usb 2-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[  181.390175][  T790] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.393094][  T790] usb 2-1: Product: syz
[  181.394491][  T790] usb 2-1: Manufacturer: syz
[  181.411903][  T790] usb 2-1: SerialNumber: syz
[  181.414993][  T790] usb 2-1: config 0 descriptor??
[  181.632130][  T790] keyspan 2-1:0.133: Keyspan 1 port adapter converter detected
[  181.635785][  T790] keyspan 2-1:0.133: found no endpoint descriptor for endpoint 81
[  181.644646][  T790] keyspan 2-1:0.133: found no endpoint descriptor for endpoint 1
[  181.652572][  T790] keyspan 2-1:0.133: found no endpoint descriptor for endpoint 2
[  181.668917][  T790] usb 2-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  181.819805][ T8819] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1134'.
[  181.864834][ T8821] loop8: detected capacity change from 0 to 8
[  181.874982][ T8821] Dev loop8: unable to read RDB block 8
[  181.877677][ T8821]  loop8: unable to read partition table
[  181.880032][ T8821] loop8: partition table beyond EOD, truncated
[  181.887130][ T8821] loop_reread_partitions: partition scan of loop8 (被x^> ) failed (rc=-5)
[  182.057003][  T790] usb 2-1: USB disconnect, device number 27
[  182.073172][  T790] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  182.092841][  T790] keyspan 2-1:0.133: device disconnected
[  182.167027][ T8837] tun0: tun_chr_ioctl cmd 35108
[  182.237280][ T8843] netlink: 'syz.2.1146': attribute type 1 has an invalid length.
[  182.419914][ T8854] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1150'.
[  182.423691][ T8854] tipc: Started in network mode
[  182.429723][ T8854] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  182.434205][ T8854] tipc: New replicast peer: 0000:0000:0000:0000:0000:0000:0000:0000
[  182.442261][ T8854] tipc: Enabled bearer <udp:s>, priority 10
[  183.023047][ T8892] loop0: detected capacity change from 0 to 256
[  183.032535][ T8892] exfat: Deprecated parameter 'utf8'
[  183.034887][ T8892] exfat: Deprecated parameter 'utf8'
[  183.054209][ T8892] exfat: Deprecated parameter 'utf8'
[  183.074497][ T8892] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  183.219258][ T8901] 9pnet: p9_errstr2errno: server reported unknown error 
[  183.556435][ T5890] tipc: Node number set to 1
[  183.687131][ T8915] loop1: detected capacity change from 0 to 32768
[  183.696158][ T8915] XFS: attr2 mount option is deprecated.
[  183.780228][ T8915] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  183.800691][ T8915] XFS (loop1): Ending clean mount
[  183.808464][ T8915] XFS (loop1): Quotacheck needed: Please wait.
[  183.851423][ T8915] XFS (loop1): Quotacheck: Done.
[  183.960087][ T5854] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  183.996082][ T8927] netlink: 'syz.0.1180': attribute type 10 has an invalid length.
[  184.001800][ T8927] team0: Device dummy0 is up. Set it down before adding it as a team port
[  184.130441][ T8931] loop0: detected capacity change from 0 to 1024
[  184.139688][ T8931] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  184.160343][ T8931] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.195096][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.371800][ T8940] loop2: detected capacity change from 0 to 128
[  184.384348][ T8940] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  184.465443][ T1235] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  184.677535][ T3143] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  184.973320][ T3143] usb 2-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a
[  184.978263][ T3143] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.993179][ T3143] usb 2-1: config 0 descriptor??
[  185.008078][ T3143] gspca_main: sn9c2028-2.14.0 probing 0c45:8001
[  185.207611][ T3143] gspca_sn9c2028: read1 error -32
[  185.211373][ T3143] gspca_sn9c2028: read1 error -32
[  185.251622][ T5295] udevd[5295]: worker [6833] terminated by signal 33 (Unknown signal 33)
[  185.254571][ T5295] udevd[5295]: worker [6833] failed while handling '/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/video4linux/video103'
[  185.426693][ T5890] usb 2-1: USB disconnect, device number 28
[  185.523688][ T8971] loop2: detected capacity change from 0 to 736
[  185.611790][ T8973] loop2: detected capacity change from 0 to 64
[  185.946453][ T5890] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  186.097893][ T5890] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  186.101288][ T5890] usb 3-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  186.104216][ T5890] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.112419][ T5890] usb 3-1: config 0 descriptor??
[  186.136062][ T8980] loop1: detected capacity change from 0 to 40427
[  186.138924][ T8980] F2FS-fs: heap/no_heap options were deprecated
[  186.141798][ T8980] F2FS-fs (loop1): build fault injection rate: 19
[  186.143841][ T8980] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[  186.149002][ T8980] F2FS-fs (loop1): invalid crc value
[  186.155432][ T8980] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  186.179945][ T8980] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x20a/0x3f0
[  186.185307][ T8980] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  186.189257][ T8980] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  186.205661][ T5854] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_grab_meta_folio+0x6a/0x1d0
[  186.322158][ T5942] usb 3-1: USB disconnect, device number 23
[  186.403843][ T8995] loop1: detected capacity change from 0 to 8192
[  186.417919][ T8995] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  186.436742][  T790] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  186.607196][  T790] usb 1-1: Using ep0 maxpacket: 32
[  186.615908][  T790] usb 1-1: config 8 has an invalid interface number: 203 but max is 0
[  186.619995][  T790] usb 1-1: config 8 has no interface number 0
[  186.622760][  T790] usb 1-1: config 8 interface 203 altsetting 1 bulk endpoint 0xB has invalid maxpacket 1023
[  186.628037][  T790] usb 1-1: config 8 interface 203 has no altsetting 0
[  186.636150][  T790] usb 1-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=eb.7a
[  186.640168][  T790] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.640185][  T790] usb 1-1: Product: syz
[  186.640194][  T790] usb 1-1: Manufacturer: syz
[  186.640204][  T790] usb 1-1: SerialNumber: syz
[  186.651008][ T8990] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  186.884555][  T790] port100 1-1:8.203: NFC: Could not find bulk-in or bulk-out endpoint
[  186.910074][  T790] usb 1-1: USB disconnect, device number 19
[  187.177952][ T9008] loop2: detected capacity change from 0 to 4096
[  187.183109][ T9008] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  187.211432][ T9008] ntfs3(loop2): ino=19, mi_enum_attr
[  187.764297][ T9020] IPVS: set_ctl: invalid protocol: 136 10.1.1.2:20004
[  187.948609][ T9022] random: crng reseeded on system resumption
[  188.235518][ T9026] loop2: detected capacity change from 0 to 512
[  188.245236][ T9026] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  188.260719][ T9026] EXT4-fs warning (device loop2): dx_probe:837: inode #2: comm syz.2.1216: Unimplemented hash flags: 0x0001
[  188.269258][ T9026] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.1216: Corrupt directory, running e2fsck is recommended
[  188.299841][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.661331][ T9035] loop1: detected capacity change from 0 to 32768
[  188.758968][ T9045] loop0: detected capacity change from 0 to 512
[  188.767105][ T9045] EXT4-fs: Ignoring removed bh option
[  188.774125][ T9045] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  188.794552][ T9039] loop2: detected capacity change from 0 to 32768
[  188.809138][ T9045] EXT4-fs (loop0): 1 truncate cleaned up
[  188.812908][ T9045] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.830346][ T9039] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  188.860269][ T9039] XFS (loop2): Ending clean mount
[  188.864940][ T9039] XFS (loop2): Quotacheck needed: Please wait.
[  188.885739][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.931472][ T9039] XFS (loop2): Quotacheck: Done.
[  189.012519][ T5845] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  189.014569][ T9067] netlink: 'syz.1.1231': attribute type 1 has an invalid length.
[  189.060187][ T9069] loop0: detected capacity change from 0 to 256
[  189.063350][ T9069] exfat: Deprecated parameter 'namecase'
[  189.075743][ T9069] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  189.386015][ T9083] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  189.400285][ T9083] CIFS: Unable to determine destination address
[  190.517116][ T9097] hsr0: entered promiscuous mode
[  190.519629][ T9097] macsec1: entered allmulticast mode
[  190.521977][ T9097] hsr0: entered allmulticast mode
[  190.524800][ T9097] hsr_slave_0: entered allmulticast mode
[  190.529991][ T9097] hsr_slave_1: entered allmulticast mode
[  190.546912][ T9097] hsr0: left allmulticast mode
[  190.549137][ T9097] hsr_slave_0: left allmulticast mode
[  190.551574][ T9097] hsr_slave_1: left allmulticast mode
[  190.643142][ T9101] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1245'.
[  190.743969][ T9104] loop2: detected capacity change from 0 to 2048
[  190.798262][ T9104]  loop2: p1 < > p4
[  190.812392][ T9104] loop2: p4 size 722688 extends beyond EOD, truncated
[  190.823900][ T9107] loop1: detected capacity change from 0 to 512
[  190.879801][ T9107] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.886676][ T9107] ext4 filesystem being mounted at /399/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.936648][   T33] audit: type=1800 audit(1755054059.596:82): pid=9107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1248" name="file1" dev="loop1" ino=15 res=0 errno=0
[  190.968456][   T33] audit: type=1800 audit(1755054059.616:83): pid=9107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1248" name="file2" dev="loop1" ino=16 res=0 errno=0
[  190.978350][   T33] audit: type=1800 audit(1755054059.616:84): pid=9107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1248" name="file1" dev="loop1" ino=15 res=0 errno=0
[  191.070788][ T5854] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.300266][ T9119] loop1: detected capacity change from 0 to 8192
[  191.335495][ T9121] loop0: detected capacity change from 0 to 4096
[  191.444854][ T9124] loop0: detected capacity change from 0 to 64
[  191.449290][ T9124] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  191.603221][ T9130] loop0: detected capacity change from 0 to 256
[  191.613123][ T9130] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  191.618417][ T9130] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  191.775609][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.884347][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.014972][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.117028][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.391221][   T12] bridge_slave_1: left allmulticast mode
[  192.393854][   T12] bridge_slave_1: left promiscuous mode
[  192.398407][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.429703][   T12] bridge_slave_0: left allmulticast mode
[  192.431646][   T12] bridge_slave_0: left promiscuous mode
[  192.434620][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.507117][ T3143] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  192.536272][ T5856] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  192.544889][ T5856] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  192.549803][ T5856] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  192.552901][ T5856] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  192.555607][ T5856] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  192.656417][ T3143] usb 3-1: Using ep0 maxpacket: 16
[  192.664343][ T3143] usb 3-1: config 0 has an invalid interface number: 104 but max is 1
[  192.670327][ T3143] usb 3-1: config 0 has an invalid interface number: 104 but max is 1
[  192.673527][ T3143] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2
[  192.689800][ T3143] usb 3-1: config 0 has no interface number 0
[  192.692041][ T3143] usb 3-1: config 0 interface 104 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 27
[  192.695749][ T3143] usb 3-1: config 0 interface 104 has no altsetting 1
[  192.709411][ T3143] usb 3-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00
[  192.713141][ T3143] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.715929][ T3143] usb 3-1: Product: syz
[  192.717477][ T3143] usb 3-1: Manufacturer: syz
[  192.718935][ T3143] usb 3-1: SerialNumber: syz
[  192.729592][ T3143] usb 3-1: config 0 descriptor??
[  192.959018][ T3143] asix 3-1:0.104 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  192.962653][ T3143] asix 3-1:0.104: probe with driver asix failed with error -71
[  192.967427][ T3143] usb 3-1: USB disconnect, device number 24
[  193.026015][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  193.036422][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  193.043789][   T12] bond0 (unregistering): Released all slaves
[  193.111106][   T12] tipc: Left network mode
[  193.540663][   T12] hsr_slave_0: left promiscuous mode
[  193.549564][   T12] hsr_slave_1: left promiscuous mode
[  193.555449][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  193.560375][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  193.567093][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  193.571543][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  193.574801][   T33] audit: type=1326 audit(1755054062.236:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.0.1263" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  193.598528][   T12] veth1_macvtap: left promiscuous mode
[  193.601475][   T33] audit: type=1326 audit(1755054062.236:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.0.1263" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  193.608918][   T12] veth0_macvtap: left promiscuous mode
[  193.611773][   T12] veth1_vlan: left promiscuous mode
[  193.613954][   T12] veth0_vlan: left promiscuous mode
[  193.618247][   T33] audit: type=1326 audit(1755054062.236:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.0.1263" exe="/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  193.625847][   T33] audit: type=1326 audit(1755054062.236:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.0.1263" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  193.635947][   T33] audit: type=1326 audit(1755054062.236:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.0.1263" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  193.788186][ T3143] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  193.801986][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  193.804659][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  194.106700][ T3143] usb 3-1: Using ep0 maxpacket: 8
[  194.110288][ T3143] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  194.113920][ T3143] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  194.118264][ T3143] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  194.122148][ T3143] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  194.127122][ T3143] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  194.130571][ T3143] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.261509][   T12] team0 (unregistering): Port device team_slave_1 removed
[  194.295518][   T12] team0 (unregistering): Port device team_slave_0 removed
[  194.344283][ T3143] usb 3-1: GET_CAPABILITIES returned 0
[  194.351313][ T3143] usbtmc 3-1:16.0: can't read capabilities
[  194.588719][ T5856] Bluetooth: hci2: command tx timeout
[  194.603258][ T3143] usb 3-1: USB disconnect, device number 25
[  194.831530][ T9138] chnl_net:caif_netlink_parms(): no params data found
[  194.989815][ T9138] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.996836][ T9138] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.000022][ T9138] bridge_slave_0: entered allmulticast mode
[  195.003837][ T9138] bridge_slave_0: entered promiscuous mode
[  195.013866][ T9138] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.018002][ T9138] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.021121][ T9138] bridge_slave_1: entered allmulticast mode
[  195.025059][ T9138] bridge_slave_1: entered promiscuous mode
[  195.055479][ T5856] Bluetooth: hci1: unexpected event for opcode 0x2064
[  195.055494][   T33] audit: type=1326 audit(1755054063.716:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9168 comm="syz.0.1273" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  195.072227][ T9138] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  195.079183][ T9138] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  195.089467][   T33] audit: type=1326 audit(1755054063.716:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9168 comm="syz.0.1273" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e3478ebe9 code=0x7ffc0000
[  195.113507][   T12] IPVS: stop unused estimator thread 0...
[  195.114028][ T9138] team0: Port device team_slave_0 added
[  195.121382][ T9138] team0: Port device team_slave_1 added
[  195.144092][ T9173] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1275'.
[  195.170364][ T9173] hsr_slave_0: left promiscuous mode
[  195.172799][ T9173] hsr_slave_1: left promiscuous mode
[  195.203403][ T9138] batman_adv: batadv0: Adding interface: batadv_slave_0
[  195.206930][ T9138] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.219525][ T9138] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  195.225663][ T9138] batman_adv: batadv0: Adding interface: batadv_slave_1
[  195.228795][ T9138] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.238840][ T9138] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  195.292837][ T9138] hsr_slave_0: entered promiscuous mode
[  195.296021][ T9138] hsr_slave_1: entered promiscuous mode
[  195.689931][ T9138] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  195.696197][ T9138] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  195.702846][ T9138] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  195.710714][ T9138] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  195.738995][ T9138] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.742268][ T9138] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.745575][ T9138] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.748798][ T9138] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.790896][ T3559] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.794213][ T3559] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.809120][ T9138] 8021q: adding VLAN 0 to HW filter on device bond0
[  195.820276][ T9138] 8021q: adding VLAN 0 to HW filter on device team0
[  195.825739][ T3559] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.828305][ T3559] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.842392][   T68] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.845416][   T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.897008][ T3143] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  195.975433][ T9138] 8021q: adding VLAN 0 to HW filter on device batadv0
[  196.010220][ T9138] veth0_vlan: entered promiscuous mode
[  196.015811][ T9138] veth1_vlan: entered promiscuous mode
[  196.031807][ T9138] veth0_macvtap: entered promiscuous mode
[  196.035836][ T9138] veth1_macvtap: entered promiscuous mode
[  196.048476][ T9138] batman_adv: batadv0: Interface activated: batadv_slave_0
[  196.055132][ T9138] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.064850][ T5876] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.073195][ T5876] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.081183][ T5876] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  196.106880][ T3143] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  196.110463][ T3143] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  196.121170][ T5876] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.135891][ T3143] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  196.142042][ T3143] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  196.144665][ T3143] usb 1-1: SerialNumber: syz
[  196.170763][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.177714][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.205030][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.209090][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.261391][ T9203] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.355640][ T3143] usb 1-1: 0:2 : does not exist
[  196.359174][ T9203] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.383041][ T3143] usb 1-1: USB disconnect, device number 20
[  196.425761][ T9203] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.470905][ T9203] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.537014][   T10] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  196.550716][ T5876] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.565818][ T5876] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.583317][ T5876] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  196.601195][ T5876] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.669195][ T5856] Bluetooth: hci2: command tx timeout
[  196.671333][ T9208] syz.2.1284: attempt to access beyond end of device
[  196.671333][ T9208] loop2: rw=0, sector=0, nr_sectors = 1 limit=0
[  196.698057][   T10] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  196.702484][   T10] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  196.706855][   T10] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  196.715003][   T10] usb 4-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5
[  196.719279][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.722608][   T10] usb 4-1: Product: syz
[  196.724448][   T10] usb 4-1: Manufacturer: syz
[  196.728840][   T10] usb 4-1: SerialNumber: syz
[  196.732918][   T10] usb 4-1: config 0 descriptor??
[  196.738514][   T10] uvcvideo 4-1:0.0: probe with driver uvcvideo failed with error -22
[  197.055259][ T5890] usb 4-1: USB disconnect, device number 2
[  197.141405][ T9220] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1288'.
[  197.146653][ T9220] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  198.003690][ T9228] loop2: detected capacity change from 0 to 128
[  198.100388][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.100388][ T9228] loop2: rw=2049, sector=145, nr_sectors = 16 limit=128
[  198.106994][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.106994][ T9228] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[  198.112947][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.112947][ T9228] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[  198.120863][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.120863][ T9228] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  198.129728][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.129728][ T9228] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[  198.136264][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.136264][ T9228] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[  198.142760][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.142760][ T9228] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[  198.151929][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.151929][ T9228] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[  198.164815][ T9228] syz.2.1291: attempt to access beyond end of device
[  198.164815][ T9228] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[  198.506110][ T9239] loop2: detected capacity change from 0 to 512
[  198.537555][ T9239] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.542208][ T9239] ext4 filesystem being mounted at /456/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  198.746526][ T5856] Bluetooth: hci2: command tx timeout
[  198.786619][ T5890] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  198.947191][ T5890] usb 3-1: Using ep0 maxpacket: 8
[  198.951966][ T5890] usb 3-1: config 0 has an invalid interface number: 31 but max is 0
[  198.955469][ T5890] usb 3-1: config 0 has no interface number 0
[  198.960685][ T5890] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  198.964316][ T5890] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.967903][ T5890] usb 3-1: Product: syz
[  198.969729][ T5890] usb 3-1: Manufacturer: syz
[  198.971672][ T5890] usb 3-1: SerialNumber: syz
[  198.977283][ T5890] usb 3-1: config 0 descriptor??
[  199.182836][ T5890] usb 3-1: Found UVC 0.04 device syz (046d:08c3)
[  199.185710][ T5890] usb 3-1: No valid video chain found.
[  199.189695][ T5890] usb 3-1: USB disconnect, device number 26
[  199.494252][ T9254] IPVS: Scheduler module ip_vs_sip not found
[  199.700574][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.749045][ T9267] loop2: detected capacity change from 0 to 2048
[  199.756816][ T9267] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  200.041853][ T9293] loop2: detected capacity change from 0 to 512
[  200.053508][ T9293] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.059084][ T9293] ext4 filesystem being mounted at /463/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.071603][ T9293] EXT4-fs (loop2): shut down requested (1)
[  200.118082][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.145933][ T9296] loop0: detected capacity change from 0 to 8
[  200.155992][ T9296] SQUASHFS error: xz decompression failed, data probably corrupt
[  200.159813][ T9296] SQUASHFS error: Failed to read block 0x108: -5
[  200.162508][ T9296] SQUASHFS error: Unable to read metadata cache entry [106]
[  200.172713][ T9296] SQUASHFS error: Unable to read inode 0x11f
[  200.240737][ T9298] loop2: detected capacity change from 0 to 2048
[  200.251070][ T9298] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  200.308233][ T9292] loop3: detected capacity change from 0 to 32768
[  200.333521][ T9292] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  200.341613][ T5845] UDF-fs: error (device loop2): udf_read_inode: (ino 1317) failed !bh
[  200.345460][ T5845] UDF-fs: error (device loop2): udf_read_inode: (ino 1317) failed !bh
[  200.366017][ T9292] XFS (loop3): Ending clean mount
[  200.450138][ T9292] XFS (loop3): Metadata CRC error detected at xfs_rmapbt_read_verify+0x42/0xe0, xfs_rmapbt block 0x14 
[  200.455077][ T9292] XFS (loop3): Unmount and run xfs_repair
[  200.458427][ T9292] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  200.461657][ T9292] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff  RMB3............
[  200.465303][ T9292] 00000010: 00 a7 50 00 00 00 00 14 00 00 00 01 00 00 00 80  ..P.............
[  200.469386][ T9292] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[  200.473930][ T9292] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01  ....[.;.........
[  200.478193][ T9292] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00  ................
[  200.482031][ T9292] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb  ................
[  200.488702][ T9292] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02  ................
[  200.493375][ T5856] Bluetooth: hci1: unexpected event for opcode 0x2019
[  200.499612][ T9292] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00  ................
[  200.499883][ T9292] XFS (loop3): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x14 len 4 error 74
[  200.515360][ T9292] XFS (loop3): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x517/0x8e0 (fs/xfs/xfs_trans_buf.c:311).  Shutting down filesystem.
[  200.541997][ T9292] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[  200.625519][ T9138] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  200.782261][ T9322] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1333'.
[  200.830719][ T5856] Bluetooth: hci2: command tx timeout
[  200.930127][ T9320] loop0: detected capacity change from 0 to 32768
[  200.933104][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  200.938323][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  200.941431][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  200.945715][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  200.949045][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  201.056451][ T5890] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  201.113958][ T9325] chnl_net:caif_netlink_parms(): no params data found
[  201.166847][ T9325] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.169520][ T9325] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.172417][ T9325] bridge_slave_0: entered allmulticast mode
[  201.175918][ T9325] bridge_slave_0: entered promiscuous mode
[  201.180300][ T9325] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.183156][ T9325] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.186190][ T9325] bridge_slave_1: entered allmulticast mode
[  201.189604][ T9325] bridge_slave_1: entered promiscuous mode
[  201.211469][ T9325] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.218159][ T9325] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.236706][ T5890] usb 4-1: Using ep0 maxpacket: 8
[  201.241539][ T9325] team0: Port device team_slave_0 added
[  201.244053][ T5890] usb 4-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f
[  201.249456][ T9325] team0: Port device team_slave_1 added
[  201.256410][ T5890] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.259065][ T5890] usb 4-1: Product: syz
[  201.260777][ T5890] usb 4-1: Manufacturer: syz
[  201.262452][ T5890] usb 4-1: SerialNumber: syz
[  201.267858][ T5890] usb 4-1: config 0 descriptor??
[  201.277417][ T5890] usbtest 4-1:0.0: FX2 device
[  201.278986][ T5890] usbtest 4-1:0.0: high-speed {control bulk-in bulk-out} tests (+alt)
[  201.287178][ T9325] batman_adv: batadv0: Adding interface: batadv_slave_0
[  201.290112][ T9325] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.299216][ T9325] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  201.303895][ T9325] batman_adv: batadv0: Adding interface: batadv_slave_1
[  201.307660][ T9325] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.317453][ T9325] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  201.343749][ T9325] hsr_slave_0: entered promiscuous mode
[  201.346251][ T9325] hsr_slave_1: entered promiscuous mode
[  201.349047][ T9325] debugfs: 'hsr0' already exists in 'hsr'
[  201.350956][ T9325] Cannot create hsr debugfs directory
[  201.459798][ T9325] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  201.466425][ T9325] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  201.474803][ T3143] usb 4-1: USB disconnect, device number 3
[  201.478126][ T9325] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  201.489942][ T9325] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  201.512600][ T9325] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.515066][ T9325] bridge0: port 2(bridge_slave_1) entered forwarding state
[  201.517699][ T9325] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.520143][ T9325] bridge0: port 1(bridge_slave_0) entered forwarding state
[  201.554908][ T9325] 8021q: adding VLAN 0 to HW filter on device bond0
[  201.564773][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.571272][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.584643][ T9325] 8021q: adding VLAN 0 to HW filter on device team0
[  201.591531][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.593913][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[  201.601221][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.603740][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  201.700480][ T9355] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1338'.
[  201.762968][ T9325] 8021q: adding VLAN 0 to HW filter on device batadv0
[  201.906841][ T9325] veth0_vlan: entered promiscuous mode
[  201.919414][ T9325] veth1_vlan: entered promiscuous mode
[  201.943892][ T9325] veth0_macvtap: entered promiscuous mode
[  201.950919][ T9325] veth1_macvtap: entered promiscuous mode
[  201.967137][ T9325] batman_adv: batadv0: Interface activated: batadv_slave_0
[  201.976511][ T3143] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  201.977948][ T9325] batman_adv: batadv0: Interface activated: batadv_slave_1
[  201.992379][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  201.995461][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  202.008621][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  202.014075][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  202.093263][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  202.098113][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  202.127267][ T3534] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  202.131304][ T3534] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  202.136846][ T3143] usb 1-1: Using ep0 maxpacket: 16
[  202.154226][ T3143] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.169323][ T3143] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  202.173518][ T3143] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  202.177624][ T9373] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1343'.
[  202.188768][ T3143] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  202.192535][ T3143] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.220432][ T3143] usb 1-1: config 0 descriptor??
[  202.602037][ T9388] loop4: detected capacity change from 0 to 32768
[  202.634458][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.637554][ T9388] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  202.645819][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.655000][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.661052][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.664077][   T33] kauditd_printk_skb: 14 callbacks suppressed
[  202.664088][   T33] audit: type=1800 audit(1755054071.326:106): pid=9388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1349" name="file1" dev="loop4" ino=17058 res=0 errno=0
[  202.675740][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.683206][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.686654][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.689530][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.692646][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.695784][ T3143] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  202.706708][ T3143] microsoft 0003:045E:07DA.000E: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  202.711687][ T3143] microsoft 0003:045E:07DA.000E: no inputs found
[  202.714480][ T3143] microsoft 0003:045E:07DA.000E: could not initialize ff, continuing anyway
[  202.833153][ T5942] usb 1-1: USB disconnect, device number 21
[  202.860165][ T9388] (syz.4.1349,9388,0):ocfs2_dio_end_io:2401 ERROR: Direct IO failed, bytes = -28
[  202.900776][ T9388] syz.4.1349 (9388) used greatest stack depth: 18832 bytes left
[  202.932842][ T9325] ocfs2: Unmounting device (7,4) on (node local)
[  202.986509][ T5856] Bluetooth: hci0: command tx timeout
[  203.276888][ T3143] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  203.347457][ T9399] loop3: detected capacity change from 0 to 32768
[  203.350659][ T9399] btrfs: Deprecated parameter 'usebackuproot'
[  203.356479][ T9399] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  203.363270][ T9399] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1352 (9399)
[  203.370919][ T9399] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  203.375393][ T9399] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  203.379813][ T9399] BTRFS error (device loop3): ignorebadroots must be used with ro mount option
[  203.383852][ T9399] BTRFS error (device loop3): open_ctree failed: -22
[  203.449063][ T3143] usb 5-1: unable to get BOS descriptor or descriptor too short
[  203.458328][ T3143] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  203.468900][ T3143] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  203.472597][ T3143] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.475974][ T3143] usb 5-1: Product: syz
[  203.495885][ T3143] usb 5-1: Manufacturer: syz
[  203.498431][ T3143] usb 5-1: SerialNumber: syz
[  203.730508][ T3143] usb 5-1: USB disconnect, device number 2
[  204.240718][ T9416] netlink: 'syz.0.1358': attribute type 1 has an invalid length.
[  204.243848][ T9416] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1358'.
[  204.249998][ T9416] netlink: 'syz.0.1358': attribute type 2 has an invalid length.
[  204.253302][ T9416] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1358'.
[  204.296662][ T5942] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  204.459760][ T5942] usb 4-1: Using ep0 maxpacket: 8
[  204.465848][ T5942] usb 4-1: config index 0 descriptor too short (expected 74, got 45)
[  204.470920][ T5942] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  204.475539][ T5942] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  204.486380][ T5942] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  204.491154][ T5942] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  204.495404][ T5942] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  204.501150][ T5942] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  204.505053][ T5942] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.686477][   T24] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  204.724552][ T5942] usb 4-1: GET_CAPABILITIES returned 0
[  204.730063][ T5942] usbtmc 4-1:16.0: can't read capabilities
[  204.826654][   T24] usb 1-1: device descriptor read/64, error -71
[  204.943244][ T5942] usb 4-1: USB disconnect, device number 4
[  205.066660][   T24] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  205.070028][ T5856] Bluetooth: hci0: command tx timeout
[  205.145527][ T5856] Bluetooth: hci0: Malformed Event: 0x2f
[  205.216458][   T24] usb 1-1: device descriptor read/64, error -71
[  205.326718][   T24] usb usb1-port1: attempt power cycle
[  205.436523][   T10] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  205.503996][ T9437] netlink: 'syz.3.1366': attribute type 11 has an invalid length.
[  205.508241][ T9437] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.1366'.
[  205.536845][ T9439] loop3: detected capacity change from 0 to 512
[  205.540002][ T9439] EXT4-fs: Ignoring removed orlov option
[  205.543117][ T9439] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  205.550483][ T9439] EXT4-fs (loop3): orphan cleanup on readonly fs
[  205.559591][ T9439] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1367: bg 0: block 248: padding at end of block bitmap is not set
[  205.567288][ T9439] Quota error (device loop3): write_blk: dquota write failed
[  205.570826][ T9439] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  205.575057][ T9439] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1367: Failed to acquire dquot type 1
[  205.584808][ T9439] EXT4-fs (loop3): 1 truncate cleaned up
[  205.588914][ T9439] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  205.598722][ T9439] EXT4-fs error (device loop3): __ext4_remount:6736: comm syz.3.1367: Abort forced by user
[  205.602239][ T9439] EXT4-fs (loop3): Remounting filesystem read-only
[  205.604813][ T9439] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[  205.607963][   T10] usb 5-1: Using ep0 maxpacket: 16
[  205.613901][   T10] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[  205.617495][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.620134][   T10] usb 5-1: Product: syz
[  205.621531][   T10] usb 5-1: Manufacturer: syz
[  205.623063][   T10] usb 5-1: SerialNumber: syz
[  205.626011][   T10] usb 5-1: config 0 descriptor??
[  205.629837][   T10] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  205.633624][   T10] usb 5-1: Detected FT-X
[  205.637301][ T9138] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.667378][   T24] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  205.687378][   T24] usb 1-1: device descriptor read/8, error -71
[  205.840983][   T10] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  205.844173][   T10] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  205.849350][   T10] ftdi_sio 5-1:0.0: GPIO initialisation failed: -71
[  205.853152][   T10] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  205.857922][   T10] usb 5-1: USB disconnect, device number 3
[  205.862319][   T10] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  205.866115][   T10] ftdi_sio 5-1:0.0: device disconnected
[  205.926453][   T24] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  205.947621][   T24] usb 1-1: device descriptor read/8, error -71
[  206.057035][   T24] usb usb1-port1: unable to enumerate USB device
[  206.618569][ T9451] loop3: detected capacity change from 0 to 736
[  206.646443][   T24] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  206.725001][ T9453] loop3: detected capacity change from 0 to 4096
[  206.731958][ T9453] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  206.829378][   T24] usb 5-1: Using ep0 maxpacket: 32
[  206.833322][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  206.843120][   T24] usb 5-1: New USB device found, idVendor=0c72, idProduct=0011, bcdDevice= 9.75
[  206.848480][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.856430][   T24] usb 5-1: Product: syz
[  206.858310][   T24] usb 5-1: Manufacturer: syz
[  206.860345][   T24] usb 5-1: SerialNumber: syz
[  206.864406][   T24] usb 5-1: config 0 descriptor??
[  207.028165][ T9459] loop3: detected capacity change from 0 to 32768
[  207.034707][ T9459] JBD2: Ignoring recovery information on journal
[  207.054287][ T9459] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  207.073241][   T24] peak_usb 5-1:0.0 can0: unable to request usb[type=0 value=1] err=-71
[  207.076990][   T24] peak_usb 5-1:0.0: unable to read PCAN-USB Pro FD firmware info (err -71)
[  207.114728][ T9138] ocfs2: Unmounting device (7,3) on (node local)
[  207.129375][   T24] peak_usb 5-1:0.0: probe with driver peak_usb failed with error -71
[  207.138007][   T24] usb 5-1: USB disconnect, device number 4
[  207.146911][ T5856] Bluetooth: hci0: command tx timeout
[  207.543264][ T9484] Bluetooth: MGMT ver 1.23
[  207.610912][ T9488] loop3: detected capacity change from 0 to 256
[  208.387098][   T24] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  208.569841][ T9520] loop4: detected capacity change from 0 to 764
[  208.575082][ T9520] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  208.608028][   T24] usb 1-1: Using ep0 maxpacket: 16
[  208.613095][   T24] usb 1-1: config 0 has no interfaces?
[  208.620192][   T24] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  208.624196][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.627941][   T24] usb 1-1: Product: syz
[  208.629938][   T24] usb 1-1: Manufacturer: syz
[  208.632761][   T24] usb 1-1: SerialNumber: syz
[  208.637804][   T24] usb 1-1: config 0 descriptor??
[  208.656098][ T9522] netlink: 'syz.4.1400': attribute type 8 has an invalid length.
[  208.664438][ T9522] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  208.849342][  T790] usb 1-1: USB disconnect, device number 26
[  208.989930][   T24] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  209.136465][   T24] usb 5-1: Using ep0 maxpacket: 32
[  209.141054][   T24] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.144814][   T24] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  209.150823][   T24] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  209.153864][   T24] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  209.157889][   T24] usb 5-1: Product: syz
[  209.159304][   T24] usb 5-1: Manufacturer: syz
[  209.164469][   T24] hub 5-1:4.0: USB hub found
[  209.215380][ T9526] loop3: detected capacity change from 0 to 32768
[  209.218949][ T9526] XFS: attr2 mount option is deprecated.
[  209.224815][ T9526] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  209.226535][ T5849] Bluetooth: hci0: command tx timeout
[  209.229540][ T9526] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  209.244274][ T9526] XFS (loop3): Ending clean mount
[  209.250189][ T9526] XFS (loop3): Quotacheck needed: Please wait.
[  209.274072][ T9526] XFS (loop3): Quotacheck: Done.
[  209.296006][ T9138] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  209.376579][   T24] hub 5-1:4.0: 2 ports detected
[  209.610421][ T9542] loop0: detected capacity change from 0 to 40427
[  209.626803][ T5856] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  209.646934][ T9542] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  209.650598][ T9542] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  209.670906][ T5847] bio_check_eod: 1 callbacks suppressed
[  209.670916][ T5847] syz-executor: attempt to access beyond end of device
[  209.670916][ T5847] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  209.679829][ T5847] CPU: 1 UID: 0 PID: 5847 Comm: syz-executor Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  209.679850][ T5847] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  209.679858][ T5847] Call Trace:
[  209.679864][ T5847]  <TASK>
[  209.679870][ T5847]  dump_stack_lvl+0x189/0x250
[  209.679893][ T5847]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.679930][ T5847]  ? __pfx_queue_work_on+0x10/0x10
[  209.679942][ T5847]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  209.679958][ T5847]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  209.679982][ T5847]  f2fs_handle_critical_error+0x37c/0x540
[  209.680004][ T5847]  f2fs_write_end_io+0x886/0xb60
[  209.680037][ T5847]  __submit_merged_bio+0x27a/0x6a0
[  209.680059][ T5847]  __submit_merged_write_cond+0x255/0x530
[  209.680081][ T5847]  f2fs_write_data_pages+0x261d/0x3000
[  209.680132][ T5847]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  209.680190][ T5847]  ? __mod_zone_page_state+0xd7/0x140
[  209.680217][ T5847]  ? folios_put_refs+0x560/0x640
[  209.680242][ T5847]  ? __lock_acquire+0xab9/0xd20
[  209.680268][ T5847]  ? do_raw_spin_lock+0x121/0x290
[  209.680292][ T5847]  ? do_raw_spin_unlock+0x4d/0x240
[  209.680308][ T5847]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  209.680325][ T5847]  do_writepages+0x32e/0x550
[  209.680353][ T5847]  ? do_raw_spin_unlock+0x4d/0x240
[  209.680371][ T5847]  filemap_fdatawrite+0x199/0x240
[  209.680389][ T5847]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  209.680447][ T5847]  ? do_raw_spin_unlock+0x4d/0x240
[  209.680466][ T5847]  f2fs_sync_dirty_inodes+0x31f/0x830
[  209.680520][ T5847]  f2fs_write_checkpoint+0x95a/0x1df0
[  209.680560][ T5847]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  209.680619][ T5847]  ? kill_f2fs_super+0x298/0x6c0
[  209.680641][ T5847]  kill_f2fs_super+0x2c3/0x6c0
[  209.680664][ T5847]  ? __pfx_kill_f2fs_super+0x10/0x10
[  209.680679][ T5847]  ? radix_tree_delete_item+0x2b6/0x400
[  209.680700][ T5847]  ? shrinker_free+0x2ce/0x3e0
[  209.680717][ T5847]  deactivate_locked_super+0xbc/0x130
[  209.680734][ T5847]  cleanup_mnt+0x425/0x4c0
[  209.680749][ T5847]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.680766][ T5847]  task_work_run+0x1d4/0x260
[  209.680786][ T5847]  ? __pfx_task_work_run+0x10/0x10
[  209.680800][ T5847]  ? __x64_sys_umount+0x122/0x160
[  209.680821][ T5847]  ? exit_to_user_mode_loop+0x40/0x110
[  209.680842][ T5847]  exit_to_user_mode_loop+0xec/0x110
[  209.680859][ T5847]  do_syscall_64+0x2bd/0x3b0
[  209.680874][ T5847]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.680887][ T5847]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.680899][ T5847]  ? exc_page_fault+0x9f/0xf0
[  209.680915][ T5847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.680928][ T5847] RIP: 0033:0x7f2e3478ff17
[  209.680940][ T5847] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  209.680951][ T5847] RSP: 002b:00007ffd36493028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  209.680966][ T5847] RAX: 0000000000000000 RBX: 00007f2e34811c05 RCX: 00007f2e3478ff17
[  209.680974][ T5847] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd364930e0
[  209.680982][ T5847] RBP: 00007ffd364930e0 R08: 0000000000000000 R09: 0000000000000000
[  209.680989][ T5847] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd36494170
[  209.680997][ T5847] R13: 00007f2e34811c05 R14: 0000000000033298 R15: 00007ffd364941b0
[  209.681021][ T5847]  </TASK>
[  209.682292][ T5847] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  209.717345][ T3143] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  209.822442][   T24] hub 5-1:4.0: set hub depth failed
[  209.832251][   T24] usb 5-1: USB disconnect, device number 5
[  209.867791][ T3143] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  209.873433][ T3143] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  209.879960][ T3143] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[  209.885739][ T3143] usb 4-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  209.889105][ T3143] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.892173][ T3143] usb 4-1: Product: syz
[  209.893604][ T3143] usb 4-1: Manufacturer: syz
[  209.895214][ T3143] usb 4-1: SerialNumber: syz
[  209.898733][ T3143] usb 4-1: config 0 descriptor??
[  209.901156][ T9546] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  209.904334][ T9546] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  209.908663][ T3143] usb 4-1: ucan: probing device on interface #0
[  210.113860][ T3143] usb 4-1: ucan: could not read protocol version, ret=-32
[  210.116247][ T3143] usb 4-1: ucan: probe failed; try to update the device firmware
[  210.121858][ T3143] usb 4-1: USB disconnect, device number 5
[  210.280443][ T9561] loop0: detected capacity change from 0 to 764
[  210.289921][ T9561] Symlink component flag not implemented
[  210.320741][ T9563] loop4: detected capacity change from 0 to 2048
[  210.329742][ T9563] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.333719][ T9563] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.359232][ T9563] overlayfs: failed to verify upper (/file0, ino=19, err=-28)
[  210.361955][ T9563] overlayfs: failed to verify index dir 'upper' xattr
[  210.364191][ T9563] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  210.387302][ T9325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.524619][ T9577] loop4: detected capacity change from 0 to 512
[  210.531619][ T9577] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  210.552552][ T3534] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  210.694435][ T9579] loop4: detected capacity change from 0 to 32768
[  210.701938][ T9579] JBD2: Ignoring recovery information on journal
[  210.723617][ T9579] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  210.755255][ T9325] ocfs2: Unmounting device (7,4) on (node local)
[  210.880626][ T9590] netlink: 292 bytes leftover after parsing attributes in process `syz.3.1424'.
[  211.307052][ T5856] Bluetooth: hci0: command 0x1407 tx timeout
[  211.482369][ T9615] loop3: detected capacity change from 0 to 32768
[  211.487492][ T9615] (syz.3.1435,9615,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  211.492739][ T9615] (syz.3.1435,9615,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  211.505696][ T9615] JBD2: Ignoring recovery information on journal
[  211.535629][ T9615] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  211.571635][    C1] vcan0: j1939_tp_rxtimer: 0xffff8881080e0800: rx timeout, send abort
[  211.577861][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8881080e0800: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  211.649985][ T9138] ocfs2: Unmounting device (7,3) on (node local)
[  212.644835][ T5695] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.771859][ T5695] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.853627][ T5695] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.975211][ T5695] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.350878][ T5695] bridge_slave_1: left allmulticast mode
[  213.353208][ T5695] bridge_slave_1: left promiscuous mode
[  213.355260][ T5695] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.374245][ T9651] loop3: detected capacity change from 0 to 2048
[  213.380301][ T5695] bridge_slave_0: left allmulticast mode
[  213.382757][ T5695] bridge_slave_0: left promiscuous mode
[  213.384777][ T5695] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.427423][ T9651] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.434067][ T9651] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  213.500857][ T9138] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.514212][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  213.519761][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  213.523102][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  213.556642][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  213.560646][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  213.604976][ T9658] loop0: detected capacity change from 0 to 32768
[  213.608773][ T9658] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1449 (9658)
[  213.623885][ T9658] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  213.627613][ T9658] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  213.639024][ T9658] BTRFS info (device loop0): using free-space-tree
[  213.719260][ T9658] BTRFS info (device loop0): rebuilding free space tree
[  213.753225][ T9681] loop3: detected capacity change from 0 to 256
[  213.799036][ T5847] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  213.868675][ T9683] loop4: detected capacity change from 0 to 7
[  213.879131][ T9683] Dev loop4: unable to read RDB block 7
[  213.895027][ T9683]  loop4: AHDI p1 p2
[  213.897135][ T9683] loop4: partition table partially beyond EOD, truncated
[  213.912461][ T9683] loop4: p1 size 4227858431 extends beyond EOD, truncated
[  214.089910][ T9695] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1459'.
[  214.131654][ T5695] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  214.135872][ T9697] loop0: detected capacity change from 0 to 256
[  214.140975][ T9697] exfat: Deprecated parameter 'namecase'
[  214.143241][ T5695] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  214.150384][ T9697] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  214.155079][ T5695] bond0 (unregistering): Released all slaves
[  214.645546][ T9718] loop3: detected capacity change from 0 to 2048
[  214.663287][ T9718] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  214.731603][ T5695] hsr_slave_0: left promiscuous mode
[  214.789049][ T5695] hsr_slave_1: left promiscuous mode
[  214.830503][ T5695] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  214.851860][ T5695] batman_adv: batadv0: Removing interface: batadv_slave_0
[  214.904967][ T5695] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  214.932375][ T5695] batman_adv: batadv0: Removing interface: batadv_slave_1
[  214.993669][ T9718] ------------[ cut here ]------------
[  214.996573][ T9718] WARNING: CPU: 0 PID: 9718 at fs/udf/inode.c:684 udf_setsize+0xd4e/0x1000
[  215.000488][ T9718] Modules linked in:
[  215.002598][ T9718] CPU: 0 UID: 0 PID: 9718 Comm: syz.3.1469 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  215.008765][ T9718] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  215.013487][ T9718] RIP: 0010:udf_setsize+0xd4e/0x1000
[  215.015811][ T9718] Code: 44 89 e0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 46 df 45 08 cc e8 10 0f 8a fe 45 89 f4 e9 49 fe ff ff e8 03 0f 8a fe 90 <0f> 0b 90 e9 00 f8 ff ff 44 89 e9 80 e1 07 38 c1 0f 8c 49 f3 ff ff
[  215.024456][ T9718] RSP: 0000:ffffc90006467ac0 EFLAGS: 00010283
[  215.027225][ T9718] RAX: ffffffff83359cad RBX: ffff88802afb0158 RCX: 0000000000080000
[  215.030904][ T9718] RDX: ffffc90027fbc000 RSI: 00000000000006fd RDI: 00000000000006fe
[  215.034166][ T9718] RBP: ffffc90006467be8 R08: ffff88802afb011b R09: 1ffff110055f6023
[  215.037823][ T9718] R10: dffffc0000000000 R11: ffffed10055f6024 R12: 0000000000000001
[  215.041245][ T9718] R13: 00000000000081ff R14: 0000000000007e00 R15: 0000000000008c00
[  215.044757][ T9718] FS:  00007fc7adf4b6c0(0000) GS:ffff8880b8624000(0000) knlGS:0000000000000000
[  215.048809][ T9718] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  215.051523][ T9718] CR2: 00007f2cde8da870 CR3: 000000002cf7e000 CR4: 00000000000006f0
[  215.054953][ T9718] Call Trace:
[  215.056534][ T9718]  <TASK>
[  215.057880][ T9718]  ? __pfx_udf_setsize+0x10/0x10
[  215.060041][ T9718]  ? down_write+0x162/0x1f0
[  215.062040][ T9718]  udf_setattr+0x3a1/0x5a0
[  215.063922][ T9718]  ? __pfx_udf_setattr+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  215.066038][ T9718]  notify_change+0xb36/0xe40
[  215.068617][ T9718]  do_truncate+0x1a4/0x220
[  215.070671][ T9718]  ? __pfx_do_truncate+0x10/0x10
[  215.072815][ T9718]  do_ftruncate+0x489/0x540
[  215.074841][ T9718]  ? __pfx_do_ftruncate+0x10/0x10
[  215.077392][ T9718]  ? __fget_files+0x2a/0x420
[  215.079349][ T9718]  __x64_sys_ftruncate+0x92/0xf0
[  215.081509][ T9718]  do_syscall_64+0xfa/0x3b0
[  215.083516][ T9718]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.086054][ T9718]  ? asm_sysvec_call_function_single+0x1a/0x20
[  215.090734][ T9718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.093275][ T9718] RIP: 0033:0x7fc7ad18ebe9
[  215.095283][ T9718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.103564][ T9718] RSP: 002b:00007fc7adf4b038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[  215.107363][ T9718] RAX: ffffffffffffffda RBX: 00007fc7ad3b5fa0 RCX: 00007fc7ad18ebe9
[  215.111003][ T9718] RDX: 0000000000000000 RSI: 00000000000081ff RDI: 0000000000000004
[  215.114864][ T9718] RBP: 00007fc7ad211e19 R08: 0000000000000000 R09: 0000000000000000
[  215.118568][ T9718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  215.121911][ T9718] R13: 00007fc7ad3b6038 R14: 00007fc7ad3b5fa0 R15: 00007ffd9ffe4f58
[  215.125401][ T9718]  </TASK>
[  215.127098][ T9718] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  215.130291][ T9718] CPU: 0 UID: 0 PID: 9718 Comm: syz.3.1469 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  215.135564][ T9718] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  215.139960][ T9718] Call Trace:
[  215.141508][ T9718]  <TASK>
[  215.142798][ T9718]  dump_stack_lvl+0x99/0x250
[  215.144844][ T9718]  ? __asan_memcpy+0x40/0x70
[  215.146885][ T9718]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.149129][ T9718]  ? __pfx__printk+0x10/0x10
[  215.151152][ T9718]  vpanic+0x281/0x750
[  215.152925][ T9718]  ? __pfx__printk+0x10/0x10
[  215.155043][ T9718]  ? __pfx_vpanic+0x10/0x10
[  215.157008][ T9718]  ? is_bpf_text_address+0x26/0x2b0
[  215.159165][ T9718]  panic+0xb9/0xc0
[  215.160723][ T9718]  ? __pfx_panic+0x10/0x10
[  215.162575][ T9718]  __warn+0x31b/0x4b0
[  215.164281][ T9718]  ? udf_setsize+0xd4e/0x1000
[  215.166217][ T9718]  ? udf_setsize+0xd4e/0x1000
[  215.168213][ T9718]  report_bug+0x2be/0x4f0
[  215.170003][ T9718]  ? udf_setsize+0xd4e/0x1000
[  215.171972][ T9718]  ? udf_setsize+0xd4e/0x1000
[  215.173954][ T9718]  ? udf_setsize+0xd50/0x1000
[  215.175915][ T9718]  handle_bug+0x84/0x160
[  215.177698][ T9718]  exc_invalid_op+0x1a/0x50
[  215.179668][ T9718]  asm_exc_invalid_op+0x1a/0x20
[  215.181791][ T9718] RIP: 0010:udf_setsize+0xd4e/0x1000
[  215.184059][ T9718] Code: 44 89 e0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 46 df 45 08 cc e8 10 0f 8a fe 45 89 f4 e9 49 fe ff ff e8 03 0f 8a fe 90 <0f> 0b 90 e9 00 f8 ff ff 44 89 e9 80 e1 07 38 c1 0f 8c 49 f3 ff ff
[  215.191871][ T9718] RSP: 0000:ffffc90006467ac0 EFLAGS: 00010283
[  215.194439][ T9718] RAX: ffffffff83359cad RBX: ffff88802afb0158 RCX: 0000000000080000
[  215.197868][ T9718] RDX: ffffc90027fbc000 RSI: 00000000000006fd RDI: 00000000000006fe
[  215.201188][ T9718] RBP: ffffc90006467be8 R08: ffff88802afb011b R09: 1ffff110055f6023
[  215.204552][ T9718] R10: dffffc0000000000 R11: ffffed10055f6024 R12: 0000000000000001
[  215.207719][ T9718] R13: 00000000000081ff R14: 0000000000007e00 R15: 0000000000008c00
[  215.211095][ T9718]  ? udf_setsize+0xd4d/0x1000
[  215.213246][ T9718]  ? __pfx_udf_setsize+0x10/0x10
[  215.215456][ T9718]  ? down_write+0x162/0x1f0
[  215.217451][ T9718]  udf_setattr+0x3a1/0x5a0
[  215.219375][ T9718]  ? __pfx_udf_setattr+0x10/0x10
[  215.221488][ T9718]  notify_change+0xb36/0xe40
[  215.223385][ T9718]  do_truncate+0x1a4/0x220
[  215.225224][ T9718]  ? __pfx_do_truncate+0x10/0x10
[  215.227389][ T9718]  do_ftruncate+0x489/0x540
[  215.229454][ T9718]  ? __pfx_do_ftruncate+0x10/0x10
[  215.231508][ T9718]  ? __fget_files+0x2a/0x420
[  215.233512][ T9718]  __x64_sys_ftruncate+0x92/0xf0
[  215.235675][ T9718]  do_syscall_64+0xfa/0x3b0
[  215.237635][ T9718]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.240223][ T9718]  ? asm_sysvec_call_function_single+0x1a/0x20
[  215.242922][ T9718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.245447][ T9718] RIP: 0033:0x7fc7ad18ebe9
[  215.247284][ T9718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.255388][ T9718] RSP: 002b:00007fc7adf4b038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[  215.258734][ T9718] RAX: ffffffffffffffda RBX: 00007fc7ad3b5fa0 RCX: 00007fc7ad18ebe9
[  215.262112][ T9718] RDX: 0000000000000000 RSI: 00000000000081ff RDI: 0000000000000004
[  215.265394][ T9718] RBP: 00007fc7ad211e19 R08: 0000000000000000 R09: 0000000000000000
[  215.268534][ T9718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  215.271697][ T9718] R13: 00007fc7ad3b6038 R14: 00007fc7ad3b5fa0 R15: 00007ffd9ffe4f58
[  215.274840][ T9718]  </TASK>
[  215.276975][ T9718] Kernel Offset: disabled
[  215.278827][ T9718] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:01:23  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000003a RBX=000000000000003a RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000006a78 RDI=0000000000006a79 RBP=00000000000003f8 RSP=ffffc90006467270
R8 =ffff888020b10237 R9 =1ffff11004162046 R10=dffffc0000000000 R11=ffffffff854e72e0
R12=dffffc0000000000 R13=ffffffff99af18e2 R14=ffffffff99de64e0 R15=0000000000000000
RIP=ffffffff854e735c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fc7adf4b6c0 ffffffff 00c00000
GS =0000 ffff8880b8624000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f2cde8da870 CR3=000000002cf7e000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f2e34987498 00007f2e34987470 XMM03=00007f2e349874a8 00007f2e349874a0
XMM04=00007f2e354ed100 00007f2e34987460 XMM05=00007f2e34987478 00007f2e349874c0
XMM06=00007f2e349874b8 00007f2e349874b0 XMM07=00007f2e349874a8 00007f2e349874a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f2e34812fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=0000000000000000 RCX=638a59140865db00 RDX=0000000000000000
RSI=ffffffff8dba33cb RDI=ffffffff8be32600 RBP=ffffffff820b7950 RSP=ffffc90004d2f920
R8 =0000000000000000 R9 =ffffffff820b7950 R10=ffffc90004d2faa0 R11=fffff520009a5f5b
R12=0000000000000001 R13=ffff88801d2b9760 R14=0000000000000001 R15=0000000000000246
RIP=ffffffff8b78b156 RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f2e355af6c0 ffffffff 00c00000
GS =0000 ffff8881a3c24000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f2e355aefc8 CR3=0000000122010000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f2e34987498 00007f2e34987470 XMM03=00007f2e349874a8 00007f2e349874a0
XMM04=00007f2e354ed100 00007f2e34987460 XMM05=00007f2e34987478 00007f2e349874c0
XMM06=00007f2e349874b8 00007f2e349874b0 XMM07=00007f2e349874a8 00007f2e349874a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f2e34812fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
