last executing test programs:

3m57.899835492s ago: executing program 0 (id=1383):
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x2})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, &(0x7f0000000140)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}, 0x2})

3m57.819195576s ago: executing program 0 (id=1385):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000006b80)={{0x14}, [@NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x2c, 0x1d, 0xa, 0x805, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x7c}}, 0x8010)

3m57.729714647s ago: executing program 0 (id=1387):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10, &(0x7f00000002c0)={[{@nobh}, {@prjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@mblk_io_submit}, {@acl}]}, 0xfe, 0x4b1, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x401c5820, &(0x7f0000000000)=@v2={0x2, @aes128, 0x0, '\x00', @c})

3m57.659289025s ago: executing program 0 (id=1389):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
symlink(&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000800)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3m57.658696797s ago: executing program 0 (id=1391):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d0470084761000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)

3m57.309590816s ago: executing program 0 (id=1399):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, 0x2}, 0x94)
writev(0xffffffffffffffff, &(0x7f0000000500)=[{&(0x7f0000000840)="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", 0x7c1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='mm_migrate_pages\x00', r0, 0x0, 0xdf5}, 0x14)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

3m57.17413822s ago: executing program 32 (id=1399):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, 0x2}, 0x94)
writev(0xffffffffffffffff, &(0x7f0000000500)=[{&(0x7f0000000840)="ae56bd43a0b2ea337540254ba8f4bd81a6476ccad9edf8ae5df062e5ca8618c0d1a016f8221c4458eb5b8669ad3cfe801f7be493c890f5fbe002dfc1b448990add5a42d45a4bb8270f02842fcfcc23e21d7d9bb0edc4aebbefd14d9219101f969207992421276e2e34bbcc361e512d32f51b8976cca1156accdee03ff8ab113bf5791e25dab89137f53a9d0471fc4370bfebf9c5bbc771bce2d2f58d430a202d3a80ba11d2f21a5c5da776e5306ef96f86bc5c7f01647cf667688ec067a1c57a1c7dffbfddba20fbed24f207655280abd7f79f1862f321b1697339baf421bbd4852c6bbfea1fd15893fb3838189e0c805a025f82081d2675ae721e12cab91065a01e990192ae540fe1dd0eb417449a96ca739a37136bb32532a2595ac8e5f5b037ec6d36501b709e20e7839814044a670e44dbc1a8041264106da3a218790967d0a25bec4ab08034376683f1b33db6fef7a72ceb00a79654c953ad03dcc26b37efbc31150c5782e52b410d0fa83c2f44d78b281592fc48308e95afab45c38c0fd91cb8375f6951d868979900fc33e8f50e502a39da4dc5919baceb0e74136a667be2fb5160b05cae5c71b7fd82d13bed2b87679809cd15a5bfe8ef5a761e9a60dbf16355f8437fbb66782c15acea0ceb7e971e21a545602e37df96d3a53dc639dadc0e40a53580f2e7add27ad6c634f9eed0be94ff91f1e8b311630cda15ea18da83be1c3421faf86956ec4ec4abd853e738e5e61ba16202d98bfa149047206a9dea9af9344aff7438de5837464e03c28c3ed0e0a2f60f64609630e0d8c0156e97f4d26d85532630beb4f028ccfa4e71e598ea9d3276dc5c71e343f088cb4a6454b4eacd9eeada0c95ef9e56f79a44117e5b870b020405dfd58d27d796c1fd00e5ed844b32d654338b15fe5de74443ab8abdaf80c8556532da47594d48963ec550502485849374d49420dbbbdb97f687e41693e8150e6b4c7faa04d00da168cdf5c4ac89bf78fc4a608c1e0daca451907b656730f60ead4c9a46b824c1be2602649cbcf9da367c5568d5e408cfe9ae8525d4a1c90816f163c4dd3a1585f6f46e7aa8e191861aed4f902af7937ad48471d53702bf80b1176261f81753ef8a25f4d1e7f8c2a13b9d4f26cc925f6611f3f7613c03fdec56fb69e872984c58022289eff7fdbb00744fa26098ce487fe5406f70f776db8aabc8d4a3dcc6bae2dc60ef907e997d4b8786bd3980975a34236114d8eeecfe3851100daeee4a663cec4b7cfdec91d72672a325c758253bdce1280b45c1af2c4f443b65a12fb716d7f0ab144ee6aaf930498a9c985d380c8bff94356d7d3c252c1be73e274223b87e46cee644152b9f4098f4968d8db9ac0c3de53f591eda3e8608a98adf103764d138b32aac339dc79a48e616e43346b458a9b334528fd697469fc7180154e3581c395029682125017964c54ed47bdabce7c0e31ff6e241eb5f9cbfad377f856db115346062388cfb03006c7dda8e0ec33efc75a38bef099d08016ad52fbd9f389d2c4aced3707ca8326d48e316baec6e138dfc1059ae8cfd4cf25d02b4c3a5a95d6afd1bf32f13abfc85a4322a8f2b8a66ba3048277565b51fad8a5f48349428a1548dfeff73e8214838c648eb062690b43fafd7bacecd34ce35d704bbf739fefbf14fc0ff172e357f7675f91992578411266291ac3983dc700ca5fc7fdb4ec1d8d563e9ea584adb1007277d2dc6981b53c2574d41cb202ea44578c924b5644f6e093ecb2ddd690c15db3c349fde6e1fa815e43ee75bb4651dff7ac15e3e818f4b976f048577155b2bbb745c38dd0fbeef12c1343ffc0a3b10e4b045f8d84ce75e4f8dd8e3a26c01645be7203a558d311202a5afc5ca698309b14d07c493b2cf8264feda3f48e9e3d38457d3aa13c56e214bb26fa2753984bf24d10dc051d0726507fc76b93b4013173a41ed2dab56207de2dbd252f6ef945c13e8062a41e31b158bae012f203806f0bdfdb02bdb93fa39954cef3b0270d57744a1aeba84537f93d7c89fcfb889cda91dd8379d8a40b9e33c60c0b776f2b9e1484a18d6df4d3a617215f20f46b7ce64f6cade7c173582e439e93cd8d657822d2015d66c772cd4089e3e5539d3a347a1486b40224af041309715838cdd09b9515040dd6457f54510542933249155e5aea79b121f974b0d8ee0ccdd81c19c427612f99b9e5c968e05bef8064a6a9c4ad4057b3ed2b2855925448fe6f6bee1f2090de6c63172b95f6ac52c51e3639103cbf0c7323b0a480b793698516a15e02f829b9c59278e6ce2a872751b90c877b3e88572a5889a0eb7324826f259fb269fafd6e7786db2190835b1433e0bdef1f295c991c394380521178a2f3af138bd40075b922c6eca13312783632060b7aba343c027b868a7f3660c8fe8224d5bb5d6bf06208cfb42339e23e15853efcb21ef3f857a75a8026ab3f491ba3d6775fbd77cee561313103fd7d77238e8afc0f79fbbf36801dd9208e113b776f9230608717c784c27385c48ec328057159bbb12892fc64a5a70bcdb066c72e5d66da76ec5f254a31bed6d5823e2f1c9b635cb9dad499e9027623678e9505d0b3ad16b9940904ccf9ff33702f463630fbdc35fcbf6cd454286a49f9161744e0414ad97c8ae0246b12570bd9993a2e93a1ec97f710beaf6f7d536374d5bf46aa6b4179a04889899ca6b7ed4826c07bf200a95c5fc8afb97f621cdfae42b0bda6009087561fba3e2d056564708878616656f82da1c91c45e2e3d3f3439357cdaf30695993c6bc714cde8093919586e0806a25d", 0x7c1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='mm_migrate_pages\x00', r0, 0x0, 0xdf5}, 0x14)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

3m39.890683948s ago: executing program 1 (id=1605):
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x20032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)

3m39.773653s ago: executing program 1 (id=1606):
openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x402, 0x0)
r0 = syz_io_uring_setup(0x239, &(0x7f0000001080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

3m39.773025015s ago: executing program 1 (id=1608):
syz_mount_image$bcachefs(&(0x7f0000000200), &(0x7f0000000000)='./file1\x00', 0x1800402, &(0x7f0000000840)=ANY=[@ANYBLOB="6a6f75726e616c5f7472616e73616374696f6e5f6e616d65732c6d657461646174615f636865636b73756d3d63726336342c7f6174615f636865636b73756d3d6372633332632c6673636b2c6a6f75726e616c5f666c7573685f64697361626c65642c726174656cd6ee984c5f6572726f72732c7265636f766572795f706173735f6c6173743d7365745f6d61795f676f5f72772c7265636f6e7374727563745f616c6c6f632c6e6f5f646174615f696f2c7374725f686173683d736970686173682c000f456c33737c01c96a485301f57184319607791e0389515818ee65b05741a83e2d3412b274e683f19cb37b6975e95e26fbf8", @ANYRES16=0x0, @ANYRESDEC, @ANYRESHEX=0x0, @ANYRES32], 0x1, 0x5962, &(0x7f0000001400)="$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")

3m39.05743226s ago: executing program 1 (id=1621):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f0000000040)='./file0/../file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

3m37.547317577s ago: executing program 1 (id=1623):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="300000001a00010008000000fcdbdf2502000000", @ANYRES32=0x0, @ANYBLOB="000000001400030007000095"], 0x30}}, 0x0)

3m37.537791141s ago: executing program 1 (id=1624):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)={0x50, 0x1, 0x2, 0x201, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x14, 0x4, @empty}}}]}]}, 0x50}}, 0x0)

3m37.265272944s ago: executing program 33 (id=1624):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)={0x50, 0x1, 0x2, 0x201, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x14, 0x4, @empty}}}]}]}, 0x50}}, 0x0)

3m35.466916651s ago: executing program 3 (id=1646):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
unshare(0x400)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x200000000000}, 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)

3m35.323952777s ago: executing program 3 (id=1648):
syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x8000, &(0x7f0000000480)=ANY=[@ANYBLOB="00e611ed6229b237ad2a184a94283e2b34c24caf7280c18475708140abe763dfb52cdb0ba0cdc8c572346d0a832984b36248c4fa844eda0af4b1652605421a7821dcfde12aa77458d811a84538a156b05b0ec3eaf24a90ceb5b7463d9fd38b49d41fbfa868653605702abe43d9c2c30aed4da0b8cc18c6b369f086a965442c1217f19a67a534064b7236a6660000000000"], 0x1, 0x190, &(0x7f0000000e40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x69000}], 0x1)

3m35.207624393s ago: executing program 3 (id=1649):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001880)=ANY=[@ANYBLOB="680300002400010026bd7000fedbdf25550300800c00010002"], 0x368}], 0x1}, 0x0)

3m33.81434715s ago: executing program 3 (id=1654):
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', 0x48cf, &(0x7f0000000600), 0x0, 0x274, &(0x7f0000000a00)="$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")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0x2100)

3m33.682172479s ago: executing program 3 (id=1655):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffee, 0x10, &(0x7f0000000000), 0x10, 0xffffffffffffffff}, 0x4e)

3m33.426134657s ago: executing program 3 (id=1656):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000080)='./file0\x00', 0xa00004, &(0x7f0000000980)={[{@adinicb}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@utf8}, {@uid}, {}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@mode={'mode', 0x3d, 0x8}}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}, {@adinicb}, {@gid_forget}, {@lastblock={'lastblock', 0x3d, 0x7}}, {@gid_forget}, {@anchor={'anchor', 0x3d, 0x907}}]}, 0x1, 0xc4d, &(0x7f0000000f40)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))

3m33.22716009s ago: executing program 34 (id=1656):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000080)='./file0\x00', 0xa00004, &(0x7f0000000980)={[{@adinicb}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@utf8}, {@uid}, {}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@mode={'mode', 0x3d, 0x8}}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}, {@adinicb}, {@gid_forget}, {@lastblock={'lastblock', 0x3d, 0x7}}, {@gid_forget}, {@anchor={'anchor', 0x3d, 0x907}}]}, 0x1, 0xc4d, &(0x7f0000000f40)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))

2m52.753320982s ago: executing program 4 (id=2131):
syz_mount_image$jfs(&(0x7f00000021c0), &(0x7f0000002140)='./bus\x00', 0x2008010, &(0x7f00000000c0)=ANY=[], 0x1, 0x6286, &(0x7f000000dc80)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000802, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0xee01, 0x0)

2m52.35353329s ago: executing program 4 (id=2136):
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
write$vga_arbiter(r0, &(0x7f0000000040)=@unlock_all, 0xb)

2m52.183809354s ago: executing program 4 (id=2141):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=@newsa={0x13c, 0x10, 0x413, 0x0, 0x25dfdbfb, {{@in6=@dev, @in=@remote}, {@in=@private=0xa010100, 0x0, 0x32}, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, {0x0, 0x400, 0x0, 0x0, 0x0, 0x40000000000000}, {0x0, 0xb, 0x0, 0x8000}, {}, 0x0, 0x1000000, 0xa}, [@algo_aead={0x4c, 0x12, {{'rfc4106-gcm-aesni\x00'}, 0x0, 0x40}}]}, 0x13c}}, 0x4000080)

2m52.123590363s ago: executing program 4 (id=2143):
syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000100)='./file1\x00', 0x800800, &(0x7f0000000800)={[{@utf8}, {@iocharset={'iocharset', 0x3d, 'cp775'}}, {@sys_tz}, {@zero_size_dir}, {@umask={'umask', 0x3d, 0x5}}, {@errors_continue}, {@keep_last_dots}, {@fmask={'fmask', 0x3d, 0x3c}}, {@errors_continue}, {@sys_tz}]}, 0x1, 0x1541, &(0x7f0000001f40)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)

2m52.054052432s ago: executing program 4 (id=2145):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xb173, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000100)={0x4f, 0x1, 0x2, "4749573e7c17e6000000681800"})

2m51.802275378s ago: executing program 4 (id=2148):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000f0400000000005f"], 0x0, 0x28}, 0x20)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x4, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x1}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000380)={r1, 0x0, 0x0}, 0x10)

2m51.273303712s ago: executing program 35 (id=2148):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000f0400000000005f"], 0x0, 0x28}, 0x20)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x4, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x1}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000380)={r1, 0x0, 0x0}, 0x10)

1.76891364s ago: executing program 5 (id=4513):
r0 = socket(0x22, 0x2, 0x4)
unshare(0x26020480)
bind$bt_hci(r0, &(0x7f0000001200)={0x1f, 0x3}, 0x6)

1.695911937s ago: executing program 5 (id=4515):
r0 = syz_open_dev$sg(&(0x7f00000005c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x8f93f000)

1.648980295s ago: executing program 5 (id=4518):
syz_read_part_table(0x1061, &(0x7f0000001080)="$eJzsz71tAlEQBOA5n33nwJJdgku5yB24GSemCiogogdEA8SUgYRIkRZx/HUABN+XPI3erFYbHquZzqqqfhan+LfKe30m2TbXypj7oW2PYZLxSZf+/N0lr8m+Km+3kSH1kl2+kmZstJd135ssP1L1n6zzO7/bnQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwxA4BAAD//0yNF/Y=")

1.529995363s ago: executing program 5 (id=4520):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x3)
fcntl$notify(r0, 0x402, 0x8000003d)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
open(0x0, 0x800, 0x70)
chdir(&(0x7f0000000140)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)

1.529794202s ago: executing program 5 (id=4521):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0207e80702"], 0x10}}, 0x40044)
r1 = socket$inet6(0xa, 0x3, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@private2, @in6=@remote, 0x0, 0x56, 0x2, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x4, 0xfffffffffffffffb, 0x2000000, 0x2}, {0x7, 0x0, 0x4}, 0x1, 0x0, 0x1}, {{@in6=@loopback, 0x0, 0x33}, 0xa, @in=@loopback, 0x3507, 0x4, 0x0, 0x0, 0xffffffff, 0xfffffffe, 0x4}}, 0xe8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xff}}}, 0x1c)

559.112058ms ago: executing program 5 (id=4528):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmsg$inet(r0, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000003c0)="074c2c4c568c169f2f4aa61d3f9050260109748615c00b6871ab8a0ba059367829f101000100000000008f446224a94d4066a847ba994ee4f674b182f5a0c038ac5b0932682eb53e3208dcbef9ac1c03dce1f9ca6f3a034d32c899a55164e02dd2b29824dd114b358f3151b1a1028a7b1b", 0x71}, {&(0x7f0000000180)="736c33816bec8194bf664949552221af0e20efcbc89523cb5f4053cfc2cb8bf2444bbb36cef00d4e244b32c5c6bf96457303293f2c7beec95b40ea1902e3087b1db115003f16fc6fe1adbffc5d330bcfbb2ddf73e9dea08936129a65f912de23404c25e4389d9f2b6a84255d1dae39bca5908b04e0fd4e9fc10fd58a3c8b23c5296ec4ef86f2123287b29afc70e54a62fb1447d793a2b8e95d19d7800f6a69e7a4375002e43c46698a66e05c9b06", 0xae}, {&(0x7f0000000300)="17f203f6e5f7cebe0c1569af56cac5705009cb0a6432cb35753642afca4d8f9d187d75b78bafb2ae56656defa006f29a69650a7f84e8ef728de5b6231958a50d71698ea0f80dbf60998ce162a4e883de8fd159d745417d052aebf37ccd15fa9c2f9cc3320183503ed29d861971c74bc15004cc0338b2eff2cdd0c5f5af10324de72fb7a8f947489efb26c34f0d39c05c", 0x90}, {&(0x7f0000000500)="c95c7a15aca0e05009841351df24253c45b0c4ee906ec7bada08c16a930097bd02af19e5a145e3994c505ff6e5cb87cdeb90bb2d897db53f16f1eeae64d913058ac83df941589c1214998932ae2c6dc7f77ade836904107d1c4894abfcb93daed8e76fd8ca68", 0x66}, {&(0x7f0000000640)="87e0acea", 0x4}], 0x5, &(0x7f0000000c00)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x553}}, @ip_ttl={{0x14, 0x0, 0x2, 0xfffffffd}}, @ip_retopts={{0x54, 0x0, 0x7, {[@timestamp={0x44, 0x10, 0x8c, 0x0, 0x7, [0xead0, 0xd021, 0x9]}, @noop, @ra={0x94, 0x4, 0x1}, @lsrr={0x83, 0xb, 0xc2, [@multicast2, @multicast1]}, @timestamp_prespec={0x44, 0x24, 0x12, 0x3, 0x9, [{@multicast1, 0xd5}, {@private=0xa010101, 0xffff42be}, {@loopback, 0x67c03646}, {@private=0xa010100, 0x5}]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @broadcast}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast1}}}], 0xc8}, 0x20000000)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/tcp\x00')
lseek(r1, 0x300000002, 0x0)

479.323233ms ago: executing program 6 (id=4531):
lsm_get_self_attr(0x67, &(0x7f00000000c0)={0x0, 0x0, 0x44, 0x24, ""/36}, &(0x7f0000000140)=0x44, 0x1)

479.102053ms ago: executing program 6 (id=4532):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./bus\x00', 0x18410, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRES8], 0xfe, 0x4b1, &(0x7f0000001d00)="$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")
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
truncate(&(0x7f0000000080)='./file1\x00', 0x400000f000)

339.297614ms ago: executing program 6 (id=4536):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f00000003c0)={0x3})

287.756179ms ago: executing program 2 (id=4537):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
write$cgroup_subtree(r0, &(0x7f00000004c0)={[{0x2b, 'hugetlb'}]}, 0x9)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

287.451458ms ago: executing program 6 (id=4538):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff000}, {0x6}]}, 0x10)

287.233821ms ago: executing program 6 (id=4539):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f00000001c0)={[{@stripe={'stripe', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noquota}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@errors_continue}, {@orlov}, {@user_xattr}, {@quota}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
mknod$loop(&(0x7f0000000000)='./bus\x00', 0x2000, 0x1)

219.955415ms ago: executing program 2 (id=4540):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x40002}, [@IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x10}]}]}, @IFLA_ALT_IFNAME={0x14, 0x35, 'wg1\x00'}]}, 0x44}}, 0x0)

169.77071ms ago: executing program 6 (id=4541):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000680)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6e6f757365725f78617474722c636f686572656e63793d66756c6c2c646174613d77726974656261636b2c6c6f63616c616c6c6f633d30303030303030303030303030303030303030312c61636c2c6e6f61636c2c6c6f63616c616c6c6f633d30303030303030303030303030303030303030302c00a89f6b8d5800aa954e6c8735dcd52921ce08462fb4ce7c1600883251443ac332f4d17b77d29867e4321610936dbc5963e9fb59a032c92e32ebffc3b739951e866d52bff6bd63136a656222062a8eea0cf97480bc8ac6c0e8a2aa38ffa8fa758cd54b9ef39a7f536d7b85173a83c34d78e210ecf4d040817bbe989e9eb015acb84bb90577b8b405a48292eeca69f5275cb7b7027d4bf643bd69b034c0221a30"], 0x1, 0x442d, &(0x7f0000004480)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0xa0)

169.534387ms ago: executing program 2 (id=4542):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020200600000000000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000a8000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

89.966099ms ago: executing program 2 (id=4543):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000200)={0x30, r1, 0x1, 0x70bd29, 0x0, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x178e}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x20044080}, 0x20000000)

89.732907ms ago: executing program 2 (id=4544):
keyctl$KEYCTL_CAPABILITIES(0x1f, 0xffffffffffffffff, 0xfffffffffffffe53)

0s ago: executing program 2 (id=4545):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

kernel console output (not intermixed with test programs):

batadv_slave_0
[  259.286617][T11138] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.300336][T11138] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.314095][T11138] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.324566][T11138] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.335978][T11138] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.401146][T11138] hsr_slave_0: entered promiscuous mode
[  259.406426][T11138] hsr_slave_1: entered promiscuous mode
[  259.413984][T11138] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  259.423163][ T5220] Bluetooth: hci2: command tx timeout
[  259.424587][T11138] Cannot create hsr debugfs directory
[  259.661609][T11138] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  259.675468][T11138] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  259.685921][T11138] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  259.693983][T11138] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  259.753660][T11138] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.756581][T11138] bridge0: port 2(bridge_slave_1) entered forwarding state
[  259.759649][T11138] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.762470][T11138] bridge0: port 1(bridge_slave_0) entered forwarding state
[  259.833931][   T29] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.853890][   T29] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.884304][T11138] 8021q: adding VLAN 0 to HW filter on device bond0
[  259.900479][T11198] loop5: detected capacity change from 0 to 40427
[  259.913427][T11198] F2FS-fs (loop5): invalid crc value
[  259.913590][T11138] 8021q: adding VLAN 0 to HW filter on device team0
[  259.934032][   T29] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.936986][   T29] bridge0: port 1(bridge_slave_0) entered forwarding state
[  259.947044][   T29] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.950005][   T29] bridge0: port 2(bridge_slave_1) entered forwarding state
[  260.027362][T11198] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  260.078088][   T33] audit: type=1800 audit(1752502273.492:609): pid=11198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2179" name="bus" dev="loop5" ino=10 res=0 errno=0
[  260.115585][   T33] audit: type=1800 audit(1752502273.502:610): pid=11198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2179" name="bus" dev="loop5" ino=10 res=0 errno=0
[  260.140256][T11138] 8021q: adding VLAN 0 to HW filter on device batadv0
[  260.257820][ T9866] syz-executor: attempt to access beyond end of device
[  260.257820][ T9866] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  260.289264][ T9866] CPU: 1 UID: 0 PID: 9866 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa-dirty #0 PREEMPT(full) 
[  260.289291][ T9866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  260.289300][ T9866] Call Trace:
[  260.289306][ T9866]  <TASK>
[  260.289313][ T9866]  dump_stack_lvl+0x189/0x250
[  260.289341][ T9866]  ? __pfx_dump_stack_lvl+0x10/0x10
[  260.289356][ T9866]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  260.289378][ T9866]  ? __pfx_queue_work_on+0x10/0x10
[  260.289397][ T9866]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  260.289416][ T9866]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  260.289436][ T9866]  ? f2fs_hw_is_readonly+0x39b/0x470
[  260.289460][ T9866]  f2fs_handle_critical_error+0x37c/0x540
[  260.289484][ T9866]  f2fs_write_end_io+0x495/0x810
[  260.289496][ T9866]  ? blkg_put+0x22/0x240
[  260.289525][ T9866]  __submit_merged_bio+0x27a/0x6a0
[  260.289548][ T9866]  __submit_merged_write_cond+0x255/0x530
[  260.289574][ T9866]  f2fs_write_data_pages+0x261d/0x3000
[  260.289622][ T9866]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  260.289652][ T9866]  ? __pfx_hlock_conflict+0x10/0x10
[  260.289759][ T9866]  ? __lock_acquire+0xab9/0xd20
[  260.289782][ T9866]  ? do_raw_spin_lock+0x121/0x290
[  260.289816][ T9866]  ? do_raw_spin_unlock+0x4d/0x240
[  260.289834][ T9866]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  260.289855][ T9866]  do_writepages+0x32e/0x550
[  260.289880][ T9866]  ? do_raw_spin_unlock+0x4d/0x240
[  260.289902][ T9866]  filemap_fdatawrite+0x191/0x230
[  260.289919][ T9866]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  260.289972][ T9866]  ? do_raw_spin_unlock+0x4d/0x240
[  260.289994][ T9866]  f2fs_sync_dirty_inodes+0x31f/0x830
[  260.290019][ T9866]  f2fs_write_checkpoint+0x94a/0x1de0
[  260.290053][ T9866]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  260.290104][ T9866]  ? kill_f2fs_super+0x298/0x6c0
[  260.290124][ T9866]  kill_f2fs_super+0x2c3/0x6c0
[  260.290143][ T9866]  ? __pfx_kill_f2fs_super+0x10/0x10
[  260.290156][ T9866]  ? radix_tree_delete_item+0x2b6/0x400
[  260.290183][ T9866]  ? shrinker_free+0x2ce/0x3e0
[  260.290206][ T9866]  deactivate_locked_super+0xbc/0x130
[  260.290224][ T9866]  cleanup_mnt+0x425/0x4c0
[  260.290238][ T9866]  ? lockdep_hardirqs_on+0x9c/0x150
[  260.290264][ T9866]  task_work_run+0x1d4/0x260
[  260.290288][ T9866]  ? __pfx_task_work_run+0x10/0x10
[  260.290306][ T9866]  ? __x64_sys_umount+0x122/0x160
[  260.290327][ T9866]  ? exit_to_user_mode_loop+0x40/0x110
[  260.290344][ T9866]  exit_to_user_mode_loop+0xec/0x110
[  260.290360][ T9866]  do_syscall_64+0x2bd/0x3b0
[  260.290373][ T9866]  ? lockdep_hardirqs_on+0x9c/0x150
[  260.290393][ T9866]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.290406][ T9866]  ? exc_page_fault+0x9f/0xf0
[  260.290428][ T9866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.290441][ T9866] RIP: 0033:0x7f4e77f8fc57
[  260.290456][ T9866] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  260.290469][ T9866] RSP: 002b:00007ffe7156ff48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  260.290485][ T9866] RAX: 0000000000000000 RBX: 00007f4e78010925 RCX: 00007f4e77f8fc57
[  260.290495][ T9866] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe71570000
[  260.290503][ T9866] RBP: 00007ffe71570000 R08: 0000000000000000 R09: 0000000000000000
[  260.290511][ T9866] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe71571090
[  260.290521][ T9866] R13: 00007f4e78010925 R14: 000000000003f7ac R15: 00007ffe715710d0
[  260.290543][ T9866]  </TASK>
[  260.290840][ T9866] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  260.312464][T11138] veth0_vlan: entered promiscuous mode
[  260.430220][T11138] veth1_vlan: entered promiscuous mode
[  260.480696][T11138] veth0_macvtap: entered promiscuous mode
[  260.488952][T11138] veth1_macvtap: entered promiscuous mode
[  260.501294][T11138] batman_adv: batadv0: Interface activated: batadv_slave_0
[  260.510787][T11138] batman_adv: batadv0: Interface activated: batadv_slave_1
[  260.526566][T11138] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  260.529769][T11138] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  260.534913][T11138] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  260.537746][T11138] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  260.715040][T10471] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  260.718051][T10471] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  260.757397][T10471] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  260.760713][T10471] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  260.829557][T11245] loop6: detected capacity change from 0 to 24
[  261.023297][   T10] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  261.136254][   T33] audit: type=1326 audit(1752502274.552:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.6.2203" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x0
[  261.187005][   T10] usb 6-1: config 0 has an invalid interface number: 142 but max is 0
[  261.190130][   T10] usb 6-1: config 0 has no interface number 0
[  261.192529][   T10] usb 6-1: too many endpoints for config 0 interface 142 altsetting 187: 79, using maximum allowed: 30
[  261.212941][   T10] usb 6-1: config 0 interface 142 altsetting 187 has 0 endpoint descriptors, different from the interface descriptor's value: 79
[  261.218150][   T10] usb 6-1: config 0 interface 142 has no altsetting 0
[  261.231371][   T10] usb 6-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  261.236214][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.242544][   T10] usb 6-1: config 0 descriptor??
[  261.251130][   T10] ums-realtek 6-1:0.142: USB Mass Storage device detected
[  261.459889][   T10] usb 6-1: USB disconnect, device number 8
[  261.505267][ T5220] Bluetooth: hci2: command tx timeout
[  261.769316][T11293] loop6: detected capacity change from 0 to 512
[  261.794274][T11293] EXT4-fs error (device loop6): ext4_orphan_get:1393: inode #15: comm syz.6.2211: iget: bad i_size value: 38620345925642
[  261.799672][T11293] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.2211: couldn't read orphan inode 15 (err -117)
[  261.808420][T11293] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.820858][T11293] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.2211: bg 0: block 5: invalid block bitmap
[  261.873210][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.834350][T11312] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2220'.
[  262.837104][T11312] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2220'.
[  262.842425][T11312] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2220'.
[  262.944933][T11314] loop5: detected capacity change from 0 to 1024
[  262.949866][T11314] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  262.955234][T11314] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  262.990707][T11314] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  263.043327][T11314] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 2: comm syz.5.2219: lblock 2 mapped to illegal pblock 2 (length 1)
[  263.053026][T11314] EXT4-fs (loop5): Remounting filesystem read-only
[  263.055743][T11314] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  263.059074][T11314] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  263.068098][T11314] EXT4-fs (loop5): 1 orphan inode deleted
[  263.076487][T11314] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.178954][ T9866] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.583780][ T5220] Bluetooth: hci2: command tx timeout
[  263.640769][T11336] loop5: detected capacity change from 0 to 1024
[  263.658949][T11336] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.708901][ T9866] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.762847][ T5988] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  263.932463][ T5988] usb 7-1: New USB device found, idVendor=045e, idProduct=02bf, bcdDevice=7b.41
[  263.938365][ T5988] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  263.941602][ T5988] usb 7-1: Product: syz
[  263.944232][ T5988] usb 7-1: Manufacturer: syz
[  263.946045][ T5988] usb 7-1: SerialNumber: syz
[  263.952336][ T5988] usb 7-1: config 0 descriptor??
[  263.963209][ T5988] gspca_main: kinect-2.14.0 probing 045e:02bf
[  264.163276][ T5988] usb 7-1: USB disconnect, device number 2
[  265.036090][T11382] loop5: detected capacity change from 0 to 2048
[  265.064100][T11382]  loop5: AHDI p1 p3
[  265.065541][T11382] loop5: p1 start 4278648832 is beyond EOD, truncated
[  265.215222][T11397] netlink: 'syz.5.2258': attribute type 3 has an invalid length.
[  265.227748][T11397] netlink: 'syz.5.2258': attribute type 1 has an invalid length.
[  265.236162][T11397] netlink: 220 bytes leftover after parsing attributes in process `syz.5.2258'.
[  265.335936][T11403] loop5: detected capacity change from 0 to 65
[  265.346988][T11403] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  265.361119][T11403] BFS-fs: bfs_fill_super(): Last block not available on loop5: 98368
[  265.584743][   T33] audit: type=1326 audit(1752502278.992:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.603688][   T33] audit: type=1326 audit(1752502278.992:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.612225][   T33] audit: type=1326 audit(1752502278.992:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.626061][   T33] audit: type=1326 audit(1752502278.992:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.636430][   T33] audit: type=1326 audit(1752502278.992:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.646175][   T33] audit: type=1326 audit(1752502278.992:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.656439][   T33] audit: type=1326 audit(1752502278.992:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.684711][   T33] audit: type=1326 audit(1752502278.992:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.704643][   T33] audit: type=1326 audit(1752502278.992:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.733670][   T33] audit: type=1326 audit(1752502278.992:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11408 comm="syz.2.2264" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc2b352ab19 code=0x7ffc0000
[  265.948104][T11407] loop6: detected capacity change from 0 to 32768
[  265.981514][T11407] XFS (loop6): DAX unsupported by block device. Turning off DAX.
[  265.993803][T11407] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  266.010383][T11407] XFS (loop6): Ending clean mount
[  266.018609][T11407] XFS (loop6): Quotacheck needed: Please wait.
[  266.058369][T11411] loop5: detected capacity change from 0 to 32768
[  266.062322][T11411] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2265 (11411)
[  266.069641][T11407] XFS (loop6): Quotacheck: Done.
[  266.080737][T11411] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  266.084825][T11411] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[  266.088314][T11411] BTRFS info (device loop5): using free-space-tree
[  266.116052][T11411] BTRFS info (device loop5): rebuilding free space tree
[  266.128980][T11138] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  266.485964][ T9866] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  266.597542][ T5974] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  266.744626][ T5974] usb 7-1: Using ep0 maxpacket: 8
[  266.757006][ T5974] usb 7-1: config 0 has an invalid interface number: 148 but max is 0
[  266.759987][ T5974] usb 7-1: config 0 has no interface number 0
[  266.765814][ T5974] usb 7-1: New USB device found, idVendor=0d46, idProduct=2012, bcdDevice=4d.36
[  266.770373][ T5974] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.776157][ T5974] usb 7-1: Product: syz
[  266.777502][ T5974] usb 7-1: Manufacturer: syz
[  266.779011][ T5974] usb 7-1: SerialNumber: syz
[  266.804731][ T5974] usb 7-1: config 0 descriptor??
[  266.834557][ T5974] kobil_sct 7-1:0.148: KOBIL USB smart card terminal converter detected
[  266.863613][ T5974] usb 7-1: KOBIL USB smart card terminal converter now attached to ttyUSB0
[  267.035813][ T5988] usb 7-1: USB disconnect, device number 3
[  267.040425][ T5988] kobil ttyUSB0: KOBIL USB smart card terminal converter now disconnected from ttyUSB0
[  267.044556][ T5988] kobil_sct 7-1:0.148: device disconnected
[  267.829215][T11474] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2280'.
[  268.468001][T11511] futex_wake_op: syz.5.2297 tries to shift op by 32; fix this program
[  269.419730][T11529] loop6: detected capacity change from 0 to 512
[  269.940585][T11529] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.950522][T11529] ext4 filesystem being mounted at /34/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  270.002463][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.120973][T11572] loop6: detected capacity change from 0 to 4096
[  271.139168][T11572] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  271.243947][T11578] overlayfs: failed to clone lowerpath
[  271.367022][   T33] kauditd_printk_skb: 958 callbacks suppressed
[  271.367044][   T33] audit: type=1400 audit(1752502284.782:1580): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=11585 comm="syz.5.2328"
[  271.428188][ T5220] Bluetooth: hci0: unexpected event 0x03 length: 1 < 11
[  271.615963][T11600] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2335'.
[  271.797831][T11609] ipt_rpfilter: unknown options
[  271.799453][T11610] loop5: detected capacity change from 0 to 128
[  271.816734][T11610] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  271.822026][T11610] ext4 filesystem being mounted at /189/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  271.871438][ T9866] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  271.970005][T11617] ieee802154 phy0 wpan0: encryption failed: -22
[  272.908385][T11637] xt_policy: too many policy elements
[  273.016539][T11641] netlink: 116 bytes leftover after parsing attributes in process `syz.5.2352'.
[  273.131972][T11650] loop6: detected capacity change from 0 to 1024
[  273.143540][T11650] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  273.153362][T11650] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #11: comm syz.6.2356: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  273.160483][T11650] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.2356: couldn't read orphan inode 11 (err -117)
[  273.167482][T11650] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  273.202448][T11650] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.2356: Invalid block bitmap block 0 in block_group 0
[  273.210641][T11650] Quota error (device loop6): write_blk: dquota write failed
[  273.214895][T11650] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  273.218953][T11650] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.2356: Failed to acquire dquot type 0
[  273.227977][T11650] EXT4-fs error (device loop6): __ext4_get_inode_loc:4792: comm syz.6.2356: Invalid inode table block 8589934593 in block_group 0
[  273.305146][ T6348] EXT4-fs error (device loop6): __ext4_get_inode_loc:4792: comm kworker/u10:5: Invalid inode table block 8589934593 in block_group 0
[  273.323734][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.216094][T11690] netlink: 'syz.2.2366': attribute type 1 has an invalid length.
[  274.261988][T11690] 8021q: adding VLAN 0 to HW filter on device bond1
[  274.579321][T11695] bond1: (slave veth3): Enslaving as an active interface with a down link
[  274.640774][T11690] 8021q: adding VLAN 0 to HW filter on device batadv1
[  274.661168][T11690] bond1: (slave batadv1): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  274.722404][T11741] loop6: detected capacity change from 0 to 512
[  274.750409][T11741] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  274.756511][T11741] ext4 filesystem being mounted at /56/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  274.777315][T11741] EXT4-fs error (device loop6): ext4_readdir:264: inode #2: block 3: comm syz.6.2369: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=2048 fake=1
[  274.788958][T11741] EXT4-fs (loop6): Remounting filesystem read-only
[  274.990559][T11753] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[  275.094775][T11757] loop5: detected capacity change from 0 to 4096
[  275.106142][T11757] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  275.135401][ T9866] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.553810][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.701791][T11790] xt_TCPMSS: Only works on TCP SYN packets
[  275.808292][   T33] audit: type=1800 audit(1752502289.222:1581): pid=11798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2396" name="file0" dev="tmpfs" ino=4560 res=0 errno=0
[  275.852713][T11802] netlink: 'syz.2.2398': attribute type 21 has an invalid length.
[  275.856867][T11802] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2398'.
[  275.883081][ T5988] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  276.043168][ T5988] usb 7-1: Using ep0 maxpacket: 8
[  276.053380][ T5988] usb 7-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  276.058376][ T5988] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  276.062220][ T5988] usb 7-1: Product: syz
[  276.065311][ T5988] usb 7-1: Manufacturer: syz
[  276.067508][ T5988] usb 7-1: SerialNumber: syz
[  276.072668][ T5988] usb 7-1: config 0 descriptor??
[  276.081035][ T5988] gspca_main: sq905-2.14.0 probing 2770:9120
[  276.394529][T11836] loop5: detected capacity change from 0 to 4096
[  276.399144][T11836] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  276.422396][T11836] ntfs3(loop5): Failed to load $Extend (-22).
[  276.427278][T11836] ntfs3(loop5): Failed to initialize $Extend.
[  276.711303][ T5988] gspca_sq905: sq905_command: usb_control_msg failed (-71)
[  276.714477][ T5988] sq905 7-1:0.0: probe with driver sq905 failed with error -71
[  276.725142][ T5988] usb 7-1: USB disconnect, device number 4
[  278.721353][T11915] tipc: Can't bind to reserved service type 1
[  279.083985][T11932] loop6: detected capacity change from 0 to 1024
[  279.108724][T11932] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  279.124778][T11932] ext4 filesystem being mounted at /73/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  279.158816][T11932] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  279.171059][T11932] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 27 with max blocks 1 with error 28
[  279.178005][T11932] EXT4-fs (loop6): This should not happen!! Data will be lost
[  279.178005][T11932] 
[  279.181289][T11932] EXT4-fs (loop6): Total free blocks count 0
[  279.185373][T11932] EXT4-fs (loop6): Free/Dirty block details
[  279.187844][T11932] EXT4-fs (loop6): free_blocks=4293918720
[  279.190308][T11932] EXT4-fs (loop6): dirty_blocks=16
[  279.192490][T11932] EXT4-fs (loop6): Block reservation details
[  279.196681][T11932] EXT4-fs (loop6): i_reserved_data_blocks=1
[  279.258128][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.598116][T11962] loop5: detected capacity change from 0 to 164
[  279.616096][T11962] Unsupported NM flag settings (8)
[  279.854990][T11977] loop6: detected capacity change from 0 to 512
[  279.861065][T11977] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  279.885568][T11977] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ee018, mo2=0002]
[  279.888893][T11977] System zones: 1-12
[  279.894786][T11977] EXT4-fs (loop6): 1 truncate cleaned up
[  279.910560][T11977] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.007112][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.820825][T11999] loop6: detected capacity change from 0 to 1024
[  281.840231][T11999] hfsplus: bad catalog entry type
[  281.860267][T11993] loop5: detected capacity change from 0 to 32768
[  281.864237][  T173] hfsplus: b-tree write err: -5, ino 4
[  281.865923][T11993] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2483 (11993)
[  281.878816][T11993] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  281.883278][T11993] BTRFS info (device loop5): using crc32c (crc32c-generic) checksum algorithm
[  281.886949][T11993] BTRFS info (device loop5): using free-space-tree
[  281.925231][T12016] ptrace attach of "/syz-executor exec"[11138] was attempted by ""[12016]
[  281.949355][   T33] audit: type=1800 audit(1752502295.362:1582): pid=11993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2483" name="file1" dev="loop5" ino=260 res=0 errno=0
[  281.971492][   T33] audit: type=1800 audit(1752502295.382:1583): pid=11993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2483" name="file1" dev="loop5" ino=260 res=0 errno=0
[  282.035598][ T9866] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  282.202679][T12028] loop5: detected capacity change from 0 to 512
[  282.206995][T12028] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  282.213759][T12028] EXT4-fs error (device loop5): ext4_find_inline_data_nolock:169: inode #17: comm syz.5.2494: inline data xattr refers to an external xattr inode
[  282.219800][T12028] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.2494: couldn't read orphan inode 17 (err -117)
[  282.228621][T12028] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  282.257902][ T9866] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.313334][ T5990] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  282.473591][ T5990] usb 7-1: Using ep0 maxpacket: 32
[  282.477695][ T5990] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  282.480774][ T5990] usb 7-1: config 0 has no interface number 0
[  282.483436][ T5990] usb 7-1: config 0 interface 12 has no altsetting 0
[  282.489294][ T5990] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  282.496130][ T5990] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.499364][ T5990] usb 7-1: Product: syz
[  282.501076][ T5990] usb 7-1: Manufacturer: syz
[  282.505778][ T5990] usb 7-1: SerialNumber: syz
[  282.515361][ T5990] usb 7-1: config 0 descriptor??
[  283.682978][   T33] audit: type=1326 audit(1752502297.092:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12046 comm="syz.5.2502" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4e77f8e929 code=0x0
[  283.916351][T12059] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2507'.
[  283.953316][T12061] SET target dimension over the limit!
[  284.455474][ T5990] f81534 7-1:0.12: f81534_set_register: reg: 1003 data: b0 failed: -71
[  284.458987][ T5990] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  284.461964][ T5990] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  284.465486][ T5990] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  284.486452][ T5990] usb 7-1: USB disconnect, device number 5
[  284.863047][ T5933] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  285.034999][ T5933] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  285.038276][ T5933] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  285.052339][ T5933] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  285.055471][ T5933] usb 6-1: config 1 has no interface number 0
[  285.057421][ T5933] usb 6-1: too many endpoints for config 1 interface 1 altsetting 1: 32, using maximum allowed: 30
[  285.063791][ T5933] usb 6-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 32
[  285.070350][ T5933] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  285.075249][ T5933] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  285.078146][ T5933] usb 6-1: Product: syz
[  285.083159][ T5933] usb 6-1: Manufacturer: syz
[  285.084643][ T5933] usb 6-1: SerialNumber: syz
[  285.121653][T12096] loop6: detected capacity change from 0 to 1024
[  285.124775][T12096] EXT4-fs: Ignoring removed orlov option
[  285.126715][T12096] EXT4-fs: Ignoring removed nomblk_io_submit option
[  285.139508][T12096] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  285.179366][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  285.514491][ T5954] usb 6-1: USB disconnect, device number 9
[  286.288744][T12130] loop5: detected capacity change from 0 to 4096
[  286.293469][T12130] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  286.467894][T12142] loop5: detected capacity change from 0 to 1024
[  286.515706][T12142] hfsplus: bad catalog entry type
[  286.541417][   T26] hfsplus: b-tree write err: -5, ino 4
[  287.140229][T12157] loop6: detected capacity change from 0 to 40427
[  287.147867][T12157] F2FS-fs (loop6): invalid crc value
[  287.190952][T12157] F2FS-fs (loop6): Start checkpoint disabled!
[  287.196727][T12157] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  287.262296][   T26] kworker/u9:0: attempt to access beyond end of device
[  287.262296][   T26] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  287.292441][   T26] CPU: 0 UID: 0 PID: 26 Comm: kworker/u9:0 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa-dirty #0 PREEMPT(full) 
[  287.292457][   T26] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  287.292464][   T26] Workqueue: writeback wb_workfn (flush-7:6)
[  287.292485][   T26] Call Trace:
[  287.292489][   T26]  <TASK>
[  287.292495][   T26]  dump_stack_lvl+0x189/0x250
[  287.292535][   T26]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.292545][   T26]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  287.292558][   T26]  ? __pfx_queue_work_on+0x10/0x10
[  287.292570][   T26]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  287.292581][   T26]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  287.292593][   T26]  ? f2fs_hw_is_readonly+0x39b/0x470
[  287.292610][   T26]  f2fs_handle_critical_error+0x37c/0x540
[  287.292625][   T26]  f2fs_write_end_io+0x495/0x810
[  287.292633][   T26]  ? blkg_put+0x22/0x240
[  287.292651][   T26]  __submit_merged_bio+0x27a/0x6a0
[  287.292667][   T26]  __submit_merged_write_cond+0x255/0x530
[  287.292682][   T26]  f2fs_write_data_pages+0x261d/0x3000
[  287.292712][   T26]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  287.292745][   T26]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  287.292774][   T26]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  287.292795][   T26]  ? check_buffer+0x259/0x750
[  287.292812][   T26]  ? __rb_reserve_next+0x7d2/0xdb0
[  287.292831][   T26]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  287.292843][   T26]  do_writepages+0x32e/0x550
[  287.292856][   T26]  ? reacquire_held_locks+0x127/0x1d0
[  287.292866][   T26]  ? writeback_sb_inodes+0x372/0x1000
[  287.292880][   T26]  __writeback_single_inode+0x145/0xff0
[  287.292889][   T26]  ? do_raw_spin_unlock+0x4d/0x240
[  287.292902][   T26]  writeback_sb_inodes+0x6b5/0x1000
[  287.292912][   T26]  ? trace_buffer_unlock_commit_regs+0x14f/0x550
[  287.292933][   T26]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  287.292965][   T26]  ? rcu_is_watching+0x15/0xb0
[  287.292980][   T26]  wb_writeback+0x43b/0xaf0
[  287.292993][   T26]  ? queue_io+0x3a1/0x590
[  287.293005][   T26]  ? __pfx_wb_writeback+0x10/0x10
[  287.293023][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.293043][   T26]  wb_workfn+0x409/0xef0
[  287.293073][   T26]  ? __pfx_wb_workfn+0x10/0x10
[  287.293093][   T26]  ? __lock_acquire+0xab9/0xd20
[  287.293113][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  287.293136][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.293150][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  287.293163][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  287.293178][   T26]  process_scheduled_works+0xae1/0x17b0
[  287.293213][   T26]  ? __pfx_process_scheduled_works+0x10/0x10
[  287.293240][   T26]  worker_thread+0x8a0/0xda0
[  287.293273][   T26]  kthread+0x711/0x8a0
[  287.293296][   T26]  ? __pfx_worker_thread+0x10/0x10
[  287.293321][   T26]  ? __pfx_kthread+0x10/0x10
[  287.293340][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.293359][   T26]  ? lockdep_hardirqs_on+0x9c/0x150
[  287.293377][   T26]  ? __pfx_kthread+0x10/0x10
[  287.293396][   T26]  ret_from_fork+0x3fc/0x770
[  287.293414][   T26]  ? __pfx_ret_from_fork+0x10/0x10
[  287.293433][   T26]  ? __switch_to_asm+0x39/0x70
[  287.293449][   T26]  ? __switch_to_asm+0x33/0x70
[  287.293464][   T26]  ? __pfx_kthread+0x10/0x10
[  287.293483][   T26]  ret_from_fork_asm+0x1a/0x30
[  287.293533][   T26]  </TASK>
[  287.589859][   T26] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  287.823308][T12175] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2555'.
[  288.170641][T12189] loop6: detected capacity change from 0 to 4096
[  288.399668][T12185] loop5: detected capacity change from 0 to 32768
[  288.407244][T12185] XFS (loop5): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  288.444049][T12185] XFS (loop5): Ending clean mount
[  288.451483][ T5933] IPVS: starting estimator thread 0...
[  288.467750][T12185] XFS (loop5): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xe0, xfs_finobt block 0x20 
[  288.471868][T12185] XFS (loop5): Unmount and run xfs_repair
[  288.482218][T12185] XFS (loop5): First 128 bytes of corrupted metadata buffer:
[  288.486134][T12185] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  288.489889][T12185] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40  ....... .......@
[  288.493786][T12185] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[  288.497244][T12185] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37  .......F......@7
[  288.500707][T12185] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  288.506761][T12185] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00  ................
[  288.510528][T12185] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  288.514586][T12185] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  288.519385][T12185] XFS (loop5): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x20 len 8 error 74
[  288.525299][T12185] XFS (loop5): Failed to initialize disk quotas, err -117.
[  288.561518][ T9866] XFS (loop5): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  288.563051][T12214] IPVS: using max 45 ests per chain, 108000 per kthread
[  288.567713][ T9866] XFS (loop5): Uncorrected metadata errors detected; please run xfs_repair.
[  289.522400][T12254] loop5: detected capacity change from 0 to 256
[  289.550000][T12254] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  290.127774][T12279] hub 6-0:1.0: USB hub found
[  290.131672][T12279] hub 6-0:1.0: 1 port detected
[  290.326450][T12280] netlink: 'syz.6.2597': attribute type 11 has an invalid length.
[  290.960265][T12286] loop5: detected capacity change from 0 to 1024
[  290.996798][T12286] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.098296][ T9866] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.403689][T12295] xt_TPROXY: Can be used only with -p tcp or -p udp
[  292.420749][T12317] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2611'.
[  292.638785][T12325] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  292.716110][T12329] loop5: detected capacity change from 0 to 256
[  293.406545][ T5220] Bluetooth: hci1: unexpected cc 0x2007 length: 100 > 2
[  293.411977][ T5220] Bluetooth: hci1: unexpected event for opcode 0x2007
[  293.737500][T12372] loop6: detected capacity change from 0 to 2048
[  293.739060][T12374] loop5: detected capacity change from 0 to 512
[  293.760620][T12374] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  293.767294][T12374] ext4 filesystem being mounted at /286/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  293.793245][T12372] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  293.810030][T12372] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  293.824083][T12372] EXT4-fs (loop6): Remounting filesystem read-only
[  293.864436][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.919162][ T9866] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  294.195668][T12387] loop5: detected capacity change from 0 to 32768
[  294.320044][T12387] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  294.320071][T12387]   allowing incompatible features above 0.0: (unknown version)
[  294.320080][T12387]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  294.337514][T12387] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0
[  294.340754][T12387] bcachefs (loop5): initializing new filesystem
[  294.350130][T12387] bcachefs (loop5): going read-write
[  294.358156][T12387] bcachefs (loop5): marking superblocks
[  294.370274][T12387] bcachefs (loop5): initializing freespace
[  294.375797][T12387] bcachefs (loop5): done initializing freespace
[  294.380394][T12387] bcachefs (loop5): reading snapshots table
[  294.382722][T12387] bcachefs (loop5): reading snapshots done
[  294.416125][T12387] bcachefs (loop5): done starting filesystem
[  294.480301][ T9866] bcachefs (loop5): shutting down
[  294.482444][ T9866] bcachefs (loop5): going read-only
[  294.484750][ T9866] bcachefs (loop5): finished waiting for writes to stop
[  294.489432][ T9866] bcachefs (loop5): flushing journal and stopping allocators, journal seq 2
[  294.493051][ T5933] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  294.538335][ T9866] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 3
[  294.542696][ T9866] bcachefs (loop5): clean shutdown complete, journal seq 4
[  294.546481][ T9866] bcachefs (loop5): marking filesystem clean
[  294.565483][ T9866] bcachefs (loop5): shutdown complete
[  294.653142][ T5933] usb 7-1: Using ep0 maxpacket: 32
[  294.659502][ T5933] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  294.664022][ T5933] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  294.667684][ T5933] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  294.671120][ T5933] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.679307][ T5933] usb 7-1: config 0 descriptor??
[  294.683877][ T5933] hub 7-1:0.0: USB hub found
[  294.886580][ T5933] hub 7-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  295.309687][ T5933] hid-generic 0003:046D:C31C.0009: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.6-1/input0
[  295.427999][T12410] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2647'.
[  295.771014][   T51] usb 7-1: USB disconnect, device number 6
[  296.100377][T12418] loop5: detected capacity change from 0 to 2048
[  296.116341][T12421] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  296.135001][T12421] NILFS (loop5): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  296.138489][T12421] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=4)
[  296.146595][T12421] Remounting filesystem read-only
[  296.225225][T12423] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2652'.
[  296.228961][T12423] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  296.282885][T12429] netlink: 356 bytes leftover after parsing attributes in process `syz.6.2655'.
[  296.289474][T12429] netlink: 356 bytes leftover after parsing attributes in process `syz.6.2655'.
[  296.618936][T12450] loop6: detected capacity change from 0 to 512
[  296.621847][T12450] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  296.629087][T12450] EXT4-fs (loop6): 1 truncate cleaned up
[  296.631880][T12450] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.671135][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.719777][T12454] xt_TCPMSS: Only works on TCP SYN packets
[  296.861515][T12464] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2671'.
[  296.912832][T12468] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000000004
[  297.313161][T12480] loop6: detected capacity change from 0 to 32768
[  297.425202][ T5220] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  297.428301][ T5220] Bluetooth: hci1: Injecting HCI hardware error event
[  297.434345][ T5928] Bluetooth: hci1: hardware error 0x00
[  298.211389][T12506] loop6: detected capacity change from 0 to 8
[  298.215212][T12506] SQUASHFS error: zlib decompression failed, data probably corrupt
[  298.218325][T12506] SQUASHFS error: Failed to read block 0x9b: -5
[  298.221047][T12506] SQUASHFS error: Unable to read metadata cache entry [99]
[  298.224190][T12506] SQUASHFS error: Unable to read inode 0x127
[  298.281206][T12508] loop6: detected capacity change from 0 to 1024
[  298.794724][T12525] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2699'.
[  298.891955][T12532] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  299.502914][ T5928] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  300.346212][T12588] 9pnet_fd: Insufficient options for proto=fd
[  300.637191][   T33] audit: type=1326 audit(1752502314.052:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12591 comm="syz.5.2731" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e77f8e929 code=0x7ffc0000
[  300.653197][   T33] audit: type=1326 audit(1752502314.052:1586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12591 comm="syz.5.2731" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e77f8e929 code=0x7ffc0000
[  300.669948][   T33] audit: type=1326 audit(1752502314.062:1587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12591 comm="syz.5.2731" exe="/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f4e77f8e929 code=0x7ffc0000
[  300.681142][   T33] audit: type=1326 audit(1752502314.062:1588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12591 comm="syz.5.2731" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e77f8e929 code=0x7ffc0000
[  300.688770][   T33] audit: type=1326 audit(1752502314.062:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12591 comm="syz.5.2731" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e77f8e929 code=0x7ffc0000
[  302.180416][T12632] x_tables: ip6_tables: mh match: only valid for protocol 135
[  302.622163][T12642] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2753'.
[  302.626353][T12642] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2753'.
[  303.612710][T12699] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2781'.
[  303.619032][T12699] netlink: 'syz.5.2781': attribute type 3 has an invalid length.
[  303.759210][T12695] loop6: detected capacity change from 0 to 32768
[  303.788668][T12695] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  303.810818][T12695] XFS (loop6): Ending clean mount
[  303.880541][T11138] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  304.326433][T12737] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2795'.
[  304.530804][T12750] overlayfs: failed to clone upperpath
[  305.443255][T12749] x_tables: unsorted underflow at hook 3
[  305.533344][T12754] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2802'.
[  306.139931][T12762] loop6: detected capacity change from 0 to 8192
[  306.302639][T12776] netlink: 'syz.5.2812': attribute type 10 has an invalid length.
[  306.339746][T12776] veth0_vlan: left promiscuous mode
[  306.361472][T12776] veth0_vlan: entered promiscuous mode
[  306.373169][T12776] team0: Device veth0_vlan failed to register rx_handler
[  306.971773][T12793] loop6: detected capacity change from 0 to 32768
[  306.978459][T12793] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2820 (12793)
[  306.990286][T12793] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  306.994563][T12793] BTRFS info (device loop6): using sha256 (sha256-x86_64) checksum algorithm
[  306.998062][T12793] BTRFS info (device loop6): using free-space-tree
[  307.069255][T11138] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  307.688644][T12828] sctp: [Deprecated]: syz.6.2830 (pid 12828) Use of struct sctp_assoc_value in delayed_ack socket option.
[  307.688644][T12828] Use struct sctp_sack_info instead
[  307.962444][   T33] audit: type=1326 audit(1752502321.372:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.2.2840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  307.974205][   T33] audit: type=1326 audit(1752502321.392:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.2.2840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  307.982655][   T33] audit: type=1326 audit(1752502321.392:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.2.2840" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  308.001707][   T33] audit: type=1326 audit(1752502321.392:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.2.2840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  308.009689][   T33] audit: type=1326 audit(1752502321.392:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.2.2840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  308.019531][   T33] audit: type=1326 audit(1752502321.402:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.2.2840" exe="/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  308.027392][   T33] audit: type=1326 audit(1752502321.402:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.2.2840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  308.034904][   T33] audit: type=1326 audit(1752502321.402:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.2.2840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  308.159077][T12863] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2845'.
[  308.223151][ T5954] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  308.402917][ T5954] usb 7-1: Using ep0 maxpacket: 16
[  308.406236][ T5954] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 8
[  308.411188][ T5954] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  308.414829][ T5954] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.417949][ T5954] usb 7-1: Product: syz
[  308.419601][ T5954] usb 7-1: Manufacturer: syz
[  308.421456][ T5954] usb 7-1: SerialNumber: syz
[  308.429635][ T5954] usb 7-1: config 0 descriptor??
[  308.434041][ T5954] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected
[  308.437874][ T5954] usb 7-1: Detected FT232R
[  308.636038][ T5954] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  308.858555][ T5954] usb 7-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  309.048833][ T5933] usb 7-1: USB disconnect, device number 7
[  309.073663][ T5933] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  309.077900][ T5933] ftdi_sio 7-1:0.0: device disconnected
[  309.802384][T12911] netlink: 'syz.6.2863': attribute type 1 has an invalid length.
[  309.851541][T12915] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2865'.
[  309.856840][T12915] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2865'.
[  309.860465][T12915] netlink: 'syz.6.2865': attribute type 12 has an invalid length.
[  309.863083][T12915] netlink: 'syz.6.2865': attribute type 11 has an invalid length.
[  310.465460][T12932] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  311.294125][T12922] loop6: detected capacity change from 0 to 32768
[  311.302583][T12922] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  311.330721][T12922] XFS (loop6): Ending clean mount
[  311.405882][T11138] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  312.360802][T12964] loop6: detected capacity change from 0 to 40427
[  312.372128][T12964] F2FS-fs (loop6): invalid crc value
[  312.438596][T12964] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  312.467406][   T33] audit: type=1804 audit(1752502325.882:1598): pid=12964 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.2883" name="/newroot/189/file0/file0" dev="loop6" ino=10 res=1 errno=0
[  312.482571][T11138] syz-executor: attempt to access beyond end of device
[  312.482571][T11138] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  312.487651][T11138] CPU: 0 UID: 0 PID: 11138 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa-dirty #0 PREEMPT(full) 
[  312.487667][T11138] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  312.487673][T11138] Call Trace:
[  312.487678][T11138]  <TASK>
[  312.487682][T11138]  dump_stack_lvl+0x189/0x250
[  312.487701][T11138]  ? __pfx_dump_stack_lvl+0x10/0x10
[  312.487710][T11138]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  312.487724][T11138]  ? __pfx_queue_work_on+0x10/0x10
[  312.487736][T11138]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  312.487747][T11138]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  312.487759][T11138]  ? f2fs_hw_is_readonly+0x39b/0x470
[  312.487777][T11138]  f2fs_handle_critical_error+0x37c/0x540
[  312.487791][T11138]  f2fs_write_end_io+0x495/0x810
[  312.487799][T11138]  ? blkg_put+0x22/0x240
[  312.487819][T11138]  __submit_merged_bio+0x27a/0x6a0
[  312.487837][T11138]  __submit_merged_write_cond+0x255/0x530
[  312.487859][T11138]  f2fs_write_data_pages+0x261d/0x3000
[  312.487907][T11138]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  312.487976][T11138]  ? folios_put_refs+0x559/0x640
[  312.488005][T11138]  ? __lock_acquire+0xab9/0xd20
[  312.488021][T11138]  ? do_raw_spin_lock+0x121/0x290
[  312.488039][T11138]  ? do_raw_spin_unlock+0x4d/0x240
[  312.488050][T11138]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  312.488062][T11138]  do_writepages+0x32e/0x550
[  312.488077][T11138]  ? do_raw_spin_unlock+0x4d/0x240
[  312.488091][T11138]  filemap_fdatawrite+0x191/0x230
[  312.488102][T11138]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  312.488137][T11138]  ? do_raw_spin_unlock+0x4d/0x240
[  312.488150][T11138]  f2fs_sync_dirty_inodes+0x31f/0x830
[  312.488167][T11138]  f2fs_write_checkpoint+0x94a/0x1de0
[  312.488188][T11138]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  312.488221][T11138]  ? kill_f2fs_super+0x298/0x6c0
[  312.488232][T11138]  kill_f2fs_super+0x2c3/0x6c0
[  312.488243][T11138]  ? __pfx_kill_f2fs_super+0x10/0x10
[  312.488250][T11138]  ? radix_tree_delete_item+0x2b6/0x400
[  312.488267][T11138]  ? shrinker_free+0x2ce/0x3e0
[  312.488282][T11138]  deactivate_locked_super+0xbc/0x130
[  312.488293][T11138]  cleanup_mnt+0x425/0x4c0
[  312.488300][T11138]  ? lockdep_hardirqs_on+0x9c/0x150
[  312.488315][T11138]  task_work_run+0x1d4/0x260
[  312.488331][T11138]  ? __pfx_task_work_run+0x10/0x10
[  312.488342][T11138]  ? __x64_sys_umount+0x122/0x160
[  312.488355][T11138]  ? exit_to_user_mode_loop+0x40/0x110
[  312.488367][T11138]  exit_to_user_mode_loop+0xec/0x110
[  312.488376][T11138]  do_syscall_64+0x2bd/0x3b0
[  312.488383][T11138]  ? lockdep_hardirqs_on+0x9c/0x150
[  312.488395][T11138]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.488403][T11138]  ? exc_page_fault+0x9f/0xf0
[  312.488415][T11138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.488423][T11138] RIP: 0033:0x7fa3dcd8fc57
[  312.488470][T11138] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  312.488479][T11138] RSP: 002b:00007fff98b4ef38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  312.488489][T11138] RAX: 0000000000000000 RBX: 00007fa3dce10925 RCX: 00007fa3dcd8fc57
[  312.488495][T11138] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff98b4eff0
[  312.488500][T11138] RBP: 00007fff98b4eff0 R08: 0000000000000000 R09: 0000000000000000
[  312.488505][T11138] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff98b50080
[  312.488510][T11138] R13: 00007fa3dce10925 R14: 000000000004c423 R15: 00007fff98b500c0
[  312.488525][T11138]  </TASK>
[  312.489232][T11138] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  312.869514][T12987] loop6: detected capacity change from 0 to 64
[  313.174858][T12995] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2895'.
[  313.182534][T12995] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2895'.
[  313.278542][T12997] loop6: detected capacity change from 0 to 512
[  313.281913][T12997] EXT4-fs: Ignoring removed nomblk_io_submit option
[  313.300575][T12997] EXT4-fs: Ignoring removed i_version option
[  313.334977][T12997] EXT4-fs (loop6): 1 orphan inode deleted
[  313.338652][T12997] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.424034][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.463852][T13009] fuse: Bad value for 'fd'
[  313.517799][   T33] audit: type=1326 audit(1752502326.932:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13015 comm="syz.6.2904" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  313.526997][   T33] audit: type=1326 audit(1752502326.942:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13015 comm="syz.6.2904" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  313.538992][   T33] audit: type=1326 audit(1752502326.952:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13015 comm="syz.6.2904" exe="/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  313.555205][   T33] audit: type=1326 audit(1752502326.962:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13015 comm="syz.6.2904" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  313.573992][   T33] audit: type=1326 audit(1752502326.962:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13015 comm="syz.6.2904" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  313.605786][   T33] audit: type=1800 audit(1752502327.022:1604): pid=13018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2905" name="file2" dev="tmpfs" ino=1065 res=0 errno=0
[  313.812296][T13023] netlink: 212408 bytes leftover after parsing attributes in process `syz.6.2907'.
[  313.817654][T13023] netlink: zone id is out of range
[  313.819365][T13023] netlink: zone id is out of range
[  313.821062][T13023] netlink: get zone limit has 8 unknown bytes
[  315.011667][T13039] loop6: detected capacity change from 0 to 64
[  315.247287][T13047] loop6: detected capacity change from 0 to 256
[  315.274398][T13047] FAT-fs (loop6): Directory bread(block 64) failed
[  315.277141][T13047] FAT-fs (loop6): Directory bread(block 65) failed
[  315.279991][T13047] FAT-fs (loop6): Directory bread(block 66) failed
[  315.282723][T13047] FAT-fs (loop6): Directory bread(block 67) failed
[  315.286061][T13047] FAT-fs (loop6): Directory bread(block 68) failed
[  315.290303][T13047] FAT-fs (loop6): Directory bread(block 69) failed
[  315.293825][T13047] FAT-fs (loop6): Directory bread(block 70) failed
[  315.298009][T13047] FAT-fs (loop6): Directory bread(block 71) failed
[  315.304837][T13047] FAT-fs (loop6): Directory bread(block 72) failed
[  315.311101][T13047] FAT-fs (loop6): Directory bread(block 73) failed
[  315.328931][T13047] FAT-fs (loop6): error, corrupted directory (invalid entries)
[  315.332976][T13047] FAT-fs (loop6): Filesystem has been set read-only
[  316.374450][T13114] xt_l2tp: unknown flags: 17
[  316.867566][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  316.869603][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  317.909930][ T5990] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  318.031371][T13156] tipc: Enabling of bearer <eth:g> rejected, media not registered
[  318.065338][ T5990] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  318.068478][ T5990] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  318.072572][ T5990] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  318.086784][ T5990] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  318.090497][ T5990] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=225
[  318.094549][ T5990] usb 7-1: Manufacturer: syz
[  318.096462][ T5990] usb 7-1: SerialNumber: syz
[  318.100566][ T5990] usb 7-1: config 0 descriptor??
[  318.298455][T13172] netlink: 'syz.5.2971': attribute type 2 has an invalid length.
[  318.301546][T13172] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2971'.
[  318.717048][T13188] autofs: Bad value for 'fd'
[  318.933505][ T5933] usb 7-1: USB disconnect, device number 8
[  318.992641][T13199] loop6: detected capacity change from 0 to 16
[  318.997873][T13199] erofs (device loop6): mounted with root inode @ nid 36.
[  319.049069][T13202] overlayfs: failed to clone lowerpath
[  319.849679][T13204] loop6: detected capacity change from 0 to 32768
[  319.854171][T13204] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2988 (13204)
[  319.869676][T13204] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  319.875165][T13204] BTRFS info (device loop6): using sha256 (sha256-x86_64) checksum algorithm
[  319.879921][T13204] BTRFS info (device loop6): using free-space-tree
[  319.964259][T11138] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  319.997990][   T33] audit: type=1326 audit(1752502333.402:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13240 comm="syz.2.2999" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  320.024144][   T33] audit: type=1326 audit(1752502333.422:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13240 comm="syz.2.2999" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  320.059927][   T33] audit: type=1326 audit(1752502333.422:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13240 comm="syz.2.2999" exe="/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  320.081281][   T33] audit: type=1326 audit(1752502333.422:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13240 comm="syz.2.2999" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  320.187358][   T33] audit: type=1326 audit(1752502333.422:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13240 comm="syz.2.2999" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  320.770405][T13251] loop6: detected capacity change from 0 to 4096
[  320.786505][T13252] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  320.813467][T13251] NILFS error (device loop6): nilfs_readdir: zero-length directory entry
[  320.836495][T13251] NILFS error (device loop6): nilfs_readdir: zero-length directory entry
[  321.441256][T13265] vxfs: WRONG superblock magic 00000000 at 1
[  321.444634][T13265] vxfs: WRONG superblock magic 00000000 at 8
[  321.446646][T13265] vxfs: can't find superblock.
[  321.523432][T13262] ceph: No mds server is up or the cluster is laggy
[  321.537453][ T5933] libceph: connect (1)[c::]:6789 error -101
[  321.553582][ T5933] libceph: mon0 (1)[c::]:6789 connect error
[  322.109368][T13278] loop6: detected capacity change from 0 to 4096
[  322.112618][T13278] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  324.413086][ T5954] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  324.573329][ T5954] usb 7-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  324.581187][ T5954] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  324.585321][ T5954] usb 7-1: Product: syz
[  324.586999][ T5954] usb 7-1: Manufacturer: syz
[  324.588929][ T5954] usb 7-1: SerialNumber: syz
[  324.600610][ T5954] usb 7-1: config 0 descriptor??
[  324.604452][ T5954] gspca_main: sunplus-2.14.0 probing 055f:c230
[  325.822055][ T5933] usb 7-1: USB disconnect, device number 9
[  326.587020][T13424] xt_CT: You must specify a L4 protocol and not use inversions on it
[  326.636704][   T33] audit: type=1326 audit(1752502340.052:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13426 comm="syz.6.3072" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x0
[  326.826002][T13443] netlink: 56 bytes leftover after parsing attributes in process `syz.6.3080'.
[  326.830110][T13443] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3080'.
[  327.004894][T13459] loop6: detected capacity change from 0 to 128
[  327.013084][T13459] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  327.018528][T13459] ext4 filesystem being mounted at /237/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  327.056155][T11138] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  328.031466][T13494] overlayfs: failed to clone upperpath
[  328.581104][T13508] netlink: 'syz.5.3108': attribute type 10 has an invalid length.
[  328.593594][T13508] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  328.602423][T13508] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  328.610096][T13508] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  328.693067][ T5990] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  329.048494][ T5990] usb 7-1: Using ep0 maxpacket: 32
[  329.059260][ T5990] usb 7-1: New USB device found, idVendor=07b8, idProduct=401a, bcdDevice=10.8f
[  329.062177][ T5990] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  329.066381][ T5990] usb 7-1: Product: syz
[  329.067904][ T5990] usb 7-1: Manufacturer: syz
[  329.069404][ T5990] usb 7-1: SerialNumber: syz
[  329.072538][ T5990] usb 7-1: config 0 descriptor??
[  329.075941][ T5990] rtl8150 7-1:0.0: couldn't find required endpoints
[  329.080467][ T5990] rtl8150 7-1:0.0: probe with driver rtl8150 failed with error -5
[  329.450244][ T5990] usb 7-1: USB disconnect, device number 10
[  329.688599][T13526] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3116'.
[  331.212529][T13571] SET target dimension over the limit!
[  331.265073][T13575] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3138'.
[  331.662385][T13597] sctp: [Deprecated]: syz.6.3147 (pid 13597) Use of struct sctp_assoc_value in delayed_ack socket option.
[  331.662385][T13597] Use struct sctp_sack_info instead
[  332.554707][T13603] loop6: detected capacity change from 0 to 16
[  332.558846][T13603] erofs (device loop6): mounted with root inode @ nid 36.
[  332.573831][T13603] erofs (device loop6): corrupted dir block 8200 @ nid 36
[  332.581274][T13603] erofs (device loop6): invalid de[0].nameoff 0 @ nid 36
[  332.680290][T13607] mac80211_hwsim hwsim15 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  333.021584][T13621] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3159'.
[  334.270070][T13652] loop6: detected capacity change from 0 to 1024
[  334.294559][T13652] hfsplus: bad catalog entry type
[  334.328961][ T6348] hfsplus: b-tree write err: -5, ino 4
[  336.508574][T13696] tipc: Started in network mode
[  336.510426][T13696] tipc: Node identity de2484c98b41, cluster identity 4711
[  336.517480][T13696] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  336.522005][T13696] syzkaller0: entered promiscuous mode
[  336.524614][T13696] syzkaller0: entered allmulticast mode
[  336.538530][T13696] tipc: Resetting bearer <eth:syzkaller0>
[  336.564318][T13695] tipc: Resetting bearer <eth:syzkaller0>
[  336.589653][T13695] tipc: Disabling bearer <eth:syzkaller0>
[  336.723482][T13712] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  336.777123][T13714] loop6: detected capacity change from 0 to 512
[  336.811542][T13714] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.817776][T13714] ext4 filesystem being mounted at /275/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  336.852703][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.547574][T13758] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  338.988702][T13780] netlink: 'syz.6.3227': attribute type 2 has an invalid length.
[  339.107441][T13788] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3232'.
[  339.210978][T13792] raw_sendmsg: syz.5.3233 forgot to set AF_INET. Fix it!
[  339.459453][ T5928] Bluetooth: hci0: command 0x0406 tx timeout
[  339.632889][T13795] xt_recent: hitcount (33554432) is larger than allowed maximum (65535)
[  339.828113][T13809] overlayfs: failed to clone upperpath
[  340.225311][T13834] binder: 13833:13834 ioctl c0306201 2000000003c0 returned -14
[  341.458434][T13857] loop6: detected capacity change from 0 to 128
[  341.461728][T13857] FAT-fs (loop6): FAT read failed (blocknr 252)
[  341.736008][T13861] loop6: detected capacity change from 0 to 32768
[  342.031027][T13874] netlink: 172 bytes leftover after parsing attributes in process `syz.2.3271'.
[  342.036376][T13874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3271'.
[  342.040382][T13874] netlink: 172 bytes leftover after parsing attributes in process `syz.2.3271'.
[  342.043792][T13874] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3271'.
[  342.047324][T13874] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3271'.
[  342.513105][T13894] evm: overlay not supported
[  344.036365][T13939] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3297'.
[  344.039999][T13939] netlink: 'syz.5.3297': attribute type 1 has an invalid length.
[  344.058141][T13939] netlink: 108 bytes leftover after parsing attributes in process `syz.5.3297'.
[  344.075825][T13942] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3298'.
[  344.140418][T13945] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  344.585142][T13963] netlink: 'syz.6.3309': attribute type 1 has an invalid length.
[  344.588348][T13963] netlink: 56 bytes leftover after parsing attributes in process `syz.6.3309'.
[  344.786591][T13971] loop6: detected capacity change from 0 to 256
[  344.793008][T13971] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  345.324297][T13989] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3322'.
[  345.386168][T13991] sp0: Synchronizing with TNC
[  345.590050][ T5220] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  345.599774][ T5220] Bluetooth: hci2: Injecting HCI hardware error event
[  345.604382][ T5220] Bluetooth: hci2: hardware error 0x00
[  346.619604][T14001] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  346.903520][T14021] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3336'.
[  347.667318][ T5220] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  348.193463][T14070] netlink: 'syz.5.3357': attribute type 3 has an invalid length.
[  348.196764][T14067] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3356'.
[  348.286566][T14078] overlayfs: failed to clone upperpath
[  348.344551][T14082] overlayfs: missing 'lowerdir'
[  348.668339][T14098] block device autoloading is deprecated and will be removed.
[  348.678581][T14102] netlink: 'syz.2.3373': attribute type 10 has an invalid length.
[  348.705222][T14102] 8021q: adding VLAN 0 to HW filter on device bond0
[  348.718587][T14102] team0: Device bond0 failed to register rx_handler
[  348.803660][T14104] xt_bpf: check failed: parse error
[  349.448533][T14146] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3394'.
[  351.193116][ T5954] usb 7-1: new full-speed USB device number 11 using dummy_hcd
[  351.345678][ T5954] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  351.349339][ T5954] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  351.353440][ T5954] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  351.356916][ T5954] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  351.361970][ T5954] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  351.364935][ T5954] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  351.367505][ T5954] usb 7-1: Product: syz
[  351.368877][ T5954] usb 7-1: Manufacturer: syz
[  351.370323][ T5954] usb 7-1: SerialNumber: syz
[  351.376535][T14171] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  351.585508][T14171] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  351.612047][T14180] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  351.612047][T14180] The task syz.2.3408 (14180) triggered the difference, watch for misbehavior.
[  351.829911][T14182] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3409'.
[  352.193647][T14171] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  352.228125][T14186] xt_CT: You must specify a L4 protocol and not use inversions on it
[  352.412690][ T5954] cdc_ncm 7-1:1.0: bind() failure
[  352.422892][ T5954] cdc_ncm 7-1:1.1: probe with driver cdc_ncm failed with error -71
[  352.426131][ T5954] cdc_mbim 7-1:1.1: probe with driver cdc_mbim failed with error -71
[  352.429264][ T5954] usbtest 7-1:1.1: probe with driver usbtest failed with error -71
[  352.434117][ T5954] usb 7-1: USB disconnect, device number 11
[  352.563045][T14204] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3420'.
[  353.134448][T14222] : entered promiscuous mode
[  353.222974][ T5988] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  353.376482][ T5988] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  353.380818][ T5988] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  353.385104][ T5988] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  353.388757][ T5988] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  353.405674][T14214] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  353.417259][ T5988] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  353.646488][   T10] usb 7-1: USB disconnect, device number 12
[  354.553953][T14244] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3438'.
[  355.967054][T14288] comedi comedi0: pcl711: I/O port conflict (0x4,16)
[  357.567600][T14334] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  358.441196][T14338] loop6: detected capacity change from 0 to 131072
[  358.453265][T14338] F2FS-fs (loop6): Wrong CP boundary, start(512) end(1536) blocks(0)
[  358.455705][T14338] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  358.459326][T14338] F2FS-fs (loop6): invalid crc value
[  358.511713][T14338] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  358.514596][T14338] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  358.542964][T14338] F2FS-fs (loop6): Stopped filesystem due to reason: 0
[  358.715699][T14397] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3508'.
[  358.874713][T14403] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3511'.
[  358.924668][T14406] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3505'.
[  358.937024][T14406] netlink: 'syz.6.3505': attribute type 8 has an invalid length.
[  358.939440][T14406] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  359.173670][T14414] loop6: detected capacity change from 0 to 40427
[  359.177781][T14414] F2FS-fs (loop6): Corrupted extension count (720933 + 1 > 64)
[  359.180332][T14414] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  359.183281][T14414] F2FS-fs (loop6): build fault injection rate: 690
[  359.185390][T14414] F2FS-fs (loop6): Image doesn't support compression
[  359.187702][T14414] F2FS-fs (loop6): Image doesn't support compression
[  359.191867][T14414] F2FS-fs (loop6): invalid crc value
[  359.233192][T14414] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  359.235531][T14414] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  360.815056][T14442] overlayfs: failed to clone lowerpath
[  361.423659][T14477] loop6: detected capacity change from 0 to 512
[  361.443567][T14477] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  361.454925][T14477] EXT4-fs (loop6): invalid journal inode
[  361.457043][T14477] EXT4-fs (loop6): can't get journal size
[  361.469842][T14477] EXT4-fs (loop6): 1 truncate cleaned up
[  361.474130][T14477] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.504602][T14477] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3541: bg 0: block 255: padding at end of block bitmap is not set
[  361.514418][T14477] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  361.566788][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.846586][T14481] loop6: detected capacity change from 0 to 32768
[  361.849646][T14481] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3542 (14481)
[  361.855477][T14481] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  361.858734][T14481] BTRFS info (device loop6): using sha256 (sha256-x86_64) checksum algorithm
[  361.861631][T14481] BTRFS info (device loop6): using free-space-tree
[  362.057588][T11138] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  362.506857][T14516] sp0: Synchronizing with TNC
[  362.832912][ T5988] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  362.988113][ T5988] usb 7-1: config 6 has an invalid interface number: 57 but max is 0
[  362.991617][ T5988] usb 7-1: config 6 has no interface number 0
[  362.994101][ T5988] usb 7-1: config 6 interface 57 has no altsetting 0
[  363.000670][ T5988] usb 7-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 0.00
[  363.006222][ T5988] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  363.009356][ T5988] usb 7-1: Product: syz
[  363.011048][ T5988] usb 7-1: Manufacturer: syz
[  363.013092][ T5988] usb 7-1: SerialNumber: syz
[  363.053049][T14538] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.060232][T14538] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.075008][T14539] netlink: 'syz.5.3561': attribute type 16 has an invalid length.
[  363.077911][T14539] netlink: 'syz.5.3561': attribute type 17 has an invalid length.
[  363.107422][T14539] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  363.237058][ T5988] usb-storage 7-1:6.57: USB Mass Storage device detected
[  363.270199][ T5988] usb 7-1: USB disconnect, device number 13
[  363.504391][T14560] netlink: 'syz.2.3569': attribute type 2 has an invalid length.
[  363.895710][T14588] netlink: 'syz.5.3582': attribute type 30 has an invalid length.
[  363.898192][T14588] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3582'.
[  363.950306][T14591] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3583'.
[  364.073377][   T51] usb 7-1: new full-speed USB device number 14 using dummy_hcd
[  364.174515][T14597] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  364.228063][   T51] usb 7-1: unable to get BOS descriptor or descriptor too short
[  364.262629][   T51] usb 7-1: not running at top speed; connect to a high speed hub
[  364.266997][   T51] usb 7-1: config 111 has an invalid interface number: 251 but max is 1
[  364.270197][   T51] usb 7-1: config 111 has an invalid interface number: 171 but max is 1
[  364.276312][   T51] usb 7-1: config 111 has no interface number 0
[  364.279049][   T51] usb 7-1: config 111 has no interface number 1
[  364.281601][   T51] usb 7-1: config 111 interface 251 altsetting 249 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[  364.285837][   T51] usb 7-1: config 111 interface 251 altsetting 249 has an invalid descriptor for endpoint zero, skipping
[  364.289326][   T51] usb 7-1: config 111 interface 251 has no altsetting 0
[  364.420246][   T51] usb 7-1: config 111 interface 171 has no altsetting 0
[  364.424867][   T51] usb 7-1: New USB device found, idVendor=0499, idProduct=1050, bcdDevice=fa.da
[  364.427831][   T51] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.430919][   T51] usb 7-1: Product: syz
[  364.432207][   T51] usb 7-1: Manufacturer: syz
[  364.433975][   T51] usb 7-1: SerialNumber: syz
[  364.438918][T14584] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  364.781508][   T51] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  364.787962][   T51] usb 7-1: invalid MIDI in EP 0
[  364.790154][   T51] snd-usb-audio 7-1:111.251: probe with driver snd-usb-audio failed with error -22
[  364.800805][   T51] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  364.808912][T14605] sit0: entered promiscuous mode
[  364.820681][   T51] snd-usb-audio 7-1:111.171: probe with driver snd-usb-audio failed with error -2
[  364.826287][   T51] usb 7-1: USB disconnect, device number 14
[  364.830886][T14605] netlink: 'syz.5.3588': attribute type 1 has an invalid length.
[  364.836752][T14605] netlink: 1 bytes leftover after parsing attributes in process `syz.5.3588'.
[  365.006583][T14613] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3592'.
[  365.010024][T14613] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3592'.
[  365.230437][T14624] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  365.278810][T14627] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3600'.
[  365.284353][T14627] openvswitch: netlink: Missing key (keys=40, expected=80)
[  365.554994][T14654] netlink: 'syz.6.3612': attribute type 1 has an invalid length.
[  366.245794][T14677] loop6: detected capacity change from 0 to 32768
[  366.273527][T14677] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  366.614487][T11138] ocfs2: Unmounting device (7,6) on (node local)
[  366.706810][T14701] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3634'.
[  367.070421][T14711] loop6: detected capacity change from 0 to 32768
[  367.098864][   T33] audit: type=1800 audit(1752502380.502:1611): pid=14711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3637" name="file1" dev="loop6" ino=4 res=0 errno=0
[  367.357303][T14711] ERROR: (device loop6): dbAdjCtl: the maximum free buddy is not the old root
[  367.357303][T14711] 
[  367.361264][T14711] ERROR: (device loop6): remounting filesystem as read-only
[  369.057114][T14775] loop6: detected capacity change from 0 to 40427
[  369.060136][T14775] F2FS-fs (loop6): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  369.062636][T14775] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  369.069342][T14775] F2FS-fs (loop6): invalid crc value
[  369.143553][T14775] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  369.146917][T14775] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  369.367973][T11138] syz-executor: attempt to access beyond end of device
[  369.367973][T11138] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  369.383059][T11138] CPU: 0 UID: 0 PID: 11138 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa-dirty #0 PREEMPT(full) 
[  369.383083][T11138] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  369.383093][T11138] Call Trace:
[  369.383099][T11138]  <TASK>
[  369.383106][T11138]  dump_stack_lvl+0x189/0x250
[  369.383133][T11138]  ? __pfx_dump_stack_lvl+0x10/0x10
[  369.383149][T11138]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  369.383171][T11138]  ? __pfx_queue_work_on+0x10/0x10
[  369.383190][T11138]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  369.383210][T11138]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  369.383230][T11138]  ? f2fs_hw_is_readonly+0x39b/0x470
[  369.383254][T11138]  f2fs_handle_critical_error+0x37c/0x540
[  369.383279][T11138]  f2fs_write_end_io+0x495/0x810
[  369.383292][T11138]  ? blkg_put+0x22/0x240
[  369.383322][T11138]  __submit_merged_bio+0x27a/0x6a0
[  369.383347][T11138]  __submit_merged_write_cond+0x255/0x530
[  369.383372][T11138]  f2fs_write_data_pages+0x261d/0x3000
[  369.383421][T11138]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  369.383452][T11138]  ? arch_stack_walk+0xfc/0x150
[  369.383499][T11138]  ? __mod_zone_page_state+0xd7/0x140
[  369.383526][T11138]  ? folios_put_refs+0x560/0x640
[  369.383555][T11138]  ? __pfx_folios_put_refs+0x10/0x10
[  369.383573][T11138]  ? rcu_is_watching+0x15/0xb0
[  369.383599][T11138]  ? __lock_acquire+0xab9/0xd20
[  369.383627][T11138]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  369.383647][T11138]  do_writepages+0x32e/0x550
[  369.383672][T11138]  ? do_raw_spin_unlock+0x4d/0x240
[  369.383695][T11138]  filemap_fdatawrite+0x191/0x230
[  369.383713][T11138]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  369.383796][T11138]  ? do_raw_spin_unlock+0x4d/0x240
[  369.383820][T11138]  f2fs_sync_dirty_inodes+0x31f/0x830
[  369.383845][T11138]  f2fs_write_checkpoint+0x94a/0x1de0
[  369.383878][T11138]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  369.383930][T11138]  ? kill_f2fs_super+0x298/0x6c0
[  369.383950][T11138]  kill_f2fs_super+0x2c3/0x6c0
[  369.383969][T11138]  ? __pfx_kill_f2fs_super+0x10/0x10
[  369.383981][T11138]  ? radix_tree_delete_item+0x2b6/0x400
[  369.384010][T11138]  ? shrinker_free+0x2ce/0x3e0
[  369.384033][T11138]  deactivate_locked_super+0xbc/0x130
[  369.384050][T11138]  cleanup_mnt+0x425/0x4c0
[  369.384064][T11138]  ? lockdep_hardirqs_on+0x9c/0x150
[  369.384088][T11138]  task_work_run+0x1d4/0x260
[  369.384113][T11138]  ? __pfx_task_work_run+0x10/0x10
[  369.384131][T11138]  ? __x64_sys_umount+0x122/0x160
[  369.384152][T11138]  ? exit_to_user_mode_loop+0x40/0x110
[  369.384171][T11138]  exit_to_user_mode_loop+0xec/0x110
[  369.384186][T11138]  do_syscall_64+0x2bd/0x3b0
[  369.384199][T11138]  ? lockdep_hardirqs_on+0x9c/0x150
[  369.384218][T11138]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.384232][T11138]  ? exc_page_fault+0x9f/0xf0
[  369.384253][T11138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.384267][T11138] RIP: 0033:0x7fa3dcd8fc57
[  369.384282][T11138] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  369.384294][T11138] RSP: 002b:00007fff98b4ef38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  369.384310][T11138] RAX: 0000000000000000 RBX: 00007fa3dce10925 RCX: 00007fa3dcd8fc57
[  369.384319][T11138] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff98b4eff0
[  369.384328][T11138] RBP: 00007fff98b4eff0 R08: 0000000000000000 R09: 0000000000000000
[  369.384336][T11138] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff98b50080
[  369.384345][T11138] R13: 00007fa3dce10925 R14: 000000000005a1f5 R15: 00007fff98b500c0
[  369.384369][T11138]  </TASK>
[  369.384375][T11138] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  369.834789][T14819] overlayfs: failed to resolve './file0': -2
[  370.507760][T14855] ip6_vti0: entered promiscuous mode
[  370.580744][T14857] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3699'.
[  370.839741][T14879] loop6: detected capacity change from 0 to 1024
[  371.015865][   T52] hfsplus: b-tree write err: -5, ino 4
[  371.070417][T14890] binder: 14889:14890 ioctl c0306201 200000000000 returned -14
[  371.132726][T14892] loop6: detected capacity change from 0 to 256
[  371.138960][T14892] exfat: Deprecated parameter 'utf8'
[  371.154489][T14892] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x7b823c56, utbl_chksum : 0xe619d30d)
[  371.733315][ T5988] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  371.964711][ T5988] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  371.969032][ T5988] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  371.972376][ T5988] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.006448][ T5988] usb 7-1: config 0 descriptor??
[  372.020524][ T5988] pwc: Askey VC010 type 2 USB webcam detected.
[  372.221865][T14929] xt_hashlimit: max too large, truncated to 1048576
[  372.622019][ T5988] pwc: recv_control_msg error -32 req 02 val 2b00
[  372.626442][ T5988] pwc: recv_control_msg error -32 req 02 val 2700
[  372.629886][ T5988] pwc: recv_control_msg error -32 req 02 val 2c00
[  372.633290][ T5988] pwc: recv_control_msg error -32 req 04 val 1000
[  372.636587][ T5988] pwc: recv_control_msg error -32 req 04 val 1300
[  372.639901][ T5988] pwc: recv_control_msg error -32 req 04 val 1400
[  372.645121][ T5988] pwc: recv_control_msg error -32 req 02 val 2000
[  372.648517][ T5988] pwc: recv_control_msg error -32 req 02 val 2100
[  372.651984][ T5988] pwc: recv_control_msg error -32 req 04 val 1500
[  372.656584][ T5988] pwc: recv_control_msg error -32 req 02 val 2500
[  372.659905][ T5988] pwc: recv_control_msg error -32 req 02 val 2400
[  372.664510][ T5988] pwc: recv_control_msg error -32 req 02 val 2600
[  372.868435][ T5988] pwc: recv_control_msg error -71 req 02 val 2800
[  372.871822][ T5988] pwc: recv_control_msg error -71 req 04 val 1100
[  372.876420][ T5988] pwc: recv_control_msg error -71 req 04 val 1200
[  372.880506][ T5988] pwc: Registered as video103.
[  372.884344][ T5988] input: PWC snapshot button as /devices/platform/dummy_hcd.6/usb7/7-1/input/input12
[  372.892223][ T5988] usb 7-1: USB disconnect, device number 15
[  373.159895][T14945] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  373.636674][T14975] xt_hashlimit: max too large, truncated to 1048576
[  374.458359][T15015] xt_hashlimit: size too large, truncated to 1048576
[  375.697291][T15077] tmpfs: Bad value for 'mpol'
[  375.770546][T15084] overlayfs: failed to clone upperpath
[  376.377959][T15110] overlayfs: failed to clone upperpath
[  377.712396][T15159] kAFS: unable to lookup cell 'sYSAٸ?hrF5=X$jӋZ^ۺ2׳Hq=VJtd琎zhDA[stL}Zv݌̥ϳ܏y43ۣ#989?\?mGiXR~Eڟ[_r/Wnn޸qOPML{2/D#DkLL~8@<T4lݬo\ŵX1q)+T_^dZiV/T>Vz;ղc˿,<@'
[  378.022955][T15165] overlayfs: failed to clone upperpath
[  378.698081][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  378.700488][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  379.717277][T15198] sch_fq: defrate 4294967295 ignored.
[  379.760694][T15200] netlink: 'syz.2.3848': attribute type 21 has an invalid length.
[  379.767852][T15200] netlink: 128 bytes leftover after parsing attributes in process `syz.2.3848'.
[  379.771495][T15200] netlink: 'syz.2.3848': attribute type 5 has an invalid length.
[  379.775392][T15200] netlink: 'syz.2.3848': attribute type 6 has an invalid length.
[  379.778114][T15200] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3848'.
[  380.570981][T15242] netlink: 'syz.6.3864': attribute type 4 has an invalid length.
[  381.753550][T15260] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3873'.
[  381.757464][T15260] netlink: 'syz.5.3873': attribute type 1 has an invalid length.
[  382.061504][T15273] loop6: detected capacity change from 0 to 2048
[  382.078294][T15273] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.100229][T15273] EXT4-fs error (device loop6): empty_inline_dir:1786: inode #12: block 9: comm syz.6.3879: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=13, rec_len=21, size=60 fake=0
[  382.114999][T15273] EXT4-fs (loop6): Remounting filesystem read-only
[  382.117647][T15273] EXT4-fs warning (device loop6): empty_inline_dir:1793: bad inline directory (dir #12) - inode 13, rec_len 21, name_len 5inline size 60
[  382.165215][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.191842][T15281] vlan2: entered allmulticast mode
[  382.194062][T15281] veth1: entered allmulticast mode
[  383.712002][T15314] loop6: detected capacity change from 0 to 1024
[  383.717163][T15314] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  383.725753][T15314] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003]
[  383.731085][T15314] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  383.764845][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.809323][T15317] loop6: detected capacity change from 0 to 256
[  383.817821][T15317] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[  384.204860][   T33] audit: type=1800 audit(1752502397.532:1612): pid=15319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3896" name="bus" dev="loop6" ino=1048663 res=0 errno=0
[  384.312395][T15325] xt_ipcomp: unknown flags 12
[  384.961232][T15332] loop6: detected capacity change from 0 to 32768
[  384.964799][T15332] XFS: attr2 mount option is deprecated.
[  384.974448][T15332] XFS (loop6): DAX unsupported by block device. Turning off DAX.
[  384.978689][T15332] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  384.999640][T15332] XFS (loop6): Ending clean mount
[  385.007398][T15332] XFS (loop6): Quotacheck needed: Please wait.
[  385.044437][T15332] XFS (loop6): Quotacheck: Done.
[  385.094548][T11138] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  385.732546][ T5990] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  385.890385][ T5990] usb 7-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  385.893998][ T5990] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.897063][ T5990] usb 7-1: Product: syz
[  385.898672][ T5990] usb 7-1: Manufacturer: syz
[  385.900547][ T5990] usb 7-1: SerialNumber: syz
[  385.916126][ T5990] usb 7-1: config 0 descriptor??
[  385.920130][ T5990] ch341 7-1:0.0: ch341-uart converter detected
[  385.988875][T15368] netlink: 'syz.2.3916': attribute type 21 has an invalid length.
[  385.991884][T15368] netlink: 164 bytes leftover after parsing attributes in process `syz.2.3916'.
[  387.098015][ T5990] ch341-uart ttyUSB0: break control not supported, using simulated break
[  387.102515][ T5990] usb 7-1: ch341-uart converter now attached to ttyUSB0
[  387.106864][ T5990] usb 7-1: USB disconnect, device number 16
[  387.115016][ T5990] ch341-uart ttyUSB0: ch341-uart converter now disconnected from ttyUSB0
[  387.118432][ T5990] ch341 7-1:0.0: device disconnected
[  387.283019][T15401] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  387.661901][T15423] loop6: detected capacity change from 0 to 8
[  387.676290][T15425] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3942'.
[  387.683716][T15423] SQUASHFS error: lzo decompression failed, data probably corrupt
[  387.693472][T15423] SQUASHFS error: Failed to read block 0x91: -5
[  387.702925][T15423] SQUASHFS error: Unable to read metadata cache entry [8f]
[  387.712934][T15423] SQUASHFS error: Unable to read inode 0x11f
[  387.830564][T15433] loop6: detected capacity change from 0 to 2048
[  387.864146][T15433] EXT4-fs (loop6): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.881934][T15433] EXT4-fs (loop6): shut down requested (1)
[  387.927413][T11138] EXT4-fs (loop6): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[  388.085772][T15450] netlink: 'syz.5.3953': attribute type 8 has an invalid length.
[  388.383493][ T5988] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  388.534430][ T5988] usb 7-1: config 0 has an invalid interface number: 64 but max is 0
[  388.537264][ T5988] usb 7-1: config 0 has no interface number 0
[  388.541509][ T5988] usb 7-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  388.545417][ T5988] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  388.548471][ T5988] usb 7-1: Product: syz
[  388.549997][ T5988] usb 7-1: Manufacturer: syz
[  388.551391][ T5988] usb 7-1: SerialNumber: syz
[  388.555566][ T5988] usb 7-1: config 0 descriptor??
[  388.765473][ T5988] usb 7-1: Found UVC 0.08 device syz (046d:0823)
[  388.768246][ T5988] usb 7-1: No valid video chain found.
[  388.772238][ T5988] usb 7-1: USB disconnect, device number 17
[  389.357942][T15482] netlink: 'syz.6.3968': attribute type 4 has an invalid length.
[  389.362924][T15482] netlink: 'syz.6.3968': attribute type 3 has an invalid length.
[  389.365907][T15482] netlink: 132 bytes leftover after parsing attributes in process `syz.6.3968'.
[  389.841913][T15505] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3979'.
[  390.536206][T15522] loop6: detected capacity change from 0 to 256
[  390.647153][T15522] FAT-fs (loop6): Directory bread(block 64) failed
[  390.649666][T15522] FAT-fs (loop6): Directory bread(block 65) failed
[  390.652314][T15522] FAT-fs (loop6): Directory bread(block 66) failed
[  390.655144][T15522] FAT-fs (loop6): Directory bread(block 67) failed
[  390.657809][T15522] FAT-fs (loop6): Directory bread(block 68) failed
[  390.660375][T15522] FAT-fs (loop6): Directory bread(block 69) failed
[  390.663640][T15522] FAT-fs (loop6): Directory bread(block 70) failed
[  390.666147][T15522] FAT-fs (loop6): Directory bread(block 71) failed
[  390.668719][T15522] FAT-fs (loop6): Directory bread(block 72) failed
[  390.671174][T15522] FAT-fs (loop6): Directory bread(block 73) failed
[  392.036934][T15549] loop6: detected capacity change from 0 to 256
[  392.040511][T15549] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  392.060352][T15549] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  392.570793][T15579] overlayfs: failed to clone lowerpath
[  393.090510][T15606] loop6: detected capacity change from 0 to 32768
[  393.099157][T15606] (syz.6.4026,15606,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #66: rec_len is smaller than minimal - offset=88, inode=69, rec_len=8, name_len=8
[  393.113022][T15606] (syz.6.4026,15606,1):ocfs2_init_global_system_inodes:465 ERROR: status = -22
[  393.115744][T15606] (syz.6.4026,15606,1):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 2, possibly corrupt fs?
[  393.115758][T15606] (syz.6.4026,15606,1):ocfs2_init_global_system_inodes:476 ERROR: status = -22
[  393.122115][T15606] (syz.6.4026,15606,1):ocfs2_initialize_super:2198 ERROR: status = -22
[  393.131504][T15606] (syz.6.4026,15606,1):ocfs2_fill_super:1177 ERROR: status = -22
[  393.224540][T15622] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4035'.
[  393.454722][T15625] loop6: detected capacity change from 0 to 32768
[  393.462355][T15625] ocfs2: Slot 0 on device (7,6) was already allocated to this node!
[  393.473478][T15625] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  393.545305][T11138] ocfs2: Unmounting device (7,6) on (node local)
[  395.422678][T15724] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4081'.
[  395.432323][T15724] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4081'.
[  395.530222][ T5954] kernel write not supported for file bpf-prog (pid: 5954 comm: kworker/0:3)
[  396.829549][T15778] loop6: detected capacity change from 0 to 32768
[  396.865603][T15778] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  396.872474][T15778] XFS (loop6): totally zeroed log
[  396.879768][T15778] XFS (loop6): Corruption warning: Metadata has LSN (1:384) ahead of current LSN (1:0). Please unmount and run xfs_repair (>= v4.3) to resolve.
[  396.886383][T15778] XFS (loop6): log mount/recovery failed: error -22
[  397.237535][T15778] XFS (loop6): log mount failed
[  397.300561][T15800] batadv0: entered promiscuous mode
[  397.303580][T15800] macsec1: entered promiscuous mode
[  397.305852][T15800] macsec1: entered allmulticast mode
[  397.308020][T15800] batadv0: entered allmulticast mode
[  397.322570][T15800] batadv0: left allmulticast mode
[  397.337835][T15800] batadv0: left promiscuous mode
[  398.220354][T15819] loop6: detected capacity change from 0 to 32768
[  398.223165][T15819] XFS: ikeep mount option is deprecated.
[  398.239254][T15819] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  398.266660][T15819] XFS (loop6): Ending clean mount
[  398.269688][T15819] XFS (loop6): Quotacheck needed: Please wait.
[  398.298863][T15819] XFS (loop6): Quotacheck: Done.
[  398.337868][T11138] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  399.905723][T15859] loop6: detected capacity change from 0 to 1024
[  399.908434][T15859] EXT4-fs: Ignoring removed nobh option
[  399.910187][T15859] EXT4-fs: Ignoring removed bh option
[  399.962063][T15859] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  400.148088][T15859] EXT4-fs: Ignoring removed orlov option
[  400.149956][T15859] EXT4-fs: can't change dax mount option while remounting
[  400.191337][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.773667][T15895] loop6: detected capacity change from 0 to 32768
[  400.776521][T15895] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.4143 (15895)
[  400.782109][T15895] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  400.785772][T15895] BTRFS info (device loop6): using sha256 (sha256-x86_64) checksum algorithm
[  400.788468][T15895] BTRFS info (device loop6): disk space caching is enabled
[  400.790662][T15895] BTRFS warning (device loop6): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  400.831678][T15895] BTRFS info (device loop6): rebuilding free space tree
[  400.845729][T15895] BTRFS info (device loop6): disabling free space tree
[  400.848660][T15912] netlink: 'syz.2.4144': attribute type 29 has an invalid length.
[  400.851307][T15895] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  400.855315][T15912] netlink: 'syz.2.4144': attribute type 29 has an invalid length.
[  400.857411][T15895] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  400.934880][T11138] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  402.870562][T15973] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4173'.
[  402.887891][T15975] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4174'.
[  403.117575][T15980] block nbd1: server does not support multiple connections per device.
[  403.122386][T15980] block nbd1: shutting down sockets
[  403.259207][T15989] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4175'.
[  403.511387][   T33] audit: type=1326 audit(1752502416.642:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.522225][   T33] audit: type=1326 audit(1752502416.642:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.530571][   T33] audit: type=1326 audit(1752502416.642:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.538403][   T33] audit: type=1326 audit(1752502416.642:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.546527][   T33] audit: type=1326 audit(1752502416.642:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.553778][   T33] audit: type=1326 audit(1752502416.642:1618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.560585][   T33] audit: type=1326 audit(1752502416.652:1619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.568571][   T33] audit: type=1326 audit(1752502416.652:1620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.576187][   T33] audit: type=1326 audit(1752502416.652:1621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.584463][   T33] audit: type=1326 audit(1752502416.652:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.2.4175" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2b358e929 code=0x7ffc0000
[  403.812357][   T51] usb 7-1: new full-speed USB device number 18 using dummy_hcd
[  403.966798][   T51] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  403.976562][   T51] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  403.981007][   T51] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  403.999980][   T51] usb 7-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  404.003881][   T51] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  404.011854][   T51] usb 7-1: Product: syz
[  404.015475][   T51] usb 7-1: Manufacturer: syz
[  404.017403][   T51] usb 7-1: SerialNumber: syz
[  404.034223][   T51] usb 7-1: config 0 descriptor??
[  404.041225][T15992] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  404.047441][   T51] usb 7-1: ucan: probing device on interface #0
[  404.049972][   T51] usb 7-1: ucan: invalid in_ep MaxPacketSize
[  404.052311][   T51] usb 7-1: ucan: probe failed; try to update the device firmware
[  404.079794][T16012] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4191'.
[  404.242294][T16018] syz.5.4194(16018): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  404.279426][   T51] usb 7-1: USB disconnect, device number 18
[  405.097616][T16042] syzkaller0: entered allmulticast mode
[  405.100229][T16042] syzkaller0: entered promiscuous mode
[  405.120240][T16042] syzkaller0 (unregistering): left allmulticast mode
[  405.123621][T16042] syzkaller0 (unregistering): left promiscuous mode
[  405.255734][T16044] bond2: entered promiscuous mode
[  405.261740][T16044] bond2: entered allmulticast mode
[  405.271207][T16044] 8021q: adding VLAN 0 to HW filter on device bond2
[  406.065041][T16063] netlink: 'syz.2.4213': attribute type 3 has an invalid length.
[  406.067612][T16063] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.4213'.
[  407.572893][ T5954] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  407.725369][ T5954] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[  407.732707][ T5954] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  407.740551][ T5954] usb 7-1: config 220 has no interface number 2
[  407.745720][ T5954] usb 7-1: config 220 interface 1 altsetting 5 has an endpoint descriptor with address 0x6F, changing to 0xF
[  407.753160][ T5954] usb 7-1: config 220 interface 1 altsetting 5 endpoint 0xF has invalid wMaxPacketSize 0
[  407.760543][ T5954] usb 7-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[  407.765907][ T5954] usb 7-1: config 220 interface 0 has no altsetting 0
[  407.773085][ T5954] usb 7-1: config 220 interface 76 has no altsetting 0
[  407.778416][ T5954] usb 7-1: config 220 interface 1 has no altsetting 0
[  407.808971][ T5954] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  407.818766][ T5954] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.857750][ T5954] usb 7-1: Product: syz
[  407.862666][ T5954] usb 7-1: Manufacturer: syz
[  407.868521][ T5954] usb 7-1: SerialNumber: syz
[  408.197131][ T5954] usb 7-1: selecting invalid altsetting 0
[  408.200004][ T5954] usb 7-1: Found UVC 7.01 device syz (8086:0b07)
[  408.202613][ T5954] usb 7-1: No valid video chain found.
[  408.217097][ T5954] usb 7-1: selecting invalid altsetting 0
[  408.219687][ T5954] usbtest 7-1:220.1: probe with driver usbtest failed with error -22
[  408.226005][ T5954] usb 7-1: USB disconnect, device number 19
[  408.369277][T16128] netlink: 7 bytes leftover after parsing attributes in process `syz.2.4241'.
[  408.437018][T16133] kernel read not supported for file /file1 (pid: 16133 comm: syz.5.4243)
[  408.481218][T16136] overlayfs: failed to clone upperpath
[  408.803943][T16163] batman_adv: batadv0: Adding interface: ipvlan2
[  408.806483][T16163] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  408.816837][T16163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  408.820205][T16163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  408.824120][T16163] batman_adv: batadv0: Interface activated: ipvlan2
[  410.178137][T16203] bond0: entered allmulticast mode
[  410.180233][T16203] bond_slave_0: entered allmulticast mode
[  410.182644][T16203] bond_slave_1: entered allmulticast mode
[  410.608257][   T33] kauditd_printk_skb: 21 callbacks suppressed
[  410.608270][   T33] audit: type=1326 audit(1752502423.972:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.648582][   T33] audit: type=1326 audit(1752502423.972:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.682869][   T33] audit: type=1326 audit(1752502423.972:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.717517][   T33] audit: type=1326 audit(1752502423.972:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.766568][   T33] audit: type=1326 audit(1752502423.982:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.808654][   T33] audit: type=1326 audit(1752502423.992:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.843592][   T33] audit: type=1326 audit(1752502423.992:1650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.903721][   T33] audit: type=1326 audit(1752502423.992:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.912050][   T33] audit: type=1326 audit(1752502423.992:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  410.972853][   T33] audit: type=1326 audit(1752502423.992:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16212 comm="syz.6.4279" exe="/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fa3dcd8e929 code=0x7ffc0000
[  411.384743][T16218] loop6: detected capacity change from 0 to 32768
[  411.425918][T16218] find_entry called with index = 0
[  411.427932][T16218] find_entry called with index = 0
[  411.443754][T16218] read_mapping_page failed!
[  411.445283][T16218] ERROR: (device loop6): txCommit: 
[  411.445283][T16218] 
[  412.031583][T16235] loop6: detected capacity change from 0 to 32768
[  412.034843][T16235] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.4285 (16235)
[  412.040865][T16235] BTRFS info (device loop6): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  412.046831][T16235] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  412.050274][T16235] BTRFS info (device loop6): using free-space-tree
[  412.098627][T11138] BTRFS info (device loop6): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  413.184184][T16280] Bluetooth: MGMT ver 1.23
[  413.185558][T16280] Bluetooth: hci0: service_discovery: expected 4 bytes, got 7 bytes
[  413.378626][T16293] netlink: 56 bytes leftover after parsing attributes in process `syz.6.4307'.
[  413.599156][T16306] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  416.069435][T16422] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  416.237173][T16430] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4373'.
[  416.262230][T16430] team1: entered promiscuous mode
[  416.269399][T16430] team1: entered allmulticast mode
[  416.534013][T16432] loop6: detected capacity change from 0 to 32768
[  416.539386][T16432] bcachefs (/dev/loop6): error validating superblock: Invalid superblock section journal_v2: duplicate journal buckets in ranges 9-10, 9-16
[  416.539386][T16432] journal_v2 (size 40):
[  416.539386][T16432] Buckets:  9-16 9-10
[  416.539386][T16432] 
[  416.549142][T16432] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal
[  416.915760][T16448] loop6: detected capacity change from 0 to 32768
[  416.920184][T16448] bcachefs (/dev/loop6): error validating superblock: Invalid superblock section clean: entry type btree_keys overruns end of section
[  416.920184][T16448] clean (size 2912):
[  416.920184][T16448] flags:          0
[  416.920184][T16448] journal_seq:    8
[  416.920184][T16448] prio_ptrs: 
[  416.920184][T16448] usage: type=key_version v=0
[  416.920184][T16448] usage: type=reserved v=0
[  416.920184][T16448] usage: type=reserved v=0
[  416.920184][T16448] usage: type=reserved v=0
[  416.920184][T16448] usage: type=reserved v=0
[  416.920184][T16448] data_usage: btree: 1/1 [0]=2816
[  416.920184][T16448] data_usage: journal: 1/1 [0]=0
[  416.920184][T16448] data_usage: user: 1/1 [0]=32
[  416.920184][T16448] dev_usage: dev=0  
[  416.920184][T16448]   free: buckets=83 sectors=0 fragmented=0
[  416.920184][T16448]   sb: buckets=25 sectors=6152 fragmented=248
[  416.920184][T16448]   journal: buckets=8 sectors=2048 fragmented=0
[  416.920184][T16448]   btree: buckets=11 sectors=2816 fragmented=0
[  416.920184][T16448]   user: buckets=1 sectors=32 fragmented=224
[  416.920184][T16448]   cached: buckets=0 sectors=0 fragmented=0
[  416.920184][T16448]   parity: buckets=0 sectors=0 fragmented=0
[  416.920184][T16448]   stripe: buckets=0 sectors=0 fragmented=0
[  416.920184][T16448]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[  416.920184][T16448]   need_discard: buckets=0 sectors=0 fragmented=0
[  416.920184][T16448] clock: read=0
[  416.920184][T16448] clock: write=1288
[  416.920184][T16448] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 249e7ae2af8ee3
[  416.920338][T16448] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[  416.975728][T16450] tipc: Started in network mode
[  416.979590][T16450] tipc: Node identity 000000002d0000000000000000000001, cluster identity 4711
[  416.985224][T16450] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  417.214742][T16463] overlayfs: missing 'lowerdir'
[  417.592011][T16496] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4402'.
[  417.595990][T16489] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4402'.
[  417.681115][T16503] pim6reg: entered allmulticast mode
[  417.686631][T16503] pim6reg: left allmulticast mode
[  417.793211][T16511] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4412'.
[  417.796650][T16511] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4412'.
[  418.133060][   T51] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  418.282869][   T51] usb 7-1: Using ep0 maxpacket: 8
[  418.288293][   T51] usb 7-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  418.293367][   T51] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.298244][   T51] usb 7-1: Product: syz
[  418.301324][   T51] usb 7-1: Manufacturer: syz
[  418.303526][   T51] usb 7-1: SerialNumber: syz
[  418.306990][   T51] usb 7-1: config 0 descriptor??
[  418.310803][   T51] gspca_main: sonixj-2.14.0 probing 0c45:613a
[  419.046189][T16554] 9pnet_fd: Insufficient options for proto=fd
[  419.585069][   T51] gspca_sonixj: reg_w1 err -71
[  419.673206][   T51] sonixj 7-1:0.0: probe with driver sonixj failed with error -71
[  419.689912][   T51] usb 7-1: USB disconnect, device number 20
[  420.650558][T16598] loop6: detected capacity change from 0 to 512
[  420.675729][T16598] EXT4-fs (loop6): external journal device major/minor numbers have changed
[  420.762617][T16598] block device autoloading is deprecated and will be removed.
[  420.770555][T16598] EXT4-fs (loop6): external journal has bad superblock
[  420.888469][T16604] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4455'.
[  421.024911][T16610] openvswitch: netlink: Unknown key attributes 2
[  421.235851][T16618] loop6: detected capacity change from 0 to 256
[  421.258456][T16618] FAT-fs (loop6): Directory bread(block 64) failed
[  421.261226][T16618] FAT-fs (loop6): Directory bread(block 65) failed
[  421.268109][T16618] FAT-fs (loop6): Directory bread(block 66) failed
[  421.270557][T16618] FAT-fs (loop6): Directory bread(block 67) failed
[  421.273298][T16618] FAT-fs (loop6): Directory bread(block 68) failed
[  421.275991][T16618] FAT-fs (loop6): Directory bread(block 69) failed
[  421.278607][T16618] FAT-fs (loop6): Directory bread(block 70) failed
[  421.281041][T16618] FAT-fs (loop6): Directory bread(block 71) failed
[  421.283866][T16618] FAT-fs (loop6): Directory bread(block 72) failed
[  421.286555][T16618] FAT-fs (loop6): Directory bread(block 73) failed
[  421.421498][T16629] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4466'.
[  421.424883][T16629] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4466'.
[  421.435761][T16631] vim2m vim2m.0: Fourcc format (0x42474752) invalid.
[  421.498258][T16637] openvswitch: netlink: Message has 4 unknown bytes.
[  421.512643][T16637] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  421.847288][T16665] vxcan1 speed is unknown, defaulting to 1000
[  421.849926][T16667] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4485'.
[  421.851641][T16665] vxcan1 speed is unknown, defaulting to 1000
[  421.861307][T16665] vxcan1 speed is unknown, defaulting to 1000
[  422.004651][T16665] infiniband syZ2: set active
[  422.006995][T16665] infiniband syZ2: added vxcan1
[  422.031884][   T51] vxcan1 speed is unknown, defaulting to 1000
[  422.075861][T16665] RDS/IB: syZ2: added
[  422.081889][T16665] smc: adding ib device syZ2 with port count 1
[  422.084630][T16665] smc:    ib device syZ2 port 1 has pnetid 
[  422.091964][   T51] vxcan1 speed is unknown, defaulting to 1000
[  422.200962][T16665] vxcan1 speed is unknown, defaulting to 1000
[  422.803626][T16665] vxcan1 speed is unknown, defaulting to 1000
[  423.039827][T16665] vxcan1 speed is unknown, defaulting to 1000
[  423.240579][T16709] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4504'.
[  423.271855][   T51] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  423.396813][T16720] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4508'.
[  423.400097][T16720] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4508'.
[  423.403979][T16720] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4508'.
[  423.406990][T16720] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4508'.
[  423.502932][   T51] usb 7-1: Using ep0 maxpacket: 8
[  423.511152][   T51] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  423.515414][   T51] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  423.519617][   T51] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  423.524251][   T51] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  423.528542][   T51] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  423.536084][   T51] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  423.615419][   T51] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.953115][   T51] usb 7-1: GET_CAPABILITIES returned 0
[  423.955824][   T51] usbtmc 7-1:16.0: can't read capabilities
[  424.217006][ T5954] usb 7-1: USB disconnect, device number 21
[  424.527132][T16744] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.4519'.
[  424.536125][T16746] overlayfs: failed to clone upperpath
[  424.989698][T16770] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073357164673)
[  425.004555][T16770] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647
[  425.345299][T16789] netlink: 'syz.2.4524': attribute type 3 has an invalid length.
[  425.412676][T16802] 9pnet_fd: Insufficient options for proto=fd
[  425.578479][T16819] xt_CT: You must specify a L4 protocol and not use inversions on it
[  425.628486][T16826] loop6: detected capacity change from 0 to 128
[  425.631795][T16826] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  425.667057][T16826] UDF-fs: error (device loop6): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  425.811138][T16839] loop6: detected capacity change from 0 to 1024
[  425.820085][T16839] EXT4-fs: Ignoring removed oldalloc option
[  425.822049][T16839] EXT4-fs: Ignoring removed orlov option
[  425.825910][T16839] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  425.842234][T16839] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  425.873548][T11138] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.086144][T16846] loop6: detected capacity change from 0 to 32768
[  426.109878][T16846] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  426.117540][   T33] kauditd_printk_skb: 46 callbacks suppressed
[  426.117558][   T33] audit: type=1800 audit(1752502439.532:1700): pid=16846 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4541" name="bus" dev="loop6" ino=17058 res=0 errno=0
[  426.119899][T16846] 
[  426.119908][T16846] ======================================================
[  426.119912][T16846] WARNING: possible circular locking dependency detected
[  426.119926][T16846] 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa-dirty #0 Not tainted
[  426.119932][T16846] ------------------------------------------------------
[  426.119936][T16846] syz.6.4541/16846 is trying to acquire lock:
[  426.119941][T16846] ffff8881103f14e0 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xb6/0x320
[  426.144096][T16846] 
[  426.144096][T16846] but task is already holding lock:
[  426.146513][T16846] ffff8881103f1578 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa4/0x320
[  426.150161][T16846] 
[  426.150161][T16846] which lock already depends on the new lock.
[  426.150161][T16846] 
[  426.153162][T16846] 
[  426.153162][T16846] the existing dependency chain (in reverse order) is:
[  426.155870][T16846] 
[  426.155870][T16846] -> #4 (&oi->ip_xattr_sem){++++}-{4:4}:
[  426.158186][T16846]        lock_acquire+0x120/0x360
[  426.159799][T16846]        down_read+0x46/0x2e0
[  426.161278][T16846]        ocfs2_init_acl+0x2f9/0x720
[  426.162864][T16846]        ocfs2_mknod+0x1321/0x2050
[  426.164401][T16846]        ocfs2_mkdir+0x191/0x440
[  426.165893][T16846]        vfs_mkdir+0x306/0x510
[  426.167348][T16846]        do_mkdirat+0x247/0x590
[  426.168791][T16846]        __x64_sys_mkdirat+0x87/0xa0
[  426.170374][T16846]        do_syscall_64+0xfa/0x3b0
[  426.171929][T16846]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.173861][T16846] 
[  426.173861][T16846] -> #3 (jbd2_handle){++++}-{0:0}:
[  426.176104][T16846]        lock_acquire+0x120/0x360
[  426.177669][T16846]        start_this_handle+0x1fa7/0x21c0
[  426.179445][T16846]        jbd2__journal_start+0x2c1/0x5b0
[  426.181138][T16846]        jbd2_journal_start+0x2a/0x40
[  426.182790][T16846]        ocfs2_start_trans+0x376/0x6d0
[  426.184494][T16846]        ocfs2_mknod+0xe93/0x2050
[  426.186065][T16846]        ocfs2_create+0x1a5/0x440
[  426.187636][T16846]        path_openat+0x14f4/0x3830
[  426.189228][T16846]        do_filp_open+0x1fa/0x410
[  426.190775][T16846]        do_sys_openat2+0x121/0x1c0
[  426.192339][T16846]        __x64_sys_openat+0x138/0x170
[  426.193966][T16846]        do_syscall_64+0xfa/0x3b0
[  426.195580][T16846]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.197558][T16846] 
[  426.197558][T16846] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  426.200186][T16846]        lock_acquire+0x120/0x360
[  426.201783][T16846]        down_read+0x46/0x2e0
[  426.203280][T16846]        ocfs2_start_trans+0x36a/0x6d0
[  426.205002][T16846]        ocfs2_mknod+0xe93/0x2050
[  426.206619][T16846]        ocfs2_create+0x1a5/0x440
[  426.208206][T16846]        path_openat+0x14f4/0x3830
[  426.209812][T16846]        do_filp_open+0x1fa/0x410
[  426.211391][T16846]        do_sys_openat2+0x121/0x1c0
[  426.213011][T16846]        __x64_sys_openat+0x138/0x170
[  426.214710][T16846]        do_syscall_64+0xfa/0x3b0
[  426.216298][T16846]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.218246][T16846] 
[  426.218246][T16846] -> #1 (sb_internal#3){.+.+}-{0:0}:
[  426.220534][T16846]        reacquire_held_locks+0x127/0x1d0
[  426.222282][T16846]        lock_release+0x1b4/0x3e0
[  426.223837][T16846]        up_write+0x2d/0x420
[  426.225295][T16846]        ocfs2_free_alloc_context+0x97/0x1a0
[  426.227170][T16846]        ocfs2_write_begin_nolock+0x4296/0x4340
[  426.229105][T16846]        ocfs2_write_begin+0x1bb/0x310
[  426.230811][T16846]        generic_perform_write+0x2c7/0x910
[  426.232615][T16846]        ocfs2_file_write_iter+0x157a/0x1d10
[  426.234538][T16846]        vfs_write+0x54b/0xa90
[  426.236056][T16846]        __x64_sys_pwrite64+0x193/0x220
[  426.237769][T16846]        do_syscall_64+0xfa/0x3b0
[  426.239359][T16846]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.241338][T16846] 
[  426.241338][T16846] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}:
[  426.243997][T16846]        validate_chain+0xb9b/0x2140
[  426.245589][T16846]        __lock_acquire+0xab9/0xd20
[  426.247238][T16846]        lock_acquire+0x120/0x360
[  426.248804][T16846]        down_write+0x96/0x1f0
[  426.250284][T16846]        ocfs2_try_remove_refcount_tree+0xb6/0x320
[  426.252204][T16846]        ocfs2_truncate_file+0xda0/0x1420
[  426.253934][T16846]        ocfs2_setattr+0x1520/0x1b40
[  426.255567][T16846]        notify_change+0xb36/0xe40
[  426.257128][T16846]        do_truncate+0x1a4/0x220
[  426.258598][T16846]        path_openat+0x306c/0x3830
[  426.260181][T16846]        do_filp_open+0x1fa/0x410
[  426.261650][T16846]        do_sys_openat2+0x121/0x1c0
[  426.263231][T16846]        __x64_sys_open+0x11e/0x150
[  426.264841][T16846]        do_syscall_64+0xfa/0x3b0
[  426.266386][T16846]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.268322][T16846] 
[  426.268322][T16846] other info that might help us debug this:
[  426.268322][T16846] 
[  426.271449][T16846] Chain exists of:
[  426.271449][T16846]   &ocfs2_file_ip_alloc_sem_key --> jbd2_handle --> &oi->ip_xattr_sem
[  426.271449][T16846] 
[  426.275690][T16846]  Possible unsafe locking scenario:
[  426.275690][T16846] 
[  426.278000][T16846]        CPU0                    CPU1
[  426.279681][T16846]        ----                    ----
[  426.281318][T16846]   lock(&oi->ip_xattr_sem);
[  426.282664][T16846]                                lock(jbd2_handle);
[  426.284586][T16846]                                lock(&oi->ip_xattr_sem);
[  426.286853][T16846]   lock(&ocfs2_file_ip_alloc_sem_key);
[  426.288530][T16846] 
[  426.288530][T16846]  *** DEADLOCK ***
[  426.288530][T16846] 
[  426.291063][T16846] 3 locks held by syz.6.4541/16846:
[  426.292744][T16846]  #0: ffff888022714428 (sb_writers#20){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  426.295765][T16846]  #1: ffff8881103f1840 (&sb->s_type->i_mutex_key#28){+.+.}-{4:4}, at: do_truncate+0x171/0x220
[  426.298998][T16846]  #2: ffff8881103f1578 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa4/0x320
[  426.302652][T16846] 
[  426.302652][T16846] stack backtrace:
[  426.304556][T16846] CPU: 0 UID: 0 PID: 16846 Comm: syz.6.4541 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa-dirty #0 PREEMPT(full) 
[  426.304569][T16846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  426.304576][T16846] Call Trace:
[  426.304582][T16846]  <TASK>
[  426.304589][T16846]  dump_stack_lvl+0x189/0x250
[  426.304604][T16846]  ? __pfx_dump_stack_lvl+0x10/0x10
[  426.304613][T16846]  ? __pfx__printk+0x10/0x10
[  426.304625][T16846]  ? print_lock_name+0xde/0x100
[  426.304637][T16846]  print_circular_bug+0x2ee/0x310
[  426.304649][T16846]  check_noncircular+0x134/0x160
[  426.304660][T16846]  validate_chain+0xb9b/0x2140
[  426.304674][T16846]  __lock_acquire+0xab9/0xd20
[  426.304684][T16846]  ? ocfs2_try_remove_refcount_tree+0xb6/0x320
[  426.304697][T16846]  lock_acquire+0x120/0x360
[  426.304704][T16846]  ? ocfs2_try_remove_refcount_tree+0xb6/0x320
[  426.304718][T16846]  down_write+0x96/0x1f0
[  426.304730][T16846]  ? ocfs2_try_remove_refcount_tree+0xb6/0x320
[  426.304741][T16846]  ? __pfx_down_write+0x10/0x10
[  426.304751][T16846]  ocfs2_try_remove_refcount_tree+0xb6/0x320
[  426.304763][T16846]  ? __pfx_ocfs2_try_remove_refcount_tree+0x10/0x10
[  426.304775][T16846]  ? up_write+0x1c4/0x420
[  426.304788][T16846]  ocfs2_truncate_file+0xda0/0x1420
[  426.304800][T16846]  ? __pfx_ocfs2_truncate_file+0x10/0x10
[  426.304809][T16846]  ? do_raw_spin_unlock+0x4d/0x240
[  426.304820][T16846]  ? _raw_spin_unlock+0x28/0x50
[  426.304831][T16846]  ? ocfs2_inode_lock_tracker+0x3ec/0x660
[  426.304844][T16846]  ? __pfx_ocfs2_inode_lock_tracker+0x10/0x10
[  426.304854][T16846]  ? ocfs2_rw_lock+0x13a/0x240
[  426.304864][T16846]  ? __pfx___dquot_initialize+0x10/0x10
[  426.304876][T16846]  ? __pfx_ocfs2_rw_lock+0x10/0x10
[  426.304892][T16846]  ? setattr_prepare+0x1e7/0xac0
[  426.304902][T16846]  ? inode_newsize_ok+0x11b/0x1c0
[  426.304911][T16846]  ocfs2_setattr+0x1520/0x1b40
[  426.304922][T16846]  ? __pfx_ocfs2_setattr+0x10/0x10
[  426.304931][T16846]  ? ktime_get_coarse_real_ts64_mg+0x52/0x1e0
[  426.304946][T16846]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  426.304959][T16846]  ? ktime_get_coarse_real_ts64_mg+0x1be/0x1e0
[  426.304972][T16846]  ? current_time+0x222/0x370
[  426.304984][T16846]  ? evm_inode_setattr+0x1b6/0x7d0
[  426.304993][T16846]  ? __pfx_current_time+0x10/0x10
[  426.305005][T16846]  ? try_break_deleg+0x79/0x130
[  426.305013][T16846]  ? __pfx_ocfs2_setattr+0x10/0x10
[  426.305021][T16846]  notify_change+0xb36/0xe40
[  426.305032][T16846]  do_truncate+0x1a4/0x220
[  426.305042][T16846]  ? __pfx_do_truncate+0x10/0x10
[  426.305051][T16846]  ? apparmor_file_truncate+0x23e/0x2d0
[  426.305086][T16846]  path_openat+0x306c/0x3830
[  426.305097][T16846]  ? arch_stack_walk+0xfc/0x150
[  426.305113][T16846]  ? __pfx_path_openat+0x10/0x10
[  426.305121][T16846]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.305134][T16846]  do_filp_open+0x1fa/0x410
[  426.305142][T16846]  ? __lock_acquire+0xab9/0xd20
[  426.305150][T16846]  ? __pfx_do_filp_open+0x10/0x10
[  426.305162][T16846]  ? _raw_spin_unlock+0x28/0x50
[  426.305172][T16846]  ? alloc_fd+0x64c/0x6c0
[  426.305184][T16846]  do_sys_openat2+0x121/0x1c0
[  426.305196][T16846]  ? __se_sys_futex+0x36f/0x400
[  426.305209][T16846]  ? __pfx_do_sys_openat2+0x10/0x10
[  426.305221][T16846]  ? rcu_is_watching+0x15/0xb0
[  426.305232][T16846]  __x64_sys_open+0x11e/0x150
[  426.305244][T16846]  do_syscall_64+0xfa/0x3b0
[  426.305254][T16846]  ? lockdep_hardirqs_on+0x9c/0x150
[  426.305266][T16846]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.305274][T16846]  ? exc_page_fault+0x9f/0xf0
[  426.305285][T16846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.305293][T16846] RIP: 0033:0x7fa3dcd8e929
[  426.305304][T16846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.305312][T16846] RSP: 002b:00007fa3ddbb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  426.305322][T16846] RAX: ffffffffffffffda RBX: 00007fa3dcfb5fa0 RCX: 00007fa3dcd8e929
[  426.305329][T16846] RDX: 00000000000000a0 RSI: 000000000014927e RDI: 0000200000000180
[  426.305335][T16846] RBP: 00007fa3dce10b39 R08: 0000000000000000 R09: 0000000000000000
[  426.305340][T16846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  426.305345][T16846] R13: 0000000000000000 R14: 00007fa3dcfb5fa0 R15: 00007fff98b4fca8
[  426.305353][T16846]  </TASK>
[  426.464938][T11138] ocfs2: Unmounting device (7,6) on (node local)

VM DIAGNOSIS:
14:13:59  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000062426 RDI=0000000000062427 RBP=00000000000003f8 RSP=ffffc9000a706850
R8 =ffff888020ae0237 R9 =1ffff1100415c046 R10=dffffc0000000000 R11=ffffffff8547a130
R12=dffffc0000000000 R13=ffffffff99af9897 R14=ffffffff99dfe6e0 R15=0000000000000000
RIP=ffffffff8547a1ac RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fa3ddbb16c0 ffffffff 00c00000
GS =0000 ffff8880b861b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b3311fffc CR3=000000003dbd4000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffffffffffff ffffffffffffffff
XMM02=0000000000000000 0000000000000000 XMM03=ffffffffffffffff ffffffffffffffff
XMM04=0000000000000000 00000000000000ff XMM05=6161616161616161 6161616161616161
XMM06=6161616161616161 6161616161616161 XMM07=6161616161616161 6161616161616161
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f4e78011c91
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff81b4c210 RBX=ffff88813663b1c0 RCX=ffff8881184a8000 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc90006af7800 RSP=ffffc90006af76a0
R8 =ffffffff8fa1f2f7 R9 =1ffffffff1f43e5e R10=dffffc0000000000 R11=fffffbfff1f43e5f
R12=1ffff11009608385 R13=dffffc0000000000 R14=0000000000000000 R15=ffff88804b041c28
RIP=ffffffff81b4c210 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c2c70c7 CR3=000000000df38000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f4e78185478 00007f4e78185450 XMM03=00007f4e78185488 00007f4e78185480
XMM04=00007f4e78ced100 00007f4e78185440 XMM05=00007f4e78185458 00007f4e781854a0
XMM06=00007f4e78185498 00007f4e78185490 XMM07=00007f4e78185488 00007f4e78185480
XMM08=5cc0390d4fc326fb 9e4847f9a8b72fe7 XMM09=0000000000000000 00007f4e78011c91
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
