last executing test programs:

4.567748015s ago: executing program 0 (id=247):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x1, 0x442d, &(0x7f0000004480)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffa)
sendfile(r0, r0, 0x0, 0x800000009)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r2, 0x2007ffb)
sendfile(r1, r2, 0x0, 0x1000000201005)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
copy_file_range(r3, 0x0, r4, 0x0, 0xfffffbffa003e45b, 0x700000000000000)

3.749606521s ago: executing program 0 (id=259):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)

3.418753118s ago: executing program 0 (id=264):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x0, 0x0, &(0x7f0000000140))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10000, 0x1d0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000002c0)=@v2={0x2, @aes256, 0x2, '\x00', @auto="894ba1af3566697af32e65a626807121"})

3.289813147s ago: executing program 0 (id=268):
syz_usb_connect(0x3, 0x24, &(0x7f00000002c0)=ANY=[@ANYBLOB="120109000000c5400d0521013b6f000000010902120001fe0000000904"], 0x0)

3.10035012s ago: executing program 1 (id=272):
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x39, 0xc7, 0xa5, 0x40, 0x357d, 0x7788, 0x810d, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x4, 0x1d, 0x28, 0x0, 0x8, 0x4, 0x1, 0x5}}]}}]}}, 0x0)

2.068808725s ago: executing program 0 (id=284):
clock_gettime(0x2, &(0x7f0000000300))

2.068654547s ago: executing program 0 (id=285):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000001c0)=ANY=[@ANYBLOB="1201000016038308c5109a8146e40102230109022d0001000000000904000003030000000905be3b"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000680)={0x84, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000001c80)={0x34, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001c00)={0x20, 0x1, 0x1, 0x4}, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000900)={0x2c, 0x0, 0x0, 0x0, &(0x7f00000007c0), &(0x7f00000008c0)={0x20, 0x3, 0x1, 0x4}})

1.908863966s ago: executing program 1 (id=286):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000020bd28940000000000000109022400010000000009040100010300000009210000000122070009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000500)={0x24, &(0x7f0000002140)=ANY=[@ANYBLOB="02020c"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x24, @string={0x24, 0x3, "e31fc931e97c780a6e2290bdfc9663d8dc0f623d271ccaa3bbae0cde1d0c0b8e4bd3"}}, 0x0, 0x0, 0x0}, 0x0)

629.41089ms ago: executing program 2 (id=306):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe)
ioctl$TCFLSH(r0, 0x540b, 0x0)

629.142606ms ago: executing program 2 (id=307):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000001480)='./file1\x00', 0xc00a, &(0x7f0000000040)=ANY=[], 0x11, 0x6ae, &(0x7f0000000400)="$eJzs3c1vHHcZB/DvrF83lRy3TdOAKtU0UkFENHGsFMIlASEUpApV4cDZIk5jZZMGx0VpD8QFJK4c+APKIVzgBEJISEiRyhluFTeLUyUkLj2lPTBoZmfttbtrb5Im69DPJ5qdZ+Y385tnnnnZl8iaAJ9bF05k8m7auXDitVvV9Oadpc7mnaVr3bjVSTKTpJVMdkcprifF+8n5dId8oZrZdFcM286vV89e/OCjzQ+7U5PZ7q96aQ9PcHKUvdhohiwkmWjGD2FHfz96sP5mtsNiqzJVwY73CgfjNpWk3OHHR7dbBikn+iaGXu/Ak6Povm/26V7/88mhJLO9N7SNbmPr8We4r/u6F208ujwAAADgwDh873ZyK3PjzgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACeJM3z/4tmaPXihRS95/9P9z1jf3rM6Q63d2azveBu63EkAwAAAAAAAACP1ov38ruLZTnXmy6L+v/8X6onjtSvT+Wt3MxK1vJKbmU561nPWhaTzPd1NH1reX19bbG35idlWQ5Z8/T2/773rXl6xITbD7/PAAAAAAAAAPB/5Fwz/lkuZG7MuQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwA5FMtEd1cORXjyf1mSS2STT1XIbyT968ZPs7rgTAAAAgMfg8L3cy63M9abLov7Of7T+3j+bt3I961nNejpZyaX6t4Dut/7W5p2lzuadpWvV8Ol+v/Wf7fiPc/umUfeY7m8Pg7d8rF6inctZbZZK3kwnl9Kq16wc6+UzOK93q5yKc11lmZlRCnSpGVd7/qtmfDDM1xWZqitS1ehUk1tVjaf3rkT/0XmALS2mtfXLz5H7qPm5PbdS/Lcsu9Gh3pzkqe/tX/Op+9qZh7K7Eqf7zr6je1ci+fKffv/DK53rV68UGycOzmk0yIuDZ8/8q3eEepXo2shKlvoq8XxTgeo63bsSl28e8EqMqJXntuIL+W5+kBNZyOtZy2p+kuWsZyUL+U4dLTfnc/U6v/c5c37H1Ov7ZTHdHJeJXTl96XB3vFdOL9XrzmU138+buZSVvFr/O53FfD1nciZn+47wcyNc9a0BV/2fhyd//CtN0E7yy2Z8MFR1fbqvrv333Pm6rX9OK2XzzvLMZ3Zv3DL5xSaojsTP+67B8duqxGy23iV62T3bq8DUwEr8pr6t3Oxcv7p2ZfnGrn6LjcHbezk7d//g3Eiq8+WZ6mDVUzvPjqrt2YFti3Xbka221u6237a32va7Uqebz3Cf7ul03fb8wLaluu1YX1v1eWs2yUo+Kcuy+3kLgAPv0FcPTbf/3f57+732L9pX2q/NfnvmGzMvTGfqb1PfnDw18XLrheIPeS8/zf7f0AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgH3dfPudq8udzsrarqAsy9tDmh5JkMlkx5y//qUJmqe81Q8DGr3DaunzraSeM5kmuL/Ebj/Y7rz7oEX4Z3NMHkvBP5Ngduj5szv4uCzLg5HzKEHZOCj5jCMY3z0JeDxOrl+7cfLm2+98bfVa642VN1aunz1z5uyps2deXTp5ebUzO+70gEeofq+vP+eMOxMAAAAAAAAAAABgVKP9cU7xcH/bAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAQLpzI5N0UWTz1yqlqevPOUqcaevH2kh8naSUpFpLi/eR8ukPm+7orhm1nI7n4wUebH3anJpuhXr6113qj2WiGLCSZaMYDzCY5tHtmeXtYf0Xdz43h/Y2o2NrDqmDHe4WDcftfAAAA//8p+RGB")
truncate(&(0x7f0000000200)='./file1\x00', 0x20fffffffc)

628.854945ms ago: executing program 2 (id=308):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
truncate(&(0x7f0000000280)='./file1\x00', 0x1fefff)
pwrite64(r0, &(0x7f0000000000)='2', 0x1, 0x4fed0)

570.323707ms ago: executing program 2 (id=309):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'veth0_to_batadv\x00', <r4=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x24, r2, 0x331, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}]}, 0x24}}, 0x0)

570.132629ms ago: executing program 2 (id=310):
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

510.171865ms ago: executing program 2 (id=311):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x5, 0x7fc00007}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000001c0)={0x2007})
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)={0x20000000, 0x97})

89.728335ms ago: executing program 1 (id=312):
syz_mount_image$ext4(&(0x7f0000002180)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1008802, &(0x7f0000000180)={[{@resgid={'resgid', 0x3d, 0xee01}}, {@abort}, {@discard}, {@max_batch_time={'max_batch_time', 0x3d, 0xac9}}, {@data_ordered}, {@mblk_io_submit}, {@usrquota}, {@init_itable}, {@errors_remount}, {}, {@auto_da_alloc}]}, 0x9, 0x606, &(0x7f0000000600)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)

84.053015ms ago: executing program 1 (id=313):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000100)={&(0x7f0000000200)={0xa, 0x4e22, 0x6, @ipv4={'\x00', '\xff\xff', @empty}, 0x3}, 0x1c, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1400000000000000290000000b00000000000007000000002400000000000000290000003200000000000000000000000000ffff", @ANYRESHEX=r0], 0x40}, 0x6048090)

282.926µs ago: executing program 1 (id=314):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff8000}]})
accept(0xffffffffffffffff, 0x0, 0x0)

0s ago: executing program 1 (id=315):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000640)=ANY=[@ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRESOCT, @ANYBLOB="013ced044bdd1d80c6a59bca5c1f9d57c0bf983de420f461a7414616093c243234af9243259143a1df24ac0219d7c378a66c310c8b4a0a5be52831340548247ed220c3c9fbc83337fa0b63b0a54e73ff5f9b6625b0faa1fb755e1af638d96ec92d0802aa01c49d12703c6452c7b0edad1ecfdc926cf6ee88d55c25512d52b43a773f9cd35d70e03d69b2af2ead1c39ef1c55"], 0xfa, 0x6260, &(0x7f0000000740)="$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")
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='hugetlbfs\x00', 0x800007, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000340)='./file0\x00')

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:2783' (ED25519) to the list of known hosts.
syzkaller login: [   41.543100][ T5774] cgroup: Unknown subsys name 'net'
[   41.631105][ T5774] cgroup: Unknown subsys name 'cpuset'
[   41.636647][ T5774] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   42.905715][ T5774] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   46.097893][ T5844] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   46.100477][ T5844] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   46.104025][   T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   46.106510][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   46.109748][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   46.112560][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   46.115896][   T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   46.122559][   T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   46.137311][ T5233] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   46.140892][ T5233] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   46.143448][ T5233] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   46.146887][ T5847] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   46.150396][ T5847] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   46.154238][ T5847] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   46.157757][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   46.296760][ T5840] chnl_net:caif_netlink_parms(): no params data found
[   46.320476][ T5849] chnl_net:caif_netlink_parms(): no params data found
[   46.371955][ T5845] chnl_net:caif_netlink_parms(): no params data found
[   46.396867][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.399857][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.402244][ T5840] bridge_slave_0: entered allmulticast mode
[   46.405148][ T5840] bridge_slave_0: entered promiscuous mode
[   46.408878][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.411564][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.414207][ T5840] bridge_slave_1: entered allmulticast mode
[   46.416591][ T5840] bridge_slave_1: entered promiscuous mode
[   46.445230][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.448214][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.451023][ T5849] bridge_slave_0: entered allmulticast mode
[   46.453932][ T5849] bridge_slave_0: entered promiscuous mode
[   46.477673][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.480611][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.483248][ T5849] bridge_slave_1: entered allmulticast mode
[   46.486030][ T5849] bridge_slave_1: entered promiscuous mode
[   46.490460][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.498500][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.501430][ T5845] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.504422][ T5845] bridge_slave_0: entered allmulticast mode
[   46.508288][ T5845] bridge_slave_0: entered promiscuous mode
[   46.513227][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.532688][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.536621][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.540433][ T5845] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.543542][ T5845] bridge_slave_1: entered allmulticast mode
[   46.546777][ T5845] bridge_slave_1: entered promiscuous mode
[   46.564736][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.583700][ T5840] team0: Port device team_slave_0 added
[   46.594162][ T5845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.599999][ T5845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.604754][ T5840] team0: Port device team_slave_1 added
[   46.609456][ T5849] team0: Port device team_slave_0 added
[   46.626055][ T5849] team0: Port device team_slave_1 added
[   46.638349][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.641025][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.651272][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.660531][ T5845] team0: Port device team_slave_0 added
[   46.663411][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.665790][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.675983][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.680509][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.682923][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.692640][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.697470][ T5845] team0: Port device team_slave_1 added
[   46.702089][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.704460][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.713291][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.746316][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.749895][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.759405][ T5845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.779480][ T5840] hsr_slave_0: entered promiscuous mode
[   46.782367][ T5840] hsr_slave_1: entered promiscuous mode
[   46.785663][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.788933][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.799446][ T5845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.810798][ T5849] hsr_slave_0: entered promiscuous mode
[   46.813562][ T5849] hsr_slave_1: entered promiscuous mode
[   46.816207][ T5849] debugfs: 'hsr0' already exists in 'hsr'
[   46.818516][ T5849] Cannot create hsr debugfs directory
[   46.825662][ T5845] hsr_slave_0: entered promiscuous mode
[   46.828166][ T5845] hsr_slave_1: entered promiscuous mode
[   46.830378][ T5845] debugfs: 'hsr0' already exists in 'hsr'
[   46.832397][ T5845] Cannot create hsr debugfs directory
[   46.974429][ T5849] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   46.980929][ T5849] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   46.985132][ T5849] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   46.992665][ T5849] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.017779][ T5845] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.021533][ T5845] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.030055][ T5845] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.038262][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.041324][ T5849] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.044526][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.047401][ T5849] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.051672][ T5845] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.073210][ T5840] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   47.077840][ T5840] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   47.082660][ T5840] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   47.089800][ T5840] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   47.112214][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.114707][ T5840] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.117291][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.119586][ T5840] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.129010][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.131988][ T5845] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.135029][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.137952][ T5845] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.146566][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.159736][   T27] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.163096][   T27] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.166331][   T27] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.169952][   T27] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.173398][   T27] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.176558][   T27] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.190318][ T5849] 8021q: adding VLAN 0 to HW filter on device team0
[   47.200880][   T27] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.203847][   T27] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.213693][   T27] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.215993][   T27] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.238432][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.253150][ T5845] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.275040][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[   47.282554][ T5845] 8021q: adding VLAN 0 to HW filter on device team0
[   47.289627][ T1092] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.292625][ T1092] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.310240][ T1092] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.313198][ T1092] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.318505][ T1092] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.321138][ T1092] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.334990][ T1092] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.337969][ T1092] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.353332][ T5845] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   47.357918][ T5845] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   47.384988][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.426687][ T5849] veth0_vlan: entered promiscuous mode
[   47.439063][ T5849] veth1_vlan: entered promiscuous mode
[   47.458239][ T5849] veth0_macvtap: entered promiscuous mode
[   47.465969][ T5849] veth1_macvtap: entered promiscuous mode
[   47.478988][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.485013][ T5845] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.489749][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.503622][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.506729][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.511953][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.525416][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.529686][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.558234][ T5845] veth0_vlan: entered promiscuous mode
[   47.574901][ T5845] veth1_vlan: entered promiscuous mode
[   47.580773][ T5840] veth0_vlan: entered promiscuous mode
[   47.586858][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.588464][ T5840] veth1_vlan: entered promiscuous mode
[   47.597879][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.619520][   T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.622731][   T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.632215][ T5840] veth0_macvtap: entered promiscuous mode
[   47.639965][ T5845] veth0_macvtap: entered promiscuous mode
[   47.645145][ T5840] veth1_macvtap: entered promiscuous mode
[   47.650750][ T5845] veth1_macvtap: entered promiscuous mode
[   47.651013][ T5849] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   47.671948][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.679495][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.684773][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.700773][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.707566][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.711248][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.714995][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.746272][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.748308][ T5913] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4'.
[   47.750882][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.759778][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.763607][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.777295][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.832095][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.836501][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.877070][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.880398][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.899691][   T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.902708][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.905069][   T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.906736][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.109020][ T5917] loop1: detected capacity change from 0 to 40427
[   48.115699][ T5917] F2FS-fs (loop1): build fault injection rate: 14
[   48.118475][ T5917] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[   48.121646][ T5917] F2FS-fs (loop1): invalid crc value
[   48.127717][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[   48.133001][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[   48.167592][ T5917] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   48.170489][ T5917] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[   48.175272][ T5917] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   48.177234][   T55] Bluetooth: hci0: command tx timeout
[   48.179068][ T5847] Bluetooth: hci2: command tx timeout
[   48.179998][ T5844] Bluetooth: hci1: command tx timeout
[   48.187977][ T5917] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[   48.207058][   T33] audit: type=1800 audit(1755799290.449:2): pid=5917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.6" name="file2" dev="loop1" ino=10 res=0 errno=0
[   48.215043][ T5917] F2FS-fs (loop1): inject inconsistent footer in sanity_check_node_footer of f2fs_get_dnode_of_data+0x249/0x1cf0
[   48.220456][ T5933] loop2: detected capacity change from 0 to 32768
[   48.220749][ T5934] loop0: detected capacity change from 0 to 40427
[   48.230235][ T5917] F2FS-fs (loop1): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[   48.230259][ T5934] F2FS-fs (loop0): build fault injection rate: 771
[   48.255538][ T5934] F2FS-fs (loop0): invalid crc value
[   48.274946][ T5849] syz-executor: attempt to access beyond end of device
[   48.274946][ T5849] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   48.276544][ T5934] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   48.285087][ T5934] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   48.288112][ T5849] CPU: 1 UID: 0 PID: 5849 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   48.288124][ T5849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   48.288129][ T5849] Call Trace:
[   48.288138][ T5849]  <TASK>
[   48.288141][ T5849]  dump_stack_lvl+0x189/0x250
[   48.288156][ T5849]  ? __pfx_dump_stack_lvl+0x10/0x10
[   48.288165][ T5849]  ? __pfx_queue_work_on+0x10/0x10
[   48.288173][ T5849]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   48.288184][ T5849]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   48.288194][ T5849]  f2fs_handle_critical_error+0x37c/0x540
[   48.288206][ T5849]  f2fs_write_end_io+0x886/0xb60
[   48.288216][ T5849]  __submit_merged_bio+0x27a/0x6a0
[   48.288226][ T5849]  __submit_merged_write_cond+0x255/0x530
[   48.288235][ T5849]  f2fs_write_data_pages+0x261d/0x3000
[   48.288250][ T5849]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   48.288262][ T5849]  ? arch_stack_walk+0xfc/0x150
[   48.288276][ T5849]  ? unwind_next_frame+0xa5/0x2390
[   48.288284][ T5849]  ? rcu_is_watching+0x15/0xb0
[   48.288293][ T5849]  ? unwind_next_frame+0xa5/0x2390
[   48.288300][ T5849]  ? css_rstat_updated+0x23a/0x4f0
[   48.288308][ T5849]  ? kvm_sched_clock_read+0x11/0x20
[   48.288318][ T5849]  ? sched_clock+0x3f/0x60
[   48.288328][ T5849]  ? do_raw_spin_lock+0x121/0x290
[   48.288338][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[   48.288346][ T5849]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   48.288356][ T5849]  do_writepages+0x32e/0x550
[   48.288366][ T5849]  ? rcu_is_watching+0x15/0xb0
[   48.288373][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[   48.288382][ T5849]  filemap_fdatawrite+0x199/0x240
[   48.288394][ T5849]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   48.288409][ T5849]  ? rcu_is_watching+0x15/0xb0
[   48.288416][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[   48.288424][ T5849]  f2fs_sync_dirty_inodes+0x31f/0x830
[   48.288433][ T5849]  f2fs_write_checkpoint+0x95a/0x1df0
[   48.288443][ T5849]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   48.288456][ T5849]  ? kill_f2fs_super+0x298/0x6c0
[   48.288464][ T5849]  kill_f2fs_super+0x2c3/0x6c0
[   48.288471][ T5849]  ? __pfx_kill_f2fs_super+0x10/0x10
[   48.288477][ T5849]  ? radix_tree_delete_item+0x2b6/0x400
[   48.288487][ T5849]  ? shrinker_free+0x2ce/0x3e0
[   48.288496][ T5849]  deactivate_locked_super+0xbc/0x130
[   48.288505][ T5849]  cleanup_mnt+0x425/0x4c0
[   48.288514][ T5849]  task_work_run+0x1d4/0x260
[   48.288524][ T5849]  ? __pfx_task_work_run+0x10/0x10
[   48.288533][ T5849]  ? __x64_sys_umount+0x122/0x160
[   48.288541][ T5849]  ? __pfx___x64_sys_umount+0x10/0x10
[   48.288551][ T5849]  ? rcu_is_watching+0x15/0xb0
[   48.288557][ T5849]  exit_to_user_mode_loop+0xec/0x110
[   48.288567][ T5849]  do_syscall_64+0x2bd/0x3b0
[   48.288578][ T5849]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.288585][ T5849]  ? exc_page_fault+0x9f/0xf0
[   48.288593][ T5849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.288600][ T5849] RIP: 0033:0x7f8a1ed8ff17
[   48.288609][ T5849] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   48.288615][ T5849] RSP: 002b:00007ffda80d62d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   48.288625][ T5849] RAX: 0000000000000000 RBX: 00007f8a1ee11c05 RCX: 00007f8a1ed8ff17
[   48.288629][ T5849] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffda80d6390
[   48.288634][ T5849] RBP: 00007ffda80d6390 R08: 0000000000000000 R09: 0000000000000000
[   48.288638][ T5849] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffda80d7420
[   48.288643][ T5849] R13: 00007f8a1ee11c05 R14: 000000000000bc11 R15: 00007ffda80d7460
[   48.288650][ T5849]  </TASK>
[   48.288654][ T5849] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   48.305274][   T33] audit: type=1800 audit(1755799290.549:3): pid=5934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.10" name="file1" dev="loop0" ino=10 res=0 errno=0
[   48.312065][ T5933] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[   48.451517][ T5840] syz-executor: attempt to access beyond end of device
[   48.451517][ T5840] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   48.453478][ T5933]   allowing incompatible features above 0.0: (unknown version)
[   48.460391][ T5933]   features: inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   48.465572][ T5933] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[   48.469455][ T5933] bcachefs (loop2): initializing new filesystem
[   48.477667][ T5933] bcachefs (loop2): going read-write
[   48.478531][ T5840] CPU: 0 UID: 0 PID: 5840 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   48.478549][ T5840] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   48.478557][ T5840] Call Trace:
[   48.478562][ T5840]  <TASK>
[   48.478566][ T5840]  dump_stack_lvl+0x189/0x250
[   48.478589][ T5840]  ? __pfx_dump_stack_lvl+0x10/0x10
[   48.478603][ T5840]  ? __pfx_queue_work_on+0x10/0x10
[   48.478616][ T5840]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   48.478633][ T5840]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   48.478650][ T5840]  f2fs_handle_critical_error+0x37c/0x540
[   48.478670][ T5840]  f2fs_write_end_io+0x886/0xb60
[   48.478686][ T5840]  __submit_merged_bio+0x27a/0x6a0
[   48.478703][ T5840]  __submit_merged_write_cond+0x255/0x530
[   48.478720][ T5840]  f2fs_write_data_pages+0x261d/0x3000
[   48.478745][ T5840]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   48.478765][ T5840]  ? rcu_is_watching+0x15/0xb0
[   48.478784][ T5840]  ? stack_depot_save_flags+0x41b/0x860
[   48.478837][ T5840]  ? cleanup_mnt+0x425/0x4c0
[   48.478850][ T5840]  ? task_work_run+0x1d4/0x260
[   48.478865][ T5840]  ? exit_to_user_mode_loop+0xec/0x110
[   48.478881][ T5840]  ? do_syscall_64+0x2bd/0x3b0
[   48.478898][ T5840]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.478912][ T5840]  ? do_raw_spin_lock+0x121/0x290
[   48.478929][ T5840]  ? do_raw_spin_unlock+0x4d/0x240
[   48.478942][ T5840]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   48.478960][ T5840]  do_writepages+0x32e/0x550
[   48.478977][ T5840]  ? rcu_is_watching+0x15/0xb0
[   48.478989][ T5840]  ? do_raw_spin_unlock+0x4d/0x240
[   48.479004][ T5840]  filemap_fdatawrite+0x199/0x240
[   48.479021][ T5840]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   48.479044][ T5840]  ? rcu_is_watching+0x15/0xb0
[   48.479056][ T5840]  ? do_raw_spin_unlock+0x4d/0x240
[   48.479070][ T5840]  f2fs_sync_dirty_inodes+0x31f/0x830
[   48.479085][ T5840]  f2fs_write_checkpoint+0x95a/0x1df0
[   48.479102][ T5840]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   48.479123][ T5840]  ? f2fs_stop_gc_thread+0x7f/0xb0
[   48.479135][ T5840]  ? kfree+0x18e/0x440
[   48.479150][ T5840]  ? kill_f2fs_super+0x298/0x6c0
[   48.479162][ T5840]  kill_f2fs_super+0x2c3/0x6c0
[   48.479174][ T5840]  ? __pfx_kill_f2fs_super+0x10/0x10
[   48.479185][ T5840]  ? radix_tree_delete_item+0x2b6/0x400
[   48.479202][ T5840]  ? shrinker_free+0x2ce/0x3e0
[   48.479215][ T5840]  deactivate_locked_super+0xbc/0x130
[   48.479230][ T5840]  cleanup_mnt+0x425/0x4c0
[   48.479243][ T5840]  task_work_run+0x1d4/0x260
[   48.479259][ T5840]  ? __pfx_task_work_run+0x10/0x10
[   48.479273][ T5840]  ? __x64_sys_umount+0x122/0x160
[   48.479289][ T5840]  ? __pfx___x64_sys_umount+0x10/0x10
[   48.479304][ T5840]  ? rcu_is_watching+0x15/0xb0
[   48.479316][ T5840]  exit_to_user_mode_loop+0xec/0x110
[   48.479331][ T5840]  do_syscall_64+0x2bd/0x3b0
[   48.479348][ T5840]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.479359][ T5840]  ? exc_page_fault+0x9f/0xf0
[   48.479374][ T5840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.479386][ T5840] RIP: 0033:0x7f9f68b8ff17
[   48.479398][ T5840] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   48.479407][ T5840] RSP: 002b:00007ffee8611338 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   48.479429][ T5840] RAX: 0000000000000000 RBX: 00007f9f68c11c05 RCX: 00007f9f68b8ff17
[   48.479437][ T5840] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffee86113f0
[   48.479444][ T5840] RBP: 00007ffee86113f0 R08: 0000000000000000 R09: 0000000000000000
[   48.479451][ T5840] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee8612480
[   48.479459][ T5840] R13: 00007f9f68c11c05 R14: 000000000000bc3d R15: 00007ffee86124c0
[   48.479472][ T5840]  </TASK>
[   48.479477][ T5840] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   48.641658][ T5933] bcachefs (loop2): marking superblocks
[   48.664889][ T5933] bcachefs (loop2): initializing freespace
[   48.670067][ T5933] bcachefs (loop2): done initializing freespace
[   48.673706][ T5933] bcachefs (loop2): reading snapshots table
[   48.675740][ T5933] bcachefs (loop2): reading snapshots done
[   48.682210][ T5933] bcachefs (loop2): done starting filesystem
[   48.750200][ T5933] syz.2.12 (5933) used greatest stack depth: 17448 bytes left
[   48.769775][ T5845] bcachefs (loop2): shutting down
[   48.774489][ T5845] bcachefs (loop2): going read-only
[   48.776596][ T5845] bcachefs (loop2): finished waiting for writes to stop
[   48.780365][ T5845] bcachefs (loop2): flushing journal and stopping allocators, journal seq 4
[   48.801635][ T5845] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 5
[   48.811538][ T5845] bcachefs (loop2): clean shutdown complete, journal seq 6
[   48.814330][ T5845] bcachefs (loop2): marking filesystem clean
[   48.828629][ T5845] bcachefs (loop2): shutdown complete
[   49.753696][ T5976] netlink: 'syz.0.22': attribute type 1 has an invalid length.
[   49.756357][ T5976] netlink: 224 bytes leftover after parsing attributes in process `syz.0.22'.
[   49.798912][ T5980] netlink: 'syz.0.24': attribute type 10 has an invalid length.
[   49.802146][ T5980] vlan0: entered allmulticast mode
[   49.804490][ T5980] veth0_vlan: entered allmulticast mode
[   49.811269][ T5980] team0: Port device vlan0 added
[   49.924182][ T5987] loop1: detected capacity change from 0 to 1024
[   49.971531][   T53] hfsplus: b-tree write err: -5, ino 4
[   50.097590][ T5880] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   50.119013][ T5992] loop2: detected capacity change from 0 to 32768
[   50.136495][ T5992] ERROR: (device loop2): dtSearch: DT_GETPAGE: dtree page corrupt
[   50.136495][ T5992] 
[   50.140506][ T5992] ERROR: (device loop2): remounting filesystem as read-only
[   50.142972][ T5992] jfs_lookup: dtSearch returned -5
[   50.191592][ T5995] loop1: detected capacity change from 0 to 32768
[   50.197999][ T5995] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.30 (5995)
[   50.215529][ T5995] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   50.222291][ T5995] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   50.249426][ T5880] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[   50.252319][ T5880] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[   50.256126][ T5880] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[   50.261831][ T5844] Bluetooth: hci1: command tx timeout
[   50.264470][   T55] Bluetooth: hci0: command tx timeout
[   50.267134][ T5844] Bluetooth: hci2: command tx timeout
[   50.270236][ T6002] loop8: detected capacity change from 0 to 16384
[   50.273084][ T5880] usb 1-1: config 220 has no interface number 2
[   50.292492][ T5880] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[   50.314356][ T5880] usb 1-1: config 220 interface 0 has no altsetting 0
[   50.314824][ T5995] BTRFS info (device loop1): enabling ssd optimizations
[   50.320240][ T5880] usb 1-1: config 220 interface 76 has no altsetting 0
[   50.322561][ T5880] usb 1-1: config 220 interface 1 has no altsetting 0
[   50.325510][ T5995] BTRFS info (device loop1): enabling free space tree
[   50.331482][ T5880] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[   50.335111][ T5880] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   50.339152][ T5880] usb 1-1: Product: syz
[   50.344910][ T5880] usb 1-1: Manufacturer: syz
[   50.346485][ T5880] usb 1-1: SerialNumber: syz
[   50.369434][ T5849] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   50.508096][ T6017] loop8: detected capacity change from 16384 to 16383
[   50.565520][ T5880] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[   50.574849][ T5880] usb 1-1: No valid video chain found.
[   50.581666][ T5880] usb 1-1: selecting invalid altsetting 0
[   50.590456][ T5880] usb 1-1: selecting invalid altsetting 0
[   50.592420][ T5880] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[   50.593043][ T6032] Bluetooth: MGMT ver 1.23
[   50.603544][ T5880] usb 1-1: USB disconnect, device number 2
[   50.757472][ T6034] nbd0: detected capacity change from 0 to 127
[   50.763959][   T57] block nbd0: Receive control failed (result -104)
[   50.764324][ T5953] block nbd0: Receive control failed (result -32)
[   50.827649][  T792] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   50.905696][ T6040] loop2: detected capacity change from 0 to 32768
[   50.912879][ T6040] Mount JFS Failure: -5
[   50.981579][  T792] usb 2-1: config 39 has an invalid interface number: 2 but max is 0
[   50.985030][  T792] usb 2-1: config 39 has no interface number 0
[   50.989008][  T792] usb 2-1: config 39 interface 2 has no altsetting 0
[   50.993613][  T792] usb 2-1: New USB device found, idVendor=055f, idProduct=a800, bcdDevice=c4.36
[   50.998648][  T792] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   51.001946][  T792] usb 2-1: Product: syz
[   51.003661][  T792] usb 2-1: Manufacturer: syz
[   51.005570][  T792] usb 2-1: SerialNumber: syz
[   51.150399][   T33] audit: type=1326 audit(1755799293.399:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6057 comm="syz.0.51" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9f68b8ebe9 code=0x0
[   51.214059][  T792] mdc800 2-1:39.2: probe fails -> wrong Interface
[   51.217933][  T792] usb 2-1: USB disconnect, device number 2
[   51.447104][   T47] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   51.607524][   T47] usb 3-1: Using ep0 maxpacket: 16
[   51.611259][   T47] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[   51.614693][   T47] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   51.619783][   T47] usb 3-1: config 0 has no interface number 0
[   51.624818][   T47] usb 3-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[   51.629091][   T47] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   51.632518][   T47] usb 3-1: Product: syz
[   51.634310][   T47] usb 3-1: Manufacturer: syz
[   51.636316][   T47] usb 3-1: SerialNumber: syz
[   51.640129][   T47] usb 3-1: config 0 descriptor??
[   51.644030][   T47] usb 3-1: Found UVC 0.00 device syz (046d:08f3)
[   51.646745][   T47] usb 3-1: No valid video chain found.
[   51.756742][ T6067] loop1: detected capacity change from 0 to 256
[   51.759555][ T6067] exfat: Deprecated parameter 'utf8'
[   51.761462][ T6067] exfat: Deprecated parameter 'namecase'
[   51.763408][ T6067] exfat: Deprecated parameter 'utf8'
[   51.769441][ T6067] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[   51.848486][  T792] usb 3-1: USB disconnect, device number 2
[   52.047308][   T47] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   52.103824][ T6075] loop0: detected capacity change from 0 to 32768
[   52.106928][ T6075] =======================================================
[   52.106928][ T6075] WARNING: The mand mount option has been deprecated and
[   52.106928][ T6075]          and is ignored by this kernel. Remove the mand
[   52.106928][ T6075]          option from the mount to silence this warning.
[   52.106928][ T6075] =======================================================
[   52.160189][ T6075] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=gzip,norecovery,nojournal_transaction_names,no_data_io
[   52.160210][ T6075]   allowing incompatible features above 0.0: (unknown version)
[   52.160217][ T6075]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   52.176438][ T6075] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   52.179733][ T6075] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   52.182998][ T6075] bcachefs (loop0): Version upgrade from 1.19: autofix_errors to 1.7: mi_btree_bitmap incomplete
[   52.182998][ T6075] Doing compatible version upgrade from 1.19: autofix_errors to 1.28: inode_has_case_insensitive
[   52.182998][ T6075]   running recovery passes: check_extents_to_backpointers,check_inodes
[   52.197072][   T47] usb 2-1: Using ep0 maxpacket: 16
[   52.201971][   T47] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[   52.205386][   T47] usb 2-1: config 0 has no interface number 0
[   52.210317][   T47] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   52.215383][   T47] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   52.221639][   T47] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[   52.222192][ T6075] bcachefs (loop0): btree node read error: no device to read from
[   52.225277][   T47] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[   52.229747][ T6075]  at freespace level 0/0
[   52.231745][   T47] usb 2-1: Product: syz
[   52.233793][ T6075]   u64s 11 type 255 SPOS_MAX len 0 ver 65535: 
[   52.235234][   T47] usb 2-1: SerialNumber: syz
[   52.238164][ T6075]   flagging btree freespace lost data
[   52.242313][ T6075]   running recovery pass check_topology (2), currently at recovery_pass_empty (0)
[   52.242805][   T47] usb 2-1: config 0 descriptor??
[   52.248344][ T6075]   running recovery pass check_allocations (8), currently at recovery_pass_empty (0)
[   52.253353][ T6075]   running recovery pass check_lrus (14), currently at recovery_pass_empty (0)
[   52.254073][   T47] cm109 2-1:0.8: invalid payload size 0, expected 4
[   52.258159][ T6075]   running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0)
[   52.260915][   T47] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input4
[   52.265166][ T6075]   running recovery pass check_alloc_info (13), currently at recovery_pass_empty (0)
[   52.272663][ T6075] bcachefs (loop0): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[   52.280223][ T6075] bcachefs (loop0): check_topology... done
[   52.283184][ T6075] bcachefs (loop0): accounting_read... done
[   52.286387][ T6075] bcachefs (loop0): alloc_read... done
[   52.289203][ T6075] bcachefs (loop0): snapshots_read... done
[   52.291581][ T6075] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   52.294991][ T6075] bcachefs (loop0): done starting filesystem
[   52.319700][ T6075] bcachefs (loop0): inode 536870912:4294967295 has wrong backpointer:
[   52.319712][ T6075]   got       4330382808765833931:0
[   52.319717][ T6075]   should be 4096:4330382808765833931, fixing
[   52.335207][ T5840] bcachefs (loop0): shutting down
[   52.337630][   T55] Bluetooth: hci2: command tx timeout
[   52.339676][   T55] Bluetooth: hci1: command tx timeout
[   52.341610][   T55] Bluetooth: hci0: command tx timeout
[   52.348963][ T5840] bcachefs (loop0): shutdown complete
[   52.418477][ T6088] loop2: detected capacity change from 0 to 2048
[   52.422792][ T6088] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[   52.431029][ T6088] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   52.436288][ T6088] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1376) has entry at pos 100 with incorrect tag 0
[   52.474916][    C1] cm109 2-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[   52.882574][   T47] usb 2-1: USB disconnect, device number 3
[   52.891650][   T47] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[   53.243639][ T6099] loop0: detected capacity change from 0 to 1024
[   53.246926][ T6099] EXT4-fs: Ignoring removed bh option
[   53.276514][ T6099] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.351879][ T5840] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.524586][ T6117] loop2: detected capacity change from 0 to 512
[   53.541968][ T6117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   53.567394][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.594534][ T6122] capability: warning: `syz.2.74' uses deprecated v2 capabilities in a way that may be insecure
[   53.689802][ T6126] loop2: detected capacity change from 0 to 2048
[   53.712467][ T6126] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.731698][ T6134] loop1: detected capacity change from 0 to 128
[   53.736098][ T6126] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[   53.770854][ T6128] loop0: detected capacity change from 0 to 40427
[   53.773449][ T6126] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[   53.779701][ T6128] F2FS-fs (loop0): invalid crc value
[   53.802229][ T6128] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   53.805441][ T6128] F2FS-fs (loop0): Start checkpoint disabled!
[   53.808473][ T6128] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   53.810722][ T6126] EXT4-fs (loop2): This should not happen!! Data will be lost
[   53.810722][ T6126] 
[   53.817024][ T6126] EXT4-fs (loop2): Total free blocks count 0
[   53.817707][   T33] audit: type=1800 audit(1755799296.059:5): pid=6128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.77" name="file1" dev="loop0" ino=10 res=0 errno=0
[   53.826809][ T6126] EXT4-fs (loop2): Free/Dirty block details
[   53.835143][ T6126] EXT4-fs (loop2): free_blocks=66060288
[   53.837923][ T6126] EXT4-fs (loop2): dirty_blocks=48
[   53.840481][ T6126] EXT4-fs (loop2): Block reservation details
[   53.844254][ T6126] EXT4-fs (loop2): i_reserved_data_blocks=3
[   53.844497][   T27] kworker/u10:0: attempt to access beyond end of device
[   53.844497][   T27] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   53.848638][ T6125] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   53.856041][   T27] CPU: 1 UID: 0 PID: 27 Comm: kworker/u10:0 Not tainted syzkaller #0 PREEMPT(full) 
[   53.856055][   T27] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   53.856062][   T27] Workqueue: writeback wb_workfn (flush-7:0)
[   53.856081][   T27] Call Trace:
[   53.856086][   T27]  <TASK>
[   53.856092][   T27]  dump_stack_lvl+0x189/0x250
[   53.856109][   T27]  ? __pfx_dump_stack_lvl+0x10/0x10
[   53.856123][   T27]  ? __pfx_queue_work_on+0x10/0x10
[   53.856135][   T27]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   53.856151][   T27]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   53.856169][   T27]  f2fs_handle_critical_error+0x37c/0x540
[   53.856197][   T27]  f2fs_write_end_io+0x886/0xb60
[   53.856214][   T27]  __submit_merged_bio+0x27a/0x6a0
[   53.856231][   T27]  __submit_merged_write_cond+0x255/0x530
[   53.856247][   T27]  f2fs_write_data_pages+0x261d/0x3000
[   53.856275][   T27]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   53.856296][   T27]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[   53.856319][   T27]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[   53.856340][   T27]  ? trace_f2fs_writepages+0x7f/0x200
[   53.856355][   T27]  ? f2fs_write_node_pages+0x478/0x6e0
[   53.856369][   T27]  ? xa_load+0x60/0x210
[   53.856388][   T27]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   53.856401][   T27]  ? do_raw_spin_lock+0x121/0x290
[   53.856417][   T27]  ? rcu_is_watching+0x15/0xb0
[   53.856429][   T27]  ? set_shrinker_bit+0x7c/0x350
[   53.856443][   T27]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   53.856460][   T27]  do_writepages+0x32e/0x550
[   53.856476][   T27]  ? unwind_next_frame+0xa5/0x2390
[   53.856494][   T27]  __writeback_single_inode+0x145/0xff0
[   53.856509][   T27]  ? do_raw_spin_unlock+0x4d/0x240
[   53.856524][   T27]  writeback_sb_inodes+0x6c7/0x1010
[   53.856543][   T27]  ? fprop_reflect_period_percpu+0x6b/0x330
[   53.856562][   T27]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   53.856589][   T27]  ? rcu_is_watching+0x15/0xb0
[   53.856603][   T27]  wb_writeback+0x43b/0xaf0
[   53.856619][   T27]  ? queue_io+0x3c1/0x590
[   53.856634][   T27]  ? __pfx_wb_writeback+0x10/0x10
[   53.856650][   T27]  ? rcu_is_watching+0x15/0xb0
[   53.856663][   T27]  wb_workfn+0x409/0xef0
[   53.856680][   T27]  ? __pfx_wb_workfn+0x10/0x10
[   53.856691][   T27]  ? rcu_is_watching+0x15/0xb0
[   53.856703][   T27]  ? rcu_is_watching+0x15/0xb0
[   53.856716][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[   53.856727][   T27]  ? rcu_is_watching+0x15/0xb0
[   53.856769][   T27]  ? lock_acquire+0x5f/0x360
[   53.856788][   T27]  ? rcu_is_watching+0x15/0xb0
[   53.856798][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[   53.856808][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[   53.856820][   T27]  process_scheduled_works+0xae1/0x17b0
[   53.856840][   T27]  ? __pfx_process_scheduled_works+0x10/0x10
[   53.856857][   T27]  worker_thread+0x8a0/0xda0
[   53.856877][   T27]  kthread+0x711/0x8a0
[   53.856893][   T27]  ? __pfx_worker_thread+0x10/0x10
[   53.856905][   T27]  ? __pfx_kthread+0x10/0x10
[   53.856919][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[   53.856932][   T27]  ? lockdep_hardirqs_on+0x9c/0x150
[   53.856967][   T27]  ? __pfx_kthread+0x10/0x10
[   53.856983][   T27]  ret_from_fork+0x3fc/0x770
[   53.856996][   T27]  ? __pfx_ret_from_fork+0x10/0x10
[   53.857010][   T27]  ? __switch_to_asm+0x39/0x70
[   53.857024][   T27]  ? __switch_to_asm+0x33/0x70
[   53.857036][   T27]  ? __pfx_kthread+0x10/0x10
[   53.857051][   T27]  ret_from_fork_asm+0x1a/0x30
[   53.857068][   T27]  </TASK>
[   53.857625][   T27] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   54.426864][ T5844] Bluetooth: hci0: command tx timeout
[   54.428821][ T5844] Bluetooth: hci1: command tx timeout
[   54.430613][ T5844] Bluetooth: hci2: command tx timeout
[   54.461966][ T6156] loop1: detected capacity change from 0 to 40427
[   54.466167][ T6156] F2FS-fs (loop1): invalid crc value
[   54.503403][ T6156] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   54.507424][ T6156] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   54.636910][ T6171] loop1: detected capacity change from 0 to 256
[   54.641166][ T6171] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   54.720107][ T6175] warning: `syz.1.95' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   54.777031][    T9] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   54.927188][    T9] usb 1-1: Using ep0 maxpacket: 32
[   54.937376][    T9] usb 1-1: config 0 has an invalid interface number: 111 but max is 0
[   54.940106][    T9] usb 1-1: config 0 has no interface number 0
[   54.951500][    T9] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=4a.83
[   54.954593][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   54.960417][    T9] usb 1-1: Product: syz
[   54.962195][    T9] usb 1-1: Manufacturer: syz
[   54.963807][    T9] usb 1-1: SerialNumber: syz
[   54.966009][    T9] usb 1-1: config 0 descriptor??
[   54.998992][ T6193] loop2: detected capacity change from 0 to 256
[   55.002200][ T6193] exFAT-fs (loop2): bogus data start sector
[   55.004238][ T6193] exFAT-fs (loop2): failed to read boot sector
[   55.006322][ T6193] exFAT-fs (loop2): failed to recognize exfat type
[   55.146825][ T6195] loop1: detected capacity change from 0 to 32768
[   55.155245][ T6195] ERROR: (device loop1): dbAlloc: unable to allocate blocks
[   55.155245][ T6195] 
[   55.173874][    T9] snd-usb-6fire 1-1:0.111: unable to receive device firmware state.
[   55.187835][    T9] snd-usb-6fire 1-1:0.111: probe with driver snd-usb-6fire failed with error -71
[   55.187974][ T6199] loop2: detected capacity change from 0 to 32768
[   55.191297][    T9] usb 1-1: USB disconnect, device number 3
[   55.199256][ T6202] loop1: detected capacity change from 0 to 16
[   55.208465][ T6202] erofs (device loop1): mounted with root inode @ nid 36.
[   55.216002][ T6199] (syz.2.107,6199,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   55.230404][ T6199] (syz.2.107,6199,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   55.248285][ T6199] JBD2: Ignoring recovery information on journal
[   55.272398][ T6199] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   55.308979][ T5845] ocfs2: Unmounting device (7,2) on (node local)
[   55.313454][ T6210] loop1: detected capacity change from 0 to 164
[   55.333176][ T6210] iso9660: Corrupted directory entry in block 2 of inode 1920
[   55.460423][ T6222] loop2: detected capacity change from 0 to 512
[   55.464836][ T6222] EXT4-fs: Ignoring removed nobh option
[   55.472272][ T6222] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.117: iget: bad i_size value: 38620345925642
[   55.476431][ T6222] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.117: couldn't read orphan inode 15 (err -117)
[   55.487229][ T6222] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.495258][ T6216] loop1: detected capacity change from 0 to 40427
[   55.498962][ T6216] F2FS-fs (loop1): build fault injection rate: 14
[   55.501546][ T6216] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[   55.504525][ T6216] F2FS-fs (loop1): invalid crc value
[   55.507791][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[   55.513075][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[   55.529227][ T6216] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   55.532239][ T6216] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[   55.536374][ T6216] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   55.553355][ T6216] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[   55.560298][ T6216] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_convert_inline_inode+0x6bd/0x880
[   55.577512][ T5849] syz-executor: attempt to access beyond end of device
[   55.577512][ T5849] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   55.582514][ T5849] CPU: 1 UID: 0 PID: 5849 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   55.582525][ T5849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   55.582529][ T5849] Call Trace:
[   55.582532][ T5849]  <TASK>
[   55.582535][ T5849]  dump_stack_lvl+0x189/0x250
[   55.582548][ T5849]  ? __pfx_dump_stack_lvl+0x10/0x10
[   55.582556][ T5849]  ? __pfx_queue_work_on+0x10/0x10
[   55.582563][ T5849]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   55.582573][ T5849]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   55.582583][ T5849]  f2fs_handle_critical_error+0x37c/0x540
[   55.582594][ T5849]  f2fs_write_end_io+0x886/0xb60
[   55.582604][ T5849]  __submit_merged_bio+0x27a/0x6a0
[   55.582613][ T5849]  __submit_merged_write_cond+0x255/0x530
[   55.582623][ T5849]  f2fs_write_data_pages+0x261d/0x3000
[   55.582633][ T5849]  ? arch_stack_walk+0xfc/0x150
[   55.582647][ T5849]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   55.582656][ T5849]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   55.582666][ T5849]  ? rcu_is_watching+0x15/0xb0
[   55.582679][ T5849]  ? folios_put_refs+0x559/0x640
[   55.582688][ T5849]  ? __pfx_folios_put_refs+0x10/0x10
[   55.582695][ T5849]  ? rcu_is_watching+0x15/0xb0
[   55.582701][ T5849]  ? lru_add+0xa2f/0xd80
[   55.582708][ T5849]  ? lru_add+0x198/0xd80
[   55.582734][ T5849]  ? folio_batch_move_lru+0x319/0x3a0
[   55.582745][ T5849]  ? filemap_get_folios_tag+0xed/0x630
[   55.582752][ T5849]  ? rcu_is_watching+0x15/0xb0
[   55.582759][ T5849]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   55.582769][ T5849]  do_writepages+0x32e/0x550
[   55.582778][ T5849]  ? rcu_is_watching+0x15/0xb0
[   55.582785][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[   55.582794][ T5849]  filemap_fdatawrite+0x199/0x240
[   55.582803][ T5849]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   55.582817][ T5849]  ? rcu_is_watching+0x15/0xb0
[   55.582824][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[   55.582833][ T5849]  f2fs_sync_dirty_inodes+0x31f/0x830
[   55.582841][ T5849]  f2fs_write_checkpoint+0x95a/0x1df0
[   55.582851][ T5849]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   55.582865][ T5849]  ? kill_f2fs_super+0x298/0x6c0
[   55.582872][ T5849]  kill_f2fs_super+0x2c3/0x6c0
[   55.582879][ T5849]  ? __pfx_kill_f2fs_super+0x10/0x10
[   55.582885][ T5849]  ? radix_tree_delete_item+0x2b6/0x400
[   55.582896][ T5849]  ? shrinker_free+0x2ce/0x3e0
[   55.582904][ T5849]  deactivate_locked_super+0xbc/0x130
[   55.582918][ T5849]  cleanup_mnt+0x425/0x4c0
[   55.582926][ T5849]  task_work_run+0x1d4/0x260
[   55.582936][ T5849]  ? __pfx_task_work_run+0x10/0x10
[   55.582945][ T5849]  ? __x64_sys_umount+0x122/0x160
[   55.582954][ T5849]  ? __pfx___x64_sys_umount+0x10/0x10
[   55.582963][ T5849]  ? rcu_is_watching+0x15/0xb0
[   55.582969][ T5849]  exit_to_user_mode_loop+0xec/0x110
[   55.582980][ T5849]  do_syscall_64+0x2bd/0x3b0
[   55.582990][ T5849]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.582997][ T5849]  ? exc_page_fault+0x9f/0xf0
[   55.583006][ T5849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.583012][ T5849] RIP: 0033:0x7f8a1ed8ff17
[   55.583019][ T5849] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   55.583025][ T5849] RSP: 002b:00007ffda80d62d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   55.583033][ T5849] RAX: 0000000000000000 RBX: 00007f8a1ee11c05 RCX: 00007f8a1ed8ff17
[   55.583038][ T5849] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffda80d6390
[   55.583042][ T5849] RBP: 00007ffda80d6390 R08: 0000000000000000 R09: 0000000000000000
[   55.583047][ T5849] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffda80d7420
[   55.583051][ T5849] R13: 00007f8a1ee11c05 R14: 000000000000d89e R15: 00007ffda80d7460
[   55.583059][ T5849]  </TASK>
[   55.583062][ T5849] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   55.720873][   T53] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm kworker/u9:2: bg 0: block 5: invalid block bitmap
[   55.731368][   T53] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   55.735646][   T53] EXT4-fs (loop2): This should not happen!! Data will be lost
[   55.735646][   T53] 
[   55.748550][   T53] EXT4-fs (loop2): Total free blocks count 0
[   55.750576][   T53] EXT4-fs (loop2): Free/Dirty block details
[   55.752570][   T53] EXT4-fs (loop2): free_blocks=0
[   55.754281][   T53] EXT4-fs (loop2): dirty_blocks=1
[   55.756049][   T53] EXT4-fs (loop2): Block reservation details
[   55.761949][   T53] EXT4-fs (loop2): i_reserved_data_blocks=1
[   55.765768][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.808505][ T6234] loop2: detected capacity change from 0 to 128
[   55.828116][ T6234] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   55.837338][ T6234] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.856019][ T5845] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   55.919588][ T6243] netlink: 12 bytes leftover after parsing attributes in process `syz.2.123'.
[   55.965783][ T6248] loop2: detected capacity change from 0 to 8
[   55.970656][ T6248] SQUASHFS error: xz decompression failed, data probably corrupt
[   55.973849][ T6248] SQUASHFS error: Failed to read block 0x108: -5
[   55.976593][ T6248] SQUASHFS error: Unable to read metadata cache entry [106]
[   55.986708][ T6248] SQUASHFS error: Unable to read inode 0x11f
[   56.026079][ T6253] loop2: detected capacity change from 0 to 512
[   56.037599][ T6253] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.129: casefold flag without casefold feature
[   56.044570][ T6253] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.129: couldn't read orphan inode 15 (err -117)
[   56.051009][ T6253] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.063703][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.078060][   T47] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   56.248145][   T47] usb 1-1: Using ep0 maxpacket: 8
[   56.253458][   T47] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 17
[   56.259328][   T47] usb 1-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=c8.07
[   56.262955][   T47] usb 1-1: New USB device strings: Mfr=209, Product=185, SerialNumber=60
[   56.272087][   T47] usb 1-1: Product: syz
[   56.273483][   T47] usb 1-1: Manufacturer: syz
[   56.274968][   T47] usb 1-1: SerialNumber: syz
[   56.279423][   T47] usb 1-1: config 0 descriptor??
[   56.489225][   T47] gspca_main: sunplus-2.14.0 probing 04a5:3003
[   56.491556][   T47] gspca_sunplus: reg_w_riv err -71
[   56.493246][   T47] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[   56.507778][   T47] usb 1-1: USB disconnect, device number 4
[   56.526006][ T6275] loop2: detected capacity change from 0 to 40427
[   56.531872][ T6275] F2FS-fs: heap/no_heap options were deprecated
[   56.555586][ T6275] F2FS-fs (loop2): invalid crc value
[   56.570250][ T6275] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[   56.576007][ T6275] F2FS-fs (loop2): Start checkpoint disabled!
[   56.579182][ T6275] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   56.603233][ T6275] syz.2.139: attempt to access beyond end of device
[   56.603233][ T6275] loop2: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[   56.610575][ T6275] syz.2.139: attempt to access beyond end of device
[   56.610575][ T6275] loop2: rw=2049, sector=77960, nr_sectors = 120 limit=40427
[   56.615822][ T6275] syz.2.139: attempt to access beyond end of device
[   56.615822][ T6275] loop2: rw=2049, sector=77824, nr_sectors = 16 limit=40427
[   56.624480][ T6275] syz.2.139: attempt to access beyond end of device
[   56.624480][ T6275] loop2: rw=2049, sector=77960, nr_sectors = 120 limit=40427
[   56.632648][ T6275] syz.2.139: attempt to access beyond end of device
[   56.632648][ T6275] loop2: rw=2049, sector=78080, nr_sectors = 544 limit=40427
[   56.638224][ T6275] syz.2.139: attempt to access beyond end of device
[   56.638224][ T6275] loop2: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[   56.676365][ T1088] kworker/u9:4: attempt to access beyond end of device
[   56.676365][ T1088] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   56.684438][ T1088] CPU: 0 UID: 0 PID: 1088 Comm: kworker/u9:4 Not tainted syzkaller #0 PREEMPT(full) 
[   56.684451][ T1088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   56.684460][ T1088] Workqueue: writeback wb_workfn (flush-7:2)
[   56.684475][ T1088] Call Trace:
[   56.684478][ T1088]  <TASK>
[   56.684481][ T1088]  dump_stack_lvl+0x189/0x250
[   56.684492][ T1088]  ? __pfx_dump_stack_lvl+0x10/0x10
[   56.684500][ T1088]  ? __pfx_queue_work_on+0x10/0x10
[   56.684507][ T1088]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   56.684517][ T1088]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   56.684544][ T1088]  f2fs_handle_critical_error+0x37c/0x540
[   56.684557][ T1088]  f2fs_write_end_io+0x886/0xb60
[   56.684567][ T1088]  __submit_merged_bio+0x27a/0x6a0
[   56.684577][ T1088]  __submit_merged_write_cond+0x255/0x530
[   56.684587][ T1088]  f2fs_write_data_pages+0x261d/0x3000
[   56.684602][ T1088]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   56.684614][ T1088]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[   56.684627][ T1088]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[   56.684639][ T1088]  ? trace_f2fs_writepages+0x7f/0x200
[   56.684648][ T1088]  ? f2fs_write_node_pages+0x478/0x6e0
[   56.684657][ T1088]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   56.684666][ T1088]  ? f2fs_update_inode+0x13d9/0x2620
[   56.684675][ T1088]  ? f2fs_write_inode+0x3fb/0x5f0
[   56.684684][ T1088]  ? __pfx_f2fs_balance_fs+0x10/0x10
[   56.684693][ T1088]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   56.684722][ T1088]  do_writepages+0x32e/0x550
[   56.684734][ T1088]  ? unwind_next_frame+0xa5/0x2390
[   56.684744][ T1088]  __writeback_single_inode+0x145/0xff0
[   56.684753][ T1088]  ? do_raw_spin_unlock+0x4d/0x240
[   56.684762][ T1088]  writeback_sb_inodes+0x6c7/0x1010
[   56.684774][ T1088]  ? fprop_reflect_period_percpu+0x6b/0x330
[   56.684784][ T1088]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   56.684800][ T1088]  ? rcu_is_watching+0x15/0xb0
[   56.684808][ T1088]  wb_writeback+0x43b/0xaf0
[   56.684817][ T1088]  ? queue_io+0x3c1/0x590
[   56.684826][ T1088]  ? __pfx_wb_writeback+0x10/0x10
[   56.684835][ T1088]  ? rcu_is_watching+0x15/0xb0
[   56.684842][ T1088]  wb_workfn+0x409/0xef0
[   56.684851][ T1088]  ? __pfx_wb_workfn+0x10/0x10
[   56.684858][ T1088]  ? rcu_is_watching+0x15/0xb0
[   56.684864][ T1088]  ? rcu_is_watching+0x15/0xb0
[   56.684886][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   56.684893][ T1088]  ? rcu_is_watching+0x15/0xb0
[   56.684899][ T1088]  ? lock_acquire+0x5f/0x360
[   56.684909][ T1088]  ? rcu_is_watching+0x15/0xb0
[   56.684920][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   56.684926][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   56.684932][ T1088]  process_scheduled_works+0xae1/0x17b0
[   56.684944][ T1088]  ? __pfx_process_scheduled_works+0x10/0x10
[   56.684953][ T1088]  worker_thread+0x8a0/0xda0
[   56.684964][ T1088]  kthread+0x711/0x8a0
[   56.684973][ T1088]  ? __pfx_worker_thread+0x10/0x10
[   56.684979][ T1088]  ? __pfx_kthread+0x10/0x10
[   56.684987][ T1088]  ? rcu_is_watching+0x15/0xb0
[   56.684993][ T1088]  ? __pfx_kthread+0x10/0x10
[   56.685001][ T1088]  ret_from_fork+0x3fc/0x770
[   56.685009][ T1088]  ? __pfx_ret_from_fork+0x10/0x10
[   56.685016][ T1088]  ? __switch_to_asm+0x39/0x70
[   56.685025][ T1088]  ? __switch_to_asm+0x33/0x70
[   56.685033][ T1088]  ? __pfx_kthread+0x10/0x10
[   56.685041][ T1088]  ret_from_fork_asm+0x1a/0x30
[   56.685052][ T1088]  </TASK>
[   56.685442][ T1088] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   56.951586][ T6282] loop2: detected capacity change from 0 to 1024
[   56.986927][ T1088] hfsplus: b-tree write err: -5, ino 4
[   57.003544][ T6289] loop2: detected capacity change from 0 to 1024
[   57.040081][ T6291] loop0: detected capacity change from 0 to 24
[   57.173444][ T6311] [U] Y
[   57.215592][ T6316] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   57.290589][ T6328] syz.0.160 uses obsolete (PF_INET,SOCK_PACKET)
[   57.334980][ T6334] syz_tun: entered allmulticast mode
[   57.348307][ T6334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.163'.
[   57.366548][ T6334] syz_tun (unregistering): left allmulticast mode
[   57.608923][  T792] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[   57.723561][ T6351] loop1: detected capacity change from 0 to 512
[   57.726493][ T6351] EXT4-fs: Ignoring removed i_version option
[   57.729612][ T6351] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   57.734143][ T6351] EXT4-fs (loop1): can't mount with both data=journal and dax
[   57.754401][ T6348] loop2: detected capacity change from 0 to 32768
[   57.763007][ T6353] loop1: detected capacity change from 0 to 256
[   57.766895][  T792] usb 1-1: unable to get BOS descriptor or descriptor too short
[   57.771293][  T792] usb 1-1: not running at top speed; connect to a high speed hub
[   57.777187][ T6348] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.170 (6348)
[   57.784958][  T792] usb 1-1: config 6 has an invalid interface number: 208 but max is 0
[   57.788248][  T792] usb 1-1: config 6 has no interface number 0
[   57.790374][  T792] usb 1-1: config 6 interface 208 has no altsetting 0
[   57.794971][ T6353] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   57.799062][ T6348] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   57.802430][ T6348] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[   57.805392][ T6348] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[   57.810553][ T6353] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[   57.816217][ T6353] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   57.816324][  T792] usb 1-1: New USB device found, idVendor=1410, idProduct=9010, bcdDevice=23.c2
[   57.823749][  T792] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   57.826544][  T792] usb 1-1: Product: syz
[   57.828930][  T792] usb 1-1: Manufacturer: syz
[   57.831055][  T792] usb 1-1: SerialNumber: syz
[   57.898297][ T6348] BTRFS info (device loop2): rebuilding free space tree
[   57.910502][ T6348] BTRFS info (device loop2): disabling free space tree
[   57.912868][ T6348] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   57.916071][ T6348] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   57.928773][ T6348] BTRFS info (device loop2): setting nodatasum
[   57.930935][ T6348] BTRFS info (device loop2): setting nodatacow
[   57.932964][ T6348] BTRFS info (device loop2): enabling ssd optimizations
[   57.935270][ T6348] BTRFS info (device loop2): turning off barriers
[   57.938324][ T6348] BTRFS info (device loop2): enabling disk space caching
[   57.940630][ T6348] BTRFS info (device loop2): force clearing of disk cache
[   57.943277][ T6348] BTRFS info (device loop2): doing ref verification
[   57.946367][ T6348] BTRFS info (device loop2): max_inline set to 4096
[   57.968986][ T5845] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   58.016156][ T6376] loop2: detected capacity change from 0 to 1024
[   58.036463][ T6365] loop1: detected capacity change from 0 to 32768
[   58.045646][ T6376] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.048379][  T792] qmi_wwan 1-1:6.208: invalid descriptor buffer length
[   58.053633][  T792] qmi_wwan 1-1:6.208: probe with driver qmi_wwan failed with error -22
[   58.058108][ T6365] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section members_v2: section too small (28 > 8)
[   58.058108][ T6365] members_v2 (size 8):
[   58.058108][ T6365] field ends before start of entries
[   58.060540][  T792] usb 1-1: USB disconnect, device number 5
[   58.083338][ T6365] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[   58.089124][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.407476][ T5881] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[   58.467095][  T792] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   58.583819][ T5881] usb 2-1: unable to get BOS descriptor or descriptor too short
[   58.590013][ T5881] usb 2-1: not running at top speed; connect to a high speed hub
[   58.595513][ T5881] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   58.614474][ T5881] usb 2-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[   58.620045][  T792] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[   58.624843][ T5881] usb 2-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[   58.626226][  T792] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.628468][ T5881] usb 2-1: Product: syz
[   58.628480][ T5881] usb 2-1: Manufacturer: syz
[   58.628489][ T5881] usb 2-1: SerialNumber: syz
[   58.629567][ T5881] usb 2-1: config 0 descriptor??
[   58.643540][  T792] usb 3-1: config 0 descriptor??
[   58.649333][  T792] cp210x 3-1:0.0: cp210x converter detected
[   58.855153][ T5881] usb 2-1: USB disconnect, device number 4
[   59.056215][  T792] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[   59.077139][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   59.229120][    T9] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   59.233366][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[   59.238172][    T9] usb 1-1: config 1 has no interface number 0
[   59.241345][    T9] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   59.245835][    T9] usb 1-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[   59.252489][    T9] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   59.256345][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   59.259922][    T9] usb 1-1: Product: syz
[   59.262560][    T9] usb 1-1: Manufacturer: syz
[   59.266594][  T792] usb 3-1: cp210x converter now attached to ttyUSB0
[   59.269483][    T9] usb 1-1: SerialNumber: syz
[   59.469431][ T5880] usb 3-1: USB disconnect, device number 3
[   59.473720][ T5880] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[   59.478487][ T5880] cp210x 3-1:0.0: device disconnected
[   59.585916][ T6409] loop1: detected capacity change from 0 to 32768
[   59.595570][ T6409] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.190 (6409)
[   59.604079][ T6409] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   59.609231][ T6409] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   59.652799][   T36] BTRFS warning (device loop1): checksum verify failed on logical 5292032 mirror 1 wanted 0xd5bc16bf7502c3940107ef92895f3d2e7f4c766f4585e38c0ad39b0a5d2e0772 found 0xe411c7a0efa54fabafc8c0ad0545277d3e683b146ef1a47775d9ca9aa10535d4 level 0
[   59.663845][ T6409] BTRFS warning (device loop1): failed to read root (objectid=9): -5
[   59.677732][ T6409] BTRFS error (device loop1): open_ctree failed: -5
[   59.948729][ T6432] loop1: detected capacity change from 0 to 1024
[   59.952973][ T6432] EXT4-fs: Ignoring removed nomblk_io_submit option
[   59.960160][ T6432] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   59.963261][ T6432] System zones: 0-1, 3-36
[   59.965568][ T6432] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.993322][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.034869][ T6437] loop1: detected capacity change from 0 to 4096
[   60.040090][ T6437] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[   60.058283][ T6437] ntfs3(loop1): ino=19, mi_enum_attr
[   60.060433][ T6437] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[   60.063146][ T6437] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[   60.096108][    T9] cdc_ncm 1-1:1.1: bind() failure
[   60.111483][ T6444] netlink: 4 bytes leftover after parsing attributes in process `syz.2.197'.
[   60.121702][ T6444] vxlan0: entered promiscuous mode
[   60.127906][   T12] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   60.137148][   T12] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   60.144140][   T12] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   60.150998][   T12] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   60.296907][    T9] usb 1-1: USB disconnect, device number 6
[   60.922288][ T6466] loop0: detected capacity change from 0 to 512
[   60.927087][ T6466] EXT4-fs: Ignoring removed bh option
[   60.946241][ T6466] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   60.951747][ T6466] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   60.957917][ T6466] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[   60.962085][ T6466] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   60.965795][ T6466] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.991907][ T5840] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.024198][ T6475] netlink: 16 bytes leftover after parsing attributes in process `syz.0.213'.
[   61.510324][  T791] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   61.707015][  T791] usb 1-1: Using ep0 maxpacket: 16
[   61.710155][  T791] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   61.713776][  T791] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   61.717273][  T791] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   61.722015][  T791] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   61.725112][  T791] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.728491][  T791] usb 1-1: config 0 descriptor??
[   61.990566][ T6490] loop1: detected capacity change from 0 to 4096
[   62.009877][ T6490] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[   62.120778][ T1098] ntfs3(loop1): ino=9, ntfs3_write_inode failed, -22.
[   62.123380][ T5849] ntfs3(loop1): ino=9, ntfs_sync_fs failed, -22.
[   62.142153][  T791] microsoft 0003:045E:07DA.0001: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[   62.146745][  T791] microsoft 0003:045E:07DA.0001: no inputs found
[   62.148988][  T791] microsoft 0003:045E:07DA.0001: could not initialize ff, continuing anyway
[   62.188691][    C0] Unknown status report in ack skb
[   62.243981][ T6510] loop2: detected capacity change from 0 to 16
[   62.247399][ T6510] erofs (device loop2): mounted with root inode @ nid 36.
[   62.251089][ T6510] erofs (device loop2): bogus lookback distance 1388 @ lcn 42 of nid 36
[   62.254240][ T6510] erofs (device loop2): failed to decompress -15 in[52, 4044] out[1851]
[   62.256932][ T6510] erofs (device loop2): read error -117 @ 43 of nid 36
[   62.344526][  T791] usb 1-1: USB disconnect, device number 7
[   62.388405][ T6519] process 'syz.2.228' launched './file0' with NULL argv: empty string added
[   62.410221][ T6525] loop1: detected capacity change from 0 to 256
[   62.413467][ T6525] exfat: Deprecated parameter 'utf8'
[   62.418196][ T6525] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6c34595, utbl_chksum : 0xe619d30d)
[   62.493539][ T6531] netlink: 'syz.1.236': attribute type 10 has an invalid length.
[   62.499515][ T6531] team0: Port device geneve1 added
[   63.017728][ T6551] loop0: detected capacity change from 0 to 256
[   63.117170][   T33] audit: type=1800 audit(1755799305.359:6): pid=6519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.228" name="/" dev="fuse" ino=5 res=0 errno=0
[   63.203715][ T6555] loop0: detected capacity change from 0 to 32768
[   63.227664][ T6555] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   63.238078][   T33] audit: type=1800 audit(1755799305.489:7): pid=6555 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.247" name="file1" dev="loop0" ino=17058 res=0 errno=0
[   63.356097][   T33] audit: type=1800 audit(1755799305.599:8): pid=6566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.247" name="file1" dev="loop0" ino=17058 res=0 errno=0
[   63.411672][ T6561] loop2: detected capacity change from 0 to 32768
[   63.415439][ T6561] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.250 (6561)
[   63.422876][ T6561] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   63.427351][ T6561] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[   63.506733][ T6561] BTRFS info (device loop2): enabling ssd optimizations
[   63.517108][ T6561] BTRFS info (device loop2): enabling free space tree
[   63.582160][ T5845] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   63.812956][ T6555] (syz.0.247,6555,0):ocfs2_dio_end_io:2401 ERROR: Direct IO failed, bytes = -28
[   63.824869][ T6593] loop1: detected capacity change from 0 to 32768
[   63.838071][ T6593] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.255 (6593)
[   63.858787][ T6593] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   63.867320][ T6593] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   63.916744][ T1122] BTRFS warning (device loop1): checksum verify failed on logical 5328896 mirror 1 wanted 0xac8366d3d2e6f7dc04e332773638acafeccdac9b39be662d19e98924efedf548 found 0x09baaddde01c70d9f564d40d40bbd1072cb01ca9c506f6ee2b940aea4af18207 level 0
[   63.930225][ T6593] BTRFS warning (device loop1): failed to read root (objectid=4): -5
[   63.933008][ T6593] BTRFS warning (device loop1): try to load backup roots slot 1
[   63.948428][ T6593] BTRFS warning (device loop1): global root 2 0 already exists
[   63.951452][ T6593] BTRFS error (device loop1): failed to load root extent
[   63.953807][ T6593] BTRFS warning (device loop1): try to load backup roots slot 2
[   63.956508][ T1122] BTRFS error (device loop1): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[   63.960999][ T6593] BTRFS warning (device loop1): couldn't read tree root
[   63.963381][ T6593] BTRFS warning (device loop1): try to load backup roots slot 3
[   63.966324][ T1122] BTRFS warning (device loop1): checksum verify failed on logical 5251072 mirror 1 wanted 0x3733e4df68c3b780deac4f047b3ac85a180e047a8c6c5314b53c1b8a9369ce12 found 0x14b35fdb1819392a43b7915d2192f571ea07cbff49835ef44835d3e0976a7a91 level 0
[   63.973858][ T6593] BTRFS error (device loop1): failed to load root extent
[   63.977904][ T6593] BTRFS error (device loop1): open_ctree failed: -5
[   64.022030][ T5840] ocfs2: Unmounting device (7,0) on (node local)
[   64.081179][   T55] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[   64.084430][   T55] CPU: 0 UID: 0 PID: 55 Comm: kworker/u11:0 Not tainted syzkaller #0 PREEMPT(full) 
[   64.084442][   T55] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   64.084447][   T55] Workqueue: hci0 hci_rx_work
[   64.084461][   T55] Call Trace:
[   64.084468][   T55]  <TASK>
[   64.084471][   T55]  dump_stack_lvl+0x189/0x250
[   64.084483][   T55]  ? __pfx_dump_stack_lvl+0x10/0x10
[   64.084493][   T55]  ? __pfx__printk+0x10/0x10
[   64.084503][   T55]  ? kernfs_root+0x1c/0x230
[   64.084513][   T55]  ? kernfs_path_from_node+0x250/0x290
[   64.084520][   T55]  ? kernfs_path_from_node+0x2f/0x290
[   64.084529][   T55]  sysfs_create_dir_ns+0x259/0x280
[   64.084538][   T55]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   64.084547][   T55]  ? do_raw_spin_unlock+0x4d/0x240
[   64.084558][   T55]  kobject_add_internal+0x59f/0xb40
[   64.084571][   T55]  kobject_add+0x155/0x220
[   64.084582][   T55]  ? __pfx_kobject_add+0x10/0x10
[   64.084593][   T55]  ? _raw_spin_unlock+0x28/0x50
[   64.084603][   T55]  ? get_device_parent+0x366/0x3a0
[   64.084610][   T55]  device_add+0x408/0xb50
[   64.084617][   T55]  hci_conn_add_sysfs+0xd5/0x1e0
[   64.084625][   T55]  le_conn_complete_evt+0xc3a/0x1220
[   64.084660][   T55]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   64.084670][   T55]  ? __mutex_unlock_slowpath+0x1a1/0x740
[   64.084679][   T55]  ? __asan_memcpy+0x40/0x70
[   64.084688][   T55]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   64.084697][   T55]  ? skb_pull_data+0xfb/0x200
[   64.084708][   T55]  hci_le_conn_complete_evt+0x187/0x450
[   64.084718][   T55]  hci_event_packet+0x78f/0x1200
[   64.084727][   T55]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   64.084736][   T55]  ? __pfx_hci_event_packet+0x10/0x10
[   64.084743][   T55]  ? rcu_is_watching+0x15/0xb0
[   64.084751][   T55]  ? hci_send_to_monitor+0xe2/0x570
[   64.084762][   T55]  hci_rx_work+0x46a/0xe80
[   64.084772][   T55]  ? process_scheduled_works+0x9ef/0x17b0
[   64.084780][   T55]  process_scheduled_works+0xae1/0x17b0
[   64.084790][   T55]  ? __pfx_process_scheduled_works+0x10/0x10
[   64.084816][   T55]  worker_thread+0x8a0/0xda0
[   64.084827][   T55]  kthread+0x711/0x8a0
[   64.084837][   T55]  ? __pfx_worker_thread+0x10/0x10
[   64.084844][   T55]  ? __pfx_kthread+0x10/0x10
[   64.084853][   T55]  ? _raw_spin_unlock_irq+0x23/0x50
[   64.084863][   T55]  ? lockdep_hardirqs_on+0x9c/0x150
[   64.084873][   T55]  ? __pfx_kthread+0x10/0x10
[   64.084882][   T55]  ret_from_fork+0x3fc/0x770
[   64.084890][   T55]  ? __pfx_ret_from_fork+0x10/0x10
[   64.084899][   T55]  ? __switch_to_asm+0x39/0x70
[   64.084908][   T55]  ? __switch_to_asm+0x33/0x70
[   64.084917][   T55]  ? __pfx_kthread+0x10/0x10
[   64.084925][   T55]  ret_from_fork_asm+0x1a/0x30
[   64.084935][   T55]  </TASK>
[   64.084945][   T55] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   64.182024][   T55] Bluetooth: hci0: failed to register connection device
[   64.250354][ T6629] loop0: detected capacity change from 0 to 128
[   64.258130][ T6629] EXT4-fs (loop0): Test dummy encryption mode enabled
[   64.276366][ T6629] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   64.285807][ T6629] ext4 filesystem being mounted at /54/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   64.319445][ T6636] loop1: detected capacity change from 0 to 164
[   64.337226][ T6629] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))"
[   64.369477][ T5840] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   64.647306][ T6652] loop2: detected capacity change from 0 to 4096
[   64.668057][  T791] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[   64.676040][ T6652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.697600][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.786368][ T6655] loop2: detected capacity change from 0 to 32768
[   64.799066][ T6655] bcachefs (/dev/loop2): error validating superblock: Invalid superblock section journal_v2: journal bucket 9 before first bucket 256
[   64.799066][ T6655] journal_v2 (size 40):
[   64.799066][ T6655] Buckets:  9-16 24-25
[   64.799066][ T6655] 
[   64.810715][ T6655] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal
[   64.817109][   T47] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   64.839050][  T791] usb 1-1: New USB device found, idVendor=050d, idProduct=0121, bcdDevice=6f.3b
[   64.842716][  T791] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.942345][ T6663] loop2: detected capacity change from 0 to 8
[   64.945609][ T6663] SQUASHFS error: lzo decompression failed, data probably corrupt
[   64.951186][ T6663] SQUASHFS error: Failed to read block 0x91: -5
[   64.953427][ T6663] SQUASHFS error: Unable to read metadata cache entry [8f]
[   64.955875][ T6663] SQUASHFS error: Unable to read inode 0x11f
[   64.989135][   T47] usb 2-1: config 0 has an invalid interface number: 29 but max is 0
[   64.992119][   T47] usb 2-1: config 0 has no interface number 0
[   64.994371][   T47] usb 2-1: config 0 interface 29 has no altsetting 0
[   64.997554][   T47] usb 2-1: New USB device found, idVendor=357d, idProduct=7788, bcdDevice=81.0d
[   65.001141][   T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   65.008888][   T47] usb 2-1: config 0 descriptor??
[   65.012667][ T6668] loop2: detected capacity change from 0 to 1024
[   65.015303][ T6668] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.033681][ T6668] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.056527][  T791] pegasus 1-1:254.0: probe with driver pegasus failed with error -71
[   65.072512][  T791] usb 1-1: USB disconnect, device number 8
[   65.076335][ T5845] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.216473][   T47] usb 2-1: string descriptor 0 read error: -71
[   65.221020][   T47] usb-storage 2-1:0.29: USB Mass Storage device detected
[   65.224948][   T47] usb-storage 2-1:0.29: Quirks match for vid 357d pid 7788: 4800000
[   65.228556][ T6672] loop2: detected capacity change from 0 to 40427
[   65.243784][ T6672] F2FS-fs (loop2): invalid crc value
[   65.266310][ T6672] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   65.269943][   T47] usb 2-1: USB disconnect, device number 5
[   65.273313][ T6672] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   65.303768][ T5845] syz-executor: attempt to access beyond end of device
[   65.303768][ T5845] loop2: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[   65.309923][ T5845] CPU: 0 UID: 0 PID: 5845 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   65.309945][ T5845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   65.309953][ T5845] Call Trace:
[   65.309957][ T5845]  <TASK>
[   65.309962][ T5845]  dump_stack_lvl+0x189/0x250
[   65.309985][ T5845]  ? __pfx_dump_stack_lvl+0x10/0x10
[   65.309999][ T5845]  ? __pfx_queue_work_on+0x10/0x10
[   65.310010][ T5845]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   65.310028][ T5845]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   65.310045][ T5845]  f2fs_handle_critical_error+0x37c/0x540
[   65.310065][ T5845]  f2fs_write_end_io+0x886/0xb60
[   65.310082][ T5845]  __submit_merged_bio+0x27a/0x6a0
[   65.310100][ T5845]  __submit_merged_write_cond+0x255/0x530
[   65.310118][ T5845]  f2fs_write_data_pages+0x261d/0x3000
[   65.310143][ T5845]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   65.310171][ T5845]  ? __mod_zone_page_state+0xd7/0x140
[   65.310190][ T5845]  ? folios_put_refs+0x560/0x640
[   65.310205][ T5845]  ? __pfx_folios_put_refs+0x10/0x10
[   65.310216][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.310234][ T5845]  ? lru_add+0xa2f/0xd80
[   65.310245][ T5845]  ? lru_add+0x198/0xd80
[   65.310257][ T5845]  ? folio_batch_move_lru+0x319/0x3a0
[   65.310272][ T5845]  ? filemap_get_folios_tag+0xed/0x630
[   65.310283][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.310295][ T5845]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   65.310311][ T5845]  do_writepages+0x32e/0x550
[   65.310327][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.310339][ T5845]  ? do_raw_spin_unlock+0x4d/0x240
[   65.310355][ T5845]  filemap_fdatawrite+0x199/0x240
[   65.310372][ T5845]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   65.310397][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.310408][ T5845]  ? do_raw_spin_unlock+0x4d/0x240
[   65.310421][ T5845]  f2fs_sync_dirty_inodes+0x31f/0x830
[   65.310438][ T5845]  f2fs_write_checkpoint+0x95a/0x1df0
[   65.310455][ T5845]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   65.310480][ T5845]  ? kill_f2fs_super+0x298/0x6c0
[   65.310493][ T5845]  kill_f2fs_super+0x2c3/0x6c0
[   65.310506][ T5845]  ? __pfx_kill_f2fs_super+0x10/0x10
[   65.310516][ T5845]  ? radix_tree_delete_item+0x2b6/0x400
[   65.310534][ T5845]  ? shrinker_free+0x2ce/0x3e0
[   65.310548][ T5845]  deactivate_locked_super+0xbc/0x130
[   65.310563][ T5845]  cleanup_mnt+0x425/0x4c0
[   65.310579][ T5845]  task_work_run+0x1d4/0x260
[   65.310595][ T5845]  ? __pfx_task_work_run+0x10/0x10
[   65.310607][ T5845]  ? __x64_sys_umount+0x122/0x160
[   65.310650][ T5845]  ? __pfx___x64_sys_umount+0x10/0x10
[   65.310667][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.310680][ T5845]  exit_to_user_mode_loop+0xec/0x110
[   65.310697][ T5845]  do_syscall_64+0x2bd/0x3b0
[   65.310715][ T5845]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.310726][ T5845]  ? exc_page_fault+0x9f/0xf0
[   65.310741][ T5845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.310752][ T5845] RIP: 0033:0x7f949d18ff17
[   65.310766][ T5845] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   65.310775][ T5845] RSP: 002b:00007ffed1e0df18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   65.310789][ T5845] RAX: 0000000000000000 RBX: 00007f949d211c05 RCX: 00007f949d18ff17
[   65.310796][ T5845] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffed1e0dfd0
[   65.310802][ T5845] RBP: 00007ffed1e0dfd0 R08: 0000000000000000 R09: 0000000000000000
[   65.310811][ T5845] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffed1e0f060
[   65.310818][ T5845] R13: 00007f949d211c05 R14: 000000000000fe98 R15: 00007ffed1e0f0a0
[   65.310830][ T5845]  </TASK>
[   65.310836][ T5845] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   65.464460][ T5845] CPU: 0 UID: 0 PID: 5845 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   65.464479][ T5845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   65.464487][ T5845] Call Trace:
[   65.464492][ T5845]  <TASK>
[   65.464497][ T5845]  dump_stack_lvl+0x189/0x250
[   65.464521][ T5845]  ? __pfx_dump_stack_lvl+0x10/0x10
[   65.464534][ T5845]  ? __pfx_queue_work_on+0x10/0x10
[   65.464549][ T5845]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   65.464565][ T5845]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   65.464582][ T5845]  f2fs_handle_critical_error+0x37c/0x540
[   65.464602][ T5845]  f2fs_write_end_io+0x886/0xb60
[   65.464647][ T5845]  __submit_merged_bio+0x27a/0x6a0
[   65.464667][ T5845]  __submit_merged_write_cond+0x255/0x530
[   65.464683][ T5845]  f2fs_write_data_pages+0x261d/0x3000
[   65.464711][ T5845]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   65.464740][ T5845]  ? __mod_zone_page_state+0xd7/0x140
[   65.464761][ T5845]  ? folios_put_refs+0x560/0x640
[   65.464778][ T5845]  ? __pfx_folios_put_refs+0x10/0x10
[   65.464807][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.464820][ T5845]  ? lru_add+0xa2f/0xd80
[   65.464832][ T5845]  ? lru_add+0x198/0xd80
[   65.464843][ T5845]  ? folio_batch_move_lru+0x319/0x3a0
[   65.464857][ T5845]  ? filemap_get_folios_tag+0xed/0x630
[   65.464869][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.464881][ T5845]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   65.464898][ T5845]  do_writepages+0x32e/0x550
[   65.464915][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.464927][ T5845]  ? do_raw_spin_unlock+0x4d/0x240
[   65.464944][ T5845]  filemap_fdatawrite+0x199/0x240
[   65.464960][ T5845]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   65.464988][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.465007][ T5845]  ? do_raw_spin_unlock+0x4d/0x240
[   65.465023][ T5845]  f2fs_sync_dirty_inodes+0x31f/0x830
[   65.465039][ T5845]  f2fs_write_checkpoint+0x95a/0x1df0
[   65.465058][ T5845]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   65.465083][ T5845]  ? kill_f2fs_super+0x298/0x6c0
[   65.465097][ T5845]  kill_f2fs_super+0x2c3/0x6c0
[   65.465112][ T5845]  ? __pfx_kill_f2fs_super+0x10/0x10
[   65.465121][ T5845]  ? radix_tree_delete_item+0x2b6/0x400
[   65.465139][ T5845]  ? shrinker_free+0x2ce/0x3e0
[   65.465154][ T5845]  deactivate_locked_super+0xbc/0x130
[   65.465169][ T5845]  cleanup_mnt+0x425/0x4c0
[   65.465184][ T5845]  task_work_run+0x1d4/0x260
[   65.465200][ T5845]  ? __pfx_task_work_run+0x10/0x10
[   65.465214][ T5845]  ? __x64_sys_umount+0x122/0x160
[   65.465230][ T5845]  ? __pfx___x64_sys_umount+0x10/0x10
[   65.465245][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.465256][ T5845]  exit_to_user_mode_loop+0xec/0x110
[   65.465274][ T5845]  do_syscall_64+0x2bd/0x3b0
[   65.465292][ T5845]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.465303][ T5845]  ? exc_page_fault+0x9f/0xf0
[   65.465319][ T5845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.465331][ T5845] RIP: 0033:0x7f949d18ff17
[   65.465343][ T5845] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   65.465352][ T5845] RSP: 002b:00007ffed1e0df18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   65.465368][ T5845] RAX: 0000000000000000 RBX: 00007f949d211c05 RCX: 00007f949d18ff17
[   65.465375][ T5845] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffed1e0dfd0
[   65.465382][ T5845] RBP: 00007ffed1e0dfd0 R08: 0000000000000000 R09: 0000000000000000
[   65.465389][ T5845] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffed1e0f060
[   65.465396][ T5845] R13: 00007f949d211c05 R14: 000000000000fe98 R15: 00007ffed1e0f0a0
[   65.465410][ T5845]  </TASK>
[   65.465415][ T5845] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   65.618281][ T5845] CPU: 0 UID: 0 PID: 5845 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   65.618295][ T5845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   65.618300][ T5845] Call Trace:
[   65.618303][ T5845]  <TASK>
[   65.618306][ T5845]  dump_stack_lvl+0x189/0x250
[   65.618322][ T5845]  ? __pfx_dump_stack_lvl+0x10/0x10
[   65.618330][ T5845]  ? __pfx_queue_work_on+0x10/0x10
[   65.618340][ T5845]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   65.618350][ T5845]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   65.618361][ T5845]  f2fs_handle_critical_error+0x37c/0x540
[   65.618373][ T5845]  f2fs_write_end_io+0x886/0xb60
[   65.618383][ T5845]  __submit_merged_bio+0x27a/0x6a0
[   65.618393][ T5845]  __submit_merged_write_cond+0x255/0x530
[   65.618403][ T5845]  f2fs_write_data_pages+0x261d/0x3000
[   65.618418][ T5845]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   65.618434][ T5845]  ? __mod_zone_page_state+0xd7/0x140
[   65.618447][ T5845]  ? folios_put_refs+0x560/0x640
[   65.618456][ T5845]  ? __pfx_folios_put_refs+0x10/0x10
[   65.618463][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.618471][ T5845]  ? lru_add+0xa2f/0xd80
[   65.618477][ T5845]  ? lru_add+0x198/0xd80
[   65.618484][ T5845]  ? folio_batch_move_lru+0x319/0x3a0
[   65.618492][ T5845]  ? filemap_get_folios_tag+0xed/0x630
[   65.618499][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.618506][ T5845]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   65.618516][ T5845]  do_writepages+0x32e/0x550
[   65.618526][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.618533][ T5845]  ? do_raw_spin_unlock+0x4d/0x240
[   65.618544][ T5845]  filemap_fdatawrite+0x199/0x240
[   65.618554][ T5845]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   65.618569][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.618576][ T5845]  ? do_raw_spin_unlock+0x4d/0x240
[   65.618584][ T5845]  f2fs_sync_dirty_inodes+0x31f/0x830
[   65.618593][ T5845]  f2fs_write_checkpoint+0x95a/0x1df0
[   65.618603][ T5845]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   65.618643][ T5845]  ? kill_f2fs_super+0x298/0x6c0
[   65.618653][ T5845]  kill_f2fs_super+0x2c3/0x6c0
[   65.618661][ T5845]  ? __pfx_kill_f2fs_super+0x10/0x10
[   65.618667][ T5845]  ? radix_tree_delete_item+0x2b6/0x400
[   65.618678][ T5845]  ? shrinker_free+0x2ce/0x3e0
[   65.618686][ T5845]  deactivate_locked_super+0xbc/0x130
[   65.618695][ T5845]  cleanup_mnt+0x425/0x4c0
[   65.618704][ T5845]  task_work_run+0x1d4/0x260
[   65.618714][ T5845]  ? __pfx_task_work_run+0x10/0x10
[   65.618723][ T5845]  ? __x64_sys_umount+0x122/0x160
[   65.618732][ T5845]  ? __pfx___x64_sys_umount+0x10/0x10
[   65.618741][ T5845]  ? rcu_is_watching+0x15/0xb0
[   65.618748][ T5845]  exit_to_user_mode_loop+0xec/0x110
[   65.618758][ T5845]  do_syscall_64+0x2bd/0x3b0
[   65.618769][ T5845]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.618776][ T5845]  ? exc_page_fault+0x9f/0xf0
[   65.618785][ T5845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.618792][ T5845] RIP: 0033:0x7f949d18ff17
[   65.618801][ T5845] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   65.618807][ T5845] RSP: 002b:00007ffed1e0df18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   65.618816][ T5845] RAX: 0000000000000000 RBX: 00007f949d211c05 RCX: 00007f949d18ff17
[   65.618821][ T5845] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffed1e0dfd0
[   65.618825][ T5845] RBP: 00007ffed1e0dfd0 R08: 0000000000000000 R09: 0000000000000000
[   65.618830][ T5845] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffed1e0f060
[   65.618834][ T5845] R13: 00007f949d211c05 R14: 000000000000fe98 R15: 00007ffed1e0f0a0
[   65.618842][ T5845]  </TASK>
[   65.618845][ T5845] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   65.887067][  T791] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[   65.892328][ T6690] loop2: detected capacity change from 0 to 128
[   65.997065][ T5909] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   66.053674][  T791] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   66.058227][  T791] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[   66.062749][  T791] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[   66.068354][  T791] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[   66.071775][  T791] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   66.079363][  T791] usb 1-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[   66.082759][  T791] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[   66.085961][  T791] usb 1-1: Product: syz
[   66.087739][  T791] usb 1-1: Manufacturer: syz
[   66.089496][  T791] usb 1-1: SerialNumber: syz
[   66.094935][  T791] usb 1-1: config 0 descriptor??
[   66.155108][ T6698] loop2: detected capacity change from 0 to 32768
[   66.157972][ T6698] XFS: ikeep mount option is deprecated.
[   66.168693][ T5909] usb 2-1: Using ep0 maxpacket: 32
[   66.169073][ T6698] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   66.178370][ T5909] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[   66.181267][ T5909] usb 2-1: config 0 has no interface number 0
[   66.183294][ T5909] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   66.196148][ T6698] XFS (loop2): Ending clean mount
[   66.197031][ T5909] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   66.198825][ T6698] XFS (loop2): Quotacheck needed: Please wait.
[   66.201197][ T5909] usb 2-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[   66.206496][ T6698] XFS (loop2): Quotacheck: Done.
[   66.214806][ T5909] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.223025][ T5909] usb 2-1: config 0 descriptor??
[   66.251603][ T5845] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   66.301305][  T791] radio-si470x 1-1:0.0: DeviceID=0x0000 ChipID=0x0000
[   66.303587][  T791] radio-si470x 1-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[   66.339541][ T6710] loop2: detected capacity change from 0 to 4096
[   66.347742][ T6710] NILFS error (device loop2): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[   66.351029][ T6711] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   66.354957][ T6710] NILFS (loop2): mounting fs with errors
[   66.483030][ T6715] loop2: detected capacity change from 0 to 32768
[   66.485840][ T6715] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.296 (6715)
[   66.492029][ T6715] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   66.495670][ T6715] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[   66.502231][  T791] radio-si470x 1-1:0.0: software version 0, hardware version 0
[   66.505556][  T791] radio-si470x 1-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0.
[   66.511584][  T791] radio-si470x 1-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[   66.539601][ T6715] BTRFS info (device loop2): enabling ssd optimizations
[   66.542161][ T6715] BTRFS info (device loop2): enabling free space tree
[   66.557087][ T6715] BTRFS info (device loop2): use zstd compression, level 3
[   66.572178][   T33] audit: type=1804 audit(1755799308.819:9): pid=6715 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.296" name="/newroot/113/file0/file1" dev="loop2" ino=260 res=1 errno=0
[   66.581955][   T33] audit: type=1804 audit(1755799308.829:10): pid=6715 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.296" name="/newroot/113/file0/file1" dev="loop2" ino=260 res=1 errno=0
[   66.595292][ T5845] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   66.704755][  T791] radio-si470x 1-1:0.0: submitting int urb failed (-90)
[   66.761156][ T6738] loop2: detected capacity change from 0 to 128
[   66.772986][ T6738] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   66.779758][ T6738] ext4 filesystem being mounted at /116/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   66.819079][ T5845] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   66.841542][ T5909] input: HID 28bd:0094 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.1/0003:28BD:0094.0002/input/input7
[   66.905534][ T5909] uclogic 0003:28BD:0094.0002: input,hidraw0: USB HID v0.00 Device [HID 28bd:0094] on usb-dummy_hcd.1-1/input1
[   66.913276][ T6746] loop2: detected capacity change from 0 to 1024
[   66.916778][ T6746] hfsplus: wrong filesystem version
[   66.958302][ T6748] tmpfs: Cannot enable swap on remount if it was disabled on first mount
[   67.044328][ T5909] usb 2-1: USB disconnect, device number 6
[   67.046877][ T6756] loop2: detected capacity change from 0 to 1024
[   67.090175][ T6760] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   67.576819][ T6768] loop1: detected capacity change from 0 to 1024
[   67.582896][ T6768] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.589770][ T6768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.610511][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.708653][  T791] radio-si470x 1-1:0.0: si470x_set_report: usb_control_msg returned -71
[   67.716343][  T791] radio-si470x 1-1:0.0: si470x_get_report: usb_control_msg returned -71
[   67.728224][  T791] usb 1-1: USB disconnect, device number 9
[   67.849061][ T6776] loop1: detected capacity change from 0 to 32768
[   67.865693][ T5849] non-latin1 character 0x2e66 found in JFS file name
[   67.868652][ T5849] mount with iocharset=utf8 to access
[   67.886806][  T116] ------------[ cut here ]------------
[   67.888937][  T116] WARNING: CPU: 1 PID: 116 at fs/jfs/jfs_dmap.c:2875 dbAdjTree+0x454/0x4e0
[   67.891896][  T116] Modules linked in:
[   67.893961][  T116] CPU: 1 UID: 0 PID: 116 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[   67.898686][  T116] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   67.902767][  T116] RIP: 0010:dbAdjTree+0x454/0x4e0
[   67.904709][  T116] Code: 5a ff ff ff e8 3d 30 81 fe eb 05 e8 36 30 81 fe 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d e9 13 e0 3d 08 cc e8 1d 30 81 fe 90 <0f> 0b 90 eb e1 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c e1 fb ff ff
[   67.911351][  T116] RSP: 0018:ffffc900024af508 EFLAGS: 00010293
[   67.913355][  T116] RAX: ffffffff833e7b13 RBX: ffff888106208010 RCX: ffff88801ebcb980
[   67.916016][  T116] RDX: 0000000000000000 RSI: 0000000000000155 RDI: 0000000000020056
[   67.918962][  T116] RBP: 0000000000020056 R08: ffffea0004188207 R09: 1ffffd4000831040
[   67.921637][  T116] R10: dffffc0000000000 R11: fffff94000831041 R12: ffff888106208018
[   67.924332][  T116] R13: dffffc0000000000 R14: 0000000000000004 R15: 0000000000000155
[   67.927438][  T116] FS:  0000000000000000(0000) GS:ffff8881a3c1b000(0000) knlGS:0000000000000000
[   67.930643][  T116] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   67.933129][  T116] CR2: 0000558b68a41af0 CR3: 0000000029296000 CR4: 00000000000006f0
[   67.935877][  T116] Call Trace:
[   67.937101][  T116]  <TASK>
[   67.938110][  T116]  ? __pfx_lock_metapage+0x10/0x10
[   67.939827][  T116]  ? do_raw_spin_lock+0x121/0x290
[   67.941790][  T116]  dbJoin+0x238/0x300
[   67.943138][  T116]  ? do_read_cache_folio+0x4c6/0x590
[   67.944978][  T116]  dbFreeBits+0x4e1/0xdb0
[   67.946677][  T116]  dbFree+0x336/0x650
[   67.948096][  T116]  txFreeMap+0x9e6/0xde0
[   67.949554][  T116]  ? do_raw_spin_unlock+0x4d/0x240
[   67.951536][  T116]  xtTruncate+0xcea/0x2e70
[   67.953086][  T116]  ? __pfx_xtTruncate+0x10/0x10
[   67.954837][  T116]  ? do_raw_spin_lock+0x121/0x290
[   67.957080][  T116]  ? __asan_memset+0x22/0x50
[   67.959107][  T116]  ? __dquot_initialize+0x218/0xcb0
[   67.961335][  T116]  jfs_free_zero_link+0x33a/0x4a0
[   67.963326][  T116]  ? __pfx_jfs_free_zero_link+0x10/0x10
[   67.965621][  T116]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[   67.968377][  T116]  jfs_evict_inode+0x363/0x440
[   67.970364][  T116]  ? evict+0x4f8/0x9c0
[   67.972037][  T116]  ? __pfx_jfs_evict_inode+0x10/0x10
[   67.974189][  T116]  evict+0x504/0x9c0
[   67.975819][  T116]  ? __pfx_evict+0x10/0x10
[   67.977734][  T116]  ? do_raw_spin_unlock+0x4d/0x240
[   67.980164][  T116]  ? _raw_spin_unlock+0x28/0x50
[   67.982502][  T116]  ? iput+0x6d8/0x9d0
[   67.984141][  T116]  jfs_lazycommit+0x43f/0xa90
[   67.986084][  T116]  ? __pfx_jfs_lazycommit+0x10/0x10
[   67.988370][  T116]  ? __pfx_default_wake_function+0x10/0x10
[   67.990688][  T116]  ? __kthread_parkme+0x7b/0x200
[   67.992707][  T116]  ? __kthread_parkme+0x1a1/0x200
[   67.994795][  T116]  kthread+0x711/0x8a0
[   67.996414][  T116]  ? __pfx_jfs_lazycommit+0x10/0x10
[   67.998647][  T116]  ? __pfx_kthread+0x10/0x10
[   68.000535][  T116]  ? _raw_spin_unlock_irq+0x23/0x50
[   68.002646][  T116]  ? lockdep_hardirqs_on+0x9c/0x150
[   68.004754][  T116]  ? __pfx_kthread+0x10/0x10
[   68.006694][  T116]  ret_from_fork+0x3fc/0x770
[   68.008683][  T116]  ? __pfx_ret_from_fork+0x10/0x10
[   68.010738][  T116]  ? __switch_to_asm+0x39/0x70
[   68.012772][  T116]  ? __switch_to_asm+0x33/0x70
[   68.014832][  T116]  ? __pfx_kthread+0x10/0x10
[   68.016709][  T116]  ret_from_fork_asm+0x1a/0x30
[   68.018625][  T116]  </TASK>
[   68.019724][  T116] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   68.022328][  T116] CPU: 1 UID: 0 PID: 116 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[   68.025647][  T116] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   68.029399][  T116] Call Trace:
[   68.030626][  T116]  <TASK>
[   68.031842][  T116]  dump_stack_lvl+0x99/0x250
[   68.033702][  T116]  ? __asan_memcpy+0x40/0x70
[   68.035555][  T116]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.037206][  T116]  ? __pfx__printk+0x10/0x10
[   68.038715][  T116]  vpanic+0x281/0x750
[   68.040056][  T116]  ? __pfx__printk+0x10/0x10
[   68.041589][  T116]  ? __pfx_vpanic+0x10/0x10
[   68.043243][  T116]  ? is_bpf_text_address+0x26/0x2b0
[   68.045340][  T116]  panic+0xb9/0xc0
[   68.046853][  T116]  ? __pfx_panic+0x10/0x10
[   68.048632][  T116]  __warn+0x31b/0x4b0
[   68.050008][  T116]  ? dbAdjTree+0x454/0x4e0
[   68.051494][  T116]  ? dbAdjTree+0x454/0x4e0
[   68.052984][  T116]  report_bug+0x2be/0x4f0
[   68.054405][  T116]  ? dbAdjTree+0x454/0x4e0
[   68.055997][  T116]  ? dbAdjTree+0x454/0x4e0
[   68.057765][  T116]  ? dbAdjTree+0x456/0x4e0
[   68.059363][  T116]  handle_bug+0x84/0x160
[   68.060978][  T116]  exc_invalid_op+0x1a/0x50
[   68.062741][  T116]  asm_exc_invalid_op+0x1a/0x20
[   68.064656][  T116] RIP: 0010:dbAdjTree+0x454/0x4e0
[   68.066645][  T116] Code: 5a ff ff ff e8 3d 30 81 fe eb 05 e8 36 30 81 fe 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d e9 13 e0 3d 08 cc e8 1d 30 81 fe 90 <0f> 0b 90 eb e1 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c e1 fb ff ff
[   68.073915][  T116] RSP: 0018:ffffc900024af508 EFLAGS: 00010293
[   68.076188][  T116] RAX: ffffffff833e7b13 RBX: ffff888106208010 RCX: ffff88801ebcb980
[   68.078760][  T116] RDX: 0000000000000000 RSI: 0000000000000155 RDI: 0000000000020056
[   68.081318][  T116] RBP: 0000000000020056 R08: ffffea0004188207 R09: 1ffffd4000831040
[   68.083829][  T116] R10: dffffc0000000000 R11: fffff94000831041 R12: ffff888106208018
[   68.086348][  T116] R13: dffffc0000000000 R14: 0000000000000004 R15: 0000000000000155
[   68.089249][  T116]  ? dbAdjTree+0x453/0x4e0
[   68.091158][  T116]  ? dbAdjTree+0x453/0x4e0
[   68.093023][  T116]  ? __pfx_lock_metapage+0x10/0x10
[   68.095197][  T116]  ? do_raw_spin_lock+0x121/0x290
[   68.097286][  T116]  dbJoin+0x238/0x300
[   68.098823][  T116]  ? do_read_cache_folio+0x4c6/0x590
[   68.100861][  T116]  dbFreeBits+0x4e1/0xdb0
[   68.102654][  T116]  dbFree+0x336/0x650
[   68.104111][  T116]  txFreeMap+0x9e6/0xde0
[   68.105505][  T116]  ? do_raw_spin_unlock+0x4d/0x240
[   68.107233][  T116]  xtTruncate+0xcea/0x2e70
[   68.108728][  T116]  ? __pfx_xtTruncate+0x10/0x10
[   68.110747][  T116]  ? do_raw_spin_lock+0x121/0x290
[   68.112557][  T116]  ? __asan_memset+0x22/0x50
[   68.114304][  T116]  ? __dquot_initialize+0x218/0xcb0
[   68.116212][  T116]  jfs_free_zero_link+0x33a/0x4a0
[   68.118168][  T116]  ? __pfx_jfs_free_zero_link+0x10/0x10
[   68.120451][  T116]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[   68.122811][  T116]  jfs_evict_inode+0x363/0x440
[   68.124701][  T116]  ? evict+0x4f8/0x9c0
[   68.126285][  T116]  ? __pfx_jfs_evict_inode+0x10/0x10
[   68.128196][  T116]  evict+0x504/0x9c0
[   68.129763][  T116]  ? __pfx_evict+0x10/0x10
[   68.131508][  T116]  ? do_raw_spin_unlock+0x4d/0x240
[   68.133517][  T116]  ? _raw_spin_unlock+0x28/0x50
[   68.135369][  T116]  ? iput+0x6d8/0x9d0
[   68.136829][  T116]  jfs_lazycommit+0x43f/0xa90
[   68.138620][  T116]  ? __pfx_jfs_lazycommit+0x10/0x10
[   68.140452][  T116]  ? __pfx_default_wake_function+0x10/0x10
[   68.142507][  T116]  ? __kthread_parkme+0x7b/0x200
[   68.144281][  T116]  ? __kthread_parkme+0x1a1/0x200
[   68.146125][  T116]  kthread+0x711/0x8a0
[   68.147695][  T116]  ? __pfx_jfs_lazycommit+0x10/0x10
[   68.149646][  T116]  ? __pfx_kthread+0x10/0x10
[   68.151411][  T116]  ? _raw_spin_unlock_irq+0x23/0x50
[   68.153411][  T116]  ? lockdep_hardirqs_on+0x9c/0x150
[   68.155423][  T116]  ? __pfx_kthread+0x10/0x10
[   68.157237][  T116]  ret_from_fork+0x3fc/0x770
[   68.158983][  T116]  ? __pfx_ret_from_fork+0x10/0x10
[   68.160989][  T116]  ? __switch_to_asm+0x39/0x70
[   68.162832][  T116]  ? __switch_to_asm+0x33/0x70
[   68.164618][  T116]  ? __pfx_kthread+0x10/0x10
[   68.166266][  T116]  ret_from_fork_asm+0x1a/0x30
[   68.168134][  T116]  </TASK>
[   68.170185][  T116] Kernel Offset: disabled
[   68.171946][  T116] Rebooting in 86400 seconds..

VM DIAGNOSIS:
18:01:50  Registers:
info registers vcpu 0

CPU#0
RAX=1ffffffff1bf4e1b RBX=ffff888100eb60b0 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000004 RDI=ffff888100eb60b0 RBP=1ffff110201d6c17 RSP=ffffc900040879f8
R8 =ffff888100eb60b3 R9 =1ffff110201d6c16 R10=dffffc0000000000 R11=ffffed10201d6c17
R12=dffffc0000000000 R13=1ffff110201d6c18 R14=ffff888100eb60c0 R15=ffff888100eb60b8
RIP=ffffffff819e040d RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffda80d1ef0 CR3=000000002f9ec000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f949d387498 00007f949d387470 XMM03=00007f949d3874a8 00007f949d3874a0
XMM04=00007f949deed100 00007f949d387460 XMM05=00007f949d387478 00007f949d3874c0
XMM06=00007f949d3874b8 00007f949d3874b0 XMM07=00007f949d3874a8 00007f949d3874a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f949d212fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000069 RBX=0000000000000069 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900024aecb0
R8 =ffff888108088237 R9 =1ffff11021011046 R10=dffffc0000000000 R11=ffffffff854f1d00
R12=dffffc0000000000 R13=ffffffff99afa8fc R14=ffffffff99def3e0 R15=0000000000000000
RIP=ffffffff854f1d7c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000558b68a41af0 CR3=0000000029296000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=6161616161616161 6161616161616161
XMM06=6161616161616161 6161616161616161 XMM07=6161616161616161 6161616161616161
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f949d212fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
