last executing test programs:

5m47.75269649s ago: executing program 4 (id=10463):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000200000005000100070000000900020073797a300000000014000780080008400000000008001240200000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}, 0x1, 0x0, 0x0, 0x50}, 0x0)

5m47.224931661s ago: executing program 4 (id=10472):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x41, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000140)="f9b9", 0x2}], 0x1)

5m46.966509149s ago: executing program 4 (id=10476):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x1000000, &(0x7f00000001c0), 0x25, 0x4b6, &(0x7f0000000540)="$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")
quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000200)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000002780)={0x203, 0x1c, 0x1, 0x4})

5m46.526597962s ago: executing program 4 (id=10483):
syz_mount_image$erofs(&(0x7f0000000140), &(0x7f0000000000)='./file2\x00', 0x300000c, &(0x7f0000000080)=ANY=[], 0xfe, 0x26e, &(0x7f0000000640)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

5m45.953005112s ago: executing program 4 (id=10491):
r0 = socket$nl_route(0x10, 0x3, 0x0)
write(r0, &(0x7f00000001c0)="240000005800410f9c00f4f90085b3025cb1fddf08000100050100000800028001000000", 0x24)

5m45.222908056s ago: executing program 4 (id=10502):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=@newtaction={0x6c, 0x30, 0x1, 0x0, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x1}, 0x3}}, @TCA_MPLS_PROTO={0x6}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)

5m44.673421246s ago: executing program 32 (id=10502):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=@newtaction={0x6c, 0x30, 0x1, 0x0, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x1}, 0x3}}, @TCA_MPLS_PROTO={0x6}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)

3.612109509s ago: executing program 1 (id=15093):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_HWPT_INVALIDATE$TEST(r0, 0x3b8d, &(0x7f0000000040)={0x20, 0x0, 0x0, 0xdeadbeef, 0x8, 0xffffffc1})

3.346649513s ago: executing program 1 (id=15096):
r0 = io_uring_setup(0x7fc0, &(0x7f0000000000)={0x0, 0x3, 0x80})
io_uring_register$IORING_REGISTER_IOWQ_AFF(r0, 0x11, 0x0, 0x0)

3.12811183s ago: executing program 0 (id=15100):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f00000011c0)="b9ffddc10000000000000008888edf", 0x0, 0x600, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x4c)

3.058746674s ago: executing program 1 (id=15101):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000240)={[{@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@grpquota}, {@nointegrity}, {@usrquota}, {@errors_continue}, {@grpquota}, {@usrquota}]}, 0x25, 0x61b6, &(0x7f00000075c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)

2.226942007s ago: executing program 0 (id=15112):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
pwritev(r0, &(0x7f0000000180)=[{&(0x7f0000000040)="fdab", 0x2}], 0x1, 0x2, 0x388)

2.159281195s ago: executing program 2 (id=15114):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_hci(r0, 0x0, 0x1, &(0x7f0000000840)=""/88, &(0x7f00000008c0)=0x58)

2.13659736s ago: executing program 3 (id=15115):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$FBIOPUTCMAP(r0, 0x4605, &(0x7f0000000340)={0xffffffff, 0x1, &(0x7f0000000040)=[0x3ff], &(0x7f0000000080), &(0x7f0000000180), 0x0})

2.042200408s ago: executing program 6 (id=15116):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000040000000000000000000000850000002c000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="b9ff03006009250d698cbe512490", 0x0, 0xe00, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x5}, 0x50)

1.986059667s ago: executing program 5 (id=15117):
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x2720, &(0x7f0000032580)=""/102400, &(0x7f0000000040)=0x19000)

1.982112805s ago: executing program 0 (id=15118):
r0 = syz_open_dev$video(&(0x7f0000000580), 0x7, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)={0x980912, 0x0, '\x00', @string=0x0}})

1.838371384s ago: executing program 3 (id=15119):
r0 = io_uring_setup(0x1a03, &(0x7f0000000080)={0x0, 0x10007e4b, 0x1000, 0x3, 0x162})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x1ef6e3}], 0x100000000000011a)

1.835905241s ago: executing program 2 (id=15131):
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x800, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}})

1.717233398s ago: executing program 1 (id=15120):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x20, &(0x7f0000000380)={&(0x7f0000000840)=@newsa={0x158, 0x10, 0x713, 0x0, 0x0, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in6=@local}, {@in=@dev={0xac, 0x14, 0x14, 0x17}, 0x4d5, 0x33}, @in=@multicast1, {0x3}, {}, {0x0, 0x22}, 0x0, 0x0, 0x2}, [@algo_auth_trunc={0x5c, 0x14, {{'cmac(aes)\x00'}, 0x80, 0x0, "3509fe8fd57fd44aa5074c50bc700e53"}}, @offload={0xc, 0x1c, {0x0, 0x2}}]}, 0x158}}, 0x0)

1.695058008s ago: executing program 0 (id=15121):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000080)={0x1, 0x0, 0x4, 0x4, 0x4, 0x800})

1.674703197s ago: executing program 6 (id=15122):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'wlan1\x00', &(0x7f0000000140)=@ethtool_eee={0x44, 0x4, 0x9, 0x7, 0x1, 0xfffffe00, 0x5, 0x80000000, [0x6, 0xfffffffd]}})

1.663465046s ago: executing program 5 (id=15123):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000040)={0x9, 0x8, "d5f0cf94ce4b6890affe032527a66761bebdb5bec16361a9", {0xc4a, 0x28000}, 0x3})

1.434043767s ago: executing program 2 (id=15124):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x40, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x4, 0x48}, @nested={0x20, 0x1, 0x0, 0x1, [@nested={0x1c, 0x10, 0x0, 0x1, [@nested={0x18, 0xb, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @ipv4=@remote}, @typed={0xc, 0x133, 0x0, 0x0, @u64=0x6}]}]}]}, @typed={0x8, 0x2, 0x0, 0x0, @fd=r0}]}, 0x40}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

1.428672682s ago: executing program 3 (id=15125):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)={0x38, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x4, 0xcb}, @nested={0x14, 0x1, 0x0, 0x1, [@nested={0x10, 0x10, 0x0, 0x1, [@nested={0xc, 0xf, 0x0, 0x1, [@typed={0x4, 0x117}, @nested={0x4, 0x66}]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x38}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

1.409031013s ago: executing program 6 (id=15126):
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2004c1a, &(0x7f00000001c0)={[{@utf8}, {@showassoc}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@check_relaxed}, {@overriderock}, {@map_acorn}, {@map_off}, {@hide}, {@map_acorn}, {@map_off}, {@session={'session', 0x3d, 0x45}}, {@map_off}, {@check_relaxed}, {@mode={'mode', 0x3d, 0x1ff}}]}, 0x4, 0xa19, &(0x7f00000002c0)="$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")
faccessat2(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x3, 0x1000)

1.394268986s ago: executing program 5 (id=15127):
r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0xcd1d, 0x10100, 0x1000000, 0x20000}, &(0x7f0000000040), &(0x7f0000000080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4, 0x2}, 0x1)

1.298926897s ago: executing program 0 (id=15128):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000040)=""/34, 0x22}], 0x1, 0x9, 0x0)

1.18634662s ago: executing program 2 (id=15129):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_ERR(r0, 0x8001af85, &(0x7f00000002c0)={0x1})

1.148982436s ago: executing program 0 (id=15130):
syz_usb_connect(0x5, 0x3d, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000febcb420fc043102a96f01ed020109022b00010000001009046e0002e76e460009050000f9ffffff000705db224370bf09050b02"], 0x0)
ioctl$EVIOCSKEYCODE(0xffffffffffffffff, 0x40084504, 0x0)

1.12239942s ago: executing program 5 (id=15132):
r0 = socket(0x1d, 0x2, 0x6)
getsockopt$inet_mreqn(r0, 0x6a, 0x4, 0x0, &(0x7f00000000c0)=0xffffffffffffff16)

1.069846541s ago: executing program 3 (id=15133):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
ioctl$COMEDI_CANCEL(r0, 0x6407)

950.423583ms ago: executing program 6 (id=15134):
r0 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f0000000580)={0x0, 0x2000, 0x80, 0x3231564e, 0x3, [0x2], [0x2000, 0xfffffffc], [], [0x400000000000001]})

895.310213ms ago: executing program 5 (id=15135):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x5e, &(0x7f0000000380)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6c}}, {@lazytime}, {@nodioread_nolock}, {@minixdf}]}, 0x3, 0x44a, &(0x7f00000006c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)

869.419943ms ago: executing program 2 (id=15136):
syz_mount_image$ext4(&(0x7f0000000e40)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2800000, &(0x7f0000000140), 0x1, 0xbce, &(0x7f0000000240)="$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")
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

730.160667ms ago: executing program 3 (id=15137):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=@dellinkprop={0x1f, 0x6d, 0x2ec9b2c728e3c67, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x49a93, 0x2e804}, [@IFLA_IFNAME={0x14, 0x3, 'veth1\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x20008000}, 0x4004014)

694.781271ms ago: executing program 6 (id=15138):
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000700)="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", 0x118)

483.786784ms ago: executing program 6 (id=15139):
r0 = io_uring_setup(0x1a03, &(0x7f0000000080)={0x0, 0x10007e4b, 0x1000, 0x3, 0x162})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x1ef6e3}], 0x100000000000011a)

482.914565ms ago: executing program 3 (id=15151):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$eJzs3U1rE08cB/Dv7KZN+m/pf7UVwYNINWAvovUiXiIlL8KTqE0KxSWitviAYBVPIvbu3aNXX4N4UQTP9eRJPHiqBxmZh2SfN6lmd1P9fsCy2dmZ/e3OzlPALIjon7Xa3n11/ov6JwAXLvDsIuAAaAA1AEdwtLHV29zY9LudvIJcHK+bXAImp0gcs9brpmVtwOawPPWphrnwPiqGlPLS56qDoMrp1i/d6M4Tuieo29apExsVxZfl8f6zfJsBsF1EMBMlv6bEHvZwD/OlhUNERBNJmPHdseP8nJ2/Ow7QtIOJSpu48f937VUdQOFkbmpo/NerLClUvf+vk4L1nl7CqXSnv0pMK+t17PNU7PM0zNMTmV2KYatKHYszs77hd8+s3fQ7Dp6gZYUOW9R/O/bxtCLR1hNFL6WsTXMMSpvJPESkzyhn9TVMqWtYMfHfBRCJfyH3jAUQ78QHcUV4eInOYP5Xk0JVk64pL1ZTJv6z2SXqq/TUUbDdRqvVciKHHNInOWbPYA25ygbcrDNO2zIjXxB4w+LUuQ7HcpmrOzck10JqrhW9vQwnI9diJJe6mvUN/232qUohXojLYglf8Qbt0PzfUfE1kWyZoYc+aDWiaYYCfcdV64zWbEitaXsiPXJsfdp9aPYnm8vgLiYbrPUjv0+jfXiO67iA+Tv3H9xwfb97W21c89XjqjcGe27N2Q2/O/UUCCdNyga2gz11SC1xcH9QKjOw5bEWqPqPlCTVsHrf+3tUKxtW4KM/jUf1A4XeutkRrmJ/G/2uazwFtt+P50HqTxsiST+llCU2oh17Z+JJ1XRLVK6g0kc7PmWqQwebqlJh1n/BeqVmJnvqj5c6Tx/xiwBbolRz7MEKLsgrzYwcwH85K7i0YjNXcMk1V2LNqNdcJ08Dp0Y/o2fj/EuINj7iKr//JyIiIiIiIiIiIiIiIiIiIiIiIiI6aMr4zzBVXyMRERERERERERERERERERERERERERER0UG32oD53Wv03/+L0d7/G38Vi2t+Enws7//d6YHv/yUq3q8AAAD///B/c8c=")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)

386.593394ms ago: executing program 2 (id=15140):
syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x82002)
syz_usb_connect(0x1, 0x36, &(0x7f0000000440)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)

329.231429ms ago: executing program 1 (id=15141):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a8, 0x0, 0x12, 0x60d, 0x0, 0x202, 0x1d8, 0x2e8, 0x2e8, 0x1d8, 0x2c0, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0x0, 0x0, 0x0, 0xff000000], [0xff, 0xff000000, 0x7fffff7f], 'vcan0\x00', 'erspan0\x00', {}, {0xff}, 0x2b, 0x5, 0x6, 0x33}, 0x0, 0xa8, 0xe8}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4, 0x4, "d8167b8584110c0000e6645f9841b10bedffffff0f00"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x308)

95.056776ms ago: executing program 5 (id=15142):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x1f, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x400000}, [@printk={@lu, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

0s ago: executing program 1 (id=15143):
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x0, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(r0, 0x80044d00, &(0x7f0000000040))

kernel console output (not intermixed with test programs):

 an invalid length.
[ 1391.729039][ T6276] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1392.019126][ T4710] loop6: detected capacity change from 0 to 1024
[ 1392.347881][T26145] usb 3-1: new high-speed USB device number 76 using dummy_hcd
[ 1392.533414][ T4725] loop6: detected capacity change from 0 to 64
[ 1392.561720][T26145] usb 3-1: Using ep0 maxpacket: 8
[ 1392.607930][T26145] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[ 1392.628676][ T4725] Trying to free block not in datazone
[ 1392.646377][T26145] usb 3-1: config 179 has no interface number 0
[ 1392.666864][T26145] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1392.704367][T26145] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1392.755219][T26145] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1392.779098][T26145] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1392.814522][T26145] usb 3-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1392.835863][ T4722] bridge4: entered promiscuous mode
[ 1392.842485][ T4722] bridge4: entered allmulticast mode
[ 1392.847851][T26145] usb 3-1: config 179 interface 65 has no altsetting 0
[ 1392.859254][T26145] usb 3-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1392.873190][T26145] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1392.947791][T26145] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input101
[ 1392.960921][ T4708] loop1: detected capacity change from 0 to 32768
[ 1393.004525][ T4708] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.13602 (4708)
[ 1393.071770][ T4708] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1393.104149][ T4708] BTRFS info (device loop1): using sha256 checksum algorithm
[ 1393.278589][T26145] usb 3-1: USB disconnect, device number 76
[ 1393.288888][ T4708] BTRFS info (device loop1): enabling ssd optimizations
[ 1393.334475][ T4708] BTRFS info (device loop1): turning on async discard
[ 1393.348949][ T4708] BTRFS info (device loop1): enabling free space tree
[ 1393.542597][ T6251] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1393.620289][ T4754] netlink: 'syz.3.13616': attribute type 1 has an invalid length.
[ 1393.639503][ T4754] netlink: 224 bytes leftover after parsing attributes in process `syz.3.13616'.
[ 1394.007581][ T4763] loop0: detected capacity change from 0 to 2048
[ 1394.082549][ T4763] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1394.164397][ T4768] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1394.878726][ T4783] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13629'.
[ 1394.948653][ T4787] openvswitch: netlink: VXLAN extension 1 has unexpected len 8 expected 4
[ 1395.528168][ T4809] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13642'.
[ 1395.570036][ T4809] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13642'.
[ 1395.765102][ T4820] loop6: detected capacity change from 0 to 64
[ 1395.988089][ T4824] bridge4: entered promiscuous mode
[ 1396.030047][ T4824] bridge4: entered allmulticast mode
[ 1396.313498][ T4839] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1396.441462][   T30] audit: type=1326 audit(1780616283.316:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.13659" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1396.559050][   T30] audit: type=1326 audit(1780616283.344:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.13659" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1396.661868][   T30] audit: type=1326 audit(1780616283.344:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.13659" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1396.765213][   T30] audit: type=1326 audit(1780616283.353:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.13659" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1397.050520][ T4861] loop1: detected capacity change from 0 to 2048
[ 1397.065032][ T4866] loop0: detected capacity change from 0 to 64
[ 1397.153120][ T4870] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1397.207771][ T4861] NILFS (loop1): vblocknr = 5121 has abnormal lifetime: start cno (= 100663298) > current cno (= 3)
[ 1397.239521][ T4861] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=13)
[ 1397.292560][ T4861] Remounting filesystem read-only
[ 1397.314516][T26170] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[ 1397.319259][ T4861] NILFS (loop1): error -5 truncating bmap (ino=13)
[ 1397.427310][ T4876] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13675'.
[ 1397.453847][ T4876] netlink: 224 bytes leftover after parsing attributes in process `syz.6.13675'.
[ 1397.495686][ T4878] loop0: detected capacity change from 0 to 1024
[ 1397.530405][T26170] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1397.551352][T26170] usb 4-1: config 4 has an invalid interface number: 138 but max is 0
[ 1397.564733][ T6251] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[ 1397.576901][T26170] usb 4-1: config 4 has no interface number 0
[ 1397.588375][ T4878] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[ 1397.605797][T26170] usb 4-1: config 4 interface 138 has no altsetting 0
[ 1397.644139][T26170] usb 4-1: string descriptor 0 read error: -22
[ 1397.668399][T26170] usb 4-1: New USB device found, idVendor=0423, idProduct=000a, bcdDevice=5f.d8
[ 1397.713094][T26170] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1397.901721][T26144] usb 3-1: new high-speed USB device number 77 using dummy_hcd
[ 1397.949280][ T4890] loop0: detected capacity change from 0 to 1024
[ 1398.006696][T26170] catc 4-1:4.138: Missing or invalid endpoints
[ 1398.011508][ T4890] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1398.038117][ T4892] loop6: detected capacity change from 0 to 2048
[ 1398.083887][T26144] usb 3-1: Using ep0 maxpacket: 8
[ 1398.094010][ T4896] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1398.106049][ T4890] EXT4-fs warning (device loop0): ext4_rmdir:3189: inode #11: comm syz.0.13682: empty directory 'file1' has too many links (111)
[ 1398.124660][T26144] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 1536, setting to 64
[ 1398.154354][ T4892] NILFS error (device loop6): nilfs_check_folio: bad entry in directory #2: unaligned directory entry - offset=104, inode=18446744073709551376, rec_len=255, name_len=5
[ 1398.198568][T26144] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1398.227497][T26144] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[ 1398.238053][ T4892] Remounting filesystem read-only
[ 1398.248922][T26144] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1398.277916][T26144] usb 3-1: Product: syz
[ 1398.278571][T26170] usb 4-1: USB disconnect, device number 81
[ 1398.286487][T26144] usb 3-1: Manufacturer: syz
[ 1398.314666][T26144] usb 3-1: SerialNumber: syz
[ 1398.315219][ T6249] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1398.324735][T26144] usb 3-1: config 0 descriptor??
[ 1398.408705][T26144] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 found
[ 1398.627104][T26144] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 now disconnected
[ 1398.659698][T26144] snd_usb_toneport 3-1:0.0: probe with driver snd_usb_toneport failed with error -22
[ 1398.814429][ T4918] netlink: 'syz.5.13694': attribute type 10 has an invalid length.
[ 1398.843254][ T4918] team0: Device wg2 is of different type
[ 1398.896190][T26144] usb 3-1: USB disconnect, device number 77
[ 1399.045753][ T4924] netlink: 'syz.0.13697': attribute type 4 has an invalid length.
[ 1399.072765][ T4922] loop1: detected capacity change from 0 to 2048
[ 1399.112706][ T4922] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1399.376235][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1399.644960][ T4948] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13707'.
[ 1399.773643][ T4952] netlink: 'syz.2.13708': attribute type 3 has an invalid length.
[ 1399.802954][ T4952] netlink: 'syz.2.13708': attribute type 3 has an invalid length.
[ 1399.838841][ T4952] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13708'.
[ 1399.929019][ T4959] loop0: detected capacity change from 0 to 512
[ 1399.956505][ T4959] EXT4-fs: Ignoring removed nobh option
[ 1400.011975][ T4959] EXT4-fs error (device loop0): ext4_do_update_inode:5690: inode #3: comm syz.0.13709: corrupted inode contents
[ 1400.050342][ T4921] loop6: detected capacity change from 0 to 32768
[ 1400.059183][ T4959] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1400.061242][ T4959] EXT4-fs (loop0): Remounting filesystem read-only
[ 1400.070351][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1400.070381][    C0] EXT4-fs (loop0): initial error at time 1780616286: ext4_do_update_inode:5690: inode 3
[ 1400.070435][    C0] EXT4-fs (loop0): last error at time 1780616286: ext4_do_update_inode:5690: inode 3
[ 1400.123326][ T4959] Quota error (device loop0): write_blk: dquota write failed
[ 1400.130979][ T4959] Quota error (device loop0): qtree_write_dquot: Error -30 occurred while creating quota
[ 1400.192157][ T4921] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1400.244021][ T4959] EXT4-fs (loop0): 1 truncate cleaned up
[ 1400.268817][ T4968] bond0: option arp_validate: invalid value (2048)
[ 1400.301528][ T4959] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1400.354657][ T4989] netlink: 2 bytes leftover after parsing attributes in process `syz.2.13718'.
[ 1400.366720][ T4921] XFS (loop6): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50.
[ 1400.383684][ T4959] ext4 filesystem being mounted at /2219/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1400.403581][ T4968] bond0 (unregistering): Released all slaves
[ 1400.430351][ T4921] XFS (loop6): Tail block (0x29) overwrite detected. Updated to 0x30
[ 1400.435944][ T4959] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1400.483304][ T4921] XFS (loop6): Ending clean mount
[ 1400.717875][T29879] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1400.980919][ T5004] loop0: detected capacity change from 0 to 16
[ 1401.017025][ T5004] erofs (device loop0): mounted with root inode @ nid 36.
[ 1401.437054][T26170] usb 6-1: new high-speed USB device number 88 using dummy_hcd
[ 1401.624251][T26170] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1401.659613][T26170] usb 6-1: config 114 has an invalid interface number: 240 but max is 0
[ 1401.683733][ T5024] loop2: detected capacity change from 0 to 2048
[ 1401.691692][T26170] usb 6-1: config 114 has no interface number 0
[ 1401.721438][T26170] usb 6-1: config 114 interface 240 altsetting 232 bulk endpoint 0x1 has invalid maxpacket 1023
[ 1401.737621][ T5024] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1401.767130][ T5026] openvswitch: netlink: IPv4 tunnel dst address is zero
[ 1401.776226][T26170] usb 6-1: config 114 interface 240 altsetting 232 has an endpoint descriptor with address 0xCA, changing to 0x8A
[ 1401.821376][T26170] usb 6-1: config 114 interface 240 altsetting 232 bulk endpoint 0x8A has invalid maxpacket 16
[ 1401.854475][ T5030] binder: 5029:5030 ioctl 400c620e 200000000080 returned -22
[ 1401.863649][T26170] usb 6-1: config 114 interface 240 has no altsetting 0
[ 1401.887039][T26170] usb 6-1: string descriptor 0 read error: -22
[ 1401.895682][T26170] usb 6-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice= 6.38
[ 1401.929849][T26170] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1401.980045][ T5007] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1402.011615][ T5007] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1402.064575][ T5034] netlink: 'syz.3.13738': attribute type 30 has an invalid length.
[ 1402.066577][T26170] ir_usb 6-1:114.240: IR Dongle converter detected
[ 1402.112729][ T5034] netlink: 32 bytes leftover after parsing attributes in process `syz.3.13738'.
[ 1402.300655][T26170] usb 6-1: IRDA class descriptor not found, device not bound
[ 1402.312199][ T5038] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1402.538171][ T5012] set_capacity_and_notify: 1 callbacks suppressed
[ 1402.538199][ T5012] loop1: detected capacity change from 0 to 32768
[ 1402.556557][ T5047] loop2: detected capacity change from 0 to 256
[ 1402.603657][ T5047] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[ 1402.639229][T26145] usb 6-1: USB disconnect, device number 88
[ 1402.655143][ T5012] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[ 1402.724733][ T5012] JBD2: Ignoring recovery information on journal
[ 1402.736247][ T5047] exFAT-fs (loop2): start_clu is invalid cluster(0x0)
[ 1402.843965][   T30] audit: type=1326 audit(1780616289.308:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5051 comm="syz.3.13748" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1402.931347][   T30] audit: type=1326 audit(1780616289.308:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5051 comm="syz.3.13748" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1402.966203][ T5012] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1403.037383][   T30] audit: type=1326 audit(1780616289.346:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5051 comm="syz.3.13748" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1403.119887][ T5012] OCFS2: ERROR (device loop1): ocfs2_validate_gd_self: Group descriptor #32 has an invalid bg_blkno of 393248
[ 1403.145341][   T30] audit: type=1326 audit(1780616289.346:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5051 comm="syz.3.13748" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1403.187146][ T5012] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1403.221384][ T5012] OCFS2: File system is now read-only.
[ 1403.243586][ T5012] (syz.1.13729,5012,0):ocfs2_search_chain:1913 ERROR: status = -30
[ 1403.287818][ T5012] (syz.1.13729,5012,0):ocfs2_search_chain:2036 ERROR: status = -30
[ 1403.318942][ T5012] (syz.1.13729,5012,0):ocfs2_claim_suballoc_bits:2123 ERROR: status = -30
[ 1403.376662][ T5012] (syz.1.13729,5012,0):ocfs2_claim_suballoc_bits:2176 ERROR: status = -30
[ 1403.423539][ T5012] (syz.1.13729,5012,1):__ocfs2_claim_clusters:2557 ERROR: status = -30
[ 1403.457124][ T5012] (syz.1.13729,5012,1):__ocfs2_claim_clusters:2565 ERROR: status = -30
[ 1403.496577][ T5012] (syz.1.13729,5012,1):ocfs2_local_alloc_new_window:1197 ERROR: status = -30
[ 1403.521017][ T5012] (syz.1.13729,5012,0):ocfs2_local_alloc_new_window:1222 ERROR: status = -30
[ 1403.605110][ T5012] (syz.1.13729,5012,0):ocfs2_local_alloc_slide_window:1296 ERROR: status = -30
[ 1403.659927][ T5012] (syz.1.13729,5012,0):ocfs2_local_alloc_slide_window:1315 ERROR: status = -30
[ 1403.679154][ T5078] loop2: detected capacity change from 0 to 1024
[ 1403.718690][ T5012] (syz.1.13729,5012,0):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -30
[ 1403.760435][ T5012] (syz.1.13729,5012,0):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30
[ 1403.825388][ T5012] (syz.1.13729,5012,0):ocfs2_reserve_clusters_with_limit:1266 ERROR: status = -30
[ 1403.864915][ T5012] (syz.1.13729,5012,0):ocfs2_reserve_clusters_with_limit:1315 ERROR: status = -30
[ 1403.905591][ T5012] (syz.1.13729,5012,0):ocfs2_expand_inline_dir:2891 ERROR: status = -30
[ 1403.945545][ T5012] (syz.1.13729,5012,0):ocfs2_extend_dir:3238 ERROR: status = -30
[ 1403.979333][ T5012] (syz.1.13729,5012,0):ocfs2_prepare_dir_for_insert:4356 ERROR: status = -30
[ 1404.019310][ T5012] (syz.1.13729,5012,0):ocfs2_mknod:302 ERROR: status = -30
[ 1404.056909][ T5088] loop2: detected capacity change from 0 to 64
[ 1404.057924][ T5012] (syz.1.13729,5012,0):ocfs2_mknod:506 ERROR: status = -30
[ 1404.287224][ T6251] ocfs2: Unmounting device (7,1) on (node local)
[ 1404.556767][ T5099] loop3: detected capacity change from 0 to 256
[ 1404.577535][ T5099] exfat: Deprecated parameter 'namecase'
[ 1404.584422][ T5099] exfat: Deprecated parameter 'namecase'
[ 1404.585253][ T5094] Process accounting paused
[ 1404.591760][ T5099] exfat: Deprecated parameter 'utf8'
[ 1404.622592][ T5099] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1404.865630][ T5082] loop6: detected capacity change from 0 to 32768
[ 1404.892887][ T5082] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.13761 (5082)
[ 1404.968048][ T5082] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1405.012314][ T5082] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1405.155371][ T5082] BTRFS info (device loop6): enabling ssd optimizations
[ 1405.193311][ T5082] BTRFS info (device loop6): turning on async discard
[ 1405.228441][ T5082] BTRFS info (device loop6): enabling free space tree
[ 1405.275582][ T5128] netlink: 'syz.2.13777': attribute type 3 has an invalid length.
[ 1405.528030][T29879] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1405.838427][ T5144] loop3: detected capacity change from 0 to 2048
[ 1405.921408][ T5151] netlink: 9 bytes leftover after parsing attributes in process `syz.2.13787'.
[ 1405.976948][ T5154] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1406.037424][ T5155] openvswitch: netlink: IPv6 tunnel dst address is zero
[ 1406.216166][ T5154] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1406.270436][ T5154] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1406.313703][ T5154] Remounting filesystem read-only
[ 1406.347695][ T6256] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer
[ 1406.619691][ T5174] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1406.910503][ T5185] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13804'.
[ 1407.333174][ T5207] comedi comedi3: comedi_config --init_data is deprecated
[ 1407.641633][ T5214] bond4: option arp_validate: invalid value (2048)
[ 1407.688664][ T5214] bond4 (unregistering): Released all slaves
[ 1407.797949][ T5226] netlink: 820 bytes leftover after parsing attributes in process `syz.2.13824'.
[ 1407.832967][ T5226] netlink: 820 bytes leftover after parsing attributes in process `syz.2.13824'.
[ 1408.220068][ T5242] loop3: detected capacity change from 0 to 16
[ 1408.249984][ T5242] erofs (device loop3): mounted with root inode @ nid 36.
[ 1409.491800][ T5303] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13859'.
[ 1409.499515][ T5302] loop6: detected capacity change from 0 to 256
[ 1409.552485][ T5302] exfat: Deprecated parameter 'namecase'
[ 1409.589997][ T5302] exfat: Deprecated parameter 'namecase'
[ 1409.611561][ T5302] exfat: Deprecated parameter 'utf8'
[ 1409.710033][ T5302] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1409.786099][ T5311] hub 8-0:1.0: USB hub found
[ 1409.805694][ T5312] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1409.831147][ T5311] hub 8-0:1.0: 1 port detected
[ 1410.277358][ T5331] cgroup: Unexpected value for 'nofavordynmods'
[ 1410.404919][ T5333] loop6: detected capacity change from 0 to 1024
[ 1410.881083][T23463] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1411.001758][ T5353] pim6reg: entered allmulticast mode
[ 1411.311681][ T5369] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13891'.
[ 1411.553299][ T5384] loop1: detected capacity change from 0 to 128
[ 1411.562534][T26786] usb 4-1: new full-speed USB device number 82 using dummy_hcd
[ 1411.577571][ T5384] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[ 1411.742673][ T5391] loop5: detected capacity change from 0 to 256
[ 1411.759309][T26786] usb 4-1: config 0 has an invalid interface number: 110 but max is 0
[ 1411.789780][T26786] usb 4-1: config 0 has no interface number 0
[ 1411.799550][T26170] usb 3-1: new full-speed USB device number 78 using dummy_hcd
[ 1411.820365][T26786] usb 4-1: config 0 interface 110 altsetting 2 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1411.860090][T26786] usb 4-1: config 0 interface 110 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1411.885309][T26786] usb 4-1: config 0 interface 110 has no altsetting 0
[ 1411.917854][T26786] usb 4-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=af.55
[ 1411.960979][ T5397] loop1: detected capacity change from 0 to 512
[ 1411.961368][T26786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1411.983561][ T5397] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1412.004856][T26170] usb 3-1: config 0 has an invalid interface number: 70 but max is 0
[ 1412.016571][T26786] usb 4-1: Product: syz
[ 1412.029131][ T5397] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[ 1412.034385][T26170] usb 3-1: config 0 has no interface number 0
[ 1412.049063][T26786] usb 4-1: Manufacturer: syz
[ 1412.079100][T26786] usb 4-1: SerialNumber: syz
[ 1412.095946][T26170] usb 3-1: config 0 interface 70 altsetting 5 has a duplicate endpoint with address 0x6, skipping
[ 1412.107822][ T5397] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[ 1412.123303][T26170] usb 3-1: config 0 interface 70 altsetting 5 has an endpoint descriptor with address 0xE3, changing to 0x83
[ 1412.136713][T26170] usb 3-1: config 0 interface 70 altsetting 5 endpoint 0x83 has invalid maxpacket 42809, setting to 64
[ 1412.149618][T26786] usb 4-1: config 0 descriptor??
[ 1412.154837][T26170] usb 3-1: config 0 interface 70 altsetting 5 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[ 1412.172818][T26170] usb 3-1: config 0 interface 70 has no altsetting 0
[ 1412.174480][ T5397] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[ 1412.183106][T26170] usb 3-1: New USB device found, idVendor=110a, idProduct=1150, bcdDevice=55.9e
[ 1412.196939][T26170] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1412.213804][T26170] usb 3-1: Product: syz
[ 1412.218390][T26170] usb 3-1: Manufacturer: syz
[ 1412.223085][T26170] usb 3-1: SerialNumber: syz
[ 1412.230434][ T5397] System zones: 0-2, 18-18, 34-35
[ 1412.237025][T26170] usb 3-1: config 0 descriptor??
[ 1412.244045][ T5383] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1412.261421][ T5397] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1412.287444][ T5397] fscrypt (loop1, inode 12): Error -61 getting encryption context
[ 1412.296375][ T5404] loop6: detected capacity change from 0 to 2048
[ 1412.356682][ T5404] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1412.471400][ T6251] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1412.498061][   T30] audit: type=1800 audit(1780616298.343:359): pid=5404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.13906" name="file1" dev="loop6" ino=1367 res=0 errno=0
[ 1412.558977][T26170] ti_usb_3410_5052 3-1:0.70: TI USB 3410 1 port adapter converter detected
[ 1412.586852][T26170] usb 3-1: TI USB 3410 1 port adapter converter now attached to ttyUSB0
[ 1412.645310][T26170] usb 3-1: USB disconnect, device number 78
[ 1412.675615][T26786] usb 4-1: USB disconnect, device number 82
[ 1412.730534][T26170] ti_usb_3410_5052_1 ttyUSB0: TI USB 3410 1 port adapter converter now disconnected from ttyUSB0
[ 1412.776517][T26170] ti_usb_3410_5052 3-1:0.70: device disconnected
[ 1412.860672][ T5415] loop5: detected capacity change from 0 to 512
[ 1412.895745][ T5415] EXT4-fs: Ignoring removed nobh option
[ 1412.982440][ T5415] EXT4-fs error (device loop5): ext4_do_update_inode:5690: inode #3: comm syz.5.13912: corrupted inode contents
[ 1413.021275][ T5426] loop0: detected capacity change from 0 to 2048
[ 1413.034193][ T5415] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1413.035843][    C1] EXT4-fs (loop5): error count since last fsck: 1
[ 1413.051394][    C1] EXT4-fs (loop5): initial error at time 1780616298: ext4_do_update_inode:5690: inode 3
[ 1413.053176][ T5415] EXT4-fs (loop5): Remounting filesystem read-only
[ 1413.061198][    C1] EXT4-fs (loop5): last error at time 1780616298: ext4_do_update_inode:5690: inode 3
[ 1413.146605][ T5429] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1413.180535][ T5415] Quota error (device loop5): write_blk: dquota write failed
[ 1413.228085][ T5415] Quota error (device loop5): qtree_write_dquot: Error -30 occurred while creating quota
[ 1413.264983][ T5415] EXT4-fs (loop5): 1 truncate cleaned up
[ 1413.307901][ T5415] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1413.364430][ T5415] ext4 filesystem being mounted at /2155/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1413.396191][ T5429] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1413.444417][ T5415] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1413.456638][ T5429] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1413.511787][ T5429] Remounting filesystem read-only
[ 1413.532823][ T6249] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[ 1413.686808][ T5448] xfrm0: entered promiscuous mode
[ 1413.719748][ T5448] xfrm0: entered allmulticast mode
[ 1413.868903][ T5453] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes
[ 1414.168982][T26145] usb 2-1: new high-speed USB device number 73 using dummy_hcd
[ 1414.360668][T26145] usb 2-1: Using ep0 maxpacket: 8
[ 1414.380028][T26145] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 1536, setting to 64
[ 1414.412932][T26145] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1414.435973][T26145] usb 2-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[ 1414.463328][T26145] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1414.488814][T26145] usb 2-1: Product: syz
[ 1414.503029][T26145] usb 2-1: Manufacturer: syz
[ 1414.507770][ T5480] program syz.6.13937 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1414.524510][ T5481] loop5: detected capacity change from 0 to 256
[ 1414.524729][T26145] usb 2-1: SerialNumber: syz
[ 1414.551466][ T5481] exfat: Deprecated parameter 'namecase'
[ 1414.569040][T26145] usb 2-1: config 0 descriptor??
[ 1414.575651][ T5481] exfat: Deprecated parameter 'namecase'
[ 1414.602023][T26145] snd_usb_toneport 2-1:0.0: Line 6 TonePort UX2 found
[ 1414.602274][ T5481] exfat: Deprecated parameter 'utf8'
[ 1414.688518][ T5481] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1414.716543][ T5484] veth3: entered promiscuous mode
[ 1414.729053][ T5484] veth3: entered allmulticast mode
[ 1414.832481][T26145] snd_usb_toneport 2-1:0.0: Line 6 TonePort UX2 now disconnected
[ 1414.864407][T26145] snd_usb_toneport 2-1:0.0: probe with driver snd_usb_toneport failed with error -22
[ 1415.144722][T26145] usb 2-1: USB disconnect, device number 73
[ 1415.243739][ T5473] loop3: detected capacity change from 0 to 32768
[ 1415.280675][ T5473] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.13936 (5473)
[ 1415.339906][ T5500] loop5: detected capacity change from 0 to 512
[ 1415.361709][ T5473] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1415.381727][ T5500] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1415.408851][ T5473] BTRFS info (device loop3): using sha256 checksum algorithm
[ 1415.443736][ T5500] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.13946: inode #15: comm syz.5.13946: iget: illegal inode #
[ 1415.499732][ T5500] loop5: lost filesystem error report for type 5 error -117
[ 1415.500373][ T5500] EXT4-fs (loop5): Remounting filesystem read-only
[ 1415.513473][    C1] EXT4-fs (loop5): error count since last fsck: 1
[ 1415.521136][    C1] EXT4-fs (loop5): initial error at time 1780616301: ext4_orphan_get:1397
[ 1415.529735][    C1] EXT4-fs (loop5): last error at time 1780616301: ext4_orphan_get:1397
[ 1415.595487][ T5473] BTRFS info (device loop3): enabling ssd optimizations
[ 1415.609613][ T5473] BTRFS info (device loop3): turning on async discard
[ 1415.624026][ T5500] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1415.626434][ T5473] BTRFS info (device loop3): enabling free space tree
[ 1415.883692][ T6276] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1415.949423][ T6256] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1416.301123][ T5533] libceph: secret too big 289
[ 1416.537222][ T5538] loop6: detected capacity change from 0 to 512
[ 1416.731775][   T30] audit: type=1800 audit(1780616302.304:360): pid=5538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.13957" name="file2aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[ 1416.910409][ T5551] netlink: 'syz.2.13964': attribute type 1 has an invalid length.
[ 1417.220692][ T5559] loop5: detected capacity change from 0 to 1024
[ 1417.233934][ T5551] netlink: 60 bytes leftover after parsing attributes in process `syz.2.13964'.
[ 1417.368723][ T5563] loop0: detected capacity change from 0 to 64
[ 1417.559097][ T5567] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1417.608083][ T5569] netlink: 20 bytes leftover after parsing attributes in process `syz.5.13972'.
[ 1417.893993][ T5581] No such timeout policy "syz1"
[ 1417.943658][ T5585] loop0: detected capacity change from 0 to 64
[ 1418.166139][ T5591] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13983'.
[ 1418.192282][ T5591] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13983'.
[ 1418.233727][ T5591] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13983'.
[ 1418.284041][ T5557] loop6: detected capacity change from 0 to 32768
[ 1418.324422][ T5557] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.13965 (5557)
[ 1418.394716][ T5557] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1418.437044][ T5557] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1418.563649][ T5619] netlink: 'syz.0.13989': attribute type 1 has an invalid length.
[ 1418.593566][ T5557] BTRFS info (device loop6): enabling ssd optimizations
[ 1418.647436][ T5557] BTRFS info (device loop6): turning on async discard
[ 1418.683417][ T5557] BTRFS info (device loop6): enabling free space tree
[ 1418.819345][   T30] audit: type=1326 audit(1780616304.261:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5627 comm="syz.1.13993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511ff9ce59 code=0x7ffc0000
[ 1418.940219][ T5635] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.13996'.
[ 1418.948303][   T30] audit: type=1326 audit(1780616304.261:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5627 comm="syz.1.13993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511ff9ce59 code=0x7ffc0000
[ 1419.033650][T29879] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1419.071066][   T30] audit: type=1326 audit(1780616304.261:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5627 comm="syz.1.13993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511ff9ce59 code=0x7ffc0000
[ 1419.170839][   T30] audit: type=1326 audit(1780616304.261:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5627 comm="syz.1.13993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511ff9ce59 code=0x7ffc0000
[ 1419.208167][ T5633] loop5: detected capacity change from 0 to 4096
[ 1419.234664][ T5633] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[ 1419.257089][   T30] audit: type=1326 audit(1780616304.261:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5627 comm="syz.1.13993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f511ff9ce59 code=0x7ffc0000
[ 1419.287074][   T30] audit: type=1326 audit(1780616304.261:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5627 comm="syz.1.13993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f511ff9ce59 code=0x7ffc0000
[ 1419.312746][T26786] usb 4-1: new high-speed USB device number 83 using dummy_hcd
[ 1419.323213][   T30] audit: type=1326 audit(1780616304.261:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5627 comm="syz.1.13993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f511ff9ce59 code=0x7ffc0000
[ 1419.334055][ T5633] ntfs3(loop5): ino=b, mi_enum_attr
[ 1419.348876][   T30] audit: type=1326 audit(1780616304.261:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5627 comm="syz.1.13993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f511ff9ce59 code=0x7ffc0000
[ 1419.391195][ T5633] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1419.424539][ T5633] ntfs3(loop5): Failed to load $Extend (-22).
[ 1419.434224][ T5633] ntfs3(loop5): Failed to initialize $Extend.
[ 1419.483795][T26786] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1419.509415][T26786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1419.560542][T26786] usb 4-1: Product: syz
[ 1419.589843][T26786] usb 4-1: Manufacturer: syz
[ 1419.615211][T26786] usb 4-1: SerialNumber: syz
[ 1419.663579][T26786] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1419.675771][    T9] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1420.846651][ T5658] loop5: detected capacity change from 0 to 4096
[ 1421.081209][ T5658] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1421.100873][ T5644] loop2: detected capacity change from 0 to 32768
[ 1421.130071][ T5658] ntfs3(loop5): Failed to load $Extend (-22).
[ 1421.158911][ T5646] loop1: detected capacity change from 0 to 32768
[ 1421.191116][ T5658] ntfs3(loop5): Failed to initialize $Extend.
[ 1421.226517][ T5646] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.14002 (5646)
[ 1421.442018][ T5646] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1421.486439][ T5644] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1421.566792][ T5646] BTRFS info (device loop1): using sha256 checksum algorithm
[ 1421.752218][ T5644] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50.
[ 1421.772181][ T6276] ntfs3(loop5): ino=9, ntfs_sync_fs failed, -22.
[ 1421.946462][ T5646] BTRFS info (device loop1): enabling ssd optimizations
[ 1421.994428][ T5644] XFS (loop2): Tail block (0x29) overwrite detected. Updated to 0x30
[ 1422.054302][ T5646] BTRFS info (device loop1): turning on async discard
[ 1422.129873][ T5646] BTRFS info (device loop1): enabling free space tree
[ 1422.171863][ T5644] XFS (loop2): Ending clean mount
[ 1422.223839][T26786] usb 4-1: USB disconnect, device number 83
[ 1422.239146][    T9] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[ 1422.257530][    T9] ath9k_htc: Failed to initialize the device
[ 1422.293240][T26786] usb 4-1: ath9k_htc: USB layer deinitialized
[ 1422.352309][ T5644] XFS (loop2): Metadata corruption detected at xfs_dinode_verify.part.0+0xa7c/0x16d0, inode 0x1803 dinode
[ 1422.407983][ T5644] XFS (loop2): Unmount and run xfs_repair
[ 1422.457411][ T5644] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[ 1422.495911][ T5644] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00  INA.............
[ 1422.534050][ T5644] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1422.573257][ T5644] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 e2 bf 3d  4.Xh....4.Xh...=
[ 1422.611660][ T5644] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20  4.Xh...=....... 
[ 1422.658213][ T5644] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1422.699828][ T5644] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 ca e6 3d c1  ..............=.
[ 1422.725291][ T5644] 00000060: ff ff ff ff 6e d0 e3 2d 00 00 00 00 00 00 00 04  ....n..-........
[ 1422.762392][ T5644] 00000070: 00 00 00 03 00 00 00 10 00 00 00 00 00 00 00 06  ................
[ 1422.786504][ T6251] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1422.820912][ T5661] loop0: detected capacity change from 0 to 32768
[ 1422.848132][ T5661] BTRFS info: device /dev/loop0 (7:0) using temp-fsid aef80cac-8eca-4a0d-b014-0b0f9f8f6506
[ 1422.866109][ T5662] loop6: detected capacity change from 0 to 32768
[ 1422.910942][ T5661] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.14008 (5661)
[ 1422.957451][ T6250] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1422.999913][ T5662] BTRFS info: device /dev/loop6 (7:6) using temp-fsid efa383dc-fdad-4ddd-9478-6ea3b5ba1b3f
[ 1423.018009][ T5661] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1423.033160][ T5662] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.14009 (5662)
[ 1423.050291][ T5661] BTRFS info (device loop0): using sha256 checksum algorithm
[ 1423.119809][ T5662] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1423.207064][ T5662] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1423.352570][ T5661] BTRFS info (device loop0): enabling ssd optimizations
[ 1423.366424][ T5662] BTRFS info (device loop6): enabling ssd optimizations
[ 1423.384285][ T5662] BTRFS info (device loop6): turning on async discard
[ 1423.395071][ T5662] BTRFS info (device loop6): enabling free space tree
[ 1423.420682][ T5661] BTRFS info (device loop0): turning on async discard
[ 1423.460195][ T5661] BTRFS info (device loop0): enabling free space tree
[ 1423.596385][ T5661] BTRFS error: failed to open device for path  with flags 0x1: -2
[ 1423.663143][T29879] BTRFS info (device loop6): last unmount of filesystem efa383dc-fdad-4ddd-9478-6ea3b5ba1b3f
[ 1423.712590][ T5686] loop3: detected capacity change from 0 to 32768
[ 1423.845983][ T6249] BTRFS info (device loop0): last unmount of filesystem aef80cac-8eca-4a0d-b014-0b0f9f8f6506
[ 1423.889730][ T5686] add_index: next_index = 0.  Resetting!
[ 1424.244301][ T5691] loop5: detected capacity change from 0 to 32768
[ 1424.363413][ T5691] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1424.556160][ T5691] XFS (loop5): Ending clean mount
[ 1424.624619][ T5747] ip6gre1: entered promiscuous mode
[ 1424.667004][ T5747] ip6gre1: entered allmulticast mode
[ 1424.849453][ T6276] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1425.371343][ T5753] vxcan5: entered promiscuous mode
[ 1425.417616][ T5753] vxcan5: entered allmulticast mode
[ 1425.697080][ T5728] loop6: detected capacity change from 0 to 32768
[ 1425.761223][ T5728] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.14016 (5728)
[ 1425.811875][ T5728] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1425.851882][ T5765] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1425.864749][ T5728] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1426.111289][ T5728] BTRFS info (device loop6): enabling ssd optimizations
[ 1426.182840][ T5728] BTRFS info (device loop6): turning on async discard
[ 1426.225961][ T5728] BTRFS info (device loop6): enabling free space tree
[ 1426.350271][ T5730] loop2: detected capacity change from 0 to 40427
[ 1426.396906][ T5730] F2FS-fs (loop2): invalid crc value
[ 1426.549814][T29879] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1426.778894][ T5730] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 1426.857938][ T5808] loop1: detected capacity change from 0 to 512
[ 1426.889558][ T5730] F2FS-fs (loop2): Start checkpoint disabled!
[ 1426.905025][ T5808] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1427.010754][ T5808] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4221: comm syz.1.14044: Allocating blocks 41-42 which overlap fs metadata
[ 1427.059091][T26146] usb 6-1: new high-speed USB device number 89 using dummy_hcd
[ 1427.059586][ T5808] loop1: lost filesystem error report for type 5 error -117
[ 1427.084827][ T5730] F2FS-fs (loop2): f2fs_disable_checkpoint() finish, err:0
[ 1427.114521][ T5730] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1427.127610][ T5808] EXT4-fs (loop1): Remounting filesystem read-only
[ 1427.134347][    C0] EXT4-fs (loop1): error count since last fsck: 1
[ 1427.134378][    C0] EXT4-fs (loop1): initial error at time 1780616312: ext4_mb_mark_diskspace_used:4221
[ 1427.134420][    C0] EXT4-fs (loop1): last error at time 1780616312: ext4_mb_mark_diskspace_used:4221
[ 1427.243979][T26146] usb 6-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1427.247673][ T5808] Quota error (device loop1): write_blk: dquota write failed
[ 1427.294905][T26146] usb 6-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[ 1427.299758][ T5819] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1427.327343][ T5808] Quota error (device loop1): find_free_dqentry: Can't write quota data block 5
[ 1427.342171][T26146] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1427.381454][ T5808] Quota error (device loop1): write_blk: dquota write failed
[ 1427.415662][T26146] gspca_main: stv0680-2.14.0 probing 041e:4007
[ 1427.447493][ T5808] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[ 1427.482018][ T5823] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.14048'.
[ 1427.508121][ T5808] EXT4-fs (loop1): 1 truncate cleaned up
[ 1427.535558][ T5808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1427.856548][ T6251] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1427.958470][ T5833] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1428.518635][ T5849] vxcan5: entered promiscuous mode
[ 1428.533434][ T5849] vxcan5: entered allmulticast mode
[ 1428.804487][T26146] gspca_stv0680: usb_control_msg error 2, request = 0x6, error = -71
[ 1428.831211][T26146] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[ 1428.860494][T26146] stv0680 6-1:4.0: last error: 86,  command = 0x78
[ 1428.891220][ T5864] loop2: detected capacity change from 0 to 512
[ 1428.897694][T26146] usb 6-1: USB disconnect, device number 89
[ 1428.926066][ T5864] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1428.951253][ T5858] loop6: detected capacity change from 0 to 4096
[ 1428.977101][ T5858] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512).
[ 1429.030807][ T5864] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4221: comm syz.2.14068: Allocating blocks 41-42 which overlap fs metadata
[ 1429.111202][ T5864] loop2: lost filesystem error report for type 5 error -117
[ 1429.116932][ T5864] EXT4-fs (loop2): Remounting filesystem read-only
[ 1429.124296][    C1] EXT4-fs (loop2): error count since last fsck: 1
[ 1429.124328][    C1] EXT4-fs (loop2): initial error at time 1780616313: ext4_mb_mark_diskspace_used:4221
[ 1429.124371][    C1] EXT4-fs (loop2): last error at time 1780616313: ext4_mb_mark_diskspace_used:4221
[ 1429.148978][ T5858] ntfs3(loop6): ino=b, mi_enum_attr
[ 1429.157468][ T5864] Quota error (device loop2): write_blk: dquota write failed
[ 1429.170462][ T5864] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[ 1429.180668][ T5864] Quota error (device loop2): write_blk: dquota write failed
[ 1429.188561][ T5858] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1429.191201][ T5872] Bluetooth: hci0: Opcode 0x0401 failed: -22
[ 1429.208902][ T5864] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[ 1429.220216][ T5858] ntfs3(loop6): Failed to load $Extend (-22).
[ 1429.233968][ T5858] ntfs3(loop6): Failed to initialize $Extend.
[ 1429.245481][ T5864] EXT4-fs (loop2): 1 truncate cleaned up
[ 1429.279973][ T5864] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1429.429255][ T5876] loop0: detected capacity change from 0 to 512
[ 1429.509008][   T30] audit: type=1800 audit(1780616314.270:369): pid=5876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.14073" name="file2aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[ 1429.513950][ T5879] loop3: detected capacity change from 0 to 256
[ 1429.680260][ T6250] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1429.770225][ T5879] exfat: Deprecated parameter 'utf8'
[ 1429.846771][ T5879] exfat: Deprecated parameter 'namecase'
[ 1429.861537][ T5879] exfat: Deprecated parameter 'namecase'
[ 1429.897614][ T5879] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1430.017592][ T5891] vxcan3: entered promiscuous mode
[ 1430.060154][ T5891] vxcan3: entered allmulticast mode
[ 1430.402394][ T5904] openvswitch: netlink: Geneve option length err (len 256, max 255).
[ 1430.685824][ T5916] loop5: detected capacity change from 0 to 512
[ 1430.781687][   T30] audit: type=1800 audit(1780616315.468:370): pid=5916 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.14093" name="file2aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[ 1431.138327][ T5932] netlink: 'syz.2.14101': attribute type 10 has an invalid length.
[ 1431.274710][ T5932] netlink: 55 bytes leftover after parsing attributes in process `syz.2.14101'.
[ 1431.407780][ T5938] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14104'.
[ 1431.730257][ T5950] loop1: detected capacity change from 0 to 128
[ 1431.764684][ T5950] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1431.774089][ T5952] openvswitch: netlink: Unknown VXLAN extension attribute 0
[ 1431.790914][ T5950] ext4 filesystem being mounted at /2285/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1431.821989][ T5945] loop3: detected capacity change from 0 to 4096
[ 1431.915652][ T5945] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1431.992947][ T5945] ntfs3(loop3): ino=19, mi_enum_attr
[ 1432.051463][ T6251] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1432.195039][ T5970] netlink: 44 bytes leftover after parsing attributes in process `syz.0.14118'.
[ 1432.203678][ T5968] loop2: detected capacity change from 0 to 256
[ 1432.252026][ T5968] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x52c1951d, utbl_chksum : 0xe619d30d)
[ 1432.315210][ T5974] xt_TCPMSS: Only works on TCP SYN packets
[ 1432.616926][ T5982] loop1: detected capacity change from 0 to 764
[ 1432.661053][ T5982] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1432.706433][ T5982] Symlink component flag not implemented
[ 1432.730584][T26144] usb 6-1: new high-speed USB device number 90 using dummy_hcd
[ 1432.757146][ T5982] Symlink component flag not implemented (7)
[ 1432.937335][T26144] usb 6-1: Using ep0 maxpacket: 32
[ 1432.958798][T26144] usb 6-1: New USB device found, idVendor=084f, idProduct=0001, bcdDevice=e0.b8
[ 1432.991086][T26144] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1433.039088][T26144] usb 6-1: Product: syz
[ 1433.058884][T26144] usb 6-1: Manufacturer: syz
[ 1433.081008][T26144] usb 6-1: SerialNumber: syz
[ 1433.123041][T26144] empeg 6-1:1.0: empeg converter detected
[ 1433.370298][T26144] usb 6-1: empeg converter now attached to ttyUSB0
[ 1433.615072][T26144] usb 6-1: USB disconnect, device number 90
[ 1433.639706][T26144] empeg ttyUSB0: empeg converter now disconnected from ttyUSB0
[ 1433.659732][T26145] usb 2-1: new full-speed USB device number 74 using dummy_hcd
[ 1433.674734][T26144] empeg 6-1:1.0: device disconnected
[ 1433.876805][T26145] usb 2-1: not running at top speed; connect to a high speed hub
[ 1433.906860][T26145] usb 2-1: config 11 has an invalid interface number: 95 but max is 0
[ 1433.941459][T26145] usb 2-1: config 11 has no interface number 0
[ 1433.962085][T26145] usb 2-1: config 11 interface 95 altsetting 64 has an endpoint descriptor with address 0xC6, changing to 0x86
[ 1434.005503][T26145] usb 2-1: config 11 interface 95 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[ 1434.035583][T26145] usb 2-1: config 11 interface 95 has no altsetting 0
[ 1434.056636][T26145] usb 2-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=b1.4d
[ 1434.077810][T26145] usb 2-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0
[ 1434.097291][T26145] usb 2-1: Manufacturer: syz
[ 1434.111313][ T6008] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[ 1434.335568][ T6040] comedi comedi2: dt2815: I/O base address or length out of range
[ 1434.428671][T26145] usb 2-1: USB disconnect, device number 74
[ 1434.464989][ T6046] loop5: detected capacity change from 0 to 1764
[ 1434.555281][ T6046] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1434.783636][ T6056] vxcan5: entered promiscuous mode
[ 1434.815155][ T6056] vxcan5: entered allmulticast mode
[ 1435.107622][ T6072] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14168'.
[ 1435.113959][    T9] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[ 1435.313362][    T9] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1435.334817][    T9] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1435.340193][ T6080] loop5: detected capacity change from 0 to 1024
[ 1435.351311][T26786] usb 1-1: new full-speed USB device number 86 using dummy_hcd
[ 1435.366581][    T9] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1435.404731][    T9] usb 7-1: string descriptor 0 read error: -22
[ 1435.427894][    T9] usb 7-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40
[ 1435.465197][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1435.526466][    T9] usb 7-1: selecting invalid altsetting 1
[ 1435.526757][T26786] usb 1-1: config 5 has an invalid interface number: 123 but max is 0
[ 1435.541471][    T9] usb 7-1: unit 3 not found!
[ 1435.569962][T26786] usb 1-1: config 5 has no interface number 0
[ 1435.570071][T26786] usb 1-1: config 5 interface 123 altsetting 7 has an endpoint descriptor with address 0xEB, changing to 0x8B
[ 1435.570118][T26786] usb 1-1: config 5 interface 123 altsetting 7 endpoint 0x5 has invalid maxpacket 512, setting to 64
[ 1435.570193][T26786] usb 1-1: config 5 interface 123 has no altsetting 0
[ 1435.573800][T26786] usb 1-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[ 1435.573882][T26786] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1435.573920][T26786] usb 1-1: Product: syz
[ 1435.573947][T26786] usb 1-1: Manufacturer: syz
[ 1435.573975][T26786] usb 1-1: SerialNumber: syz
[ 1435.584063][ T6068] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1435.758296][    T9] usb 7-1: unit 0 not found!
[ 1435.861009][T26786] comedi comedi4: driver 'ni6501' has successfully auto-configured 'ni6501'.
[ 1435.968290][T26786] usb 1-1: USB disconnect, device number 86
[ 1436.065460][    T9] usb 7-1: USB disconnect, device number 11
[ 1436.286107][ T6078] loop3: detected capacity change from 0 to 32768
[ 1436.473233][ T6104] loop5: detected capacity change from 0 to 512
[ 1436.497700][ T6104] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1436.570441][ T6104] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4221: comm syz.5.14183: Allocating blocks 41-42 which overlap fs metadata
[ 1436.656471][ T6104] loop5: lost filesystem error report for type 5 error -117
[ 1436.657902][ T6110] loop2: detected capacity change from 0 to 16
[ 1436.660554][    C0] EXT4-fs (loop5): error count since last fsck: 1
[ 1436.677818][    C0] EXT4-fs (loop5): initial error at time 1780616320: ext4_mb_mark_diskspace_used:4221
[ 1436.687416][    C0] EXT4-fs (loop5): last error at time 1780616320: ext4_mb_mark_diskspace_used:4221
[ 1436.723401][ T6104] EXT4-fs (loop5): Remounting filesystem read-only
[ 1436.768798][ T6110] erofs (device loop2): mounted with root inode @ nid 36.
[ 1436.782644][ T6104] Quota error (device loop5): write_blk: dquota write failed
[ 1436.803917][ T6110] syz.2.14186: attempt to access beyond end of device
[ 1436.803917][ T6110] loop2: rw=524288, sector=8, nr_sectors = 24 limit=16
[ 1436.829643][ T6104] Quota error (device loop5): find_free_dqentry: Can't write quota data block 5
[ 1436.863862][ T6110] erofs (device loop2): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096
[ 1436.874557][ T6117] loop6: detected capacity change from 0 to 64
[ 1436.891897][ T6104] Quota error (device loop5): write_blk: dquota write failed
[ 1436.912579][ T6110] erofs (device loop2): read error -117 @ 0 of nid 89
[ 1436.931265][ T6104] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[ 1436.942562][   T30] audit: type=1800 audit(1780616321.236:371): pid=6110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.14186" name="file2" dev="loop2" ino=89 res=0 errno=0
[ 1436.987798][ T6104] EXT4-fs (loop5): 1 truncate cleaned up
[ 1437.024336][ T6104] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1437.073313][ T6108] Process accounting resumed
[ 1437.133830][ T6120] loop3: detected capacity change from 0 to 256
[ 1437.250283][ T6123] syz.1.14204 (6123): /proc/6122/oom_adj is deprecated, please use /proc/6122/oom_score_adj instead.
[ 1437.362532][ T6276] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1437.620914][ T6137] Unsupported ieee802154 address type: 0
[ 1437.804673][ T6140] loop5: detected capacity change from 0 to 256
[ 1437.853523][ T6143] netlink: 'syz.1.14201': attribute type 10 has an invalid length.
[ 1437.908464][ T6140] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[ 1438.222862][ T6157] loop3: detected capacity change from 0 to 64
[ 1438.555661][ T6169] loop2: detected capacity change from 0 to 256
[ 1438.592557][ T6169] exfat: Deprecated parameter 'utf8'
[ 1438.604565][ T6169] exfat: Deprecated parameter 'namecase'
[ 1438.637553][ T6169] exfat: Deprecated parameter 'namecase'
[ 1438.704325][ T6169] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1438.921655][ T6186] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[ 1439.026065][ T6188] loop2: detected capacity change from 0 to 64
[ 1439.189900][ T6195] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[ 1439.256307][ T6196] loop6: detected capacity change from 0 to 1764
[ 1439.500402][ T6206] loop5: detected capacity change from 0 to 16
[ 1439.526345][ T6206] erofs (device loop5): mounted with root inode @ nid 36.
[ 1440.090606][ T6228] loop3: detected capacity change from 0 to 512
[ 1440.110697][ T6237] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[ 1440.127007][ T6228] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1440.241444][ T6228] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4221: comm syz.3.14242: Allocating blocks 41-42 which overlap fs metadata
[ 1440.272039][ T6228] loop3: lost filesystem error report for type 5 error -117
[ 1440.272461][ T6228] EXT4-fs (loop3): Remounting filesystem read-only
[ 1440.282599][ T6247] netlink: 'syz.2.14247': attribute type 10 has an invalid length.
[ 1440.286359][    C0] EXT4-fs (loop3): error count since last fsck: 1
[ 1440.294327][ T6247] netlink: 228 bytes leftover after parsing attributes in process `syz.2.14247'.
[ 1440.300570][    C0] EXT4-fs (loop3): initial error at time 1780616324: ext4_mb_mark_diskspace_used:4221
[ 1440.319239][    C0] EXT4-fs (loop3): last error at time 1780616324: ext4_mb_mark_diskspace_used:4221
[ 1440.353687][ T6228] Quota error (device loop3): write_blk: dquota write failed
[ 1440.368627][ T6228] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5
[ 1440.381101][ T6228] Quota error (device loop3): write_blk: dquota write failed
[ 1440.414575][ T6228] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[ 1440.462385][ T6228] EXT4-fs (loop3): 1 truncate cleaned up
[ 1440.523078][ T6228] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1440.574406][ T6260] netlink: 24 bytes leftover after parsing attributes in process `syz.2.14250'.
[ 1440.852069][ T6256] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1440.863912][ T6268] netlink: 4 bytes leftover after parsing attributes in process `syz.6.14255'.
[ 1440.956717][ T6278] usb usb9: usbfs: process 6278 (syz.0.14260) did not claim interface 0 before use
[ 1441.188232][ T6283] netlink: 'syz.6.14262': attribute type 21 has an invalid length.
[ 1441.720635][ T6307] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1441.734474][ T6308] loop6: detected capacity change from 0 to 512
[ 1441.772168][ T6308] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1441.781633][ T6307] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1441.854750][ T6308] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4221: comm syz.6.14272: Allocating blocks 41-42 which overlap fs metadata
[ 1441.904038][ T6316] loop1: detected capacity change from 0 to 128
[ 1441.940426][ T6308] loop6: lost filesystem error report for type 5 error -117
[ 1441.944898][ T6308] EXT4-fs (loop6): Remounting filesystem read-only
[ 1441.952286][    C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1441.952319][    C1] EXT4-fs (loop6): initial error at time 1780616325: ext4_mb_mark_diskspace_used:4221
[ 1441.952364][    C1] EXT4-fs (loop6): last error at time 1780616325: ext4_mb_mark_diskspace_used:4221
[ 1442.001229][ T6308] Quota error (device loop6): write_blk: dquota write failed
[ 1442.008659][ T6316] FAT-fs (loop1): bogus sectors per cluster 7
[ 1442.022359][ T6316] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[ 1442.068352][ T6308] EXT4-fs (loop6): 1 truncate cleaned up
[ 1442.068742][ T6320] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[ 1442.081073][ T6316] FAT-fs (loop1): Can't find a valid FAT filesystem
[ 1442.112285][ T6310] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1442.131240][ T6308] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1442.251558][ T6249] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1442.283360][T29879] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1442.526749][T26786] usb 2-1: new high-speed USB device number 75 using dummy_hcd
[ 1442.718219][T26786] usb 2-1: Using ep0 maxpacket: 8
[ 1442.730864][T26786] usb 2-1: config 0 has an invalid descriptor of length 179, skipping remainder of the config
[ 1442.764552][T26786] usb 2-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=5f.0e
[ 1442.804276][T26786] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1442.838722][T26786] usb 2-1: config 0 descriptor??
[ 1442.870542][T26786] rndis_host 2-1:0.0: missing cdc header descriptor
[ 1442.884276][ T6373] set_capacity_and_notify: 2 callbacks suppressed
[ 1442.884300][ T6373] loop5: detected capacity change from 0 to 4096
[ 1442.900889][T26786] cdc_acm 2-1:0.0: Control and data interfaces are not separated!
[ 1442.909411][T26786] cdc_acm 2-1:0.0: This needs exactly 3 endpoints
[ 1442.917496][ T6373] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[ 1442.927135][T26786] cdc_acm 2-1:0.0: probe with driver cdc_acm failed with error -22
[ 1442.962620][    T9] usb 3-1: new high-speed USB device number 79 using dummy_hcd
[ 1443.010432][ T6373] ntfs3(loop5): ino=3, ntfs_set_state failed, -22.
[ 1443.019111][   T30] kauditd_printk_skb: 3 callbacks suppressed
[ 1443.019135][   T30] audit: type=1326 audit(1780616326.919:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6378 comm="syz.3.14288" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1443.055989][ T6373] ntfs3(loop5): Failed to initialize $Extend/$Reparse.
[ 1443.130545][T26144] usb 2-1: USB disconnect, device number 75
[ 1443.148567][   T30] audit: type=1326 audit(1780616326.919:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6378 comm="syz.3.14288" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1443.184258][    T9] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1443.214017][    T9] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[ 1443.234395][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1443.246562][   T30] audit: type=1326 audit(1780616326.929:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6378 comm="syz.3.14288" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1443.289309][  T134] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22.
[ 1443.301719][ T6276] ntfs3(loop5): ino=3, ntfs_set_state failed, -22.
[ 1443.314723][    T9] gspca_main: stv0680-2.14.0 probing 041e:4007
[ 1443.323273][ T6276] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1443.331567][ T6276] ntfs3(loop5): ino=3, ntfs_set_state failed, -22.
[ 1443.338416][   T30] audit: type=1326 audit(1780616326.929:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6378 comm="syz.3.14288" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dbab9ce59 code=0x7ffc0000
[ 1443.342248][ T6407] loop0: detected capacity change from 0 to 128
[ 1443.376589][T23463] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22.
[ 1443.493011][ T6409] loop5: detected capacity change from 0 to 256
[ 1443.602496][ T6409] FAT-fs (loop5): Directory bread(block 64) failed
[ 1443.635301][ T6409] FAT-fs (loop5): Directory bread(block 65) failed
[ 1443.665082][ T6409] FAT-fs (loop5): Directory bread(block 66) failed
[ 1443.681054][ T6409] FAT-fs (loop5): Directory bread(block 67) failed
[ 1443.703190][ T6409] FAT-fs (loop5): Directory bread(block 68) failed
[ 1443.728541][ T6409] FAT-fs (loop5): Directory bread(block 69) failed
[ 1443.759407][ T6409] FAT-fs (loop5): Directory bread(block 70) failed
[ 1443.796068][ T6409] FAT-fs (loop5): Directory bread(block 71) failed
[ 1443.831675][ T6409] FAT-fs (loop5): Directory bread(block 72) failed
[ 1443.856673][ T6409] FAT-fs (loop5): Directory bread(block 73) failed
[ 1443.870187][T26786] usb 4-1: new high-speed USB device number 84 using dummy_hcd
[ 1444.051558][T26786] usb 4-1: Using ep0 maxpacket: 32
[ 1444.068354][T26786] usb 4-1: config 0 has an invalid interface number: 35 but max is 0
[ 1444.089135][T26786] usb 4-1: config 0 has no interface number 0
[ 1444.103920][T26786] usb 4-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1444.127522][T26786] usb 4-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1444.159714][T26786] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[ 1444.179670][T26786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1444.213119][T26786] usb 4-1: Product: syz
[ 1444.236900][T26786] usb 4-1: Manufacturer: syz
[ 1444.254875][T26786] usb 4-1: SerialNumber: syz
[ 1444.292622][T26786] usb 4-1: config 0 descriptor??
[ 1444.402126][    T9] stv0680 3-1:4.0: STV(e): camera ping failed!!
[ 1444.545732][T26786] radio-si470x 4-1:0.35: this is not a si470x device.
[ 1444.619746][    T9] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[ 1444.652442][    T9] stv0680 3-1:4.0: last error: 86,  command = 0x0
[ 1444.685923][    T9] usb 3-1: USB disconnect, device number 79
[ 1444.704461][ T6443] loop6: detected capacity change from 0 to 1764
[ 1444.760359][T26786] radio-raremono 4-1:0.35: this is not Thanko's Raremono.
[ 1444.799800][T26786] usb 4-1: USB disconnect, device number 84
[ 1444.815422][ T6447] kAFS: unable to lookup cell ''
[ 1444.823821][ T6445] loop5: detected capacity change from 0 to 2048
[ 1444.882229][ T6448] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1445.046438][   T30] audit: type=1326 audit(1780616328.829:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.6.14315" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5959ce59 code=0x7ffc0000
[ 1445.098846][ T6448] NILFS (loop5): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1445.128431][   T30] audit: type=1326 audit(1780616328.848:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.6.14315" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5959ce59 code=0x7ffc0000
[ 1445.131365][ T6448] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1445.193734][   T30] audit: type=1326 audit(1780616328.857:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.6.14315" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5959ce59 code=0x7ffc0000
[ 1445.258725][ T6454] netlink: 'syz.6.14318': attribute type 8 has an invalid length.
[ 1445.269228][ T6448] Remounting filesystem read-only
[ 1445.275701][   T30] audit: type=1326 audit(1780616328.857:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.6.14315" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5959ce59 code=0x7ffc0000
[ 1445.364922][ T6276] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer
[ 1445.379016][   T30] audit: type=1326 audit(1780616328.857:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.6.14315" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f3e5959ce59 code=0x7ffc0000
[ 1445.502093][   T30] audit: type=1326 audit(1780616328.857:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.6.14315" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5959ce59 code=0x7ffc0000
[ 1445.660117][ T6465] program syz.3.14323 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1446.177295][ T6483] loop6: detected capacity change from 0 to 512
[ 1446.231564][ T6483] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1446.254149][ T6483] ext4 filesystem being mounted at /647/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1446.322061][T29879] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1447.048507][ T6510] loop2: detected capacity change from 0 to 64
[ 1447.065033][ T6510] Trying to free block not in datazone
[ 1447.384387][ T6519] loop2: detected capacity change from 0 to 64
[ 1447.509895][ T6521] loop6: detected capacity change from 0 to 4096
[ 1447.539751][ T6521] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512).
[ 1447.606112][ T6521] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[ 1448.080606][ T6533] loop2: detected capacity change from 0 to 16
[ 1448.120732][ T6533] erofs (device loop2): mounted with root inode @ nid 36.
[ 1449.855295][ T6544] openvswitch: netlink: IP tunnel TTL not specified.
[ 1449.973527][ T6545] bond0 (unregistering): Released all slaves
[ 1449.998493][ T6554] netlink: 'syz.0.14364': attribute type 1 has an invalid length.
[ 1450.893477][ T6582] loop5: detected capacity change from 0 to 4096
[ 1450.939330][ T6588] netlink: 'syz.2.14380': attribute type 7 has an invalid length.
[ 1450.958842][ T6588] netlink: 'syz.2.14380': attribute type 8 has an invalid length.
[ 1451.006693][ T6582] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1451.218026][ T6600] netlink: 'syz.0.14396': attribute type 1 has an invalid length.
[ 1451.281557][ T6276] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1451.332311][ T6603] No source specified
[ 1451.352251][ T6605] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1451.547276][ T6611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14390'.
[ 1452.118478][ T6628] loop0: detected capacity change from 0 to 4096
[ 1452.170145][ T6628] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 1452.301963][ T6628] ntfs3(loop0): ino=19, mi_enum_attr
[ 1452.302007][ T6628] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1452.304444][ T6628] ntfs3(loop0): ino=18, mi_enum_attr
[ 1452.472218][ T6640] loop6: detected capacity change from 0 to 4096
[ 1452.510567][ T6640] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[ 1452.648467][ T6640] ntfs3(loop6): ino=3, ntfs_set_state failed, -22.
[ 1452.686423][ T6640] ntfs3(loop6): Failed to initialize $Extend/$Reparse.
[ 1452.967092][T23485] ntfs3(loop6): ino=3, ntfs3_write_inode failed, -22.
[ 1453.002808][ T6664] loop1: detected capacity change from 0 to 24
[ 1453.016347][T29879] ntfs3(loop6): ino=3, ntfs_set_state failed, -22.
[ 1453.039850][ T6664] MTD: Attempt to mount non-MTD device "/dev/loop1"
[ 1453.051412][T29879] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1453.098050][ T6664] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1453.105667][T29879] ntfs3(loop6): ino=3, ntfs_set_state failed, -22.
[ 1453.127954][T23485] ntfs3(loop6): ino=3, ntfs3_write_inode failed, -22.
[ 1453.315669][ T6671] program syz.2.14421 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1453.393699][ T6676] loop6: detected capacity change from 0 to 64
[ 1453.465583][ T6676] Trying to free block not in datazone
[ 1453.579746][ T6683] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14426'.
[ 1453.654880][T26145] usb 1-1: new high-speed USB device number 87 using dummy_hcd
[ 1453.731944][ T6687] loop3: detected capacity change from 0 to 64
[ 1453.850146][T26145] usb 1-1: New USB device found, idVendor=0fc5, idProduct=1227, bcdDevice=da.8e
[ 1453.887376][T26145] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1453.928690][T26145] usb 1-1: Product: syz
[ 1453.942226][T26145] usb 1-1: Manufacturer: syz
[ 1453.954677][T26145] usb 1-1: SerialNumber: syz
[ 1453.989117][T26145] usb 1-1: config 0 descriptor??
[ 1454.007571][T26145] hub 1-1:0.0: bad descriptor, ignoring hub
[ 1454.026784][T26145] hub 1-1:0.0: probe with driver hub failed with error -5
[ 1454.053719][T26145] usbsevseg 1-1:0.0: USB 7 Segment device now attached
[ 1454.060504][ T6699] bond0: (slave wlan0): Enslaving as an active interface with an up link
[ 1454.256324][ T6700] loop1: detected capacity change from 0 to 4096
[ 1454.288755][ T6700] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[ 1454.391377][ T6700] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[ 1454.404467][T26144] usb 1-1: USB disconnect, device number 87
[ 1454.419664][ T6700] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[ 1454.441422][T26144] usbsevseg 1-1:0.0: USB 7 Segment now disconnected
[ 1454.640898][T23463] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[ 1454.669008][ T6251] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[ 1454.685201][ T6251] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[ 1454.692750][ T6712] loop2: detected capacity change from 0 to 2048
[ 1454.717288][ T6251] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[ 1454.745296][ T6712] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1454.759038][T23476] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[ 1454.844019][   T30] kauditd_printk_skb: 2 callbacks suppressed
[ 1454.844044][   T30] audit: type=1800 audit(1780616337.996:384): pid=6712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.14440" name="file1" dev="loop2" ino=1367 res=0 errno=0
[ 1454.928784][ T6718] netlink: 12 bytes leftover after parsing attributes in process `syz.1.14442'.
[ 1455.300443][ T6726] loop2: detected capacity change from 0 to 2048
[ 1455.327207][ T6726] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xa1 != 0xd4
[ 1455.357461][ T6726] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1456.112689][ T6754] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[ 1456.366787][ T6767] netlink: 'syz.5.14468': attribute type 2 has an invalid length.
[ 1456.409005][ T6767] netlink: 224 bytes leftover after parsing attributes in process `syz.5.14468'.
[ 1456.465661][ T6766] loop2: detected capacity change from 0 to 2048
[ 1456.543807][ T6770] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1456.685833][ T6778] netlink: 'syz.1.14472': attribute type 10 has an invalid length.
[ 1456.704610][ T6770] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1456.715200][ T6778] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[ 1456.742767][ T6773] loop6: detected capacity change from 0 to 2048
[ 1456.754093][ T6770] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1456.788190][ T6778] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1456.798939][ T6770] Remounting filesystem read-only
[ 1456.834903][ T6773] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1456.877943][ T6250] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[ 1457.411334][ T6794] loop0: detected capacity change from 0 to 4096
[ 1457.420056][ T6802] kAFS: unable to lookup cell 'syz@'
[ 1457.547162][ T6806] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1458.489702][ T6838] loop0: detected capacity change from 0 to 4096
[ 1458.532869][ T6838] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[ 1458.705690][ T6838] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[ 1458.785370][ T6852] loop3: detected capacity change from 0 to 64
[ 1458.907926][T26145] usb 3-1: new high-speed USB device number 80 using dummy_hcd
[ 1459.111608][T26145] usb 3-1: Using ep0 maxpacket: 32
[ 1459.138534][T26145] usb 3-1: config 0 has an invalid interface number: 35 but max is 0
[ 1459.179072][T26145] usb 3-1: config 0 has no interface number 0
[ 1459.208865][T26145] usb 3-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1459.258626][T26145] usb 3-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1459.314272][T26145] usb 3-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[ 1459.355596][T26145] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1459.390538][ T6867] program syz.5.14513 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1459.404452][T26145] usb 3-1: Product: syz
[ 1459.424585][T26145] usb 3-1: Manufacturer: syz
[ 1459.444333][T26145] usb 3-1: SerialNumber: syz
[ 1459.462367][T26145] usb 3-1: config 0 descriptor??
[ 1459.723179][ T6881] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1459.723448][T26145] radio-si470x 3-1:0.35: this is not a si470x device.
[ 1459.894807][   T24] usb 6-1: new high-speed USB device number 91 using dummy_hcd
[ 1459.939527][T26145] radio-raremono 3-1:0.35: this is not Thanko's Raremono.
[ 1459.983825][T26145] usb 3-1: USB disconnect, device number 80
[ 1460.074709][   T24] usb 6-1: config 0 has an invalid interface number: 64 but max is 0
[ 1460.099807][   T24] usb 6-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[ 1460.145102][   T24] usb 6-1: config 0 has no interface number 0
[ 1460.174781][   T24] usb 6-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[ 1460.215336][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1460.241378][   T24] usb 6-1: Product: syz
[ 1460.259941][   T24] usb 6-1: Manufacturer: syz
[ 1460.278855][   T24] usb 6-1: SerialNumber: syz
[ 1460.318207][   T24] usb 6-1: config 0 descriptor??
[ 1460.687028][ T6907] loop3: detected capacity change from 0 to 1024
[ 1460.790680][   T24] uvcvideo 6-1:0.64: Found UVC 0.00 device syz (046d:0823)
[ 1460.823797][ T6907] hfsplus: invalid length 1280 has been corrected to 255
[ 1460.831296][   T24] uvcvideo 6-1:0.64: No valid video chain found.
[ 1460.843976][   T24] usb 6-1: USB disconnect, device number 91
[ 1461.125711][ T6913] overlay: Bad value for 'workdir'
[ 1461.146460][ T6891] loop6: detected capacity change from 0 to 32768
[ 1461.410867][ T6899] loop1: detected capacity change from 0 to 32768
[ 1461.425846][ T6921] trusted_key: encrypted_key: hex blob is missing
[ 1461.503363][ T6924] loop6: detected capacity change from 0 to 64
[ 1461.592540][ T6926] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[ 1461.653044][ T6926] overlayfs: missing 'lowerdir'
[ 1461.725548][ T6928] netlink: 'syz.5.14542': attribute type 4 has an invalid length.
[ 1462.156750][ T6939] x_tables: ip_tables: icmp match: only valid for protocol 1
[ 1462.453014][ T6944] loop6: detected capacity change from 0 to 4096
[ 1462.552481][ T6957] netlink: 132 bytes leftover after parsing attributes in process `syz.1.14556'.
[ 1462.585900][ T6944] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[ 1463.040791][ T6967] netlink: 'syz.0.14561': attribute type 13 has an invalid length.
[ 1463.121949][ T6967] gretap0: refused to change device tx_queue_len
[ 1463.158172][ T6967] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1463.189045][ T6974] netlink: 'syz.6.14564': attribute type 1 has an invalid length.
[ 1463.288341][ T6978] usb usb7: usbfs: process 6978 (syz.1.14565) did not claim interface 0 before use
[ 1463.833059][ T6999] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14576'.
[ 1463.878600][ T6999] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[ 1463.916409][ T7003] netlink: 40 bytes leftover after parsing attributes in process `syz.1.14578'.
[ 1464.016696][ T7005] loop2: detected capacity change from 0 to 2048
[ 1464.064224][ T7005] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1464.305107][ T7015] sit0: entered promiscuous mode
[ 1464.367957][ T7015] netlink: 'syz.1.14584': attribute type 1 has an invalid length.
[ 1464.388433][ T7015] netlink: 1 bytes leftover after parsing attributes in process `syz.1.14584'.
[ 1464.634283][ T7028] netlink: 68 bytes leftover after parsing attributes in process `syz.5.14591'.
[ 1464.668366][ T7028] netlink: 68 bytes leftover after parsing attributes in process `syz.5.14591'.
[ 1464.779381][ T7031] loop3: detected capacity change from 0 to 256
[ 1464.802480][ T7034] nbd: illegal input index 2958377
[ 1464.848049][ T7031] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d)
[ 1465.636672][ T7064] loop5: detected capacity change from 0 to 64
[ 1465.773597][ T7067] vti0: entered promiscuous mode
[ 1466.038634][ T7076] netlink: zone id is out of range
[ 1466.080100][ T7076] netlink: zone id is out of range
[ 1466.474741][ T7049] loop3: detected capacity change from 0 to 32768
[ 1466.500514][ T7087] loop2: detected capacity change from 0 to 1764
[ 1466.569852][ T7049] ERROR: (device loop3): dtSearch: stack overrun!
[ 1466.569852][ T7049] 
[ 1466.621135][ T7049] ERROR: (device loop3): remounting filesystem as read-only
[ 1466.657529][ T7049] btstack dump:
[ 1466.671173][ T7049] bn = 0, index = 4
[ 1466.690988][ T7049] bn = 0, index = 4
[ 1466.710868][ T7049] bn = 0, index = 4
[ 1466.755212][ T7049] bn = 0, index = 4
[ 1466.772506][ T7049] bn = 0, index = 4
[ 1466.791136][ T7049] bn = 0, index = 4
[ 1466.806833][ T7049] bn = 0, index = 4
[ 1466.824861][ T7049] bn = 0, index = 0
[ 1466.840996][ T7049] jfs_lookup: dtSearch returned -5
[ 1467.102064][ T7108] loop6: detected capacity change from 0 to 64
[ 1467.182289][ T7112] trusted_key: encrypted_key: master key parameter 'user:' is invalid
[ 1467.199851][ T7111] loop5: detected capacity change from 0 to 256
[ 1467.226621][ T7111] exfat: Deprecated parameter 'utf8'
[ 1467.274062][ T7117] ubi8: attaching mtd0
[ 1467.292024][ T7111] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe1018169, utbl_chksum : 0xe619d30d)
[ 1467.307399][ T7117] ubi8 error: ubi_attach_mtd_dev: bad VID header (5) or data offsets (69)
[ 1467.478300][ T7115] loop0: detected capacity change from 0 to 4096
[ 1467.527348][ T7115] ntfs3(loop0): ino=0, mi_enum_attr
[ 1467.592423][ T7115] ntfs3(loop0): ino=0, mi_enum_attr
[ 1467.626462][ T7123] xfrm0: entered allmulticast mode
[ 1467.626860][ T7115] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1467.645314][ T7124] netlink: 784 bytes leftover after parsing attributes in process `syz.3.14638'.
[ 1467.694750][ T7115] ntfs3(loop0): ino=0, mi_enum_attr
[ 1468.066895][T26170] usb 6-1: new full-speed USB device number 92 using dummy_hcd
[ 1468.086542][ T7137] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1468.256551][T26170] usb 6-1: config 0 has an invalid interface number: 176 but max is 2
[ 1468.297165][T26170] usb 6-1: config 0 has no interface number 1
[ 1468.326857][T26170] usb 6-1: too many endpoints for config 0 interface 0 altsetting 255: 255, using maximum allowed: 30
[ 1468.371882][T26170] usb 6-1: config 0 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1468.462800][T26170] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1468.509420][T26170] usb 6-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[ 1468.533610][T26170] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1468.569267][T26170] usb 6-1: config 0 descriptor??
[ 1468.812474][T26170] usb 6-1: Could not set interface, error -71
[ 1468.861336][T26170] qmi_wwan 6-1:0.0: probe with driver qmi_wwan failed with error -22
[ 1468.903211][T26170] usb 6-1: USB disconnect, device number 92
[ 1469.142830][ T7169] loop1: detected capacity change from 0 to 512
[ 1469.233055][ T7169] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1469.250289][ T7175] Process accounting paused
[ 1469.288780][ T7169] ext4 filesystem being mounted at /2365/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1469.500214][ T7188] loop6: detected capacity change from 0 to 256
[ 1469.557698][ T7188] exfat: Deprecated parameter 'namecase'
[ 1469.613028][ T7188] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1469.625856][ T6251] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1469.782938][ T7197] loop0: detected capacity change from 0 to 8
[ 1469.871154][ T7197] SQUASHFS error: Failed to read block 0x8f: -5
[ 1469.928950][   T30] audit: type=1800 audit(1780616352.115:385): pid=7197 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.14673" name="file1" dev="loop0" ino=5 res=0 errno=0
[ 1470.247544][ T7215] 8021q: VLANs not supported on lo
[ 1471.057470][ T7245] loop5: detected capacity change from 0 to 256
[ 1471.097678][ T7245] exfat: Deprecated parameter 'utf8'
[ 1471.166966][ T7249] PKCS8: Unsupported PKCS#8 version
[ 1471.180045][ T7245] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[ 1472.115328][ T7283] openvswitch: netlink: Unexpected mask (mask=240040, allowed=10048)
[ 1472.496679][ T7298] syz.0.14722: vmalloc error: size 18446744073699066186, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1472.536140][ T7298] CPU: 1 UID: 0 PID: 7298 Comm: syz.0.14722 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1472.536199][ T7298] Tainted: [L]=SOFTLOCKUP
[ 1472.536213][ T7298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1472.536237][ T7298] Call Trace:
[ 1472.536251][ T7298]  <TASK>
[ 1472.536265][ T7298]  dump_stack_lvl+0x100/0x190
[ 1472.536310][ T7298]  warn_alloc.cold+0x95/0x1c1
[ 1472.536354][ T7298]  ? __pfx_warn_alloc+0x10/0x10
[ 1472.536405][ T7298]  ? do_syscall_64+0x115/0x870
[ 1472.536463][ T7298]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1472.536516][ T7298]  ? __lock_acquire+0x4a5/0x2630
[ 1472.536572][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.536624][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.536669][ T7298]  __vmalloc_node_range_noprof+0x136c/0x1630
[ 1472.536712][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.536766][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.536814][ T7298]  ? rcu_is_watching+0x12/0xc0
[ 1472.536881][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.536925][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.536973][ T7298]  ? trace_contention_end+0x122/0x170
[ 1472.537024][ T7298]  ? dvb_demux_do_ioctl+0x9e0/0x1200
[ 1472.537066][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.537119][ T7298]  ? dvb_demux_do_ioctl+0x929/0x1200
[ 1472.537159][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.537207][ T7298]  ? lockdep_hardirqs_on+0x78/0x100
[ 1472.537265][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.537315][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.537362][ T7298]  ? find_held_lock+0x2b/0x80
[ 1472.537423][ T7298]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1472.537465][ T7298]  ? __pfx___mutex_lock+0x10/0x10
[ 1472.537536][ T7298]  ? tomoyo_path_number_perm+0x188/0x580
[ 1472.537590][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.537637][ T7298]  ? dvb_demux_do_ioctl+0x9e0/0x1200
[ 1472.537679][ T7298]  __vmalloc_node_noprof+0xad/0xf0
[ 1472.537718][ T7298]  ? dvb_demux_do_ioctl+0x9e0/0x1200
[ 1472.537759][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.537808][ T7298]  dvb_demux_do_ioctl+0x9e0/0x1200
[ 1472.537867][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.537915][ T7298]  ? do_vfs_ioctl+0x226/0x13e0
[ 1472.537979][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.538022][ T7298]  dvb_usercopy+0x167/0x340
[ 1472.538083][ T7298]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[ 1472.538125][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.538172][ T7298]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1472.538253][ T7298]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1472.538301][ T7298]  ? __fget_files+0x21f/0x3d0
[ 1472.538346][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.538390][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.538435][ T7298]  dvb_demux_ioctl+0x29/0x40
[ 1472.538469][ T7298]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[ 1472.538507][ T7298]  __x64_sys_ioctl+0x18e/0x210
[ 1472.538569][ T7298]  do_syscall_64+0x115/0x870
[ 1472.538634][ T7298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1472.538676][ T7298] RIP: 0033:0x7f123e19ce59
[ 1472.538706][ T7298] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1472.538745][ T7298] RSP: 002b:00007f123f0ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1472.538785][ T7298] RAX: ffffffffffffffda RBX: 00007f123e415fa0 RCX: 00007f123e19ce59
[ 1472.538812][ T7298] RDX: ffffffffff60014a RSI: 0000000000006f2d RDI: 0000000000000003
[ 1472.538837][ T7298] RBP: 00007f123e232d6f R08: 0000000000000000 R09: 0000000000000000
[ 1472.538874][ T7298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1472.538899][ T7298] R13: 00007f123e416038 R14: 00007f123e415fa0 R15: 00007fff7e4fffc8
[ 1472.538940][ T7298]  ? __UNIQUE_ID_modinfo_715+0x63e75834/0xffffffffffeca6ea
[ 1472.538995][ T7298]  </TASK>
[ 1473.020917][ T7298] Mem-Info:
[ 1473.026025][ T7298] active_anon:9731 inactive_anon:0 isolated_anon:0
[ 1473.026025][ T7298]  active_file:6837 inactive_file:57374 isolated_file:0
[ 1473.026025][ T7298]  unevictable:768 dirty:497 writeback:0
[ 1473.026025][ T7298]  slab_reclaimable:8094 slab_unreclaimable:153808
[ 1473.026025][ T7298]  mapped:36725 shmem:1297 pagetables:3846
[ 1473.026025][ T7298]  sec_pagetables:0 bounce:0
[ 1473.026025][ T7298]  kernel_misc_reclaimable:0
[ 1473.026025][ T7298]  free:1204820 free_pcp:10204 free_cma:0
[ 1473.065981][ T7305] loop6: detected capacity change from 0 to 512
[ 1473.071887][ T7298] Node 0 active_anon:39224kB inactive_anon:0kB active_file:27348kB inactive_file:229292kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:146900kB dirty:1988kB writeback:0kB shmem:3852kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13060kB pagetables:15248kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1473.117793][ T7298] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1473.150640][ T7298] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1473.180659][ T7298] lowmem_reserve[]: 0 2477 2479 2479 2479
[ 1473.186462][ T7298] Node 0 DMA32 free:865616kB boost:0kB min:34060kB low:42572kB high:51084kB reserved_highatomic:0KB free_highatomic:0KB active_anon:39224kB inactive_anon:0kB active_file:27348kB inactive_file:229292kB unevictable:1536kB writepending:1988kB zspages:0kB present:3129332kB managed:2537412kB mlocked:0kB bounce:0kB free_pcp:38932kB local_pcp:21276kB free_cma:0kB
[ 1473.220550][ T7298] lowmem_reserve[]: 0 0 1 1 1
[ 1473.225311][ T7298] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1108kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[ 1473.255092][ T7298] lowmem_reserve[]: 0 0 0 0 0
[ 1473.259854][ T7298] Node 1 Normal free:3938304kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:2048kB local_pcp:0kB free_cma:0kB
[ 1473.282181][ T7305] EXT4-fs: Mount option(s) incompatible with ext2
[ 1473.292079][ T7298] lowmem_reserve[]: 0 0 0 0 0
[ 1473.303018][ T7298] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1473.315933][ T7298] Node 0 DMA32: 4141*4kB (UME) 5642*8kB (UME) 3679*16kB (UME) 433*32kB (UME) 197*64kB (UME) 596*128kB (UME) 581*256kB (UME) 396*512kB (UM) 244*1024kB (UM) 4*2048kB (UM) 8*4096kB (M) = 865620kB
[ 1473.335305][ T7298] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1473.347315][ T7298] Node 1 Normal: 6*4kB (UM) 13*8kB (UM) 10*16kB (UM) 11*32kB (UM) 10*64kB (UM) 8*128kB (UM) 3*256kB (UM) 4*512kB (UM) 1*1024kB (M) 2*2048kB (UM) 959*4096kB (M) = 3938304kB
[ 1473.375887][ T7298] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1473.446010][ T7298] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1473.540019][ T7298] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1473.580253][ T7298] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1473.603182][ T7318] overlay: ./file0 is not a directory
[ 1473.613032][ T7298] 65162 total pagecache pages
[ 1473.631309][ T7321] loop6: detected capacity change from 0 to 256
[ 1473.639723][ T7298] 0 pages in swap cache
[ 1473.650512][ T7298] Free swap  = 124996kB
[ 1473.675175][ T7298] Total swap = 124996kB
[ 1473.706120][ T7298] 2097051 pages RAM
[ 1473.725264][ T7298] 0 pages HighMem/MovableOnly
[ 1473.758389][ T7298] 430806 pages reserved
[ 1473.782944][ T7298] 0 pages cma reserved
[ 1473.988918][ T7331] binder: 7330:7331 ioctl c0046209 9999999999999999 returned -22
[ 1474.094670][ T7335] loop0: detected capacity change from 0 to 64
[ 1474.146405][ T7335] hfs: request for non-existent node 327680 in B*Tree
[ 1474.199989][ T7335] hfs: request for non-existent node 327680 in B*Tree
[ 1474.509774][ T7347] loop1: detected capacity change from 0 to 128
[ 1474.584293][ T7347] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1474.585554][ T7356] nbd: must specify a device to reconfigure
[ 1474.627552][ T7347] ext4 filesystem being mounted at /2381/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1474.723516][ T6251] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1475.107396][ T7325] loop5: detected capacity change from 0 to 32768
[ 1475.159111][ T7325] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.14736 (7325)
[ 1475.200246][ T7371] netlink: 20 bytes leftover after parsing attributes in process `syz.2.14757'.
[ 1475.220882][ T7325] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1475.253407][ T7325] BTRFS info (device loop5): using sha256 checksum algorithm
[ 1475.447288][ T7325] BTRFS info (device loop5): enabling ssd optimizations
[ 1475.462239][ T7325] BTRFS info (device loop5): turning on async discard
[ 1475.473477][ T7325] BTRFS info (device loop5): enabling free space tree
[ 1475.742695][ T6276] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1476.899791][ T7442] loop2: detected capacity change from 0 to 256
[ 1477.365867][ T7460] loop6: detected capacity change from 0 to 256
[ 1477.396771][ T7460] exfat: Deprecated parameter 'namecase'
[ 1477.450331][ T7453] loop1: detected capacity change from 0 to 4096
[ 1477.465291][ T7460] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011e8b, chksum : 0xf0cee8ef, utbl_chksum : 0xe619d30d)
[ 1477.505441][ T7453] ntfs3(loop1): ino=0, mi_enum_attr
[ 1477.538971][ T7453] ntfs3(loop1): ino=0, mi_enum_attr
[ 1477.570020][ T7453] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[ 1477.607839][ T7453] ntfs3(loop1): ino=0, mi_enum_attr
[ 1477.612576][ T7467] vti0: entered promiscuous mode
[ 1477.933819][ T7473] Device name not specified.
[ 1477.933819][ T7473] 
[ 1477.969563][ T7475] Invalid ELF header type: 3 != 1
[ 1478.313350][ T7484] loop5: detected capacity change from 0 to 256
[ 1478.411453][ T7487] loop2: detected capacity change from 0 to 64
[ 1478.478427][ T7487] syz.2.14805: attempt to access beyond end of device
[ 1478.478427][ T7487] loop2: rw=0, sector=1024, nr_sectors = 2 limit=64
[ 1478.538722][ T7487] Buffer I/O error on dev loop2, logical block 512, async page read
[ 1478.576591][ T7487] syz.2.14805: attempt to access beyond end of device
[ 1478.576591][ T7487] loop2: rw=0, sector=113152, nr_sectors = 2 limit=64
[ 1478.630259][ T7487] Buffer I/O error on dev loop2, logical block 56576, async page read
[ 1478.699779][ T7499] openvswitch: netlink: IP tunnel dst address not specified
[ 1478.816424][T26144] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 1478.997450][T26144] usb 7-1: Using ep0 maxpacket: 16
[ 1479.007789][ T7510] loop1: detected capacity change from 0 to 64
[ 1479.030528][T26144] usb 7-1: config 0 has an invalid interface number: 107 but max is 0
[ 1479.058430][T26144] usb 7-1: config 0 has no interface number 0
[ 1479.076244][ T7511] loop0: detected capacity change from 0 to 512
[ 1479.079657][T26144] usb 7-1: config 0 interface 107 altsetting 0 endpoint 0x88 has an invalid bInterval 55, changing to 9
[ 1479.154879][ T7516] netlink: 'syz.5.14821': attribute type 2 has an invalid length.
[ 1479.169150][T26144] usb 7-1: config 0 interface 107 altsetting 0 endpoint 0x88 has invalid maxpacket 8496, setting to 1024
[ 1479.176882][ T7511] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[ 1479.191296][ T7516] netlink: 'syz.5.14821': attribute type 2 has an invalid length.
[ 1479.214755][ T7511] System zones: 0-2, 18-18, 34-34
[ 1479.269418][T26144] usb 7-1: New USB device found, idVendor=06cd, idProduct=0131, bcdDevice=16.60
[ 1479.299233][ T7511] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm syz.0.14819: bg 0: block 248: padding at end of block bitmap is not set
[ 1479.330578][T26144] usb 7-1: New USB device strings: Mfr=175, Product=2, SerialNumber=3
[ 1479.358745][T26144] usb 7-1: Product: syz
[ 1479.368100][ T7511] loop0: lost filesystem error report for type 5 error -117
[ 1479.373990][ T7511] Quota error (device loop0): write_blk: dquota write failed
[ 1479.388712][    C1] EXT4-fs (loop0): error count since last fsck: 1
[ 1479.388743][    C1] EXT4-fs (loop0): last error at time 1780616360: ext4_validate_block_bitmap:440
[ 1479.411441][T26144] usb 7-1: Manufacturer: syz
[ 1479.438792][T26144] usb 7-1: SerialNumber: syz
[ 1479.466664][T26144] usb 7-1: config 0 descriptor??
[ 1479.478851][ T7511] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[ 1479.508253][T26144] keyspan 7-1:0.107: Keyspan 4 port adapter converter detected
[ 1479.519045][ T7511] EXT4-fs error (device loop0): ext4_acquire_dquot:7032: comm syz.0.14819: Failed to acquire dquot type 1
[ 1479.525151][T26144] keyspan 7-1:0.107: found no endpoint descriptor for endpoint 81
[ 1479.558288][T26144] keyspan 7-1:0.107: found no endpoint descriptor for endpoint 1
[ 1479.579282][ T7511] loop0: lost filesystem error report for type 5 error -117
[ 1479.625797][ T7511] EXT4-fs (loop0): 1 truncate cleaned up
[ 1479.649073][T26144] usb 7-1: Keyspan 4 port adapter converter now attached to ttyUSB0
[ 1479.664795][ T7511] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1479.711377][T26144] keyspan 7-1:0.107: found no endpoint descriptor for endpoint 2
[ 1479.725139][ T7511] ext4 filesystem being mounted at /2424/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1479.768087][T26144] usb 7-1: Keyspan 4 port adapter converter now attached to ttyUSB1
[ 1479.804729][T26144] keyspan 7-1:0.107: found no endpoint descriptor for endpoint 4
[ 1479.854278][T26144] usb 7-1: Keyspan 4 port adapter converter now attached to ttyUSB2
[ 1479.874824][ T7536] loop1: detected capacity change from 0 to 64
[ 1479.889375][T26144] keyspan 7-1:0.107: found no endpoint descriptor for endpoint 6
[ 1479.919024][T26144] usb 7-1: Keyspan 4 port adapter converter now attached to ttyUSB3
[ 1479.965443][T26144] usb 7-1: USB disconnect, device number 12
[ 1480.003258][ T6249] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1480.049447][T26144] keyspan_4 ttyUSB0: Keyspan 4 port adapter converter now disconnected from ttyUSB0
[ 1480.119224][T26144] keyspan_4 ttyUSB1: Keyspan 4 port adapter converter now disconnected from ttyUSB1
[ 1480.187136][T26144] keyspan_4 ttyUSB2: Keyspan 4 port adapter converter now disconnected from ttyUSB2
[ 1480.242535][T26144] keyspan_4 ttyUSB3: Keyspan 4 port adapter converter now disconnected from ttyUSB3
[ 1480.305425][T26144] keyspan 7-1:0.107: device disconnected
[ 1480.429594][ T7552] netlink: 'syz.0.14838': attribute type 10 has an invalid length.
[ 1480.496970][ T7552] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1480.545018][ T7552] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[ 1481.003178][   T30] audit: type=1400 audit(1780616362.489:386): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=7574 comm="syz.5.14851"
[ 1481.279648][ T7584] loop0: detected capacity change from 0 to 164
[ 1481.347971][ T7584] iso9660: Corrupted directory entry in block 2 of inode 1792
[ 1481.551736][ T7592] netlink: 'syz.3.14859': attribute type 1 has an invalid length.
[ 1481.598737][ T7595] loop5: detected capacity change from 0 to 64
[ 1481.649767][ T7595] syz.5.14860: attempt to access beyond end of device
[ 1481.649767][ T7595] loop5: rw=0, sector=268435468, nr_sectors = 2 limit=64
[ 1481.689532][ T7595] Buffer I/O error on dev loop5, logical block 134217734, async page read
[ 1481.780754][ T7595] Trying to free block not in datazone
[ 1481.951180][ T7606] netlink: 24 bytes leftover after parsing attributes in process `syz.0.14865'.
[ 1481.983171][ T7606] netlink: 24 bytes leftover after parsing attributes in process `syz.0.14865'.
[ 1482.141301][ T7604] loop3: detected capacity change from 0 to 4096
[ 1482.151098][ T7611] netlink: 60 bytes leftover after parsing attributes in process `syz.5.14867'.
[ 1482.171213][ T7604] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1482.298111][ T7616] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1482.526467][ T7620] binder: 7619:7620 ioctl c00c620f 200000000040 returned -22
[ 1482.555569][ T7580] loop6: detected capacity change from 0 to 32768
[ 1482.677670][ T7580] ERROR: (device loop6): xtTruncate_pmap: xt_getpage: xtree page corrupt
[ 1482.677670][ T7580] 
[ 1482.752127][ T7580] ERROR: (device loop6): remounting filesystem as read-only
[ 1482.785774][ T7580] ERROR: (device loop6): txAbort: 
[ 1482.785774][ T7580] 
[ 1482.961993][T29879] ERROR: (device loop6): xtTruncate: xt_getpage: xtree page corrupt
[ 1482.961993][T29879] 
[ 1483.130440][ T7641] loop1: detected capacity change from 0 to 22
[ 1483.175737][ T7641] MTD: Attempt to mount non-MTD device "/dev/loop1"
[ 1483.223678][ T7641] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1483.315383][ T7649] ip6t_REJECT: TCP_RESET illegal for non-tcp
[ 1483.337053][ T7650] loop3: detected capacity change from 0 to 512
[ 1483.444240][ T7650] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1483.478473][ T7658] netlink: 12 bytes leftover after parsing attributes in process `syz.0.14890'.
[ 1483.581616][ T7650] ext4 filesystem being mounted at /2357/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1483.796978][ T6256] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1484.196995][ T7668] "syz.6.14894" (7668) uses obsolete ecb(arc4) skcipher
[ 1484.889592][ T7707] netlink: 'syz.3.14912': attribute type 1 has an invalid length.
[ 1485.188710][ T7720] loop0: detected capacity change from 0 to 256
[ 1485.298417][ T7720] FAT-fs (loop0): Directory bread(block 64) failed
[ 1485.337316][ T7720] FAT-fs (loop0): Directory bread(block 65) failed
[ 1485.365303][ T7720] FAT-fs (loop0): Directory bread(block 66) failed
[ 1485.392610][ T7720] FAT-fs (loop0): Directory bread(block 67) failed
[ 1485.425940][ T7720] FAT-fs (loop0): Directory bread(block 68) failed
[ 1485.440765][ T7720] FAT-fs (loop0): Directory bread(block 69) failed
[ 1485.469041][ T7720] FAT-fs (loop0): Directory bread(block 70) failed
[ 1485.503454][ T7720] FAT-fs (loop0): Directory bread(block 71) failed
[ 1485.525500][ T7720] FAT-fs (loop0): Directory bread(block 72) failed
[ 1485.577002][ T7720] FAT-fs (loop0): Directory bread(block 73) failed
[ 1485.634869][ T7727] loop3: detected capacity change from 0 to 2048
[ 1485.720054][ T7734] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1485.774431][ T7729] loop2: detected capacity change from 0 to 4096
[ 1485.809474][ T7729] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[ 1485.904024][ T7729] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[ 1485.945529][ T7729] ntfs3(loop2): mft corrupted
[ 1485.965564][ T7729] ntfs3(loop2): Failed to load $Extend (-22).
[ 1485.995304][ T7729] ntfs3(loop2): Failed to initialize $Extend.
[ 1486.085707][ T7729] ntfs3(loop2): ino=1e, mi_enum_attr
[ 1486.114392][ T7729] ntfs3(loop2): ino=1e, mi_enum_attr
[ 1486.251566][ T7711] loop5: detected capacity change from 0 to 32768
[ 1486.501492][ T7751] loop1: detected capacity change from 0 to 128
[ 1486.550557][ T7751] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[ 1486.622242][ T7751] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1486.707063][ T7756] loop6: detected capacity change from 0 to 16
[ 1486.761844][ T7756] erofs (device loop6): mounted with root inode @ nid 36.
[ 1486.827856][ T7756] erofs (device loop6): compressed inode (nid 83) is invalid in a plain filesystem
[ 1487.016151][ T7764] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1487.100567][ T7769] kAFS: unable to lookup cell 'syz1'
[ 1487.575887][ T7779] loop1: detected capacity change from 0 to 4096
[ 1487.641509][ T7779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1487.787811][T26170] usb 6-1: new high-speed USB device number 93 using dummy_hcd
[ 1487.935361][ T6251] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1487.983071][T26170] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1488.031717][T26170] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1488.080946][T26170] usb 6-1: config 0 descriptor??
[ 1488.197714][ T7816] loop2: detected capacity change from 0 to 256
[ 1488.335141][T26170] ath6kl: Failed to submit usb control message: -71
[ 1488.371251][ T7826] usb usb9: check_ctrlrecip: process 7826 (syz.6.14968) requesting ep 01 but needs 81
[ 1488.385097][T26170] ath6kl: unable to send the bmi data to the device: -71
[ 1488.387291][ T7826] usb usb9: usbfs: process 7826 (syz.6.14968) did not claim interface 0 before use
[ 1488.412659][ T7816] FAT-fs (loop2): Directory bread(block 64) failed
[ 1488.441092][T26170] ath6kl: Unable to send get target info: -71
[ 1488.459450][ T7816] FAT-fs (loop2): Directory bread(block 65) failed
[ 1488.471036][ T7816] FAT-fs (loop2): Directory bread(block 66) failed
[ 1488.479198][ T7820] bond4: entered allmulticast mode
[ 1488.484464][ T7816] FAT-fs (loop2): Directory bread(block 67) failed
[ 1488.484576][ T7816] FAT-fs (loop2): Directory bread(block 68) failed
[ 1488.484629][ T7816] FAT-fs (loop2): Directory bread(block 69) failed
[ 1488.484723][ T7816] FAT-fs (loop2): Directory bread(block 70) failed
[ 1488.484759][ T7816] FAT-fs (loop2): Directory bread(block 71) failed
[ 1488.484849][ T7816] FAT-fs (loop2): Directory bread(block 72) failed
[ 1488.484890][ T7816] FAT-fs (loop2): Directory bread(block 73) failed
[ 1488.494897][T26170] ath6kl: Failed to init ath6kl core: -71
[ 1488.554599][ T7831] netlink: 'syz.6.14970': attribute type 1 has an invalid length.
[ 1488.602378][ T7827] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:24a9:03ff:fe87:ee59 error=-28
[ 1488.616049][ T7831] netlink: 224 bytes leftover after parsing attributes in process `syz.6.14970'.
[ 1488.692270][T26170] ath6kl_usb 6-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1488.785142][T26170] usb 6-1: USB disconnect, device number 93
[ 1488.842782][ T7833] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14971'.
[ 1490.037058][ T7865] loop6: detected capacity change from 0 to 4096
[ 1490.070735][ T7865] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[ 1490.154121][ T7827] infiniband syz1: set active
[ 1490.168197][ T7865] ntfs3(loop6): ino=1a, mi_enum_attr
[ 1490.192949][ T7827] infiniband syz1: added bridge_slave_1
[ 1490.199961][ T7865] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1490.279213][ T7827] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[ 1490.311283][ T7827] infiniband syz1: Couldn't open port 1
[ 1490.360591][ T7827] smbdirect: ib_dev[syz1]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000
[ 1490.422706][ T7827] smbdirect: ib_dev[syz1]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32
[ 1490.497412][ T7827] smbdirect: ib_dev[syz1]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005
[ 1490.777562][ T7827] RDS/IB: syz1: added
[ 1490.802263][ T7827] smc: adding ib device syz1 with port count 1
[ 1490.838366][ T7827] smc:    ib device syz1 port 1 has no pnetid
[ 1490.947227][ T7900] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1491.140694][ T7907] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15006'.
[ 1491.944007][ T7928] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[ 1491.961368][ T7928] [U] J"—e:ÀÆ"


[ 1491.979379][ T7929] netlink: 104 bytes leftover after parsing attributes in process `syz.1.15016'.
[ 1492.029222][ T7898] loop3: detected capacity change from 0 to 32768
[ 1492.166127][ T7898] ea_get: invalid extended attribute
[ 1492.197775][ T7898] ffff888076d90bf0: 04 00 00 00                                      ....
[ 1492.231829][ T7933] --map-set only usable from mangle table
[ 1492.354168][ T7910] loop5: detected capacity change from 0 to 32768
[ 1492.404994][ T7910] (syz.5.15008,7910,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1492.466244][ T7910] (syz.5.15008,7910,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1492.499787][ T7937] loop6: detected capacity change from 0 to 1024
[ 1492.550052][ T7937] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1492.563043][ T7910] JBD2: Ignoring recovery information on journal
[ 1492.676262][ T7943] netlink: 64 bytes leftover after parsing attributes in process `syz.1.15024'.
[ 1492.698384][ T7937] EXT4-fs error (device loop6): ext4_map_blocks:833: inode #3: block 1: comm syz.6.15021: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1492.743063][ T7937] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1492.746731][ T7937] Quota error (device loop6): write_blk: dquota write failed
[ 1492.756045][    C0] EXT4-fs (loop6): error count since last fsck: 1
[ 1492.756074][    C0] EXT4-fs (loop6): initial error at time 1780616373: ext4_map_blocks:833: inode 3: block 1
[ 1492.756134][    C0] EXT4-fs (loop6): last error at time 1780616373: ext4_map_blocks:833: inode 3: block 1
[ 1492.831718][ T7937] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1492.898033][ T7910] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1492.900259][ T7937] EXT4-fs error (device loop6): ext4_acquire_dquot:7032: comm syz.6.15021: Failed to acquire dquot type 0
[ 1493.017856][ T7937] loop6: lost filesystem error report for type 5 error -117
[ 1493.018245][ T7937] EXT4-fs error (device loop6): ext4_free_blocks:6717: comm syz.6.15021: Freeing blocks not in datazone - block = 0, count = 4096
[ 1493.101131][ T7937] loop6: lost filesystem error report for type 5 error -117
[ 1493.101631][ T7937] EXT4-fs error (device loop6): ext4_read_inode_bitmap:138: comm syz.6.15021: Invalid inode bitmap blk 0 in block_group 0
[ 1493.122061][T23481] EXT4-fs error (device loop6): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:17: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1493.196189][T23481] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1493.198108][T23481] Quota error (device loop6): remove_tree: Can't read quota data block 1
[ 1493.213049][ T7937] loop6: lost filesystem error report for type 5 error -117
[ 1493.224658][ T7937] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[ 1493.283658][T23481] EXT4-fs error (device loop6): ext4_release_dquot:7068: comm kworker/u8:17: Failed to release dquot type 0
[ 1493.321982][ T7937] loop6: lost filesystem error report for type 5 error -117
[ 1493.322280][ T7937] EXT4-fs (loop6): 1 orphan inode deleted
[ 1493.350808][T23481] loop6: lost filesystem error report for type 5 error -117
[ 1493.399808][ T6276] ocfs2: Unmounting device (7,5) on (node local)
[ 1493.428761][ T7937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1493.519762][ T7937] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000.
[ 1493.681534][ T7962] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15031'.
[ 1493.743109][T29879] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1494.246307][ T7978] tmpfs: Bad value for 'mpol'
[ 1495.083222][T26170] usb 2-1: new high-speed USB device number 76 using dummy_hcd
[ 1495.164192][ T8009] dlm: no locking on control device
[ 1495.275757][T26170] usb 2-1: Using ep0 maxpacket: 8
[ 1495.311701][T26170] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1495.337952][T26170] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1495.371918][T26170] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1495.398038][T26170] usb 2-1: New USB device found, idVendor=2466, idProduct=8010, bcdDevice= 0.40
[ 1495.427154][T26170] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1495.463541][T26170] usb 2-1: Product: syz
[ 1495.478580][T26170] usb 2-1: Manufacturer: syz
[ 1495.496051][T26170] usb 2-1: SerialNumber: syz
[ 1495.764220][T26170] usb 2-1: cannot find UAC_HEADER
[ 1495.931101][T26170] snd-usb-audio 2-1:1.0: probe with driver snd-usb-audio failed with error -22
[ 1495.972727][ T8003] loop5: detected capacity change from 0 to 32768
[ 1496.007545][T26144] usb 2-1: USB disconnect, device number 76
[ 1496.057979][ T8031] loop2: detected capacity change from 0 to 128
[ 1496.066955][ T8003] ERROR: (device loop5): xtTruncate_pmap: xt_getpage: xtree page corrupt
[ 1496.066955][ T8003] 
[ 1496.089943][ T6217] udevd[6217]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1496.149039][ T8003] ERROR: (device loop5): remounting filesystem as read-only
[ 1496.159004][ T8031] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1496.178929][ T8003] ERROR: (device loop5): txAbort: 
[ 1496.178929][ T8003] 
[ 1496.182917][ T8031] ext4 filesystem being mounted at /2486/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1496.245071][ T6276] ERROR: (device loop5): xtTruncate: xt_getpage: xtree page corrupt
[ 1496.245071][ T6276] 
[ 1496.325872][ T6250] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1496.465012][   T30] audit: type=1326 audit(1780616376.965:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.5.15069" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4ad9ce59 code=0x7ffc0000
[ 1496.531034][ T8039] loop5: detected capacity change from 0 to 8
[ 1496.600479][ T8039] squashfs image failed sanity check
[ 1496.602539][   T30] audit: type=1326 audit(1780616376.965:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.5.15069" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4ad9ce59 code=0x7ffc0000
[ 1496.724731][   T30] audit: type=1326 audit(1780616377.011:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.5.15069" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4ad9ce59 code=0x7ffc0000
[ 1496.834386][   T30] audit: type=1326 audit(1780616377.021:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.5.15069" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3d4ad9ce59 code=0x7ffc0000
[ 1496.969487][   T30] audit: type=1326 audit(1780616377.021:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.5.15069" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3d4ad9cbc2 code=0x7ffc0000
[ 1497.051143][   T30] audit: type=1326 audit(1780616377.021:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.5.15069" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3d4ad5d68e code=0x7ffc0000
[ 1497.201309][   T30] audit: type=1326 audit(1780616377.021:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.5.15069" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f3d4ad9cc87 code=0x7ffc0000
[ 1497.694811][ T8069] netlink: 88 bytes leftover after parsing attributes in process `syz.3.15084'.
[ 1497.696205][ T8041] loop2: detected capacity change from 0 to 32768
[ 1497.742400][ T8071] loop1: detected capacity change from 0 to 8
[ 1497.799088][ T8041] ea_get: invalid extended attribute
[ 1497.816336][ T8041] ffff888076d92678: 04 00 00 00                                      ....
[ 1497.853409][ T8071] SQUASHFS error: Unable to read inode 0xa7
[ 1498.028860][ T8077] netlink: 20 bytes leftover after parsing attributes in process `syz.5.15088'.
[ 1498.053359][ T8077] netlink: 8 bytes leftover after parsing attributes in process `syz.5.15088'.
[ 1498.091190][ T8077] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1498.821424][ T8097] loop3: detected capacity change from 0 to 256
[ 1499.575242][ T8121] fuse: Bad value for 'fd'
[ 1499.970647][ T8103] loop1: detected capacity change from 0 to 32768
[ 1500.520660][ T8150] openvswitch: netlink: VXLAN extension 307 out of range max 1
[ 1500.549936][ T8152] openvswitch: netlink: IP tunnel dst address not specified
[ 1500.655554][ T8154] loop6: detected capacity change from 0 to 1764
[ 1500.697721][ T8154] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[ 1501.085510][   T24] usb 1-1: new high-speed USB device number 88 using dummy_hcd
[ 1501.138395][ T8171] loop5: detected capacity change from 0 to 512
[ 1501.170770][ T8171] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1501.254285][ T8172] loop2: detected capacity change from 0 to 4096
[ 1501.262269][ T8171] EXT4-fs error (device loop5): xattr_find_entry:337: inode #15: comm syz.5.15135: corrupted xattr entries
[ 1501.304060][ T8172] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1501.324386][   T24] usb 1-1: Using ep0 maxpacket: 32
[ 1501.358361][ T8171] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1501.360162][   T24] usb 1-1: config 0 has an invalid interface number: 110 but max is 0
[ 1501.369349][    C1] EXT4-fs (loop5): error count since last fsck: 1
[ 1501.369379][    C1] EXT4-fs (loop5): initial error at time 1780616381: xattr_find_entry:337: inode 15
[ 1501.369431][    C1] EXT4-fs (loop5): last error at time 1780616381: xattr_find_entry:337: inode 15
[ 1501.406396][ T8169] Process accounting resumed
[ 1501.412594][ T8171] EXT4-fs (loop5): Remounting filesystem read-only
[ 1501.435663][ T8171] EXT4-fs (loop5): 1 truncate cleaned up
[ 1501.464877][ T6250] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1501.465294][ T8184] loop3: detected capacity change from 0 to 64
[ 1501.494209][ T8171] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1501.525363][   T24] usb 1-1: config 0 has no interface number 0
[ 1501.551037][   T24] usb 1-1: config 0 interface 110 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1501.551522][ T8184] hfs: unable to locate alternate MDB
[ 1501.596808][   T24] usb 1-1: config 0 interface 110 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[ 1501.668669][   T24] usb 1-1: config 0 interface 110 altsetting 0 endpoint 0x8B has invalid maxpacket 28739, setting to 1024
[ 1501.687591][ T8184] hfs: continuing without an alternate MDB
[ 1501.713371][   T24] usb 1-1: config 0 interface 110 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[ 1501.744234][   T24] usb 1-1: config 0 interface 110 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[ 1501.754367][   T30] kauditd_printk_skb: 14 callbacks suppressed
[ 1501.754389][   T30] audit: type=1800 audit(1780616381.918:408): pid=8184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.15151" name="file1" dev="loop3" ino=22 res=0 errno=0
[ 1501.765834][ T6276] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1501.782477][   T24] usb 1-1: config 0 interface 110 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[ 1501.803829][   T24] usb 1-1: config 0 interface 110 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1501.838434][   T24] usb 1-1: New USB device found, idVendor=04fc, idProduct=0231, bcdDevice=6f.a9
[ 1501.857928][   T24] usb 1-1: New USB device strings: Mfr=1, Product=237, SerialNumber=2
[ 1501.866898][   T24] usb 1-1: Product: syz
[ 1501.871893][   T34] 
[ 1501.874213][   T34] ======================================================
[ 1501.881219][   T34] WARNING: possible circular locking dependency detected
[ 1501.888231][   T34] syzkaller #0 Tainted: G             L     
[ 1501.894203][   T34] ------------------------------------------------------
[ 1501.901210][   T34] kworker/u8:2/34 is trying to acquire lock:
[ 1501.907186][   T34] ffff88804dd30d70 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0
[ 1501.917957][   T34] 
[ 1501.917957][   T34] but task is already holding lock:
[ 1501.925310][   T34] ffff88806181a0a8 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1501.934861][   T34] 
[ 1501.934861][   T34] which lock already depends on the new lock.
[ 1501.934861][   T34] 
[ 1501.945253][   T34] 
[ 1501.945253][   T34] the existing dependency chain (in reverse order) is:
[ 1501.954249][   T34] 
[ 1501.954249][   T34] -> #1 (&tree->tree_lock#2/1){+.+.}-{4:4}:
[ 1501.962360][   T34]        __mutex_lock+0x1a4/0x1b10
[ 1501.967493][   T34]        hfs_find_init+0x273/0x330
[ 1501.972607][   T34]        hfs_ext_read_extent+0x19d/0x9d0
[ 1501.978275][   T34]        hfs_get_block+0x576/0x830
[ 1501.983407][   T34]        block_read_full_folio+0x36c/0x8e0
[ 1501.989230][   T34]        filemap_read_folio+0xfc/0x3b0
[ 1501.994699][   T34]        do_read_cache_folio+0x2d7/0x6b0
[ 1502.000346][   T34]        read_cache_page+0x5b/0x1b0
[ 1502.005556][   T34]        __hfs_bnode_create+0x718/0x9a0
[ 1502.011111][   T34]        hfs_bnode_find+0x2d5/0xd30
[ 1502.016324][   T34]        hfs_brec_find+0x39d/0x620
[ 1502.021444][   T34]        hfs_brec_read+0x26/0x120
[ 1502.026479][   T34]        hfs_cat_find_brec+0xdc/0x2a0
[ 1502.031868][   T34]        hfs_fill_super+0x58d/0x7e0
[ 1502.037074][   T34]        get_tree_bdev_flags+0x38c/0x620
[ 1502.042748][   T34]        vfs_get_tree+0x92/0x320
[ 1502.047700][   T34]        path_mount+0x7d0/0x23d0
[ 1502.052648][   T34]        __x64_sys_mount+0x293/0x310
[ 1502.057941][   T34]        do_syscall_64+0x115/0x870
[ 1502.063071][   T34]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1502.069482][   T34] 
[ 1502.069482][   T34] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}:
[ 1502.078702][   T34]        __lock_acquire+0x14b8/0x2630
[ 1502.084075][   T34]        lock_acquire+0x1b1/0x370
[ 1502.089098][   T34]        __mutex_lock+0x1a4/0x1b10
[ 1502.094222][   T34]        hfs_extend_file+0xa6/0xcf0
[ 1502.099435][   T34]        hfs_bmap_reserve+0x2ab/0x3a0
[ 1502.104813][   T34]        __hfs_ext_write_extent+0x3c4/0x510
[ 1502.110720][   T34]        hfs_ext_write_extent+0x1b7/0x200
[ 1502.116460][   T34]        hfs_write_inode+0xce/0xab0
[ 1502.121659][   T34]        __writeback_single_inode+0xcd4/0x1350
[ 1502.127835][   T34]        writeback_sb_inodes+0x766/0x1c60
[ 1502.133581][   T34]        wb_writeback+0x1bf/0xb90
[ 1502.138626][   T34]        wb_workfn+0x14f/0xc00
[ 1502.143409][   T34]        process_one_work+0xa0e/0x1980
[ 1502.148878][   T34]        worker_thread+0x5ef/0xe50
[ 1502.153991][   T34]        kthread+0x370/0x450
[ 1502.158579][   T34]        ret_from_fork+0x72b/0xd50
[ 1502.163688][   T34]        ret_from_fork_asm+0x1a/0x30
[ 1502.168980][   T34] 
[ 1502.168980][   T34] other info that might help us debug this:
[ 1502.168980][   T34] 
[ 1502.179190][   T34]  Possible unsafe locking scenario:
[ 1502.179190][   T34] 
[ 1502.186620][   T34]        CPU0                    CPU1
[ 1502.191965][   T34]        ----                    ----
[ 1502.197310][   T34]   lock(&tree->tree_lock#2/1);
[ 1502.202181][   T34]                                lock(&HFS_I(tree->inode)->extents_lock);
[ 1502.210683][   T34]                                lock(&tree->tree_lock#2/1);
[ 1502.218073][   T34]   lock(&HFS_I(tree->inode)->extents_lock);
[ 1502.224048][   T34] 
[ 1502.224048][   T34]  *** DEADLOCK ***
[ 1502.224048][   T34] 
[ 1502.232171][   T34] 3 locks held by kworker/u8:2/34:
[ 1502.237269][   T34]  #0: ffff8880206a7940 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1502.248005][   T34]  #1: ffffc90000aa7d08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1502.259870][   T34]  #2: ffff88806181a0a8 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1502.269848][   T34] 
[ 1502.269848][   T34] stack backtrace:
[ 1502.275729][   T34] CPU: 1 UID: 0 PID: 34 Comm: kworker/u8:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1502.275775][   T34] Tainted: [L]=SOFTLOCKUP
[ 1502.275786][   T34] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1502.275809][   T34] Workqueue: writeback wb_workfn (flush-7:3)
[ 1502.275867][   T34] Call Trace:
[ 1502.275881][   T34]  <TASK>
[ 1502.275892][   T34]  dump_stack_lvl+0x100/0x190
[ 1502.275925][   T34]  print_circular_bug.cold+0x178/0x1c7
[ 1502.275981][   T34]  check_noncircular+0x146/0x160
[ 1502.276013][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.276059][   T34]  __lock_acquire+0x14b8/0x2630
[ 1502.276100][   T34]  ? __pfx_stack_trace_save+0x10/0x10
[ 1502.276156][   T34]  lock_acquire+0x1b1/0x370
[ 1502.276191][   T34]  ? hfs_extend_file+0xa6/0xcf0
[ 1502.276243][   T34]  ? __pfx___might_resched+0x10/0x10
[ 1502.276286][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.276325][   T34]  ? add_lock_to_list+0x99/0x110
[ 1502.276378][   T34]  __mutex_lock+0x1a4/0x1b10
[ 1502.276430][   T34]  ? hfs_extend_file+0xa6/0xcf0
[ 1502.276481][   T34]  ? hfs_extend_file+0xa6/0xcf0
[ 1502.276532][   T34]  ? hfs_write_inode+0xce/0xab0
[ 1502.276562][   T34]  ? __writeback_single_inode+0xcd4/0x1350
[ 1502.276614][   T34]  ? __pfx___mutex_lock+0x10/0x10
[ 1502.276665][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.276705][   T34]  ? lock_acquire+0x1b1/0x370
[ 1502.276744][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.276783][   T34]  ? trace_contention_end+0x122/0x170
[ 1502.276824][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.276868][   T34]  ? hfs_extend_file+0xa6/0xcf0
[ 1502.276920][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.276959][   T34]  hfs_extend_file+0xa6/0xcf0
[ 1502.277012][   T34]  ? __pfx_hfs_extend_file+0x10/0x10
[ 1502.277062][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.277108][   T34]  hfs_bmap_reserve+0x2ab/0x3a0
[ 1502.277159][   T34]  __hfs_ext_write_extent+0x3c4/0x510
[ 1502.277209][   T34]  ? hfs_find_init+0x273/0x330
[ 1502.277245][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.277288][   T34]  hfs_ext_write_extent+0x1b7/0x200
[ 1502.277340][   T34]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1502.277396][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.277435][   T34]  ? __mpage_writepages+0x1a8/0x210
[ 1502.277468][   T34]  ? __pfx___mpage_writepages+0x10/0x10
[ 1502.277501][   T34]  hfs_write_inode+0xce/0xab0
[ 1502.277533][   T34]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1502.277563][   T34]  ? __lock_acquire+0x4a5/0x2630
[ 1502.277610][   T34]  ? __writeback_single_inode+0x454/0x1350
[ 1502.277661][   T34]  ? __writeback_single_inode+0x454/0x1350
[ 1502.277712][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.277757][   T34]  __writeback_single_inode+0xcd4/0x1350
[ 1502.277813][   T34]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1502.277864][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.277907][   T34]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1502.277952][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.277994][   T34]  writeback_sb_inodes+0x766/0x1c60
[ 1502.278055][   T34]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1502.278134][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.278173][   T34]  ? rcu_is_watching+0x12/0xc0
[ 1502.278217][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.278257][   T34]  ? queue_io+0x287/0x540
[ 1502.278301][   T34]  wb_writeback+0x1bf/0xb90
[ 1502.278356][   T34]  ? __pfx_wb_writeback+0x10/0x10
[ 1502.278411][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.278451][   T34]  ? mark_held_locks+0x40/0x70
[ 1502.278485][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1502.278531][   T34]  wb_workfn+0x14f/0xc00
[ 1502.278582][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.278623][   T34]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1502.278669][   T34]  ? __pfx_wb_workfn+0x10/0x10
[ 1502.278721][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.278763][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.278804][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.278844][   T34]  ? rcu_is_watching+0x12/0xc0
[ 1502.278891][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.278934][   T34]  process_one_work+0xa0e/0x1980
[ 1502.278981][   T34]  ? __pfx_process_one_work+0x10/0x10
[ 1502.279017][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.279064][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.279107][   T34]  worker_thread+0x5ef/0xe50
[ 1502.279151][   T34]  ? kthread+0x13a/0x450
[ 1502.279183][   T34]  ? __pfx_worker_thread+0x10/0x10
[ 1502.279220][   T34]  kthread+0x370/0x450
[ 1502.279251][   T34]  ? __pfx_kthread+0x10/0x10
[ 1502.279286][   T34]  ret_from_fork+0x72b/0xd50
[ 1502.279323][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[ 1502.279361][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.279401][   T34]  ? __switch_to+0x800/0x1100
[ 1502.279444][   T34]  ? __switch_to_asm+0x39/0x70
[ 1502.279486][   T34]  ? __pfx_kthread+0x10/0x10
[ 1502.279521][   T34]  ret_from_fork_asm+0x1a/0x30
[ 1502.279576][   T34]  </TASK>
[ 1502.282162][ T2168] usb 3-1: new low-speed USB device number 81 using dummy_hcd
[ 1502.305868][   T24] usb 1-1: Manufacturer: syz
[ 1502.356883][   T34] hfs: new node 0 already hashed?
[ 1502.357608][   T24] usb 1-1: SerialNumber: syz
[ 1502.363458][   T34] ------------[ cut here ]------------
[ 1502.452665][   T24] usb 1-1: config 0 descriptor??
[ 1502.455092][   T34] 1
[ 1502.466062][   T24] spcp8x5 1-1:0.110: SPCP8x5 converter detected
[ 1502.470938][   T34] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#0: kworker/u8:2/34
[ 1502.477991][   T24] usb 1-1: SPCP8x5 converter now attached to ttyUSB0
[ 1502.481326][   T34] Modules linked in:
[ 1502.481357][   T34] CPU: 0 UID: 0 PID: 34 Comm: kworker/u8:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1502.738080][   T24] usb 1-1: USB disconnect, device number 88
[ 1502.742042][   T34] Tainted: [L]=SOFTLOCKUP
[ 1502.742058][   T34] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1502.742083][   T34] Workqueue: writeback wb_workfn (flush-7:3)
[ 1502.742153][   T34] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1502.754023][   T24] SPCP8x5 ttyUSB0: SPCP8x5 converter now disconnected from ttyUSB0
[ 1502.754597][   T34] Code: f5 64 63 0a e9 27 3e d1 01 e8 3b 13 e1 00 4c 89 f7 e8 e3 64 63 0a e8 2e 13 e1 00 89 ee 48 c7 c7 c0 e7 d1 8b e8 40 e1 fa ff 90 <0f> 0b 90 e9 29 41 d1 01 e8 12 13 e1 00 e8 cd 4b 4d 00 e9 85 43 d1
[ 1502.784777][   T24] spcp8x5 1-1:0.110: device disconnected
[ 1502.786707][   T34] RSP: 0018:ffffc90000aa7020 EFLAGS: 00010282
[ 1502.898178][   T34] RAX: 000000000000001f RBX: ffff888077e81700 RCX: 0000000000000000
[ 1502.906180][   T34] RDX: 000000000000001f RSI: ffffffff81e71b29 RDI: fffff52000154df5
[ 1502.914184][   T34] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1502.922314][   T34] R10: 0000000080000000 R11: 303178302f303f20 R12: dffffc0000000000
[ 1502.930291][   T34] R13: ffff88806181a000 R14: ffff88806181a0d8 R15: 0000000000000000
[ 1502.938325][   T34] FS:  0000000000000000(0000) GS:ffff888124386000(0000) knlGS:0000000000000000
[ 1502.947296][   T34] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1502.953923][   T34] CR2: 00007f3e597e8158 CR3: 000000006707a000 CR4: 0000000000350ef0
[ 1502.961900][   T34] Call Trace:
[ 1502.965189][   T34]  <TASK>
[ 1502.968113][   T34]  ? _raw_spin_unlock+0x28/0x50
[ 1502.972989][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1502.978659][   T34]  ? hfs_bnode_put+0x208/0x480
[ 1502.983523][   T34]  hfs_bmap_alloc+0x5a7/0x6b0
[ 1502.988258][   T34]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1502.993490][   T34]  ? __asan_memcpy+0x3c/0x60
[ 1502.998123][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.003795][   T34]  ? hfs_bnode_read.part.0+0x298/0x330
[ 1503.009415][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.015073][   T34]  ? folio_mark_accessed+0xf3/0x1040
[ 1503.020403][   T34]  hfs_btree_inc_height.isra.0+0xff/0x820
[ 1503.026177][   T34]  ? rcu_is_watching+0x12/0xc0
[ 1503.030974][   T34]  ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1503.037334][   T34]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1503.042584][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.048230][   T34]  ? _raw_spin_unlock+0x28/0x50
[ 1503.053118][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.058797][   T34]  ? hfs_bnode_put+0x208/0x480
[ 1503.063605][   T34]  hfs_brec_insert+0x8ba/0xc20
[ 1503.068399][   T34]  ? __pfx_hfs_brec_insert+0x10/0x10
[ 1503.073720][   T34]  ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1503.078792][   T34]  __hfs_ext_write_extent+0x3ef/0x510
[ 1503.084231][   T34]  ? hfs_find_init+0x273/0x330
[ 1503.089017][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.094841][   T34]  hfs_ext_write_extent+0x1b7/0x200
[ 1503.100083][   T34]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1503.105885][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.111558][   T34]  ? __mpage_writepages+0x1a8/0x210
[ 1503.116794][   T34]  ? __pfx___mpage_writepages+0x10/0x10
[ 1503.122358][   T34]  hfs_write_inode+0xce/0xab0
[ 1503.127085][   T34]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1503.132407][   T34]  ? __lock_acquire+0x4a5/0x2630
[ 1503.137400][   T34]  ? __writeback_single_inode+0x454/0x1350
[ 1503.143248][   T34]  ? __writeback_single_inode+0x454/0x1350
[ 1503.149103][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.154763][   T34]  __writeback_single_inode+0xcd4/0x1350
[ 1503.160445][   T34]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1503.166561][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.172249][   T34]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1503.177488][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.183198][   T34]  writeback_sb_inodes+0x766/0x1c60
[ 1503.188476][   T34]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1503.194168][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.199839][   T34]  ? rcu_is_watching+0x12/0xc0
[ 1503.204708][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.210377][   T34]  ? queue_io+0x287/0x540
[ 1503.214727][   T34]  wb_writeback+0x1bf/0xb90
[ 1503.219260][   T34]  ? __pfx_wb_writeback+0x10/0x10
[ 1503.224343][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.229999][   T34]  ? mark_held_locks+0x40/0x70
[ 1503.234810][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1503.240061][   T34]  wb_workfn+0x14f/0xc00
[ 1503.244387][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.250034][   T34]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1503.255890][   T34]  ? __pfx_wb_workfn+0x10/0x10
[ 1503.260686][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.267860][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.274015][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.279666][   T34]  ? rcu_is_watching+0x12/0xc0
[ 1503.284464][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.290135][   T34]  process_one_work+0xa0e/0x1980
[ 1503.295141][   T34]  ? __pfx_process_one_work+0x10/0x10
[ 1503.300531][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.306220][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.311965][   T34]  worker_thread+0x5ef/0xe50
[ 1503.316595][   T34]  ? kthread+0x13a/0x450
[ 1503.320849][   T34]  ? __pfx_worker_thread+0x10/0x10
[ 1503.325998][   T34]  kthread+0x370/0x450
[ 1503.330116][   T34]  ? __pfx_kthread+0x10/0x10
[ 1503.334722][   T34]  ret_from_fork+0x72b/0xd50
[ 1503.339358][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[ 1503.344514][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.350228][   T34]  ? __switch_to+0x800/0x1100
[ 1503.354931][   T34]  ? __switch_to_asm+0x39/0x70
[ 1503.359753][   T34]  ? __pfx_kthread+0x10/0x10
[ 1503.364371][   T34]  ret_from_fork_asm+0x1a/0x30
[ 1503.369143][   T34]  </TASK>
[ 1503.372188][   T34] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1503.379470][   T34] CPU: 0 UID: 0 PID: 34 Comm: kworker/u8:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1503.390321][   T34] Tainted: [L]=SOFTLOCKUP
[ 1503.394630][   T34] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1503.404679][   T34] Workqueue: writeback wb_workfn (flush-7:3)
[ 1503.410693][   T34] Call Trace:
[ 1503.413958][   T34]  <TASK>
[ 1503.416881][   T34]  dump_stack_lvl+0x100/0x190
[ 1503.421555][   T34]  vpanic+0x552/0x970
[ 1503.425534][   T34]  ? __pfx_vpanic+0x10/0x10
[ 1503.430032][   T34]  ? lock_release+0x245/0x310
[ 1503.434716][   T34]  panic+0xd1/0xe0
[ 1503.438438][   T34]  ? __pfx_panic+0x10/0x10
[ 1503.442860][   T34]  ? check_panic_on_warn+0x1f/0x90
[ 1503.447985][   T34]  check_panic_on_warn.cold+0x19/0x34
[ 1503.453366][   T34]  ? hfs_bnode_create.cold+0x41/0x49
[ 1503.458663][   T34]  __warn.cold+0x191/0x328
[ 1503.463086][   T34]  __report_bug+0x296/0x3d0
[ 1503.467610][   T34]  ? hfs_bnode_create.cold+0x41/0x49
[ 1503.472911][   T34]  ? __pfx___report_bug+0x10/0x10
[ 1503.477953][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.483591][   T34]  ? irq_work_queue+0xce/0x100
[ 1503.488361][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.494001][   T34]  ? __wake_up_klogd+0xe2/0x140
[ 1503.498860][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.504508][   T34]  ? vprintk_emit+0x1c9/0x6b0
[ 1503.509202][   T34]  ? __pfx_vprintk_emit+0x10/0x10
[ 1503.514242][   T34]  ? hfs_bnode_create.cold+0x41/0x49
[ 1503.519533][   T34]  report_bug+0xb2/0x220
[ 1503.523786][   T34]  ? hfs_bnode_create.cold+0x41/0x49
[ 1503.529074][   T34]  handle_bug+0x16a/0x2a0
[ 1503.533399][   T34]  exc_invalid_op+0x17/0x50
[ 1503.537901][   T34]  asm_exc_invalid_op+0x1a/0x20
[ 1503.542750][   T34] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1503.548655][   T34] Code: f5 64 63 0a e9 27 3e d1 01 e8 3b 13 e1 00 4c 89 f7 e8 e3 64 63 0a e8 2e 13 e1 00 89 ee 48 c7 c7 c0 e7 d1 8b e8 40 e1 fa ff 90 <0f> 0b 90 e9 29 41 d1 01 e8 12 13 e1 00 e8 cd 4b 4d 00 e9 85 43 d1
[ 1503.568261][   T34] RSP: 0018:ffffc90000aa7020 EFLAGS: 00010282
[ 1503.574325][   T34] RAX: 000000000000001f RBX: ffff888077e81700 RCX: 0000000000000000
[ 1503.582291][   T34] RDX: 000000000000001f RSI: ffffffff81e71b29 RDI: fffff52000154df5
[ 1503.590257][   T34] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1503.598220][   T34] R10: 0000000080000000 R11: 303178302f303f20 R12: dffffc0000000000
[ 1503.606184][   T34] R13: ffff88806181a000 R14: ffff88806181a0d8 R15: 0000000000000000
[ 1503.614154][   T34]  ? vprintk_emit+0x1c9/0x6b0
[ 1503.618848][   T34]  ? _raw_spin_unlock+0x28/0x50
[ 1503.623710][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.629351][   T34]  ? hfs_bnode_put+0x208/0x480
[ 1503.634135][   T34]  hfs_bmap_alloc+0x5a7/0x6b0
[ 1503.638837][   T34]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1503.644050][   T34]  ? __asan_memcpy+0x3c/0x60
[ 1503.648647][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.654292][   T34]  ? hfs_bnode_read.part.0+0x298/0x330
[ 1503.659765][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.665405][   T34]  ? folio_mark_accessed+0xf3/0x1040
[ 1503.670711][   T34]  hfs_btree_inc_height.isra.0+0xff/0x820
[ 1503.676444][   T34]  ? rcu_is_watching+0x12/0xc0
[ 1503.681221][   T34]  ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1503.687565][   T34]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1503.692774][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.698414][   T34]  ? _raw_spin_unlock+0x28/0x50
[ 1503.703273][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.708912][   T34]  ? hfs_bnode_put+0x208/0x480
[ 1503.713687][   T34]  hfs_brec_insert+0x8ba/0xc20
[ 1503.718470][   T34]  ? __pfx_hfs_brec_insert+0x10/0x10
[ 1503.723772][   T34]  ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1503.728812][   T34]  __hfs_ext_write_extent+0x3ef/0x510
[ 1503.734205][   T34]  ? hfs_find_init+0x273/0x330
[ 1503.738974][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.744615][   T34]  hfs_ext_write_extent+0x1b7/0x200
[ 1503.749833][   T34]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1503.755580][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.761225][   T34]  ? __mpage_writepages+0x1a8/0x210
[ 1503.766428][   T34]  ? __pfx___mpage_writepages+0x10/0x10
[ 1503.771982][   T34]  hfs_write_inode+0xce/0xab0
[ 1503.776664][   T34]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1503.781951][   T34]  ? __lock_acquire+0x4a5/0x2630
[ 1503.786908][   T34]  ? __writeback_single_inode+0x454/0x1350
[ 1503.792740][   T34]  ? __writeback_single_inode+0x454/0x1350
[ 1503.798572][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.804221][   T34]  __writeback_single_inode+0xcd4/0x1350
[ 1503.809878][   T34]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1503.815963][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.821602][   T34]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1503.826812][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.832459][   T34]  writeback_sb_inodes+0x766/0x1c60
[ 1503.837684][   T34]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1503.843361][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.849000][   T34]  ? rcu_is_watching+0x12/0xc0
[ 1503.853776][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.859415][   T34]  ? queue_io+0x287/0x540
[ 1503.863756][   T34]  wb_writeback+0x1bf/0xb90
[ 1503.868281][   T34]  ? __pfx_wb_writeback+0x10/0x10
[ 1503.873329][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.878975][   T34]  ? mark_held_locks+0x40/0x70
[ 1503.883767][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1503.888986][   T34]  wb_workfn+0x14f/0xc00
[ 1503.893248][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.898886][   T34]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1503.904703][   T34]  ? __pfx_wb_workfn+0x10/0x10
[ 1503.909486][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.915126][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.920765][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.926404][   T34]  ? rcu_is_watching+0x12/0xc0
[ 1503.931180][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.936821][   T34]  process_one_work+0xa0e/0x1980
[ 1503.941776][   T34]  ? __pfx_process_one_work+0x10/0x10
[ 1503.947151][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.952795][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.958437][   T34]  worker_thread+0x5ef/0xe50
[ 1503.963044][   T34]  ? kthread+0x13a/0x450
[ 1503.967284][   T34]  ? __pfx_worker_thread+0x10/0x10
[ 1503.972401][   T34]  kthread+0x370/0x450
[ 1503.976471][   T34]  ? __pfx_kthread+0x10/0x10
[ 1503.981062][   T34]  ret_from_fork+0x72b/0xd50
[ 1503.985664][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[ 1503.990785][   T34]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1503.996428][   T34]  ? __switch_to+0x800/0x1100
[ 1504.001114][   T34]  ? __switch_to_asm+0x39/0x70
[ 1504.005890][   T34]  ? __pfx_kthread+0x10/0x10
[ 1504.010480][   T34]  ret_from_fork_asm+0x1a/0x30
[ 1504.015282][   T34]  </TASK>
[ 1504.019227][   T34] Kernel Offset: disabled
[ 1504.023538][   T34] Rebooting in 86400 seconds..