last executing test programs:

16m5.377404905s ago: executing program 32 (id=58):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newsa={0x10c, 0x10, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2, 0x0, 0x10000000}, {0x0, 0x200000, 0x7}, {0x40000, 0xfffffffd, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@coaddr={0x14, 0xe, @in6=@remote}, @extra_flags={0x8, 0x18, 0xe}]}, 0x10c}}, 0x0)

15m28.797125283s ago: executing program 33 (id=436):
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0x1d, &(0x7f0000000140)=ANY=[@ANYBLOB="03"], 0x4)

15m27.809178671s ago: executing program 34 (id=445):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000400), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r0, 0x40505331, &(0x7f0000000180)={0xf, 0x0, 0x0, 'queue1\x00'})

8m36.182428772s ago: executing program 1 (id=5797):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e23, @broadcast}], 0x12)

8m35.919677644s ago: executing program 1 (id=5800):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x8000, &(0x7f00000006c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0x100}}], [{@fsname={'fsname', 0x3d, '9p\x00'}}]}})

8m35.713983605s ago: executing program 1 (id=5803):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37, 0x8, 0x0, 0x0}}, 0x10)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)

8m35.499522685s ago: executing program 1 (id=5807):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x2, &(0x7f0000000500)={[{@noquota}, {@gid}, {@errors_continue}, {@errors_continue}, {@gid={'gid', 0x3d, 0xee00}}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@quota}, {@errors_continue}, {@discard_size}]}, 0x1, 0x61c0, &(0x7f0000006740)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})

8m33.791776629s ago: executing program 1 (id=5823):
r0 = syz_open_dev$mouse(&(0x7f0000000180), 0x0, 0x2)
write$binfmt_script(r0, &(0x7f0000000200)={'#! ', './file0', [], 0xa, "bafc3b517da80fcb47012ba38ab51724caf981fe7daa63d385d9043d5e68996f382c319ebad19586fc3bd8a2186053a44e22739b5b09bb32878a78f3d18aaf55d2f57d182e637bb2f9e0f0e2708bbc2d02eb"}, 0x5d)

8m32.132182121s ago: executing program 1 (id=5834):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="40000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="00000000000000001400128009000100626f6e640000000004000280070001"], 0x40}}, 0x0)

8m31.591554958s ago: executing program 35 (id=5834):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="40000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="00000000000000001400128009000100626f6e640000000004000280070001"], 0x40}}, 0x0)

2m38.183385081s ago: executing program 8 (id=10338):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000280)={0xf0f022})
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x2, @sdr={0x4745504d, 0x8}})

2m37.950175733s ago: executing program 8 (id=10342):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f0000001080)=ANY=[@ANYBLOB="180000000000000000000000feffffff180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000050000008500000006000000b7080000000000007baaf8ff00000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000009400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc)

2m37.652921438s ago: executing program 8 (id=10345):
r0 = memfd_create(&(0x7f0000000080)='\x01\xfd\xae.+\xa6\x8c\xb6?2\x199\x94S,|x?Ue[\xbd\xe1!\x033\xbc\'#\xff\x17\x9b%\xf7[d  \x97\xf5G\x97A\xc2\xd8\xf0Uq\xe6+\xa5l\x94\v\xb6\a\x17\\\xfb\x04!\xe4\x10s\xb9k\xbd\x96b\xf5\x7f+o\xf0\xe7:\xc4\xb1\xa2\x1c\xffC;\x94Q\xa3\xdfyJ\xa2\xf3F\r\xb6}\x9c\xecC\v\xcf\xeb\xe4\x9aR\xe5,\x82\x03\x00\x19\x8d\xe8\xc6\xb9\xe4\x99I\x8a\x19P\xb8\x8cx\b\x99\x04R\x05\xaf\xa2\xea5\f\xcc\x1a\x9b\x10Uf\xa5\xf7\x80Tgiz\nX\b\x91\xfd0\x8e\xb6\xa3\v#\xa1\xdf\xb4\xe1\xe6\xb4\xef\xa8i\xd8\xa2\xd2(\x98\x9bA\x8f\x13\xeb\xf4b/\xef!\x8f\xf6]-\xe9k\xb62\x89gE\x95\x13\xf4\xc7\xb2\xf5\\\x17\x90\xb5\xa6\xa8\xb8o\x0f\xe2 \xe7\x9c$\xd7\xf2@\xf7cdv[\t\x00\x8d\xf3\xcc1\xb0$\x1e\xff\xf0P\xb2\x97\xb8\xbc\xeb\x91\x87\x8bu\xbf\xd4\'\xff\x1f\f\x016\x9dQ\xee\x01\xe8\bY\x00\xb2\x06\xa6\xbel\x9b.o\xbe\x80\x9dx\xd5O\xd6h\\I\xc9\x8d\a\x1d\xc9\x0f\x82\xdbs\xc7\x00_\x9e\xa2\xd1\xb3\xac\x8d\xd8\xb4\xb4\xea\x90Q\xd8\xc7\xeb%\x8bOp\x1ab\x96\xcf\xbb\x15\xcf\xfcN\xed\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00s\xaf\xa2\x14]p+\x96\x1ei|n\xda\xee\\\xae\x96*\x82\xe8\xcfOKC\x0f\xef\x0e\xafe\xb5*\x89\x18\xb2w\xeaT\xdd\xb3g6\xbc\x85\xb2Y\xccv\x06\x00\x00\x00\xc5e\x90\xc51\x9f\v_# \b\xa5\xbcP,|\xe9\xd6s\x1f\x1f\xbe\xd3\x80\xb1\xa8 \xce|df\x903\v\x02\xea.\x03X\xb5\xe4,8\xb7\xadEI\xdcA\xa7\xcc\xd7\xf9n\x1b\x95\xf8\x11Z\xe6:\x03\xce\xfe\x02\x8ctdy~_oC\x9e\xef\xf0\xa2K\xe9;\x8e:\x01\x03C\x92\xeb\x16\x1c\xbf\xbe\xef\xccUxhg\xffY\xe6\x83\xa6z\xff\x01\x9d o_{!O\xaajU\x84 \xe9\xb59r\x9cw\x18Z\xd3\xd1\x0e\xba\\\xdb\xf0\xe1\x86\t\xaf\vi\xdc\xbf?\xf5\n\xbd^\x05\xc0\xceuC}\xa8\xc7\xad\x86\xd7\x15&\xb9]1\x05J\x96\xf0\x84\xc1\f\xa6p\x96\xb8\x02\x13pA\x19\tf\x12\x88\xd4\r\xa9\x10\x1d\xcf\xebKlb\xe5:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00G\xdf\xbb\xc0_\x99F\xf4n]\x14\xbc\xcd\xd3\x9f\x9fe\xc5\xe6\xe8Mb\xc6\x82\x82\xcc\xcaXe\xe1\xa2\xaa\x02\x86\xb8\x18\xe2C\xeb\xa9\x17&\x01&\'w\xa1t0\x80\xf0\x93\x80\x9f\x9b\xe0\x9f\xea\xb9\x9eD]#V\xda\x92\xca\xc6\xfa.\xd6\xe31\xfe\xe8\x02\xebX\xbd\nz\x01O\xd3r\xa2\xbf\xe8\xb9\x02\xdaYQ<\xf2\xad\xe7\xd3\x95\xf5-,-Lh\xf7H\xd3\x86\x0e\x90\xe4\x18\xa5\xf0?\x11\f=\rk\xaa\x00\xed\x92\xf9\x98\x8e\xde|\xaa\x9a\xf5\x9d\x99Y\x1c\x15\x88O\xb3\x9a\xe3\xb2\x9f\x80/\xf7\xfe\x964\xd2\xf8W1\xc8\\\x16\x87\xf0w\xb4\x04\x05\x92\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8cz\xd1n\x1cl\xf4\x1ai4\xa1\xe3E\xbd\xcci\xbe\xe4! \xfd\x85\a\xab\x82\t74P`f3\xd3\xc6z\xa8\x05\x98\xfc\xc4\x86\x02\x9a\xeb\x80\xe3I4\xd9T\xe7\x00\xb8]e0\x1f\xd6dA\x11G\r\xe8\xaf\xf9=7\x05s\x9f\xc9\xa9\x1f35 v\xf6LY\xa3-\xd5\x1f\xc6\xca\xd9a\xabv\xb5\x92\x05\x1c\xady\xfd\x0e\xde\x15\xd63\x12T\xde\xaa H@~\x9a\xcaa\xc6\xb6\xfc\x84\xd2e4,Z8\x82\x8e\x8c\x96CU\xf3\xe7z\x03\xba\t\xedX\x03\xec\xd6v\x17;\xb6', 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xcdb7276612ddc41e, 0x12, r0, 0x2000)

2m37.40170353s ago: executing program 8 (id=10347):
r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/ip_tables_names\x00')
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000740)=""/4100, 0x1004}], 0x1, 0x145, 0x0)
preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000000)=""/22, 0x16}], 0x1, 0x771, 0x5)

2m37.076354596s ago: executing program 8 (id=10351):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000380)="$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")
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)

2m35.964386391s ago: executing program 8 (id=10362):
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x0, @local}}, 0x1e)
bind$pptp(r0, &(0x7f00000001c0)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)

2m20.762180031s ago: executing program 36 (id=10362):
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x0, @local}}, 0x1e)
bind$pptp(r0, &(0x7f00000001c0)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)

2m19.060926815s ago: executing program 0 (id=10453):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000300)='./file1\x00', 0x16, &(0x7f0000000380)={[{@barrier}, {@subvolid}, {@acl}, {@noflushoncommit}, {}, {@autodefrag}, {@nossd_spread}, {@barrier}]}, 0x15, 0x5102, &(0x7f000000a2c0)="$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")
r0 = open(&(0x7f00000003c0)='./file2\x00', 0x81, 0x0)
ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, 0x0)

2m17.060368403s ago: executing program 0 (id=10464):
r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='erspan0\x00', 0x10)
bind$llc(r0, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42, @multicast}, 0x10)

2m15.815657915s ago: executing program 0 (id=10470):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket$packet(0x11, 0x3, 0x300)
getsockopt$packet_int(r0, 0x107, 0xf, 0x0, &(0x7f00000000c0))

2m15.579734046s ago: executing program 0 (id=10471):
syz_mount_image$nilfs2(&(0x7f0000000a00), &(0x7f0000000080)='./file0\x00', 0x800408, &(0x7f0000000500)=ANY=[@ANYBLOB="00c1d143753d2c083ee422f83383b46202c4de2de291601c80052445e264d4679b97678c14da06e79245374cfb5a59ebaeff670caadb5694b952eb30672a383ac36fadcd60e27a35d7"], 0x1, 0xa0e, &(0x7f00000020c0)="$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")
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

2m14.741027277s ago: executing program 0 (id=10477):
r0 = syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000)
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(r0, 0x40146f2c, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x7, 0x4})
pselect6(0x40, &(0x7f0000000900)={0x6, 0x0, 0x1ff, 0x3, 0x5, 0x52a9396a, 0x10001, 0x8}, 0x0, &(0x7f0000000980)={0x8, 0x7fff, 0x0, 0xc, 0xf, 0x6, 0x3, 0x9}, &(0x7f00000009c0)={0x0, 0x3938700}, 0x0)

2m13.785815725s ago: executing program 0 (id=10483):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a58000000060a010400000000000000000a0000010900010073797a31000000002c0004802800018007000100637400001c0002800500030001000000080002400000001108000140000000090900020073797a32"], 0x80}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)

2m13.223419032s ago: executing program 37 (id=10483):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a58000000060a010400000000000000000a0000010900010073797a31000000002c0004802800018007000100637400001c0002800500030001000000080002400000001108000140000000090900020073797a32"], 0x80}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)

2m12.44299775s ago: executing program 4 (id=10493):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000006380)={0x1c, 0x4a, 0x201, 0x0, 0x0, {0xa, 0x0, 0x300}, [@nested={0x5, 0xa9, 0x0, 0x1, [@generic='4']}]}, 0x1c}}, 0x0)

2m11.994837963s ago: executing program 4 (id=10497):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file1\x00', 0x0, &(0x7f0000000040)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000200)={0x28, 0x4, 0x0, {0x1000000000000001, 0x3}}, 0x28)

2m10.871253549s ago: executing program 4 (id=10502):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000800)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @tproxy={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_TPROXY_REG_ADDR={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x7c}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010)

2m10.457831028s ago: executing program 4 (id=10504):
syz_mount_image$nilfs2(&(0x7f0000000a00), &(0x7f0000000080)='./file0\x00', 0x800408, &(0x7f0000000500)=ANY=[@ANYBLOB="00c1d143753d2c083ee422f83383b46202c4de2de291601c80052445e264d4679b97678c14da06e79245374cfb5a59ebaeff670caadb5694b952eb30672a383ac36fadcd60e27a35d7"], 0x1, 0xa0e, &(0x7f00000020c0)="$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")
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

2m9.872311478s ago: executing program 4 (id=10506):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="b699f75b62641d884d2e43ca00f58cd2488900630c7e0000", 0x18)

2m9.109549855s ago: executing program 4 (id=10509):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4c881, &(0x7f0000000540)={0xa, 0x4e24, 0x10, @mcast2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000007a40)=[{{0x0, 0x0, &(0x7f0000000980)=[{0x0}, {&(0x7f0000000100)='~', 0x1}], 0x2}}], 0x1, 0x4044804)

2m8.573844872s ago: executing program 38 (id=10509):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4c881, &(0x7f0000000540)={0xa, 0x4e24, 0x10, @mcast2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000007a40)=[{{0x0, 0x0, &(0x7f0000000980)=[{0x0}, {&(0x7f0000000100)='~', 0x1}], 0x2}}], 0x1, 0x4044804)

1m35.182388308s ago: executing program 2 (id=10675):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fdinfo\x00')
lseek(r0, 0x4, 0x1)
getdents64(r0, 0xffffffffffffffff, 0x43)

1m34.849460324s ago: executing program 2 (id=10679):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'gre0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x40, 0x10, 0x421, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r1, 0x0, 0x10000}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_SPORT={0x6, 0x10, 0x4e20}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e20}]}}}]}, 0x40}}, 0x0)

1m34.52508739s ago: executing program 2 (id=10683):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x2, 0xc}, 0x50)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
read$eventfd(r0, &(0x7f0000000080), 0x51)

1m34.226609685s ago: executing program 2 (id=10686):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noquota}, {@data_err_ignore}]}, 0xfe, 0x55b, &(0x7f0000000980)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

1m33.531825779s ago: executing program 2 (id=10690):
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000480)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x4c080)
sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)

1m31.763237187s ago: executing program 2 (id=10695):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x4000000)
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @broadcast}, 0x10, &(0x7f0000000000)=[{&(0x7f00000002c0)="2a00a0df167e6d22", 0xdd86}], 0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x0)

1m31.179102075s ago: executing program 39 (id=10695):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x4000000)
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @broadcast}, 0x10, &(0x7f0000000000)=[{&(0x7f00000002c0)="2a00a0df167e6d22", 0xdd86}], 0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x0)

5.389258655s ago: executing program 3 (id=11316):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x4f3, &(0x7f00000005c0)="$eJzs3d1rW+cZAPBHku3YibN8bIwkgyWQQfZBLH8wYm+DsattF4GxwG42yDxb8TLLkbHkLDa5cLa7XOxibLRQetH7/gW9aa4aAqXXLb3tVUloUxfakoKKjiTHH5KjtraU+Px+cKJzzqvoeV/Zz+uj97xHJ4DUOlf7JxMxHBHvRMSx+ubWJ5yrP6w/vj1TWzJRrV75KJM8r7bdfGrz/x2JiLWIGIyIP/424m+ZnXHLK6vz08ViYamxna8sLObLK6sXry9MzxXmCjfGJi9NTU2OToxP7Vlb7/7nH3cvv/H7gdc/+/fD+/99681atYYbZZvbsZfqTe+PE5v29UXEr/YjWA/kGu0Z6nVF+EZqP7/vRsT5JP+PRS75aXbmyb7WDNhv1Wq1+mX1ULvitSpwYGWTY+BMdiQi6uvZ7MhI/Rj+e3E4WyyVKz+7Vlq+MVs/Vj4e/dlr14uF0cZnhePRn6ltjyXrT7fHt21PRCTHwP/LDSXbIzOl4mx3uzpgmyPb8v/TXD3/gZTo/CM/cNDIf0gv+Q/pJf8hveQ/pJf8h/SS/5Be8h/SS/5DerXK/6M9qAfQfbv9/R/oYj2ArvrD5cu1pdq8/n325sryfOnmxdlCeX5kYXlmZKa0tDgyVyrNJdfsLDzr9Yql0uLYz2P5Vr5SKFfy5ZXVqwul5RuVq8l1/VcL/V1pFdCJE2fvvZeJiLVfDCVLbPqTL1fhYKtWM9Hra5CB3sj1ugMCesapP0ivr/EZv+2XhAEvthZf0bth8Ejbol/H4r5UB+iC7G6FTx50ryJA11047fwfpJXxf0gv4/+QXo7xgd3G/6NxL7+WjP/DC2vX8X/gQBtuc/+vo5vu3TUaEd+JiHdz/Yea9/oCDoLsh5nG8f+FYz8a3l46kPk8OUUwEBH/fOXKS7emK5Wlsdr+jzf2V15u7B/vRf2B9raO8DXztJnHAEB6rT++PdNcuhn30W/qkxB2xu9rjE0OJkcwh9czW+YqZPZo7sLanYg41Sp+pnG/8/qZj8PruR3xTzYeM/WXSOrbl9w3vTvxT2+K/8NN8c9863cF0uFerf8ZbZV/2SSnYyP/tvY/w3s0d6LZ/zXnXG+O3+z/cm36v7Mdxvj7q/9qdXo3mez96E7EmZb9bzPeYBJre/xa3S50GP/hX/70/XZl1dfqr9MqflNtLV9ZWMyXV1YvXm/WYvLS1NTk6MT4VD4Zo843R6p3+uWpt++3i19rf0Ob9r+/o/1DjTr9pMP2f/GDB38+t0v8H59v/ft3Mnnc9v5Xqxt1+GmH8T8Z/+Cv7cpq8WfbvP/ZVvGjWRox0WH88v9/59phAHiOlFdW56eLxcKSFStWnu+Vvuhi0Gf1HGvd6aCAffM06XtdEwAAAAAAAAAAAKBT7Wb/3tvD6cS9biMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEHwVQAAAP//QUvQlg==")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
quotactl_fd$Q_QUOTAOFF(r0, 0xffffffff80000302, 0x0, 0x0)

4.802308204s ago: executing program 3 (id=11319):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_GET_SYSNAME(r0, 0x8040552c, 0x0)
ioctl$UI_GET_VERSION(r0, 0x8004552d, &(0x7f0000000080))

3.411150782s ago: executing program 3 (id=11327):
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000e00)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0093d84f10fc3e1ec648b776cb7f8081d09ad0cc63a23840b824f920b21981285520a35f491e6934193661e8f46d"], 0x1, 0xd99, &(0x7f0000000e80)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
unlink(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3.281178189s ago: executing program 7 (id=11328):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000200), 0x20a00, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000480)=0x7)
ioctl$TCSETSF2(r0, 0x8926, 0x0)

2.86070783s ago: executing program 7 (id=11330):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r0, 0x0)
connect$inet(r0, 0x0, 0x0)

2.725559446s ago: executing program 3 (id=11331):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000040)=0x14, 0x4)
sendmmsg$inet6(r0, &(0x7f00000024c0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0xf3000000, @dev={0xfe, 0x80, '\x00', 0x13}, 0x9}, 0x1c, &(0x7f0000000080)=[{&(0x7f0000000140)="a7", 0x1}], 0x1}}], 0x1, 0x200400c0)

2.64133373s ago: executing program 5 (id=11332):
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x1810882, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x0, 0x2be, &(0x7f0000000c80)="$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")
syz_mount_image$fuse(&(0x7f0000000700), &(0x7f00000000c0)='./file0\x00', 0x30c407a, &(0x7f00000006c0)=ANY=[], 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)

2.594439383s ago: executing program 6 (id=11333):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000412, &(0x7f0000000180)={[{@delalloc}, {@data_err_abort}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4}}, {@nodioread_nolock}, {@bh}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@nouid32}, {@quota}, {@nodelalloc}, {@nouid32}, {@dioread_nolock}]}, 0x1, 0x570, &(0x7f00000009c0)="$eJzs3U9rHOUfAPDvbLLp39+vKZSiIhLowUrtpkn8U8FDPYoWC3qvSzINJZtuyW5KEwu2B3vxIkUQsSDe9e5Jim/AV1HQQpES9OAlMpvZJG12s5u4TdLu5wOTPM/O7DzPd595nn1mZ5YNoG+NZH8KES9GxFdJxJGISPJ1g5GvHFnZbunRjclsSWJ5+eM/k8Z2Wb65r+bzDuWZFyLi1y8iThU2lltbWJwpVyrpXJ4frc9eHa0tLJ6+PFueTqfTK+MTE2ffnBh/5+23ehbraxf+/vaje++f/fLE0jc/PTh6J4lzcThftz6O/+Dm+sxIjOSvSTHOPbHh2Mq/XpS5JyS7XQG2ZSDv58XIxoAjMZD3euD593lELAN9KtH/oU815wHNc/senQc/Mx6+t3ICtDH+wZXPRmJ/49zo4FLy2JlRdr473IPyszJ+/uPunWyJ3n0OAdDRzVsRcWZwcOP4l+Tj3/ad6WKbJ8sw/sHOuZfNf15vNf8prM5/osX851CLvrsdnft/4UEPimkrm/+923L+u3rRanggz/2vMecrJpcuV9JsbPt/RJyM4r4sP7ZJGWeX7i+3W7d+/pctWfnNuWBejweD+x5/zlS57e627OGtiJdazn+T1fZPWrR/9npc6LKM4+ndV9qt6xz/07X8Q8SrLdt/7YpWsvn1ydHG8TDaPCo2+uv28d/alb/b8Wftf3Dz+IeT9ddra1sv4/v9/6Tt1j0Wf3R7/NfLQ8knjfRQ/tj1cr0+NxYxlHy48fHxtec2883ts/hPnth8/Fs7/n9Z3c+BiPi0y/hvH/vx5f3dxL9L7T+1pfbfeuL+B59916787sa/Nxqpk/kjWft3iqtDvYqx7aMZAAAAAAAA9q5CRByOpFBaTRcKpdLK/R3H4mChUq3VT12qzl+ZisZ3ZYejWGhe6T6y7n6Isfx+2GZ+/In8REQcjYivBw408qXJamVqt4MHAAAAAAAAAAAAAAAAAACAPeJQm+//Z34f2O3aAU+dn/yG/tWx/+e/0rRvB+oC7Czv/9C/9H/oX132/6GnXQ9g53n/h/6l/0P/0v+hf+n/0L/0fwAAAAAAAAAAAAAAAAAAAAAAAAAAAOipC+fPZ8vy0qMbk1l+6trC/Ez12umptDZTmp2fLE1W566WpqvV6UpamqzOdtpfpVq9OjYe89dH62mtPlpbWLw4W52/Ur94ebY8nV5MizsSFQAAAAAAAAAAAAAAAAAAADxbaguLM+VKJZ3rq0REEnugGs9FYnBvVEOix4ndHpkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYM2/AQAA//9tYjaA")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000902, 0xee00, 0x0)

2.574963824s ago: executing program 7 (id=11334):
unshare(0xa000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x209, @any, 0x2}, 0xe)

2.289739038s ago: executing program 7 (id=11336):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0xe, 0x5}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x3e, 0x1, {0x0, 0xb, 0x5}}}}, @TCA_RATE={0x6, 0x5, {0x9, 0x6}}]}, 0x48}}, 0x4000010)

2.270602209s ago: executing program 5 (id=11337):
syz_mount_image$nilfs2(&(0x7f0000000a40), &(0x7f0000000a80)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00a717cf64394a00dc299b573660f498c4d99aac48af10923f703f53e58070c2bf4575228d0e471df7101ac03b8d48a1b0fc276e395f25b63e9a27cd2ab98888989eec154d97b4dbcf"], 0x1, 0xa09, &(0x7f0000001540)="$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")
r0 = open(&(0x7f0000000080)='.\x00', 0x0, 0x1b5)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40186e8d, &(0x7f0000000040)={0x80, 0x42c0000000003f, 0x400, 0x200000003, 0x7, 0x3, 0x2401})

2.141396395s ago: executing program 3 (id=11338):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001d00070f000000000000000007000000", @ANYRES32=r1, @ANYBLOB="0000d20b060005"], 0x24}}, 0x0)

2.131384116s ago: executing program 9 (id=11339):
r0 = socket(0x840000000002, 0x3, 0xff)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x4e22, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

1.989797843s ago: executing program 6 (id=11340):
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
getsockname$inet(r0, 0x0, &(0x7f0000000140))

1.773591213s ago: executing program 3 (id=11341):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x1, 0x442a, &(0x7f0000004480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020660b, &(0x7f00000001c0)={0x0, 0x110000002000003, 0x1})

1.734431865s ago: executing program 7 (id=11342):
syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x8488, &(0x7f00000001c0), 0x1, 0x10fd, &(0x7f0000001140)="$eJzs2T9rFEEYBvBnds8/3cqmXwQtLCQknF8ghcK1ttqIpDJVrlL8OH4cTWUf0msRsF9Zb/dO5UTwTm1+PzjmvYd9Z2fKmQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMZsmnkhxUSTtlVZKSdN3F4ipJN+V33tdVSp6eLpaPz+dPlknqb4+XZ0kZuoa2tMf3brfzdt4et48OTu5/WL5+8+rF2dnp+ThNSZfL6/1vpYzrAQAAAH7U76z5z+8HAAAAfmdvFwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf6hvNnU7FVWSknTdxeIqSbel78Y/Wh8AAACwu5Iqz5tt+eoaYONhPjZlnQ/jlzLUR3m3pR8AAAD4pf7WWHz/fb3c3JzHH2S2PpcP2d3Mcni4+j8O+XyS1EmOfpr88vrty+lX+vpv7wUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAAAAAPYKAAD///F61s8=")
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

1.63110961s ago: executing program 9 (id=11343):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000002080)=0x65, 0x21c)

1.564843464s ago: executing program 6 (id=11344):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x8871b000)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x2, 0x3, 0x4, {0xa, 0x4e23, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}}}, 0x32)

1.340761614s ago: executing program 9 (id=11345):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000c00)={&(0x7f0000000bc0)=""/7, 0x7})

1.340694414s ago: executing program 5 (id=11346):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000000)={0x1, 0xffffffffffffffff, 0x403})

1.324678505s ago: executing program 6 (id=11347):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000880)='./binderfs/binder1\x00', 0x800, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000780)="1f"})

917.045045ms ago: executing program 6 (id=11348):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000440)={[{@iocharset={'iocharset', 0x3d, 'cp950'}}, {@gid}, {@gid}, {@undelete}, {@uid}, {}, {@noadinicb}, {@partition}, {@undelete}]}, 0x1, 0xc32, &(0x7f0000001a40)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@volatile}]})

898.725286ms ago: executing program 9 (id=11349):
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x1, 0x80)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0xe000003, 0x58, &(0x7f0000000080), 0x8, 0x4000007})

783.908422ms ago: executing program 5 (id=11350):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
unshare(0x2c020400)
fsync(r0)

510.089226ms ago: executing program 7 (id=11351):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x9004}, 0x4)
syz_genetlink_get_family_id$fou(&(0x7f0000000f80), 0xffffffffffffffff)

426.25936ms ago: executing program 9 (id=11352):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f00000003c0)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fedbe3250c00000054000380080002000002000044000400d700981b00eb2e2466b3b726c12bfffe5f916f1716088a9129f9d2da6226169a994f49a227f189a859257dea5b53a46afb0f8effa4689efe631ffa5f5e03709c04000100180001801400020076657468305f746f5f626174616476"], 0x80}, 0x1, 0x0, 0x0, 0x881}, 0x8000)

378.723112ms ago: executing program 5 (id=11353):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)=""/1, 0x1}], 0x1, &(0x7f00000004c0)=""/51, 0x33}, 0x4d}], 0x1, 0x12000, 0x0)
shutdown(r0, 0x2)

155.489163ms ago: executing program 9 (id=11354):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
unshare(0x22020600)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)=@generic={0x0, r0}, 0x18)

57.257038ms ago: executing program 5 (id=11355):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x103a42, 0xb8)
truncate(&(0x7f0000000dc0)='./file1\x00', 0x2)
copy_file_range(r0, 0x0, r0, &(0x7f00000004c0)=0x2000, 0x9, 0x0)

0s ago: executing program 6 (id=11356):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000dc0)={0x40, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6}]}, @MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x40}}, 0x0)

kernel console output (not intermixed with test programs):

0994969 free clusters
[  920.528544][T19180] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  920.545434][T19180] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  920.614310][T29452] EXT4-fs (loop7): unmounting filesystem.
[  920.875774][T31300] loop6: detected capacity change from 0 to 32768
[  920.989650][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  920.999190][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  921.049728][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  921.066763][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  921.075818][T31300] XFS (loop6): Mounting V5 Filesystem
[  921.107409][T30678] device veth0_vlan entered promiscuous mode
[  921.167138][T31167] chnl_net:caif_netlink_parms(): no params data found
[  921.167583][T31353] loop7: detected capacity change from 0 to 2048
[  921.261076][T31353] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  921.289999][T31300] XFS (loop6): Ending clean mount
[  921.301623][T31353] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  921.314975][T31300] XFS (loop6): Quotacheck needed: Please wait.
[  921.475850][T31300] XFS (loop6): Quotacheck: Done.
[  921.530878][T29452] EXT4-fs (loop7): unmounting filesystem.
[  921.598040][ T4283] Bluetooth: hci0: command 0x041b tx timeout
[  921.645902][T30678] device veth1_vlan entered promiscuous mode
[  921.978591][ T4285] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  921.992800][ T4285] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  922.010958][ T4285] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  922.042055][ T4285] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  922.054121][ T4285] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  922.065485][ T4285] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  922.066833][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  922.178796][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  922.215443][T30678] device veth0_macvtap entered promiscuous mode
[  922.447188][T30678] device veth1_macvtap entered promiscuous mode
[  922.520019][T31167] bridge0: port 1(bridge_slave_0) entered blocking state
[  922.527713][T31167] bridge0: port 1(bridge_slave_0) entered disabled state
[  922.580556][T31167] device bridge_slave_0 entered promiscuous mode
[  922.622703][T31454] loop7: detected capacity change from 0 to 4096
[  922.741180][ T5514] XFS (loop6): Unmounting Filesystem
[  922.860835][T31463] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  923.001375][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  923.060809][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.081552][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  923.104211][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.127890][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  923.148776][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.182914][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  923.207891][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.230838][T30678] batman_adv: batadv0: Interface activated: batadv_slave_0
[  923.308382][T31167] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.316332][T31167] bridge0: port 2(bridge_slave_1) entered disabled state
[  923.330427][T31167] device bridge_slave_1 entered promiscuous mode
[  923.368662][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  923.388546][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  923.422763][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  923.459429][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  923.502190][T31396] vxcan1 speed is unknown, defaulting to 1000
[  923.506557][T31473] loop7: detected capacity change from 0 to 764
[  923.525538][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  923.597933][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.627900][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  923.649182][T31473] Symlink component flag not implemented
[  923.667374][T31473] Symlink component flag not implemented
[  923.667920][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.678889][T31473] Symlink component flag not implemented (129)
[  923.694608][ T4283] Bluetooth: hci0: command 0x040f tx timeout
[  923.701003][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  923.718053][T31473] Symlink component flag not implemented (6)
[  923.728870][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.741925][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  923.754109][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.765313][T30678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  923.776614][T30678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  923.789767][T30678] batman_adv: batadv0: Interface activated: batadv_slave_1
[  923.923860][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  923.940431][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  923.968906][T30678] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  923.987431][T30678] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  924.001389][T30678] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  924.018241][T30678] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  924.054289][T31167] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  924.098508][T31504] tipc: Invalid UDP bearer configuration
[  924.098550][T31504] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  924.168187][ T4283] Bluetooth: hci2: command 0x0409 tx timeout
[  924.191001][T31167] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  924.347033][T31167] team0: Port device team_slave_0 added
[  924.364347][T31535] loop6: detected capacity change from 0 to 64
[  924.450708][T19170] device hsr_slave_0 left promiscuous mode
[  924.481966][T19170] device hsr_slave_1 left promiscuous mode
[  924.519427][T19170] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  924.527281][T19170] batman_adv: batadv0: Removing interface: batadv_slave_0
[  924.582879][T19170] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  924.624996][T19170] batman_adv: batadv0: Removing interface: batadv_slave_1
[  924.657370][T19170] device dummy0 left promiscuous mode
[  924.668272][T19170] bridge0: port 2(dummy0) entered disabled state
[  924.678915][T19170] device bridge_slave_0 left promiscuous mode
[  924.708949][T19170] bridge0: port 1(bridge_slave_0) entered disabled state
[  924.803271][T19170] device veth1_macvtap left promiscuous mode
[  924.832691][T19170] device veth1_vlan left promiscuous mode
[  924.859662][T19170] device veth0_vlan left promiscuous mode
[  925.598891][T31574] loop6: detected capacity change from 0 to 512
[  925.628600][T31574] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  925.642605][T31574] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  925.692372][T31574] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.10529: invalid indirect mapped block 4294967295 (level 1)
[  925.747961][T31574] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.10529: invalid indirect mapped block 4294967295 (level 1)
[  925.768234][ T4283] Bluetooth: hci0: command 0x0419 tx timeout
[  925.775870][T31574] EXT4-fs (loop6): 2 truncates cleaned up
[  925.784878][T31574] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  925.798532][T19170] bond5 (unregistering): Released all slaves
[  925.852490][T31574] EXT4-fs error (device loop6): ext4_get_parent:1906: inode #11: comm syz.6.10529: bad parent inode number: 3
[  925.952075][ T5514] EXT4-fs (loop6): unmounting filesystem.
[  926.148268][T31586] loop6: detected capacity change from 0 to 2048
[  926.247972][ T4282] Bluetooth: hci2: command 0x041b tx timeout
[  926.278765][T31586] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  926.339131][T31586] netlink: 'syz.6.10530': attribute type 1 has an invalid length.
[  926.355107][T31586] netlink: 224 bytes leftover after parsing attributes in process `syz.6.10530'.
[  926.429420][T19170] bond4 (unregistering): Released all slaves
[  926.542934][T19170] bond3 (unregistering): Released all slaves
[  926.581194][T19170] bond2 (unregistering): Released all slaves
[  926.596693][T19170] bond1 (unregistering): Released all slaves
[  927.030829][T31591] loop6: detected capacity change from 0 to 40427
[  927.063208][T31591] F2FS-fs (loop6): Found nat_bits in checkpoint
[  927.121243][T31591] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  927.181606][T31591] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  928.099335][T31614] netlink: 277 bytes leftover after parsing attributes in process `syz.6.10536'.
[  928.327942][ T4282] Bluetooth: hci2: command 0x040f tx timeout
[  928.462150][   T26] audit: type=1326 audit(1773736613.951:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.492765][T19170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  928.497653][   T26] audit: type=1326 audit(1773736613.951:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.527717][T19170] device bond_slave_1 left promiscuous mode
[  928.553817][   T26] audit: type=1326 audit(1773736613.951:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.578781][   T26] audit: type=1326 audit(1773736613.951:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.615958][   T26] audit: type=1326 audit(1773736613.951:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.652177][   T26] audit: type=1326 audit(1773736613.951:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.691447][   T26] audit: type=1326 audit(1773736613.951:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.747394][   T26] audit: type=1326 audit(1773736613.951:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.806954][   T26] audit: type=1326 audit(1773736613.951:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.832242][T19170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  928.841419][   T26] audit: type=1326 audit(1773736613.951:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31623 comm="syz.6.10539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  928.865751][T19170] device bond_slave_0 left promiscuous mode
[  929.327090][T31634] loop6: detected capacity change from 0 to 2048
[  929.336311][T31634] EXT4-fs: Ignoring removed i_version option
[  929.441025][T31634] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  929.450399][T31634] ext4 filesystem being mounted at /2000/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  929.539730][ T5514] EXT4-fs (loop6): unmounting filesystem.
[  929.758917][T19170] bond0 (unregistering): Released all slaves
[  929.993997][T31167] team0: Port device team_slave_1 added
[  930.138385][T31650] netlink: 28 bytes leftover after parsing attributes in process `syz.6.10545'.
[  930.329099][T31167] batman_adv: batadv0: Adding interface: batadv_slave_0
[  930.336817][T31167] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  930.365651][T31167] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  930.406297][ T4282] Bluetooth: hci2: command 0x0419 tx timeout
[  930.414282][T31167] batman_adv: batadv0: Adding interface: batadv_slave_1
[  930.466761][T31167] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  930.496569][T31167] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  930.528127][T19180] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  930.536447][T19180] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  930.656164][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  930.814355][T31167] device hsr_slave_0 entered promiscuous mode
[  930.829755][T31167] device hsr_slave_1 entered promiscuous mode
[  930.837058][T31167] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  930.848488][T31167] Cannot create hsr debugfs directory
[  930.910018][T19171] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  930.954182][T19171] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  931.013008][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  931.171638][T31396] chnl_net:caif_netlink_parms(): no params data found
[  931.419278][T31840] netlink: 16 bytes leftover after parsing attributes in process `syz.6.10554'.
[  931.666040][T31896] loop9: detected capacity change from 0 to 64
[  931.761577][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  931.762780][T31396] bridge0: port 1(bridge_slave_0) entered blocking state
[  931.776062][T31396] bridge0: port 1(bridge_slave_0) entered disabled state
[  931.846081][T31396] device bridge_slave_0 entered promiscuous mode
[  931.886806][T31396] bridge0: port 2(bridge_slave_1) entered blocking state
[  931.929847][T31396] bridge0: port 2(bridge_slave_1) entered disabled state
[  931.957559][T31396] device bridge_slave_1 entered promiscuous mode
[  932.329549][T31942] loop6: detected capacity change from 0 to 4096
[  932.442855][T31942] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  932.792160][T19170] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.195194][T31396] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  933.202359][T31993] loop9: detected capacity change from 0 to 256
[  933.239134][T31993] exfat: Deprecated parameter 'utf8'
[  933.269655][T31993] exfat: Deprecated parameter 'namecase'
[  933.309117][T31993] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  933.340360][T19170] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.428853][T31396] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  933.706360][T32025] loop6: detected capacity change from 0 to 128
[  933.844361][T32025] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  933.871093][T32025] hpfs: filesystem error: improperly stopped
[  933.877295][T32025] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  933.889135][T19170] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.922708][T32025] hpfs: You really don't want any checks? You are crazy...
[  933.958315][T32025] hpfs: hpfs_map_sector(): read error
[  933.964067][T32025] hpfs: code page support is disabled
[  934.008120][T32025] hpfs: hpfs_map_4sectors(): unaligned read
[  934.014390][T32025] hpfs: hpfs_map_4sectors(): unaligned read
[  934.024401][T32025] hpfs: filesystem error: unable to find root dir
[  934.216775][T31396] team0: Port device team_slave_0 added
[  934.390109][T19170] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  934.474401][T31396] team0: Port device team_slave_1 added
[  934.601001][T31396] batman_adv: batadv0: Adding interface: batadv_slave_0
[  934.621138][T31396] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  934.717128][T31396] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  934.772022][T31396] batman_adv: batadv0: Adding interface: batadv_slave_1
[  934.793917][T31396] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  934.825307][T31396] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  934.972451][T32052] loop7: detected capacity change from 0 to 32768
[  935.018009][ T6729] usb 7-1: new high-speed USB device number 47 using dummy_hcd
[  935.094860][T31167] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  935.115564][T31167] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  935.143040][T31167] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  935.179777][T31396] device hsr_slave_0 entered promiscuous mode
[  935.194489][T32052] XFS (loop7): Mounting V5 Filesystem
[  935.201766][T31396] device hsr_slave_1 entered promiscuous mode
[  935.210288][T31396] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  935.223786][T31396] Cannot create hsr debugfs directory
[  935.230238][ T6729] usb 7-1: Using ep0 maxpacket: 8
[  935.258944][ T6729] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[  935.306561][T31167] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  935.310290][ T6729] usb 7-1: config 179 has no interface number 0
[  935.335842][ T6729] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 63, changing to 9
[  935.348354][ T6729] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  935.361296][ T6729] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  935.372760][ T6729] usb 7-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  935.386733][ T6729] usb 7-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  935.406989][ T6729] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  935.425706][T32052] XFS (loop7): Ending clean mount
[  935.538285][ T6729] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:179.65/input/input38
[  935.602019][T32052] XFS (loop7): syz.7.10570 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported
[  935.691090][T19170] device  left promiscuous mode
[  935.873095][T19170] device .d left promiscuous mode
[  935.895992][T29452] XFS (loop7): Unmounting Filesystem
[  936.912787][T31167] 8021q: adding VLAN 0 to HW filter on device bond0
[  937.154009][T32279] comedi comedi3: aio_aio12_8: I/O port conflict (0x8001,32)
[  937.375032][T32259] device syz_tun entered promiscuous mode
[  937.408485][T32259] device macvtap1 entered promiscuous mode
[  937.457090][T32259] device syz_tun left promiscuous mode
[  937.820415][T30747] usb 7-1: USB disconnect, device number 47
[  937.826837][    C0] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  937.880232][T30747] xpad 7-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  938.500618][T32347] loop6: detected capacity change from 0 to 256
[  938.523667][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  938.548967][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  938.591852][T31167] 8021q: adding VLAN 0 to HW filter on device team0
[  938.593808][T32347] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  938.616160][T32356] netlink: 277 bytes leftover after parsing attributes in process `syz.9.10597'.
[  938.904213][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  938.929774][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  938.958389][T29800] bridge0: port 1(bridge_slave_0) entered blocking state
[  938.966212][T29800] bridge0: port 1(bridge_slave_0) entered forwarding state
[  939.254228][T32377] loop6: detected capacity change from 0 to 512
[  939.300222][T32377] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  939.358379][    C1] vkms_vblank_simulate: vblank timer overrun
[  939.407084][T32377] EXT4-fs error (device loop6): ext4_orphan_get:1425: comm syz.6.10603: bad orphan inode 16
[  939.425885][T32377] ext4_test_bit(bit=15, block=4) = 0
[  939.458302][T32377] EXT4-fs (loop6): 1 orphan inode deleted
[  939.464411][T32377] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  939.480015][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  939.487490][T32377] EXT4-fs error (device loop6): __ext4_new_inode:1075: comm syz.6.10603: reserved inode found cleared - inode=9
[  939.577534][ T5514] EXT4-fs (loop6): unmounting filesystem.
[  939.607596][    C1] vkms_vblank_simulate: vblank timer overrun
[  939.633139][T32361] loop9: detected capacity change from 0 to 32768
[  939.654687][T32361] XFS: attr2 mount option is deprecated.
[  939.664903][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  939.686532][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  939.701341][T29821] bridge0: port 2(bridge_slave_1) entered blocking state
[  939.709171][T29821] bridge0: port 2(bridge_slave_1) entered forwarding state
[  939.747437][T32361] XFS (loop9): Mounting V5 Filesystem
[  939.803399][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  939.819191][T32361] XFS (loop9): Ending clean mount
[  939.848980][T32361] XFS (loop9): Quotacheck needed: Please wait.
[  940.020790][T32361] XFS (loop9): Quotacheck: Done.
[  940.039178][T32415] netlink: 16 bytes leftover after parsing attributes in process `syz.6.10606'.
[  940.051556][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  940.062323][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  940.076186][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  940.086429][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  940.108485][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  940.190689][    C1] vkms_vblank_simulate: vblank timer overrun
[  940.252764][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  940.275624][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  940.277243][T32418] loop6: detected capacity change from 0 to 512
[  940.318774][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  940.319680][T32418] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  940.375279][T32418] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1111: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  940.475961][    C1] vkms_vblank_simulate: vblank timer overrun
[  940.493708][T32418] EXT4-fs (loop6): 1 truncate cleaned up
[  940.513550][T32418] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  940.556591][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  940.579030][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  940.618340][T31167] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  940.623862][T30678] XFS (loop9): Unmounting Filesystem
[  940.708159][    C1] vkms_vblank_simulate: vblank timer overrun
[  940.757559][    C1] vkms_vblank_simulate: vblank timer overrun
[  940.862702][T32418] overlayfs: failed to verify upper (/file0, ino=12, err=-28)
[  940.914036][T32418] overlayfs: failed to verify index dir 'upper' xattr
[  940.921833][T32418] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  940.929911][    C1] vkms_vblank_simulate: vblank timer overrun
[  941.207376][T31396] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  941.245534][T31396] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  941.287052][ T5514] EXT4-fs (loop6): unmounting filesystem.
[  941.352324][T31396] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  941.494376][T31396] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  941.759049][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  941.759068][   T26] audit: type=1326 audit(1773736627.271:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  941.791165][    C1] vkms_vblank_simulate: vblank timer overrun
[  941.852372][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  941.871960][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  941.906189][   T26] audit: type=1326 audit(1773736627.321:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  941.931207][    C1] vkms_vblank_simulate: vblank timer overrun
[  941.965857][T31167] 8021q: adding VLAN 0 to HW filter on device batadv0
[  942.029857][T31396] 8021q: adding VLAN 0 to HW filter on device bond0
[  942.078022][   T26] audit: type=1326 audit(1773736627.321:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  942.129446][   T26] audit: type=1326 audit(1773736627.321:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f14d4d9b607 code=0x7ffc0000
[  942.157584][   T26] audit: type=1326 audit(1773736627.331:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  942.267725][   T26] audit: type=1326 audit(1773736627.331:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  942.294532][    C1] vkms_vblank_simulate: vblank timer overrun
[  942.370972][   T26] audit: type=1326 audit(1773736627.331:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  942.398167][    C1] vkms_vblank_simulate: vblank timer overrun
[  942.456059][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  942.479465][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  942.505324][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  942.523323][   T26] audit: type=1326 audit(1773736627.331:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  942.586821][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  942.649661][T31396] 8021q: adding VLAN 0 to HW filter on device team0
[  942.693096][   T26] audit: type=1326 audit(1773736627.331:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=84 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  942.727609][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  942.745531][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  942.758170][    C1] vkms_vblank_simulate: vblank timer overrun
[  942.764915][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  942.798105][   T26] audit: type=1326 audit(1773736627.341:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32461 comm="syz.6.10610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14d4d9c799 code=0x7ffc0000
[  942.839307][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  942.857632][T31167] device veth0_vlan entered promiscuous mode
[  942.894857][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  942.939160][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  942.997440][T29821] bridge0: port 1(bridge_slave_0) entered blocking state
[  943.005087][T29821] bridge0: port 1(bridge_slave_0) entered forwarding state
[  943.050206][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  943.082368][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  943.098660][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  943.153424][T29821] bridge0: port 2(bridge_slave_1) entered blocking state
[  943.161243][T29821] bridge0: port 2(bridge_slave_1) entered forwarding state
[  943.261675][T31167] device veth1_vlan entered promiscuous mode
[  943.300813][T32505] xt_nfacct: accounting object `\�$‚9ZúM#íü¾mUµ|±^cÁ\F9YⳈ«ÃÖ' does not exist
[  943.316652][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  943.336850][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  943.381315][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  943.452243][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  943.498454][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  943.588869][T19170] device hsr_slave_0 left promiscuous mode
[  943.665089][T19170] device hsr_slave_1 left promiscuous mode
[  943.693400][T19170] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  943.713061][T19170] batman_adv: batadv0: Removing interface: batadv_slave_0
[  943.769483][T19170] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  943.777230][T19170] batman_adv: batadv0: Removing interface: batadv_slave_1
[  943.846363][T19170] batman_adv: batadv0: Removing interface: virt_wifi0
[  943.979934][T32526] netlink: 32 bytes leftover after parsing attributes in process `syz.6.10625'.
[  944.039655][T19170] device veth1_macvtap left promiscuous mode
[  944.046939][T19170] device veth1_vlan left promiscuous mode
[  944.074929][T19170] device veth0_vlan left promiscuous mode
[  944.772521][T19170] bond3 (unregistering): Released all slaves
[  945.235415][T32540] loop6: detected capacity change from 0 to 32768
[  945.415245][T32540] XFS (loop6): Mounting V5 Filesystem
[  945.587285][T32540] XFS (loop6): Ending clean mount
[  945.601632][T19170] bond2 (unregistering): Released all slaves
[  945.900880][ T5514] XFS (loop6): Unmounting Filesystem
[  946.461555][T19170] bond1 (unregistering): Released all slaves
[  946.604073][T32593] loop7: detected capacity change from 0 to 8192
[  946.643681][T32593] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  946.668402][T32593] REISERFS (device loop7): found reiserfs format "3.6" with non-standard journal
[  946.680022][T19170] team0 (unregistering): Port device geneve1 removed
[  946.708079][T32593] REISERFS (device loop7): using ordered data mode
[  946.725068][T32593] reiserfs: using flush barriers
[  946.746232][T32593] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  946.768629][T32593] REISERFS (device loop7): checking transaction log (loop7)
[  947.087185][T32593] REISERFS (device loop7): Using tea hash to sort names
[  947.097469][T32593] REISERFS (device loop7): Created .reiserfs_priv - reserved for xattr storage.
[  947.490347][T19170] team0 (unregistering): Port device macvlan0 removed
[  947.749154][T32608] loop6: detected capacity change from 0 to 32768
[  947.812546][T32608] XFS (loop6): Mounting V5 Filesystem
[  948.012950][T32608] XFS (loop6): Ending clean mount
[  948.291573][ T5514] XFS (loop6): Unmounting Filesystem
[  948.747329][T19170] team0 (unregistering): Port device team_slave_1 removed
[  948.894605][T19170] team0 (unregistering): Port device team_slave_0 removed
[  949.052215][T19170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  949.168902][T32634] loop6: detected capacity change from 0 to 128
[  949.218346][T19170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  949.239031][T32634] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  949.273795][T32634] ext4 filesystem being mounted at /2038/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  949.422682][ T5514] EXT4-fs (loop6): unmounting filesystem.
[  949.993091][T32658] loop6: detected capacity change from 0 to 64
[  950.494084][T19170] bond0 (unregistering): Released all slaves
[  950.529842][T32664] loop6: detected capacity change from 0 to 32768
[  950.637658][T32664] JBD2: Ignoring recovery information on journal
[  950.686688][T32664] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  950.752148][T31396] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  950.763642][T31396] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  950.776823][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  950.790412][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  950.810189][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  950.828916][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  950.848782][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  950.869710][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  950.901936][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  950.917627][ T5514] ocfs2: Unmounting device (7,6) on (node local)
[  950.939399][T32613] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10643'.
[  951.082219][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  951.150954][T29821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  951.209145][T31167] device veth0_macvtap entered promiscuous mode
[  951.250861][T31167] device veth1_macvtap entered promiscuous mode
[  951.293332][T31167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  951.332283][T31167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.368732][T31167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  951.438510][T31167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.478881][T31167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  951.544586][T31167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.595165][T31167] batman_adv: batadv0: Interface activated: batadv_slave_0
[  951.651789][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  951.669886][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  951.748892][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  951.781069][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  951.822050][T31167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  951.847974][T31167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.887869][T31167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  951.935574][T31167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.977311][T31167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  952.025377][T31167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  952.064087][T31167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  952.096813][T32710] netlink: 76 bytes leftover after parsing attributes in process `syz.6.10661'.
[  952.098841][T31167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  952.127727][T32710] nbd: illegal input index -28
[  952.160069][T31167] batman_adv: batadv0: Interface activated: batadv_slave_1
[  952.282394][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  952.315534][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  952.334891][T32716] loop7: detected capacity change from 0 to 1024
[  952.370430][T31167] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  952.398761][T31167] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  952.427991][T31167] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  952.437036][T31167] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  952.450413][T32716] hfsplus: b-tree write err: -5, ino 2
[  952.480100][T19171] hfsplus: b-tree write err: -5, ino 25
[  952.497233][T19171] hfsplus: b-tree write err: -5, ino 4
[  952.537360][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  952.578186][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  952.589303][T31396] 8021q: adding VLAN 0 to HW filter on device batadv0
[  952.606244][T32719] loop6: detected capacity change from 0 to 4096
[  952.676949][T19178] hfsplus: b-tree write err: -5, ino 2
[  952.719124][T32719] __ntfs_error: 3 callbacks suppressed
[  952.719142][T32719] ntfs: (device loop6): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[  952.824243][T32719] ntfs: volume version 3.1.
[  953.049589][T29821] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  953.111374][T29821] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  953.149509][T19180] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  953.258927][T29821] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  953.267153][T29821] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  953.328525][T19180] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  953.415623][T32755] loop6: detected capacity change from 0 to 512
[  953.487687][T32755] EXT4-fs (loop6): orphan cleanup on readonly fs
[  953.499349][T32755] EXT4-fs error (device loop6): ext4_orphan_get:1399: inode #15: comm syz.6.10666: inode has both inline data and extents flags
[  953.515922][T32755] EXT4-fs error (device loop6): ext4_orphan_get:1404: comm syz.6.10666: couldn't read orphan inode 15 (err -117)
[  953.565199][T32755] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  953.719707][T32755] EXT4-fs (loop6): re-mounted. Quota mode: none.
[  953.939121][ T5514] EXT4-fs (loop6): unmounting filesystem.
[  954.602265][  T334] loop6: detected capacity change from 0 to 256
[  954.610934][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  954.629573][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  954.703403][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  954.778422][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  954.822784][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  954.871132][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  954.914895][T31396] device veth0_vlan entered promiscuous mode
[  954.988421][T31396] device veth1_vlan entered promiscuous mode
[  955.121473][T31396] device veth0_macvtap entered promiscuous mode
[  955.157710][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  955.176897][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  955.197645][  T363] program syz.7.10682 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  955.214671][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  955.258962][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  955.286681][T31396] device veth1_macvtap entered promiscuous mode
[  955.315707][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  955.335855][T18088] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  955.405598][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  955.464073][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  955.507876][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  955.550570][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  955.568825][  T374] loop2: detected capacity change from 0 to 1024
[  955.593728][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  955.677570][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  955.710528][  T374] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  955.734202][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  955.745393][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  955.760345][T31396] batman_adv: batadv0: Interface activated: batadv_slave_0
[  955.775328][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  955.830141][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  955.898418][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  955.930024][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  955.957495][  T387] loop6: detected capacity change from 0 to 8192
[  955.985984][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  956.039656][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  956.050757][  T387] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  956.064580][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.073859][  T392] loop7: detected capacity change from 0 to 128
[  956.088009][  T387] UDF-fs: Scanning with blocksize 512 failed
[  956.117684][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  956.170207][  T387] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  956.178425][  T387] UDF-fs: Scanning with blocksize 1024 failed
[  956.191974][  T353] loop9: detected capacity change from 0 to 32768
[  956.192527][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  956.211839][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.220230][  T392] FAT-fs (loop7): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  956.234057][  T387] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  956.265740][  T353] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop9 scanned by syz.9.10681 (353)
[  956.288900][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.293693][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  956.300435][  T387] UDF-fs: Scanning with blocksize 2048 failed
[  956.337726][  T353] BTRFS info (device loop9): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409
[  956.360530][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.364236][  T387] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  956.385347][  T353] BTRFS info (device loop9): using xxhash64 (xxhash64-generic) checksum algorithm
[  956.400514][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.437716][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  956.437949][  T353] BTRFS info (device loop9): using free space tree
[  956.459951][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.472177][  T392] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  956.496040][  T392] FAT-fs (loop7): Filesystem has been set read-only
[  956.496846][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.527945][  T392] syz.7.10689: attempt to access beyond end of device
[  956.527945][  T392] loop7: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  956.545771][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.546323][T31396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  956.577949][T31396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  956.622357][  T392] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  956.632650][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.646784][T31396] batman_adv: batadv0: Interface activated: batadv_slave_1
[  956.665016][  T392] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  956.706388][T31167] EXT4-fs error (device loop2): ext4_empty_dir:3136: inode #11: comm syz-executor: invalid size
[  956.732068][  T392] syz.7.10689: attempt to access beyond end of device
[  956.732068][  T392] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  956.748166][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  956.757609][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  956.779075][   T26] audit: type=1800 audit(1773736642.291:511): pid=392 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.10689" name="file2" dev="loop7" ino=1048754 res=0 errno=0
[  956.821984][T31396] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  956.860311][  T353] BTRFS info (device loop9): enabling ssd optimizations
[  956.878043][T31396] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  956.928364][T31396] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  956.959088][T31396] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  957.520593][T30678] BTRFS info (device loop9): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409
[  957.546965][T29800] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  957.587919][T29800] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  957.606896][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  957.652026][T31167] EXT4-fs (loop2): unmounting filesystem.
[  957.705035][T29800] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  957.729541][T29800] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  957.777713][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  958.766150][  T481] kernel write not supported for file /input/event2 (pid: 481 comm: kworker/1:14)
[  958.766784][T19171] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  959.141519][T19171] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  959.516302][T19171] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  959.538483][ T4282] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  959.560731][ T4282] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  959.574687][ T4282] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  959.587399][ T4282] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  959.595979][ T4282] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  959.596056][  T518] loop9: detected capacity change from 0 to 1024
[  959.643855][ T4282] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  959.653909][  T518] EXT4-fs: Ignoring removed nomblk_io_submit option
[  959.763283][  T518] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  959.781295][  T492] vxcan1 speed is unknown, defaulting to 1000
[  959.829151][  T518] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  959.871495][  T529] loop7: detected capacity change from 0 to 256
[  959.877984][  T518] System zones: 0-1, 3-36
[  959.893223][T19171] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  959.959232][  T529] FAT-fs (loop7): Directory bread(block 1285) failed
[  959.966574][  T529] FAT-fs (loop7): Directory bread(block 1286) failed
[  959.974460][  T518] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  960.018346][  T529] FAT-fs (loop7): Directory bread(block 1287) failed
[  960.048301][  T529] FAT-fs (loop7): Directory bread(block 1288) failed
[  960.200165][  T529] FAT-fs (loop7): FAT read failed (blocknr 1281)
[  960.322038][T30678] EXT4-fs (loop9): unmounting filesystem.
[  960.564623][    C1] vkms_vblank_simulate: vblank timer overrun
[  960.697286][  T512] vxcan1 speed is unknown, defaulting to 1000
[  961.150324][  T599] loop9: detected capacity change from 0 to 2048
[  961.264893][  T605] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  961.487062][  T605] NILFS (loop9): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  961.507932][  T605] NILFS error (device loop9): nilfs_bmap_propagate: broken bmap (inode number=4)
[  961.539015][  T605] Remounting filesystem read-only
[  961.559509][T30678] NILFS (loop9): disposed unprocessed dirty file(s) when stopping log writer
[  961.764803][ T4283] Bluetooth: hci0: command 0x0409 tx timeout
[  961.815945][    C1] vkms_vblank_simulate: vblank timer overrun
[  962.204549][  T661] loop7: detected capacity change from 0 to 64
[  962.356878][  T596] loop5: detected capacity change from 0 to 32768
[  962.396400][  T596] ERROR: (device loop5): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 1
[  962.396400][  T596] 
[  962.756899][  T604] loop6: detected capacity change from 0 to 32768
[  962.972088][  T512] chnl_net:caif_netlink_parms(): no params data found
[  963.481404][  T736] netlink: 96 bytes leftover after parsing attributes in process `syz.6.10724'.
[  963.515295][  T737] loop7: detected capacity change from 0 to 1024
[  963.724304][  T748] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  963.731906][  T748] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  963.799334][  T737] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  963.811454][  T748] vhci_hcd vhci_hcd.0: Device attached
[  963.840147][ T4283] Bluetooth: hci0: command 0x041b tx timeout
[  964.047091][    C1] vkms_vblank_simulate: vblank timer overrun
[  964.048133][ T6729] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  964.062498][ T4606] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[  964.135077][  T512] bridge0: port 1(bridge_slave_0) entered blocking state
[  964.170051][  T512] bridge0: port 1(bridge_slave_0) entered disabled state
[  964.199211][  T512] device bridge_slave_0 entered promiscuous mode
[  964.222686][T29452] EXT4-fs (loop7): unmounting filesystem.
[  964.276195][  T815] loop9: detected capacity change from 0 to 256
[  964.287943][ T6729] usb 6-1: Using ep0 maxpacket: 16
[  964.317423][ T6729] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  964.339027][  T815] exfat: Deprecated parameter 'namecase'
[  964.365448][ T6729] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  964.373901][ T6642] usb 7-1: new high-speed USB device number 48 using dummy_hcd
[  964.375886][  T815] exfat: Deprecated parameter 'utf8'
[  964.407885][ T6729] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  964.440559][ T6729] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  964.459359][  T815] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  964.502464][ T6729] usb 6-1: config 0 descriptor??
[  964.533393][    C1] vkms_vblank_simulate: vblank timer overrun
[  964.600255][ T6642] usb 7-1: unable to get BOS descriptor or descriptor too short
[  964.621977][   T26] audit: type=1804 audit(1773736650.131:512): pid=815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.10732" name="/newroot/47/bus/bus" dev="loop9" ino=1048758 res=1 errno=0
[  964.630069][ T6642] usb 7-1: config 4 has an invalid interface number: 176 but max is 0
[  964.695536][ T6642] usb 7-1: config 4 has no interface number 0
[  964.715835][ T6642] usb 7-1: config 4 interface 176 has no altsetting 0
[  964.764914][ T6642] usb 7-1: New USB device found, idVendor=1286, idProduct=1fa4, bcdDevice=59.64
[  964.781505][ T4257] usb 6-1: USB disconnect, device number 3
[  964.796080][  T749] usbip_core: unknown command
[  964.821577][  T749] vhci_hcd: unknown pdu 0
[  964.857939][  T749] usbip_core: unknown command
[  964.868572][ T6642] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  964.896101][ T6642] usb 7-1: Product: syz
[  964.897881][T19178] vhci_hcd: stop threads
[  964.908707][ T6642] usb 7-1: Manufacturer: syz
[  964.931504][ T6642] usb 7-1: SerialNumber: syz
[  964.939714][T19178] vhci_hcd: release socket
[  964.949712][ T4606] usb 43-1: device descriptor read/64, error -71
[  964.979772][  T512] bridge0: port 2(bridge_slave_1) entered blocking state
[  964.989638][T19178] vhci_hcd: disconnect device
[  964.998018][  T512] bridge0: port 2(bridge_slave_1) entered disabled state
[  965.025836][  T831] loop7: detected capacity change from 0 to 4096
[  965.057169][  T512] device bridge_slave_1 entered promiscuous mode
[  965.148102][ T4606] vhci_hcd: vhci_device speed not set
[  965.219565][  T831] ntfs3: loop7: failed to convert "046c" to maccroatian
[  965.236161][ T6642] mvusb_mdio: probe of 7-1:4.176 failed with error -5
[  965.237391][  T512] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  965.263167][ T6642] usb 7-1: USB disconnect, device number 48
[  965.479759][  T512] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  965.681506][  T512] team0: Port device team_slave_0 added
[  965.720591][  T908] device netdevsim0 entered promiscuous mode
[  965.744297][  T512] team0: Port device team_slave_1 added
[  965.903693][  T512] batman_adv: batadv0: Adding interface: batadv_slave_0
[  965.918035][ T4283] Bluetooth: hci0: command 0x040f tx timeout
[  965.967083][  T512] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  966.073456][  T512] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  966.134366][  T512] batman_adv: batadv0: Adding interface: batadv_slave_1
[  966.170533][  T512] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  966.247890][  T512] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  966.289659][T19171] device hsr_slave_0 left promiscuous mode
[  966.322609][T19171] device hsr_slave_1 left promiscuous mode
[  966.348639][T19171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  966.381533][T19171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  966.429364][T19171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  966.457687][T19171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  966.469982][T19171] device bridge_slave_1 left promiscuous mode
[  966.476747][T19171] bridge0: port 2(bridge_slave_1) entered disabled state
[  966.514994][T19171] device bridge_slave_0 left promiscuous mode
[  966.528203][T19171] bridge0: port 1(bridge_slave_0) entered disabled state
[  966.596051][T19171] device veth1_macvtap left promiscuous mode
[  966.612897][T19171] device veth0_macvtap left promiscuous mode
[  966.620206][  T881] loop5: detected capacity change from 0 to 32768
[  966.623095][T19171] device veth1_vlan left promiscuous mode
[  966.653606][T19171] device veth0_vlan left promiscuous mode
[  966.695514][  T881] XFS (loop5): Mounting V5 Filesystem
[  966.759110][  T881] XFS (loop5): Ending clean mount
[  967.075403][T31396] XFS (loop5): Unmounting Filesystem
[  967.165878][    C1] vkms_vblank_simulate: vblank timer overrun
[  967.304500][    C1] vkms_vblank_simulate: vblank timer overrun
[  967.428892][  T966] loop6: detected capacity change from 0 to 40427
[  967.438920][  T966] F2FS-fs (loop6): Small segment_count (9 < 1 * 24)
[  967.461656][  T966] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  967.541798][  T966] F2FS-fs (loop6): Found nat_bits in checkpoint
[  967.546894][    C1] vkms_vblank_simulate: vblank timer overrun
[  967.749154][  T966] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  967.761970][  T966] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  967.954875][  T993] loop5: detected capacity change from 0 to 64
[  968.015519][    C1] vkms_vblank_simulate: vblank timer overrun
[  968.028079][ T4283] Bluetooth: hci0: command 0x0419 tx timeout
[  968.039585][ T5514] syz-executor: attempt to access beyond end of device
[  968.039585][ T5514] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  968.099978][    C1] vkms_vblank_simulate: vblank timer overrun
[  968.831558][ T1021] loop5: detected capacity change from 0 to 256
[  968.910618][ T1021] exfat: Deprecated parameter 'namecase'
[  968.937051][ T1021] exfat: Deprecated parameter 'utf8'
[  968.962393][ T1021] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d)
[  969.430522][    C1] vkms_vblank_simulate: vblank timer overrun
[  969.626420][T19171] team0 (unregistering): Port device team_slave_1 removed
[  969.737326][T19171] team0 (unregistering): Port device team_slave_0 removed
[  969.834849][T19171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  969.927318][T19171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  970.662516][T19171] bond0 (unregistering): Released all slaves
[  971.002215][  T512] device hsr_slave_0 entered promiscuous mode
[  971.028393][  T512] device hsr_slave_1 entered promiscuous mode
[  971.195233][ T1071] loop5: detected capacity change from 0 to 128
[  971.252344][ T1089] loop7: detected capacity change from 0 to 512
[  971.334475][ T1071] VFS: Found a Xenix FS (block size = 512) on device loop5
[  971.618230][ T1089] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #17: comm syz.7.10757: iget: immutable or append flags not allowed on symlinks
[  971.668499][ T1089] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.10757: couldn't read orphan inode 17 (err -117)
[  971.691941][T31396] sysv_free_block: trying to free block not in datazone
[  971.727391][T31396] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  971.733445][ T1153] netlink: 91 bytes leftover after parsing attributes in process `syz.9.10761'.
[  971.746938][ T1089] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  972.125879][ T1175] netlink: 48 bytes leftover after parsing attributes in process `syz.6.10766'.
[  972.129490][T29452] EXT4-fs (loop7): unmounting filesystem.
[  972.208214][  T952] usb 6-1: new low-speed USB device number 4 using dummy_hcd
[  972.444575][  T952] usb 6-1: string descriptor 0 read error: -22
[  972.465535][  T952] usb 6-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f
[  972.507353][  T952] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  972.538789][  T952] usb 6-1: config 0 descriptor??
[  972.571187][  T952] usbtest 6-1:0.0: FX2 device
[  972.576151][  T952] usbtest 6-1:0.0: low-speed {control intr-in intr-out} tests (+alt)
[  972.800698][ T4606] usb 6-1: USB disconnect, device number 4
[  973.195194][ T1244] loop9: detected capacity change from 0 to 64
[  973.391602][ T1248] loop6: detected capacity change from 0 to 1024
[  973.428103][ T4606] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  973.604469][ T1248] hfsplus: can't free extent
[  973.648278][ T4606] usb 6-1: Using ep0 maxpacket: 8
[  973.691816][ T4606] usb 6-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f
[  973.747870][ T4606] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  973.797546][ T4606] usb 6-1: Product: syz
[  973.814436][ T4606] usb 6-1: Manufacturer: syz
[  973.825461][ T4606] usb 6-1: SerialNumber: syz
[  973.853518][ T4606] usb 6-1: config 0 descriptor??
[  973.939625][ T4606] usbtest 6-1:0.0: FX2 device
[  973.968817][ T4606] usbtest 6-1:0.0: high-speed {control bulk-in bulk-out} tests (+alt)
[  974.153539][ T4606] usb 6-1: USB disconnect, device number 5
[  974.306723][  T512] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  974.334276][  T512] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  974.363833][  T512] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  974.468122][  T512] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  974.548221][ T1323] netlink: 'syz.7.10782': attribute type 3 has an invalid length.
[  974.796415][  T512] 8021q: adding VLAN 0 to HW filter on device bond0
[  974.864720][  T512] 8021q: adding VLAN 0 to HW filter on device team0
[  974.899183][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  974.918431][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  974.949788][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  974.996210][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  975.017208][T19178] bridge0: port 1(bridge_slave_0) entered blocking state
[  975.025230][T19178] bridge0: port 1(bridge_slave_0) entered forwarding state
[  975.046027][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  975.052203][ T1281] loop9: detected capacity change from 0 to 32768
[  975.071320][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  975.091282][T19178] bridge0: port 2(bridge_slave_1) entered blocking state
[  975.099026][T19178] bridge0: port 2(bridge_slave_1) entered forwarding state
[  975.152087][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  975.169957][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  975.177695][ T1281] XFS (loop9): Mounting V5 Filesystem
[  975.205351][T19178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  975.242431][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  975.274670][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  975.285111][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  975.346507][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  975.400368][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  975.432226][ T1281] XFS (loop9): Ending clean mount
[  975.454834][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  975.474503][ T1281] XFS (loop9): Quotacheck needed: Please wait.
[  975.496838][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  975.548560][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  975.565515][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  975.611851][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  975.658917][ T1281] XFS (loop9): Quotacheck: Done.
[  975.865981][ T1363] loop6: detected capacity change from 0 to 2048
[  976.043661][T30678] XFS (loop9): Unmounting Filesystem
[  976.053727][ T1363] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  976.539291][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  976.547105][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  976.597401][  T512] 8021q: adding VLAN 0 to HW filter on device batadv0
[  976.667529][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  976.678952][T19176] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  976.732963][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  976.750190][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  976.811987][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  976.838696][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  976.859575][  T512] device veth0_vlan entered promiscuous mode
[  976.904082][  T512] device veth1_vlan entered promiscuous mode
[  976.931631][T19180] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  977.026395][T19180] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  977.067669][T19180] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  977.121055][  T512] device veth0_macvtap entered promiscuous mode
[  977.242366][  T512] device veth1_macvtap entered promiscuous mode
[  977.312133][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  977.362869][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.402930][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  977.431961][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.464799][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  977.493488][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.577887][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  977.627202][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.686618][ T1416] loop6: detected capacity change from 0 to 64
[  977.725392][  T512] batman_adv: batadv0: Interface activated: batadv_slave_0
[  977.761352][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  977.786288][ T1419] loop5: detected capacity change from 0 to 512
[  977.808523][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.873766][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  977.907989][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.956423][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  977.998095][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  978.022216][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  978.047158][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  978.060396][  T512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  978.071642][  T512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  978.139108][  T512] batman_adv: batadv0: Interface activated: batadv_slave_1
[  978.209442][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  978.259104][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  978.281963][ T1439] loop5: detected capacity change from 0 to 256
[  978.316762][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  978.358862][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  978.398667][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  978.424447][ T1439] FAT-fs (loop5): Directory bread(block 64) failed
[  978.448472][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  978.489045][ T1439] FAT-fs (loop5): Directory bread(block 65) failed
[  978.496845][ T1439] FAT-fs (loop5): Directory bread(block 66) failed
[  978.500737][  T512] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  978.549316][ T1439] FAT-fs (loop5): Directory bread(block 67) failed
[  978.556540][ T1439] FAT-fs (loop5): Directory bread(block 68) failed
[  978.572797][  T512] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  978.605317][  T512] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  978.615406][ T1451] Bluetooth: MGMT ver 1.22
[  978.619452][ T1439] FAT-fs (loop5): Directory bread(block 69) failed
[  978.644728][  T512] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  978.656163][ T1439] FAT-fs (loop5): Directory bread(block 70) failed
[  978.688906][ T1439] FAT-fs (loop5): Directory bread(block 71) failed
[  978.736014][ T1439] FAT-fs (loop5): Directory bread(block 72) failed
[  978.777906][ T1439] FAT-fs (loop5): Directory bread(block 73) failed
[  978.973647][ T1468] tipc: Started in network mode
[  979.007936][ T1468] tipc: Node identity 00000000000000002e5f00005f03, cluster identity 4711
[  979.057997][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  979.088631][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  979.128662][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  979.203269][T19171] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  979.261110][T19171] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  979.320925][T19171] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  979.448646][ T1495] loop6: detected capacity change from 0 to 2048
[  979.513649][ T1495] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  979.579252][ T1495] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  979.827159][ T1514] CUSE: DEVNAME unspecified
[  979.880053][ T1517] loop3: detected capacity change from 0 to 16
[  979.940513][ T1517] erofs: (device loop3): mounted with root inode @ nid 36.
[  980.042789][ T1517] syz.3.10821: attempt to access beyond end of device
[  980.042789][ T1517] loop3: rw=524288, sector=1056, nr_sectors = 16 limit=16
[  980.213629][ T1517] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -4 in[62, 4034] out[4096]
[  980.274561][   T26] audit: type=1800 audit(1773736665.781:513): pid=1517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.10821" name="file2" dev="loop3" ino=89 res=0 errno=0
[  980.646115][ T1556] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10832'.
[  980.875081][ T1567] loop5: detected capacity change from 0 to 2048
[  980.915070][ T1567] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found!
[  980.954661][ T1567] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  981.114932][ T1580] loop7: detected capacity change from 0 to 2048
[  981.200311][ T1580] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  982.206537][ T1621] device veth0_virt_wifi entered promiscuous mode
[  982.247140][ T1621] device veth0_virt_wifi left promiscuous mode
[  982.344860][ T1582] loop9: detected capacity change from 0 to 32768
[  982.631893][ T1629] read_mapping_page failed!
[  982.708276][ T1629] ERROR: (device loop9): txCommit: 
[  982.708276][ T1629] 
[  982.775280][ T1593] loop5: detected capacity change from 0 to 32768
[  982.920744][ T1606] loop7: detected capacity change from 0 to 32768
[  982.928544][T30678] ERROR: (device loop9): diFree: numfree > numinos
[  982.928544][T30678] 
[  982.986485][ T1593] XFS (loop5): Mounting V5 Filesystem
[  983.230073][ T1593] XFS (loop5): Ending clean mount
[  983.417126][T31396] XFS (loop5): Unmounting Filesystem
[  983.692675][ T1616] loop6: detected capacity change from 0 to 40427
[  983.735357][ T1666] loop9: detected capacity change from 0 to 256
[  983.808680][ T1616] F2FS-fs (loop6): invalid crc value
[  983.834400][ T1666] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  983.860865][ T1616] F2FS-fs (loop6): Found nat_bits in checkpoint
[  984.072083][ T1616] F2FS-fs (loop6): Start checkpoint disabled!
[  984.130591][ T1616] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  984.224807][ T1683] loop3: detected capacity change from 0 to 512
[  984.245303][ T1683] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  984.379414][ T1683] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  984.509725][ T1683] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #2: block 3: comm syz.3.10856: lblock 8 mapped to illegal pblock 3 (length 26)
[  984.655350][T19178] kworker/u4:14: attempt to access beyond end of device
[  984.655350][T19178] loop6: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  984.714519][  T512] EXT4-fs (loop3): unmounting filesystem.
[  984.878872][ T4283] Bluetooth: hci0: command 0x0405 tx timeout
[  985.461941][ T1732] loop3: detected capacity change from 0 to 512
[  985.537465][ T1732] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.10866: Invalid inode bitmap blk 4 in block_group 0
[  985.612582][ T1732] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  985.743817][ T1752] loop9: detected capacity change from 0 to 64
[  985.802357][ T1752] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  985.909286][  T512] EXT4-fs (loop3): unmounting filesystem.
[  986.151272][ T1768] netlink: 192 bytes leftover after parsing attributes in process `syz.3.10872'.
[  986.348782][ T1774] netlink: 24 bytes leftover after parsing attributes in process `syz.7.10875'.
[  986.841185][ T1740] loop6: detected capacity change from 0 to 32768
[  986.954991][ T1740] XFS (loop6): Mounting V5 Filesystem
[  987.064472][ T1760] loop5: detected capacity change from 0 to 32768
[  987.124417][ T1740] XFS (loop6): Ending clean mount
[  987.137308][ T1760] XFS (loop5): Mounting V5 Filesystem
[  987.161469][ T1740] XFS (loop6): Quotacheck needed: Please wait.
[  987.351702][ T1760] XFS (loop5): Ending clean mount
[  987.500649][ T1740] XFS (loop6): Quotacheck: Done.
[  987.511287][ T1760] XFS (loop5): Quotacheck needed: Please wait.
[  987.777997][ T1760] XFS (loop5): Quotacheck: Done.
[  987.831382][ T5514] XFS (loop6): Unmounting Filesystem
[  987.895864][ T1844] loop9: detected capacity change from 0 to 512
[  988.127276][ T1844] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.10884: invalid indirect mapped block 10 (level 1)
[  988.152432][ T1844] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.10884: invalid indirect mapped block 8 (level 1)
[  988.209020][T31396] XFS (loop5): Unmounting Filesystem
[  988.244332][ T1844] EXT4-fs (loop9): 1 truncate cleaned up
[  988.262356][ T1844] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  988.438886][   T26] audit: type=1800 audit(1773736673.951:514): pid=1844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.10884" name="bus" dev="loop9" ino=18 res=0 errno=0
[  988.556329][ T1857] ieee802154 phy1 wpan1: encryption failed: -22
[  988.675893][T30678] EXT4-fs (loop9): unmounting filesystem.
[  989.014472][ T1872] loop9: detected capacity change from 0 to 2048
[  989.110095][ T1872] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  989.254383][ T1885] loop6: detected capacity change from 0 to 1024
[  989.309555][ T1885] EXT4-fs (loop6): corrupt root inode, run e2fsck
[  989.318431][ T1885] EXT4-fs (loop6): mount failed
[  989.382112][T30678] EXT4-fs (loop9): unmounting filesystem.
[  989.644998][ T1905] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  989.675247][ T1905] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  989.698206][ T1905] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  989.726041][ T1905] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  989.748293][ T1905] comedi comedi3: 8255: I/O port conflict (0xc,4)
[  989.778062][ T1905] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  989.816070][ T1905] comedi comedi3: 8255: I/O port conflict (0x81,4)
[  989.854744][ T1905] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffc,4)
[  989.917543][ T1905] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  989.934231][ T1905] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4)
[  989.960006][ T1905] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  990.007634][ T1905] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  990.045563][ T1905] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  990.067981][ T1905] comedi comedi3: 8255: I/O port conflict (0x400009,4)
[  990.111623][ T1905] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  990.158418][ T1905] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  990.186569][ T1905] comedi comedi3: 8255: I/O port conflict (0x80,4)
[  990.521819][ T1885] loop6: detected capacity change from 0 to 32768
[  990.566075][ T1885] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 scanned by syz.6.10886 (1885)
[  990.644095][ T1885] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  990.693534][ T1885] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  990.719122][ T1885] BTRFS info (device loop6): using free space tree
[  990.754841][ T1942] loop5: detected capacity change from 0 to 1024
[  991.098457][ T1885] BTRFS info (device loop6): enabling ssd optimizations
[  991.128333][ T1923] loop7: detected capacity change from 0 to 32768
[  991.215269][ T1913] loop9: detected capacity change from 0 to 32768
[  991.289347][ T1974] sctp: [Deprecated]: syz.5.10905 (pid 1974) Use of struct sctp_assoc_value in delayed_ack socket option.
[  991.289347][ T1974] Use struct sctp_sack_info instead
[  991.351011][ T1974] sctp: [Deprecated]: syz.5.10905 (pid 1974) Use of struct sctp_assoc_value in delayed_ack socket option.
[  991.351011][ T1974] Use struct sctp_sack_info instead
[  991.492972][ T1913] XFS (loop9): Mounting V5 Filesystem
[  991.558923][ T5514] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  991.826767][ T1913] XFS (loop9): Ending clean mount
[  992.404625][   T26] audit: type=1800 audit(1773736677.911:515): pid=2004 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.10897" name="file1" dev="loop9" ino=4422 res=0 errno=0
[  992.740878][T30678] XFS (loop9): Unmounting Filesystem
[  993.202253][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  993.385351][ T2052] loop5: detected capacity change from 0 to 4096
[  993.481839][ T2052] EXT4-fs (loop5): Test dummy encryption mode enabled
[  993.556692][ T2052] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=8802c018, mo2=0002]
[  993.628833][ T2052] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  994.035520][T31396] EXT4-fs (loop5): unmounting filesystem.
[  994.447270][ T2088] loop5: detected capacity change from 0 to 4096
[  994.465871][ T2055] loop7: detected capacity change from 0 to 40427
[  994.511444][ T2055] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  994.596536][ T2055] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  994.655376][   T26] audit: type=1800 audit(1773736680.161:516): pid=2088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.10930" name="file1" dev="loop5" ino=30 res=0 errno=0
[  994.661000][ T2055] F2FS-fs (loop7): invalid crc value
[  994.823668][ T2055] F2FS-fs (loop7): Found nat_bits in checkpoint
[  994.898606][ T2073] loop3: detected capacity change from 0 to 32768
[  994.950379][ T2073] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.10927 (2073)
[  995.068392][ T2073] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  995.110333][ T2055] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  995.117732][ T2055] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  995.158812][ T2073] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  995.181636][ T2115] loop6: detected capacity change from 0 to 128
[  995.231570][ T2073] BTRFS info (device loop3): using free space tree
[  995.300308][ T2122] syz.9.10918 uses old SIOCAX25GETINFO
[  995.528384][ T2073] BTRFS info (device loop3): enabling ssd optimizations
[  995.708225][ T2153] usb usb8: usbfs: process 2153 (syz.9.10937) did not claim interface 5 before use
[  996.006089][  T512] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  996.476361][ T2183] loop6: detected capacity change from 0 to 1024
[  996.532286][ T2183] EXT4-fs: Ignoring removed nomblk_io_submit option
[  996.579875][ T2183] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  996.638091][ T2183] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  996.756150][ T2183] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054c018, mo2=0002]
[  996.777833][ T2183] System zones: 0-1, 3-36
[  996.812169][ T2183] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  997.413451][ T5514] EXT4-fs (loop6): unmounting filesystem.
[  997.461830][    C1] vkms_vblank_simulate: vblank timer overrun
[  998.244210][ T2258] netlink: 156 bytes leftover after parsing attributes in process `syz.9.10962'.
[  998.267908][  T952] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  998.286386][ T2258] netlink: 64 bytes leftover after parsing attributes in process `syz.9.10962'.
[  998.320183][ T2258] tipc: Invalid UDP bearer configuration
[  998.320234][ T2258] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  998.353638][ T2201] loop7: detected capacity change from 0 to 40427
[  998.411889][ T2201] F2FS-fs (loop7): invalid crc value
[  998.440857][ T2201] F2FS-fs (loop7): Found nat_bits in checkpoint
[  998.482788][  T952] usb 4-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  998.537880][  T952] usb 4-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3
[  998.575846][  T952] usb 4-1: Product: syz
[  998.607890][  T952] usb 4-1: Manufacturer: syz
[  998.623171][  T952] usb 4-1: SerialNumber: syz
[  998.645665][ T2201] F2FS-fs (loop7): Start checkpoint disabled!
[  998.676120][  T952] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
[  998.686003][ T2271] trusted_key: encrypted_key: key user:syz not found
[  998.695822][ T2201] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  999.070729][  T952] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  999.110417][  T952] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19)
[  999.182699][ T2238] loop6: detected capacity change from 0 to 32768
[  999.221766][ T2238] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 scanned by syz.6.10957 (2238)
[  999.244123][T19178] kworker/u4:14: attempt to access beyond end of device
[  999.244123][T19178] loop7: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  999.285739][  T952] usb 4-1: USB disconnect, device number 4
[  999.320486][ T2238] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  999.368101][ T2238] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  999.410317][ T2238] BTRFS info (device loop6): enabling auto defrag
[  999.416823][ T2238] BTRFS info (device loop6): use no compression
[  999.433595][ T2238] BTRFS info (device loop6): max_inline at 4096
[  999.465775][ T2238] BTRFS info (device loop6): using free space tree
[  999.605406][ T2238] BTRFS info (device loop6): enabling ssd optimizations
[  999.683381][ T2238] BTRFS info (device loop6): setting incompat feature flag for DEFAULT_SUBVOL (0x2)
[  999.990183][ T5514] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1000.476527][ T2347] loop3: detected capacity change from 0 to 64
[ 1000.495399][ T2347] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing
[ 1000.507424][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1000.702926][ T2304] loop5: detected capacity change from 0 to 32768
[ 1000.825942][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1001.024366][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1001.061114][ T2304] XFS (loop5): Mounting V5 Filesystem
[ 1001.293540][ T2304] XFS (loop5): Ending clean mount
[ 1001.566077][T31396] XFS (loop5): Unmounting Filesystem
[ 1001.695089][ T2341] loop7: detected capacity change from 0 to 32768
[ 1001.818794][ T2392] loop9: detected capacity change from 0 to 8192
[ 1001.848326][ T2341] ocfs2: Slot 0 on device (7,7) was already allocated to this node!
[ 1001.962341][ T2341] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1002.390835][T29452] ocfs2: Unmounting device (7,7) on (node local)
[ 1002.537097][ T2436] loop3: detected capacity change from 0 to 1024
[ 1002.649840][ T2436] hfsplus: bad catalog entry type
[ 1002.918389][   T57] hfsplus: b-tree write err: -5, ino 25
[ 1002.925710][   T57] hfsplus: b-tree write err: -5, ino 4
[ 1002.957929][   T57] hfsplus: b-tree write err: -5, ino 2
[ 1003.127867][ T2469] netlink: 24 bytes leftover after parsing attributes in process `syz.9.10994'.
[ 1003.170226][ T2462] netlink: 24 bytes leftover after parsing attributes in process `syz.9.10994'.
[ 1003.491622][ T2486] netlink: 8 bytes leftover after parsing attributes in process `syz.5.10998'.
[ 1003.836911][ T2509] "syz.7.11001" (2509) uses obsolete ecb(arc4) skcipher
[ 1003.988771][ T2510] loop3: detected capacity change from 0 to 4096
[ 1004.092346][ T2516] loop5: detected capacity change from 0 to 1024
[ 1004.099441][ T2520] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1004.232268][ T2526] IPVS: Error connecting to the multicast addr
[ 1004.254913][ T2516] EXT4-fs (loop5): corrupt root inode, run e2fsck
[ 1004.272294][ T2516] EXT4-fs (loop5): mount failed
[ 1004.920283][   T22] Process accounting resumed
[ 1004.959727][ T2502] loop6: detected capacity change from 0 to 32768
[ 1004.990965][ T2502] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 scanned by syz.6.11000 (2502)
[ 1005.045063][ T2552] Process accounting resumed
[ 1005.087113][ T2502] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1005.148246][ T2502] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[ 1005.175851][ T2502] BTRFS info (device loop6): using free space tree
[ 1005.454383][ T2581] netlink: 'syz.9.11011': attribute type 3 has an invalid length.
[ 1005.658873][ T2502] BTRFS info (device loop6): enabling ssd optimizations
[ 1005.694148][ T2516] loop5: detected capacity change from 0 to 32768
[ 1005.721304][ T2516] BTRFS warning: duplicate device /dev/loop5 devid 1 generation 8 scanned by syz.5.11005 (2516)
[ 1005.785111][ T2528] loop7: detected capacity change from 0 to 32768
[ 1005.940757][ T4477] BTRFS warning: duplicate device /dev/loop5 devid 1 generation 8 scanned by udevd (4477)
[ 1005.976258][ T2528] XFS (loop7): Mounting V5 Filesystem
[ 1006.145381][ T2528] XFS (loop7): Ending clean mount
[ 1006.199736][ T2528] XFS (loop7): Quotacheck needed: Please wait.
[ 1006.370892][ T2631] netlink: 'syz.5.11015': attribute type 11 has an invalid length.
[ 1006.402013][ T2631] netlink: 'syz.5.11015': attribute type 11 has an invalid length.
[ 1006.449359][ T2631] netlink: 193500 bytes leftover after parsing attributes in process `syz.5.11015'.
[ 1006.454659][ T2528] XFS (loop7): Quotacheck: Done.
[ 1006.753080][T29452] XFS (loop7): Unmounting Filesystem
[ 1006.783062][T19180] BTRFS info (device loop6): qgroup scan completed (inconsistency flag cleared)
[ 1007.025487][ T2642] loop9: detected capacity change from 0 to 8192
[ 1007.053883][ T5514] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1007.453150][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1007.587731][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1007.725534][ T2678] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[ 1007.768803][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1007.976511][ T2691] netlink: 24 bytes leftover after parsing attributes in process `syz.3.11028'.
[ 1008.531518][ T2721] use of bytesused == 0 is deprecated and will be removed in the future,
[ 1008.599084][ T2721] use the actual size instead.
[ 1008.622302][ T2725] loop3: detected capacity change from 0 to 512
[ 1008.638891][ T2725] EXT4-fs (loop3): 1 truncate cleaned up
[ 1008.645196][ T2725] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1008.889519][  T512] EXT4-fs (loop3): unmounting filesystem.
[ 1008.917965][ T2741] netlink: 32 bytes leftover after parsing attributes in process `syz.5.11035'.
[ 1009.318001][ T6640] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[ 1009.524188][ T6640] usb 4-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[ 1009.557947][ T6640] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1009.608018][ T6640] usb 4-1: config 0 descriptor??
[ 1009.622111][ T2767] loop5: detected capacity change from 0 to 256
[ 1009.640296][ T6640] gspca_main: sunplus-2.14.0 probing 055f:c420
[ 1009.640917][ T2717] loop9: detected capacity change from 0 to 32768
[ 1009.739684][ T2783] netlink: 16 bytes leftover after parsing attributes in process `syz.6.11042'.
[ 1009.806697][ T2717] XFS (loop9): Mounting V5 Filesystem
[ 1009.840536][ T2767] FAT-fs (loop5): Directory bread(block 64) failed
[ 1009.875764][ T2737] loop7: detected capacity change from 0 to 32768
[ 1009.900107][ T2767] FAT-fs (loop5): Directory bread(block 65) failed
[ 1009.908168][ T2767] FAT-fs (loop5): Directory bread(block 66) failed
[ 1009.914829][ T2767] FAT-fs (loop5): Directory bread(block 67) failed
[ 1009.922716][ T2767] FAT-fs (loop5): Directory bread(block 68) failed
[ 1009.934093][ T2767] FAT-fs (loop5): Directory bread(block 69) failed
[ 1009.973891][ T2767] FAT-fs (loop5): Directory bread(block 70) failed
[ 1009.995866][ T2767] FAT-fs (loop5): Directory bread(block 71) failed
[ 1010.028662][ T2767] FAT-fs (loop5): Directory bread(block 72) failed
[ 1010.038347][ T2767] FAT-fs (loop5): Directory bread(block 73) failed
[ 1010.131776][ T2737] XFS (loop7): Mounting V5 Filesystem
[ 1010.132349][ T2717] XFS (loop9): Ending clean mount
[ 1010.221893][ T2737] XFS (loop7): Ending clean mount
[ 1010.227686][ T2717] XFS (loop9): Quotacheck needed: Please wait.
[ 1010.228759][ T6640] gspca_sunplus: reg_w_riv err -71
[ 1010.257903][ T6640] sunplus: probe of 4-1:0.0 failed with error -71
[ 1010.266592][ T6640] usb 4-1: USB disconnect, device number 5
[ 1010.371111][ T2717] XFS (loop9): Quotacheck: Done.
[ 1010.457509][T29452] XFS (loop7): Unmounting Filesystem
[ 1010.535300][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1010.638348][ T4283] Bluetooth: hci4: command 0x0406 tx timeout
[ 1010.748078][T30678] XFS (loop9): Unmounting Filesystem
[ 1011.526368][ T2871] loop5: detected capacity change from 0 to 512
[ 1011.550412][ T2871] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1011.609972][ T2878] loop3: detected capacity change from 0 to 64
[ 1011.623839][ T2878] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended.  mounting read-only.
[ 1011.635425][ T2878] hfs: filesystem is marked locked, mounting read-only.
[ 1011.715533][ T2871] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1011.768980][ T2871] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3850: comm syz.5.11054: Allocating blocks 41-42 which overlap fs metadata
[ 1011.867379][ T2871] Quota error (device loop5): write_blk: dquota write failed
[ 1011.917106][ T2871] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[ 1011.988652][ T2871] EXT4-fs error (device loop5): ext4_acquire_dquot:6835: comm syz.5.11054: Failed to acquire dquot type 0
[ 1012.043279][ T2871] EXT4-fs (loop5): 1 truncate cleaned up
[ 1012.099637][ T2871] EXT4-fs (loop5): pa ffff888071c5bc40: logic 1, phys. 41, len 23
[ 1012.109123][ T2871] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:4890: group 0, free 22, pa_free 23
[ 1012.228035][ T2871] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1012.296465][ T2905] netlink: 'syz.6.11060': attribute type 11 has an invalid length.
[ 1012.335050][ T2905] netlink: 56 bytes leftover after parsing attributes in process `syz.6.11060'.
[ 1012.423115][T31396] EXT4-fs (loop5): unmounting filesystem.
[ 1013.373668][ T2952] loop6: detected capacity change from 0 to 1024
[ 1013.415465][ T2893] loop9: detected capacity change from 0 to 32768
[ 1013.600060][ T2952] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[ 1013.653111][ T2955] loop7: detected capacity change from 0 to 4096
[ 1013.726126][ T2955] ntfs: (device loop7): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[ 1013.765116][ T2915] loop5: detected capacity change from 0 to 32768
[ 1013.776054][ T2955] ntfs: (device loop7): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1013.808394][   T57] hfsplus: b-tree write err: -5, ino 25
[ 1013.815168][   T57] hfsplus: b-tree write err: -5, ino 4
[ 1013.848567][   T57] hfsplus: b-tree write err: -5, ino 2
[ 1013.849258][ T2915] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.11063 (2915)
[ 1013.854691][ T2955] ntfs: (device loop7): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[ 1013.986331][ T2915] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1014.049005][ T2955] ntfs: (device loop7): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1014.065583][ T2915] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[ 1014.116075][ T2915] BTRFS info (device loop5): using free space tree
[ 1014.148075][ T2955] ntfs: (device loop7): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1014.221389][ T2955] ntfs: volume version 3.1.
[ 1014.230341][ T2955] ntfs: (device loop7): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[ 1014.291945][ T2955] ntfs: (device loop7): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[ 1014.307690][ T2955] ntfs: (device loop7): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[ 1014.463812][ T2915] BTRFS info (device loop5): enabling ssd optimizations
[ 1014.971161][T19178] BTRFS info (device loop5): qgroup scan completed (inconsistency flag cleared)
[ 1014.983880][ T3020] binder: 3019:3020 ioctl c018620b 200000000240 returned -14
[ 1015.123086][T31396] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1015.538285][ T3046] Bluetooth: MGMT ver 1.22
[ 1016.043921][ T3059] loop3: detected capacity change from 0 to 4096
[ 1016.153805][ T3065] loop6: detected capacity change from 0 to 512
[ 1016.302865][ T3065] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.11093: invalid indirect mapped block 256 (level 2)
[ 1016.399254][ T3065] EXT4-fs (loop6): 2 truncates cleaned up
[ 1016.401549][ T3074] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1016.405171][ T3065] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1016.745012][ T5514] EXT4-fs (loop6): unmounting filesystem.
[ 1017.214147][ T3115] loop6: detected capacity change from 0 to 164
[ 1017.228457][ T3109] netlink: 'syz.5.11100': attribute type 298 has an invalid length.
[ 1017.313756][ T3110] loop9: detected capacity change from 0 to 4096
[ 1017.356263][ T3117] loop3: detected capacity change from 0 to 1024
[ 1017.406962][ T3121] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1017.751932][ T3117] hfsplus: bad catalog entry type
[ 1018.098404][T29800] hfsplus: b-tree write err: -5, ino 25
[ 1018.104568][T29800] hfsplus: b-tree write err: -5, ino 4
[ 1018.158357][T29800] hfsplus: b-tree write err: -5, ino 2
[ 1018.163437][ T3140] loop6: detected capacity change from 0 to 4096
[ 1018.281083][ T3097] loop7: detected capacity change from 0 to 32768
[ 1018.339235][ T3097] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 scanned by syz.7.11096 (3097)
[ 1018.435620][ T3097] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1018.491040][ T3097] BTRFS info (device loop7): using sha256 (sha256-avx2) checksum algorithm
[ 1018.532226][ T5514] ntfs3: loop6: ntfs_evict_inode r=5 failed, -22.
[ 1018.543911][ T3097] BTRFS info (device loop7): using free space tree
[ 1018.568158][   T22] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[ 1018.592992][ T5514] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[ 1018.788161][   T22] usb 6-1: Using ep0 maxpacket: 16
[ 1018.798420][   T22] usb 6-1: config 0 has an invalid interface number: 34 but max is 0
[ 1018.887565][   T22] usb 6-1: config 0 has no interface number 0
[ 1018.932723][   T22] usb 6-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[ 1018.932737][ T3097] BTRFS info (device loop7): enabling ssd optimizations
[ 1019.052076][   T22] usb 6-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80
[ 1019.078219][ T3137] loop9: detected capacity change from 0 to 32768
[ 1019.127065][   T22] usb 6-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[ 1019.185606][   T22] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1019.215530][T19174] BTRFS info (device loop7): qgroup scan completed (inconsistency flag cleared)
[ 1019.287514][   T22] usb 6-1: Product: syz
[ 1019.337903][   T22] usb 6-1: Manufacturer: syz
[ 1019.374138][   T22] usb 6-1: SerialNumber: syz
[ 1019.430843][   T22] usb 6-1: config 0 descriptor??
[ 1019.461187][ T3152] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1019.478303][ T3152] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1019.489283][ T3137] XFS (loop9): Mounting V5 Filesystem
[ 1019.644776][ T3137] XFS (loop9): Ending clean mount
[ 1019.708631][T29452] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1019.719146][ T3152] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1019.726808][ T3152] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1019.795785][ T3213] loop6: detected capacity change from 0 to 736
[ 1019.875926][ T3214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11113'.
[ 1020.013543][   T22] asix 6-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[ 1020.055959][   T22] asix: probe of 6-1:0.34 failed with error -61
[ 1020.228298][   T22] usb 6-1: USB disconnect, device number 6
[ 1020.596598][T30678] XFS (loop9): Unmounting Filesystem
[ 1021.050146][ T3254] netlink: 'syz.5.11118': attribute type 16 has an invalid length.
[ 1021.118744][ T3254] netlink: 48 bytes leftover after parsing attributes in process `syz.5.11118'.
[ 1022.194369][ T3309] loop6: detected capacity change from 0 to 1764
[ 1023.638665][ T3424] netlink: 312 bytes leftover after parsing attributes in process `syz.3.11146'.
[ 1023.887004][ T3442] netlink: 'syz.6.11151': attribute type 2 has an invalid length.
[ 1023.925242][ T3442] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11151'.
[ 1024.364521][ T3465] loop7: detected capacity change from 0 to 512
[ 1024.479745][ T3465] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[ 1024.510972][ T3465] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2
[ 1024.638166][ T3465] EXT4-fs (loop7): 1 truncate cleaned up
[ 1024.688441][ T3465] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1024.733905][ T3487] loop6: detected capacity change from 0 to 128
[ 1024.783318][ T3487] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1024.857984][ T3487] hpfs: filesystem error: improperly stopped
[ 1024.864779][ T3487] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1024.904709][ T3495] loop9: detected capacity change from 0 to 1024
[ 1024.921673][ T3496] loop5: detected capacity change from 0 to 512
[ 1024.948550][ T3487] hpfs: You really don't want any checks? You are crazy...
[ 1024.983541][ T3495] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1025.001056][ T3487] hpfs: hpfs_map_sector(): read error
[ 1025.012238][ T3496] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1025.043808][ T3487] hpfs: code page support is disabled
[ 1025.050064][T29452] EXT4-fs (loop7): unmounting filesystem.
[ 1025.068910][ T3496] EXT4-fs error (device loop5): ext4_do_update_inode:5272: inode #15: comm syz.5.11164: corrupted inode contents
[ 1025.097825][ T3496] EXT4-fs (loop5): Remounting filesystem read-only
[ 1025.130317][ T3495] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[ 1025.135579][ T3487] hpfs: hpfs_map_4sectors(): unaligned read
[ 1025.171912][ T3495] EXT4-fs error (device loop9): ext4_xattr_inode_iget:401: inode #11: comm syz.9.11165: missing EA_INODE flag
[ 1025.209696][ T3487] hpfs: hpfs_map_4sectors(): unaligned read
[ 1025.215952][ T3487] hpfs: filesystem error: unable to find root dir
[ 1025.217917][ T3496] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[ 1025.237968][ T3496] EXT4-fs (loop5): Remounting filesystem read-only
[ 1025.263073][ T3495] EXT4-fs (loop9): Remounting filesystem read-only
[ 1025.276597][ T3496] EXT4-fs error (device loop5): ext4_do_update_inode:5272: inode #15: comm syz.5.11164: corrupted inode contents
[ 1025.301316][ T3495] EXT4-fs error (device loop9): ext4_xattr_inode_iget:406: comm syz.9.11165: error while reading EA inode 11 err=-117
[ 1025.355461][ T3496] EXT4-fs (loop5): Remounting filesystem read-only
[ 1025.367900][ T3495] EXT4-fs (loop9): Remounting filesystem read-only
[ 1025.396008][ T3496] EXT4-fs error (device loop5): ext4_evict_inode:327: inode #15: comm syz.5.11164: mark_inode_dirty error
[ 1025.418536][ T3496] EXT4-fs (loop5): Remounting filesystem read-only
[ 1025.425413][ T3496] EXT4-fs (loop5): 1 orphan inode deleted
[ 1025.507923][ T3496] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1025.546084][T30678] EXT4-fs (loop9): unmounting filesystem.
[ 1025.798777][T31396] EXT4-fs (loop5): unmounting filesystem.
[ 1025.806259][ T3525] CUSE: unknown device info ""
[ 1025.827971][ T3525] CUSE: unknown device info "Ö"
[ 1025.833182][ T3525] CUSE: unknown device info ""
[ 1025.893591][ T3525] CUSE: unknown device info ""
[ 1025.947988][ T3525] CUSE: unknown device info "ðÿÿÿ"
[ 1025.953911][ T3525] CUSE: unknown device info ""
[ 1025.987945][ T3525] CUSE: unknown device info ""
[ 1025.993468][ T3525] CUSE: unknown device info ""
[ 1026.017942][ T3525] CUSE: unknown device info ""
[ 1026.047533][ T3525] CUSE: unknown device info "ýÿÿÿÿÿÿÿ#Û"
[ 1026.067961][ T3525] CUSE: unknown device info "ÿÿÿÿ"
[ 1026.073327][ T3525] CUSE: unknown device info ""
[ 1026.127945][ T3525] CUSE: unknown device info "€"
[ 1026.133057][ T3525] CUSE: DEVNAME unspecified
[ 1026.330597][ T3478] loop3: detected capacity change from 0 to 40427
[ 1026.371818][ T3478] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1026.418101][ T3478] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1026.510940][ T3478] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1026.721542][ T3478] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1026.740471][ T3478] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1027.042208][ T3518] loop6: detected capacity change from 0 to 32768
[ 1027.183320][ T3518] XFS (loop6): DAX unsupported by block device. Turning off DAX.
[ 1027.194956][ T3535] loop5: detected capacity change from 0 to 32768
[ 1027.237945][ T3518] XFS (loop6): Mounting V5 Filesystem
[ 1027.273927][ T3536] loop9: detected capacity change from 0 to 32768
[ 1027.318145][ T3536] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop9 scanned by syz.9.11170 (3536)
[ 1027.358366][ T3536] BTRFS info (device loop9): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1027.438665][ T3536] BTRFS info (device loop9): using sha256 (sha256-avx2) checksum algorithm
[ 1027.493776][ T3518] XFS (loop6): Ending clean mount
[ 1027.499389][ T3536] BTRFS info (device loop9): using free space tree
[ 1027.523570][ T3518] XFS (loop6): Quotacheck needed: Please wait.
[ 1027.715657][ T3518] XFS (loop6): Quotacheck: Done.
[ 1027.849922][ T3536] BTRFS info (device loop9): enabling ssd optimizations
[ 1028.162345][ T5514] XFS (loop6): Unmounting Filesystem
[ 1029.005426][T30678] BTRFS info (device loop9): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1029.007562][T19174] BTRFS info (device loop9): qgroup scan completed (inconsistency flag cleared)
[ 1029.048217][ T3585] loop5: detected capacity change from 0 to 32768
[ 1029.355584][ T4477] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 12 /dev/loop9 scanned by udevd (4477)
[ 1029.525600][ T3646] loop6: detected capacity change from 0 to 512
[ 1029.632740][ T3646] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.11178: invalid indirect mapped block 4294967295 (level 1)
[ 1029.748342][ T3646] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.11178: invalid indirect mapped block 4294967295 (level 1)
[ 1029.809405][ T3646] EXT4-fs (loop6): 2 truncates cleaned up
[ 1029.825700][ T3646] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1029.938835][ T3616] loop7: detected capacity change from 0 to 32768
[ 1030.337403][ T3585] XFS (loop5): Mounting V5 Filesystem
[ 1030.351290][ T5514] EXT4-fs (loop6): unmounting filesystem.
[ 1030.410861][ T3668] loop3: detected capacity change from 0 to 4096
[ 1030.429110][ T3668] __ntfs_error: 7 callbacks suppressed
[ 1030.429129][ T3668] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[ 1030.449307][ T3668] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1030.463681][ T3668] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[ 1030.535621][ T3585] XFS (loop5): Ending clean mount
[ 1030.538131][ T3668] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1030.584219][ T3668] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1030.659321][ T3668] ntfs: volume version 3.1.
[ 1030.718470][ T3668] ntfs: (device loop3): ntfs_read_locked_inode(): $INDEX_ALLOCATION attribute is resident.
[ 1030.719162][T31396] XFS (loop5): Unmounting Filesystem
[ 1030.790612][ T3668] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x5 as bad.  Run chkdsk.
[ 1030.868076][ T3668] ntfs: (device loop3): load_system_files(): Failed to load root directory.
[ 1030.888213][ T3668] ntfs: (device loop3): ntfs_fill_super(): Failed to load system files.
[ 1031.077714][ T3668] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[ 1031.448104][ T3707] netlink: 4 bytes leftover after parsing attributes in process `syz.6.11193'.
[ 1032.238451][T28586] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 1032.467925][T28586] usb 4-1: Using ep0 maxpacket: 32
[ 1032.484914][T28586] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1032.526895][T28586] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1032.585539][T28586] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1032.637924][T28586] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1032.698241][T28586] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1032.750828][ T3769] netlink: 4 bytes leftover after parsing attributes in process `syz.5.11208'.
[ 1032.755114][T28586] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1032.775257][ T3767] loop7: detected capacity change from 0 to 1764
[ 1032.823800][ T3773] loop6: detected capacity change from 0 to 64
[ 1032.832019][T28586] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1032.854184][T28586] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1032.905016][T28586] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1032.948382][T28586] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1033.012692][T28586] usb 4-1: config 0 descriptor??
[ 1033.286220][ T3794] loop7: detected capacity change from 0 to 512
[ 1033.298888][T28586] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 6 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1033.342861][T28586] usb 4-1: USB disconnect, device number 6
[ 1033.383806][T28586] usblp0: removed
[ 1033.410500][ T3794] EXT4-fs (loop7): 1 truncate cleaned up
[ 1033.416845][ T3794] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1033.601475][ T3758] loop9: detected capacity change from 0 to 32768
[ 1033.721588][ T3827] loop6: detected capacity change from 0 to 1024
[ 1033.768632][T29452] EXT4-fs (loop7): unmounting filesystem.
[ 1033.828036][ T3758] XFS (loop9): Mounting V5 Filesystem
[ 1033.923640][ T3839] netlink: 224 bytes leftover after parsing attributes in process `syz.5.11216'.
[ 1033.987840][ T3839] netlink: 16 bytes leftover after parsing attributes in process `syz.5.11216'.
[ 1034.028127][T28586] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1034.046396][ T3758] XFS (loop9): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[ 1034.103392][ T3758] XFS (loop9): Starting recovery (logdev: internal)
[ 1034.201661][ T3758] XFS (loop9): Ending recovery (logdev: internal)
[ 1034.237944][T28586] usb 4-1: Using ep0 maxpacket: 16
[ 1034.248805][T28586] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1034.280294][T28586] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1034.313389][T28586] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1034.334442][T28586] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1034.365265][T28586] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1034.396408][T28586] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1034.458520][T28586] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1034.507888][T28586] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1034.552914][T28586] usb 4-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice= 0.87
[ 1034.591728][T28586] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1034.654665][T30678] XFS (loop9): Unmounting Filesystem
[ 1034.657359][T28586] usb 4-1: config 0 descriptor??
[ 1034.697244][T28586] port100 4-1:0.0: NFC: Could not get supported command types
[ 1034.741241][ T3868] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11224'.
[ 1035.023435][T28586] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x054C pid 0x06C1
[ 1035.065154][T28586] usb 4-1: USB disconnect, device number 7
[ 1035.097483][T28586] usblp0: removed
[ 1035.180911][ T3904] loop3: detected capacity change from 0 to 128
[ 1035.239214][ T3904] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1035.290120][ T3904] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1035.611554][T19180] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1036.427283][ T3959] loop5: detected capacity change from 0 to 1024
[ 1036.700050][ T6642] kernel write not supported for file /dsp1 (pid: 6642 comm: kworker/1:11)
[ 1036.820490][ T3977] loop3: detected capacity change from 0 to 16
[ 1036.869989][ T3977] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1036.901760][T19171] hfsplus: b-tree write err: -5, ino 8
[ 1037.259473][ T4002] loop3: detected capacity change from 0 to 256
[ 1037.883794][ T4025] loop9: detected capacity change from 0 to 4096
[ 1038.581661][ T4070] loop7: detected capacity change from 0 to 256
[ 1038.649865][ T4070] exfat: Deprecated parameter 'utf8'
[ 1038.662516][ T4077] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11269'.
[ 1038.712732][ T4070] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[ 1038.763262][ T4084] loop5: detected capacity change from 0 to 512
[ 1038.899458][ T4084] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1038.968960][ T4084] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1039.112914][ T4084] EXT4-fs (loop5): re-mounted. Quota mode: writeback.
[ 1039.239175][T31396] EXT4-fs (loop5): unmounting filesystem.
[ 1039.630109][ T4131] netlink: 36 bytes leftover after parsing attributes in process `syz.7.11280'.
[ 1040.270616][ T4166] loop5: detected capacity change from 0 to 128
[ 1040.295398][ T4166] VFS: Found a Xenix FS (block size = 512) on device loop5
[ 1040.428749][ T6642] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1040.596971][T31396] sysv_free_block: trying to free block not in datazone
[ 1040.628054][ T6642] usb 4-1: Using ep0 maxpacket: 32
[ 1040.636308][ T6642] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1040.684648][T31396] sysv_free_inode: inode 0,1,2 or nonexistent inode
[ 1040.712531][ T6642] usb 4-1: config 1 interface 0 altsetting 254 has 0 endpoint descriptors, different from the interface descriptor's value: 22
[ 1040.777931][   T26] audit: type=1326 audit(1773736726.271:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1040.888025][ T6642] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1040.937957][   T26] audit: type=1326 audit(1773736726.271:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1040.973104][ T6642] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1041.054119][ T6642] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1041.157931][ T6642] usb 4-1: SerialNumber: syz
[ 1041.181405][   T26] audit: type=1326 audit(1773736726.271:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1041.238689][ T6642] cdc_acm 4-1:1.0: invalid descriptor buffer length
[ 1041.245739][ T6642] cdc_acm 4-1:1.0: Control and data interfaces are not separated!
[ 1041.277779][    C0] sched: RT throttling activated
[ 1041.296857][   T26] audit: type=1326 audit(1773736726.271:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1041.368467][ T6642] cdc_acm 4-1:1.0: This needs exactly 3 endpoints
[ 1041.375065][ T6642] cdc_acm: probe of 4-1:1.0 failed with error -22
[ 1041.382726][   T26] audit: type=1326 audit(1773736726.271:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1041.394908][ T4170] loop9: detected capacity change from 0 to 131072
[ 1041.436016][ T4170] F2FS-fs (loop9): Test dummy encryption mode enabled
[ 1041.448858][ T4170] F2FS-fs (loop9): invalid crc value
[ 1041.488323][ T4170] F2FS-fs (loop9): Found nat_bits in checkpoint
[ 1041.526966][ T6642] usb 4-1: USB disconnect, device number 8
[ 1041.532831][ T4170] F2FS-fs (loop9): sanity_check_inode: corrupted inode ino=3, run fsck to fix.
[ 1041.554745][ T4170] F2FS-fs (loop9): Failed to read root inode
[ 1041.640204][   T26] audit: type=1326 audit(1773736726.271:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1041.766863][   T26] audit: type=1326 audit(1773736726.271:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1041.858935][   T26] audit: type=1326 audit(1773736726.271:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1041.997832][   T26] audit: type=1326 audit(1773736726.271:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1042.084465][   T26] audit: type=1326 audit(1773736726.271:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4144 comm="syz.7.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f049ad9c799 code=0x7fc00000
[ 1042.324754][ T4227] comedi comedi3: pcl812: I/O port conflict (0x8001,16)
[ 1042.654187][ T4238] loop9: detected capacity change from 0 to 512
[ 1043.160511][ T4210] loop7: detected capacity change from 0 to 32768
[ 1043.219851][ T4210] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop7 scanned by syz.7.11297 (4210)
[ 1043.273140][ T4206] loop5: detected capacity change from 0 to 40427
[ 1043.291817][ T4210] BTRFS info (device loop7): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1043.354361][ T4210] BTRFS info (device loop7): using blake2b (blake2b-256-generic) checksum algorithm
[ 1043.366126][ T4206] F2FS-fs (loop5): invalid crc value
[ 1043.366166][ T4206] F2FS-fs (loop5): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[ 1043.390842][ T4206] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1043.518269][ T4210] BTRFS info (device loop7): using free space tree
[ 1043.594786][ T4206] F2FS-fs (loop5): recover fsync data on readonly fs
[ 1043.624486][ T4206] F2FS-fs (loop5): Cannot turn on quotas: -2 on 0
[ 1043.680005][ T4206] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1043.813803][ T4210] BTRFS info (device loop7): enabling ssd optimizations
[ 1044.315946][ T4325] loop3: detected capacity change from 0 to 512
[ 1044.431435][ T4325] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1044.507652][ T4325] ext4 filesystem being mounted at /118/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1044.649109][T29452] BTRFS info (device loop7): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1044.706478][ T4337] tc_dump_action: action bad kind
[ 1044.724701][ T4249] loop6: detected capacity change from 0 to 40427
[ 1044.784590][ T4249] F2FS-fs (loop6): invalid crc value
[ 1044.816403][  T512] EXT4-fs (loop3): unmounting filesystem.
[ 1044.859393][ T4249] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1045.018960][ T4353] netlink: 'syz.5.11315': attribute type 30 has an invalid length.
[ 1045.135419][ T4249] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1045.307931][ T6642] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1045.508197][ T6642] usb 10-1: Using ep0 maxpacket: 16
[ 1045.515823][ T6642] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[ 1045.548052][ T6642] usb 10-1: config 0 has no interface number 0
[ 1045.554744][ T6642] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0xC has an invalid bInterval 176, changing to 11
[ 1045.625336][ T6642] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0xC has invalid maxpacket 8243, setting to 1024
[ 1045.710618][ T6642] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[ 1045.738584][ T6642] usb 10-1: config 0 has no interface number 0
[ 1045.755452][ T6642] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0xC has an invalid bInterval 176, changing to 11
[ 1045.797594][ T6642] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0xC has invalid maxpacket 8243, setting to 1024
[ 1045.862844][ T6642] usb 10-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d
[ 1045.878297][ T5514] syz-executor: attempt to access beyond end of device
[ 1045.878297][ T5514] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1045.920090][ T6642] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1045.987368][ T6642] usb 10-1: Product: syz
[ 1045.992568][ T6642] usb 10-1: Manufacturer: syz
[ 1045.997565][ T6642] usb 10-1: SerialNumber: syz
[ 1046.034297][ T6642] usb 10-1: config 0 descriptor??
[ 1046.133626][ T4392] netlink: 'syz.5.11326': attribute type 298 has an invalid length.
[ 1046.346777][T28615] usb 10-1: USB disconnect, device number 2
[ 1046.531737][ T4409] loop3: detected capacity change from 0 to 4096
[ 1046.549032][ T4432] sp0: Synchronizing with TNC
[ 1046.672617][ T4443] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1047.059458][ T4455] loop5: detected capacity change from 0 to 256
[ 1047.151509][ T4461] loop6: detected capacity change from 0 to 1024
[ 1047.219184][ T4461] EXT4-fs: Ignoring removed bh option
[ 1047.247975][ T4461] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1047.363158][ T4461] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1047.512388][ T4488] netlink: 16 bytes leftover after parsing attributes in process `syz.7.11336'.
[ 1047.606438][ T5514] EXT4-fs (loop6): unmounting filesystem.
[ 1047.645459][ T4492] loop5: detected capacity change from 0 to 2048
[ 1047.720360][ T4492] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1047.780913][ T4492] NILFS (loop5): mounting unchecked fs
[ 1047.901008][ T4492] NILFS (loop5): recovery complete
[ 1047.940031][ T4504] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1048.269815][ T4506] loop7: detected capacity change from 0 to 8192
[ 1048.323472][ T4506] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1048.367859][ T4506] REISERFS (device loop7): found reiserfs format "3.5" with non-standard journal
[ 1048.413547][ T4506] REISERFS (device loop7): using ordered data mode
[ 1048.458494][ T4528] binder: 4524:4528 ioctl 40046205 0 returned -22
[ 1048.459761][ T4506] reiserfs: using flush barriers
[ 1048.472874][ T4506] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1048.498779][ T4528] binder: 4524:4528 ioctl c0306201 200000000300 returned -11
[ 1048.558919][ T4506] REISERFS (device loop7): checking transaction log (loop7)
[ 1048.636128][ T4506] REISERFS (device loop7): Using r5 hash to sort names
[ 1048.689035][ T4506] REISERFS (device loop7): Created .reiserfs_priv - reserved for xattr storage.
[ 1048.897686][ T4539] loop6: detected capacity change from 0 to 2048
[ 1048.990348][ T4539] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1049.103581][ T4539] overlayfs: upper fs needs to support d_type.
[ 1049.218533][ T4539] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1049.258066][ T4539] overlayfs: failed to set xattr on upper
[ 1049.295029][ T4539] overlayfs: ...falling back to index=off,metacopy=off.
[ 1049.318820][ T4539] overlayfs: Failed to create volatile/dirty file.
[ 1049.433359][ T4507] loop3: detected capacity change from 0 to 32768
[ 1049.520617][   T27] INFO: task syz-executor:17993 blocked for more than 143 seconds.
[ 1049.537813][   T27]       Not tainted syzkaller #0
[ 1049.543005][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1049.552316][   T27] task:syz-executor    state:D stack:21520 pid:17993 ppid:1      flags:0x00004004
[ 1049.562231][   T27] Call Trace:
[ 1049.565648][   T27]  <TASK>
[ 1049.568700][   T27]  __schedule+0x11d1/0x40e0
[ 1049.577854][   T27]  ? mark_lock+0x94/0x320
[ 1049.582537][   T27]  ? __sched_text_start+0x8/0x8
[ 1049.587552][   T27]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1049.595711][   T27]  ? lock_chain_count+0x20/0x20
[ 1049.601386][   T27]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1049.607002][   T27]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1049.612884][   T27]  schedule+0xb9/0x180
[ 1049.617249][   T27]  io_schedule+0x7c/0xd0
[ 1049.621853][   T27]  folio_wait_bit_common+0x70a/0xfa0
[ 1049.627399][   T27]  ? folio_wait_bit+0x30/0x30
[ 1049.633335][   T27]  ? migration_entry_wait_on_locked+0xe90/0xe90
[ 1049.634808][ T4507] JBD2: Ignoring recovery information on journal
[ 1049.640429][   T27]  ? __lock_acquire+0x7d10/0x7d10
[ 1049.652920][   T27]  ? __filemap_get_folio+0x10f/0xdb0
[ 1049.672340][   T27]  __filemap_get_folio+0x423/0xdb0
[ 1049.690156][   T27]  ? __filemap_get_folio+0x10f/0xdb0
[ 1049.707862][   T27]  ? page_cache_prev_miss+0x380/0x380
[ 1049.726418][   T27]  ? mlock_page_drain_local+0x75/0x490
[ 1049.744074][   T27]  ? mlock_page_drain_local+0x289/0x490
[ 1049.760145][   T27]  truncate_inode_pages_range+0x402/0x1090
[ 1049.775883][   T27]  ? mapping_evict_folio+0x520/0x520
[ 1049.795755][   T27]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1049.816777][   T27]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1049.842454][ T4507] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1049.847099][   T27]  ? lockdep_hardirqs_on+0x94/0x140
[ 1049.868141][   T27]  evict+0x4dc/0x8d0
[ 1049.872234][   T27]  ? proc_nr_inodes+0x2f0/0x2f0
[ 1049.877493][   T27]  ? do_raw_spin_unlock+0x11d/0x230
[ 1049.912504][   T27]  ? do_raw_spin_unlock+0x11d/0x230
[ 1049.927904][   T27]  evict_inodes+0x60c/0x6a0
[ 1049.953982][   T27]  ? clear_inode+0x150/0x150
[ 1049.959051][   T27]  generic_shutdown_super+0x93/0x340
[ 1049.984925][   T27]  kill_block_super+0x7c/0xe0
[ 1050.005291][   T27]  deactivate_locked_super+0x93/0xf0
[ 1050.010894][   T27]  cleanup_mnt+0x42c/0x4b0
[ 1050.026560][   T27]  ? lockdep_hardirqs_on+0x94/0x140
[ 1050.046942][   T27]  task_work_run+0x1d0/0x260
[ 1050.053171][   T27]  ? task_work_cancel+0x220/0x220
[ 1050.064950][   T27]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1050.078320][   T27]  exit_to_user_mode_loop+0xe6/0x110
[ 1050.094281][   T27]  exit_to_user_mode_prepare+0xee/0x180
[ 1050.103516][   T27]  syscall_exit_to_user_mode+0x16/0x40
[ 1050.124572][   T27]  do_syscall_64+0x58/0xa0
[ 1050.132491][   T27]  ? clear_bhb_loop+0x60/0xb0
[ 1050.137564][   T27]  ? clear_bhb_loop+0x60/0xb0
[ 1050.167275][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1050.185439][   T27] RIP: 0033:0x7fb09fd9d9d7
[ 1050.191805][   T27] RSP: 002b:00007ffc29c8b738 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1050.212006][   T27] RAX: 0000000000000000 RBX: 00007fb09fe32050 RCX: 00007fb09fd9d9d7
[ 1050.225855][   T27] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc29c8b7f0
[ 1050.244723][   T27] RBP: 00007ffc29c8b7f0 R08: 00007ffc29c8c7f0 R09: 00000000ffffffff
[ 1050.265439][   T27] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc29c8c880
[ 1050.280453][   T27] R13: 00007fb09fe32050 R14: 00000000000da1e2 R15: 00007ffc29c8c8c0
[ 1050.291666][   T27]  </TASK>
[ 1050.295218][   T27] 
[ 1050.295218][   T27] Showing all locks held in the system:
[ 1050.331676][  T512] ocfs2: Unmounting device (7,3) on (node local)
[ 1050.389146][   T27] 1 lock held by rcu_tasks_kthre/12:
[ 1050.413003][   T27]  #0: ffffffff8cb2dfb0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[ 1050.480349][   T27] 1 lock held by rcu_tasks_trace/13:
[ 1050.500927][   T27]  #0: ffffffff8cb2e7d0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[ 1050.553238][   T27] 1 lock held by khungtaskd/27:
[ 1050.577894][   T27]  #0: ffffffff8cb2d620 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[ 1050.599351][   T27] 2 locks held by getty/4031:
[ 1050.607930][   T27]  #0: ffff888030251098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[ 1050.648020][   T27]  #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x429/0x1390
[ 1050.697818][   T27] 3 locks held by kworker/1:11/6642:
[ 1050.704129][   T27]  #0: ffff888017470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1050.734445][   T27]  #1: ffffc9000e9a7d00 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1050.749313][   T27]  #2: ffffffff8cb332f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x2ec/0x890
[ 1050.761656][   T27] 1 lock held by syz-executor/17993:
[ 1050.767534][   T27]  #0: ffff8880546d60e0 (&type->s_umount_key#87){+.+.}-{3:3}, at: deactivate_super+0xa0/0xd0
[ 1050.779011][   T27] 2 locks held by kworker/1:14/481:
[ 1050.784583][   T27]  #0: ffff888017472138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1050.805597][   T27]  #1: ffffc900049c7d00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1050.829511][   T27] 
[ 1050.832063][   T27] =============================================
[ 1050.832063][   T27] 
[ 1050.851806][   T27] NMI backtrace for cpu 1
[ 1050.856647][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted syzkaller #0
[ 1050.864151][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1050.875223][   T27] Call Trace:
[ 1050.878742][   T27]  <TASK>
[ 1050.881971][   T27]  dump_stack_lvl+0x188/0x24e
[ 1050.886965][   T27]  ? irq_work_queue+0xb8/0x140
[ 1050.892140][   T27]  ? show_regs_print_info+0x12/0x12
[ 1050.897999][   T27]  ? load_image+0x400/0x400
[ 1050.902552][   T27]  ? vprintk_emit+0x59f/0x6a0
[ 1050.907629][   T27]  ? printk_sprint+0x460/0x460
[ 1050.912968][   T27]  nmi_cpu_backtrace+0x3e6/0x460
[ 1050.918778][   T27]  ? nmi_trigger_cpumask_backtrace+0x450/0x450
[ 1050.925738][   T27]  ? _printk+0xda/0x130
[ 1050.930251][   T27]  ? load_image+0x400/0x400
[ 1050.935416][   T27]  ? load_image+0x400/0x400
[ 1050.940304][   T27]  ? nmi_trigger_cpumask_backtrace+0xf3/0x450
[ 1050.947006][   T27]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 1050.953613][   T27]  nmi_trigger_cpumask_backtrace+0x1d4/0x450
[ 1050.959971][   T27]  watchdog+0xeee/0xf30
[ 1050.964242][   T27]  ? watchdog+0x1ed/0xf30
[ 1050.968889][   T27]  kthread+0x29d/0x330
[ 1050.973229][   T27]  ? hungtask_pm_notify+0x40/0x40
[ 1050.978535][   T27]  ? kthread_blkcg+0xd0/0xd0
[ 1050.983432][   T27]  ret_from_fork+0x1f/0x30
[ 1050.988161][   T27]  </TASK>
[ 1050.992278][   T27] Sending NMI from CPU 1 to CPUs 0:
[ 1050.997630][    C0] NMI backtrace for cpu 0
[ 1050.997643][    C0] CPU: 0 PID: 19178 Comm: kworker/u4:14 Not tainted syzkaller #0
[ 1050.997660][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1050.997670][    C0] Workqueue: events_unbound toggle_allocation_gate
[ 1050.997694][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x4/0x60
[ 1050.997715][    C0] Code: 00 00 00 00 00 90 53 48 89 fb e8 17 00 00 00 48 8b 3d f0 66 9d 0c 48 89 de 5b e9 77 21 50 00 00 00 cc cc 00 00 cc 48 8b 04 24 <65> 48 8b 0d 84 fc 7f 7e 65 8b 15 85 fc 7f 7e 81 e2 00 01 ff 00 74
[ 1050.997728][    C0] RSP: 0018:ffffc90003bf78e0 EFLAGS: 00000246
[ 1050.997741][    C0] RAX: ffffffff8a212e9e RBX: ffffc90003bf7960 RCX: 0000000000000000
[ 1050.997758][    C0] RDX: ffff888028c6bb80 RSI: 0000000000000002 RDI: 0000000000000002
[ 1050.997768][    C0] RBP: 0000000000000002 R08: ffffc90003bf79cf R09: ffffc90003bf7960
[ 1050.997778][    C0] R10: dffffc0000000000 R11: fffff5200077ef3a R12: dffffc0000000000
[ 1050.997790][    C0] R13: fffffffff56535a9 R14: ffffffff81d285f2 R15: 000000000000000f
[ 1050.997801][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1050.997814][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1050.997826][    C0] CR2: 00007f109594c4ac CR3: 000000000c88e000 CR4: 00000000003506f0
[ 1050.997842][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1050.997852][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1050.997862][    C0] Call Trace:
[ 1050.997867][    C0]  <TASK>
[ 1050.997872][    C0]  insn_decode+0x3e/0x520
[ 1050.997897][    C0]  ? kmem_cache_alloc+0x62/0x2f0
[ 1050.997912][    C0]  __jump_label_patch+0x103/0x490
[ 1050.997929][    C0]  ? rcu_is_watching+0x11/0xa0
[ 1050.997949][    C0]  ? arch_jump_label_transform_queue+0xd0/0xd0
[ 1050.997972][    C0]  ? static_key_disable_cpuslocked+0x89/0x1a0
[ 1050.997988][    C0]  ? mutex_lock_nested+0x10/0x10
[ 1050.998010][    C0]  arch_jump_label_transform_queue+0x48/0xd0
[ 1050.998027][    C0]  __jump_label_update+0x17d/0x390
[ 1050.998046][    C0]  static_key_disable_cpuslocked+0xc1/0x1a0
[ 1050.998062][    C0]  static_key_disable+0x16/0x20
[ 1050.998076][    C0]  toggle_allocation_gate+0x3d1/0x470
[ 1050.998092][    C0]  ? show_object+0xa0/0xa0
[ 1050.998108][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1050.998130][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 1050.998148][    C0]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1050.998164][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 1050.998179][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1050.998196][    C0]  ? process_one_work+0x7b0/0x1160
[ 1050.998212][    C0]  process_one_work+0x8a2/0x1160
[ 1050.998235][    C0]  ? worker_detach_from_pool+0x240/0x240
[ 1050.998254][    C0]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1050.998268][    C0]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1050.998283][    C0]  ? kthread_data+0x4b/0xc0
[ 1050.998305][    C0]  worker_thread+0xaa2/0x1270
[ 1050.998341][    C0]  kthread+0x29d/0x330
[ 1050.998354][    C0]  ? worker_clr_flags+0x1a0/0x1a0
[ 1050.998369][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1050.998384][    C0]  ret_from_fork+0x1f/0x30
[ 1050.998409][    C0]  </TASK>
[ 1051.094303][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[ 1051.094330][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted syzkaller #0
[ 1051.094351][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1051.094363][   T27] Call Trace:
[ 1051.094370][   T27]  <TASK>
[ 1051.094378][   T27]  dump_stack_lvl+0x188/0x24e
[ 1051.094409][   T27]  ? memcpy+0x3c/0x60
[ 1051.094428][   T27]  ? show_regs_print_info+0x12/0x12
[ 1051.094451][   T27]  ? load_image+0x400/0x400
[ 1051.094481][   T27]  panic+0x2e5/0x730
[ 1051.094498][   T27]  ? schedule_preempt_disabled+0x20/0x20
[ 1051.094524][   T27]  ? bpf_jit_dump+0xd0/0xd0
[ 1051.094542][   T27]  ? __irq_work_queue_local+0x12c/0x190
[ 1051.094571][   T27]  ? nmi_trigger_cpumask_backtrace+0x35b/0x450
[ 1051.094597][   T27]  ? nmi_trigger_cpumask_backtrace+0x360/0x450
[ 1051.094623][   T27]  watchdog+0xf2d/0xf30
[ 1051.094648][   T27]  ? watchdog+0x1ed/0xf30
[ 1051.094672][   T27]  kthread+0x29d/0x330
[ 1051.094688][   T27]  ? hungtask_pm_notify+0x40/0x40
[ 1051.094707][   T27]  ? kthread_blkcg+0xd0/0xd0
[ 1051.094725][   T27]  ret_from_fork+0x1f/0x30
[ 1051.094760][   T27]  </TASK>
[ 1051.100606][   T27] Kernel Offset: disabled
[ 1051.449700][   T27] Rebooting in 86400 seconds..