last executing test programs:

20m21.204645146s ago: executing program 32 (id=4110):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x8927, &(0x7f00000006c0)={'bridge0\x00', @ifru_ivalue=0x4})

20m4.604065079s ago: executing program 33 (id=4254):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x29, 0x1f, 0x0, 0x0)

17m49.861241413s ago: executing program 34 (id=5801):
r0 = socket(0x1e, 0x1, 0x0)
poll(&(0x7f0000000000)=[{r0}], 0x1, 0x2)

8m27.639600494s ago: executing program 35 (id=11613):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
io_setup(0x7, &(0x7f0000001e00)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001900)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, r0, 0x0, 0x0, 0x2, 0x0, 0x0, r0}])

8m25.012423921s ago: executing program 36 (id=11634):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000fc007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000001a00)={r1, 0x1}, 0xc)

7m10.477934907s ago: executing program 37 (id=12162):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000140)=[{0x20, 0x8, 0xb, 0xfffff024}, {0x20, 0x81, 0x0, 0xfffff024}, {0x6, 0xfe, 0x0, 0x2000000}]}, 0x10)
sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840)

6m1.674190165s ago: executing program 38 (id=12594):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f00000004c0)=ANY=[@ANYBLOB="12011001000000402f17010500000000000109022400010000000009040000010300030009210010010122070009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="002207000000a0a2"], 0x0}, 0x0)

5m30.461023014s ago: executing program 9 (id=12787):
syz_mount_image$hfsplus(&(0x7f00000001c0), &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f0000002400)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee01, @ANYBLOB=',barrier,nls=iso8859-15,uid=', @ANYRESHEX=0x0, @ANYRES32=0x0], 0x20, 0x6fe, &(0x7f0000000c00)="$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")
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f00000000c0)='./file1\x00', 0x0, 0x1a29143, 0x0)
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f00000000c0)='./file1\x00', 0x0, 0x1a29143, 0x0)

5m29.962419888s ago: executing program 9 (id=12792):
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x8007, &(0x7f0000000280)=ANY=[], 0x3, 0x59b, &(0x7f0000001080)="$eJzs3c9v2+Ydx/EPXbt2NCAbtiEIAid9mmyAA7gqJTcOjJ446pHNViIFkm7tUxE0cmFE7opkAxZfulyyDdj+iF5333XYfacB+zeK9TTspoE/FMvRryaxI6d4vwT4eUR+yedLWtAXtKWHAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcvyG69YctYJwd89M5jfiqD26WItS0SndPtVMGVdyHOlfWlnR1WLR1Z+frL6S/bip1eLZqlayZkXHP7rykw9/trgw2H5Kwq/Fo8fHD+71et2H805kTrZtGCRR0Pa2rQmSyGxdkrTTTEwzaNlkP0lt2/ix9dIoNmv+bVPb2towtrof7YbbDa9lBwvvvld33U3zUbVjvTiJwvc/qib+TtBqBeF2HpOtzmLuZi/Ej4PUpNZrG3Nw2OtuzEoyC6p9n6D6rKC6W6/XavV6bfPO1p27rrs4ssA94ch1XY1EzP9Fi/k643dw4OUtlPVfLQUKtas9mbEPXw3FitSesL40qP+/fN9OHbes/05W//Mq39fq1ZPV15TX/xvFsxuT6v+EXKY8lrIdvfBWzz/eHuzjkR7rWA90Tz311NXDk5j1Mxnpgj+2ZRUqUKJIgdry8iWmXGK0pU1tytVn2lFTiYyaCtSSVaJ9JUpl81eUr1jL8pQqUiyjNfm6LaOa+stb2pCRVVX7irSrUNtqyMv3cqDD/LxvTMnxWVBtStCng1defUrQC9X/3PAm/6T+g/qPi6Q/qP/Pe2se2QAAAAAAgPPg5H99z67/l3RdWnLUDFrWnXdaAAAAAADgDOX/+V/NmvyTcdflcP0PAAAAAMAPjZN/x86RVNE7RW/wdanyjwD9H887RwAAAAAA8Gry///fyJpK1ntHzvPX/wAAAAAA4E33x0lz7P9D6pfTAi47f/+P4njJedLZ+4Vz5GXLvKNygsCReQLT5jXncrmTvNlcLJ/5dtUpZ798Ngnmt2VzMGuuf+cMEtCf9W4R8+79or0/WFOMUmkGLVv1o9aHNXne5YXU7qW//fLwd8oP/09h+7Lz3cFhr1v9/Ne9+3kuT7K9PDkqz9TIPIpTcvmNrhcx18cf8VL+RYxy3IqjbFx3+PgXis0XXmDMp7pZxNysFG3l9PGvZGPWqpOOvshiWdIrHflT3Spibq3dKpoxWdRnZNGtD5//lzoXJ1k4k7LYmJbF8mGvu/GKWQDAvBxMr0K5t07X3Zd4l3s91f2p1oqYtWv5G+vitTHv6O6suuKOqesrz4ZfHGTR/3pCFn8duQfSpBqbjfuXZ+PW8nG/yTb4ZmJVTVqXJH31337/6CtdefT4+L3Do3tfdL/oflmvb2y6H7junbqW8sMoG2oPAGCM2ffYmRnhfDDjqvqnxUcKvs5WfS79r9+/r/X82wb5Jw7G7rWSb/Nd/jGE9RlXrZWhO7ysz7i2PImtv0DsxviTt3LGvwwAAF6TmzPq8OT67wzu4uesz7jurgx9pHB9+Or4bY1cHQ/XcgAAcD5s/K1TSf/gxHHQ+ay2tVXz0h1r4sj/2MRBY9uaIExt7O944bY1nThKIz9qZZ1PgoZNTLLb6URxappRbDpREuzld3435a3fE9v2wjTwk07Leok1fhSmnp+aRpD4prP7q1aQ7Ng43zjpWD9oBr6XBlFokmg39m3VmMTaocCgYcM0aAZZNzSdOGh78b75JGrttq1p2MSPg04aFTscjBWEzShu57utzvtkAwBwQTx6fPzgXq/XfTjoOIvPL3nlzryPEQAAnEaVBgAAAAAAAAAAAAAAAAAAAADg4juzL/n9oDrL57HnT3UeqV6SND3m3xVpeEm//32HWLgIv4tTncGk01Ni/jZmlaTfzz/5N6sz7t1iZD5qAG+w/wcAAP//if9U+w==")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', 0x0, 0x0, 0x0, 0x1)

5m29.417227386s ago: executing program 9 (id=12798):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x3d, 0x80000001, 0x81, 0xc, 0x6, 0x9, 0xf1, 0x0, 0xa, 0x8001, 0x8000000000, 0x7, 0x339, 0x1, 0x3ff, 0xbde], 0x100000, 0x2c6050})
syz_usb_connect(0x4, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="cae5fbff12"], 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043ef502"], 0xf8)

5m28.385646216s ago: executing program 9 (id=12807):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000340)='./file0\x00', 0x8)

5m28.056263508s ago: executing program 9 (id=12812):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
listen(r0, 0x9)
listen(r0, 0xcae)

5m27.525566495s ago: executing program 9 (id=12819):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0xf00, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000700000000000a00000a70000000060a0b0400000000000000000200000744000480400001800b00010074617267657400003000028008000240000000010d000100434f4e4e4d41524b0000000014000300e4624777db9d97adbf2cd16d6fb1131f0900020073797a32000000000900010073797a30"], 0x98}}, 0x0)

5m26.915649846s ago: executing program 39 (id=12819):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0xf00, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000700000000000a00000a70000000060a0b0400000000000000000200000744000480400001800b00010074617267657400003000028008000240000000010d000100434f4e4e4d41524b0000000014000300e4624777db9d97adbf2cd16d6fb1131f0900020073797a32000000000900010073797a30"], 0x98}}, 0x0)

4m26.701960348s ago: executing program 6 (id=13265):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x80, 0x0)
io_setup(0xbf, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f00000000c0)={0x20000000, 0x0, 0x7, 0x8, 0x0, r0, 0x0}])

4m26.341556262s ago: executing program 6 (id=13267):
r0 = creat(&(0x7f0000000240)='./bus\x00', 0xc2)
io_setup(0x5, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x2000000000000007, &(0x7f0000000200)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x6}, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x8, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x2, r0}])

4m26.08714279s ago: executing program 6 (id=13269):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x20, r1, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x1c}]}]}, 0x20}}, 0x0)

4m25.821351058s ago: executing program 6 (id=13272):
syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYRES8=0x0], 0x1, 0x189, &(0x7f00000027c0)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000001c0)='./bus\x00', 0x141020, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

4m25.089603898s ago: executing program 6 (id=13276):
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x18, r0, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x4}]}, 0x18}}, 0x12)

4m24.081479217s ago: executing program 6 (id=13285):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000006c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xeb0}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@nombcache}, {@noload}, {@noquota}]}, 0x3, 0x440, &(0x7f0000000280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
flistxattr(r0, 0x0, 0x0)

4m23.265011793s ago: executing program 40 (id=13285):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000006c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xeb0}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@nombcache}, {@noload}, {@noquota}]}, 0x3, 0x440, &(0x7f0000000280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
flistxattr(r0, 0x0, 0x0)

4m20.300072465s ago: executing program 1 (id=13316):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000006c0)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="b19ccccf6bf531d9ec214627c11430c1", 0x10)

4m19.65109646s ago: executing program 1 (id=13318):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000c00)=ANY=[], 0x2, 0x6e5, &(0x7f0000000680)="$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")
r0 = open(&(0x7f0000000140)='./file1\x00', 0x64042, 0x178)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)

4m19.424111976s ago: executing program 1 (id=13319):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x2800, 0x0)
splice(r1, &(0x7f0000000040)=0x7fffffffffffffff, r0, 0x0, 0x9, 0x1)

4m19.250121348s ago: executing program 1 (id=13321):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f0000000000)={@val={0x0, 0x8a8b}, @val={0x4, 0x4, 0x0, 0x5, 0xfffc, 0x8}, @x25={0x0, 0x81, 0x1}}, 0x11)

4m17.75607889s ago: executing program 1 (id=13332):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000000)=ANY=[], 0x1, 0x6f2, &(0x7f0000001f80)="$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")
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)

4m17.381435155s ago: executing program 1 (id=13336):
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x3, &(0x7f0000000100), 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0x37db, 0x538d28a0, 0x0, 0x0, 0x6, 0x81, 0x190, 0x0, 0xb, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x4})

4m2.273843449s ago: executing program 41 (id=13336):
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x3, &(0x7f0000000100), 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0x37db, 0x538d28a0, 0x0, 0x0, 0x6, 0x81, 0x190, 0x0, 0xb, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x4})

3m24.387047232s ago: executing program 8 (id=13730):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001500)={0x2c, r1, 0x1, 0x0, 0x0, {0x17}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}]}, 0x2c}}, 0x0)

3m24.023452297s ago: executing program 8 (id=13734):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002280), 0xa200)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000022c0)={0x8, 0x4, 0x0, 'queue1\x00', 0x7f})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f0000002fc0)={0x0, 0x2, 0x1})

3m23.744971566s ago: executing program 8 (id=13737):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000340)={0x26, 'skcipher\x00', 0x0, 0x0, 'fpu(cbc(blowfish))\x00'}, 0x58)
bind$alg(r0, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-avx\x00'}, 0x19)

3m22.654888361s ago: executing program 8 (id=13746):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000780), 0x0, 0x48c, &(0x7f00000002c0)="$eJzs3MtrXNUfAPDvvXm0/fWR/Gp9tFaNFiH4SJq0ahduFAUXFQVd1GVMpiV02kgTxZZiU5G6EaSga3Ep+Be4EEQQdSW41Y0rKRTtptVV5N65N52ZzrSNnWRi5vOByZwz99yc873Pc8+ZJICeNZL9SCK2RcQvETFUyzYWGKm9XbtydvqvK2enk1haeu2PJC939crZ6bJoud7WIjOaRqQfJEUlmxvqnT995vhUtVo5VeTHF068NT5/+syT75yYOlY5Vjk5eejQwQMTzzw9+VRH4sziurrnvbm9u1964+LL00cuvvnDl1l7txXL6+PolJEs8D+Xcs3LHu10ZV22vS6d9HexIaxIX0Rku2sgP/+Hoi+u77yhePH9rjYOWFXZvWlT+8WLS8AGlkS3WwB0R3mjz55/81fS+efg9ezyc7UHoCz2a8WrtqQ/0qLMQNPzbSeNRMSRxb8/y16xSuMQAAD1Ppr+9HA8Udf/W+5/pHFP/v5b/nNHMYcyHBH/j4idEXFXROyKiLsj8rL3RsR9K6x/pCl/Y/8nvfSvg7sNWf/v2WJuq7H/V/b+YrivyG3P4x9Ijs5WK/uLbTIaA5uy/MRN6vjmhZ8/bresvv+XvbL6y75g0Y5L/U0DdDNTC1N5p7QDLp+P2NPfKv5keSYgiYjdEbGnxfpft//VO8rE7GNf7G1X6Nbx30QH5pmWPs/CW8ziX4ym+EtJ/fzk7A3zk+Obo1rZP14eFTf68acLr7ar/47i74DLldp73f5vLjKc1M/Xzq+8jgu/ftj2meZ6/FvaH/9J4zozUwvpYPJ6Ps88WHz27tTCwqmJiMHkcJ5v+Hzy+rplviyfHf+j+1qf/zuLdbLq74+I7CB+ICIejIiHirY/HBGPRMS+m8T//fPtl5XxR9ql/X8+Yqbl9W95ozft/5Un+o5/91W7+m/v+ncwT40Wn+TXv1to1ZzsctHcwDvZdgAAAPBfkebfgU/SseV0mo6N1b7Dvyv+l1bn5hcePzr39smZ2nflh2MgLUe6horx0OpstTKRLBa/sTY+OlmMFZfjpQeKceNP+rbk+bHpuepMl2OHXre1zfmf+b2v260DVtmWlp9ODq55Q4AuaJ5HTxuz514JFwPYqPy9NvSuW5z/6Vq1A1h77v/Qu1qd/+ea8uYCYGNy/4fe5fyHHpV+2+0WAF3k/g896U7+rn8VE5vXRzMa/lPA4lptsfW6U/JERJlI10V7JFYp0e0rEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQGf8EwAA///cRegb")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80000, 0x1)
open_by_handle_at(r0, &(0x7f0000000040)=@reiserfs_2={0x8, 0x2, {0xb}}, 0x0)

3m21.889649383s ago: executing program 8 (id=13752):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
symlinkat(&(0x7f0000000040)='./file0/file0\x00', r0, &(0x7f0000000100)='./file0\x00')

3m21.514732968s ago: executing program 8 (id=13756):
unshare(0x2040400)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f00000004c0)=[{&(0x7f0000000340)="a0", 0x1}], 0x2be, 0x4)

3m6.381784194s ago: executing program 42 (id=13756):
unshare(0x2040400)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f00000004c0)=[{&(0x7f0000000340)="a0", 0x1}], 0x2be, 0x4)

2m27.950759114s ago: executing program 2 (id=14146):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xc8701, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r1, &(0x7f0000000000)=0x7, r0, 0x0, 0xf840, 0xa)

2m27.616138147s ago: executing program 2 (id=14151):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {{}, {0x0, 0x4107}}}, 0x1c}}, 0x4044890)

2m27.422779351s ago: executing program 2 (id=14154):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x19f, &(0x7f0000000380)={[{@sysvgroups}, {@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x514}}, {@grpjquota}, {@stripe={'stripe', 0x3d, 0x7}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@grpid}]}, 0x80, 0x54f, &(0x7f0000000480)="$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")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000040), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)

2m26.903649816s ago: executing program 2 (id=14160):
syz_mount_image$jfs(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0x2010880, &(0x7f00000008c0)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=0x0, @ANYBLOB="2c6e6f696e746567726974792c6e6f646973636172642c6e6f646973636172642c6572726f72733d636f6e74696e75652c696f636861727365743d69736f383835392d332c6469736361726400726573697a652c71756f74612c75737271756f74612c726573697a653d3078303030303030303030303030303d30372c696e746567726974792c646973636172642c6e6f71756f74612c6e6f71756f74612c657569643c8c72c5bf762ab3dd5153bdd55a1a26f2c6a42c1df48b34291ea0696f2f1f0a7b31c91bccf7f4707502478f37599eb13d60653683e6a858f2a54586fd6dc9da99078d3e365b7fe2d52d0591c9c049673c6720ed91bb", @ANYRESDEC=0x0, @ANYRES16, @ANYRESHEX, @ANYRESDEC, @ANYRESOCT=0x0, @ANYRES8, @ANYRES64], 0xfe, 0x60ee, &(0x7f0000001080)="$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")
mkdir(&(0x7f0000000040)='./bus\x00', 0x10b)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})

2m24.937492901s ago: executing program 2 (id=14176):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000c40), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x38, r1, 0x1, 0x0, 0x0, {0x6, 0x0, 0x900}, [@NLBL_UNLABEL_A_SECCTX={0xf, 0x7, 'unconfined\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev}]}, 0x38}, 0x2, 0x34005}, 0x0)

2m23.789599619s ago: executing program 2 (id=14189):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$l2tp6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x7, @remote, 0x3, 0x2}, 0x20)
getsockname$packet(r0, 0x0, &(0x7f0000000340))

2m23.353271749s ago: executing program 43 (id=14189):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$l2tp6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x7, @remote, 0x3, 0x2}, 0x20)
getsockname$packet(r0, 0x0, &(0x7f0000000340))

10.355719931s ago: executing program 0 (id=15305):
r0 = syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x101441)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000100)=0x22)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000100)=0x21)

10.08370252s ago: executing program 0 (id=15307):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000180), 0x200480, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000c80)={r0}, 0x8)

9.7856097s ago: executing program 0 (id=15311):
r0 = io_uring_setup(0x7d3, &(0x7f0000000580)={0x0, 0xddf7, 0x2, 0xfffffffe, 0x181})
clock_nanosleep(0xb, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
close_range(r0, r0, 0x0)

9.545665357s ago: executing program 0 (id=15315):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)

9.290392874s ago: executing program 0 (id=15318):
socket$kcm(0x2, 0x3, 0x2)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000ac0)="4c000000140097f87059ae08060c040002ff0f020000000000001a350182fa73a69d35a21429b17cd02941601d60ffc0cca84708f7abca1b4e7d06a60300000072f750375ed08a5604000000", 0x4c}], 0x1}, 0x0)

8.653527138s ago: executing program 0 (id=15323):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80, &(0x7f0000000000)={[{@umask={'umask', 0x3d, 0xe}}, {@nobarrier}, {}, {@nobarrier}, {@nobarrier}, {@uid}, {@nls={'nls', 0x3d, 'iso8859-13'}}]}, 0x44, 0x6ff, &(0x7f0000000500)="$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")
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f00000000c0)='./file1\x00', 0x0, 0x1a29143, 0x0)
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f0000000240)='./file1\x00', 0x0, 0x1a39143, 0x0)

8.103946795s ago: executing program 44 (id=15323):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80, &(0x7f0000000000)={[{@umask={'umask', 0x3d, 0xe}}, {@nobarrier}, {}, {@nobarrier}, {@nobarrier}, {@uid}, {@nls={'nls', 0x3d, 'iso8859-13'}}]}, 0x44, 0x6ff, &(0x7f0000000500)="$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")
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f00000000c0)='./file1\x00', 0x0, 0x1a29143, 0x0)
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f0000000240)='./file1\x00', 0x0, 0x1a39143, 0x0)

6.57683552s ago: executing program 4 (id=15338):
syz_mount_image$nilfs2(&(0x7f000000a000), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f000000a380)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40086e8b, &(0x7f0000000100)={0x200000, 0x100000000, 0x9, 0x400000, 0x4000040c, 0x4fe4, 0x2401})

5.768948875s ago: executing program 5 (id=15342):
futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, 0x0, 0x0, 0x400000)
futex(&(0x7f0000000000)=0x2, 0xb, 0x2, 0x0, &(0x7f00000000c0)=0x2, 0x2)
futex(&(0x7f000000cffc)=0x3, 0x5, 0x300, 0x0, &(0x7f0000000000)=0x3, 0x5000002)

5.317645806s ago: executing program 4 (id=15345):
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000040), 0x800000, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

4.9626491s ago: executing program 4 (id=15348):
r0 = syz_open_dev$dri(&(0x7f0000002a40), 0x0, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r0, 0x641f)
close(r0)

4.886771346s ago: executing program 4 (id=15349):
unshare(0x22020600)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x5)

4.654743091s ago: executing program 5 (id=15350):
r0 = memfd_create(&(0x7f0000000000)='\xff\x00l\x1e\xa0</\x00\x8e._\x14zC\x9a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-\xe2\xc7\xd3\xe6M^\x98\x85x\x14\t\xe9Q1\x1dK\x9a\x045\xd3\x17\xb22\x00D(\xd2\xdd\xa0\xff\x1f\x00\x00\n\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xe36g\xfd\xd2\xd4\xe3\x1f\xa6\xc6\xe2\xa6!\x9aE<2`]<\xf2R?8\xb8\xa3\xbf\xc3\x18s\xf7!~0\xc7y\xe2\xb2VP\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yxm\x96\xbfS\x97\x9c/\x1f5i\xc6\x861\x8a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd26<Z|U6\r\xd7\x18\xad\x1d`\x06\xcfN\a\xf9\xd7 \x1a\xd8\xef\xb6\x9e8Z\t:#r\xa2\xb1h\xc0\xc0a\xa9\xc46A\x01\xac\xe6\xbf !5I\xc9<\x19{)\xa4\xad\v\x923\b\x9d\xbd>,\xc1\x8d\\Rxt\'\xb6\xbf\xc8*\n\xaf\x1b\xec\xfd\xbbY\x99\xb3\x06c\xd6\xf6\xb0\xcd=\xf3\x03`\x93\xff\x05e\xaa$\x00\xeaw\xd9\x10\x0f\x1d\x888\x8cS\x12?R\x99\xda7\xce)\x8f\xcc\x87\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd32J\xd7\x9f\xea:=\xcc\x17(|L\xda\xc3\x1ca\xe8s\xb6\xebw\xc7\xabS\xd7pJ\xd2\xa1\xcf\xae\x1f2\x9f\x98\xa80\r\x85\xb4\x86\xbc\xd0\xea\xbf\xb1Z\xb7e$\xcf<\ra\x9b\xa5\xdc\v\x1e\xfd\xc7\x91\xf22\xcf\x96\x99\xc1\xbb\xa1j\xe5\xa8\x7f\a\xa9\xa7G\xad\xa3\x8b\xf1\xdb\\]R\x8cf\xac1\xd7V\xaf\xb5\x8e\x10\x95\x9f=2\xd0-\xe1K:\xc3b\x89\x15OS\xa5\x98Ky\x12\xe7Qt#\xeb\x99\a\x10\x1c\xb3N\x85\xeb\x80\x05\x82_\x15\xdc\xbc\xf93\xdd\xf5g\x98\xd4\x8az\xe4`\xa5\x00\x00\x00\x00\xcd\x13\xfc+\xac\xe5\x8bI\f\xd6\x89\xc7HY\xcf\x00O\x88\xe6\x8b\x8bF/\x82u\xffCnG\x02\x82\xfc\xe9Od\x92\x06\xdeg@y\xa6=4\xb1}\xa8Yr\xad9\xb9b)\xec}\x87=\x91:IV\xab\xdf\xa2\xba+6D\x1fuf\xdeJYw$L\xa1\x83NH\xe3\xf2\x91\x8cW\xb7\b\x04\x12\x8b\x8bV\x19\xf1\r\xcb\x94\xa3\xf4\xe4\x97$\x99c\rG\xd7#\xe2\xfd\x80\xadR\x83\xdc\xb8d\x15|\xac\xb8g$\x0f@\xca3\x9f\xb1\xea\xc6vQ\x1b\xdb#\xa3\"\x9f\x9e\xd8\xba\x13d\x9bx\x9a\xbf\xee\xf2kQ\xe0\xc4/~7\xcd\xd1\x06\xe5\x17\x9b\bW|\xbc\x86D\x05\xaf<\xdfy,I2f\xa7G\xe3Qp<\'6 x\n\x94f\xf8\xa2\xea\xf4\xa5\x9eY\xf80C\x91\x7f\x16u\x8c(Xl\x90\xd2\x9f\xa9\xb9kJy[\x93\xfe{\xe5\x1a\xe9\xb7T\x19;\xb9\t\xe7\x0ei\xfaZ\xfbS:\x9b\xc1r\xcbM.\xf8\xb8wR\xb3p~b\xcb\v1-\a-\x8a#\xaa1\xa9\x9a\x88\a\xc5\xb9*\xd3?\xac\n\x9c\xcd\xe2\xc9\xbd\xeb\xb3\xf65\xbdaP\t\xd6\x06\x1c\xeeNg\x92>\x92>\xaf\b3\x05\xfdM\xd2F\v\xbd\xeb\x83 \x9d\x90S\x11w\xefg\\\xca\xe2\xfc~w\xbe\xefh#\x96\xa5h\xec\xbfr\xc8Bi\x90\"(\xf2\xc6\xcc\xfbX\x14{\x9e5\x87\x91\xe2\x9b\xd4\xc6\xc2whk+\x0f\x82\xca\xc1@\xcb~P\xe4\x18\xf9E\'\xab\xc7z\xd7\x05V{\xa1X\xa3\x10\x13.]tlz\x12\xde\xf2\xa43\xee#\x92J~\xda \x9b\xc4\xc0V\xb3\x9dCO\x1fu\x1c4\x1d\v}\x1b\xe5>w\xfbsm\xa3\fI|\x96-p\x86\xd3O\xfa\x9a\x8f\xb2\x8e\x88qGEG', 0x6)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1, 0x4c092, r0, 0x200000000000000)
fallocate(r0, 0x3, 0x5, 0xfffffffb)

4.491390283s ago: executing program 4 (id=15351):
r0 = syz_usb_connect(0x3, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="120100001ca37b10720c1300bebaaf0203010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000380)={0x44, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)

4.419881268s ago: executing program 5 (id=15353):
r0 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000200000008cb06f57300b52b00000109022d00010000402009040029240300030009210900000122050009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0xa, '$\x00'}]}}, 0x0}, 0x0)

2.811833338s ago: executing program 3 (id=15362):
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000aff000000000000000000050000000900010073797a300000000064000000030a01030000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000031200048008000240000000120800014000000000140003006e65746465767369"], 0xac}}, 0x0)

2.521288438s ago: executing program 3 (id=15363):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_BYTEORDER_DREG={0x8}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0xb}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)

2.3303816s ago: executing program 3 (id=15364):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0xa, 0x4, 0x8, 0xb}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000800000085000000b000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

2.181242381s ago: executing program 5 (id=15366):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x400000})
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0xa01)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffffffffffc, 0x6, 0x1, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000240)="5b69cabbc771", 0x0, 0xfffffff9, 0x0, 0x3, 0x0})

2.118354115s ago: executing program 3 (id=15367):
syz_mount_image$reiserfs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x3010098, &(0x7f00000000c0), 0xfb, 0x1101, &(0x7f0000000600)="$eJzs2LFqFFEUBuD/zqyK1cpNPwS0UJBgWF8ghcI2ItZ2i5WdWyn7Nvo4kso+5AFSBOyVmXE1AQfBXRHl+2DZOf/MnXOnPDcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQmyU3kxw0Sd1mTZKSdN3p8jxJt83vfGyblLx4tVw/ebN4uh4fS581Kf2qoa7Hd2td1EU9ro8PTu7V9dt3r9srLUu6nF1uVrefXez1U/re7cS9W3vtBAAAAP+WLzubX3/f1AD+x/oDAAAAv7Lf0wQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA3dTtRZOkJF13ujxP0v3dbQEAAAA7Kmnycv6zfDwG+OFhPs3LkL9/Piaf+yKP8mFc/2C6x5Qbv71vAAAA+N+UK/P4/cy+z+V9dphZjo7G+ttfLk6SdpjMrzu73KyG3+FmNT2TAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHxlBw4EAAAAAAT5Ww9yAQAAAAAAAAAAAAAAAMBHAQAA//+hmtMh")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ftruncate(r0, 0x8008976)

1.944610087s ago: executing program 7 (id=15368):
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

1.908465949s ago: executing program 5 (id=15369):
r0 = epoll_create(0x8)
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x202, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x10000005})

1.664451956s ago: executing program 7 (id=15370):
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_T1(r0, 0x103, 0x1, 0x0, &(0x7f00000006c0))

1.4613297s ago: executing program 5 (id=15371):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x200840, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x5, 0x4445, &(0x7f000000cd00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)=ANY=[], 0x841, 0x0)

1.344518588s ago: executing program 7 (id=15372):
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
ioctl$MON_IOCG_STATS(r0, 0x80089203, 0x0)

1.237523845s ago: executing program 4 (id=15373):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f00000003c0)={[{@memory_low}, {@background_gc_off}, {@noquota}, {@inline_dentry}, {@data_flush}, {@discard_unit_segment}, {@noinline_xattr}, {@discard}, {@checkpoint_diasble}, {@user_xattr}, {@resgid}, {@noinline_xattr}, {@jqfmt_vfsv1}, {@noflush_merge}]}, 0xff, 0x5512, &(0x7f00000079c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x115)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000200))

991.006062ms ago: executing program 7 (id=15374):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000)="0c000000010001", 0x7)

697.160342ms ago: executing program 7 (id=15375):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80, 0x3, 0x0, 0xfffffffd}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001140)=@ipv4_newroute={0x24, 0x1a, 0x1, 0x0, 0x0, {}, [@RTA_FLOW={0x8, 0xb, 0x9}]}, 0x24}}, 0x0)

644.385746ms ago: executing program 3 (id=15376):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x3)
ioctl$sock_SIOCINQ(r0, 0x541b, 0x0)

491.351936ms ago: executing program 7 (id=15377):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
recvmsg(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x10120)

0s ago: executing program 3 (id=15378):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000f40)=0x63, 0x2)
connect$bt_sco(r0, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)

kernel console output (not intermixed with test programs):

escriptor's value: 3
[ 1466.564695][T30335] usb 3-1: config 0 interface 167 has no altsetting 0
[ 1466.587978][T30335] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a4, bcdDevice=20.63
[ 1466.623257][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1466.665409][T30335] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1466.697683][T30335] usb 3-1: Product: syz
[ 1466.708847][ T6773] loop5: detected capacity change from 0 to 32768
[ 1466.719383][T30335] usb 3-1: Manufacturer: syz
[ 1466.724130][T30335] usb 3-1: SerialNumber: syz
[ 1466.763620][T30335] usb 3-1: config 0 descriptor??
[ 1466.789490][ T6778] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1466.897038][ T6773] XFS (loop5): Mounting V5 Filesystem
[ 1467.007822][T30335] usbtest 3-1:0.167: couldn't get endpoints, -22
[ 1467.047431][T30335] usbtest: probe of 3-1:0.167 failed with error -22
[ 1467.136990][T30335] usb 3-1: USB disconnect, device number 54
[ 1467.188297][ T6773] XFS (loop5): Ending clean mount
[ 1467.213202][ T6773] XFS (loop5): Quotacheck needed: Please wait.
[ 1467.366627][ T6773] XFS (loop5): Quotacheck: Done.
[ 1467.456618][ T4619] XFS (loop5): Unmounting Filesystem
[ 1467.898532][ T6827] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1467.898879][ T6834] loop3: detected capacity change from 0 to 256
[ 1467.967556][ T6834] exfat: Deprecated parameter 'utf8'
[ 1467.986502][ T6834] exfat: Deprecated parameter 'namecase'
[ 1468.027418][ T6834] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1468.757232][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1469.352271][ T6840] loop3: detected capacity change from 0 to 32768
[ 1469.603738][   T27] audit: type=1326 audit(1469.549:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1469.625708][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1469.637150][ T6840] XFS (loop3): Mounting V5 Filesystem
[ 1469.680499][   T27] audit: type=1326 audit(1469.589:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1469.787571][   T27] audit: type=1326 audit(1469.589:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1469.809784][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1469.825382][ T6840] XFS (loop3): Ending clean mount
[ 1469.837242][   T27] audit: type=1326 audit(1469.589:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1469.859193][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1469.876558][ T6840] XFS (loop3): Quotacheck needed: Please wait.
[ 1469.965352][   T27] audit: type=1326 audit(1469.589:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f733819c582 code=0x7ffc0000
[ 1469.997893][ T6897] loop2: detected capacity change from 0 to 16
[ 1470.021603][ T6897] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1470.087991][   T27] audit: type=1326 audit(1469.589:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f733819c582 code=0x7ffc0000
[ 1470.129457][ T6897] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14142'.
[ 1470.230641][ T6840] XFS (loop3): Quotacheck: Done.
[ 1470.240773][   T27] audit: type=1326 audit(1469.589:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1470.389266][   T27] audit: type=1326 audit(1469.589:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1470.502858][   T27] audit: type=1326 audit(1469.589:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1470.551038][ T1952] XFS (loop3): Unmounting Filesystem
[ 1470.569174][   T27] audit: type=1326 audit(1469.589:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.0.14140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1470.673777][ T6913] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffc,4)
[ 1470.698451][ T6913] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1470.747750][ T6913] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1470.957904][ T6922] loop2: detected capacity change from 0 to 512
[ 1471.038564][ T6922] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1471.106244][ T6922] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1471.130615][ T6922] EXT4-fs error (device loop2): ext4_quota_enable:7039: comm syz.2.14154: Bad quota inum: 2, type: 2
[ 1471.148950][ T6922] EXT4-fs warning (device loop2): ext4_enable_quotas:7087: Failed to enable quota tracking (type=2, err=-117, ino=2). Please run e2fsck to fix.
[ 1471.163968][ T6922] EXT4-fs (loop2): Cannot turn on quotas: error -117
[ 1471.170822][ T6922] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1471.368549][ T5985] EXT4-fs (loop2): unmounting filesystem.
[ 1472.667990][ T6943] loop2: detected capacity change from 0 to 32768
[ 1472.820555][ T6943] overlayfs: upper fs needs to support d_type.
[ 1472.844362][ T6943] overlayfs: upper fs does not support tmpfile.
[ 1472.877219][ T6952] loop5: detected capacity change from 0 to 32768
[ 1472.943078][ T6952] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 11
[ 1472.970022][ T6943] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1473.423700][ T4290] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 11
[ 1473.507880][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14177'.
[ 1474.424228][ T4335] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1474.647872][ T4335] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1474.821014][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1474.871422][ T4335] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1475.006751][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1475.060193][ T7028] loop3: detected capacity change from 0 to 512
[ 1475.091664][ T4335] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1475.117058][ T7028] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1475.165832][ T7028] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended
[ 1475.218097][ T7028] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.14191: inode #15: comm syz.3.14191: iget: illegal inode #
[ 1475.309480][ T7028] EXT4-fs (loop3): Remounting filesystem read-only
[ 1475.316195][ T7028] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.14191: couldn't read orphan inode 15 (err -117)
[ 1475.343273][ T7024] loop5: detected capacity change from 0 to 4096
[ 1475.401490][ T7028] EXT4-fs (loop3): Remounting filesystem read-only
[ 1475.438694][ T7028] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1475.462983][ T7024] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[ 1475.535708][ T7024] ntfs3: loop5: ntfs_set_state r=3 failed, -22.
[ 1475.606420][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1475.768716][ T4334] ntfs3: loop5: ntfs3_write_inode r=3 failed, -22.
[ 1475.776542][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1475.890235][ T4619] ntfs3: loop5: ntfs_set_state r=3 failed, -22.
[ 1475.896588][ T4619] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[ 1475.915208][ T4619] ntfs3: loop5: ntfs_set_state r=3 failed, -22.
[ 1475.937475][ T7381] ntfs3: loop5: ntfs3_write_inode r=3 failed, -22.
[ 1475.997740][ T4619] ntfs3: loop5: ntfs_evict_inode r=3 failed, -22.
[ 1476.393799][ T4286] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1476.414680][ T4286] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1476.460362][ T4286] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1476.468311][ T4286] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1476.477441][ T4286] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1476.484898][ T4286] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1476.755066][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1476.929363][ T4324] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[ 1477.149018][ T7072] loop4: detected capacity change from 0 to 8192
[ 1477.159478][ T4324] usb 6-1: Using ep0 maxpacket: 8
[ 1477.170891][ T4324] usb 6-1: New USB device found, idVendor=0c45, idProduct=614a, bcdDevice=c4.6d
[ 1477.216969][ T4324] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1477.228835][ T7072] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1477.276011][ T4324] usb 6-1: Product: syz
[ 1477.299832][ T7072] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[ 1477.301759][ T4324] usb 6-1: Manufacturer: syz
[ 1477.344577][ T7072] REISERFS (device loop4): using ordered data mode
[ 1477.374548][ T7072] reiserfs: using flush barriers
[ 1477.398907][ T7072] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1477.424951][ T4324] usb 6-1: SerialNumber: syz
[ 1477.438950][ T7072] REISERFS (device loop4): checking transaction log (loop4)
[ 1477.463181][ T4324] usb 6-1: config 0 descriptor??
[ 1477.508428][ T7072] REISERFS (device loop4): Using rupasov hash to sort names
[ 1477.529487][ T4324] gspca_main: sonixj-2.14.0 probing 0c45:614a
[ 1477.569689][ T7072] REISERFS (device loop4): using 3.5.x disk format
[ 1477.577342][ T7072] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1477.689818][ T7072] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1477.702579][ T7072] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1477.714419][ T7072] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2)
[ 1477.730109][ T7072] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[ 1478.006324][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1478.055787][ T7049] chnl_net:caif_netlink_parms(): no params data found
[ 1478.214071][ T4324] gspca_sonixj: reg_w1 err -71
[ 1478.219076][ T4324] sonixj: probe of 6-1:0.0 failed with error -71
[ 1478.263402][ T4324] usb 6-1: USB disconnect, device number 30
[ 1478.307202][ T7049] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1478.314556][ T7049] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1478.323954][ T7049] device bridge_slave_0 entered promiscuous mode
[ 1478.333397][ T7049] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1478.340939][ T7049] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1478.349449][ T7049] device bridge_slave_1 entered promiscuous mode
[ 1478.579466][T13579] Bluetooth: hci1: command 0x0409 tx timeout
[ 1478.708720][ T7049] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1478.736396][ T7049] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1479.095701][ T7049] team0: Port device team_slave_0 added
[ 1479.210987][ T7049] team0: Port device team_slave_1 added
[ 1479.245318][ T4335] device hsr_slave_0 left promiscuous mode
[ 1479.255548][ T4335] device hsr_slave_1 left promiscuous mode
[ 1479.285146][ T4335] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1479.311488][ T4335] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1479.330642][ T4335] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1479.343581][ T7126] loop5: detected capacity change from 0 to 2048
[ 1479.358716][ T4335] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1479.378457][ T7126] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1479.408775][ T4335] device bridge_slave_1 left promiscuous mode
[ 1479.424782][ T4335] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1479.446522][ T4335] device bridge_slave_0 left promiscuous mode
[ 1479.459562][ T4335] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1479.697600][ T4335] device veth1_macvtap left promiscuous mode
[ 1479.724998][ T4335] device veth0_macvtap left promiscuous mode
[ 1479.734904][ T4335] device veth1_vlan left promiscuous mode
[ 1479.742638][ T4335] device veth0_vlan left promiscuous mode
[ 1480.659428][T13579] Bluetooth: hci1: command 0x041b tx timeout
[ 1481.576238][ T7174] loop4: detected capacity change from 0 to 1024
[ 1481.619476][T13579] Bluetooth: hci0: command 0x0406 tx timeout
[ 1481.668610][ T7174] hfsplus: bad catalog entry type
[ 1481.754499][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1481.916421][ T2647] hfsplus: b-tree write err: -5, ino 25
[ 1481.922533][ T2647] hfsplus: b-tree write err: -5, ino 4
[ 1481.928137][ T2647] hfsplus: b-tree write err: -5, ino 2
[ 1482.739489][T13579] Bluetooth: hci1: command 0x040f tx timeout
[ 1483.032859][ T7181] loop3: detected capacity change from 0 to 40427
[ 1483.102013][ T7181] F2FS-fs (loop3): invalid crc value
[ 1483.121596][ T7181] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1483.244896][ T7181] F2FS-fs (loop3): Start checkpoint disabled!
[ 1483.254594][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1483.277762][ T7181] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 1483.399902][ T7192] loop4: detected capacity change from 0 to 32768
[ 1483.510705][ T7192] XFS (loop4): Mounting V5 Filesystem
[ 1483.537541][ T7347] kworker/u4:8: attempt to access beyond end of device
[ 1483.537541][ T7347] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 1483.562342][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1483.603960][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1483.632101][ T7192] XFS (loop4): Ending clean mount
[ 1483.671691][ T7192] XFS (loop4): Quotacheck needed: Please wait.
[ 1483.719977][ T4335] team0 (unregistering): Port device team_slave_1 removed
[ 1483.836104][ T7192] XFS (loop4): Quotacheck: Done.
[ 1484.050425][  T368] XFS (loop4): Unmounting Filesystem
[ 1484.067306][ T4335] team0 (unregistering): Port device team_slave_0 removed
[ 1484.171618][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1484.228320][ T4335] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1484.252794][ T7218] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[ 1484.259418][ T7218] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1484.268476][ T7218] vhci_hcd vhci_hcd.0: Device attached
[ 1484.283769][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1484.354377][ T4335] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1484.539400][ T4327] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[ 1484.562191][ T4323] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[ 1484.663476][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.676172][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.779545][ T4323] usb 4-1: Using ep0 maxpacket: 16
[ 1484.786689][ T4323] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1484.804424][ T4323] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1484.818804][ T4323] usb 4-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1484.828403][ T4323] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1484.840966][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1484.844729][ T4323] usb 4-1: config 0 descriptor??
[ 1484.852454][T13579] Bluetooth: hci1: command 0x0419 tx timeout
[ 1484.923124][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1485.081878][T30335] usb 4-1: USB disconnect, device number 28
[ 1485.105576][ T7219] usbip_core: unknown command
[ 1485.114799][ T7219] vhci_hcd: unknown pdu 0
[ 1485.137796][ T7219] usbip_core: unknown command
[ 1485.143206][ T7381] vhci_hcd: stop threads
[ 1485.147672][ T7381] vhci_hcd: release socket
[ 1485.168191][ T7381] vhci_hcd: disconnect device
[ 1485.180091][ T4335] bond0 (unregistering): Released all slaves
[ 1485.200873][ T4327] vhci_hcd: vhci_device speed not set
[ 1485.221079][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1485.312959][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1485.357859][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1485.549096][ T7049] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1485.576795][ T7049] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.724999][ T7224] loop5: detected capacity change from 0 to 8
[ 1485.744638][ T7225] loop4: detected capacity change from 0 to 128
[ 1485.760339][ T7049] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1485.814968][ T7049] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1485.842527][ T7049] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.858675][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1485.875463][ T7225] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[ 1485.926956][ T7231] loop3: detected capacity change from 0 to 512
[ 1485.952209][ T7224] SQUASHFS error: zstd decompression failed, data probably corrupt
[ 1485.969740][ T7224] SQUASHFS error: Failed to read block 0x60: -5
[ 1486.009393][ T7049] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1486.029459][ T7231] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1486.071624][ T7231] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1486.176409][ T7224] SQUASHFS error: zstd decompression failed, data probably corrupt
[ 1486.204955][ T7224] SQUASHFS error: Failed to read block 0x60: -5
[ 1486.209732][ T7231] CIFS: iocharset name too long
[ 1486.290745][ T7049] device hsr_slave_0 entered promiscuous mode
[ 1486.328456][ T7049] device hsr_slave_1 entered promiscuous mode
[ 1486.371544][ T7049] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1486.408477][ T7049] Cannot create hsr debugfs directory
[ 1486.459831][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1486.669731][ T7250] loop5: detected capacity change from 0 to 164
[ 1487.356375][ T7265] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14259'.
[ 1487.487738][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1488.357344][ T7049] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1488.431208][ T7049] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1488.462519][ T7049] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1488.471544][ T7290] loop3: detected capacity change from 0 to 16
[ 1488.504000][ T7049] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1488.520487][ T7290] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1488.551873][ T7268] loop4: detected capacity change from 0 to 40427
[ 1488.596257][   T27] kauditd_printk_skb: 3 callbacks suppressed
[ 1488.596273][   T27] audit: type=1800 audit(1488.539:1239): pid=7290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.14267" name="file1" dev="loop3" ino=86 res=0 errno=0
[ 1488.622631][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1488.626076][ T7268] F2FS-fs (loop4): invalid crc value
[ 1488.763136][ T7268] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1488.887716][ T7049] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1488.896582][ T7268] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1
[ 1488.928854][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1488.936413][ T7268] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1488.954277][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1488.983744][ T7049] 8021q: adding VLAN 0 to HW filter on device team0
[ 1489.017515][ T7298] loop3: detected capacity change from 0 to 164
[ 1489.022643][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1489.049098][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1489.127214][ T7387] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1489.134456][ T7387] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1489.158410][ T7268] syz.4.14260: attempt to access beyond end of device
[ 1489.158410][ T7268] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1489.198967][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1489.228318][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1489.263160][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1489.318740][ T7387] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1489.326062][ T7387] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1489.404731][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1489.467602][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1489.487703][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1489.513796][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1489.581852][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1489.615222][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1489.645506][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1489.676588][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1489.692842][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1489.718221][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1489.773130][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1489.818347][ T7049] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1490.143936][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.189408][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.197221][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.229494][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.256875][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.280285][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.308349][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.330960][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.369697][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.429438][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.437188][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.508803][ T7321] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14274'.
[ 1490.529807][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.550167][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.565652][ T7321] netlink: 20 bytes leftover after parsing attributes in process `syz.4.14274'.
[ 1490.589376][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.609707][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.661240][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.694500][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.720117][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.739999][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.769620][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.801555][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.845438][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1490.853398][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.870237][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1490.881706][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.906653][ T7049] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1490.919846][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d7bd0 returned -22
[ 1490.947899][ T7312] binder: 7311:7312 ioctl 4020ae46 7f9e468d78d0 returned -22
[ 1490.972882][ T7312] binder: 7311:7312 ioctl 8138ae83 7f9e468d7a90 returned -22
[ 1490.992891][ T7331] loop3: detected capacity change from 0 to 2048
[ 1491.097565][ T7337] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1491.185528][ T7331] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1491.289946][ T7331] Remounting filesystem read-only
[ 1491.456593][ T1952] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer
[ 1491.885639][ T7364] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14286'.
[ 1491.915675][ T7364] netlink: 'syz.3.14286': attribute type 18 has an invalid length.
[ 1491.947463][ T7364] netlink: 4 bytes leftover after parsing attributes in process `syz.3.14286'.
[ 1492.455666][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1492.475113][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1492.546432][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1492.566351][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1492.583003][ T7049] device veth0_vlan entered promiscuous mode
[ 1492.600451][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1492.601044][ T7346] loop5: detected capacity change from 0 to 32768
[ 1492.613168][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1492.641886][   T27] audit: type=1326 audit(1492.589:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1492.671507][ T7049] device veth1_vlan entered promiscuous mode
[ 1492.715920][   T27] audit: type=1326 audit(1492.629:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1492.738063][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1492.782209][ T7346] XFS (loop5): Mounting V5 Filesystem
[ 1492.807308][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1492.835916][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1492.888130][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1492.907167][   T27] audit: type=1326 audit(1492.629:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1492.960859][T26391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1492.971730][ T7049] device veth0_macvtap entered promiscuous mode
[ 1492.981630][ T7346] XFS (loop5): Ending clean mount
[ 1492.989865][   T27] audit: type=1326 audit(1492.629:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1493.015096][   T27] audit: type=1326 audit(1492.729:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1493.038247][ T7049] device veth1_macvtap entered promiscuous mode
[ 1493.052339][   T27] audit: type=1326 audit(1492.729:1245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1493.120561][   T27] audit: type=1326 audit(1492.729:1246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f733819c582 code=0x7ffc0000
[ 1493.120970][ T7049] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1493.175108][   T27] audit: type=1326 audit(1492.729:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1493.203540][ T7049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.215250][   T27] audit: type=1326 audit(1492.729:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7383 comm="syz.0.14292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f733819c617 code=0x7ffc0000
[ 1493.248828][ T7049] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1493.260325][ T7049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.299323][ T7049] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1493.328156][ T7049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.358063][ T7049] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1493.388485][ T7049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.418271][ T4619] XFS (loop5): Unmounting Filesystem
[ 1493.466958][ T7049] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1493.526026][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1493.535257][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1493.572785][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1493.591272][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1493.636882][ T7049] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1493.665023][ T7049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.692485][ T7049] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1493.755196][ T7049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.766549][ T7049] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1493.777685][ T7049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.788451][ T7049] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1493.809301][ T7049] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.871946][ T7049] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1493.887332][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1493.897521][ T7387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1493.923230][ T7049] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1493.947604][ T7049] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1493.965519][ T7049] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1493.987138][ T7049] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1494.237654][ T4335] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1494.290948][ T4335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1494.303973][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1494.370174][ T2647] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1494.378086][ T2647] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1494.406478][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1495.404924][ T7452] netlink: 'syz.4.14309': attribute type 3 has an invalid length.
[ 1495.864540][   T27] kauditd_printk_skb: 66 callbacks suppressed
[ 1495.864558][   T27] audit: type=1326 audit(1495.809:1315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7460 comm="syz.3.14312" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3141d9c819 code=0x0
[ 1495.925766][ T7431] loop5: detected capacity change from 0 to 40427
[ 1495.963889][ T7431] F2FS-fs (loop5): Small segment_count (9 < 1 * 24)
[ 1495.992057][ T7431] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1496.063390][ T7431] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1496.271356][ T7431] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1496.303633][ T7431] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1496.446883][ T7444] loop7: detected capacity change from 0 to 32768
[ 1496.487298][ T7444] XFS: attr2 mount option is deprecated.
[ 1496.576954][ T7444] XFS (loop7): Mounting V5 Filesystem
[ 1496.610708][ T4619] syz-executor: attempt to access beyond end of device
[ 1496.610708][ T4619] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1496.699343][ T7444] XFS (loop7): Ending clean mount
[ 1496.729756][ T7444] XFS (loop7): Quotacheck needed: Please wait.
[ 1496.931749][ T7444] XFS (loop7): Quotacheck: Done.
[ 1497.024826][ T7486] loop3: detected capacity change from 0 to 64
[ 1497.074267][ T7486] MINIX-fs: mounting unchecked file system, running fsck is recommended
[ 1497.203761][ T7049] XFS (loop7): Unmounting Filesystem
[ 1497.287045][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1497.322504][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1497.520120][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1497.807009][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1497.835642][ T7471] loop4: detected capacity change from 0 to 32768
[ 1497.990717][ T7471] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[ 1498.031861][ T7471] XFS (loop4): Mounting V5 Filesystem
[ 1498.225630][ T7471] XFS (loop4): Ending clean mount
[ 1498.487813][  T368] XFS (loop4): Unmounting Filesystem
[ 1498.539808][ T7521] loop3: detected capacity change from 0 to 1764
[ 1499.754675][ T7558] loop7: detected capacity change from 0 to 16
[ 1499.790419][ T7558] erofs: (device loop7): mounted with root inode @ nid 36.
[ 1499.841590][   T27] audit: type=1800 audit(1499.789:1316): pid=7558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.14338" name="file1" dev="loop7" ino=86 res=0 errno=0
[ 1501.081834][ T7594] loop3: detected capacity change from 0 to 256
[ 1501.278518][ T7562] loop5: detected capacity change from 0 to 32768
[ 1501.335295][ T7562] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop5 scanned by syz.5.14340 (7562)
[ 1501.432410][ T7562] BTRFS info (device loop5): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[ 1501.473269][ T7562] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[ 1501.513207][ T7562] BTRFS info (device loop5): enabling disk space caching
[ 1501.563431][ T7562] BTRFS info (device loop5): force clearing of disk cache
[ 1501.618174][ T7562] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1501.674715][ T7562] BTRFS info (device loop5): use zstd compression, level 3
[ 1501.702564][ T7562] BTRFS info (device loop5): disk space caching is enabled
[ 1501.751304][ T7608] netlink: 72 bytes leftover after parsing attributes in process `syz.4.14357'.
[ 1501.925775][ T7562] BTRFS info (device loop5): enabling ssd optimizations
[ 1501.977040][ T7562] BTRFS info (device loop5): rebuilding free space tree
[ 1502.081045][ T7562] BTRFS info (device loop5): disabling free space tree
[ 1502.088056][ T7562] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1502.099516][T13579] Bluetooth: hci4: command 0x0406 tx timeout
[ 1502.129526][ T7562] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1502.521941][ T4619] BTRFS info (device loop5): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[ 1502.739062][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1502.788195][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1502.867501][ T7647] smc: net device bond0 applied user defined pnetid SYZ0
[ 1502.927246][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1502.988414][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1503.090534][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1503.241464][ T7654] loop3: detected capacity change from 0 to 1024
[ 1503.258067][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1503.505298][ T7347] hfsplus: b-tree write err: -5, ino 25
[ 1503.549576][ T7347] hfsplus: b-tree write err: -5, ino 4
[ 1503.555209][ T7347] hfsplus: b-tree write err: -5, ino 2
[ 1503.765965][ T7659] loop5: detected capacity change from 0 to 4096
[ 1504.782832][ T7690] loop7: detected capacity change from 0 to 4096
[ 1504.848422][ T7690] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1505.153140][ T7049] EXT4-fs (loop7): unmounting filesystem.
[ 1506.061921][ T7732] device vlan2 entered promiscuous mode
[ 1506.067559][ T7732] device geneve1 entered promiscuous mode
[ 1506.411979][ T7747] loop4: detected capacity change from 0 to 64
[ 1506.465006][ T7747] hfs: unable to locate alternate MDB
[ 1506.471038][ T7747] hfs: continuing without an alternate MDB
[ 1506.731531][ T7757] loop5: detected capacity change from 0 to 256
[ 1506.859098][ T7757] FAT-fs (loop5): Directory bread(block 64) failed
[ 1506.925006][ T7757] FAT-fs (loop5): Directory bread(block 65) failed
[ 1506.949516][ T7757] FAT-fs (loop5): Directory bread(block 66) failed
[ 1506.989321][ T7757] FAT-fs (loop5): Directory bread(block 67) failed
[ 1507.016562][ T7757] FAT-fs (loop5): Directory bread(block 68) failed
[ 1507.036687][ T7757] FAT-fs (loop5): Directory bread(block 69) failed
[ 1507.050732][ T7757] FAT-fs (loop5): Directory bread(block 70) failed
[ 1507.077834][ T7757] FAT-fs (loop5): Directory bread(block 71) failed
[ 1507.104290][ T7757] FAT-fs (loop5): Directory bread(block 72) failed
[ 1507.148418][ T7757] FAT-fs (loop5): Directory bread(block 73) failed
[ 1507.908081][ T7760] loop4: detected capacity change from 0 to 32768
[ 1508.495342][ T7772] loop7: detected capacity change from 0 to 32768
[ 1509.106526][ T7825] loop3: detected capacity change from 0 to 1024
[ 1509.196793][ T7825] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1509.277622][ T7821] loop7: detected capacity change from 0 to 4096
[ 1509.320201][ T7825] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1509.380584][ T7835] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1509.469019][ T7821] NILFS (loop7): cannot delete checkpoints: invalid range [2026, 1792)
[ 1509.545757][ T7821] NILFS (loop7): error -22 preparing GC: cannot delete checkpoints
[ 1509.557057][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1509.846951][ T7850] loop6: detected capacity change from 0 to 2640
[ 1509.869387][ T7846] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1509.897932][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1509.907223][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1509.939693][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1509.948967][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1509.960940][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1509.970254][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1510.018441][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1510.027738][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1510.046279][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1510.055647][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1510.122801][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1510.132094][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1510.148825][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1510.158093][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1510.191632][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1510.200926][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1510.216438][ T8657] ldm_validate_partition_table(): Disk read failed.
[ 1510.235512][ T7861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14439'.
[ 1510.264991][ T7861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14439'.
[ 1510.276480][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1510.285790][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1510.335372][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1510.344651][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1510.420005][ T8657] Dev loop6: unable to read RDB block 0
[ 1510.437431][ T8657]  loop6: unable to read partition table
[ 1510.458350][ T7850] ldm_validate_partition_table(): Disk read failed.
[ 1510.490470][ T7850] Dev loop6: unable to read RDB block 0
[ 1510.528313][ T7850]  loop6: unable to read partition table
[ 1510.551438][ T7850] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[ 1511.678871][ T7885] device veth1_macvtap left promiscuous mode
[ 1511.709500][ T7885] device macsec0 entered promiscuous mode
[ 1511.738490][ T7889] device veth1_macvtap entered promiscuous mode
[ 1511.785189][ T7889] device macsec0 left promiscuous mode
[ 1511.829685][ T7867] loop7: detected capacity change from 0 to 32768
[ 1511.869108][ T7857] loop5: detected capacity change from 0 to 40427
[ 1511.881743][ T7857] F2FS-fs (loop5): Mismatch start address, segment0(0) cp_blkaddr(512)
[ 1511.891886][ T7867] XFS (loop7): Mounting V5 Filesystem
[ 1511.901019][ T7857] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1511.968320][ T7867] XFS (loop7): Ending clean mount
[ 1511.990783][ T7857] F2FS-fs (loop5): invalid crc value
[ 1512.019759][ T7867] XFS (loop7): Quotacheck needed: Please wait.
[ 1512.039093][ T7857] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1512.266720][ T7867] XFS (loop7): Quotacheck: Done.
[ 1512.316216][ T7857] F2FS-fs (loop5): Start checkpoint disabled!
[ 1512.385371][ T7857] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1512.409268][ T7857] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1512.454990][ T7049] XFS (loop7): Unmounting Filesystem
[ 1512.618870][ T7914] netlink: 80 bytes leftover after parsing attributes in process `syz.4.14457'.
[ 1512.689535][ T7914] nbd: couldn't find device at index 64
[ 1512.849948][ T7919] netem: change failed
[ 1512.866472][ T4334] kworker/u4:6: attempt to access beyond end of device
[ 1512.866472][ T4334] loop5: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1512.911739][ T4334] kworker/u4:6: attempt to access beyond end of device
[ 1512.911739][ T4334] loop5: rw=2049, sector=41000, nr_sectors = 8 limit=40427
[ 1513.468714][ T7932] loop3: detected capacity change from 0 to 512
[ 1513.566635][ T7932] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.14463: inode has both inline data and extents flags
[ 1513.679351][ T7932] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.14463: couldn't read orphan inode 15 (err -117)
[ 1513.727308][ T7932] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1513.814941][ T7932] EXT4-fs: Ignoring removed bh option
[ 1513.874630][ T7932] EXT4-fs (loop3): changing journal_checksum during remount not supported; ignoring
[ 1513.904217][ T7932] EXT4-fs (loop3): re-mounted. Quota mode: none.
[ 1514.040203][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1514.955146][ T7948] loop7: detected capacity change from 0 to 32768
[ 1515.958936][ T8010] tc_dump_action: action bad kind
[ 1516.235743][ T7978] loop3: detected capacity change from 0 to 40427
[ 1516.299769][ T7978] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1516.334810][ T7978] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1516.355551][ T7978] F2FS-fs (loop3): invalid crc value
[ 1516.457487][ T7978] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1516.596095][ T7978] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1516.613519][ T7978] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1516.737837][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1516.819610][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1517.352749][ T8044] netlink: 36 bytes leftover after parsing attributes in process `syz.7.14499'.
[ 1517.935353][ T8038] loop3: detected capacity change from 0 to 32768
[ 1518.020162][ T8038] XFS (loop3): Mounting V5 Filesystem
[ 1518.099872][ T8038] XFS (loop3): Ending clean mount
[ 1518.368386][   T27] audit: type=1326 audit(1518.309:1317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8083 comm="syz.7.14506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42ed99c819 code=0x7ffc0000
[ 1518.416637][   T27] audit: type=1326 audit(1518.309:1318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8083 comm="syz.7.14506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42ed99c819 code=0x7ffc0000
[ 1518.438612][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1518.460134][ T1952] XFS (loop3): Unmounting Filesystem
[ 1518.551882][   T27] audit: type=1326 audit(1518.349:1319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8083 comm="syz.7.14506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f42ed99c819 code=0x7ffc0000
[ 1518.626507][   T27] audit: type=1326 audit(1518.349:1320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8083 comm="syz.7.14506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42ed99c819 code=0x7ffc0000
[ 1518.746256][   T27] audit: type=1326 audit(1518.349:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8083 comm="syz.7.14506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42ed99c819 code=0x7ffc0000
[ 1518.768381][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1518.891394][   T27] audit: type=1326 audit(1518.349:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8083 comm="syz.7.14506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f42ed99c819 code=0x7ffc0000
[ 1518.951666][ T8096] loop7: detected capacity change from 0 to 512
[ 1518.982517][ T8096] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1518.991817][   T27] audit: type=1326 audit(1518.349:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8083 comm="syz.7.14506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42ed99c819 code=0x7ffc0000
[ 1519.120711][ T8096] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1519.175351][   T27] audit: type=1326 audit(1518.349:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8083 comm="syz.7.14506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42ed99c819 code=0x7ffc0000
[ 1519.331251][ T7049] EXT4-fs (loop7): unmounting filesystem.
[ 1519.474202][   T27] audit: type=1326 audit(1519.419:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8112 comm="syz.0.14517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1519.568929][   T27] audit: type=1326 audit(1519.439:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8112 comm="syz.0.14517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f733819c819 code=0x7ffc0000
[ 1519.742403][ T8120] loop5: detected capacity change from 0 to 24
[ 1519.760763][ T8120] MTD: Attempt to mount non-MTD device "/dev/loop5"
[ 1519.822806][ T8120] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1520.153484][ T8135] loop3: detected capacity change from 0 to 256
[ 1520.245520][ T8135] exfat: Deprecated parameter 'utf8'
[ 1520.263771][ T8129] loop7: detected capacity change from 0 to 4096
[ 1520.273612][ T8129] ntfs3: loop7: Different NTFS' sector size (4096) and media sector size (512)
[ 1520.285362][ T8135] exfat: Deprecated parameter 'utf8'
[ 1520.307132][ T8135] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1521.354655][ T8154] loop7: detected capacity change from 0 to 4096
[ 1521.364519][ T8157] loop3: detected capacity change from 0 to 4096
[ 1521.420679][ T8157] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512)
[ 1521.550276][ T8154] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1521.677356][ T8164] loop5: detected capacity change from 0 to 1024
[ 1521.744646][ T8165] ntfs3: loop3: ntfs3_write_inode r=1e failed, -22.
[ 1521.815308][ T8145] loop4: detected capacity change from 0 to 32768
[ 1521.907262][ T8145] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 scanned by syz.4.14528 (8145)
[ 1521.949932][T26391] hfsplus: b-tree write err: -5, ino 25
[ 1521.959410][T26391] hfsplus: b-tree write err: -5, ino 4
[ 1521.990222][T26391] hfsplus: b-tree write err: -5, ino 2
[ 1522.024348][ T8145] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1522.060655][ T1952] ntfs3: loop3: ntfs_evict_inode r=1e failed, -22.
[ 1522.067280][ T1952] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1522.074560][ T8145] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[ 1522.143271][ T8145] BTRFS info (device loop4): using free space tree
[ 1522.213778][ T8176] loop5: detected capacity change from 0 to 256
[ 1522.303971][ T8176] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[ 1522.544826][ T8145] BTRFS info (device loop4): enabling ssd optimizations
[ 1522.673597][  T368] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1523.186621][ T8214] loop5: detected capacity change from 0 to 2048
[ 1523.262725][ T8217] delete_channel: no stack
[ 1523.275546][ T8218] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1523.590730][ T8221] NILFS (loop5): error -2 truncating bmap (ino=16)
[ 1523.782794][ T8228] loop3: detected capacity change from 0 to 4096
[ 1523.824743][ T8228] EXT4-fs: Ignoring removed nobh option
[ 1523.854515][ T8228] EXT4-fs: inline encryption not supported
[ 1523.878852][ T8657] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 10 /dev/loop4 scanned by udevd (8657)
[ 1523.892724][ T8218] NILFS (loop5): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3)
[ 1523.950518][ T8218] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=16)
[ 1523.983259][ T8228] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a04ec018, mo2=0003]
[ 1524.056699][ T8228] System zones: 0-5
[ 1524.109966][ T8228] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1524.139444][ T8218] Remounting filesystem read-only
[ 1524.159571][ T4619] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer
[ 1524.262629][ T8228] overlayfs: workdir and upperdir must be separate subtrees
[ 1524.328650][ T8240] loop7: detected capacity change from 0 to 164
[ 1524.564400][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1524.771733][ T8250] overlayfs: failed to set xattr on upper
[ 1524.826883][ T8250] overlayfs: ...falling back to index=off,metacopy=off.
[ 1524.838082][ T5191] kernel write not supported for file [eventfd] (pid: 5191 comm: kworker/1:12)
[ 1524.866988][ T8250] overlayfs: NFS export requires "index=on", falling back to nfs_export=off.
[ 1525.102522][ T8260] loop5: detected capacity change from 0 to 512
[ 1525.143773][ T8260] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1525.227260][ T8260] EXT4-fs (loop5): 1 truncate cleaned up
[ 1525.316134][ T8260] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1525.353408][ T8268] loop3: detected capacity change from 0 to 4096
[ 1525.377514][ T8267] hugetlbfs: Bad value 'ó' for mount option 'size'
[ 1525.377514][ T8267] 
[ 1525.389547][ T8268] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[ 1525.476018][ T4619] EXT4-fs (loop5): unmounting filesystem.
[ 1525.508293][ T8268] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1526.746702][ T8276] loop7: detected capacity change from 0 to 40427
[ 1526.807538][ T8276] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[ 1526.832013][ T8276] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[ 1526.863230][ T8276] F2FS-fs (loop7): invalid crc value
[ 1526.930281][ T8276] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1527.047229][ T8315] loop5: detected capacity change from 0 to 1024
[ 1527.095681][ T8276] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[ 1527.105390][ T8276] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1527.358382][ T8295] loop3: detected capacity change from 0 to 40427
[ 1527.465496][ T8295] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1527.664846][ T8295] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1527.906209][ T1952] syz-executor: attempt to access beyond end of device
[ 1527.906209][ T1952] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1528.634741][ T8360] program syz.0.14597 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1528.813862][ T8354] loop5: detected capacity change from 0 to 8192
[ 1528.872290][ T8354] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1528.922655][ T8354] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[ 1528.984220][ T8354] REISERFS (device loop5): using ordered data mode
[ 1529.058629][ T8354] reiserfs: using flush barriers
[ 1529.101527][ T8354] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1529.159830][ T8354] REISERFS (device loop5): checking transaction log (loop5)
[ 1529.281285][ T8380] netlink: 124 bytes leftover after parsing attributes in process `syz.0.14604'.
[ 1529.329440][ T8380] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14604'.
[ 1529.517038][ T8383] loop3: detected capacity change from 0 to 1024
[ 1529.554724][ T8354] REISERFS (device loop5): Using tea hash to sort names
[ 1529.569664][ T8354] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[ 1529.653681][ T8354] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[ 1529.873347][T26391] hfsplus: b-tree write err: -5, ino 25
[ 1529.900587][T26391] hfsplus: b-tree write err: -5, ino 4
[ 1529.906332][T26391] hfsplus: b-tree write err: -5, ino 2
[ 1529.934558][ T8354] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[ 1529.985631][T26391] hfsplus: b-tree write err: -5, ino 26
[ 1531.058030][ T8433] loop3: detected capacity change from 0 to 2048
[ 1531.169662][ T8437] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1531.249437][ T8439] NILFS (loop3): error -2 truncating bmap (ino=16)
[ 1531.440941][ T8437] NILFS (loop3): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3)
[ 1531.479431][ T8437] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=16)
[ 1531.534919][ T8437] Remounting filesystem read-only
[ 1531.541723][ T1952] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer
[ 1531.770897][ T8450] loop7: detected capacity change from 0 to 2048
[ 1531.833669][ T8450] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1531.970049][ T8450] syz.7.14632: attempt to access beyond end of device
[ 1531.970049][ T8450] loop7: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 1531.984671][ T8463] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1532.219818][ T8467] ptrace attach of "./syz-executor exec"[368] was attempted by "\x09   
                   Àÿ      Àÿ      Ðÿ      àÿ              ðÿ      °ÿ      Àÿ                 ÿÿÿÿ"[8467]
[ 1532.331595][ T8475] netlink: 24 bytes leftover after parsing attributes in process `syz.7.14641'.
[ 1532.794323][ T8489] netlink: 'syz.5.14646': attribute type 3 has an invalid length.
[ 1532.843597][ T8489] netlink: 'syz.5.14646': attribute type 8 has an invalid length.
[ 1532.882342][ T8489] netlink: 197344 bytes leftover after parsing attributes in process `syz.5.14646'.
[ 1533.046714][ T8499] netlink: 'syz.0.14650': attribute type 4 has an invalid length.
[ 1533.073112][ T8499] netlink: 'syz.0.14650': attribute type 8 has an invalid length.
[ 1533.145879][ T8499] netlink: 197344 bytes leftover after parsing attributes in process `syz.0.14650'.
[ 1533.641734][ T8483] loop7: detected capacity change from 0 to 32768
[ 1533.722939][ T8483] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop7 scanned by syz.7.14644 (8483)
[ 1533.826583][ T8483] BTRFS info (device loop7): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[ 1533.826675][ T8483] BTRFS info (device loop7): using crc32c (crc32c-intel) checksum algorithm
[ 1533.826715][ T8483] BTRFS info (device loop7): enabling disk space caching
[ 1533.826735][ T8483] BTRFS info (device loop7): force clearing of disk cache
[ 1533.826757][ T8483] BTRFS info (device loop7): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1533.826843][ T8483] BTRFS info (device loop7): use zstd compression, level 3
[ 1533.826867][ T8483] BTRFS info (device loop7): disk space caching is enabled
[ 1534.162950][ T8483] BTRFS info (device loop7): enabling ssd optimizations
[ 1534.177763][ T8483] BTRFS info (device loop7): rebuilding free space tree
[ 1534.197826][ T8483] BTRFS info (device loop7): disabling free space tree
[ 1534.197895][ T8483] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1534.197986][ T8483] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1534.286512][   T27] kauditd_printk_skb: 6 callbacks suppressed
[ 1534.286530][   T27] audit: type=1800 audit(1534.229:1333): pid=8483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.14644" name="file1" dev="loop7" ino=260 res=0 errno=0
[ 1534.540787][ T8507] loop5: detected capacity change from 0 to 40427
[ 1534.571709][ T8507] F2FS-fs (loop5): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[ 1534.608868][ T8507] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1534.675599][ T8507] F2FS-fs (loop5): invalid crc value
[ 1534.715048][ T7049] BTRFS info (device loop7): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[ 1534.742594][ T8507] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1534.762074][ T8517] loop3: detected capacity change from 0 to 32768
[ 1534.962936][ T8507] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1535.019272][ T8507] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1535.036948][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.101444][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.170418][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.252248][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.400790][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.453767][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.560797][ T4619] syz-executor: attempt to access beyond end of device
[ 1535.560797][ T4619] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1535.575360][ T8517] XFS (loop3): Mounting V5 Filesystem
[ 1535.765822][ T8517] XFS (loop3): Ending clean mount
[ 1535.995783][ T1952] XFS (loop3): Unmounting Filesystem
[ 1536.086522][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.096086][ T8587] loop5: detected capacity change from 0 to 256
[ 1536.118149][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.219817][ T8587] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1536.610812][ T4324] kernel write not supported for file /sysvipc/shm (pid: 4324 comm: kworker/0:7)
[ 1537.225942][ T8611] loop5: detected capacity change from 0 to 4096
[ 1537.472996][ T8611] ntfs3: loop5: failed to convert "0080" to cp852
[ 1537.509723][ T8611] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[ 1537.788507][ T8634] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[ 1537.911676][ T8639] loop7: detected capacity change from 0 to 1024
[ 1538.194271][ T7381] hfsplus: b-tree write err: -5, ino 25
[ 1538.202673][ T7381] hfsplus: b-tree write err: -5, ino 4
[ 1538.208320][ T7381] hfsplus: b-tree write err: -5, ino 2
[ 1538.488195][ T8659] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14695'.
[ 1538.567354][ T8659] IPVS: Error joining to the multicast group
[ 1538.836882][ T8664] loop4: detected capacity change from 0 to 4096
[ 1538.924149][ T8664] ntfs3: loop4: ino=3, Correct links count -> 2.
[ 1539.120323][ T8664] ntfs3: loop4: ino=5, "/" directory corrupted
[ 1539.155298][ T8678] loop5: detected capacity change from 0 to 4096
[ 1539.193461][ T8678] ntfs: (device loop5): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 1539.358821][ T8678] ntfs: volume version 3.1.
[ 1539.461344][ T8678] ntfs: (device loop5): ntfs_nlstoucs(): Name using character set cp869 contains characters that cannot be converted to Unicode.
[ 1539.530209][ T8678] ntfs: (device loop5): ntfs_lookup(): Failed to convert name to Unicode.
[ 1539.548906][ T8689] loop4: detected capacity change from 0 to 512
[ 1539.637794][ T8689] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[ 1539.699623][ T8689] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[ 1539.710149][ T8689] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.14710: Corrupt directory, running e2fsck is recommended
[ 1539.750138][ T8689] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[ 1539.758676][ T8689] EXT4-fs error (device loop4): ext4_iget_extra_inode:4752: inode #15: comm syz.4.14710: corrupted in-inode xattr
[ 1539.857779][ T8697] Bluetooth: MGMT ver 1.22
[ 1539.954239][ T8689] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.14710: couldn't read orphan inode 15 (err -117)
[ 1540.088416][ T8689] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1540.218179][  T368] EXT4-fs (loop4): unmounting filesystem.
[ 1540.285858][ T8711] loop3: detected capacity change from 0 to 256
[ 1540.376099][ T8708] loop5: detected capacity change from 0 to 4096
[ 1540.383183][ T8711] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[ 1540.448476][ T8716] loop4: detected capacity change from 0 to 512
[ 1540.474672][ T8719] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1540.535550][ T8716] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1540.561456][ T8716] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[ 1540.600855][ T8716] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 1540.673589][ T8716] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1540.809372][ T8716] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[ 1540.985588][  T368] EXT4-fs (loop4): unmounting filesystem.
[ 1541.386076][ T8740] netlink: 68 bytes leftover after parsing attributes in process `syz.4.14727'.
[ 1541.418018][ T8740] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14727'.
[ 1541.798184][   T27] audit: type=1400 audit(1541.739:1334): apparmor="DENIED" operation="change_hat" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=8751 comm="syz.0.14732"
[ 1541.990181][ T8731] loop5: detected capacity change from 0 to 32768
[ 1542.029536][ T8731] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 10
[ 1542.145708][ T8757] loop3: detected capacity change from 0 to 4096
[ 1542.297517][ T8757] ntfs3: loop3: ino=5, "/" directory corrupted
[ 1542.458964][ T8657] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 10
[ 1542.563474][ T8772] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 1543.776154][ T8811] tipc: Started in network mode
[ 1543.796439][ T8811] tipc: Node identity 400, cluster identity 4711
[ 1543.813380][ T8811] tipc: Node number set to 1024
[ 1543.826333][ T8811] tipc: Cannot configure node identity twice
[ 1544.067346][ T8819] loop7: detected capacity change from 0 to 512
[ 1545.416503][ T8856] loop4: detected capacity change from 0 to 128
[ 1545.536381][ T8856] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1545.895657][  T368] EXT4-fs (loop4): unmounting filesystem.
[ 1546.002575][ T8881] loop5: detected capacity change from 0 to 8
[ 1546.102207][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.108657][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.492379][ T8893] loop4: detected capacity change from 0 to 1024
[ 1547.270457][ T8879] loop7: detected capacity change from 0 to 32768
[ 1547.294407][ T8879] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 10
[ 1547.369315][T30335] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[ 1547.559436][T30335] usb 4-1: Using ep0 maxpacket: 8
[ 1547.568039][T30335] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1547.597776][T30335] usb 4-1: config 4 interface 0 has no altsetting 0
[ 1547.630294][T30335] usb 4-1: string descriptor 0 read error: -22
[ 1547.636660][T30335] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[ 1547.657699][ T8926] comedi comedi3: 8255: I/O port conflict (0x4f27,4)
[ 1547.679370][ T8926] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1547.685973][ T8926] comedi comedi3: 8255: I/O port conflict (0x2,4)
[ 1547.695154][ T8657] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 10
[ 1547.699467][T30335] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3
[ 1547.739056][ T8926] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1547.755042][T30335] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[ 1547.771397][ T8926] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[ 1547.809791][ T8926] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1547.818084][T30335] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1547.849922][ T8926] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[ 1547.856932][T30335] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[ 1547.869295][ T8926] comedi comedi3: 8255: I/O port conflict (0x2,4)
[ 1547.891007][T30335] usb 4-1: media controller created
[ 1547.899346][ T8926] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1547.929523][ T8926] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1547.936188][ T8926] comedi comedi3: 8255: I/O port conflict (0x9,4)
[ 1547.967710][T30335] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1548.035014][T30335] zl10353_read_register: readreg error (reg=127, ret==0)
[ 1548.176843][T30335] usb 4-1: USB disconnect, device number 29
[ 1548.888734][ T8964] comedi comedi3: 8255: I/O port conflict (0x4f27,4)
[ 1548.919417][ T8964] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1548.926074][ T8964] comedi comedi3: 8255: I/O port conflict (0x2,4)
[ 1548.944844][ T8964] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1548.959507][ T8964] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[ 1548.976337][ T8964] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1548.992345][ T8964] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[ 1549.015189][ T8964] comedi comedi3: 8255: I/O port conflict (0x2,4)
[ 1549.029655][ T8964] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1549.047237][ T8964] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1549.067097][ T8964] comedi comedi3: 8255: I/O port conflict (0x9,4)
[ 1549.268790][ T8976] loop3: detected capacity change from 0 to 512
[ 1549.345294][ T8976] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1549.521070][ T8976] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[ 1549.600419][ T8976] Quota error (device loop3): write_blk: dquota write failed
[ 1549.639722][ T8976] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[ 1549.669612][ T8976] EXT4-fs error (device loop3): ext4_acquire_dquot:6835: comm syz.3.14811: Failed to acquire dquot type 0
[ 1549.790499][ T8994] loop4: detected capacity change from 0 to 512
[ 1549.848004][ T8996] netlink: 28 bytes leftover after parsing attributes in process `syz.5.14819'.
[ 1549.848691][ T8994] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1549.892744][ T8994] EXT4-fs (loop4): 1 truncate cleaned up
[ 1549.909362][ T8994] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1549.938978][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1549.945048][ T8994] EXT4-fs error (device loop4): mb_free_blocks:1839: group 0, inode 16: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[ 1549.984502][ T8994] EXT4-fs (loop4): Remounting filesystem read-only
[ 1550.135293][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1550.221937][  T368] EXT4-fs (loop4): unmounting filesystem.
[ 1550.558258][ T9012] loop3: detected capacity change from 0 to 4096
[ 1550.572611][ T9012] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 1550.600026][ T9012] ntfs: (device loop3): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[ 1550.611374][ T9012] ntfs: (device loop3): ntfs_read_locked_inode(): $DATA attribute is missing.
[ 1550.620958][ T9012] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[ 1550.638103][ T9012] ntfs: (device loop3): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1550.714397][ T9012] ntfs: volume version 3.1.
[ 1550.735302][ T9012] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index buffer (VCN 0x0) of directory inode 0x5 has a size (24) differing from the directory specified size (4096). Directory inode is corrupt or driver bug.
[ 1550.828220][ T9012] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 1550.862174][ T9012] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[ 1551.641806][ T9045] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_vlan, syncid = 2, id = 0
[ 1551.657415][ T9042] IPVS: stopping master sync thread 9045 ...
[ 1551.895878][ T9054] netlink: 452 bytes leftover after parsing attributes in process `syz.3.14837'.
[ 1551.916032][ T9054] netlink: 28 bytes leftover after parsing attributes in process `syz.3.14837'.
[ 1552.471665][ T9073] sg_write: process 539 (syz.5.14845) changed security contexts after opening file descriptor, this is not allowed.
[ 1553.868943][ T9113] sp0: Synchronizing with TNC
[ 1554.635556][ T9136] loop7: detected capacity change from 0 to 512
[ 1554.740337][ T9110] loop5: detected capacity change from 0 to 32768
[ 1554.760339][ T9136] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1554.882014][ T9110] XFS (loop5): Mounting V5 Filesystem
[ 1554.927756][ T9136] EXT4-fs error (device loop7): ext4_do_update_inode:5268: inode #2: comm syz.7.14867: corrupted inode contents
[ 1554.931565][ T9124] loop3: detected capacity change from 0 to 32768
[ 1554.987404][ T9124] non-latin1 character 0x200 found in JFS file name
[ 1555.010153][ T9124] mount with iocharset=utf8 to access
[ 1555.054287][ T9136] EXT4-fs (loop7): Remounting filesystem read-only
[ 1555.061280][ T9136] EXT4-fs error (device loop7): ext4_dirty_inode:6133: inode #2: comm syz.7.14867: mark_inode_dirty error
[ 1555.076191][ T9136] EXT4-fs (loop7): Remounting filesystem read-only
[ 1555.084956][ T9110] XFS (loop5): Ending clean mount
[ 1555.090179][ T9136] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 93 vs 96 free clusters
[ 1555.106671][ T9136] EXT4-fs (loop7): Remounting filesystem read-only
[ 1555.164128][ T9146] EXT4-fs error (device loop7): ext4_do_update_inode:5268: inode #2: comm syz.7.14867: corrupted inode contents
[ 1555.230766][ T9110] XFS (loop5): Quotacheck needed: Please wait.
[ 1555.279626][ T9146] EXT4-fs (loop7): Remounting filesystem read-only
[ 1555.286500][ T9146] EXT4-fs error (device loop7): ext4_dirty_inode:6133: inode #2: comm syz.7.14867: mark_inode_dirty error
[ 1555.386246][ T9146] EXT4-fs (loop7): Remounting filesystem read-only
[ 1555.464520][ T9110] XFS (loop5): Quotacheck: Done.
[ 1555.624072][ T7049] EXT4-fs (loop7): unmounting filesystem.
[ 1555.632910][ T9127] loop4: detected capacity change from 0 to 40427
[ 1555.674704][ T9127] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x3ffff
[ 1555.750417][ T9127] F2FS-fs (loop4): invalid crc value
[ 1555.796701][ T9127] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1555.894142][ T4619] XFS (loop5): Unmounting Filesystem
[ 1555.997810][ T9167] netlink: 4 bytes leftover after parsing attributes in process `syz.7.14871'.
[ 1556.003396][ T9127] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1556.021473][ T9166] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14872'.
[ 1556.308688][  T368] syz-executor: attempt to access beyond end of device
[ 1556.308688][  T368] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1556.712200][ T9177] loop7: detected capacity change from 0 to 4096
[ 1556.755560][ T9177] __ntfs_warning: 2 callbacks suppressed
[ 1556.755579][ T9177] ntfs: (device loop7): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 1556.877690][ T9177] ntfs: (device loop7): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[ 1556.918065][ T9181] loop3: detected capacity change from 0 to 4096
[ 1556.940023][ T9177] ntfs: (device loop7): ntfs_read_locked_inode(): $DATA attribute is missing.
[ 1556.949002][ T9177] ntfs: (device loop7): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[ 1557.036058][ T9181] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1557.053394][ T9177] ntfs: (device loop7): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1557.091108][ T9181] ntfs3: loop3: Failed to load $Extend.
[ 1557.169638][ T9177] ntfs: volume version 3.1.
[ 1557.189393][ T9177] ntfs: (device loop7): ntfs_lookup_inode_by_name(): Index buffer (VCN 0x0) of directory inode 0x5 has a size (24) differing from the directory specified size (4096). Directory inode is corrupt or driver bug.
[ 1557.324773][ T9177] ntfs: (device loop7): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 1557.439120][ T9177] ntfs: (device loop7): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[ 1557.585395][ T9177] ntfs: (device loop7): ntfs_readdir(): Index buffer (VCN 0x0) of directory inode 0x5 has a size (24) differing from the directory specified size (4096). Directory inode is corrupt or driver bug.
[ 1558.276099][ T9211] loop3: detected capacity change from 0 to 128
[ 1558.646592][ T9221] loop3: detected capacity change from 0 to 512
[ 1558.679715][T27523] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[ 1558.821469][ T9221] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1558.867191][ T9229] loop7: detected capacity change from 0 to 512
[ 1558.877831][T27523] usb 6-1: Using ep0 maxpacket: 8
[ 1558.885105][T27523] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[ 1558.895745][T27523] usb 6-1: config 179 has no interface number 0
[ 1558.905917][ T9229] EXT4-fs (loop7): 1 truncate cleaned up
[ 1558.911741][T27523] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1558.923594][ T9229] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1558.942953][T27523] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1559.082424][T27523] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1559.098952][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1559.139398][T27523] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1559.199236][T27523] usb 6-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1559.215741][ T7049] EXT4-fs (loop7): unmounting filesystem.
[ 1559.224860][ T9207] loop4: detected capacity change from 0 to 32768
[ 1559.259233][T27523] usb 6-1: config 179 interface 65 has no altsetting 0
[ 1559.266249][T27523] usb 6-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1559.281038][ T9207] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.14887 (9207)
[ 1559.322010][T27523] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1559.400165][ T9207] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1559.440200][ T9207] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[ 1559.449070][ T9207] BTRFS info (device loop4): setting nodatacow, compression disabled
[ 1559.475606][T27523] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:179.65/input/input53
[ 1559.559715][ T9207] BTRFS info (device loop4): enabling auto defrag
[ 1559.566335][ T9207] BTRFS info (device loop4): max_inline at 0
[ 1559.637102][ T4838] usb 6-1: USB disconnect, device number 31
[ 1559.650129][ T9207] BTRFS info (device loop4): using free space tree
[ 1559.667250][ T4838] xpad 6-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 1560.571273][  T368] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1560.751503][ T9253] loop7: detected capacity change from 0 to 40427
[ 1560.800433][ T9253] F2FS-fs (loop7): invalid crc value
[ 1560.828990][ T9253] F2FS-fs (loop7): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[ 1561.101369][ T9253] F2FS-fs (loop7): Cannot turn on quotas: -2 on 0
[ 1561.136400][ T9253] F2FS-fs (loop7): Start checkpoint disabled!
[ 1561.179045][ T9253] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[ 1561.689863][ T2647] kworker/u4:2: attempt to access beyond end of device
[ 1561.689863][ T2647] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1562.436851][ T9295] loop5: detected capacity change from 0 to 32768
[ 1562.496813][ T9295] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop5 scanned by syz.5.14909 (9295)
[ 1562.614212][ T9295] BTRFS info (device loop5): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1562.655017][ T9295] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[ 1562.719959][ T9295] BTRFS info (device loop5): setting nodatacow, compression disabled
[ 1562.728492][ T9295] BTRFS info (device loop5): turning on flush-on-commit
[ 1562.799567][ T9295] BTRFS info (device loop5): using free space tree
[ 1563.206377][ T9295] BTRFS info (device loop5): enabling ssd optimizations
[ 1563.367203][ T4619] BTRFS info (device loop5): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1563.908631][ T9311] loop7: detected capacity change from 0 to 32768
[ 1564.025452][ T9311] JBD2: Ignoring recovery information on journal
[ 1564.199833][ T9311] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1564.559955][ T7049] ocfs2: Unmounting device (7,7) on (node local)
[ 1564.566725][ T9341] loop3: detected capacity change from 0 to 32768
[ 1564.615712][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1564.709903][ T9364] loop5: detected capacity change from 0 to 128
[ 1564.901743][ T9341] XFS (loop3): Mounting V5 Filesystem
[ 1564.938381][ T9364] FAT-fs (loop5): error, clusters badly computed (2 != 0)
[ 1564.973877][ T9356] loop4: detected capacity change from 0 to 32768
[ 1565.005980][ T9364] FAT-fs (loop5): Filesystem has been set read-only
[ 1565.065526][ T9356] 
[ 1565.065526][ T9356]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1565.065526][ T9356] 
[ 1565.170446][ T9341] XFS (loop3): Ending clean mount
[ 1565.218123][ T9356] jfs_create: dtInsert returned -EIO
[ 1565.261891][ T9356] ERROR: (device loop4): jfs_create: 
[ 1565.261891][ T9356] 
[ 1565.482243][ T1952] XFS (loop3): Unmounting Filesystem
[ 1565.534026][  T368] 
[ 1565.534026][  T368]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1565.534026][  T368] 
[ 1565.553886][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1565.568545][  T368] 
[ 1565.568545][  T368]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1565.568545][  T368] 
[ 1566.181516][ T9396] loop5: detected capacity change from 0 to 256
[ 1566.199976][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1566.218152][ T9396] exfat: Deprecated parameter 'namecase'
[ 1566.247904][ T9396] exfat: Deprecated parameter 'namecase'
[ 1566.286274][ T9396] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[ 1566.378623][ T9396] syz.5.14933: attempt to access beyond end of device
[ 1566.378623][ T9396] loop5: rw=0, sector=34225520824, nr_sectors = 1 limit=256
[ 1566.816473][ T9413] loop4: detected capacity change from 0 to 164
[ 1566.866521][ T9413] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[ 1567.184461][ T9424] loop5: detected capacity change from 0 to 1024
[ 1567.197871][ T9426] loop7: detected capacity change from 0 to 1024
[ 1567.265374][ T9426] hfsplus: bad catalog entry type
[ 1567.434965][T26391] hfsplus: b-tree write err: -5, ino 25
[ 1567.465627][T26391] hfsplus: b-tree write err: -5, ino 4
[ 1567.483735][T26391] hfsplus: b-tree write err: -5, ino 2
[ 1567.748062][ T9435] netlink: 16 bytes leftover after parsing attributes in process `syz.3.14945'.
[ 1567.875480][ T9441] loop7: detected capacity change from 0 to 1024
[ 1568.071926][T26391] hfsplus: b-tree write err: -5, ino 25
[ 1568.077874][T26391] hfsplus: b-tree write err: -5, ino 4
[ 1568.098010][T26391] hfsplus: b-tree write err: -5, ino 2
[ 1568.115853][T26391] hfsplus: b-tree write err: -5, ino 26
[ 1568.698404][ T9467] loop3: detected capacity change from 0 to 2048
[ 1568.748167][ T9467] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=2362, location=2362
[ 1568.854046][ T9467] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[ 1568.887402][ T9467] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[ 1568.910332][ T9474] loop7: detected capacity change from 0 to 256
[ 1568.947078][ T9467] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1568.951523][ T9474] exfat: Deprecated parameter 'namecase'
[ 1568.995467][ T9474] exfat: Deprecated parameter 'namecase'
[ 1569.058836][ T9474] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[ 1569.180089][ T9474] syz.7.14958: attempt to access beyond end of device
[ 1569.180089][ T9474] loop7: rw=0, sector=34225520824, nr_sectors = 1 limit=256
[ 1569.436365][ T9480] loop3: detected capacity change from 0 to 1024
[ 1569.684639][ T4335] hfsplus: b-tree write err: -5, ino 25
[ 1569.691903][ T4335] hfsplus: b-tree write err: -5, ino 4
[ 1569.697536][ T4335] hfsplus: b-tree write err: -5, ino 2
[ 1569.704161][ T9465] loop5: detected capacity change from 0 to 32768
[ 1569.885839][ T9498] netlink: 16 bytes leftover after parsing attributes in process `syz.4.14965'.
[ 1569.941795][ T9465] XFS (loop5): Mounting V5 Filesystem
[ 1570.089456][ T9465] XFS (loop5): Ending clean mount
[ 1570.355333][ T4619] XFS (loop5): Unmounting Filesystem
[ 1570.621189][ T9519] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1571.228032][ T9501] loop7: detected capacity change from 0 to 32768
[ 1571.398678][ T9501] XFS (loop7): Mounting V5 Filesystem
[ 1571.509754][ T9501] XFS (loop7): Ending clean mount
[ 1571.671780][ T7049] XFS (loop7): Unmounting Filesystem
[ 1571.870649][ T9524] loop3: detected capacity change from 0 to 32768
[ 1572.075080][ T9524] JBD2: Ignoring recovery information on journal
[ 1572.151483][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1572.159400][ T9524] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1572.434956][ T1952] ocfs2: Unmounting device (7,3) on (node local)
[ 1572.627253][ T9570] loop5: detected capacity change from 0 to 512
[ 1572.640100][ T9569] [U] 	
[ 1572.696648][ T9570] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1572.769297][ T9570] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c018, mo2=0002]
[ 1572.840980][ T9570] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1572.958573][ T9570] EXT4-fs warning (device loop5): ext4_enable_quotas:7087: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 1573.047323][ T9570] EXT4-fs (loop5): Cannot turn on quotas: error -22
[ 1573.104688][ T9570] EXT4-fs error (device loop5): ext4_ext_check_inode:530: inode #13: comm syz.5.14990: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[ 1573.152101][ T9570] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.14990: couldn't read orphan inode 13 (err -117)
[ 1573.187983][ T9570] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1573.358794][ T9570] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1573.387917][ T9570] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[ 1573.410463][ T9583] loop3: detected capacity change from 0 to 512
[ 1573.435275][ T9583] EXT4-fs: Ignoring removed nobh option
[ 1573.445352][ T9583] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1573.459330][ T9570] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=2842c09c, mo2=0002]
[ 1573.500889][ T9570] System zones: 0-2, 18-18, 34-34
[ 1573.506879][ T9570] EXT4-fs warning (device loop5): ext4_enable_quotas:7087: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 1573.526101][ T9583] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1573.559410][ T9583] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13
[ 1573.645576][ T9583] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.14994: attempt to clear invalid blocks 2 len 1
[ 1573.762784][ T9583] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[ 1573.810382][ T4619] EXT4-fs (loop5): unmounting filesystem.
[ 1573.834770][ T9583] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.14994: invalid indirect mapped block 1819239214 (level 0)
[ 1573.918552][ T9595] loop7: detected capacity change from 0 to 1024
[ 1573.940089][ T9583] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.14994: invalid indirect mapped block 1819239214 (level 1)
[ 1574.006324][ T9583] EXT4-fs (loop3): 1 truncate cleaned up
[ 1574.028222][ T9583] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1574.158607][ T9583] EXT4-fs (loop3): Quota file not on filesystem root. Journaled quota will not work
[ 1574.325538][ T9574] loop4: detected capacity change from 0 to 32768
[ 1574.333982][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1574.337187][ T4335] hfsplus: b-tree write err: -5, ino 25
[ 1574.406731][ T4335] hfsplus: b-tree write err: -5, ino 4
[ 1574.433151][ T4335] hfsplus: b-tree write err: -5, ino 2
[ 1574.499869][ T9574] XFS (loop4): Mounting V5 Filesystem
[ 1574.541897][ T9613] loop3: detected capacity change from 0 to 512
[ 1574.550144][ T9613] EXT4-fs: Ignoring removed nobh option
[ 1574.589768][ T9574] XFS (loop4): Ending clean mount
[ 1574.606357][ T9613] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1574.630241][   T27] audit: type=1800 audit(1574.579:1336): pid=9613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.15003" name="file1" dev="loop3" ino=15 res=0 errno=0
[ 1574.650372][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1574.892265][ T1952] EXT4-fs (loop3): unmounting filesystem.
[ 1574.940032][  T368] XFS (loop4): Unmounting Filesystem
[ 1574.966944][ T9627] tipc: Started in network mode
[ 1575.008389][ T9627] tipc: Node identity aaaaaaaaaa3, cluster identity 4711
[ 1575.035606][ T9627] tipc: Enabled bearer <eth:ipvlan0>, priority 10
[ 1575.146461][ T9625] netlink: 'syz.5.15004': attribute type 5 has an invalid length.
[ 1576.149669][T30335] tipc: Node number set to 10136234
[ 1576.604352][ T9660] loop5: detected capacity change from 0 to 8192
[ 1576.660311][ T9660] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1576.694547][ T9660] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[ 1576.724632][ T9660] REISERFS (device loop5): using ordered data mode
[ 1576.739640][ T9660] reiserfs: using flush barriers
[ 1576.749546][ T9660] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1576.769495][ T9644] loop7: detected capacity change from 0 to 40427
[ 1576.789023][ T9644] F2FS-fs (loop7): invalid crc value
[ 1576.800782][ T9644] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1576.869963][ T9660] REISERFS (device loop5): checking transaction log (loop5)
[ 1576.909420][ T9644] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1577.179696][ T9660] REISERFS (device loop5): Using tea hash to sort names
[ 1577.187087][ T9660] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[ 1577.269853][ T7049] syz-executor: attempt to access beyond end of device
[ 1577.269853][ T7049] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1577.281485][ T9675] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[ 1577.372037][ T9675] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[ 1577.925047][ T9663] loop3: detected capacity change from 0 to 32768
[ 1577.988384][ T9663] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.15019 (9663)
[ 1578.139064][ T9663] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1578.194984][ T9663] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1578.224976][ T9663] BTRFS info (device loop3): force zlib compression, level 3
[ 1578.294177][ T9663] BTRFS info (device loop3): force clearing of disk cache
[ 1578.338297][ T9663] BTRFS info (device loop3): setting nodatasum
[ 1578.375015][ T9663] BTRFS info (device loop3): allowing degraded mounts
[ 1578.402505][ T9663] BTRFS info (device loop3): enabling disk space caching
[ 1578.439576][ T9663] BTRFS info (device loop3): disk space caching is enabled
[ 1578.618392][ T9713] vim2m vim2m.0: vidioc_s_fmt queue busy
[ 1578.801720][ T9663] BTRFS info (device loop3): rebuilding free space tree
[ 1578.875837][ T9663] BTRFS info (device loop3): disabling free space tree
[ 1578.896554][ T9663] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1578.920975][ T9722] netlink: 'syz.0.15040': attribute type 3 has an invalid length.
[ 1578.939259][ T9663] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1579.101973][ T9663] BTRFS info (device loop3): balance: start -d -m -s
[ 1579.123073][ T9663] BTRFS info (device loop3): relocating block group 6881280 flags data|metadata
[ 1579.217758][ T9686] loop4: detected capacity change from 0 to 32768
[ 1579.251434][ T9663] BTRFS info (device loop3): relocating block group 5242880 flags data|metadata
[ 1579.318061][ T9686] ERROR: (device loop4): dbAllocAG: unable to allocate blocks
[ 1579.318061][ T9686] 
[ 1579.361964][ T9686] ERROR: (device loop4): dbDiscardAG: -EIO
[ 1579.361964][ T9686] 
[ 1579.418457][ T9663] BTRFS info (device loop3): balance: canceled
[ 1579.556070][ T1952] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1579.696062][ T9741] netlink: 88 bytes leftover after parsing attributes in process `syz.4.15037'.
[ 1579.888246][ T9748] program syz.0.15041 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1580.129070][ T9752] loop7: detected capacity change from 0 to 1024
[ 1580.164451][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1580.782430][ T9768] program syz.4.15046 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1581.086628][ T9771] syz.4.15048 (9771): /proc/9770/oom_adj is deprecated, please use /proc/9770/oom_score_adj instead.
[ 1581.497123][ T9787] loop4: detected capacity change from 0 to 1024
[ 1581.586909][ T9787] hfsplus: b-tree write err: -5, ino 2
[ 1581.690953][ T9797] netlink: 32 bytes leftover after parsing attributes in process `syz.7.15058'.
[ 1581.764362][ T9800] netlink: 'syz.5.15059': attribute type 1 has an invalid length.
[ 1581.801728][ T7347] hfsplus: b-tree write err: -5, ino 25
[ 1581.817823][ T7347] hfsplus: b-tree write err: -5, ino 4
[ 1582.048701][ T9804] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15062'.
[ 1583.307498][ T4334] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1583.695893][ T9848] loop4: detected capacity change from 0 to 16
[ 1583.756551][ T9848] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1583.765939][ T9852] loop7: detected capacity change from 0 to 128
[ 1583.804538][ T9852] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1583.834243][ T9821] loop3: detected capacity change from 0 to 40427
[ 1583.843884][ T9848] syz.4.15078: attempt to access beyond end of device
[ 1583.843884][ T9848] loop4: rw=524288, sector=1056, nr_sectors = 16 limit=16
[ 1583.885666][ T9852] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1583.909772][ T9821] F2FS-fs (loop3): invalid crc value
[ 1583.938633][ T9848] syz.4.15078: attempt to access beyond end of device
[ 1583.938633][ T9848] loop4: rw=524288, sector=16, nr_sectors = 40 limit=16
[ 1583.968469][ T9821] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1584.008543][ T9852] overlayfs: upper fs needs to support d_type.
[ 1584.018594][ T9848] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[ 1584.048492][ T9852] overlayfs: upper fs does not support tmpfile.
[ 1584.078577][   T27] audit: type=1800 audit(1584.019:1337): pid=9848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.15078" name="file2" dev="loop4" ino=89 res=0 errno=0
[ 1584.097912][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1584.244516][ T9821] F2FS-fs (loop3): Start checkpoint disabled!
[ 1584.275092][ T9821] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 1585.116813][ T9886] loop4: detected capacity change from 0 to 128
[ 1585.170992][ T9886] syz.4.15091: attempt to access beyond end of device
[ 1585.170992][ T9886] loop4: rw=2051, sector=104, nr_sectors = 25 limit=128
[ 1585.379367][T13579] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1585.776961][ T9897] loop4: detected capacity change from 0 to 64
[ 1585.912019][ T9877] loop7: detected capacity change from 0 to 32768
[ 1585.959567][ T9877] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop7 scanned by syz.7.15088 (9877)
[ 1586.049497][ T9877] BTRFS info (device loop7): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1586.109658][ T9877] BTRFS info (device loop7): using blake2b (blake2b-256-generic) checksum algorithm
[ 1586.171138][ T9877] BTRFS info (device loop7): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1586.212060][ T9877] BTRFS info (device loop7): use zstd compression, level 3
[ 1586.259618][ T9877] BTRFS info (device loop7): using free space tree
[ 1586.373749][ T9912] loop4: detected capacity change from 0 to 4096
[ 1586.489007][ T9932] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1586.612264][ T9877] BTRFS info (device loop7): enabling ssd optimizations
[ 1586.863083][ T7049] BTRFS info (device loop7): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1587.114022][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1587.249706][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1587.498460][ T9928] loop5: detected capacity change from 0 to 32768
[ 1587.516916][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1587.637771][ T9928] XFS (loop5): Mounting V5 Filesystem
[ 1587.716178][ T9928] XFS (loop5): Ending clean mount
[ 1587.726482][ T9928] XFS (loop5): Quotacheck needed: Please wait.
[ 1587.868483][ T9928] XFS (loop5): Quotacheck: Done.
[ 1588.026053][ T4619] XFS (loop5): Unmounting Filesystem
[ 1588.601591][ T9973] loop3: detected capacity change from 0 to 32768
[ 1588.729875][ T9973] XFS (loop3): Mounting V5 Filesystem
[ 1588.821217][ T9973] XFS (loop3): Ending clean mount
[ 1588.946136][ T1952] XFS (loop3): Unmounting Filesystem
[ 1589.039706][ T4323] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[ 1589.114036][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1589.163624][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1589.241547][ T4323] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1589.259330][ T4323] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1589.274197][ T4323] usb 6-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.01
[ 1589.287129][ T4323] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1589.305348][ T4323] usb 6-1: config 0 descriptor??
[ 1589.728413][ T4323] arvo 0003:1E7D:30D4.001A: unknown global tag 0xd
[ 1589.757248][ T4323] arvo 0003:1E7D:30D4.001A: item 0 1 1 13 parsing failed
[ 1589.765836][ T4323] arvo 0003:1E7D:30D4.001A: parse failed
[ 1589.777616][ T4323] arvo: probe of 0003:1E7D:30D4.001A failed with error -22
[ 1589.946158][ T4323] usb 6-1: USB disconnect, device number 32
[ 1590.122286][T10025] loop4: detected capacity change from 0 to 128
[ 1590.136957][T10025] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1590.156426][T10025] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1590.255306][ T4334] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1590.690452][T10040] loop5: detected capacity change from 0 to 64
[ 1590.737071][T10042] netlink: 480 bytes leftover after parsing attributes in process `syz.3.15128'.
[ 1591.014154][T10050] tipc: Started in network mode
[ 1591.048730][T10050] tipc: Node identity ac141441, cluster identity 4711
[ 1591.079017][T10050] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1591.148832][T10057] ptrace attach of "./syz-executor exec"[7049] was attempted by ""[10057]
[ 1591.377846][T10064] netlink: 16 bytes leftover after parsing attributes in process `syz.4.15135'.
[ 1591.520965][T10070] loop7: detected capacity change from 0 to 1024
[ 1591.671069][T10070] EXT4-fs error (device loop7): ext4_map_blocks:635: inode #3: block 2: comm syz.7.15138: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1591.746464][T10070] Quota error (device loop7): qtree_write_dquot: dquota write failed
[ 1591.806696][T10070] EXT4-fs error (device loop7): ext4_map_blocks:635: inode #3: block 48: comm syz.7.15138: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1591.903817][T10070] Quota error (device loop7): v2_write_file_info: Can't write info structure
[ 1591.929211][T10070] EXT4-fs error (device loop7): ext4_acquire_dquot:6835: comm syz.7.15138: Failed to acquire dquot type 0
[ 1591.990617][T10070] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5929: Corrupt filesystem
[ 1592.022336][T10070] EXT4-fs error (device loop7): ext4_evict_inode:279: inode #11: comm syz.7.15138: mark_inode_dirty error
[ 1592.041837][T10070] EXT4-fs warning (device loop7): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[ 1592.057872][T10070] EXT4-fs (loop7): 1 orphan inode deleted
[ 1592.068280][T10070] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1592.096483][ T4335] EXT4-fs error (device loop7): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1592.117680][T10088] loop4: detected capacity change from 0 to 128
[ 1592.148918][ T4335] Quota error (device loop7): remove_tree: Can't read quota data block 1
[ 1592.177960][ T4335] EXT4-fs error (device loop7): ext4_release_dquot:6871: comm kworker/u4:7: Failed to release dquot type 0
[ 1592.216674][ T4322] tipc: Node number set to 2886997057
[ 1592.367492][ T7049] EXT4-fs (loop7): unmounting filesystem.
[ 1592.387387][   T11] EXT4-fs error (device loop7): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:1: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1592.452649][T10095] loop5: detected capacity change from 0 to 256
[ 1592.466000][   T11] Quota error (device loop7): remove_tree: Can't read quota data block 1
[ 1592.508319][   T11] EXT4-fs error (device loop7): ext4_release_dquot:6871: comm kworker/u4:1: Failed to release dquot type 0
[ 1592.556382][T10095] FAT-fs (loop5): Directory bread(block 64) failed
[ 1592.589326][T10095] FAT-fs (loop5): Directory bread(block 65) failed
[ 1592.596041][T10095] FAT-fs (loop5): Directory bread(block 66) failed
[ 1592.608083][ T7049] EXT4-fs error (device loop7): __ext4_get_inode_loc:4509: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 1592.657648][ T7049] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5929: Corrupt filesystem
[ 1592.674040][T10095] FAT-fs (loop5): Directory bread(block 67) failed
[ 1592.694481][ T7049] EXT4-fs error (device loop7): ext4_quota_off:7141: inode #3: comm syz-executor: mark_inode_dirty error
[ 1592.709569][T10095] FAT-fs (loop5): Directory bread(block 68) failed
[ 1592.716228][T10095] FAT-fs (loop5): Directory bread(block 69) failed
[ 1592.780594][T10095] FAT-fs (loop5): Directory bread(block 70) failed
[ 1592.807512][T10095] FAT-fs (loop5): Directory bread(block 71) failed
[ 1592.889861][T10095] FAT-fs (loop5): Directory bread(block 72) failed
[ 1592.896500][T10095] FAT-fs (loop5): Directory bread(block 73) failed
[ 1592.909788][T13579] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1593.011362][T10105] loop3: detected capacity change from 0 to 64
[ 1593.985807][T10140] loop4: detected capacity change from 0 to 128
[ 1594.014975][T10140] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1594.069009][T10140] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1594.220504][ T4335] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1594.379590][T10150] mkiss: ax0: crc mode is auto.
[ 1594.528047][T10152] [U] ø
[ 1595.078062][T10142] loop3: detected capacity change from 0 to 32768
[ 1595.107960][T10173] genirq: Flags mismatch irq 10. 00000000 (das16m1) vs. 00000080 (virtio2)
[ 1595.301010][T10178] "syz.0.15179" (10178) uses obsolete ecb(arc4) skcipher
[ 1595.565372][T10190] netlink: 'syz.7.15184': attribute type 5 has an invalid length.
[ 1596.267019][T10208] comedi comedi3: 8255: I/O port conflict (0x4f27,4)
[ 1596.305312][T10208] comedi comedi3: 8255: I/O port conflict (0x3,4)
[ 1596.329306][T10208] comedi comedi3: 8255: I/O port conflict (0x10000,4)
[ 1596.360659][T10208] comedi comedi3: 8255: I/O port conflict (0x4,4)
[ 1596.367255][T10208] comedi comedi3: 8255: I/O port conflict (0xc,4)
[ 1596.435327][T10208] comedi comedi3: 8255: I/O port conflict (0x10,4)
[ 1596.469300][T10208] comedi comedi3: 8255: I/O port conflict (0x7,4)
[ 1596.489099][T10217] loop7: detected capacity change from 0 to 64
[ 1596.516733][T10208] comedi comedi3: 8255: I/O port conflict (0x400000a,4)
[ 1596.544287][T10208] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffff8,4)
[ 1596.599250][T10208] comedi comedi3: 8255: I/O port conflict (0x3,4)
[ 1597.138585][T10227] loop7: detected capacity change from 0 to 8192
[ 1597.512809][   T27] audit: type=1326 audit(1597.459:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10244 comm="syz.7.15206" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f42ed99c819 code=0x0
[ 1597.788320][T10219] loop3: detected capacity change from 0 to 32768
[ 1597.931605][T10219] XFS (loop3): Mounting V5 Filesystem
[ 1598.073822][T10219] XFS (loop3): Ending clean mount
[ 1598.088479][T10219] XFS (loop3): Quotacheck needed: Please wait.
[ 1598.251060][T10219] XFS (loop3): Quotacheck: Done.
[ 1598.431443][ T1952] XFS (loop3): Unmounting Filesystem
[ 1598.731147][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1598.830439][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1599.979645][T10295] loop5: detected capacity change from 0 to 40427
[ 1600.036285][T10295] F2FS-fs (loop5): invalid crc value
[ 1600.086927][T10295] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1600.169483][T10322] loop3: detected capacity change from 0 to 256
[ 1600.214484][T10322] exfat: Deprecated parameter 'utf8'
[ 1600.250542][T10322] exfat: Deprecated parameter 'namecase'
[ 1600.281698][T10295] F2FS-fs (loop5): Start checkpoint disabled!
[ 1600.292239][T10322] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1600.363193][T10295] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1600.676928][T10333] netlink: 56 bytes leftover after parsing attributes in process `syz.0.15232'.
[ 1600.707130][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15232'.
[ 1600.800731][ T4335] kworker/u4:7: attempt to access beyond end of device
[ 1600.800731][ T4335] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 1601.279069][T10317] loop7: detected capacity change from 0 to 32768
[ 1601.507386][T10317] XFS (loop7): Mounting V5 Filesystem
[ 1601.624633][T10317] XFS (loop7): Ending clean mount
[ 1601.790784][T10317] XFS (loop7): syz.7.15228 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported
[ 1601.991540][ T7049] XFS (loop7): Unmounting Filesystem
[ 1602.237605][T10379] loop4: detected capacity change from 0 to 128
[ 1602.299992][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1602.320254][T10377] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1602.448512][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1603.200038][T10404] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[ 1603.490918][T10415] bridge_slave_1: default FDB implementation only supports local addresses
[ 1604.240606][T10438] netlink: 'syz.0.15269': attribute type 1 has an invalid length.
[ 1604.283333][T10432] loop5: detected capacity change from 0 to 32768
[ 1604.291054][T10432] XFS: noikeep mount option is deprecated.
[ 1604.332099][T10400] loop4: detected capacity change from 0 to 40427
[ 1604.377459][T10400] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1604.390403][T10400] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1604.443185][T10432] XFS (loop5): Mounting V5 Filesystem
[ 1604.506681][T10447] loop3: detected capacity change from 0 to 4096
[ 1604.555378][T10400] F2FS-fs (loop4): invalid crc value
[ 1604.619343][T10400] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1604.642108][T10432] XFS (loop5): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[ 1604.682616][T10432] XFS (loop5): Starting recovery (logdev: internal)
[ 1604.706757][T10432] XFS (loop5): Corruption warning: Metadata has LSN (2:16) ahead of current LSN (1:48). Please unmount and run xfs_repair (>= v4.3) to resolve.
[ 1604.723216][T10432] XFS (loop5): Metadata corruption detected at xfs_agi_verify+0x211/0x4f0, xfs_agi block 0x2 
[ 1604.733661][T10432] XFS (loop5): Unmount and run xfs_repair
[ 1604.739614][T10432] XFS (loop5): First 128 bytes of corrupted metadata buffer:
[ 1604.747091][T10432] 00000000: 58 41 47 49 00 00 00 01 00 00 00 00 00 00 10 00  XAGI............
[ 1604.757132][T10432] 00000010: 00 00 00 40 00 00 00 03 00 00 00 01 00 00 00 37  ...@...........7
[ 1604.766129][T10432] 00000020: 00 00 11 40 ff ff ff ff ff ff ff ff ff ff ff ff  ...@............
[ 1604.775184][T10432] 00000030: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1604.784467][T10432] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1604.793428][T10432] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1604.802482][T10432] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1604.811712][T10432] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1604.821493][T10432] XFS (loop5): Corruption of in-memory data (0x8) detected at _xfs_buf_ioapply+0x20c/0x670 (fs/xfs/xfs_buf.c:1553).  Shutting down filesystem.
[ 1604.836232][T10432] XFS (loop5): Please unmount the filesystem and rectify the problem(s)
[ 1604.845818][T10432] XFS (loop5): log mount/recovery failed: error -117
[ 1604.922444][T10432] XFS (loop5): log mount failed
[ 1605.150001][T10400] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1605.184566][T10400] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1605.213756][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1605.265995][T10462] loop7: detected capacity change from 0 to 128
[ 1605.366628][ T8657] blk_print_req_error: 29 callbacks suppressed
[ 1605.366649][ T8657] I/O error, dev loop5, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1605.412470][T10462] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1605.473571][T10462] hpfs: filesystem error: improperly stopped
[ 1605.519559][T10462] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1605.557881][T10462] hpfs: You really don't want any checks? You are crazy...
[ 1605.598731][T10462] hpfs: hpfs_map_sector(): read error
[ 1605.635017][T10462] hpfs: code page support is disabled
[ 1605.661069][T10462] hpfs: hpfs_map_4sectors(): unaligned read
[ 1605.700457][T10462] hpfs: hpfs_map_4sectors(): unaligned read
[ 1605.749551][T10462] hpfs: filesystem error: unable to find root dir
[ 1606.199814][T10479] loop7: detected capacity change from 0 to 256
[ 1606.207001][T10479] exfat: Deprecated parameter 'utf8'
[ 1606.294873][T10479] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1607.136819][T10513] loop7: detected capacity change from 0 to 64
[ 1607.206484][   T27] audit: type=1800 audit(1607.149:1339): pid=10513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.15295" name="file1" dev="loop7" ino=21 res=0 errno=0
[ 1607.305865][T10511] loop4: detected capacity change from 0 to 4096
[ 1607.354535][T10519] loop5: detected capacity change from 0 to 2048
[ 1607.457647][T10524] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1607.492535][T10519] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1607.543167][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.549961][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.648987][T10519] EXT4-fs error (device loop5): ext4_ext_precache:637: inode #2: comm syz.5.15296: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 7(7)
[ 1607.966341][ T4619] EXT4-fs (loop5): unmounting filesystem.
[ 1608.012552][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1608.799380][T10568] ALSA: mixer_oss: invalid OSS volume 'LIDE'
[ 1609.035156][T10540] loop7: detected capacity change from 0 to 32768
[ 1609.118160][T10575] netlink: 'syz.5.15317': attribute type 9 has an invalid length.
[ 1609.173942][T10540] XFS (loop7): Mounting V5 Filesystem
[ 1609.375896][T10540] XFS (loop7): Ending clean mount
[ 1609.385385][T10540] XFS (loop7): Quotacheck needed: Please wait.
[ 1609.503617][T10540] XFS (loop7): Quotacheck: Done.
[ 1609.609642][T27523] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[ 1609.745581][ T7049] XFS (loop7): Unmounting Filesystem
[ 1609.810421][T27523] usb 6-1: Using ep0 maxpacket: 16
[ 1609.837544][T27523] usb 6-1: config 0 has an invalid interface number: 8 but max is 0
[ 1609.860293][ T7381] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1609.862662][T27523] usb 6-1: config 0 has no interface number 0
[ 1609.894786][T27523] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 7
[ 1609.916194][T27523] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0
[ 1609.956036][T27523] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1609.970020][T27523] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1609.979101][T27523] usb 6-1: Product: syz
[ 1609.986026][T27523] usb 6-1: SerialNumber: syz
[ 1610.039451][T27523] usb 6-1: config 0 descriptor??
[ 1610.058607][T27523] cm109 6-1:0.8: invalid payload size 0, expected 4
[ 1610.067963][T27523] input: CM109 USB driver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.8/input/input55
[ 1610.333925][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1610.340956][ T4839] usb 6-1: USB disconnect, device number 33
[ 1610.340977][    C1] cm109 6-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[ 1610.367348][ T7381] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1610.405432][ T4839] cm109 6-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1610.461379][T10602] device sit0 entered promiscuous mode
[ 1610.494638][T10602] netlink: 'syz.3.15326': attribute type 1 has an invalid length.
[ 1610.523227][T10602] netlink: 1 bytes leftover after parsing attributes in process `syz.3.15326'.
[ 1610.711424][ T7381] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1610.956401][ T7381] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1611.123480][T10615] netlink: 4 bytes leftover after parsing attributes in process `syz.4.15329'.
[ 1611.301276][T31235] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1611.330296][T31235] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1611.340643][T31235] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1611.351727][T31235] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1611.361562][T31235] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1611.368924][T31235] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1611.450251][T10627] loop4: detected capacity change from 0 to 1024
[ 1611.589324][T27531] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[ 1611.601113][T10631] loop5: detected capacity change from 0 to 64
[ 1611.690135][   T11] hfsplus: b-tree write err: -5, ino 25
[ 1611.695965][   T11] hfsplus: b-tree write err: -5, ino 4
[ 1611.736665][   T11] hfsplus: b-tree write err: -5, ino 2
[ 1611.760690][   T11] hfsplus: b-tree write err: -5, ino 26
[ 1611.821165][T27531] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1611.839824][T27531] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1611.880591][T27531] usb 4-1: New USB device found, idVendor=1235, idProduct=8204, bcdDevice= 0.40
[ 1611.899236][T27531] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1611.907368][T27531] usb 4-1: Product: syz
[ 1611.911850][T27531] usb 4-1: Manufacturer: syz
[ 1611.916530][T27531] usb 4-1: SerialNumber: syz
[ 1611.974004][ T7381] tipc: Disabling bearer <eth:ipvlan0>
[ 1611.980891][ T7381] tipc: Left network mode
[ 1612.180728][T27531] usb 4-1: unit 5 not found!
[ 1612.185436][T27531] usb 4-1: Focusrite Scarlett Gen 2 Mixer Driver enabled (pid=0x8204); report any issues to g@b4.vu
[ 1612.197497][ T4619] hfs: node 4:3 still has 1 user(s)!
[ 1612.243499][T27531] usb 4-1: Error initialising Scarlett Gen 2 Mixer Driver: -22
[ 1612.339680][T27531] snd-usb-audio: probe of 4-1:1.0 failed with error -22
[ 1612.389642][T10640] loop4: detected capacity change from 0 to 4096
[ 1612.398155][T27531] usb 4-1: USB disconnect, device number 30
[ 1612.463912][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1612.549262][T10647] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1612.580492][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1612.682900][T10620] chnl_net:caif_netlink_parms(): no params data found
[ 1612.723122][ T8657] udevd[8657]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1613.045710][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1613.159302][T27523] kernel write not supported for file /input/event2 (pid: 27523 comm: kworker/1:1)
[ 1613.342066][T10674] loop7: detected capacity change from 0 to 256
[ 1613.427655][T10674] FAT-fs (loop7): Directory bread(block 64) failed
[ 1613.448561][T10620] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1613.459596][T31235] Bluetooth: hci0: command 0x0409 tx timeout
[ 1613.484937][T10674] FAT-fs (loop7): Directory bread(block 65) failed
[ 1613.498673][T10674] FAT-fs (loop7): Directory bread(block 66) failed
[ 1613.505381][T10674] FAT-fs (loop7): Directory bread(block 67) failed
[ 1613.519013][T10674] FAT-fs (loop7): Directory bread(block 68) failed
[ 1613.526079][T10674] FAT-fs (loop7): Directory bread(block 69) failed
[ 1613.528178][T10620] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1613.532780][T10674] FAT-fs (loop7): Directory bread(block 70) failed
[ 1613.532819][T10674] FAT-fs (loop7): Directory bread(block 71) failed
[ 1613.532899][T10674] FAT-fs (loop7): Directory bread(block 72) failed
[ 1613.532931][T10674] FAT-fs (loop7): Directory bread(block 73) failed
[ 1613.712082][T10620] device bridge_slave_0 entered promiscuous mode
[ 1614.020097][T10620] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1614.037593][T10620] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1614.055767][T10620] device bridge_slave_1 entered promiscuous mode
[ 1614.126653][T10662] loop3: detected capacity change from 0 to 32768
[ 1614.200491][T10620] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1614.269245][ T4322] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[ 1614.288827][T10690] loop7: detected capacity change from 0 to 1024
[ 1614.347512][T10690] hfsplus: request for non-existent node 17039360 in B*Tree
[ 1614.357935][T10690] hfsplus: request for non-existent node 17039360 in B*Tree
[ 1614.422679][T10620] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1614.461779][ T7387] hfsplus: b-tree write err: -5, ino 8
[ 1614.489519][ T4322] usb 6-1: Using ep0 maxpacket: 8
[ 1614.496919][ T4322] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1614.526927][ T4322] usb 6-1: too many endpoints for config 0 interface 0 altsetting 41: 36, using maximum allowed: 30
[ 1614.551994][ T4322] usb 6-1: config 0 interface 0 altsetting 41 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1614.560006][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1614.575903][ T4322] usb 6-1: config 0 interface 0 altsetting 41 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1614.634415][T10694] Bluetooth: MGMT ver 1.22
[ 1614.654627][ T4322] usb 6-1: config 0 interface 0 altsetting 41 has 1 endpoint descriptor, different from the interface descriptor's value: 36
[ 1614.688593][ T4322] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1614.713370][ T4322] usb 6-1: New USB device found, idVendor=06cb, idProduct=73f5, bcdDevice=b5.00
[ 1614.735006][ T4322] usb 6-1: New USB device strings: Mfr=43, Product=0, SerialNumber=0
[ 1614.748451][ T4322] usb 6-1: Manufacturer: syz
[ 1614.758392][ T4322] usb 6-1: config 0 descriptor??
[ 1614.874930][T10620] team0: Port device team_slave_0 added
[ 1615.002365][T10620] team0: Port device team_slave_1 added
[ 1615.161559][T10620] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1615.173381][T10620] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1615.212644][ T4322] itetech 0003:06CB:73F5.001B: unbalanced collection at end of report description
[ 1615.243130][ T4322] itetech: probe of 0003:06CB:73F5.001B failed with error -22
[ 1615.290291][T10620] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1615.438701][ T4322] usb 6-1: USB disconnect, device number 34
[ 1615.534656][T10708] loop7: detected capacity change from 0 to 4096
[ 1615.541311][T10713] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15362'.
[ 1615.541346][T10713] netlink: 6 bytes leftover after parsing attributes in process `syz.3.15362'.
[ 1615.550559][T31235] Bluetooth: hci0: command 0x041b tx timeout
[ 1615.605392][T10620] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1615.616414][T10620] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1615.645297][T10620] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1615.804562][T10708] ntfs3: loop7: ino=5, "/" directory corrupted
[ 1616.133602][T10620] device hsr_slave_0 entered promiscuous mode
[ 1616.177464][T10620] device hsr_slave_1 entered promiscuous mode
[ 1616.192906][T10620] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1616.246899][T10620] Cannot create hsr debugfs directory
[ 1616.399868][ T7381] device hsr_slave_0 left promiscuous mode
[ 1616.410557][ T7381] device hsr_slave_1 left promiscuous mode
[ 1616.489422][T10726] loop3: detected capacity change from 0 to 8192
[ 1616.496184][ T7381] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1616.509875][ T7381] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1616.541684][T10726] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1616.555563][ T7381] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1616.573113][ T7381] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1616.633173][ T7381] device bridge_slave_1 left promiscuous mode
[ 1616.653844][ T7381] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1616.668346][T10726] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[ 1616.678039][T10726] REISERFS (device loop3): using ordered data mode
[ 1616.686142][T10726] reiserfs: using flush barriers
[ 1616.705805][T10726] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1616.727943][ T7381] device bridge_slave_0 left promiscuous mode
[ 1616.754715][ T7381] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1616.767976][T10726] REISERFS (device loop3): checking transaction log (loop3)
[ 1617.057385][ T7381] device veth1_macvtap left promiscuous mode
[ 1617.076500][ T7381] device veth0_macvtap left promiscuous mode
[ 1617.089947][T10726] REISERFS (device loop3): Using tea hash to sort names
[ 1617.100326][ T7381] device veth1_vlan left promiscuous mode
[ 1617.106189][ T7381] device veth0_vlan left promiscuous mode
[ 1617.108611][T10726] REISERFS warning (device loop3): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 1617.209656][T10726] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[ 1617.431565][T10749] Bluetooth: MGMT ver 1.22
[ 1617.619644][T31235] Bluetooth: hci0: command 0x040f tx timeout
[ 1618.172690][T10740] loop5: detected capacity change from 0 to 32768
[ 1618.301036][T10746] loop4: detected capacity change from 0 to 40427
[ 1618.310666][T10746] F2FS-fs (loop4): invalid crc value
[ 1618.320416][T10740] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1618.359643][T10746] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1618.439025][T10766] 
[ 1618.441449][T10766] ======================================================
[ 1618.448523][T10766] WARNING: possible circular locking dependency detected
[ 1618.455622][T10766] syzkaller #0 Not tainted
[ 1618.460074][T10766] ------------------------------------------------------
[ 1618.467138][T10766] syz.5.15371/10766 is trying to acquire lock:
[ 1618.473332][T10766] ffff88804e9b89c8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7){+.+.}-{3:3}, at: ocfs2_xattr_set+0xba0/0x13e0
[ 1618.485633][T10766] 
[ 1618.485633][T10766] but task is already holding lock:
[ 1618.493048][T10766] ffff88804e9bce38 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x472/0x13e0
[ 1618.502616][T10766] 
[ 1618.502616][T10766] which lock already depends on the new lock.
[ 1618.502616][T10766] 
[ 1618.513067][T10766] 
[ 1618.513067][T10766] the existing dependency chain (in reverse order) is:
[ 1618.522121][T10766] 
[ 1618.522121][T10766] -> #3 (&oi->ip_xattr_sem){++++}-{3:3}:
[ 1618.530019][T10766]        down_read+0x42/0x2d0
[ 1618.534771][T10766]        ocfs2_init_acl+0x307/0x770
[ 1618.540054][T10766]        ocfs2_mknod+0x15e8/0x25b0
[ 1618.545211][T10766]        vfs_mknod+0x424/0x4c0
[ 1618.550007][T10766]        do_mknodat+0x356/0x4d0
[ 1618.554895][T10766]        __x64_sys_mknodat+0xa5/0xc0
[ 1618.560216][T10766]        do_syscall_64+0x4c/0xa0
[ 1618.565188][T10766]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1618.571639][T10766] 
[ 1618.571639][T10766] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}:
[ 1618.580188][T10766]        down_read+0x42/0x2d0
[ 1618.584908][T10766]        ocfs2_start_trans+0x3a4/0x6f0
[ 1618.590398][T10766]        ocfs2_modify_bh+0xe0/0x4c0
[ 1618.595641][T10766]        ocfs2_local_read_info+0x13c8/0x1750
[ 1618.601650][T10766]        dquot_load_quota_sb+0x756/0xac0
[ 1618.607340][T10766]        dquot_load_quota_inode+0x2d8/0x5d0
[ 1618.613284][T10766]        ocfs2_enable_quotas+0x1c5/0x490
[ 1618.618959][T10766]        ocfs2_fill_super+0x43b5/0x5090
[ 1618.624533][T10766]        mount_bdev+0x287/0x3c0
[ 1618.629425][T10766]        legacy_get_tree+0xe6/0x180
[ 1618.634666][T10766]        vfs_get_tree+0x88/0x270
[ 1618.639652][T10766]        do_new_mount+0x24a/0xa40
[ 1618.644711][T10766]        __se_sys_mount+0x2e3/0x3d0
[ 1618.649936][T10766]        do_syscall_64+0x4c/0xa0
[ 1618.654904][T10766]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1618.661351][T10766] 
[ 1618.661351][T10766] -> #1 (sb_internal#2){.+.+}-{0:0}:
[ 1618.668858][T10766]        ocfs2_start_trans+0x2a5/0x6f0
[ 1618.674353][T10766]        ocfs2_remove_btree_range+0x845/0x15e0
[ 1618.680535][T10766]        ocfs2_commit_truncate+0xb8f/0x1de0
[ 1618.686481][T10766]        ocfs2_evict_inode+0x10eb/0x4630
[ 1618.692206][T10766]        evict+0x4c9/0x8d0
[ 1618.697064][T10766]        do_unlinkat+0x388/0x580
[ 1618.702042][T10766]        __x64_sys_unlinkat+0xd1/0xe0
[ 1618.707448][T10766]        do_syscall_64+0x4c/0xa0
[ 1618.712416][T10766]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1618.718880][T10766] 
[ 1618.718880][T10766] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7){+.+.}-{3:3}:
[ 1618.729448][T10766]        __lock_acquire+0x2d07/0x7d10
[ 1618.734870][T10766]        lock_acquire+0x1bb/0x4a0
[ 1618.739927][T10766]        down_write+0x36/0x60
[ 1618.744635][T10766]        ocfs2_xattr_set+0xba0/0x13e0
[ 1618.750032][T10766]        __vfs_setxattr+0x3e0/0x420
[ 1618.755278][T10766]        __vfs_setxattr_noperm+0x129/0x5e0
[ 1618.761112][T10766]        vfs_setxattr+0x167/0x2e0
[ 1618.766171][T10766]        setxattr+0x346/0x360
[ 1618.770877][T10766]        path_setxattr+0x147/0x290
[ 1618.776030][T10766]        __x64_sys_setxattr+0xb7/0xd0
[ 1618.781430][T10766]        do_syscall_64+0x4c/0xa0
[ 1618.786398][T10766]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1618.792947][T10766] 
[ 1618.792947][T10766] other info that might help us debug this:
[ 1618.792947][T10766] 
[ 1618.803576][T10766] Chain exists of:
[ 1618.803576][T10766]   &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7 --> &journal->j_trans_barrier --> &oi->ip_xattr_sem
[ 1618.803576][T10766] 
[ 1618.820568][T10766]  Possible unsafe locking scenario:
[ 1618.820568][T10766] 
[ 1618.828036][T10766]        CPU0                    CPU1
[ 1618.833421][T10766]        ----                    ----
[ 1618.838806][T10766]   lock(&oi->ip_xattr_sem);
[ 1618.843430][T10766]                                lock(&journal->j_trans_barrier);
[ 1618.851265][T10766]                                lock(&oi->ip_xattr_sem);
[ 1618.858417][T10766]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7);
[ 1618.865758][T10766] 
[ 1618.865758][T10766]  *** DEADLOCK ***
[ 1618.865758][T10766] 
[ 1618.873932][T10766] 3 locks held by syz.5.15371/10766:
[ 1618.879238][T10766]  #0: ffff88806637a460 (sb_writers#17){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90
[ 1618.888569][T10766]  #1: ffff88804e9bd108 (&sb->s_type->i_mutex_key#44){+.+.}-{3:3}, at: vfs_setxattr+0x140/0x2e0
[ 1618.899060][T10766]  #2: ffff88804e9bce38 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x472/0x13e0
[ 1618.909027][T10766] 
[ 1618.909027][T10766] stack backtrace:
[ 1618.914951][T10766] CPU: 1 PID: 10766 Comm: syz.5.15371 Not tainted syzkaller #0
[ 1618.922520][T10766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1618.932624][T10766] Call Trace:
[ 1618.935937][T10766]  <TASK>
[ 1618.938928][T10766]  dump_stack_lvl+0x188/0x24e
[ 1618.943647][T10766]  ? load_image+0x400/0x400
[ 1618.948193][T10766]  ? show_regs_print_info+0x12/0x12
[ 1618.953440][T10766]  ? print_circular_bug+0x12b/0x1a0
[ 1618.958691][T10766]  check_noncircular+0x296/0x330
[ 1618.963669][T10766]  ? look_up_lock_class+0x75/0x140
[ 1618.968807][T10766]  ? add_chain_block+0x940/0x940
[ 1618.973822][T10766]  ? lockdep_lock+0xf1/0x1f0
[ 1618.978450][T10766]  ? lockdep_unlock+0x142/0x2e0
[ 1618.983334][T10766]  ? _find_first_zero_bit+0xcf/0x100
[ 1618.988665][T10766]  __lock_acquire+0x2d07/0x7d10
[ 1618.993560][T10766]  ? verify_lock_unused+0x140/0x140
[ 1618.998802][T10766]  ? ocfs2_downconvert_lock+0x530/0x530
[ 1619.004386][T10766]  ? verify_lock_unused+0x140/0x140
[ 1619.009617][T10766]  ? ocfs2_inode_lock_tracker+0x433/0x700
[ 1619.015375][T10766]  ? do_raw_spin_lock+0x128/0x2f0
[ 1619.020434][T10766]  lock_acquire+0x1bb/0x4a0
[ 1619.025010][T10766]  ? ocfs2_xattr_set+0xba0/0x13e0
[ 1619.030088][T10766]  ? _raw_spin_unlock+0x24/0x40
[ 1619.034989][T10766]  ? ocfs2_xattr_block_find+0x157/0x4d0
[ 1619.040599][T10766]  ? __might_sleep+0xd0/0xd0
[ 1619.045232][T10766]  ? read_lock_is_recursive+0x10/0x10
[ 1619.050658][T10766]  ? rwsem_write_trylock+0x135/0x1c0
[ 1619.056007][T10766]  ? ocfs2_xattr_ibody_find+0x7c0/0x7c0
[ 1619.061617][T10766]  ? ocfs2_xattr_ibody_find+0xcb/0x7c0
[ 1619.067140][T10766]  down_write+0x36/0x60
[ 1619.071458][T10766]  ? ocfs2_xattr_set+0xba0/0x13e0
[ 1619.076525][T10766]  ocfs2_xattr_set+0xba0/0x13e0
[ 1619.081438][T10766]  ? __ocfs2_xattr_set_handle+0xf30/0xf30
[ 1619.087223][T10766]  ? aa_get_newest_label+0xf9/0x5b0
[ 1619.092472][T10766]  ? posix_xattr_acl+0x8f/0xb0
[ 1619.097283][T10766]  ? evm_protect_xattr+0x333/0x9d0
[ 1619.102434][T10766]  ? ocfs2_xattr_trusted_get+0x40/0x40
[ 1619.107937][T10766]  __vfs_setxattr+0x3e0/0x420
[ 1619.112677][T10766]  __vfs_setxattr_noperm+0x129/0x5e0
[ 1619.118012][T10766]  vfs_setxattr+0x167/0x2e0
[ 1619.122550][T10766]  ? xattr_permission+0x500/0x500
[ 1619.127616][T10766]  ? _copy_from_user+0x10b/0x170
[ 1619.132593][T10766]  ? setxattr+0x2ce/0x360
[ 1619.136958][T10766]  setxattr+0x346/0x360
[ 1619.141150][T10766]  ? path_setxattr+0x290/0x290
[ 1619.145975][T10766]  ? __mnt_want_write+0x21f/0x2a0
[ 1619.151039][T10766]  path_setxattr+0x147/0x290
[ 1619.155685][T10766]  ? simple_xattr_list_add+0xf0/0xf0
[ 1619.161037][T10766]  ? lock_chain_count+0x20/0x20
[ 1619.165940][T10766]  __x64_sys_setxattr+0xb7/0xd0
[ 1619.170870][T10766]  do_syscall_64+0x4c/0xa0
[ 1619.175329][T10766]  ? clear_bhb_loop+0x60/0xb0
[ 1619.180046][T10766]  ? clear_bhb_loop+0x60/0xb0
[ 1619.184755][T10766]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1619.190686][T10766] RIP: 0033:0x7f9e4599c819
[ 1619.195142][T10766] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1619.214786][T10766] RSP: 002b:00007f9e468b8028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[ 1619.223241][T10766] RAX: ffffffffffffffda RBX: 00007f9e45c16090 RCX: 00007f9e4599c819
[ 1619.231252][T10766] RDX: 0000200000000200 RSI: 00002000000001c0 RDI: 0000200000000000
[ 1619.239255][T10766] RBP: 00007f9e45a32c91 R08: 0000000000000000 R09: 0000000000000000
[ 1619.247253][T10766] R10: 0000000000000841 R11: 0000000000000246 R12: 0000000000000000
[ 1619.255252][T10766] R13: 00007f9e45c16128 R14: 00007f9e45c16090 R15: 00007ffc1c254178
[ 1619.263260][T10766]  </TASK>
[ 1619.266362][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1619.345189][T10746] F2FS-fs (loop4): Start checkpoint disabled!
[ 1619.384857][T10746] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[ 1619.455276][ T4619] ocfs2: Unmounting device (7,5) on (node local)
[ 1619.699431][T31235] Bluetooth: hci0: command 0x0419 tx timeout
[ 1620.279382][ T7381] team0 (unregistering): Port device team_slave_1 removed
[ 1620.355332][ T7381] team0 (unregistering): Port device team_slave_0 removed
[ 1620.427576][ T7381] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1620.511284][ T7381] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1621.134834][ T7381] bond0 (unregistering): Released all slaves
[ 1621.986520][T10620] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1621.997716][T10620] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1622.011495][T10620] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1622.021567][T10620] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1622.085549][T10620] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1622.102541][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1622.115470][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1622.126117][T10620] 8021q: adding VLAN 0 to HW filter on device team0
[ 1622.139037][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1622.150974][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1622.161593][ T7381] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1622.168752][ T7381] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1622.197347][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1622.212620][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1622.221875][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1622.230679][ T7381] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1622.237846][ T7381] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1622.247291][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1622.259870][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1622.282163][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1622.291355][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1622.301637][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1622.321378][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1622.332616][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1622.346438][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1622.357329][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1622.371320][T10620] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1622.385605][T10620] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1622.394793][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1622.406480][ T7381] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1622.633095][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1622.651209][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1622.663681][T10620] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1622.992388][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1623.004662][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1623.041049][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1623.050214][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1623.061573][T10620] device veth0_vlan entered promiscuous mode
[ 1623.070983][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1623.080016][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1623.103017][T10620] device veth1_vlan entered promiscuous mode
[ 1623.153186][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1623.162581][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1623.171295][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1623.182028][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1623.193549][T10620] device veth0_macvtap entered promiscuous mode
[ 1623.210902][T10620] device veth1_macvtap entered promiscuous mode
[ 1623.230018][T10620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1623.245018][T10620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1623.255322][T10620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1623.267251][T10620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1623.277448][T10620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1623.288976][T10620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1623.301255][T10620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1623.312140][T10620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1623.325448][T10620] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1623.333868][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1623.349966][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1623.368698][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1623.378541][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1623.396792][T10620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1623.410754][T10620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1623.421172][T10620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1623.431722][T10620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1623.441867][T10620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1623.452717][T10620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1623.462973][T10620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1623.476731][T10620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1623.489634][T10620] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1623.498737][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1623.510741][ T7384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1623.523416][T10620] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1623.533951][T10620] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1623.545384][T10620] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1623.555794][T10620] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1623.595708][T10620] ieee80211 phy57: Selected rate control algorithm 'minstrel_ht'
[ 1623.625030][ T7384] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1623.636056][T10620] ieee80211 phy58: Selected rate control algorithm 'minstrel_ht'
[ 1623.644440][ T7384] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1623.658635][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1623.680996][ T4334] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1623.701297][ T4334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1623.708832][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready