last executing test programs:

20m31.049724607s ago: executing program 2 (id=2680):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x11, @loopback, 0x0, 0x0, 'lblcr\x00', 0x32, 0x0, 0xfffffffc}, 0x2c)

20m30.475946351s ago: executing program 2 (id=2685):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000180), 0x4)

20m29.995423454s ago: executing program 2 (id=2687):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='tracefs\x00', 0x0, &(0x7f0000000180)='gid=1\x00\x1c\x00\x00\x00m\xbe\xd7\xa9:\n\xf9\b\rk[\xa1\xcc\xd6\xa28|5}(\x06l\xa8\x86di\xf3vJ,S.\xc3\x9b\xaaNj0\xef\x810EZ\xb6\x16\x88AZg`\xee\xe2\x93r\xd7\xa3v\x1f\xdb\x04\xd1\xe0\xabR \xeb\x80\r\x1b\x17\x0e\r\x93<T\xea\xab\x19\xed\xfd\x8c-\xd4\x10\xb8\xfc\xf7F\a\x00\x00\x00W\x02\xa2\x1ed\x1fe\xd4\xec\xe8\v(\rn\x82\xa6W\x1a\xa8\xbd\x1a\x88\x8b\xa2?\x9c\x00\x00\x00\x00\x00\x00\x00\x9c\x83\xbd\xd7|\x10\x9c\xdf~\xcc\xd3\xad\x16\xd1Y\xcf\x01`\xd5\x0152\xa8E\xac\a\xd6a>K\xe6\xc3BFz\xba\x7f\xc0\x1e@\xe4\xd0\xea\x16\xaa-aR)\\\x16\x8b^>\xbf\x06p\xc8\x9b\xf0N:\x05F\xe7fJ\x9a8\xa4\xb0FA\x9a\xe9E\xf9GJaGTf\x0f\xec\xff\x00\xb4\x97\x86\xd1&\a\xb554\x86\xd7\xbdeY\xa6\x91\r@<q\x85\xf9\x8b\xe4I\xdf\r\xdd\x9f3)\xfc\x04c\xb2\xd1\xcb\x1a\xaeG\xeb/\x90\x873,\x0f\xe5\x0e\xcd\tI^^\xf5q\x9d`\x8b\xad\xd3\t<K,\x9a')

20m29.566022526s ago: executing program 2 (id=2691):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000480)={[{@discard}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@sys_tz}, {@keep_last_dots}, {}, {}, {@gid}, {@utf8}, {@sys_tz}, {@sys_tz}, {@time_offset={'time_offset', 0x3d, 0x4}}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}]}, 0xfe, 0x152d, &(0x7f00000034c0)="$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")
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333406, 0x0)

20m28.661570952s ago: executing program 2 (id=2694):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x64, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x28, 0x11, 0x0, 0x1, @quota={{0xa}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xac}}, 0x20008844)

20m27.822823049s ago: executing program 2 (id=2699):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001980)={0x18, 0x3, &(0x7f00000013c0)=@framed, &(0x7f0000001400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$OBJ_PIN_PROG(0x11, &(0x7f0000000240)=@generic={&(0x7f0000000000)='./file0\x00', r0}, 0x18)

20m26.53125946s ago: executing program 32 (id=2699):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001980)={0x18, 0x3, &(0x7f00000013c0)=@framed, &(0x7f0000001400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$OBJ_PIN_PROG(0x11, &(0x7f0000000240)=@generic={&(0x7f0000000000)='./file0\x00', r0}, 0x18)

13m39.506586685s ago: executing program 1 (id=5351):
r0 = msgget$private(0x0, 0x1c0)
msgctl$IPC_SET(r0, 0x1, &(0x7f0000258f88)={{0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x96}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})
msgsnd(r0, &(0x7f0000000180)=ANY=[@ANYRESHEX], 0x0, 0x800)

13m38.880476843s ago: executing program 1 (id=5356):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x802, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000040)='\b\x00\x00\x00', 0x4}, {0x0, 0x18}], 0x2)

13m38.169700355s ago: executing program 1 (id=5361):
r0 = inotify_init1(0x80000)
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x20000a2)
inotify_rm_watch(r0, 0x0)

13m37.482753587s ago: executing program 1 (id=5365):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x301c48a, &(0x7f0000004040)=ANY=[@ANYBLOB="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"], 0x6, 0x2d5, &(0x7f0000000680)="$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")
r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

13m37.018482749s ago: executing program 1 (id=5369):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f00000007c0)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x1}}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@measure}, {@smackfsfloor}, {@appraise_type}]}, 0xfd, 0x573, &(0x7f0000000240)="$eJzs3V9rW+UfAPDvSZP9636/djCGeiGDXTgZS9fWPxOEzUvR4UDvZ2izMpouo0nHWgduF+7GGxmCiAPxBXjv5fAN+CoGOhgyil6IUDnpSZe1Sf8tNbH5fOBsz5Nzkud58pzvyfOck/QEMLBOpv/kIl6OiK+SiJGWdfnIVp5c3W756e2pdEliZeXj35O4sO61kuz/4SzzUkT8/EXEmdzGcmuLS7OlSqU8n+XH6nM3xmqLS2evzZVmyjPl6xOTk+ffnJx45+23utbW1y//+e1HD98//+Wp5W9+fHzsfhIX42i2Lm1XF4q405o5Wfo7SxXi4roNx7tQWD9Jel0BdmUoi/NCpMeAkRjKoh7Y/z6PiBVgQCXiHwZUcxzQnNt3aR78n/HkvdUJ0Mb251fPjcShxtzoyHLy3Mwone+OdqH8tIyffntwP11i8/MQh7fIA+zInbsRcS6f33j8S7Lj3+6da5w83tz6Mgbt8wd66WE6/knuRGyI/9za+CfajH+G28Tubmwd/7nHXSimo3T8927b8e/aoWt0KMv9rzHmKyRXr1XK5yLi/xFxOgoH0/xm13POLz9a6bSudfyXLmn5zbFgVo/H+YPPP2e6VC+9SJtbPbkb8Urb8W+y1v9Jm/5P34/L2yzjRPnBq53Wbd3+vbXyQ8Rrbfv/2RWtZPPrk2ON/WGsuVds9Me9E790Kr/X7U/7/8jm7R9NWq/X1nZexveH/ip3Wrfb/f9A8kkjfSB77FapXp8fjziQfJgfXv/4xLPnNvPN7dP2nz7VPv432//Tyden22z/veP3Om7aD/0/vaP+33ni0Qeffdep/O31/xuN1Onske0c/7ZbwRd57wAAAAAAAKDf5CLiaCS54lo6lysWV7/fcTyO5CrVWv3M1erC9elo/FZ2NAq55pXukZbvQ4xn34dt5ifW5Scj4lhEfD10uJEvTlUr071uPAAAAAAAAAAAAAAAAAAAAPSJ4Q6//0/9OtTr2gF7rnFjg4O9rgXQC1ve8r8bd3oC+tKW8Q/sWzuPf2cGYL/w+Q+DS/zD4BL/MLi2G/+FkT2uCPCv8/kPg0v8AwAAAAAAAAAAAAAAAAAAAAAAAAAAQFddvnQpXVaWn96eSvPTNxcXZqs3z06Xa7PFuYWp4lR1/kZxplqdqZSLU9W5rV6vUq3eGJ+IhVtj9XKtPlZbXLoyV124Xr9yba40U75SLvhjwwAAAAAAAAAAAAAAAAAAALBBbXFptlSplOclOiYuRF9UYy8buGpXT8/3Syskupro8YEJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFr8EwAA//8DDjNQ")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file4\x00', 0x1018000, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file4'}}], [], 0x2c})

13m35.58409729s ago: executing program 1 (id=5374):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100009dea7840b418fbff7bdc01020301090212000100000000090401"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000008c0)={0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000780)={0x34, &(0x7f0000000580)={0x20, 0x16}, 0x0, 0x0, 0x0, 0x0, 0x0})

13m20.247402637s ago: executing program 33 (id=5374):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100009dea7840b418fbff7bdc01020301090212000100000000090401"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000008c0)={0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000780)={0x34, &(0x7f0000000580)={0x20, 0x16}, 0x0, 0x0, 0x0, 0x0, 0x0})

12m3.429039126s ago: executing program 5 (id=5820):
ioprio_set$pid(0x3, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001b80)=[{&(0x7f00000000c0)=""/92, 0x84}], 0x1, 0x62, 0xfd4c)

12m2.893266246s ago: executing program 5 (id=5825):
r0 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}})
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000006c0)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

12m1.620049793s ago: executing program 5 (id=5841):
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f00000000c0)=0x17)
pselect6(0x40, &(0x7f0000004600)={0x2, 0x0, 0x8, 0x7, 0xffffffffffffffe8, 0x401, 0xffffffff}, 0x0, &(0x7f0000004680)={0x9, 0xfff, 0xd3, 0x5, 0x7, 0x400, 0x9, 0xa1}, &(0x7f00000046c0)={0x0, 0x989680}, 0x0)

12m0.561105833s ago: executing program 5 (id=5835):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setresuid(0x0, 0xee00, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000000)=0x10000, 0x4)

11m59.954153207s ago: executing program 5 (id=5840):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f00000007c0)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x1}}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@measure}, {@smackfsfloor}, {@appraise_type}]}, 0xfd, 0x573, &(0x7f0000000240)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file4\x00', 0x1018000, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file4'}}], [], 0x2c})

11m58.50717228s ago: executing program 5 (id=5847):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'8255\x00', [0x4f27, 0x5, 0x2, 0x401, 0x1, 0xcc7, 0xfff, 0x5c952399, 0x5, 0x3ff, 0x802, 0x1600, 0x1, 0x1, 0x0, 0xe1cb, 0x6, 0x4, 0x3, 0x1, 0x80000089, 0xfffffffd, 0x0, 0xfffffff5, 0xffffeadb, 0x3, 0x3c, 0x8, 0x4, 0x8000000, 0x7]})

11m43.121832724s ago: executing program 34 (id=5847):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'8255\x00', [0x4f27, 0x5, 0x2, 0x401, 0x1, 0xcc7, 0xfff, 0x5c952399, 0x5, 0x3ff, 0x802, 0x1600, 0x1, 0x1, 0x0, 0xe1cb, 0x6, 0x4, 0x3, 0x1, 0x80000089, 0xfffffffd, 0x0, 0xfffffff5, 0xffffeadb, 0x3, 0x3c, 0x8, 0x4, 0x8000000, 0x7]})

26.446942687s ago: executing program 7 (id=9043):
r0 = syz_io_uring_setup(0x1dc7, &(0x7f0000000140)={0x0, 0xd5a8, 0x2, 0x1}, &(0x7f00000003c0), &(0x7f0000000100))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_io_uring_setup(0x3c5f, &(0x7f0000000340)={0x0, 0x1c, 0x27, 0x5, 0x372, 0x0, r0}, &(0x7f00000002c0), &(0x7f0000000300))

24.781740521s ago: executing program 7 (id=9052):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000900000087"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)

23.537275694s ago: executing program 7 (id=9059):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x200000c0, 0xffffffff, 0xfffffff8}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000001a00010029bd700008000000022000a20002"], 0x24}, 0x1, 0x0, 0x0, 0x20004014}, 0x0)

22.272634296s ago: executing program 7 (id=9066):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$nfs(&(0x7f00000001c0)='..\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x85000, 0x0)
umount2(&(0x7f0000000100)='./file0\x00', 0x7)

20.660423463s ago: executing program 7 (id=9074):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f00000000c0)=0x10011)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000040)=0x10000)

15.794593783s ago: executing program 7 (id=9092):
r0 = socket$phonet(0x23, 0x2, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='xfrm0\x00', 0x10)
sendto$phonet(r0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x23, 0x26, 0x8, 0x6}, 0x10)

13.552722911s ago: executing program 35 (id=9092):
r0 = socket$phonet(0x23, 0x2, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='xfrm0\x00', 0x10)
sendto$phonet(r0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x23, 0x26, 0x8, 0x6}, 0x10)

7.788982791s ago: executing program 0 (id=9115):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000000)={0xf2, 0xeb5, 0x9000, 0x6, 0x19, "24893329ddf7d1b9e13ede9a912cf147ca7430"})
write(r0, &(0x7f0000000440)="ca6282180bfb4638632623271375dd66058f819f2b9912ceed326ddc68df0842d8e23952a9f9b4693ff2c2b0d32a8425cca32c62d7c46fc5814ac61d046af5ffa8ba40de87a09f0462d70d", 0x4b)

7.194511031s ago: executing program 0 (id=9118):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000300)=0x7)
ioctl$TCSETA(r0, 0x8925, &(0x7f0000000100)={0x2, 0x0, 0x1, 0x0, 0x13, "31f40000f7ece2f4"})

6.144794799s ago: executing program 0 (id=9124):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x25, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @private2}}}, 0x90)

5.991375137s ago: executing program 4 (id=9125):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
pread64(r0, &(0x7f0000001600)=""/4073, 0xfe9, 0x12)

5.663973306s ago: executing program 6 (id=9127):
r0 = socket$inet(0x2, 0x2, 0x1)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x6e24, @empty}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000180)={@random="e33110495bfd", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00e1ff", 0x8, 0x3a, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, @local, {[], @echo_reply={0x81, 0x0, 0x0, 0x6e24, 0xf801}}}}}}, 0x0)

5.32553039s ago: executing program 4 (id=9128):
socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000140)={@local, @random="ce3500590a7f", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e23, 0x0, 0x8}}}}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000280)={@broadcast, @random="67eaa8fce250", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x2, 0x0, 0x24, 0x0, 0xe000, 0x3, 0x11, 0x0, @empty, @empty}, {0x4, 0x0, 0x10, 0x0, @opaque="3196b913fb8ebb82"}}}}}, 0x0)

5.078030227s ago: executing program 3 (id=9129):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x20008000}, 0x4)

5.070231236s ago: executing program 6 (id=9130):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040), 0x6)
ioctl$sock_bt_hci(r0, 0x400448e7, 0x0)

4.670500299s ago: executing program 0 (id=9131):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x60, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4041}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x2e, &(0x7f00000003c0)={&(0x7f00000000c0)=@newtaction={0x70, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_ctinfo={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c}, {0x4}, {0xc}, {0xc}}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x440c0}, 0x10)

4.64795605s ago: executing program 4 (id=9132):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000200000abc000000060a0b040000000000000000020000000900020073797a32000000000900010073797a300000000024000480200001800c000100636f756e74657200100002800c00024000000000000000076c0007"], 0xe4}}, 0x0)

4.307479567s ago: executing program 3 (id=9133):
unshare(0x20060400)
r0 = creat(&(0x7f0000000980)='./file0\x00', 0x4)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000b80)='*^(\x00', &(0x7f0000000bc0)="c72051ad2d", 0x5)

4.187698405s ago: executing program 6 (id=9134):
r0 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\x96\xa7f\x9ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\x15n\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z\t\x00\x00\x00\x00\x00\x00\x00\x9b\x01\xf9t\xbb\x1er\x04\xdb\xd3\xcd\xfd\xbdnC\xec#]\xbf\xa2\xa2H\x86\x86[8\x05\xfe\xdc\x11\x04\xa1u\x81', 0x0)
fsetxattr(r0, &(0x7f0000000040)=@known='user.incfs.metadata\x00', 0x0, 0x0, 0x0)
fsetxattr(r0, &(0x7f00000000c0)=@known='user.incfs.metadata\x00', 0x0, 0x0, 0x2)

3.914574189s ago: executing program 0 (id=9135):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x3f)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000300)=0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2)

3.861712438s ago: executing program 4 (id=9136):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a00010000000000000000001c000014"], 0x30}}, 0x0)

3.587561407s ago: executing program 3 (id=9137):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x48, 0x800)
ioctl$EVIOCGVERSION(r0, 0x80044501, 0x0)
readv(r0, &(0x7f0000000540)=[{&(0x7f0000000100)=""/22, 0x16}, {0x0}], 0x2)

3.482509061s ago: executing program 6 (id=9138):
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f0000000140), 0x0, 0x236, &(0x7f0000000300)="$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")
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r0, 0xc080661a, &(0x7f0000000000)={@id={0x2, 0x0, @auto="23461e524f0000000000000000000400"}})

2.978119284s ago: executing program 4 (id=9139):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2b, &(0x7f0000000340)={0x5, {{0x2, 0x4e20, @broadcast}}, {{0x2, 0x4e23, @remote}}}, 0x108)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000000340)=""/224, &(0x7f00000001c0)=0xe0)

2.813401899s ago: executing program 3 (id=9140):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000980)=ANY=[@ANYBLOB="1400000042000b06"], 0x14}}, 0x1000)
recvmmsg(r0, &(0x7f0000001140)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000480)=""/20, 0x14}, {&(0x7f00000001c0)=""/9, 0x9}, {&(0x7f0000000780)=""/126, 0x7e}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f0000000300)=""/5, 0x5}, {&(0x7f0000000340)=""/31, 0x1f}, {&(0x7f0000000840)=""/85, 0x55}], 0x7}, 0x3}], 0x1, 0x0, 0x0)

2.570301473s ago: executing program 0 (id=9141):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002bc0)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
syz_emit_ethernet(0x52, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd604dd318001306"], 0x0)

2.247623474s ago: executing program 6 (id=9142):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x80c480, &(0x7f0000000500)=ANY=[@ANYBLOB='time_offset=0x0000000000000006,discard,discard,allow_utime=00000000000000000000011,discard,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c757466382c757466382c6e616d65636173653d312c696f636861727365743d6b6f69382d72752c00124f338afc02b4ce0c9921e5ae39d291bc2ac4946af5b081e8aea944c0af0e3d75273eb48c51c14dbb722611e756585fb6885ffaf590c15d89d0c9b9ed0baed625ef385d113ca3da9853b1e30af3292633b20979af0cebe19908711500b9927853d3d320f42ecd0d110810fb93a59652b7ab98e4bf19edf7600519b108bb180d8257278d3f16528c1a72ce2f6b96e7"], 0x1, 0x1548, &(0x7f0000000880)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0/file1\x00', 0x200810, 0x0, 0x0, 0x0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x200)

2.019205742s ago: executing program 3 (id=9143):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000280)='./bus\x00', 0x5a00840, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x37d, &(0x7f0000001240)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000001280)=""/4089, 0xff9)

1.945388414s ago: executing program 4 (id=9144):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000004c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x0, "9df7"}, @main=@item_4={0x3, 0x0, 0xb}, @global=@item_4={0x3, 0x1, 0x2, "80fdab81"}, @global=@item_4={0x3, 0x1, 0x1, "9c1a85b8"}, @main=@item_4={0x3, 0x0, 0xb, "c83e2503"}, @main=@item_012={0x0, 0x0, 0x9}, @local=@item_4={0x3, 0x2, 0x2, "b09ea549"}, @main=@item_4={0x3, 0x0, 0x8, "429bf03b"}]}}, 0x0}, 0x0)

102.738146ms ago: executing program 6 (id=9145):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/zoneinfo\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)

0s ago: executing program 3 (id=9146):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000440)={{0x1, 0x1, 0x18, r0, {0x5}}, './file1/file0\x00'})

kernel console output (not intermixed with test programs):

0xe619d30d)
[ 1566.301992][T30322] exFAT-fs (loop7): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe65d9f0a, utbl_chksum : 0x7319d30d)
[ 1566.685438][T17543] Bluetooth: hci2: unexpected event for opcode 0x0405
[ 1567.547454][T30345] loop6: detected capacity change from 0 to 512
[ 1567.571456][T30348] loop4: detected capacity change from 0 to 128
[ 1567.652431][T30348] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1567.731769][T30347] loop7: detected capacity change from 0 to 1024
[ 1567.792992][T30345] EXT4-fs (loop6): 1 truncate cleaned up
[ 1567.826209][T30347] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1567.850681][T30345] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1567.913453][T30348] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1568.050104][T30347] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1568.072824][   T29] audit: type=1800 audit(1773434995.598:376): pid=30345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.7965" name="file1" dev="loop6" ino=15 res=0 errno=0
[ 1568.236263][T30347] EXT4-fs (loop7): Online resizing not supported with bigalloc
[ 1568.718707][  T131] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm kworker/u8:6: bg 0: block 465: padding at end of block bitmap is not set
[ 1568.834305][  T131] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1568.909478][  T131] EXT4-fs (loop6): This should not happen!! Data will be lost
[ 1568.909478][  T131] 
[ 1568.963393][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1568.971545][  T131] EXT4-fs (loop6): Total free blocks count 0
[ 1569.056572][  T131] EXT4-fs (loop6): Free/Dirty block details
[ 1569.113924][  T131] EXT4-fs (loop6): free_blocks=0
[ 1569.120991][  T131] EXT4-fs (loop6): dirty_blocks=4
[ 1569.174370][  T131] EXT4-fs (loop6): Block reservation details
[ 1569.201155][  T131] EXT4-fs (loop6): i_reserved_data_blocks=4
[ 1569.267673][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1569.749093][   T29] audit: type=1326 audit(1773434997.278:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30373 comm="syz.3.7972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff5f9c799 code=0x7ffc0000
[ 1569.971401][   T29] audit: type=1326 audit(1773434997.278:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30373 comm="syz.3.7972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff5f9c799 code=0x7ffc0000
[ 1570.132841][T30385] loop6: detected capacity change from 0 to 256
[ 1571.787648][T30405] loop3: detected capacity change from 0 to 1024
[ 1571.912893][T30410] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7982'.
[ 1572.056286][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.101455][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.273122][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.390977][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.435748][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.526144][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.630130][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.650340][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.663341][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.775559][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.854699][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.863744][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.915389][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1572.932924][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.011878][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.068897][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.168539][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.264651][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.272361][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.354932][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.363915][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.424837][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.432774][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.522892][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.543309][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.560396][T30432] loop7: detected capacity change from 0 to 764
[ 1573.613648][T30432] rock: directory entry would overflow storage
[ 1573.626522][T30432] rock: sig=0x4654, size=5, remaining=4
[ 1573.635350][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.643463][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.662800][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.725587][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.793553][T30405] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1573.894592][   T29] audit: type=1800 audit(1773435001.408:379): pid=30405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.7980" name="file1" dev="loop3" ino=20 res=0 errno=0
[ 1574.847508][T30455] loop6: detected capacity change from 0 to 128
[ 1575.112847][T30455] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1575.233991][T30455] ext4 filesystem being mounted at /495/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1575.961885][T19677] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1576.635641][T30481] netlink: 16 bytes leftover after parsing attributes in process `syz.6.8002'.
[ 1578.168761][T30503] loop4: detected capacity change from 0 to 256
[ 1578.302673][T30506] loop7: detected capacity change from 0 to 64
[ 1580.841244][   T29] audit: type=1326 audit(1773435008.368:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30551 comm="syz.7.8027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901579c799 code=0x7ffc0000
[ 1580.981984][   T29] audit: type=1326 audit(1773435008.488:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30551 comm="syz.7.8027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f901579c799 code=0x7ffc0000
[ 1581.161919][   T29] audit: type=1326 audit(1773435008.538:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30551 comm="syz.7.8027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901579c799 code=0x7ffc0000
[ 1583.244810][T30597] loop3: detected capacity change from 0 to 256
[ 1583.730824][T30597] FAT-fs (loop3): Directory bread(block 64) failed
[ 1583.770276][T30597] FAT-fs (loop3): Directory bread(block 65) failed
[ 1583.821224][T30597] FAT-fs (loop3): Directory bread(block 66) failed
[ 1583.850289][T30597] FAT-fs (loop3): Directory bread(block 67) failed
[ 1583.862776][T30597] FAT-fs (loop3): Directory bread(block 68) failed
[ 1583.895043][T30597] FAT-fs (loop3): Directory bread(block 69) failed
[ 1583.902029][T30597] FAT-fs (loop3): Directory bread(block 70) failed
[ 1583.965291][T30597] FAT-fs (loop3): Directory bread(block 71) failed
[ 1583.997772][T30611] netlink: 348 bytes leftover after parsing attributes in process `syz.7.8047'.
[ 1584.008095][T30597] FAT-fs (loop3): Directory bread(block 72) failed
[ 1584.068257][T30597] FAT-fs (loop3): Directory bread(block 73) failed
[ 1584.182803][T30614] netlink: 16178 bytes leftover after parsing attributes in process `syz.6.8048'.
[ 1586.078559][T30641] loop7: detected capacity change from 0 to 2048
[ 1586.255659][T30641] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1586.351786][T30658] netlink: 36 bytes leftover after parsing attributes in process `syz.4.8060'.
[ 1587.234790][T12122] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[ 1587.481411][T12122] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1587.507497][T12122] usb 4-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db
[ 1587.545478][T12122] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1587.598701][T12122] usb 4-1: config 0 descriptor??
[ 1587.986532][T12122] usb 4-1: string descriptor 0 read error: -71
[ 1588.008168][T12122] rndis_host 4-1:0.0: invalid descriptor buffer length
[ 1588.069424][T12122] usb 4-1: bad CDC descriptors
[ 1588.182756][T12122] usb 4-1: USB disconnect, device number 37
[ 1589.350161][T30717] netlink: 16 bytes leftover after parsing attributes in process `syz.6.8074'.
[ 1589.818072][T30724] loop3: detected capacity change from 0 to 256
[ 1589.969956][T30724] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[ 1590.090202][T30724] exFAT-fs (loop3): error, data valid size is invalid(-9223372036854774758)
[ 1590.148141][T30724] exFAT-fs (loop3): Filesystem has been set read-only
[ 1590.766941][T30738] loop4: detected capacity change from 0 to 2048
[ 1590.908578][T30738] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1592.001108][T30770] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -107 0
[ 1592.199495][T30773] netlink: 'syz.6.8092': attribute type 1 has an invalid length.
[ 1594.196107][T30808] loop4: detected capacity change from 0 to 1024
[ 1594.528197][T12136] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[ 1594.774509][T12136] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1594.783958][T12136] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1594.880492][T12136] usb 7-1: config 0 descriptor??
[ 1594.926490][T12136] cp210x 7-1:0.0: cp210x converter detected
[ 1594.961783][T30825] loop3: detected capacity change from 0 to 512
[ 1595.018129][T30825] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.8107: inode has both inline data and extents flags
[ 1595.055236][T30825] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1595.056588][T30825] EXT4-fs (loop3): Remounting filesystem read-only
[ 1595.068706][    C1] EXT4-fs (loop3): error count since last fsck: 1
[ 1595.068815][    C1] EXT4-fs (loop3): initial error at time 1773435022: ext4_orphan_get:1391: inode 15
[ 1595.068998][    C1] EXT4-fs (loop3): last error at time 1773435022: ext4_orphan_get:1391: inode 15
[ 1595.359167][T30825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1595.550063][T12136] cp210x 7-1:0.0: failed to get vendor val 0x370c size 73: -71
[ 1595.603981][T12136] cp210x 7-1:0.0: GPIO initialisation failed: -71
[ 1595.660749][T12136] usb 7-1: cp210x converter now attached to ttyUSB0
[ 1595.774450][T12136] usb 7-1: USB disconnect, device number 15
[ 1595.853554][T12136] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1595.962695][T12136] cp210x 7-1:0.0: device disconnected
[ 1596.046773][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1596.804565][T30858] loop4: detected capacity change from 0 to 4096
[ 1596.862581][T30858] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1596.906837][T30858] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1596.981907][T30858] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1597.312607][T30880] loop3: detected capacity change from 0 to 128
[ 1597.426489][ T5774] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1597.467532][T30880] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1597.588644][T30880] hpfs: filesystem error: improperly stopped
[ 1597.611456][T30880] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1597.710158][T30880] hpfs: You really don't want any checks? You are crazy...
[ 1597.734872][T30880] hpfs: hpfs_map_sector(): read error
[ 1597.740477][T30880] hpfs: code page support is disabled
[ 1597.792183][T30880] hpfs: hpfs_map_4sectors(): unaligned read
[ 1597.845899][T30880] hpfs: hpfs_map_4sectors(): unaligned read
[ 1597.852028][T30880] hpfs: filesystem error: unable to find root dir
[ 1597.906793][T30887] ieee802154 phy0 wpan0: encryption failed: -22
[ 1597.930496][T30885] netlink: 'syz.0.8118': attribute type 10 has an invalid length.
[ 1599.251575][T30903] loop4: detected capacity change from 0 to 4096
[ 1599.352386][T30903] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1599.394009][T30903] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 4096)
[ 1599.526670][T30917] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1601.062878][T30944] loop4: detected capacity change from 0 to 64
[ 1601.156041][T30947] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8138'.
[ 1601.200053][T30947] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[ 1601.660345][   T29] audit: type=1326 audit(1773435029.188:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30951 comm="syz.0.8139" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f84fa39c799 code=0x0
[ 1601.912965][T30962] loop4: detected capacity change from 0 to 256
[ 1601.922941][T30962] exfat: Deprecated parameter 'utf8'
[ 1601.957805][T30962] exfat: Deprecated parameter 'namecase'
[ 1601.965912][T30962] exfat: Deprecated parameter 'namecase'
[ 1602.028360][T30962] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1602.877307][T12136] usb 4-1: new full-speed USB device number 38 using dummy_hcd
[ 1603.082842][T12136] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1603.169615][T12136] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1603.240860][T12136] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 65535, setting to 64
[ 1603.305557][T12136] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[ 1603.335588][T12136] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1603.357931][T12136] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1603.382040][T12136] usb 4-1: Manufacturer: syz
[ 1603.461018][T12136] usb 4-1: config 0 descriptor??
[ 1603.822992][T30994] loop4: detected capacity change from 0 to 512
[ 1603.926799][T30985] loop6: detected capacity change from 0 to 4096
[ 1603.991732][T30994] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1605.026645][T31004] loop7: detected capacity change from 0 to 32768
[ 1605.048710][T31004] (syz.7.8151,31004,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1605.063445][T31004] (syz.7.8151,31004,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1605.081217][T12136] rc_core: IR keymap rc-hauppauge not found
[ 1605.087868][T12136] Registered IR keymap rc-empty
[ 1605.094027][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1605.108301][T31004] (syz.7.8151,31004,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x656d756e, computed 0x6ffed392. Applying ECC.
[ 1605.122383][T31004] (syz.7.8151,31004,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x656d756e, computed 0xb3a26753
[ 1605.140825][T31004] (syz.7.8151,31004,0):ocfs2_validate_dir_block:465 ERROR: Checksum failed for dinode 288
[ 1605.151296][T31004] (syz.7.8151,31004,0):ocfs2_read_virt_blocks:1037 ERROR: status = -5
[ 1605.159961][T31004] (syz.7.8151,31004,0):ocfs2_read_dir_block:524 ERROR: status = -5
[ 1605.171209][T31004] (syz.7.8151,31004,0):ocfs2_find_entry_el:741 ERROR: reading directory 18, offset 0
[ 1605.181684][T31004] (syz.7.8151,31004,0):ocfs2_init_global_system_inodes:465 ERROR: status = -22
[ 1605.191001][T31004] (syz.7.8151,31004,0):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs?
[ 1605.191199][T31004] (syz.7.8151,31004,0):ocfs2_init_global_system_inodes:476 ERROR: status = -22
[ 1605.216203][T31004] (syz.7.8151,31004,0):ocfs2_initialize_super:2198 ERROR: status = -22
[ 1605.227745][T31004] (syz.7.8151,31004,0):ocfs2_fill_super:1177 ERROR: status = -22
[ 1605.246333][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1605.255579][T30985] ntfs3(loop6): ino=21, "file1" mmap(write) compressed not supported
[ 1605.350284][T12136] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[ 1605.451430][T12136] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input41
[ 1605.540433][ T5774] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1605.599848][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1605.687724][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1605.697625][   T29] audit: type=1326 audit(1773435033.228:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31011 comm="syz.0.8153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1605.775052][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1605.835582][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1605.898387][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1605.946432][   T29] audit: type=1326 audit(1773435033.278:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31011 comm="syz.0.8153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1606.015835][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1606.086303][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1606.116928][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1606.145862][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1606.187598][T12136] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1606.273835][T12136] mceusb 4-1:0.0: Registered ࠌ with mce emulator interface version 1
[ 1606.282653][T12136] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1606.485380][T12136] usb 4-1: USB disconnect, device number 38
[ 1606.666758][T31033] bridge0: entered allmulticast mode
[ 1607.310995][T31054] loop7: detected capacity change from 0 to 512
[ 1607.383601][T31054] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1607.621709][T31054] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1607.745078][T31054] ext4 filesystem being mounted at /418/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1607.971902][T31070] EXT4-fs error (device loop7): __ext4_new_inode:1279: comm syz.7.8159: failed to insert inode 16: doubly allocated?
[ 1609.212058][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1609.259388][T31073] loop4: detected capacity change from 0 to 32768
[ 1609.360334][T31081] loop6: detected capacity change from 0 to 1024
[ 1610.294753][T31093] netlink: 'syz.3.8168': attribute type 1 has an invalid length.
[ 1611.959479][T31120] loop3: detected capacity change from 0 to 1024
[ 1612.001687][T31120] EXT4-fs: Ignoring removed i_version option
[ 1612.030606][T31120] EXT4-fs: inline encryption not supported
[ 1612.068220][T31120] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1612.172452][T31120] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1612.996681][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1614.584402][T29571] Bluetooth: hci4: command 0x0405 tx timeout
[ 1614.992627][T31167] binder_alloc: binder_alloc_mmap_handler: 31163 200000ffd000-200001000000 already mapped failed -16
[ 1615.788909][T31168] loop7: detected capacity change from 0 to 32768
[ 1615.799375][T31168] xfs: Deprecated parameter 'noikeep'
[ 1615.805254][T31168] XFS: noikeep mount option is deprecated.
[ 1615.880815][T31168] XFS (loop7): DAX unsupported by block device. Turning off DAX.
[ 1615.894670][T31168] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1616.081588][T31168] XFS (loop7): Ending clean mount
[ 1616.117899][T31168] XFS (loop7): Quotacheck needed: Please wait.
[ 1616.280475][T31168] XFS (loop7): Quotacheck: Done.
[ 1616.433961][T21939] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1616.610302][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1616.617280][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1617.031403][T12136] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[ 1617.287686][T12136] usb 5-1: config index 0 descriptor too short (expected 85, got 72)
[ 1617.333812][T12136] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1617.381831][T12136] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1617.413652][T12136] usb 5-1: Product: syz
[ 1617.452867][T12136] usb 5-1: Manufacturer: syz
[ 1617.473990][T12136] usb 5-1: SerialNumber: syz
[ 1617.597789][T12136] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1617.779028][T12151] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1618.582618][   T40] usb 5-1: USB disconnect, device number 46
[ 1618.829201][T31218] loop6: detected capacity change from 0 to 4096
[ 1619.160264][T12151] usb 5-1: Service connection timeout for: 256
[ 1619.205067][T12151] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services
[ 1619.267115][T12151] ath9k_htc: Failed to initialize the device
[ 1619.324831][   T40] usb 5-1: ath9k_htc: USB layer deinitialized
[ 1619.538838][T31218] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1620.344613][T17543] Bluetooth: hci4: command 0x0405 tx timeout
[ 1620.820768][   T40] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[ 1621.056372][   T40] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1621.098018][   T40] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1621.134744][   T40] usb 7-1: New USB device found, idVendor=172f, idProduct=0501, bcdDevice= 0.00
[ 1621.155784][   T40] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1621.235780][   T40] usb 7-1: config 0 descriptor??
[ 1621.949128][   T40] waltop 0003:172F:0501.001D: unbalanced collection at end of report description
[ 1622.175886][   T40] waltop 0003:172F:0501.001D: probe with driver waltop failed with error -22
[ 1622.314531][   T40] usb 7-1: USB disconnect, device number 16
[ 1622.503355][T31276] loop4: detected capacity change from 0 to 32768
[ 1622.555142][T31276] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1622.563673][T31276] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1622.615035][T31276] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 19 (type: exp=5, found=4), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 1622.634193][T31276] CPU: 0 UID: 0 PID: 31276 Comm: syz.4.8218 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1622.634382][T31276] Tainted: [L]=SOFTLOCKUP
[ 1622.634439][T31276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1622.634539][T31276] Call Trace:
[ 1622.634596][T31276]  <TASK>
[ 1622.634654][T31276]  __dump_stack+0x26/0x30
[ 1622.634934][T31276]  dump_stack_lvl+0x14c/0x1c0
[ 1622.635116][T31276]  dump_stack+0x1e/0x25
[ 1622.635297][T31276]  gfs2_withdraw+0xd5/0x270
[ 1622.635663][T31276]  gfs2_metatype_check_ii+0x113/0x140
[ 1622.635883][T31276]  gfs2_meta_buffer+0x4b3/0x590
[ 1622.636129][T31276]  __gfs2_iomap_get+0xf1c/0x2230
[ 1622.636442][T31276]  gfs2_block_map+0x286/0xde0
[ 1622.636701][T31276]  ? kmsan_get_metadata+0xf1/0x160
[ 1622.636992][T31276]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1622.637224][T31276]  gfs2_write_alloc_required+0x4fc/0x6d0
[ 1622.637504][T31276]  gfs2_jdesc_check+0x33b/0x440
[ 1622.637687][T31276]  init_journal+0x1380/0x3970
[ 1622.637931][T31276]  ? init_inodes+0x124/0x510
[ 1622.638147][T31276]  ? init_inodes+0x124/0x510
[ 1622.638346][T31276]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1622.638581][T31276]  init_inodes+0x124/0x510
[ 1622.638790][T31276]  gfs2_fill_super+0x3518/0x3ff0
[ 1622.639000][T31276]  ? init_locking+0xed/0x500
[ 1622.639245][T31276]  get_tree_bdev_flags+0x6e6/0x920
[ 1622.639496][T31276]  ? __pfx_gfs2_fill_super+0x10/0x10
[ 1622.639701][T31276]  ? __pfx_gfs2_fill_super+0x10/0x10
[ 1622.639897][T31276]  ? __pfx_gfs2_get_tree+0x10/0x10
[ 1622.640098][T31276]  get_tree_bdev+0x38/0x50
[ 1622.640289][T31276]  gfs2_get_tree+0x57/0x350
[ 1622.640517][T31276]  ? __pfx_gfs2_get_tree+0x10/0x10
[ 1622.640717][T31276]  vfs_get_tree+0xb3/0x5d0
[ 1622.640911][T31276]  do_new_mount+0x885/0x1dd0
[ 1622.641234][T31276]  ? apparmor_capable+0x2a2/0x380
[ 1622.641558][T31276]  ? kmsan_get_metadata+0xf1/0x160
[ 1622.641773][T31276]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1622.642019][T31276]  path_mount+0x7a2/0x20b0
[ 1622.642243][T31276]  ? user_path_at+0x1fc/0x330
[ 1622.642493][T31276]  __se_sys_mount+0x704/0x7f0
[ 1622.642644][T31276]  ? kmsan_get_metadata+0xf1/0x160
[ 1622.642889][T31276]  __x64_sys_mount+0xe4/0x150
[ 1622.643050][T31276]  x64_sys_call+0x39f0/0x3ea0
[ 1622.643265][T31276]  do_syscall_64+0x134/0xf80
[ 1622.643623][T31276]  ? clear_bhb_loop+0x50/0xa0
[ 1622.643787][T31276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1622.643951][T31276] RIP: 0033:0x7fb7ebb9da0a
[ 1622.644074][T31276] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1622.644205][T31276] RSP: 002b:00007fb7ec99fe58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1622.644345][T31276] RAX: ffffffffffffffda RBX: 00007fb7ec99fee0 RCX: 00007fb7ebb9da0a
[ 1622.644453][T31276] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007fb7ec99fea0
[ 1622.644587][T31276] RBP: 0000200000000400 R08: 00007fb7ec99fee0 R09: 0000000000210401
[ 1622.644692][T31276] R10: 0000000000210401 R11: 0000000000000246 R12: 0000200000012500
[ 1622.644794][T31276] R13: 00007fb7ec99fea0 R14: 000000000001260b R15: 0000200000000500
[ 1622.644939][T31276]  </TASK>
[ 1622.963525][T31276] gfs2: fsid=syz:syz.0: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2
[ 1622.973753][T31276] gfs2: fsid=syz:syz.0:  H: s:SH f:eEcH e:0 p:0 [(none)] init_inodes+0x124/0x510
[ 1622.983384][T31276] gfs2: fsid=syz:syz.0:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 1622.996265][T31276] gfs2: fsid=syz:syz.0: my journal (0) is bad: -5
[ 1624.819190][T31326] loop6: detected capacity change from 0 to 256
[ 1624.869848][T31326] exfat: Deprecated parameter 'namecase'
[ 1625.039482][T31326] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[ 1626.168482][T31351] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8231'.
[ 1627.247405][T31366] loop6: detected capacity change from 0 to 256
[ 1627.271299][T31361] loop4: detected capacity change from 0 to 2048
[ 1627.439846][T31373] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1627.473439][T31366] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d)
[ 1627.580018][T31371] loop3: detected capacity change from 0 to 1024
[ 1627.592999][T31361] NILFS error (device loop4): nilfs_dotdot: directory #12 missing '.'
[ 1627.614029][T31371] EXT4-fs (loop3): filesystem is read-only
[ 1627.661920][T31361] Remounting filesystem read-only
[ 1627.681752][T31371] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[ 1627.724718][T31371] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (11891!=20869)
[ 1627.765216][T31371] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[ 1627.815049][T31371] EXT4-fs error (device loop3): ext4_get_journal_inode:5863: comm syz.3.8239: inode #1: comm syz.3.8239: iget: illegal inode #
[ 1627.924560][T31371] loop3: lost filesystem error report for type 5 error -117
[ 1627.934350][    C1] EXT4-fs (loop3): error count since last fsck: 1
[ 1627.948670][    C1] EXT4-fs (loop3): initial error at time 1773435055: ext4_get_journal_inode:5863
[ 1627.958200][    C1] EXT4-fs (loop3): last error at time 1773435055: ext4_get_journal_inode:5863
[ 1627.969943][T31371] EXT4-fs (loop3): no journal found
[ 1628.024898][T31371] EXT4-fs (loop3): can't get journal size
[ 1628.083588][T31371] EXT4-fs error (device loop3): __ext4_fill_super:5563: inode #2: comm syz.3.8239: iget: special inode unallocated
[ 1628.124867][T31371] loop3: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[ 1628.154529][T31371] EXT4-fs (loop3): get root inode failed
[ 1628.200921][ T5774] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[ 1628.280712][T31371] EXT4-fs (loop3): mount failed
[ 1633.597577][T31486] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8272'.
[ 1633.814935][T12151] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[ 1634.032276][T12151] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1634.073847][T12151] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1634.141499][T12151] usb 7-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[ 1634.153513][T12151] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1634.246990][T12151] usb 7-1: config 0 descriptor??
[ 1634.812704][T12151] hkems 0003:2006:0118.001E: item fetching failed at offset 5/7
[ 1634.861427][T12151] hkems 0003:2006:0118.001E: parse failed
[ 1634.878489][T12151] hkems 0003:2006:0118.001E: probe with driver hkems failed with error -22
[ 1634.909158][   T40] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[ 1635.017993][T12151] usb 7-1: USB disconnect, device number 17
[ 1635.134508][   T40] usb 8-1: Using ep0 maxpacket: 8
[ 1635.228556][   T40] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1635.271832][   T40] usb 8-1: New USB device found, idVendor=0421, idProduct=798f, bcdDevice=86.54
[ 1635.310647][   T40] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1635.325051][   T40] usb 8-1: Product: syz
[ 1635.329499][   T40] usb 8-1: Manufacturer: syz
[ 1635.389203][   T40] usb 8-1: SerialNumber: syz
[ 1635.423840][   T40] usb 8-1: config 0 descriptor??
[ 1635.491719][   T40] cdc_phonet 8-1:0.0: skipping garbage
[ 1635.514322][   T40] cdc_phonet 8-1:0.0: invalid descriptor buffer length
[ 1635.533662][   T40] cdc_phonet 8-1:0.0: probe with driver cdc_phonet failed with error -22
[ 1635.699519][   T40] usb 8-1: USB disconnect, device number 12
[ 1636.358657][T31548] loop6: detected capacity change from 0 to 1024
[ 1636.593059][T31548] hfsplus: bad catalog entry type
[ 1636.898801][   T40] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1637.044338][ T4063] hfsplus: b-tree write err: -5, ino 25
[ 1637.050509][ T4063] hfsplus: b-tree write err: -5, ino 4
[ 1637.111058][   T40] usb 4-1: config 0 has an invalid descriptor of length 112, skipping remainder of the config
[ 1637.115269][ T4063] hfsplus: b-tree write err: -5, ino 2
[ 1637.154622][   T40] usb 4-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[ 1637.174523][   T40] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1637.218130][   T40] usb 4-1: config 0 descriptor??
[ 1637.263418][   T40] usb 4-1: bad CDC descriptors
[ 1637.549770][   T40] usb 4-1: USB disconnect, device number 39
[ 1637.913290][T31585] netlink: 40 bytes leftover after parsing attributes in process `syz.4.8292'.
[ 1637.980287][T31585] netlink: 40 bytes leftover after parsing attributes in process `syz.4.8292'.
[ 1638.598298][T31591] loop6: detected capacity change from 0 to 64
[ 1638.810597][T31591] hfs: bad catalog entry type 65535
[ 1640.038233][T31625] loop7: detected capacity change from 0 to 256
[ 1640.623400][T31636] loop6: detected capacity change from 0 to 1024
[ 1640.680493][T31636] EXT4-fs: Ignoring removed orlov option
[ 1640.799186][T31636] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[ 1640.991096][T31636] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1641.238638][T31651] netdevsim netdevsim0: Firmware load for '../file0/file0' refused, path contains '..' component
[ 1641.603101][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1641.691490][T31657] loop3: detected capacity change from 0 to 64
[ 1642.124766][T12151] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[ 1642.239026][T31007] hfs: request for non-existent node 1280 in B*Tree
[ 1642.327838][T31007] hfs: request for non-existent node 1280 in B*Tree
[ 1642.369828][T12151] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1642.412270][T12151] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1642.440622][T12151] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1642.508736][T12151] usb 8-1: New USB device found, idVendor=056a, idProduct=0010, bcdDevice= 0.00
[ 1642.594416][T12151] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1642.691192][T12151] usb 8-1: config 0 descriptor??
[ 1642.846186][T31681] loop3: detected capacity change from 0 to 64
[ 1643.311985][T12151] wacom 0003:056A:0010.001F: Unknown device_type for 'HID 056a:0010'. Assuming pen.
[ 1643.457852][T12151] wacom 0003:056A:0010.001F: hidraw0: USB HID v0.00 Device [HID 056a:0010] on usb-dummy_hcd.7-1/input0
[ 1643.597445][T12151] input: Wacom Graphire Pen as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:056A:0010.001F/input/input42
[ 1643.877407][T12151] usb 8-1: USB disconnect, device number 13
[ 1644.763143][T31702] fido_id[31702]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[ 1645.114860][T12122] usb 5-1: new full-speed USB device number 47 using dummy_hcd
[ 1645.173280][T31740] loop3: detected capacity change from 0 to 1024
[ 1645.339972][T12122] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1645.398841][T12122] usb 5-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[ 1645.423704][T12122] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1645.461459][T12122] usb 5-1: Product: syz
[ 1645.469795][T12122] usb 5-1: Manufacturer: syz
[ 1645.514676][T12122] usb 5-1: SerialNumber: syz
[ 1645.546419][T12122] usb 5-1: config 0 descriptor??
[ 1645.646547][T12122] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[ 1646.300103][T12122] gspca_pac7302: reg_w() failed i: ff v: 01 error -71
[ 1646.367214][T12122] gspca_pac7302 5-1:0.0: probe with driver gspca_pac7302 failed with error -71
[ 1646.442458][T12122] usb 5-1: USB disconnect, device number 47
[ 1646.635334][T31775] loop7: detected capacity change from 0 to 1024
[ 1646.802413][T31774] loop6: detected capacity change from 0 to 1024
[ 1646.864743][T31774] EXT4-fs: inline encryption not supported
[ 1647.101365][T31774] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1647.243751][T31788] random: crng reseeded on system resumption
[ 1647.448803][T31774] EXT4-fs: Ignoring removed orlov option
[ 1647.515695][T31774] EXT4-fs: can't change dax mount option while remounting
[ 1648.091025][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1648.419798][T31799] loop7: detected capacity change from 0 to 2048
[ 1648.541648][T31799] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1648.617529][   T29] audit: type=1326 audit(1773435076.148:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31808 comm="syz.0.8344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1648.643921][   T29] audit: type=1326 audit(1773435076.168:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31808 comm="syz.0.8344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1648.675803][T31799] ext4 filesystem being mounted at /457/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1648.719365][   T29] audit: type=1326 audit(1773435076.248:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31808 comm="syz.0.8344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1648.799343][T31799] EXT4-fs (loop7): resizing filesystem from 256 to 0 blocks
[ 1648.838348][   T29] audit: type=1326 audit(1773435076.248:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31808 comm="syz.0.8344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1648.880608][T31799] EXT4-fs warning (device loop7): ext4_resize_fs:2041: can't shrink FS - resize aborted
[ 1648.968738][   T29] audit: type=1326 audit(1773435076.248:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31808 comm="syz.0.8344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1649.038182][T31814] loop6: detected capacity change from 0 to 512
[ 1649.134829][   T29] audit: type=1326 audit(1773435076.248:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31808 comm="syz.0.8344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1649.308129][   T29] audit: type=1326 audit(1773435076.248:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31808 comm="syz.0.8344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1649.389725][T31814] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1649.449941][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1649.458294][T31814] EXT4-fs error (device loop6): ext4_readdir:225: inode #12: comm syz.6.8343: path /561/file0/file0: directory fails checksum at offset 0
[ 1649.507548][T31822] overlayfs: failed to resolve './file0': -40
[ 1649.842065][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1649.936290][T31823] loop4: detected capacity change from 0 to 2048
[ 1650.184487][T31823] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1650.395566][T31841] UDF-fs: error (device loop4): udf_verify_fi: directory (ino 1376) has entry where CRC length (32) does not match entry length (24)
[ 1650.464963][T31833] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1650.497222][T31834] loop3: detected capacity change from 0 to 1024
[ 1650.537920][T31833] team0: Device macvlan2 is already an upper device of the team interface
[ 1650.676873][T31834] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[ 1651.411396][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[ 1651.849793][T31868] loop3: detected capacity change from 0 to 256
[ 1652.215887][T31874] netlink: 'syz.0.8359': attribute type 10 has an invalid length.
[ 1652.424933][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1653.171508][T31902] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[ 1653.184615][T12151] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 1653.382217][T12151] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[ 1653.425388][T12151] usb 7-1: config 0 has no interface number 0
[ 1653.431776][T12151] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1653.485304][T12151] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1653.544744][T12151] usb 7-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1653.609620][T12151] usb 7-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00
[ 1653.645146][T12151] usb 7-1: New USB device strings: Mfr=0, Product=64, SerialNumber=0
[ 1653.704350][T12151] usb 7-1: Product: syz
[ 1653.752859][T12151] usb 7-1: config 0 descriptor??
[ 1654.280572][T12151] chicony 0003:04F2:1421.0020: unknown main item tag 0x3
[ 1654.304522][T12151] chicony 0003:04F2:1421.0020: report_id 2141495278 is invalid
[ 1654.323382][T12151] chicony 0003:04F2:1421.0020: item 0 4 1 8 parsing failed
[ 1654.362847][T12151] chicony 0003:04F2:1421.0020: Chicony hid parse failed: -22
[ 1654.392347][T12151] chicony 0003:04F2:1421.0020: probe with driver chicony failed with error -22
[ 1654.517799][T12151] usb 7-1: USB disconnect, device number 18
[ 1654.867918][T31940] loop4: detected capacity change from 0 to 256
[ 1655.111139][T31945] loop7: detected capacity change from 0 to 64
[ 1655.819077][T31950] loop3: detected capacity change from 0 to 2048
[ 1655.962364][T31950] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1656.274749][   T40] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[ 1656.481652][   T40] usb 8-1: Using ep0 maxpacket: 16
[ 1656.513908][   T40] usb 8-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1657.387133][T31975] loop6: detected capacity change from 0 to 32768
[ 1657.407915][T31975] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.8380 (31975)
[ 1657.437928][   T40] usb 8-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1657.449738][   T40] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1657.473238][   T40] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[ 1657.489119][   T40] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1657.553201][T31975] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1657.564381][T31975] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1657.576095][T31975] BTRFS error (device loop6): ignoredatacsums must be used with ro mount option
[ 1657.585764][T31975] BTRFS error (device loop6): open_ctree failed: -22
[ 1657.749153][   T40] usb 8-1: config 0 descriptor??
[ 1658.300416][   T40] nzxt-smart2 0003:1E71:2009.0021: collection stack underflow
[ 1658.375525][   T40] nzxt-smart2 0003:1E71:2009.0021: item 0 2 0 12 parsing failed
[ 1658.475018][   T40] nzxt-smart2 0003:1E71:2009.0021: probe with driver nzxt-smart2 failed with error -22
[ 1658.596324][   T40] usb 8-1: USB disconnect, device number 14
[ 1659.729525][T32026] gretap2: entered promiscuous mode
[ 1660.563059][   T29] audit: type=1326 audit(1773435088.078:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32033 comm="syz.6.8396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d99c799 code=0x7fc00000
[ 1661.049579][T32056] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[ 1661.320040][T32061] loop7: detected capacity change from 0 to 512
[ 1661.389538][T32061] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1661.514671][T32061] EXT4-fs error (device loop7): xattr_find_entry:337: inode #15: comm syz.7.8401: corrupted xattr entries
[ 1661.544467][T32061] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1661.554198][    C0] EXT4-fs (loop7): error count since last fsck: 1
[ 1661.570391][    C0] EXT4-fs (loop7): initial error at time 1773435089: xattr_find_entry:337: inode 15
[ 1661.580198][    C0] EXT4-fs (loop7): last error at time 1773435089: xattr_find_entry:337: inode 15
[ 1661.595175][T32061] EXT4-fs (loop7): Remounting filesystem read-only
[ 1661.664614][T32061] EXT4-fs (loop7): 1 truncate cleaned up
[ 1661.785041][T32061] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1661.810324][T32066] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8402'.
[ 1661.821464][T32053] loop4: detected capacity change from 0 to 8192
[ 1662.273164][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1663.488310][T32077] loop3: detected capacity change from 0 to 4096
[ 1663.779714][T32097] loop7: detected capacity change from 0 to 512
[ 1663.837228][T32097] EXT4-fs: Ignoring removed nobh option
[ 1663.897075][T32097] EXT4-fs: Ignoring removed bh option
[ 1664.014511][T32097] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[ 1664.030384][T32097] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.8409: invalid indirect mapped block 256 (level 1)
[ 1664.044905][T32097] loop7: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1664.054184][    C1] EXT4-fs (loop7): error count since last fsck: 1
[ 1664.070289][    C1] EXT4-fs (loop7): initial error at time 1773435091: ext4_free_branches:1023: inode 13
[ 1664.070444][T32097] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.8409: invalid indirect mapped block 2683928664 (level 1)
[ 1664.080459][    C1] EXT4-fs (loop7): last error at time 1773435091: ext4_free_branches:1023: inode 13
[ 1664.205506][T32097] loop7: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1664.207895][T32097] EXT4-fs (loop7): 1 truncate cleaned up
[ 1664.351636][T32097] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1664.455279][T32105] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:483: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[ 1664.588871][T32105] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:483: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[ 1664.711980][T32097] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[ 1664.812394][T32097] EXT4-fs (loop7): changing journal_checksum during remount not supported; ignoring
[ 1665.326175][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1665.912585][T32130] loop6: detected capacity change from 0 to 64
[ 1667.209976][T32158] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 51000000 out of range (51000..2150000)
[ 1667.746376][T32166] loop7: detected capacity change from 0 to 764
[ 1668.611510][   T29] audit: type=1326 audit(1773435096.138:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32179 comm="syz.6.8434" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6a7d99c799 code=0x0
[ 1668.762366][T32183] loop7: detected capacity change from 0 to 512
[ 1669.005343][T32183] EXT4-fs (loop7): 1 truncate cleaned up
[ 1669.111617][T32183] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1669.680941][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1670.235178][T32213] netlink: 128 bytes leftover after parsing attributes in process `syz.3.8442'.
[ 1670.278980][T32213] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8442'.
[ 1671.620653][T32238] loop6: detected capacity change from 0 to 512
[ 1671.694357][T12151] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[ 1671.880173][T12151] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1671.921592][T32238] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1671.972346][T12151] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1671.977067][T32238] ext4 filesystem being mounted at /581/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1672.037581][T12151] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1672.080774][T12151] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1672.146831][T12151] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1672.189981][T12151] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1672.228344][T12151] usb 5-1: Product: syz
[ 1672.232826][T12151] usb 5-1: Manufacturer: syz
[ 1672.249852][T12151] usb 5-1: SerialNumber: syz
[ 1672.383491][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1672.386608][   T40] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[ 1672.606484][T12151] usb 5-1: 0:2 : does not exist
[ 1672.634325][   T40] usb 8-1: Using ep0 maxpacket: 16
[ 1672.666045][   T40] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1672.702453][   T40] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1672.764699][   T40] usb 8-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[ 1672.798317][   T40] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1672.850812][   T40] usb 8-1: Product: syz
[ 1672.869400][   T40] usb 8-1: Manufacturer: syz
[ 1672.894482][   T40] usb 8-1: SerialNumber: syz
[ 1672.937166][   T40] usb 8-1: config 0 descriptor??
[ 1673.325732][   T40] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/input/input45
[ 1673.378991][    C1] imon 8-1:0.0: imon usb_rx_callback_intf0: status(-75): ignored
[ 1673.597503][    C1] imon 8-1:0.0: imon usb_rx_callback_intf0: status(-71)
[ 1673.608206][   T40] imon:send_packet: packet tx failed (-71)
[ 1673.646441][   T40] imon 8-1:0.0: panel buttons/knobs setup failed
[ 1673.673373][T12151] usb 5-1: USB disconnect, device number 48
[ 1674.109519][T27465] udevd[27465]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1674.334318][   T40] rc_core: IR keymap rc-imon-pad not found
[ 1674.355185][T32301] loop4: detected capacity change from 0 to 512
[ 1674.389976][   T40] Registered IR keymap rc-empty
[ 1674.395730][   T40] imon 8-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[ 1674.447021][   T40] imon 8-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[ 1674.496368][T32301] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1674.543699][   T40] imon:send_packet: packet tx failed (-71)
[ 1674.599490][   T40] imon 8-1:0.0: remote input dev register failed
[ 1674.646133][   T40] imon 8-1:0.0: imon_init_intf0: rc device setup failed
[ 1674.671151][T32305] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8458'.
[ 1674.774554][T32301] UDF-fs: error (device loop4): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128
[ 1674.891727][   T40] imon 8-1:0.0: unable to initialize intf0, err 0
[ 1674.932995][   T40] imon:imon_probe: failed to initialize context!
[ 1675.000512][   T40] imon 8-1:0.0: unable to register, err -19
[ 1675.055035][   T40] usb 8-1: USB disconnect, device number 15
[ 1676.458269][T32342] loop6: detected capacity change from 0 to 256
[ 1676.855402][T32342] FAT-fs (loop6): Directory bread(block 64) failed
[ 1676.862556][T32342] FAT-fs (loop6): Directory bread(block 65) failed
[ 1676.948553][T32342] FAT-fs (loop6): Directory bread(block 66) failed
[ 1676.966950][T32342] FAT-fs (loop6): Directory bread(block 67) failed
[ 1677.024412][T32342] FAT-fs (loop6): Directory bread(block 68) failed
[ 1677.031221][T32342] FAT-fs (loop6): Directory bread(block 69) failed
[ 1677.051750][T32342] FAT-fs (loop6): Directory bread(block 70) failed
[ 1677.073395][T32342] FAT-fs (loop6): Directory bread(block 71) failed
[ 1677.110382][T32342] FAT-fs (loop6): Directory bread(block 72) failed
[ 1677.151428][T32342] FAT-fs (loop6): Directory bread(block 73) failed
[ 1678.055661][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1678.062953][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1679.420970][T32394] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1679.468745][T32394] team0: Device macvlan2 is already an upper device of the team interface
[ 1680.414434][T32409] loop4: detected capacity change from 0 to 512
[ 1680.473359][T32409] EXT4-fs: Ignoring removed i_version option
[ 1680.549691][T32409] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1680.813455][T32409] EXT4-fs (loop4): 1 truncate cleaned up
[ 1680.887147][T32409] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1681.254511][   T40] usb 4-1: new full-speed USB device number 40 using dummy_hcd
[ 1681.335948][ T5774] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1681.478120][   T40] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1681.524375][   T40] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1681.589458][   T40] usb 4-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[ 1681.607789][   T40] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1681.622768][T32437] loop6: detected capacity change from 0 to 64
[ 1681.660776][   T40] usb 4-1: config 0 descriptor??
[ 1681.820635][T32437] hfs: unexpected record length: entrylength 108
[ 1682.219389][T19677] hfs: node 4:2 still has 1 user(s)!
[ 1682.293016][   T40] isku 0003:1E7D:319C.0022: unknown main item tag 0x0
[ 1682.324726][   T40] isku 0003:1E7D:319C.0022: unknown main item tag 0x0
[ 1682.386160][   T40] isku 0003:1E7D:319C.0022: unknown main item tag 0x0
[ 1682.426917][   T40] isku 0003:1E7D:319C.0022: unknown main item tag 0x0
[ 1682.465546][   T40] isku 0003:1E7D:319C.0022: unknown main item tag 0x0
[ 1682.500040][   T40] isku 0003:1E7D:319C.0022: unknown main item tag 0x0
[ 1682.524461][   T40] isku 0003:1E7D:319C.0022: unknown main item tag 0x0
[ 1682.573417][T32456] loop7: detected capacity change from 0 to 128
[ 1682.604962][   T40] isku 0003:1E7D:319C.0022: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.3-1/input0
[ 1682.619761][T32456] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1682.673577][   T40] isku 0003:1E7D:319C.0022: couldn't init struct isku_device
[ 1682.702711][   T40] isku 0003:1E7D:319C.0022: couldn't install keyboard
[ 1682.723581][T32457] loop6: detected capacity change from 0 to 256
[ 1682.731584][T32456] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1682.743641][   T40] isku 0003:1E7D:319C.0022: probe with driver isku failed with error -71
[ 1682.762105][T32457] exfat: Deprecated parameter 'namecase'
[ 1682.800619][   T40] usb 4-1: USB disconnect, device number 40
[ 1682.954786][T32457] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[ 1683.892490][T32478] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1684.048282][T32471] fido_id[32471]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[ 1684.072784][T32478] team0: Device macvlan2 is already an upper device of the team interface
[ 1684.818790][T32498] netlink: 8 bytes leftover after parsing attributes in process `syz.7.8500'.
[ 1685.093407][T32506] loop3: detected capacity change from 0 to 128
[ 1685.139843][T32506] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1685.259366][T32506] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1685.752524][T32517] loop6: detected capacity change from 0 to 512
[ 1685.782508][T31303] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1686.010121][T32523] GUP no longer grows the stack in syz.4.8508 (32523): 200000006000-200000009000 (200000004000)
[ 1686.027986][T32523] CPU: 0 UID: 0 PID: 32523 Comm: syz.4.8508 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1686.028182][T32523] Tainted: [L]=SOFTLOCKUP
[ 1686.028241][T32523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1686.028331][T32523] Call Trace:
[ 1686.028391][T32523]  <TASK>
[ 1686.028449][T32523]  __dump_stack+0x26/0x30
[ 1686.028633][T32523]  dump_stack_lvl+0x14c/0x1c0
[ 1686.028818][T32523]  dump_stack+0x1e/0x25
[ 1686.028990][T32523]  fixup_user_fault+0xcc0/0xde0
[ 1686.029325][T32523]  fault_in_user_writeable+0x99/0x1a0
[ 1686.029546][T32523]  futex_lock_pi+0x5a8/0x1530
[ 1686.029753][T32523]  ? futex_unqueue+0x22d/0x2c0
[ 1686.029938][T32523]  ? kmsan_get_metadata+0xf1/0x160
[ 1686.030162][T32523]  ? __se_sys_futex+0x5b8/0x740
[ 1686.030351][T32523]  ? __msan_warning+0x1b/0x30
[ 1686.030546][T32523]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1686.030816][T32523]  do_futex+0x2e1/0x480
[ 1686.031013][T32523]  __se_sys_futex+0x5b8/0x740
[ 1686.031198][T32523]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1686.031413][T32523]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1686.031641][T32523]  __x64_sys_futex+0x114/0x1a0
[ 1686.031849][T32523]  x64_sys_call+0x2c48/0x3ea0
[ 1686.032055][T32523]  do_syscall_64+0x134/0xf80
[ 1686.032221][T32523]  ? clear_bhb_loop+0x50/0xa0
[ 1686.032385][T32523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1686.032552][T32523] RIP: 0033:0x7fb7ebb9c799
[ 1686.032669][T32523] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1686.032805][T32523] RSP: 002b:00007fb7ec9a0028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1686.032950][T32523] RAX: ffffffffffffffda RBX: 00007fb7ebe15fa0 RCX: 00007fb7ebb9c799
[ 1686.033068][T32523] RDX: 0000000000000002 RSI: 000000000000008d RDI: 0000200000004000
[ 1686.033170][T32523] RBP: 00007fb7ebc32c99 R08: 0000000000000000 R09: 0000000000000082
[ 1686.033266][T32523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1686.033361][T32523] R13: 00007fb7ebe16038 R14: 00007fb7ebe15fa0 R15: 00007ffdc2f4deb8
[ 1686.033507][T32523]  </TASK>
[ 1686.946468][T32536] netlink: 'syz.7.8511': attribute type 6 has an invalid length.
[ 1687.328640][T32538] loop6: detected capacity change from 0 to 2048
[ 1687.506386][T32548] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1688.014752][   T40] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[ 1688.093098][T32558] loop3: detected capacity change from 0 to 2048
[ 1688.230727][T32558] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1688.232852][   T40] usb 8-1: too many endpoints for config 0 interface 0 altsetting 2: 254, using maximum allowed: 30
[ 1688.321833][   T40] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1688.356358][   T40] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1688.405740][   T40] usb 8-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[ 1688.448142][T32558] exFAT-fs (loop3): invalid boot record signature
[ 1688.474733][T32558] exFAT-fs (loop3): failed to read boot sector
[ 1688.476917][   T40] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1688.491409][T32558] exFAT-fs (loop3): failed to recognize exfat type
[ 1688.540223][   T40] usb 8-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00
[ 1688.604670][   T40] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1688.662492][   T40] usb 8-1: config 0 descriptor??
[ 1689.238486][   T40] ryos 0003:1E7D:3138.0023: ignoring exceeding usage max
[ 1689.344783][   T40] ryos 0003:1E7D:3138.0023: unbalanced delimiter at end of report description
[ 1689.417618][   T40] ryos 0003:1E7D:3138.0023: parse failed
[ 1689.467492][   T40] ryos 0003:1E7D:3138.0023: probe with driver ryos failed with error -22
[ 1689.586612][   T40] usb 8-1: USB disconnect, device number 16
[ 1691.535633][T32618] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.8530'.
[ 1692.186672][T32631] [U] 
[ 1692.739475][T32638] netlink: 'syz.7.8537': attribute type 3 has an invalid length.
[ 1692.953487][T32644] loop6: detected capacity change from 0 to 512
[ 1693.062433][T32644] EXT4-fs: Ignoring removed orlov option
[ 1693.119932][T32644] EXT4-fs: Ignoring removed bh option
[ 1693.260496][T32644] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1693.360782][T32644] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1693.497871][T32644] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.8539: bg 0: block 248: padding at end of block bitmap is not set
[ 1693.557762][T32644] loop6: lost filesystem error report for type 5 error -117
[ 1693.564211][    C0] EXT4-fs (loop6): error count since last fsck: 1
[ 1693.578456][    C0] EXT4-fs (loop6): last error at time 1773435121: ext4_validate_block_bitmap:441
[ 1693.655531][T32644] Quota error (device loop6): write_blk: dquota write failed
[ 1693.665532][T32644] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1693.714758][T32644] EXT4-fs error (device loop6): ext4_acquire_dquot:7001: comm syz.6.8539: Failed to acquire dquot type 1
[ 1693.805334][T32644] loop6: lost filesystem error report for type 5 error -117
[ 1693.823004][T32644] EXT4-fs (loop6): 1 truncate cleaned up
[ 1693.946324][T32644] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1694.080328][T32644] EXT4-fs: Ignoring removed orlov option
[ 1694.104517][T32644] EXT4-fs: Ignoring removed bh option
[ 1694.110603][T32644] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1694.311575][T32644] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[ 1694.444377][T32644] EXT4-fs error (device loop6): __ext4_remount:6804: comm syz.6.8539: Abort forced by user
[ 1694.489055][T32644] EXT4-fs (loop6): Remounting filesystem read-only
[ 1694.524499][T32644] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[ 1694.555282][T32644] ext4 filesystem being remounted at /602/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1695.056989][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1695.784820][T29571] Bluetooth: hci4: command 0x0405 tx timeout
[ 1696.903664][T32722] loop4: detected capacity change from 0 to 1024
[ 1697.213141][T32722] hfsplus: bad catalog folder entry
[ 1697.629796][  T131] hfsplus: bad catalog folder entry
[ 1697.640350][  T131] hfsplus: bad catalog file entry
[ 1697.724559][T32735] loop7: detected capacity change from 0 to 512
[ 1697.750311][T32735] EXT4-fs: Ignoring removed bh option
[ 1697.776609][T32735] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1697.843427][T32735] EXT4-fs (loop7): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[ 1697.929982][T32735] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 1698.011290][T32735] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1698.113769][T32735] Quota error (device loop7): do_insert_tree: Free block already used in tree: block 4
[ 1698.124950][T32745] loop6: detected capacity change from 0 to 128
[ 1698.151917][T32745] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[ 1698.215347][T32735] Quota error (device loop7): qtree_write_dquot: Error -5 occurred while creating quota
[ 1698.241701][T32735] EXT4-fs error (device loop7): ext4_acquire_dquot:7001: comm syz.7.8567: Failed to acquire dquot type 1
[ 1698.276823][T32735] loop7: lost filesystem error report for type 5 error -5
[ 1698.281509][T32745] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1698.289262][    C1] EXT4-fs (loop7): error count since last fsck: 1
[ 1698.289381][    C1] EXT4-fs (loop7): last error at time 1773435125: ext4_acquire_dquot:7001
[ 1698.326391][T32735] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:483: comm syz.7.8567: Invalid block bitmap block 0 in block_group 0
[ 1698.395073][T32735] loop7: lost filesystem error report for type 5 error -117
[ 1698.416032][T32735] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:483: comm syz.7.8567: Invalid block bitmap block 0 in block_group 0
[ 1698.531407][T32735] loop7: lost filesystem error report for type 5 error -117
[ 1698.532915][T32735] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:483: comm syz.7.8567: Invalid block bitmap block 0 in block_group 0
[ 1698.668881][T32735] loop7: lost filesystem error report for type 5 error -117
[ 1698.670857][T32735] Quota error (device loop7): write_blk: dquota write failed
[ 1698.786613][T32735] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 1698.895987][T32735] EXT4-fs error (device loop7): ext4_acquire_dquot:7001: comm syz.7.8567: Failed to acquire dquot type 1
[ 1698.966898][T32735] loop7: lost filesystem error report for type 5 error -28
[ 1698.973917][T32735] Quota error (device loop7): write_blk: dquota write failed
[ 1699.115825][T32735] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 1699.149911][T32756] binfmt_misc: register: failed to install interpreter file éq‰Y’3aK
[ 1699.215054][T32735] EXT4-fs error (device loop7): ext4_acquire_dquot:7001: comm syz.7.8567: Failed to acquire dquot type 1
[ 1699.254578][T32735] loop7: lost filesystem error report for type 5 error -28
[ 1699.256291][T32735] EXT4-fs (loop7): 1 orphan inode deleted
[ 1699.323509][T32735] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1699.696147][T32765] netlink: 40 bytes leftover after parsing attributes in process `syz.6.8573'.
[ 1699.885442][T32735] syz.7.8567 (32735) used greatest stack depth: 2384 bytes left
[ 1699.939949][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1700.572720][  T311] loop6: detected capacity change from 0 to 256
[ 1700.887396][T12151] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[ 1701.057919][T12151] usb 8-1: Using ep0 maxpacket: 16
[ 1701.096906][T12151] usb 8-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[ 1701.110045][T12151] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1701.120159][T12151] usb 8-1: Product: syz
[ 1701.125821][T12151] usb 8-1: Manufacturer: syz
[ 1701.143895][T12151] usb 8-1: SerialNumber: syz
[ 1701.181857][T12151] usb 8-1: config 0 descriptor??
[ 1701.265813][T12151] visor 8-1:0.0: Sony Clie 3.5 converter detected
[ 1701.503389][  T331] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8583'.
[ 1701.676721][T12151] usb 8-1: clie_3_5_startup: get interface number bad return length: 0
[ 1701.735094][T12151] visor 8-1:0.0: probe with driver visor failed with error -5
[ 1701.929094][T12122] usb 8-1: USB disconnect, device number 17
[ 1703.120170][  T350] loop6: detected capacity change from 0 to 4096
[ 1703.171543][  T350] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512).
[ 1703.611896][  T350] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[ 1705.008645][  T392] IPVS: Error connecting to the multicast addr
[ 1705.679838][  T401] gretap0: entered promiscuous mode
[ 1705.760899][  T409] netlink: 8 bytes leftover after parsing attributes in process `syz.7.8602'.
[ 1705.789281][  T401] gretap0: left promiscuous mode
[ 1706.524949][  T421] loop3: detected capacity change from 0 to 128
[ 1706.593802][  T419] loop4: detected capacity change from 0 to 1024
[ 1706.613038][  T421] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1706.670102][  T421] hpfs: filesystem error: improperly stopped
[ 1706.705882][  T421] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1706.743116][  T421] hpfs: You really don't want any checks? You are crazy...
[ 1706.805441][  T421] hpfs: hpfs_map_sector(): read error
[ 1706.832182][  T421] hpfs: code page support is disabled
[ 1706.968184][  T421] hpfs: hpfs_map_4sectors(): unaligned read
[ 1706.987961][  T421] hpfs: hpfs_map_4sectors(): unaligned read
[ 1707.040097][  T421] hpfs: filesystem error: unable to find root dir
[ 1707.111950][  T429] loop6: detected capacity change from 0 to 1024
[ 1707.183285][  T429] EXT4-fs: Ignoring removed bh option
[ 1707.406344][  T429] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1707.608101][   T29] audit: type=1326 audit(1773435135.118:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=437 comm="syz.7.8610" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f901579c799 code=0x0
[ 1708.294974][  T451] loop3: detected capacity change from 0 to 128
[ 1708.328141][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1708.942610][  T462] loop6: detected capacity change from 0 to 512
[ 1709.135872][  T466] loop7: detected capacity change from 0 to 256
[ 1709.168157][  T462] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -13
[ 1709.281418][  T462] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #13: comm syz.6.8615: iget: bad i_size value: 12154757448730
[ 1709.364425][  T462] loop6: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1709.366977][  T462] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.8615: couldn't read orphan inode 13 (err -117)
[ 1709.379672][    C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1709.379787][    C1] EXT4-fs (loop6): initial error at time 1773435136: ext4_orphan_get:1391: inode 13
[ 1709.379959][    C1] EXT4-fs (loop6): last error at time 1773435136: ext4_orphan_get:1391: inode 13
[ 1709.514557][  T462] loop6: lost filesystem error report for type 5 error -117
[ 1709.542000][  T462] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1709.579505][  T466] exFAT-fs (loop7): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[ 1709.667743][  T466] exFAT-fs (loop7): failed to test first cluster bit of root dir(5)
[ 1709.830884][  T466] exFAT-fs (loop7): start_clu is invalid cluster(0x400)
[ 1710.196981][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1710.739507][   T29] audit: type=1326 audit(1773435138.268:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=495 comm="syz.7.8624" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f901579c799 code=0x0
[ 1710.882442][  T498] loop3: detected capacity change from 0 to 512
[ 1710.971385][  T503] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8627'.
[ 1711.080663][  T498] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1711.182196][  T498] ext4 filesystem being mounted at /1682/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1711.767437][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1711.921666][  T511] netlink: 80 bytes leftover after parsing attributes in process `syz.6.8628'.
[ 1712.393658][  T521] loop3: detected capacity change from 0 to 512
[ 1712.456970][  T521] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1712.603036][  T521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1712.722696][  T521] ext4 filesystem being mounted at /1683/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1713.226217][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1713.242600][  T538] siw: device registration error -23
[ 1714.303682][  T539] loop7: detected capacity change from 0 to 32768
[ 1714.435563][  T539] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1714.634231][  T539] XFS (loop7): Metadata corruption detected at xfs_inode_buf_verify+0x613/0x6b0, xfs_inode block 0x2280 xfs_inode_buf_verify
[ 1714.650954][  T539] XFS (loop7): Unmount and run xfs_repair
[ 1714.657152][  T539] XFS (loop7): First 128 bytes of corrupted metadata buffer:
[ 1714.667740][  T539] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00  INA.............
[ 1714.679923][  T539] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1714.693090][  T539] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 a5 b6 11  4.Xh....4.Xh....
[ 1714.702347][  T539] 00000030: 34 f7 58 68 a5 a5 b6 11 00 00 00 00 00 00 00 20  4.Xh........... 
[ 1714.715692][  T539] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1714.725261][  T539] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 3f 08 c9 94  ............?...
[ 1714.734600][  T539] 00000060: ff ff 01 04 49 55 aa 1c 00 00 00 00 00 00 00 04  ....IU..........
[ 1714.743713][  T539] 00000070: 00 00 00 01 00 00 00 10 00 00 00 00 00 00 00 08  ................
[ 1714.755948][  T539] XFS (loop7): metadata I/O error in "xfs_imap_to_bp+0x128/0x2e0" at daddr 0x2280 len 64 error 117
[ 1714.767257][  T539] loop7: lost filesystem error report for type 5 error -117
[ 1714.767476][  T539] XFS (loop7): Failed to read root inode 0x1140, error 117
[ 1714.782976][  T539] XFS (loop7): Uncorrected metadata errors detected; please run xfs_repair.
[ 1715.456539][  T567] loop7: detected capacity change from 0 to 512
[ 1715.527835][  T567] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1715.559538][T17543] Bluetooth: hci5: unexpected event for opcode 0x0c2d
[ 1715.731177][  T567] EXT4-fs (loop7): 1 truncate cleaned up
[ 1715.813975][  T567] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1716.020064][  T567] EXT4-fs warning (device loop7): verify_group_input:137: Cannot add at group 25 (only 1 groups)
[ 1716.467009][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1717.379870][  T604] loop6: detected capacity change from 0 to 512
[ 1717.455551][  T604] EXT4-fs: Ignoring removed bh option
[ 1717.570407][  T604] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1717.700796][  T604] EXT4-fs (loop6): 1 truncate cleaned up
[ 1717.789179][  T604] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1717.833487][  T599] loop7: detected capacity change from 0 to 4096
[ 1717.978121][  T599] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512).
[ 1718.041605][  T599] ntfs3(loop7): It is recommended to use chkdsk.
[ 1718.438681][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1718.559989][  T599] ntfs3(loop7): failed to convert "076c" to iso8859-5
[ 1718.621369][  T599] ntfs3(loop7): ino=5, "/" ntfs_readdir
[ 1720.020293][  T649] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8663'.
[ 1720.364365][T12151] usb 5-1: new full-speed USB device number 49 using dummy_hcd
[ 1720.573335][T12151] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1720.619202][T12151] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1720.688150][T12151] usb 5-1: New USB device found, idVendor=05ab, idProduct=0060, bcdDevice=11.06
[ 1720.716391][T12151] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1720.802639][T12151] usb 5-1: config 0 descriptor??
[ 1721.107302][T17543] Bluetooth: hci2: Malformed LE Event: 0x0d
[ 1721.115535][T12151] usb 5-1: string descriptor 0 read error: -71
[ 1721.205163][T12151] usb 5-1: USB disconnect, device number 49
[ 1721.635983][  T683] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8672'.
[ 1722.275042][  T692] loop4: detected capacity change from 0 to 64
[ 1722.495334][  T692] minix: block size(59136) > page size(4096) not supported by filesystem
[ 1722.864416][T12122] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1722.875934][  T690] loop7: detected capacity change from 0 to 4096
[ 1723.074505][T12122] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1723.212144][T12122] usb 4-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[ 1723.321421][T12122] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1723.589334][T12122] gspca_main: stv0680-2.14.0 probing 041e:4007
[ 1723.740138][  T690] ntfs3(loop7): ino=b, mi_enum_attr
[ 1723.824446][  T690] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[ 1723.884567][  T690] ntfs3(loop7): Failed to load $Extend (-22).
[ 1723.915771][  T690] ntfs3(loop7): Failed to initialize $Extend.
[ 1724.564844][  T723] usb usb8: usbfs: interface 0 claimed by hub while 'syz.6.8682' resets device
[ 1724.754992][T12122] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32
[ 1724.804436][T12122] stv0680 4-1:4.0: STV(e): camera ping failed!!
[ 1724.835466][T12122] stv0680 4-1:4.0: last error: 0,  command = 0x0
[ 1725.070756][T12151] usb 4-1: USB disconnect, device number 41
[ 1725.378301][  T736] loop7: detected capacity change from 0 to 1024
[ 1725.509292][  T743] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) !
[ 1725.512142][  T739] loop4: detected capacity change from 0 to 2048
[ 1725.532034][  T736] hfsplus: bad catalog entry type
[ 1725.570436][  T739] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1725.799915][  T748] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1725.913507][  T131] hfsplus: b-tree write err: -5, ino 25
[ 1726.005537][  T131] hfsplus: b-tree write err: -5, ino 4
[ 1726.011488][  T131] hfsplus: b-tree write err: -5, ino 2
[ 1726.809380][  T764] netlink: 'syz.4.8692': attribute type 2 has an invalid length.
[ 1727.042256][  T769] IPVS: length: 8 != 3390824
[ 1727.436484][  T773] loop3: detected capacity change from 0 to 1024
[ 1727.462899][  T773] EXT4-fs: inline encryption not supported
[ 1727.513402][  T774] xt_hashlimit: size too large, truncated to 1048576
[ 1727.786048][  T773] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1727.868513][  T773] ext4 filesystem being mounted at /1695/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1728.367926][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1730.550566][  T828] loop7: detected capacity change from 0 to 22
[ 1730.718056][  T828] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1731.875895][  T859] netlink: 92 bytes leftover after parsing attributes in process `syz.6.8717'.
[ 1732.157504][   T29] audit: type=1326 audit(1773435159.688:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=863 comm="syz.3.8719" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efff5f9c799 code=0x0
[ 1732.430635][  T871] loop7: detected capacity change from 0 to 7
[ 1732.571045][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x880700 phys_seg 1 prio class 2
[ 1732.584159][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.594378][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1732.602443][    C0] I/O error, dev loop7, sector 1 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.612707][    C0] Buffer I/O error on dev loop7, logical block 1, async page read
[ 1732.620880][    C0] I/O error, dev loop7, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.630807][    C0] Buffer I/O error on dev loop7, logical block 2, async page read
[ 1732.638969][    C0] I/O error, dev loop7, sector 3 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.648875][    C0] Buffer I/O error on dev loop7, logical block 3, async page read
[ 1732.657044][    C0] I/O error, dev loop7, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.666949][    C0] Buffer I/O error on dev loop7, logical block 4, async page read
[ 1732.675151][    C0] I/O error, dev loop7, sector 5 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.685052][    C0] Buffer I/O error on dev loop7, logical block 5, async page read
[ 1732.693119][    C0] I/O error, dev loop7, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.703028][    C0] Buffer I/O error on dev loop7, logical block 6, async page read
[ 1732.726354][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.736409][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1732.747735][    C1] I/O error, dev loop7, sector 1 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[ 1732.757695][    C1] Buffer I/O error on dev loop7, logical block 1, async page read
[ 1732.765912][    C1] Buffer I/O error on dev loop7, logical block 2, async page read
[ 1733.802342][  T895] loop7: detected capacity change from 0 to 512
[ 1734.153898][  T881] ceph: No mds server is up or the cluster is laggy
[ 1734.434592][T12122] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 1734.747135][T12122] usb 7-1: Using ep0 maxpacket: 8
[ 1734.761458][T12122] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[ 1734.798086][T12122] usb 7-1: config 179 has no interface number 0
[ 1734.824352][T12122] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1734.846334][T12122] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1734.925100][T12122] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[ 1734.978748][T12122] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[ 1735.078723][T12122] usb 7-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1735.148502][T12122] usb 7-1: config 179 interface 65 has no altsetting 0
[ 1735.183628][T12122] usb 7-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1735.229440][T12122] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1735.429612][T12122] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:179.65/input/input47
[ 1735.603376][ T5118] input input47: unable to receive magic message: -110
[ 1735.750930][ T5118] input input47: unable to receive magic message: -71
[ 1735.934152][ T5118] input input47: unable to receive magic message: -71
[ 1735.934793][T12122] usb 7-1: USB disconnect, device number 19
[ 1735.941381][    C1] xpad 7-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1735.941618][    C1] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1736.022028][  T959] loop3: detected capacity change from 0 to 64
[ 1736.035847][  T955] loop7: detected capacity change from 0 to 256
[ 1736.078368][  T955] exfat: Deprecated parameter 'utf8'
[ 1736.105131][  T955] exfat: Deprecated parameter 'namecase'
[ 1736.140632][  T955] exfat: Deprecated parameter 'namecase'
[ 1736.179360][  T955] exfat: Deprecated parameter 'utf8'
[ 1736.385749][  T955] exFAT-fs (loop7): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[ 1736.457542][  T970] overlayfs: failed to resolve './file0': -2
[ 1736.465679][  T955] exFAT-fs (loop7): failed to test first cluster bit of root dir(5)
[ 1737.894774][  T982] loop6: detected capacity change from 0 to 32768
[ 1737.907237][  T982] Mount JFS Failure: -22
[ 1737.911707][  T982] jfs_mount failed w/return code = -22
[ 1737.928480][  T987] loop3: detected capacity change from 0 to 2048
[ 1738.019661][  T992] netlink: 80 bytes leftover after parsing attributes in process `syz.4.8744'.
[ 1738.543175][ T1004] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1739.529792][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1739.536724][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1742.090244][ T1079] loop4: detected capacity change from 0 to 16
[ 1742.107157][T12151] kernel write not supported for file /uinput (pid: 12151 comm: kworker/0:18)
[ 1742.172767][ T1079] erofs (device loop4): mounted with root inode @ nid 36.
[ 1742.258494][   T29] audit: type=1800 audit(1773435169.778:398): pid=1079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.8766" name="file1" dev="loop4" ino=86 res=0 errno=0
[ 1742.788339][ T1088] sctp: [Deprecated]: syz.3.8769 (pid 1088) Use of int in max_burst socket option.
[ 1742.788339][ T1088] Use struct sctp_assoc_value instead
[ 1744.789603][ T1113] loop3: detected capacity change from 0 to 4096
[ 1745.066780][ T1113] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1745.673238][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1746.064811][ T1140] netlink: 'syz.4.8786': attribute type 10 has an invalid length.
[ 1746.092519][ T1131] loop7: detected capacity change from 0 to 4096
[ 1747.550422][ T1169] loop4: detected capacity change from 0 to 256
[ 1748.315511][ T1179] loop3: detected capacity change from 0 to 2048
[ 1748.405868][ T1183] veth0_to_team: entered promiscuous mode
[ 1748.443555][   T29] audit: type=1326 audit(1773435175.968:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1748.559497][   T29] audit: type=1326 audit(1773435176.018:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1748.592747][   T29] audit: type=1326 audit(1773435176.118:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1748.624960][ T1179] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1748.640794][   T29] audit: type=1326 audit(1773435176.118:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f84fa39c502 code=0x7ffc0000
[ 1748.785009][   T29] audit: type=1326 audit(1773435176.238:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f84fa35cfce code=0x7ffc0000
[ 1748.965173][   T29] audit: type=1326 audit(1773435176.398:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f84fa39c5c7 code=0x7ffc0000
[ 1749.121779][   T29] audit: type=1326 audit(1773435176.398:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f84fa35cfce code=0x7ffc0000
[ 1749.263532][   T29] audit: type=1326 audit(1773435176.418:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f84fa35cfce code=0x7ffc0000
[ 1749.350834][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1749.385522][   T29] audit: type=1326 audit(1773435176.548:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1749.494452][   T29] audit: type=1326 audit(1773435176.548:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1185 comm="syz.0.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84fa39c799 code=0x7ffc0000
[ 1749.749438][ T1206] loop7: detected capacity change from 0 to 128
[ 1750.203642][ T1202] loop4: detected capacity change from 0 to 4096
[ 1750.730321][T12122] kernel read not supported for file /3576/personality (pid: 12122 comm: kworker/1:16)
[ 1752.003262][T12122] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 1752.186419][T12122] usb 7-1: Using ep0 maxpacket: 8
[ 1752.210760][T12122] usb 7-1: config 0 has an invalid interface number: 30 but max is 0
[ 1752.227391][T12122] usb 7-1: config 0 has no interface number 0
[ 1752.248896][T12122] usb 7-1: too many endpoints for config 0 interface 30 altsetting 222: 254, using maximum allowed: 30
[ 1752.283571][T12122] usb 7-1: config 0 interface 30 altsetting 222 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1752.310071][T12122] usb 7-1: config 0 interface 30 altsetting 222 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1752.332308][T12122] usb 7-1: config 0 interface 30 altsetting 222 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[ 1752.364683][T12122] usb 7-1: config 0 interface 30 has no altsetting 0
[ 1752.391538][T12122] usb 7-1: New USB device found, idVendor=256c, idProduct=006e, bcdDevice= 0.00
[ 1752.411264][T12122] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1752.456154][T12122] usb 7-1: config 0 descriptor??
[ 1752.960575][T12122] uclogic 0003:256C:006E.0024: interface is invalid, ignoring
[ 1753.103435][  T734] usb 7-1: USB disconnect, device number 20
[ 1753.292015][ T1290] loop4: detected capacity change from 0 to 164
[ 1753.422541][ T1290] rock: directory entry would overflow storage
[ 1753.472793][ T1290] rock: sig=0x4f50, size=4, remaining=3
[ 1753.525026][ T1290] isofs: Unable to find the ".." directory for NFS.
[ 1754.292736][ T1311] xt_hashlimit: size too large, truncated to 1048576
[ 1755.656447][ T1330] netlink: 68 bytes leftover after parsing attributes in process `syz.3.8832'.
[ 1755.714978][ T1330] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8832'.
[ 1756.444374][   T29] kauditd_printk_skb: 3 callbacks suppressed
[ 1756.444470][   T29] audit: type=1326 audit(1773435183.968:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1341 comm="syz.3.8836" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efff5f9c799 code=0x0
[ 1759.130238][ T1383] loop6: detected capacity change from 0 to 512
[ 1759.178508][ T1383] EXT4-fs: Ignoring removed nobh option
[ 1759.244353][ T1383] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1759.418673][ T1383] EXT4-fs error (device loop6): __ext4_iget:5378: inode #11: block 1: comm syz.6.8849: invalid block
[ 1759.512475][ T1383] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1759.514118][    C0] EXT4-fs (loop6): error count since last fsck: 1
[ 1759.530290][    C0] EXT4-fs (loop6): initial error at time 1773435187: __ext4_iget:5378: inode 11: block 1
[ 1759.540717][    C0] EXT4-fs (loop6): last error at time 1773435187: __ext4_iget:5378: inode 11: block 1
[ 1759.556609][ T1383] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.8849: couldn't read orphan inode 11 (err -117)
[ 1759.584359][ T1383] loop6: lost filesystem error report for type 5 error -117
[ 1759.620733][ T1383] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1760.065629][  T734] IPVS: starting estimator thread 0...
[ 1760.223451][ T1404] IPVS: using max 192 ests per chain, 9600 per kthread
[ 1760.355050][T19677] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1760.747828][ T1415] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8859'.
[ 1760.807931][ T1415] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8859'.
[ 1760.830706][ T1417] loop3: detected capacity change from 0 to 256
[ 1761.417097][ T1417] FAT-fs (loop3): Directory bread(block 64) failed
[ 1761.466702][ T1417] FAT-fs (loop3): Directory bread(block 65) failed
[ 1761.492935][ T1417] FAT-fs (loop3): Directory bread(block 66) failed
[ 1761.573845][ T1417] FAT-fs (loop3): Directory bread(block 67) failed
[ 1761.581238][ T1417] FAT-fs (loop3): Directory bread(block 68) failed
[ 1761.629699][ T1417] FAT-fs (loop3): Directory bread(block 69) failed
[ 1761.693874][ T1417] FAT-fs (loop3): Directory bread(block 70) failed
[ 1761.701021][ T1417] FAT-fs (loop3): Directory bread(block 71) failed
[ 1761.765027][ T1417] FAT-fs (loop3): Directory bread(block 72) failed
[ 1761.771835][ T1417] FAT-fs (loop3): Directory bread(block 73) failed
[ 1761.965271][T12122] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[ 1762.207216][T12122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1762.252410][T12122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1762.303581][   T56] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1762.346554][T12122] usb 5-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[ 1762.378768][   T34] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1762.392654][T12122] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1762.419483][   T34] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1762.465975][T12122] usb 5-1: config 0 descriptor??
[ 1762.489238][   T34] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1762.967857][T12122] holtek_kbd 0003:04D9:A055.0025: unknown main item tag 0x1
[ 1763.013236][T12122] holtek_kbd 0003:04D9:A055.0025: item fetching failed at offset 3/7
[ 1763.084871][T12122] holtek_kbd 0003:04D9:A055.0025: probe with driver holtek_kbd failed with error -22
[ 1763.186506][ T1461] CIFS: Unable to determine destination address
[ 1763.205935][T12122] usb 5-1: USB disconnect, device number 50
[ 1763.382605][ T1459] loop7: detected capacity change from 0 to 512
[ 1763.478378][ T1459] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1763.609617][ T1459] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1763.764659][ T1459] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.8869: bg 0: block 248: padding at end of block bitmap is not set
[ 1763.836607][ T1459] loop7: lost filesystem error report for type 5 error -117
[ 1763.844155][    C0] EXT4-fs (loop7): error count since last fsck: 1
[ 1763.858536][    C0] EXT4-fs (loop7): last error at time 1773435191: ext4_validate_block_bitmap:441
[ 1763.884921][ T1459] Quota error (device loop7): write_blk: dquota write failed
[ 1763.892902][ T1459] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[ 1763.965646][ T1459] EXT4-fs error (device loop7): ext4_acquire_dquot:7001: comm syz.7.8869: Failed to acquire dquot type 1
[ 1763.979042][ T1459] loop7: lost filesystem error report for type 5 error -117
[ 1763.983129][ T1459] EXT4-fs (loop7): 1 truncate cleaned up
[ 1764.007308][ T1459] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[ 1764.186109][ T1459] Quota error (device loop7): find_tree_dqentry: Cycle in quota tree detected: block 2 index 2
[ 1764.228495][ T1459] Quota error (device loop7): qtree_read_dquot: Can't read quota structure for id 131074
[ 1764.284571][ T1459] EXT4-fs error (device loop7): ext4_acquire_dquot:7001: comm syz.7.8869: Failed to acquire dquot type 1
[ 1764.789271][T21939] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[ 1765.259396][ T1504] loop7: detected capacity change from 0 to 256
[ 1766.525735][ T1531] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8887'.
[ 1768.130940][ T1561] loop4: detected capacity change from 0 to 24
[ 1768.284861][ T1561] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1771.361061][ T1599] loop3: detected capacity change from 0 to 32768
[ 1771.377311][ T1599] workqueue: name exceeds WQ_NAME_LEN. Truncating to: gfs2-glock/__Š°"_½z#²˱1Ä
[ 1771.407629][ T1599] gfs2: fsid=__Š°"_½z#²˱1Ä	¢ “I¡3ØÆÆåwÕÊ‚X9: Trying to join cluster "lock_nolock", "__Š°"_½z#²˱1Ä	¢ “I¡3ØÆÆåwÕÊ‚X9"
[ 1771.422567][ T1599] gfs2: fsid=__Š°"_½z#²˱1Ä	¢ “I¡3ØÆÆåwÕÊ‚X9: Now mounting FS (format 1801)...
[ 1771.457343][ T1599] gfs2: fsid=__Š°"_½z#²˱1Ä	¢ “I¡3ØÆÆåwÕÊ‚X9.0: no journals!
[ 1772.488224][ T1630] loop7: detected capacity change from 0 to 128
[ 1772.816280][ T1638] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8917'.
[ 1774.474851][ T1661] loop6: detected capacity change from 0 to 2048
[ 1774.640143][ T1661] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1774.891196][ T1651] loop4: detected capacity change from 0 to 32768
[ 1774.939039][ T1651] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1774.950752][ T1651] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1774.999127][ T1651] gfs2: fsid=syz:syz.s: fatal: invalid metadata block - bh = 2 (bad magic number), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 496
[ 1775.019576][ T1651] CPU: 0 UID: 0 PID: 1651 Comm: syz.4.8920 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1775.019793][ T1651] Tainted: [L]=SOFTLOCKUP
[ 1775.019852][ T1651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1775.019946][ T1651] Call Trace:
[ 1775.020006][ T1651]  <TASK>
[ 1775.020070][ T1651]  __dump_stack+0x26/0x30
[ 1775.020253][ T1651]  dump_stack_lvl+0x14c/0x1c0
[ 1775.020443][ T1651]  dump_stack+0x1e/0x25
[ 1775.020609][ T1651]  gfs2_withdraw+0xd5/0x270
[ 1775.020815][ T1651]  gfs2_meta_check_ii+0xd7/0x100
[ 1775.021030][ T1651]  gfs2_meta_buffer+0x39a/0x590
[ 1775.021226][ T1651]  __gfs2_iomap_get+0xf1c/0x2230
[ 1775.021499][ T1651]  gfs2_block_map+0x286/0xde0
[ 1775.021745][ T1651]  ? kmsan_get_metadata+0xf1/0x160
[ 1775.021968][ T1651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1775.022203][ T1651]  gfs2_write_alloc_required+0x4fc/0x6d0
[ 1775.022478][ T1651]  gfs2_jdesc_check+0x33b/0x440
[ 1775.022656][ T1651]  check_journal_clean+0x1b6/0x4c0
[ 1775.022866][ T1651]  ? init_journal+0x31d8/0x3970
[ 1775.023069][ T1651]  ? kmsan_get_metadata+0xf1/0x160
[ 1775.023286][ T1651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1775.023520][ T1651]  init_journal+0x31d8/0x3970
[ 1775.023767][ T1651]  ? init_inodes+0x124/0x510
[ 1775.023974][ T1651]  ? init_inodes+0x124/0x510
[ 1775.024173][ T1651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1775.024416][ T1651]  init_inodes+0x124/0x510
[ 1775.024631][ T1651]  gfs2_fill_super+0x3518/0x3ff0
[ 1775.024845][ T1651]  ? init_locking+0xed/0x500
[ 1775.025089][ T1651]  get_tree_bdev_flags+0x6e6/0x920
[ 1775.025293][ T1651]  ? __pfx_gfs2_fill_super+0x10/0x10
[ 1775.025508][ T1651]  ? __pfx_gfs2_fill_super+0x10/0x10
[ 1775.025707][ T1651]  ? __pfx_gfs2_get_tree+0x10/0x10
[ 1775.025911][ T1651]  get_tree_bdev+0x38/0x50
[ 1775.026103][ T1651]  gfs2_get_tree+0x57/0x350
[ 1775.026306][ T1651]  ? __pfx_gfs2_get_tree+0x10/0x10
[ 1775.026515][ T1651]  vfs_get_tree+0xb3/0x5d0
[ 1775.026721][ T1651]  do_new_mount+0x885/0x1dd0
[ 1775.026931][ T1651]  ? apparmor_capable+0x2a2/0x380
[ 1775.027132][ T1651]  ? kmsan_get_metadata+0xf1/0x160
[ 1775.027347][ T1651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1775.027603][ T1651]  path_mount+0x7a2/0x20b0
[ 1775.027824][ T1651]  ? user_path_at+0x1fc/0x330
[ 1775.028021][ T1651]  __se_sys_mount+0x704/0x7f0
[ 1775.028172][ T1651]  ? kmsan_get_metadata+0xf1/0x160
[ 1775.028418][ T1651]  __x64_sys_mount+0xe4/0x150
[ 1775.028593][ T1651]  x64_sys_call+0x39f0/0x3ea0
[ 1775.028791][ T1651]  do_syscall_64+0x134/0xf80
[ 1775.028960][ T1651]  ? clear_bhb_loop+0x50/0xa0
[ 1775.029128][ T1651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1775.029296][ T1651] RIP: 0033:0x7fb7ebb9da0a
[ 1775.029420][ T1651] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1775.029559][ T1651] RSP: 002b:00007fb7ec99fe58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1775.029703][ T1651] RAX: ffffffffffffffda RBX: 00007fb7ec99fee0 RCX: 00007fb7ebb9da0a
[ 1775.029819][ T1651] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007fb7ec99fea0
[ 1775.029929][ T1651] RBP: 0000200000000400 R08: 00007fb7ec99fee0 R09: 0000000000210401
[ 1775.030036][ T1651] R10: 0000000000210401 R11: 0000000000000246 R12: 0000200000012500
[ 1775.030137][ T1651] R13: 00007fb7ec99fea0 R14: 00000000000125d8 R15: 0000200000000500
[ 1775.030286][ T1651]  </TASK>
[ 1775.365549][ T1651] gfs2: fsid=syz:syz.s: G:  s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:5
[ 1775.381351][ T1651] gfs2: fsid=syz:syz.s:  H: s:SH f:eEcH e:0 p:1651 [syz.4.8920] init_journal+0x31d8/0x3970
[ 1775.392170][ T1651] gfs2: fsid=syz:syz.s:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[ 1775.403889][ T1651] gfs2: fsid=syz:syz.s: Error checking journal for spectator mount.
[ 1776.447416][ T1691] tipc: Started in network mode
[ 1776.453912][ T1691] tipc: Node identity , cluster identity 4711
[ 1777.996676][ T1714] bridge0: port 3(ipvlan3) entered blocking state
[ 1778.033184][ T1714] bridge0: port 3(ipvlan3) entered disabled state
[ 1778.072585][ T1714] ipvlan3: entered allmulticast mode
[ 1778.116024][ T1714] bridge0: entered allmulticast mode
[ 1778.132904][ T1714] ipvlan3: left allmulticast mode
[ 1778.153463][ T1714] bridge0: left allmulticast mode
[ 1779.641669][ T1750] netlink: 16 bytes leftover after parsing attributes in process `syz.7.8949'.
[ 1780.316257][ T1761] loop3: detected capacity change from 0 to 512
[ 1780.357990][ T1761] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1780.544309][ T1761] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.8953: bad orphan inode 131083
[ 1780.644838][ T1761] loop3: lost filesystem error report for type 5 error -117
[ 1780.654172][    C1] EXT4-fs (loop3): error count since last fsck: 1
[ 1780.668631][    C1] EXT4-fs (loop3): initial error at time 1773435208: ext4_orphan_get:1417
[ 1780.677531][    C1] EXT4-fs (loop3): last error at time 1773435208: ext4_orphan_get:1417
[ 1780.703782][ T1776] netlink: 60 bytes leftover after parsing attributes in process `syz.0.8957'.
[ 1780.776522][ T1761] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1780.779770][ T1776] netlink: 60 bytes leftover after parsing attributes in process `syz.0.8957'.
[ 1781.113553][ T1782] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8959'.
[ 1781.221913][ T1782] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8959'.
[ 1781.591499][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1783.634261][T12122] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1783.894716][T12122] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1783.934433][T12122] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1783.965539][T12122] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1783.993893][T12122] usb 4-1: New USB device found, idVendor=0463, idProduct=1215, bcdDevice= 0.00
[ 1784.003472][T12122] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1784.096600][T12122] usb 4-1: config 0 descriptor??
[ 1784.237409][ T1841] loop7: detected capacity change from 0 to 1024
[ 1784.458002][ T1847] tmpfs: Cannot change global quota limit on remount
[ 1784.649674][T12122] hid-generic 0003:0463:1215.0026: hidraw0: USB HID v0.04 Device [HID 0463:1215] on usb-dummy_hcd.3-1/input0
[ 1784.793791][T12122] usb 4-1: USB disconnect, device number 42
[ 1785.238244][ T1873] netlink: 'syz.7.8978': attribute type 3 has an invalid length.
[ 1785.296273][ T1873] netlink: 'syz.7.8978': attribute type 3 has an invalid length.
[ 1785.601783][ T1873] netlink: 16 bytes leftover after parsing attributes in process `syz.7.8978'.
[ 1785.707261][ T1863] fido_id[1863]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[ 1786.058771][T12122] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[ 1786.285096][ T1895] tipc: Cannot configure node identity twice
[ 1786.291663][T12122] usb 4-1: Using ep0 maxpacket: 16
[ 1786.359319][T12122] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1786.404917][T12122] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1786.494226][T12122] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1786.580234][T12122] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1786.640250][T12122] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1786.703287][T12122] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1786.721521][T12122] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1786.767006][T12122] usb 4-1: Manufacturer: syz
[ 1786.848125][T12122] usb 4-1: config 0 descriptor??
[ 1787.665232][T12122] rc_core: IR keymap rc-hauppauge not found
[ 1787.692307][T12122] Registered IR keymap rc-empty
[ 1787.703114][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1787.775164][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1787.842368][T12122] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[ 1787.948663][T12122] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input49
[ 1788.073531][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.176403][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.225679][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.288000][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.355472][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.394916][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.476467][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.527333][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.605202][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.657122][T12122] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1788.712287][T12122] mceusb 4-1:0.0: Registered  with mce emulator interface version 0
[ 1788.774701][T12122] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1788.849285][T12122] usb 4-1: USB disconnect, device number 43
[ 1789.065440][  T734] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[ 1789.244222][  T734] usb 5-1: Using ep0 maxpacket: 8
[ 1789.278270][  T734] usb 5-1: config 0 has an invalid interface number: 32 but max is 0
[ 1789.336316][  T734] usb 5-1: config 0 has no interface number 0
[ 1789.384384][  T734] usb 5-1: too many endpoints for config 0 interface 32 altsetting 110: 111, using maximum allowed: 30
[ 1789.424442][  T734] usb 5-1: config 0 interface 32 altsetting 110 has 0 endpoint descriptors, different from the interface descriptor's value: 111
[ 1789.560601][  T734] usb 5-1: config 0 interface 32 has no altsetting 0
[ 1789.607083][  T734] usb 5-1: New USB device found, idVendor=1a0a, idProduct=0103, bcdDevice=ad.1d
[ 1789.644151][  T734] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1789.687492][  T734] usb 5-1: Product: syz
[ 1789.691951][  T734] usb 5-1: Manufacturer: syz
[ 1789.722536][  T734] usb 5-1: SerialNumber: syz
[ 1789.758436][  T734] usb 5-1: config 0 descriptor??
[ 1790.093703][  T734] usb_ehset_test 5-1:0.32: probe with driver usb_ehset_test failed with error -32
[ 1790.208807][  T734] usb 5-1: USB disconnect, device number 51
[ 1790.505970][ T1991] loop6: detected capacity change from 0 to 256
[ 1790.541989][ T1991] exfat: Deprecated parameter 'namecase'
[ 1790.591809][ T1991] exfat: Deprecated parameter 'namecase'
[ 1790.690293][ T1991] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1792.232961][ T2015] loop4: detected capacity change from 0 to 1024
[ 1792.787623][   T34] hfsplus: b-tree write err: -5, ino 25
[ 1792.793804][   T34] hfsplus: b-tree write err: -5, ino 4
[ 1792.832437][   T34] hfsplus: b-tree write err: -5, ino 2
[ 1794.514964][ T2064] loop6: detected capacity change from 0 to 64
[ 1794.694793][ T2064] syz.6.9023: attempt to access beyond end of device
[ 1794.694793][ T2064] loop6: rw=8388608, sector=234881062, nr_sectors = 2 limit=64
[ 1794.782480][ T2064] buffer_io_error: 25 callbacks suppressed
[ 1794.782573][ T2064] Buffer I/O error on dev loop6, logical block 117440531, async page read
[ 1794.836132][   T29] audit: type=1804 audit(1773435222.338:413): pid=2070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.9023" name="/newroot/695/file2/file2" dev="loop6" ino=6 res=1 errno=0
[ 1794.889769][ T2070] Trying to free block not in datazone
[ 1794.921426][ T2070] Trying to free block not in datazone
[ 1794.948084][   T29] audit: type=1800 audit(1773435222.448:414): pid=2064 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.9023" name="file2" dev="loop6" ino=6 res=0 errno=0
[ 1794.991767][ T2070] Trying to free block not in datazone
[ 1795.046706][ T2070] Trying to free block not in datazone
[ 1795.248004][ T2078] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9028'.
[ 1795.810406][ T2086] loop4: detected capacity change from 0 to 512
[ 1795.995967][ T2086] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1796.078945][ T2086] ext4 filesystem being mounted at /1827/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1796.150757][ T2100] loop3: detected capacity change from 0 to 512
[ 1796.265320][ T2100] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002]
[ 1796.289900][ T2096] loop6: detected capacity change from 0 to 2048
[ 1796.348498][ T2100] System zones: 1-12
[ 1796.395645][ T2100] EXT4-fs error (device loop3): dx_probe:791: inode #2: comm syz.3.9034: Directory hole found for htree index block 0
[ 1796.447405][ T2096] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1796.526971][ T2096] NILFS (loop6): mounting unchecked fs
[ 1796.576040][ T2100] loop3: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[ 1796.579386][ T5774] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1796.590896][    C0] EXT4-fs (loop3): error count since last fsck: 1
[ 1796.591006][    C0] EXT4-fs (loop3): initial error at time 1773435224: dx_probe:791: inode 2
[ 1796.591178][    C0] EXT4-fs (loop3): last error at time 1773435224: dx_probe:791: inode 2
[ 1796.651429][ T2100] EXT4-fs (loop3): Remounting filesystem read-only
[ 1796.674431][ T2100] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -117
[ 1796.683077][ T2100] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[ 1796.733842][ T2096] NILFS (loop6): recovery complete
[ 1796.776452][ T2100] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1796.832573][ T2108] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1796.937537][ T2100] EXT4-fs: user quota file already specified
[ 1797.288131][ T2113] loop4: detected capacity change from 0 to 512
[ 1797.316163][ T2113] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1797.411341][ T2113] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters
[ 1797.426870][ T2113] Quota error (device loop4): write_blk: dquota write failed
[ 1797.434785][ T2113] Quota error (device loop4): find_free_dqentry: Can't write quota data block 5
[ 1797.448202][ T2113] Quota error (device loop4): write_blk: dquota write failed
[ 1797.456462][ T2113] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[ 1797.466878][ T2113] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.9035: Failed to acquire dquot type 1
[ 1797.478500][ T2113] loop4: lost filesystem error report for type 5 error -28
[ 1797.484110][    C1] EXT4-fs (loop4): error count since last fsck: 2
[ 1797.498170][    C1] EXT4-fs (loop4): initial error at time 1773435224: ext4_mb_generate_buddy:1315
[ 1797.507690][    C1] EXT4-fs (loop4): last error at time 1773435225: ext4_acquire_dquot:7001
[ 1797.533795][ T2113] EXT4-fs (loop4): 1 truncate cleaned up
[ 1797.542043][ T2113] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1797.761969][ T5774] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1797.847953][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1799.038174][ T2135] loop4: detected capacity change from 0 to 4096
[ 1799.095585][ T2135] EXT4-fs: Ignoring removed orlov option
[ 1799.161591][ T2135] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1799.242347][ T2135] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1799.333126][   T29] audit: type=1800 audit(1773435226.858:415): pid=2135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.9039" name="file1" dev="loop4" ino=15 res=0 errno=0
[ 1799.382126][ T2135] fs-verity (loop4, inode 15): Error -22 reading file data
[ 1799.411731][ T2135] fs-verity (loop4, inode 15): Error -22 building Merkle tree
[ 1799.829737][ T5774] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1800.354967][ T2161] loop6: detected capacity change from 0 to 2048
[ 1800.416513][ T2161] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[ 1800.658263][ T2161] UDF-fs: unknown compression code (0)
[ 1800.931666][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1800.949382][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1802.603354][ T2194] loop3: detected capacity change from 0 to 4096
[ 1802.812290][ T2207] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1804.109574][ T2234] loop4: detected capacity change from 0 to 256
[ 1804.617818][ T2240] loop3: detected capacity change from 0 to 256
[ 1806.812078][  T131] netdevsim netdevsim7 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1806.878087][  T131] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1807.034547][T12122] usb 5-1: new low-speed USB device number 52 using dummy_hcd
[ 1807.091135][  T131] netdevsim netdevsim7 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1807.155498][  T131] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1807.199927][ T2285] netlink: 52 bytes leftover after parsing attributes in process `syz.3.9081'.
[ 1807.250902][T12122] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[ 1807.284209][T12122] usb 5-1: config 0 has no interface number 0
[ 1807.292813][T12122] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1807.331342][T12122] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[ 1807.373633][T12122] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1807.434317][T12122] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[ 1807.490726][  T131] netdevsim netdevsim7 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1807.502722][T12122] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[ 1807.536554][T12122] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1807.540442][  T131] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1807.600787][T12122] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1807.664595][T12122] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1807.692654][T12122] usb 5-1: config 0 descriptor??
[ 1807.721634][ T2278] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1807.756169][ T2278] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1807.802860][  T131] netdevsim netdevsim7 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1807.872279][  T131] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1807.932653][T12122] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1808.115445][T12122] usb 5-1: USB disconnect, device number 52
[ 1808.146321][ T2301] loop6: detected capacity change from 0 to 64
[ 1808.217904][T12122] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[ 1808.832771][T19677] hfs: node 4:3 still has 2 user(s)!
[ 1808.845217][  T131] bridge_slave_1: left allmulticast mode
[ 1808.851099][  T131] bridge_slave_1: left promiscuous mode
[ 1808.978235][  T131] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1809.158334][  T131] bridge_slave_0: left allmulticast mode
[ 1809.244141][  T131] bridge_slave_0: left promiscuous mode
[ 1809.250870][  T131] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1809.395018][  T131] batman_adv: batadv0: Interface deactivated: ip6gretap1
[ 1809.934590][T12122] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1810.191795][T12122] usb 4-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[ 1810.218876][T12122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1810.238627][T12122] usb 4-1: Product: syz
[ 1810.275307][T12122] usb 4-1: Manufacturer: syz
[ 1810.286255][T12122] usb 4-1: SerialNumber: syz
[ 1810.328391][T12122] usb 4-1: config 0 descriptor??
[ 1810.391970][T12122] gspca_main: sq905c-2.14.0 probing 2770:9052
[ 1810.540645][  T131] batman_adv: batadv0: Removing interface: ip6gretap1
[ 1811.053374][T12122] gspca_sq905c: sq905c_command: usb_control_msg failed (-71)
[ 1811.083891][T12122] sq905c 4-1:0.0: probe with driver sq905c failed with error -71
[ 1811.111137][T12122] usb 4-1: USB disconnect, device number 44
[ 1811.221585][  T131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1811.292517][  T131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1811.309670][  T131] bond0 (unregistering): Released all slaves
[ 1811.374268][ T2338] bridge0: port 3(ipvlan2) entered blocking state
[ 1811.381841][ T2338] bridge0: port 3(ipvlan2) entered disabled state
[ 1811.402097][ T2338] ipvlan2: entered allmulticast mode
[ 1811.409017][ T2338] bridge0: entered allmulticast mode
[ 1811.418254][ T2338] ipvlan2: left allmulticast mode
[ 1811.423842][ T2338] bridge0: left allmulticast mode
[ 1812.239662][ T2379] loop3: detected capacity change from 0 to 256
[ 1812.639082][ T2379] FAT-fs (loop3): Directory bread(block 64) failed
[ 1812.681528][ T2379] FAT-fs (loop3): Directory bread(block 65) failed
[ 1812.724845][ T2379] FAT-fs (loop3): Directory bread(block 66) failed
[ 1812.783788][ T2379] FAT-fs (loop3): Directory bread(block 67) failed
[ 1812.791287][ T2379] FAT-fs (loop3): Directory bread(block 68) failed
[ 1812.832633][  T131] hsr_slave_0: left promiscuous mode
[ 1812.876407][ T2379] FAT-fs (loop3): Directory bread(block 69) failed
[ 1812.885663][ T2391] tmpfs: Cannot change global quota limit on remount
[ 1812.903135][  T131] hsr_slave_1: left promiscuous mode
[ 1812.925105][ T2379] FAT-fs (loop3): Directory bread(block 70) failed
[ 1812.931918][ T2379] FAT-fs (loop3): Directory bread(block 71) failed
[ 1812.985858][  T131] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1812.993499][  T131] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1813.025338][ T2394] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9101'.
[ 1813.048183][ T2379] FAT-fs (loop3): Directory bread(block 72) failed
[ 1813.049099][ T2394] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9101'.
[ 1813.088962][ T2379] FAT-fs (loop3): Directory bread(block 73) failed
[ 1813.101675][  T131] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1813.164867][  T131] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1813.398842][  T131] veth1_macvtap: left promiscuous mode
[ 1813.444527][  T131] veth0_macvtap: left promiscuous mode
[ 1813.450603][  T131] veth1_vlan: left promiscuous mode
[ 1813.474736][  T131] veth0_vlan: left promiscuous mode
[ 1813.783466][T29571] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1813.796905][T29571] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1813.816866][T29571] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1813.848338][T29571] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1813.892780][T29571] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1814.625626][ T2429] loop6: detected capacity change from 0 to 64
[ 1814.965540][  T131] pim6reg (unregistering): left allmulticast mode
[ 1815.117660][T19677] hfs: node 4:3 still has 1 user(s)!
[ 1815.936707][  T131] team0 (unregistering): Port device team_slave_1 removed
[ 1815.949317][T29571] Bluetooth: hci1: command tx timeout
[ 1816.038709][  T131] team0 (unregistering): Port device team_slave_0 removed
[ 1816.331578][ T2451] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9110'.
[ 1816.576710][ T2398] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[ 1817.037810][ T2459] vimc link validate: Scaler:src:16x16 (0x33424752, 12, 0, 4, 0) RGB/YUV Capture:snk:2046x16 (0x33524742, 8, 0, 0, 0)
[ 1817.056420][ T2405] lo speed is unknown, defaulting to 1000
[ 1817.091798][ T2405] xfrm0 speed is unknown, defaulting to 1000
[ 1817.425535][ T2472] syz_tun: entered promiscuous mode
[ 1817.472759][ T2472] macvtap1: entered promiscuous mode
[ 1817.596619][ T2472] syz_tun: left promiscuous mode
[ 1818.024985][T29571] Bluetooth: hci1: command tx timeout
[ 1818.053034][  T131] IPVS: stop unused estimator thread 0...
[ 1818.642406][ T2517] sp0: Synchronizing with TNC
[ 1818.705661][ T2515] [U] è
[ 1820.115241][T29571] Bluetooth: hci1: command tx timeout
[ 1820.200161][ T2405] chnl_net:caif_netlink_parms(): no params data found
[ 1820.945407][ T2639] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9131'.
[ 1820.973231][ T2639] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9131'.
[ 1822.226387][T29571] Bluetooth: hci1: command tx timeout
[ 1822.399573][ T2686] loop6: detected capacity change from 0 to 128
[ 1822.526602][ T2686] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1822.626977][ T2686] ext4 filesystem being mounted at /723/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1823.101625][T19677] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1823.152727][ T2716] xt_hashlimit: size too large, truncated to 1048576
[ 1823.237293][ T2405] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1823.272806][ T2405] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1823.303422][ T2405] bridge_slave_0: entered allmulticast mode
[ 1823.341322][ T2405] bridge_slave_0: entered promiscuous mode
[ 1823.427386][ T2405] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1823.444729][ T2405] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1823.452683][ T2405] bridge_slave_1: entered allmulticast mode
[ 1823.520863][ T2405] bridge_slave_1: entered promiscuous mode
[ 1823.727696][ T2735] loop3: detected capacity change from 0 to 256
[ 1823.761404][ T2741] loop6: detected capacity change from 0 to 256
[ 1823.832239][ T2741] exfat: Deprecated parameter 'utf8'
[ 1823.868839][ T2735] FAT-fs (loop3): Directory bread(block 517) failed
[ 1823.878984][ T2741] exfat: Deprecated parameter 'utf8'
[ 1823.919913][ T2735] FAT-fs (loop3): Directory bread(block 518) failed
[ 1823.935103][ T2741] exfat: Deprecated parameter 'namecase'
[ 1823.955557][ T2735] FAT-fs (loop3): Directory bread(block 519) failed
[ 1823.994856][ T1195] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[ 1824.008399][ T2735] FAT-fs (loop3): Directory bread(block 520) failed
[ 1824.028996][ T2735] FAT-fs (loop3): Directory bread(block 521) failed
[ 1824.081906][ T2735] FAT-fs (loop3): Directory bread(block 522) failed
[ 1824.095516][ T2405] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1824.136171][ T2735] FAT-fs (loop3): Directory bread(block 523) failed
[ 1824.143235][ T2735] FAT-fs (loop3): Directory bread(block 524) failed
[ 1824.153728][ T2741] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d)
[ 1824.218285][ T2405] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1824.237268][ T1195] usb 5-1: Using ep0 maxpacket: 16
[ 1824.246105][ T2735] FAT-fs (loop3): Directory bread(block 525) failed
[ 1824.253168][ T2735] FAT-fs (loop3): Directory bread(block 526) failed
[ 1824.312407][ T1195] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1824.381345][ T1195] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1824.444184][ T1195] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1824.519224][ T1195] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1824.564196][ T1195] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1824.650220][ T1195] usb 5-1: config 0 descriptor??
[ 1824.739387][ T2405] team0: Port device team_slave_0 added
[ 1824.961319][ T2405] team0: Port device team_slave_1 added
[ 1825.350149][ T1195] microsoft 0003:045E:07DA.0027: item 0 4 0 11 parsing failed
[ 1825.464352][ T1195] microsoft 0003:045E:07DA.0027: parse failed
[ 1825.471076][ T1195] microsoft 0003:045E:07DA.0027: probe with driver microsoft failed with error -22
[ 1825.676380][ T1195] usb 5-1: USB disconnect, device number 53
[ 1825.690099][ T2405] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1825.771728][T28065] =====================================================
[ 1825.783819][T28065] BUG: KMSAN: uninit-value in n_tty_receive_buf_standard+0xe7b/0xc820
[ 1825.792801][T28065]  n_tty_receive_buf_standard+0xe7b/0xc820
[ 1825.799603][T28065]  n_tty_receive_buf_common+0x1a59/0x2610
[ 1825.808707][T28065]  n_tty_receive_buf2+0x4c/0x60
[ 1825.813795][T28065]  tty_ldisc_receive_buf+0xc6/0x2c0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1825.819507][T28065]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1825.825821][T28065]  flush_to_ldisc+0x43e/0xe40
[ 1825.830813][T28065]  process_scheduled_works+0xb21/0x1e30
[ 1825.839812][T28065]  worker_thread+0xede/0x1580
[ 1825.844822][T28065]  kthread+0x53f/0x600
[ 1825.849255][T28065]  ret_from_fork+0x20f/0x910
[ 1825.854238][T28065]  ret_from_fork_asm+0x1a/0x30
[ 1825.859228][T28065] 
[ 1825.861650][T28065] Uninit was stored to memory at:
[ 1825.870528][T28065]  n_tty_receive_buf_standard+0xe74/0xc820
[ 1825.876708][T28065]  n_tty_receive_buf_common+0x1a59/0x2610
[ 1825.882718][T28065]  n_tty_receive_buf2+0x4c/0x60
[ 1825.888323][T28065]  tty_ldisc_receive_buf+0xc6/0x2c0
[ 1825.893763][T28065]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1825.902848][T28065]  flush_to_ldisc+0x43e/0xe40
[ 1825.907890][T28065]  process_scheduled_works+0xb21/0x1e30
[ 1825.913689][T28065]  worker_thread+0xede/0x1580
[ 1825.918850][T28065]  kthread+0x53f/0x600
[ 1825.923163][T28065]  ret_from_fork+0x20f/0x910
[ 1825.931113][T28065]  ret_from_fork_asm+0x1a/0x30
[ 1825.936244][T28065] 
[ 1825.938677][T28065] Uninit was created at:
[ 1825.943235][T28065]  __kmalloc_noprof+0x486/0x1680
[ 1825.948581][T28065]  __tty_buffer_request_room+0x3d4/0x7a0
[ 1825.957636][T28065]  __tty_insert_flip_string_flags+0x157/0x6e0
[ 1825.964140][T28065]  uart_insert_char+0x368/0x930
[ 1825.969353][T28065]  serial8250_read_char+0x1ba/0x670
[ 1825.975097][T28065]  serial8250_handle_irq+0x930/0x1110
[ 1825.980785][T28065]  serial8250_default_handle_irq+0x116/0x370
[ 1825.990134][T28065]  serial8250_interrupt+0xcb/0x420
[ 1825.995588][T28065]  __handle_irq_event_percpu+0x13c/0xf90
[ 1826.001590][T28065]  handle_irq_event+0xe0/0x2a0
[ 1826.006651][T28065]  handle_edge_irq+0x2a9/0xb30
[ 1826.011718][T28065]  __common_interrupt+0x9d/0x180
[ 1826.020122][T28065]  common_interrupt+0x94/0xb0
[ 1826.025157][T28065]  asm_common_interrupt+0x2b/0x40
[ 1826.030378][T28065] 
[ 1826.032908][T28065] CPU: 0 UID: 0 PID: 28065 Comm: kworker/u8:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1826.047517][T28065] Tainted: [L]=SOFTLOCKUP
[ 1826.052055][T28065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1826.062379][T28065] Workqueue: events_unbound flush_to_ldisc
[ 1826.068643][T28065] =====================================================
[ 1826.078703][T28065] Disabling lock debugging due to kernel taint
[ 1826.170597][ T2405] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1826.347089][ T2405] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1826.433382][ T2405] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1826.494192][ T2405] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1826.593023][ T2405] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1827.241086][ T2405] hsr_slave_0: entered promiscuous mode
[ 1827.339542][ T2405] hsr_slave_1: entered promiscuous mode
[ 1827.356159][T28065] Kernel panic - not syncing: kmsan.panic set ...
[ 1827.362835][T28065] CPU: 0 UID: 0 PID: 28065 Comm: kworker/u8:0 Tainted: G    B        L      syzkaller #0 PREEMPT(full) 
[ 1827.374188][T28065] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP
[ 1827.379857][T28065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1827.390088][T28065] Workqueue: events_unbound flush_to_ldisc
[ 1827.396180][T28065] Call Trace:
[ 1827.399578][T28065]  <TASK>
[ 1827.402631][T28065]  __dump_stack+0x26/0x30
[ 1827.407176][T28065]  dump_stack_lvl+0x50/0x1c0
[ 1827.411975][T28065]  ? dump_stack+0x12/0x25
[ 1827.416510][T28065]  dump_stack+0x1e/0x25
[ 1827.420874][T28065]  vpanic+0x7b4/0x1430
[ 1827.425187][T28065]  panic+0x15d/0x160
[ 1827.429406][T28065]  kmsan_report+0x31a/0x320
[ 1827.434164][T28065]  ? __msan_warning+0x1b/0x30
[ 1827.439071][T28065]  ? n_tty_receive_buf_standard+0xe7b/0xc820
[ 1827.445279][T28065]  ? n_tty_receive_buf_common+0x1a59/0x2610
[ 1827.451405][T28065]  ? n_tty_receive_buf2+0x4c/0x60
[ 1827.456635][T28065]  ? tty_ldisc_receive_buf+0xc6/0x2c0
[ 1827.462258][T28065]  ? tty_port_default_receive_buf+0xd7/0x1a0
[ 1827.468514][T28065]  ? flush_to_ldisc+0x43e/0xe40
[ 1827.473602][T28065]  ? process_scheduled_works+0xb21/0x1e30
[ 1827.479538][T28065]  ? worker_thread+0xede/0x1580
[ 1827.484592][T28065]  ? kthread+0x53f/0x600
[ 1827.489055][T28065]  ? ret_from_fork+0x20f/0x910
[ 1827.494022][T28065]  ? ret_from_fork_asm+0x1a/0x30
[ 1827.499178][T28065]  ? ret_from_fork_asm+0x1a/0x30
[ 1827.504355][T28065]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1827.510977][T28065]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1827.517298][T28065]  ? __mutex_unlock_slowpath+0x3f7/0x530
[ 1827.523218][T28065]  ? kmsan_get_metadata+0x146/0x160
[ 1827.528661][T28065]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1827.534711][T28065]  ? n_tty_receive_char+0x1223/0x14f0
[ 1827.540281][T28065]  ? __wake_up+0x29d/0x2f0
[ 1827.544950][T28065]  ? kmsan_get_metadata+0xf1/0x160
[ 1827.550296][T28065]  __msan_warning+0x1b/0x30
[ 1827.555058][T28065]  n_tty_receive_buf_standard+0xe7b/0xc820
[ 1827.561150][T28065]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1827.567709][T28065]  ? kmsan_get_metadata+0xf1/0x160
[ 1827.573053][T28065]  ? advisor_target_scan_time_store+0x100/0x180
[ 1827.579533][T28065]  n_tty_receive_buf_common+0x1a59/0x2610
[ 1827.585543][T28065]  n_tty_receive_buf2+0x4c/0x60
[ 1827.590577][T28065]  ? __pfx_n_tty_receive_buf2+0x10/0x10
[ 1827.596320][T28065]  tty_ldisc_receive_buf+0xc6/0x2c0
[ 1827.601779][T28065]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1827.607832][T28065]  flush_to_ldisc+0x43e/0xe40
[ 1827.612752][T28065]  ? __pfx_tty_port_default_receive_buf+0x10/0x10
[ 1827.619409][T28065]  ? __pfx_flush_to_ldisc+0x10/0x10
[ 1827.624843][T28065]  process_scheduled_works+0xb21/0x1e30
[ 1827.630645][T28065]  worker_thread+0xede/0x1580
[ 1827.635548][T28065]  kthread+0x53f/0x600
[ 1827.639827][T28065]  ? __pfx_worker_thread+0x10/0x10
[ 1827.645135][T28065]  ? __pfx_kthread+0x10/0x10
[ 1827.649932][T28065]  ret_from_fork+0x20f/0x910
[ 1827.654711][T28065]  ? __switch_to+0x51c/0x750
[ 1827.659670][T28065]  ? __pfx_kthread+0x10/0x10
[ 1827.664464][T28065]  ret_from_fork_asm+0x1a/0x30
[ 1827.669484][T28065]  </TASK>
[ 1827.673257][T28065] Kernel Offset: disabled
[ 1827.677666][T28065] Rebooting in 86400 seconds..