last executing test programs:

13m35.565543562s ago: executing program 32 (id=860):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{0xaa7, 0x2000, 0x1, 0xfffe}, 'syz1\x00', 0x4})
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x12)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$input_event(r0, &(0x7f0000000080)={{0x0, 0xea60}, 0x12, 0x5, 0x4}, 0x18)

13m7.924312913s ago: executing program 33 (id=918):
r0 = syz_open_dev$ndb(&(0x7f0000000100), 0x0, 0x0)
r1 = socket(0x2, 0x1, 0x0)
ioctl$NBD_SET_SOCK(r0, 0xab00, r1)
ioctl$NBD_DO_IT(r0, 0xab03)
ioctl$NBD_DO_IT(r0, 0xab03)

12m47.644505236s ago: executing program 34 (id=1024):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x401, @empty, 0x4}, 0x1c)
listen(r0, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='dctcp', 0x5)
syz_emit_ethernet(0x36, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x3, 0x37, 0x28, 0xe5, 0x0, 0x8, 0x6, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x39}}, {{0x4e21, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x2, 0x0, 0x8}}}}}}, 0x0)

11m43.456132477s ago: executing program 2 (id=1246):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r2=>0x0})
bind$can_j1939(r0, &(0x7f0000000280)={0x1d, r2, 0x3, {0x1, 0xf0, 0x4}, 0xff}, 0x18)
bind$can_j1939(r0, &(0x7f0000000000)={0x1d, r2, 0x400000000002, {}, 0xfe}, 0x18)

11m42.712671951s ago: executing program 2 (id=1251):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@noblock_validity}]}, 0x1, 0xbb6, &(0x7f0000000c00)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)

11m41.219264895s ago: executing program 2 (id=1257):
timer_settime(0x0, 0x0, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETAW(r0, 0x5407, &(0x7f00000001c0)={0x6, 0x8, 0x9, 0xfdff, 0x7})
ioctl$TIOCMSET(r0, 0x5418, &(0x7f0000000000)=0x8001)
openat$ttyS3(0xffffff9c, &(0x7f0000000140), 0x20040, 0x0)

11m40.210117034s ago: executing program 2 (id=1260):
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000380)='./file0\x00', 0x42000c27)
rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file1\x00')
setxattr$system_posix_acl(&(0x7f0000006200)='./file1\x00', &(0x7f0000006240)='system.posix_acl_default\x00', &(0x7f0000006500)=ANY=[@ANYBLOB="02"], 0x4, 0x1)

11m39.573403613s ago: executing program 2 (id=1265):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f00000006c0)={[{@utf8no}, {@utf8no}, {@fat=@errors_continue}, {@uni_xlate}, {@numtail}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@uni_xlateno}, {@rodir}, {@numtail}, {@shortname_win95}, {@rodir}, {@fat=@codepage={'codepage', 0x3d, '1250'}}, {@shortname_win95}, {@fat=@dos1xfloppy}, {@utf8no}, {}]}, 0x6, 0x2d2, &(0x7f00000008c0)="$eJzs3T9rZFUYB+D3JpOZWQUnhZUIHtDCatlsazOL7IKYymUKtdDgZmHJBCWBgH/wupWtjYWFn0AQ/CA2fgPBVrBzhYUj9869eyebMJu7OBHd5ymSkzPnN+c9d4bkpsibD18+PLiT4u79L36N8biIjWlM40ER27ERra/ilOk3AQD8lz3IOf7IC31yRUSM11cWALBGF/v5P+iGP11KWQDAGt1+9723b+zu3nwnpXHcOvz6ZFb9Zl99vtIuuRfz2I9rMYmHEfWNwlbUdwvV8FbOuRykyna8dliezE5mEYcf/NyEb/weUed3YhLb9dSju406/9buzZ06nj55ocuXVR3PVfm7cW9a5a/HJF58FD6Vv55SGkVKS/uXMRvG668u8vX+V2MSv3wUH8c87tRFdPkvd1J6M3/75+fvV+VV+aI8mY3qdZ28eakvDAAAAAAAAAAAAAAAAAAAAAAA/2tXF7130ijq/j3VVNN/Z/Nh9cVWpNZyf5+y+hhNH+Dacn+gnHOZ4/u2v861lFJuFnb5Qbw0WG4sCAAAAAAAAAAAAAAAAAAAAM+u408/O9ibz/eP/pFB2w1gEBF/3Y542ueZLs28EqsXj5o99+bzjWZ4es1geSY22zVFxMoyqkM87dUYRK+zXzlTczP44ce+u4+fvGar2qvoV2HPQfvuOtgrzr+Go2hnxk0Z3w0jujXDuOBew8dn8mTxPLnXAYfnPjTpffbh8/WgXLEmilWFvfHb4so1M2depmF9Vc+NbzWDpfhj740LvZ9jvIif/V5R6NYBAAAAAAAAAAAAAAAAAABr1f317zkP3l8Z3cijtZUFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJeq+///PQZlE94/Oh48YfEwjo7/5SMCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwDPg7AAD//+RmV1Y=")
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mlock(&(0x7f0000a53000/0x3000)=nil, 0x3000)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)

11m38.30709959s ago: executing program 2 (id=1271):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000016c0)=@newsa={0x138, 0x10, 0x1, 0xfff7fffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x2}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in=@loopback, 0x4d4, 0x6c}, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0xe2e237c}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffd, 0x40}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x10000000)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@multicast1, @in=@multicast2, 0x4e20, 0x0, 0x800, 0x0, 0x2}, {0x7, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {0xffffffffffffffff}, 0x3, 0x0, 0x1, 0x0, 0x3, 0x3}, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x2b}, 0x0, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x200000}}, 0xe8)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)

11m20.638223425s ago: executing program 35 (id=1271):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000016c0)=@newsa={0x138, 0x10, 0x1, 0xfff7fffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x2}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in=@loopback, 0x4d4, 0x6c}, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0xe2e237c}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffd, 0x40}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x10000000)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@multicast1, @in=@multicast2, 0x4e20, 0x0, 0x800, 0x0, 0x2}, {0x7, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {0xffffffffffffffff}, 0x3, 0x0, 0x1, 0x0, 0x3, 0x3}, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x2b}, 0x0, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x200000}}, 0xe8)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)

11m3.967688221s ago: executing program 7 (id=1373):
r0 = socket$kcm(0x29, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
sendmmsg$inet(r0, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000380)='F', 0x1}], 0x1}}], 0x1, 0x14)
sendfile(r0, r1, 0x0, 0xffffffff000)

11m2.525967853s ago: executing program 7 (id=1376):
io_setup(0x2278, &(0x7f0000000180)=<r0=>0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_timeval(r1, 0x1, 0x14, &(0x7f0000000000)={0x0, 0xea60}, 0x10)
io_submit(r0, 0x2, &(0x7f0000000140)=[&(0x7f00000001c0)={0x0, 0x4, 0x0, 0x0, 0x0, r1, &(0x7f0000000200)=' ', 0x1, 0x0, 0x0, 0x2}, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x3, 0x2, r1, 0x0, 0x0, 0x300}])
syz_clone(0x410c5000, 0x0, 0x0, 0x0, 0x0, 0x0)

10m52.765943937s ago: executing program 7 (id=1402):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x804000, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x2, 0xc38, &(0x7f0000001d00)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.events\x00', 0x275a, 0x0)
mmap(&(0x7f000048a000/0x1000)=nil, 0x1000, 0x2, 0x12, r0, 0x9db3f000)
ftruncate(r0, 0xc17a)
ftruncate(r0, 0x84)

10m51.581573828s ago: executing program 7 (id=1404):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x20048a, &(0x7f00000001c0)={[{@grpjquota}, {@noinit_itable}, {@abort}, {@bsdgroups}]}, 0x12, 0x51a, &(0x7f0000001200)="$eJzs3U9sI1cZAPBvJsnam6ZNCj0AKnQphQWt1k68bVT1QjlVCFVC9MhhGxInimLHUeyUJuwhe+SORCVOcOLMAYkDUk/ckTjAjUs5IBVYgRokJFx5bGedP06sbGJv499PGvnNvLG/93Y071mfN/MCGFu3ImI/Im5ExLsRMds5nnS2eLO9tc775NGD5YNHD5aTaDbf+WeS1beORc97Wp7pfGY+In7wVsSPkmNB/xRR393bWKpUytudQ8VGdatY3927u15dWiuvlTdLpcWFxfnX771WurS+vlT9zcc3I+L3v/vyR3/c/9ZPWs2a6dT19uMytbs+dRinZTIivncVwUZgotOfGxd584XexGVKI+JzEfFydv/PxkR2NY86epm+PcTWAQBXodmcjeZs7z4AcN2lWQ4sSQudXMBMpGmh0M7hvRDTaaVWb9xZre1srrRzZXMxla6uV8rznVzhXEwlq+uT5YWs3N2vlEvH9u9FxPMR8bPczWy/sFyrrIzyiw8AjLFnjs3//8m1538A4JrLPy7mRtkOAGB48qNuAAAwdOZ/ABg/5n8AGD/mfwAYP+Z/ABg/5n8AGCvff/vt1tY86Dz/euW93Z2N2nt3V8r1jUJ1Z7mwXNveKqzVamvZM3uq531epVbbWng1dt4vNsr1RrG+u3e/WtvZbNzPnut9vzw1lF4BAGd5/qUP/5JExP4bN7Mtep73f+5c/eJVtw64SumoGwCMzMSoGwCMzMnVvoBxIR8P4+v/zWYzetbujYiHh6Weh4H2/S9CHwwUJrVuKDx9bn/xCfL/wGea/D+Mr4vl/32Xh+tA/h/GV7OZWPMfAMaMHD+QnFPf+/v/fLNnZ7Df/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBamsm2JC101gKfiTQtFCKejYi5mEpW1yvl+Yh4LiL+nJvKtfYXIsK6QQDwWZb+Pems/3V79pWZ47U3cv/NZa8R8eNfvPPz95caje2FiBvJvw6PNz7oHC+Nov0AwHm683R3Hu/65NGD5e42zPZ8/J324qKtuAedrV0zGZPZaz7LNUz/O+nst7W+r0xcQvz9hxHxhdP6n2S5kbnOyqfH47diPzvU+OmR+GlW135t/Vt8/hLaAuPmw9b48+Zp918at7LX0+//fDZCPbnu+HdwYvxLD8e/iT7j361BY7z6h++eONicbdc9jPjSZMRB98N7xp9u/KRP/FcGjP/XF7/ycr+65i8jbsdp/U+OxCo2qlvF+u7e3fXq0lp5rbxZKi0uLM6/fu+1UjHLURe7meqT/vHGnef6xW/1f7pP/Pw5/f/6gP3/1f/e/eFXz4j/za+dfv1fOCN+a078xoDxl6Z/m+9X14q/0qf/513/OwPG/+hveysDngoADEF9d29jqVIpbz95IX/mOellhBigkETsX3GIx4Xcr3/61vkn54bWngsWol/VxNPSwmtTyD0dzRigMOqRCbhqj2/6UbcEAAAAAAAAAAAAAADoZxh/TjTqPgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHB9fRoAAP//j4/W2A==")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x2000, 0x20)
r1 = openat(r0, &(0x7f0000004280)='./file0\x00', 0x80000, 0x0)
lseek(r1, 0x100, 0x4)

10m50.20883342s ago: executing program 7 (id=1408):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

10m48.73534544s ago: executing program 7 (id=1413):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000400)={'#! ', './file1/../file0', [], 0xa, "521299a432289bea0aa53f5db534de379d0418026c1f265a707f7b5008ab99f2c9a997ad079ea398ccfcdc48da03fd070a2913b99836792d5dd5992db64276c3aebed24145776c"}, 0x5b)
write$UHID_INPUT(r1, &(0x7f00000007c0)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "9001001c551265406c7f306003d8a0f4bd0000000300"}})

10m46.32045105s ago: executing program 36 (id=1413):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000400)={'#! ', './file1/../file0', [], 0xa, "521299a432289bea0aa53f5db534de379d0418026c1f265a707f7b5008ab99f2c9a997ad079ea398ccfcdc48da03fd070a2913b99836792d5dd5992db64276c3aebed24145776c"}, 0x5b)
write$UHID_INPUT(r1, &(0x7f00000007c0)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "9001001c551265406c7f306003d8a0f4bd0000000300"}})

5m19.390711966s ago: executing program 9 (id=2567):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1c802, &(0x7f0000002740)=ANY=[], 0x3, 0x5f74, &(0x7f0000002040)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)

5m18.027118448s ago: executing program 9 (id=2572):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x800}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000480)={@local, @random="1a0e2c5ffd4d", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @broadcast}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x11}}}}}}, 0x0)

5m16.764158702s ago: executing program 9 (id=2581):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x804, &(0x7f0000000840)=ANY=[@ANYRES16=0x0], 0x1, 0x28e, &(0x7f0000000500)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xc042, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
unlink(&(0x7f0000000280)='./file1\x00')

5m16.078584321s ago: executing program 9 (id=2586):
mkdirat(0xffffffffffffff9c, &(0x7f0000000b00)='./file0\x00', 0x1c0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000300)='.\x00', &(0x7f0000000380)='./file0/file0\x00', 0x0, 0x2a05004, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)

5m15.566283762s ago: executing program 9 (id=2588):
pselect6(0x0, 0x0, &(0x7f00000000c0)={0x1f, 0x3, 0x8, 0x0, 0xfffffffffffffff8, 0xfffffffffffffffc, 0x4000000000}, 0x0, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r2, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)

5m14.291369192s ago: executing program 9 (id=2597):
r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r1, &(0x7f00000000c0)='cpu.stat\x00', 0x275a, 0x0)

5m12.658041438s ago: executing program 37 (id=2597):
r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r1, &(0x7f00000000c0)='cpu.stat\x00', 0x275a, 0x0)

1m47.148630715s ago: executing program 1 (id=3414):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x1)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
r1 = socket(0x40000000015, 0x805, 0x0)
getsockopt(r1, 0x114, 0x5, &(0x7f0000019100)=""/102399, &(0x7f00000000c0)=0x18fff)

1m45.267334383s ago: executing program 1 (id=3420):
syz_mount_image$hfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x10012, &(0x7f00000004c0)=ANY=[@ANYBLOB='codepage=cp775,umask=00000000007777,iocharset=koi8-ru,\x00'/64, @ANYBLOB="7b467be6d2ffd5dbc39d475a3efbcc5666f07a12652e81e75be5e881b521fcda9e61566e2b548201f553091a16ad9bb6888f170e5d63f7a84c585f22f2397bf6c9fe0ad346d27e428fa6322e2a05eddacbf8af7162ea449789312db392743800000004002300"/111, @ANYRES8], 0x4, 0x339, &(0x7f0000000140)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
syz_mount_image$msdos(&(0x7f0000000940), &(0x7f0000001cc0)='.\x00', 0x1a5a438, &(0x7f0000000300)=ANY=[], 0xb, 0x0, &(0x7f0000000300))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./bus/file0\x00')

1m43.724206343s ago: executing program 1 (id=3426):
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x0)
r2 = eventfd2(0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000b80))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000180)={0x20000005})

1m42.533668001s ago: executing program 1 (id=3428):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000240)={[{@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1df}}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x181)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f0000000140)='./file0\x00')
lremovexattr(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)=@random={'security.', '[\x00'})

1m40.495964381s ago: executing program 1 (id=3435):
socket$kcm(0xf, 0x3, 0x2)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f00)=@newsa={0x138, 0x10, 0x1, 0x70bd2b, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010100, 0x1, 0x794, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0xc}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x9, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0x3}, {0xffffffffffffffff, 0x0, 0x1f, 0x1ff}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8881}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x18, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)

1m39.311643429s ago: executing program 1 (id=3438):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@newtfilter={0x8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r2, {0xfff3, 0x4}, {}, {0x2, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x4, 0xffffff00, 0x6, 0xc31, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x9}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000014}, 0x0)

1m36.891252006s ago: executing program 38 (id=3438):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@newtfilter={0x8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r2, {0xfff3, 0x4}, {}, {0x2, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x4, 0xffffff00, 0x6, 0xc31, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x9}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000014}, 0x0)

1m0.813855458s ago: executing program 8 (id=3578):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a}, 0x94)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x202, &(0x7f0000000100)={0x0})

59.122317537s ago: executing program 8 (id=3582):
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x16)

57.929278517s ago: executing program 8 (id=3585):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000001800)='\x00', 0x1}], 0x1, 0x2)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
readv(r0, &(0x7f0000000040)=[{&(0x7f0000000800)=""/228, 0xe4}], 0x1)

57.212815949s ago: executing program 8 (id=3588):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRES16], 0x2, 0xc36, &(0x7f0000002540)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xa3b, 0x1)
getdents64(r0, 0x0, 0x0)

55.993615965s ago: executing program 8 (id=3592):
r0 = userfaultfd(0x80801)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x54})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000})

54.47481773s ago: executing program 8 (id=3600):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000180)='./bus\x00', 0x2, &(0x7f0000000c80)=ANY=[@ANYBLOB="6e6f71756f74612c6e6f696e746567726974792c67727071756f74612c6e6f646973636172642c696f636861727365743d6e6f6e652c6e6f646973636172642c696f636861727365743d63703835322c6e6f71756f74612c6e6f696e746567726974792c00de55dfc2b1240b195c91"], 0x5, 0x6188, &(0x7f0000004940)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
unlink(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

51.836763711s ago: executing program 39 (id=3600):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000180)='./bus\x00', 0x2, &(0x7f0000000c80)=ANY=[@ANYBLOB="6e6f71756f74612c6e6f696e746567726974792c67727071756f74612c6e6f646973636172642c696f636861727365743d6e6f6e652c6e6f646973636172642c696f636861727365743d63703835322c6e6f71756f74612c6e6f696e746567726974792c00de55dfc2b1240b195c91"], 0x5, 0x6188, &(0x7f0000004940)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
unlink(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

7.709123715s ago: executing program 3 (id=3746):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
cachestat(r1, &(0x7f0000000540)={0x5}, &(0x7f0000000580), 0x0)

7.294458835s ago: executing program 0 (id=3750):
r0 = socket(0x40000000015, 0x5, 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x3238, 0x400, 0xffffffff, 0x288}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000540)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[], 0x438}, 0x0, 0x12f4c4729764eade, 0x1})
io_uring_enter(r1, 0x3516, 0xa00100, 0x0, 0x0, 0x0)

6.076475139s ago: executing program 0 (id=3754):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file1\x00', 0x3000010, &(0x7f0000000080)=ANY=[@ANYRES64=0x0], 0x1, 0x5d8, &(0x7f00000006c0)="$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")
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

5.710132741s ago: executing program 6 (id=3755):
prlimit64(0x0, 0xe, 0x0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f00000190c0)='./file0\x00', 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)

5.631936149s ago: executing program 4 (id=3757):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000180)={@hyper, 0x1})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7cb, &(0x7f0000000100)={&(0x7f0000001080)={{@any, 0x1}, {@local, 0x6}, 0x400, "4145fdc5fec7663a106cef95c8d86f03d655b82e62dc5204ff06732791d90936bf31f7b4eafad3ed43e8da42de6780edce2e2f941399c9b9002a6a538fc1ebd3e994ce6fa4a67c775c476cdbedebbe34904cbe0d5808cf5892aa1e563f949f38cd2ebaa2c46464183ead798b1af0ba7ad5db77736a5329e7297e674242854f87ef03b0fba724523033529e64be44188740b9e9a0ba6944e9724c4aaa8470ab8d35a1746a1da4dfa2112cb5135d97efae0975e7fa5e421fe7ec12a8bbd7714076b63ddaca822d7c0383ccc4e21b11c8a0443850c05f4bb6716b6ba83016b709b44a9959c44daa717edf6b43f7c235fae47730ff2d435ed29d062451ab74bd9f65d9bf96e1afc645ca2249c89146fc815210d465ca0ede0acbfe1165b15d222ed668b79b14f901178d35e7421637588c887b0f2335ea84a442fc95bbcf0ea3b308ee18d913901cb8f40dd2798e781c4b1c620c23565b5bc18e25c206f772c863c8a8864f460c239033717d41f94fbf13b1d0c7271364bd6d144160e1df33fcb33e5d45a5e7ea4264d089397d7e022c6e1f37a2e464c01b4df6a906d3a46d9432ba1966d73aa0627491e3b3c33bee03ff2138896b64862910f24dbacc3c686e0059ff5915c8b69bce3c4022c5c80d574274d1107c9935898ae444a6c38dbd8319e778e1a86a293094bd98d0ae3ae2c32a4bcb20e0517c03e7b46839f4e3601ff98244ca5485cacbfe53c935cf14038bba908af19834a86b56cf68a7170448a434b55d66c080ea095b02ba4c3f8ba492c9e50111bf1b3085cc0f3938a58609a337e89eba9271ee071a8b9f3ab4ad0fc3c92a48cb6bc63ed74877d8425c88eb40d18c6260d2221dc295d1fa1557cfcfe1cb3a1d61b4b1235e28903ae5a4d3d358f6d3e2c87b110e38aab0fd1ca2c047b3ea826d8cd9b980b3fc64fbf38d0d3fed0057b30612880a3d93aa3e16e1c1902cc8c206d7732f426fbb063b020a03d08e3bcd4ff32c30c8ea424ea0c746e72c23e8d53576cc801bdf82f8bba865074e5dde3177820c24be87b9bd36e30a81d1d50b5aa0628262d46d19060ae37a33aa8e515fed3f8bfdf65ba5f8e11e4d517a50ce03f82bc5b3c8e9b3eb6572f1a686430170ce64bc1a61246fd99b2d8a3215104478eead271fcca07bc66e637d5543ad47147f5ad50cc5a203a37b7d2f67bb0387ae189ee7d5cfc0a421b0f0e6286aaf28a3eadfad1b8c83a26ac0a1d4a3846d93e161c82be100278d94e35fc7b5f1feb833f1b975adb33bec5d777cfbdb2c5fe171e205fd6596b37ba646b9ecb163fabcd89a469f6ad539a80937748105298b0a6364d75c6de3cbcbb96c440d5489f3f47149551e7f53d3a22d837cfb59c3e43f0c95760791ed36ff84ae82a679e4e062461bda5db7c27fb00c3238266734bc7c16d45ce7cd3f0b7e63c309977816048f24"}, 0x418, 0x1008})
ioctl$IOCTL_VMCI_SET_NOTIFY(r0, 0x7cb, &(0x7f0000000140)={0xf5, 0x10000})

5.089899633s ago: executing program 4 (id=3759):
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000100)={0x0, 0x1, 0x6, @broadcast}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, r2, 0x0, 0x343}}}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x48800}, 0x0)

4.869627808s ago: executing program 6 (id=3760):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x1000, 0x2})
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0)
read$FUSE(r1, &(0x7f0000005180)={0x2020}, 0x2020)

4.805292669s ago: executing program 0 (id=3761):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x1a08800, &(0x7f0000000080)=ANY=[@ANYBLOB="74732c6e6f64b27473033d5554092c00d300000000000000000060093219839e68009b1f0000"], 0x1, 0x261, &(0x7f0000000680)="$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")
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='sys_immutable,time_offset=-xfffffffffffffbc3,nodots,time_offset=0x0000000000\x00\x00\x00\x00bd,nodots,dots,check=relaxed,dots,\x00', @ANYRES32, @ANYRES32, @ANYBLOB="abce7722dd6424573d4d540d099f3cfb1ae627e939637188562338930e513e7c69a9b0f3fad0fa5d4eb3e5287e4e31d621085d5dfe0c8c378cd17b6372f8e4fa5477243bcc78a81c0479889e39f874b1cc7ae16e3fd25e591f28370527a02625222d073d8c57f5acedd2abd0a32e50a1dfea46c61cdbc6173b39711a8f81038c403969afee97536844c5d4212afd477906fbdc5e88a1cc151263a93efea628c9fecf19934b00ef9b5a405c987b86bf80d391f4153fd39ec67b81eb6cbc8892772f6c1f7804ceb9df48274e73feb925a6dbfe0c53f467013241acaea8d887d30e4f8eff2f813a09269320afd734b2f8758f45f347f9a6785831", @ANYRES8, @ANYRESHEX], 0x1, 0x556, &(0x7f0000002f40)="$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")
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000001200)='./file1\x00', 0x1008010, &(0x7f0000000440)={[{@nodots}, {@fat=@umask={'umask', 0x3d, 0x5}}, {@nodots}, {@dots}, {@nodots}, {@nodots}]}, 0x1, 0x11b2, &(0x7f0000002440)="$eJzs201rY1UYB/DHvpia2hffrRsPutHNxXbhyk2RFqQBpW2EVhBuaaohMQm5WSTiouDOlZ9DXLoTxC/gJymC6KYrr7SRdjp0hpkObWDm99vkgX8OnIcLF87lPCcf/fhN66jIjvJBTD03GzO9iHSaIsVUTMfYcbz//eY/P+zs7W+t12ob2yltru+ufphSWnz7ty+++/md3wfzn/+y+Gsl/lj+8uSvtbMlKyf/7n7dLFKzSJ3uIOXpoNsd5AftRjpsFq0spc/ajbxopGanaPSv5Eftbq83SnnncKHa6zeKIuWdUWo1RmnQTYP+KOVf5c1OyrIsLVSDJ1H/6bQsy4iynI3noyzL8oWoxny8GAuxGEtRiYiX45V4NV6L1+ONeDNWzv816X0DAAAAAAAAAAAAAAAAAADA0+Xh8//L8ZL5fwAAAAAAAAAAAAAAAAAAALh15v8BAAAAAAAAAAAAAAAAAABg8sz/AwAAAAAAAAAAAAAAAAAAwOTt7O1vrddqG9spzUX8eTysD+vj33G++Ult44N0bvly1d/DYX36Il8d5+lqXonq//natflcvPfuOD/LPv60dl/+VhzefvsAAADwTMjShWvP91n2oHxc3fN94Or5fSkiZu6sDW6oGH3bytvtRl+hUCguikm/mbgLlw990jsBAAAAAAAAAADgcTzifcBKRNz4OuGkewQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+I8dOBYAAAAAEOZvnUbHBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABXBQAA///GWZIG")
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)

4.133418091s ago: executing program 4 (id=3763):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000016c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x840e, &(0x7f0000001080)={[{@discard}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@bsdgroups}, {@quota}]}, 0x3, 0x43a, &(0x7f0000001100)="$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")
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x88040, 0x10c)
fcntl$setlease(r0, 0x400, 0x0)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')

4.065875816s ago: executing program 6 (id=3764):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x7, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x8a, &(0x7f0000000180)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x54, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x15, 0x2, 0x0, 0x0, 0x0, {[@generic={0x8, 0x9, "a81969c5f9ab95"}, @mss={0x2, 0x4, 0x6}, @md5sig={0x13, 0x12}, @exp_smc={0xfe, 0x6}, @generic={0x0, 0x5, "1d65e8"}, @mptcp=@ack={0x1e, 0x13, 0x2, 0x4, "e7104686f31ab22faa1216ea655f9a"}]}}}}}}}}, 0x0)

3.857702104s ago: executing program 5 (id=3765):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000340), 0xffffffffffffffff)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000380)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbff}, 0x1c}, 0x1, 0x0, 0x0, 0x20044040}, 0x0)

3.81116301s ago: executing program 3 (id=3766):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000140), 0x256f16877c9c3f29, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000040))
writev(r1, &(0x7f00000003c0)=[{&(0x7f00000000c0)="943a1fcb24676066260d837c8a6bf0b9beecfdc4658c963ec2657e821760538c4816fa2c38ae206755a9fa86d7a322d0f6acde1d651d13bd821b76d0a9bdf18aa3", 0x41}], 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

3.352832135s ago: executing program 6 (id=3767):
r0 = syz_io_uring_setup(0x9c3, &(0x7f0000001480)={0x0, 0x1064, 0x800, 0x1, 0x800224}, &(0x7f0000000380)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x10, 0x0, r0, 0x0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000180)=[{0x0}, {0x0}], 0x2}, 0x0, 0x1000})
io_uring_enter(r0, 0x47f8, 0x0, 0x0, 0x0, 0x0)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f0000000140)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

3.27261508s ago: executing program 4 (id=3768):
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r1, r0, 0x26}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@map=r1, 0x26, 0x0, 0xf51, &(0x7f0000001440)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)

3.166672998s ago: executing program 5 (id=3769):
socket$unix(0x1, 0x2, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
r0 = syz_io_uring_setup(0xa2, &(0x7f0000000640)={0x0, 0xfe0a, 0x10000, 0x2, 0x2c5}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4004, @fd_index=0x4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000440)=""/211, 0xd3}], 0x1})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

2.913495971s ago: executing program 3 (id=3770):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000040)=0x7)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x4, 0x1}, 0xe)
listen(r0, 0x3)
accept4(r0, 0x0, 0x0, 0x800)

2.630296973s ago: executing program 4 (id=3771):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000006c0)='./file0\x00', 0x58e, &(0x7f00000007c0)={[{@nombcache}, {@lazytime}, {@block_validity}, {@block_validity}, {@nojournal_checksum}, {@quota}, {@jqfmt_vfsv0}]}, 0x1, 0x45c, &(0x7f0000000b80)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

2.491993929s ago: executing program 5 (id=3772):
r0 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000000)=0x2, 0x4)
bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r0, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/27, 0x1b}, 0x80000001}], 0x1, 0x100, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)

2.391603503s ago: executing program 3 (id=3773):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x40940, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x2)
r1 = io_uring_setup(0x70c6, &(0x7f00000002c0)={0x0, 0x9e58, 0x0, 0x0, 0x1d7})
close_range(r1, 0xffffffffffffffff, 0x0)
readv(r0, &(0x7f0000000600)=[{&(0x7f00000002c0)=""/135, 0x87}], 0x1)

2.153929523s ago: executing program 6 (id=3774):
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES32], 0x88, 0x2a9, &(0x7f0000000c00)="$eJzs3T9rc1UYAPDnpmmSV4dkcJKCF3RwKm1XlxRpoZhJyaAOWmwL0gShhYJ/MHZydXH0EwiCm1/CxW8guApudihcuTf3mqSmaSNN9S2/39LTc89zznNOz6V0yNMPN4anR2mcXH7xa7RaSdS68SyukuhELSpfxYzuNwEAPM+usiz+yMaWiUsiorW6tACAFVr69/+PK08JAFixd959763dXm/v7TRtxf7w64t+/pd9/nX8fPckPo5BHMdWtOM6IvvbuL2fZdmonuY68dpwdNHPI4cf/FzOv/t7RBG/He3oFF2z8Qe9ve10bCp+lOfxQrl+N4/fiXa8NGf9g97ezpz46Dfi9Ven8t+MdvzyUXwSgzgqkpjEf7mdpm9m3/75+ft5enl8MrroN4txE9naI/9oAAAAAAAAAAAAAAAAAAAAAAB4wjbL2jnNKOr35F1l/Z216/yb9Ugrndn6POP4pJroRn2gURbfVfV1ttI0zcqBk/h6vFyP+n+zawAAAAAAAAAAAAAAAAAAAPh/Of/0s9PDweD47EEaVTWA6mP9/3ae7lTPK7F4cHOyVq1sLpg51qoxScTCNPJNPNCx3NV4dlvO3/+w7IStu8esLzqfh2lUt+v0MJl/hs2oelrVJflpekwj7rlW47ZHG0UC1eW4a57G3EftpffeeLFojBaMiWTRe/HGb+OEy57k5kvUKE51bvh62ZgKv3E3brvP1SnNvin/kKjWAQAAAAAAAAAAAAAAAAAAKzX5GPCch5cLQ2tZc2VpAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCjmvz//yUaozL4HoMbcXY+f+X6Y24TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAJ+6vAAAA//+lillR")
open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0xf00, 0x0)
fanotify_mark(r1, 0x1, 0x10001011, r0, 0x0)

2.109347672s ago: executing program 0 (id=3775):
r0 = syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=r0, @ANYBLOB="040000000000800008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
setxattr$incfs_size(&(0x7f0000000000)='./file1\x00', &(0x7f0000000180), 0x0, 0x0, 0x0)
llistxattr(&(0x7f0000000140)='./file1\x00', 0x0, 0x35)

1.684011347s ago: executing program 4 (id=3776):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
cachestat(r1, &(0x7f0000000540)={0x5}, &(0x7f0000000580), 0x0)

1.611968219s ago: executing program 5 (id=3777):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x4a281, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x4048aec9, &(0x7f0000000980)={0x1, 0x0, @ioapic={0xfee00, 0x296a, 0x4, 0x6, 0x0, [{0x98, 0x37, 0x81, '\x00', 0x7f}, {0x41, 0x8, 0x81, '\x00', 0xf5}, {0xf, 0x5, 0x9, '\x00', 0x13}, {0x7, 0x3e, 0x3, '\x00', 0x8f}, {0x3, 0x7f, 0x91, '\x00', 0xa}, {0xf, 0xe3, 0xa, '\x00', 0xac}, {0x6, 0x8, 0x6, '\x00', 0x8}, {0x1, 0xfa, 0x2, '\x00', 0x67}, {0x2, 0x7, 0x2, '\x00', 0x8}, {0x8, 0x43, 0x47, '\x00', 0x97}, {0xf, 0x8, 0x9, '\x00', 0x3}, {0x2, 0x4c, 0x3, '\x00', 0xa}, {0x3, 0x6, 0x3, '\x00', 0xa6}, {0x8, 0xfd, 0x8, '\x00', 0x9}, {0x2, 0x4c, 0xa2, '\x00', 0x1}, {0x8, 0x5e, 0x4, '\x00', 0x3}, {0x5, 0xa0, 0x47, '\x00', 0x6}, {0x7, 0x3, 0x2, '\x00', 0xa7}, {0x4, 0x0, 0x7, '\x00', 0xa}, {0x5e, 0xa, 0x81, '\x00', 0x3}, {0x7f, 0x6, 0xc7, '\x00', 0x4}, {0x93, 0x44, 0x9, '\x00', 0x10}, {0x3, 0x8, 0x0, '\x00', 0xfc}, {0x6, 0xc, 0xc6, '\x00', 0x8}]}})

1.498242726s ago: executing program 3 (id=3778):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = socket$inet6(0xa, 0x1, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4)
sendto$inet6(r0, &(0x7f0000000000)='\x00', 0x1, 0x40, &(0x7f00000000c0)={0xa, 0x0, 0x27b6a9b, @private2={0xfc, 0x2, '\x00', 0xff}, 0x8080}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0x6d, &(0x7f00000006c0)=""/4097, &(0x7f0000000040)=0x1001)

1.233360948s ago: executing program 0 (id=3779):
r0 = syz_io_uring_setup(0x7b, &(0x7f0000000540)={0x0, 0x3bd2, 0x10100, 0x0, 0x313}, &(0x7f00000005c0)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000600)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x40, 0x0, r4, 0x0, &(0x7f0000000000)="bd", 0xfffffffffffffe28, 0x100, 0x1})
io_uring_enter(r0, 0x46f3, 0x0, 0x0, 0x0, 0x0)
write(r3, &(0x7f00000000c0)='g', 0xfff5)

712.708476ms ago: executing program 5 (id=3780):
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
pivot_root(&(0x7f0000000340)='.\x00', &(0x7f0000000180)='.\x00')

651.34121ms ago: executing program 6 (id=3781):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000380)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000140)={0x11, 0x0, r1, 0x1, 0x6, 0x6, @remote}, 0x14)
sendmmsg$sock(r0, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@txtime={{0x18, 0x1, 0x3d, 0x4c}}], 0x6}}], 0x4000114, 0x40500f0)

602.227685ms ago: executing program 3 (id=3782):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000008c0), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x9)

471.231789ms ago: executing program 0 (id=3783):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/zoneinfo\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000080)={0x0, 0xfff7fffc, 0x100, 0x7ff9, 0x40, "7a58beca3900000000000000000000000200"})

0s ago: executing program 5 (id=3784):
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000180)={0x23800000, &(0x7f0000000040)=<r0=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x8, &(0x7f0000000600)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r0, 0x0}])

kernel console output (not intermixed with test programs):

0)
[  892.689691][T13768] 8021q: adding VLAN 0 to HW filter on device batadv0
[  893.431153][T10436] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  893.468811][T13768] veth0_vlan: entered promiscuous mode
[  893.613042][T10436] usb 9-1: Using ep0 maxpacket: 32
[  893.636543][T13768] veth1_vlan: entered promiscuous mode
[  893.652844][T10436] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  893.694001][T10436] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  893.729992][T10436] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  893.785191][T10436] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  893.862432][T10436] usb 9-1: config 0 descriptor??
[  894.178248][T13768] veth0_macvtap: entered promiscuous mode
[  894.433819][T13768] veth1_macvtap: entered promiscuous mode
[  894.570724][T10436] savu 0003:1E7D:2D5A.0017: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.8-1/input0
[  894.732709][T10436] usb 9-1: USB disconnect, device number 13
[  894.746229][T14109] loop6: detected capacity change from 0 to 32768
[  894.759428][   T11] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 690 seconds
[  894.770647][   T11] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 690 seconds
[  894.821028][T13768] batman_adv: batadv0: Interface activated: batadv_slave_0
[  894.862815][T14109] (syz.6.2712,14109,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  894.879496][T14109] (syz.6.2712,14109,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  895.064878][T13768] batman_adv: batadv0: Interface activated: batadv_slave_1
[  895.076919][T14109] (syz.6.2712,14109,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  895.094092][T14109] (syz.6.2712,14109,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  895.111272][T14109] JBD2: Ignoring recovery information on journal
[  895.217375][T13506] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  895.285498][T13498] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  895.355575][T13498] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  895.382596][T14109] (syz.6.2712,14109,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  895.398016][T14109] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  895.409130][T14109] (syz.6.2712,14109,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  895.426043][T13506] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  895.501654][T14109] (syz.6.2712,14109,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  895.718097][T14115] fido_id[14115]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  896.154727][ T8565] ocfs2: Unmounting device (7,6) on (node local)
[  898.471727][T14157] loop8: detected capacity change from 0 to 1024
[  898.682591][T14157] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  899.295825][T10358] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  900.348350][ T9247] kernel write not supported for file /input/mouse0 (pid: 9247 comm: kworker/0:9)
[  901.962388][T14207] loop8: detected capacity change from 0 to 1024
[  902.720027][   T35] usb 6-1: new full-speed USB device number 10 using dummy_hcd
[  902.932825][   T35] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  903.002068][   T35] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  903.044824][   T35] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  903.090439][   T35] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  903.152782][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  903.205525][   T35] usb 6-1: config 0 descriptor??
[  903.421993][T14233] loop8: detected capacity change from 0 to 64
[  903.977607][T13472] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  904.015986][T13472] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  904.059404][   T35] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  904.181268][   T35] usb 6-1: USB disconnect, device number 10
[  904.393032][T13502] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  904.470253][T13502] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  904.951770][T14241] fido_id[14241]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  905.555556][ T9250] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  905.762064][ T9250] usb 6-1: Using ep0 maxpacket: 32
[  905.817696][ T9250] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  905.851016][ T9250] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  905.886902][ T9250] usb 6-1: config 0 interface 0 has no altsetting 0
[  905.926160][ T9250] usb 6-1: New USB device found, idVendor=05ac, idProduct=021d, bcdDevice= 0.00
[  905.972683][ T9250] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  906.041560][ T9250] usb 6-1: config 0 descriptor??
[  906.134801][T14260] pim6reg1: entered promiscuous mode
[  906.158954][T14260] pim6reg1: entered allmulticast mode
[  906.545492][ T9250] apple 0003:05AC:021D.0019: unknown global tag 0xe
[  906.604766][ T9250] apple 0003:05AC:021D.0019: item 0 0 1 14 parsing failed
[  906.675177][ T9250] apple 0003:05AC:021D.0019: parse failed
[  906.744293][ T9250] apple 0003:05AC:021D.0019: probe with driver apple failed with error -22
[  906.834016][ T9250] usb 6-1: USB disconnect, device number 11
[  907.886947][T14269] loop8: detected capacity change from 0 to 32768
[  907.896604][T14269] xfs: Deprecated parameter 'noikeep'
[  907.902288][T14269] XFS: noikeep mount option is deprecated.
[  907.990560][T14269] XFS (loop8): DAX unsupported by block device. Turning off DAX.
[  908.001016][T14269] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  908.070157][T14282] loop5: detected capacity change from 0 to 512
[  908.131503][T14282] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  908.325100][T14269] XFS (loop8): Ending clean mount
[  908.341754][T14269] XFS (loop8): Quotacheck needed: Please wait.
[  908.477385][T14269] XFS (loop8): Quotacheck: Done.
[  908.750862][T14290] loop6: detected capacity change from 0 to 128
[  908.879462][T14290] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  908.950912][T10358] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  909.000433][T14290] hpfs: filesystem error: improperly stopped
[  909.009375][T14290] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  909.079038][T14290] hpfs: You really don't want any checks? You are crazy...
[  909.115131][T14292] input: syz0 as /devices/virtual/input/input29
[  909.125947][T14290] hpfs: hpfs_map_sector(): read error
[  909.187721][T14290] hpfs: code page support is disabled
[  909.228332][T14290] hpfs: hpfs_map_4sectors(): unaligned read
[  909.260311][T14290] hpfs: hpfs_map_4sectors(): unaligned read
[  909.266453][T14290] hpfs: filesystem error: unable to find root dir
[  911.405433][T14313] loop6: detected capacity change from 0 to 512
[  911.610124][T14313] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #15: comm syz.6.2771: inode has both inline data and extents flags
[  911.708467][T14313] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  911.709909][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  911.725858][    C0] EXT4-fs (loop6): initial error at time 1771296748: ext4_orphan_get:1391: inode 15
[  911.735655][    C0] EXT4-fs (loop6): last error at time 1771296748: ext4_orphan_get:1391: inode 15
[  911.747503][T14313] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.2771: couldn't read orphan inode 15 (err -117)
[  911.785738][T14313] loop6: lost filesystem error report for type 5 error -117
[  911.788272][T14313] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  912.477459][ T8565] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  913.523990][T14347] loop1: detected capacity change from 0 to 512
[  913.732563][T14350] netlink: 83 bytes leftover after parsing attributes in process `syz.4.2784'.
[  914.075944][T14346] loop8: detected capacity change from 0 to 32768
[  914.141968][T14346] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.2783 (14346)
[  914.165223][T14346] BTRFS info (device loop8): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  914.175849][T14346] BTRFS info (device loop8): using sha256 checksum algorithm
[  914.356631][T14347] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  914.422157][T14347] ext4 filesystem being mounted at /7/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  914.436521][T14346] BTRFS info (device loop8): enabling ssd optimizations
[  914.443860][T14346] BTRFS info (device loop8): turning on async discard
[  914.451057][T14346] BTRFS info (device loop8): enabling free space tree
[  914.565512][T14347] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.2782: corrupted inode contents
[  914.640697][T10358] BTRFS info (device loop8): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  914.665890][T14347] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #2: comm syz.1.2782: mark_inode_dirty error
[  914.784257][T14347] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.2782: corrupted inode contents
[  914.851322][T14347] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2782: mark_inode_dirty error
[  914.944088][T14375] EXT4-fs warning (device loop1): ext4_es_cache_extent:1082: inode #2: comm syz.1.2782: ES cache extent failed: add [0,1,20,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  914.944088][T14375] 
[  915.478509][T14389] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  915.507956][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  919.334231][T14433] loop5: detected capacity change from 0 to 128
[  920.980420][T14445] loop5: detected capacity change from 0 to 4096
[  922.890952][T14484] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 7 bytes
[  923.496049][T14481] loop6: detected capacity change from 0 to 32768
[  923.507843][T14481] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2823 (14481)
[  923.537064][T14481] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  923.547516][T14481] BTRFS info (device loop6): using sha256 checksum algorithm
[  923.886102][T14481] BTRFS info (device loop6): rebuilding free space tree
[  923.933749][T14481] BTRFS info (device loop6): disabling free space tree
[  923.941001][T14481] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  923.950956][T14481] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  923.986860][T14481] BTRFS info (device loop6): setting nodatasum
[  923.993481][T14481] BTRFS info (device loop6): setting nodatacow
[  924.000391][T14481] BTRFS info (device loop6): turning off barriers
[  924.006963][T14481] BTRFS info (device loop6): force clearing of disk cache
[  924.501138][ T8565] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  924.684230][ T9248] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  924.714376][T14517] loop5: detected capacity change from 0 to 256
[  924.897265][ T9248] usb 9-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  924.945831][ T9248] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  925.027956][ T9248] usb 9-1: config 0 descriptor??
[  925.159141][ T9248] cp210x 9-1:0.0: cp210x converter detected
[  925.201469][   T11] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 720 seconds
[  925.212798][   T11] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 720 seconds
[  925.515820][ T9248] cp210x 9-1:0.0: failed to get vendor val 0x000e size 3: -32
[  925.872684][ T9248] usb 9-1: cp210x converter now attached to ttyUSB0
[  926.027682][ T9248] usb 9-1: USB disconnect, device number 14
[  926.118171][ T9248] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  926.302749][ T9248] cp210x 9-1:0.0: device disconnected
[  927.103617][T14547] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2837'.
[  930.866192][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  930.866264][   T29] audit: type=1326 audit(1771296767.355:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.8.2855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f728719bf79 code=0x7fc00000
[  931.708815][T14620] loop6: detected capacity change from 0 to 128
[  932.046934][T14623] fuse: Bad value for 'fd'
[  932.326342][T14626] loop8: detected capacity change from 0 to 2048
[  932.477558][T14626] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  932.696402][   T29] audit: type=1800 audit(1771296769.175:127): pid=14626 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2866" name="file2" dev="loop8" ino=1347 res=0 errno=0
[  933.263154][ T9248] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  933.440169][ T9248] usb 6-1: Using ep0 maxpacket: 32
[  933.507570][ T9248] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  933.537633][T14644] loop8: detected capacity change from 0 to 512
[  933.574792][ T9248] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  933.614473][ T9248] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  933.655390][T14644] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.2872: invalid indirect mapped block 4294967295 (level 1)
[  933.676716][ T9248] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  933.680555][T14644] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  933.691238][    C1] EXT4-fs (loop8): error count since last fsck: 1
[  933.707035][    C1] EXT4-fs (loop8): initial error at time 1771296770: ext4_free_branches:1023: inode 11
[  933.717004][    C1] EXT4-fs (loop8): last error at time 1771296770: ext4_free_branches:1023: inode 11
[  933.764128][ T9248] usb 6-1: config 0 descriptor??
[  933.806805][T14644] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.2872: invalid indirect mapped block 4294967295 (level 1)
[  933.831147][ T9248] hub 6-1:0.0: USB hub found
[  933.876509][T14644] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  933.900102][T14644] EXT4-fs (loop8): 2 truncates cleaned up
[  934.122957][ T9248] hub 6-1:0.0: 1 port detected
[  934.136199][T14644] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  934.351103][ T9248] hub 6-1:0.0: hub_hub_status failed (err = -71)
[  934.357668][ T9248] hub 6-1:0.0: config failed, can't get hub status (err -71)
[  934.491037][ T9248] usbhid 6-1:0.0: can't add hid device: -71
[  934.497562][ T9248] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  934.577191][ T9248] usb 6-1: USB disconnect, device number 12
[  934.616393][T10358] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  934.853482][T14658] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2875'.
[  934.975044][T14662] netlink: 'syz.8.2877': attribute type 8 has an invalid length.
[  935.022781][T14662] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2877'.
[  935.165235][T14662] bond0: entered promiscuous mode
[  935.207387][T14662] bond_slave_0: entered promiscuous mode
[  935.231973][T14662] bond_slave_1: entered promiscuous mode
[  935.321208][T14662] ip6gretap0: entered promiscuous mode
[  935.372826][T14662] hsr1: entered promiscuous mode
[  936.128338][T14676] netlink: 256 bytes leftover after parsing attributes in process `syz.8.2881'.
[  936.158816][T14676] netlink: 256 bytes leftover after parsing attributes in process `syz.8.2881'.
[  936.381739][T14685] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2884'.
[  939.593306][T14730] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  939.600793][T14730] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  939.702199][T14732] loop8: detected capacity change from 0 to 512
[  939.752524][T14732] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  939.930881][T14732] UDF-fs: error (device loop8): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128
[  939.963873][T14732] UDF-fs: error (device loop8): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128
[  940.147754][T14737] xt_hashlimit: size too large, truncated to 1048576
[  940.160422][T11335] Bluetooth: hci1: command 0x0405 tx timeout
[  941.234602][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  941.249332][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  942.420176][ T5830] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  942.610597][ T5830] usb 9-1: Using ep0 maxpacket: 16
[  942.639374][ T5830] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  942.693205][ T5830] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  942.709018][ T5830] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  942.745596][ T5830] usb 9-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  942.775983][ T5830] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  942.858845][ T5830] usb 9-1: config 0 descriptor??
[  942.904871][   T35] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  943.124250][   T35] usb 2-1: config 0 interface 0 has no altsetting 0
[  943.166057][   T35] usb 2-1: New USB device found, idVendor=258a, idProduct=0036, bcdDevice= 0.00
[  943.193812][   T35] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  943.217712][   T35] usb 2-1: config 0 descriptor??
[  943.352016][ T5830] input: HID 05ac:8241 as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/0003:05AC:8241.001A/input/input30
[  943.517180][T14778] overlayfs: failed to resolve './cgroup': -2
[  943.601751][ T5830] appleir 0003:05AC:8241.001A: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.8-1/input0
[  943.748640][   T35] glorious 0003:258A:0036.001B: item fetching failed at offset 0/4
[  943.763271][ T5830] usb 9-1: USB disconnect, device number 15
[  943.847463][   T35] glorious 0003:258A:0036.001B: probe with driver glorious failed with error -22
[  943.988366][   T35] usb 2-1: USB disconnect, device number 7
[  944.037685][ T9250] kernel read not supported for file /vcs (pid: 9250 comm: kworker/0:11)
[  944.572777][T14784] fido_id[14784]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  945.235346][T14798] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2924'.
[  945.611345][T14802] netlink: 64 bytes leftover after parsing attributes in process `syz.5.2925'.
[  945.784735][T14795] loop6: detected capacity change from 0 to 4096
[  946.940285][T14809] loop8: detected capacity change from 0 to 40427
[  946.990788][T14809] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  946.998714][T14809] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  947.011865][T14809] F2FS-fs (loop8): invalid crc value
[  947.310207][T14809] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  947.331568][T14809] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  947.338770][T14809] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  947.466519][T14795] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  947.892611][T14795] EXT4-fs (loop6): shut down requested (1)
[  948.593338][ T8565] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  951.436162][T14879] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2949'.
[  952.110153][ T9250] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  952.320436][ T9250] usb 2-1: Using ep0 maxpacket: 32
[  952.357075][ T9250] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  952.424356][ T9250] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  952.485758][ T9250] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  952.520428][ T9250] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  952.598929][ T9250] usb 2-1: config 0 descriptor??
[  952.700423][ T9250] hub 2-1:0.0: USB hub found
[  952.860561][ T9250] hub 2-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  953.377861][ T9250] hid-generic 0003:046D:C31C.001C: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.1-1/input0
[  953.793920][ T9250] usb 2-1: USB disconnect, device number 8
[  954.157245][T14908] fido_id[14908]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  954.522766][T14918] loop8: detected capacity change from 0 to 64
[  954.706436][   T29] audit: type=1800 audit(1771296791.195:128): pid=14918 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2961" name="file2" dev="loop8" ino=6 res=0 errno=0
[  955.281792][   T11] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 750 seconds
[  955.294024][   T11] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 750 seconds
[  956.018485][T14934] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  956.421771][T14940] loop8: detected capacity change from 0 to 22
[  956.502359][T14940] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  957.600700][ T9250] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  957.782159][ T9250] usb 7-1: Using ep0 maxpacket: 8
[  957.864197][T14960] loop5: detected capacity change from 0 to 256
[  957.890043][ T9250] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  957.931576][ T9250] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  957.967237][ T9250] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  958.040708][ T9250] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  958.126998][ T9250] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  958.168905][ T9250] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  958.186841][T14963] loop8: detected capacity change from 0 to 1024
[  958.577361][ T9250] usb 7-1: GET_CAPABILITIES returned f8
[  958.593683][T14963] hfsplus: request for non-existent node 16777216 in B*Tree
[  958.601956][ T9250] usbtmc 7-1:16.0: can't read capabilities
[  958.652597][T14963] hfsplus: request for non-existent node 16777216 in B*Tree
[  958.744190][T14963] hfsplus: request for non-existent node 16777216 in B*Tree
[  958.801178][T14963] hfsplus: request for non-existent node 16777216 in B*Tree
[  958.862524][    C1] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  958.890909][T14967] hfsplus: request for non-existent node 16777216 in B*Tree
[  958.898354][T14967] hfsplus: request for non-existent node 16777216 in B*Tree
[  958.907193][   T35] usb 7-1: USB disconnect, device number 16
[  959.161402][T14975] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  959.466604][T13474] hfsplus: request for non-existent node 16777216 in B*Tree
[  959.514316][T13474] hfsplus: request for non-existent node 16777216 in B*Tree
[  959.949700][T14983] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2984'.
[  960.016463][T14983] netlink: 'syz.4.2984': attribute type 1 has an invalid length.
[  960.070916][T14983] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2984'.
[  961.141108][T14997] loop1: detected capacity change from 0 to 1024
[  961.446048][T14997] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  962.634757][T15001] loop8: detected capacity change from 0 to 65536
[  962.761991][T15001] XFS (loop8): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  963.089635][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  963.242981][T15001] XFS (loop8): Ending clean mount
[  963.254121][T15001] XFS (loop8): Quotacheck needed: Please wait.
[  963.384892][T15001] XFS (loop8): Quotacheck: Done.
[  963.820379][T10358] XFS (loop8): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  965.099569][T15048] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  965.869238][T15042] loop5: detected capacity change from 0 to 8192
[  967.203656][T15078] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3012'.
[  967.786052][T15085] loop1: detected capacity change from 0 to 1024
[  969.629513][T15100] loop8: detected capacity change from 0 to 32768
[  969.655619][T15100] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.3020 (15100)
[  969.709458][T15100] BTRFS info (device loop8): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  969.722019][T15100] BTRFS info (device loop8): using blake2b checksum algorithm
[  970.126748][T15100] BTRFS info (device loop8): enabling ssd optimizations
[  970.133951][T15100] BTRFS info (device loop8): turning on async discard
[  970.141068][T15100] BTRFS info (device loop8): enabling free space tree
[  970.148230][T15100] BTRFS info (device loop8): use zstd compression, level 3
[  970.774533][T10358] BTRFS info (device loop8): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  973.986631][T15169] loop8: detected capacity change from 0 to 1024
[  974.148488][T15169] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  975.043825][T10358] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  976.324196][T15199] input: syz0 as /devices/virtual/input/input31
[  977.652682][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  977.701348][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  979.676807][T15237] loop8: detected capacity change from 0 to 2048
[  979.788638][T15237] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  980.010263][T15241] loop5: detected capacity change from 0 to 1024
[  980.333693][T15241] hfsplus: request for non-existent node 16777216 in B*Tree
[  980.442080][T15241] hfsplus: request for non-existent node 16777216 in B*Tree
[  980.530562][T15241] hfsplus: request for non-existent node 16777216 in B*Tree
[  980.668594][T15248] loop8: detected capacity change from 0 to 256
[  980.679923][T15241] hfsplus: request for non-existent node 16777216 in B*Tree
[  980.750312][T15241] hfsplus: request for non-existent node 16777216 in B*Tree
[  980.819930][T15241] hfsplus: request for non-existent node 16777216 in B*Tree
[  981.571805][T15248] FAT-fs (loop8): Directory bread(block 64) failed
[  981.660118][T15248] FAT-fs (loop8): Directory bread(block 65) failed
[  981.747512][T15248] FAT-fs (loop8): Directory bread(block 66) failed
[  981.805998][T15248] FAT-fs (loop8): Directory bread(block 67) failed
[  981.945137][T15248] FAT-fs (loop8): Directory bread(block 68) failed
[  981.991262][T15248] FAT-fs (loop8): Directory bread(block 69) failed
[  982.081041][T15248] FAT-fs (loop8): Directory bread(block 70) failed
[  982.153867][T15248] FAT-fs (loop8): Directory bread(block 71) failed
[  982.243764][T15248] FAT-fs (loop8): Directory bread(block 72) failed
[  982.270369][T15248] FAT-fs (loop8): Directory bread(block 73) failed
[  983.517050][T15314] fuse: Bad value for 'fd'
[  986.019695][   T11] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 780 seconds
[  986.031109][   T11] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 780 seconds
[  986.150815][T15331] loop6: detected capacity change from 0 to 1024
[  986.351268][T15331] EXT4-fs: Ignoring removed nobh option
[  986.357064][T15331] EXT4-fs: Ignoring removed bh option
[  986.713557][T15335] loop8: detected capacity change from 0 to 2048
[  986.836314][T15335] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  987.097675][T15338] loop1: detected capacity change from 0 to 2048
[  988.249084][T15331] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0002-000000000000 r/w without journal. Quota mode: none.
[  988.433085][T15338] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  988.660549][   T29] audit: type=1800 audit(1771296825.145:129): pid=15338 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3075" name="bus" dev="loop1" ino=18 res=0 errno=0
[  988.838115][   T29] audit: type=1800 audit(1771296825.235:130): pid=15338 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3075" name="bus" dev="loop1" ino=18 res=0 errno=0
[  989.136544][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  989.630590][ T8565] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0002-000000000000.
[  990.026999][T15364] loop1: detected capacity change from 0 to 1024
[  990.283177][T15364] hfsplus: b-tree write err: -5, ino 2
[  990.717698][T10811] hfsplus: b-tree write err: -5, ino 25
[  990.793182][T10811] hfsplus: b-tree write err: -5, ino 4
[  991.787245][T15380] loop1: detected capacity change from 0 to 32768
[  991.855644][T15380] (syz.1.3089,15380,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  991.870352][T15380] (syz.1.3089,15380,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  992.040740][T15380] JBD2: Ignoring recovery information on journal
[  992.159613][T15380] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  992.375255][T15393] loop8: detected capacity change from 0 to 1024
[  992.555730][T13768] ocfs2: Unmounting device (7,1) on (node local)
[  992.628941][T15393] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  992.925642][T15393] EXT4-fs: Ignoring removed orlov option
[  993.001237][T15393] EXT4-fs (loop8): can't enable nombcache during remount
[  993.106833][T15393] EXT4-fs: Ignoring removed orlov option
[  993.154661][T15393] EXT4-fs (loop8): can't enable nombcache during remount
[  993.576558][T15410] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3095'.
[  993.608593][T10358] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  994.484871][T15395] Bluetooth: hci1: command 0x0405 tx timeout
[  994.774984][T15417] loop8: detected capacity change from 0 to 4096
[  995.025818][T15429] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  995.911313][T15434] loop1: detected capacity change from 0 to 1024
[  996.431600][T15440] support for the xor transformation has been removed.
[  996.481600][T15436] loop8: detected capacity change from 0 to 4096
[  997.024867][   T29] audit: type=1800 audit(1771296833.505:131): pid=15436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3103" name="file1" dev="loop8" ino=33 res=0 errno=0
[  999.896210][T15482] loop6: detected capacity change from 0 to 128
[  999.976917][T15482] EXT4-fs: Ignoring removed nobh option
[ 1000.296681][T15482] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1000.361387][T15487] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3127'.
[ 1000.513810][T15482] ext4 filesystem being mounted at /411/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1001.084447][T15495] loop1: detected capacity change from 0 to 1024
[ 1001.246339][T15495] hfsplus: invalid length 32517 has been corrected to 255
[ 1001.393950][T15495] hfsplus: b-tree write err: -5, ino 2
[ 1001.418180][T15501] input: syz1 as /devices/virtual/input/input32
[ 1001.491290][T15501] input: failed to attach handler leds to device input32, error: -6
[ 1001.947798][   T34] hfsplus: b-tree write err: -5, ino 4
[ 1001.967644][ T8565] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1001.990221][   T34] hfsplus: b-tree write err: -5, ino 2
[ 1002.602484][T15509] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3137'.
[ 1002.683222][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1002.700731][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1002.948085][T15506] loop5: detected capacity change from 0 to 32768
[ 1004.700766][T15533] loop1: detected capacity change from 0 to 128
[ 1006.856324][T15018] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[ 1006.944805][T15537] loop6: detected capacity change from 0 to 32768
[ 1006.961941][T15537] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1006.971423][T15537] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1007.032945][T15537] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[ 1007.098493][   T35] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 1007.109947][   T35] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 1007.110227][T15018] usb 2-1: Using ep0 maxpacket: 32
[ 1007.198422][T15018] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1007.273705][T15018] usb 2-1: config 2 has 0 interfaces, different from the descriptor's value: 1
[ 1007.344093][T15018] usb 2-1: New USB device found, idVendor=0557, idProduct=2009, bcdDevice=c7.1e
[ 1007.386885][T15018] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1007.446586][T15018] usb 2-1: Product: syz
[ 1007.487084][T15018] usb 2-1: Manufacturer: syz
[ 1007.497366][T15018] usb 2-1: SerialNumber: syz
[ 1007.665392][   T35] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 555ms
[ 1007.687148][   T35] gfs2: fsid=syz:syz.0: jid=0: Done
[ 1007.718591][T15537] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 1007.926968][T15018] usb 2-1: USB disconnect, device number 9
[ 1008.194653][T15537] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 1008.343277][T15537] syz.6.3149: attempt to access beyond end of device
[ 1008.343277][T15537] loop6: rw=8400896, sector=6755399441055880, nr_sectors = 8 limit=32768
[ 1009.327457][T15564] netlink: 212916 bytes leftover after parsing attributes in process `syz.8.3160'.
[ 1009.409015][ T8565] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[ 1009.434441][ T8565] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[ 1009.444401][ T8565] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:8565 [syz-executor] gfs2_quota_sync+0x68e/0xb00
[ 1009.560056][ T8565] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[ 1009.632502][ T8565] CPU: 1 UID: 0 PID: 8565 Comm: syz-executor Tainted: G        W    L      syzkaller #0 PREEMPT(full) 
[ 1009.632676][ T8565] Tainted: [W]=WARN, [L]=SOFTLOCKUP
[ 1009.632733][ T8565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1009.632802][ T8565] Call Trace:
[ 1009.632843][ T8565]  <TASK>
[ 1009.632895][ T8565]  __dump_stack+0x26/0x30
[ 1009.633046][ T8565]  dump_stack_lvl+0x14c/0x1c0
[ 1009.633201][ T8565]  dump_stack+0x1e/0x25
[ 1009.633336][ T8565]  gfs2_withdraw+0xd5/0x270
[ 1009.633504][ T8565]  gfs2_consist_inode_i+0x1a9/0x240
[ 1009.633694][ T8565]  inode_go_instantiate+0x13bf/0x1ea0
[ 1009.633927][ T8565]  ? __pfx_inode_go_instantiate+0x10/0x10
[ 1009.634101][ T8565]  gfs2_instantiate+0x24f/0x4b0
[ 1009.634247][ T8565]  gfs2_glock_wait+0x26a/0x3b0
[ 1009.634398][ T8565]  gfs2_glock_nq+0x152f/0x2d50
[ 1009.634531][ T8565]  ? kmsan_get_metadata+0xf1/0x160
[ 1009.634747][ T8565]  do_sync+0x6c4/0x1610
[ 1009.634898][ T8565]  ? gfs2_quota_sync+0x68e/0xb00
[ 1009.635082][ T8565]  ? kmsan_get_metadata+0xf1/0x160
[ 1009.635243][ T8565]  ? gfs2_quota_sync+0x68e/0xb00
[ 1009.635412][ T8565]  gfs2_quota_sync+0x68e/0xb00
[ 1009.635588][ T8565]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1009.635774][ T8565]  gfs2_sync_fs+0x57/0x100
[ 1009.635911][ T8565]  ? __pfx_gfs2_sync_fs+0x10/0x10
[ 1009.636050][ T8565]  sync_filesystem+0x131/0x3c0
[ 1009.636226][ T8565]  ? shrink_dcache_for_umount+0xf9/0x210
[ 1009.636369][ T8565]  generic_shutdown_super+0x95/0x4c0
[ 1009.636513][ T8565]  kill_block_super+0x42/0xd0
[ 1009.636670][ T8565]  gfs2_kill_sb+0x4a9/0x580
[ 1009.636861][ T8565]  ? __pfx_gfs2_kill_sb+0x10/0x10
[ 1009.637035][ T8565]  deactivate_locked_super+0xcb/0x3c0
[ 1009.637194][ T8565]  deactivate_super+0x12f/0x140
[ 1009.637327][ T8565]  cleanup_mnt+0x7eb/0x870
[ 1009.637471][ T8565]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1009.637602][ T8565]  __cleanup_mnt+0x22/0x30
[ 1009.637734][ T8565]  task_work_run+0x208/0x2b0
[ 1009.637914][ T8565]  exit_to_user_mode_loop+0x306/0x1b60
[ 1009.638093][ T8565]  ? user_path_at+0x1fc/0x330
[ 1009.638238][ T8565]  ? __x64_sys_umount+0x1dc/0x250
[ 1009.638403][ T8565]  do_syscall_64+0x24d/0xf80
[ 1009.638536][ T8565]  ? clear_bhb_loop+0x50/0xa0
[ 1009.638679][ T8565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1009.638827][ T8565] RIP: 0033:0x7f737b59d1d7
[ 1009.638929][ T8565] Code: a2 c7 05 bc e3 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1009.639046][ T8565] RSP: 002b:00007ffd54aad048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1009.639173][ T8565] RAX: 0000000000000000 RBX: 00007f737b631c3b RCX: 00007f737b59d1d7
[ 1009.639260][ T8565] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd54aad100
[ 1009.639344][ T8565] RBP: 00007ffd54aad100 R08: 00007ffd54aae100 R09: 00000000ffffffff
[ 1009.639438][ T8565] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd54aae190
[ 1009.639523][ T8565] R13: 00007f737b631c3b R14: 00000000000f6374 R15: 00007ffd54aae1d0
[ 1009.639651][ T8565]  </TASK>
[ 1010.282068][ T8565] gfs2: fsid=syz:syz.0: about to withdraw this file system
[ 1011.048494][T15018] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1011.165296][T15582] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3169'.
[ 1011.339557][T15018] usb 6-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[ 1011.349091][T15018] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1011.433147][T15018] usb 6-1: config 0 descriptor??
[ 1011.543619][T15018] gspca_main: STV06xx-2.14.0 probing 046d:0870
[ 1011.570839][T15586] loop8: detected capacity change from 0 to 128
[ 1011.715095][T15586] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1011.843751][T15586] ext4 filesystem being mounted at /316/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1012.479256][T10358] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1012.635507][T15018] gspca_stv06xx: I2C: Read error writing address: -71
[ 1012.706387][T15018] usb 6-1: USB disconnect, device number 13
[ 1013.331690][T15598] loop1: detected capacity change from 0 to 1024
[ 1013.393602][T15598] EXT4-fs: Ignoring removed orlov option
[ 1013.556435][T15600] loop8: detected capacity change from 0 to 512
[ 1013.746602][T15598] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1013.918726][T15605] loop5: detected capacity change from 0 to 512
[ 1014.227251][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1014.238001][T15605] EXT4-fs error (device loop5): ext4_iget_extra_inode:5025: inode #15: comm syz.5.3178: corrupted in-inode xattr: bad e_name length
[ 1014.238152][T15605] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1014.249887][    C0] EXT4-fs (loop5): error count since last fsck: 1
[ 1014.267831][    C0] EXT4-fs (loop5): initial error at time 1771296850: ext4_iget_extra_inode:5025: inode 15
[ 1014.278117][    C0] EXT4-fs (loop5): last error at time 1771296850: ext4_iget_extra_inode:5025: inode 15
[ 1014.310887][T15605] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.3178: couldn't read orphan inode 15 (err -117)
[ 1014.449221][T15605] loop5: lost filesystem error report for type 5 error -117
[ 1014.458781][T15605] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1015.290475][   T35] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[ 1015.325832][ T8254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1015.460084][   T35] usb 9-1: Using ep0 maxpacket: 8
[ 1015.476436][   T35] usb 9-1: config 0 has an invalid interface number: 31 but max is 0
[ 1015.511117][   T35] usb 9-1: config 0 has no interface number 0
[ 1015.545079][   T35] usb 9-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[ 1015.565088][   T35] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1015.596339][   T35] usb 9-1: Product: syz
[ 1015.617459][   T35] usb 9-1: Manufacturer: syz
[ 1015.648476][   T35] usb 9-1: SerialNumber: syz
[ 1015.692594][   T35] usb 9-1: config 0 descriptor??
[ 1015.920606][   T35] uvcvideo 9-1:0.31: probe with driver uvcvideo failed with error -22
[ 1015.958482][   T35] usb 9-1: USB disconnect, device number 16
[ 1016.081533][T15575] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 810 seconds
[ 1016.094593][T15575] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 810 seconds
[ 1016.211962][T15626] loop5: detected capacity change from 0 to 512
[ 1016.322716][T15626] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 1016.625115][T15632] loop1: detected capacity change from 0 to 256
[ 1016.684608][T15632] exfat: Deprecated parameter 'utf8'
[ 1016.740145][T15632] exfat: Deprecated parameter 'utf8'
[ 1016.932489][T15632] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d)
[ 1017.299303][   T35] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[ 1017.493135][   T35] usb 9-1: Using ep0 maxpacket: 16
[ 1017.531184][   T35] usb 9-1: too many endpoints for config 0 interface 0 altsetting 3: 63, using maximum allowed: 30
[ 1017.579277][   T35] usb 9-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1017.631476][   T35] usb 9-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 63
[ 1017.631800][T15645] syz_tun: entered allmulticast mode
[ 1017.685488][   T35] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1017.700419][   T35] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00
[ 1017.735515][   T35] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1017.766927][   T35] usb 9-1: config 0 descriptor??
[ 1017.803805][T15646] loop5: detected capacity change from 0 to 2048
[ 1017.868920][T15647] dvmrp8: entered allmulticast mode
[ 1017.955736][T15642] syz_tun: left allmulticast mode
[ 1017.970008][T15646] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[ 1018.007691][T15646] UDF-fs: Scanning with blocksize 512 failed
[ 1018.209315][   T35] lua 0003:1E7D:2C2E.001D: unknown main item tag 0x0
[ 1018.238659][T15646] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1018.252843][   T35] lua 0003:1E7D:2C2E.001D: unknown main item tag 0x0
[ 1018.271988][   T35] lua 0003:1E7D:2C2E.001D: item fetching failed at offset 2/5
[ 1018.304982][   T35] lua 0003:1E7D:2C2E.001D: parse failed
[ 1018.382045][   T35] lua 0003:1E7D:2C2E.001D: probe with driver lua failed with error -22
[ 1018.411307][   T35] usb 9-1: USB disconnect, device number 17
[ 1019.303444][T15018] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[ 1019.750155][T15018] usb 7-1: Using ep0 maxpacket: 32
[ 1019.885874][T15018] usb 7-1: config 0 has an invalid interface number: 184 but max is 0
[ 1019.906795][T15018] usb 7-1: config 0 has no interface number 0
[ 1019.950932][T15018] usb 7-1: config 0 interface 184 has no altsetting 0
[ 1020.002070][T15018] usb 7-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1020.020511][T15018] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1020.028693][T15018] usb 7-1: Product: syz
[ 1020.040134][T15018] usb 7-1: Manufacturer: syz
[ 1020.045039][T15018] usb 7-1: SerialNumber: syz
[ 1020.127142][T15018] usb 7-1: config 0 descriptor??
[ 1020.353808][T15661] loop8: detected capacity change from 0 to 2048
[ 1020.750605][T15661] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1021.108238][T15665] loop1: detected capacity change from 0 to 32768
[ 1021.181365][T15665] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1021.770430][T15018] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1021.824013][T15018] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1021.969602][T15665] XFS (loop1): Ending clean mount
[ 1022.249161][T15018] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1022.311054][T15018] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[ 1022.339604][T15018] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[ 1022.420495][T15018] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1022.464810][T15018] smsc75xx 7-1:0.184: probe with driver smsc75xx failed with error -71
[ 1022.480702][   T35] usb 9-1: new high-speed USB device number 18 using dummy_hcd
[ 1022.543799][T15018] usb 7-1: USB disconnect, device number 17
[ 1022.570915][T13768] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1022.710068][   T35] usb 9-1: Using ep0 maxpacket: 16
[ 1022.724734][   T35] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1022.736789][   T35] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1022.769334][   T35] usb 9-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1022.801049][   T35] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1022.846941][   T35] usb 9-1: config 0 descriptor??
[ 1023.500419][   T35] input: HID 041e:3100 as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/0003:041E:3100.001E/input/input33
[ 1023.667904][   T35] creative-sb0540 0003:041E:3100.001E: input,hidraw0: USB HID v0.00 Device [HID 041e:3100] on usb-dummy_hcd.8-1/input0
[ 1024.872480][T15700] Invalid argument reading file caps for ./file0
[ 1025.428446][T15018] usb 9-1: USB disconnect, device number 18
[ 1025.992582][T15710] loop5: detected capacity change from 0 to 64
[ 1026.520882][T15716] netlink: 400 bytes leftover after parsing attributes in process `syz.1.3219'.
[ 1026.877171][T15719] loop6: detected capacity change from 0 to 256
[ 1027.293489][T15723] loop1: detected capacity change from 0 to 2048
[ 1027.424658][T15723] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1027.492008][T15723] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1027.863634][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1028.969340][T15742] loop8: detected capacity change from 0 to 4096
[ 1029.038878][T15742] NILFS (loop8): invalid segment: Checksum error in segment payload
[ 1029.092517][T15742] NILFS (loop8): trying rollback from an earlier position
[ 1029.347056][T15742] NILFS (loop8): recovery complete
[ 1029.453443][T15747] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1030.188749][T15752] loop1: detected capacity change from 0 to 1024
[ 1031.159212][ T3436] hfsplus: b-tree write err: -5, ino 25
[ 1031.219578][ T3436] hfsplus: b-tree write err: -5, ino 4
[ 1031.279240][ T3436] hfsplus: b-tree write err: -5, ino 2
[ 1031.698390][T15757] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3234'.
[ 1033.913387][T15785] loop1: detected capacity change from 0 to 128
[ 1034.072277][T15785] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1034.108003][T15785] ext4 filesystem being mounted at /110/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1034.224578][T15789] loop5: detected capacity change from 0 to 1024
[ 1034.981524][T13768] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1035.286517][T15794] binder: BINDER_SET_CONTEXT_MGR already set
[ 1035.377612][T15794] binder: 15792:15794 ioctl 4018620d 200000000100 returned -16
[ 1035.938866][T15804] netlink: 452 bytes leftover after parsing attributes in process `syz.8.3250'.
[ 1036.010124][   T35] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1036.200230][   T35] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1036.260849][   T35] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1036.289984][   T35] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1036.329992][   T35] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1036.370251][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1036.413980][   T35] usb 6-1: config 0 descriptor??
[ 1037.004209][   T35] plantronics 0003:047F:FFFF.001F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[ 1037.111056][T15018] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[ 1037.320197][T15018] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1037.348388][T15018] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1037.371239][T15817] batadv_slave_0: entered promiscuous mode
[ 1037.376237][T15018] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1037.407754][T15814] batadv_slave_0: left promiscuous mode
[ 1037.447557][T15018] usb 2-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[ 1037.468273][T15018] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1037.481306][   T35] usb 9-1: new high-speed USB device number 19 using dummy_hcd
[ 1037.534318][T15018] usb 2-1: config 0 descriptor??
[ 1037.677579][   T35] usb 9-1: Using ep0 maxpacket: 8
[ 1037.716883][   T35] usb 9-1: config 179 has an invalid interface number: 65 but max is 0
[ 1037.760202][   T35] usb 9-1: config 179 has no interface number 0
[ 1037.785988][T15018] usb 2-1: string descriptor 0 read error: -71
[ 1037.801177][   T35] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1037.890089][   T35] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1037.904172][T15018] usb 2-1: USB disconnect, device number 10
[ 1037.950291][   T35] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1038.010611][   T35] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1038.072167][   T35] usb 9-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1038.150812][   T35] usb 9-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1038.190053][   T35] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1038.239385][T15815] raw-gadget.2 gadget.8: fail, usb_ep_enable returned -22
[ 1038.547332][   T35] input: Generic X-Box pad as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:179.65/input/input35
[ 1038.994581][T15295] usb 9-1: USB disconnect, device number 19
[ 1039.000831][    C1] xpad 9-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1039.001027][    C1] xpad 9-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1039.054509][T15018] usb 6-1: USB disconnect, device number 14
[ 1040.490936][T15842] could not open pipe file descriptor
[ 1040.552911][T15833] loop6: detected capacity change from 0 to 4096
[ 1040.666304][T15833] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1040.787397][T15833] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1041.060086][T15833] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1041.251135][T15860] netlink: 'syz.8.3273': attribute type 2 has an invalid length.
[ 1041.268364][T15861] sctp: [Deprecated]: syz.4.3272 (pid 15861) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1041.268364][T15861] Use struct sctp_sack_info instead
[ 1041.825001][ T8565] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1042.575067][T15869] overlayfs: failed to clone upperpath
[ 1043.160953][T15018] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[ 1043.346414][T15018] usb 2-1: config 0 has no interfaces?
[ 1043.383817][T15018] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1043.410301][T15018] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1043.450022][T15018] usb 2-1: Product: syz
[ 1043.454384][T15018] usb 2-1: Manufacturer: syz
[ 1043.459140][T15018] usb 2-1: SerialNumber: syz
[ 1043.536016][T15018] usb 2-1: config 0 descriptor??
[ 1043.789328][T15888] loop8: detected capacity change from 0 to 1024
[ 1043.802146][T15018] usb 2-1: USB disconnect, device number 11
[ 1044.181609][ T1035] hfsplus: b-tree write err: -5, ino 25
[ 1044.216324][ T1035] hfsplus: b-tree write err: -5, ino 4
[ 1044.237416][ T1035] hfsplus: b-tree write err: -5, ino 2
[ 1044.672260][T15898] loop8: detected capacity change from 0 to 256
[ 1044.752907][T15898] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1044.924677][T15898] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1046.648968][T15914] loop8: detected capacity change from 0 to 32768
[ 1046.659711][T15914] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.3297 (15914)
[ 1046.674757][T15575] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 840 seconds
[ 1046.686394][T15575] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 840 seconds
[ 1046.747698][T15914] BTRFS info (device loop8): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1046.759121][T15914] BTRFS info (device loop8): using blake2b checksum algorithm
[ 1047.009978][T15914] BTRFS info (device loop8): enabling ssd optimizations
[ 1047.017124][T15914] BTRFS info (device loop8): turning on async discard
[ 1047.024221][T15914] BTRFS info (device loop8): enabling free space tree
[ 1047.087716][T15939] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1047.152908][T15939] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1047.328513][T15920] loop5: detected capacity change from 0 to 4096
[ 1047.458574][T15920] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[ 1047.772008][T15936] loop6: detected capacity change from 0 to 32768
[ 1047.843086][T10358] BTRFS info (device loop8): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1047.866363][T15936] JBD2: Ignoring recovery information on journal
[ 1047.950226][T15936] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1048.114109][T15920] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1048.232534][ T8565] ocfs2: Unmounting device (7,6) on (node local)
[ 1049.202663][T15958] loop1: detected capacity change from 0 to 512
[ 1049.252229][T15958] EXT4-fs: Ignoring removed orlov option
[ 1049.258240][T15958] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1049.415913][T15961] overlayfs: invalid origin (000000790066696c6530000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[ 1049.544716][T15958] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[ 1049.728599][T15958] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.3310: attempt to clear invalid blocks 2 len 1
[ 1049.805735][T15958] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1049.807790][T15958] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1315: group 0, 
[ 1049.817354][    C0] EXT4-fs (loop1): error count since last fsck: 1
[ 1049.817454][    C0] EXT4-fs (loop1): initial error at time 1771296886: ext4_clear_blocks:876: inode 13
[ 1049.817609][    C0] EXT4-fs (loop1): last error at time 1771296886: ext4_clear_blocks:876: inode 13
[ 1049.852294][T15958] block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[ 1050.360065][T15958] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.3310: invalid indirect mapped block 1819239214 (level 0)
[ 1050.486988][T15958] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1050.497870][T15958] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.3310: invalid indirect mapped block 1819239214 (level 1)
[ 1050.721310][T15958] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1050.788518][T15958] EXT4-fs (loop1): 1 truncate cleaned up
[ 1050.894534][T15958] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1051.082164][T15965] loop6: detected capacity change from 0 to 65536
[ 1051.195047][T15965] XFS (loop6): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1051.196555][T15958] EXT4-fs (loop1): shut down requested (2)
[ 1051.341435][T15965] XFS (loop6): Ending clean mount
[ 1051.351817][T15965] XFS (loop6): Quotacheck needed: Please wait.
[ 1051.472416][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1051.516499][T15965] XFS (loop6): Quotacheck: Done.
[ 1051.541125][   T29] audit: type=1800 audit(1771296888.025:132): pid=15965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3313" name="bus" dev="loop6" ino=42 res=0 errno=0
[ 1051.907612][ T8565] XFS (loop6): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1054.977305][T16019] loop1: detected capacity change from 0 to 32768
[ 1054.988537][T16019] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3332 (16019)
[ 1055.023392][T16019] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1055.034748][T16019] BTRFS info (device loop1): using blake2b checksum algorithm
[ 1055.263736][T16019] BTRFS info (device loop1): enabling ssd optimizations
[ 1055.271217][T16019] BTRFS info (device loop1): turning on async discard
[ 1055.278151][T16019] BTRFS info (device loop1): enabling free space tree
[ 1055.287337][T16019] BTRFS info (device loop1): use zstd compression, level 3
[ 1055.859644][T13768] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1056.000558][T16041] loop5: detected capacity change from 0 to 128
[ 1056.142851][T16041] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1056.220519][T16041] ext4 filesystem being mounted at /533/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1056.789572][ T8254] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1058.203809][T16065] mac80211_hwsim hwsim14 wlan0: entered promiscuous mode
[ 1058.233514][T16064] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1058.555877][T16071] loop8: detected capacity change from 0 to 128
[ 1058.666147][T16071] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1058.754305][T16071] hpfs: filesystem error: improperly stopped
[ 1058.771596][T16071] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1058.811119][T16071] hpfs: You really don't want any checks? You are crazy...
[ 1058.818903][T16071] hpfs: hpfs_map_sector(): read error
[ 1058.929964][T16071] hpfs: code page support is disabled
[ 1058.937659][T16071] hpfs: hpfs_map_4sectors(): unaligned read
[ 1058.998734][T16071] hpfs: hpfs_map_4sectors(): unaligned read
[ 1059.039901][T16071] hpfs: filesystem error: unable to find root dir
[ 1059.050466][T15018] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 1059.239483][T15018] usb 7-1: Using ep0 maxpacket: 32
[ 1059.283683][T15018] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[ 1059.304304][T15018] usb 7-1: config 0 has no interface number 0
[ 1059.314718][T15018] usb 7-1: config 0 interface 12 has no altsetting 0
[ 1059.366809][T15018] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[ 1059.410292][T15018] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1059.418494][T15018] usb 7-1: Product: syz
[ 1059.470058][T15018] usb 7-1: Manufacturer: syz
[ 1059.474928][T15018] usb 7-1: SerialNumber: syz
[ 1059.579481][T15018] usb 7-1: config 0 descriptor??
[ 1059.998723][T16084] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3354'.
[ 1060.170984][T15018] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[ 1060.196701][T15018] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[ 1060.212371][T15018] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[ 1060.234850][T15018] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[ 1060.286259][T15018] usb 7-1: USB disconnect, device number 18
[ 1062.578163][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805ce74c00: rx timeout, send abort
[ 1062.588096][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805ce74c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1062.817480][T16122] overlayfs: failed to clone lowerpath
[ 1063.155352][T16124] bond_slave_0: entered promiscuous mode
[ 1063.161422][T16124] bond_slave_1: entered promiscuous mode
[ 1063.217382][T16124] macvlan2: entered promiscuous mode
[ 1063.260112][T16124] bond0: entered promiscuous mode
[ 1063.297297][T16124] macvlan2: entered allmulticast mode
[ 1063.340460][T16124] bond0: entered allmulticast mode
[ 1063.381949][T16124] bond_slave_0: entered allmulticast mode
[ 1063.435302][T16124] bond_slave_1: entered allmulticast mode
[ 1063.446720][T15295] kernel read not supported for file /input/event1 (pid: 15295 comm: kworker/1:3)
[ 1063.522354][T16124] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1063.531979][T16129] fuse: Bad value for 'fd'
[ 1063.576318][T16129] overlayfs: failed to clone lowerpath
[ 1064.074334][T16131] loop1: detected capacity change from 0 to 4096
[ 1064.117482][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1064.128523][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1064.158920][T16131] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1064.230925][T16131] EXT4-fs (loop1): stripe (97) is not aligned with cluster size (16), stripe is disabled
[ 1064.326715][T16131] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c01c, mo2=0002]
[ 1064.372790][T16131] System zones: 0-5
[ 1064.425376][T16131] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1065.089181][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1066.283293][T16157] loop8: detected capacity change from 0 to 32768
[ 1066.296069][T16157] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.3383 (16157)
[ 1066.350822][T16157] BTRFS info (device loop8): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1066.362260][T16157] BTRFS info (device loop8): using crc32c checksum algorithm
[ 1066.370120][T16157] BTRFS warning (device loop8): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1066.559375][T16157] BTRFS info (device loop8): rebuilding free space tree
[ 1066.594089][T16157] BTRFS info (device loop8): disabling free space tree
[ 1066.601296][T16157] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1066.611255][T16157] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1066.642174][T16157] BTRFS info (device loop8): enabling ssd optimizations
[ 1066.649305][T16157] BTRFS info (device loop8): enabling disk space caching
[ 1066.656634][T16157] BTRFS info (device loop8): force clearing of disk cache
[ 1066.663994][T16157] BTRFS info (device loop8): force zstd compression, level 3
[ 1067.022100][T10358] BTRFS info (device loop8): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1067.995289][T16189] loop5: detected capacity change from 0 to 1024
[ 1068.283946][T16189] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1069.027051][ T8254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1069.380609][T16204] loop1: detected capacity change from 0 to 512
[ 1069.446026][T16204] EXT4-fs: Ignoring removed bh option
[ 1069.481495][T16207] fuse: Bad value for 'fd'
[ 1069.551453][T16208] loop5: detected capacity change from 0 to 128
[ 1069.570163][T16204] EXT4-fs warning (device loop1): dx_probe:861: inode #2: comm syz.1.3398: dx entry: limit 0 != root limit 125
[ 1069.667972][T16204] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.3398: Corrupt directory, running e2fsck is recommended
[ 1069.737045][T16204] EXT4-fs error (device loop1): ext4_map_blocks:776: inode #2: block 8: comm syz.1.3398: lblock 11 mapped to illegal pblock 8 (length 1)
[ 1069.739394][T16208] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1069.800106][T16208] ext4 filesystem being mounted at /546/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1069.924110][T16204] loop1: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[ 1069.929883][    C1] EXT4-fs (loop1): error count since last fsck: 1
[ 1069.945728][    C1] EXT4-fs (loop1): initial error at time 1771296906: ext4_map_blocks:776: inode 2: block 8
[ 1069.956086][    C1] EXT4-fs (loop1): last error at time 1771296906: ext4_map_blocks:776: inode 2: block 8
[ 1069.972805][T16204] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[ 1070.032962][T16204] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1070.164638][T16204] EXT4-fs warning (device loop1): dx_probe:861: inode #2: comm syz.1.3398: dx entry: limit 0 != root limit 125
[ 1070.180818][T16204] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.3398: Corrupt directory, running e2fsck is recommended
[ 1070.195839][T16204] EXT4-fs error (device loop1): ext4_map_blocks:776: inode #2: block 8: comm syz.1.3398: lblock 11 mapped to illegal pblock 8 (length 1)
[ 1070.417613][ T8254] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1070.424448][T16218] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3402'.
[ 1070.533823][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1071.778184][T16226] loop1: detected capacity change from 0 to 32768
[ 1071.856128][T16226] JBD2: Ignoring recovery information on journal
[ 1072.038527][T16226] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1072.110580][ T9247] usb 9-1: new high-speed USB device number 20 using dummy_hcd
[ 1072.274590][T13768] ocfs2: Unmounting device (7,1) on (node local)
[ 1072.294786][ T9247] usb 9-1: Using ep0 maxpacket: 32
[ 1072.340296][T15018] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1072.348436][ T9247] usb 9-1: config 0 has an invalid interface number: 51 but max is 0
[ 1072.377533][ T9247] usb 9-1: config 0 has no interface number 0
[ 1072.427987][ T9247] usb 9-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1072.464284][ T9247] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1072.500127][ T9247] usb 9-1: Product: syz
[ 1072.504476][ T9247] usb 9-1: Manufacturer: syz
[ 1072.530101][ T9247] usb 9-1: SerialNumber: syz
[ 1072.536864][T15018] usb 6-1: Using ep0 maxpacket: 8
[ 1072.564148][ T9247] usb 9-1: config 0 descriptor??
[ 1072.575187][T15018] usb 6-1: config 0 has an invalid interface number: 101 but max is 0
[ 1072.606827][T15018] usb 6-1: config 0 has no interface number 0
[ 1072.643738][ T9247] quatech2 9-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1072.661984][T15018] usb 6-1: too many endpoints for config 0 interface 101 altsetting 61: 48, using maximum allowed: 30
[ 1072.712445][T15018] usb 6-1: config 0 interface 101 altsetting 61 has 0 endpoint descriptors, different from the interface descriptor's value: 48
[ 1072.780528][T15018] usb 6-1: config 0 interface 101 has no altsetting 0
[ 1072.840298][T15018] usb 6-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[ 1072.849682][T15018] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1072.912153][T15018] usb 6-1: Product: syz
[ 1072.940171][T15018] usb 6-1: Manufacturer: syz
[ 1072.960210][T15018] usb 6-1: SerialNumber: syz
[ 1072.995612][T15018] usb 6-1: config 0 descriptor??
[ 1073.203275][    C0] usb-serial ttyUSB0: qt2_process_read_urb - port change to invalid port: 128
[ 1073.210805][T16250] loop6: detected capacity change from 0 to 2048
[ 1073.252849][ T9247] usb 9-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1073.344761][ T9247] usb 9-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1073.354707][T16250] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1073.371335][T15018] gspca_main: se401-2.14.0 probing 047d:5003
[ 1073.426254][    C0] usb 9-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1073.439245][ T9247] usb 9-1: USB disconnect, device number 20
[ 1073.496992][   T29] audit: type=1800 audit(1771296909.985:133): pid=16250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3416" name="file1" dev="loop6" ino=1415 res=0 errno=0
[ 1073.535371][ T9247] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1073.612425][ T9247] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1073.625213][   T29] audit: type=1800 audit(1771296910.055:134): pid=16250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3416" name="file1" dev="loop6" ino=1415 res=0 errno=0
[ 1073.706302][ T9247] quatech2 9-1:0.51: device disconnected
[ 1073.761036][ T6034] udevd[6034]: setting mode of /dev/bus/usb/009/020 to 020664 failed: No such file or directory
[ 1073.814972][ T6034] udevd[6034]: setting owner of /dev/bus/usb/009/020 to uid=0, gid=0 failed: No such file or directory
[ 1073.830094][T15018] usb 6-1: reset high-speed USB device number 15 using dummy_hcd
[ 1074.465093][T15018] gspca_se401: read req failed req 0x06 error -71
[ 1074.484405][T15018] se401 6-1:0.101: probe with driver se401 failed with error -71
[ 1074.550643][T15018] usb 6-1: USB disconnect, device number 15
[ 1074.830889][T16263] loop1: detected capacity change from 0 to 64
[ 1075.584408][T16272] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[ 1075.584408][T16272] The task syz.4.3423 (16272) triggered the difference, watch for misbehavior.
[ 1075.628329][T16265] loop6: detected capacity change from 0 to 32768
[ 1075.637667][T16265] btrfs: Deprecated parameter 'usebackuproot'
[ 1075.644005][T16265] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[ 1075.662776][T16265] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3422 (16265)
[ 1075.694342][T16265] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1075.704686][T16265] BTRFS info (device loop6): using crc32c checksum algorithm
[ 1075.712442][T16265] BTRFS warning (device loop6): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1075.859271][T16265] BTRFS info (device loop6): rebuilding free space tree
[ 1075.931192][T16270] loop8: detected capacity change from 0 to 2048
[ 1075.981683][T16265] BTRFS info (device loop6): disabling free space tree
[ 1075.990110][T16265] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1076.000559][T16265] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1076.037152][T16265] BTRFS info (device loop6): setting nodatasum
[ 1076.043993][T16265] BTRFS info (device loop6): setting nodatacow
[ 1076.050490][T16265] BTRFS info (device loop6): enabling ssd optimizations
[ 1076.057584][T16265] BTRFS info (device loop6): turning on async discard
[ 1076.064870][T16265] BTRFS info (device loop6): enabling disk space caching
[ 1076.072187][T16265] BTRFS info (device loop6): force clearing of disk cache
[ 1076.079456][T16265] BTRFS info (device loop6): trying to use backup root at mount time
[ 1076.091201][T16265] BTRFS info (device loop6): max_inline set to 4096
[ 1076.305199][T16270] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1076.604111][T16281] loop5: detected capacity change from 0 to 32768
[ 1076.721729][T16281] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1076.895981][T15575] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 870 seconds
[ 1076.913389][T15575] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 870 seconds
[ 1077.043080][ T8565] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1077.089622][T16281] XFS (loop5): Ending clean mount
[ 1077.116599][T16281] XFS (loop5): Quotacheck needed: Please wait.
[ 1077.155907][T16304] loop1: detected capacity change from 0 to 512
[ 1077.253796][T16304] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1077.265163][T16281] XFS (loop5): Quotacheck: Done.
[ 1077.474346][ T8254] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1077.487882][T16304] EXT4-fs (loop1): 1 truncate cleaned up
[ 1077.529164][T16304] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1077.845240][T16313] EXT4-fs error (device loop1): ext4_lookup:1785: inode #14: comm syz.1.3428: invalid fast symlink length 39
[ 1079.317169][T16311] loop8: detected capacity change from 0 to 65536
[ 1079.410740][T16311] XFS (loop8): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1079.666289][T16311] XFS (loop8): Ending clean mount
[ 1079.688521][T16311] XFS (loop8): Quotacheck needed: Please wait.
[ 1079.756764][T16311] XFS (loop8): Quotacheck: Done.
[ 1079.758239][T13768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1079.955167][T15308] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1079.988651][T10358] XFS (loop8): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1080.315813][T15308] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1080.628787][T15308] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1080.720991][T16331] loop8: detected capacity change from 0 to 128
[ 1080.794763][T16331] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1080.926987][T15308] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1080.950916][T16331] ext4 filesystem being mounted at /370/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1081.480732][T10358] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1081.609075][T15308] bridge_slave_1: left allmulticast mode
[ 1081.640751][T15308] bridge_slave_1: left promiscuous mode
[ 1081.647251][T15308] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1081.690891][T15308] bridge_slave_0: left allmulticast mode
[ 1081.696719][T15308] bridge_slave_0: left promiscuous mode
[ 1081.741327][T15308] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1082.397615][T15308] dvmrp8 (unregistering): left allmulticast mode
[ 1082.601495][T15308] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1082.762160][T15308] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1082.819191][T15308] bond0 (unregistering): Released all slaves
[ 1083.570452][T15395] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1083.591173][T15395] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1083.610743][T15395] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1083.641531][T15395] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1083.681551][T15395] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1083.798136][T16350] loop8: detected capacity change from 0 to 512
[ 1083.846583][T16350] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1084.000833][T16353] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3445'.
[ 1084.012777][T16350] EXT4-fs error (device loop8): ext4_orphan_get:1417: comm syz.8.3444: bad orphan inode 11
[ 1084.110744][T16350] loop8: lost filesystem error report for type 5 error -117
[ 1084.119852][    C0] EXT4-fs (loop8): error count since last fsck: 1
[ 1084.134110][    C0] EXT4-fs (loop8): initial error at time 1771296920: ext4_orphan_get:1417
[ 1084.142965][    C0] EXT4-fs (loop8): last error at time 1771296920: ext4_orphan_get:1417
[ 1084.153439][T16350] ext4_test_bit(bit=10, block=4) = 1
[ 1084.158881][T16350] is_bad_inode(inode)=0
[ 1084.172486][T16350] NEXT_ORPHAN(inode)=2080374784
[ 1084.190106][T15308] hsr_slave_0: left promiscuous mode
[ 1084.190336][T16350] max_ino=32
[ 1084.229889][T15308] hsr_slave_1: left promiscuous mode
[ 1084.237869][T15308] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1084.238855][T16350] i_nlink=0
[ 1084.290811][T16350] EXT4-fs (loop8): 1 truncate cleaned up
[ 1084.304281][T15308] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1084.354687][T16350] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1084.393057][T15308] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1084.436180][T15308] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1084.526454][T15308] veth1_macvtap: left promiscuous mode
[ 1084.547437][T15308] veth0_macvtap: left promiscuous mode
[ 1084.557813][T15308] veth1_vlan: left promiscuous mode
[ 1084.578215][T15308] veth0_vlan: left promiscuous mode
[ 1084.765984][T10358] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1085.840668][ T5788] Bluetooth: hci1: command tx timeout
[ 1086.462500][T16386] loop6: detected capacity change from 0 to 1024
[ 1086.515867][T16386] EXT4-fs: Ignoring removed orlov option
[ 1086.658724][T16386] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1086.673359][T15308] team0 (unregistering): Port device team_slave_1 removed
[ 1086.775172][T15308] team0 (unregistering): Port device team_slave_0 removed
[ 1087.175282][ T8565] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1087.926500][ T5788] Bluetooth: hci1: command tx timeout
[ 1088.086129][T16401] netlink: 'syz.5.3458': attribute type 4 has an invalid length.
[ 1088.147547][T16404] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[ 1088.852901][T16411] loop5: detected capacity change from 0 to 2048
[ 1088.867088][T16416] Context (ID=0x1) not attached to queue pair (handle=0x2:0x2)
[ 1088.986204][ T6018]  loop5: p2 p3 < > p4 < p5 >
[ 1089.109346][T16411]  loop5: p2 p3 < > p4 < p5 >
[ 1089.636802][T16347] chnl_net:caif_netlink_parms(): no params data found
[ 1090.000042][ T5788] Bluetooth: hci1: command tx timeout
[ 1090.219606][ T6034] udevd[6034]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[ 1090.239274][ T6018] udevd[6018]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[ 1090.258445][ T5975] udevd[5975]: inotify_add_watch(7, /dev/loop5p5, 10) failed: No such file or directory
[ 1090.294484][ T9848] udevd[9848]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[ 1090.771001][T16440] loop5: detected capacity change from 0 to 512
[ 1090.916148][T16440] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1091.000528][T16440] ext4 filesystem being mounted at /557/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1091.087199][T16440] EXT4-fs (loop5): shut down requested (1)
[ 1091.535301][ T8254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1091.859472][T16347] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1091.890994][T16347] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1091.912139][T16347] bridge_slave_0: entered allmulticast mode
[ 1091.949088][T16347] bridge_slave_0: entered promiscuous mode
[ 1092.015929][T16347] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1092.047572][T16347] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1092.080057][ T5788] Bluetooth: hci1: command tx timeout
[ 1092.099041][T16347] bridge_slave_1: entered allmulticast mode
[ 1092.140456][T16347] bridge_slave_1: entered promiscuous mode
[ 1092.332092][T16462] loop8: detected capacity change from 0 to 256
[ 1092.552813][T16347] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1092.653456][T16347] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1092.728406][T16462] FAT-fs (loop8): Directory bread(block 64) failed
[ 1092.772217][T16462] FAT-fs (loop8): Directory bread(block 65) failed
[ 1092.807692][T16462] FAT-fs (loop8): Directory bread(block 66) failed
[ 1092.828727][T16462] FAT-fs (loop8): Directory bread(block 67) failed
[ 1092.868452][T16462] FAT-fs (loop8): Directory bread(block 68) failed
[ 1092.916940][T16462] FAT-fs (loop8): Directory bread(block 69) failed
[ 1092.940533][T16462] FAT-fs (loop8): Directory bread(block 70) failed
[ 1092.947244][T16462] FAT-fs (loop8): Directory bread(block 71) failed
[ 1092.991444][T16462] FAT-fs (loop8): Directory bread(block 72) failed
[ 1092.995715][T16465] loop6: detected capacity change from 0 to 4096
[ 1092.998131][T16462] FAT-fs (loop8): Directory bread(block 73) failed
[ 1093.052753][T16347] team0: Port device team_slave_0 added
[ 1093.117620][T16465] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[ 1093.134863][T16347] team0: Port device team_slave_1 added
[ 1093.203134][T16465] ntfs3(loop6): ino=3, mi_enum_attr
[ 1093.518030][T16347] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1093.557830][T16347] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1093.680056][T16347] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1093.765753][T16347] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1093.800435][T16347] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1093.974872][T16347] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1093.999255][T16475] loop5: detected capacity change from 0 to 512
[ 1094.143274][T16475] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1094.839471][T16347] hsr_slave_0: entered promiscuous mode
[ 1094.894028][T16347] hsr_slave_1: entered promiscuous mode
[ 1094.937823][ T8254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1095.147527][T16486] loop8: detected capacity change from 0 to 256
[ 1095.392195][T16486] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1095.998077][T16489] loop5: detected capacity change from 0 to 4096
[ 1096.726276][T16347] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1096.956929][T16347] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1097.175286][T16498] loop6: detected capacity change from 0 to 4096
[ 1097.236512][T16347] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1097.263929][T16498] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1097.368525][T16498] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1097.403981][T16498] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1097.586622][T16347] netdevsim netdevsim0 netdevsim0 (unregistering): left allmulticast mode
[ 1097.804435][T16347] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1098.187597][ T8565] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1098.742647][T16347] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1098.856808][T16347] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1099.124090][T16347] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1099.214346][T16347] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1099.353699][T16531] loop6: detected capacity change from 0 to 512
[ 1099.564647][T16531] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #15: comm syz.6.3498: inode has both inline data and extents flags
[ 1099.699919][T16531] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1099.710075][    C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1099.725890][    C1] EXT4-fs (loop6): initial error at time 1771296936: ext4_orphan_get:1391: inode 15
[ 1099.735585][    C1] EXT4-fs (loop6): last error at time 1771296936: ext4_orphan_get:1391: inode 15
[ 1099.747785][T16531] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.3498: couldn't read orphan inode 15 (err -117)
[ 1099.837361][T16531] loop6: lost filesystem error report for type 5 error -117
[ 1099.844438][T16531] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1099.923415][T16540] loop5: detected capacity change from 0 to 64
[ 1100.421953][ T8565] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1100.836603][T16347] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1100.908108][T16549] loop5: detected capacity change from 0 to 1024
[ 1101.107111][T16347] 8021q: adding VLAN 0 to HW filter on device team0
[ 1101.204325][T15306] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1101.211946][T15306] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1101.374656][T15306] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1101.382357][T15306] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1102.640966][T16574] loop8: detected capacity change from 0 to 2048
[ 1102.758683][T16574] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1102.874132][T16574] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1102.955553][T16584] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1102.963123][T16584] IPv6: NLM_F_CREATE should be set when creating new route
[ 1102.981201][T16574] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 512 with max blocks 1 with error 28
[ 1103.050936][T16574] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1103.050936][T16574] 
[ 1103.090413][T16574] EXT4-fs (loop8): Total free blocks count 0
[ 1103.096588][T16574] EXT4-fs (loop8): Free/Dirty block details
[ 1103.250377][T16574] EXT4-fs (loop8): free_blocks=2415919504
[ 1103.256811][T16574] EXT4-fs (loop8): dirty_blocks=32
[ 1103.293983][T16574] EXT4-fs (loop8): Block reservation details
[ 1103.336042][T16574] EXT4-fs (loop8): i_reserved_data_blocks=2
[ 1103.715323][ T1035] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1103.948949][T16593] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1104.252746][T16347] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1104.832539][T16347] veth0_vlan: entered promiscuous mode
[ 1105.034398][T16347] veth1_vlan: entered promiscuous mode
[ 1105.567278][T16347] veth0_macvtap: entered promiscuous mode
[ 1105.627687][T16347] veth1_macvtap: entered promiscuous mode
[ 1105.855768][T16347] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1105.976920][T16347] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1106.048992][T15308] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1106.096607][T15308] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1106.131168][T15308] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1106.163397][T15308] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1107.020123][T15575] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 900 seconds
[ 1107.031595][T15575] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 900 seconds
[ 1109.131487][T16658] can0: slcan on ttyS3.
[ 1109.290111][T16658] can0 (unregistered): slcan off ttyS3.
[ 1111.195993][T16697] netlink: 'syz.4.3545': attribute type 15 has an invalid length.
[ 1111.252402][T16697] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3545'.
[ 1111.295426][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1111.337089][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1111.842846][ T1035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1111.894012][ T1035] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1112.018964][T16699] loop6: detected capacity change from 0 to 32768
[ 1112.029960][T16699] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3546 (16699)
[ 1112.109709][T16699] BTRFS info (device loop6): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1112.120315][T16699] BTRFS info (device loop6): using blake2b checksum algorithm
[ 1112.350981][T16699] BTRFS info (device loop6): rebuilding free space tree
[ 1112.383319][T16699] BTRFS info (device loop6): setting nodatasum
[ 1112.389673][T16699] BTRFS info (device loop6): setting nodatacow
[ 1112.396183][T16699] BTRFS info (device loop6): enabling ssd optimizations
[ 1112.403714][T16699] BTRFS info (device loop6): turning on async discard
[ 1112.410784][T16699] BTRFS info (device loop6): enabling free space tree
[ 1112.417695][T16699] BTRFS info (device loop6): force clearing of disk cache
[ 1113.013075][ T8565] BTRFS info (device loop6): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1115.176031][T16755] loop6: detected capacity change from 0 to 2048
[ 1115.413177][T16755] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1115.831477][T16759] loop0: detected capacity change from 0 to 40427
[ 1115.942831][T16759] F2FS-fs (loop0): invalid crc value
[ 1116.204696][T16759] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 1116.214971][T16759] F2FS-fs (loop0): Start checkpoint disabled!
[ 1116.301763][T16759] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[ 1116.320842][T16759] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[ 1116.392310][ T8565] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1116.780075][T16768] loop5: detected capacity change from 0 to 32768
[ 1116.934112][T15310] kworker/u8:34: attempt to access beyond end of device
[ 1116.934112][T15310] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1117.028457][T15310] CPU: 1 UID: 0 PID: 15310 Comm: kworker/u8:34 Tainted: G        W    L      syzkaller #0 PREEMPT(full) 
[ 1117.028637][T15310] Tainted: [W]=WARN, [L]=SOFTLOCKUP
[ 1117.028689][T15310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1117.028789][T15310] Workqueue: writeback wb_workfn (flush-7:0)
[ 1117.028958][T15310] Call Trace:
[ 1117.029011][T15310]  <TASK>
[ 1117.029060][T15310]  __dump_stack+0x26/0x30
[ 1117.029205][T15310]  dump_stack_lvl+0x14c/0x1c0
[ 1117.029357][T15310]  dump_stack+0x1e/0x25
[ 1117.029493][T15310]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1117.029708][T15310]  f2fs_stop_checkpoint+0x65/0x80
[ 1117.029848][T15310]  f2fs_write_end_io+0x12e6/0x2560
[ 1117.030038][T15310]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1117.030174][T15310]  bio_endio+0x1006/0x1160
[ 1117.030328][T15310]  submit_bio_noacct+0x533/0x2960
[ 1117.030523][T15310]  submit_bio+0x57a/0x620
[ 1117.030663][T15310]  f2fs_submit_write_bio+0x115/0x350
[ 1117.030847][T15310]  __submit_merged_bio+0x16f/0x780
[ 1117.031033][T15310]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1117.031214][T15310]  __submit_merged_write_cond+0x4ba/0xae0
[ 1117.031422][T15310]  f2fs_write_data_pages+0x5073/0x5e10
[ 1117.031643][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.031822][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.032010][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.032173][T15310]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1117.032346][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.032512][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.032678][T15310]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1117.032848][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.033007][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.033169][T15310]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1117.033332][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.033494][T15310]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1117.033664][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.033828][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.033998][T15310]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1117.034162][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.034320][T15310]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1117.034488][T15310]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1117.034623][T15310]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1117.034755][T15310]  do_writepages+0x3f2/0x860
[ 1117.034922][T15310]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1117.035098][T15310]  ? writeback_sb_inodes+0x1/0x1f40
[ 1117.035240][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.035417][T15310]  __writeback_single_inode+0xfc/0x1440
[ 1117.035579][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.035748][T15310]  writeback_sb_inodes+0xb52/0x1f40
[ 1117.036036][T15310]  wb_writeback+0x4f1/0xcd0
[ 1117.036200][T15310]  ? queue_io+0x411/0x800
[ 1117.036343][T15310]  wb_workfn+0x3b9/0x19b0
[ 1117.036469][T15310]  ? kmsan_get_metadata+0xf1/0x160
[ 1117.036654][T15310]  ? __pfx_wb_workfn+0x10/0x10
[ 1117.036775][T15310]  process_scheduled_works+0xb21/0x1e30
[ 1117.036981][T15310]  worker_thread+0xede/0x1580
[ 1117.037155][T15310]  kthread+0x53f/0x600
[ 1117.037309][T15310]  ? __pfx_worker_thread+0x10/0x10
[ 1117.037457][T15310]  ? __pfx_kthread+0x10/0x10
[ 1117.037604][T15310]  ret_from_fork+0x20f/0x910
[ 1117.037737][T15310]  ? __switch_to+0x51c/0x750
[ 1117.037900][T15310]  ? __pfx_kthread+0x10/0x10
[ 1117.038056][T15310]  ret_from_fork_asm+0x1a/0x30
[ 1117.038240][T15310]  </TASK>
[ 1117.441856][T16776] IPVS: set_ctl: invalid protocol: 47 224.0.0.2:20000
[ 1117.741064][T15310] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 1118.034926][T16778] loop8: detected capacity change from 0 to 256
[ 1118.119477][T16778] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1119.859438][T16798] loop5: detected capacity change from 0 to 32768
[ 1120.097898][T16798] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1120.210381][T10436] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 1120.359983][T16798] XFS (loop5): Ending clean mount
[ 1120.375514][T16798] XFS (loop5): Quotacheck needed: Please wait.
[ 1120.473013][T10436] usb 7-1: Using ep0 maxpacket: 32
[ 1120.475264][T16798] XFS (loop5): Quotacheck: Done.
[ 1120.533767][T10436] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1120.571236][T10436] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[ 1120.618826][T10436] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1120.669359][T10436] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1120.690678][T10436] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1120.732307][T10436] usb 7-1: config 0 descriptor??
[ 1120.779398][T16801] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1120.820051][T10436] hub 7-1:0.0: USB hub found
[ 1120.946223][ T8254] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1121.080433][T10436] hub 7-1:0.0: 2 ports detected
[ 1121.534136][T10436] hub 7-1:0.0: set hub depth failed
[ 1121.607647][T10436] usb 7-1: USB disconnect, device number 19
[ 1122.706180][T16833] loop8: detected capacity change from 0 to 2048
[ 1122.862778][T16833] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1123.474658][T10358] UDF-fs: error (device loop8): udf_read_inode: (ino 1317) failed !bh
[ 1123.519262][T10358] UDF-fs: error (device loop8): udf_read_inode: (ino 1317) failed !bh
[ 1124.595989][T16860] loop0: detected capacity change from 0 to 2048
[ 1124.652294][T16855] loop5: detected capacity change from 0 to 4096
[ 1124.770609][T16860] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1124.956132][T16855] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1125.148429][T10811] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1125.541979][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1125.551760][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1125.761582][T10811] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1125.782002][ T8254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1126.111128][T10811] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1126.354901][T10811] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1126.932005][T10811] bridge_slave_1: left allmulticast mode
[ 1126.937839][T10811] bridge_slave_1: left promiscuous mode
[ 1126.950648][T10811] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1126.976352][T10811] bridge_slave_0: left allmulticast mode
[ 1126.989950][T10811] bridge_slave_0: left promiscuous mode
[ 1126.996449][T10811] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1127.343807][T10811] ip6gretap0 (unregistering): left promiscuous mode
[ 1127.637210][T10811] bond0 (unregistering): left promiscuous mode
[ 1127.700043][T10811] bond_slave_0: left promiscuous mode
[ 1127.707467][T10811] bond_slave_1: left promiscuous mode
[ 1127.804304][T10811] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1127.885888][T10811] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1127.909718][T16889] loop0: detected capacity change from 0 to 1024
[ 1127.978169][T10811] bond0 (unregistering): Released all slaves
[ 1128.013380][T16889] hfsplus: b-tree write err: -5, ino 2
[ 1128.634631][T15308] hfsplus: b-tree write err: -5, ino 25
[ 1128.703850][T15308] hfsplus: b-tree write err: -5, ino 4
[ 1128.709713][T15308] hfsplus: b-tree write err: -5, ino 2
[ 1129.146899][T16896] loop5: detected capacity change from 0 to 32768
[ 1129.265665][T15395] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1129.275729][T15395] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1129.287543][T15395] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1129.307139][T15395] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1129.327545][T15395] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1129.455607][T16899] smc: net device bond0 applied user defined pnetid SYZ0
[ 1129.790313][T15308] hfsplus: b-tree write err: -5, ino 26
[ 1129.800289][T16347] INFO: The task syz-executor:16347 has been waiting for writeback completion for more than 1 seconds.
[ 1129.802796][T16896] (syz.5.3608,16896,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1129.829465][T16896] (syz.5.3608,16896,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1130.088477][T16896] JBD2: Ignoring recovery information on journal
[ 1130.197033][T16896] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1130.878244][ T8254] ocfs2: Unmounting device (7,5) on (node local)
[ 1130.925020][T16905] loop6: detected capacity change from 0 to 4096
[ 1131.210942][T10811] hsr_slave_0: left promiscuous mode
[ 1131.276459][T10811] hsr_slave_1: left promiscuous mode
[ 1131.302365][T10811] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1131.340000][T10811] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1131.408843][T10811] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1131.450902][ T5788] Bluetooth: hci3: command tx timeout
[ 1131.456827][T10811] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1131.524004][T10811] veth1_macvtap: left promiscuous mode
[ 1131.558329][T10811] veth0_macvtap: left promiscuous mode
[ 1131.580266][T10811] veth1_vlan: left promiscuous mode
[ 1131.587328][T10811] veth0_vlan: left promiscuous mode
[ 1132.009638][T15306] ntfs3(loop6): ino=5, mi_enum_attr
[ 1133.271173][T16944] loop0: detected capacity change from 0 to 512
[ 1133.430767][T16944] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.3622: inode has both inline data and extents flags
[ 1133.520090][ T5788] Bluetooth: hci3: command tx timeout
[ 1133.557664][T16944] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1133.558494][T16944] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3622: couldn't read orphan inode 15 (err -117)
[ 1133.568111][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1133.568205][    C0] EXT4-fs (loop0): initial error at time 1771296970: ext4_orphan_get:1391: inode 15
[ 1133.568361][    C0] EXT4-fs (loop0): last error at time 1771296970: ext4_orphan_get:1391: inode 15
[ 1133.808049][T16944] loop0: lost filesystem error report for type 5 error -117
[ 1133.838389][T16944] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1133.929590][T16956] netlink: 9 bytes leftover after parsing attributes in process `syz.6.3625'.
[ 1134.002057][T16956] netlink: 9 bytes leftover after parsing attributes in process `syz.6.3625'.
[ 1134.261656][T10811] team0 (unregistering): Port device team_slave_1 removed
[ 1134.282843][T16347] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1134.372006][T10811] team0 (unregistering): Port device team_slave_0 removed
[ 1135.267685][T16969] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1135.600039][ T5788] Bluetooth: hci3: command tx timeout
[ 1135.618700][T10811] IPVS: stop unused estimator thread 0...
[ 1135.811763][T16901] chnl_net:caif_netlink_parms(): no params data found
[ 1137.042921][T15575] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 930 seconds
[ 1137.054329][T15575] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 930 seconds
[ 1137.446427][T17001] loop0: detected capacity change from 0 to 4096
[ 1137.591658][T16901] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1137.635279][T16901] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1137.664229][T16901] bridge_slave_0: entered allmulticast mode
[ 1137.704927][ T5788] Bluetooth: hci3: command tx timeout
[ 1137.714109][T16901] bridge_slave_0: entered promiscuous mode
[ 1137.784798][T16901] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1137.821802][T16901] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1137.854231][T16901] bridge_slave_1: entered allmulticast mode
[ 1137.877719][T16901] bridge_slave_1: entered promiscuous mode
[ 1138.177177][T17008] loop5: detected capacity change from 0 to 32768
[ 1138.334807][T17008] 
[ 1138.334807][T17008]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1138.334807][T17008] 
[ 1138.506809][T17015] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1138.954557][ T8254] 
[ 1138.954557][ T8254]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1138.954557][ T8254] 
[ 1139.052882][ T8254] 
[ 1139.052882][ T8254]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1139.052882][ T8254] 
[ 1139.353277][T16901] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1139.466822][T16901] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1139.936400][T16901] team0: Port device team_slave_0 added
[ 1140.062970][T16901] team0: Port device team_slave_1 added
[ 1140.223454][T17032] loop5: detected capacity change from 0 to 512
[ 1140.297014][T17032] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1140.415394][T17032] EXT4-fs (loop5): 1 truncate cleaned up
[ 1140.492290][T16901] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1140.518822][T16901] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1140.524062][T17032] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1140.620625][T16901] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1140.660908][T16901] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1140.685907][T16901] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1140.770264][T16901] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1141.054348][ T8254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1141.419402][T16901] hsr_slave_0: entered promiscuous mode
[ 1141.456153][T16901] hsr_slave_1: entered promiscuous mode
[ 1141.516878][T16901] debugfs: 'hsr0' already exists in 'hsr'
[ 1141.569992][T16901] Cannot create hsr debugfs directory
[ 1142.469995][ T9247] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 1142.670276][ T9247] usb 7-1: Using ep0 maxpacket: 8
[ 1142.707208][ T9247] usb 7-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[ 1142.761645][ T9247] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239
[ 1142.820035][ T9247] usb 7-1: Product: syz
[ 1142.837298][ T9247] usb 7-1: Manufacturer: syz
[ 1142.863671][ T9247] usb 7-1: SerialNumber: syz
[ 1142.891940][ T9247] usb 7-1: config 0 descriptor??
[ 1142.937990][ T9247] gspca_main: sq905-2.14.0 probing 2770:9120
[ 1143.955797][ T9247] gspca_sq905: sq905_read_data: usb_control_msg failed (-71)
[ 1143.995302][ T9247] sq905 7-1:0.0: probe with driver sq905 failed with error -71
[ 1144.042980][ T9247] usb 7-1: USB disconnect, device number 20
[ 1144.477628][T16901] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1144.624430][T16901] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1144.756416][T16901] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1144.916022][T16901] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1146.050306][ T9247] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1146.219970][ T9247] usb 6-1: Using ep0 maxpacket: 32
[ 1146.260254][ T9247] usb 6-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[ 1146.295622][ T9247] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1146.306768][T16901] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1146.416070][ T9247] gspca_main: nw80x-2.14.0 probing 055f:d001
[ 1146.629506][T16901] 8021q: adding VLAN 0 to HW filter on device team0
[ 1146.794730][T15310] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1146.802323][T15310] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1146.984785][  T126] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1146.992289][  T126] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1147.457562][ T9247] gspca_nw80x: reg_w err -71
[ 1147.470177][ T9247] nw80x 6-1:3.0: probe with driver nw80x failed with error -71
[ 1147.545051][ T9247] usb 6-1: USB disconnect, device number 16
[ 1148.972335][T17114] loop0: detected capacity change from 0 to 65536
[ 1149.004355][T17114] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1149.384756][T17114] XFS (loop0): Ending clean mount
[ 1149.404860][T17114] XFS (loop0): syz.0.3680 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported
[ 1149.478674][T16347] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1149.558672][T17135] netlink: 'syz.4.3683': attribute type 34 has an invalid length.
[ 1150.636323][T16901] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1151.256875][T16901] veth0_vlan: entered promiscuous mode
[ 1151.433137][T16901] veth1_vlan: entered promiscuous mode
[ 1151.840615][T16901] veth0_macvtap: entered promiscuous mode
[ 1151.942381][T16901] veth1_macvtap: entered promiscuous mode
[ 1152.217746][T16901] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1152.503233][T16901] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1152.709182][   T34] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1152.766957][   T34] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1152.873678][   T34] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1152.950194][   T34] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1153.195123][T17172] loop0: detected capacity change from 0 to 40427
[ 1153.274409][T17172] F2FS-fs (loop0): Image doesn't support compression
[ 1153.282092][T17172] F2FS-fs (loop0): build fault injection rate: 690
[ 1153.308496][T17172] F2FS-fs (loop0): invalid crc value
[ 1153.596071][T17172] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1153.611189][T17172] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1153.682004][   T29] audit: type=1800 audit(1771296990.175:135): pid=17172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3694" name="file0" dev="loop0" ino=10 res=0 errno=0
[ 1153.808584][T16347] syz-executor: attempt to access beyond end of device
[ 1153.808584][T16347] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1153.852432][   T29] audit: type=1804 audit(1771296990.205:136): pid=17172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3694" name="/newroot/25/bus/file0" dev="loop0" ino=10 res=1 errno=0
[ 1153.888206][T16347] CPU: 1 UID: 0 PID: 16347 Comm: syz-executor Tainted: G        W    L      syzkaller #0 PREEMPT(full) 
[ 1153.888381][T16347] Tainted: [W]=WARN, [L]=SOFTLOCKUP
[ 1153.888438][T16347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1153.888518][T16347] Call Trace:
[ 1153.888567][T16347]  <TASK>
[ 1153.888622][T16347]  __dump_stack+0x26/0x30
[ 1153.888778][T16347]  dump_stack_lvl+0x14c/0x1c0
[ 1153.888933][T16347]  dump_stack+0x1e/0x25
[ 1153.889072][T16347]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1153.889294][T16347]  f2fs_stop_checkpoint+0x65/0x80
[ 1153.889431][T16347]  f2fs_write_end_io+0x12e6/0x2560
[ 1153.889630][T16347]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1153.889766][T16347]  bio_endio+0x1006/0x1160
[ 1153.889915][T16347]  submit_bio_noacct+0x533/0x2960
[ 1153.890118][T16347]  submit_bio+0x57a/0x620
[ 1153.890274][T16347]  f2fs_submit_write_bio+0x115/0x350
[ 1153.890463][T16347]  __submit_merged_bio+0x16f/0x780
[ 1153.890639][T16347]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1153.890823][T16347]  __submit_merged_write_cond+0x4ba/0xae0
[ 1153.891033][T16347]  f2fs_write_data_pages+0x5073/0x5e10
[ 1153.891310][T16347]  ? kmsan_get_metadata+0xf1/0x160
[ 1153.891477][T16347]  ? folio_batch_move_lru+0x6a2/0x6d0
[ 1153.891647][T16347]  ? __msan_warning+0x1b/0x30
[ 1153.891793][T16347]  ? filter_irq_stacks+0x13f/0x190
[ 1153.891967][T16347]  ? stack_depot_save_flags+0x35/0x790
[ 1153.892130][T16347]  ? kmsan_get_metadata+0xf1/0x160
[ 1153.892309][T16347]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1153.892474][T16347]  ? kmsan_get_metadata+0xf1/0x160
[ 1153.892639][T16347]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1153.892809][T16347]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1153.892946][T16347]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1153.893086][T16347]  do_writepages+0x3f2/0x860
[ 1153.893275][T16347]  ? _raw_spin_unlock+0x30/0x50
[ 1153.893439][T16347]  ? wbc_attach_and_unlock_inode+0x131/0x660
[ 1153.893653][T16347]  filemap_fdatawrite+0x207/0x260
[ 1153.893872][T16347]  f2fs_sync_dirty_inodes+0x2aa/0xaa0
[ 1153.894049][T16347]  f2fs_write_checkpoint+0x10e1/0x3d20
[ 1153.894344][T16347]  kill_f2fs_super+0x320/0x990
[ 1153.894526][T16347]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1153.894668][T16347]  deactivate_locked_super+0xcb/0x3c0
[ 1153.894817][T16347]  deactivate_super+0x12f/0x140
[ 1153.894958][T16347]  cleanup_mnt+0x7eb/0x870
[ 1153.895102][T16347]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1153.895239][T16347]  __cleanup_mnt+0x22/0x30
[ 1153.895361][T16347]  task_work_run+0x208/0x2b0
[ 1153.895544][T16347]  exit_to_user_mode_loop+0x306/0x1b60
[ 1153.895730][T16347]  ? user_path_at+0x1fc/0x330
[ 1153.895879][T16347]  ? __x64_sys_umount+0x1dc/0x250
[ 1153.896048][T16347]  do_syscall_64+0x24d/0xf80
[ 1153.896187][T16347]  ? clear_bhb_loop+0x50/0xa0
[ 1153.896327][T16347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1153.896468][T16347] RIP: 0033:0x7ff7e5f9d1d7
[ 1153.896568][T16347] Code: a2 c7 05 bc e3 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1153.896683][T16347] RSP: 002b:00007ffc632ccc88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1153.896813][T16347] RAX: 0000000000000000 RBX: 00007ff7e6031c3b RCX: 00007ff7e5f9d1d7
[ 1153.896904][T16347] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc632ccd40
[ 1153.896988][T16347] RBP: 00007ffc632ccd40 R08: 00007ffc632cdd40 R09: 00000000ffffffff
[ 1153.897081][T16347] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc632cddd0
[ 1153.897172][T16347] R13: 00007ff7e6031c3b R14: 0000000000119ac1 R15: 00007ffc632cde10
[ 1153.897298][T16347]  </TASK>
[ 1154.333507][T16347] F2FS-fs (loop0): Remounting filesystem read-only
[ 1155.911014][T17191] loop5: detected capacity change from 0 to 32768
[ 1155.920776][T17191] xfs: Deprecated parameter 'attr2'
[ 1155.926148][T17191] XFS: attr2 mount option is deprecated.
[ 1155.996486][T17193] loop6: detected capacity change from 0 to 4096
[ 1156.042464][T17191] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1156.210540][T17209] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1156.301801][T17191] XFS (loop5): Ending clean mount
[ 1156.317063][T17191] XFS (loop5): Quotacheck needed: Please wait.
[ 1156.437377][T17191] XFS (loop5): Quotacheck: Done.
[ 1156.648587][ T8254] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1159.263900][T17227] loop6: detected capacity change from 0 to 65536
[ 1159.386591][T17227] XFS (loop6): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1159.650552][T17227] XFS (loop6): Ending clean mount
[ 1159.665929][T17227] XFS (loop6): Quotacheck needed: Please wait.
[ 1159.791490][T17227] XFS (loop6): Quotacheck: Done.
[ 1161.897415][ T8565] XFS (loop6): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[ 1163.104333][T17275] loop0: detected capacity change from 0 to 32768
[ 1163.113933][T17275] btrfs: Deprecated parameter 'usebackuproot'
[ 1163.128030][T17275] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[ 1163.177971][T17275] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.3717 (17275)
[ 1163.198995][T17275] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1163.209515][T17275] BTRFS info (device loop0): using crc32c checksum algorithm
[ 1163.220014][T17275] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1163.336908][T15306] BTRFS warning (device loop0): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[ 1163.354922][T17275] BTRFS error (device loop0): failed to load root extent
[ 1163.365558][T17275] BTRFS warning (device loop0): try to load backup roots slot 1
[ 1163.378927][   T34] BTRFS warning (device loop0): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[ 1163.497221][T17275] BTRFS warning (device loop0): couldn't read tree root
[ 1163.504785][T17275] BTRFS warning (device loop0): try to load backup roots slot 2
[ 1163.513664][T10811] BTRFS error (device loop0): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[ 1163.532568][T17275] BTRFS warning (device loop0): couldn't read tree root
[ 1163.542014][T17275] BTRFS warning (device loop0): try to load backup roots slot 3
[ 1163.588585][T17275] BTRFS info (device loop0): rebuilding free space tree
[ 1163.631688][T17275] BTRFS info (device loop0): disabling free space tree
[ 1163.638811][T17275] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1163.650521][T17275] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1163.679384][T17275] BTRFS info (device loop0): enabling ssd optimizations
[ 1163.687077][T17275] BTRFS info (device loop0): turning on sync discard
[ 1163.694035][T17275] BTRFS info (device loop0): enabling disk space caching
[ 1163.701291][T17275] BTRFS info (device loop0): force clearing of disk cache
[ 1163.708576][T17275] BTRFS info (device loop0): trying to use backup root at mount time
[ 1163.716988][T17275] BTRFS info (device loop0): max_inline set to 0
[ 1163.730969][T17275] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1164.974474][  T126] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1165.003793][  T126] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1165.288337][ T3436] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1165.348940][ T3436] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1166.758556][T17333] loop3: detected capacity change from 0 to 32768
[ 1166.804687][T17333] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3603 (17333)
[ 1166.840610][T17333] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1166.851075][T17333] BTRFS info (device loop3): using blake2b checksum algorithm
[ 1167.125733][T15575] block nbd0: Possible stuck request ffff88810aed0000: control (read@0,1024B). Runtime 960 seconds
[ 1167.141566][T15575] block nbd0: Possible stuck request ffff88810aed0180: control (read@1024,1024B). Runtime 960 seconds
[ 1167.235030][T17339] loop0: detected capacity change from 0 to 4096
[ 1167.244730][T17339] EXT4-fs: inline encryption not supported
[ 1167.267640][T17333] BTRFS info (device loop3): enabling ssd optimizations
[ 1167.275007][T17333] BTRFS info (device loop3): turning on async discard
[ 1167.282135][T17333] BTRFS info (device loop3): enabling free space tree
[ 1167.289070][T17333] BTRFS info (device loop3): use zstd compression, level 3
[ 1167.311669][T17339] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1167.364369][T17339] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1167.445009][T17339] System zones: 0-5
[ 1167.576074][T17339] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1167.746756][T16901] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1168.263312][T16347] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1169.020897][T17377] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3740'.
[ 1169.176316][T17379] loop0: detected capacity change from 0 to 128
[ 1169.710315][ T9250] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1169.940344][ T9250] usb 4-1: Using ep0 maxpacket: 16
[ 1170.004329][ T9250] usb 4-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[ 1170.060411][ T9250] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1170.068636][ T9250] usb 4-1: Product: syz
[ 1170.129963][ T9250] usb 4-1: Manufacturer: syz
[ 1170.134766][ T9250] usb 4-1: SerialNumber: syz
[ 1170.203533][ T9250] usb 4-1: config 0 descriptor??
[ 1170.693966][ T9250] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[ 1170.731385][ T9250] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1170.753335][ T9250] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[ 1170.790326][ T9250] usb 4-1: media controller created
[ 1170.941426][ T9250] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1171.100466][ T9250] zl10353_read_register: readreg error (reg=127, ret==0)
[ 1171.107817][ T9250] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[ 1171.118919][ T9250] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[ 1171.150884][ T9250] usb 4-1: USB disconnect, device number 7
[ 1171.398895][ T9250] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[ 1171.886538][T17410] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1172.130351][T10436] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1172.357881][T10436] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1172.391602][T10436] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1172.418549][T10436] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1172.438460][T10436] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1172.454276][T10436] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1172.472872][T10436] usb 6-1: config 0 descriptor??
[ 1173.025852][T10436] plantronics 0003:047F:FFFF.0020: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[ 1173.260774][T10436] usb 6-1: USB disconnect, device number 17
[ 1173.278367][T17423] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3752'.
[ 1173.906256][T17429] loop0: detected capacity change from 0 to 1024
[ 1173.972999][T17426] fido_id[17426]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[ 1175.102266][T17446] loop0: detected capacity change from 0 to 512
[ 1175.153950][T17446] msdos: Unknown parameter 'ts'
[ 1176.739039][T17446] loop0: detected capacity change from 0 to 8192
[ 1177.518590][T17478] serio: Serial port ttyS3
[ 1177.622225][T17482] loop6: detected capacity change from 0 to 256
[ 1177.794709][T17482] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1177.873747][T17482] FAT-fs (loop6): Filesystem has been set read-only
[ 1177.968721][T17482] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1178.080895][T17482] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1178.190473][T17482] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000001)
[ 1178.224861][   T29] audit: type=1800 audit(1771297014.675:137): pid=17482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3774" name="file1" dev="loop6" ino=1048791 res=0 errno=0
[ 1179.418076][   T53] =====================================================
[ 1179.426880][   T53] BUG: KMSAN: uninit-value in n_tty_receive_buf_standard+0xe7b/0xc820
[ 1179.437317][   T53]  n_tty_receive_buf_standard+0xe7b/0xc820
[ 1179.443668][   T53]  n_tty_receive_buf_common+0x1a59/0x2610
[ 1179.449553][   T53]  n_tty_receive_buf2+0x4c/0x60
[ 1179.454687][   T53]  tty_ldisc_receive_buf+0xc6/0x2c0
[ 1179.460261][   T53]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1179.466213][   T53]  flush_to_ldisc+0x43e/0xe40
[ 1179.471153][   T53]  process_scheduled_works+0xb21/0x1e30
[ 1179.476839][   T53]  worker_thread+0xede/0x1580
[ 1179.481791][   T53]  kthread+0x53f/0x600
[ 1179.486011][   T53]  ret_from_fork+0x20f/0x910
[ 1179.490848][   T53]  ret_from_fork_asm+0x1a/0x30
[ 1179.495764][   T53] 
[ 1179.498144][   T53] Uninit was stored to memory at:
[ 1179.503500][   T53]  n_tty_receive_buf_standard+0xe74/0xc820
[ 1179.509462][   T53]  n_tty_receive_buf_common+0x1a59/0x2610
[ 1179.516343][   T53]  n_tty_receive_buf2+0x4c/0x60
[ 1179.521725][   T53]  tty_ldisc_receive_buf+0xc6/0x2c0
[ 1179.527106][   T53]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1179.533499][   T53]  flush_to_ldisc+0x43e/0xe40
[ 1179.538303][   T53]  process_scheduled_works+0xb21/0x1e30
[ 1179.544089][   T53]  worker_thread+0xede/0x1580
[ 1179.548895][   T53]  kthread+0x53f/0x600
[ 1179.553226][   T53]  ret_from_fork+0x20f/0x910
[ 1179.557954][   T53]  ret_from_fork_asm+0x1a/0x30
[ 1179.563310][   T53] 
[ 1179.565692][   T53] Uninit was created at:
[ 1179.570277][   T53]  __kmalloc_noprof+0x486/0x1680
[ 1179.575389][   T53]  __tty_buffer_request_room+0x3d4/0x7a0
[ 1179.581308][   T53]  __tty_insert_flip_string_flags+0x157/0x6e0
[ 1179.587569][   T53]  uart_insert_char+0x368/0x930
[ 1179.593036][   T53]  serial8250_read_char+0x1ba/0x670
[ 1179.598391][   T53]  serial8250_handle_irq+0x930/0x1110
[ 1179.604123][   T53]  serial8250_default_handle_irq+0x116/0x370
[ 1179.610459][   T53]  serial8250_interrupt+0xcb/0x420
[ 1179.620517][   T53]  __handle_irq_event_percpu+0x13c/0xf90
[ 1179.627334][   T53]  handle_irq_event+0xe0/0x2a0
[ 1179.633290][   T53]  handle_edge_irq+0x2a9/0xb30
[ 1179.638785][   T53]  __common_interrupt+0x9d/0x180
[ 1179.644673][   T53]  common_interrupt+0x94/0xb0
[ 1179.650638][   T53]  asm_common_interrupt+0x2b/0x40
[ 1179.656321][   T53] 
[ 1179.659426][   T53] CPU: 0 UID: 0 PID: 53 Comm: kworker/u8:3 Tainted: G        W    L      syzkaller #0 PREEMPT(full) 
[ 1179.671663][   T53] Tainted: [W]=WARN, [L]=SOFTLOCKUP
[ 1179.677541][   T53] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1179.689035][   T53] Workqueue: events_unbound flush_to_ldisc
[ 1179.695764][   T53] =====================================================
[ 1179.703621][   T53] Disabling lock debugging due to kernel taint
[ 1180.080460][   T53] Kernel panic - not syncing: kmsan.panic set ...
[ 1180.087010][   T53] CPU: 1 UID: 0 PID: 53 Comm: kworker/u8:3 Tainted: G    B   W    L      syzkaller #0 PREEMPT(full) 
[ 1180.098051][   T53] Tainted: [B]=BAD_PAGE, [W]=WARN, [L]=SOFTLOCKUP
[ 1180.104545][   T53] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1180.114714][   T53] Workqueue: events_unbound flush_to_ldisc
[ 1180.120672][   T53] Call Trace:
[ 1180.124030][   T53]  <TASK>
[ 1180.127024][   T53]  __dump_stack+0x26/0x30
[ 1180.131502][   T53]  dump_stack_lvl+0x50/0x1c0
[ 1180.136227][   T53]  ? dump_stack+0x12/0x25
[ 1180.140685][   T53]  dump_stack+0x1e/0x25
[ 1180.144969][   T53]  vpanic+0x7b4/0x1430
[ 1180.149200][   T53]  panic+0x15d/0x160
[ 1180.153275][   T53]  kmsan_report+0x31a/0x320
[ 1180.157930][   T53]  ? __msan_warning+0x1b/0x30
[ 1180.162733][   T53]  ? n_tty_receive_buf_standard+0xe7b/0xc820
[ 1180.168866][   T53]  ? n_tty_receive_buf_common+0x1a59/0x2610
[ 1180.174903][   T53]  ? n_tty_receive_buf2+0x4c/0x60
[ 1180.180065][   T53]  ? tty_ldisc_receive_buf+0xc6/0x2c0
[ 1180.185609][   T53]  ? tty_port_default_receive_buf+0xd7/0x1a0
[ 1180.191713][   T53]  ? flush_to_ldisc+0x43e/0xe40
[ 1180.196671][   T53]  ? process_scheduled_works+0xb21/0x1e30
[ 1180.202523][   T53]  ? worker_thread+0xede/0x1580
[ 1180.207496][   T53]  ? kthread+0x53f/0x600
[ 1180.211876][   T53]  ? ret_from_fork+0x20f/0x910
[ 1180.216769][   T53]  ? ret_from_fork_asm+0x1a/0x30
[ 1180.221853][   T53]  ? ret_from_fork_asm+0x1a/0x30
[ 1180.226935][   T53]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1180.233426][   T53]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1180.239646][   T53]  ? __mutex_unlock_slowpath+0x3f7/0x530
[ 1180.245416][   T53]  ? kmsan_get_metadata+0x146/0x160
[ 1180.250769][   T53]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1180.256740][   T53]  ? n_tty_receive_char+0x1223/0x14f0
[ 1180.262253][   T53]  ? __wake_up+0x29d/0x2f0
[ 1180.266789][   T53]  ? kmsan_get_metadata+0xf1/0x160
[ 1180.272058][   T53]  __msan_warning+0x1b/0x30
[ 1180.276698][   T53]  n_tty_receive_buf_standard+0xe7b/0xc820
[ 1180.282705][   T53]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1180.289185][   T53]  ? kmsan_get_metadata+0xf1/0x160
[ 1180.294458][   T53]  ? kmsan_internal_task_create+0x20/0x40
[ 1180.300338][   T53]  n_tty_receive_buf_common+0x1a59/0x2610
[ 1180.306255][   T53]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1180.312267][   T53]  n_tty_receive_buf2+0x4c/0x60
[ 1180.317254][   T53]  ? __pfx_n_tty_receive_buf2+0x10/0x10
[ 1180.322935][   T53]  tty_ldisc_receive_buf+0xc6/0x2c0
[ 1180.328318][   T53]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1180.334263][   T53]  flush_to_ldisc+0x43e/0xe40
[ 1180.339090][   T53]  ? __pfx_tty_port_default_receive_buf+0x10/0x10
[ 1180.345667][   T53]  ? __pfx_flush_to_ldisc+0x10/0x10
[ 1180.351002][   T53]  process_scheduled_works+0xb21/0x1e30
[ 1180.356756][   T53]  worker_thread+0xede/0x1580
[ 1180.361603][   T53]  kthread+0x53f/0x600
[ 1180.365822][   T53]  ? __pfx_worker_thread+0x10/0x10
[ 1180.371079][   T53]  ? __pfx_kthread+0x10/0x10
[ 1180.375819][   T53]  ret_from_fork+0x20f/0x910
[ 1180.380541][   T53]  ? __switch_to+0x51c/0x750
[ 1180.385288][   T53]  ? __pfx_kthread+0x10/0x10
[ 1180.390027][   T53]  ret_from_fork_asm+0x1a/0x30
[ 1180.394974][   T53]  </TASK>
[ 1180.398413][   T53] Kernel Offset: disabled
[ 1180.402777][   T53] Rebooting in 86400 seconds..