last executing test programs:

7m32.192875905s ago: executing program 4 (id=1006):
syz_mount_image$f2fs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x5505, &(0x7f0000002480)="$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")
r0 = open(&(0x7f0000000140)='./file1\x00', 0x64842, 0x21)
pwritev2(r0, &(0x7f0000000700)=[{&(0x7f0000000180)='0', 0x1}], 0x1, 0xb012, 0x0, 0x9)

7m29.21204746s ago: executing program 4 (id=1013):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4016, &(0x7f0000000780), 0x1, 0x447, &(0x7f0000001380)="$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")
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0185879, &(0x7f0000000100)={0x8003, 0x1000, 0x2000, 0x0, 0x0, 0x0, 0x2401})

7m26.331246144s ago: executing program 4 (id=1033):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@test_dummy_encryption}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)
fallocate(r0, 0x20, 0x4000, 0x4000)

7m25.450059063s ago: executing program 4 (id=1039):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000280)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x44d, &(0x7f0000000900)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000003c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}, {@uuid_on}, {@redirect_dir_on}], [], 0x2c})

7m24.387500927s ago: executing program 4 (id=1045):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)

7m23.123395296s ago: executing program 4 (id=1057):
socket$kcm(0x29, 0x5, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/kcm\x00')
preadv(r0, &(0x7f0000000740)=[{&(0x7f0000000000)=""/158, 0x9e}], 0x1, 0x0, 0x0)

7m22.184731003s ago: executing program 32 (id=1057):
socket$kcm(0x29, 0x5, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/kcm\x00')
preadv(r0, &(0x7f0000000740)=[{&(0x7f0000000000)=""/158, 0x9e}], 0x1, 0x0, 0x0)

7.595705654s ago: executing program 6 (id=4384):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000002f00)=[{{&(0x7f0000000f40)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7}, 0x1c, &(0x7f0000001fc0)=[{&(0x7f0000000f80)="ea", 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r0, 0x1)

7.000035645s ago: executing program 6 (id=4388):
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0xffffffffff600000)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES32=r0], 0x2)

6.122917429s ago: executing program 3 (id=4391):
setitimer(0x2, &(0x7f0000000040)={{0x0, 0x2710}, {0x0, 0x2710}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
setitimer(0x2, 0x0, 0x0)

6.072917568s ago: executing program 6 (id=4392):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendmmsg$inet6(r0, &(0x7f0000019680)=[{{&(0x7f0000000100)={0xa, 0x0, 0x0, @loopback={0x0, 0xac141414}}, 0x1c, 0x0}}], 0x1, 0x20004855)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, 0x0, 0x0)

6.059746321s ago: executing program 2 (id=4393):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
symlinkat(0x0, 0xffffffffffffffff, 0x0)

5.613687036s ago: executing program 2 (id=4395):
syz_mount_image$jfs(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0x101c002, &(0x7f0000000a00)=ANY=[@ANYRES8=0x0, @ANYRESHEX=0xee00, @ANYBLOB="2c6572726f72733d72656d6f756e742d726f2c696f636861727365743d69736f383835392d342c00fb8602bc827d678ff4d12dba8652b9d39b4b4ff5657dd6ec1c923fb62ce2b91d41de0069a0e4d9cc00c46db0687686104197b53eeedda4d051ba690ba658ce6beb"], 0x23, 0x61c3, &(0x7f000000c9c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000100)=@FILEID_INO32_GEN_PARENT={0x10, 0x2, {{0x1, 0x1}, 0x4, 0x5b47}}, 0x454680)

5.587166625s ago: executing program 6 (id=4396):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000300), 0x1, 0x5505, &(0x7f0000002480)="$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")
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
lstat(&(0x7f0000000080)='./file0\x00', &(0x7f00000002c0))

4.928587366s ago: executing program 0 (id=4399):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f00000029c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x8001}}, {@journal_dev={'journal_dev', 0x3d, 0x9676}}, {@errors_remount}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'ext4\x00'}}, {@fsname={'fsname', 0x3d, 'minixdf'}}], 0x2c}, 0x84, 0x45a, &(0x7f0000000480)="$eJzs20tvG1UbAOB3xknv/ZKvlEsvQKAgIi5Jkxbogg0IpG6QkGBRliFJq9K0QU2QaFXRgFBZov4CYInEL2AFGwSsQGxhj5Aq1A2FBRo09kzrJnaIL6mT+nkkt+d4jn3e1zMnPjNnHEDfGsn/SSJ2RcQvETFUq97eYKT2343rl6b/un5pOokse/2PpNruz+uXpsum5et2FpXRNCL9KIkDDfpduHDxzNTc3Oz5oj6+ePad8YULF585fXbq1Oyp2XOTx44dPTLx/HOTz3Ylz915rPvfnz+47/ibV1+dPnH1re+/zOPdVWyvz6NmuOM+R2Lk9s+yzuMdv/vGsruunAz0MBBaUomIfHcNVsf/UFTi1s4bilc+7GlwwLrKsizbuuLZSllYyoC7WBK9jgDojfKLPj//LR93cPrRc9derJ0A5XnfKB61LQORFm0Gl53fdtNIRJxY+vvT/BENr0MAAHTX1/n85+lG87807qtr979ibWg4Iv4fEXsi4p6I2BsR90ZU294fEQ+02P/IsvrK+c9P29tKbI3y+d8LxdrW7fO/cvYXw5Witrua/2By8vTc7OHiMxmNwa15fWKVPr55+edPmm2rn//lj7z/ci5YxPH7wLILdDNTi1Od5Fzv2gcR+wca5Z/cXAlIImJfROxv4/23RcTpJ7842Gz7f+e/ii6sM2WfRzxR2/9LsSz/UrL6+uT4tpibPTxeHhUr/fDjldea9d9R/l2Q7/8dDY//m/kPJ/XrtQut93Hl14+bntO0e/xvSd6olrcUz703tbh4fiJiS7K08vnJW68t62X7PP/RQ43H/56Ifz4rXncgIvKD+MGIeCgiHi5ifyQiHo2IQ6vk/91Lj73dfv7rK89/pqX933qhcubbr5r1v7b9f7RaGi2emZnKsuzy6nmtNcDOPj0AAADYHNLqPfBJOnaznKZjY7V7+PfGjnRufmHxqZPz756bqd0rPxyDaXmla6jueuhEcW24rE8uqx+pXjfOsizbXq2PTc/PrdeaOrA2O5uM/9xvlV5HB6y7ltbRmv2iDdiU/F4T+pfxD/3L+If+ZfxD/2o0/i9H3OhBKMAd5vsf+pfxD/3L+If+1f74dzMQbGKd/K5/tcKe4+v1zndbobIxwmi5EOmGCKO9QroxwqgVtkbEWhtfjjsVWK//MgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHTHvwEAAP//H0rrgQ==")
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000400)='./file0/file0\x00', 0x8a, &(0x7f00000001c0)={[{@journal_async_commit}, {@data_err_abort}, {@stripe={'stripe', 0x3d, 0xf8}}, {@minixdf}, {@grpjquota}, {@noinit_itable}]}, 0x1, 0x452, &(0x7f0000001040)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0xe1, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

3.883071292s ago: executing program 0 (id=4404):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r0, @ANYBLOB="05f300000000000000002000000004000380"], 0x18}}, 0x0)

3.38785333s ago: executing program 0 (id=4407):
syz_mount_image$udf(&(0x7f0000000500), &(0x7f0000000ac0)='./file0\x00', 0x2004008, &(0x7f0000000080)=ANY=[@ANYRES64=0x0], 0xfe, 0x4f5, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000180)=ANY=[@ANYBLOB='\"\x00\x00\x00Q'], 0x922c3)

3.345584855s ago: executing program 5 (id=4408):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000008c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000580)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x14, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89d0080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6, 0x3]}})

3.060076852s ago: executing program 2 (id=4409):
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r0, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)

2.879228675s ago: executing program 5 (id=4411):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x2, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000000)=0x2)
ioctl$VIDIOC_G_SLICED_VBI_CAP(r0, 0xc0745645, &(0x7f0000000100)={0x8d, [0x27e, 0xffff, 0x3, 0x7, 0xc95, 0x9, 0x6, 0x100, 0xa4f, 0x4, 0x0, 0x1, 0x6, 0x7, 0x3, 0x3, 0x4, 0x5, 0x84, 0x9, 0x3, 0x8, 0x0, 0xf6c, 0x0, 0xd, 0xfffe, 0x7, 0xd, 0x8, 0xfc00, 0x6, 0x1, 0x40, 0x2795, 0x2, 0x8001, 0x200, 0x6101, 0x7, 0xc, 0x200, 0x8, 0xe66, 0x3, 0xfff, 0x5, 0x1], 0x6})

2.48939966s ago: executing program 0 (id=4412):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
getsockopt$inet6_tcp_int(r0, 0x6, 0x2, 0x0, &(0x7f0000000100))

2.488516763s ago: executing program 1 (id=4413):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='fdinfo/3\x00')
read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020)

2.307354879s ago: executing program 3 (id=4414):
r0 = socket$inet6(0xa, 0x80002, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x240c8080, &(0x7f0000000280)={0xa, 0x2e22, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x88, 0x1, &(0x7f0000000080), 0x4)

2.275183224s ago: executing program 5 (id=4415):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x40, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

2.15706298s ago: executing program 6 (id=4416):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_STATS(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001480)={0x1c, r1, 0x1}, 0x1c}}, 0x0)

2.156217063s ago: executing program 2 (id=4417):
timer_create(0x7, &(0x7f00000001c0)={0x0, 0x30, 0x1}, &(0x7f0000000a40)=<r0=>0x0)
timer_settime(r0, 0x1, &(0x7f0000000a80)={{0x77359400}, {0x77359400}}, 0x0)
timer_settime(r0, 0x1, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x3938700}}, &(0x7f0000000080))

2.040458534s ago: executing program 1 (id=4418):
r0 = socket$kcm(0x1e, 0x1, 0x0)
sendmsg$kcm(r0, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="80", 0xfdef}], 0x1}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)=""/46, 0x2e}], 0x1}, 0x40000022)

1.880497293s ago: executing program 0 (id=4419):
r0 = syz_open_dev$cec(&(0x7f00000007c0), 0x0, 0x983080)
ioctl$CEC_DQEVENT(r0, 0xc0506107, 0x0)
pselect6(0x4b, &(0x7f0000000040), &(0x7f00000000c0)={0x9}, 0x0, 0x0, 0x0)

1.821052048s ago: executing program 3 (id=4420):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x121840)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f0000000040)=0x1fff)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141902)

1.717303087s ago: executing program 5 (id=4421):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f00000006c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000140)=0xffff0000, 0x4)

1.70051037s ago: executing program 2 (id=4422):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)=@newtfilter={0x7c, 0x28, 0x575ac7824d421509, 0x70bd2d, 0x4, {0x0, 0x0, 0x0, 0x0, {0xa}, {0x6}, {0xfff1, 0x3d}}, [@filter_kind_options=@f_bpf={{0x8}, {0x50, 0x2, [@TCA_BPF_ACT={0x4c, 0x1, [@m_tunnel_key={0x48, 0x4, 0x0, 0x0, {{0xf}, {0x18, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @empty}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}]}, 0x7c}}, 0x40)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000780)=ANY=[@ANYBLOB="14010000330001000000000000000000070100800c0001"], 0x114}], 0x1}, 0x0)

1.600302806s ago: executing program 1 (id=4423):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x1c9a82, 0x0)
sendfile(r1, r0, 0x0, 0xbc44)

1.496379201s ago: executing program 0 (id=4424):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000580)={0x2c, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000480)={0x34, &(0x7f0000000200)={0x40, 0x14, 0xc, "553e08bd6a2c473a9b3509cc"}, 0x0, 0x0, 0x0, 0x0, 0x0})

1.429123362s ago: executing program 3 (id=4425):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
close_range(r0, 0xffffffffffffffff, 0x0)

1.351084471s ago: executing program 5 (id=4426):
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0xd, 0x8, 0x0)
mremap(&(0x7f00009d1000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f00002a0000/0x4000)=nil)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)

1.27016693s ago: executing program 1 (id=4427):
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000080)={0xff, 0x8})

1.240072244s ago: executing program 2 (id=4428):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f00000001c0)='./file0\x00', 0x8, &(0x7f0000000200)=ANY=[], 0x1, 0x5505, &(0x7f0000002480)="$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")
r0 = open(&(0x7f0000000040)='./bus\x00', 0x60142, 0x0)
fallocate(r0, 0x11, 0x0, 0x2003)

982.718123ms ago: executing program 3 (id=4429):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

981.986324ms ago: executing program 5 (id=4430):
r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
preadv(r0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/147, 0x93}], 0x1, 0xfc43, 0x7)
pread64(r0, 0x0, 0x0, 0x1)

775.901213ms ago: executing program 1 (id=4431):
r0 = io_uring_setup(0x461b, &(0x7f00000003c0)={0x0, 0x2ab8, 0x1, 0x1, 0x37e})
close(r0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)

737.494241ms ago: executing program 3 (id=4432):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x1010000, &(0x7f0000001f80)={[{@utf8}, {@rodir}, {@uni_xlateno}, {@fat=@errors_remount}, {@uni_xlate}, {@uni_xlateno}, {@rodir}, {@uni_xlateno}, {@uni_xlate}, {@shortname_winnt}, {@uni_xlateno}, {}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@fat=@discard}]}, 0x1, 0x369, &(0x7f0000000700)="$eJzs3U1oY1UbAOA3vWnSGfi+dicKQnQnaJnOTje2SAcGu1EJ/izE4HRUkiq0WGwX09aF4lJwqSt3CrpwIS5FUMSdC7eOIKPiQmc34OCR5OYmt0naaQerFJ9nkZy+57znnPtDcntJTp5bjPal6bh8/fq1mJmpRHXxkcW4UYm5yKKwG+NqE2IAwOlwI6X4PeWOmFI54SkBACes9/7/QkQ0Yi6PvP7lYe2Td38AOPX6//+fOazNzEEVr5zIlACAEzZ2///efdW1akQtqsWf1dKnAgCA0+qJp595dGkl4vFGYyZi7c3N5mYzHhrWL12Ol6ITq3EuZuNmRH6h0H2o9B4vXFxZPtdoNHbip7loRsRUP7GZXyksZb38eizEbMz187uXGqlXzi58srK80OiJiN2d3vixVtlsTsfZ/vjfn43V4YVH0UnvKeLiyvL5Rr+D5lqRvxOxN7xv0Z3/fMzGt88Pukmp+ATjyvKVhWLSw/zNZj0uDfbCgXdAAAAAAAAAAAAAAAAAAAAAAADgtsw3BuYG6+ek7nO+Us78/IT63vo4eX5/faC9fH2gVE+R0m+vPdB8K4t96wONrs+zaSFBAAAAAAAAAAAAAAAAAAAAGNjYqkWr01ld39jabpcLO+sbW1MR0Y28/PVHX5yJ8Ta3KFTzIeoRgyEa/WG3262UFY1TFjGennUHLyIffDqYcblNfbAVE6dRP7iq0/nfPT++O4zcnRU9/zlsk8XkDcxK03h4pOe1/+dTOs6OGhTOlyP18dGvppRKkTfK6VeeHe8wKhHV4x+47fZUHNwmdQtfXXvxzmLvtz5Pufvun33y6jvv/9JudbojR+8I1tY3bqZ2q1I0Pt5u6e7qIlKJvFApnwnVw9L39kda2Xe/PnXX298cbfRUjrzaPZ9H2mT55nw8ml7LC91pjlSdGaZP9zeiszo94eS/VeE2jukd7332YUo//HzkIYamxl42Kn/Pqw8AAAAAAAAAAAAAAAAAAFBW+q54X//LvtOHZT342MnPDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+OcPf/y8V9nZjJDIo7I5FBoU/diZk1VfXNyJq//ZmAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwH/dXAAAA//+g5Vir")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x1c2)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000600)={0xffa1, 0xaeae})

324.428771ms ago: executing program 1 (id=4433):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000009c0)={0x3c, r1, 0x13, 0x0, 0x0, {0x17}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8}]}, 0x3c}}, 0x0)

0s ago: executing program 6 (id=4434):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x7, &(0x7f0000000040)=0x44, 0x4)
setsockopt$CAN_RAW_FD_FRAMES(r0, 0x65, 0x5, &(0x7f0000000000), 0x4)

kernel console output (not intermixed with test programs):

832212.524:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15070 comm="syz.3.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  605.395612][ T5807] [drm] Initialized udl on minor 2
[  605.425150][ T5807] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  605.473373][ T5807] udl 6-1:0.0: [drm] Cannot find any crtc or sizes
[  605.506492][   T10] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  605.584134][ T5807] usb 6-1: USB disconnect, device number 33
[  605.597412][   T10] udl 6-1:0.0: [drm] Cannot find any crtc or sizes
[  606.222450][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1484.tmp-b7:6' failed: Read-only file system
[  606.287571][T15090] binder_alloc: binder_alloc_mmap_handler: 15088 200000ffc000-200001000000 already mapped failed -16
[  606.307662][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1486.tmp-b7:1' failed: Read-only file system
[  606.313635][T15087] dvmrp5: entered allmulticast mode
[  606.319169][   T24] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  606.378558][T15089] pimreg: left allmulticast mode
[  606.409623][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1480.tmp-b7:0' failed: Read-only file system
[  606.417828][T15089] dvmrp5: left allmulticast mode
[  606.425543][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-diskseq/1476.tmp-b7:3' failed: Read-only file system
[  606.503154][T15094] loop3: detected capacity change from 0 to 4096
[  606.539339][   T24] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  606.590635][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  606.618283][T15095] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  606.643057][   T24] usb 3-1: config 0 descriptor??
[  606.690035][   T24] gspca_main: cpia1-2.14.0 probing 0813:0001
[  606.802693][T10098] udevd[10098]: symlink '../../loop6' '/dev/disk/by-diskseq/1484.tmp-b7:6' failed: Read-only file system
[  606.803876][T11980] udevd[11980]: symlink '../../loop0' '/dev/disk/by-diskseq/1480.tmp-b7:0' failed: Read-only file system
[  606.912618][T10761] udevd[10761]: symlink '../../loop5' '/dev/disk/by-diskseq/1482.tmp-b7:5' failed: Read-only file system
[  607.037353][T15099] loop0: detected capacity change from 0 to 1024
[  607.099724][T15104] loop6: detected capacity change from 0 to 512
[  607.108478][T15099] EXT4-fs: Ignoring removed bh option
[  607.147854][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-diskseq/1487.tmp-b7:3' failed: Read-only file system
[  607.166019][T15099] EXT4-fs: inline encryption not supported
[  607.195230][T15099] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  607.224572][T15099] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  607.245393][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-uuid/ab2f6cf2-a99d-4328-b186-08168e7a6b7e.tmp-b7:3' failed: Read-only file system
[  607.285551][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1488.tmp-b7:0' failed: Read-only file system
[  607.299382][   T24] gspca_cpia1: usb_control_msg 01, error -71
[  607.317897][T15099] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.3667: lblock 2 mapped to illegal pblock 2 (length 1)
[  607.349597][T15099] __quota_error: 7 callbacks suppressed
[  607.349624][T15099] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  607.349665][   T24] cpia1 3-1:0.0: only firmware version 1 is supported (got: 0)
[  607.365200][T15099] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 48: comm syz.0.3667: lblock 0 mapped to illegal pblock 48 (length 1)
[  607.402226][T15099] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  607.418537][T15104] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  607.446412][T15104] ext4 filesystem being mounted at /396/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  607.469581][T15099] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.3667: Failed to acquire dquot type 0
[  607.507808][   T24] usb 3-1: USB disconnect, device number 27
[  607.608653][T15099] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  607.658831][T15099] EXT4-fs error (device loop0): ext4_evict_inode:259: inode #11: comm syz.0.3667: mark_inode_dirty error
[  607.672715][T15104] EXT4-fs error (device loop6): ext4_ext_check_inode:524: inode #2: comm syz.6.3669: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  607.724354][T15104] EXT4-fs (loop6): Remounting filesystem read-only
[  607.755611][T15099] EXT4-fs warning (device loop0): ext4_evict_inode:261: couldn't mark inode dirty (err -117)
[  607.769806][T15099] EXT4-fs (loop0): 1 orphan inode deleted
[  607.776998][T15114] loop5: detected capacity change from 0 to 2048
[  607.785888][   T37] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  607.812909][T15114] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  607.837892][T15099] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  607.863189][   T37] Quota error (device loop0): remove_tree: Can't read quota data block 1
[  607.887313][   T37] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[  607.906410][T15114] syz.5.3672: attempt to access beyond end of device
[  607.906410][T15114] loop5: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  607.922017][T15117] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  608.033370][T15099] EXT4-fs error (device loop0): __ext4_get_inode_loc:4449: comm syz.0.3667: Invalid inode table block 1 in block_group 0
[  608.083110][T15099] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  608.107634][ T8808] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.487967][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.532784][ T5830] EXT4-fs error (device loop0): __ext4_get_inode_loc:4449: comm syz-executor: Invalid inode table block 1 in block_group 0
[  608.652594][ T5830] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  608.703826][ T5830] EXT4-fs error (device loop0): ext4_quota_off:7219: inode #3: comm syz-executor: mark_inode_dirty error
[  609.244599][T15141] netlink: 16215 bytes leftover after parsing attributes in process `syz.1.3684'.
[  609.298092][T15139] loop0: detected capacity change from 0 to 4096
[  609.360007][T15139] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  609.974287][T15157] loop3: detected capacity change from 0 to 512
[  610.061043][T15159] loop1: detected capacity change from 0 to 256
[  610.099114][T15159] exfat: Deprecated parameter 'utf8'
[  610.129558][T15157] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  610.169566][T15159] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  610.243423][T15157] ext4 filesystem being mounted at /620/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  610.649145][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  610.826999][T15172] [U] ^C
[  611.026159][T15132] loop5: detected capacity change from 0 to 32768
[  611.081613][   T10] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  611.139793][T15132] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  611.212672][T15187] loop1: detected capacity change from 0 to 2048
[  611.265118][   T10] usb 3-1: config 0 has no interfaces?
[  611.279255][   T10] usb 3-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64
[  611.292544][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  611.302200][   T10] usb 3-1: Product: syz
[  611.306416][   T10] usb 3-1: Manufacturer: syz
[  611.313645][   T10] usb 3-1: SerialNumber: syz
[  611.379941][   T10] usb 3-1: config 0 descriptor??
[  611.424411][T11978] udevd[11978]: symlink '../../loop3' '/dev/disk/by-diskseq/1500.tmp-b7:3' failed: Read-only file system
[  611.471578][ T5807] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  611.558473][T10098] udevd[10098]: symlink '../../loop3' '/dev/disk/by-diskseq/1500.tmp-b7:3' failed: Read-only file system
[  611.577813][T15132] XFS (loop5): Ending clean mount
[  611.578658][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1501.tmp-b7:5' failed: Read-only file system
[  611.646612][T15132] XFS (loop5): Quotacheck needed: Please wait.
[  611.662711][ T5807] usb 1-1: Using ep0 maxpacket: 16
[  611.677361][T10761] udevd[10761]: symlink '../../loop1' '/dev/disk/by-diskseq/1502.tmp-b7:1' failed: Read-only file system
[  611.685337][ T5807] usb 1-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[  611.706095][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-uuid/bfdc47fc-10d8-4eed-a562-11a831b3f791.tmp-b7:5' failed: Read-only file system
[  611.727870][   T10] usb 3-1: USB disconnect, device number 28
[  611.771973][ T5807] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  611.809899][ T5807] usb 1-1: Product: syz
[  611.824314][T11980] udevd[11980]: symlink '../../loop6' '/dev/disk/by-diskseq/1492.tmp-b7:6' failed: Read-only file system
[  611.848546][ T5807] usb 1-1: Manufacturer: syz
[  611.855794][T15132] XFS (loop5): Quotacheck: Done.
[  611.860169][ T5807] usb 1-1: SerialNumber: syz
[  611.905296][T15200] netlink: 536 bytes leftover after parsing attributes in process `syz.6.3707'.
[  611.931159][T15200] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3707'.
[  611.952902][ T5807] usb 1-1: config 0 descriptor??
[  611.968421][T10761] udevd[10761]: symlink '../../loop1' '/dev/disk/by-diskseq/1502.tmp-b7:1' failed: Read-only file system
[  612.037369][T11980] udevd[11980]: symlink '../../loop3' '/dev/disk/by-diskseq/1500.tmp-b7:3' failed: Read-only file system
[  612.054953][ T5807] as10x_usb: device has been detected
[  612.085131][ T5807] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led))
[  612.096388][ T5828] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  612.159048][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1501.tmp-b7:5' failed: Read-only file system
[  612.194480][ T5807] usb 1-1: DVB: registering adapter 1 frontend 0 (Sky IT Digital Key (green led))...
[  612.210276][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-uuid/bfdc47fc-10d8-4eed-a562-11a831b3f791.tmp-b7:5' failed: Read-only file system
[  612.237660][T15192] random: crng reseeded on system resumption
[  612.423392][ T5807] as10x_usb: error during firmware upload part1
[  612.429770][ T5807] Registered device Sky IT Digital Key (green led)
[  612.460398][   T24] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  612.597468][T15207] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3711'.
[  612.700560][   T24] usb 4-1: Using ep0 maxpacket: 16
[  612.740515][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  612.776987][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  612.828352][   T24] usb 4-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  612.878964][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  612.919456][   T24] usb 4-1: config 0 descriptor??
[  613.049141][T15211] loop6: detected capacity change from 0 to 1024
[  613.149173][T15213] netlink: 192 bytes leftover after parsing attributes in process `syz.2.3714'.
[  613.162272][T15211] syz.6.3713: attempt to access beyond end of device
[  613.162272][T15211] loop6: rw=0, sector=201326592, nr_sectors = 2 limit=1024
[  613.208283][T15213] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3714'.
[  613.232349][T15211] Buffer I/O error on dev loop6, logical block 100663296, async page read
[  613.253158][T15211] hfsplus: unable to mark blocks free: error -5
[  613.284856][T15211] hfsplus: can't free extent
[  613.439928][   T24] hid-multitouch 0003:1FD2:6007.004D: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.3-1/input0
[  613.584360][ T5807] usb 1-1: USB disconnect, device number 28
[  613.696130][ T5842] usb 4-1: USB disconnect, device number 31
[  613.735452][ T5807] Unregistered device Sky IT Digital Key (green led)
[  613.762533][ T5807] as10x_usb: device has been disconnected
[  613.927738][T15227] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3719'.
[  613.976248][T15223] fido_id[15223]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  614.282015][T15233] syz.1.3721 (15233): drop_caches: 4
[  614.544475][T15240] loop0: detected capacity change from 0 to 64
[  615.641823][ T5807] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  615.822814][ T5807] usb 6-1: Using ep0 maxpacket: 16
[  615.841894][ T5807] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  615.875625][ T5807] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  615.912158][T15268] loop1: detected capacity change from 0 to 2048
[  615.917524][ T5807] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  615.977767][ T5807] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  615.986129][T15268] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  616.002618][ T5807] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  616.037714][ T5807] usb 6-1: config 0 descriptor??
[  616.051154][T15273] tipc: New replicast peer: fc00:0000:0000:0000:0000:0000:0000:0001
[  616.112208][T15273] tipc: Enabled bearer <udp:syz0>, priority 10
[  616.397189][T15239] loop2: detected capacity change from 0 to 32768
[  616.411836][T15277] loop3: detected capacity change from 0 to 256
[  616.441678][T15277] exfat: Deprecated parameter 'utf8'
[  616.464593][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1508.tmp-b7:0' failed: Read-only file system
[  616.485129][T15277] exfat: Deprecated parameter 'utf8'
[  616.515701][T15279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3744'.
[  616.538029][ T5807] microsoft 0003:045E:07DA.004E: unknown main item tag 0x0
[  616.569354][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1506.tmp-b7:6' failed: Read-only file system
[  616.622599][ T5807] input: HID 045e:07da as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:045E:07DA.004E/input/input26
[  616.641816][T11980] udevd[11980]: symlink '../../loop1' '/dev/disk/by-diskseq/1509.tmp-b7:1' failed: Read-only file system
[  616.677862][T15277] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[  616.689091][T10098] udevd[10098]: symlink '../../loop3' '/dev/disk/by-diskseq/1510.tmp-b7:3' failed: Read-only file system
[  616.726476][ T5807] microsoft 0003:045E:07DA.004E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0
[  616.753415][T15239] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  616.808624][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1509.tmp-b7:1' failed: Read-only file system
[  616.834242][T10098] udevd[10098]: symlink '../../loop3' '/dev/disk/by-uuid/1234-1234.tmp-b7:3' failed: Read-only file system
[  616.866905][ T5807] usb 6-1: USB disconnect, device number 34
[  617.034528][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1506.tmp-b7:6' failed: Read-only file system
[  617.074420][T10098] udevd[10098]: symlink '../../loop0' '/dev/disk/by-diskseq/1508.tmp-b7:0' failed: Read-only file system
[  617.148423][T15286] fido_id[15286]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  617.206232][ T5832] (syz-executor,5832,0):ocfs2_inode_is_valid_to_delete:885 ERROR: Skipping delete of system file 72
[  617.241648][T15294] loop0: detected capacity change from 0 to 512
[  617.244060][T15060] tipc: Node number set to 1
[  617.315073][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1511.tmp-b7:2' failed: Read-only file system
[  617.320783][ T5832] ocfs2: Unmounting device (7,2) on (node local)
[  617.359685][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:2' failed: Read-only file system
[  617.403322][T15294] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  617.509259][   T30] audit: type=1326 audit(1746832224.664:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15295 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  617.640552][   T30] audit: type=1326 audit(1746832224.664:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15295 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  617.749741][   T30] audit: type=1326 audit(1746832224.664:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15295 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1138b8d2d0 code=0x7ffc0000
[  617.889423][   T30] audit: type=1326 audit(1746832224.664:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15295 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  617.927066][T15304] loop5: detected capacity change from 0 to 256
[  618.003417][T15304] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  618.075446][   T30] audit: type=1326 audit(1746832224.664:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15295 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  618.403233][T15314] loop1: detected capacity change from 0 to 256
[  618.446706][T15314] exfat: Deprecated parameter 'utf8'
[  618.494757][T15314] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  618.759221][T15320] loop2: detected capacity change from 0 to 256
[  618.805284][T15320] exfat: Deprecated parameter 'namecase'
[  618.822421][T15320] exfat: Deprecated parameter 'utf8'
[  618.878172][T15320] exfat: Deprecated parameter 'namecase'
[  618.907583][T15320] exfat: Deprecated parameter 'utf8'
[  619.002163][T15320] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xd65ffa9d, utbl_chksum : 0xe619d30d)
[  619.151843][ T5807] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  619.361671][ T5807] usb 4-1: Using ep0 maxpacket: 32
[  619.397531][ T5807] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  619.455971][ T5807] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  619.474036][ T5807] usb 4-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  619.484694][ T5807] usb 4-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  619.493220][ T5807] usb 4-1: Product: syz
[  619.497549][ T5807] usb 4-1: Manufacturer: syz
[  619.506580][ T5807] usb 4-1: SerialNumber: syz
[  619.523823][T15310] loop0: detected capacity change from 0 to 32768
[  619.592785][T15310] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.3754 (15310)
[  619.617965][ T5807] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input27
[  619.682372][T15310] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  619.746485][T15310] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  619.839238][   T30] audit: type=1326 audit(1746832227.004:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15342 comm="syz.5.3768" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb2fe78e969 code=0x0
[  619.869391][T15310] BTRFS info (device loop0): using free-space-tree
[  619.889808][ T5807] usb 4-1: USB disconnect, device number 32
[  619.942586][T15343] loop1: detected capacity change from 0 to 2048
[  620.008475][ T5807] appletouch 4-1:1.0: input: appletouch disconnected
[  620.099887][T15343] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  620.180419][T15343] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  620.189571][T15343] UDF-fs: Scanning with blocksize 512 failed
[  620.277285][T15343] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  620.486655][T15368] loop6: detected capacity change from 0 to 1024
[  620.513587][ T8835] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  620.645794][T15368] hfsplus: cannot replace xattr
[  620.802473][ T5830] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  621.513506][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1526.tmp-b7:1' failed: Read-only file system
[  621.572333][T10761] udevd[10761]: symlink '../../loop5' '/dev/disk/by-diskseq/1519.tmp-b7:5' failed: Read-only file system
[  621.583006][T11980] udevd[11980]: symlink '../../loop3' '/dev/disk/by-diskseq/1514.tmp-b7:3' failed: Read-only file system
[  621.769449][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1526.tmp-b7:1' failed: Read-only file system
[  621.927568][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1519.tmp-b7:5' failed: Read-only file system
[  622.108356][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-diskseq/1514.tmp-b7:3' failed: Read-only file system
[  622.140229][   T30] audit: type=1326 audit(1746832229.254:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15399 comm="syz.3.3785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  622.162625][    C1] vkms_vblank_simulate: vblank timer overrun
[  622.183732][   T30] audit: type=1326 audit(1746832229.254:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15399 comm="syz.3.3785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  622.210412][   T30] audit: type=1326 audit(1746832229.344:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15399 comm="syz.3.3785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  622.232812][    C1] vkms_vblank_simulate: vblank timer overrun
[  622.245218][ T6030] udevd[6030]: symlink '../../loop2' '/dev/disk/by-diskseq/1522.tmp-b7:2' failed: Read-only file system
[  622.268048][   T30] audit: type=1326 audit(1746832229.344:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15399 comm="syz.3.3785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  622.308327][T15402] loop2: detected capacity change from 0 to 256
[  622.437816][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1527.tmp-b7:6' failed: Read-only file system
[  622.467308][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1523.tmp-b7:0' failed: Read-only file system
[  622.511505][T11980] udevd[11980]: symlink '../../loop5' '/dev/disk/by-diskseq/1519.tmp-b7:5' failed: Read-only file system
[  622.528870][T15402] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  622.879933][T15412] loop6: detected capacity change from 0 to 256
[  622.932961][T15412] exfat: Deprecated parameter 'namecase'
[  622.989578][T15412] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  623.130439][T15420] loop2: detected capacity change from 0 to 256
[  623.137860][T15420] exfat: Deprecated parameter 'utf8'
[  623.220244][T15420] exfat: Deprecated parameter 'namecase'
[  623.315371][T15420] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  623.959598][T15433] loop0: detected capacity change from 0 to 1024
[  624.152013][T15433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  624.166589][T15397] loop1: detected capacity change from 0 to 32768
[  624.244346][T15433] ext4 filesystem being mounted at /628/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  624.263705][T15397] (syz.1.3782,15397,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  624.331639][T15397] (syz.1.3782,15397,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  624.380160][T15060] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  624.422177][T15397] JBD2: Ignoring recovery information on journal
[  624.429610][T15434] loop3: detected capacity change from 0 to 8192
[  624.439309][T15447] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3808'.
[  624.573825][T15397] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  624.592382][T15060] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  624.637441][T15060] usb 3-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[  624.712532][T15060] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  624.761701][T15060] usb 3-1: config 0 descriptor??
[  624.799950][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  625.146539][T15456] ipvlan3: entered allmulticast mode
[  625.227713][T15456] team0: entered allmulticast mode
[  625.247947][T15060] logitech-hidpp-device 0003:046D:C086.004F: unknown main item tag 0x0
[  625.284224][T15456] team_slave_0: entered allmulticast mode
[  625.316621][T15060] logitech-hidpp-device 0003:046D:C086.004F: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.2-1/input0
[  625.331716][T15456] team_slave_1: entered allmulticast mode
[  625.363246][T15456] 8021q: adding VLAN 0 to HW filter on device ipvlan3
[  625.544512][ T5833] ocfs2: Unmounting device (7,1) on (node local)
[  625.590445][   T24] usb 3-1: USB disconnect, device number 29
[  626.292240][T15468] loop5: detected capacity change from 0 to 32768
[  626.359870][T15468] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  626.368237][T15468] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  626.411332][T15468] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[  626.461858][T15468] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  626.601707][T15478] loop3: detected capacity change from 0 to 2048
[  626.631340][T15478] EXT4-fs: Ignoring removed mblk_io_submit option
[  626.727062][T15478] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  626.788718][T15491] loop6: detected capacity change from 0 to 8
[  626.826983][T10761] udevd[10761]: symlink '../../loop1' '/dev/disk/by-diskseq/1536.tmp-b7:1' failed: Read-only file system
[  626.843988][T11349] udevd[11349]: symlink '../../loop0' '/dev/disk/by-diskseq/1538.tmp-b7:0' failed: Read-only file system
[  626.895389][T11978] udevd[11978]: symlink '../../loop6' '/dev/disk/by-diskseq/1533.tmp-b7:6' failed: Read-only file system
[  626.916741][ T5968] udevd[5968]: symlink '../../loop2' '/dev/disk/by-diskseq/1534.tmp-b7:2' failed: Read-only file system
[  626.939654][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1538.tmp-b7:0' failed: Read-only file system
[  626.969505][T10761] udevd[10761]: symlink '../../loop1' '/dev/disk/by-diskseq/1536.tmp-b7:1' failed: Read-only file system
[  626.989132][T15491] SQUASHFS error: Failed to read block 0x63a: -5
[  626.996746][T15478] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm syz.3.3821: bg 0: block 234: padding at end of block bitmap is not set
[  627.032605][T15491] SQUASHFS error: Unable to read metadata cache entry [638]
[  627.061759][T11980] udevd[11980]: symlink '../../loop3' '/dev/disk/by-diskseq/1539.tmp-b7:3' failed: Read-only file system
[  627.087865][T15491] SQUASHFS error: Unable to read directory block [26067d:ffff]
[  627.091075][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1540.tmp-b7:1' failed: Read-only file system
[  627.115122][T11978] udevd[11978]: symlink '../../loop6' '/dev/disk/by-diskseq/1533.tmp-b7:6' failed: Read-only file system
[  627.151897][T11980] udevd[11980]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system
[  627.178577][T15478] EXT4-fs (loop3): Remounting filesystem read-only
[  627.220321][T15489] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  627.371001][T15478] EXT4-fs (loop3): error restoring inline_data for inode -- potential data loss! (inode 15, error -30)
[  627.633436][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  627.633463][   T30] audit: type=1326 audit(1746832234.764:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15499 comm="syz.5.3827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe78e969 code=0x7ffc0000
[  627.661308][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  627.827537][   T30] audit: type=1326 audit(1746832234.774:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15499 comm="syz.5.3827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe78e969 code=0x7ffc0000
[  627.972940][   T30] audit: type=1326 audit(1746832234.824:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15499 comm="syz.5.3827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fb2fe78e969 code=0x7ffc0000
[  628.070747][T15510] loop0: detected capacity change from 0 to 64
[  628.118940][   T30] audit: type=1326 audit(1746832234.824:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15499 comm="syz.5.3827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe78e969 code=0x7ffc0000
[  628.225944][T15516] random: crng reseeded on system resumption
[  628.241782][T15508] loop2: detected capacity change from 0 to 4096
[  628.275130][   T30] audit: type=1326 audit(1746832234.824:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15499 comm="syz.5.3827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe78e969 code=0x7ffc0000
[  628.314839][T15508] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  628.420193][   T30] audit: type=1326 audit(1746832234.824:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15499 comm="syz.5.3827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7fb2fe78e969 code=0x7ffc0000
[  628.597963][   T30] audit: type=1326 audit(1746832234.824:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15499 comm="syz.5.3827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe78e969 code=0x7ffc0000
[  628.751604][   T30] audit: type=1326 audit(1746832234.824:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15499 comm="syz.5.3827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe78e969 code=0x7ffc0000
[  628.905404][   T30] audit: type=1800 audit(1746832235.794:192): pid=15508 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3833" name="file1" dev="loop2" ino=30 res=0 errno=0
[  629.145902][T15525] loop0: detected capacity change from 0 to 4096
[  629.296062][T15532] loop2: detected capacity change from 0 to 2048
[  629.313165][T15525] ntfs3(loop0): ino=19, mi_enum_attr
[  629.361927][T15525] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  629.392282][T15532] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  629.452893][T15532] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  629.488528][T15525] ntfs3(loop0): MFT: r=b, expect seq=0 instead of b!
[  629.562950][T15532] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1376) has entry at pos 0 with unaligned length of impUse field
[  629.687970][T15516] Restarting kernel threads ... done.
[  629.740293][T15538] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3846'.
[  629.762929][T15538] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3846'.
[  629.804270][T15538] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3846'.
[  630.249738][T15548] loop1: detected capacity change from 0 to 1024
[  630.578757][T15558] netlink: 'syz.3.3856': attribute type 2 has an invalid length.
[  630.587533][T15559] loop2: detected capacity change from 0 to 64
[  630.609463][T15558] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3856'.
[  630.827193][T15562] netlink: 'syz.1.3858': attribute type 2 has an invalid length.
[  630.836267][T15562] netlink: 1184 bytes leftover after parsing attributes in process `syz.1.3858'.
[  630.959503][T15564] loop5: detected capacity change from 0 to 512
[  630.997579][T15564] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  631.099449][T15564] EXT4-fs (loop5): 1 truncate cleaned up
[  631.159355][T15564] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  631.292628][T15564] EXT4-fs error (device loop5): ext4_generic_delete_entry:2669: inode #2: block 13: comm syz.5.3859: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  631.369860][T15581] loop0: detected capacity change from 0 to 256
[  631.397901][T15581] exfat: Deprecated parameter 'namecase'
[  631.414561][T15564] EXT4-fs (loop5): Remounting filesystem read-only
[  631.440357][T15581] exfat: Deprecated parameter 'utf8'
[  631.462136][T15583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3868'.
[  631.479065][T15581] exfat: Deprecated parameter 'namecase'
[  631.511020][T15581] exfat: Deprecated parameter 'utf8'
[  631.549138][T15581] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0xd65ffa9d, utbl_chksum : 0xe619d30d)
[  631.839168][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  631.855914][T11978] udevd[11978]: symlink '../../loop5' '/dev/disk/by-diskseq/1558.tmp-b7:5' failed: Read-only file system
[  631.862881][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1554.tmp-b7:0' failed: Read-only file system
[  631.916898][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1557.tmp-b7:1' failed: Read-only file system
[  631.941447][ T6030] udevd[6030]: symlink '../../loop2' '/dev/disk/by-diskseq/1559.tmp-b7:2' failed: Read-only file system
[  631.956048][T11978] udevd[11978]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  631.971378][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-uuid/1234-1234.tmp-b7:0' failed: Read-only file system
[  632.033605][T11980] udevd[11980]: symlink '../../loop3' '/dev/disk/by-diskseq/1546.tmp-b7:3' failed: Read-only file system
[  632.112499][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1558.tmp-b7:5' failed: Read-only file system
[  632.129300][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1554.tmp-b7:0' failed: Read-only file system
[  632.134439][T15592] ipvlan2: entered promiscuous mode
[  632.174297][T15592] ipvlan2: entered allmulticast mode
[  632.179650][T15592] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  632.231330][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1558.tmp-b7:5' failed: Read-only file system
[  632.715725][T15612] loop0: detected capacity change from 0 to 256
[  633.178390][T15620] loop1: detected capacity change from 0 to 512
[  633.232265][T15620] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  633.279760][T15620] EXT4-fs (loop1): 1 truncate cleaned up
[  633.306754][T15620] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  633.326708][T15622] loop0: detected capacity change from 0 to 1024
[  633.489602][T15620] EXT4-fs error (device loop1): ext4_generic_delete_entry:2669: inode #2: block 13: comm syz.1.3885: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  633.509909][    C1] vkms_vblank_simulate: vblank timer overrun
[  633.530795][T15622] hfsplus: bad catalog entry type
[  633.639311][T15620] EXT4-fs (loop1): Remounting filesystem read-only
[  633.734260][ T4399] hfsplus: b-tree write err: -5, ino 4
[  633.906486][ T5833] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  633.973769][T15594] loop6: detected capacity change from 0 to 32768
[  633.996271][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  634.003010][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  634.160651][T15594] ERROR: (device loop6): diWrite: ixpxd invalid
[  634.160651][T15594] 
[  634.212500][T15594] ERROR: (device loop6): remounting filesystem as read-only
[  634.219859][T15594] ERROR: (device loop6): txAbort: 
[  634.219859][T15594] 
[  634.239422][T15638] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3892'.
[  634.678395][T15627] loop5: detected capacity change from 0 to 32768
[  634.743833][T15627] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.3888 (15627)
[  634.780287][T15651] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge0, syncid = 0, id = 0
[  634.876171][T15627] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  634.900150][ T5844] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  634.912618][T15627] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  634.954710][T15627] BTRFS info (device loop5): using free-space-tree
[  635.115354][ T5844] usb 3-1: Using ep0 maxpacket: 32
[  635.183867][ T5844] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  635.243124][   T30] audit: type=1800 audit(1746832242.394:193): pid=15627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3888" name="file1" dev="loop5" ino=260 res=0 errno=0
[  635.267894][T15627] BTRFS info (device loop5): balance: start -sconvert=raid0,soft
[  635.277326][ T5844] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  635.295909][ T5844] usb 3-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  635.335612][ T5844] usb 3-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  635.371988][ T5844] usb 3-1: Product: syz
[  635.376239][ T5844] usb 3-1: Manufacturer: syz
[  635.446583][ T5844] usb 3-1: SerialNumber: syz
[  635.452381][T15627] BTRFS info (device loop5): relocating block group 1048576 flags system
[  635.506413][ T5844] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input29
[  635.789684][T15682] ipvlan3: entered promiscuous mode
[  635.815083][ T5844] usb 3-1: USB disconnect, device number 30
[  635.842412][T15682] ipvlan3: entered allmulticast mode
[  635.871038][T15682] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  635.871500][T15684] loop0: detected capacity change from 0 to 64
[  636.016729][T15627] BTRFS info (device loop5): balance: ended with status: 0
[  636.042195][ T5844] appletouch 3-1:1.0: input: appletouch disconnected
[  636.416746][ T5828] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  636.448146][T15690] loop1: detected capacity change from 0 to 1024
[  636.751663][T15060] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  636.791559][ T1323] hfsplus: b-tree write err: -5, ino 4
[  636.903562][T11980] udevd[11980]: symlink '../../loop1' '/dev/disk/by-diskseq/1574.tmp-b7:1' failed: Read-only file system
[  636.915254][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1570.tmp-b7:5' failed: Read-only file system
[  636.956320][T15060] usb 1-1: Using ep0 maxpacket: 16
[  636.989378][T15060] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  637.013305][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1546.tmp-b7:3' failed: Read-only file system
[  637.022198][T11980] udevd[11980]: symlink '../../loop1' '/dev/disk/by-label/untitled.tmp-b7:1' failed: Read-only file system
[  637.036738][T15060] usb 1-1: config 0 interface 0 altsetting 1 has an endpoint descriptor with address 0x6E, changing to 0xE
[  637.103609][T10098] udevd[10098]: symlink '../../loop2' '/dev/disk/by-diskseq/1559.tmp-b7:2' failed: Read-only file system
[  637.128756][T11980] udevd[11980]: symlink '../../loop1' '/dev/disk/by-uuid/4da50ae9-7d30-3220-a998-cec1f675fd4a.tmp-b7:1' failed: Read-only file system
[  637.141269][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1570.tmp-b7:5' failed: Read-only file system
[  637.161788][T15060] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0xE has an invalid bInterval 170, changing to 11
[  637.224174][T15060] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0xE has invalid maxpacket 34661, setting to 1024
[  637.262818][T10761] udevd[10761]: symlink '../../loop6' '/dev/disk/by-diskseq/1571.tmp-b7:6' failed: Read-only file system
[  637.283823][T15060] usb 1-1: config 0 interface 0 has no altsetting 0
[  637.293751][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1570.tmp-b7:5' failed: Read-only file system
[  637.344650][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1574.tmp-b7:1' failed: Read-only file system
[  637.381672][T15060] usb 1-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  637.396112][T15060] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  637.451747][T15060] usb 1-1: Product: syz
[  637.471543][T15060] usb 1-1: Manufacturer: syz
[  637.511508][T15060] usb 1-1: SerialNumber: syz
[  637.553437][T15060] usb 1-1: config 0 descriptor??
[  637.589833][T15696] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  637.832095][T15696] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  637.965868][T15717] loop5: detected capacity change from 0 to 1024
[  638.117713][ T5844] usb 1-1: USB disconnect, device number 29
[  638.755533][T15703] loop1: detected capacity change from 0 to 32768
[  638.787430][T15732] dvmrp5: entered allmulticast mode
[  638.851373][T15738] dvmrp5: left allmulticast mode
[  638.948519][T15703] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  639.055675][T15743] loop2: detected capacity change from 0 to 2048
[  639.166056][T15747] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  639.247387][T15743] overlayfs: upper fs does not support tmpfile.
[  639.287370][T15743] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  639.310952][ T5833] ocfs2: Unmounting device (7,1) on (node local)
[  639.340222][T15743] overlayfs: failed to set xattr on upper
[  639.366483][T15743] overlayfs: ...falling back to redirect_dir=nofollow.
[  639.398428][T15743] overlayfs: ...falling back to index=off.
[  639.430464][T15743] overlayfs: ...falling back to uuid=null.
[  639.485017][T15747] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  639.558581][T15747] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4)
[  639.577589][T15756] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3938'.
[  639.627425][T15747] Remounting filesystem read-only
[  639.772478][   T10] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  639.945955][ T5832] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  639.981628][   T10] usb 4-1: Using ep0 maxpacket: 32
[  640.043210][   T10] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  640.082333][   T10] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  640.159747][   T10] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  640.216655][   T10] usb 4-1: config 1 has no interface number 0
[  640.268704][   T10] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  640.336104][   T10] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  640.367599][T15773] netlink: 60 bytes leftover after parsing attributes in process `syz.6.3947'.
[  640.419717][   T10] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  640.431141][T15768] netlink: 60 bytes leftover after parsing attributes in process `syz.6.3947'.
[  640.469756][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  640.546820][   T10] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  640.775184][   T10] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  640.874512][T15782] loop5: detected capacity change from 0 to 64
[  641.294009][   T24] usb 4-1: USB disconnect, device number 33
[  641.321522][   T24] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  641.450381][T15798] loop1: detected capacity change from 0 to 1024
[  641.576407][   T30] audit: type=1800 audit(1746832248.734:194): pid=15798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3959" name="file1" dev="loop1" ino=20 res=0 errno=0
[  641.778690][ T5900] hfsplus: b-tree write err: -5, ino 4
[  642.011117][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1573.tmp-b7:0' failed: Read-only file system
[  642.023858][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1585.tmp-b7:1' failed: Read-only file system
[  642.047106][T10098] udevd[10098]: symlink '../../loop3' '/dev/disk/by-diskseq/1546.tmp-b7:3' failed: Read-only file system
[  642.155488][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1586.tmp-b7:1' failed: Read-only file system
[  642.286843][T15802] loop6: detected capacity change from 0 to 4096
[  642.325874][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1586.tmp-b7:1' failed: Read-only file system
[  642.405345][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1573.tmp-b7:0' failed: Read-only file system
[  642.512460][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1546.tmp-b7:3' failed: Read-only file system
[  642.741147][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1573.tmp-b7:0' failed: Read-only file system
[  642.775372][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1587.tmp-b7:6' failed: Read-only file system
[  642.775552][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1586.tmp-b7:1' failed: Read-only file system
[  642.802925][ T5807] usb 4-1: new full-speed USB device number 34 using dummy_hcd
[  643.004176][ T5807] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  643.025737][T15820] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3970'.
[  643.041986][ T5807] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  643.107530][ T5807] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid maxpacket 121, setting to 64
[  643.174740][ T5807] usb 4-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  643.198528][T15822] dvmrp1: entered allmulticast mode
[  643.212571][ T5807] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  643.238910][T15796] loop5: detected capacity change from 0 to 32768
[  643.258442][ T5807] usb 4-1: Product: syz
[  643.266310][ T5807] usb 4-1: Manufacturer: syz
[  643.301428][T15796] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[  643.305859][ T5807] usb 4-1: SerialNumber: syz
[  643.341054][T15789] loop2: detected capacity change from 0 to 40427
[  643.352058][T15796] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  643.364641][ T5807] usb 4-1: config 0 descriptor??
[  643.393396][T15789] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x3fffff
[  643.420846][T15814] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  643.434849][T15814] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  643.468040][T15789] F2FS-fs (loop2): Image doesn't support compression
[  643.500937][ T5807] usb 4-1: ucan: probing device on interface #0
[  643.518751][T15789] F2FS-fs (loop2): Image doesn't support compression
[  643.597724][T15833] loop0: detected capacity change from 0 to 128
[  643.622550][T15789] F2FS-fs (loop2): invalid crc value
[  643.633471][T15833] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  643.697800][ T5828] ocfs2: Unmounting device (7,5) on (node local)
[  643.742040][T15833] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  643.793561][T15829] xt_CT: No such helper "pptp"
[  644.117087][T15839] dvmrp5: entered allmulticast mode
[  644.142902][ T5807] ucan 4-1:0.0: probe with driver ucan failed with error -71
[  644.197224][T15841] dvmrp5: left allmulticast mode
[  644.213531][ T5807] usb 4-1: USB disconnect, device number 34
[  644.388225][T15789] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  645.737395][T15842] loop1: detected capacity change from 0 to 32768
[  645.842559][T15842] XFS (loop1): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  645.845993][T15846] loop0: detected capacity change from 0 to 32768
[  645.905932][T15846] 
[  645.905932][T15846]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  645.905932][T15846] 
[  646.077145][T15846] 
[  646.077145][T15846]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  646.077145][T15846] 
[  646.140494][T15846] 
[  646.140494][T15846]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  646.140494][T15846] 
[  646.182708][T15842] XFS (loop1): Ending clean mount
[  646.280557][T15846] 
[  646.280557][T15846]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  646.280557][T15846] 
[  646.426493][T15846] 
[  646.426493][T15846]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  646.426493][T15846] 
[  646.469232][T15881] netlink: 332 bytes leftover after parsing attributes in process `syz.2.3990'.
[  646.498653][ T5833] XFS (loop1): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  646.600812][T15846] 
[  646.600812][T15846]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  646.600812][T15846] 
[  646.685358][T15846] 
[  646.685358][T15846]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  646.685358][T15846] 
[  646.812981][  T113] 
[  646.812981][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  646.812981][  T113] 
[  646.912444][T15882] loop3: detected capacity change from 0 to 40427
[  646.923020][T15882] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  646.932325][T15882] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  646.946102][T15882] F2FS-fs (loop3): invalid crc value
[  646.991076][T15884] CUSE: DEVNAME unspecified
[  647.044766][T15882] F2FS-fs (loop3): SIT is corrupted node# 0 vs 7
[  647.082541][T15882] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-117)
[  647.097228][T10761] udevd[10761]: symlink '../../loop1' '/dev/disk/by-diskseq/1595.tmp-b7:1' failed: Read-only file system
[  647.157022][ T6030] udevd[6030]: symlink '../../loop2' '/dev/disk/by-diskseq/1594.tmp-b7:2' failed: Read-only file system
[  647.202124][T10761] udevd[10761]: symlink '../../loop1' '/dev/disk/by-uuid/9f1cad42-11bd-4e12-8f0b-f07876b81d9a.tmp-b7:1' failed: Read-only file system
[  647.299355][T11980] udevd[11980]: symlink '../../loop5' '/dev/disk/by-diskseq/1592.tmp-b7:5' failed: Read-only file system
[  647.354213][ T5830] 
[  647.354213][ T5830]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.354213][ T5830] 
[  647.430268][ T5830] 
[  647.430268][ T5830]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.430268][ T5830] 
[  647.505306][T10098] udevd[10098]: symlink '../../loop3' '/dev/disk/by-diskseq/1597.tmp-b7:3' failed: Read-only file system
[  647.572071][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1588.tmp-b7:6' failed: Read-only file system
[  647.623497][T10098] udevd[10098]: symlink '../../loop3' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:3' failed: Read-only file system
[  647.777596][T15902] loop1: detected capacity change from 0 to 512
[  647.801589][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1596.tmp-b7:0' failed: Read-only file system
[  647.902004][T15902] EXT4-fs error (device loop1): __ext4_iget:5025: inode #15: block 1803188595: comm syz.1.3998: invalid block
[  648.082513][T15902] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.3998: couldn't read orphan inode 15 (err -117)
[  648.121991][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1596.tmp-b7:0' failed: Read-only file system
[  648.161112][T11980] udevd[11980]: symlink '../../loop2' '/dev/disk/by-diskseq/1594.tmp-b7:2' failed: Read-only file system
[  648.182302][T15902] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  648.679496][ T5833] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  648.909553][T15916] loop0: detected capacity change from 0 to 1024
[  648.948870][T15918] [U] 
[  648.951939][T15918] [U] 
[  648.954686][T15918] [U] 
[  648.957432][T15918] [U] 
[  649.005477][T15920] loop5: detected capacity change from 0 to 64
[  649.019498][T15894] loop3: detected capacity change from 0 to 32768
[  649.020647][T15918] [U] 
[  649.028690][T15918] [U] 
[  649.031437][T15918] [U] 
[  649.034190][T15918] [U] 
[  649.107315][T15918] [U] 
[  649.110101][T15918] [U] 
[  649.112855][T15918] [U] 
[  649.115600][T15918] [U] 
[  649.201208][T15918] [U] 
[  649.203993][T15918] [U] 
[  649.206740][T15918] [U] 
[  649.209481][T15918] [U] 
[  649.244836][T15894] JFS: block map error in dbBackSplit
[  649.267468][T15918] [U] 
[  649.270225][T15918] [U] 
[  649.272974][T15918] [U] 
[  649.275717][T15918] [U] 
[  649.315854][T15894] ERROR: (device loop3): dbDiscardAG: -EIO
[  649.315854][T15894] 
[  649.375268][T15918] [U] 
[  649.378081][T15918] [U] 
[  649.378841][T15894] ERROR: (device loop3): remounting filesystem as read-only
[  649.380807][T15918] [U] 
[  649.380877][T15918] [U] 
[  649.410255][T15918] [U] 
[  649.413046][T15918] [U] 
[  649.415798][T15918] [U] 
[  649.418552][T15918] [U] 
[  649.437999][T15894] syz.3.3997: attempt to access beyond end of device
[  649.437999][T15894] loop3: rw=2051, sector=2629632, nr_sectors = 8192 limit=32768
[  649.465896][   T37] hfsplus: b-tree write err: -5, ino 4
[  649.490653][T15918] [U] 
[  649.493461][T15918] [U] 
[  649.496395][T15918] [U] 
[  649.499145][T15918] [U] 
[  649.504297][T15894] JFS: sb_issue_discard(ffff888028a22000, 328704, 1024, GFP_NOFS, 0) = -5 => failed!
[  649.522714][T15918] [U] 
[  649.525528][T15918] [U] 
[  649.528265][T15918] [U] 
[  649.531004][T15918] [U] 
[  649.591730][T15894] blkno = 50400, nblocks = 400
[  649.596596][T15894] ERROR: (device loop3): dbFree: block to be freed is outside the map
[  649.596596][T15894] 
[  649.607685][T15918] [U] 
[  649.610471][T15918] [U] 
[  649.613306][T15918] [U] 
[  649.616057][T15918] [U] 
[  649.663376][T15918] [U] 
[  649.666194][T15918] [U] 
[  649.668989][T15918] [U] 
[  649.671741][T15918] [U] 
[  649.755707][T15918] [U] 
[  649.758518][T15918] [U] 
[  649.761303][T15918] [U] 
[  649.764055][T15918] [U] 
[  649.923283][T15918] [U] 
[  649.926095][T15918] [U] 
[  649.928840][T15918] [U] 
[  649.931596][T15918] [U] 
[  650.030216][T15918] [U] 
[  650.628029][T15945] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  651.313160][T15958] loop2: detected capacity change from 0 to 1024
[  651.509684][   T37] hfsplus: b-tree write err: -5, ino 4
[  651.841642][T15965] netlink: 'syz.2.4027': attribute type 2 has an invalid length.
[  652.059923][T15932] loop6: detected capacity change from 0 to 32768
[  652.116174][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1606.tmp-b7:5' failed: Read-only file system
[  652.168760][T15932] btrfs: Deprecated parameter 'usebackuproot'
[  652.172348][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1605.tmp-b7:1' failed: Read-only file system
[  652.191660][ T5844] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  652.224852][T15932] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  652.256049][T15932] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.4013 (15932)
[  652.261253][T15975] sp0: Synchronizing with TNC
[  652.279928][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1610.tmp-b7:2' failed: Read-only file system
[  652.343679][T15932] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  652.377648][T15932] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm
[  652.380220][ T5844] usb 1-1: Using ep0 maxpacket: 32
[  652.389187][T15932] BTRFS info (device loop6): using free-space-tree
[  652.458079][ T5844] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  652.474572][T11980] udevd[11980]: symlink '../../loop1' '/dev/disk/by-diskseq/1605.tmp-b7:1' failed: Read-only file system
[  652.533458][ T5844] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  652.598781][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1608.tmp-b7:3' failed: Read-only file system
[  652.603987][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1611.tmp-b7:6' failed: Read-only file system
[  652.630712][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-uuid/ed167579-eb65-4e76-9a50-61ac97e9b59d.tmp-b7:6' failed: Read-only file system
[  652.651879][ T5844] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  652.696704][T15932] BTRFS info (device loop6): rebuilding free space tree
[  652.714963][ T5844] usb 1-1: config 1 has no interface number 0
[  652.757937][ T5844] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  652.771121][T10098] udevd[10098]: symlink '../../loop5' '/dev/disk/by-diskseq/1606.tmp-b7:5' failed: Read-only file system
[  652.810462][ T5844] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  652.866659][ T5844] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  652.925891][ T5844] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.003798][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1610.tmp-b7:2' failed: Read-only file system
[  653.025178][ T5844] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  653.052629][ T8808] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  653.102427][T11980] udevd[11980]: symlink '../../loop1' '/dev/disk/by-diskseq/1605.tmp-b7:1' failed: Read-only file system
[  653.457884][T16005] loop2: detected capacity change from 0 to 40427
[  653.466188][T16005] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  653.473266][T16005] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  653.484948][T16005] F2FS-fs (loop2): build fault injection attr: rate: 17008, type: 0x3fffff
[  653.493828][T16005] F2FS-fs (loop2): LFS is not compatible with ATGC
[  653.516635][ T5844] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  654.035277][ T5842] usb 1-1: USB disconnect, device number 30
[  654.072281][ T5842] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  654.275536][T16016] loop1: detected capacity change from 0 to 4096
[  654.362718][T16018] loop6: detected capacity change from 0 to 4096
[  654.405111][T16024] loop3: detected capacity change from 0 to 128
[  654.438623][T16024] EXT4-fs: Ignoring removed nobh option
[  654.516142][T16024] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  654.549562][T16016] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  654.581236][T16024] ext4 filesystem being mounted at /682/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  655.158796][ T5829] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  655.271953][ T5833] ntfs3(loop1): ino=9, ntfs_sync_fs failed, -22.
[  655.874024][T16046] loop1: detected capacity change from 0 to 4096
[  656.031639][T16052] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  656.370704][T16054] loop0: detected capacity change from 0 to 4096
[  656.482683][T16054] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  656.608640][T16054] fs-verity (loop0, inode 16): Unsupported log_blocksize: 13
[  656.937796][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  656.995431][T16078] netlink: 'syz.6.4071': attribute type 11 has an invalid length.
[  657.139684][T10761] udevd[10761]: symlink '../../loop5' '/dev/disk/by-diskseq/1606.tmp-b7:5' failed: Read-only file system
[  657.298887][T10761] udevd[10761]: symlink '../../loop1' '/dev/disk/by-diskseq/1623.tmp-b7:1' failed: Read-only file system
[  657.335445][T16056] Bluetooth: hci3: link tx timeout
[  657.342286][T16056] Bluetooth: hci3: killing stalled connection 10:aa:aa:aa:aa:aa
[  657.392394][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1622.tmp-b7:0' failed: Read-only file system
[  657.407379][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:0' failed: Read-only file system
[  657.595714][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1619.tmp-b7:3' failed: Read-only file system
[  657.736655][ T6030] udevd[6030]: symlink '../../loop2' '/dev/disk/by-diskseq/1613.tmp-b7:2' failed: Read-only file system
[  657.822500][T16089] loop2: detected capacity change from 0 to 40427
[  657.831593][T16089] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  657.839457][T16089] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  657.853539][T16089] F2FS-fs (loop2): invalid crc value
[  657.885238][T16089] F2FS-fs (loop2): SIT is corrupted node# 0 vs 7
[  657.892825][T16089] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-117)
[  657.954852][T10098] udevd[10098]: symlink '../../loop5' '/dev/disk/by-diskseq/1606.tmp-b7:5' failed: Read-only file system
[  657.958906][T11978] udevd[11978]: symlink '../../loop1' '/dev/disk/by-diskseq/1623.tmp-b7:1' failed: Read-only file system
[  657.984129][T16090] loop3: detected capacity change from 0 to 4096
[  658.005166][T10761] udevd[10761]: symlink '../../loop6' '/dev/disk/by-diskseq/1618.tmp-b7:6' failed: Read-only file system
[  658.009943][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1622.tmp-b7:0' failed: Read-only file system
[  658.152719][T16056] Bluetooth: hci3: command 0x0405 tx timeout
[  658.347717][T16090] ntfs3(loop3): ino=0, "file0" failed to extend initialized size to 80009.
[  658.818703][T16113] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4086'.
[  658.875500][T16116] loop0: detected capacity change from 0 to 8
[  658.891778][T16117] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4086'.
[  659.082046][T16116] SQUASHFS error: Failed to read block 0x6e6: -5
[  659.088455][T16116] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  659.188687][T16116] SQUASHFS error: Unable to read directory block [631:26]
[  659.887050][   T30] audit: type=1326 audit(1746832267.044:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.1.4096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  659.985311][   T30] audit: type=1326 audit(1746832267.044:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.1.4096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  660.101240][   T30] audit: type=1326 audit(1746832267.074:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.1.4096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=445 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  660.193605][   T30] audit: type=1326 audit(1746832267.074:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.1.4096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  660.218194][T16142] binder: 16140:16142 ioctl c0306201 200000000540 returned -14
[  660.311253][   T30] audit: type=1326 audit(1746832267.074:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.1.4096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1138b8e969 code=0x7ffc0000
[  660.314262][T16056] Bluetooth: hci3: command 0x0405 tx timeout
[  660.364522][T16105] loop6: detected capacity change from 0 to 32768
[  660.382508][T16105] XFS: attr2 mount option is deprecated.
[  660.388307][T16105] XFS: ikeep mount option is deprecated.
[  660.400573][T16105] XFS: noikeep mount option is deprecated.
[  660.499335][T16105] XFS (loop6): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  660.648273][T16105] XFS (loop6): Ending clean mount
[  660.676569][T16105] XFS (loop6): Quotacheck needed: Please wait.
[  660.814724][T16156] loop0: detected capacity change from 0 to 256
[  660.837826][T16105] XFS (loop6): Quotacheck: Done.
[  660.886279][T16156] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  661.178471][ T8808] XFS (loop6): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  661.278951][T16130] loop5: detected capacity change from 0 to 32768
[  661.407501][T16162] loop3: detected capacity change from 0 to 47
[  661.412229][T16130] ERROR: (device loop5): dtReadFirst: DT_GETPAGE: dtree page corrupt
[  661.412229][T16130] 
[  661.488683][T16130] ERROR: (device loop5): remounting filesystem as read-only
[  661.522554][ T5807] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  661.721694][ T5807] usb 1-1: Using ep0 maxpacket: 16
[  661.775930][T16138] loop2: detected capacity change from 0 to 32768
[  661.780673][ T5807] usb 1-1: config 0 has an invalid interface number: 8 but max is 0
[  661.803574][ T5807] usb 1-1: config 0 has no interface number 0
[  661.824410][T16138] btrfs: Deprecated parameter 'usebackuproot'
[  661.824626][ T5807] usb 1-1: config 0 interface 8 altsetting 3 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  661.867206][T16138] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  661.963782][ T5807] usb 1-1: config 0 interface 8 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  661.976393][T16138] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.4098 (16138)
[  662.030133][ T5807] usb 1-1: config 0 interface 8 has no altsetting 0
[  662.078862][ T5807] usb 1-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[  662.151906][ T5807] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  662.175069][T16138] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  662.179491][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1639.tmp-b7:3' failed: Read-only file system
[  662.212902][ T5807] usb 1-1: config 0 descriptor??
[  662.228282][T16138] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  662.299883][ T6030] udevd[6030]: symlink '../../loop2' '/dev/disk/by-diskseq/1637.tmp-b7:2' failed: Read-only file system
[  662.314730][T16138] BTRFS info (device loop2): using free-space-tree
[  662.382232][ T6030] udevd[6030]: symlink '../../loop2' '/dev/disk/by-uuid/ed167579-eb65-4e76-9a50-61ac97e9b59d.tmp-b7:2' failed: Read-only file system
[  662.479257][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1639.tmp-b7:3' failed: Read-only file system
[  662.517836][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1623.tmp-b7:1' failed: Read-only file system
[  662.548074][T16179] loop6: detected capacity change from 0 to 2048
[  662.583938][T16138] BTRFS info (device loop2): rebuilding free space tree
[  662.584764][T11980] udevd[11980]: symlink '../../loop5' '/dev/disk/by-diskseq/1634.tmp-b7:5' failed: Read-only file system
[  662.656030][T16179] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  662.714902][ T5807] uclogic 0003:5543:0522.0050: item fetching failed at offset 2/5
[  662.749949][ T5807] uclogic 0003:5543:0522.0050: parse failed
[  662.772216][T11980] udevd[11980]: symlink '../../loop5' '/dev/disk/by-diskseq/1634.tmp-b7:5' failed: Read-only file system
[  662.788473][ T5807] uclogic 0003:5543:0522.0050: probe with driver uclogic failed with error -22
[  662.838802][T10098] udevd[10098]: symlink '../../loop5' '/dev/disk/by-diskseq/1634.tmp-b7:5' failed: Read-only file system
[  662.938670][T10761] udevd[10761]: symlink '../../loop6' '/dev/disk/by-diskseq/1640.tmp-b7:6' failed: Read-only file system
[  662.966097][ T5807] usb 1-1: USB disconnect, device number 31
[  663.006531][T11978] udevd[11978]: symlink '../../loop3' '/dev/disk/by-diskseq/1639.tmp-b7:3' failed: Read-only file system
[  663.432487][ T5832] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  663.684118][T16208] loop1: detected capacity change from 0 to 1024
[  663.959862][T16214] vlan2: entered allmulticast mode
[  663.972893][T16206] loop6: detected capacity change from 0 to 4096
[  664.045655][T16214] macsec0: entered allmulticast mode
[  664.072421][T16214] veth1_macvtap: entered allmulticast mode
[  664.113713][T16206] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  664.161665][T16206] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[  664.215343][   T37] hfsplus: b-tree write err: -5, ino 4
[  664.346785][T16206] ntfs3(loop6): ino=1e, "file1" no data attribute
[  664.600279][T16224] loop1: detected capacity change from 0 to 256
[  664.691545][T16226] devtmpfs: Too few inodes for current use
[  664.732493][T16228] loop0: detected capacity change from 0 to 256
[  664.768520][T16228] exfat: Deprecated parameter 'utf8'
[  664.796735][T16228] exfat: Deprecated parameter 'namecase'
[  664.965815][T16228] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  665.371866][T16230] "syz.5.4126" (16230) uses obsolete ecb(arc4) skcipher
[  665.801810][ T5807] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  665.979681][ T5807] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  666.000342][ T5844] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  666.034650][ T5807] usb 2-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00
[  666.075878][ T5807] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.152321][ T5807] usb 2-1: config 0 descriptor??
[  666.193318][ T5844] usb 3-1: too many endpoints for config 0 interface 0 altsetting 185: 33, using maximum allowed: 30
[  666.217845][T16259] 9pnet_fd: p9_fd_create_tcp (16259): problem binding to privport
[  666.237300][ T5844] usb 3-1: config 0 interface 0 altsetting 185 endpoint 0x81 has invalid wMaxPacketSize 0
[  666.278991][ T5844] usb 3-1: config 0 interface 0 altsetting 185 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  666.326726][ T5844] usb 3-1: config 0 interface 0 has no altsetting 0
[  666.350475][ T5844] usb 3-1: New USB device found, idVendor=0810, idProduct=0001, bcdDevice= 0.00
[  666.379608][ T5844] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.422966][ T5844] usb 3-1: config 0 descriptor??
[  666.607961][ T5807] razer 0003:1532:010E.0051: item fetching failed at offset 4/5
[  666.633161][ T5807] razer 0003:1532:010E.0051: probe with driver razer failed with error -22
[  666.872890][ T5842] usb 2-1: USB disconnect, device number 28
[  666.916634][ T5844] pantherlord 0003:0810:0001.0052: hidraw0: USB HID v8.00 Device [HID 0810:0001] on usb-dummy_hcd.2-1/input0
[  666.969674][ T5844] pantherlord 0003:0810:0001.0052: Force feedback for PantherLord/GreenAsia devices by Anssi Hannula <anssi.hannula@gmail.com>
[  667.095086][ T5844] usb 3-1: USB disconnect, device number 31
[  667.106820][T16237] loop3: detected capacity change from 0 to 32768
[  667.186945][T16237] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  667.224268][T16250] loop0: detected capacity change from 0 to 32768
[  667.239787][T16267] fido_id[16267]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  667.295955][T16250] (syz.0.4134,16250,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  667.358690][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-diskseq/1651.tmp-b7:3' failed: Read-only file system
[  667.369793][T16237] XFS (loop3): Ending clean mount
[  667.373450][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-uuid/d7dc424e-7990-42cb-9f91-9cb7200a101d.tmp-b7:3' failed: Read-only file system
[  667.406490][T16250] (syz.0.4134,16250,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  667.464531][T16237] XFS (loop3): Quotacheck needed: Please wait.
[  667.529756][T16250] JBD2: Ignoring recovery information on journal
[  667.646708][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-diskseq/1651.tmp-b7:3' failed: Read-only file system
[  667.678933][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-uuid/d7dc424e-7990-42cb-9f91-9cb7200a101d.tmp-b7:3' failed: Read-only file system
[  667.698893][T16237] XFS (loop3): Quotacheck: Done.
[  667.753122][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1647.tmp-b7:1' failed: Read-only file system
[  667.798911][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1652.tmp-b7:0' failed: Read-only file system
[  667.822920][T16250] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  667.849392][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-uuid/9357e9d7-5182-4c22-8242-b9b0d0fb6750.tmp-b7:0' failed: Read-only file system
[  667.859634][T16280] loop1: detected capacity change from 0 to 764
[  667.915661][ T6030] udevd[6030]: symlink '../../loop2' '/dev/disk/by-diskseq/1649.tmp-b7:2' failed: Read-only file system
[  668.019731][ T5829] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  668.048374][T16280] rock: directory entry would overflow storage
[  668.122589][T16280] rock: sig=0x4f50, size=4, remaining=3
[  668.149031][ T6030] udevd[6030]: symlink '../../loop5' '/dev/disk/by-diskseq/1638.tmp-b7:5' failed: Read-only file system
[  668.155700][T16280] iso9660: Corrupted directory entry in block 6 of inode 1792
[  668.170905][T16287] CUSE: unknown device info "ÿ
"
[  668.184726][T16287] CUSE: zero length info key specified
[  668.221195][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1653.tmp-b7:1' failed: Read-only file system
[  668.453165][ T5830] ocfs2: Unmounting device (7,0) on (node local)
[  668.632637][T16292] loop6: detected capacity change from 0 to 256
[  668.705831][T16292] exfat: Deprecated parameter 'utf8'
[  668.755094][T16292] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  669.349406][T16301] loop3: detected capacity change from 0 to 2048
[  669.387816][T16305] netlink: 'syz.6.4157': attribute type 2 has an invalid length.
[  669.496093][T16309] loop0: detected capacity change from 0 to 24
[  669.518458][T16310] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  669.624580][T16307] loop2: detected capacity change from 0 to 4096
[  669.771593][T16313] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  670.864910][T16327] loop3: detected capacity change from 0 to 4096
[  670.936973][T16327] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  670.941594][T16297] loop1: detected capacity change from 0 to 32768
[  671.015773][T16327] ntfs3(loop3): ino=b, mi_enum_attr
[  671.052834][T16297] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  671.069632][T16327] ntfs3(loop3): Failed to load $Extend (-22).
[  671.078863][T16327] ntfs3(loop3): Failed to initialize $Extend.
[  671.156817][T16297] XFS (loop1): Ending clean mount
[  671.207333][T16297] XFS (loop1): Quotacheck needed: Please wait.
[  671.411651][T16297] XFS (loop1): Quotacheck: Done.
[  671.539165][T16348] loop0: detected capacity change from 0 to 1024
[  671.710378][T16312] loop5: detected capacity change from 0 to 32768
[  671.722838][T16312] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.4160 (16312)
[  671.746411][T16312] BTRFS info (device loop5): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  671.790375][T16312] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  671.841961][T16312] BTRFS info (device loop5): using free-space-tree
[  671.903558][ T5833] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  672.328477][T16378] loop3: detected capacity change from 0 to 256
[  672.370165][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:0' failed: Read-only file system
[  672.395017][T16378] exfat: Deprecated parameter 'utf8'
[  672.402110][T16378] exfat: Deprecated parameter 'namecase'
[  672.503545][T16378] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  672.652517][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1670.tmp-b7:3' failed: Read-only file system
[  672.702118][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-uuid/1234-1234.tmp-b7:3' failed: Read-only file system
[  672.745742][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1667.tmp-b7:0' failed: Read-only file system
[  672.878967][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1667.tmp-b7:0' failed: Read-only file system
[  672.906091][T11349] udevd[11349]: symlink '../../loop2' '/dev/disk/by-diskseq/1664.tmp-b7:2' failed: Read-only file system
[  672.913040][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1666.tmp-b7:1' failed: Read-only file system
[  672.933365][T11978] udevd[11978]: symlink '../../loop6' '/dev/disk/by-diskseq/1658.tmp-b7:6' failed: Read-only file system
[  673.050404][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1670.tmp-b7:3' failed: Read-only file system
[  673.077458][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1666.tmp-b7:1' failed: Read-only file system
[  673.380845][T16388] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4185'.
[  673.391489][T16390] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4184'.
[  673.488494][T16392] loop6: detected capacity change from 0 to 512
[  673.529623][ T5828] BTRFS info (device loop5): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  673.554679][T16392] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  673.715267][T16392] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  673.764113][T16398] loop1: detected capacity change from 0 to 512
[  673.801571][T16398] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  673.838939][T16394] loop0: detected capacity change from 0 to 4096
[  673.888063][T16392] EXT4-fs (loop6): 1 truncate cleaned up
[  673.902563][T16398] EXT4-fs (loop1): 1 truncate cleaned up
[  673.956600][T16398] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  673.971305][T16392] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  674.156706][T16409] loop2: detected capacity change from 0 to 1024
[  674.237260][T16398] EXT4-fs (loop1): resizing filesystem from 256 to 1 blocks
[  674.278107][T16398] EXT4-fs warning (device loop1): ext4_resize_fs:2042: can't shrink FS - resize aborted
[  674.303704][T16409] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  674.494480][T16412] EXT4-fs error (device loop2): __ext4_new_inode:1072: comm syz.2.4191: reserved inode found cleared - inode=1
[  674.615651][ T8808] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.755050][ T5833] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.892186][ T5832] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.988271][   T30] audit: type=1326 audit(1746832282.134:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16418 comm="syz.3.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  675.172435][   T30] audit: type=1326 audit(1746832282.134:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16418 comm="syz.3.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  675.293522][   T30] audit: type=1326 audit(1746832282.194:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16418 comm="syz.3.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  675.459457][   T30] audit: type=1326 audit(1746832282.194:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16418 comm="syz.3.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  675.603559][   T30] audit: type=1326 audit(1746832282.224:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16418 comm="syz.3.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  675.738213][T16431] netlink: zone id is out of range
[  675.747877][   T30] audit: type=1326 audit(1746832282.244:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16418 comm="syz.3.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  675.784904][T16431] netlink: zone id is out of range
[  675.818250][T16431] netlink: zone id is out of range
[  675.864640][T16431] netlink: zone id is out of range
[  675.898371][T16431] netlink: zone id is out of range
[  675.931591][   T30] audit: type=1326 audit(1746832282.244:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16418 comm="syz.3.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f711218e969 code=0x7ffc0000
[  675.956833][T16431] netlink: zone id is out of range
[  675.976344][T16431] netlink: zone id is out of range
[  676.004145][T16431] netlink: zone id is out of range
[  676.031605][T16431] netlink: zone id is out of range
[  676.059967][T16431] netlink: zone id is out of range
[  676.985625][T16416] loop0: detected capacity change from 0 to 32768
[  677.114492][T16416] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  677.259240][ T5972] kernel write not supported for file /input/mouse0 (pid: 5972 comm: kworker/1:6)
[  677.269860][T16416] XFS (loop0): Ending clean mount
[  677.323870][T16416] XFS (loop0): Quotacheck needed: Please wait.
[  677.514468][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1683.tmp-b7:0' failed: Read-only file system
[  677.529649][T16416] XFS (loop0): Quotacheck: Done.
[  677.537209][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-uuid/a2f82aab-77f8-4286-afd4-a8f747a74bab.tmp-b7:0' failed: Read-only file system
[  677.644676][T10761] udevd[10761]: symlink '../../loop1' '/dev/disk/by-diskseq/1680.tmp-b7:1' failed: Read-only file system
[  677.745602][T10098] udevd[10098]: symlink '../../loop5' '/dev/disk/by-diskseq/1682.tmp-b7:5' failed: Read-only file system
[  677.824002][ T5830] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  677.843577][T10761] udevd[10761]: symlink '../../loop6' '/dev/disk/by-diskseq/1678.tmp-b7:6' failed: Read-only file system
[  677.884747][T10098] udevd[10098]: symlink '../../loop2' '/dev/disk/by-diskseq/1681.tmp-b7:2' failed: Read-only file system
[  677.918341][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1683.tmp-b7:0' failed: Read-only file system
[  677.934424][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-uuid/a2f82aab-77f8-4286-afd4-a8f747a74bab.tmp-b7:0' failed: Read-only file system
[  678.080522][T16476] loop6: detected capacity change from 0 to 2048
[  678.233763][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1684.tmp-b7:6' failed: Read-only file system
[  678.267705][T10098] udevd[10098]: symlink '../../loop5' '/dev/disk/by-diskseq/1682.tmp-b7:5' failed: Read-only file system
[  678.453502][T16476] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  678.738547][T16480] loop5: detected capacity change from 0 to 40427
[  678.803134][T16480] F2FS-fs (loop5): build fault injection attr: rate: 7, type: 0x3fffff
[  678.813662][T16480] F2FS-fs (loop5): Image doesn't support compression
[  678.821976][T16480] F2FS-fs (loop5): heap/no_heap options were deprecated
[  678.836800][T16480] F2FS-fs (loop5): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_bio+0x20c/0xa10
[  678.862718][T16480] F2FS-fs (loop5): invalid crc value
[  678.868064][T16480] F2FS-fs (loop5): Failed to get valid F2FS checkpoint
[  678.885331][ T8808] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  678.943627][T16487] loop1: detected capacity change from 0 to 1024
[  679.159050][   T30] audit: type=1804 audit(1746832286.314:207): pid=16487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.4224" name=2F6E6577726F6F742F3733372FE91F7189591E9233614B2F627573 dev="loop1" ino=25 res=1 errno=0
[  679.183281][    C0] vkms_vblank_simulate: vblank timer overrun
[  679.434958][T16497] loop5: detected capacity change from 0 to 512
[  679.635060][T16497] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  679.720243][T16497] ext4 filesystem being mounted at /675/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  679.867899][T16468] loop3: detected capacity change from 0 to 40427
[  679.948008][T16468] F2FS-fs (loop3): invalid crc value
[  680.070314][    C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  680.154976][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.697970][T16519] loop1: detected capacity change from 0 to 1024
[  680.744251][T16519] EXT4-fs: Ignoring removed orlov option
[  680.802321][T16519] EXT4-fs: Ignoring removed orlov option
[  680.813776][T16489] loop2: detected capacity change from 0 to 32768
[  680.855568][T16489] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.4223 (16489)
[  680.908274][T16519] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  681.026813][T16489] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  681.041544][T16489] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  681.098531][T16489] BTRFS info (device loop2): using free-space-tree
[  681.182884][T16525] loop0: detected capacity change from 0 to 256
[  681.228462][ T5833] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  681.249733][T16503] loop6: detected capacity change from 0 to 32768
[  681.263672][T16503] XFS: ikeep mount option is deprecated.
[  681.269355][T16503] XFS: noikeep mount option is deprecated.
[  681.396900][T16503] XFS (loop6): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  681.417766][T16525] FAT-fs (loop0): Directory bread(block 64) failed
[  681.508420][T16525] FAT-fs (loop0): Directory bread(block 65) failed
[  681.602068][T16525] FAT-fs (loop0): Directory bread(block 66) failed
[  681.630539][T16525] FAT-fs (loop0): Directory bread(block 67) failed
[  681.658497][T16525] FAT-fs (loop0): Directory bread(block 68) failed
[  681.741243][T16525] FAT-fs (loop0): Directory bread(block 69) failed
[  681.778034][T16503] XFS (loop6): Ending clean mount
[  681.800748][T16525] FAT-fs (loop0): Directory bread(block 70) failed
[  681.821740][T16503] XFS (loop6): Quotacheck needed: Please wait.
[  681.828236][T16525] FAT-fs (loop0): Directory bread(block 71) failed
[  681.850417][T16525] FAT-fs (loop0): Directory bread(block 72) failed
[  681.875478][ T5832] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  681.880202][T16525] FAT-fs (loop0): Directory bread(block 73) failed
[  682.052671][T16503] XFS (loop6): Quotacheck: Done.
[  682.484128][ T8808] XFS (loop6): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  682.528595][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1695.tmp-b7:2' failed: Read-only file system
[  682.596858][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1696.tmp-b7:0' failed: Read-only file system
[  682.662162][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-uuid/395ef67a-297e-477c-816d-cd80a5b93e5d.tmp-b7:2' failed: Read-only file system
[  682.764542][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1698.tmp-b7:1' failed: Read-only file system
[  682.765929][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1696.tmp-b7:0' failed: Read-only file system
[  682.819133][T11980] udevd[11980]: symlink '../../loop5' '/dev/disk/by-diskseq/1693.tmp-b7:5' failed: Read-only file system
[  682.877618][T16566] netlink: 'syz.2.4244': attribute type 1 has an invalid length.
[  682.935756][T10098] udevd[10098]: symlink '../../loop6' '/dev/disk/by-diskseq/1697.tmp-b7:6' failed: Read-only file system
[  682.940077][T16566] net_ratelimit: 3 callbacks suppressed
[  682.940100][T16566] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  683.009495][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1700.tmp-b7:0' failed: Read-only file system
[  683.049464][T10098] udevd[10098]: symlink '../../loop6' '/dev/disk/by-diskseq/1697.tmp-b7:6' failed: Read-only file system
[  683.157418][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1701.tmp-b7:6' failed: Read-only file system
[  683.397796][T16575] loop0: detected capacity change from 0 to 1024
[  684.009323][T16589] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4254'.
[  684.068861][T16593] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4255'.
[  684.229672][T16593] vxcan3: entered promiscuous mode
[  684.630365][T15060] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  684.711573][T16606] new mount options do not match the existing superblock, will be ignored
[  684.769717][T16606] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  684.812250][T15060] usb 6-1: Using ep0 maxpacket: 8
[  684.820600][T15060] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  684.855802][T15060] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  684.896718][T15060] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  684.926171][T15060] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  684.947461][T15060] usb 6-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00
[  685.031031][T15060] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  685.058264][T15060] usb 6-1: config 0 descriptor??
[  685.536294][T15060] redragon 0003:0C45:760B.0053: Fixing Redragon ASURA report descriptor.
[  685.567722][T15060] redragon 0003:0C45:760B.0053: unknown main item tag 0x6
[  685.607398][T15060] redragon 0003:0C45:760B.0053: item fetching failed at offset 7/133
[  685.656845][T15060] redragon 0003:0C45:760B.0053: probe with driver redragon failed with error -22
[  685.805984][T15060] usb 6-1: USB disconnect, device number 35
[  686.143134][T16609] loop2: detected capacity change from 0 to 32768
[  686.216189][T16599] loop0: detected capacity change from 0 to 40427
[  686.223164][T16609] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  686.224520][T16603] loop6: detected capacity change from 0 to 40427
[  686.267948][T16603] F2FS-fs (loop6): build fault injection attr: rate: 690, type: 0x3fffff
[  686.281075][T16603] F2FS-fs (loop6): build fault injection attr: rate: 0, type: 0x2
[  686.288975][T16603] F2FS-fs (loop6): Image doesn't support compression
[  686.295728][T16599] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  686.295770][T16599] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  686.320908][T16603] F2FS-fs (loop6): Image doesn't support compression
[  686.337839][T16603] F2FS-fs (loop6): invalid crc value
[  686.543549][T16609] XFS (loop2): Ending clean mount
[  686.613825][T16609] XFS (loop2): Quotacheck needed: Please wait.
[  686.850276][T16609] XFS (loop2): Quotacheck: Done.
[  686.873638][T15060] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  686.904156][T16599] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  686.917225][T16603] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  686.969867][T16599] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  687.054701][T15060] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  687.090150][T15060] usb 6-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[  687.161621][T15060] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  687.205780][   T30] audit: type=1800 audit(1746832294.364:208): pid=16603 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4259" name="bus" dev="loop6" ino=10 res=0 errno=0
[  687.234245][T15060] usb 6-1: config 0 descriptor??
[  687.315531][ T5832] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  687.444040][ T8808] syz-executor: attempt to access beyond end of device
[  687.444040][ T8808] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  687.479536][ T8808] CPU: 1 UID: 0 PID: 8808 Comm: syz-executor Not tainted 6.15.0-rc5-syzkaller-00158-g3013c33dcbd9 #0 PREEMPT(full) 
[  687.479586][ T8808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  687.479607][ T8808] Call Trace:
[  687.479620][ T8808]  <TASK>
[  687.479633][ T8808]  dump_stack_lvl+0x16c/0x1f0
[  687.479689][ T8808]  f2fs_handle_critical_error+0x621/0x9f0
[  687.479735][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.479777][ T8808]  ? __asan_memset+0x23/0x50
[  687.479820][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.479874][ T8808]  f2fs_write_end_io+0x73d/0xac0
[  687.479928][ T8808]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  687.479989][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.480049][ T8808]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  687.480097][ T8808]  bio_endio+0x6d2/0x810
[  687.480139][ T8808]  submit_bio_noacct+0x56d/0x1ec0
[  687.480198][ T8808]  __submit_merged_bio+0x33c/0x770
[  687.480254][ T8808]  __submit_merged_write_cond+0x319/0x3f0
[  687.480317][ T8808]  f2fs_write_cache_pages+0x2139/0x2680
[  687.480406][ T8808]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  687.480464][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.480504][ T8808]  ? __lock_acquire+0x5ca/0x1ba0
[  687.480566][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.480606][ T8808]  ? __lock_acquire+0x5ca/0x1ba0
[  687.480763][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.480804][ T8808]  ? lock_acquire+0x179/0x350
[  687.480863][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.480914][ T8808]  f2fs_write_data_pages+0x4ad/0xd90
[  687.480979][ T8808]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  687.481055][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481103][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481145][ T8808]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  687.481204][ T8808]  do_writepages+0x1b5/0x820
[  687.481256][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481302][ T8808]  ? __pfx_do_writepages+0x10/0x10
[  687.481351][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481395][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481435][ T8808]  ? do_raw_spin_lock+0x12c/0x2b0
[  687.481470][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481511][ T8808]  ? find_held_lock+0x2b/0x80
[  687.481554][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481601][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481641][ T8808]  ? do_raw_spin_unlock+0x172/0x230
[  687.481679][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.481730][ T8808]  filemap_fdatawrite_wbc+0x104/0x160
[  687.481784][ T8808]  __filemap_fdatawrite_range+0xb2/0xf0
[  687.481844][ T8808]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  687.481968][ T8808]  ? find_held_lock+0x2b/0x80
[  687.482012][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.482062][ T8808]  ? do_raw_spin_unlock+0x172/0x230
[  687.482099][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.482148][ T8808]  f2fs_sync_dirty_inodes+0x2a9/0x990
[  687.482230][ T8808]  block_operations+0x2a3/0xfd0
[  687.482279][ T8808]  ? __pfx_block_operations+0x10/0x10
[  687.482403][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.482443][ T8808]  ? down_write+0x14d/0x200
[  687.482498][ T8808]  ? __pfx_down_write+0x10/0x10
[  687.482556][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.482596][ T8808]  ? rcu_is_watching+0x12/0xc0
[  687.482644][ T8808]  f2fs_write_checkpoint+0x2b8/0x45b0
[  687.482684][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.482725][ T8808]  ? kfree+0x2b6/0x4d0
[  687.482764][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.482810][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.482851][ T8808]  ? rcu_is_watching+0x12/0xc0
[  687.482891][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.482932][ T8808]  ? kthread_stop+0x273/0x650
[  687.482996][ T8808]  kill_f2fs_super+0x3c2/0x470
[  687.483032][ T8808]  ? __pfx_kill_f2fs_super+0x10/0x10
[  687.483079][ T8808]  ? lockdep_hardirqs_on+0x7c/0x110
[  687.483150][ T8808]  deactivate_locked_super+0xc1/0x1a0
[  687.483198][ T8808]  deactivate_super+0xde/0x100
[  687.483244][ T8808]  cleanup_mnt+0x225/0x450
[  687.483294][ T8808]  task_work_run+0x150/0x240
[  687.483335][ T8808]  ? __pfx_task_work_run+0x10/0x10
[  687.483369][ T8808]  ? srso_alias_return_thunk+0x5/0xfbef5
[  687.483413][ T8808]  ? __pfx___x64_sys_umount+0x10/0x10
[  687.483474][ T8808]  syscall_exit_to_user_mode+0x27b/0x2a0
[  687.483529][ T8808]  do_syscall_64+0xda/0x260
[  687.483585][ T8808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  687.483620][ T8808] RIP: 0033:0x7f480118fc97
[  687.483648][ T8808] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  687.483683][ T8808] RSP: 002b:00007ffffebf13e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  687.483716][ T8808] RAX: 0000000000000000 RBX: 00007f480121089d RCX: 00007f480118fc97
[  687.483738][ T8808] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffffebf14a0
[  687.483760][ T8808] RBP: 00007ffffebf14a0 R08: 0000000000000000 R09: 0000000000000000
[  687.483781][ T8808] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffffebf2530
[  687.483803][ T8808] R13: 00007f480121089d R14: 00000000000a7cb4 R15: 00007ffffebf2570
[  687.483856][ T8808]  </TASK>
[  688.033249][ T8808] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  688.112681][T15060] logitech 0003:046D:C293.0054: hidraw0: USB HID v0.00 Device [HID 046d:c293] on usb-dummy_hcd.5-1/input0
[  688.133403][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1698.tmp-b7:1' failed: Read-only file system
[  688.145437][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1699.tmp-b7:3' failed: Read-only file system
[  688.175781][T10098] udevd[10098]: symlink '../../loop2' '/dev/disk/by-diskseq/1705.tmp-b7:2' failed: Read-only file system
[  688.234733][T15060] logitech 0003:046D:C293.0054: no inputs found
[  688.273618][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1705.tmp-b7:2' failed: Read-only file system
[  688.391614][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1705.tmp-b7:2' failed: Read-only file system
[  688.406454][T15060] usb 6-1: USB disconnect, device number 36
[  688.685106][T10761] udevd[10761]: symlink '../../loop3' '/dev/disk/by-diskseq/1699.tmp-b7:3' failed: Read-only file system
[  688.748001][T10098] udevd[10098]: symlink '../../loop1' '/dev/disk/by-diskseq/1698.tmp-b7:1' failed: Read-only file system
[  688.822244][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:0' failed: Read-only file system
[  688.857762][T16659] loop3: detected capacity change from 0 to 1024
[  688.897635][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1706.tmp-b7:0' failed: Read-only file system
[  688.968214][T10761] udevd[10761]: symlink '../../loop6' '/dev/disk/by-diskseq/1707.tmp-b7:6' failed: Read-only file system
[  689.046514][T16659] hfsplus: xattr searching failed
[  689.292704][ T1004] hfsplus: b-tree write err: -5, ino 4
[  690.345476][T16687] loop1: detected capacity change from 0 to 256
[  690.558790][T16687] FAT-fs (loop1): Directory bread(block 64) failed
[  690.606722][T16687] FAT-fs (loop1): Directory bread(block 65) failed
[  690.668913][T16687] FAT-fs (loop1): Directory bread(block 66) failed
[  690.694568][T16687] FAT-fs (loop1): Directory bread(block 67) failed
[  690.712818][T16687] FAT-fs (loop1): Directory bread(block 68) failed
[  690.766804][T16687] FAT-fs (loop1): Directory bread(block 69) failed
[  690.807369][T16687] FAT-fs (loop1): Directory bread(block 70) failed
[  690.854087][T16687] FAT-fs (loop1): Directory bread(block 71) failed
[  690.890817][T16687] FAT-fs (loop1): Directory bread(block 72) failed
[  690.897475][T16687] FAT-fs (loop1): Directory bread(block 73) failed
[  690.995952][ T5807] hid-generic 0000:0000:0000.0055: item fetching failed at offset 0/1
[  691.052455][ T5807] hid-generic 0000:0000:0000.0055: probe with driver hid-generic failed with error -22
[  691.179601][T16665] loop5: detected capacity change from 0 to 40427
[  691.193172][T16699] loop3: detected capacity change from 0 to 1024
[  691.233404][T16665] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x3fffff
[  691.278168][T16665] F2FS-fs (loop5): Image doesn't support compression
[  691.296845][T16665] F2FS-fs (loop5): Image doesn't support compression
[  691.329028][T16671] loop2: detected capacity change from 0 to 32768
[  691.465207][T16665] F2FS-fs (loop5): invalid crc value
[  692.069356][T16665] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  692.598608][T16722] loop2: detected capacity change from 0 to 1024
[  692.626421][T16721] loop0: detected capacity change from 0 to 2048
[  692.724941][T16722] hfsplus: bad catalog entry type
[  692.792404][T16721] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  692.805262][T16721] ext4 filesystem being mounted at /705/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  692.881470][T16721] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm syz.0.4308: bg 0: block 345: padding at end of block bitmap is not set
[  692.934088][T16721] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  692.949540][T16721] EXT4-fs (loop0): This should not happen!! Data will be lost
[  692.949540][T16721] 
[  693.092819][ T8835] hfsplus: b-tree write err: -5, ino 4
[  693.167346][T16697] loop6: detected capacity change from 0 to 32768
[  693.203462][T10761] udevd[10761]: symlink '../../loop5' '/dev/disk/by-diskseq/1714.tmp-b7:5' failed: Read-only file system
[  693.305845][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1721.tmp-b7:0' failed: Read-only file system
[  693.306761][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1716.tmp-b7:2' failed: Read-only file system
[  693.332948][T10098] udevd[10098]: symlink '../../loop5' '/dev/disk/by-diskseq/1714.tmp-b7:5' failed: Read-only file system
[  693.421805][T16697] JBD2: Ignoring recovery information on journal
[  693.433904][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  693.481353][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:0' failed: Read-only file system
[  693.550900][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1716.tmp-b7:2' failed: Read-only file system
[  693.574159][T10098] udevd[10098]: symlink '../../loop5' '/dev/disk/by-diskseq/1722.tmp-b7:5' failed: Read-only file system
[  693.604680][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-diskseq/1718.tmp-b7:3' failed: Read-only file system
[  693.635175][T16697] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  693.772264][T10761] udevd[10761]: symlink '../../loop0' '/dev/disk/by-diskseq/1721.tmp-b7:0' failed: Read-only file system
[  693.799513][ T6030] udevd[6030]: symlink '../../loop2' '/dev/disk/by-diskseq/1716.tmp-b7:2' failed: Read-only file system
[  694.025042][T16744] loop0: detected capacity change from 0 to 512
[  694.225480][T16744] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.4316: bad orphan inode 15
[  694.249574][ T8808] ocfs2: Unmounting device (7,6) on (node local)
[  694.307096][T16744] ext4_test_bit(bit=14, block=5) = 0
[  694.316192][T16744] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  694.721839][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  694.732744][T16757] loop5: detected capacity change from 0 to 512
[  694.761879][T16759] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4325'.
[  694.787540][T16757] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  694.809946][T16757] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  694.850571][T16755] loop2: detected capacity change from 0 to 4096
[  694.892926][T16757] EXT4-fs (loop5): 1 truncate cleaned up
[  694.926726][T16757] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  695.086214][T16757] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  695.137633][T16766] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  695.437004][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  695.443645][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  695.473898][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  695.546715][ T5892] kernel write not supported for file /dsp1 (pid: 5892 comm: kworker/0:4)
[  695.661129][T16773] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  695.670718][T16772] IPVS: stopping backup sync thread 16773 ...
[  695.705133][T16775] loop6: detected capacity change from 0 to 64
[  695.826100][T16779] loop5: detected capacity change from 0 to 256
[  695.837677][T16775] hfs: bad catalog folder thread
[  695.893647][T16779] exfat: Deprecated parameter 'utf8'
[  695.929884][T16779] exfat: Deprecated parameter 'namecase'
[  695.988409][T16779] exfat: Deprecated parameter 'namecase'
[  696.162504][T16779] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  696.514921][T16785] loop3: detected capacity change from 0 to 512
[  696.656023][T16785] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.4336: bad orphan inode 15
[  696.830380][T16785] ext4_test_bit(bit=14, block=18) = 1
[  696.846251][T16785] is_bad_inode(inode)=0
[  696.871044][T16785] NEXT_ORPHAN(inode)=1023
[  696.875433][T16785] max_ino=32
[  696.878654][T16785] i_nlink=0
[  696.978030][T16785] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2962: inode #15: comm syz.3.4336: corrupted xattr block 19: invalid header
[  697.002754][T16768] loop1: detected capacity change from 0 to 32768
[  697.023705][T16768] (syz.1.4328,16768,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  697.064123][T16768] (syz.1.4328,16768,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  697.111662][T16785] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  697.184884][T16798] loop0: detected capacity change from 0 to 4096
[  697.198101][T16798] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  697.210368][T16785] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  697.238891][T16768] JBD2: Ignoring recovery information on journal
[  697.315161][T16768] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  697.332920][T16798] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  697.365197][T16785] ext4 filesystem being mounted at /735/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  697.773703][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  697.955177][ T5833] ocfs2: Unmounting device (7,1) on (node local)
[  698.088370][T16778] loop2: detected capacity change from 0 to 32768
[  698.227226][T16778] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  698.242954][T16817] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4345'.
[  698.256434][T10098] udevd[10098]: symlink '../../loop3' '/dev/disk/by-diskseq/1740.tmp-b7:3' failed: Read-only file system
[  698.413352][T16817] vxcan3: entered promiscuous mode
[  698.451682][T10098] udevd[10098]: symlink '../../loop6' '/dev/disk/by-diskseq/1735.tmp-b7:6' failed: Read-only file system
[  698.504009][T16778] XFS (loop2): Ending clean mount
[  698.548094][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1739.tmp-b7:0' failed: Read-only file system
[  698.579905][T16778] XFS (loop2): Quotacheck needed: Please wait.
[  698.668923][T16820] loop1: detected capacity change from 0 to 40427
[  698.726934][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:0' failed: Read-only file system
[  698.838252][T16778] XFS (loop2): Quotacheck: Done.
[  698.950081][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-uuid/02AFA4DB32BB7E65.tmp-b7:0' failed: Read-only file system
[  699.002718][T11980] udevd[11980]: symlink '../../loop2' '/dev/disk/by-diskseq/1741.tmp-b7:2' failed: Read-only file system
[  699.054193][T11980] udevd[11980]: symlink '../../loop2' '/dev/disk/by-uuid/a2f82aab-77f8-4286-afd4-a8f747a74bab.tmp-b7:2' failed: Read-only file system
[  699.170956][T10098] udevd[10098]: symlink '../../loop3' '/dev/disk/by-diskseq/1740.tmp-b7:3' failed: Read-only file system
[  699.194949][ T5832] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  699.343873][ T6030] udevd[6030]: symlink '../../loop0' '/dev/disk/by-diskseq/1739.tmp-b7:0' failed: Read-only file system
[  699.365544][T10098] udevd[10098]: symlink '../../loop6' '/dev/disk/by-diskseq/1735.tmp-b7:6' failed: Read-only file system
[  699.481646][T16829] loop6: detected capacity change from 0 to 1024
[  699.740226][T16829] hfsplus: bad catalog entry type
[  700.122989][ T4399] hfsplus: b-tree write err: -5, ino 4
[  700.687392][T16811] loop5: detected capacity change from 0 to 32768
[  700.776884][T16847] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4360'.
[  700.807830][T16810] loop0: detected capacity change from 0 to 32768
[  700.918093][T16810] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  701.170865][T16867] loop1: detected capacity change from 0 to 256
[  701.240318][T16810] XFS (loop0): Ending clean mount
[  701.245380][T16867] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  701.346338][T16810] XFS (loop0): Quotacheck needed: Please wait.
[  701.598767][T16810] XFS (loop0): Quotacheck: Done.
[  701.837001][ T5830] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  702.037961][T16881] loop2: detected capacity change from 0 to 2048
[  702.162370][T16881] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  702.542863][T16887] loop1: detected capacity change from 0 to 4096
[  702.676701][T16888] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  703.288979][T10761] udevd[10761]: symlink '../../loop6' '/dev/disk/by-diskseq/1748.tmp-b7:6' failed: Read-only file system
[  703.334735][T16901] loop0: detected capacity change from 0 to 16
[  703.360939][T16901] erofs (device loop0): mounted with root inode @ nid 36.
[  703.388166][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1756.tmp-b7:1' failed: Read-only file system
[  703.448343][T10098] udevd[10098]: symlink '../../loop0' '/dev/disk/by-diskseq/1758.tmp-b7:0' failed: Read-only file system
[  703.450219][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-uuid/3b59f4fc-a790-4a4c-9011-25a8178ccefa.tmp-b7:1' failed: Read-only file system
[  703.519241][T10098] udevd[10098]: symlink '../../loop0' '/dev/disk/by-uuid/e9ce3284-5c19-470e-9400-45dffdcc3184.tmp-b7:0' failed: Read-only file system
[  703.551204][T10761] udevd[10761]: symlink '../../loop5' '/dev/disk/by-diskseq/1752.tmp-b7:5' failed: Read-only file system
[  703.663156][ T5842] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  703.679546][T10098] udevd[10098]: symlink '../../loop0' '/dev/disk/by-diskseq/1758.tmp-b7:0' failed: Read-only file system
[  703.715988][T16907] netlink: 43 bytes leftover after parsing attributes in process `syz.2.4385'.
[  703.757347][ T6030] udevd[6030]: symlink '../../loop1' '/dev/disk/by-diskseq/1756.tmp-b7:1' failed: Read-only file system
[  703.777134][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1757.tmp-b7:2' failed: Read-only file system
[  703.815825][T10098] udevd[10098]: symlink '../../loop0' '/dev/disk/by-diskseq/1758.tmp-b7:0' failed: Read-only file system
[  703.833952][T16871] loop3: detected capacity change from 0 to 32768
[  703.864745][T16909] loop5: detected capacity change from 0 to 1024
[  703.872087][ T5842] usb 2-1: Using ep0 maxpacket: 32
[  703.887099][ T5842] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  703.916196][T16909] EXT4-fs: Ignoring removed bh option
[  703.928478][ T5842] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  703.953813][T16909] EXT4-fs: inline encryption not supported
[  703.981593][ T5842] usb 2-1: New USB device found, idVendor=10c4, idProduct=8acf, bcdDevice= 0.00
[  703.992837][T16871] overlayfs: upper fs needs to support d_type.
[  704.001710][T16909] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  704.016341][T16871] overlayfs: upper fs does not support tmpfile.
[  704.025428][ T5835] Bluetooth: hci3: SCO packet too small
[  704.032567][ T5842] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  704.043175][T16871] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  704.047997][ T5842] usb 2-1: config 0 descriptor??
[  704.063415][T16909] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  704.090167][ T5972] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  704.117685][T16871] ERROR: (device loop3): dbAlloc: the hint is outside the map
[  704.117685][T16871] 
[  704.159770][T16909] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 2: comm syz.5.4386: lblock 2 mapped to illegal pblock 2 (length 1)
[  704.197023][T16871] overlayfs: failed to set uuid (/file0, err=-5); falling back to uuid=null.
[  704.224830][T16909] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  704.250144][ T5972] usb 1-1: Using ep0 maxpacket: 32
[  704.255993][T16871] ERROR: (device loop3): dbAlloc: the hint is outside the map
[  704.255993][T16871] 
[  704.271909][ T5972] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  704.290959][T16909] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 48: comm syz.5.4386: lblock 0 mapped to illegal pblock 48 (length 1)
[  704.305831][ T5972] usb 1-1: config 0 has no interface number 0
[  704.337685][T16871] overlayfs: failed to verify upper root origin
[  704.339601][ T5972] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  704.373851][T16909] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  704.385312][ T5972] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  704.416534][T16909] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4386: Failed to acquire dquot type 0
[  704.428636][ T5972] usb 1-1: Product: syz
[  704.448854][ T5972] usb 1-1: Manufacturer: syz
[  704.459410][ T5972] usb 1-1: SerialNumber: syz
[  704.473488][T16909] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  704.494665][ T5842] hid (null): report_id 0 is invalid
[  704.501651][ T5972] usb 1-1: config 0 descriptor??
[  704.527961][ T5972] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  704.556540][ T5842] hid-u2fzero 0003:10C4:8ACF.0056: report_id 0 is invalid
[  704.585914][T16909] EXT4-fs error (device loop5): ext4_evict_inode:259: inode #11: comm syz.5.4386: mark_inode_dirty error
[  704.602652][T16909] EXT4-fs warning (device loop5): ext4_evict_inode:261: couldn't mark inode dirty (err -117)
[  704.610433][ T5842] hid-u2fzero 0003:10C4:8ACF.0056: item 0 0 1 8 parsing failed
[  704.620652][T16909] EXT4-fs (loop5): 1 orphan inode deleted
[  704.622935][T16909] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  704.665640][ T5842] hid-u2fzero 0003:10C4:8ACF.0056: probe with driver hid-u2fzero failed with error -22
[  704.702068][   T37] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  704.734364][ T4399] read_mapping_page failed!
[  704.759516][ T5972] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  704.764206][ T4399] ERROR: (device loop3): txAbort: 
[  704.764206][ T4399] 
[  704.771404][ T5842] usb 2-1: USB disconnect, device number 29
[  704.811867][   T37] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  704.825386][ T4399] jfs_write_inode: jfs_commit_inode failed!
[  704.843815][   T37] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[  704.862056][ T5972] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  704.963593][ T1323] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 2: comm kworker/u8:6: lblock 2 mapped to illegal pblock 2 (length 1)
[  705.060031][ T1323] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  705.097956][ T1323] EXT4-fs error (device loop5): ext4_write_dquot:6913: comm kworker/u8:6: Failed to commit dquot type 0
[  705.153533][    C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  705.162821][ T5842] usb 1-1: USB disconnect, device number 32
[  705.195639][ T5842] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  705.205360][ T1323] Quota error (device loop5): dquot_write_dquot: Can't write quota structure (error -117). Quota may get out of sync!
[  705.285219][ T5842] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  705.333200][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  705.340948][ T5842] quatech2 1-1:0.51: device disconnected
[  705.364862][ T5828] EXT4-fs error (device loop5): __ext4_get_inode_loc:4449: comm syz-executor: Invalid inode table block 1 in block_group 0
[  705.433768][ T5828] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  705.479776][ T5828] EXT4-fs error (device loop5): ext4_quota_off:7219: inode #3: comm syz-executor: mark_inode_dirty error
[  706.027381][T16938] loop0: detected capacity change from 0 to 512
[  706.120080][T16938] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  706.193592][T16938] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #13: comm syz.0.4399: invalid indirect mapped block 8 (level 2)
[  706.238198][T16938] EXT4-fs (loop0): Remounting filesystem read-only
[  706.272066][T16938] EXT4-fs (loop0): 1 truncate cleaned up
[  706.302923][T16938] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  706.432322][T16943] loop1: detected capacity change from 0 to 256
[  706.506965][T16943] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  706.528830][T16938] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[  706.579720][T16945] netlink: 'syz.5.4402': attribute type 5 has an invalid length.
[  706.613061][T16938] EXT4-fs (loop0): changing journal_checksum during remount not supported; ignoring
[  706.635290][T16945] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4402'.
[  706.675506][T16945] netlink: 80 bytes leftover after parsing attributes in process `syz.5.4402'.
[  706.885118][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  707.016223][T16947] loop5: detected capacity change from 0 to 63
[  707.313339][T16926] loop2: detected capacity change from 0 to 32768
[  707.406994][T16928] loop6: detected capacity change from 0 to 40427
[  707.429946][T16954] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4406'.
[  707.466340][T16928] F2FS-fs (loop6): invalid crc value
[  707.546474][T16959] loop0: detected capacity change from 0 to 256
[  707.564821][T16959] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  707.629636][T16961] support for the xor transformation has been removed.
[  707.644722][T16959] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[  707.669765][T16959] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  707.746079][T16959] UDF-fs: Scanning with blocksize 512 failed
[  707.843490][T16959] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  707.911439][T16959] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  708.132035][T16928] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  708.179130][T16965] smc: net device bond0 erased user defined pnetid SYZ2
[  708.347861][T10098] udevd[10098]: symlink '../../loop0' '/dev/disk/by-diskseq/1773.tmp-b7:0' failed: Read-only file system
[  708.377005][T11980] udevd[11980]: symlink '../../loop1' '/dev/disk/by-diskseq/1767.tmp-b7:1' failed: Read-only file system
[  708.488294][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-diskseq/1772.tmp-b7:6' failed: Read-only file system
[  708.513824][T10098] udevd[10098]: symlink '../../loop0' '/dev/disk/by-diskseq/1773.tmp-b7:0' failed: Read-only file system
[  708.577826][ T6030] udevd[6030]: symlink '../../loop6' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:6' failed: Read-only file system
[  708.685416][T10098] udevd[10098]: symlink '../../loop0' '/dev/disk/by-diskseq/1773.tmp-b7:0' failed: Read-only file system
[  708.759039][ T6030] udevd[6030]: symlink '../../loop3' '/dev/disk/by-diskseq/1763.tmp-b7:3' failed: Read-only file system
[  708.848500][T11980] udevd[11980]: symlink '../../loop5' '/dev/disk/by-diskseq/1770.tmp-b7:5' failed: Read-only file system
[  708.864484][T10761] udevd[10761]: symlink '../../loop2' '/dev/disk/by-diskseq/1771.tmp-b7:2' failed: Read-only file system
[  708.883331][T11978] udevd[11978]: symlink '../../loop1' '/dev/disk/by-diskseq/1767.tmp-b7:1' failed: Read-only file system
[  709.223691][T16986] netlink: 'syz.2.4422': attribute type 1 has an invalid length.
[  709.280119][T16986] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4422'.
[  709.742429][ T5892] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  709.924629][ T5892] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[  709.946341][ T5892] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  710.023310][ T5892] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  710.077133][ T5892] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  710.121653][ T5892] usb 1-1: Manufacturer: syz
[  710.159303][ T5892] usb 1-1: config 0 descriptor??
[  710.238651][T17011] loop3: detected capacity change from 0 to 256
[  710.426647][T17011] FAT-fs (loop3): Directory bread(block 64) failed
[  710.480201][T17011] FAT-fs (loop3): Directory bread(block 65) failed
[  710.486890][T17011] FAT-fs (loop3): Directory bread(block 66) failed
[  710.510938][ T5892] rc_core: IR keymap rc-hauppauge not found
[  710.516888][ T5892] Registered IR keymap rc-empty
[  710.549213][ T5892] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  710.568877][T17011] FAT-fs (loop3): Directory bread(block 67) failed
[  710.601813][T17011] FAT-fs (loop3): Directory bread(block 68) failed
[  710.608490][T17011] FAT-fs (loop3): Directory bread(block 69) failed
[  710.643307][ T5892] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input31
[  710.661084][T17011] FAT-fs (loop3): Directory bread(block 70) failed
[  710.695548][T17011] FAT-fs (loop3): Directory bread(block 71) failed
[  710.720353][T17011] FAT-fs (loop3): Directory bread(block 72) failed
[  710.742845][T17011] FAT-fs (loop3): Directory bread(block 73) failed
[  710.749908][T17004] ==================================================================
[  710.758004][T17004] BUG: KASAN: vmalloc-out-of-bounds in tpg_fill_plane_buffer+0x2cb6/0x43c0
[  710.766651][T17004] Write of size 1440 at addr ffffc9000d265da0 by task vivid-000-vid-c/17004
[  710.775357][T17004] 
[  710.777701][T17004] CPU: 0 UID: 0 PID: 17004 Comm: vivid-000-vid-c Not tainted 6.15.0-rc5-syzkaller-00158-g3013c33dcbd9 #0 PREEMPT(full) 
[  710.777753][T17004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  710.777778][T17004] Call Trace:
[  710.777791][T17004]  <TASK>
[  710.777805][T17004]  dump_stack_lvl+0x116/0x1f0
[  710.777864][T17004]  print_report+0xc3/0x670
[  710.777921][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.777969][T17004]  ? __virt_addr_valid+0x5e/0x590
[  710.778027][T17004]  ? tpg_fill_plane_buffer+0x2cb6/0x43c0
[  710.778088][T17004]  kasan_report+0xe0/0x110
[  710.778147][T17004]  ? tpg_fill_plane_buffer+0x2cb6/0x43c0
[  710.778208][T17004]  kasan_check_range+0xef/0x1a0
[  710.778248][T17004]  __asan_memcpy+0x3c/0x60
[  710.778295][T17004]  tpg_fill_plane_buffer+0x2cb6/0x43c0
[  710.778379][T17004]  ? __pfx_tpg_fill_plane_buffer+0x10/0x10
[  710.778445][T17004]  vivid_fillbuff+0x8d2/0x4250
[  710.778495][T17004]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  710.778547][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.778593][T17004]  ? debug_object_activate+0x2ec/0x4c0
[  710.778634][T17004]  ? __pfx_debug_object_activate+0x10/0x10
[  710.778690][T17004]  ? __pfx_vivid_fillbuff+0x10/0x10
[  710.778758][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.778804][T17004]  ? v4l2_ctrl_request_setup+0x45e/0xa60
[  710.778841][T17004]  ? lockdep_hardirqs_on+0x7c/0x110
[  710.778894][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.778945][T17004]  ? vivid_thread_vid_cap_tick+0x814/0x15d0
[  710.778997][T17004]  vivid_thread_vid_cap_tick+0x814/0x15d0
[  710.779055][T17004]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  710.779118][T17004]  vivid_thread_vid_cap+0x454/0xda0
[  710.779179][T17004]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  710.779235][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.779281][T17004]  ? do_raw_spin_lock+0x12c/0x2b0
[  710.779322][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.779368][T17004]  ? find_held_lock+0x2b/0x80
[  710.779416][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.779462][T17004]  ? rcu_is_watching+0x12/0xc0
[  710.779506][T17004]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  710.779556][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.779603][T17004]  ? lockdep_hardirqs_on+0x7c/0x110
[  710.779655][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.779704][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.779750][T17004]  ? __kthread_parkme+0x19e/0x250
[  710.779807][T17004]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  710.779860][T17004]  kthread+0x3c5/0x780
[  710.779895][T17004]  ? __pfx_kthread+0x10/0x10
[  710.779928][T17004]  ? __pfx_kthread+0x10/0x10
[  710.779962][T17004]  ? __pfx_kthread+0x10/0x10
[  710.779996][T17004]  ? __pfx_kthread+0x10/0x10
[  710.780028][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  710.780080][T17004]  ? rcu_is_watching+0x12/0xc0
[  710.780124][T17004]  ? __pfx_kthread+0x10/0x10
[  710.780159][T17004]  ret_from_fork+0x48/0x80
[  710.780195][T17004]  ? __pfx_kthread+0x10/0x10
[  710.780229][T17004]  ret_from_fork_asm+0x1a/0x30
[  710.780296][T17004]  </TASK>
[  710.780309][T17004] 
[  711.073844][T17004] The buggy address belongs to the virtual mapping at
[  711.073844][T17004]  [ffffc9000d24f000, ffffc9000d267000) created by:
[  711.073844][T17004]  vb2_vmalloc_alloc+0x135/0x3f0
[  711.091894][T17004] 
[  711.094243][T17004] The buggy address belongs to the physical page:
[  711.100654][T17004] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x56a35
[  711.109432][T17004] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  711.116568][T17004] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  711.125170][T17004] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  711.133764][T17004] page dumped because: kasan: bad access detected
[  711.140180][T17004] page_owner tracks the page as allocated
[  711.145896][T17004] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 17002, tgid 17001 (syz.5.4430), ts 709873388444, free_ts 709487508877
[  711.165376][T17004]  post_alloc_hook+0x181/0x1b0
[  711.170175][T17004]  get_page_from_freelist+0x135c/0x3920
[  711.175754][T17004]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  711.181683][T17004]  alloc_pages_mpol+0x1fb/0x550
[  711.186589][T17004]  alloc_pages_noprof+0x131/0x390
[  711.191650][T17004]  __vmalloc_node_range_noprof+0x732/0x1540
[  711.197568][T17004]  vmalloc_user_noprof+0x6b/0x90
[  711.202527][T17004]  vb2_vmalloc_alloc+0x135/0x3f0
[  711.207502][T17004]  __vb2_queue_alloc+0x8c9/0x1280
[  711.212563][T17004]  vb2_core_reqbufs+0xa90/0xfe0
[  711.217448][T17004]  __vb2_init_fileio+0x3f1/0x1100
[  711.222509][T17004]  __vb2_perform_fileio+0x9c2/0x1660
[  711.227807][T17004]  vb2_fop_read+0x215/0x3e0
[  711.232350][T17004]  v4l2_read+0x229/0x360
[  711.236614][T17004]  vfs_readv+0x6bf/0x8a0
[  711.240964][T17004]  do_preadv+0x1af/0x270
[  711.245227][T17004] page last free pid 16986 tgid 16985 stack trace:
[  711.251731][T17004]  __free_frozen_pages+0x69d/0xff0
[  711.256865][T17004]  tlb_finish_mmu+0x237/0x7b0
[  711.261570][T17004]  exit_mmap+0x403/0xb90
[  711.265832][T17004]  __mmput+0x12a/0x410
[  711.269926][T17004]  mmput+0x62/0x70
[  711.273672][T17004]  do_exit+0x9d1/0x2c30
[  711.277858][T17004]  do_group_exit+0xd3/0x2a0
[  711.282395][T17004]  get_signal+0x2673/0x26d0
[  711.286920][T17004]  arch_do_signal_or_restart+0x8f/0x7d0
[  711.292498][T17004]  syscall_exit_to_user_mode+0x150/0x2a0
[  711.298175][T17004]  do_syscall_64+0xda/0x260
[  711.302717][T17004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  711.308629][T17004] 
[  711.310960][T17004] Memory state around the buggy address:
[  711.316769][T17004]  ffffc9000d265f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  711.324840][T17004]  ffffc9000d265f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  711.332926][T17004] >ffffc9000d266000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  711.340995][T17004]                    ^
[  711.345063][T17004]  ffffc9000d266080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  711.353155][T17004]  ffffc9000d266100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  711.361226][T17004] ==================================================================
[  711.377869][    C0] igorplugusb 1-1:0.0: receive overflow, at least 8 lost
[  711.580802][ T5842] usb 1-1: USB disconnect, device number 33
[  711.845926][T17004] Kernel panic - not syncing: kasan.fault=panic_on_write set ...
[  711.853732][T17004] CPU: 1 UID: 0 PID: 17004 Comm: vivid-000-vid-c Not tainted 6.15.0-rc5-syzkaller-00158-g3013c33dcbd9 #0 PREEMPT(full) 
[  711.866285][T17004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  711.876379][T17004] Call Trace:
[  711.879668][T17004]  <TASK>
[  711.882619][T17004]  dump_stack_lvl+0x3d/0x1f0
[  711.887273][T17004]  panic+0x71c/0x800
[  711.891235][T17004]  ? __pfx_panic+0x10/0x10
[  711.895708][T17004]  ? lockdep_hardirqs_on+0x7c/0x110
[  711.900954][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  711.906641][T17004]  ? tpg_fill_plane_buffer+0x2cb6/0x43c0
[  711.912327][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  711.917995][T17004]  ? preempt_schedule_common+0x44/0xc0
[  711.923491][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  711.929154][T17004]  ? preempt_schedule_thunk+0x16/0x30
[  711.934575][T17004]  ? tpg_fill_plane_buffer+0x2cb6/0x43c0
[  711.940246][T17004]  end_report+0x159/0x170
[  711.944618][T17004]  kasan_report+0xee/0x110
[  711.949071][T17004]  ? tpg_fill_plane_buffer+0x2cb6/0x43c0
[  711.954745][T17004]  kasan_check_range+0xef/0x1a0
[  711.959618][T17004]  __asan_memcpy+0x3c/0x60
[  711.964063][T17004]  tpg_fill_plane_buffer+0x2cb6/0x43c0
[  711.969595][T17004]  ? __pfx_tpg_fill_plane_buffer+0x10/0x10
[  711.975450][T17004]  vivid_fillbuff+0x8d2/0x4250
[  711.980249][T17004]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  711.986092][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  711.991752][T17004]  ? debug_object_activate+0x2ec/0x4c0
[  711.997233][T17004]  ? __pfx_debug_object_activate+0x10/0x10
[  712.003088][T17004]  ? __pfx_vivid_fillbuff+0x10/0x10
[  712.008340][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.014006][T17004]  ? v4l2_ctrl_request_setup+0x45e/0xa60
[  712.019660][T17004]  ? lockdep_hardirqs_on+0x7c/0x110
[  712.024898][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.030565][T17004]  ? vivid_thread_vid_cap_tick+0x814/0x15d0
[  712.036496][T17004]  vivid_thread_vid_cap_tick+0x814/0x15d0
[  712.042255][T17004]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  712.048013][T17004]  vivid_thread_vid_cap+0x454/0xda0
[  712.053258][T17004]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  712.059020][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.064679][T17004]  ? do_raw_spin_lock+0x12c/0x2b0
[  712.069726][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.075384][T17004]  ? find_held_lock+0x2b/0x80
[  712.080092][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.085751][T17004]  ? rcu_is_watching+0x12/0xc0
[  712.090541][T17004]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  712.096378][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.102043][T17004]  ? lockdep_hardirqs_on+0x7c/0x110
[  712.107284][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.112954][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.118621][T17004]  ? __kthread_parkme+0x19e/0x250
[  712.123689][T17004]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  712.129442][T17004]  kthread+0x3c5/0x780
[  712.133529][T17004]  ? __pfx_kthread+0x10/0x10
[  712.138133][T17004]  ? __pfx_kthread+0x10/0x10
[  712.142737][T17004]  ? __pfx_kthread+0x10/0x10
[  712.147340][T17004]  ? __pfx_kthread+0x10/0x10
[  712.151946][T17004]  ? srso_alias_return_thunk+0x5/0xfbef5
[  712.157612][T17004]  ? rcu_is_watching+0x12/0xc0
[  712.162403][T17004]  ? __pfx_kthread+0x10/0x10
[  712.167057][T17004]  ret_from_fork+0x48/0x80
[  712.171492][T17004]  ? __pfx_kthread+0x10/0x10
[  712.176100][T17004]  ret_from_fork_asm+0x1a/0x30
[  712.180912][T17004]  </TASK>
[  712.184164][T17004] Kernel Offset: disabled
[  712.188490][T17004] Rebooting in 86400 seconds..