last executing test programs:

16m48.250293336s ago: executing program 32 (id=419):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, 0x0)

16m43.889189731s ago: executing program 33 (id=421):
r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0xa, &(0x7f0000000100)=@conn_svc_rsp={0x0, 0x0, 0xa, '\x00', {0x3, 0x102, 0x0, 0xff, 0x5f, 0xdf, 0xfe}})

16m43.653465674s ago: executing program 34 (id=423):
r0 = syz_open_dev$video4linux(&(0x7f0000000d00), 0x1000, 0x80000)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r0, 0xc040564b, &(0x7f0000000040)={0x3, 0x0, 0x5, 0xa1af, 0x101, {0x46, 0x1}, 0x1})

16m43.432788023s ago: executing program 35 (id=425):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@loopback={0xfec0ffff00000000}, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x20)

16m43.07871036s ago: executing program 36 (id=401):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000048000000030a01030000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000cfc"], 0x90}}, 0x0)

16m42.782922568s ago: executing program 37 (id=424):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000016c0)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001509000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x20, 0x29, 0xf, {0xf, 0x29, 0xa, 0x8, 0x9, 0x6, '\x00\b\x00', "96a5f92b"}}, 0x0}, 0x0)

14m3.854065314s ago: executing program 38 (id=1664):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)={0x60, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x60}}, 0x0)

13m35.114737794s ago: executing program 39 (id=1962):
r0 = gettid()
getpriority(0x1, r0)

13m33.044315991s ago: executing program 40 (id=1986):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[0x0, 0x0], 0x2})

10m40.479817175s ago: executing program 41 (id=3657):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @remote, 0x34}]}, &(0x7f0000002100)=0x10)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000000), 0x4)

10m26.436863177s ago: executing program 42 (id=3753):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_DYNSET_SREG_KEY={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_DYNSET_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz1\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)

9m28.733311938s ago: executing program 43 (id=4210):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="240000001a0001000000000000000000020000000004"], 0x24}}, 0x4000000)

9m9.288824216s ago: executing program 44 (id=4332):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="a1ab00000000000000003200000008001781"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

8m25.966782191s ago: executing program 45 (id=4641):
r0 = syz_clone(0x4200000, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r0, 0x0, 0x40000000, &(0x7f0000000400))
timer_create(0x6, &(0x7f0000000100)={0x0, 0x25, 0x1, @tid=r0}, 0x0)

8m18.464018581s ago: executing program 46 (id=4692):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x30, r1, 0x1, 0x0, 0x1, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x4, 0xb, 0xc1}}}}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x8090)

7m37.47257287s ago: executing program 47 (id=4996):
unshare(0x22020400)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)

6m32.981578088s ago: executing program 48 (id=5584):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000100)={0x80000000, 0x0, 0xfffffffc}, 0x10)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe0000000000000008000f00fd000000", 0x24)

5m48.692881583s ago: executing program 49 (id=5794):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a8c000000060a0b040000000000000000020000400900020073797a32000000000900010073797a30000000006000048018000180080001006f7366000c000280080001400000000424000180090001006d6574610000000014000280080002400000000c080003400000001720000180070001007274000014000280080001400000000908000240000000e1"], 0xb4}}, 0x0)

5m41.100649983s ago: executing program 2 (id=5854):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000000), 0x1, 0x3e3, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x1)
fallocate(r0, 0x3, 0x2, 0x8000c62)

5m40.793000455s ago: executing program 2 (id=5855):
r0 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x82543)
ioctl$IOC_PR_PREEMPT(r0, 0x40046109, &(0x7f0000000040)={0xd0})
ioctl$CEC_DQEVENT(r0, 0xc0506107, &(0x7f0000000100)={0x0, 0x0, 0x0, @raw})

5m40.440452972s ago: executing program 2 (id=5858):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r0)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x44, r1, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0xfeffffff}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1607121ae7a1b566}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @local}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}]}, 0x44}}, 0x0)

5m40.181083404s ago: executing program 2 (id=5860):
syz_mount_image$exfat(&(0x7f0000000580), &(0x7f0000000040)='./bus\x00', 0x800800, &(0x7f0000000740)={[{@discard}, {@discard}, {@dmask={'dmask', 0x3d, 0x5}}, {@errors_continue}, {@errors_remount}, {@keep_last_dots}, {@gid}, {@gid={'gid', 0x3d, 0xee01}}, {@errors_continue}, {@fmask={'fmask', 0x3d, 0x7}}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}]}, 0x1, 0x1534, &(0x7f0000003e40)="$eJzs3AuYjVX7MPD7Xms9Y0jaTXIY1lr3w05imSTJIUkOSZIkSU4JSZO8kpAYckoakpDjkByGkBwmJo3z+XxISJImSUJyStZ3CZ+O39v7vf1f/+ud+3ddz2Xdez33etbe9372Xs9jZr7pOKhag+qV6xER/Fvwwj9JABALAP0A4BoACACgdFzpuPP92SUm/XsHYX+vh1Ov9AzYlcT1z9q4/lkb1z9r4/pnbVz/rI3rn7Vx/bM2rj9jWdnGqfmv5S3rbnz//79fnT/t4e///yKZJUZ/sbrE9Z0AYv5qCtc/a+P6/9cK/spOXP+sjeufVcVe6Qmw/wX4/M8Ksv1pD9c/a+P6M5aVXen7z1d6g0jWfg2u9PuPMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxljWcMpfpgDgUvtKz4sxxhhjjDHGGGN/H5/tSs+AMcYYY4wxxhhj//MQBEhQEEAMZINYyA45QADA1ZALroEIXAtxcB3khushD+SFfJAf4qEAFAQNBiwQhFAICkMUboAicCMUhZugGBQHByUgAW6GknALlIJboTTcBmXgdigL5aA8VIA7oCLcCZXgLqgMd0MVqArVoDrcAzXgXqgJ90EtuB9qwwNQBx6EuvAQ1IOHoT48Ag3gUWgIj0EjaAxNoCk0+yv5Mb/NfxG6wkvQDbpDEvSAnvAy9ILe0Af6Qj94BfrDqzAAXoNkGAiD4HUYDG/AEHgThsIwGA5vwQgYCaNgNIyBsZAC42A8vA0T4B2YCJNgMkyBVJgK0+BdmA4zYCa8B7PgfZgNc2AuzIM0+ADmwwJIhw9hIXwEGbAIFsMSWArLYDmsgJWwClbDGlgL62A9bICNsAk2wxbYCttgO3wMO+AT2Am7YDd8Cnvgs38x/+Rv8jshIKBAgQoVxmAMxmIs5sAcmBNzYi7MhRGMYBzGYW7MjXkwD+bDfBiP8VgQC6JBg4SEhbAQRjGKRbAIFsWiWAyLoUOHCZiAJfEWLIWlsDSWxjJYBstiOSyHFbACVsSKWAkrYWWsjFWwClbDangP3oM9sCbWxFpYC2tj7Uu3p7Ae1sP6WB8bYANsiA2xETbCJtgEm2EzbI7NsQW2wFbYCltja2yDbTARE7EttsV22A7bY3vsgB2wI3bETtgZO2e+mA3wJXwJu2MV0QN7Yk/shcnZ+mBf7IuvYH98FV/F1zAZB+IgfB1fxzdwCJ7AoTgMh+NwrChG4igcjSTGYgqm4HgcjxNwAk7ESTgJp2AqTsVpOA2n4wycge/hLHwf38c5OAfnYRqm4XxcgOmYjgvxJGbgIlyMS3ApLsOluAJX4gpcjWtwNa7DdbgBN+Am3IRbcAtuw234MSoA/AR34S5Mxj24B/fiXtyH+3A/7sdMzMQDeAAP4kE8hIfwMB7GI3gUj+FRPI7H8QSexFN4Cs/gGTyLz8d/Vf/jm1YlgzhPCSViRIyIFbEih8ghcoqcIpfIJSIiIuJEnMgtcos8Io/IJ/KJeBEvCoqCwggjSIQxACCiIiqKiCKiqCgqioliwgknEkSCKClKilKilCgtbhNlxO2irCgnWroKooKoKFq5SuIuUVlUFlVEVVFNVBfVRQ1RQ9QUNUUtUUvUFrVFHfGgqCt6YB98WJyvTAMxEBuKQdhINBby4idYczEEW4iWopV4UgzDodhGNHeJ4hnRVozCduIfYjQ+JzqIsdhRvCA6ic6ii3hRdBUtXDfRXUzEHqKnmIK9RG/RR/QV07GqeA9nZa8mXhPJYqAYJF4X8/ANMUS8KYaKYWK4eEuMECPFKDFajBFjRYoYJ8aLt8UE8Y6YKCaJyWKKSBVTxTTxrpguZoiZ4j0xS7wvZos5Yq6YJ9LEB2K+WCDSxYdiofhIZIhFYrFYIpaKZWK5WCFWilVitVgj1op1Yr3YIDaKTWKz2CK2im1iu/hY7BCfiJ1il9gtPhV7xGdir/hc7BNfiP3iS5EpvhIHxNfioPhGHBLfisPiO3FEHBXHxPfiuPhBnBAnxSlxWpwRP4qz4idxTngBEqWQUioZyBiZTcbK7DKHvErmlMHFV/daGSevk7nl9TKPzCvzyfwyXhaQBaWWRlpJMpSFZGEZlTfIIvJGWVTeJIvJ4tLJEjJB3ixLyltkKXmrLC1vk2Xk7bKsLCfLywryDllR3ikhcuEYVWRVWU1Wl/fIJLhX1pT3yVryfllbPiDryAdlXfmQrCcflvXlI7KBfFQ2lI/JRrKxbCKbymbycdlcPiFbyJaylXxStpZPyTbyaZkon5Ftpb/4FnlOdpDPy47yBdlJdpZd5E/ynPSym+wuoQfInvJl2Uv2ln1kX9lPviL7y1flAPmaTJYD5SD5uhws35BD5JtyqBwmh8u35Ag5Uo6So+UYOVamyHFyvHxbTpDvyIlykpwsp8hUOVX2uTjSTCn/af7bf5A/4Oejb5Ab5Sa5WW6RW+U2uV1+LHfIHXKn3Cl3y91yj9wj98q9cp/cJ/fL/TJTZsoD8oA8KA/KQ/KQPCwPyyPyqDwtv5fH5Q/yhDwpT8rT8ow8I89efA1AoRJKKqUCFaOyqViVXeVQV6mc6mqVS12jIupaFaeuU7nV9SqPyqvyqfwqXhVQBZVWRllFKlSFVGEVVTfgxTeMKqaKK6dKqAR187+Sr4qoG1VRddOv8i/NL0kFEv5gfs1UM9VcNVctVAvVSrVSrVVr1Ua1UYkqUbVVbVU71U61V+1VB9VBdVQdVSfVSXVRXVRX1VV1U91UkkpSPdXLqpfqrfqovqqfekX1V/3VADVAJatkNUgNUoPVYDVEDVFD1VA1XA1XI9QINUqNUmPUGJWiUtR4NV5NUBPURDVRTVaTVapKVdPUNDVdTVcz1Uw1S81Ss9VsNVfNVWkqTc1X81W6SlcL1UKVoRapRWqJWqKWqWVqhVqhVqlVao1ao9apdSpDbVQb1Wa1WW1VW9V2tV3tUDvUTrVT7Va71R61R+1Ve9U+tU/tV/tVpspUB9QBdVAdVIfUIXVYHVZH1BF1TB1Tx9VxdUKdUKfUKXVGnVFn1Vl1Tp07v+wLRCACFaggJogJYoPYIEeQI8gZ5AxyBbmCSBAJ4oK4IHdwfZAnyBvkC/IH8UGBoGCgAxPYQFwsejS4ISgS3BgUDW4KigXFAxeUCBKCm4OSwS1BqeDWoHRwW1AmuD0oG5QLygcVgjuCisGdQaXgrqBycHdQJagaVAuqB/cENYJ7g5rBfUGt4P6gdvBAUCd4MKgbPBTUCx4O6gePBA2CR4OGwWNBo6Bx0CRoGjT7W8f3/kTeJ1w33V0n6R66p35Z99K9dR/dV/fTr+j++lU9QL+mk/VAPUi/rgfrN/QQ/aYeqofp4fotPUKP1KP0aD1Gj9Upepwer9/WE/Q7eqKepCfrKTpVT9XT9Lt6up6hZ+r39Cz9vp6t5+i5ep5O0x/o+XqBTtcf6oX6I52hF+nFeoleqpfp5XqFXqlX6dV6jV6r1+n1eoPeqDfpzXqL3qq36e36Y71Df6J36l16t/5U79Gf6b36c71Pf6H36y91pv5KH9Bf64P6G31If6sP6+/0EX1UH9Pf6+P6B31Cn9Sn9Gl9Rv+oz+qf9Dntzy/uz3+9G2WUiTExJtbEmhwmh8lpcppcJpeJmIiJM3Emt8lt8pg8Jp/JZ+JNvCloCprzyJApZAqZqImaIqaIKWqKmmKmmHHGmQSTYEqakqaUKWVKm9KmjCljypqyprwpb+4wd5g7zZ3mLnOXudvcbaqaqqa6qW5qmBqmpqlpaplaprapbeqYOqauqWvqmXqmvqlvGpgGpqFpaBqZRqaJaWKamWamuWluWpgWppVpZVqb1qaNaWMSTaJpa9qadqadaW/amw6mg+loOppOppPpYrqYrqar6Wa6mSSTZHqanqaX6WX6mD6mn+ln+pv+ZoAZYJJNshlkBpnBZrAZYoaYoWaYGX5+oWpGmlFmtBljxpoUk2LGm/FmgplgJpqJZrKZbFJNqplmppnpZrqZaWaaWWaWmW1mm7lmrkkzaWa+mW/STbpZaBaaDJNhFpvFZqlZapab5WalWWlWm9VmLaw16816s9FsNJvNZrPVbDXbzXazw+wwO81Os9vsNnvMHrPX7DX7zD6z3+w3mSbTHDAHzEFz0Bwyh8xhc9gcMUfMMXPMHDfHzQlzwpwyp8wZk/fi96U3sTa7zWGvsjnt1TaXvcb+Ns5n89t4W8AWtNrmsXl/FRtrbVF7ky1mi1tnS9gEe/Pv4rK2nC1vK9g7bEV7p630mxhsDXuvrWnvs7Xs/ba6vedXcW37gK1jH7V1EQFsY1vfNrUN7KO2oX3MNrKNbRPb1La2T9k29mmbaJ+xbe2zv4vn2wV2pV1lV9s1dqfdZU/Z0/ag/caesT/abra77Wdfsf3tq3aAfc0m24G/i4fbt+wIO9KOsqPtGDv2d/FkO8Wm2ql2mn3XTrczfhen2Q/sLJtuZ9s5dq6d93N8fk7p9kO70H5kM2wAi+0Su9Qus8vtiv871yV2nV1vN9gd9hO72W6xW+02u/3SQtjusrvtp3aP/cwesF/bffYLu98espn2q5/j88/vkP3WHrbf2SP2qD1mv7fH7Q/q59yRvQDsj/Z7+5M9Z70FQgKSpCigGMpGsZSdctBVlJOuplx0DUXoWoqj6yg3XU95KC/lo/wUTwWoIGkyZIkopEJUmKJ0A12aXjEqTo5KUALdTCXpFipFt1Jpuo3K0O1UlspReapAd1BFupMq0V1Ume6mKlSVqlF1uodq0L1Uk+6jWnQ/1aYHqA49SHXpIapHD1N9eoQa0KPUkB6jRtSYmlBTakaPU3N6glpQS2pFT1Jreora0NOUSM9QW3qW2tE/qD09Rx3oeepIL1An6kxd6EXqSi9RN+pOSdSDetLL1It6Ux/qS/3oFepPr9IAeo2SaSANotdpML1BQ+hNGkrDaDi9RSNoJI2i0TSGxlIKjaPx9DZNoHdoIk2iyTSFUmkqTaN3aTrNoJn0Hs2i92k2zaG5NI/S6AOaTwsonT6khfQRZdAiWkxLaCkto+W0glbSKlpNa2gtraP1tIE20ibaTFtoK22j7fQx7aBPaCftot30Ke2hz2gvfU776AvaT19SJn1FB+hrOkjf0CH61nen7+gIHaVj9D0dpx/oBJ2kU3SaztCPdJZ+onPkCUIMRShDFQZhTJgtjA2zhznCq8Kc4dVhrvCaMBJeG8aF14W5w+vDPGHeMF+YP4wPC4QFQx2a0IYUhmGhsHAYDW8Ii4Q3hkVDDIuFxUMXlggTwpvDkuEtYanw1rB0eFtYJrw9LBuWCx+9v0J4R1gxvDOsFN4VVg7vDquEVcNqYfXwnrBGeG9YM7wvrBXeH5YKHwjrhA+GdcOHwnrhw2H98JGwQfho2DB8LGwUNg6bhE3DZuHjYfPwibBF2DJsFT4Ztg6fCtuET4eJ4TNh2/DZn/sfWPDn/Ulhj7Bn+HL4cuj9fXJudF40LfpBdH50QTQ9+mF0YfSjaEZ0UXRxdEl0aXRZdHl0RXRldFV0dXRNdG10XXR9dEPU++rZwKETTjrlAhfjsrlYl93lcFe5nO5ql8td4yLuWhfnrnO53fUuj8vr8rn8Lt4VcAWddsZZRy50hVxhF3U3uCLuRlfU3eSKueLOuRIuwTV1zVwz19w94Vq4lq6Ve9I96Z5yT7mn3dPuGdfWPevauX+49u4518E97553L7hOrrPr4l50Xd24XBfOySTX0/V0vVwv18f1cf1cP9ff9XcD3ACX7JLdIDfIDXaD3RA3xA11Q91wN9yNcCPcKDfKjXFjXIpLcePdeDfBTXAT3UQ32U12qS7VTXPT3HQ33VWcceEos91sN9fNdWkuzc1359eM6W6hW+gyXIZb7Ba7pW6pW+6Wu5VupVvtVru1bq1b79a7jW6j2+w2u61uq9vutrsdbofb6a+5MKjb4/a6vW6f2+f2uy9dpvvKHXBfu4PuG3fIfesOu+/cEXfUHXPfu+PuB3fCnXSn3Gl3xv3ozrqf3DnnXUpkXGR85O3IhMg7kYmRSZHJkSmR1MjUyLTIu5HpkRmRmZH3IrMi70dmR+ZE5kbmRdIiH0TmRxZE0iMfRhZGPopkRBZFFkeWRJZGlkW8L7A59IV8YR/1N/gi/kZf1N/ki/ni3vkSPsHf7Ev6W3wpf6sv7W/zZfztvqwv58v7x3wj39g38U19M/+4b+6f8C18S9/KP+lb+6d8G/+0T/TP+Lb+Wd/O/8O398/5Dv5539G/4Dv5zr6Lf9F39S/5br67T/I9fE//su/le/s+vq/v51/x/f2rfoB/zSf7gX6Qf90P9m/4If5NP9QP88Nj3vIjLl0iw1if4sf58f5tP8G/4yf6SX6yn+JT/VQ/zb/rp/sZfqZ/z8/y7/vZfo6f6+f5NP+Bn+8X+HT/oV/oP/IZftGlm8p+uV/hV/pVfrVf49f6dX693+A3+k1+s9/it/ptfrv/2O/wn/idfpff7T/1e/xnfq//3O/zX/j9/kuf6b/yB/zX/qD/xh/y3/rD/jt/xB/1x/z3/rj/wZ/wJ/0pf9qf8T/6s/4nf45/Z40xxhhj7C8Zd7kpft1z4XZ+jz/IEb/YuScAXL0lf+Yv+8+vKNfmudDuLeJbRwDgme4dH760VamSlJR0cd8MCUHhOQCX/ifovBi4HC+CVvAUJEJLKPmH8+8tOp+hfzJ+9DaAHL/IiYXL8eXxPwfApD8Y//Enh88vE56K+3+MPwegaOHLOdnhcrwIWv18f6UllPqT+edt/sv5x/5+/OxfpAC0+EVOTrgcX55/AjwBz0Lir/ZkjDHGGGOMMcYu6C3Kt790/XnpJz7/6Po8Xl3OyQaX4392fc4YY4wxxhhjjLEr77nOXZ5+PDGxZft/vVHp/yvrLzcawv/UyNz4w4b3AJceUQDwbw4IcL4h/5PPYtN/5FjJF0+d33YtPe0D+N9RSvwbzp0r/MHEGGOMMcYY+9tdXvT/+nF1pSbEGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xlQf+Jv0Z2pZ8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9nwAAAP//+BMB0A==")
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x0, 0x1)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0)

5m39.923261728s ago: executing program 2 (id=5862):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000180)=0x15)
writev(r0, &(0x7f0000000640)=[{&(0x7f0000000240)="e67c", 0x2}], 0x1)

5m39.443987314s ago: executing program 2 (id=5865):
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0xc, 0xb})
r0 = syz_open_dev$radio(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f911, 0x8000, '\x00', @string=&(0x7f00000000c0)}})

5m38.983095785s ago: executing program 50 (id=5865):
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0xc, 0xb})
r0 = syz_open_dev$radio(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f911, 0x8000, '\x00', @string=&(0x7f00000000c0)}})

2m5.647948144s ago: executing program 6 (id=8177):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x1000001, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, &(0x7f0000000040)={0x2, 0x4, 0x7fffffff}, 0xc)

2m5.310601382s ago: executing program 6 (id=8183):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./bus\x00', 0x20008c0, &(0x7f0000000240)={[{@iocharset={'iocharset', 0x3d, 'euc-jp'}}, {@shortname_mixed}, {@shortname_lower}, {@fat=@codepage={'codepage', 0x3d, '864'}}, {@fat=@check_strict}, {@shortname_lower}, {@utf8no}, {@shortname_winnt}, {@shortname_lower}, {@utf8}, {@fat=@dmask={'dmask', 0x3d, 0x4}}, {@uni_xlate}, {@utf8}, {@uni_xlate}]}, 0x80, 0x350, &(0x7f0000000580)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

2m4.136716107s ago: executing program 6 (id=8196):
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000680)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x100cc9a, &(0x7f0000000080)=ANY=[@ANYRES32=0x0], 0x1, 0x2af, &(0x7f0000000240)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r0, r0, 0x0, 0x7)

2m3.680390466s ago: executing program 6 (id=8201):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000140)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@i_version}, {@user_xattr}, {@lazytime}]}, 0x1, 0x445, &(0x7f0000000200)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file4\x00', 0x1018000, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000540), 0x10000, &(0x7f00000006c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file4'}}], [], 0x2c})

2m2.826053954s ago: executing program 6 (id=8210):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2m0.385088877s ago: executing program 6 (id=8236):
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000, 0x7})
r0 = getpid()
syz_clone3(&(0x7f0000000380)={0xb00000, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[r0], 0x1}, 0x58)

1m59.853171119s ago: executing program 51 (id=8236):
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000, 0x7})
r0 = getpid()
syz_clone3(&(0x7f0000000380)={0xb00000, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[r0], 0x1}, 0x58)

1m40.376465014s ago: executing program 1 (id=8392):
r0 = syz_io_uring_setup(0x48ba, &(0x7f0000000000)={0x0, 0xfffffffc, 0x1000, 0x0, 0x333}, &(0x7f0000000080), &(0x7f0000ff4000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r0, 0x1e, &(0x7f00000000c0)={r0}, 0x1)

1m39.668423702s ago: executing program 1 (id=8400):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x1200000, &(0x7f0000000240)={[{@nojournal_checksum}, {@nombcache}, {@acl}, {@init_itable}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x400}}, {@nodelalloc}, {@grpid}, {@usrquota}, {@nobarrier}, {@usrjquota}, {@jqfmt_vfsv1}]}, 0xff, 0x55c, &(0x7f0000000440)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)

1m38.981635329s ago: executing program 1 (id=8405):
r0 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000180)={<r1=>0xffffffffffffffff})
setsockopt$ax25_int(r1, 0x101, 0x7, 0x0, 0x0)

1m38.502308738s ago: executing program 1 (id=8410):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000001a00)=ANY=[@ANYBLOB='allow_utime=00000000000000000000302,namecase=1,errors=remount-ro,umask=00000000000000000000020,fmask=00000000000000000000005,iocharset=iso8859-14,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030000000002c646973636172642c7569643d020331dcd7706de469da08a27f989c2c8492e71601372cb14bdcaee57b93e3d030470bd060999c22775e7b5ed20cdc0d19238d47a5ad1a7e4bb598f5658bf54b4ca97cce85a6296d1725", @ANYRESHEX=0x0, @ANYBLOB=',allow_utime=00000000000000020000002,defcontext=user_u,obj_user=iocharset,\x00'], 0x1, 0x152a, &(0x7f0000000340)="$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")
chroot(&(0x7f0000000180)='./file0\x00')
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)

1m37.791078898s ago: executing program 1 (id=8416):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000007440), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000007580)={0x0, 0x0, &(0x7f0000007540)={&(0x7f0000007480)={0x50, r1, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bridge_slave_0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}]}]}, 0x50}}, 0x48040)

1m36.844190287s ago: executing program 1 (id=8424):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000400004803c0001800b00010065787468647200002c000280080007400000000c0500020000000000080003405700004a08000640000000", @ANYRES16], 0x94}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)

1m36.254274367s ago: executing program 52 (id=8424):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000400004803c0001800b00010065787468647200002c000280080007400000000c0500020000000000080003405700004a08000640000000", @ANYRES16], 0x94}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)

1m29.804138366s ago: executing program 3 (id=8471):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000700)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x6c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x30, 0x11, 0x0, 0x1, @cmp={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_CMP_DATA={0x10, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x9, 0x1, "cda5e7ddf5"}]}, @NFTA_CMP_OP={0x8}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x94}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

1m29.579336083s ago: executing program 3 (id=8473):
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x28000)
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)

1m29.342764482s ago: executing program 3 (id=8475):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x7, 0xa, &(0x7f0000000680)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x2c}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x4}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={r0, 0xe0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1, 0xfffffffffffffffc}}, 0x10)

1m29.237754351s ago: executing program 3 (id=8476):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800000, &(0x7f0000005f80)=ANY=[@ANYBLOB='nls=cp949,barrier,uid=', @ANYRESHEX=0x0, @ANYBLOB="000800139e6ec30b2b99f47f097f267d35dc81666a63e7768c00aeecc11e3d8dd215e24988d111429ce29e60b1481b4454b6c882e8b9de8fa5ff541d3f0470f9a71ac6e14f74c9c65ca943b2e922748c5955a3428550d6fdae754bea64db124b811d06bda34e3f366148a417d90f5120", @ANYBLOB="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", @ANYRES16, @ANYRESHEX, @ANYBLOB="2c6e6f626172726965722c00cd2c1a77bebe1941eb51308a0e1eefab7e5e16b355"], 0x1, 0x6bd, &(0x7f0000000cc0)="$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")
mkdir(&(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000240), 0x0, 0x0)

1m28.906550174s ago: executing program 3 (id=8477):
r0 = add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000005c0)={'syz', 0x1}, &(0x7f0000000980)='GZ', 0x2, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$chown(0x4, r0, 0x0, 0x0)

1m26.010496064s ago: executing program 3 (id=8488):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='oom_adj\x00')
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000140)='1', 0x1}], 0x1)
read$qrtrtun(r0, 0x0, 0x0)

1m25.442972943s ago: executing program 53 (id=8488):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='oom_adj\x00')
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000140)='1', 0x1}], 0x1)
read$qrtrtun(r0, 0x0, 0x0)

7.634389637s ago: executing program 7 (id=9147):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000400000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
unshare(0x26020280)
syz_clone3(&(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

7.290183827s ago: executing program 7 (id=9151):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

6.96271295s ago: executing program 7 (id=9154):
syz_usb_connect(0x0, 0x24, &(0x7f0000002b80)={{0x12, 0x1, 0x0, 0x8e, 0x45, 0x71, 0x40, 0x45e, 0x43d, 0xf35a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x6a}}]}}]}}, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

4.286942794s ago: executing program 9 (id=9190):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x50, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @key_params=[@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}], @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @key_params=[@NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}]]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

3.834561255s ago: executing program 7 (id=9194):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x19)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)

3.481063571s ago: executing program 9 (id=9198):
syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="120100004b41460860163209ea800102030109021e0001000000000904"], 0x0)
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x1, 0x40, 0x7, &(0x7f0000000080)={0x1f, "b30a69283a9587dfa6434e07f695f3984820a74426495306bbced9189f724c0546"}})
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000040)={&(0x7f0000000100)=[{0x63, 0x1000, 0x0, 0x0}, {0x0, 0x800, 0x0, 0x0}], 0x2})

3.220282951s ago: executing program 7 (id=9199):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x0})

2.963529441s ago: executing program 7 (id=9202):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
syz_usb_connect(0x0, 0x3d, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.857856341s ago: executing program 4 (id=9204):
r0 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1af}, &(0x7f0000000040)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x28}, 0x0, 0x4800, 0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x47f8, 0x0, 0x0, 0x0, 0x0)

2.474632617s ago: executing program 5 (id=9207):
r0 = syz_io_uring_setup(0x3ac6, &(0x7f00000001c0)={0x0, 0xfffffffd, 0x10100, 0x4, 0x37c}, &(0x7f0000000080), &(0x7f0000000100))
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x4})
io_uring_enter(r0, 0x92, 0x0, 0x0, 0x0, 0x0)

2.092621517s ago: executing program 0 (id=9208):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000005c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000600)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DISASSOCIATE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000700)={0x28, r1, 0xa52957411124feb5, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x28}, 0x1, 0x0, 0x0, 0x8800}, 0x4000000)

2.090077977s ago: executing program 4 (id=9209):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000440)={0x28, 0x7, r1, 0x0, &(0x7f0000000480)='LLLLLLLLLLLLLLLLLLLLLLLLLLLL', 0x1c, 0x2})
ioctl$IOMMU_IOAS_COPY(r0, 0x3b83, &(0x7f0000000680)={0x28, 0x4, r1, r1, 0x1c, 0x3, 0x2})

1.948026971s ago: executing program 9 (id=9210):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r1=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={r1, 0x23f}, &(0x7f00000000c0)=0x8)

1.876624262s ago: executing program 5 (id=9211):
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setreuid(0xffffffffffffffff, 0xee00)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000040)={'bridge0\x00', &(0x7f0000000100)=@ethtool_coalesce={0xf, 0x0, 0x6dd68c91, 0x6, 0x10, 0xfff, 0x0, 0xc0000000, 0x402, 0x3, 0x5, 0x7f, 0x3, 0x6, 0x7f, 0xfffffffc, 0x0, 0x800002, 0x80000000, 0x2, 0x1ff, 0xfffffff9, 0xc}})

1.732993167s ago: executing program 8 (id=9212):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000feffffff00000000000000001801000020646c3400000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000040000008500000006000000850000002300000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x727c45cd4283345, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

1.578102066s ago: executing program 9 (id=9213):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x0, 0x0, 0x7f000000}}}}]}, 0x78}}, 0x0)

1.563950832s ago: executing program 5 (id=9214):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x39, &(0x7f0000000580)={0x0, 0xe7b7, 0x13500}, &(0x7f0000000240), &(0x7f0000001880))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x21, &(0x7f0000000440), 0x1)

1.398226732s ago: executing program 8 (id=9215):
syz_mount_image$exfat(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x2, 0x1509, &(0x7f0000001c40)="$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")
truncate(&(0x7f0000000000)='./file1\x00', 0x5e00)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./bus/file0\x00', 0x80008, 0x0, 0x0, 0x0, &(0x7f0000000000))

1.397523725s ago: executing program 4 (id=9216):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0x10, 0x2, 0x6)
sendto$inet6(r1, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a0008000ac000000001", 0x1c, 0x0, 0x0, 0x0)

1.280034529s ago: executing program 5 (id=9217):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000180), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x5, 0x802, 0x0, {}, {0x77359400}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "cb7d302847bb1a28e8a4004b789607ed47df355645f2178a039ed508ff76df3536741848cc6cb65c6e77aad714472cb8856fcdd536f9d9655dcf800549436e96"}}, 0x80}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000380)={0x7, 0x0, 0x0, {0x77359400}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "b16df9f80fedfa09"}}, 0x48}}, 0x0)

1.093828402s ago: executing program 8 (id=9218):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081)
recvmsg(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000a00)=""/129, 0x81}], 0x1}, 0x40010000)
recvmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x40000002)

1.093505658s ago: executing program 4 (id=9219):
r0 = syz_open_dev$amidi(&(0x7f0000000140), 0x2, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0x40045731, &(0x7f0000000000))

1.093218362s ago: executing program 9 (id=9220):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000000), &(0x7f0000000180)=r1}, 0x20)

1.057518208s ago: executing program 5 (id=9221):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000580))
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f00000001c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0xff}]})
close(r0)

892.030335ms ago: executing program 4 (id=9222):
sendto$inet(0xffffffffffffffff, &(0x7f0000000100)="f4188a9876a9431deeb98e3edfaafa03a11300e3aebb4102000000000034c5d2af03a5f261a35c07d07d371a4402394549d78c3f511bb4793daf4b4e28410e598769487fb27044ece0b4e738bcc7e1ce3aa7a3df2572a082809f406467bc0f0b47872a2ecc399861b90da1ffcfb35a8f5579b72e3cde817a2a78ff205c6fee57f9177bbe", 0x84, 0x4040004, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000a000000380003801400020076657468305f766972745f776966690006"], 0x4c}}, 0x0)

891.721907ms ago: executing program 9 (id=9223):
r0 = semget$private(0x0, 0x4000000009, 0x0)
semop(r0, &(0x7f0000000040)=[{0x4, 0x1}, {0x4}], 0x2)
semop(r0, &(0x7f0000000080)=[{0x1, 0xffff, 0x1400}], 0x1)
semctl$GETNCNT(r0, 0x1, 0xe, 0x0)

808.025607ms ago: executing program 5 (id=9224):
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, 0x0)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file0\x00', 0x8c0, &(0x7f0000000140)={[{@nointr}, {@inode64}, {@coherency_buffered}, {@heartbeat_none}, {@journal_async_commit}, {@localflocks}, {@atime_quantum={'atime_quantum', 0x3d, 0x2fcb}}, {@data_writeback}, {@err_cont}]}, 0x9, 0x443c, &(0x7f00000098c0)="$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")
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83)
write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000100)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0x10)

740.480383ms ago: executing program 4 (id=9225):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x18)

664.06433ms ago: executing program 0 (id=9226):
r0 = syz_io_uring_setup(0x445e, &(0x7f0000000080)={0x0, 0x5f3f, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x2, 0x1, 0xffffffffffffffff, &(0x7f0000000200), 0x0, 0x0, 0x0, 0x1, {0x0, r3}})
io_uring_enter(r0, 0x291c, 0x0, 0x0, 0x0, 0x0)

656.595235ms ago: executing program 8 (id=9227):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000200), 0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x22051, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000020000000000000000000005ff070100000000000000000d"], &(0x7f0000000f40)=""/4089, 0x32, 0xff9, 0x6, 0x7ff}, 0x28)

580.727446ms ago: executing program 0 (id=9228):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r0, 0xfffffffe)
connect$vsock_stream(r0, 0x0, 0x0)

436.114731ms ago: executing program 8 (id=9229):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

431.464203ms ago: executing program 0 (id=9230):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.kill\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x44)

218.32405ms ago: executing program 0 (id=9231):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, 0x0, &(0x7f0000000080)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x27}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, 0x0, &(0x7f0000000080))

147.851593ms ago: executing program 8 (id=9232):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r0, &(0x7f00000004c0)='W', 0x1, 0x4, &(0x7f0000000100)={0xa, 0x0, 0x3, @loopback, 0x8}, 0x1c)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000040)={0x8, 0x201, 0x9, 0x3}, &(0x7f0000000080)=0x10)

0s ago: executing program 0 (id=9233):
getgroups(0x3, &(0x7f00000028c0)=[0xee01, <r0=>0xee01, <r1=>0xee00])
setresgid(r1, r0, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$netlink(r2, &(0x7f0000006640)={0x0, 0x0, &(0x7f0000006000)=[{&(0x7f00000039c0)={0x10, 0xc20, 0x2, 0x70bd28, 0x25dfdbfc}, 0x10}], 0x1, &(0x7f0000006500)=[@cred={{0x1c}}], 0x20, 0x4000004}, 0x40)

kernel console output (not intermixed with test programs):

 symlink '../../loop5' '/dev/disk/by-diskseq/2154.tmp-b7:5' failed: Read-only file system
[ 1138.471904][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2154.tmp-b7:5' failed: Read-only file system
[ 1138.480295][T24067] udevd[24067]: symlink '../../loop3' '/dev/disk/by-diskseq/2140.tmp-b7:3' failed: Read-only file system
[ 1138.722399][T24069] udevd[24069]: symlink '../../loop3' '/dev/disk/by-diskseq/2140.tmp-b7:3' failed: Read-only file system
[ 1138.742120][T28081] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1138.746836][T16469] usb 6-1: new full-speed USB device number 16 using dummy_hcd
[ 1138.841696][T24069] udevd[24069]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:9' failed: Read-only file system
[ 1138.851798][T28656] loop3: detected capacity change from 0 to 1024
[ 1138.921122][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2153.tmp-b7:9' failed: Read-only file system
[ 1138.925999][T16469] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1138.971624][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2153.tmp-b7:9' failed: Read-only file system
[ 1138.988106][T16469] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1139.012151][T16469] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2c24, bcdDevice= 0.00
[ 1139.051070][T16469] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1139.093099][T21661] hfsplus: bad catalog entry type
[ 1139.101756][T16469] usb 6-1: config 0 descriptor??
[ 1139.272623][   T13] hfsplus: b-tree write err: -5, ino 4
[ 1139.298188][T18191] Bluetooth: hci3: command tx timeout
[ 1139.484914][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1139.556504][T16469] pyra 0003:1E7D:2C24.0035: unknown main item tag 0x0
[ 1139.598690][T16469] pyra 0003:1E7D:2C24.0035: hidraw0: USB HID v0.00 Device [HID 1e7d:2c24] on usb-dummy_hcd.5-1/input0
[ 1139.791319][ T5929] usb 6-1: USB disconnect, device number 16
[ 1140.129104][ T6963] team0 (unregistering): Port device team_slave_1 removed
[ 1140.229400][ T6963] team0 (unregistering): Port device team_slave_0 removed
[ 1140.233310][T28662] loop0: detected capacity change from 0 to 32768
[ 1140.509307][T28666] loop0: detected capacity change from 0 to 256
[ 1140.583883][T28666] FAT-fs (loop0): Directory bread(block 64) failed
[ 1140.608066][T28666] FAT-fs (loop0): Directory bread(block 65) failed
[ 1140.646682][T28666] FAT-fs (loop0): Directory bread(block 66) failed
[ 1140.653240][T28666] FAT-fs (loop0): Directory bread(block 67) failed
[ 1140.692053][T28666] FAT-fs (loop0): Directory bread(block 68) failed
[ 1140.719128][T28666] FAT-fs (loop0): Directory bread(block 69) failed
[ 1140.739988][T16469] kernel write not supported for file /vcsu (pid: 16469 comm: kworker/0:0)
[ 1140.755100][T28666] FAT-fs (loop0): Directory bread(block 70) failed
[ 1140.765904][T28666] FAT-fs (loop0): Directory bread(block 71) failed
[ 1140.772567][T28666] FAT-fs (loop0): Directory bread(block 72) failed
[ 1140.807549][T28666] FAT-fs (loop0): Directory bread(block 73) failed
[ 1140.939776][T28666] syz.0.8479: attempt to access beyond end of device
[ 1140.939776][T28666] loop0: rw=2051, sector=1224, nr_sectors = 64 limit=256
[ 1141.378254][T18191] Bluetooth: hci3: command tx timeout
[ 1141.735607][T28573] chnl_net:caif_netlink_parms(): no params data found
[ 1142.168504][T28683] loop5: detected capacity change from 0 to 64
[ 1142.549989][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1142.655475][T28573] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1142.698489][T28573] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1142.723529][T28573] bridge_slave_0: entered allmulticast mode
[ 1142.777920][T28573] bridge_slave_0: entered promiscuous mode
[ 1142.812852][T28573] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1142.822539][T28573] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1142.864083][T28573] bridge_slave_1: entered allmulticast mode
[ 1142.888048][T28573] bridge_slave_1: entered promiscuous mode
[ 1143.202207][T28573] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1143.290535][T28573] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1143.371195][T28679] loop9: detected capacity change from 0 to 32768
[ 1143.380623][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2163.tmp-b7:5' failed: Read-only file system
[ 1143.410060][T28679] XFS: noikeep mount option is deprecated.
[ 1143.510753][T28679] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1143.548960][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2163.tmp-b7:5' failed: Read-only file system
[ 1143.680090][T28573] team0: Port device team_slave_0 added
[ 1143.705358][T24067] udevd[24067]: symlink '../../loop9' '/dev/disk/by-diskseq/2164.tmp-b7:9' failed: Read-only file system
[ 1143.728729][T28573] team0: Port device team_slave_1 added
[ 1143.765086][T24067] udevd[24067]: symlink '../../loop9' '/dev/disk/by-uuid/c496e05e-540d-4c72-b591-04d79d8b4eeb.tmp-b7:9' failed: Read-only file system
[ 1143.774857][T28689] loop0: detected capacity change from 0 to 32768
[ 1143.829983][ T5861] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1143.843129][ T5861] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1143.856570][ T5861] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1143.865419][T28689] XFS: ikeep mount option is deprecated.
[ 1143.871416][T28679] XFS (loop9): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[ 1143.882840][ T5915] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1143.896733][ T5861] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1143.905458][ T5861] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1143.962325][T28679] XFS (loop9): Starting recovery (logdev: internal)
[ 1143.981871][T28573] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1143.990513][T28573] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1144.016470][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1144.025265][T28573] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1144.048112][T28573] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1144.055138][T28573] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1144.081193][ T5915] usb 6-1: Using ep0 maxpacket: 8
[ 1144.109552][T28573] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1144.118395][ T5915] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1144.142612][T28679] XFS (loop9): Ending recovery (logdev: internal)
[ 1144.178681][T28689] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1144.196275][ T5915] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1144.210718][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2164.tmp-b7:9' failed: Read-only file system
[ 1144.246732][ T5915] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1144.268377][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-uuid/c496e05e-540d-4c72-b591-04d79d8b4eeb.tmp-b7:9' failed: Read-only file system
[ 1144.275948][ T5915] usb 6-1: New USB device found, idVendor=172f, idProduct=0501, bcdDevice= 0.00
[ 1144.296874][ T5915] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1144.310327][T24067] udevd[24067]: symlink '../../loop0' '/dev/disk/by-diskseq/2165.tmp-b7:0' failed: Read-only file system
[ 1144.312416][ T5915] usb 6-1: config 0 descriptor??
[ 1144.359149][T24067] udevd[24067]: symlink '../../loop0' '/dev/disk/by-uuid/c496e05e-540d-4c72-b591-04d79d8b4eeb.tmp-b7:0' failed: Read-only file system
[ 1144.376849][T28689] XFS (loop0): Ending clean mount
[ 1144.451234][T28689] XFS (loop0): Quotacheck needed: Please wait.
[ 1144.508217][T28081] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1144.582729][T28689] XFS (loop0): Quotacheck: Done.
[ 1144.640290][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2165.tmp-b7:0' failed: Read-only file system
[ 1144.665316][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-uuid/c496e05e-540d-4c72-b591-04d79d8b4eeb.tmp-b7:0' failed: Read-only file system
[ 1144.769305][T22379] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1144.785329][ T5915] waltop 0003:172F:0501.0036: unknown main item tag 0x0
[ 1144.802799][ T5915] waltop 0003:172F:0501.0036: hidraw0: USB HID v0.00 Device [HID 172f:0501] on usb-dummy_hcd.5-1/input0
[ 1144.948589][ T6963] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1145.115145][ T5915] usb 6-1: USB disconnect, device number 17
[ 1145.178091][T28718] fido_id[28718]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/6-1/report_descriptor': No such file or directory
[ 1145.321573][T28573] hsr_slave_0: entered promiscuous mode
[ 1145.334522][T28573] hsr_slave_1: entered promiscuous mode
[ 1145.381934][T28573] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1145.406804][T28573] Cannot create hsr debugfs directory
[ 1145.557145][ T6963] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1145.783496][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1145.879034][ T6963] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1146.006993][ T5861] Bluetooth: hci2: command tx timeout
[ 1146.056075][ T5915] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[ 1146.117332][ T6963] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1146.215864][ T5915] usb 6-1: Using ep0 maxpacket: 8
[ 1146.227993][ T5915] usb 6-1: New USB device found, idVendor=1d34, idProduct=000a, bcdDevice= 0.00
[ 1146.250525][ T5915] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1146.271493][T28722] loop9: detected capacity change from 0 to 32768
[ 1146.287640][ T5915] usb 6-1: config 0 descriptor??
[ 1146.594268][T28737] loop0: detected capacity change from 0 to 512
[ 1146.631564][T28737] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1146.692579][T28737] EXT4-fs (loop0): 1 truncate cleaned up
[ 1146.740972][T28737] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1146.930879][ T5915] hid-led 0003:1D34:000A.0037: hidraw0: USB HID v80.00 Device [HID 1d34:000a] on usb-dummy_hcd.5-1/input0
[ 1147.005499][ T5915] hid-led 0003:1D34:000A.0037: Dream Cheeky Webmail Notifier initialized
[ 1147.155275][ T5915] usb 6-1: USB disconnect, device number 18
[ 1147.223340][T28706] chnl_net:caif_netlink_parms(): no params data found
[ 1147.465509][    C0] IPv4: Oversized IP packet from 172.20.20.24
[ 1147.473368][T22379] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1147.533261][ T6963] bridge_slave_1: left allmulticast mode
[ 1147.564583][ T6963] bridge_slave_1: left promiscuous mode
[ 1147.594642][ T6963] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1147.670977][ T6963] bridge_slave_0: left allmulticast mode
[ 1147.685172][T28758] netlink: 104 bytes leftover after parsing attributes in process `syz.0.8510'.
[ 1147.695211][ T6963] bridge_slave_0: left promiscuous mode
[ 1147.715722][ T6963] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1147.825435][T28760] vcan0: tx drop: invalid da for name 0x0000000000000002
[ 1148.096343][ T5861] Bluetooth: hci2: command tx timeout
[ 1148.405428][ T5929] kernel write not supported for file /45/net/snmp6 (pid: 5929 comm: kworker/1:4)
[ 1148.516916][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2170.tmp-b7:9' failed: Read-only file system
[ 1148.856752][ T6963] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1148.867970][ T6963] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1148.879427][ T6963] bond0 (unregistering): Released all slaves
[ 1148.935920][T28768] netlink: 'syz.0.8516': attribute type 6 has an invalid length.
[ 1149.030877][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2163.tmp-b7:5' failed: Read-only file system
[ 1149.194149][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2171.tmp-b7:0' failed: Read-only file system
[ 1149.246917][T24067] udevd[24067]: symlink '../../loop5' '/dev/disk/by-diskseq/2163.tmp-b7:5' failed: Read-only file system
[ 1149.316452][T28706] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1149.346301][T28706] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1149.355597][T28706] bridge_slave_0: entered allmulticast mode
[ 1149.393064][T28706] bridge_slave_0: entered promiscuous mode
[ 1149.414393][T28706] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1149.447192][T28706] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1149.476842][T28706] bridge_slave_1: entered allmulticast mode
[ 1149.494022][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2171.tmp-b7:0' failed: Read-only file system
[ 1149.526488][T28706] bridge_slave_1: entered promiscuous mode
[ 1149.555677][T24067] udevd[24067]: symlink '../../loop9' '/dev/disk/by-diskseq/2170.tmp-b7:9' failed: Read-only file system
[ 1149.773901][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2171.tmp-b7:0' failed: Read-only file system
[ 1149.860506][T28706] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1149.892213][T28706] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1149.960343][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2171.tmp-b7:0' failed: Read-only file system
[ 1149.975901][ T6963] hsr_slave_0: left promiscuous mode
[ 1149.986080][ T6963] hsr_slave_1: left promiscuous mode
[ 1149.996636][ T6963] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1150.023187][ T6963] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1150.031812][ T6963] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1150.040527][ T6963] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1150.101384][ T6963] veth1_macvtap: left promiscuous mode
[ 1150.115160][ T6963] veth0_macvtap: left promiscuous mode
[ 1150.132201][ T6963] veth1_vlan: left promiscuous mode
[ 1150.150402][ T6963] veth0_vlan: left promiscuous mode
[ 1150.166109][ T5861] Bluetooth: hci2: command tx timeout
[ 1150.200699][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2171.tmp-b7:0' failed: Read-only file system
[ 1150.248098][T24067] udevd[24067]: symlink '../../loop5' '/dev/disk/by-diskseq/2163.tmp-b7:5' failed: Read-only file system
[ 1150.936994][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1151.901249][T28831] input: syz0 as /devices/virtual/input/input31
[ 1152.070707][T28837] loop5: detected capacity change from 0 to 512
[ 1152.190951][T28837] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1152.226914][T28837] ext4 filesystem being mounted at /401/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1152.248067][ T5861] Bluetooth: hci2: command tx timeout
[ 1152.419528][T22214] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1152.583440][T28849] netlink: 24 bytes leftover after parsing attributes in process `syz.9.8550'.
[ 1152.837051][ T6963] team0 (unregistering): Port device team_slave_1 removed
[ 1152.920059][ T6963] team0 (unregistering): Port device team_slave_0 removed
[ 1153.501085][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1153.752633][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2173.tmp-b7:5' failed: Read-only file system
[ 1153.789009][T28706] team0: Port device team_slave_0 added
[ 1153.799274][T24067] udevd[24067]: symlink '../../loop0' '/dev/disk/by-diskseq/2171.tmp-b7:0' failed: Read-only file system
[ 1153.880238][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2170.tmp-b7:9' failed: Read-only file system
[ 1153.895709][T28706] team0: Port device team_slave_1 added
[ 1154.065015][T24067] udevd[24067]: symlink '../../loop0' '/dev/disk/by-diskseq/2171.tmp-b7:0' failed: Read-only file system
[ 1154.089784][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2173.tmp-b7:5' failed: Read-only file system
[ 1154.113133][T28573] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1154.161787][T28573] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1154.260475][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2170.tmp-b7:9' failed: Read-only file system
[ 1154.268646][T28706] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1154.284825][T28706] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1154.313731][T28706] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1154.327888][T28706] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1154.334936][T28706] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1154.368363][T28706] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1154.436665][T28573] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1154.444921][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2173.tmp-b7:5' failed: Read-only file system
[ 1154.490050][T28573] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1154.575698][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2170.tmp-b7:9' failed: Read-only file system
[ 1154.675179][T28706] hsr_slave_0: entered promiscuous mode
[ 1154.682395][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2171.tmp-b7:0' failed: Read-only file system
[ 1154.719948][T24067] udevd[24067]: symlink '../../loop5' '/dev/disk/by-diskseq/2173.tmp-b7:5' failed: Read-only file system
[ 1154.737111][T28706] hsr_slave_1: entered promiscuous mode
[ 1154.764347][T28706] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1154.790440][T28706] Cannot create hsr debugfs directory
[ 1154.878753][T28881] loop0: detected capacity change from 0 to 4096
[ 1155.054222][ T6963] IPVS: stop unused estimator thread 0...
[ 1155.192462][T28891] loop9: detected capacity change from 0 to 256
[ 1155.869080][T28573] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1155.936492][T28907] Falling back ldisc for ptm0.
[ 1156.150075][T28573] 8021q: adding VLAN 0 to HW filter on device team0
[ 1156.185167][T28895] loop5: detected capacity change from 0 to 32768
[ 1156.207842][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1156.215095][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1156.235670][T28895] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8568 (28895)
[ 1156.252412][T28915] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[ 1156.252412][T28915] The task syz.7.8576 (28915) triggered the difference, watch for misbehavior.
[ 1156.294589][T28895] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1156.313373][ T1104] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1156.320625][ T1104] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1156.351209][T28895] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[ 1156.381937][T28895] BTRFS info (device loop5): using free-space-tree
[ 1156.732420][T22214] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1157.019377][T28706] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1157.231678][T28706] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1157.320776][T28706] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1157.479106][T28706] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1157.665551][T28573] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1157.903974][T28964] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8584'.
[ 1158.145328][T28706] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1158.251979][T28706] 8021q: adding VLAN 0 to HW filter on device team0
[ 1158.318282][ T6925] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1158.325544][ T6925] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1158.407364][ T6925] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1158.414714][ T6925] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1158.841390][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2177.tmp-b7:9' failed: Read-only file system
[ 1159.378604][T28573] veth0_vlan: entered promiscuous mode
[ 1159.404062][T28573] veth1_vlan: entered promiscuous mode
[ 1159.436897][T28573] veth0_macvtap: entered promiscuous mode
[ 1159.448006][T28573] veth1_macvtap: entered promiscuous mode
[ 1159.472150][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2179.tmp-b7:5' failed: Read-only file system
[ 1159.588376][T28573] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1159.605273][T28573] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1159.620291][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2177.tmp-b7:9' failed: Read-only file system
[ 1159.665214][T28970] loop0: detected capacity change from 0 to 32768
[ 1159.685665][T28573] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.719977][T28573] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.741702][T28573] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.748379][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2179.tmp-b7:5' failed: Read-only file system
[ 1159.750781][T28970] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.8586 (28970)
[ 1159.800950][T28573] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.839341][T28970] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1159.848481][T28991] netlink: 'syz.7.8593': attribute type 10 has an invalid length.
[ 1159.910406][T28970] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[ 1159.911294][T28991] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1159.962729][T28970] BTRFS info (device loop0): using free-space-tree
[ 1160.050685][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2177.tmp-b7:9' failed: Read-only file system
[ 1160.145301][T28706] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1160.167950][T24067] udevd[24067]: symlink '../../loop0' '/dev/disk/by-diskseq/2180.tmp-b7:0' failed: Read-only file system
[ 1160.203411][T24067] udevd[24067]: symlink '../../loop0' '/dev/disk/by-uuid/395ef67a-297e-477c-816d-cd80a5b93e5d.tmp-b7:0' failed: Read-only file system
[ 1160.220661][T24068] udevd[24068]: symlink '../../loop5' '/dev/disk/by-diskseq/2179.tmp-b7:5' failed: Read-only file system
[ 1160.380543][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1160.436953][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1160.504659][T24070] udevd[24070]: symlink '../../loop9' '/dev/disk/by-diskseq/2177.tmp-b7:9' failed: Read-only file system
[ 1160.573668][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1160.630529][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1160.645564][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2179.tmp-b7:5' failed: Read-only file system
[ 1160.714768][T22379] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1160.784651][T29025] loop5: detected capacity change from 0 to 1024
[ 1160.886158][ T6004] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[ 1160.911919][T29025] hfsplus: bad catalog entry type
[ 1161.078655][ T6004] usb 10-1: Using ep0 maxpacket: 32
[ 1161.106694][   T12] hfsplus: b-tree write err: -5, ino 4
[ 1161.123420][ T6004] usb 10-1: config 0 has an invalid interface number: 51 but max is 0
[ 1161.136083][ T6004] usb 10-1: config 0 has no interface number 0
[ 1161.197855][ T6004] usb 10-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1161.215831][ T6004] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1161.235853][ T6004] usb 10-1: Product: syz
[ 1161.240247][ T6004] usb 10-1: Manufacturer: syz
[ 1161.269903][ T6004] usb 10-1: SerialNumber: syz
[ 1161.333542][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1161.389395][ T6004] usb 10-1: config 0 descriptor??
[ 1161.413181][ T6004] quatech2 10-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1161.456846][T29037] program syz.5.8602 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1161.498689][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1161.629509][ T6004] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1161.652978][T28706] veth0_vlan: entered promiscuous mode
[ 1161.717601][ T6004] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1161.749197][T28706] veth1_vlan: entered promiscuous mode
[ 1161.937917][T28706] veth0_macvtap: entered promiscuous mode
[ 1161.969120][T28706] veth1_macvtap: entered promiscuous mode
[ 1162.039852][    C1] usb 10-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1162.049155][ T6004] usb 10-1: USB disconnect, device number 16
[ 1162.062130][T28706] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1162.089827][ T6004] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1162.134315][T28706] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1162.150694][ T6004] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1162.171174][ T6004] quatech2 10-1:0.51: device disconnected
[ 1162.179516][T29048] loop5: detected capacity change from 0 to 64
[ 1162.234895][T28706] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1162.241020][   T30] audit: type=1800 audit(1753057490.155:367): pid=29048 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.8609" name="file2" dev="loop5" ino=19 res=0 errno=0
[ 1162.283544][T28706] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1162.345961][T28706] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1162.354743][T28706] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1162.721518][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1162.750269][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1162.828971][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1162.844592][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1163.324704][T29078] loop5: detected capacity change from 0 to 4096
[ 1163.370555][T29078] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1163.413311][T29078] Quota error (device loop5): do_check_range: Getting block 7 out of range 1-5
[ 1163.445629][T29078] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[ 1163.473203][T29078] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.8621: Failed to acquire dquot type 1
[ 1163.591350][T22214] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1163.967471][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2177.tmp-b7:9' failed: Read-only file system
[ 1164.080749][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2177.tmp-b7:9' failed: Read-only file system
[ 1164.183646][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2177.tmp-b7:9' failed: Read-only file system
[ 1164.238623][T29099] vlan2: entered allmulticast mode
[ 1164.370444][T24069] udevd[24069]: symlink '../../loop8' '/dev/disk/by-diskseq/2187.tmp-b7:8' failed: Read-only file system
[ 1164.449349][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2177.tmp-b7:9' failed: Read-only file system
[ 1164.597541][T29104] loop9: detected capacity change from 0 to 4096
[ 1164.708764][   T30] audit: type=1800 audit(1753057492.645:368): pid=29104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.8632" name="file1" dev="loop9" ino=30 res=0 errno=0
[ 1164.841238][T24067] udevd[24067]: symlink '../../loop5' '/dev/disk/by-diskseq/2189.tmp-b7:5' failed: Read-only file system
[ 1164.910921][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2190.tmp-b7:9' failed: Read-only file system
[ 1164.944143][T24067] udevd[24067]: symlink '../../loop8' '/dev/disk/by-diskseq/2187.tmp-b7:8' failed: Read-only file system
[ 1164.979509][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-label/syzkaller.tmp-b7:9' failed: Read-only file system
[ 1165.027660][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:9' failed: Read-only file system
[ 1165.435940][ T5922] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[ 1165.569367][T29131] loop8: detected capacity change from 0 to 128
[ 1165.616927][ T5922] usb 10-1: Using ep0 maxpacket: 32
[ 1165.628718][ T5922] usb 10-1: config 0 has no interfaces?
[ 1165.646937][T29131] EXT4-fs: Ignoring removed nobh option
[ 1165.653174][ T5922] usb 10-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[ 1165.686735][ T5922] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1165.694978][ T5922] usb 10-1: Product: syz
[ 1165.727484][ T5922] usb 10-1: Manufacturer: syz
[ 1165.732297][ T5922] usb 10-1: SerialNumber: syz
[ 1165.758950][ T5922] usb 10-1: config 0 descriptor??
[ 1165.785954][T29131] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1165.877881][T29131] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1165.945723][T29131] fscrypt (loop8, inode 12): Sub-block data units not yet supported with IV_INO_LBLK_32
[ 1166.018320][ T5922] usb 10-1: USB disconnect, device number 17
[ 1166.068822][T28706] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1166.719817][T29134] loop4: detected capacity change from 0 to 32768
[ 1166.753364][T29134] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8646 (29134)
[ 1166.810551][T29134] BTRFS info (device loop4): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[ 1166.847675][T29134] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[ 1166.899301][T29134] BTRFS info (device loop4): using free-space-tree
[ 1167.537577][T28573] BTRFS info (device loop4): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[ 1167.699255][T29201] loop5: detected capacity change from 0 to 64
[ 1167.830148][T29201] hfs: small file entry
[ 1168.275180][T29213] binder: 29212:29213 ioctl 400c620e 200000000240 returned -22
[ 1168.502607][T29190] loop9: detected capacity change from 0 to 32768
[ 1168.539390][T29190] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.8661 (29190)
[ 1168.695287][T29190] BTRFS info (device loop9): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1168.725491][T29190] BTRFS info (device loop9): using blake2b (blake2b-256-generic) checksum algorithm
[ 1168.785874][T29190] BTRFS info (device loop9): using free-space-tree
[ 1168.983588][T29234] loop0: detected capacity change from 0 to 512
[ 1168.994525][T29196] loop8: detected capacity change from 0 to 32768
[ 1169.030844][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2197.tmp-b7:5' failed: Read-only file system
[ 1169.097122][T29196] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[ 1169.194841][T29234] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1169.293726][T29234] ext4 filesystem being mounted at /423/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1169.364718][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2199.tmp-b7:0' failed: Read-only file system
[ 1169.401518][T24068] udevd[24068]: symlink '../../loop4' '/dev/disk/by-diskseq/2196.tmp-b7:4' failed: Read-only file system
[ 1169.438926][T28706] ocfs2: Unmounting device (7,8) on (node local)
[ 1169.450612][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:0' failed: Read-only file system
[ 1169.452056][T18767] udevd[18767]: symlink '../../loop5' '/dev/disk/by-diskseq/2197.tmp-b7:5' failed: Read-only file system
[ 1169.502899][T28081] BTRFS info (device loop9): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1169.587632][T24067] udevd[24067]: symlink '../../loop8' '/dev/disk/by-diskseq/2200.tmp-b7:8' failed: Read-only file system
[ 1169.601678][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2199.tmp-b7:0' failed: Read-only file system
[ 1169.627860][T24067] udevd[24067]: symlink '../../loop8' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:8' failed: Read-only file system
[ 1169.702879][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:0' failed: Read-only file system
[ 1169.724733][T24067] udevd[24067]: symlink '../../loop8' '/dev/disk/by-diskseq/2200.tmp-b7:8' failed: Read-only file system
[ 1169.973652][T22379] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1170.921917][T29255] loop5: detected capacity change from 0 to 32768
[ 1171.780888][T29280] loop9: detected capacity change from 0 to 32768
[ 1171.831555][T29280] XFS: ikeep mount option is deprecated.
[ 1172.076423][T29280] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1172.299327][T29280] XFS (loop9): Ending clean mount
[ 1172.315062][T29280] XFS (loop9): Quotacheck needed: Please wait.
[ 1172.630664][T29280] XFS (loop9): Quotacheck: Done.
[ 1172.666929][T29283] loop4: detected capacity change from 0 to 65536
[ 1172.731458][T29283] XFS (loop4): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[ 1172.782594][T29294] loop0: detected capacity change from 0 to 32768
[ 1172.848335][T29283] XFS (loop4): Ending clean mount
[ 1172.876668][T29294] XFS (loop0): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[ 1172.900388][T29283] XFS (loop4): Quotacheck needed: Please wait.
[ 1172.968644][T28081] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1173.089844][T29283] XFS (loop4): Quotacheck: Done.
[ 1173.279621][T28573] XFS (loop4): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[ 1173.280969][T29294] XFS (loop0): Starting recovery (logdev: internal)
[ 1173.396195][T29294] XFS (loop0): Ending recovery (logdev: internal)
[ 1173.810975][T22379] XFS (loop0): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[ 1174.064104][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2208.tmp-b7:0' failed: Read-only file system
[ 1174.158504][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2208.tmp-b7:0' failed: Read-only file system
[ 1174.240973][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2211.tmp-b7:0' failed: Read-only file system
[ 1174.346888][T29307] loop8: detected capacity change from 0 to 40427
[ 1174.406023][T29307] F2FS-fs (loop8): build fault injection rate: 690
[ 1174.413274][T29307] F2FS-fs (loop8): Image doesn't support compression
[ 1174.475580][T29307] F2FS-fs (loop8): Image doesn't support compression
[ 1174.529883][T29307] F2FS-fs (loop8): invalid crc value
[ 1174.745345][T24069] udevd[24069]: symlink '../../loop8' '/dev/disk/by-diskseq/2212.tmp-b7:8' failed: Read-only file system
[ 1174.813346][T24069] udevd[24069]: symlink '../../loop8' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:8' failed: Read-only file system
[ 1174.854807][T24067] udevd[24067]: symlink '../../loop0' '/dev/disk/by-diskseq/2211.tmp-b7:0' failed: Read-only file system
[ 1174.888634][T24070] udevd[24070]: symlink '../../loop4' '/dev/disk/by-diskseq/2210.tmp-b7:4' failed: Read-only file system
[ 1174.931773][T29330] loop5: detected capacity change from 0 to 32768
[ 1174.953550][T29307] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1175.226731][T28706] syz-executor: attempt to access beyond end of device
[ 1175.226731][T28706] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1175.264505][T28706] CPU: 0 UID: 0 PID: 28706 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1175.264539][T28706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1175.264555][T28706] Call Trace:
[ 1175.264565][T28706]  <TASK>
[ 1175.264577][T28706]  dump_stack_lvl+0x189/0x250
[ 1175.264618][T28706]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1175.264647][T28706]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1175.264675][T28706]  ? __pfx_queue_work_on+0x10/0x10
[ 1175.264707][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.264736][T28706]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1175.264761][T28706]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1175.264788][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.264816][T28706]  ? f2fs_hw_is_readonly+0x39b/0x470
[ 1175.264850][T28706]  f2fs_handle_critical_error+0x37c/0x540
[ 1175.264885][T28706]  f2fs_write_end_io+0x495/0x810
[ 1175.264914][T28706]  ? blkg_put+0x22/0x240
[ 1175.264970][T28706]  __submit_merged_bio+0x27a/0x6a0
[ 1175.265004][T28706]  __submit_merged_write_cond+0x255/0x530
[ 1175.265063][T28706]  f2fs_write_data_pages+0x261d/0x3000
[ 1175.265093][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265162][T28706]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1175.265207][T28706]  ? arch_stack_walk+0xfc/0x150
[ 1175.265273][T28706]  ? __mod_zone_page_state+0xd7/0x140
[ 1175.265319][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265347][T28706]  ? folios_put_refs+0x560/0x640
[ 1175.265390][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265418][T28706]  ? __lock_acquire+0xab9/0xd20
[ 1175.265455][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265483][T28706]  ? do_raw_spin_lock+0x121/0x290
[ 1175.265527][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265560][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265589][T28706]  ? do_raw_spin_unlock+0x122/0x240
[ 1175.265627][T28706]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1175.265658][T28706]  do_writepages+0x32e/0x550
[ 1175.265698][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265735][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265764][T28706]  ? do_raw_spin_unlock+0x122/0x240
[ 1175.265805][T28706]  filemap_fdatawrite+0x191/0x230
[ 1175.265841][T28706]  ? __pfx_filemap_fdatawrite+0x10/0x10
[ 1175.265928][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.265962][T28706]  ? do_raw_spin_unlock+0x122/0x240
[ 1175.266004][T28706]  f2fs_sync_dirty_inodes+0x31f/0x830
[ 1175.266065][T28706]  f2fs_write_checkpoint+0x94a/0x1de0
[ 1175.266127][T28706]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1175.266217][T28706]  ? kill_f2fs_super+0x298/0x6c0
[ 1175.266256][T28706]  kill_f2fs_super+0x2c3/0x6c0
[ 1175.266297][T28706]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1175.266326][T28706]  ? radix_tree_delete_item+0x2b6/0x400
[ 1175.266361][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.266389][T28706]  ? shrinker_free+0x2ce/0x3e0
[ 1175.266419][T28706]  deactivate_locked_super+0xbc/0x130
[ 1175.266453][T28706]  cleanup_mnt+0x425/0x4c0
[ 1175.266481][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.266509][T28706]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1175.266540][T28706]  task_work_run+0x1d4/0x260
[ 1175.266584][T28706]  ? __pfx_task_work_run+0x10/0x10
[ 1175.266619][T28706]  ? __x64_sys_umount+0x122/0x160
[ 1175.266661][T28706]  ? exit_to_user_mode_loop+0x40/0x110
[ 1175.266692][T28706]  exit_to_user_mode_loop+0xec/0x110
[ 1175.266721][T28706]  do_syscall_64+0x2bd/0x3b0
[ 1175.266749][T28706]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1175.266776][T28706]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1175.266799][T28706]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1175.266827][T28706]  ? exc_page_fault+0x9f/0xf0
[ 1175.266856][T28706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1175.266881][T28706] RIP: 0033:0x7fbfcdf8fcd7
[ 1175.266902][T28706] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1175.266924][T28706] RSP: 002b:00007ffe19f626d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1175.266949][T28706] RAX: 0000000000000000 RBX: 00007fbfce010b55 RCX: 00007fbfcdf8fcd7
[ 1175.266966][T28706] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe19f62790
[ 1175.266982][T28706] RBP: 00007ffe19f62790 R08: 0000000000000000 R09: 0000000000000000
[ 1175.266999][T28706] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe19f63820
[ 1175.267015][T28706] R13: 00007fbfce010b55 R14: 000000000011ec6e R15: 00007ffe19f63860
[ 1175.267061][T28706]  </TASK>
[ 1175.701067][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2213.tmp-b7:5' failed: Read-only file system
[ 1175.715144][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-uuid/35307472-fd4b-42de-878f-83186a645fa6.tmp-b7:5' failed: Read-only file system
[ 1175.748054][T28706] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[ 1175.922817][T29343] loop0: detected capacity change from 0 to 32768
[ 1175.959763][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2213.tmp-b7:5' failed: Read-only file system
[ 1176.135395][T29343] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1176.154939][T29334] loop9: detected capacity change from 0 to 32768
[ 1176.163093][T29334] XFS: noikeep mount option is deprecated.
[ 1176.238755][T29334] XFS (loop9): filesystem is marked as having an internal log; do not specify logdev on the mount command line.
[ 1176.390158][T29343] XFS (loop0): Ending clean mount
[ 1176.484032][T29369] loop4: detected capacity change from 0 to 512
[ 1176.657792][T29369] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002]
[ 1176.780127][T29369] System zones: 0-2, 18-18, 34-35
[ 1176.832602][T22379] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1176.860460][T29369] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1176.978667][T29369] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1177.054474][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.071020][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.421753][T28573] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1177.581781][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1178.308860][T29405] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8735'.
[ 1179.109114][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2219.tmp-b7:9' failed: Read-only file system
[ 1179.140117][T29426] loop0: detected capacity change from 0 to 256
[ 1179.197585][T29426] exfat: Deprecated parameter 'namecase'
[ 1179.203382][T29426] exfat: Deprecated parameter 'namecase'
[ 1179.262540][T29426] exfat: Deprecated parameter 'namecase'
[ 1179.273799][T24067] udevd[24067]: symlink '../../loop8' '/dev/disk/by-diskseq/2218.tmp-b7:8' failed: Read-only file system
[ 1179.293879][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2222.tmp-b7:0' failed: Read-only file system
[ 1179.341498][T24070] udevd[24070]: symlink '../../loop9' '/dev/disk/by-diskseq/2219.tmp-b7:9' failed: Read-only file system
[ 1179.351827][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-uuid/1234-1234.tmp-b7:0' failed: Read-only file system
[ 1179.365189][T29426] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[ 1179.430113][T29426] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[ 1179.528922][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2222.tmp-b7:0' failed: Read-only file system
[ 1179.598845][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-uuid/1234-1234.tmp-b7:0' failed: Read-only file system
[ 1179.628020][T24067] udevd[24067]: symlink '../../loop9' '/dev/disk/by-diskseq/2219.tmp-b7:9' failed: Read-only file system
[ 1179.736862][T24069] udevd[24069]: symlink '../../loop8' '/dev/disk/by-diskseq/2218.tmp-b7:8' failed: Read-only file system
[ 1179.753341][T24067] udevd[24067]: symlink '../../loop1' '/dev/disk/by-uuid/1234-1234.tmp-b7:0' failed: Read-only file system
[ 1179.888248][T29439] loop0: detected capacity change from 0 to 16
[ 1179.937833][T29409] loop5: detected capacity change from 0 to 40427
[ 1179.958912][T29439] erofs (device loop0): mounted with root inode @ nid 36.
[ 1179.979213][T29409] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[ 1179.997925][T29409] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1180.047497][T29439] erofs (device loop0): corrupted dir block 0 @ nid 46
[ 1180.064435][T29409] F2FS-fs (loop5): invalid crc value
[ 1180.163757][T29412] loop4: detected capacity change from 0 to 40427
[ 1180.299796][T29412] F2FS-fs (loop4): invalid crc value
[ 1180.476298][T29409] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1180.518209][T29409] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1180.754072][T29460] loop0: detected capacity change from 0 to 64
[ 1180.757251][T29412] F2FS-fs (loop4): Start checkpoint disabled!
[ 1180.826230][T29412] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[ 1180.853148][   T30] audit: type=1800 audit(1753057508.785:369): pid=29460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.8758" name="file1" dev="loop0" ino=21 res=0 errno=0
[ 1180.986022][T29464] loop8: detected capacity change from 0 to 4096
[ 1181.026096][T29464] ntfs3(loop8): Different NTFS sector size (2048) and media sector size (512).
[ 1181.312473][ T1104] kworker/u8:6: attempt to access beyond end of device
[ 1181.312473][ T1104] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1181.394902][ T1104] CPU: 0 UID: 0 PID: 1104 Comm: kworker/u8:6 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1181.394941][ T1104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1181.394958][ T1104] Workqueue: writeback wb_workfn (flush-7:4)
[ 1181.394994][ T1104] Call Trace:
[ 1181.395004][ T1104]  <TASK>
[ 1181.395015][ T1104]  dump_stack_lvl+0x189/0x250
[ 1181.395053][ T1104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1181.395080][ T1104]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1181.395106][ T1104]  ? __pfx_queue_work_on+0x10/0x10
[ 1181.395138][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.395167][ T1104]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1181.395192][ T1104]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1181.395219][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.395246][ T1104]  ? f2fs_hw_is_readonly+0x39b/0x470
[ 1181.395281][ T1104]  f2fs_handle_critical_error+0x37c/0x540
[ 1181.395316][ T1104]  f2fs_write_end_io+0x495/0x810
[ 1181.395344][ T1104]  ? blkg_put+0x22/0x240
[ 1181.395399][ T1104]  __submit_merged_bio+0x27a/0x6a0
[ 1181.395423][ T1104]  ? up_write+0x1c4/0x420
[ 1181.395463][ T1104]  __submit_merged_write_cond+0x44c/0x530
[ 1181.395513][ T1104]  f2fs_sync_node_pages+0x1869/0x1a00
[ 1181.395551][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.395608][ T1104]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[ 1181.395647][ T1104]  ? __percpu_counter_sum+0x1c2/0x1e0
[ 1181.395714][ T1104]  ? rcu_is_watching+0x15/0xb0
[ 1181.395746][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.395772][ T1104]  ? blk_start_plug+0x52/0x1b0
[ 1181.395812][ T1104]  f2fs_write_node_pages+0x303/0x6e0
[ 1181.395860][ T1104]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 1181.395908][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.395945][ T1104]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 1181.395985][ T1104]  do_writepages+0x32e/0x550
[ 1181.396023][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.396050][ T1104]  ? reacquire_held_locks+0x127/0x1d0
[ 1181.396079][ T1104]  ? writeback_sb_inodes+0x372/0x1000
[ 1181.396124][ T1104]  __writeback_single_inode+0x145/0xff0
[ 1181.396156][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.396184][ T1104]  ? do_raw_spin_unlock+0x122/0x240
[ 1181.396225][ T1104]  writeback_sb_inodes+0x6b5/0x1000
[ 1181.396274][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.396317][ T1104]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1181.396401][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.396428][ T1104]  ? rcu_is_watching+0x15/0xb0
[ 1181.396457][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.396496][ T1104]  wb_writeback+0x43b/0xaf0
[ 1181.396538][ T1104]  ? queue_io+0x321/0x590
[ 1181.396574][ T1104]  ? __pfx_wb_writeback+0x10/0x10
[ 1181.396617][ T1104]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1181.396649][ T1104]  wb_workfn+0x409/0xef0
[ 1181.396695][ T1104]  ? __pfx_wb_workfn+0x10/0x10
[ 1181.396726][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.396754][ T1104]  ? __lock_acquire+0xab9/0xd20
[ 1181.396801][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.396832][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.396869][ T1104]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1181.396891][ T1104]  ? process_scheduled_works+0x9ef/0x17b0
[ 1181.396919][ T1104]  ? process_scheduled_works+0x9ef/0x17b0
[ 1181.396951][ T1104]  process_scheduled_works+0xae1/0x17b0
[ 1181.397016][ T1104]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1181.397054][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.397094][ T1104]  worker_thread+0x8a0/0xda0
[ 1181.397141][ T1104]  ? __kthread_parkme+0x7b/0x200
[ 1181.397185][ T1104]  kthread+0x711/0x8a0
[ 1181.397224][ T1104]  ? __pfx_worker_thread+0x10/0x10
[ 1181.397253][ T1104]  ? __pfx_kthread+0x10/0x10
[ 1181.397283][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.397316][ T1104]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1181.397339][ T1104]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1181.397367][ T1104]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1181.397391][ T1104]  ? __pfx_kthread+0x10/0x10
[ 1181.397428][ T1104]  ret_from_fork+0x3fc/0x770
[ 1181.397459][ T1104]  ? __pfx_ret_from_fork+0x10/0x10
[ 1181.397494][ T1104]  ? __switch_to_asm+0x39/0x70
[ 1181.397527][ T1104]  ? __switch_to_asm+0x33/0x70
[ 1181.397558][ T1104]  ? __pfx_kthread+0x10/0x10
[ 1181.397594][ T1104]  ret_from_fork_asm+0x1a/0x30
[ 1181.397648][ T1104]  </TASK>
[ 1181.899267][ T1104] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 1182.026395][T29482] loop0: detected capacity change from 0 to 2048
[ 1182.221006][T29482] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1182.331112][T29482] ext4 filesystem being mounted at /441/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1182.504039][T29482] tipc: Started in network mode
[ 1182.564401][T29482] tipc: Node identity 2dfb7700b7b736ab002e, cluster identity 4711
[ 1182.743621][T22379] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1182.755945][ T6854] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[ 1182.916139][ T6854] usb 10-1: Using ep0 maxpacket: 16
[ 1182.941510][ T6854] usb 10-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1182.976856][ T6854] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1182.998969][ T6854] usb 10-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[ 1183.035851][ T6854] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1183.076636][ T6854] usb 10-1: config 0 descriptor??
[ 1183.237230][T29511] loop4: detected capacity change from 0 to 256
[ 1183.261953][T29511] exfat: Deprecated parameter 'utf8'
[ 1183.448184][T29506] loop5: detected capacity change from 0 to 8192
[ 1183.522966][ T6854] logitech-djreceiver 0003:046D:C71B.0038: hidraw0: USB HID v0.05 Device [HID 046d:c71b] on usb-dummy_hcd.9-1/input0
[ 1183.535066][T29494] loop8: detected capacity change from 0 to 32768
[ 1183.614296][T29506] FAT-fs (loop5): error, clusters badly computed (1 != 0)
[ 1183.636088][T29506] FAT-fs (loop5): Filesystem has been set read-only
[ 1183.672169][T29516] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1183.698800][T29494] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1183.708228][T29524] FAT-fs (loop5): error, clusters badly computed (2 != 1)
[ 1183.729393][T29516] bond0: (slave bond1): Enslaving as an active interface with an up link
[ 1183.893543][T29494] XFS (loop8): Ending clean mount
[ 1183.928557][T16469] usb 10-1: USB disconnect, device number 18
[ 1184.149431][T28706] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1184.226947][T29537] dummy0: entered promiscuous mode
[ 1184.238361][T24068] udevd[24068]: symlink '../../loop8' '/dev/disk/by-diskseq/2238.tmp-b7:8' failed: Read-only file system
[ 1184.244131][T29537] macvtap1: entered promiscuous mode
[ 1184.262595][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2237.tmp-b7:5' failed: Read-only file system
[ 1184.276239][T24068] udevd[24068]: symlink '../../loop8' '/dev/disk/by-uuid/c496e05e-540d-4c72-b591-04d79d8b4eeb.tmp-b7:8' failed: Read-only file system
[ 1184.297962][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-label/SYZKALLER.tmp-b7:5' failed: Read-only file system
[ 1184.312389][T29537] macvtap1: entered allmulticast mode
[ 1184.359122][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-uuid/8AF3-4683.tmp-b7:5' failed: Read-only file system
[ 1184.370732][T29537] dummy0: entered allmulticast mode
[ 1184.420256][T24067] udevd[24067]: symlink '../../loop8' '/dev/disk/by-diskseq/2238.tmp-b7:8' failed: Read-only file system
[ 1184.491562][T24067] udevd[24067]: symlink '../../loop8' '/dev/disk/by-diskseq/2238.tmp-b7:8' failed: Read-only file system
[ 1184.515248][T29537] dummy0: left allmulticast mode
[ 1184.541694][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2237.tmp-b7:5' failed: Read-only file system
[ 1184.554392][T29537] dummy0: left promiscuous mode
[ 1184.605724][T24067] udevd[24067]: symlink '../../loop8' '/dev/disk/by-diskseq/2240.tmp-b7:8' failed: Read-only file system
[ 1184.634701][T24070] udevd[24070]: symlink '../../loop0' '/dev/disk/by-diskseq/2235.tmp-b7:0' failed: Read-only file system
[ 1185.064942][T29555] loop0: detected capacity change from 0 to 256
[ 1185.155979][T29554] wg2: entered promiscuous mode
[ 1185.166071][T29554] wg2: entered allmulticast mode
[ 1185.190469][   T30] audit: type=1800 audit(1753057513.125:370): pid=29555 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.8795" name="file1" dev="loop0" ino=1049260 res=0 errno=0
[ 1185.285015][T29555] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1185.327052][T29555] FAT-fs (loop0): Filesystem has been set read-only
[ 1185.350476][T29562] loop9: detected capacity change from 0 to 256
[ 1185.410190][T29562] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1185.485866][T29562] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[ 1185.542016][T29562] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1186.291405][T29564] loop8: detected capacity change from 0 to 32768
[ 1186.302414][T29564] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.8799 (29564)
[ 1186.338079][T29564] BTRFS info (device loop8): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1186.364443][T29564] BTRFS info (device loop8): using blake2b (blake2b-256-generic) checksum algorithm
[ 1186.391574][T29564] BTRFS info (device loop8): using free-space-tree
[ 1186.616218][T29574] loop4: detected capacity change from 0 to 32768
[ 1186.672621][T29574] JBD2: Ignoring recovery information on journal
[ 1186.807643][T29574] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1186.869886][T28706] BTRFS info (device loop8): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1187.280300][T28573] ocfs2: Unmounting device (7,4) on (node local)
[ 1187.344695][T29607] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8811'.
[ 1187.954809][T29616] loop0: detected capacity change from 0 to 512
[ 1188.047476][T29616] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1188.134923][T29616] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[ 1188.184877][T29625] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8819'.
[ 1188.228481][T29598] loop9: detected capacity change from 0 to 32768
[ 1188.235568][T29616] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[ 1188.286062][T29616] EXT4-fs (loop0): 1 truncate cleaned up
[ 1188.366607][T29616] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1188.452263][T29598] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1188.669846][T22379] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1188.698450][T29598] XFS (loop9): Ending clean mount
[ 1188.721803][T29598] XFS (loop9): Quotacheck needed: Please wait.
[ 1188.747962][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1188.765955][ T5922] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[ 1188.949878][ T5922] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1188.983820][T29598] XFS (loop9): Quotacheck: Done.
[ 1188.989072][ T5922] usb 9-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[ 1189.018703][ T5922] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1189.052543][ T5922] usb 9-1: config 0 descriptor??
[ 1189.267171][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2241.tmp-b7:5' failed: Read-only file system
[ 1189.281783][T28081] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1189.370747][T24069] udevd[24069]: symlink '../../loop0' '/dev/disk/by-diskseq/2252.tmp-b7:0' failed: Read-only file system
[ 1189.622202][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2250.tmp-b7:9' failed: Read-only file system
[ 1189.686849][ T5922] dragonrise 0003:0079:0006.0039: hidraw0: USB HID v0.00 Device [HID 0079:0006] on usb-dummy_hcd.8-1/input0
[ 1189.753412][ T5922] dragonrise 0003:0079:0006.0039: no inputs found
[ 1189.765313][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2250.tmp-b7:9' failed: Read-only file system
[ 1189.775124][T24070] udevd[24070]: symlink '../../loop5' '/dev/disk/by-diskseq/2241.tmp-b7:5' failed: Read-only file system
[ 1189.806885][ T5922] dragonrise 0003:0079:0006.0039: force feedback init failed
[ 1189.854344][ T7261] udevd[7261]: symlink '../../loop4' '/dev/disk/by-diskseq/2248.tmp-b7:4' failed: Read-only file system
[ 1189.884604][T24068] udevd[24068]: symlink '../../loop0' '/dev/disk/by-diskseq/2252.tmp-b7:0' failed: Read-only file system
[ 1189.903608][T24069] udevd[24069]: symlink '../../loop9' '/dev/disk/by-diskseq/2253.tmp-b7:9' failed: Read-only file system
[ 1189.967283][ T5922] usb 9-1: USB disconnect, device number 11
[ 1190.021010][T24070] udevd[24070]: symlink '../../loop5' '/dev/disk/by-diskseq/2241.tmp-b7:5' failed: Read-only file system
[ 1190.130618][T24069] udevd[24069]: symlink '../../loop4' '/dev/disk/by-diskseq/2248.tmp-b7:4' failed: Read-only file system
[ 1190.239089][T29661] fido_id[29661]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[ 1190.362027][T29668] loop4: detected capacity change from 0 to 4096
[ 1190.385870][T29668] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1190.545874][T29668] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1190.596001][T29668] ntfs3(loop4): ino=19, mi_enum_attr
[ 1190.666138][T29668] ntfs3(loop4): failed to convert "c46c" to iso8859-7
[ 1190.712415][T29668] ntfs3(loop4): ino=20, mi_enum_attr
[ 1190.767582][T29680] loop0: detected capacity change from 0 to 1024
[ 1190.844445][T29680] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1190.934425][T29680] ext4 filesystem being mounted at /458/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1191.037788][T22379] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1191.395976][   T43] usb 9-1: new full-speed USB device number 12 using dummy_hcd
[ 1191.577688][T29663] loop5: detected capacity change from 0 to 32768
[ 1191.605511][   T43] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1191.626125][   T43] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1191.646058][   T43] usb 9-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[ 1191.683426][   T43] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1191.731127][   T43] usb 9-1: config 0 descriptor??
[ 1192.015584][T29709] loop5: detected capacity change from 0 to 256
[ 1192.053953][T29709] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1192.226288][   T43] isku 0003:1E7D:319C.003A: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.8-1/input0
[ 1192.273542][T29693] loop9: detected capacity change from 0 to 32768
[ 1192.385010][T29693] XFS (loop9): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1192.535905][T29693] XFS (loop9): Ending clean mount
[ 1192.667621][ T6004] usb 9-1: USB disconnect, device number 12
[ 1192.936638][T28081] XFS (loop9): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1193.994674][T29734] loop5: detected capacity change from 0 to 32768
[ 1194.095977][T29734] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8860 (29734)
[ 1194.183629][T29734] BTRFS info (device loop5): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[ 1194.250863][T29734] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[ 1194.308776][T24067] udevd[24067]: symlink '../../loop9' '/dev/disk/by-diskseq/2263.tmp-b7:9' failed: Read-only file system
[ 1194.316799][T29734] BTRFS info (device loop5): using free-space-tree
[ 1194.463809][T24070] udevd[24070]: symlink '../../loop8' '/dev/disk/by-diskseq/2251.tmp-b7:8' failed: Read-only file system
[ 1194.480148][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-diskseq/2264.tmp-b7:5' failed: Read-only file system
[ 1194.481882][T24067] udevd[24067]: symlink '../../loop0' '/dev/disk/by-diskseq/2257.tmp-b7:0' failed: Read-only file system
[ 1194.494303][T24069] udevd[24069]: symlink '../../loop5' '/dev/disk/by-uuid/5e4b7888-5e56-43f0-8345-635ad0fd87c6.tmp-b7:5' failed: Read-only file system
[ 1194.635623][T24067] udevd[24067]: symlink '../../loop4' '/dev/disk/by-diskseq/2256.tmp-b7:4' failed: Read-only file system
[ 1194.772348][T29779] loop4: detected capacity change from 0 to 4096
[ 1194.818590][   T30] audit: type=1800 audit(1753057522.755:371): pid=29734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.8860" name="file1" dev="loop5" ino=260 res=0 errno=0
[ 1194.935609][T24070] udevd[24070]: symlink '../../loop0' '/dev/disk/by-diskseq/2257.tmp-b7:0' failed: Read-only file system
[ 1194.984485][T29783] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1195.114810][T29781] netlink: 8 bytes leftover after parsing attributes in process `syz.7.8875'.
[ 1195.189236][T24067] udevd[24067]: symlink '../../loop4' '/dev/disk/by-diskseq/2265.tmp-b7:4' failed: Read-only file system
[ 1195.219597][T22214] BTRFS info (device loop5): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[ 1195.226111][T24067] udevd[24067]: symlink '../../loop4' '/dev/disk/by-uuid/ab2f6cf2-a99d-4328-b186-08168e7a6b7e.tmp-b7:4' failed: Read-only file system
[ 1195.425311][T24067] udevd[24067]: symlink '../../loop4' '/dev/disk/by-diskseq/2265.tmp-b7:4' failed: Read-only file system
[ 1195.911120][T29799] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1196.418487][T29810] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1196.439249][T29810] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1196.476842][T29813] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1196.885296][T29823] loop4: detected capacity change from 0 to 1024
[ 1196.994022][T29825] netlink: 4 bytes leftover after parsing attributes in process `syz.9.8894'.
[ 1197.125130][ T1142] hfsplus: b-tree write err: -5, ino 4
[ 1198.157903][T29840] loop9: detected capacity change from 0 to 4096
[ 1198.403092][T29840] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[ 1198.445945][T29840] ntfs3(loop9): Failed to initialize $Extend/$ObjId.
[ 1198.616609][   T30] audit: type=1326 audit(1753057526.545:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f038e9a9 code=0x7ffc0000
[ 1198.690136][   T30] audit: type=1326 audit(1753057526.565:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f038e9a9 code=0x7ffc0000
[ 1198.900437][T24068] printk: udevd: 4127 output lines suppressed due to ratelimiting
[ 1198.956047][   T30] audit: type=1326 audit(1753057526.565:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11f038e9a9 code=0x7ffc0000
[ 1199.024719][T29873] loop8: detected capacity change from 0 to 256
[ 1199.058368][   T30] audit: type=1326 audit(1753057526.565:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f038e9a9 code=0x7ffc0000
[ 1199.080765][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1199.183569][   T30] audit: type=1326 audit(1753057526.565:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f038e9a9 code=0x7ffc0000
[ 1199.315912][   T30] audit: type=1326 audit(1753057526.565:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11f038e9a9 code=0x7ffc0000
[ 1199.379698][   T30] audit: type=1326 audit(1753057526.575:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f038e9a9 code=0x7ffc0000
[ 1199.474282][   T30] audit: type=1326 audit(1753057526.575:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f11f0385967 code=0x7ffc0000
[ 1199.496579][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1199.503495][   T30] audit: type=1326 audit(1753057526.575:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29859 comm="syz.0.8911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f11f032ab89 code=0x7ffc0000
[ 1199.615396][T29885] loop5: detected capacity change from 0 to 4096
[ 1199.631478][T29885] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[ 1199.647590][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1199.712646][T29885] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1199.750044][T29885] ntfs3(loop5): Failed to load $Extend (-22).
[ 1199.770911][T29885] ntfs3(loop5): Failed to initialize $Extend.
[ 1199.859706][T29885] [syz.5.8921/29885] FS: loop5 File: /file0/hugetlb.2MB.usage_in_bytes would truncate fibmap result
[ 1199.942988][T29904] mkiss: ax0: crc mode is auto.
[ 1200.191920][T29884] loop4: detected capacity change from 0 to 32768
[ 1200.239394][T29884] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1200.299793][T29884] XFS (loop4): Ending clean mount
[ 1200.510986][T28573] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1200.622407][T29936] tipc: Started in network mode
[ 1200.635851][T29936] tipc: Node identity ac14140f, cluster identity 4711
[ 1200.643572][T29936] tipc: New replicast peer: 255.255.255.255
[ 1200.669805][T29936] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1200.685312][T29936] netlink: 12 bytes leftover after parsing attributes in process `syz.8.8940'.
[ 1200.705891][T29936] tipc: Disabling bearer <udp:syz2>
[ 1200.782271][   T30] kauditd_printk_skb: 30 callbacks suppressed
[ 1200.782292][   T30] audit: type=1326 audit(1753057528.715:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1200.869259][   T30] audit: type=1326 audit(1753057528.755:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1200.935142][   T30] audit: type=1326 audit(1753057528.775:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1200.981493][   T30] audit: type=1326 audit(1753057528.775:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1201.071702][   T30] audit: type=1326 audit(1753057528.775:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1201.141448][   T30] audit: type=1326 audit(1753057528.775:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1201.163874][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1201.231621][   T30] audit: type=1326 audit(1753057528.775:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1201.303765][   T30] audit: type=1326 audit(1753057528.775:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1201.338595][T29929] loop9: detected capacity change from 0 to 32768
[ 1201.362127][   T30] audit: type=1326 audit(1753057528.795:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1201.384475][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1201.440663][   T30] audit: type=1326 audit(1753057528.795:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29938 comm="syz.5.8942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f009978e9a9 code=0x7ffc0000
[ 1201.442923][T29929] ERROR: (device loop9): xtSearch: XT_GETPAGE: xtree page corrupt
[ 1201.442923][T29929] 
[ 1201.463065][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1201.558259][T29929] ERROR: (device loop9): remounting filesystem as read-only
[ 1201.614958][T29929] xtLookup: xtSearch returned -5
[ 1201.640688][T29929] ERROR: (device loop9): xtTruncate: XT_GETPAGE: xtree page corrupt
[ 1201.640688][T29929] 
[ 1201.786432][T29964] netlink: 8 bytes leftover after parsing attributes in process `syz.7.8953'.
[ 1201.821702][T29964] vlan2: entered promiscuous mode
[ 1201.834257][T29964] gretap0: entered promiscuous mode
[ 1201.845106][T29964] vlan2: entered allmulticast mode
[ 1201.855485][T29964] gretap0: entered allmulticast mode
[ 1202.173514][T29977] loop9: detected capacity change from 0 to 2048
[ 1202.204677][T29977] UDF-fs: error (device loop9): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1202.243481][T29977] UDF-fs: warning (device loop9): udf_load_vrs: No anchor found
[ 1202.254430][T29977] UDF-fs: Scanning with blocksize 512 failed
[ 1202.349863][T29977] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1202.645497][T29978] loop5: detected capacity change from 0 to 32768
[ 1202.695287][T29978] 
[ 1202.695287][T29978]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1202.695287][T29978] 
[ 1202.906045][T29990] netlink: 1041 bytes leftover after parsing attributes in process `syz.0.8967'.
[ 1202.955472][ T6963] read_mapping_page failed!
[ 1202.983591][ T6963] ERROR: (device loop5): txCommit: 
[ 1202.983591][ T6963] 
[ 1203.001348][ T6963] ERROR: (device loop5): remounting filesystem as read-only
[ 1203.016298][ T6963] jfs_write_inode: jfs_commit_inode failed!
[ 1203.034600][T22214] 
[ 1203.034600][T22214]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1203.034600][T22214] 
[ 1203.068175][T29992] loop9: detected capacity change from 0 to 16
[ 1203.075005][T22214] 
[ 1203.075005][T22214]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1203.075005][T22214] 
[ 1203.093022][T29992] erofs (device loop9): mounted with root inode @ nid 36.
[ 1203.553461][T30008] loop0: detected capacity change from 0 to 1024
[ 1203.655519][T30008] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1203.717123][T30012] loop8: detected capacity change from 0 to 512
[ 1203.732262][T29996] loop4: detected capacity change from 0 to 32768
[ 1203.748449][T22379] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1203.750194][T30012] FAT-fs (loop8): error, corrupted directory (invalid entries)
[ 1203.790902][T29996] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1203.933775][T30023] loop0: detected capacity change from 0 to 512
[ 1203.941331][T30023] EXT4-fs: Ignoring removed bh option
[ 1203.986606][T30023] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1204.006796][T30023] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[ 1204.069889][T30023] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[ 1204.139213][T30023] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[ 1204.184217][T30023] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1204.223869][T30034] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[ 1204.271895][T30034] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1204.280921][T30034] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1204.294037][T30023] fscrypt (loop0, inode 12): Error -61 getting encryption context
[ 1204.305135][T28573] ocfs2: Unmounting device (7,4) on (node local)
[ 1204.449153][T22379] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1204.735951][T18191] Bluetooth: hci6: command 0xfc11 tx timeout
[ 1204.742742][ T5861] Bluetooth: hci6: Entering manufacturer mode failed (-110)
[ 1204.938246][T30050] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1205.584677][T30072] loop9: detected capacity change from 0 to 128
[ 1205.953465][T30070] loop5: detected capacity change from 0 to 40427
[ 1205.964063][T30070] F2FS-fs (loop5): invalid crc value
[ 1206.099091][T30070] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1206.189952][T22214] syz-executor: attempt to access beyond end of device
[ 1206.189952][T22214] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1206.208837][T22214] CPU: 0 UID: 0 PID: 22214 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1206.208871][T22214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1206.208887][T22214] Call Trace:
[ 1206.208897][T22214]  <TASK>
[ 1206.208908][T22214]  dump_stack_lvl+0x189/0x250
[ 1206.208950][T22214]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1206.208977][T22214]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1206.209004][T22214]  ? __pfx_queue_work_on+0x10/0x10
[ 1206.209038][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.209066][T22214]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1206.209092][T22214]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1206.209120][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.209147][T22214]  ? f2fs_hw_is_readonly+0x39b/0x470
[ 1206.209182][T22214]  f2fs_handle_critical_error+0x37c/0x540
[ 1206.209220][T22214]  f2fs_write_end_io+0x495/0x810
[ 1206.209249][T22214]  ? blkg_put+0x22/0x240
[ 1206.209311][T22214]  __submit_merged_bio+0x27a/0x6a0
[ 1206.209348][T22214]  __submit_merged_write_cond+0x255/0x530
[ 1206.209402][T22214]  f2fs_write_data_pages+0x261d/0x3000
[ 1206.209429][T22214]  ? __lock_acquire+0xab9/0xd20
[ 1206.209507][T22214]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1206.209533][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.209637][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.209664][T22214]  ? stack_depot_save_flags+0x40/0x900
[ 1206.209723][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.209752][T22214]  ? __lock_acquire+0xab9/0xd20
[ 1206.209800][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.209828][T22214]  ? do_raw_spin_lock+0x121/0x290
[ 1206.209874][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.209908][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.209936][T22214]  ? do_raw_spin_unlock+0x122/0x240
[ 1206.209974][T22214]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1206.210006][T22214]  do_writepages+0x32e/0x550
[ 1206.210049][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.210084][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.210112][T22214]  ? do_raw_spin_unlock+0x122/0x240
[ 1206.210156][T22214]  filemap_fdatawrite+0x191/0x230
[ 1206.210192][T22214]  ? __pfx_filemap_fdatawrite+0x10/0x10
[ 1206.210291][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.210327][T22214]  ? do_raw_spin_unlock+0x122/0x240
[ 1206.210371][T22214]  f2fs_sync_dirty_inodes+0x31f/0x830
[ 1206.210428][T22214]  f2fs_write_checkpoint+0x94a/0x1de0
[ 1206.210498][T22214]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1206.210604][T22214]  ? kill_f2fs_super+0x298/0x6c0
[ 1206.210645][T22214]  kill_f2fs_super+0x2c3/0x6c0
[ 1206.210687][T22214]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1206.210716][T22214]  ? radix_tree_delete_item+0x2b6/0x400
[ 1206.210754][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.210782][T22214]  ? shrinker_free+0x2ce/0x3e0
[ 1206.210822][T22214]  deactivate_locked_super+0xbc/0x130
[ 1206.210857][T22214]  cleanup_mnt+0x425/0x4c0
[ 1206.210886][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.210914][T22214]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1206.210947][T22214]  task_work_run+0x1d4/0x260
[ 1206.210991][T22214]  ? __pfx_task_work_run+0x10/0x10
[ 1206.211027][T22214]  ? __x64_sys_umount+0x122/0x160
[ 1206.211071][T22214]  ? exit_to_user_mode_loop+0x40/0x110
[ 1206.211106][T22214]  exit_to_user_mode_loop+0xec/0x110
[ 1206.211134][T22214]  do_syscall_64+0x2bd/0x3b0
[ 1206.211163][T22214]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1206.211190][T22214]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1206.211214][T22214]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1206.211242][T22214]  ? exc_page_fault+0x9f/0xf0
[ 1206.211274][T22214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1206.211298][T22214] RIP: 0033:0x7f009978fcd7
[ 1206.211322][T22214] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1206.211343][T22214] RSP: 002b:00007ffdf6e484e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1206.211370][T22214] RAX: 0000000000000000 RBX: 00007f0099810b55 RCX: 00007f009978fcd7
[ 1206.211387][T22214] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf6e485a0
[ 1206.211403][T22214] RBP: 00007ffdf6e485a0 R08: 0000000000000000 R09: 0000000000000000
[ 1206.211419][T22214] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf6e49630
[ 1206.211437][T22214] R13: 00007f0099810b55 R14: 00000000001265ad R15: 00007ffdf6e49670
[ 1206.211482][T22214]  </TASK>
[ 1206.212857][T22214] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1207.875878][ T6854] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[ 1207.964754][T30096] loop8: detected capacity change from 0 to 32768
[ 1207.973323][T30096] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.9008 (30096)
[ 1207.989559][T30096] BTRFS info (device loop8): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1208.000262][T30096] BTRFS info (device loop8): using sha256 (sha256-x86_64) checksum algorithm
[ 1208.009467][T30096] BTRFS info (device loop8): disk space caching is enabled
[ 1208.017455][T30096] BTRFS warning (device loop8): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1208.062076][T30096] BTRFS info (device loop8): rebuilding free space tree
[ 1208.074629][ T6854] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[ 1208.089650][ T6854] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[ 1208.102583][T30096] BTRFS info (device loop8): disabling free space tree
[ 1208.104753][ T6854] usb 6-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[ 1208.110162][T30096] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1208.123373][ T6854] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1208.128844][T30096] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1208.136446][ T6854] usb 6-1: Product: syz
[ 1208.136469][ T6854] usb 6-1: Manufacturer: syz
[ 1208.136487][ T6854] usb 6-1: SerialNumber: syz
[ 1208.164372][ T6854] usb 6-1: config 0 descriptor??
[ 1208.171292][T30095] raw-gadget.3 gadget.5: fail, usb_ep_enable returned -22
[ 1208.179181][T30095] raw-gadget.3 gadget.5: fail, usb_ep_enable returned -22
[ 1208.232824][T28706] BTRFS info (device loop8): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1208.402643][T30095] raw-gadget.3 gadget.5: fail, usb_ep_enable returned -22
[ 1208.424904][T30095] raw-gadget.3 gadget.5: fail, usb_ep_enable returned -22
[ 1208.584293][ T5861] Bluetooth: hci5: unexpected cc 0x0c5b length: 5 > 1
[ 1208.861400][ T6854] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[ 1209.062908][ T6854] dm9601 6-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[ 1209.085671][ T6854] usb 6-1: USB disconnect, device number 19
[ 1209.181720][T30135] loop0: detected capacity change from 0 to 8192
[ 1209.249558][T30135] msdos: Unknown parameter 'dk'
[ 1209.559242][T30146] loop9: detected capacity change from 0 to 2048
[ 1209.632910][T30148] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1209.720901][T30148] NILFS (loop9): vblocknr = 12 has abnormal lifetime: start cno (= 150994946) > current cno (= 3)
[ 1209.733972][T30148] NILFS error (device loop9): nilfs_bmap_propagate: broken bmap (inode number=16)
[ 1209.771141][T30148] Remounting filesystem read-only
[ 1209.784804][T30151] NILFS (loop9): error -2 truncating bmap (ino=16)
[ 1209.846834][ T5861] Bluetooth: hci4: command 0x0405 tx timeout
[ 1209.870284][T28081] NILFS (loop9): disposed unprocessed dirty file(s) when stopping log writer
[ 1210.011925][T30153] loop5: detected capacity change from 0 to 4096
[ 1210.051538][T30153] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[ 1210.168095][T30159] loop8: detected capacity change from 0 to 1024
[ 1210.185487][T30159] EXT4-fs: Ignoring removed orlov option
[ 1210.200788][T30162] ntfs3(loop5): ino=1b, "file0" indx_read
[ 1210.201494][T30159] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled
[ 1210.249262][T30159] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1210.373318][T28706] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1210.435848][ T6854] usb 10-1: new high-speed USB device number 19 using dummy_hcd
[ 1210.608100][ T6854] usb 10-1: Using ep0 maxpacket: 32
[ 1210.627840][ T6854] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1210.648002][ T6854] usb 10-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[ 1210.662555][ T6854] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1210.682469][ T6854] usb 10-1: Product: syz
[ 1210.688848][ T6854] usb 10-1: Manufacturer: syz
[ 1210.703789][ T6854] usb 10-1: SerialNumber: syz
[ 1210.727461][ T6854] usb 10-1: config 0 descriptor??
[ 1210.966378][T18191] Bluetooth: hci2: command tx timeout
[ 1211.093869][T30187] netlink: 'syz.8.9042': attribute type 1 has an invalid length.
[ 1211.116154][T30187] netlink: 152 bytes leftover after parsing attributes in process `syz.8.9042'.
[ 1211.144445][T30187] netlink: 20 bytes leftover after parsing attributes in process `syz.8.9042'.
[ 1211.175023][ T6854] gs_usb 10-1:0.0: Configuring for 1 interfaces
[ 1211.583527][ T6854] gs_usb 10-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[ 1211.618935][ T6854] gs_usb 10-1:0.0: probe with driver gs_usb failed with error -71
[ 1211.666523][ T6854] usb 10-1: USB disconnect, device number 19
[ 1211.774105][T30217] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1212.541757][T30246] loop8: detected capacity change from 0 to 1024
[ 1212.582649][T30246] EXT4-fs: Ignoring removed oldalloc option
[ 1212.608956][T30246] EXT4-fs: Ignoring removed bh option
[ 1212.655614][T30246] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1212.721111][T30254] loop0: detected capacity change from 0 to 8
[ 1212.875288][T28706] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1213.326976][T30269] loop4: detected capacity change from 0 to 256
[ 1213.359571][T30269] exfat: Deprecated parameter 'utf8'
[ 1213.398856][T30269] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[ 1213.731832][T30280] digital: digital_start_poll: Unknown protocol
[ 1213.934580][T30288] netlink: 'syz.8.9086': attribute type 33 has an invalid length.
[ 1213.957437][T30290] loop4: detected capacity change from 0 to 256
[ 1213.964216][T30288] netlink: 152 bytes leftover after parsing attributes in process `syz.8.9086'.
[ 1214.001846][T30288] netlink: 'syz.8.9086': attribute type 10 has an invalid length.
[ 1214.034848][T30290] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xcab3d314, utbl_chksum : 0xe619d30d)
[ 1214.066005][ T5915] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[ 1214.068328][T30288] team0: Port device team_slave_0 removed
[ 1214.216752][T30261] loop9: detected capacity change from 0 to 40427
[ 1214.246183][ T5915] usb 6-1: Using ep0 maxpacket: 32
[ 1214.259804][ T5915] usb 6-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[ 1214.273168][T30261] F2FS-fs (loop9): invalid crc value
[ 1214.279421][ T5915] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1214.312627][ T5915] usb 6-1: config 0 descriptor??
[ 1214.533682][T30261] F2FS-fs (loop9): Start checkpoint disabled!
[ 1214.544209][ T5915] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[ 1214.565389][T30261] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6
[ 1214.596249][ T5915] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1214.638167][ T5915] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[ 1214.645366][ T5915] usb 6-1: media controller created
[ 1214.749443][ T5915] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1214.862722][ T5915] az6027: usb out operation failed. (-71)
[ 1214.865686][ T1092] kworker/u8:5: attempt to access beyond end of device
[ 1214.865686][ T1092] loop9: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1214.882231][ T5915] az6027: usb out operation failed. (-71)
[ 1214.890348][T30317] loop8: detected capacity change from 0 to 1024
[ 1214.892592][ T5915] stb0899_attach: Driver disabled by Kconfig
[ 1214.903271][ T5915] az6027: no front-end attached
[ 1214.903271][ T5915] 
[ 1214.914333][ T5915] az6027: usb out operation failed. (-71)
[ 1214.920684][ T5915] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[ 1214.933842][ T5915] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input32
[ 1214.938745][T30317] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[ 1214.958121][ T5915] dvb-usb: schedule remote query interval to 400 msecs.
[ 1214.965243][ T5915] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[ 1214.975964][ T1092] CPU: 0 UID: 0 PID: 1092 Comm: kworker/u8:5 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1214.975998][ T1092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1214.976016][ T1092] Workqueue: writeback wb_workfn (flush-7:9)
[ 1214.976051][ T1092] Call Trace:
[ 1214.976060][ T1092]  <TASK>
[ 1214.976072][ T1092]  dump_stack_lvl+0x189/0x250
[ 1214.976108][ T1092]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1214.976136][ T1092]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1214.976162][ T1092]  ? __pfx_queue_work_on+0x10/0x10
[ 1214.976195][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.976223][ T1092]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1214.976248][ T1092]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1214.976275][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.976302][ T1092]  ? f2fs_hw_is_readonly+0x39b/0x470
[ 1214.976334][ T1092]  f2fs_handle_critical_error+0x37c/0x540
[ 1214.976369][ T1092]  f2fs_write_end_io+0x495/0x810
[ 1214.976397][ T1092]  ? blkg_put+0x22/0x240
[ 1214.976452][ T1092]  __submit_merged_bio+0x27a/0x6a0
[ 1214.976476][ T1092]  ? up_write+0x1c4/0x420
[ 1214.976515][ T1092]  __submit_merged_write_cond+0x44c/0x530
[ 1214.976564][ T1092]  f2fs_sync_node_pages+0x1869/0x1a00
[ 1214.976602][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.976658][ T1092]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[ 1214.976698][ T1092]  ? __percpu_counter_sum+0x1c2/0x1e0
[ 1214.976764][ T1092]  ? rcu_is_watching+0x15/0xb0
[ 1214.976793][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.976828][ T1092]  ? blk_start_plug+0x52/0x1b0
[ 1214.976866][ T1092]  f2fs_write_node_pages+0x303/0x6e0
[ 1214.976912][ T1092]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 1214.976958][ T1092]  ? save_fpregs_to_fpstate+0xa3/0x210
[ 1214.976999][ T1092]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 1214.977039][ T1092]  do_writepages+0x32e/0x550
[ 1214.977078][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.977105][ T1092]  ? reacquire_held_locks+0x127/0x1d0
[ 1214.977135][ T1092]  ? writeback_sb_inodes+0x372/0x1000
[ 1214.977178][ T1092]  __writeback_single_inode+0x145/0xff0
[ 1214.977211][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.977239][ T1092]  ? do_raw_spin_unlock+0x122/0x240
[ 1214.977280][ T1092]  writeback_sb_inodes+0x6b5/0x1000
[ 1214.977311][ T1092]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1214.977345][ T1092]  ? rcu_is_watching+0x15/0xb0
[ 1214.977377][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.977420][ T1092]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1214.977503][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.977530][ T1092]  ? rcu_is_watching+0x15/0xb0
[ 1214.977558][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.977597][ T1092]  wb_writeback+0x43b/0xaf0
[ 1214.977639][ T1092]  ? queue_io+0x321/0x590
[ 1214.977675][ T1092]  ? __pfx_wb_writeback+0x10/0x10
[ 1214.977717][ T1092]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1214.977748][ T1092]  wb_workfn+0x409/0xef0
[ 1214.977794][ T1092]  ? __pfx_wb_workfn+0x10/0x10
[ 1214.977831][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.977859][ T1092]  ? __lock_acquire+0xab9/0xd20
[ 1214.977898][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.977930][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.977962][ T1092]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1214.977984][ T1092]  ? process_scheduled_works+0x9ef/0x17b0
[ 1214.978012][ T1092]  ? process_scheduled_works+0x9ef/0x17b0
[ 1214.978043][ T1092]  process_scheduled_works+0xae1/0x17b0
[ 1214.978108][ T1092]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1214.978146][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.978185][ T1092]  worker_thread+0x8a0/0xda0
[ 1214.978248][ T1092]  kthread+0x711/0x8a0
[ 1214.978287][ T1092]  ? __pfx_worker_thread+0x10/0x10
[ 1214.978316][ T1092]  ? __pfx_kthread+0x10/0x10
[ 1214.978348][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.978380][ T1092]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1214.978403][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1214.978430][ T1092]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1214.978454][ T1092]  ? __pfx_kthread+0x10/0x10
[ 1214.978492][ T1092]  ret_from_fork+0x3fc/0x770
[ 1214.978522][ T1092]  ? __pfx_ret_from_fork+0x10/0x10
[ 1214.978557][ T1092]  ? __switch_to_asm+0x39/0x70
[ 1214.978589][ T1092]  ? __switch_to_asm+0x33/0x70
[ 1214.978620][ T1092]  ? __pfx_kthread+0x10/0x10
[ 1214.978657][ T1092]  ret_from_fork_asm+0x1a/0x30
[ 1214.978711][ T1092]  </TASK>
[ 1214.978721][ T1092] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 1214.993790][T30317] hfsplus: invalid extent max_key_len 7
[ 1215.008639][ T5915] usb 6-1: USB disconnect, device number 20
[ 1215.026397][T30317] hfsplus: failed to load extents file
[ 1215.566770][ T5915] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[ 1215.896123][ T6854] usb 9-1: new full-speed USB device number 13 using dummy_hcd
[ 1216.049686][T30333] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9108'.
[ 1216.066078][T30333] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9108'.
[ 1216.090986][ T6854] usb 9-1: config 0 has an invalid descriptor of length 114, skipping remainder of the config
[ 1216.111803][ T6854] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[ 1216.145833][ T6854] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid maxpacket 25970, setting to 64
[ 1216.186243][ T6854] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1216.231994][ T6854] usb 9-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[ 1216.245809][ T6854] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[ 1216.254361][ T6854] usb 9-1: Product: syz
[ 1216.285679][ T6854] usb 9-1: Manufacturer: syz
[ 1216.303556][ T6854] usb 9-1: SerialNumber: syz
[ 1216.324708][ T6854] usb 9-1: config 0 descriptor??
[ 1216.334685][T30317] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22
[ 1216.501878][T30343] loop5: detected capacity change from 0 to 512
[ 1216.546955][T30343] EXT4-fs (loop5): revision level too high, forcing read-only mode
[ 1216.593632][ T6854] radio-si470x 9-1:0.0: DeviceID=0x0000 ChipID=0x0000
[ 1216.602625][T30343] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1216.625019][ T6854] radio-si470x 9-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[ 1216.643608][T30327] loop4: detected capacity change from 0 to 40427
[ 1216.646973][T30343] __quota_error: 3 callbacks suppressed
[ 1216.646990][T30343] Quota error (device loop5): dq_insert_tree: Quota tree root isn't allocated!
[ 1216.665961][T30343] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[ 1216.686824][T30327] F2FS-fs (loop4): invalid crc value
[ 1216.692417][T30343] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.9112: Failed to acquire dquot type 1
[ 1216.737129][T30343] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.9112: bg 0: block 40: padding at end of block bitmap is not set
[ 1216.773720][T30343] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[ 1216.794487][ T6854] radio-si470x 9-1:0.0: software version 0, hardware version 0
[ 1216.799531][T30343] EXT4-fs (loop5): 1 truncate cleaned up
[ 1216.816003][ T6854] radio-si470x 9-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0.
[ 1216.821957][T30343] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1216.851043][ T6854] radio-si470x 9-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[ 1216.928394][T30343] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.9112: bad symlink.
[ 1216.953687][T30327] F2FS-fs (loop4): Start checkpoint disabled!
[ 1216.971011][T30343] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.9112: bad symlink.
[ 1216.985632][T30327] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[ 1216.996233][ T6854] radio-si470x 9-1:0.0: si470x_set_report: usb_control_msg returned -71
[ 1217.015860][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.022613][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.029575][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.036981][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.043694][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.050492][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.057179][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.064017][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.070706][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.077597][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.084254][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.090942][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.097734][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.104372][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.111558][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.118302][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.124929][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.131704][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.138332][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.144952][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.151682][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.158310][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.164945][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.171584][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.178566][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.185201][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.191820][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.203418][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.211530][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.218828][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.225607][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.232275][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.232666][ T1092] kworker/u8:5: attempt to access beyond end of device
[ 1217.232666][ T1092] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1217.238862][ T6854] radio-si470x 9-1:0.0: si470x_set_report: usb_control_msg returned -71
[ 1217.238956][    C1] radio-si470x 9-1:0.0: non-zero urb status (-71)
[ 1217.246878][ T6854] radio-si470x 9-1:0.0: probe with driver radio-si470x failed with error -22
[ 1217.290480][ T6854] usb 9-1: USB disconnect, device number 13
[ 1217.304525][T22214] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1217.324081][ T1092] CPU: 0 UID: 0 PID: 1092 Comm: kworker/u8:5 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1217.324116][ T1092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1217.324134][ T1092] Workqueue: writeback wb_workfn (flush-7:4)
[ 1217.324169][ T1092] Call Trace:
[ 1217.324180][ T1092]  <TASK>
[ 1217.324192][ T1092]  dump_stack_lvl+0x189/0x250
[ 1217.324230][ T1092]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1217.324257][ T1092]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1217.324284][ T1092]  ? __pfx_queue_work_on+0x10/0x10
[ 1217.324316][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.324343][ T1092]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1217.324367][ T1092]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1217.324394][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.324420][ T1092]  ? f2fs_hw_is_readonly+0x39b/0x470
[ 1217.324451][ T1092]  f2fs_handle_critical_error+0x37c/0x540
[ 1217.324485][ T1092]  f2fs_write_end_io+0x495/0x810
[ 1217.324512][ T1092]  ? blkg_put+0x22/0x240
[ 1217.324566][ T1092]  __submit_merged_bio+0x27a/0x6a0
[ 1217.324599][ T1092]  __submit_merged_write_cond+0x255/0x530
[ 1217.324646][ T1092]  f2fs_write_data_pages+0x261d/0x3000
[ 1217.324722][ T1092]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1217.324767][ T1092]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 1217.324847][ T1092]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 1217.324874][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.324915][ T1092]  ? trace_f2fs_writepages+0x7f/0x200
[ 1217.324942][ T1092]  ? f2fs_write_node_pages+0x478/0x6e0
[ 1217.324996][ T1092]  ? sched_clock+0x3f/0x60
[ 1217.325030][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.325056][ T1092]  ? sched_clock_cpu+0x74/0x430
[ 1217.325083][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.325115][ T1092]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1217.325145][ T1092]  do_writepages+0x32e/0x550
[ 1217.325183][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.325210][ T1092]  ? reacquire_held_locks+0x127/0x1d0
[ 1217.325239][ T1092]  ? writeback_sb_inodes+0x372/0x1000
[ 1217.325281][ T1092]  __writeback_single_inode+0x145/0xff0
[ 1217.325312][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.325338][ T1092]  ? do_raw_spin_unlock+0x122/0x240
[ 1217.325379][ T1092]  writeback_sb_inodes+0x6b5/0x1000
[ 1217.325409][ T1092]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1217.325442][ T1092]  ? rcu_is_watching+0x15/0xb0
[ 1217.325475][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.325516][ T1092]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1217.325599][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.325625][ T1092]  ? rcu_is_watching+0x15/0xb0
[ 1217.325653][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.325691][ T1092]  wb_writeback+0x43b/0xaf0
[ 1217.325732][ T1092]  ? queue_io+0x321/0x590
[ 1217.325764][ T1092]  ? __pfx_wb_writeback+0x10/0x10
[ 1217.325808][ T1092]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1217.325838][ T1092]  wb_workfn+0x409/0xef0
[ 1217.325883][ T1092]  ? __pfx_wb_workfn+0x10/0x10
[ 1217.325914][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.325942][ T1092]  ? __lock_acquire+0xab9/0xd20
[ 1217.325978][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.326008][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.326039][ T1092]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1217.326060][ T1092]  ? process_scheduled_works+0x9ef/0x17b0
[ 1217.326086][ T1092]  ? process_scheduled_works+0x9ef/0x17b0
[ 1217.326116][ T1092]  process_scheduled_works+0xae1/0x17b0
[ 1217.326182][ T1092]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1217.326220][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.326258][ T1092]  worker_thread+0x8a0/0xda0
[ 1217.326319][ T1092]  kthread+0x711/0x8a0
[ 1217.326358][ T1092]  ? __pfx_worker_thread+0x10/0x10
[ 1217.326386][ T1092]  ? __pfx_kthread+0x10/0x10
[ 1217.326417][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.326448][ T1092]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1217.326471][ T1092]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.326499][ T1092]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1217.326522][ T1092]  ? __pfx_kthread+0x10/0x10
[ 1217.326560][ T1092]  ret_from_fork+0x3fc/0x770
[ 1217.326590][ T1092]  ? __pfx_ret_from_fork+0x10/0x10
[ 1217.326626][ T1092]  ? __switch_to_asm+0x39/0x70
[ 1217.326657][ T1092]  ? __switch_to_asm+0x33/0x70
[ 1217.326689][ T1092]  ? __pfx_kthread+0x10/0x10
[ 1217.326726][ T1092]  ret_from_fork_asm+0x1a/0x30
[ 1217.326779][ T1092]  </TASK>
[ 1217.814146][ T1092] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 1217.921156][T30356] loop9: detected capacity change from 0 to 64
[ 1218.319826][T30364] sctp: [Deprecated]: syz.7.9121 (pid 30364) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1218.319826][T30364] Use struct sctp_sack_info instead
[ 1218.566866][T30358] loop5: detected capacity change from 0 to 40427
[ 1218.624242][T30358] F2FS-fs (loop5): invalid crc value
[ 1218.650366][T30372] Bluetooth: hci0: load_link_keys: expected 51203 bytes, got 7 bytes
[ 1218.690812][T30375] netlink: 'syz.0.9125': attribute type 7 has an invalid length.
[ 1218.746138][T30375] netlink: 'syz.0.9125': attribute type 8 has an invalid length.
[ 1218.957578][T30358] F2FS-fs (loop5): Start checkpoint disabled!
[ 1218.976352][T30358] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1219.210766][T30362] loop8: detected capacity change from 0 to 32768
[ 1219.236235][T30362] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.9120 (30362)
[ 1219.262637][T30392] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9132'.
[ 1219.268523][T30394] loop9: detected capacity change from 0 to 64
[ 1219.298287][   T12] kworker/u8:0: attempt to access beyond end of device
[ 1219.298287][   T12] loop5: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1219.346620][   T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1219.346656][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1219.346674][   T12] Workqueue: writeback wb_workfn (flush-7:5)
[ 1219.346712][   T12] Call Trace:
[ 1219.346722][   T12]  <TASK>
[ 1219.346734][   T12]  dump_stack_lvl+0x189/0x250
[ 1219.346774][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1219.346802][   T12]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1219.346830][   T12]  ? __pfx_queue_work_on+0x10/0x10
[ 1219.346862][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.346891][   T12]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1219.346917][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1219.346945][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.346973][   T12]  ? f2fs_hw_is_readonly+0x39b/0x470
[ 1219.347008][   T12]  f2fs_handle_critical_error+0x37c/0x540
[ 1219.347046][   T12]  f2fs_write_end_io+0x495/0x810
[ 1219.347081][   T12]  ? blkg_put+0x22/0x240
[ 1219.347143][   T12]  __submit_merged_bio+0x27a/0x6a0
[ 1219.347168][   T12]  ? up_write+0x1c4/0x420
[ 1219.347210][   T12]  __submit_merged_write_cond+0x44c/0x530
[ 1219.347265][   T12]  f2fs_sync_node_pages+0x1869/0x1a00
[ 1219.347305][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.347369][   T12]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[ 1219.347410][   T12]  ? __percpu_counter_sum+0x1c2/0x1e0
[ 1219.347489][   T12]  ? rcu_is_watching+0x15/0xb0
[ 1219.347519][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.347547][   T12]  ? blk_start_plug+0x52/0x1b0
[ 1219.347584][   T12]  f2fs_write_node_pages+0x303/0x6e0
[ 1219.347634][   T12]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 1219.347687][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.347726][   T12]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 1219.347768][   T12]  do_writepages+0x32e/0x550
[ 1219.347809][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.347837][   T12]  ? reacquire_held_locks+0x127/0x1d0
[ 1219.347866][   T12]  ? writeback_sb_inodes+0x372/0x1000
[ 1219.347915][   T12]  __writeback_single_inode+0x145/0xff0
[ 1219.347949][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.347978][   T12]  ? do_raw_spin_unlock+0x122/0x240
[ 1219.348022][   T12]  writeback_sb_inodes+0x6b5/0x1000
[ 1219.348083][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.348131][   T12]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1219.348228][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.348256][   T12]  ? rcu_is_watching+0x15/0xb0
[ 1219.348287][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.348329][   T12]  wb_writeback+0x43b/0xaf0
[ 1219.348376][   T12]  ? queue_io+0x321/0x590
[ 1219.348415][   T12]  ? __pfx_wb_writeback+0x10/0x10
[ 1219.348463][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1219.348497][   T12]  wb_workfn+0x409/0xef0
[ 1219.348552][   T12]  ? __pfx_wb_workfn+0x10/0x10
[ 1219.348586][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.348615][   T12]  ? __lock_acquire+0xab9/0xd20
[ 1219.348659][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.348692][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.348727][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1219.348750][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[ 1219.348778][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[ 1219.348811][   T12]  process_scheduled_works+0xae1/0x17b0
[ 1219.348888][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1219.348930][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.348972][   T12]  worker_thread+0x8a0/0xda0
[ 1219.349056][   T12]  kthread+0x711/0x8a0
[ 1219.349098][   T12]  ? __pfx_worker_thread+0x10/0x10
[ 1219.349127][   T12]  ? __pfx_kthread+0x10/0x10
[ 1219.349159][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.349193][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1219.349217][   T12]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.349245][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1219.349271][   T12]  ? __pfx_kthread+0x10/0x10
[ 1219.349309][   T12]  ret_from_fork+0x3fc/0x770
[ 1219.349346][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[ 1219.349385][   T12]  ? __switch_to_asm+0x39/0x70
[ 1219.349418][   T12]  ? __switch_to_asm+0x33/0x70
[ 1219.349448][   T12]  ? __pfx_kthread+0x10/0x10
[ 1219.349486][   T12]  ret_from_fork_asm+0x1a/0x30
[ 1219.349544][   T12]  </TASK>
[ 1219.385915][   T12] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1219.388341][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1219.393474][T30362] BTRFS info (device loop8): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1219.799081][T30362] BTRFS info (device loop8): using sha256 (sha256-x86_64) checksum algorithm
[ 1219.808308][T30362] BTRFS info (device loop8): using free-space-tree
[ 1220.156007][T30427] F2FS-fs (loop9): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1220.163787][T30427] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[ 1220.193026][T30427] F2FS-fs (loop9): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1220.203349][T30427] F2FS-fs (loop9): Can't find valid F2FS filesystem in 2th superblock
[ 1220.224421][T30427] F2FS-fs (loop9): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1220.232980][T30427] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[ 1220.267725][T28706] BTRFS info (device loop8): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1220.282882][T30427] F2FS-fs (loop9): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1220.291667][T30427] F2FS-fs (loop9): Can't find valid F2FS filesystem in 2th superblock
[ 1220.526143][T30431] tap0: tun_chr_ioctl cmd 1074025677
[ 1220.546395][T30431] tap0: linktype set to 270
[ 1220.995407][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1221.002142][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[ 1221.088218][T30453] loop8: detected capacity change from 0 to 64
[ 1221.114562][T30452] loop0: detected capacity change from 0 to 2048
[ 1221.224960][T30460] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1221.305370][T30460] NILFS (loop0): vblocknr = 12 has abnormal lifetime: start cno (= 150994946) > current cno (= 3)
[ 1221.342832][T30460] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=16)
[ 1221.364845][T30460] Remounting filesystem read-only
[ 1221.379128][T30461] NILFS (loop0): error -2 truncating bmap (ino=16)
[ 1221.444237][T22379] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[ 1221.618673][T30471] loop0: detected capacity change from 0 to 2048
[ 1221.681997][T30477] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1221.796983][ T5929] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[ 1221.872154][T30477] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1221.903215][T30477] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1221.943128][T30477] Remounting filesystem read-only
[ 1221.952603][T22379] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[ 1221.977712][ T5929] usb 9-1: Using ep0 maxpacket: 16
[ 1221.985194][ T5929] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1221.998622][ T5929] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1222.030437][ T5929] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1222.053157][ T5929] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1222.074578][ T5929] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1222.114492][ T5929] usb 9-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1222.124295][ T5929] usb 9-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1222.140256][ T5929] usb 9-1: Manufacturer: syz
[ 1222.158158][ T5929] usb 9-1: config 0 descriptor??
[ 1222.423304][T30503] netlink: 'syz.0.9176': attribute type 10 has an invalid length.
[ 1222.452431][T30503] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1222.471671][T30503] bond0: (slave batadv0): Enslaving as an active interface with an up link
[ 1222.505824][ T5929] rc_core: IR keymap rc-hauppauge not found
[ 1222.512064][ T5929] Registered IR keymap rc-empty
[ 1222.524611][T30503] netlink: 'syz.0.9176': attribute type 10 has an invalid length.
[ 1222.528211][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1222.541850][T30503] netlink: 40 bytes leftover after parsing attributes in process `syz.0.9176'.
[ 1222.568871][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1222.576019][T30503] batadv0: entered promiscuous mode
[ 1222.585914][T30503] batadv0: entered allmulticast mode
[ 1222.610178][ T5929] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0
[ 1222.623129][T30503] bond0: (slave batadv0): Releasing backup interface
[ 1222.678906][ T5929] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0/input33
[ 1222.707182][T30503] bridge0: port 3(batadv0) entered blocking state
[ 1222.714045][T30503] bridge0: port 3(batadv0) entered disabled state
[ 1222.751420][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1222.806719][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1222.849533][T30511] netlink: 24 bytes leftover after parsing attributes in process `syz.5.9178'.
[ 1222.859345][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1222.906719][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1222.914858][T30511] netlink: 24 bytes leftover after parsing attributes in process `syz.5.9178'.
[ 1222.952659][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1222.984808][T30513] af_packet: tpacket_rcv: packet too big, clamped from 122 to 4294967286. macoff=82
[ 1222.985947][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1222.995137][T30513] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xf
[ 1223.030461][T30495] loop9: detected capacity change from 0 to 32768
[ 1223.046169][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1223.094563][T30495] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1223.096180][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1223.120667][ T6925] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 1223.131169][ T6925] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 1223.149949][T30522] netlink: 168 bytes leftover after parsing attributes in process `syz.5.9181'.
[ 1223.176386][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1223.218574][ T5929] mceusb 9-1:0.0: Error: mce write submit urb error = -90
[ 1223.280934][ T5929] mceusb 9-1:0.0: Registered Ѕ with mce emulator interface version 1
[ 1223.326956][T30495] XFS (loop9): Ending clean mount
[ 1223.334265][ T5929] mceusb 9-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1223.378743][T30495] XFS (loop9): Quotacheck needed: Please wait.
[ 1223.410224][ T5929] usb 9-1: USB disconnect, device number 14
[ 1223.506276][T30495] XFS (loop9): Quotacheck: Done.
[ 1223.553174][T30531] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9184'.
[ 1223.741634][T28081] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1223.855862][T16469] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[ 1224.053402][T16469] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1224.083082][T16469] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1224.099337][T16469] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1224.134098][T16469] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1224.155027][T16469] usb 6-1: SerialNumber: syz
[ 1224.394400][T30552] input: syz0 as /devices/virtual/input/input34
[ 1224.403663][T16469] usb 6-1: 0:2 : does not exist
[ 1224.467450][T16469] usb 6-1: USB disconnect, device number 21
[ 1224.835883][ T5915] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[ 1224.943094][T30566] loop4: detected capacity change from 0 to 128
[ 1225.010378][T30569] loop8: detected capacity change from 0 to 256
[ 1225.016865][ T5915] usb 10-1: Using ep0 maxpacket: 8
[ 1225.028635][T30566] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1225.052482][ T5915] usb 10-1: config index 0 descriptor too short (expected 30, got 18)
[ 1225.070775][ T5915] usb 10-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[ 1225.096404][T30566] ext4 filesystem being mounted at /95/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1225.126219][ T5915] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1225.134358][ T5915] usb 10-1: Product: syz
[ 1225.159464][T30555] loop0: detected capacity change from 0 to 40427
[ 1225.171149][ T5915] usb 10-1: Manufacturer: syz
[ 1225.176518][ T5915] usb 10-1: SerialNumber: syz
[ 1225.183674][T28573] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1225.185671][T30555] F2FS-fs (loop0): heap/no_heap options were deprecated
[ 1225.202560][ T5915] usb 10-1: config 0 descriptor??
[ 1225.212605][ T5915] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[ 1225.221224][ T5915] usb 10-1: setting power ON
[ 1225.228015][ T5915] dvb-usb: bulk message failed: -22 (2/0)
[ 1225.236447][ T5915] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1225.252161][ T5915] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[ 1225.265719][T30555] F2FS-fs (loop0): invalid crc value
[ 1225.295540][ T5915] usb 10-1: media controller created
[ 1225.380611][ T5915] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1225.443483][ T5915] usb 10-1: selecting invalid altsetting 6
[ 1225.457316][ T5915] usb 10-1: digital interface selection failed (-22)
[ 1225.486511][ T5915] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[ 1225.503223][T30555] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1225.512401][ T5915] usb 10-1: setting power OFF
[ 1225.521420][ T5915] dvb-usb: bulk message failed: -22 (2/0)
[ 1225.567510][ T5915] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[ 1225.633933][ T5915] (NULL device *): no alternate interface
[ 1225.839777][ T5915] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[ 1225.927070][T22379] syz-executor: attempt to access beyond end of device
[ 1225.927070][T22379] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1225.977970][ T5915] usb 10-1: USB disconnect, device number 20
[ 1226.029176][T22379] CPU: 0 UID: 0 PID: 22379 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1226.029215][T22379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1226.029230][T22379] Call Trace:
[ 1226.029241][T22379]  <TASK>
[ 1226.029253][T22379]  dump_stack_lvl+0x189/0x250
[ 1226.029298][T22379]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1226.029327][T22379]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1226.029355][T22379]  ? __pfx_queue_work_on+0x10/0x10
[ 1226.029388][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.029416][T22379]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1226.029443][T22379]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1226.029470][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.029498][T22379]  ? f2fs_hw_is_readonly+0x39b/0x470
[ 1226.029534][T22379]  f2fs_handle_critical_error+0x37c/0x540
[ 1226.029572][T22379]  f2fs_write_end_io+0x495/0x810
[ 1226.029601][T22379]  ? blkg_put+0x22/0x240
[ 1226.029663][T22379]  __submit_merged_bio+0x27a/0x6a0
[ 1226.029700][T22379]  __submit_merged_write_cond+0x255/0x530
[ 1226.029754][T22379]  f2fs_write_data_pages+0x261d/0x3000
[ 1226.029836][T22379]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1226.029934][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.029979][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.030007][T22379]  ? folios_put_refs+0x559/0x640
[ 1226.030052][T22379]  ? __pfx_folios_put_refs+0x10/0x10
[ 1226.030086][T22379]  ? rcu_is_watching+0x15/0xb0
[ 1226.030129][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.030158][T22379]  ? __lock_acquire+0xab9/0xd20
[ 1226.030211][T22379]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1226.030244][T22379]  do_writepages+0x32e/0x550
[ 1226.030286][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.030321][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.030349][T22379]  ? do_raw_spin_unlock+0x122/0x240
[ 1226.030394][T22379]  filemap_fdatawrite+0x191/0x230
[ 1226.030431][T22379]  ? __pfx_filemap_fdatawrite+0x10/0x10
[ 1226.030532][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.030568][T22379]  ? do_raw_spin_unlock+0x122/0x240
[ 1226.030612][T22379]  f2fs_sync_dirty_inodes+0x31f/0x830
[ 1226.030668][T22379]  f2fs_write_checkpoint+0x94a/0x1de0
[ 1226.030738][T22379]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1226.030843][T22379]  ? kill_f2fs_super+0x298/0x6c0
[ 1226.030885][T22379]  kill_f2fs_super+0x2c3/0x6c0
[ 1226.030928][T22379]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1226.030957][T22379]  ? radix_tree_delete_item+0x2b6/0x400
[ 1226.030995][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.031023][T22379]  ? shrinker_free+0x2ce/0x3e0
[ 1226.031055][T22379]  deactivate_locked_super+0xbc/0x130
[ 1226.031096][T22379]  cleanup_mnt+0x425/0x4c0
[ 1226.031125][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.031153][T22379]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1226.031186][T22379]  task_work_run+0x1d4/0x260
[ 1226.031231][T22379]  ? __pfx_task_work_run+0x10/0x10
[ 1226.031265][T22379]  ? __x64_sys_umount+0x122/0x160
[ 1226.031306][T22379]  ? exit_to_user_mode_loop+0x40/0x110
[ 1226.031339][T22379]  exit_to_user_mode_loop+0xec/0x110
[ 1226.031365][T22379]  do_syscall_64+0x2bd/0x3b0
[ 1226.031392][T22379]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1226.031419][T22379]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1226.031442][T22379]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.031471][T22379]  ? exc_page_fault+0x9f/0xf0
[ 1226.031502][T22379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1226.031525][T22379] RIP: 0033:0x7f11f038fcd7
[ 1226.031547][T22379] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1226.031568][T22379] RSP: 002b:00007ffd9c56e778 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1226.031593][T22379] RAX: 0000000000000000 RBX: 00007f11f0410b55 RCX: 00007f11f038fcd7
[ 1226.031609][T22379] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd9c56e830
[ 1226.031624][T22379] RBP: 00007ffd9c56e830 R08: 0000000000000000 R09: 0000000000000000
[ 1226.031639][T22379] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd9c56f8c0
[ 1226.031654][T22379] R13: 00007f11f0410b55 R14: 000000000012b245 R15: 00007ffd9c56f900
[ 1226.031697][T22379]  </TASK>
[ 1226.031707][T22379] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 1226.633874][T30599] netlink: 52 bytes leftover after parsing attributes in process `syz.9.9213'.
[ 1226.713092][T30601] loop8: detected capacity change from 0 to 256
[ 1226.727890][T30601] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1226.750370][T30601] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[ 1226.780060][T30603] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9216'.
[ 1226.802862][T30601] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[ 1227.180892][T30616] netlink: 32 bytes leftover after parsing attributes in process `syz.4.9222'.
[ 1227.656673][T30635] netlink: 'syz.8.9229': attribute type 10 has an invalid length.
[ 1227.664656][T30635] netlink: 40 bytes leftover after parsing attributes in process `syz.8.9229'.
[ 1227.747869][T30635] team0: Port device geneve0 added
[ 1227.942513][T30623] loop5: detected capacity change from 0 to 32768
[ 1227.997454][T30623] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode.
[ 1228.086709][T30623] 
[ 1228.089085][T30623] ======================================================
[ 1228.096111][T30623] WARNING: possible circular locking dependency detected
[ 1228.103135][T30623] 6.16.0-rc7-syzkaller #0 Not tainted
[ 1228.108496][T30623] ------------------------------------------------------
[ 1228.115502][T30623] syz.5.9224/30623 is trying to acquire lock:
[ 1228.121566][T30623] ffff88805d8d06f8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_calc_xattr_init+0x20a/0xd80
[ 1228.131519][T30623] 
[ 1228.131519][T30623] but task is already holding lock:
[ 1228.138893][T30623] ffff88807e693480 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[ 1228.152153][T30623] 
[ 1228.152153][T30623] which lock already depends on the new lock.
[ 1228.152153][T30623] 
[ 1228.162556][T30623] 
[ 1228.162556][T30623] the existing dependency chain (in reverse order) is:
[ 1228.171569][T30623] 
[ 1228.171569][T30623] -> #3 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{4:4}:
[ 1228.182114][T30623]        lock_acquire+0x120/0x360
[ 1228.187151][T30623]        down_write+0x96/0x1f0
[ 1228.191925][T30623]        ocfs2_evict_inode+0x153d/0x40e0
[ 1228.197559][T30623]        evict+0x504/0x9c0
[ 1228.201980][T30623]        vfs_rmdir+0x3ec/0x520
[ 1228.206771][T30623]        do_rmdir+0x2ac/0x630
[ 1228.211549][T30623]        __x64_sys_rmdir+0x47/0x50
[ 1228.216668][T30623]        do_syscall_64+0xfa/0x3b0
[ 1228.221744][T30623]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.228164][T30623] 
[ 1228.228164][T30623] -> #2 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]){+.+.}-{4:4}:
[ 1228.238516][T30623]        lock_acquire+0x120/0x360
[ 1228.243539][T30623]        down_write+0x96/0x1f0
[ 1228.248311][T30623]        ocfs2_del_inode_from_orphan+0x134/0x740
[ 1228.254655][T30623]        ocfs2_dio_end_io+0x479/0x10f0
[ 1228.260120][T30623]        dio_complete+0x25b/0x790
[ 1228.265156][T30623]        __blockdev_direct_IO+0x2db6/0x33d0
[ 1228.271066][T30623]        ocfs2_direct_IO+0x25f/0x2d0
[ 1228.276357][T30623]        generic_file_direct_write+0x1db/0x3e0
[ 1228.282559][T30623]        __generic_file_write_iter+0x11d/0x230
[ 1228.288722][T30623]        ocfs2_file_write_iter+0x157a/0x1d10
[ 1228.294712][T30623]        iter_file_splice_write+0x93a/0x1000
[ 1228.300703][T30623]        direct_splice_actor+0x101/0x160
[ 1228.306383][T30623]        splice_direct_to_actor+0x5a8/0xcc0
[ 1228.312287][T30623]        do_splice_direct+0x181/0x270
[ 1228.317668][T30623]        do_sendfile+0x4da/0x7e0
[ 1228.322603][T30623]        __se_sys_sendfile64+0x13e/0x190
[ 1228.328232][T30623]        do_syscall_64+0xfa/0x3b0
[ 1228.333344][T30623]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.339761][T30623] 
[ 1228.339761][T30623] -> #1 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}:
[ 1228.348600][T30623]        lock_acquire+0x120/0x360
[ 1228.353627][T30623]        down_write+0x96/0x1f0
[ 1228.358397][T30623]        ocfs2_try_remove_refcount_tree+0xb6/0x320
[ 1228.364902][T30623]        ocfs2_xattr_set+0x595/0x11f0
[ 1228.370281][T30623]        ocfs2_set_acl+0x701/0x7b0
[ 1228.375392][T30623]        ocfs2_iop_set_acl+0x1aa/0x2a0
[ 1228.380853][T30623]        vfs_set_acl+0x887/0xb00
[ 1228.385805][T30623]        filename_setxattr+0x2e0/0x600
[ 1228.391260][T30623]        path_setxattrat+0x364/0x3a0
[ 1228.396542][T30623]        __x64_sys_setxattr+0xbc/0xe0
[ 1228.401907][T30623]        do_syscall_64+0xfa/0x3b0
[ 1228.406938][T30623]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.413354][T30623] 
[ 1228.413354][T30623] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}:
[ 1228.421188][T30623]        validate_chain+0xb9b/0x2140
[ 1228.426623][T30623]        __lock_acquire+0xab9/0xd20
[ 1228.431843][T30623]        lock_acquire+0x120/0x360
[ 1228.436866][T30623]        down_read+0x46/0x2e0
[ 1228.441548][T30623]        ocfs2_calc_xattr_init+0x20a/0xd80
[ 1228.447965][T30623]        ocfs2_mknod+0xc92/0x2050
[ 1228.452987][T30623]        ocfs2_create+0x1a5/0x440
[ 1228.458027][T30623]        path_openat+0x14f4/0x3830
[ 1228.463139][T30623]        do_filp_open+0x1fa/0x410
[ 1228.468164][T30623]        do_sys_openat2+0x121/0x1c0
[ 1228.473365][T30623]        __x64_sys_openat+0x138/0x170
[ 1228.478757][T30623]        do_syscall_64+0xfa/0x3b0
[ 1228.483846][T30623]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.490279][T30623] 
[ 1228.490279][T30623] other info that might help us debug this:
[ 1228.490279][T30623] 
[ 1228.500503][T30623] Chain exists of:
[ 1228.500503][T30623]   &oi->ip_xattr_sem --> &ocfs2_sysfile_lock_key[args->fi_sysfile_type] --> &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6
[ 1228.500503][T30623] 
[ 1228.519343][T30623]  Possible unsafe locking scenario:
[ 1228.519343][T30623] 
[ 1228.526802][T30623]        CPU0                    CPU1
[ 1228.532162][T30623]        ----                    ----
[ 1228.537520][T30623]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6);
[ 1228.544828][T30623]                                lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]);
[ 1228.554481][T30623]                                lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6);
[ 1228.564306][T30623]   rlock(&oi->ip_xattr_sem);
[ 1228.568991][T30623] 
[ 1228.568991][T30623]  *** DEADLOCK ***
[ 1228.568991][T30623] 
[ 1228.577129][T30623] 3 locks held by syz.5.9224/30623:
[ 1228.582358][T30623]  #0: ffff88803a720428 (sb_writers#27){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 1228.591628][T30623]  #1: ffff88805d8d09c0 (&type->i_mutex_dir_key#21){++++}-{4:4}, at: path_openat+0x8da/0x3830
[ 1228.601941][T30623]  #2: ffff88807e693480 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[ 1228.615645][T30623] 
[ 1228.615645][T30623] stack backtrace:
[ 1228.621539][T30623] CPU: 1 UID: 0 PID: 30623 Comm: syz.5.9224 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1228.621567][T30623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1228.621580][T30623] Call Trace:
[ 1228.621592][T30623]  <TASK>
[ 1228.621602][T30623]  dump_stack_lvl+0x189/0x250
[ 1228.621635][T30623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1228.621661][T30623]  ? __pfx__printk+0x10/0x10
[ 1228.621688][T30623]  ? stack_trace_save+0x9c/0xe0
[ 1228.621719][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.621767][T30623]  print_circular_bug+0x2ee/0x310
[ 1228.621798][T30623]  check_noncircular+0x134/0x160
[ 1228.621830][T30623]  validate_chain+0xb9b/0x2140
[ 1228.621856][T30623]  ? do_syscall_64+0xfa/0x3b0
[ 1228.621890][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.621919][T30623]  __lock_acquire+0xab9/0xd20
[ 1228.621944][T30623]  ? ocfs2_calc_xattr_init+0x20a/0xd80
[ 1228.621968][T30623]  lock_acquire+0x120/0x360
[ 1228.621989][T30623]  ? ocfs2_calc_xattr_init+0x20a/0xd80
[ 1228.622015][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622042][T30623]  ? security_inode_init_security+0x35e/0x3f0
[ 1228.622079][T30623]  down_read+0x46/0x2e0
[ 1228.622106][T30623]  ? ocfs2_calc_xattr_init+0x20a/0xd80
[ 1228.622132][T30623]  ocfs2_calc_xattr_init+0x20a/0xd80
[ 1228.622162][T30623]  ? __pfx_ocfs2_calc_xattr_init+0x10/0x10
[ 1228.622189][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622213][T30623]  ? ocfs2_init_security_get+0x139/0x1a0
[ 1228.622242][T30623]  ocfs2_mknod+0xc92/0x2050
[ 1228.622271][T30623]  ? __pfx_ocfs2_mknod+0x10/0x10
[ 1228.622290][T30623]  ? __pfx_ocfs2_find_entry+0x10/0x10
[ 1228.622316][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622340][T30623]  ? __lock_acquire+0xab9/0xd20
[ 1228.622373][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622399][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622423][T30623]  ? look_up_lock_class+0x74/0x170
[ 1228.622447][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622471][T30623]  ? register_lock_class+0x51/0x320
[ 1228.622496][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622520][T30623]  ? __lock_acquire+0xab9/0xd20
[ 1228.622546][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622571][T30623]  ? __lock_acquire+0xab9/0xd20
[ 1228.622596][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622620][T30623]  ? do_raw_spin_lock+0x121/0x290
[ 1228.622653][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622680][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622704][T30623]  ? do_raw_spin_unlock+0x122/0x240
[ 1228.622736][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622763][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622787][T30623]  ? rcu_is_watching+0x15/0xb0
[ 1228.622813][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622837][T30623]  ? ocfs2_lookup+0x4a0/0x990
[ 1228.622873][T30623]  ocfs2_create+0x1a5/0x440
[ 1228.622905][T30623]  ? __pfx_ocfs2_lookup+0x10/0x10
[ 1228.622937][T30623]  ? from_kgid+0x1b0/0x650
[ 1228.622968][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.622994][T30623]  ? __pfx_ocfs2_create+0x10/0x10
[ 1228.623026][T30623]  ? HAS_UNMAPPED_ID+0x11a/0x180
[ 1228.623053][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.623077][T30623]  ? inode_permission+0x149/0x470
[ 1228.623097][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.623122][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.623148][T30623]  ? __pfx_ocfs2_create+0x10/0x10
[ 1228.623179][T30623]  path_openat+0x14f4/0x3830
[ 1228.623205][T30623]  ? arch_stack_walk+0xfc/0x150
[ 1228.623251][T30623]  ? __pfx_path_openat+0x10/0x10
[ 1228.623275][T30623]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.623308][T30623]  do_filp_open+0x1fa/0x410
[ 1228.623333][T30623]  ? __lock_acquire+0xab9/0xd20
[ 1228.623355][T30623]  ? __pfx_do_filp_open+0x10/0x10
[ 1228.623394][T30623]  ? _raw_spin_unlock+0x28/0x50
[ 1228.623412][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.623437][T30623]  ? alloc_fd+0x64c/0x6c0
[ 1228.623475][T30623]  do_sys_openat2+0x121/0x1c0
[ 1228.623498][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.623523][T30623]  ? __se_sys_futex+0x36f/0x400
[ 1228.623552][T30623]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1228.623579][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.623604][T30623]  ? rcu_is_watching+0x15/0xb0
[ 1228.623631][T30623]  __x64_sys_openat+0x138/0x170
[ 1228.623657][T30623]  do_syscall_64+0xfa/0x3b0
[ 1228.623681][T30623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1228.623704][T30623]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.623724][T30623]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1228.623749][T30623]  ? exc_page_fault+0x9f/0xf0
[ 1228.623772][T30623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.623793][T30623] RIP: 0033:0x7f009978e9a9
[ 1228.623814][T30623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1228.623833][T30623] RSP: 002b:00007f009a58e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1228.623855][T30623] RAX: ffffffffffffffda RBX: 00007f00999b5fa0 RCX: 00007f009978e9a9
[ 1228.623871][T30623] RDX: 00000000001a10c1 RSI: 0000200000000140 RDI: ffffffffffffff9c
[ 1228.623887][T30623] RBP: 00007f0099810d69 R08: 0000000000000000 R09: 0000000000000000
[ 1228.623901][T30623] R10: 9c37611dc13d0d83 R11: 0000000000000246 R12: 0000000000000000
[ 1228.623915][T30623] R13: 0000000000000000 R14: 00007f00999b5fa0 R15: 00007ffdf6e49258
[ 1228.623940][T30623]  </TASK>
[ 1228.624020][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1229.144481][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1229.339525][T22214] ocfs2: Unmounting device (7,5) on (node local)
[ 1235.455954][T18191] Bluetooth: hci5: command 0x0406 tx timeout