last executing test programs:

7m43.603973234s ago: executing program 0 (id=291):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000080)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
writev(r0, &(0x7f0000000380)=[{&(0x7f0000000b00)='\'', 0x1}, {0x0}], 0x2)

7m42.97500824s ago: executing program 0 (id=295):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0x18, &(0x7f0000000240)=0x2, 0x4)
bind$inet(r0, &(0x7f0000000440)={0x2, 0x0, @multicast2}, 0x10)

7m42.527597708s ago: executing program 0 (id=301):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000fc0)=[{&(0x7f0000000940)=""/229, 0xe5}, {&(0x7f0000000280)=""/212, 0xd4}, {&(0x7f0000001080)=""/4049, 0xfd1}, {&(0x7f0000000380)=""/210, 0xd2}, {&(0x7f0000000e40)=""/192, 0xc0}, {&(0x7f0000000540)=""/171, 0xab}, {&(0x7f0000000700)=""/133, 0x85}, {&(0x7f0000000b00)=""/200, 0xc8}, {&(0x7f0000000600)=""/213, 0xd5}], 0x9}, 0x40012102)

7m41.850188537s ago: executing program 0 (id=306):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000200)={[{@allow_utime}, {@gid}, {@errors_continue}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp861'}}, {}, {@gid}, {@discard}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@keep_last_dots}, {@keep_last_dots}]}, 0x1, 0x152d, &(0x7f00000034c0)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

7m41.115827674s ago: executing program 0 (id=315):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)

7m40.716816335s ago: executing program 0 (id=317):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/fib_trie\x00')
read$FUSE(r0, &(0x7f0000006180)={0x2020}, 0x2020)
lseek(r0, 0xfffffffffffffffd, 0x1)

7m39.034264562s ago: executing program 32 (id=317):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/fib_trie\x00')
read$FUSE(r0, &(0x7f0000006180)={0x2020}, 0x2020)
lseek(r0, 0xfffffffffffffffd, 0x1)

3m52.303182909s ago: executing program 1 (id=1790):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
close_range(r0, 0xffffffffffffffff, 0x0)

3m51.870926483s ago: executing program 1 (id=1793):
r0 = socket$inet(0x2, 0x5, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x2c)
setsockopt$inet_mreqsrc(r0, 0x0, 0x25, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc)

3m51.345926905s ago: executing program 1 (id=1797):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r0, 0x1, 0xa, &(0x7f0000000180), 0x4)
recvmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x10111)

3m50.891705812s ago: executing program 1 (id=1803):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2081413, 0x0, 0x1, 0x0, &(0x7f0000000080))
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}], [], 0x2c})

3m49.911500282s ago: executing program 1 (id=1811):
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x120)

3m48.980546324s ago: executing program 1 (id=1817):
r0 = syz_open_dev$vbi(&(0x7f0000002100), 0x1, 0x2)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000000)={0x3, 0x5, 0x1, 0x0, 0x2})
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000280)={0x7, @win={{0x2, 0x140000, 0x2, 0x7}, 0x2, 0x1, 0x0, 0x1, 0x0, 0x3}})

3m47.54811797s ago: executing program 33 (id=1817):
r0 = syz_open_dev$vbi(&(0x7f0000002100), 0x1, 0x2)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000000)={0x3, 0x5, 0x1, 0x0, 0x2})
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000280)={0x7, @win={{0x2, 0x140000, 0x2, 0x7}, 0x2, 0x1, 0x0, 0x1, 0x0, 0x3}})

3m10.936114908s ago: executing program 2 (id=2044):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x30, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001d0001000000000004086aa42d"], 0x30}}, 0x0)

3m10.460701527s ago: executing program 2 (id=2049):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={0x24, r1, 0x705, 0x400000, 0x4, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x16}]}]}]}, 0x24}}, 0x0)

3m10.020001101s ago: executing program 2 (id=2052):
capset(&(0x7f00000001c0)={0x20071026}, &(0x7f0000000100))
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000600)={&(0x7f0000000080)={0xa, 0x4e20, 0x1000000080000, @dev={0xfe, 0x80, '\x00', 0x25}}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000029000000040000002b0000000000000718"], 0x30}, 0x0)

3m9.487804869s ago: executing program 2 (id=2058):
syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000100)='./file1\x00', 0x800800, &(0x7f0000000040)={[{@utf8}, {@iocharset={'iocharset', 0x3d, 'cp950'}}, {@umask={'umask', 0x3d, 0x8}}, {@keep_last_dots}, {@umask={'umask', 0x3d, 0x5}}, {@gid}, {@iocharset={'iocharset', 0x3d, 'cp775'}}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@errors_continue}, {@sys_tz}]}, 0x1, 0x152b, &(0x7f0000000a00)="$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")
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)

3m8.501506337s ago: executing program 2 (id=2064):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000b40)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xd}, @loopback}}}], 0x20}, 0xe900)
close(r0)

3m7.82292186s ago: executing program 2 (id=2070):
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file2\x00', 0x3000812, &(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYRESDEC, @ANYRESDEC, @ANYRES8, @ANYRESOCT], 0x11, 0x2f0, &(0x7f00000019c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000001200)="10", 0x69000}], 0x1000000000000017)

3m6.489412189s ago: executing program 34 (id=2070):
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file2\x00', 0x3000812, &(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYRESDEC, @ANYRESDEC, @ANYRES8, @ANYRESOCT], 0x11, 0x2f0, &(0x7f00000019c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000001200)="10", 0x69000}], 0x1000000000000017)

3m3.610098672s ago: executing program 6 (id=2089):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000000)='./file0\x00', 0x2000000, &(0x7f00000004c0)={[{@test_dummy_encryption_v1}]}, 0x82, 0x540, &(0x7f00000007c0)="$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")

3m1.874380603s ago: executing program 6 (id=2092):
r0 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000001d00)=@qipcrtr, 0x80, 0x0}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000740)={&(0x7f0000000040)=@qipcrtr={0x2a, 0xffffffff, 0x3fff}, 0x80, 0x0}, 0x0)

3m1.047245241s ago: executing program 6 (id=2095):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x46d, 0xc295, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x4, 0x0, 0x1, {0x22, 0xb}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0xb, {[@global=@item_4={0x3, 0x1, 0x13, "6fa886b4"}, @global=@item_4={0x3, 0x1, 0x1, "798d6e71"}, @global=@item_012={0x0, 0x1, 0x2}]}}, 0x0}, 0x0)

2m58.592851578s ago: executing program 6 (id=2106):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})

2m57.229989963s ago: executing program 6 (id=2110):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000100)={[{@nobarrier}, {@part={'part', 0x3d, 0x9}}, {@umask={'umask', 0x3d, 0x800}}, {@nls={'nls', 0x3d, 'iso8859-2'}}, {@umask={'umask', 0x3d, 0x7ff}}, {@umask={'umask', 0x3d, 0xde5}}]}, 0x3, 0x6b2, &(0x7f0000000280)="$eJzs3U+IHFkdB/BvdSY96QjZ2X/ZKEKGDSy6wWQmzZoIwkYRySFI0Mteh2SyGTLJLpNZyS5iOuoqePIke/CwIvGwIoiIsJ4W17MgePGUe8CbhxzUkfrTMz0znUlPkpkedz8fqK73+r1671e/VFV3V2foAJ9a517L/l6KnDt+/mZZv3unu3j3Tvdav5xkMkkrmahXKTpJ8XFyNvWSz5ZPNsMVD5rnlXsfFhPvfdCtaxPNUvVvbbXdJkN79pIDq5V9Sabr4r9HHnbTeNVSjXNxbbxHVKzGXSbsWD9xMG4rm/TWGlsP3Xz08xbYs27Vr5ubTCUHU7+6lu8D0lwdHn5lGIfOutqW16beTscCAAAAO2/oZ/lBT93P/dzMod0JBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4Zivo3A4tmafXL0yn6v//fHvhN/faYw31M716uVt9+atyBAAAAAAAAAMBjOXo/93Mzh/r1laL6zv/FqvJc9fiZvJUbmc9STuRm5rKc5SxlNsnUwEDtm3PLy0uzm7f8ecotV1ZWbjVbnhq65an1cfU2Bjrsfxps6gQAAAAAAAAAn1o/yLm17/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAvKJJ99apanuuXp9KaSHIgSbuYXu3eHmuwj6UO/aNxhwEAAAC751Dx37qwUlSf+Q9Xn/sP5K1cz3IWspzFzOdSdS+g/ujc+luvu3j3TvdauWwe8Gv/3Nb81Yip7z0Mn3mm6vH86hbn8s18J8cznQtZykK+m7ksZz7T+UZVmkuRqebuxdTdO530Y90c79l1tQsbYzs6UC7jO1JF0snlLFSxncjFdj/0VtPvyMBsf2wnG2a8XWaneLUxYo4uNetyj37WrPeGqWrP969mZKbJfZmNpwfzvjn32zxONs40m9bqPajn1mYpqxtneqScH2zWu5Drbd5KW5+J3k/LWv/oO7x1zpMv/v3PF660rl+9cvnG8b1zGD2ijcdEdyATL4yUicUyE73HyMSBx4n/yWk32aivotu7Wr5YbXsoC/lW3silzOd0ZjKbM5nJV3Iq3ZwayOvzW+e1Otda2zvXjn2hKXSS/KRZ76rJBzWUeX16IK+DV7qpqm3wmbUsPTNClop2hmfpH0NDmfhcUyjn+OHAK874bczE7EAmnt06E7/8z0qSG4vXry5dmXtzxPleatblafvu+mv0r57IDm1fs7vl8fJM+Y9VVn6cdUdH2fZsv21DvtrNNy4TzWDr2tqpzue67WFnajnS4dvDRqrbXhg6S7dqOzLQtu5dTt7I4uq7EAD2rFYOvnyw3bnX+Wvn/c6POlc65w98ffLM5Ofb2f+XiT/t+13r162vFi/n/Xw/h8YdKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfBLcePudq3OLi/NLe7CQ1gidf5vRB7w9tKmfivqZ9k7vVz3ZR78Ze3qfaKF/IE1udUT9PskW47THEXwnyc5OcXS0zpnYhV2ezJCm86vPdJLWajxJru6RH7gDdsLJ5Wtvnrzx9jtfWrg29/r86/PXT505/erp7pdnb528vLA4P1M/jjtKYCdsfF8KAAAAAAAAAAAA7H278VcWQ6YtemPYVwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOD/07nXsr+XIrMzJ2bK+t073cVy6ZfXek4kaSUpvpcUHydnUy+ZGhiueNA8r9z78BcvvfdBd22siX7/1obt/vCvlZVt7kWvWTKdZF+zfrjJkca7ODBeb5uB1YrVPSwTdqyfOBi3/wUAAP//0koEbg==")
setxattr$incfs_metadata(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, 0x0, 0x1)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00')

2m56.174809532s ago: executing program 6 (id=2117):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000d40)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/43, 0x2b}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{0x9, 0x5}, {0x0}, &(0x7f0000000600)=[{&(0x7f0000000140)=""/102, 0x66}], 0x1, 0x20, 0xffffffffffff1184}}, @rdma_args={0x48, 0x114, 0x1, {{0xfffffffc, 0xfffffff8}, {0x0}, &(0x7f0000000700)=[{&(0x7f0000000900)=""/246, 0xf6}], 0x1, 0xc921cdaacbcb2485, 0x7fff}}, @rdma_args={0x48, 0x114, 0x1, {{0x7b, 0x4}, {0x0}, 0x0, 0x0, 0x4, 0x1}}], 0x120}, 0x0)

2m54.311493666s ago: executing program 35 (id=2117):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000d40)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/43, 0x2b}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{0x9, 0x5}, {0x0}, &(0x7f0000000600)=[{&(0x7f0000000140)=""/102, 0x66}], 0x1, 0x20, 0xffffffffffff1184}}, @rdma_args={0x48, 0x114, 0x1, {{0xfffffffc, 0xfffffff8}, {0x0}, &(0x7f0000000700)=[{&(0x7f0000000900)=""/246, 0xf6}], 0x1, 0xc921cdaacbcb2485, 0x7fff}}, @rdma_args={0x48, 0x114, 0x1, {{0x7b, 0x4}, {0x0}, 0x0, 0x0, 0x4, 0x1}}], 0x120}, 0x0)

2m34.260785022s ago: executing program 3 (id=2219):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
pwritev(r0, &(0x7f00000007c0)=[{&(0x7f0000000100)="d358313829cb26b18c3cbaaed12f8d", 0xf}, {0x0}], 0x2, 0x14d40000, 0x4)

2m33.617145604s ago: executing program 3 (id=2224):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000100)=0xfffffff7, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0xfffffffd, @remote, 0xb}, 0x18, 0x0, 0x0, &(0x7f00000030c0)=[@pktinfo={{0x24, 0x29, 0x32, {@private2={0xfc, 0x2, '\x00', 0x1}}}}, @rthdrdstopts={{0x18, 0x29, 0x37, {0x16}}}], 0x40, 0x7ffffff7}}], 0x1, 0x4000801)

2m33.042034231s ago: executing program 3 (id=2229):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
pselect6(0x40, &(0x7f0000000000)={0x5, 0x7, 0xe, 0x800, 0xf0f, 0x1, 0x7, 0x2}, &(0x7f0000000040)={0xb, 0xc7c7, 0x40000000, 0x4, 0x7ff, 0xc2, 0x4, 0x2}, 0x0, 0x0, 0x0)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1)

2m32.594190517s ago: executing program 3 (id=2231):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@minixdf}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file2\x00', 0x42, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

2m31.659639453s ago: executing program 3 (id=2238):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0xfec0ffffffffffff, 0xac14140c}, 0x300}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x900}, 0x60)
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0xffac, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0xffa0}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f00000010c0)=[@ip_tos_int={{0x18, 0x29, 0x3e}}, @ip_tos_u8={{0x38, 0x29, 0x3b}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x50}, 0x0)

2m30.812707707s ago: executing program 3 (id=2242):
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file2\x00', 0x0, &(0x7f0000000280)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x452, &(0x7f00000014c0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f00000025c0)={0x17c04, r0, 0x6, 0xd, 0x4, 0x80000001})

2m29.088295939s ago: executing program 36 (id=2242):
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file2\x00', 0x0, &(0x7f0000000280)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x452, &(0x7f00000014c0)="$eJzs3MtvG8UfAPDvrp30/Ut+UB4tLQQKouKRNOnzwKUIJA4gIcGhiFNI0qrUbaAJEq0qKBzKEVXijjgi8RdwggsCTkhc4Y4qVaiXFiQko13vpsa107hx6rb+fKR1Z7zjznx3d+zZGTsBDKyx7CGJ2BwRv0XESCP73wJjjX+uXTk389eVczNJ1Otv/Jnk5a5eOTdTFi1ft6mRqdeL/Lo29V54O2K6Vps7XeQnFk++N7Fw5uzzx09OH5s7Nndq6tChfXt3Dh+Y2t+TOLO4rm7/aH7HtlfeuvjazJGL7/z0TdbezcX+5jh6ZaxxdNt6qteV9dmW7CFtpJNqnxvDilUiIjtdQ3n/H4lKbFjaNxIvf9rXxgFrql6v19t9PhfO14F7WBL9bgHQH+UHfXb/W263aehxR7h8OOL9g434rxVbY0+1vJ3N7422rFH9YxFx5PzfX2ZbrNE8BABAs+8OR8Rz7cZ/aTzYVO5/xRrKaET8PyLui4j7I2JrXIwHIvKyD0XEw13W37pCcuP4J710S4GtUDb+e6FY21oa//1Tv76YETFaKXJb8viHkqPHa3N7imOyO4bWZfnJZer4/qVfP++0r3n8l21Z/eVYsCG9VG2ZoJudXpxeZdhLLn8Ssb3aEn8uiXIZJ4mIbRGxvav/+fodxvFnvt7RqdTN419GD9aZ6l9FPN04/+ejJf5S0nF9cvLggan9E+ujNrdnorwqbvTzLxde71T/quLvgez8b2y9/nNL8Y8m6yMWzpw9ka/XLnRfR/r7Zx3vaW71+h9O3szTw8VzH04vLp6ejBhOXr3x+anrry3zZfks/t272sWf5u9x5ZF4JCKyi3hnRDwaEY8VbX88Ip6IiF3LxP/ji0++2338y8zK91AW/+zNzn80n//uE5UTP3zbffyl7Pzvy1O7i2dW8v630gau5tgBAADA3SLNvwOfpONL6TQdH298h39rbExr8wuLzx6d/+DUbOO78qMxlJYzXSNN86GTxdxwmZ9qye8t5o2/qGzI8+Mz87XZfgcPA25Th/6f+aPS79YBa87vtWBw6f8wuPR/GFz6Pwwu/R8GV7v+/3Ef2gHcfj7/YXDp/zC49H8YXPo/DKSOv41PV/WTf4l7PhFp96+qxh3S+LspUV3xH7O4xcS6trv6/c4EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQG/8GAAD//+b67j4=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f00000025c0)={0x17c04, r0, 0x6, 0xd, 0x4, 0x80000001})

4.409109535s ago: executing program 7 (id=2984):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000c80)='./file0\x00', 0x800400, &(0x7f0000000200)={[{@lastblock={'lastblock', 0x3d, 0xe2}}, {@mode}, {@session}, {@noadinicb}, {@nostrict}, {@uid}, {@shortad}, {@uid_ignore}, {@shortad}, {@uid_ignore}]}, 0x4, 0xc24, &(0x7f0000000d00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x105042, 0x189)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffff7, 0x4012011, r0, 0x0)

3.811544252s ago: executing program 5 (id=2988):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)

3.648146154s ago: executing program 8 (id=2989):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x3, 0x1c, &(0x7f0000001840)=@ringbuf={{0x18, 0x6}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@snprintf={{}, {0x5, 0x3, 0x3, 0xa, 0x9}, {0x5}, {0x3, 0x3, 0x3, 0xa, 0xa}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x15, 0x0, 0x0, 0x76}}], {{}, {0x5}, {0x28}}}, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)

3.195555579s ago: executing program 7 (id=2991):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00')
readlinkat(r0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010)

3.039649089s ago: executing program 8 (id=2992):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000007540), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000007640)={0x0, 0x0, &(0x7f0000007600)={&(0x7f0000007580)={0x3c, r0, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x1}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x5}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}]}, 0x3c}}, 0x4000854)

2.681374366s ago: executing program 9 (id=2993):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x101}, @NFTA_NG_DREG={0x8}, @NFTA_NG_TYPE={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}}, 0x0)

2.611912472s ago: executing program 7 (id=2994):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000200)={[{@init_itable}, {@resuid}, {@stripe}]}, 0x3, 0x44b, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000240)=@reiserfs_2={0x8, 0x2, {0xb}}, 0x0)

2.50478925s ago: executing program 8 (id=2995):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000002040)={0x38, r1, 0x1, 0x70bd27, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}]}, 0x38}}, 0x804)

2.451876542s ago: executing program 5 (id=2996):
r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x81c0, 0x0)

2.226984428s ago: executing program 9 (id=2997):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="1400000035000b63d25a80648c2594f90624fc60", 0x14}], 0x1}, 0x0)
recvfrom(r0, 0x0, 0x0, 0x160, 0x0, 0x0)

2.226487545s ago: executing program 4 (id=2998):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000010000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000003c80)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0x8, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x11}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}, 0x1, 0x0, 0x0, 0x44}, 0x0)

2.029195208s ago: executing program 4 (id=2999):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000340)={0x3f, 0x3, 0x5, 0x3}, 0x10)
write(r0, &(0x7f00000000c0)="240000001e005f0214fffffffffffff8070000000400000000000000080009001d000000", 0x24)

1.859652652s ago: executing program 5 (id=3000):
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
r0 = io_uring_setup(0x5f6f, &(0x7f0000000000)={0x0, 0xc631, 0x40, 0x20, 0xfffffffc})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000180), 0x44)

1.743341026s ago: executing program 8 (id=3001):
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000000600)={[{@resgid}, {@nodioread_nolock}]}, 0x0, 0x23c, &(0x7f00000006c0)="$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")
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280)={0x0, r0}, 0x8)

1.743044626s ago: executing program 7 (id=3002):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r0, 0x80045017, 0x0)

1.639604399s ago: executing program 9 (id=3003):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000080)=@fragment={0x87, 0x0, 0x0, 0x1, 0x0, 0x6, 0x68}, 0x8)
sendto$l2tp6(r0, 0x0, 0x0, 0x20000890, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x0, 0x7}, 0x20)

1.442574605s ago: executing program 4 (id=3004):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x11}, 0x3}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x0, @dev}, 0x18, 0x0}}], 0x6c00, 0x0)

1.363867541s ago: executing program 5 (id=3005):
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
syz_io_uring_setup(0x50cd, &(0x7f0000000000)={0x0, 0xfffffffc, 0x40000, 0x2, 0x333}, &(0x7f0000000080), &(0x7f0000ff4000))

1.171425653s ago: executing program 5 (id=3006):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=@newqdisc={0x40, 0x24, 0x3fe3aa0262d8c583, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x10, 0xe}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x6, 0xffffffff}, @TCA_FQ_INITIAL_QUANTUM={0x8, 0x4, 0x8}]}}]}, 0x40}}, 0x4048000)

1.1038581s ago: executing program 9 (id=3007):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='nv\x00', 0x3)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f00000000c0))

903.300072ms ago: executing program 8 (id=3008):
r0 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @local, 0x10}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x35, &(0x7f0000000040)=0x1, 0x4)

891.184659ms ago: executing program 4 (id=3009):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
shutdown(r0, 0x1)
sendmsg$inet(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x20008000)

830.754397ms ago: executing program 7 (id=3010):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x6})
ioctl(r0, 0x8b22, &(0x7f0000000040))

539.590772ms ago: executing program 9 (id=3011):
r0 = socket$netlink(0x10, 0x3, 0x10)
unshare(0x24020400)
vmsplice(r0, 0x0, 0x0, 0x4)

539.171716ms ago: executing program 5 (id=3012):
syz_mount_image$hfsplus(&(0x7f00000001c0), &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f0000000100)={[{@uid={'uid', 0x3d, 0xee01}}, {@barrier}, {@nls={'nls', 0x3d, 'cp862'}}, {@uid}, {@part={'part', 0x3d, 0x7}}, {@part={'part', 0x3d, 0x4}}]}, 0x20, 0x6fe, &(0x7f0000000500)="$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")
mkdir(&(0x7f0000000040)='./bus\x00', 0x10b)
rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./bus\x00')

437.967236ms ago: executing program 4 (id=3013):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWCHAIN={0x38, 0x3, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}], {0x14}}, 0x60}}, 0x0)

392.779877ms ago: executing program 7 (id=3014):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000340)="07000000010001", 0x7)

263.66514ms ago: executing program 8 (id=3015):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$kcm(0x2, 0x1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x4a, &(0x7f0000000040), 0x4)

83.037919ms ago: executing program 4 (id=3016):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_DYNSET_OP={0x8}, @NFTA_DYNSET_SREG_KEY={0x8}, @NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)

0s ago: executing program 9 (id=3017):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x2, &(0x7f0000001b80)=ANY=[@ANYRES32=0x0, @ANYBLOB="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", @ANYRES32], 0xff, 0x2e7, &(0x7f0000000280)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x143042, 0x113)

kernel console output (not intermixed with test programs):

d=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.2200" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop7" ino=1048722 res=1 errno=0
[  595.442401][    C1] vkms_vblank_simulate: vblank timer overrun
[  595.857787][T11076] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2204'.
[  596.071744][ T9141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  596.079987][ T9141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  596.145652][T11080] netlink: 43 bytes leftover after parsing attributes in process `syz.4.2207'.
[  596.190540][ T9144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  596.198827][ T9144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  596.424116][T11085] loop5: detected capacity change from 0 to 64
[  596.480136][T11085] hfs: unable to locate alternate MDB
[  596.485896][T11085] hfs: continuing without an alternate MDB
[  596.828883][T11091] loop7: detected capacity change from 0 to 256
[  596.846178][T11091] exfat: Deprecated parameter 'utf8'
[  596.926741][T11091] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xbe649ead, utbl_chksum : 0xe619d30d)
[  597.338840][T11097] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2213'.
[  597.867880][T11109] loop4: detected capacity change from 0 to 256
[  598.076467][T11115] loop5: detected capacity change from 0 to 1024
[  598.112754][T11115] EXT4-fs: inline encryption not supported
[  598.119462][T11115] EXT4-fs: Ignoring removed i_version option
[  598.129623][T11109] FAT-fs (loop4): Directory bread(block 64) failed
[  598.136492][T11109] FAT-fs (loop4): Directory bread(block 65) failed
[  598.146133][T11109] FAT-fs (loop4): Directory bread(block 66) failed
[  598.153282][T11109] FAT-fs (loop4): Directory bread(block 67) failed
[  598.160465][T11109] FAT-fs (loop4): Directory bread(block 68) failed
[  598.167286][T11109] FAT-fs (loop4): Directory bread(block 69) failed
[  598.176966][T11109] FAT-fs (loop4): Directory bread(block 70) failed
[  598.184043][T11109] FAT-fs (loop4): Directory bread(block 71) failed
[  598.191209][T11109] FAT-fs (loop4): Directory bread(block 72) failed
[  598.197984][T11109] FAT-fs (loop4): Directory bread(block 73) failed
[  598.291068][T11115] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  598.613333][ T6719] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.863117][T11126] tmpfs: Bad value for 'mpol'
[  599.514432][T11143] loop3: detected capacity change from 0 to 512
[  599.548271][T11143] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  599.622391][T11143] EXT4-fs (loop3): 1 truncate cleaned up
[  599.633455][T11143] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  600.674689][T11150] loop7: detected capacity change from 0 to 32768
[  600.696144][T11150] bcachefs (/dev/loop7): error validating superblock: Invalid superblock section clean: entry type btree_keys overruns end of section
[  600.696144][T11150] clean (size 2912):
[  600.696144][T11150] flags:          0
[  600.696144][T11150] journal_seq:    10
[  600.696144][T11150] usage: type=inodes v=8
[  600.696144][T11150] usage: type=key_version v=0
[  600.696144][T11150] usage: type=reserved v=0
[  600.696144][T11150] usage: type=reserved v=0
[  600.696144][T11150] usage: type=reserved v=0
[  600.696144][T11150] usage: type=reserved v=0
[  600.696144][T11150] data_usage: btree: 1/1 [0]=2816
[  600.696144][T11150] btree_keys: 
[  600.696144][T11150] 
[  600.757150][    C1] vkms_vblank_simulate: vblank timer overrun
[  600.770827][T11150] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[  600.909532][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.991773][ T3467] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  601.473544][ T3467] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  601.645197][ T3467] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  601.814242][ T3467] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  602.495290][ T3467] bond0 (unregistering): Released all slaves
[  602.635760][ T3467] tipc: Disabling bearer <udp:syz2>
[  602.643479][ T3467] tipc: Left network mode
[  602.685396][ T3467] IPVS: stopping master sync thread 7673 ...
[  603.032329][T11174] macvlan2: entered promiscuous mode
[  603.040938][T11174] bridge0: port 1(macvlan2) entered blocking state
[  603.047995][T11174] bridge0: port 1(macvlan2) entered disabled state
[  603.055473][T11174] macvlan2: entered allmulticast mode
[  603.061283][T11174] bridge0: entered allmulticast mode
[  603.075500][T11174] macvlan2: left allmulticast mode
[  603.081323][T11174] bridge0: left allmulticast mode
[  603.251413][ T3467] hsr_slave_0: left promiscuous mode
[  603.279546][ T3467] hsr_slave_1: left promiscuous mode
[  603.287426][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  603.295969][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_0
[  603.352209][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  603.360358][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_1
[  603.419015][ T3467] veth1_macvtap: left promiscuous mode
[  603.424819][ T3467] veth0_macvtap: left promiscuous mode
[  603.433801][ T3467] veth1_vlan: left promiscuous mode
[  603.441032][ T3467] veth0_vlan: left promiscuous mode
[  603.943671][ T3467] pimreg (unregistering): left allmulticast mode
[  604.354943][ T5802] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  604.375327][ T3467] team0 (unregistering): Port device team_slave_1 removed
[  604.401234][ T5802] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  604.410586][ T5802] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  604.423437][ T3467] team0 (unregistering): Port device team_slave_0 removed
[  604.636918][ T5802] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  604.652824][ T5802] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  605.349542][ T3467] IPVS: stop unused estimator thread 0...
[  605.791512][T11181] chnl_net:caif_netlink_parms(): no params data found
[  605.870405][T11198] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2256'.
[  606.046397][T11202] netlink: 4083 bytes leftover after parsing attributes in process `syz.5.2257'.
[  606.118825][T11200] netlink: 4083 bytes leftover after parsing attributes in process `syz.5.2257'.
[  606.828895][   T49] Bluetooth: hci4: command tx timeout
[  607.004354][T11214] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2262'.
[  607.017114][T11214] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2262'.
[  607.077297][T11181] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.085123][T11181] bridge0: port 1(bridge_slave_0) entered disabled state
[  607.094419][T11181] bridge_slave_0: entered allmulticast mode
[  607.103786][T11181] bridge_slave_0: entered promiscuous mode
[  607.223110][T11181] bridge0: port 2(bridge_slave_1) entered blocking state
[  607.230991][T11181] bridge0: port 2(bridge_slave_1) entered disabled state
[  607.239264][T11181] bridge_slave_1: entered allmulticast mode
[  607.248825][T11181] bridge_slave_1: entered promiscuous mode
[  607.568279][T11181] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  607.639317][T11181] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  607.872463][T11227] loop7: detected capacity change from 0 to 2048
[  607.909406][T11181] team0: Port device team_slave_0 added
[  607.926928][T11181] team0: Port device team_slave_1 added
[  608.175455][T11181] batman_adv: batadv0: Adding interface: batadv_slave_0
[  608.182928][T11181] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  608.212263][T11181] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  608.315093][T11181] batman_adv: batadv0: Adding interface: batadv_slave_1
[  608.322695][T11181] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  608.348940][    C1] vkms_vblank_simulate: vblank timer overrun
[  608.365801][T11181] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  608.674131][T11240] loop4: detected capacity change from 0 to 512
[  608.779239][T11181] hsr_slave_0: entered promiscuous mode
[  608.789484][T11181] hsr_slave_1: entered promiscuous mode
[  608.798141][T11181] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  608.808861][T11181] Cannot create hsr debugfs directory
[  608.819574][T11240] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  608.828078][T11240] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  608.903091][   T49] Bluetooth: hci4: command tx timeout
[  609.041056][T11240] EXT4-fs (loop4): 1 truncate cleaned up
[  609.049807][T11240] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  609.077210][T11248] loop5: detected capacity change from 0 to 256
[  609.123282][T11248] exfat: Deprecated parameter 'utf8'
[  609.326493][T11248] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xdd33351c, utbl_chksum : 0xe619d30d)
[  609.446088][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  610.063256][T11258] loop7: detected capacity change from 0 to 2048
[  610.078018][T11181] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  610.116222][T11181] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  610.139641][T11181] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  610.204408][T11258] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  610.206249][T11181] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  610.391186][T10714] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  610.783235][T11272] loop7: detected capacity change from 0 to 64
[  610.821096][T11272] BFS-fs: bfs_fill_super(): loop7 is unclean, continuing
[  610.961835][   T49] Bluetooth: hci4: command tx timeout
[  610.975583][T11263] loop5: detected capacity change from 0 to 8192
[  611.100211][T11263] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  611.129325][T11181] 8021q: adding VLAN 0 to HW filter on device bond0
[  611.201576][T11263] FAT-fs (loop5): error, corrupted file size (i_pos 1046, 9000)
[  611.212480][T11263] FAT-fs (loop5): Filesystem has been set read-only
[  611.282626][T11181] 8021q: adding VLAN 0 to HW filter on device team0
[  611.333158][ T9139] bridge0: port 1(bridge_slave_0) entered blocking state
[  611.340974][ T9139] bridge0: port 1(bridge_slave_0) entered forwarding state
[  611.460582][ T9139] bridge0: port 2(bridge_slave_1) entered blocking state
[  611.468306][ T9139] bridge0: port 2(bridge_slave_1) entered forwarding state
[  611.931879][T11279] loop7: detected capacity change from 0 to 2048
[  612.109238][T11286] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  612.702183][T11295] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2297'.
[  613.039140][   T49] Bluetooth: hci4: command tx timeout
[  613.101848][T11181] 8021q: adding VLAN 0 to HW filter on device batadv0
[  613.429861][T11309] netlink: 40 bytes leftover after parsing attributes in process `syz.7.2302'.
[  613.859846][T11316] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2305'.
[  614.270743][T11322] loop8: detected capacity change from 0 to 2048
[  614.814120][T11332] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2311'.
[  614.972194][T11335] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  615.175911][T11327] loop7: detected capacity change from 0 to 40427
[  615.198761][T11327] F2FS-fs (loop7): Invalid log sectors per block(0) log sectorsize(9)
[  615.209633][T11327] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  615.242966][T11327] F2FS-fs (loop7): build fault injection rate: 17008
[  615.250277][T11327] F2FS-fs (loop7): build fault injection type: 0x7
[  615.260836][T11327] F2FS-fs (loop7): invalid crc value
[  615.500921][T11181] veth0_vlan: entered promiscuous mode
[  615.550377][T11327] F2FS-fs (loop7): Try to recover 1th superblock, ret: -30
[  615.557880][T11327] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  615.641136][T11181] veth1_vlan: entered promiscuous mode
[  616.478161][T11340] loop4: detected capacity change from 0 to 32768
[  616.504579][T11181] veth0_macvtap: entered promiscuous mode
[  616.517928][T11344] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2317'.
[  616.528702][T11344] tipc: Enabling of bearer <gth:b> rejected, media not registered
[  616.565924][T11181] veth1_macvtap: entered promiscuous mode
[  616.647286][T11181] batman_adv: batadv0: Interface activated: batadv_slave_0
[  616.730040][T11340] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names
[  616.730161][T11340]   allowing incompatible features above 0.0: (unknown version)
[  616.730234][T11340]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  616.736030][T11181] batman_adv: batadv0: Interface activated: batadv_slave_1
[  616.750425][T11340] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  616.751189][T11340] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  616.752499][T11340] bcachefs (loop4): Version upgrade required:
[  616.752499][T11340] Version upgrade from 0.8: (unknown version) to 1.7: mi_btree_bitmap incomplete
[  616.752499][T11340] Doing incompatible version upgrade from 0.8: (unknown version) to 1.28: inode_has_case_insensitive
[  616.752499][T11340]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  616.899669][T11181] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  616.909488][T11181] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  616.918694][T11181] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  616.927723][T11181] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  616.953096][T11340] bcachefs (loop4): btree node read error at btree inodes level 0/0
[  616.953197][T11340]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 1052 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0
[  616.953300][T11340]   loop4 node offset 24/1052: btree node data missing: expected 1052 sectors, found 24
[  616.953384][T11340]   repair success (rewriting node)
[  617.131723][T11340] bcachefs (loop4): btree node read error at btree lru level 0/0
[  617.131819][T11340]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key 0:196608:0 durability: 1 ptr: 0:28:0 gen 0
[  617.131913][T11340]   loop4 node offset 0/16: incorrect min_key: got POS_MIN should be 0:196608:0
[  617.131983][T11340]   flagging btree lru lost data
[  617.132046][T11340]   ret btree_node_read_validate_error
[  617.179634][T11340] bcachefs (loop4): error reading btree root btree=lru level=0: btree_node_read_error, fixing
[  617.201430][T11340] bcachefs (loop4): btree node read error at btree freespace level 0/0
[  617.201526][T11340]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0
[  617.201654][T11340]   loop4 node offset 0/32 bset u64s 0: invalid bkey format: field 4 too large: 0 + 4294967296 > 4294967295
[  617.201739][T11340]   u64s 3 fields 64:0, 64:0, 32:0, 0:0, 0:4294967296, 0:0
[  617.201811][T11340]   flagging btree freespace lost data
[  617.201877][T11340]   ret btree_node_read_validate_error
[  617.259242][T11340] bcachefs (loop4): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  617.286831][T11340] bcachefs (loop4): check_topology... done
[  617.299125][T11340] bcachefs (loop4): accounting_read... done
[  617.309907][T11340] bcachefs (loop4): alloc_read... done
[  617.318770][T11340] bcachefs (loop4): snapshots_read... done
[  617.327178][T11340] bcachefs (loop4): Fixed errors, running fsck a second time to verify fs is clean
[  617.338935][T11340] bcachefs (loop4): done starting filesystem
[  617.464741][ T5808] bcachefs (loop4): shutting down
[  617.567000][ T5808] bcachefs (loop4): shutdown complete
[  617.593896][T11357] loop5: detected capacity change from 0 to 16
[  617.682565][T11357] erofs (device loop5): mounted with root inode @ nid 36.
[  617.751551][   T30] audit: type=1800 audit(1751339244.308:108): pid=11357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2319" name="file1" dev="loop5" ino=86 res=0 errno=0
[  618.217912][T11360] loop8: detected capacity change from 0 to 1024
[  618.272658][T11360] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  618.704933][T11368] loop5: detected capacity change from 0 to 47
[  619.091428][T11372] loop8: detected capacity change from 0 to 2048
[  619.180773][T11376] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  619.733735][ T1699] IPVS: starting estimator thread 0...
[  619.740093][T11382] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold
[  619.767612][T11384] netlink: 216 bytes leftover after parsing attributes in process `syz.8.2327'.
[  619.777297][T11384] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2327'.
[  619.786785][T11384] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2327'.
[  619.831978][T11386] IPVS: using max 240 ests per chain, 12000 per kthread
[  620.477626][T11395] loop8: detected capacity change from 0 to 256
[  620.879372][ T1699] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  621.086548][ T1699] usb 8-1: Using ep0 maxpacket: 8
[  621.133760][ T1699] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  621.147356][ T1699] usb 8-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00
[  621.157736][ T1699] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  621.214992][ T1699] usb 8-1: config 0 descriptor??
[  621.319159][T11405] loop8: detected capacity change from 0 to 1024
[  621.704072][ T1699] lenovo 0003:17EF:6062.001F: item fetching failed at offset 3/5
[  621.776716][ T1699] lenovo 0003:17EF:6062.001F: hid_parse failed
[  621.778666][ T1873] hfsplus: b-tree write err: -5, ino 4
[  621.786319][ T1699] lenovo 0003:17EF:6062.001F: probe with driver lenovo failed with error -22
[  621.898890][ T1699] usb 8-1: USB disconnect, device number 2
[  622.297468][T11421] loop4: detected capacity change from 0 to 1024
[  622.462755][ T9141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  622.471121][ T9141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  622.622345][ T9141] hfsplus: b-tree write err: -5, ino 4
[  623.272990][T11425] loop5: detected capacity change from 0 to 32768
[  623.286128][T11425] (syz.5.2342,11425,0):ocfs2_verify_volume:2303 ERROR: found superblock with bad version: found 0.1, should be 0.90
[  623.302093][T11425] (syz.5.2342,11425,0):ocfs2_verify_volume:2331 ERROR: status = -22
[  623.310569][T11425] (syz.5.2342,11425,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  623.319620][T11425] (syz.5.2342,11425,0):ocfs2_fill_super:1177 ERROR: status = -22
[  623.412501][ T3467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  623.423607][ T3467] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  624.931435][T11456] loop7: detected capacity change from 0 to 256
[  625.481692][T11461] loop5: detected capacity change from 0 to 256
[  625.559274][T11461] exfat: Deprecated parameter 'utf8'
[  625.770631][T11457] loop4: detected capacity change from 0 to 40427
[  625.819285][T11457] F2FS-fs (loop4): Image doesn't support compression
[  625.827477][T11457] F2FS-fs (loop4): Invalid gid value -1
[  626.447712][T11463] loop9: detected capacity change from 0 to 32768
[  626.472733][T11463] bcachefs (/dev/loop9): error validating superblock: Invalid superblock section clean: entry type btree_keys overruns end of section
[  626.472733][T11463] clean (size 40):
[  626.472733][T11463] flags:          9
[  626.472733][T11463] journal_seq:    7
[  626.472733][T11463] 
[  626.499797][    C1] vkms_vblank_simulate: vblank timer overrun
[  626.510377][T11463] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[  626.525950][T11461] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  626.629749][T11456] FAT-fs (loop7): Directory bread(block 64) failed
[  626.639692][T11456] FAT-fs (loop7): Directory bread(block 65) failed
[  626.647709][T11456] FAT-fs (loop7): Directory bread(block 66) failed
[  626.654641][T11456] FAT-fs (loop7): Directory bread(block 67) failed
[  626.661948][T11456] FAT-fs (loop7): Directory bread(block 68) failed
[  626.668729][T11456] FAT-fs (loop7): Directory bread(block 69) failed
[  626.676093][T11456] FAT-fs (loop7): Directory bread(block 70) failed
[  626.683708][T11456] FAT-fs (loop7): Directory bread(block 71) failed
[  626.690843][T11456] FAT-fs (loop7): Directory bread(block 72) failed
[  626.697620][T11456] FAT-fs (loop7): Directory bread(block 73) failed
[  626.856367][T11468] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2360'.
[  627.352571][T11471] loop8: detected capacity change from 0 to 2048
[  627.477735][T11471] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  627.494159][T11471] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  627.636153][T11482] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2365'.
[  628.038421][T11485] loop9: detected capacity change from 0 to 64
[  628.128170][T10841] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  628.368010][T11481] loop7: detected capacity change from 0 to 32768
[  628.377630][T11481] bcachefs: bch2_fs_parse_param() Error parsing option fix_errors: option_value
[  629.074029][T11488] loop5: detected capacity change from 0 to 4096
[  629.142708][T11494] loop9: detected capacity change from 0 to 512
[  629.238990][T11494] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  629.252760][T11494] ext4 filesystem being mounted at /5/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  629.332222][T11494] EXT4-fs: Ignoring removed orlov option
[  629.340003][T11494] EXT4-fs: Cannot specify journal on remount
[  629.413237][T11488] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  629.440037][T11181] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  629.574540][T11488] ntfs3(loop5): Failed to load $Extend (-22).
[  629.580936][T11488] ntfs3(loop5): Failed to initialize $Extend.
[  629.769203][T11507] loop9: detected capacity change from 0 to 128
[  629.815148][T11507] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  629.865995][ T5858] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[  629.906168][T11507] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  630.017511][T11509] loop4: detected capacity change from 0 to 256
[  630.099565][ T5858] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  630.111357][ T5858] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[  630.121594][ T5858] usb 8-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  630.133152][ T5858] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  630.210594][ T5858] usb 8-1: config 0 descriptor??
[  630.232130][ T5858] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  630.240151][ T5858] dvb-usb: bulk message failed: -22 (3/0)
[  630.250657][T11509] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  630.267157][ T5858] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  630.279220][ T5858] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  630.286645][ T5858] usb 8-1: media controller created
[  630.297102][ T5858] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  630.320093][ T5858] dvb-usb: bulk message failed: -22 (6/0)
[  630.327010][ T5858] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  630.345200][ T5858] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.7/usb8/8-1/input/input13
[  630.427461][T11504] dvb-usb: bulk message failed: -22 (2/0)
[  630.450396][ T5858] dvb-usb: schedule remote query interval to 150 msecs.
[  630.458232][ T5858] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  630.469730][    T9] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  630.526530][ T5858] usb 8-1: USB disconnect, device number 3
[  630.629208][ T5858] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  630.680202][    T9] usb 9-1: Using ep0 maxpacket: 8
[  630.722983][    T9] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  630.735296][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  630.743590][    T9] usb 9-1: Product: syz
[  630.749528][    T9] usb 9-1: Manufacturer: syz
[  630.754508][    T9] usb 9-1: SerialNumber: syz
[  630.827339][    T9] usb 9-1: config 0 descriptor??
[  631.027059][T11514] loop5: detected capacity change from 0 to 32768
[  631.109360][    T9] usb 9-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  631.209530][T11514] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=xxhash,data_checksum=xxhash,compression=lz4,str_hash=crc64,norecovery,reconstruct_alloc
[  631.209659][T11514]   allowing incompatible features above 0.0: (unknown version)
[  631.209740][T11514]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  631.261523][T11514] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0
[  631.270754][T11514] bcachefs (loop5): recovering from clean shutdown, journal seq 10
[  631.279769][T11514] bcachefs (loop5): Version upgrade from 1.19: autofix_errors to 1.7: mi_btree_bitmap incomplete
[  631.279769][T11514] Doing compatible version upgrade from 1.19: autofix_errors to 1.28: inode_has_case_insensitive
[  631.279769][T11514]   running recovery passes: check_extents_to_backpointers,check_inodes
[  631.309108][    C1] vkms_vblank_simulate: vblank timer overrun
[  631.319684][T11514] bcachefs (loop5): dropping and reconstructing all alloc info
[  631.421203][T11514] bcachefs (loop5): error reading btree root btree=dirents level=0: btree_node_read_error, fixing
[  631.480576][T11514] bcachefs (loop5): btree node read error at btree xattrs level 0/0
[  631.480671][T11514]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 1 ptr: 0:31:0 gen 0
[  631.480768][T11514]   loop5 node offset 0/16: got wrong btree node: got
[  631.480838][T11514]   btree=xattrs level=0 seq ded0abe32 1
[  631.480902][T11514]   min: POS_MIN
[  631.480961][T11514]   max: SPOS_MAX
[  631.481018][T11514]   flagging btree xattrs lost data
[  631.481085][T11514]   ret btree_node_read_validate_error
[  631.508233][    T9] dvb_usb_rtl28xxu 9-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  631.514229][T11514] bcachefs (loop5): error reading btree root btree=xattrs level=0: btree_node_read_error, fixing
[  631.587226][    T9] usb 9-1: USB disconnect, device number 2
[  631.616547][T11514] bcachefs (loop5): check_topology...
[  631.617412][T11514] bcachefs (loop5): btree root dirents unreadable, must recover from scan
[  631.637416][T11514] bcachefs (loop5): running recovery pass scan_for_btree_nodes (1), currently at check_topology (2) - rewinding
[  631.653854][T11514] bcachefs (loop5): bch2_check_root(): error restart_recovery
[  631.661775][T11514] bcachefs (loop5): scan_for_btree_nodes...
[  631.713929][T11514] bcachefs (loop5): btree node scan found 3 nodes after overwrites
[  631.735378][T11514]  done
[  631.738484][T11514] bcachefs (loop5): check_topology...
[  631.739371][T11514] bcachefs (loop5): btree root dirents unreadable, must recover from scan
[  631.758269][T11514] bcachefs (loop5): no nodes found for btree dirents, continuing
[  631.766974][T11514] bcachefs (loop5): btree root xattrs unreadable, must recover from scan
[  631.778723][T11514] bcachefs (loop5): bch2_get_scanned_nodes(): recovery btree=xattrs level=0 POS_MIN - SPOS_MAX
[  631.790244][T11514] bcachefs (loop5): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ded0abe32 written 8 min_key POS_MIN durability: 1 ptr: 0:31:0 gen 0
[  631.847753][T11514]  done
[  631.850934][T11514] bcachefs (loop5): accounting_read... done
[  631.871979][T11514] bcachefs (loop5): alloc_read... done
[  631.880061][T11514] bcachefs (loop5): snapshots_read... done
[  631.888489][T11514] bcachefs (loop5): Fixed errors, running fsck a second time to verify fs is clean
[  631.902949][T11514] bcachefs (loop5): done starting filesystem
[  631.908137][T11528] loop9: detected capacity change from 0 to 2048
[  632.006583][ T6719] bcachefs (loop5): shutting down
[  632.023229][T11530] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2381'.
[  632.041326][T11530] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2381'.
[  632.046372][T11528] UDF-fs: error (device loop9): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  632.143707][ T6719] bcachefs (loop5): shutdown complete
[  632.148611][T11528] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  633.780558][T11547] loop7: detected capacity change from 0 to 8
[  633.918316][T11538] loop9: detected capacity change from 0 to 40427
[  633.990702][T11538] F2FS-fs (loop9): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  634.002978][T11538] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  634.022369][T11538] F2FS-fs (loop9): build fault injection rate: 14
[  634.032292][T11538] F2FS-fs (loop9): build fault injection type: 0x3bfe8c
[  634.045510][T11538] F2FS-fs (loop9): norecovery requires readonly mount
[  634.806582][T11558] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2396'.
[  634.833763][T11556] loop7: detected capacity change from 0 to 2048
[  634.919956][T11556] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  635.208729][T10714] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  635.985253][T11576] loop4: detected capacity change from 0 to 1024
[  636.483543][ T4321] hfsplus: b-tree write err: -5, ino 4
[  636.765946][T11588] netlink: 84 bytes leftover after parsing attributes in process `syz.8.2409'.
[  636.873804][T11590] loop4: detected capacity change from 0 to 1024
[  637.030145][   T49] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  637.039007][   T49] Bluetooth: hci1: Injecting HCI hardware error event
[  637.046668][   T49] Bluetooth: hci1: hardware error 0x00
[  637.347027][ T4321] hfsplus: b-tree write err: -5, ino 4
[  637.444204][T11602] loop7: detected capacity change from 0 to 64
[  637.528899][T11602] hfs: bad catalog folder thread
[  638.046229][T11614] loop8: detected capacity change from 0 to 8
[  638.112345][T11614] SQUASHFS error: lzo decompression failed, data probably corrupt
[  638.120479][T11614] SQUASHFS error: Failed to read block 0x91: -5
[  638.124818][T11618] loop4: detected capacity change from 0 to 64
[  638.127205][T11614] SQUASHFS error: Unable to read metadata cache entry [8f]
[  638.140785][T11614] SQUASHFS error: Unable to read inode 0x11f
[  638.624987][T11624] loop5: detected capacity change from 0 to 256
[  638.636047][ T1699] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  638.847636][ T1699] usb 8-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  638.857226][ T1699] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  638.887060][T11624] FAT-fs (loop5): Directory bread(block 64) failed
[  638.894199][T11624] FAT-fs (loop5): Directory bread(block 65) failed
[  638.901533][T11624] FAT-fs (loop5): Directory bread(block 66) failed
[  638.908485][T11624] FAT-fs (loop5): Directory bread(block 67) failed
[  638.908939][ T1699] usb 8-1: config 0 descriptor??
[  638.919614][T11624] FAT-fs (loop5): Directory bread(block 68) failed
[  638.929998][T11624] FAT-fs (loop5): Directory bread(block 69) failed
[  638.937337][T11624] FAT-fs (loop5): Directory bread(block 70) failed
[  638.944310][T11624] FAT-fs (loop5): Directory bread(block 71) failed
[  638.951393][T11624] FAT-fs (loop5): Directory bread(block 72) failed
[  638.958185][T11624] FAT-fs (loop5): Directory bread(block 73) failed
[  638.999337][ T1699] gspca_main: cpia1-2.14.0 probing 0813:0001
[  639.069640][   T49] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  639.200650][T11627] loop8: detected capacity change from 0 to 4096
[  639.515038][T11627] ntfs3(loop8): Mark volume as dirty due to NTFS errors
[  639.757444][T11627] ntfs3(loop8): Failed to load $Extend (-22).
[  639.765121][T11627] ntfs3(loop8): Failed to initialize $Extend.
[  640.008008][ T1699] gspca_cpia1: usb_control_msg 05, error -71
[  640.036861][ T1699] gspca_cpia1: usb_control_msg 01, error -71
[  640.052402][ T1699] cpia1 8-1:0.0: only firmware version 1 is supported (got: 0)
[  640.089055][ T1699] usb 8-1: USB disconnect, device number 4
[  640.725780][T11651] loop8: detected capacity change from 0 to 256
[  641.248692][T11651] FAT-fs (loop8): Directory bread(block 64) failed
[  641.255822][T11651] FAT-fs (loop8): Directory bread(block 65) failed
[  641.265528][T11651] FAT-fs (loop8): Directory bread(block 66) failed
[  641.272486][T11651] FAT-fs (loop8): Directory bread(block 67) failed
[  641.279464][T11651] FAT-fs (loop8): Directory bread(block 68) failed
[  641.286536][T11651] FAT-fs (loop8): Directory bread(block 69) failed
[  641.296224][T11651] FAT-fs (loop8): Directory bread(block 70) failed
[  641.303586][T11651] FAT-fs (loop8): Directory bread(block 71) failed
[  641.315596][T11651] FAT-fs (loop8): Directory bread(block 72) failed
[  641.326478][T11651] FAT-fs (loop8): Directory bread(block 73) failed
[  641.390994][T11656] loop7: detected capacity change from 0 to 1024
[  641.444825][T11648] loop4: detected capacity change from 0 to 4096
[  641.493389][T11648] ntfs3(loop4): It is recommened to use chkdsk.
[  641.543132][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffc0c00
[  641.551802][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffc0c00
[  641.562807][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffc0c00
[  641.571147][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffc0c00
[  641.579695][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffc1c00
[  641.587885][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffc2c00
[  641.599018][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffc4c00
[  641.607338][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffc8c00
[  641.620829][T11648] ntfs3(loop4): try to read out of volume at offset 0x3fffffd0c00
[  641.697649][T11652] loop5: detected capacity change from 0 to 32768
[  641.770126][T11656] hfsplus: bad catalog entry type
[  641.782288][T11652] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  641.790797][T11652] gfs2: fsid=syz:syz: Now mounting FS (format 1802)...
[  641.823016][T11652] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 21 (type: exp=5, found=1), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 499
[  641.839084][T11652] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  641.846651][T11652] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  641.855940][T11652] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  641.862844][T11652] gfs2: fsid=syz:syz.0: File system withdrawn
[  641.869378][T11652] CPU: 0 UID: 0 PID: 11652 Comm: syz.5.2437 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  641.869527][T11652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  641.869613][T11652] Call Trace:
[  641.869661][T11652]  <TASK>
[  641.869709][T11652]  __dump_stack+0x26/0x30
[  641.869883][T11652]  dump_stack_lvl+0x1df/0x270
[  641.870056][T11652]  dump_stack+0x1e/0x25
[  641.870209][T11652]  gfs2_withdraw+0x1d26/0x22e0
[  641.870475][T11652]  gfs2_metatype_check_ii+0x11e/0x160
[  641.870629][T11652]  gfs2_meta_buffer+0x4c7/0x600
[  641.870826][T11652]  __gfs2_iomap_get+0xf19/0x2210
[  641.871075][T11652]  gfs2_block_map+0x281/0xce0
[  641.871297][T11652]  ? kmsan_get_metadata+0xfb/0x160
[  641.871497][T11652]  gfs2_write_alloc_required+0x4fc/0x6d0
[  641.871637][T11652]  ? gfs2_glock_wait+0x362/0x3b0
[  641.871823][T11652]  gfs2_jdesc_check+0x33b/0x440
[  641.871997][T11652]  init_journal+0x1471/0x3a30
[  641.872160][T11652]  ? init_inodes+0x124/0x510
[  641.872297][T11652]  ? init_inodes+0x124/0x510
[  641.872429][T11652]  ? kmsan_get_metadata+0xfb/0x160
[  641.872615][T11652]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  641.872810][T11652]  init_inodes+0x124/0x510
[  641.872954][T11652]  gfs2_fill_super+0x384a/0x3f50
[  641.873097][T11652]  ? init_locking+0xed/0x500
[  641.873267][T11652]  get_tree_bdev_flags+0x6e6/0x920
[  641.873456][T11652]  ? __pfx_gfs2_fill_super+0x10/0x10
[  641.873595][T11652]  ? __pfx_gfs2_fill_super+0x10/0x10
[  641.873731][T11652]  ? __pfx_gfs2_get_tree+0x10/0x10
[  641.873866][T11652]  get_tree_bdev+0x38/0x50
[  641.874048][T11652]  gfs2_get_tree+0x57/0x350
[  641.874186][T11652]  ? __pfx_gfs2_get_tree+0x10/0x10
[  641.874329][T11652]  vfs_get_tree+0xb3/0x5c0
[  641.874513][T11652]  ? mount_capable+0x99/0x100
[  641.874675][T11652]  do_new_mount+0x738/0x1610
[  641.874852][T11652]  ? kmsan_get_metadata+0xfb/0x160
[  641.875030][T11652]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  641.875236][T11652]  path_mount+0x6db/0x1e90
[  641.875427][T11652]  ? user_path_at+0x32d/0x3d0
[  641.875597][T11652]  __se_sys_mount+0x6eb/0x7d0
[  641.875782][T11652]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  641.875983][T11652]  __x64_sys_mount+0xe4/0x150
[  641.876179][T11652]  x64_sys_call+0xfa7/0x3db0
[  641.876363][T11652]  do_syscall_64+0xd9/0x210
[  641.876503][T11652]  ? irqentry_exit+0x16/0x60
[  641.876683][T11652]  ? clear_bhb_loop+0x40/0x90
[  641.876833][T11652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  641.876983][T11652] RIP: 0033:0x7fdbfab900ca
[  641.877087][T11652] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  641.877206][T11652] RSP: 002b:00007fdbfb9abe68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  641.877342][T11652] RAX: ffffffffffffffda RBX: 00007fdbfb9abef0 RCX: 00007fdbfab900ca
[  641.877442][T11652] RDX: 0000200000000400 RSI: 0000200000000000 RDI: 00007fdbfb9abeb0
[  641.877539][T11652] RBP: 0000200000000400 R08: 00007fdbfb9abef0 R09: 0000000000200401
[  641.877632][T11652] R10: 0000000000200401 R11: 0000000000000246 R12: 0000200000000000
[  641.877722][T11652] R13: 00007fdbfb9abeb0 R14: 00000000000125bb R15: 0000200000000080
[  641.877846][T11652]  </TASK>
[  642.199855][T11652] gfs2: fsid=syz:syz.0: G:  s:SH n:2/13 f:aqob t:SH d:EX/0 a:0 v:0 r:2 m:20 p:3
[  642.209381][T11652] gfs2: fsid=syz:syz.0:  H: s:SH f:eEcH e:0 p:0 [(none)] init_inodes+0x124/0x510
[  642.221630][T11652] gfs2: fsid=syz:syz.0:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  642.230353][T11652] gfs2: fsid=syz:syz.0: my journal (0) is bad: -5
[  642.471336][ T9144] hfsplus: b-tree write err: -5, ino 4
[  643.235186][T11674] loop7: detected capacity change from 0 to 256
[  643.628657][T11674] FAT-fs (loop7): Directory bread(block 64) failed
[  643.635677][T11674] FAT-fs (loop7): Directory bread(block 65) failed
[  643.645592][T11674] FAT-fs (loop7): Directory bread(block 66) failed
[  643.653373][T11674] FAT-fs (loop7): Directory bread(block 67) failed
[  643.660540][T11674] FAT-fs (loop7): Directory bread(block 68) failed
[  643.667461][T11674] FAT-fs (loop7): Directory bread(block 69) failed
[  643.674359][T11674] FAT-fs (loop7): Directory bread(block 70) failed
[  643.681531][T11674] FAT-fs (loop7): Directory bread(block 71) failed
[  643.688708][T11674] FAT-fs (loop7): Directory bread(block 72) failed
[  643.695494][T11674] FAT-fs (loop7): Directory bread(block 73) failed
[  643.888963][T11670] loop5: detected capacity change from 0 to 32768
[  644.009827][T11670] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  644.009984][T11670]   allowing incompatible features above 0.0: (unknown version)
[  644.010071][T11670]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  644.066973][T11670] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0
[  644.075596][T11670] bcachefs (loop5): initializing new filesystem
[  644.095019][T11670] bcachefs (loop5): going read-write
[  644.107023][T11676] loop9: detected capacity change from 0 to 1764
[  644.131276][T11670] bcachefs (loop5): marking superblocks
[  644.324490][T11670] bcachefs (loop5): initializing freespace
[  644.388396][T11670] bcachefs (loop5): done initializing freespace
[  644.425800][T11670] bcachefs (loop5): reading snapshots table
[  644.432439][T11670] bcachefs (loop5): reading snapshots done
[  644.606148][T11670] bcachefs (loop5): done starting filesystem
[  644.763536][T11670] syz.5.2444 (11670) used greatest stack depth: 800 bytes left
[  644.783996][ T6719] bcachefs (loop5): shutting down
[  644.790026][ T6719] bcachefs (loop5): going read-only
[  644.795809][ T6719] bcachefs (loop5): finished waiting for writes to stop
[  644.821793][T11693] loop4: detected capacity change from 0 to 2048
[  644.846624][ T6719] bcachefs (loop5): flushing journal and stopping allocators, journal seq 3
[  644.874762][T11693] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  644.892082][T11693] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  644.988137][   T30] audit: type=1800 audit(1751339271.912:109): pid=11693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2451" name="file1" dev="loop4" ino=1346 res=0 errno=0
[  645.009164][    C1] vkms_vblank_simulate: vblank timer overrun
[  645.114221][ T6719] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 3
[  645.358760][ T6719] bcachefs (loop5): clean shutdown complete, journal seq 4
[  645.417360][ T6719] bcachefs (loop5): marking filesystem clean
[  645.516528][ T6719] bcachefs (loop5): shutdown complete
[  645.621835][T11704] syz_tun: refused to change device tx_queue_len
[  646.001585][T11709] loop4: detected capacity change from 0 to 16
[  646.048799][T11709] erofs (device loop4): mounted with root inode @ nid 36.
[  646.121082][T11709] erofs (device loop4): readahead error at folio 84 @ nid 36
[  646.129017][T11709] erofs (device loop4): readahead error at folio 83 @ nid 36
[  646.137423][T11709] erofs (device loop4): readahead error at folio 78 @ nid 36
[  646.145256][T11709] erofs (device loop4): readahead error at folio 77 @ nid 36
[  646.153127][T11709] erofs (device loop4): readahead error at folio 75 @ nid 36
[  646.161354][T11709] erofs (device loop4): readahead error at folio 74 @ nid 36
[  646.169536][T11709] erofs (device loop4): bogus lookback distance 1622 @ lcn 70 of nid 36
[  646.180802][T11709] erofs (device loop4): readahead error at folio 71 @ nid 36
[  646.189594][T11709] erofs (device loop4): bogus lookback distance 1622 @ lcn 70 of nid 36
[  646.198371][T11709] erofs (device loop4): readahead error at folio 70 @ nid 36
[  646.206244][T11709] erofs (device loop4): bogus lookback distance 363 @ lcn 68 of nid 36
[  646.214919][T11709] erofs (device loop4): readahead error at folio 69 @ nid 36
[  646.222561][T11709] erofs (device loop4): bogus lookback distance 363 @ lcn 68 of nid 36
[  646.231211][T11709] erofs (device loop4): readahead error at folio 68 @ nid 36
[  646.239108][T11709] erofs (device loop4): readahead error at folio 65 @ nid 36
[  646.247126][T11709] erofs (device loop4): readahead error at folio 64 @ nid 36
[  646.255218][T11709] erofs (device loop4): bogus lookback distance 363 @ lcn 60 of nid 36
[  646.263948][T11709] erofs (device loop4): readahead error at folio 61 @ nid 36
[  646.271598][T11709] erofs (device loop4): bogus lookback distance 363 @ lcn 60 of nid 36
[  646.282828][T11709] erofs (device loop4): readahead error at folio 60 @ nid 36
[  646.291596][T11709] erofs (device loop4): readahead error at folio 57 @ nid 36
[  646.299553][T11709] erofs (device loop4): readahead error at folio 56 @ nid 36
[  646.307445][T11709] erofs (device loop4): bogus lookback distance 1485 @ lcn 53 of nid 36
[  646.316317][T11709] erofs (device loop4): readahead error at folio 54 @ nid 36
[  646.324173][T11709] erofs (device loop4): bogus lookback distance 1485 @ lcn 53 of nid 36
[  646.333015][T11709] erofs (device loop4): readahead error at folio 53 @ nid 36
[  646.340763][T11709] erofs (device loop4): readahead error at folio 52 @ nid 36
[  646.348660][T11709] erofs (device loop4): readahead error at folio 50 @ nid 36
[  646.356487][T11709] erofs (device loop4): readahead error at folio 49 @ nid 36
[  646.364311][T11709] erofs (device loop4): readahead error at folio 48 @ nid 36
[  646.372989][T11709] erofs (device loop4): readahead error at folio 41 @ nid 36
[  646.383193][T11709] erofs (device loop4): readahead error at folio 39 @ nid 36
[  646.391579][T11709] erofs (device loop4): bogus lookback distance 1024 @ lcn 36 of nid 36
[  646.400732][T11709] erofs (device loop4): readahead error at folio 37 @ nid 36
[  646.408550][T11709] erofs (device loop4): bogus lookback distance 1024 @ lcn 36 of nid 36
[  646.417431][T11709] erofs (device loop4): readahead error at folio 36 @ nid 36
[  646.425320][T11709] erofs (device loop4): readahead error at folio 34 @ nid 36
[  646.433204][T11709] erofs (device loop4): readahead error at folio 32 @ nid 36
[  646.441042][T11709] erofs (device loop4): readahead error at folio 28 @ nid 36
[  646.449004][T11709] erofs (device loop4): bogus lookback distance 1586 @ lcn 24 of nid 36
[  646.457821][T11709] erofs (device loop4): readahead error at folio 25 @ nid 36
[  646.465681][T11709] erofs (device loop4): bogus lookback distance 1586 @ lcn 24 of nid 36
[  646.474456][T11709] erofs (device loop4): readahead error at folio 24 @ nid 36
[  646.484626][T11709] erofs (device loop4): readahead error at folio 23 @ nid 36
[  646.493346][T11709] erofs (device loop4): bogus lookback distance 1388 @ lcn 20 of nid 36
[  646.502176][T11709] erofs (device loop4): readahead error at folio 21 @ nid 36
[  646.509858][T11709] erofs (device loop4): bogus lookback distance 1388 @ lcn 20 of nid 36
[  646.519360][T11709] erofs (device loop4): readahead error at folio 20 @ nid 36
[  646.527620][T11709] erofs (device loop4): bogus lookback distance 774 @ lcn 18 of nid 36
[  646.536389][T11709] erofs (device loop4): readahead error at folio 19 @ nid 36
[  646.544176][T11709] erofs (device loop4): bogus lookback distance 774 @ lcn 18 of nid 36
[  646.552957][T11709] erofs (device loop4): readahead error at folio 18 @ nid 36
[  646.560680][T11709] erofs (device loop4): readahead error at folio 17 @ nid 36
[  646.568496][T11709] erofs (device loop4): readahead error at folio 16 @ nid 36
[  646.576645][T11709] erofs (device loop4): readahead error at folio 14 @ nid 36
[  646.587736][T11709] erofs (device loop4): bogus lookback distance 1468 @ lcn 9 of nid 36
[  646.597095][T11709] erofs (device loop4): readahead error at folio 9 @ nid 36
[  646.605952][T11709] erofs (device loop4): readahead error at folio 4 @ nid 36
[  646.613914][T11709] erofs (device loop4): readahead error at folio 2 @ nid 36
[  646.622152][T11709] bio_check_eod: 728 callbacks suppressed
[  646.622220][T11709] syz.4.2458: attempt to access beyond end of device
[  646.622220][T11709] loop4: rw=524288, sector=13478624080, nr_sectors = 24 limit=16
[  646.643324][T11709] syz.4.2458: attempt to access beyond end of device
[  646.643324][T11709] loop4: rw=524288, sector=13478624032, nr_sectors = 48 limit=16
[  646.658460][T11709] syz.4.2458: attempt to access beyond end of device
[  646.658460][T11709] loop4: rw=524288, sector=32, nr_sectors = 64 limit=16
[  646.672771][T11709] syz.4.2458: attempt to access beyond end of device
[  646.672771][T11709] loop4: rw=524288, sector=8, nr_sectors = 24 limit=16
[  646.689359][T11709] syz.4.2458: attempt to access beyond end of device
[  646.689359][T11709] loop4: rw=524288, sector=15495015288, nr_sectors = 32 limit=16
[  646.705001][T11709] syz.4.2458: attempt to access beyond end of device
[  646.705001][T11709] loop4: rw=524288, sector=15495015272, nr_sectors = 16 limit=16
[  646.720259][T11709] syz.4.2458: attempt to access beyond end of device
[  646.720259][T11709] loop4: rw=524288, sector=15353996136, nr_sectors = 8 limit=16
[  646.735213][T11709] syz.4.2458: attempt to access beyond end of device
[  646.735213][T11709] loop4: rw=524288, sector=13612835600, nr_sectors = 8 limit=16
[  646.750032][T11709] syz.4.2458: attempt to access beyond end of device
[  646.750032][T11709] loop4: rw=524288, sector=14552337248, nr_sectors = 16 limit=16
[  646.764971][T11709] syz.4.2458: attempt to access beyond end of device
[  646.764971][T11709] loop4: rw=524288, sector=14546590680, nr_sectors = 8 limit=16
[  646.795356][T11709] erofs (device loop4): failed to decompress -2 in[1, 1440] out[1677]
[  647.484814][T11728] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2467'.
[  648.366012][T11740] loop9: detected capacity change from 0 to 256
[  648.450529][T11740] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  648.465158][T11740] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[  648.562538][T11740] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  648.706185][    T9] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  648.928353][    T9] usb 8-1: Using ep0 maxpacket: 8
[  648.946808][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 15
[  648.956367][    T9] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  648.968645][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  648.980098][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  649.105772][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  649.161071][    T9] usb 8-1: New USB device found, idVendor=077d, idProduct=04aa, bcdDevice=5b.d8
[  649.171180][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  649.179638][    T9] usb 8-1: Product: syz
[  649.184182][    T9] usb 8-1: Manufacturer: syz
[  649.189021][    T9] usb 8-1: SerialNumber: syz
[  649.264959][    T9] usb 8-1: config 0 descriptor??
[  649.285029][T11742] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  649.569798][    T9] powermate: Expected payload of 3--6 bytes, found 1024 bytes!
[  649.585578][    T9] input: Griffin SoundKnob as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/input/input15
[  649.993446][    C0] powermate: config urb returned -71
[  649.996669][ T1699] usb 8-1: USB disconnect, device number 5
[  649.998887][    C0] powermate: usb_submit_urb(config) failed
[  649.999054][    C0] powermate 8-1:0.0: powermate_irq - usb_submit_urb failed with result: -19
[  651.179209][ T1699] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  651.290667][T11781] usb usb1: usbfs: process 11781 (syz.4.2490) did not claim interface 36 before use
[  651.358541][ T1699] usb 8-1: Using ep0 maxpacket: 8
[  651.391683][ T1699] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 7
[  651.455680][ T1699] usb 8-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  651.473193][ T1699] usb 8-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  651.489027][ T1699] usb 8-1: Product: syz
[  651.496713][ T1699] usb 8-1: Manufacturer: syz
[  651.502194][ T1699] usb 8-1: SerialNumber: syz
[  651.819523][ T1699] usb 8-1: Handspring Visor / Palm OS: No valid connect info available
[  651.828516][ T1699] usb 8-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  651.839543][ T1699] usb 8-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  651.847792][ T1699] usb 8-1: Handspring Visor / Palm OS: Number of ports: 2
[  652.126801][ T1699] visor 8-1:1.0: Handspring Visor / Palm OS converter detected
[  652.208303][ T1699] usb 8-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  652.303432][ T1699] usb 8-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  652.402921][T11788] loop5: detected capacity change from 0 to 32768
[  652.410722][ T1699] usb 8-1: USB disconnect, device number 6
[  652.417495][T11788] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2493 (11788)
[  652.449703][T11788] BTRFS info (device loop5 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  652.461182][T11788] BTRFS info (device loop5 state S): using crc32c (crc32c-x86_64) checksum algorithm
[  652.471208][T11788] BTRFS error (device loop5 state S): ignoremetacsums must be used with ro mount option
[  652.485079][T11788] BTRFS info (device loop5 state S): using free-space-tree
[  652.493739][T11788] BTRFS error (device loop5 state S): open_ctree failed: -22
[  652.503759][ T1699] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  652.593670][ T1699] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  652.604861][ T1699] visor 8-1:1.0: device disconnected
[  652.965556][T11795] loop8: detected capacity change from 0 to 64
[  653.274032][T11800] bpf: Bad value for 'gid'
[  654.041428][T11813] loop9: detected capacity change from 0 to 64
[  654.427237][T11807] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  655.662178][ T5802] Bluetooth: hci0: command 0x0406 tx timeout
[  656.132644][T11849] loop5: detected capacity change from 0 to 1024
[  656.242771][T11849] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  656.264962][T11849] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  656.317584][T11849] JBD2: no valid journal superblock found
[  656.325337][T11849] EXT4-fs (loop5): Could not load journal inode
[  656.531245][T11856] loop8: detected capacity change from 0 to 256
[  656.593737][T11856] vfat: Unknown parameter 'io'
[  656.667249][T11856] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  657.436258][T11873] sg_read: process 158 (syz.7.2536) changed security contexts after opening file descriptor, this is not allowed.
[  658.586714][    T9] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  658.809937][    T9] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  658.822791][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  658.831097][    T9] usb 8-1: Product: syz
[  658.835708][    T9] usb 8-1: Manufacturer: syz
[  658.840540][    T9] usb 8-1: SerialNumber: syz
[  658.917829][    T9] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  659.013975][ T5858] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  659.771365][ T1699] usb 8-1: USB disconnect, device number 7
[  659.891113][T11907] tipc: Started in network mode
[  659.896419][T11907] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  659.904632][T11907] tipc: Enabled bearer <eth:team0>, priority 0
[  659.944475][T11909] nbd: couldn't find device at index 587202560
[  660.370276][ T5858] usb 8-1: Service connection timeout for: 256
[  660.376728][ T5858] ath9k_htc 8-1:1.0: ath9k_htc: Unable to initialize HTC services
[  660.387794][ T5858] ath9k_htc: Failed to initialize the device
[  660.471770][ T1699] usb 8-1: ath9k_htc: USB layer deinitialized
[  660.915937][ T5858] tipc: Node number set to 11578026
[  661.144655][T11922] loop8: detected capacity change from 0 to 1024
[  661.550242][ T1873] hfsplus: b-tree write err: -5, ino 4
[  661.589273][T11929] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2563'.
[  663.752374][T11969] loop8: detected capacity change from 0 to 1024
[  663.808753][T11969] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  664.431334][ T5858] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  664.533422][T11988] veth1_macvtap: left promiscuous mode
[  664.539630][T11988] macsec0: entered promiscuous mode
[  664.585306][T11990] veth1_macvtap: entered promiscuous mode
[  664.592584][T11990] macsec0: left promiscuous mode
[  664.645501][ T5858] usb 6-1: Using ep0 maxpacket: 8
[  664.667812][ T5858] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  664.733168][ T5858] usb 6-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  664.743132][ T5858] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  664.751701][ T5858] usb 6-1: Product: syz
[  664.756231][ T5858] usb 6-1: Manufacturer: syz
[  664.761067][ T5858] usb 6-1: SerialNumber: syz
[  664.851376][ T5858] usb 6-1: config 0 descriptor??
[  664.892313][ T5858] gspca_main: stk014-2.14.0 probing 05e1:0893
[  664.900216][ T5858] usb 6-1: selecting invalid altsetting 1
[  665.065155][T11985] loop8: detected capacity change from 0 to 4096
[  665.094544][ T5858] gspca_stk014: init reg: 0x00
[  665.099933][ T5858] stk014 6-1:0.0: probe with driver stk014 failed with error -5
[  665.107332][T11985] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512).
[  665.166816][T11985] ntfs3(loop8): It is recommened to use chkdsk.
[  665.296319][ T5858] usb 6-1: USB disconnect, device number 6
[  665.366828][T11995] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.2594'.
[  665.476170][T11985] ntfs3(loop8): ino=1b, "file0" ntfs_readdir
[  666.651991][ T5858] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  666.877049][ T5858] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  666.888766][ T5858] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  666.899182][ T5858] usb 5-1: New USB device found, idVendor=0c70, idProduct=f00d, bcdDevice= 0.00
[  666.908883][ T5858] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.925711][T12021] loop9: detected capacity change from 0 to 64
[  667.016924][T12021] hfs: unable to locate alternate MDB
[  667.023018][T12021] hfs: continuing without an alternate MDB
[  667.051744][ T5858] usb 5-1: config 0 descriptor??
[  667.629250][ T5858] aquacomputer_d5next 0003:0C70:F00D.0020: unknown main item tag 0x0
[  667.637962][ T5858] aquacomputer_d5next 0003:0C70:F00D.0020: unknown main item tag 0x0
[  667.646559][ T5858] aquacomputer_d5next 0003:0C70:F00D.0020: unknown main item tag 0x0
[  667.655074][ T5858] aquacomputer_d5next 0003:0C70:F00D.0020: unknown main item tag 0x0
[  667.663791][ T5858] aquacomputer_d5next 0003:0C70:F00D.0020: unknown main item tag 0x0
[  667.837258][ T5858] aquacomputer_d5next 0003:0C70:F00D.0020: hidraw0: USB HID v0.00 Device [HID 0c70:f00d] on usb-dummy_hcd.4-1/input0
[  668.014635][ T5858] usb 5-1: USB disconnect, device number 14
[  668.029548][T12034] netlink: 43 bytes leftover after parsing attributes in process `syz.7.2612'.
[  668.656891][T12045] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2617'.
[  668.671489][T12043] loop8: detected capacity change from 0 to 1024
[  668.718391][T12043] EXT4-fs: inline encryption not supported
[  668.724491][T12043] EXT4-fs: Ignoring removed i_version option
[  668.744245][ T5858] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  668.823191][T12043] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  668.955996][ T5858] usb 8-1: Using ep0 maxpacket: 32
[  668.970797][T12052] loop9: detected capacity change from 0 to 256
[  668.997862][ T5858] usb 8-1: config 0 has an invalid interface number: 51 but max is 0
[  669.006685][ T5858] usb 8-1: config 0 has no interface number 0
[  669.074828][ T5858] usb 8-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  669.085999][ T5858] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  669.094279][ T5858] usb 8-1: Product: syz
[  669.098929][ T5858] usb 8-1: Manufacturer: syz
[  669.103860][ T5858] usb 8-1: SerialNumber: syz
[  669.150151][ T5858] usb 8-1: config 0 descriptor??
[  669.172314][ T5858] quatech2 8-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  669.204565][T10841] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  669.436639][ T5858] usb 8-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  669.456105][ T5858] usb 8-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  669.466782][T12052] FAT-fs (loop9): Directory bread(block 64) failed
[  669.466904][T12052] FAT-fs (loop9): Directory bread(block 65) failed
[  669.467123][T12052] FAT-fs (loop9): Directory bread(block 66) failed
[  669.467223][T12052] FAT-fs (loop9): Directory bread(block 67) failed
[  669.467452][T12052] FAT-fs (loop9): Directory bread(block 68) failed
[  669.467557][T12052] FAT-fs (loop9): Directory bread(block 69) failed
[  669.467779][T12052] FAT-fs (loop9): Directory bread(block 70) failed
[  669.467878][T12052] FAT-fs (loop9): Directory bread(block 71) failed
[  669.532669][T12052] FAT-fs (loop9): Directory bread(block 72) failed
[  669.541008][T12052] FAT-fs (loop9): Directory bread(block 73) failed
[  669.866066][    C0] usb 8-1: qt2_read_bulk_callback - non-zero urb status: -71
[  669.884686][    T9] usb 8-1: USB disconnect, device number 8
[  669.941637][    T9] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  669.986570][    T9] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  669.999835][    T9] quatech2 8-1:0.51: device disconnected
[  670.600036][T12067] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2626'.
[  670.609578][T12067] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2626'.
[  670.609670][T12067] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2626'.
[  671.959709][T12093] loop5: detected capacity change from 0 to 2048
[  672.426690][T12102] tipc: Started in network mode
[  672.432274][T12102] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  672.440605][T12102] tipc: Enabled bearer <eth:team0>, priority 0
[  672.512766][T10851] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  672.703939][T10851] usb 10-1: Using ep0 maxpacket: 32
[  672.726684][T10851] usb 10-1: config 0 has an invalid interface number: 51 but max is 0
[  672.735652][T10851] usb 10-1: config 0 has no interface number 0
[  672.787781][T10851] usb 10-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  672.801714][T10851] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  672.814227][T10851] usb 10-1: Product: syz
[  672.818728][T10851] usb 10-1: Manufacturer: syz
[  672.823885][T10851] usb 10-1: SerialNumber: syz
[  672.926276][T10851] usb 10-1: config 0 descriptor??
[  672.975072][T10851] quatech2 10-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  673.035986][T12110] loop7: detected capacity change from 0 to 256
[  673.090601][T12110] exfat: Deprecated parameter 'utf8'
[  673.211569][T12110] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xdd33351c, utbl_chksum : 0xe619d30d)
[  673.243981][T10851] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  673.322953][T10851] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  673.561315][T10851] tipc: Node number set to 11578026
[  673.631805][    C1] usb 10-1: qt2_read_bulk_callback - non-zero urb status: -71
[  673.634536][    T9] usb 10-1: USB disconnect, device number 2
[  673.699536][    T9] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  673.748962][    T9] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  673.761983][    T9] quatech2 10-1:0.51: device disconnected
[  673.935429][T12122] loop5: detected capacity change from 0 to 16
[  673.953609][T12122] erofs (device loop5): mounted with root inode @ nid 36.
[  674.046168][T12122] erofs (device loop5): readahead error at folio 84 @ nid 36
[  674.054333][T12122] erofs (device loop5): readahead error at folio 83 @ nid 36
[  674.062747][T12122] erofs (device loop5): readahead error at folio 78 @ nid 36
[  674.073207][T12122] erofs (device loop5): readahead error at folio 77 @ nid 36
[  674.081372][T12122] erofs (device loop5): readahead error at folio 75 @ nid 36
[  674.089445][T12122] erofs (device loop5): readahead error at folio 74 @ nid 36
[  674.100853][T12122] erofs (device loop5): bogus lookback distance 1622 @ lcn 70 of nid 36
[  674.109729][T12122] erofs (device loop5): readahead error at folio 71 @ nid 36
[  674.117626][T12122] erofs (device loop5): bogus lookback distance 1622 @ lcn 70 of nid 36
[  674.131141][T12122] erofs (device loop5): readahead error at folio 70 @ nid 36
[  674.142885][T12122] erofs (device loop5): bogus lookback distance 363 @ lcn 68 of nid 36
[  674.153664][T12122] erofs (device loop5): readahead error at folio 69 @ nid 36
[  674.161538][T12122] erofs (device loop5): bogus lookback distance 363 @ lcn 68 of nid 36
[  674.172840][T12122] erofs (device loop5): readahead error at folio 68 @ nid 36
[  674.180978][T12122] erofs (device loop5): readahead error at folio 65 @ nid 36
[  674.188835][T12122] erofs (device loop5): readahead error at folio 64 @ nid 36
[  674.196933][T12122] erofs (device loop5): bogus lookback distance 363 @ lcn 60 of nid 36
[  674.208788][T12122] erofs (device loop5): readahead error at folio 61 @ nid 36
[  674.216436][T12122] erofs (device loop5): bogus lookback distance 363 @ lcn 60 of nid 36
[  674.225318][T12122] erofs (device loop5): readahead error at folio 60 @ nid 36
[  674.237641][T12122] erofs (device loop5): readahead error at folio 57 @ nid 36
[  674.249253][T12122] erofs (device loop5): readahead error at folio 56 @ nid 36
[  674.257326][T12122] erofs (device loop5): bogus lookback distance 1485 @ lcn 53 of nid 36
[  674.265950][T12122] erofs (device loop5): readahead error at folio 54 @ nid 36
[  674.273893][T12122] erofs (device loop5): bogus lookback distance 1485 @ lcn 53 of nid 36
[  674.285137][T12122] erofs (device loop5): readahead error at folio 53 @ nid 36
[  674.293181][T12122] erofs (device loop5): readahead error at folio 52 @ nid 36
[  674.301099][T12122] erofs (device loop5): readahead error at folio 50 @ nid 36
[  674.311569][T12122] erofs (device loop5): readahead error at folio 49 @ nid 36
[  674.319520][T12122] erofs (device loop5): readahead error at folio 48 @ nid 36
[  674.328614][T12122] erofs (device loop5): readahead error at folio 41 @ nid 36
[  674.340819][T12122] erofs (device loop5): readahead error at folio 39 @ nid 36
[  674.352330][T12122] erofs (device loop5): bogus lookback distance 1024 @ lcn 36 of nid 36
[  674.361203][T12122] erofs (device loop5): readahead error at folio 37 @ nid 36
[  674.369376][T12122] erofs (device loop5): bogus lookback distance 1024 @ lcn 36 of nid 36
[  674.380624][T12122] erofs (device loop5): readahead error at folio 36 @ nid 36
[  674.388521][T12122] erofs (device loop5): readahead error at folio 34 @ nid 36
[  674.396325][T12122] erofs (device loop5): readahead error at folio 32 @ nid 36
[  674.404503][T12122] erofs (device loop5): readahead error at folio 28 @ nid 36
[  674.415003][T12122] erofs (device loop5): bogus lookback distance 1586 @ lcn 24 of nid 36
[  674.423850][T12122] erofs (device loop5): readahead error at folio 25 @ nid 36
[  674.431629][T12122] erofs (device loop5): bogus lookback distance 1586 @ lcn 24 of nid 36
[  674.447543][T12122] erofs (device loop5): readahead error at folio 24 @ nid 36
[  674.455248][T12122] erofs (device loop5): readahead error at folio 23 @ nid 36
[  674.464605][T12122] erofs (device loop5): bogus lookback distance 1388 @ lcn 20 of nid 36
[  674.475880][T12122] erofs (device loop5): readahead error at folio 21 @ nid 36
[  674.483696][T12122] erofs (device loop5): bogus lookback distance 1388 @ lcn 20 of nid 36
[  674.492526][T12122] erofs (device loop5): readahead error at folio 20 @ nid 36
[  674.502923][T12122] erofs (device loop5): bogus lookback distance 774 @ lcn 18 of nid 36
[  674.511670][T12122] erofs (device loop5): readahead error at folio 19 @ nid 36
[  674.519588][T12122] erofs (device loop5): bogus lookback distance 774 @ lcn 18 of nid 36
[  674.530768][T12122] erofs (device loop5): readahead error at folio 18 @ nid 36
[  674.542803][T12122] erofs (device loop5): readahead error at folio 17 @ nid 36
[  674.551909][T12122] erofs (device loop5): readahead error at folio 16 @ nid 36
[  674.562623][T12122] erofs (device loop5): readahead error at folio 14 @ nid 36
[  674.573326][T12122] erofs (device loop5): bogus lookback distance 1468 @ lcn 9 of nid 36
[  674.582702][T12122] erofs (device loop5): readahead error at folio 9 @ nid 36
[  674.607463][T12122] erofs (device loop5): readahead error at folio 4 @ nid 36
[  674.615190][T12122] erofs (device loop5): readahead error at folio 2 @ nid 36
[  674.625897][T12122] syz.5.2651: attempt to access beyond end of device
[  674.625897][T12122] loop5: rw=524288, sector=13478624080, nr_sectors = 24 limit=16
[  674.645308][T12122] syz.5.2651: attempt to access beyond end of device
[  674.645308][T12122] loop5: rw=524288, sector=13478624032, nr_sectors = 48 limit=16
[  674.664645][T12122] syz.5.2651: attempt to access beyond end of device
[  674.664645][T12122] loop5: rw=524288, sector=32, nr_sectors = 64 limit=16
[  674.681129][T12122] syz.5.2651: attempt to access beyond end of device
[  674.681129][T12122] loop5: rw=524288, sector=8, nr_sectors = 24 limit=16
[  674.697904][T12122] syz.5.2651: attempt to access beyond end of device
[  674.697904][T12122] loop5: rw=524288, sector=15495015288, nr_sectors = 32 limit=16
[  674.712821][T12122] syz.5.2651: attempt to access beyond end of device
[  674.712821][T12122] loop5: rw=524288, sector=15495015272, nr_sectors = 16 limit=16
[  674.730307][T12122] syz.5.2651: attempt to access beyond end of device
[  674.730307][T12122] loop5: rw=524288, sector=15353996136, nr_sectors = 8 limit=16
[  674.759128][T12122] syz.5.2651: attempt to access beyond end of device
[  674.759128][T12122] loop5: rw=524288, sector=13612835600, nr_sectors = 8 limit=16
[  674.774046][T12122] syz.5.2651: attempt to access beyond end of device
[  674.774046][T12122] loop5: rw=524288, sector=14552337248, nr_sectors = 16 limit=16
[  674.791641][T12122] syz.5.2651: attempt to access beyond end of device
[  674.791641][T12122] loop5: rw=524288, sector=14546590680, nr_sectors = 8 limit=16
[  674.824331][T12122] erofs (device loop5): failed to decompress -2 in[1, 1440] out[1677]
[  675.452986][T12134] loop4: detected capacity change from 0 to 64
[  675.640299][T12134] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[  675.830426][T12132] loop8: detected capacity change from 0 to 32768
[  676.056862][T12132] bcachefs (loop8): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  676.057007][T12132]   allowing incompatible features above 0.0: (unknown version)
[  676.057091][T12132]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  676.114090][T12132] bcachefs (loop8): Using encoding defined by superblock: utf8-12.1.0
[  676.122938][T12132] bcachefs (loop8): initializing new filesystem
[  676.124276][T12136] loop5: detected capacity change from 0 to 2048
[  676.146655][T12132] bcachefs (loop8): going read-write
[  676.216094][T12132] bcachefs (loop8): marking superblocks
[  676.327730][T12132] bcachefs (loop8): initializing freespace
[  676.346390][T12136] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  676.363196][T12132] bcachefs (loop8): done initializing freespace
[  676.403444][T12132] bcachefs (loop8): reading snapshots table
[  676.412857][T12132] bcachefs (loop8): reading snapshots done
[  676.508698][T12132] bcachefs (loop8): done starting filesystem
[  676.833542][T10841] bcachefs (loop8): shutting down
[  676.839456][T10841] bcachefs (loop8): going read-only
[  676.845267][T10841] bcachefs (loop8): finished waiting for writes to stop
[  676.921470][T10841] bcachefs (loop8): flushing journal and stopping allocators, journal seq 3
[  676.950778][ T6719] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  677.107513][T10841] bcachefs (loop8): flushing journal and stopping allocators complete, journal seq 3
[  677.137302][T10841] bcachefs (loop8): clean shutdown complete, journal seq 4
[  677.147090][T10841] bcachefs (loop8): marking filesystem clean
[  677.321186][T10841] bcachefs (loop8): shutdown complete
[  677.771165][T12163] tipc: Started in network mode
[  677.777285][T12163] tipc: Node identity , cluster identity 4711
[  677.824301][T12167] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2667'.
[  679.350553][T12182] loop5: detected capacity change from 0 to 64
[  679.433241][T12182] hfs: bad catalog folder thread
[  679.443620][T12185] loop4: detected capacity change from 0 to 8
[  679.496824][T12183] loop7: detected capacity change from 0 to 1764
[  680.388220][T12187] loop9: detected capacity change from 0 to 32768
[  680.546981][T12187] bcachefs (loop9): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  680.547127][T12187]   allowing incompatible features above 0.0: (unknown version)
[  680.547217][T12187]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  680.569987][    C1] vkms_vblank_simulate: vblank timer overrun
[  680.610035][T12187] bcachefs (loop9): Using encoding defined by superblock: utf8-12.1.0
[  680.618794][T12187] bcachefs (loop9): initializing new filesystem
[  680.642580][T12187] bcachefs (loop9): going read-write
[  680.731313][T12187] bcachefs (loop9): marking superblocks
[  680.820092][T12187] bcachefs (loop9): initializing freespace
[  680.845258][T12187] bcachefs (loop9): done initializing freespace
[  680.866994][T12187] bcachefs (loop9): reading snapshots table
[  680.874981][T12187] bcachefs (loop9): reading snapshots done
[  680.879042][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  680.890681][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  681.033637][T12187] bcachefs (loop9): done starting filesystem
[  681.305212][T11181] bcachefs (loop9): shutting down
[  681.310583][T11181] bcachefs (loop9): going read-only
[  681.315972][T11181] bcachefs (loop9): finished waiting for writes to stop
[  681.375690][T11181] bcachefs (loop9): flushing journal and stopping allocators, journal seq 2
[  681.675742][T11181] bcachefs (loop9): flushing journal and stopping allocators complete, journal seq 3
[  681.752314][T11181] bcachefs (loop9): clean shutdown complete, journal seq 4
[  681.790533][T11181] bcachefs (loop9): marking filesystem clean
[  681.875431][T12207] loop7: detected capacity change from 0 to 128
[  681.923650][T11181] bcachefs (loop9): shutdown complete
[  681.948174][T12207] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  682.040694][T12207] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  682.068720][T12213] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2684'.
[  682.177284][T12210] loop5: detected capacity change from 0 to 2048
[  682.488075][T12215] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  682.681981][T12217] loop8: detected capacity change from 0 to 16
[  682.734932][T12217] erofs (device loop8): mounted with root inode @ nid 36.
[  682.818051][   T30] audit: type=1800 audit(1751339309.848:110): pid=12217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2686" name="file1" dev="loop8" ino=86 res=0 errno=0
[  683.089996][T12221] netlink: 216 bytes leftover after parsing attributes in process `syz.7.2687'.
[  683.099763][T12221] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2687'.
[  683.109315][T12221] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2687'.
[  683.207634][T12223] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2689'.
[  683.354637][T12220] loop4: detected capacity change from 0 to 2048
[  683.567340][T12224] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  684.618971][T12229] loop8: detected capacity change from 0 to 40427
[  684.636646][T12229] F2FS-fs (loop8): Invalid log sectors per block(0) log sectorsize(9)
[  684.645618][T12229] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  684.720334][T12229] F2FS-fs (loop8): build fault injection rate: 17008
[  684.727680][T12229] F2FS-fs (loop8): build fault injection type: 0x7
[  684.790404][T12229] F2FS-fs (loop8): invalid crc value
[  685.139737][T12229] F2FS-fs (loop8): Try to recover 1th superblock, ret: -30
[  685.147508][T12229] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  687.161617][T12240] loop4: detected capacity change from 0 to 32768
[  687.302663][T12240] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  687.302811][T12240]   allowing incompatible features above 0.0: (unknown version)
[  687.302897][T12240]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  687.351527][T12240] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  687.360203][T12240] bcachefs (loop4): initializing new filesystem
[  687.380712][T12240] bcachefs (loop4): going read-write
[  687.454256][T12240] bcachefs (loop4): marking superblocks
[  687.552895][T12240] bcachefs (loop4): initializing freespace
[  687.586116][T12240] bcachefs (loop4): done initializing freespace
[  687.615653][T12240] bcachefs (loop4): reading snapshots table
[  687.621983][T12240] bcachefs (loop4): reading snapshots done
[  687.796611][T12240] bcachefs (loop4): done starting filesystem
[  687.877637][T12259] loop5: detected capacity change from 0 to 128
[  687.910005][T12259] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  688.213539][T12259] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  688.267416][ T5808] bcachefs (loop4): shutting down
[  688.272799][ T5808] bcachefs (loop4): going read-only
[  688.279523][ T5808] bcachefs (loop4): finished waiting for writes to stop
[  688.412620][ T5808] bcachefs (loop4): flushing journal and stopping allocators, journal seq 3
[  688.870953][ T5808] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 3
[  688.952342][ T5808] bcachefs (loop4): clean shutdown complete, journal seq 4
[  688.986716][ T5808] bcachefs (loop4): marking filesystem clean
[  689.138041][ T5808] bcachefs (loop4): shutdown complete
[  690.161750][T12271] loop8: detected capacity change from 0 to 32768
[  690.252233][T12271] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  690.260800][T12271] gfs2: fsid=syz:syz: Now mounting FS (format 1802)...
[  690.281434][T12271] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 21 (type: exp=5, found=1), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 499
[  690.301131][T12271] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  690.308721][T12271] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  690.317889][T12271] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  690.325126][T12271] gfs2: fsid=syz:syz.0: File system withdrawn
[  690.326215][T12275] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave
[  690.331340][T12271] CPU: 0 UID: 0 PID: 12271 Comm: syz.8.2703 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  690.331488][T12271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  690.331572][T12271] Call Trace:
[  690.331621][T12271]  <TASK>
[  690.331669][T12271]  __dump_stack+0x26/0x30
[  690.331842][T12271]  dump_stack_lvl+0x1df/0x270
[  690.332014][T12271]  dump_stack+0x1e/0x25
[  690.332165][T12271]  gfs2_withdraw+0x1d26/0x22e0
[  690.332420][T12271]  gfs2_metatype_check_ii+0x11e/0x160
[  690.332573][T12271]  gfs2_meta_buffer+0x4c7/0x600
[  690.332767][T12271]  __gfs2_iomap_get+0xf19/0x2210
[  690.333017][T12271]  gfs2_block_map+0x281/0xce0
[  690.333242][T12271]  ? kmsan_get_metadata+0xfb/0x160
[  690.333443][T12271]  gfs2_write_alloc_required+0x4fc/0x6d0
[  690.333589][T12271]  ? gfs2_glock_wait+0x362/0x3b0
[  690.333779][T12271]  gfs2_jdesc_check+0x33b/0x440
[  690.333949][T12271]  init_journal+0x1471/0x3a30
[  690.334137][T12271]  ? init_inodes+0x124/0x510
[  690.334274][T12271]  ? init_inodes+0x124/0x510
[  690.334408][T12271]  ? kmsan_get_metadata+0xfb/0x160
[  690.334590][T12271]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  690.334789][T12271]  init_inodes+0x124/0x510
[  690.334935][T12271]  gfs2_fill_super+0x384a/0x3f50
[  690.335079][T12271]  ? init_locking+0xed/0x500
[  690.335251][T12271]  get_tree_bdev_flags+0x6e6/0x920
[  690.335445][T12271]  ? __pfx_gfs2_fill_super+0x10/0x10
[  690.335585][T12271]  ? __pfx_gfs2_fill_super+0x10/0x10
[  690.335717][T12271]  ? __pfx_gfs2_get_tree+0x10/0x10
[  690.335853][T12271]  get_tree_bdev+0x38/0x50
[  690.336032][T12271]  gfs2_get_tree+0x57/0x350
[  690.336168][T12271]  ? __pfx_gfs2_get_tree+0x10/0x10
[  690.336304][T12271]  vfs_get_tree+0xb3/0x5c0
[  690.336491][T12271]  ? mount_capable+0x99/0x100
[  690.336653][T12271]  do_new_mount+0x738/0x1610
[  690.336837][T12271]  ? kmsan_get_metadata+0xfb/0x160
[  690.337019][T12271]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  690.337231][T12271]  path_mount+0x6db/0x1e90
[  690.337423][T12271]  ? user_path_at+0x32d/0x3d0
[  690.337599][T12271]  __se_sys_mount+0x6eb/0x7d0
[  690.337784][T12271]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  690.337984][T12271]  __x64_sys_mount+0xe4/0x150
[  690.338183][T12271]  x64_sys_call+0xfa7/0x3db0
[  690.338361][T12271]  do_syscall_64+0xd9/0x210
[  690.338504][T12271]  ? irqentry_exit+0x16/0x60
[  690.338680][T12271]  ? clear_bhb_loop+0x40/0x90
[  690.338835][T12271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  690.338984][T12271] RIP: 0033:0x7f9ab4f900ca
[  690.339087][T12271] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  690.339204][T12271] RSP: 002b:00007f9ab5e20e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  690.339342][T12271] RAX: ffffffffffffffda RBX: 00007f9ab5e20ef0 RCX: 00007f9ab4f900ca
[  690.339439][T12271] RDX: 0000200000000400 RSI: 0000200000000000 RDI: 00007f9ab5e20eb0
[  690.339534][T12271] RBP: 0000200000000400 R08: 00007f9ab5e20ef0 R09: 0000000000200401
[  690.339627][T12271] R10: 0000000000200401 R11: 0000000000000246 R12: 0000200000000000
[  690.339717][T12271] R13: 00007f9ab5e20eb0 R14: 00000000000125bb R15: 0000200000000080
[  690.339840][T12271]  </TASK>
[  690.340143][T12271] gfs2: fsid=syz:syz.0: G:  s:SH n:2/13 f:aqob t:SH d:EX/0 a:0 v:0 r:2 m:20 p:3
[  690.344014][T12275] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1)
[  690.353276][T12271] gfs2: fsid=syz:syz.0:  H: s:SH f:eEcH e:0 p:0 [(none)] init_inodes+0x124/0x510
[  690.699870][T12271] gfs2: fsid=syz:syz.0:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  690.711403][T12271] gfs2: fsid=syz:syz.0: my journal (0) is bad: -5
[  691.578627][T12284] fuse: Unexpected value for 'default_permissions'
[  692.000953][T12156] Bluetooth: hci2: command 0x0406 tx timeout
[  692.548516][T12292] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2720'.
[  693.258515][T12289] loop7: detected capacity change from 0 to 32768
[  693.394100][T12289] bcachefs (loop7): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  693.394246][T12289]   allowing incompatible features above 0.0: (unknown version)
[  693.394332][T12289]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  693.452246][T12289] bcachefs (loop7): Using encoding defined by superblock: utf8-12.1.0
[  693.461093][T12289] bcachefs (loop7): initializing new filesystem
[  693.489904][T12289] bcachefs (loop7): going read-write
[  693.527882][T12289] bcachefs (loop7): marking superblocks
[  693.680968][T12289] bcachefs (loop7): initializing freespace
[  693.726609][T12289] bcachefs (loop7): done initializing freespace
[  693.767718][T12289] bcachefs (loop7): reading snapshots table
[  693.779822][T12289] bcachefs (loop7): reading snapshots done
[  693.957249][T12289] bcachefs (loop7): done starting filesystem
[  694.270156][T10714] bcachefs (loop7): shutting down
[  694.276323][T10714] bcachefs (loop7): going read-only
[  694.281775][T10714] bcachefs (loop7): finished waiting for writes to stop
[  694.359914][T10714] bcachefs (loop7): flushing journal and stopping allocators, journal seq 3
[  694.626223][T10714] bcachefs (loop7): flushing journal and stopping allocators complete, journal seq 3
[  694.646183][T10714] bcachefs (loop7): clean shutdown complete, journal seq 4
[  694.659887][T10714] bcachefs (loop7): marking filesystem clean
[  694.793654][T12314] fuse: Bad value for 'group_id'
[  694.803754][T12314] fuse: Bad value for 'group_id'
[  694.856018][T10714] bcachefs (loop7): shutdown complete
[  697.500356][T12327] loop5: detected capacity change from 0 to 40427
[  701.018779][T12358] loop7: detected capacity change from 0 to 32768
[  701.165279][T12358] bcachefs (loop7): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names
[  701.165406][T12358]   allowing incompatible features above 0.0: (unknown version)
[  701.165494][T12358]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  701.213309][T12358] bcachefs (loop7): Using encoding defined by superblock: utf8-12.1.0
[  701.222524][T12358] bcachefs (loop7): recovering from clean shutdown, journal seq 10
[  701.232130][T12358] bcachefs (loop7): Version upgrade required:
[  701.232130][T12358] Version upgrade from 0.8: (unknown version) to 1.7: mi_btree_bitmap incomplete
[  701.232130][T12358] Doing incompatible version upgrade from 0.8: (unknown version) to 1.28: inode_has_case_insensitive
[  701.232130][T12358]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  701.305674][    C1] vkms_vblank_simulate: vblank timer overrun
[  701.364890][T12358] bcachefs (loop7): btree node read error at btree inodes level 0/0
[  701.364998][T12358]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 1052 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0
[  701.365098][T12358]   loop7 node offset 24/1052: btree node data missing: expected 1052 sectors, found 24
[  701.365177][T12358]   repair success (rewriting node)
[  701.446505][T12358] bcachefs (loop7): btree node read error at btree lru level 0/0
[  701.446604][T12358]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key 0:196608:0 durability: 1 ptr: 0:28:0 gen 0
[  701.446695][T12358]   loop7 node offset 0/16: incorrect min_key: got POS_MIN should be 0:196608:0
[  701.446772][T12358]   flagging btree lru lost data
[  701.446836][T12358]   ret btree_node_read_validate_error
[  701.498477][T12358] bcachefs (loop7): error reading btree root btree=lru level=0: btree_node_read_error, fixing
[  701.519533][T12358] bcachefs (loop7): btree node read error at btree freespace level 0/0
[  701.519625][T12358]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0
[  701.519719][T12358]   loop7 node offset 0/32 bset u64s 0: invalid bkey format: field 4 too large: 0 + 4294967296 > 4294967295
[  701.519804][T12358]   u64s 3 fields 64:0, 64:0, 32:0, 0:0, 0:4294967296, 0:0
[  701.519872][T12358]   flagging btree freespace lost data
[  701.520132][T12358]   ret btree_node_read_validate_error
[  701.584450][T12358] bcachefs (loop7): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  701.609137][T12358] bcachefs (loop7): check_topology... done
[  701.621620][T12358] bcachefs (loop7): accounting_read... done
[  701.640737][T12358] bcachefs (loop7): alloc_read... done
[  701.649366][T12358] bcachefs (loop7): snapshots_read... done
[  701.662687][T12358] bcachefs (loop7): Fixed errors, running fsck a second time to verify fs is clean
[  701.678175][T12358] bcachefs (loop7): done starting filesystem
[  701.831244][T10714] bcachefs (loop7): shutting down
[  701.897948][T10714] bcachefs (loop7): shutdown complete
[  703.023946][T12383] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2745'.
[  704.050451][T12386] loop4: detected capacity change from 0 to 32768
[  704.202590][T12386] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  704.202736][T12386]   allowing incompatible features above 0.0: (unknown version)
[  704.202818][T12386]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  704.251606][T12386] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  704.260157][T12386] bcachefs (loop4): initializing new filesystem
[  704.280970][T12386] bcachefs (loop4): going read-write
[  704.329178][T12386] bcachefs (loop4): marking superblocks
[  704.425825][T12386] bcachefs (loop4): initializing freespace
[  704.459164][T12386] bcachefs (loop4): done initializing freespace
[  704.488655][T12386] bcachefs (loop4): reading snapshots table
[  704.495227][T12386] bcachefs (loop4): reading snapshots done
[  704.606887][T12386] bcachefs (loop4): done starting filesystem
[  704.906955][ T5808] bcachefs (loop4): shutting down
[  704.912748][ T5808] bcachefs (loop4): going read-only
[  704.918210][ T5808] bcachefs (loop4): finished waiting for writes to stop
[  704.989109][ T5808] bcachefs (loop4): flushing journal and stopping allocators, journal seq 3
[  705.226251][ T5808] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 3
[  705.288661][ T5808] bcachefs (loop4): clean shutdown complete, journal seq 4
[  705.320880][ T5808] bcachefs (loop4): marking filesystem clean
[  705.410473][T12407] loop5: detected capacity change from 0 to 1024
[  705.448221][T12407] EXT4-fs: Ignoring removed oldalloc option
[  705.455829][T12407] EXT4-fs: Ignoring removed orlov option
[  705.554313][ T5808] bcachefs (loop4): shutdown complete
[  705.764066][T12407] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  706.272004][T12409] loop9: detected capacity change from 0 to 32768
[  706.337273][T12407] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  706.442616][T12409] bcachefs (loop9): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names
[  706.442737][T12409]   allowing incompatible features above 0.0: (unknown version)
[  706.442816][T12409]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  706.442957][T12409] bcachefs (loop9): Using encoding defined by superblock: utf8-12.1.0
[  706.443670][T12409] bcachefs (loop9): recovering from clean shutdown, journal seq 10
[  706.444913][T12409] bcachefs (loop9): Version upgrade required:
[  706.444913][T12409] Version upgrade from 0.8: (unknown version) to 1.7: mi_btree_bitmap incomplete
[  706.444913][T12409] Doing incompatible version upgrade from 0.8: (unknown version) to 1.28: inode_has_case_insensitive
[  706.444913][T12409]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  706.471625][T12409] bcachefs (loop9): btree node read error at btree inodes level 0/0
[  706.471725][T12409]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 1052 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0
[  706.471828][T12409]   loop9 node offset 24/1052: btree node data missing: expected 1052 sectors, found 24
[  706.471910][T12409]   repair success (rewriting node)
[  706.602654][T12409] bcachefs (loop9): btree node read error at btree lru level 0/0
[  706.714389][    C1] vkms_vblank_simulate: vblank timer overrun
[  706.789677][T12409]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key 0:196608:0 durability: 1 ptr: 0:28:0 gen 0
[  706.789785][T12409]   loop9 node offset 0/16: incorrect min_key: got POS_MIN should be 0:196608:0
[  706.789864][T12409]   flagging btree lru lost data
[  706.789927][T12409]   ret btree_node_read_validate_error
[  706.790523][T12409] bcachefs (loop9): error reading btree root btree=lru level=0: btree_node_read_error, fixing
[  706.801724][T12409] bcachefs (loop9): btree node read error at btree freespace level 0/0
[  706.849010][T12409]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0
[  706.849117][T12409]   loop9 node offset 0/32 bset u64s 0: invalid bkey format: field 4 too large: 0 + 4294967296 > 4294967295
[  706.849211][T12409]   u64s 3 fields 64:0, 64:0, 32:0, 0:0, 0:4294967296, 0:0
[  706.849280][T12409]   flagging btree freespace lost data
[  706.849346][T12409]   ret btree_node_read_validate_error
[  706.849995][T12409] bcachefs (loop9): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  706.860846][T12409] bcachefs (loop9): check_topology... done
[  706.866802][T12409] bcachefs (loop9): accounting_read... done
[  706.872778][T12409] bcachefs (loop9): alloc_read... done
[  706.880261][T12409] bcachefs (loop9): snapshots_read... done
[  706.882727][T12409] bcachefs (loop9): Fixed errors, running fsck a second time to verify fs is clean
[  706.884761][T12409] bcachefs (loop9): done starting filesystem
[  706.922304][T12407] EXT4-fs: Ignoring removed orlov option
[  706.927989][T12407] EXT4-fs (loop5): can't enable nombcache during remount
[  707.180423][T11181] bcachefs (loop9): shutting down
[  707.354978][T11181] bcachefs (loop9): shutdown complete
[  707.603086][ T6719] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  707.848560][T12429] loop8: detected capacity change from 0 to 128
[  709.364009][T12437] loop8: detected capacity change from 0 to 32768
[  709.824114][T12437] bcachefs (loop8): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  709.824260][T12437]   allowing incompatible features above 0.0: (unknown version)
[  709.824342][T12437]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  709.878239][T12437] bcachefs (loop8): Using encoding defined by superblock: utf8-12.1.0
[  709.889495][T12437] bcachefs (loop8): initializing new filesystem
[  709.908902][T12437] bcachefs (loop8): going read-write
[  709.924380][T12437] bcachefs (loop8): marking superblocks
[  710.082994][T12437] bcachefs (loop8): initializing freespace
[  710.123645][T12437] bcachefs (loop8): done initializing freespace
[  710.165570][T12437] bcachefs (loop8): reading snapshots table
[  710.174581][T12437] bcachefs (loop8): reading snapshots done
[  710.288137][T12437] bcachefs (loop8): done starting filesystem
[  710.434680][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  710.670859][T10841] bcachefs (loop8): shutting down
[  710.676125][T10841] bcachefs (loop8): going read-only
[  710.682183][T10841] bcachefs (loop8): finished waiting for writes to stop
[  710.695511][T10841] bcachefs (loop8): flushing journal and stopping allocators, journal seq 2
[  710.848213][T10841] bcachefs (loop8): flushing journal and stopping allocators complete, journal seq 3
[  710.905303][T10841] bcachefs (loop8): clean shutdown complete, journal seq 4
[  710.933846][T10841] bcachefs (loop8): marking filesystem clean
[  711.029481][T10841] bcachefs (loop8): shutdown complete
[  712.169830][T10851] usb 8-1: new full-speed USB device number 9 using dummy_hcd
[  712.338426][T12466] loop5: detected capacity change from 0 to 32768
[  712.381378][T10851] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  712.392900][T10851] usb 8-1: config 0 interface 0 has no altsetting 0
[  712.402498][T10851] usb 8-1: New USB device found, idVendor=28bd, idProduct=0078, bcdDevice= 0.00
[  712.416128][T10851] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  712.595810][T10851] usb 8-1: config 0 descriptor??
[  712.604305][T12468] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  712.772468][T12466] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names
[  712.772598][T12466]   allowing incompatible features above 0.0: (unknown version)
[  712.772690][T12466]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  712.813250][T12466] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0
[  712.825722][T12466] bcachefs (loop5): recovering from clean shutdown, journal seq 10
[  712.835406][T12466] bcachefs (loop5): Version upgrade required:
[  712.835406][T12466] Version upgrade from 0.8: (unknown version) to 1.7: mi_btree_bitmap incomplete
[  712.835406][T12466] Doing incompatible version upgrade from 0.8: (unknown version) to 1.28: inode_has_case_insensitive
[  712.835406][T12466]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  712.975594][T12466] bcachefs (loop5): btree node read error at btree inodes level 0/0
[  712.975691][T12466]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 1052 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0
[  712.975800][T12466]   loop5 node offset 24/1052: btree node data missing: expected 1052 sectors, found 24
[  712.975889][T12466]   repair success (rewriting node)
[  713.097424][T12466] bcachefs (loop5): btree node read error at btree lru level 0/0
[  713.097520][T12466]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key 0:196608:0 durability: 1 ptr: 0:28:0 gen 0
[  713.097617][T12466]   loop5 node offset 0/16: incorrect min_key: got POS_MIN should be 0:196608:0
[  713.097693][T12466]   flagging btree lru lost data
[  713.097755][T12466]   ret btree_node_read_validate_error
[  713.144360][T12466] bcachefs (loop5): error reading btree root btree=lru level=0: btree_node_read_error, fixing
[  713.186668][T12466] bcachefs (loop5): btree node read error at btree freespace level 0/0
[  713.186770][T12466]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0
[  713.186873][T12466]   loop5 node offset 0/32 bset u64s 0: invalid bkey format: field 4 too large: 0 + 4294967296 > 4294967295
[  713.186970][T12466]   u64s 3 fields 64:0, 64:0, 32:0, 0:0, 0:4294967296, 0:0
[  713.187044][T12466]   flagging btree freespace lost data
[  713.187109][T12466]   ret btree_node_read_validate_error
[  713.198692][T12479] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2772'.
[  713.210132][T12466] bcachefs (loop5): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  713.227478][T12466] bcachefs (loop5): check_topology... done
[  713.272131][T10851] uclogic 0003:28BD:0078.0021: interface is invalid, ignoring
[  713.275542][T12466] bcachefs (loop5): accounting_read... done
[  713.296390][T12466] bcachefs (loop5): alloc_read... done
[  713.305234][T12466] bcachefs (loop5): snapshots_read... done
[  713.314095][T12466] bcachefs (loop5): Fixed errors, running fsck a second time to verify fs is clean
[  713.329108][T12466] bcachefs (loop5): done starting filesystem
[  713.495511][ T6719] bcachefs (loop5): shutting down
[  713.537810][T10851] usb 8-1: USB disconnect, device number 9
[  713.619250][ T6719] bcachefs (loop5): shutdown complete
[  713.874452][T12481] loop4: detected capacity change from 0 to 512
[  713.967381][T12481] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.2774: bad orphan inode 11
[  714.033315][T12481] ext4_test_bit(bit=10, block=4) = 1
[  714.039071][T12481] is_bad_inode(inode)=0
[  714.048346][T12481] NEXT_ORPHAN(inode)=2080374784
[  714.057580][T12481] max_ino=32
[  714.061148][T12481] i_nlink=0
[  714.064682][T12481] EXT4-fs (loop4): 1 truncate cleaned up
[  714.072863][T12481] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  714.662152][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  715.162949][T12491] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave
[  715.175938][T12491] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1)
[  715.621309][T12489] loop4: detected capacity change from 0 to 4096
[  715.943483][T12489] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  716.454254][T10851] IPVS: starting estimator thread 0...
[  716.549174][T12507] IPVS: using max 240 ests per chain, 12000 per kthread
[  716.827218][T12511] loop4: detected capacity change from 0 to 256
[  716.944285][T12511] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3ec, utbl_chksum : 0xe619d30d)
[  716.964453][T12513] loop9: detected capacity change from 0 to 512
[  717.298448][T12513] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  717.311699][T12513] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  717.469787][T12518] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  717.528024][T12523] netlink: 48 bytes leftover after parsing attributes in process `syz.7.2790'.
[  717.570264][T12518] EXT4-fs (loop9): Remounting filesystem read-only
[  717.936290][T12527] loop7: detected capacity change from 0 to 64
[  717.951526][T11181] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  717.974839][T12527] BFS-fs: bfs_fill_super(): loop7 is unclean, continuing
[  720.192944][T12555] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.2773'.
[  720.273325][T12552] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.2773'.
[  720.829006][T12563] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  720.855357][    C1] vkms_vblank_simulate: vblank timer overrun
[  720.866018][T12563] CIFS: Unable to determine destination address
[  721.541854][T12571] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2811'.
[  721.612518][T12572] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_team, syncid = 4, id = 0
[  721.655226][T12567] loop9: detected capacity change from 0 to 32768
[  721.798584][T12567] bcachefs (loop9): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=xxhash,data_checksum=xxhash,compression=lz4,str_hash=crc64,norecovery,reconstruct_alloc
[  721.798713][T12567]   allowing incompatible features above 0.0: (unknown version)
[  721.798795][T12567]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  721.843290][T12567] bcachefs (loop9): Using encoding defined by superblock: utf8-12.1.0
[  721.852472][T12567] bcachefs (loop9): recovering from clean shutdown, journal seq 10
[  721.861370][T12567] bcachefs (loop9): Version upgrade from 1.19: autofix_errors to 1.7: mi_btree_bitmap incomplete
[  721.861370][T12567] Doing compatible version upgrade from 1.19: autofix_errors to 1.28: inode_has_case_insensitive
[  721.861370][T12567]   running recovery passes: check_extents_to_backpointers,check_inodes
[  721.892734][T12567] bcachefs (loop9): dropping and reconstructing all alloc info
[  721.911471][    T9] usb 5-1: new full-speed USB device number 15 using dummy_hcd
[  721.976436][T12567] bcachefs (loop9): error reading btree root btree=dirents level=0: btree_node_read_error, fixing
[  721.998359][T12567] bcachefs (loop9): btree node read error at btree xattrs level 0/0
[  721.998460][T12567]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 1 ptr: 0:31:0 gen 0
[  721.998558][T12567]   loop9 node offset 0/16: got wrong btree node: got
[  721.998630][T12567]   btree=xattrs level=0 seq ded0abe32 1
[  721.998696][T12567]   min: POS_MIN
[  721.998753][T12567]   max: SPOS_MAX
[  721.998816][T12567]   flagging btree xattrs lost data
[  721.998878][T12567]   ret btree_node_read_validate_error
[  722.056536][T12567] bcachefs (loop9): error reading btree root btree=xattrs level=0: btree_node_read_error, fixing
[  722.116309][T12567] bcachefs (loop9): check_topology...
[  722.117204][T12567] bcachefs (loop9): btree root dirents unreadable, must recover from scan
[  722.135541][T12567] bcachefs (loop9): running recovery pass scan_for_btree_nodes (1), currently at check_topology (2) - rewinding
[  722.148185][T12567] bcachefs (loop9): bch2_check_root(): error restart_recovery
[  722.156004][T12567] bcachefs (loop9): scan_for_btree_nodes...
[  722.161836][T12561] loop5: detected capacity change from 0 to 8192
[  722.186947][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  722.197933][    T9] usb 5-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.00
[  722.207906][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  722.268305][T12567] bcachefs (loop9): btree node scan found 3 nodes after overwrites
[  722.278879][T12567]  done
[  722.281864][T12567] bcachefs (loop9): check_topology...
[  722.282735][T12567] bcachefs (loop9): btree root dirents unreadable, must recover from scan
[  722.297966][T12567] bcachefs (loop9): no nodes found for btree dirents, continuing
[  722.306387][T12567] bcachefs (loop9): btree root xattrs unreadable, must recover from scan
[  722.315969][T12567] bcachefs (loop9): bch2_get_scanned_nodes(): recovery btree=xattrs level=0 POS_MIN - SPOS_MAX
[  722.327529][T12567] bcachefs (loop9): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ded0abe32 written 8 min_key POS_MIN durability: 1 ptr: 0:31:0 gen 0
[  722.335272][T12561] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  722.370253][    T9] usb 5-1: config 0 descriptor??
[  722.384089][T12567]  done
[  722.387072][T12567] bcachefs (loop9): accounting_read... done
[  722.415910][T12567] bcachefs (loop9): alloc_read... done
[  722.425377][T12567] bcachefs (loop9): snapshots_read... done
[  722.436409][T12567] bcachefs (loop9): Fixed errors, running fsck a second time to verify fs is clean
[  722.452340][T12567] bcachefs (loop9): done starting filesystem
[  722.733206][T11181] bcachefs (loop9): shutting down
[  722.862672][T11181] bcachefs (loop9): shutdown complete
[  722.938355][    T9] magicmouse 0003:05AC:0265.0022: hidraw0: USB HID v0.00 Device [HID 05ac:0265] on usb-dummy_hcd.4-1/input0
[  723.065314][    T9] usb 5-1: USB disconnect, device number 15
[  723.321475][T12591] netlink: 32 bytes leftover after parsing attributes in process `syz.8.2818'.
[  724.217763][T10851] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  724.427435][T10851] usb 6-1: Using ep0 maxpacket: 16
[  724.538314][T10851] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  724.549814][T10851] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  724.562546][T10851] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  724.575975][T10851] usb 6-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[  724.585487][T10851] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  724.779154][T10851] usb 6-1: config 0 descriptor??
[  725.319764][T10851] hid (null): report_id 1537886436 is invalid
[  725.364849][T10851] hid-multitouch 0003:0457:07DA.0023: report_id 1537886436 is invalid
[  725.375969][T10851] hid-multitouch 0003:0457:07DA.0023: item 0 4 1 8 parsing failed
[  725.464966][T10851] hid-multitouch 0003:0457:07DA.0023: probe with driver hid-multitouch failed with error -22
[  725.542267][T12615] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  725.586749][    T9] usb 6-1: USB disconnect, device number 7
[  726.668719][T12631] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2835'.
[  727.022455][T12631] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2835'.
[  727.821256][T12631] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2835'.
[  727.841761][   T49] Bluetooth: hci4: command 0x0406 tx timeout
[  729.325154][T12655] loop8: detected capacity change from 0 to 32768
[  729.510503][T12655] bcachefs (loop8): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  729.510649][T12655]   allowing incompatible features above 0.0: (unknown version)
[  729.510732][T12655]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  729.556427][T12655] bcachefs (loop8): Using encoding defined by superblock: utf8-12.1.0
[  729.564991][T12655] bcachefs (loop8): initializing new filesystem
[  729.581778][T12655] bcachefs (loop8): going read-write
[  729.630523][T12655] bcachefs (loop8): marking superblocks
[  729.730307][T12655] bcachefs (loop8): initializing freespace
[  729.763543][T12655] bcachefs (loop8): done initializing freespace
[  729.793373][T12655] bcachefs (loop8): reading snapshots table
[  729.799875][T12655] bcachefs (loop8): reading snapshots done
[  729.974116][T12655] bcachefs (loop8): done starting filesystem
[  730.034238][T12677] pim6reg: entered allmulticast mode
[  730.274193][T10841] bcachefs (loop8): shutting down
[  730.279762][T10841] bcachefs (loop8): going read-only
[  730.285211][T10841] bcachefs (loop8): finished waiting for writes to stop
[  730.374588][T10841] bcachefs (loop8): flushing journal and stopping allocators, journal seq 3
[  730.537757][T10841] bcachefs (loop8): flushing journal and stopping allocators complete, journal seq 3
[  730.573557][T10841] bcachefs (loop8): clean shutdown complete, journal seq 4
[  730.593666][T10841] bcachefs (loop8): marking filesystem clean
[  730.703158][T10841] bcachefs (loop8): shutdown complete
[  731.576299][T12686] loop9: detected capacity change from 0 to 32768
[  731.591864][T12686] bcachefs (/dev/loop9): error reading default superblock: Invalid superblock: too big (got 4696 bytes, layout max 512)
[  731.661319][T12686] bcachefs (/dev/loop9): error validating superblock: Invalid superblock section members_v2: device 0: not enough buckets (got 0, max 64)
[  731.661319][T12686] members_v2 (size 96):
[  731.661319][T12686] member_bytes 0
[  731.683675][T12686] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  732.406463][T12696] loop5: detected capacity change from 0 to 1024
[  732.558315][T12696] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  732.727047][T12702] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2860'.
[  732.914578][T12703] loop4: detected capacity change from 0 to 4096
[  732.999379][T12703] NILFS (loop4): invalid segment: Checksum error in segment payload
[  733.007989][T12703] NILFS (loop4): trying rollback from an earlier position
[  733.084265][ T6719] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  733.125693][T12703] NILFS (loop4): recovery complete
[  733.207832][T12708] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  734.738746][T12732] netlink: 16402 bytes leftover after parsing attributes in process `syz.9.2873'.
[  734.805207][T12730] netlink: 16402 bytes leftover after parsing attributes in process `syz.9.2873'.
[  735.802997][T12753] netlink: 'syz.4.2884': attribute type 1 has an invalid length.
[  735.811412][T12753] netlink: 244 bytes leftover after parsing attributes in process `syz.4.2884'.
[  735.886072][T12755] ipvlan2: entered promiscuous mode
[  735.891797][T12755] ipvlan2: entered allmulticast mode
[  735.900282][T12755] hsr0: entered allmulticast mode
[  735.905548][T12755] hsr_slave_0: entered allmulticast mode
[  735.911612][T12755] hsr_slave_1: entered allmulticast mode
[  737.043725][   T30] audit: type=1326 audit(1751339364.089:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12777 comm="syz.5.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbfab8e929 code=0x7ffc0000
[  737.066440][    C1] vkms_vblank_simulate: vblank timer overrun
[  737.073155][   T30] audit: type=1326 audit(1751339364.089:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12777 comm="syz.5.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbfab8e929 code=0x7ffc0000
[  737.112329][   T30] audit: type=1326 audit(1751339364.159:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12777 comm="syz.5.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fdbfab8e929 code=0x7ffc0000
[  737.134888][    C1] vkms_vblank_simulate: vblank timer overrun
[  737.144560][   T30] audit: type=1326 audit(1751339364.159:114): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12777 comm="syz.5.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbfab8e929 code=0x7ffc0000
[  737.167611][    C1] vkms_vblank_simulate: vblank timer overrun
[  737.186875][   T30] audit: type=1326 audit(1751339364.159:115): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12777 comm="syz.5.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbfab8e929 code=0x7ffc0000
[  737.504787][T12789] loop4: detected capacity change from 0 to 128
[  737.662255][T12789] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  737.942283][T12797] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  738.411743][T12807] loop7: detected capacity change from 0 to 64
[  738.555602][T12811] Trying to free block not in datazone
[  738.559769][   T30] audit: type=1800 audit(1751339365.609:116): pid=12811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2909" name="file2" dev="loop7" ino=6 res=0 errno=0
[  738.581896][    C1] vkms_vblank_simulate: vblank timer overrun
[  738.612407][T12811] Trying to free block not in datazone
[  738.645150][T12812] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2910'.
[  738.907082][T10851] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  739.067281][T10851] usb 10-1: Using ep0 maxpacket: 16
[  739.111348][T10851] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  739.123708][T10851] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  739.139668][T10851] usb 10-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= 0.00
[  739.153945][T10851] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  739.224937][T10851] usb 10-1: config 0 descriptor??
[  739.704646][T10851] nzxt-kraken2 0003:1E71:170E.0024: hidraw0: USB HID v0.00 Device [HID 1e71:170e] on usb-dummy_hcd.9-1/input0
[  739.883663][ T1699] usb 10-1: USB disconnect, device number 3
[  740.067314][T10851] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  740.151765][T12838] sp0: Synchronizing with TNC
[  740.189449][T12841] loop7: detected capacity change from 0 to 164
[  740.195686][T12841] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  740.231240][T12841] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  740.233914][T12841] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  740.247149][T10851] usb 9-1: Using ep0 maxpacket: 16
[  740.252838][T10851] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  740.252985][T10851] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  740.273907][T10851] usb 9-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  740.274055][T10851] usb 9-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  740.274176][T10851] usb 9-1: Manufacturer: syz
[  740.279079][T10851] usb 9-1: config 0 descriptor??
[  740.508220][T12831] netlink: 'syz.8.2919': attribute type 3 has an invalid length.
[  740.516411][T12831] netlink: 666 bytes leftover after parsing attributes in process `syz.8.2919'.
[  740.552358][    T9] usb 9-1: USB disconnect, device number 3
[  740.652336][T12843] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2924'.
[  741.344373][T12853] loop4: detected capacity change from 0 to 2048
[  741.478847][T12853] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  741.679466][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  741.840886][T12867] loop5: detected capacity change from 0 to 8
[  741.969059][T12867] SQUASHFS error: Failed to read block 0x730: -5
[  741.975675][T12867] SQUASHFS error: Unable to read metadata cache entry [72e]
[  742.521141][T12881] loop5: detected capacity change from 0 to 64
[  743.040042][T12892] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  743.040042][T12892]    program syz.9.2945 not setting count and/or reply_len properly
[  743.103888][T12893] loop5: detected capacity change from 0 to 512
[  743.194616][T12893] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.2946: bg 0: block 5: invalid block bitmap
[  743.285703][T12893] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  743.313086][T12893] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2946: invalid indirect mapped block 3 (level 2)
[  743.350960][T12893] EXT4-fs (loop5): 2 truncates cleaned up
[  743.361766][T12893] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  743.662991][ T6719] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  744.189227][T12914] netlink: 'syz.4.2955': attribute type 4 has an invalid length.
[  744.200179][T12914] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2955'.
[  746.287297][T12953] loop7: detected capacity change from 0 to 256
[  746.315745][T12953] exfat: Deprecated parameter 'namecase'
[  746.445531][T12953] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xeb999a00, utbl_chksum : 0xe619d30d)
[  746.672931][T12955] loop8: detected capacity change from 0 to 4096
[  746.686358][T12961] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2977'.
[  746.798010][T12962] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  746.974872][T12964] loop4: detected capacity change from 0 to 256
[  747.021542][T12964] exfat: Deprecated parameter 'namecase'
[  747.030503][T12964] exfat: Deprecated parameter 'namecase'
[  747.138711][T12964] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  747.666269][T12970] ALSA: seq fatal error: cannot create timer (-19)
[  747.793570][T12973] loop8: detected capacity change from 0 to 1024
[  747.907251][T12976] loop7: detected capacity change from 0 to 2048
[  747.976342][T12976] UDF-fs: error (device loop7): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  748.037345][    T9] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  748.079664][T12976] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[  748.087897][T12976] UDF-fs: Scanning with blocksize 512 failed
[  748.200641][T12976] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  748.238077][    T9] usb 5-1: Using ep0 maxpacket: 16
[  748.258612][    T9] usb 5-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  748.258775][    T9] usb 5-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0
[  748.258906][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  748.259069][    T9] usb 5-1: New USB device found, idVendor=04f2, idProduct=0418, bcdDevice= 0.00
[  748.259199][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  748.283827][    T9] usb 5-1: config 0 descriptor??
[  748.298447][   T30] audit: type=1800 audit(1751339375.359:117): pid=12976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2984" name="file2" dev="loop7" ino=839 res=0 errno=0
[  748.301432][   T30] audit: type=1800 audit(1751339375.359:118): pid=12976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2984" name="file2" dev="loop7" ino=839 res=0 errno=0
[  748.812252][    T9] chicony 0003:04F2:0418.0025: hidraw0: USB HID v0.00 Device [HID 04f2:0418] on usb-dummy_hcd.4-1/input0
[  748.970883][T10851] usb 5-1: USB disconnect, device number 16
[  749.464444][T12995] loop7: detected capacity change from 0 to 512
[  749.550029][T12995] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  749.688387][T12995] EXT4-fs (loop7): 1 truncate cleaned up
[  749.696276][T12995] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  750.129986][T10714] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  750.262726][T13011] loop8: detected capacity change from 0 to 128
[  750.424436][T13011] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  750.549740][T13011] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  750.975971][T10841] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  751.049120][T13024] sch_fq: defrate 4294967295 ignored.
[  751.741915][T13035] loop5: detected capacity change from 0 to 1024
[  751.934895][T13035] =====================================================
[  751.947579][T13035] BUG: KMSAN: uninit-value in hfsplus_delete_cat+0x1195/0x13d0
[  751.955500][T13035]  hfsplus_delete_cat+0x1195/0x13d0
[  751.961192][T13035]  hfsplus_rmdir+0x13c/0x310
[  751.966022][T13035]  hfsplus_rename+0xf9/0x2f0
[  751.973506][T13035]  vfs_rename+0x1e87/0x2460
[  751.980859][T13035]  do_renameat2+0x175e/0x1d70
[  751.985878][T13035]  __x64_sys_rename+0xd7/0x140
[  751.991165][T13035]  x64_sys_call+0x3553/0x3db0
[  751.996075][T13035]  do_syscall_64+0xd9/0x210
[  752.003397][T13035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.012419][T13035] 
[  752.014858][T13035] Uninit was stored to memory at:
[  752.020357][T13035]  hfsplus_create_cat+0x18fb/0x1910
[  752.025796][T13035]  hfsplus_mknod+0x208/0x560
[  752.033356][T13035]  hfsplus_mkdir+0x5a/0x80
[  752.043024][T13035]  vfs_mkdir+0x4e7/0x850
[  752.048504][T13035]  do_mkdirat+0x41a/0xf30
[  752.053083][T13035]  __x64_sys_mkdir+0x9a/0xf0
[  752.058094][T13035]  x64_sys_call+0x29b6/0x3db0
[  752.063013][T13035]  do_syscall_64+0xd9/0x210
[  752.072917][T13035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.079359][T13035] 
[  752.081810][T13035] Uninit was stored to memory at:
[  752.087361][T13035]  hfsplus_create_cat+0x18fb/0x1910
[  752.092788][T13035]  hfsplus_fill_super+0x212e/0x2740
[  752.103337][T13035]  get_tree_bdev_flags+0x6e6/0x920
[  752.109060][T13035]  get_tree_bdev+0x38/0x50
[  752.113737][T13035]  hfsplus_get_tree+0x35/0x40
[  752.118822][T13035]  vfs_get_tree+0xb3/0x5c0
[  752.123477][T13035]  do_new_mount+0x738/0x1610
[  752.133452][T13035]  path_mount+0x6db/0x1e90
[  752.140786][T13035]  __se_sys_mount+0x6eb/0x7d0
[  752.145720][T13035]  __x64_sys_mount+0xe4/0x150
[  752.151841][T13035]  x64_sys_call+0xfa7/0x3db0
[  752.156871][T13035]  do_syscall_64+0xd9/0x210
[  752.166665][T13035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.172792][T13035] 
[  752.175236][T13035] Uninit was stored to memory at:
[  752.180777][T13035]  hfsplus_create_cat+0x18fb/0x1910
[  752.186188][T13035]  hfsplus_fill_super+0x212e/0x2740
[  752.196855][T13035]  get_tree_bdev_flags+0x6e6/0x920
[  752.202334][T13035]  get_tree_bdev+0x38/0x50
[  752.207285][T13035]  hfsplus_get_tree+0x35/0x40
[  752.212165][T13035]  vfs_get_tree+0xb3/0x5c0
[  752.219440][T13035]  do_new_mount+0x738/0x1610
[  752.224285][T13035]  path_mount+0x6db/0x1e90
[  752.229152][T13035]  __se_sys_mount+0x6eb/0x7d0
[  752.234056][T13035]  __x64_sys_mount+0xe4/0x150
[  752.244134][T13035]  x64_sys_call+0xfa7/0x3db0
[  752.252365][T13035]  do_syscall_64+0xd9/0x210
[  752.257298][T13035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.263415][T13035] 
[  752.265865][T13035] Uninit was created at:
[  752.273125][T13035]  __alloc_frozen_pages_noprof+0x689/0xf00
[  752.279401][T13035]  alloc_pages_mpol+0x328/0x860
[  752.287348][T13035]  alloc_frozen_pages_noprof+0xf7/0x200
[  752.293228][T13035]  allocate_slab+0x24d/0x1220
[  752.300792][T13035]  ___slab_alloc+0xfec/0x3480
[  752.305739][T13035]  kmem_cache_alloc_lru_noprof+0x922/0xed0
[  752.312101][T13035]  hfsplus_alloc_inode+0x5a/0xd0
[  752.319904][T13035]  alloc_inode+0x87/0x4a0
[  752.324486][T13035]  iget_locked+0x239/0x12d0
[  752.329384][T13035]  hfsplus_iget+0x5c/0xb80
[  752.336633][T13035]  hfsplus_btree_open+0x134/0x1d00
[  752.344585][T13035]  hfsplus_fill_super+0x1161/0x2740
[  752.353647][T13035]  get_tree_bdev_flags+0x6e6/0x920
[  752.361690][T13035]  get_tree_bdev+0x38/0x50
[  752.366390][T13035]  hfsplus_get_tree+0x35/0x40
[  752.371488][T13035]  vfs_get_tree+0xb3/0x5c0
[  752.376160][T13035]  do_new_mount+0x738/0x1610
[  752.383749][T13035]  path_mount+0x6db/0x1e90
[  752.391170][T13035]  __se_sys_mount+0x6eb/0x7d0
[  752.396118][T13035]  __x64_sys_mount+0xe4/0x150
[  752.401252][T13035]  x64_sys_call+0xfa7/0x3db0
[  752.406070][T13035]  do_syscall_64+0xd9/0x210
[  752.413441][T13035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.422242][T13035] 
[  752.424707][T13035] CPU: 0 UID: 0 PID: 13035 Comm: syz.5.3012 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  752.437545][T13035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  752.452995][T13035] =====================================================
[  752.462781][T13035] Disabling lock debugging due to kernel taint
[  752.470068][T13035] Kernel panic - not syncing: kmsan.panic set ...
[  752.476664][T13035] CPU: 0 UID: 0 PID: 13035 Comm: syz.5.3012 Tainted: G    B               6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(undef) 
[  752.490638][T13035] Tainted: [B]=BAD_PAGE
[  752.494912][T13035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  752.505117][T13035] Call Trace:
[  752.508509][T13035]  <TASK>
[  752.511552][T13035]  __dump_stack+0x26/0x30
[  752.516079][T13035]  dump_stack_lvl+0x53/0x270
[  752.520881][T13035]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  752.526932][T13035]  dump_stack+0x1e/0x25
[  752.531264][T13035]  panic+0x4bd/0xd50
[  752.535436][T13035]  kmsan_report+0x31c/0x320
[  752.540146][T13035]  ? __msan_memcpy+0x108/0x1c0
[  752.545104][T13035]  ? __msan_warning+0x1b/0x30
[  752.549981][T13035]  ? hfsplus_delete_cat+0x1195/0x13d0
[  752.555552][T13035]  ? hfsplus_rmdir+0x13c/0x310
[  752.560509][T13035]  ? hfsplus_rename+0xf9/0x2f0
[  752.565468][T13035]  ? vfs_rename+0x1e87/0x2460
[  752.570363][T13035]  ? do_renameat2+0x175e/0x1d70
[  752.575373][T13035]  ? __x64_sys_rename+0xd7/0x140
[  752.580471][T13035]  ? x64_sys_call+0x3553/0x3db0
[  752.585524][T13035]  ? do_syscall_64+0xd9/0x210
[  752.590365][T13035]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.596617][T13035]  ? kmsan_get_metadata+0xfb/0x160
[  752.601963][T13035]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  752.608008][T13035]  ? hfsplus_bnode_dump+0x50a/0x560
[  752.613428][T13035]  ? kmsan_get_metadata+0xfb/0x160
[  752.618933][T13035]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  752.624978][T13035]  ? hfsplus_brec_remove+0x92f/0xa60
[  752.630507][T13035]  ? kmsan_get_metadata+0xfb/0x160
[  752.635943][T13035]  __msan_warning+0x1b/0x30
[  752.640640][T13035]  hfsplus_delete_cat+0x1195/0x13d0
[  752.646047][T13035]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  752.652098][T13035]  ? kmsan_get_metadata+0xfb/0x160
[  752.657514][T13035]  hfsplus_rmdir+0x13c/0x310
[  752.662344][T13035]  hfsplus_rename+0xf9/0x2f0
[  752.667147][T13035]  ? __pfx_hfsplus_rename+0x10/0x10
[  752.672553][T13035]  vfs_rename+0x1e87/0x2460
[  752.677405][T13035]  do_renameat2+0x175e/0x1d70
[  752.682361][T13035]  __x64_sys_rename+0xd7/0x140
[  752.687307][T13035]  x64_sys_call+0x3553/0x3db0
[  752.692203][T13035]  do_syscall_64+0xd9/0x210
[  752.696886][T13035]  ? irqentry_exit+0x16/0x60
[  752.701680][T13035]  ? clear_bhb_loop+0x40/0x90
[  752.706547][T13035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.712628][T13035] RIP: 0033:0x7fdbfab8e929
[  752.717188][T13035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  752.737006][T13035] RSP: 002b:00007fdbfb9ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  752.745621][T13035] RAX: ffffffffffffffda RBX: 00007fdbfadb5fa0 RCX: 00007fdbfab8e929
[  752.753756][T13035] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000200000000080
[  752.761890][T13035] RBP: 00007fdbfac10b39 R08: 0000000000000000 R09: 0000000000000000
[  752.770014][T13035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  752.778129][T13035] R13: 0000000000000000 R14: 00007fdbfadb5fa0 R15: 00007fff84ccd3f8
[  752.786335][T13035]  </TASK>
[  752.789872][T13035] Kernel Offset: disabled
[  752.794301][T13035] Rebooting in 86400 seconds..