last executing test programs:

28m54.638917223s ago: executing program 32 (id=940):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r0, 0x4bfb, &(0x7f0000000240)={0xfa})

26m9.857153526s ago: executing program 33 (id=2797):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000002680)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=@newsa={0x214, 0x10, 0x633, 0x200, 0x25dfdbfc, {{@in=@empty, @in=@broadcast, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x33}, {@in6=@mcast1, 0x0, 0x32}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, {0x1fe, 0x0, 0x2, 0x2dcd, 0x8, 0x0, 0x8, 0x8000}, {}, {0x0, 0x0, 0x8000000}, 0x0, 0x3504, 0x2}, [@algo_aead={0x104, 0x12, {{'rfc4309(morus1280-avx2)\x00'}, 0x5c0, 0xa0, "de76f588fedafc5634dcc23a782419e901d83885aa59f298d523b6b39b5b616f758f4e4724edc21082b789770a1d4c0aac1c40d8597f07bf316b1a656cd3d9490d3cce0793031b0cc4b0396a3207d0ef6006c2c74336e973880b4a43402d9870b89efc3d26e25ee3370906cee9629caabbdb0238435b511fc9590d96709d1ced7e4873a3eb4a1a740610b588c5bf1a96234b16ddd0729b56375015bdce7568e167b316f49d0c49ad55d879204aad03ef604a3aaccd3b494c"}}, @replay_esn_val={0x20, 0x17, {0x5f, 0x70bd25, 0x70bd29, 0x70bd2d, 0x70bd26, 0x10, [0x7fff]}}]}, 0x214}, 0x1, 0x0, 0x0, 0xa35577c5ee19f9e3}, 0x4048040)

18m52.214220765s ago: executing program 34 (id=7704):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

15m54.326549528s ago: executing program 35 (id=9333):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x3c, r1, 0x2799f5eec7981083, 0x70bd28, 0x259fdbfc, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x3}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4c811}, 0x20000004)

15m54.301122167s ago: executing program 8 (id=9338):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x7b, &(0x7f0000000000)=@assoc_value, &(0x7f0000000080)=0x8)

15m54.091964071s ago: executing program 8 (id=9340):
r0 = syz_open_dev$vim2m(&(0x7f0000002c80), 0x7, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x7, 0x1, 0x2, 0x0, 0x80})
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000180)={0x4, 0x8, 0x2, {0x1, @sliced={0xffff, [0x5, 0xc, 0x2800, 0x4, 0xd3a6, 0x300, 0x3, 0x1, 0x7, 0x1, 0x5, 0x7ff, 0x4, 0x1, 0x6, 0x70b, 0x2, 0x3, 0x5, 0x6, 0xf, 0xf, 0x2, 0x5, 0x4, 0x10, 0x93d, 0x3, 0x5, 0x9, 0x401, 0x0, 0x3, 0x2f24, 0x6, 0x8, 0x3, 0x79, 0x3, 0xe1e, 0x2, 0x6, 0x7b, 0xd, 0xa, 0xe0, 0x20, 0xc], 0x90}}, 0x3ff})

15m53.669825982s ago: executing program 8 (id=9346):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x7fffffffffffffff, 0x3, &(0x7f0000006680))
ioperm(0x9, 0x6, 0x5)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)

15m53.143715598s ago: executing program 8 (id=9352):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x201080a, &(0x7f00000005c0)={[{@minixdf}, {@errors_remount}]}, 0x1, 0x445, &(0x7f0000000b00)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x1080a0, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

15m52.170144373s ago: executing program 8 (id=9357):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0}, 0x4)
bpf$BPF_MAP_FREEZE(0x16, &(0x7f00000000c0)=r0, 0x4)

15m48.256430357s ago: executing program 8 (id=9373):
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x8528c000)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_REJECT(r0, &(0x7f0000000f80)={0x18, 0x108, 0xfa00, {0xffffffffffffffff, 0xfe, "11de93", "60566ca7410300000000000000ea18f1293b4d8f73a5b9b50dd91982a0660972b708f2e2e09eed3d7b731c0bfccaceb147e1173955fdd575b077ac92d4cf576d4d71d14014fdec4db42bb37b39ed4e22675a8c9ac1c0b3a035eff0c853d9fe79061aa4d30af7c550ee9645e38ec58ee03053774ad790d197d82c347b22c14e4b834e6619e63148c27d7e5451a393d35188ad09b41164bab4b23001f884ada299ce2a2bc6294943ccc9aa6167f21ff721307796568a97bdb22923589a4bc01385fe4262ed2478e8ed9bafa4dd60b28f9f5eb139076af38f3ee9a9e57d00"}}, 0x110)

15m47.382438743s ago: executing program 36 (id=9373):
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x8528c000)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_REJECT(r0, &(0x7f0000000f80)={0x18, 0x108, 0xfa00, {0xffffffffffffffff, 0xfe, "11de93", "60566ca7410300000000000000ea18f1293b4d8f73a5b9b50dd91982a0660972b708f2e2e09eed3d7b731c0bfccaceb147e1173955fdd575b077ac92d4cf576d4d71d14014fdec4db42bb37b39ed4e22675a8c9ac1c0b3a035eff0c853d9fe79061aa4d30af7c550ee9645e38ec58ee03053774ad790d197d82c347b22c14e4b834e6619e63148c27d7e5451a393d35188ad09b41164bab4b23001f884ada299ce2a2bc6294943ccc9aa6167f21ff721307796568a97bdb22923589a4bc01385fe4262ed2478e8ed9bafa4dd60b28f9f5eb139076af38f3ee9a9e57d00"}}, 0x110)

8m17.932145177s ago: executing program 3 (id=13160):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x9, 0x5, 0x8, 0xf}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000840)={r1}, 0xc)

8m17.563915243s ago: executing program 3 (id=13165):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x11c2, 0x2208, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, "", [{{0x9, 0x4, 0x0, 0x0, 0xfe, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x1, 0x0, 0x1, {0x22, 0x28}}, {{{0x9, 0x5, 0x81, 0x3, 0x420, 0x8, 0x81, 0x2}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000040)={0x2c, &(0x7f00000004c0)={0x0, 0x2, 0x47, {0x47, 0x23, "83efb930f0187ff0478fa22a61a54607b71ea9e442359c479c37f525cde38bf4fd6ef4366b4847f315614bc84c792b25ff301c452ea839e5c813c7f9c76fb9a1f9f99bd3bc"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

8m15.057116319s ago: executing program 3 (id=13190):
r0 = syz_io_uring_setup(0x34b8, &(0x7f00000001c0)={0x0, 0x9554, 0x8, 0x3ff, 0x31}, &(0x7f0000000440)=<r1=>0x0, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
syz_io_uring_submit(r1, r2, r3, &(0x7f0000000080)=@IORING_OP_POLL_REMOVE={0x7, 0x40})
io_uring_enter(r0, 0x1, 0x1, 0x1, 0x0, 0x0)

8m14.483921506s ago: executing program 3 (id=13195):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x2800088, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x93, 0x2c0, &(0x7f0000000340)="$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")
mkdirat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs2\x00', 0x1ff)
mount$binderfs(0x0, &(0x7f00000000c0)='./binderfs\x00', &(0x7f0000000140), 0xc000, 0x0)

8m13.700464505s ago: executing program 3 (id=13200):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @remote}, r1}}, 0x48)

8m12.742394924s ago: executing program 3 (id=13206):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000002100)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}, 0x1c, &(0x7f0000000280)=[{&(0x7f0000000300)="bc", 0x1}], 0x1}}, {{&(0x7f00000000c0)={0xa, 0x4e20, 0xf162, @remote, 0x9}, 0x1c, &(0x7f0000000d80)=[{&(0x7f00000003c0)="15", 0x1}], 0x1}}], 0x2, 0x40004)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x204000, &(0x7f0000000040)={[{@grpquota}, {@barrier_val={'barrier', 0x3d, 0x857}}]}, 0x4, 0xbac, &(0x7f00000017c0)="$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")

8m11.925562346s ago: executing program 37 (id=13206):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000002100)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}, 0x1c, &(0x7f0000000280)=[{&(0x7f0000000300)="bc", 0x1}], 0x1}}, {{&(0x7f00000000c0)={0xa, 0x4e20, 0xf162, @remote, 0x9}, 0x1c, &(0x7f0000000d80)=[{&(0x7f00000003c0)="15", 0x1}], 0x1}}], 0x2, 0x40004)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x204000, &(0x7f0000000040)={[{@grpquota}, {@barrier_val={'barrier', 0x3d, 0x857}}]}, 0x4, 0xbac, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnEy+c5v0crn3tggGpCqK07QpFbpqXYsKunDZmExKyPTDJIIJXaR1ry5EXBSkf4Lg3m5cCS7qQutfUMQiRTdtFyNnPtKxk5nGdGaOSX8/eHPe97wn8zxPTmfOe2BOA3hqTWc/0ohDEXE2iZis708jYqjaG4nYrB13/+7l+awlUam8/VsSSUTcu3t5vvFaSX07Xh+MRMTN15L490etcVfXN5bnyuXSSn18dO38paOr6xuvLJ2fO1c6V7pwYvbVE7MnZ2e7WOvtS+998cwPbzx/9frHM29+fuC7JE7HRH2uuY5umY7prb9Js0JEzHU7WE4G6vU015kUckwIAICO0qY13H9jMgbi4eJtMr79MdfkAAAAgK6oDERUAAAAgH0ucf8PAAAA+1zjewD37l6eb7R8v5HQX3fORMRUrf7G8821mUJsVrcjMRgRY78n0fxYa1L7tSc2nUX6+vtS1qJHzyF3snklIv6/3flPqvVPVZ/ibq0/jYiZLsSffmS8l+o/3YX4edcPwNPpxpnahaz1+pdurX9im+tfYZtr127kff1rrP/ut6z/HtY/0Gb999YOYxx+8NLNdnPN6793P/l5IYufbZ+oqL/hzpWIw4Xt6k+26k/a1H92hzHG529fazeX1Z/V22j9rr9yPeJIdTXXWn9D0un/Jzq6uFQuzdR+bvP66yc7x28+/1nL4jfuBfohO/9jsbvzf2mHMab+9+uhdnOPrz/9ZSh5p9obqu/5cG5tbeVYxFDyeuv+451zaRzTeI2s/hef6/z+367+7DNhs/53yP71XKlvs/HVR2KOHzn+1e7r762s/oVdnv9Pdxjjy2+uvd9uLu/6AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANgb0oiYiCQtbvXTtFiMGI+I/8RYWr64uvby4sUPLixkcxFTMZguLpVLMxExWRsn2fhYtf9wfPyR8WxEHIyIzyZHq+Pi/MXyQt7FAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsGU8IiYiSYsRkUbEH5NpWizmnRUAAADQdVN5JwAAAAD0nPt/AAAA2P9a7v8LfxmN9DMXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9qWDz964lUTE5qnRassM1ecGc80M6LV0Z4eN9ToPoP8G8k4AyE2hqV+pVCo5pgL0mXt8IHnM/EjbmeGu5wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAP9cLh27cSiJi89RotWWG6nODuWYG9FqadwJAbgY6TSaP3QHsYYW8EwBy4x4fqK3sH1RqWudH2v7m8BNHBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDvmKi2JC1GRFrtp2mxGPGviJiKwWRxqVyaiYgDEfHT5OBwNj6Wd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB03er6xvJcuVxa0dHR6WJnNPoWa7T+Zm5zzHD7qQ6dnD+YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADIxer6xvJcuVxaWc07EwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACBvq+sby3Plcmmlh528awQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID9/BgAA///GyAmy")

4m43.364885694s ago: executing program 9 (id=14689):
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1c1)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0), 0x4000, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_9p2000}, {@access_any}]}})

4m42.573558977s ago: executing program 9 (id=14695):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x11)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

4m41.839603353s ago: executing program 9 (id=14697):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@abort}]}, 0xff, 0x258, &(0x7f0000000780)="$eJzs3T9oHmUcB/Df3fu+xiQvEnURxD8gIhoIcRNc4qIQkBBEBBUiIi5KIsQEt8TJxUFnLZm6hNKtaceSJXRpKXRK2wzpUmhDh4YO7XDlfS+BJG/6J33f3pXc5wPH3SV393uO3Pe5G3L3BFBZQxExFhG1iBiOiEZEJHs3eDefhnZWl/rXpiKy7Ks7SXu7fD23u99gRCxGxCcRsZom8Us9Yn7lu81761988Pdc4/2TK9/2F3qSO7Y2N77cPjHx15nxj+cvXbk1kcRYNPedV+8lh/ysnkS89jyKvSCSetkt4GlM/nH6aiv3r0fEe+38NyKN/I/3z+xLq4346P9H7fvv7ctvFtlWoPeyrNG6By5mQOWkEdGMJB2JiHw5TUdG8mf4a7WB9NeZ2d+Hf56Zm/6p7J4K6JVmxMbn5/rODh7I/81ann/g+Grl/+vJ5eut5e1a2a0BCvFWPmvlf/iHhQ9D/qFy5B+qS/6huo6Yf//RAceI+z9U12Py/3JZbQKK0Zn/RtlNAgri+R8qKcuyTP6hwuQfqmtv/gGAasn6yn4DGShL2f0PAAAAAAAAAAAAAAAAAADQaal/bWp3Kqrmhf8itj7LRxfprF9rj0e8+znygbvJvkFIkh4MSvL9O10eoEunSn77+pUb5da/+Ha59RemIxb/jIjRer3z+kt2rr9n9+oTft/4scsCR5QcWP/0m2LrH/Rgudz64+sR51v9z+hh/U8ab7Tnh/c/zR58Mf23+10eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgMI8DAAA//84UXFU")
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x18808, 0x0, 0xf7, 0x0, 0x0)
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000080), 0x18)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000140)=@v1={0x2, @adiantum, 0x10, @auto="0900012000"})

4m40.849435289s ago: executing program 9 (id=14703):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1400c, &(0x7f0000000840)={[{@stripe={'stripe', 0x3d, 0x3d}}, {@init_itable}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x3, 0x457, &(0x7f0000000bc0)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x2002009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x121542, 0x60)

4m39.43171984s ago: executing program 9 (id=14715):
r0 = fsopen(&(0x7f0000000140)='ocfs2_dlmfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

4m38.386396479s ago: executing program 9 (id=14724):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r0 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000480)='./file7\x00', 0x0)

4m37.385204015s ago: executing program 38 (id=14724):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r0 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000480)='./file7\x00', 0x0)

3m42.086010103s ago: executing program 0 (id=15012):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000001840)={0x1, &(0x7f0000001880)=[{0x6, 0x0, 0x21, 0xe4}]}, 0x10)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x4, @loopback, 0x8}, 0x1c)
sendto$inet6(r0, &(0x7f0000000080)='p', 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

3m41.005570613s ago: executing program 0 (id=15020):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
mlock2(&(0x7f0000549000/0x1000)=nil, 0x1000, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)

3m40.432630062s ago: executing program 0 (id=15023):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3)

3m39.069483605s ago: executing program 0 (id=15034):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000240)={[{@errors_remount}, {@noinit_itable}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2a}}, {@errors_remount}, {@nodelalloc}, {@grpjquota}]}, 0x3, 0x462, &(0x7f0000000b40)="$eJzs28tvG8UfAPDvbpK++0t+pTz6AAIFEfFImrRAD1xAIHEACYlLOYYkrULdBjVBolUFBaFyRJWQOCKOSPwFnOCCgBMSV7ijShXqhcLJaO3dxDa2k7ROto0/H2njmX145ruzY8/uxAH0rdHsTxKxJyJ+i4jherZ5h9H6y80bl2b+vnFpJolq9c0/k9p+f924NFPsWhy3O8+MpRHpJ0kcalPu4oWLZ6YrlbnzeX5i6ey7E4sXLj4zf3b69NzpuXNTJ04cPzb5/HNTz/Ykzv9ndT34wcLhA6++dfX1mZNX3/7pm6SIvyWOHhnttvHxarXHxZVrb0M6GVzDAQMbWBnWLGuGrLmGav1/OAZipfGG45WPS60csKGquQ6bL1eBLSyJsmsAlKP4os/uf4tl80Yf5bv+Yv0GKIv7Zr7UtwxGuqOeGmq5v+2l0Yg4efmfL7MlNuY5BABAk++y8c/T7cZ/adzXsN//Ynttbmgkn0vZFxH3RMT+iLg3orbv/RHxQLtCukwItE6S/Hf8k1679ehWl43/XsjntprHf2mxy8hAnttbi38oOTVfmTtaOycRYzG0PctPdinj+5d//azTtsbxX7Zk5Rdjwbwe1wa3Nx8zO700fTsxN7r+UcTBwXbxJ8szAUlEHIiIg7dYxvyTXx/utG31+LtYyzzTKqpfRTxRb//L0RJ/Iek+PzmxIypzRydOzVc6zGn9/MuVNzqVf1vx90DW/rvaXv/L8Y8kjfO1i+t593rvvvL7px3vacZv6fpfWbEtf31/emnp/GTEtuS1eqUb10+tHFvki/2z+MeOtO//+2LlTByKiOwifjAiHoqIh/PoHomIRyPiSJez8ONLj73T7QyV3f6zTe2fLJ+7XEv7ryS2Reua9omBMz982/yOK8m1ff4dr6XG8jW1z78vuse1lnqt92oGAACAu1UaEXsiSceX02k6Pl7/H/79sSutLCwuPXVq4b1zs/XfCIzEUFo8/xxueB46md/WF/mplvyx/Lnx5wM7a/nxmYXKbNnBQ5/b3aH/Z/7wGw3Y+nowjwbcpfR/6F/6P/Qv/R/6V5v+v7OMegCbr933/4cl1APYfC3937Qf9BH3/9C/9H/oX439PymxHsCmWtwZq/9IfiskqtVq9Q6oxtZJRLr+o7Ivmjui8q2JZIN7wZ6yA1x/ouxPJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgN74NwAA//8Te+g3")
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x30040a9, 0x0, 0xf, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x4c842, 0x24)
mount$overlay(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f00000009c0)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}]})

3m37.384214926s ago: executing program 0 (id=15051):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000032c0)=ANY=[@ANYBLOB="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"], 0x21c}, 0x1, 0x0, 0x0, 0x40044}, 0x20008000)

3m34.062218429s ago: executing program 0 (id=15080):
syz_mount_image$udf(&(0x7f0000000240), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00', @ANYRES32], 0x47, 0xc15, &(0x7f0000001940)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f00000003c0)='./bus\x00', 0x39bcc6c, 0x0, 0x0, 0x0, &(0x7f0000000040))
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

3m33.246844919s ago: executing program 39 (id=15080):
syz_mount_image$udf(&(0x7f0000000240), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00', @ANYRES32], 0x47, 0xc15, &(0x7f0000001940)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f00000003c0)='./bus\x00', 0x39bcc6c, 0x0, 0x0, 0x0, &(0x7f0000000040))
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

4.647431587s ago: executing program 4 (id=16631):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xff70)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x1)

3.484569534s ago: executing program 4 (id=16644):
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)

3.451964576s ago: executing program 2 (id=16645):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x1, 0x80000000, 0x6, {0x0, 0x0, 0x0, 0x0, {0xf, 0x3}, {0xa, 0xc}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_LIMIT={0x8, 0x1, 0xf4b6}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44000}, 0xc0956febbce12c1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff001201000006000043be4354", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e00000004000280080004"], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

3.313969175s ago: executing program 1 (id=16646):
r0 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f00000001c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000640)="80", 0x26892}], 0x1}, 0xfc)
sendmsg$inet(r0, &(0x7f0000000ac0)={&(0x7f00000005c0)={0x2, 0x4e24, @local}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000840)="9c", 0x1}], 0x1}, 0x10)
sendmsg$inet(r0, &(0x7f0000000340)={&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000080)="9d", 0x1}], 0x1}, 0x10)

3.117126205s ago: executing program 4 (id=16649):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000005c0)="d0", 0x1}], 0x1}, 0x1)
setsockopt$sock_attach_bpf(r0, 0x1, 0xa, &(0x7f0000000480), 0x4)
recvmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x102)

2.972852656s ago: executing program 2 (id=16651):
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f00000000c0)={'pcl730\x00', [0x1610, 0x3, 0x1, 0x0, 0x3, 0xcc7, 0x9, 0x1, 0xa, 0x1, 0x2, 0x1, 0x8, 0x1100004, 0x6, 0x9, 0x1, 0x1a449, 0x80000000, 0x40002003, 0x89, 0x2, 0xf27, 0x6, 0x800b, 0xca8, 0x5, 0x4, 0x400, 0x10000, 0xfffffff7]})
syz_usb_connect$cdc_ecm(0x6, 0x4d, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000302000040"], 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/key-users\x00', 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)

2.836137424s ago: executing program 4 (id=16653):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip_vti0\x00', <r1=>0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r2, &(0x7f0000000180)='`', 0x500, 0x0, &(0x7f0000000240)={0x3a, 0x0, r1, 0x1, 0x0, 0x6, @local}, 0x14)

2.734965671s ago: executing program 6 (id=16654):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
write$binfmt_aout(r0, &(0x7f0000000140)=ANY=[], 0xff2e)
ioctl$TCFLSH(r0, 0x540b, 0x2)

2.554696129s ago: executing program 5 (id=16656):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000002cc0)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0xffff, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x3}, 0x1c, &(0x7f0000000580)=[{&(0x7f00000000c0)="ac", 0x1}], 0x1}}, {{&(0x7f0000000900)={0xa, 0x4e24, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}, 0x98}, 0x1c, &(0x7f0000002700)=[{&(0x7f0000000980)="cb", 0x1}], 0x1}}], 0x2, 0x20040944)
listen(r0, 0xfff)
accept(r0, 0x0, 0x0)

2.467912214s ago: executing program 4 (id=16658):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x3, 0x11, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x75}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000003c0)="c274386d178550cb864bd57221bc", 0x0, 0x1200000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.42492563s ago: executing program 5 (id=16659):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000800)={'syz1\x00', {0x0, 0x10, 0x2}, 0x200002, [0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x956, 0x0, 0x0, 0x0, 0x4000, 0x20, 0x4000000, 0x0, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffe, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffffd, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5, 0x0, 0x5f1], [0x0, 0x0, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x8000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x3, 0xfffffffc, 0x0, 0x0, 0xe, 0x0, 0x0, 0x2, 0xd, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x6, 0x0, 0x200, 0x0, 0x2, 0x0, 0x0, 0xeae2, 0x0, 0x0, 0x22, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x80, 0xfffffffd, 0x0, 0x8, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xffff], [0x4, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0xffffffff, 0x0, 0x0, 0x9fa, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x0, 0xbda6, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfff, 0x71f, 0x0, 0x0, 0x0, 0x0, 0x8], [0x40000000, 0xfffffff7, 0x74e2, 0x1, 0x0, 0x0, 0x0, 0x8e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x40, 0x0, 0x0, 0xbd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x79, 0x0, 0x0, 0x101, 0xffffffff, 0xb, 0x0, 0x0, 0x9, 0xffffffff, 0x7, 0xcaa, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x75, 0x3, 0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_SET_PROPBIT(r0, 0x4004556e, 0x20000000001b)

2.282548627s ago: executing program 7 (id=16660):
sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000000c0)=ANY=[@ANYRES64, @ANYRES64], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x40001)
r0 = add_key$user(&(0x7f0000000380), &(0x7f0000000000), &(0x7f00000003c0)='X', 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r0, r1, r1}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'streebog512-generic\x00'}})

2.177633245s ago: executing program 1 (id=16661):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x1, 0x1, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r0, 0x0)
mremap(&(0x7f000000e000/0x7000)=nil, 0x7000, 0x2000, 0x3, &(0x7f0000007000/0x2000)=nil)

2.172022978s ago: executing program 5 (id=16662):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@newlink={0x54, 0x10, 0x5, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, 0x5c386, 0x1128}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x1c, 0x5, 0x0, 0x1, [@IFLA_BRPORT_MCAST_TO_UCAST={0x5}, @IFLA_BRPORT_MCAST_FLOOD={0x5, 0x1b, 0x1}, @IFLA_BRPORT_GUARD={0x5, 0x5, 0x1}]}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x51}, 0x240008d0)

2.153705511s ago: executing program 2 (id=16663):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000002480)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000003740)={0x0, 0x0, &(0x7f0000003700)={&(0x7f00000002c0)={0x6c, r1, 0x1, 0x70bd2a, 0x25dfdc00, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x46, 0x33, @probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x4}, @device_a, @device_a, @initial, {0x4, 0xc78}, @value=@ver_80211n={0x0, 0x6, 0x0, 0x1}}, 0x0, @random=0x7, 0x80, @val={0x0, 0x6, @default_ibss_ssid}, @val, @void, @val={0x4, 0x6, {0xfe, 0x9, 0x6afb}}, @void, @void, @val={0x72, 0x6}, @void}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x8, 0xcd, [0x0, 0xfff7]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x2c048010)

1.873952462s ago: executing program 2 (id=16664):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4, @dev={0xac, 0x14, 0x14, 0x35}}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e26, @multicast1}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)

1.869357778s ago: executing program 7 (id=16665):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000340)={0x5, {{0x2, 0x0, @multicast2}}, {{0x2, 0x400, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000540)={0x5, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @private=0xa010100}}}, 0x108)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000000340)=""/225, &(0x7f0000000180)=0xe1)

1.719170634s ago: executing program 6 (id=16666):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x2)
syz_emit_ethernet(0x4a, &(0x7f0000000600)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0xff, @ipv4={'\x00', '\xff\xff', @remote}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0)

1.697477335s ago: executing program 5 (id=16667):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffea, 0x2)

1.647597328s ago: executing program 1 (id=16668):
syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800044, &(0x7f0000001340)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x368, &(0x7f0000000980)="$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")
r0 = fsopen(&(0x7f0000000380)='gfs2meta\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)='source', &(0x7f0000000400)='c:::\x00\xfdM\xab\x89\xff\xda\xc7dw2\xa1\xb2\xabuQQ\x14\x97\xc9\xfae\xc7\xa5U\xe2\xbe\"\xb9t\xa0\x0e\xfa\xdb\xf1\xa5.\xd87\xc3p\xa5l\xf8vC\xe2\xe8 \xd5-\x14V<#\x186\xe1\xbd\xc0\xc3\xb5N(vj\xa7+<:\xc4\xe00\x01\xdd \x82\x83\xed\x0e\xc4\x1d\xac\xef7\b\xd3Z5\\A\'\x18\xa2\xc3\xab\xc7`\xc3\v\xf3L\x9d[Q\x9e\x11@=\xa1\x9b\xdc\xb1\xef\xc3k<\x97L\xa0\xab\xa6\x1c\x8b~\x00\x00\x00\x00\x00\x00i^N\xbd@\x01p\xb2\x88\xc3\xe2\x96T\xa3\xa5\xf2\x0f\xf2f\xb9$\xd2\x14<L\x19K\xbf\xf7\x9c\xe7 \x12+4.\xa9\xa7\xdc[\xd2\xec\xbe\x1a\xa1\x04\xd3\x9e\x92\x8a\xf7\xdb\xe7f\xdeo\xc1\xa5\xb6T\r)\x1c\xbe\x12\xd1\xef\xc2S\xcci\xc8\x0e\x00]\xe6|\xccK\xc7\r\xfa \x02\xe8\x1b\xc1\x93\xce\x02%\x86\xcb\x94K\v\xe7x\xe3\x06[/\xf9\xa8\x82\x9b\xeeF\x88\xc0f\x82\xbb\x10\x1d3\xa6\x00\x00\x00\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

1.511783522s ago: executing program 7 (id=16669):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000980)=@base={0x1, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x2, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000240), 0xfff, r1}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r1, &(0x7f0000000140), &(0x7f0000000000)=""/85}, 0x20)

1.326392828s ago: executing program 6 (id=16670):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, 0x0, 0x100}, 0x94)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

1.114391127s ago: executing program 4 (id=16671):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x88, 0x4004, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xd06d000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
msgrcv(0x0, 0x0, 0x0, 0x0, 0x5800)

1.075750377s ago: executing program 1 (id=16672):
socket$igmp(0x2, 0x3, 0x2)
socket$igmp(0x2, 0x3, 0x2)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)

1.066691926s ago: executing program 7 (id=16673):
io_setup(0x5, &(0x7f0000000000)=<r0=>0x0)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000100)={0x3, "421ae375378525920300000000000000080000006bb4478a3ab4c98100", <r2=>0xffffffffffffffff})
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])

961.467847ms ago: executing program 6 (id=16674):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2, 0x15ad}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000400)={r1}, &(0x7f0000000240)=0x8)

654.408143ms ago: executing program 1 (id=16675):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x10400, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x4}}, 0x50)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000380)={0xfffffff8, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a)

580.412356ms ago: executing program 5 (id=16676):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x0, 0x0, 0xe3800000000000, 0x58e})
fcntl$lock(r0, 0x26, &(0x7f0000000040)={0x0, 0x1, 0x2, 0xffffffffffffffff})
fcntl$lock(r0, 0x24, &(0x7f0000000080)={0x2, 0x2, 0x7, 0x4000000008})

572.639435ms ago: executing program 6 (id=16677):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
fcntl$setstatus(r0, 0x4, 0x42000)
fcntl$setstatus(r0, 0x4, 0x0)

553.433852ms ago: executing program 7 (id=16678):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f0000000200)={{@any, 0xffffffff}, 0x0, 0x2, 0x1})

386.545049ms ago: executing program 2 (id=16679):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x8000, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)

223.123463ms ago: executing program 7 (id=16680):
r0 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
r1 = dup(r0)
read(r1, &(0x7f0000000040), 0x0)
read$FUSE(r1, &(0x7f0000008180)={0x2020}, 0xfffffdfc)

203.354076ms ago: executing program 5 (id=16681):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
read$FUSE(r0, &(0x7f0000000080)={0x2020, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
write$binfmt_elf32(r1, &(0x7f00000020c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0xc, 0x2, 0x5, 0xf, 0x2, 0x3e, 0x3, 0x65, 0x38, 0x133, 0x0, 0x7, 0x20, 0x1, 0x7, 0x4, 0x8001}, [{0x2, 0xfffffffe, 0x1, 0x3, 0x9, 0x9, 0x5, 0x2}]}, 0x58)
getpriority(0x2, r2)

174.958583ms ago: executing program 6 (id=16682):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000002080)={0x80000000})
write$FUSE_NOTIFY_RESEND(r0, &(0x7f0000004180)={0x14}, 0x14)

18.026061ms ago: executing program 1 (id=16683):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x3200814, &(0x7f0000000280)=ANY=[@ANYRES64=0x0, @ANYRESDEC, @ANYRES32, @ANYRES64], 0x1, 0x600, &(0x7f00000002c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)

0s ago: executing program 2 (id=16684):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4001, 0x800000, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)

kernel console output (not intermixed with test programs):

9] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1810.110601][   T29] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1810.177657][   T29] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1810.623027][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1810.632197][   T29] usb 3-1: USB disconnect, device number 39
[ 1810.679499][   T29] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1810.764400][   T29] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1810.819370][   T29] quatech2 3-1:0.51: device disconnected
[ 1811.021272][T12539] loop5: detected capacity change from 0 to 40427
[ 1811.028290][T12559] loop7: detected capacity change from 0 to 512
[ 1811.111085][T12539] F2FS-fs (loop5): Small segment_count (9 < 1 * 24)
[ 1811.151204][T12539] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1811.183575][T12539] F2FS-fs (loop5): invalid crc value
[ 1811.237421][T12562] loop4: detected capacity change from 0 to 256
[ 1811.261068][T12562] exfat: Deprecated parameter 'utf8'
[ 1811.302098][T12562] exfat: Deprecated parameter 'utf8'
[ 1811.357310][T12562] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[ 1811.558134][   T30] kauditd_printk_skb: 11 callbacks suppressed
[ 1811.558161][   T30] audit: type=1804 audit(1780400902.671:684): pid=12562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.15720" name="/newroot/80/file0/file1" dev="loop4" ino=1049310 res=1 errno=0
[ 1811.640118][T12539] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1811.773426][T12539] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1811.821580][T12539] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1812.273087][ T5642] syz-executor: attempt to access beyond end of device
[ 1812.273087][ T5642] loop5: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1812.276171][T12586] loop2: detected capacity change from 0 to 512
[ 1812.343824][T12590] netlink: 'syz.7.15732': attribute type 6 has an invalid length.
[ 1812.396592][T12590] netlink: 'syz.7.15732': attribute type 6 has an invalid length.
[ 1812.406648][ T5642] CPU: 1 UID: 0 PID: 5642 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1812.406705][ T5642] Tainted: [L]=SOFTLOCKUP
[ 1812.406719][ T5642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1812.406743][ T5642] Call Trace:
[ 1812.406756][ T5642]  <TASK>
[ 1812.406770][ T5642]  dump_stack_lvl+0x100/0x190
[ 1812.406818][ T5642]  f2fs_stop_checkpoint+0x600/0x9b0
[ 1812.406862][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.406910][ T5642]  ? errseq_set+0xe3/0x150
[ 1812.407052][ T5642]  ? errseq_set+0xe3/0x150
[ 1812.407107][ T5642]  f2fs_write_end_io+0xf59/0x1340
[ 1812.407159][ T5642]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1812.407213][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.407270][ T5642]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1812.407317][ T5642]  bio_endio+0x78f/0x8f0
[ 1812.407384][ T5642]  submit_bio_noacct+0x64c/0x2000
[ 1812.407472][ T5642]  f2fs_submit_write_bio+0x135/0x340
[ 1812.407523][ T5642]  __submit_merged_bio+0x331/0x780
[ 1812.407578][ T5642]  __submit_merged_write_cond+0x3fe/0x510
[ 1812.407638][ T5642]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1812.407702][ T5642]  ? __pfx___might_resched+0x10/0x10
[ 1812.407753][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.407811][ T5642]  f2fs_sync_node_pages+0x13c6/0x1690
[ 1812.407874][ T5642]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[ 1812.407914][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.407961][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.408007][ T5642]  ? __lock_acquire+0xd73/0x2630
[ 1812.408093][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.408143][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.408192][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.408239][ T5642]  ? up_write+0x28c/0x4f0
[ 1812.408295][ T5642]  block_operations+0x932/0xfc0
[ 1812.408363][ T5642]  ? __pfx_block_operations+0x10/0x10
[ 1812.408420][ T5642]  ? check_noncircular+0x97/0x160
[ 1812.408516][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.408571][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.408618][ T5642]  ? rcu_is_watching+0x12/0xc0
[ 1812.408673][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.408728][ T5642]  f2fs_write_checkpoint+0x582/0x5550
[ 1812.408793][ T5642]  ? kasan_save_stack+0x3f/0x50
[ 1812.408846][ T5642]  ? kasan_save_stack+0x30/0x50
[ 1812.408896][ T5642]  ? kasan_record_aux_stack+0xa7/0xc0
[ 1812.408937][ T5642]  ? __call_rcu_common.constprop.0+0xa5/0x9b0
[ 1812.408985][ T5642]  ? shrinker_free+0xfe/0x440
[ 1812.409038][ T5642]  ? deactivate_locked_super+0x94/0x1b0
[ 1812.409092][ T5642]  ? deactivate_super+0xe7/0x110
[ 1812.409144][ T5642]  ? cleanup_mnt+0x21f/0x450
[ 1812.409178][ T5642]  ? task_work_run+0x150/0x240
[ 1812.409221][ T5642]  ? exit_to_user_mode_loop+0x157/0x670
[ 1812.409266][ T5642]  ? do_syscall_64+0x666/0x870
[ 1812.409322][ T5642]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1812.409370][ T5642]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1812.409452][ T5642]  kill_f2fs_super+0x3f1/0x4a0
[ 1812.409552][ T5642]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1812.409631][ T5642]  ? lockdep_hardirqs_on+0x78/0x100
[ 1812.409684][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.409728][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.409787][ T5642]  deactivate_locked_super+0xc1/0x1b0
[ 1812.409841][ T5642]  deactivate_super+0xe7/0x110
[ 1812.409895][ T5642]  cleanup_mnt+0x21f/0x450
[ 1812.409934][ T5642]  task_work_run+0x150/0x240
[ 1812.409980][ T5642]  ? __pfx_task_work_run+0x10/0x10
[ 1812.410025][ T5642]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1812.410069][ T5642]  ? rcu_is_watching+0x12/0xc0
[ 1812.410126][ T5642]  exit_to_user_mode_loop+0x157/0x670
[ 1812.410168][ T5642]  ? rcu_is_watching+0x12/0xc0
[ 1812.410225][ T5642]  do_syscall_64+0x666/0x870
[ 1812.410284][ T5642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1812.410321][ T5642] RIP: 0033:0x7f2bced9e097
[ 1812.410348][ T5642] Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1812.410383][ T5642] RSP: 002b:00007ffdd289c338 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1812.410416][ T5642] RAX: 0000000000000000 RBX: 00007f2bcee321ca RCX: 00007f2bced9e097
[ 1812.410440][ T5642] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdd289c3f0
[ 1812.410462][ T5642] RBP: 00007ffdd289c3f0 R08: 00007ffdd289d3f0 R09: 00000000ffffffff
[ 1812.410488][ T5642] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdd289d480
[ 1812.410510][ T5642] R13: 00007f2bcee321ca R14: 00000000001ba928 R15: 00007ffdd289d4c0
[ 1812.410557][ T5642]  </TASK>
[ 1812.435788][ T5642] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1812.625611][T12586] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1813.078840][T12586] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1813.541282][T12602] loop1: detected capacity change from 0 to 4096
[ 1813.605206][ T7703] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1813.633413][T12604] loop7: detected capacity change from 0 to 1024
[ 1813.678110][T12582] loop4: detected capacity change from 0 to 32768
[ 1813.727273][T12582] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.15728 (12582)
[ 1813.821987][T12582] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1813.858933][T12582] BTRFS info (device loop4): using crc32c checksum algorithm
[ 1813.879043][T12606] loop2: detected capacity change from 0 to 512
[ 1813.932181][T12606] EXT4-fs error (device loop2): ext4_iget_extra_inode:5127: inode #15: comm syz.2.15739: corrupted in-inode xattr: invalid ea_ino
[ 1814.046704][T12606] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1814.054267][    C1] EXT4-fs (loop2): error count since last fsck: 1
[ 1814.069908][    C1] EXT4-fs (loop2): initial error at time 1780400905: ext4_iget_extra_inode:5127: inode 15
[ 1814.077568][ T6008] udevd[6008]: symlink '../../loop5' '/dev/disk/by-diskseq/3984.tmp-b7:5' failed: Read-only file system
[ 1814.079874][    C1] EXT4-fs (loop2): last error at time 1780400905: ext4_iget_extra_inode:5127: inode 15
[ 1814.119421][T12606] EXT4-fs error (device loop2): ext4_orphan_get:1400: comm syz.2.15739: couldn't read orphan inode 15 (err -117)
[ 1814.140120][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/3986.tmp-b7:7' failed: Read-only file system
[ 1814.198279][T12606] loop2: lost filesystem error report for type 5 error -117
[ 1814.202073][T12582] BTRFS info (device loop4): setting nodatasum
[ 1814.232562][T12582] BTRFS info (device loop4): enabling ssd optimizations
[ 1814.260916][T14310] udevd[14310]: symlink '../../loop5' '/dev/disk/by-diskseq/3984.tmp-b7:5' failed: Read-only file system
[ 1814.281783][T12582] BTRFS info (device loop4): disabling tree log
[ 1814.297291][T12606] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1814.320476][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/3992.tmp-b7:7' failed: Read-only file system
[ 1814.333741][T12582] BTRFS info (device loop4): turning on async discard
[ 1814.388448][T12582] BTRFS info (device loop4): enabling free space tree
[ 1814.431285][T12582] BTRFS info (device loop4): enabling auto defrag
[ 1814.440671][ T5943] udevd[5943]: symlink '../../loop2' '/dev/disk/by-diskseq/3989.tmp-b7:2' failed: Read-only file system
[ 1814.453132][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/3991.tmp-b7:5' failed: Read-only file system
[ 1814.469659][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/3992.tmp-b7:7' failed: Read-only file system
[ 1814.547155][ T5943] udevd[5943]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[ 1814.618237][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/3992.tmp-b7:7' failed: Read-only file system
[ 1814.646805][ T6017] udevd[6017]: symlink '../../loop1' '/dev/disk/by-diskseq/3990.tmp-b7:1' failed: Read-only file system
[ 1814.735947][T21374] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1814.827340][ T7703] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1814.873521][T10643] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1814.896039][T21374] usb 2-1: Using ep0 maxpacket: 32
[ 1814.906157][T21374] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[ 1814.930938][T21374] usb 2-1: config 0 has no interface number 0
[ 1814.953610][T21374] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1814.969798][T21374] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1815.012844][T21374] usb 2-1: Product: syz
[ 1815.043990][T21374] usb 2-1: Manufacturer: syz
[ 1815.102611][T21374] usb 2-1: SerialNumber: syz
[ 1815.217318][T12633] loop2: detected capacity change from 0 to 512
[ 1815.228797][T21374] usb 2-1: config 0 descriptor??
[ 1815.252937][T21374] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1815.263700][T12633] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1815.372858][T12633] EXT4-fs (loop2): 1 truncate cleaned up
[ 1815.524954][T12633] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1815.572442][T21374] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1815.696809][T21374] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1815.859762][T12649] nfs: Deprecated parameter 'nointr'
[ 1815.875561][T12649] nfs: Unknown parameter 'fscontext'
[ 1815.960566][ T7703] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1816.043359][    C0] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1816.045827][   T29] usb 2-1: USB disconnect, device number 27
[ 1816.149775][   T29] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1816.296972][   T29] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1816.348707][   T29] quatech2 2-1:0.51: device disconnected
[ 1817.047901][T12673] loop4: detected capacity change from 0 to 256
[ 1818.491211][T12709] vxcan1: tx drop: invalid da for name 0x00000000000000c8
[ 1818.757574][T12686] loop6: detected capacity change from 0 to 32768
[ 1818.827388][T12686] JBD2: Ignoring recovery information on journal
[ 1818.934418][   T29] kernel read not supported for file /dsp1 (pid: 29 comm: kworker/1:1)
[ 1818.966566][T12686] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1819.168135][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4003.tmp-b7:4' failed: Read-only file system
[ 1819.188556][T12723] tap0: tun_chr_ioctl cmd 1074025678
[ 1819.217486][T12723] tap0: group set to 0
[ 1819.226623][T14310] udevd[14310]: symlink '../../loop5' '/dev/disk/by-diskseq/3991.tmp-b7:5' failed: Read-only file system
[ 1819.260055][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-diskseq/4004.tmp-b7:6' failed: Read-only file system
[ 1819.300469][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-uuid/b1de653c-0000-4d88-b33b-244aab9eb3e9.tmp-b7:6' failed: Read-only file system
[ 1819.333708][T12686] (syz.6.15766,12686,0):ocfs2_group_add:498 ERROR: The disk is too old and small. Force to do offline resize.
[ 1819.429638][ T5657] udevd[5657]: symlink '../../loop1' '/dev/disk/by-diskseq/3997.tmp-b7:1' failed: Read-only file system
[ 1819.553410][T14310] udevd[14310]: symlink '../../loop4' '/dev/disk/by-diskseq/4003.tmp-b7:4' failed: Read-only file system
[ 1819.662010][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-diskseq/4001.tmp-b7:2' failed: Read-only file system
[ 1819.699115][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4004.tmp-b7:6' failed: Read-only file system
[ 1819.717120][ T9483] ocfs2: Unmounting device (7,6) on (node local)
[ 1819.775223][T14310] udevd[14310]: symlink '../../loop5' '/dev/disk/by-diskseq/3991.tmp-b7:5' failed: Read-only file system
[ 1819.811849][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-uuid/b1de653c-0000-4d88-b33b-244aab9eb3e9.tmp-b7:6' failed: Read-only file system
[ 1819.967534][T12741] netlink: 'syz.1.15789': attribute type 13 has an invalid length.
[ 1821.116635][T12739] loop6: detected capacity change from 0 to 131072
[ 1821.127299][T12739] F2FS-fs (loop6): Test dummy encryption mode enabled
[ 1821.193546][T12739] F2FS-fs (loop6): invalid crc value
[ 1821.285555][T12739] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1821.300541][T12739] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1821.378884][T12741] bridge0: port 3(syz_tun) entered disabled state
[ 1821.706920][T12741] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1822.323441][T12773] loop6: detected capacity change from 0 to 2048
[ 1822.362479][T12773] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[ 1822.412978][T12773] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1822.661809][T12741] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1822.825824][T12741] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1823.418943][T12744] wireguard: wg1: Could not create IPv4 socket
[ 1823.461681][T12787] tap0: tun_chr_ioctl cmd 1074025678
[ 1823.520750][T12787] tap0: group set to 0
[ 1823.557872][T21575] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1823.607732][T21575] netdevsim netdevsim1 netdevsim0: unset [1, 1] type 2 family 0 port 19999 - 0
[ 1823.630434][T21575] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1823.665735][T21575] netdevsim netdevsim1 netdevsim1: unset [1, 1] type 2 family 0 port 19999 - 0
[ 1823.851524][T21575] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1823.909752][T21575] netdevsim netdevsim1 netdevsim2: unset [1, 1] type 2 family 0 port 19999 - 0
[ 1824.272229][T14310] udevd[14310]: symlink '../../loop1' '/dev/disk/by-diskseq/3997.tmp-b7:1' failed: Read-only file system
[ 1824.279165][ T8973] udevd[8973]: symlink '../../loop7' '/dev/disk/by-diskseq/3994.tmp-b7:7' failed: Read-only file system
[ 1824.286386][ T5943] udevd[5943]: symlink '../../loop4' '/dev/disk/by-diskseq/4003.tmp-b7:4' failed: Read-only file system
[ 1824.441818][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4006.tmp-b7:6' failed: Read-only file system
[ 1824.478938][ T5657] udevd[5657]: symlink '../../loop1' '/dev/disk/by-diskseq/3997.tmp-b7:1' failed: Read-only file system
[ 1824.507068][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4006.tmp-b7:6' failed: Read-only file system
[ 1824.561000][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4006.tmp-b7:6' failed: Read-only file system
[ 1824.642639][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4008.tmp-b7:6' failed: Read-only file system
[ 1824.732541][T14310] udevd[14310]: symlink '../../loop5' '/dev/disk/by-diskseq/3991.tmp-b7:5' failed: Read-only file system
[ 1824.733989][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/3994.tmp-b7:7' failed: Read-only file system
[ 1824.863306][T12822] loop5: detected capacity change from 0 to 512
[ 1824.953174][T12822] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1825.069233][T12822] ext4 filesystem being mounted at /2714/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1825.419392][ T5642] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1825.762124][T12847] netlink: 4 bytes leftover after parsing attributes in process `syz.4.15822'.
[ 1826.203763][T12856] loop4: detected capacity change from 0 to 2048
[ 1826.261231][T12863] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1826.312620][T12856] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=128, inode=7696581394448, rec_len=0, name_len=5
[ 1826.434191][T12856] Remounting filesystem read-only
[ 1826.675241][T12762] usb 6-1: new full-speed USB device number 79 using dummy_hcd
[ 1826.876634][T12762] usb 6-1: config 0 has an invalid interface number: 8 but max is 0
[ 1826.898565][T12762] usb 6-1: config 0 has no interface number 0
[ 1826.909936][T12762] usb 6-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0x9F, changing to 0x8F
[ 1826.922404][   T29] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[ 1826.931093][T12762] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1826.946988][T12762] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1826.963246][T12762] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1826.977880][T12762] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1826.987688][T12762] usb 6-1: Product: syz
[ 1826.991946][T12762] usb 6-1: SerialNumber: syz
[ 1827.008101][T12762] usb 6-1: config 0 descriptor??
[ 1827.017841][T12762] cm109 6-1:0.8: invalid payload size 0, expected 4
[ 1827.026715][T12762] input: CM109 USB driver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.8/input/input93
[ 1827.117760][T12882] GUP no longer grows the stack in syz.4.15837 (12882): 200000004000-200000005000 (200000001000)
[ 1827.134783][   T29] usb 2-1: Using ep0 maxpacket: 16
[ 1827.150446][T12882] CPU: 1 UID: 0 PID: 12882 Comm: syz.4.15837 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1827.150509][T12882] Tainted: [L]=SOFTLOCKUP
[ 1827.150523][T12882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1827.150547][T12882] Call Trace:
[ 1827.150560][T12882]  <TASK>
[ 1827.150575][T12882]  dump_stack_lvl+0x100/0x190
[ 1827.150624][T12882]  gup_vma_lookup.cold+0x83/0x96
[ 1827.150689][T12882]  __get_user_pages+0x241/0x32a0
[ 1827.150767][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.150816][T12882]  ? down_read_killable+0x307/0x4b0
[ 1827.150860][T12882]  ? __pfx___get_user_pages+0x10/0x10
[ 1827.150921][T12882]  ? lock_acquire+0x1b1/0x370
[ 1827.150980][T12882]  __gup_longterm_locked+0x87d/0x16f0
[ 1827.151054][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.151105][T12882]  ? trace_pelt_se_tp+0x13b/0x190
[ 1827.151162][T12882]  ? __pfx___gup_longterm_locked+0x10/0x10
[ 1827.151227][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.151273][T12882]  ? lock_acquire+0x1b1/0x370
[ 1827.151317][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.151370][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.151426][T12882]  gup_fast_fallback+0x16dc/0x2790
[ 1827.151524][T12882]  ? __pfx_gup_fast_fallback+0x10/0x10
[ 1827.151595][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.151644][T12882]  ? __lock_acquire+0x4a5/0x2630
[ 1827.151689][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.151738][T12882]  ? finish_task_switch.isra.0+0x2cb/0x1010
[ 1827.151805][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.151853][T12882]  ? lockdep_hardirqs_on+0x78/0x100
[ 1827.151911][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.151967][T12882]  get_user_pages_fast+0xa7/0xf0
[ 1827.152040][T12882]  ? __pfx_get_user_pages_fast+0x10/0x10
[ 1827.152104][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.152157][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.152208][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.152262][T12882]  __iov_iter_get_pages_alloc+0x8f2/0x1f20
[ 1827.152413][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.152462][T12882]  ? __mutex_lock+0x26d/0x1b10
[ 1827.152524][T12882]  ? pipe_lock+0x69/0x80
[ 1827.152563][T12882]  ? __pfx___iov_iter_get_pages_alloc+0x10/0x10
[ 1827.152618][T12882]  ? __pfx___mutex_lock+0x10/0x10
[ 1827.152677][T12882]  ? import_ubuf+0x1b6/0x220
[ 1827.152734][T12882]  iov_iter_get_pages2+0xa3/0x100
[ 1827.152787][T12882]  ? __pfx_iov_iter_get_pages2+0x10/0x10
[ 1827.152841][T12882]  ? wait_for_space+0x2ca/0x3b0
[ 1827.152891][T12882]  __do_sys_vmsplice+0x7dd/0x13c0
[ 1827.152950][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.153005][T12882]  ? __pfx___do_sys_vmsplice+0x10/0x10
[ 1827.153057][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.153118][T12882]  ? __pfx_futex_wait+0x10/0x10
[ 1827.153252][T12882]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1827.153315][T12882]  ? do_syscall_64+0x115/0x870
[ 1827.153373][T12882]  do_syscall_64+0x115/0x870
[ 1827.153438][T12882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1827.153479][T12882] RIP: 0033:0x7f108219ce59
[ 1827.153510][T12882] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1827.153551][T12882] RSP: 002b:00007f1082f84028 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 1827.153589][T12882] RAX: ffffffffffffffda RBX: 00007f1082415fa0 RCX: 00007f108219ce59
[ 1827.153616][T12882] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000004
[ 1827.153641][T12882] RBP: 00007f1082232d6f R08: 0000000000000000 R09: 0000000000000000
[ 1827.153667][T12882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1827.153691][T12882] R13: 00007f1082416038 R14: 00007f1082415fa0 R15: 00007fff51da7df8
[ 1827.153744][T12882]  </TASK>
[ 1827.622172][   T29] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1827.633411][   T29] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1827.643676][   T29] usb 2-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[ 1827.654356][   T29] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1827.666729][   T29] usb 2-1: config 0 descriptor??
[ 1827.711326][T12885] loop4: detected capacity change from 0 to 256
[ 1827.763528][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1827.764193][T12792] usb 6-1: USB disconnect, device number 79
[ 1827.770507][    C1] cm109 6-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[ 1827.824076][T12885] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe39e9277, utbl_chksum : 0x7319d30d)
[ 1827.829190][T12891] netlink: 28 bytes leftover after parsing attributes in process `syz.2.15842'.
[ 1827.893127][T12792] cm109 6-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1828.157181][   T29] kye 0003:0458:5016.0070: control desc unexpectedly large
[ 1828.171042][   T29] input: HID 0458:5016 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5016.0070/input/input94
[ 1828.277640][   T29] input: HID 0458:5016 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5016.0070/input/input95
[ 1828.533627][T12901] team0: entered promiscuous mode
[ 1828.539387][   T29] kye 0003:0458:5016.0070: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.1-1/input0
[ 1828.590055][T12901] team_slave_0: entered promiscuous mode
[ 1828.626371][   T29] usb 2-1: USB disconnect, device number 28
[ 1828.640785][T12901] team_slave_1: entered promiscuous mode
[ 1828.729827][T12900] team0: left promiscuous mode
[ 1828.762035][T12900] team_slave_0: left promiscuous mode
[ 1828.796085][T12900] team_slave_1: left promiscuous mode
[ 1828.930198][T12906] fido_id[12906]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[ 1829.312057][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4011.tmp-b7:5' failed: Read-only file system
[ 1829.410285][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4009.tmp-b7:6' failed: Read-only file system
[ 1829.425954][T12762] usb 3-1: new full-speed USB device number 40 using dummy_hcd
[ 1829.487901][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4011.tmp-b7:5' failed: Read-only file system
[ 1829.530809][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/3997.tmp-b7:1' failed: Read-only file system
[ 1829.597892][T12762] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[ 1829.621179][T12762] usb 3-1: config 0 has no interface number 0
[ 1829.653918][T12762] usb 3-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0x9F, changing to 0x8F
[ 1829.698731][T12762] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1829.731486][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4009.tmp-b7:6' failed: Read-only file system
[ 1829.750809][T12762] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1829.799888][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/3994.tmp-b7:7' failed: Read-only file system
[ 1829.829294][T12762] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1829.842989][T14310] udevd[14310]: symlink '../../loop1' '/dev/disk/by-diskseq/3997.tmp-b7:1' failed: Read-only file system
[ 1829.866152][T12762] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1829.867699][T12932] loop7: detected capacity change from 0 to 256
[ 1829.894124][T12762] usb 3-1: Product: syz
[ 1829.916967][T12762] usb 3-1: SerialNumber: syz
[ 1829.944013][T12934] loop1: detected capacity change from 0 to 256
[ 1829.960392][T12762] usb 3-1: config 0 descriptor??
[ 1829.991100][T12934] exfat: Deprecated parameter 'namecase'
[ 1830.001954][T12762] cm109 3-1:0.8: invalid payload size 0, expected 4
[ 1830.082794][T12762] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input96
[ 1830.087782][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4016.tmp-b7:7' failed: Read-only file system
[ 1830.111783][T12934] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011e8b, chksum : 0xf0cee8ef, utbl_chksum : 0xe619d30d)
[ 1830.166843][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-uuid/1234-1234.tmp-b7:7' failed: Read-only file system
[ 1830.215613][T14310] udevd[14310]: symlink '../../loop1' '/dev/disk/by-diskseq/4017.tmp-b7:1' failed: Read-only file system
[ 1830.701076][T12939] loop5: detected capacity change from 0 to 4096
[ 1830.711863][T12939] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[ 1830.792549][T12939] ntfs3(loop5): ino=3, mi_enum_attr
[ 1830.913170][T12939] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[ 1831.330991][T12938] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1831.366382][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1831.373201][T12788] usb 3-1: USB disconnect, device number 40
[ 1831.373375][    C1] cm109 3-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[ 1831.405744][T12788] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1831.422436][T12938] block device autoloading is deprecated and will be removed.
[ 1831.476179][  T155] ntfs3(loop5): ino=1f, failed to open parent directory r=5 to update
[ 1832.282367][T12971] loop2: detected capacity change from 0 to 64
[ 1832.342562][T12971] MINIX-fs: mounting file system with errors, running fsck is recommended
[ 1832.497561][  T155] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1832.700808][   T29] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[ 1832.892726][   T29] usb 2-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[ 1832.936478][   T29] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1832.967803][   T29] usb 2-1: Product: syz
[ 1832.985078][   T29] usb 2-1: Manufacturer: syz
[ 1833.010643][   T29] usb 2-1: SerialNumber: syz
[ 1833.364979][   T29] rtl8150 2-1:1.0: couldn't reset the device
[ 1833.386928][   T29] rtl8150 2-1:1.0: probe with driver rtl8150 failed with error -5
[ 1833.457073][   T29] usb 2-1: USB disconnect, device number 29
[ 1833.689058][T12997] netlink: 4 bytes leftover after parsing attributes in process `syz.6.15891'.
[ 1833.700012][T12973] loop7: detected capacity change from 0 to 32768
[ 1833.707421][T12973] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.15880 (12973)
[ 1833.707870][T12973] BTRFS error: failed to open device for path /dev/loop7 with flags 0x23: -13
[ 1834.413844][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4015.tmp-b7:4' failed: Read-only file system
[ 1834.428159][T14310] udevd[14310]: symlink '../../loop5' '/dev/disk/by-diskseq/4022.tmp-b7:5' failed: Read-only file system
[ 1834.525438][ T5992] udevd[5992]: symlink '../../loop6' '/dev/disk/by-diskseq/4009.tmp-b7:6' failed: Read-only file system
[ 1834.657035][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4022.tmp-b7:5' failed: Read-only file system
[ 1834.674945][   T29] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[ 1834.684649][T13019] team_slave_0: entered allmulticast mode
[ 1834.695676][ T5786] IPVS: starting estimator thread 0...
[ 1834.746704][T13022] team_slave_0: entered promiscuous mode
[ 1834.802379][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-diskseq/4024.tmp-b7:2' failed: Read-only file system
[ 1834.815781][T13020] IPVS: using max 23 ests per chain, 55200 per kthread
[ 1834.865438][   T29] usb 5-1: Using ep0 maxpacket: 16
[ 1834.901829][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1834.961918][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1835.010936][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4022.tmp-b7:5' failed: Read-only file system
[ 1835.013507][   T29] usb 5-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[ 1835.081730][T13028] netlink: 24 bytes leftover after parsing attributes in process `syz.7.15903'.
[ 1835.110647][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1835.154954][   T29] usb 5-1: config 0 descriptor??
[ 1835.160719][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-diskseq/4009.tmp-b7:6' failed: Read-only file system
[ 1835.537190][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4022.tmp-b7:5' failed: Read-only file system
[ 1835.561057][T13038] netlink: 16 bytes leftover after parsing attributes in process `syz.7.15906'.
[ 1835.618585][ T5943] udevd[5943]: symlink '../../loop6' '/dev/disk/by-diskseq/4009.tmp-b7:6' failed: Read-only file system
[ 1835.638364][T14310] udevd[14310]: symlink '../../loop1' '/dev/disk/by-diskseq/4019.tmp-b7:1' failed: Read-only file system
[ 1835.650524][T13041] loop6: detected capacity change from 0 to 512
[ 1835.653073][   T29] hid_parser_main: 222 callbacks suppressed
[ 1835.653102][   T29] corsair 0003:1B1C:1B02.0071: unknown main item tag 0x0
[ 1835.732231][   T29] corsair 0003:1B1C:1B02.0071: unknown main item tag 0x0
[ 1835.771314][   T29] corsair 0003:1B1C:1B02.0071: item fetching failed at offset 2/5
[ 1835.823260][   T29] corsair 0003:1B1C:1B02.0071: parse failed
[ 1835.839422][T13041] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1835.887082][   T29] corsair 0003:1B1C:1B02.0071: probe with driver corsair failed with error -22
[ 1835.899438][T13041] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1835.991312][   T29] usb 5-1: USB disconnect, device number 41
[ 1836.047260][T13054] netlink: 4 bytes leftover after parsing attributes in process `syz.7.15913'.
[ 1836.121393][ T9483] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1836.401065][T13058] loop6: detected capacity change from 0 to 1024
[ 1836.412211][T13058] EXT4-fs: Ignoring removed bh option
[ 1836.541850][T13058] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1836.771249][T13065] loop2: detected capacity change from 0 to 256
[ 1836.816777][T13065] exfat: Deprecated parameter 'utf8'
[ 1836.841755][T13065] exfat: Deprecated parameter 'utf8'
[ 1836.855396][T13065] exfat: Deprecated parameter 'utf8'
[ 1836.926382][T13065] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1836.986882][ T9483] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1837.161656][T13070] loop5: detected capacity change from 0 to 4096
[ 1837.999480][ T5786] hid-generic 0005:15C2:1012.0072: item fetching failed at offset 0/1
[ 1838.010348][ T5786] hid-generic 0005:15C2:1012.0072: probe with driver hid-generic failed with error -22
[ 1838.028392][ T1743] block nbd2: Receive control failed (result -32)
[ 1838.359639][T13096] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1838.405942][T13096] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1839.261893][T13111] loop1: detected capacity change from 0 to 4096
[ 1839.281991][T13111] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[ 1839.339032][T13111] ntfs3(loop1): ino=3, mi_enum_attr
[ 1839.450727][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4015.tmp-b7:4' failed: Read-only file system
[ 1839.500152][T13111] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[ 1839.524193][T14310] udevd[14310]: symlink '../../loop2' '/dev/disk/by-diskseq/4033.tmp-b7:2' failed: Read-only file system
[ 1839.666629][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4034.tmp-b7:5' failed: Read-only file system
[ 1839.702997][ T5657] udevd[5657]: symlink '../../loop1' '/dev/disk/by-diskseq/4035.tmp-b7:1' failed: Read-only file system
[ 1839.723444][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4026.tmp-b7:7' failed: Read-only file system
[ 1839.791151][ T5657] udevd[5657]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[ 1839.841867][ T5657] udevd[5657]: symlink '../../loop1' '/dev/disk/by-uuid/7089678B273CDB5C.tmp-b7:1' failed: Read-only file system
[ 1839.852185][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4015.tmp-b7:4' failed: Read-only file system
[ 1839.908354][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4026.tmp-b7:7' failed: Read-only file system
[ 1840.061493][T11578] ntfs3(loop1): ino=1f, failed to open parent directory r=5 to update
[ 1840.074185][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-diskseq/4033.tmp-b7:2' failed: Read-only file system
[ 1841.475812][T12788] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[ 1841.651196][T12788] usb 3-1: Using ep0 maxpacket: 32
[ 1841.690690][T12788] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[ 1841.744116][T12788] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1841.802155][T12788] usb 3-1: config 0 descriptor??
[ 1841.829933][T12788] gspca_main: sunplus-2.14.0 probing 041e:400b
[ 1841.940713][T13176] loop6: detected capacity change from 0 to 64
[ 1842.119783][T13153] loop7: detected capacity change from 0 to 32768
[ 1842.135700][T12791] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[ 1842.334557][T12791] usb 2-1: Using ep0 maxpacket: 8
[ 1842.349134][T12791] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[ 1842.372165][T12791] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1842.449267][T12791] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1842.493880][T12791] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1842.518873][T12791] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1842.530703][T12791] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[ 1842.546788][T12791] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1842.581038][T12791] usb 2-1: config 0 descriptor??
[ 1842.658228][ T1743] Bluetooth: hci6: urb ffff888031c93900 submission failed (90)
[ 1842.662997][T12788] gspca_sunplus: reg_r err -71
[ 1842.683226][T12788] sunplus 3-1:0.0: probe with driver sunplus failed with error -71
[ 1842.818496][T12788] usb 3-1: USB disconnect, device number 41
[ 1842.897078][   T29] usb 2-1: USB disconnect, device number 30
[ 1843.238007][T13198] xt_hashlimit: size too large, truncated to 1048576
[ 1843.639707][T13210] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15980'.
[ 1843.749827][T13209] loop5: detected capacity change from 0 to 512
[ 1843.793484][T13209] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #11: comm syz.5.15981: ea_inode with extended attributes
[ 1843.793545][T13209] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1843.798697][    C0] EXT4-fs (loop5): initial error at time 1780400934: ext4_xattr_inode_iget:441: inode 11
[ 1843.830926][    C0] EXT4-fs (loop5): last error at time 1780400934: ext4_xattr_inode_iget:441: inode 11
[ 1843.852056][T13209] EXT4-fs error (device loop5): ext4_xattr_inode_iget:444: comm syz.5.15981: error while reading EA inode 11 err=-117
[ 1843.964087][T13209] loop5: lost filesystem error report for type 5 error -117
[ 1843.967102][T13209] EXT4-fs (loop5): 1 orphan inode deleted
[ 1844.059223][T13221] loop2: detected capacity change from 0 to 256
[ 1844.059598][T13209] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1844.459296][ T5642] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1844.560888][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4042.tmp-b7:2' failed: Read-only file system
[ 1844.740392][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4042.tmp-b7:2' failed: Read-only file system
[ 1844.753320][T14310] udevd[14310]: symlink '../../loop4' '/dev/disk/by-diskseq/4015.tmp-b7:4' failed: Read-only file system
[ 1844.765191][ T5657] udevd[5657]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[ 1844.769800][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4041.tmp-b7:5' failed: Read-only file system
[ 1844.792610][ T5943] udevd[5943]: symlink '../../loop7' '/dev/disk/by-diskseq/4040.tmp-b7:7' failed: Read-only file system
[ 1844.873488][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4043.tmp-b7:2' failed: Read-only file system
[ 1844.956923][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4041.tmp-b7:5' failed: Read-only file system
[ 1845.041462][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4040.tmp-b7:7' failed: Read-only file system
[ 1845.057442][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4044.tmp-b7:5' failed: Read-only file system
[ 1845.323206][ T5786] kernel write not supported for file /sg0 (pid: 5786 comm: kworker/1:6)
[ 1845.332286][   T29] usb 6-1: new high-speed USB device number 80 using dummy_hcd
[ 1845.496476][   T29] usb 6-1: Using ep0 maxpacket: 32
[ 1845.513973][   T29] usb 6-1: config 0 has an invalid interface number: 85 but max is 0
[ 1845.554217][   T29] usb 6-1: config 0 has no interface number 0
[ 1845.577231][   T29] usb 6-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1845.619036][   T29] usb 6-1: config 0 interface 85 has no altsetting 0
[ 1845.620463][T13258] netlink: 28 bytes leftover after parsing attributes in process `syz.2.16001'.
[ 1845.640219][   T29] usb 6-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 1845.661873][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1845.680174][   T29] usb 6-1: Product: syz
[ 1845.708468][   T29] usb 6-1: Manufacturer: syz
[ 1845.723703][   T29] usb 6-1: SerialNumber: syz
[ 1845.751085][   T29] usb 6-1: config 0 descriptor??
[ 1845.877343][T13261] tap0: tun_chr_ioctl cmd 1074025677
[ 1845.910815][T13261] tap0: linktype set to 777
[ 1846.398999][   T29] appletouch 6-1:0.85: Geyser mode initialized.
[ 1846.441089][   T29] input: appletouch as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.85/input/input97
[ 1846.732749][ T5786] usb 6-1: USB disconnect, device number 80
[ 1846.832067][ T5786] appletouch 6-1:0.85: input: appletouch disconnected
[ 1847.197921][T13295] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1847.337272][T13297] loop1: detected capacity change from 0 to 1024
[ 1847.379487][T13297] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1847.459947][T13297] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1847.480310][T13301] loop4: detected capacity change from 0 to 512
[ 1847.506911][T13297] ext4 filesystem being mounted at /446/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1847.547342][   T12] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm kworker/u8:0: bg 0: block 112: padding at end of block bitmap is not set
[ 1847.606986][ T5786] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[ 1847.646344][T13301] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1847.669744][   T12] EXT4-fs (loop1): Remounting filesystem read-only
[ 1847.681361][   T12] EXT4-fs warning (device loop1): ext4_convert_unwritten_extents:5071: inode #15: block 7: len 1: ext4_ext_map_blocks returned -30
[ 1847.764409][   T29] usb 6-1: new high-speed USB device number 81 using dummy_hcd
[ 1847.805016][ T5786] usb 3-1: Using ep0 maxpacket: 8
[ 1847.840162][ T5786] usb 3-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b
[ 1847.892482][ T5786] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1847.914069][ T5786] usb 3-1: Product: syz
[ 1847.923037][ T5212] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1847.942489][ T5786] usb 3-1: Manufacturer: syz
[ 1847.972226][ T5786] usb 3-1: SerialNumber: syz
[ 1847.977418][   T29] usb 6-1: Using ep0 maxpacket: 8
[ 1847.998829][   T29] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[ 1848.014176][ T5786] usb 3-1: config 0 descriptor??
[ 1848.023770][   T29] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1848.051079][ T5786] dvb-usb: found a 'DViCO FusionHDTV DVB-T USB (LGZ201)' in warm state.
[ 1848.070160][   T29] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1848.102447][ T5786] dvb-usb: bulk message failed: -22 (2/0)
[ 1848.112576][T10643] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1848.126861][   T29] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1848.140246][   T29] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1848.182011][ T5786] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1848.213183][   T29] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1848.248083][   T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1848.266838][ T5786] dvbdev: DVB: registering new adapter (DViCO FusionHDTV DVB-T USB (LGZ201))
[ 1848.313083][ T5786] usb 3-1: media controller created
[ 1848.364157][T13316] Set syz1 is full, maxelem 0 reached
[ 1848.406812][ T5786] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1848.538649][   T29] usb 6-1: GET_CAPABILITIES returned 0
[ 1848.552149][ T5786] dvb-usb: bulk message failed: -22 (1/0)
[ 1848.559555][   T29] usbtmc 6-1:16.0: can't read capabilities
[ 1848.807761][ T5786] DVB: Unable to find symbol mt352_attach()
[ 1848.835622][ T5786] dvb-usb: no frontend was attached by 'DViCO FusionHDTV DVB-T USB (LGZ201)'
[ 1848.847178][   T29] usb 6-1: USB disconnect, device number 81
[ 1848.926904][   T30] audit: type=1326 audit(1780400940.041:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13328 comm="syz.1.16032" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa40299ce59 code=0x0
[ 1849.007853][T13335] netdevsim netdevsim6 netdevsim0: entered allmulticast mode
[ 1849.044321][ T5786] rc_core: IR keymap rc-dvico-portable not found
[ 1849.052865][ T5786] Registered IR keymap rc-empty
[ 1849.097939][ T5786] rc rc0: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.2/usb3/3-1/rc/rc0
[ 1849.141380][ T5786] input: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.2/usb3/3-1/rc/rc0/input99
[ 1849.167496][ T5786] dvb-usb: schedule remote query interval to 100 msecs.
[ 1849.180576][ T5786] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully initialized and connected.
[ 1849.209908][ T5786] usb 3-1: USB disconnect, device number 42
[ 1849.220223][T13338] loop6: detected capacity change from 0 to 16
[ 1849.278140][T13338] erofs (device loop6): mounted with root inode @ nid 36.
[ 1849.331083][T13338] erofs (device loop6): readahead error at folio 2 @ nid 89
[ 1849.368469][ T5786] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully deinitialized and disconnected.
[ 1849.391925][ T1743] erofs (device loop6): failed to decompress (shifted) -EOPNOTSUPP @ pa 4096 size 4096 => 4868
[ 1849.516217][T13338] erofs (device loop6): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096
[ 1849.627838][T13338] erofs (device loop6): read error -117 @ 0 of nid 89
[ 1849.653305][ T5943] udevd[5943]: symlink '../../loop2' '/dev/disk/by-diskseq/4043.tmp-b7:2' failed: Read-only file system
[ 1849.699994][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4044.tmp-b7:5' failed: Read-only file system
[ 1849.744592][   T30] audit: type=1800 audit(1780400940.851:686): pid=13338 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.16034" name="file2" dev="loop6" ino=89 res=0 errno=0
[ 1849.823044][T14310] udevd[14310]: symlink '../../loop4' '/dev/disk/by-diskseq/4048.tmp-b7:4' failed: Read-only file system
[ 1849.856653][T13345] netem: change failed
[ 1849.931338][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4047.tmp-b7:1' failed: Read-only file system
[ 1850.139601][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4047.tmp-b7:1' failed: Read-only file system
[ 1850.283443][T13352] loop1: detected capacity change from 0 to 4096
[ 1850.358113][T13353] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1850.518756][T13352] NILFS (loop1): nilfs_sufile_do_free: segment 9 is already clean
[ 1850.639010][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4050.tmp-b7:1' failed: Read-only file system
[ 1850.673203][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-uuid/53ef1790-6acb-496c-bd13-8113447d28c8.tmp-b7:1' failed: Read-only file system
[ 1851.004500][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4044.tmp-b7:5' failed: Read-only file system
[ 1851.030760][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4050.tmp-b7:1' failed: Read-only file system
[ 1851.133404][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-uuid/53ef1790-6acb-496c-bd13-8113447d28c8.tmp-b7:1' failed: Read-only file system
[ 1851.180111][T13360] loop4: detected capacity change from 0 to 64
[ 1851.367406][T13364] input: syz1 as /devices/virtual/input/input100
[ 1851.700644][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[ 1851.921092][T13378] Set syz1 is full, maxelem 0 reached
[ 1853.157161][T13412] loop4: detected capacity change from 0 to 512
[ 1853.189377][T13412] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1853.247003][T13412] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0082]
[ 1853.266156][T13412] System zones: 1-12
[ 1853.317668][T13412] EXT4-fs (loop4): 1 truncate cleaned up
[ 1853.406861][T13412] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1853.428999][T13385] loop7: detected capacity change from 0 to 32768
[ 1853.462768][T13410] loop1: detected capacity change from 0 to 8192
[ 1853.862269][T10643] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1854.680857][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4057.tmp-b7:1' failed: Read-only file system
[ 1854.838304][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4059.tmp-b7:4' failed: Read-only file system
[ 1854.932144][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4057.tmp-b7:1' failed: Read-only file system
[ 1854.993845][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4058.tmp-b7:7' failed: Read-only file system
[ 1855.108891][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-diskseq/4043.tmp-b7:2' failed: Read-only file system
[ 1855.193874][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4057.tmp-b7:1' failed: Read-only file system
[ 1855.306752][T14310] udevd[14310]: symlink '../../loop5' '/dev/disk/by-diskseq/4044.tmp-b7:5' failed: Read-only file system
[ 1855.456653][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4058.tmp-b7:7' failed: Read-only file system
[ 1855.766908][T13438] loop6: detected capacity change from 0 to 131072
[ 1855.783124][T13438] F2FS-fs (loop6): invalid crc value
[ 1855.793020][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4043.tmp-b7:2' failed: Read-only file system
[ 1855.947553][T13438] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1855.956660][ T1743] Bluetooth: hci3: link tx timeout
[ 1855.963968][ T1743] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1855.974071][T13438] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[ 1855.997838][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4044.tmp-b7:5' failed: Read-only file system
[ 1856.094177][T13463] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16085'.
[ 1856.378799][T13468] ieee802154 phy0 wpan0: encryption failed: -22
[ 1856.846673][T13443] loop4: detected capacity change from 0 to 32768
[ 1856.976867][T13443] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1857.330576][   T30] audit: type=1800 audit(1780400948.441:687): pid=13443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.16077" name="file1" dev="loop4" ino=17058 res=0 errno=0
[ 1858.016117][ T5649] Bluetooth: hci3: command 0x0406 tx timeout
[ 1858.033636][T13487] loop2: detected capacity change from 0 to 32768
[ 1858.060428][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1858.079626][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1858.171723][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[ 1858.215784][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[ 1858.239205][T13487] JBD2: Ignoring recovery information on journal
[ 1858.269234][T10643] ocfs2: Unmounting device (7,4) on (node local)
[ 1858.333789][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[ 1858.349452][T13487] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[ 1858.368023][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[ 1858.393214][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[ 1858.621400][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[ 1858.665875][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[ 1858.680249][T13487] (syz.2.16095,13487,1):ocfs2_block_check_validate:415 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[ 1858.693049][T13487] (syz.2.16095,13487,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[ 1858.702496][T13487] (syz.2.16095,13487,1):ocfs2_quota_read:201 ERROR: status = -5
[ 1858.710431][T13487] Quota error (device loop2): find_tree_dqentry: Can't read quota tree block 5
[ 1858.721218][T13487] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[ 1858.730707][T13487] (syz.2.16095,13487,1):ocfs2_acquire_dquot:904 ERROR: status = -5
[ 1858.739330][T13487] (syz.2.16095,13487,1):ocfs2_mknod:318 ERROR: status = -5
[ 1858.746785][T13487] (syz.2.16095,13487,1):ocfs2_mknod:506 ERROR: status = -5
[ 1858.754013][T13487] (syz.2.16095,13487,1):ocfs2_create:679 ERROR: status = -5
[ 1858.851960][T13495] loop7: detected capacity change from 0 to 512
[ 1859.121115][ T7703] ocfs2: Unmounting device (7,2) on (node local)
[ 1859.444697][T12762] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[ 1859.644685][T12762] usb 2-1: Using ep0 maxpacket: 8
[ 1859.663238][T12762] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[ 1859.694767][T12762] usb 2-1: config 179 has no interface number 0
[ 1859.708677][T12762] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1859.726975][T13508] siw: device registration error -23
[ 1859.764336][T12762] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1859.808394][T12762] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1859.864205][T12762] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1859.895167][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4044.tmp-b7:5' failed: Read-only file system
[ 1859.934411][T12762] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1859.964821][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4065.tmp-b7:4' failed: Read-only file system
[ 1859.995250][T12762] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1860.032920][ T5943] udevd[5943]: symlink '../../loop7' '/dev/disk/by-diskseq/4067.tmp-b7:7' failed: Read-only file system
[ 1860.039389][T12762] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1860.172784][T13516] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16106'.
[ 1860.250936][T13516] netem: unknown loss type 0
[ 1860.345978][T13516] netem: change failed
[ 1860.367115][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4044.tmp-b7:5' failed: Read-only file system
[ 1860.380957][T13515] loop2: detected capacity change from 0 to 32768
[ 1860.388684][T13515] btrfs: Deprecated parameter 'usebackuproot'
[ 1860.394873][T13515] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[ 1860.411254][T13515] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.16099 (13515)
[ 1860.428528][T13515] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1860.438694][T13515] BTRFS info (device loop2): using crc32c checksum algorithm
[ 1860.456086][T13498] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1860.627106][  T155] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[ 1860.881705][T14310] udevd[14310]: symlink '../../loop4' '/dev/disk/by-diskseq/4065.tmp-b7:4' failed: Read-only file system
[ 1860.960745][ T5943] udevd[5943]: symlink '../../loop7' '/dev/disk/by-diskseq/4067.tmp-b7:7' failed: Read-only file system
[ 1861.096044][T13515] BTRFS error (device loop2): failed to load root extent
[ 1861.103225][T13515] BTRFS warning (device loop2): try to load backup roots slot 1
[ 1861.113564][T21575] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[ 1861.235993][T13515] BTRFS warning (device loop2): couldn't read tree root
[ 1861.243069][T13515] BTRFS warning (device loop2): try to load backup roots slot 2
[ 1861.261229][  T130] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[ 1861.293095][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-diskseq/4069.tmp-b7:2' failed: Read-only file system
[ 1861.372238][T13515] BTRFS warning (device loop2): couldn't read tree root
[ 1861.382532][T13515] BTRFS warning (device loop2): try to load backup roots slot 3
[ 1861.441963][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-uuid/c9fe44da-de57-406a-8241-57ec7d4412cf.tmp-b7:2' failed: Read-only file system
[ 1861.471692][T13515] BTRFS info (device loop2): rebuilding free space tree
[ 1861.491443][ T5786] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input101
[ 1861.555407][T13515] BTRFS info (device loop2): checking UUID tree
[ 1861.569110][T13515] BTRFS info (device loop2): enabling ssd optimizations
[ 1861.577755][T13515] BTRFS info (device loop2): turning on async discard
[ 1861.587628][T13515] BTRFS info (device loop2): enabling free space tree
[ 1861.595960][T13515] BTRFS info (device loop2): force clearing of disk cache
[ 1861.603097][T13515] BTRFS info (device loop2): enabling auto defrag
[ 1861.611165][T13515] BTRFS info (device loop2): trying to use backup root at mount time
[ 1861.620867][T13515] BTRFS info (device loop2): use zstd compression, level 3
[ 1862.146909][ T7703] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1862.493412][T12755] usb 2-1: USB disconnect, device number 31
[ 1862.493511][    C1] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1862.507742][    C1] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1862.508655][T13543] loop6: detected capacity change from 0 to 512
[ 1862.527633][T13546] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1862.629193][T13543] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[ 1862.642330][T13524] loop5: detected capacity change from 0 to 131072
[ 1862.688608][T13524] F2FS-fs (loop5): invalid crc value
[ 1862.730414][T13543] System zones: 0-2, 18-18, 34-34
[ 1862.783207][T13543] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.16112: bg 0: block 248: padding at end of block bitmap is not set
[ 1862.859448][T13524] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1862.900079][T13524] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[ 1862.916117][T13543] loop6: lost filesystem error report for type 5 error -117
[ 1862.932611][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4063.tmp-b7:6' failed: Read-only file system
[ 1862.939794][    C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1862.957559][    C1] EXT4-fs (loop6): last error at time 1780400954: ext4_validate_block_bitmap:440
[ 1863.008235][ T6017] udevd[6017]: symlink '../../loop4' '/dev/disk/by-diskseq/4065.tmp-b7:4' failed: Read-only file system
[ 1863.031963][T13543] Quota error (device loop6): write_blk: dquota write failed
[ 1863.057993][T13543] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1863.101614][T13543] EXT4-fs error (device loop6): ext4_acquire_dquot:7032: comm syz.6.16112: Failed to acquire dquot type 1
[ 1863.216297][T13543] loop6: lost filesystem error report for type 5 error -117
[ 1863.301810][T13543] EXT4-fs (loop6): 1 truncate cleaned up
[ 1863.412321][T13543] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1863.473527][T13543] ext4 filesystem being mounted at /184/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1863.527536][T13544] loop4: detected capacity change from 0 to 40427
[ 1863.539416][T13544] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1863.551213][T13544] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1863.587281][T13544] F2FS-fs (loop4): invalid crc value
[ 1863.862587][  T130] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1863.959153][T13544] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1864.228107][T13544] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1864.240414][T13544] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1864.461449][ T9483] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1864.862982][T13570] loop6: detected capacity change from 0 to 512
[ 1864.893003][T13570] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1864.929786][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4071.tmp-b7:5' failed: Read-only file system
[ 1864.953431][T13567] bridge0: port 3(syz_tun) entered blocking state
[ 1864.960073][T13567] bridge0: port 3(syz_tun) entered forwarding state
[ 1865.022698][T13570] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1865.032435][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4074.tmp-b7:5' failed: Read-only file system
[ 1865.091760][T13570] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[ 1865.107794][T13567] 8021q: adding VLAN 0 to HW filter on device team0
[ 1865.124124][T13567] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1865.127946][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-diskseq/4070.tmp-b7:6' failed: Read-only file system
[ 1865.182798][T13570] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1865.233282][T13570] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.16118: bg 0: block 361: padding at end of block bitmap is not set
[ 1865.253108][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[ 1865.275782][T13570] loop6: lost filesystem error report for type 5 error -117
[ 1865.281358][T13570] EXT4-fs (loop6): Remounting filesystem read-only
[ 1865.288783][    C0] EXT4-fs (loop6): error count since last fsck: 1
[ 1865.288816][    C0] EXT4-fs (loop6): initial error at time 1780400956: ext4_validate_block_bitmap:440
[ 1865.288861][    C0] EXT4-fs (loop6): last error at time 1780400956: ext4_validate_block_bitmap:440
[ 1865.348103][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-uuid/00000000-0000-0000-0000-000000000007.tmp-b7:6' failed: Read-only file system
[ 1865.418094][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4073.tmp-b7:2' failed: Read-only file system
[ 1865.496361][T13570] EXT4-fs (loop6): 1 truncate cleaned up
[ 1865.519480][T13570] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1865.579973][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-diskseq/4070.tmp-b7:6' failed: Read-only file system
[ 1865.658692][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[ 1865.673674][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-uuid/00000000-0000-0000-0000-000000000007.tmp-b7:6' failed: Read-only file system
[ 1865.723867][T13570] EXT4-fs warning (device loop6): dx_probe:859: inode #2: comm syz.6.16118: dx entry: limit 0 != root limit 125
[ 1865.726886][T13567] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1865.808579][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4075.tmp-b7:6' failed: Read-only file system
[ 1865.829954][T13567] batman_adv: batadv0: Interface activated: vlan2
[ 1865.845724][T13570] EXT4-fs warning (device loop6): dx_probe:933: inode #2: comm syz.6.16118: Corrupt directory, running e2fsck is recommended
[ 1865.876248][T13567] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1865.916411][T13579] EXT4-fs warning (device loop6): dx_probe:859: inode #2: comm syz.6.16118: dx entry: limit 0 != root limit 125
[ 1865.942263][T13579] EXT4-fs warning (device loop6): dx_probe:933: inode #2: comm syz.6.16118: Corrupt directory, running e2fsck is recommended
[ 1865.961487][T13567] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[ 1866.017271][  T130] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1866.024488][  T130] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1866.030312][T13578] EXT4-fs warning (device loop6): dx_probe:859: inode #2: comm syz.6.16118: dx entry: limit 0 != root limit 125
[ 1866.072515][T13578] EXT4-fs warning (device loop6): dx_probe:933: inode #2: comm syz.6.16118: Corrupt directory, running e2fsck is recommended
[ 1866.111145][  T130] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1866.118351][  T130] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1866.344023][ T9483] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1866.426976][T13581] loop1: detected capacity change from 0 to 64
[ 1866.573752][T13571] loop7: detected capacity change from 0 to 32768
[ 1866.819807][T13585] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.16125'.
[ 1868.438103][T13596] loop5: detected capacity change from 0 to 16384
[ 1868.705917][T13607] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1868.743984][T13606] loop1: detected capacity change from 0 to 256
[ 1868.773373][T13598] loop4: detected capacity change from 0 to 131072
[ 1868.782766][T13598] F2FS-fs (loop4): Test dummy encryption mode enabled
[ 1868.792627][T13606] exfat: Deprecated parameter 'utf8'
[ 1868.804408][T13606] exfat: Deprecated parameter 'namecase'
[ 1868.826224][T13606] exfat: Deprecated parameter 'namecase'
[ 1868.837402][T13598] F2FS-fs (loop4): invalid crc value
[ 1868.844668][T13606] exfat: Deprecated parameter 'utf8'
[ 1868.996275][T13598] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1869.014323][T13598] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1869.053580][T13606] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[ 1869.099170][T13606] exFAT-fs (loop1): failed to test first cluster bit of root dir(5)
[ 1869.120130][T13588] loop6: detected capacity change from 0 to 32768
[ 1869.610846][  T130] Bluetooth: hci6: Frame reassembly failed (-84)
[ 1869.676826][T13614] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[ 1869.940950][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4083.tmp-b7:5' failed: Read-only file system
[ 1870.070851][ T5943] udevd[5943]: symlink '../../loop6' '/dev/disk/by-diskseq/4086.tmp-b7:6' failed: Read-only file system
[ 1870.126196][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4085.tmp-b7:4' failed: Read-only file system
[ 1870.158406][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-uuid/36fde3fc-a519-493c-8baa-e32931e9a89c.tmp-b7:4' failed: Read-only file system
[ 1870.167754][ T5943] udevd[5943]: symlink '../../loop6' '/dev/disk/by-uuid/35307472-fd4b-42de-878f-83186a645fa6.tmp-b7:6' failed: Read-only file system
[ 1870.195333][ T5657] udevd[5657]: symlink '../../loop1' '/dev/disk/by-diskseq/4087.tmp-b7:1' failed: Read-only file system
[ 1870.252927][T13621] loop1: detected capacity change from 0 to 2048
[ 1870.318680][T13621] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1870.445578][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4089.tmp-b7:1' failed: Read-only file system
[ 1870.512936][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-label/LinuxUDF.tmp-b7:1' failed: Read-only file system
[ 1870.563193][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4085.tmp-b7:4' failed: Read-only file system
[ 1870.581946][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-uuid/1234567812345678.tmp-b7:1' failed: Read-only file system
[ 1870.998667][T13612] loop2: detected capacity change from 0 to 32768
[ 1871.053438][T13612] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[ 1871.292243][T13612] XFS (loop2): Ending clean mount
[ 1871.616978][ T5649] Bluetooth: hci6: command 0x1003 tx timeout
[ 1871.620948][ T1743] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 1871.683768][ T7703] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[ 1871.985871][T12792] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[ 1872.154439][T12792] usb 2-1: Using ep0 maxpacket: 16
[ 1872.167351][T12792] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1872.222116][T12792] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1872.252686][T12792] usb 2-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1872.296762][T12792] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1872.363828][T12792] usb 2-1: config 0 descriptor??
[ 1873.023919][T12792] usb 2-1: string descriptor 0 read error: -71
[ 1873.085423][T13660] ip6gre1: entered allmulticast mode
[ 1873.091274][T12792] usb 2-1: Max retries (5) exceeded reading string descriptor 200
[ 1873.111358][T13660] team0: Device ip6gre1 is of different type
[ 1873.117024][T13656] loop5: detected capacity change from 0 to 4096
[ 1873.127021][T12792] letsketch 0003:6161:4D15.0073: probe with driver letsketch failed with error -32
[ 1873.173798][T13648] loop7: detected capacity change from 0 to 32768
[ 1873.190198][T13656] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1873.199547][T13666] loop6: detected capacity change from 0 to 128
[ 1873.217106][T12792] usb 2-1: USB disconnect, device number 32
[ 1873.240228][T13662] netlink: 24 bytes leftover after parsing attributes in process `syz.2.16148'.
[ 1873.307220][T13666] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1873.332997][T13656] EXT4-fs (loop5): shut down requested (0)
[ 1873.389366][T13666] ext4 filesystem being mounted at /194/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1873.598704][ T5642] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1873.629564][T13672] loop4: detected capacity change from 0 to 256
[ 1873.721623][T13672] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1873.840622][T13672] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1874.066330][ T9483] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1874.374978][T12766] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[ 1874.497081][T13684] loop6: detected capacity change from 0 to 1024
[ 1874.516013][T13684] EXT4-fs: Ignoring removed i_version option
[ 1874.533011][T13684] EXT4-fs: inline encryption not supported
[ 1874.549418][T13684] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1874.571795][T12766] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1874.585312][T13688] overlayfs: statfs failed on './file0'
[ 1874.592478][T13690] loop4: detected capacity change from 0 to 512
[ 1874.613134][T12766] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1874.633523][T13690] EXT4-fs: Ignoring removed nobh option
[ 1874.643099][T12766] usb 2-1: Product: syz
[ 1874.667820][T12766] usb 2-1: Manufacturer: syz
[ 1874.695876][T13684] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1874.712869][T13690] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1874.733210][T12766] usb 2-1: SerialNumber: syz
[ 1874.828328][T13698] loop7: detected capacity change from 0 to 1024
[ 1874.841899][T13690] EXT4-fs (loop4): 1 truncate cleaned up
[ 1874.919615][T13690] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1874.944856][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[ 1875.087993][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4103.tmp-b7:6' failed: Read-only file system
[ 1875.141761][   T30] audit: type=1800 audit(1780400966.241:688): pid=13690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.16164" name="file2" dev="loop4" ino=16 res=0 errno=0
[ 1875.210511][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[ 1875.239452][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4104.tmp-b7:4' failed: Read-only file system
[ 1875.264051][T12766] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[ 1875.285837][   T30] audit: type=1804 audit(1780400966.301:689): pid=13690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.16164" name="/newroot/152/file2/file2" dev="loop4" ino=16 res=1 errno=0
[ 1875.334490][T12766] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE
[ 1875.382860][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[ 1875.386151][ T8973] udevd[8973]: symlink '../../loop2' '/dev/disk/by-diskseq/4094.tmp-b7:2' failed: Read-only file system
[ 1875.442181][ T5943] udevd[5943]: symlink '../../loop7' '/dev/disk/by-diskseq/4105.tmp-b7:7' failed: Read-only file system
[ 1875.471838][T10643] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1875.471875][ T9483] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1875.517820][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4094.tmp-b7:2' failed: Read-only file system
[ 1875.539064][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4100.tmp-b7:5' failed: Read-only file system
[ 1875.570331][T13711] netlink: 12 bytes leftover after parsing attributes in process `syz.7.16174'.
[ 1875.593923][ T5943] udevd[5943]: symlink '../../loop7' '/dev/disk/by-diskseq/4105.tmp-b7:7' failed: Read-only file system
[ 1875.627054][T12766] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000010. ret = -EPROTO
[ 1875.689807][T12766] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1875.732590][T13711] ipvlan2: entered allmulticast mode
[ 1875.794775][T13711] syz_tun: entered allmulticast mode
[ 1875.829169][T12766] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1875.912165][T12766] lan78xx 2-1:1.0: probe with driver lan78xx failed with error -71
[ 1875.965717][T12766] usb 2-1: USB disconnect, device number 33
[ 1876.015671][T13714] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1876.042781][T13714] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1876.063096][T13714] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1876.072036][T13714] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1876.201905][T13714] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1876.233983][T13714] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1876.274726][T13714] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1876.320320][T13714] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1876.522469][T13726] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16179'.
[ 1876.559651][T13726] netlink: 'syz.1.16179': attribute type 30 has an invalid length.
[ 1876.586308][T13726] netlink: 'syz.1.16179': attribute type 1 has an invalid length.
[ 1876.613676][T13707] loop2: detected capacity change from 0 to 32768
[ 1876.634898][T13724] loop5: detected capacity change from 0 to 4096
[ 1876.681652][T13724] ntfs3(loop5): ino=3, mi_enum_attr
[ 1876.697355][   T30] audit: type=1800 audit(1780400967.801:690): pid=13707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.16172" name="file2" dev="loop2" ino=7 res=0 errno=0
[ 1878.095965][ T1743] Bluetooth: hci1: command 0x0406 tx timeout
[ 1878.102180][ T5649] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1878.110055][ T1743] Bluetooth: hci5: command 0x0406 tx timeout
[ 1878.284875][ T1743] Bluetooth: hci2: command 0x0401 tx timeout
[ 1878.334491][ T1743] Bluetooth: hci3: command 0x0406 tx timeout
[ 1878.597874][T13748] loop1: detected capacity change from 0 to 2048
[ 1878.692576][T13752] overlayfs: upper fs does not support file handles, falling back to index=off.
[ 1878.707826][T13748] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1879.150782][T13764] netlink: 'syz.6.16198': attribute type 12 has an invalid length.
[ 1879.180556][T13764] netlink: 'syz.6.16198': attribute type 29 has an invalid length.
[ 1879.235288][T13764] netlink: 148 bytes leftover after parsing attributes in process `syz.6.16198'.
[ 1879.281698][T13764] netlink: 'syz.6.16198': attribute type 1 has an invalid length.
[ 1879.310481][T13764] netlink: 'syz.6.16198': attribute type 2 has an invalid length.
[ 1879.320677][T13764] netlink: 11 bytes leftover after parsing attributes in process `syz.6.16198'.
[ 1879.350549][T13770] veth1_macvtap: left promiscuous mode
[ 1879.364855][T13770] macsec0: entered allmulticast mode
[ 1879.427370][T13772] veth1_macvtap: entered promiscuous mode
[ 1879.446464][T13772] veth1_macvtap: entered allmulticast mode
[ 1879.471077][T13772] macsec0: left allmulticast mode
[ 1879.482015][T12792] kernel read not supported for file /dsp (pid: 12792 comm: kworker/0:16)
[ 1879.498333][   T29] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[ 1879.523909][T13772] veth1_macvtap: left allmulticast mode
[ 1879.556635][T13775] loop7: detected capacity change from 0 to 512
[ 1879.685619][   T29] usb 2-1: Using ep0 maxpacket: 16
[ 1879.706855][   T29] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1879.773063][   T29] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1879.835403][   T29] usb 2-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1879.918731][   T29] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1879.932741][T13777] bond1: ARP target 9.0.0.0 is already present
[ 1879.968392][T13777] bond1: option arp_ip_target: invalid value (9)
[ 1879.991790][   T29] usb 2-1: config 0 descriptor??
[ 1880.006969][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4108.tmp-b7:4' failed: Read-only file system
[ 1880.027399][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4116.tmp-b7:7' failed: Read-only file system
[ 1880.079304][T13777] bond1 (unregistering): Released all slaves
[ 1880.175696][ T1743] Bluetooth: hci1: command 0x0406 tx timeout
[ 1880.244919][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4116.tmp-b7:7' failed: Read-only file system
[ 1880.334599][ T1743] Bluetooth: hci2: command 0x0401 tx timeout
[ 1880.347410][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4111.tmp-b7:2' failed: Read-only file system
[ 1880.414927][ T1743] Bluetooth: hci3: command 0x0406 tx timeout
[ 1880.461989][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4108.tmp-b7:4' failed: Read-only file system
[ 1880.479483][   T29] apple 0003:05AC:024B.0074: fixing up MacBook JIS keyboard report descriptor
[ 1880.501235][   T29] apple 0003:05AC:024B.0074: unknown global tag 0xe
[ 1880.514405][T13796] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16210'.
[ 1880.549485][   T29] apple 0003:05AC:024B.0074: item 0 1 1 14 parsing failed
[ 1880.581549][   T29] apple 0003:05AC:024B.0074: parse failed
[ 1880.619980][   T29] apple 0003:05AC:024B.0074: probe with driver apple failed with error -22
[ 1880.671712][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4111.tmp-b7:2' failed: Read-only file system
[ 1880.686353][   T29] usb 2-1: USB disconnect, device number 34
[ 1880.883703][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4116.tmp-b7:7' failed: Read-only file system
[ 1881.019489][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4112.tmp-b7:5' failed: Read-only file system
[ 1881.037663][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4108.tmp-b7:4' failed: Read-only file system
[ 1881.172415][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4111.tmp-b7:2' failed: Read-only file system
[ 1881.279225][T13816] loop7: detected capacity change from 0 to 256
[ 1881.540532][T13819] loop5: detected capacity change from 0 to 256
[ 1881.598676][T13821] Failed to get privilege flags for destination (handle=0x2:0x8)
[ 1881.626774][T13819] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1881.751613][T13819] exFAT-fs (loop5): valid_size(150994954) is greater than size(10)
[ 1882.542104][T13850] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16234'.
[ 1883.036128][T13862] mac80211_hwsim hwsim56 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 1883.340844][T13873] ªªªªªª: renamed from vlan0 (while UP)
[ 1884.276523][T13896] netlink: 16 bytes leftover after parsing attributes in process `syz.4.16254'.
[ 1884.287720][T13897] loop7: detected capacity change from 0 to 16
[ 1884.319445][T13897] MTD: Attempt to mount non-MTD device "/dev/loop7"
[ 1884.348485][T13864] loop5: detected capacity change from 0 to 32768
[ 1884.458110][T13864] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1884.835641][T13910] loop4: detected capacity change from 0 to 1024
[ 1885.080562][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4124.tmp-b7:4' failed: Read-only file system
[ 1885.129202][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-label/untitled.tmp-b7:4' failed: Read-only file system
[ 1885.158880][T14310] udevd[14310]: symlink '../../loop2' '/dev/disk/by-diskseq/4111.tmp-b7:2' failed: Read-only file system
[ 1885.173674][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-uuid/0f76b7e0-a395-392e-9506-9fb3b29b70e3.tmp-b7:4' failed: Read-only file system
[ 1885.240566][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4122.tmp-b7:5' failed: Read-only file system
[ 1885.256925][T13919] loop2: detected capacity change from 0 to 1024
[ 1885.301111][T14310] udevd[14310]: symlink '../../loop1' '/dev/disk/by-diskseq/4114.tmp-b7:1' failed: Read-only file system
[ 1885.328906][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:5' failed: Read-only file system
[ 1885.378543][  T130] wlan1: Trigger new scan to find an IBSS to join
[ 1885.393617][T13919] hfsplus: can't free extent: start 2889, count 1
[ 1885.406651][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4124.tmp-b7:4' failed: Read-only file system
[ 1885.421226][ T5943] udevd[5943]: symlink '../../loop2' '/dev/disk/by-diskseq/4125.tmp-b7:2' failed: Read-only file system
[ 1885.438701][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-label/untitled.tmp-b7:4' failed: Read-only file system
[ 1885.689859][T13924] mac80211_hwsim hwsim46 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 1885.707973][ T5642] ocfs2: Unmounting device (7,5) on (node local)
[ 1886.201509][T13935] block nbd1: Cannot use ioctl interface on a netlink controlled device.
[ 1886.268818][T13935] block nbd1: Cannot use ioctl interface on a netlink controlled device.
[ 1887.097149][T13959] loop2: detected capacity change from 0 to 4096
[ 1887.189394][T13959] ntfs3(loop2): ino=19, mi_enum_attr
[ 1887.213583][T13959] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[ 1887.480618][T13970] loop7: detected capacity change from 0 to 512
[ 1887.740816][T13973] loop2: detected capacity change from 0 to 16
[ 1887.761690][T13970] loop7: detected capacity change from 0 to 4096
[ 1887.790080][T13973] erofs (device loop2): mounted with root inode @ nid 36.
[ 1887.923902][T13973] syz.2.16288: attempt to access beyond end of device
[ 1887.923902][T13973] loop2: rw=524288, sector=8, nr_sectors = 24 limit=16
[ 1888.028654][T13974] serio: Serial port ttynull
[ 1888.057890][T13946] loop6: detected capacity change from 0 to 32768
[ 1888.128916][T13946] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1888.141379][T13973] erofs (device loop2): invalid de[0].nameoff 0 @ nid 89
[ 1888.331234][T13946] XFS (loop6): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50.
[ 1888.372705][T13946] XFS (loop6): Tail block (0x29) overwrite detected. Updated to 0x30
[ 1888.404180][T13992] loop5: detected capacity change from 0 to 65
[ 1888.420089][T21575] wlan1: Trigger new scan to find an IBSS to join
[ 1888.435740][T13946] XFS (loop6): Ending clean mount
[ 1888.460826][T13992] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[ 1888.645948][T13946] XFS (loop6): User initiated shutdown received.
[ 1888.677291][T13946] XFS (loop6): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x139/0x1a0 (fs/xfs/xfs_fsops.c:465).  Shutting down filesystem.
[ 1888.738685][T14001] XFS (loop6): Error -5 reserving per-AG metadata reserve pool.
[ 1888.750019][T13946] XFS (loop6): Please unmount the filesystem and rectify the problem(s)
[ 1888.969703][T14003] hfsplus: failed to load attributes file
[ 1889.076639][ T9483] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1889.826434][T12762] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1890.014492][T12762] usb 2-1: Using ep0 maxpacket: 8
[ 1890.029838][T12762] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1890.070613][T12762] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1890.098368][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4126.tmp-b7:4' failed: Read-only file system
[ 1890.111742][T12762] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1890.156877][T12762] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1890.210217][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4138.tmp-b7:2' failed: Read-only file system
[ 1890.211917][T12762] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1890.269697][T14027] set_capacity_and_notify: 2 callbacks suppressed
[ 1890.269726][T14027] loop2: detected capacity change from 0 to 16
[ 1890.294316][T12762] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1890.318193][T14027] erofs (device loop2): mounted with root inode @ nid 36.
[ 1890.362084][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4144.tmp-b7:6' failed: Read-only file system
[ 1890.405644][T14027] syz.2.16310: attempt to access beyond end of device
[ 1890.405644][T14027] loop2: rw=0, sector=0, nr_sectors = 1025 limit=16
[ 1890.433208][T14310] udevd[14310]: symlink '../../loop4' '/dev/disk/by-diskseq/4126.tmp-b7:4' failed: Read-only file system
[ 1890.465280][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-diskseq/4145.tmp-b7:2' failed: Read-only file system
[ 1890.491171][T14027] erofs (device loop2): read error -5 @ 0 of nid 36
[ 1890.502299][T14031] syz.2.16310: attempt to access beyond end of device
[ 1890.502299][T14031] loop2: rw=0, sector=0, nr_sectors = 1025 limit=16
[ 1890.509395][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-uuid/72b14b28-1ccd-4731-be5e-c43bd7b347d4.tmp-b7:2' failed: Read-only file system
[ 1890.542521][T14031] erofs (device loop2): read error -5 @ 0 of nid 36
[ 1890.593290][T12762] usb 2-1: GET_CAPABILITIES returned 0
[ 1890.619978][T12762] usbtmc 2-1:16.0: can't read capabilities
[ 1890.645505][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-diskseq/4144.tmp-b7:6' failed: Read-only file system
[ 1890.691861][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4145.tmp-b7:2' failed: Read-only file system
[ 1890.727440][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-uuid/72b14b28-1ccd-4731-be5e-c43bd7b347d4.tmp-b7:2' failed: Read-only file system
[ 1890.800423][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4146.tmp-b7:7' failed: Read-only file system
[ 1890.909605][   T29] usb 2-1: USB disconnect, device number 35
[ 1891.377021][ T5477] wlan1: Creating new IBSS network, BSSID 62:f7:9c:53:07:8d
[ 1891.409065][   T30] audit: type=1326 audit(1780400982.521:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14048 comm="syz.4.16318" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f108219ce59 code=0x0
[ 1891.780795][T14052] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1892.458423][T14073] netlink: 12 bytes leftover after parsing attributes in process `syz.7.16330'.
[ 1892.464966][T14074] loop2: detected capacity change from 0 to 64
[ 1892.531294][T14074] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[ 1892.741888][T14080] loop1: detected capacity change from 0 to 256
[ 1892.782457][T14080] exfat: Deprecated parameter 'utf8'
[ 1892.849437][T14080] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d)
[ 1892.935000][T12792] kernel read not supported for file /binder/transaction_log (pid: 12792 comm: kworker/0:16)
[ 1892.982414][T12755] kernel write not supported for file /binder/transaction_log (pid: 12755 comm: kworker/0:12)
[ 1893.014094][   T30] audit: type=1804 audit(1780400984.121:692): pid=14080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.16333" name="/newroot/500/bus/bus" dev="loop1" ino=1049323 res=1 errno=0
[ 1893.386362][T12755] usb 6-1: new high-speed USB device number 82 using dummy_hcd
[ 1893.580719][T12755] usb 6-1: config 0 has no interfaces?
[ 1893.600327][T12755] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1893.631716][T12755] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1893.671954][T12755] usb 6-1: config 0 descriptor??
[ 1893.976685][T12755] usb 6-1: USB disconnect, device number 82
[ 1894.757178][T14126] loop7: detected capacity change from 0 to 512
[ 1894.962184][T14132] loop2: detected capacity change from 0 to 128
[ 1895.017907][T14132] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1895.088822][T14132] ext4 filesystem being mounted at /343/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1895.201646][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4152.tmp-b7:1' failed: Read-only file system
[ 1895.279782][ T7703] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1895.337589][T14143] loop6: detected capacity change from 0 to 512
[ 1895.393996][T14143] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1895.410681][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4154.tmp-b7:7' failed: Read-only file system
[ 1895.487892][T14143] EXT4-fs (loop6): 1 truncate cleaned up
[ 1895.508422][T14149] input: syz1 as /devices/virtual/input/input103
[ 1895.512960][T14151] loop2: detected capacity change from 0 to 16
[ 1895.560906][T14143] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1895.561388][ T5943] udevd[5943]: symlink '../../loop4' '/dev/disk/by-diskseq/4126.tmp-b7:4' failed: Read-only file system
[ 1895.583701][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4154.tmp-b7:7' failed: Read-only file system
[ 1895.606591][ T5943] udevd[5943]: symlink '../../loop4' '/dev/disk/by-diskseq/4126.tmp-b7:4' failed: Read-only file system
[ 1895.612700][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4141.tmp-b7:5' failed: Read-only file system
[ 1895.687264][ T8973] udevd[8973]: symlink '../../loop6' '/dev/disk/by-diskseq/4156.tmp-b7:6' failed: Read-only file system
[ 1895.703769][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4151.tmp-b7:2' failed: Read-only file system
[ 1895.717351][T14151] erofs (device loop2): mounted with root inode @ nid 36.
[ 1895.777169][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4154.tmp-b7:7' failed: Read-only file system
[ 1895.793091][ T8973] udevd[8973]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[ 1895.811061][T14151] erofs (device loop2): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1895.874094][T14151] erofs (device loop2): readahead error at folio 0 @ nid 89
[ 1895.976626][T14151] syz.2.16362: attempt to access beyond end of device
[ 1895.976626][T14151] loop2: rw=524288, sector=1056, nr_sectors = 16 limit=16
[ 1896.100032][ T9483] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1896.176217][T14151] erofs (device loop2): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1896.281479][T14151] erofs (device loop2): read error -117 @ 0 of nid 89
[ 1896.440395][   T30] audit: type=1800 audit(1780400987.551:693): pid=14151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.16362" name="file2" dev="loop2" ino=89 res=0 errno=0
[ 1896.488008][T14169] batadv_slave_1: entered promiscuous mode
[ 1896.543716][T14171] batadv_slave_1: left promiscuous mode
[ 1896.929928][T14179] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[ 1897.678454][T14198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16386'.
[ 1898.086442][T14208] netlink: 4 bytes leftover after parsing attributes in process `syz.6.16391'.
[ 1898.149299][T14208] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1898.220945][T14208] bridge_slave_1 (unregistering): left allmulticast mode
[ 1898.278628][T14208] bridge_slave_1 (unregistering): left promiscuous mode
[ 1898.313408][T14208] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1898.499070][T14220] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16396'.
[ 1898.616641][T14217] loop4: detected capacity change from 0 to 4096
[ 1899.936705][T14248] loop6: detected capacity change from 0 to 2048
[ 1900.138891][T14250] bond0: invalid ARP target 0.0.0.0 specified for addition
[ 1900.162842][T14257] loop7: detected capacity change from 0 to 256
[ 1900.196350][T14250] bond0: option arp_ip_target: invalid value (0)
[ 1900.249499][T14250] bond0 (unregistering): Released all slaves
[ 1900.316489][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4163.tmp-b7:6' failed: Read-only file system
[ 1900.384847][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/4154.tmp-b7:7' failed: Read-only file system
[ 1900.405918][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-label/LinuxUDF.tmp-b7:6' failed: Read-only file system
[ 1900.490282][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-uuid/1234567812345678.tmp-b7:6' failed: Read-only file system
[ 1900.520459][T14310] udevd[14310]: symlink '../../loop4' '/dev/disk/by-diskseq/4162.tmp-b7:4' failed: Read-only file system
[ 1900.608111][T14310] udevd[14310]: symlink '../../loop4' '/dev/disk/by-diskseq/4162.tmp-b7:4' failed: Read-only file system
[ 1900.639988][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/4164.tmp-b7:7' failed: Read-only file system
[ 1900.744169][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4163.tmp-b7:6' failed: Read-only file system
[ 1900.767569][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/4164.tmp-b7:7' failed: Read-only file system
[ 1900.867376][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4163.tmp-b7:6' failed: Read-only file system
[ 1901.744363][   T29] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[ 1901.944956][   T29] usb 5-1: Using ep0 maxpacket: 32
[ 1901.959227][   T29] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[ 1901.977630][T14286] lo speed is unknown, defaulting to 1000
[ 1901.978905][   T29] usb 5-1: config 0 has no interface number 0
[ 1902.026526][   T29] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1902.060081][   T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1902.087319][   T29] usb 5-1: Product: syz
[ 1902.095739][   T29] usb 5-1: Manufacturer: syz
[ 1902.107443][   T29] usb 5-1: SerialNumber: syz
[ 1902.166019][   T29] usb 5-1: config 0 descriptor??
[ 1902.204573][   T29] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1902.253809][ T1743] block nbd3: Receive control failed (result -32)
[ 1902.275260][ T1743] block nbd3: Receive control failed (result -32)
[ 1902.416286][   T29] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1902.459585][   T29] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1902.463552][T14271] loop7: detected capacity change from 0 to 32768
[ 1902.558911][T14271] XFS (loop7): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1902.711291][T14271] XFS (loop7): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50.
[ 1902.919079][T14271] XFS (loop7): Tail block (0x29) overwrite detected. Updated to 0x30
[ 1902.986767][T14271] XFS (loop7): Ending clean mount
[ 1903.111040][T14311] loop1: detected capacity change from 0 to 1024
[ 1903.127583][T14271] XFS (loop7): User initiated shutdown received.
[ 1903.146458][    C1] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1903.148285][T12792] usb 5-1: USB disconnect, device number 42
[ 1903.177805][T14271] XFS (loop7): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x139/0x1a0 (fs/xfs/xfs_fsops.c:465).  Shutting down filesystem.
[ 1903.226094][T14271] XFS (loop7): Please unmount the filesystem and rectify the problem(s)
[ 1903.289166][T14311] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1903.303086][T14311] ext4 filesystem being mounted at /520/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1903.351355][T12792] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1903.412376][T12792] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1903.490264][T12792] quatech2 5-1:0.51: device disconnected
[ 1903.521143][ T9529] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1903.708585][T14321] netlink: 28 bytes leftover after parsing attributes in process `syz.2.16435'.
[ 1903.903052][T11578] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm kworker/u8:10: bg 0: block 112: padding at end of block bitmap is not set
[ 1903.975839][T14325] loop7: detected capacity change from 0 to 1024
[ 1904.005925][T14325] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1904.076122][T14327] loop4: detected capacity change from 0 to 128
[ 1904.115672][T14327] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1904.139919][T11578] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 1 with error 28
[ 1904.156930][T11578] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1904.156930][T11578] 
[ 1904.180246][T11578] EXT4-fs (loop1): Total free blocks count 0
[ 1904.201907][T11578] EXT4-fs (loop1): Free/Dirty block details
[ 1904.212022][T11578] EXT4-fs (loop1): free_blocks=0
[ 1904.214382][T14327] hpfs: filesystem error: improperly stopped
[ 1904.231743][T11578] EXT4-fs (loop1): dirty_blocks=16
[ 1904.238654][T14327] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1904.316303][T11578] EXT4-fs (loop1): Block reservation details
[ 1904.326743][T14327] hpfs: You really don't want any checks? You are crazy...
[ 1904.358619][T14327] hpfs: hpfs_map_sector(): read error
[ 1904.359550][T11578] EXT4-fs (loop1): i_reserved_data_blocks=1
[ 1904.377888][T14327] hpfs: code page support is disabled
[ 1904.440129][ T5212] EXT4-fs warning (device loop1): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[ 1904.441211][T14327] hpfs: hpfs_map_4sectors(): unaligned read
[ 1904.498982][ T5212] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1904.509735][T14327] hpfs: hpfs_map_4sectors(): unaligned read
[ 1904.573786][T14327] hpfs: filesystem error: unable to find root dir
[ 1904.892806][T14342] netlink: 'syz.1.16438': attribute type 2 has an invalid length.
[ 1904.967831][T14342] netlink: 'syz.1.16438': attribute type 11 has an invalid length.
[ 1905.042833][T14342] netlink: 132 bytes leftover after parsing attributes in process `syz.1.16438'.
[ 1905.267315][T14348] dvmrp8: entered allmulticast mode
[ 1905.291212][ T3295] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1905.331567][ T3295] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1905.369874][ T3295] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1905.407518][ T3295] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1905.424029][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4160.tmp-b7:2' failed: Read-only file system
[ 1905.487622][ T5657] udevd[5657]: symlink '../../loop1' '/dev/disk/by-diskseq/4173.tmp-b7:1' failed: Read-only file system
[ 1905.583250][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4174.tmp-b7:4' failed: Read-only file system
[ 1905.636319][ T5657] udevd[5657]: symlink '../../loop7' '/dev/disk/by-diskseq/4172.tmp-b7:7' failed: Read-only file system
[ 1905.798389][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4173.tmp-b7:1' failed: Read-only file system
[ 1905.840033][ T5657] udevd[5657]: symlink '../../loop2' '/dev/disk/by-diskseq/4160.tmp-b7:2' failed: Read-only file system
[ 1905.924575][T12762] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[ 1905.980546][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4172.tmp-b7:7' failed: Read-only file system
[ 1906.091081][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4173.tmp-b7:1' failed: Read-only file system
[ 1906.119173][T12762] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1906.147850][T12762] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 64, changing to 7
[ 1906.182580][T12762] usb 5-1: New USB device found, idVendor=0582, idProduct=004c, bcdDevice= 0.40
[ 1906.200789][T12762] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1906.230528][T12762] usb 5-1: Product: syz
[ 1906.244803][T12762] usb 5-1: Manufacturer: syz
[ 1906.261618][T12762] usb 5-1: SerialNumber: syz
[ 1906.312402][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4173.tmp-b7:1' failed: Read-only file system
[ 1906.510225][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4141.tmp-b7:5' failed: Read-only file system
[ 1906.561097][T12762] usb 5-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1906.870372][T12755] hid-generic 0000:0000:0000.0075: unknown main item tag 0x0
[ 1906.908110][T14381] loop1: detected capacity change from 0 to 2048
[ 1906.911869][T12755] hid-generic 0000:0000:0000.0075: unknown main item tag 0x0
[ 1906.929311][T14381] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1906.998257][T14381] UDF-fs: error (device loop1): udf_verify_fi: directory (ino 1376) has entry where CRC length (0) does not match entry length (44)
[ 1907.018130][T12755] hid-generic 0000:0000:0000.0075: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1907.163325][T12762] usb 5-1: parse_audio_format_rates_v2v3(): unable to retrieve sample rate range (clock 0)
[ 1907.430650][T14386] fido_id[14386]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1907.533684][T12762] usb 5-1: USB disconnect, device number 43
[ 1908.972033][T14416] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16477'.
[ 1909.022323][T14416] erspan0: entered promiscuous mode
[ 1909.062100][T14416] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16477'.
[ 1909.968927][T14449] loop4: detected capacity change from 0 to 128
[ 1910.054543][T12766] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[ 1910.235297][T12766] usb 2-1: Using ep0 maxpacket: 8
[ 1910.258106][T12766] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1910.302303][T12766] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1910.321363][T14456] loop5: detected capacity change from 0 to 512
[ 1910.353801][T12766] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1910.373911][T14456] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[ 1910.390563][T12766] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1910.413528][T14456] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1910.443345][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4177.tmp-b7:4' failed: Read-only file system
[ 1910.470669][T14461] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.16497'.
[ 1910.473661][T14456] EXT4-fs warning (device loop5): ext4_enable_quotas:7265: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 1910.509991][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4178.tmp-b7:5' failed: Read-only file system
[ 1910.516152][T12766] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1910.562923][ T5657] udevd[5657]: symlink '../../loop4' '/dev/disk/by-diskseq/4177.tmp-b7:4' failed: Read-only file system
[ 1910.583770][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[ 1910.595943][T12766] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1910.628625][T14456] EXT4-fs (loop5): Cannot turn on quotas: error -22
[ 1910.661139][T14463] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16498'.
[ 1910.663826][T14456] EXT4-fs error (device loop5): ext4_ext_check_inode:521: inode #13: comm syz.5.16495: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[ 1910.718641][ T5943] udevd[5943]: symlink '../../loop2' '/dev/disk/by-diskseq/4160.tmp-b7:2' failed: Read-only file system
[ 1910.718735][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4179.tmp-b7:4' failed: Read-only file system
[ 1910.747064][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-diskseq/4166.tmp-b7:6' failed: Read-only file system
[ 1910.767754][T14456] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1910.768280][T14456] EXT4-fs error (device loop5): ext4_orphan_get:1400: comm syz.5.16495: couldn't read orphan inode 13 (err -117)
[ 1910.777550][    C0] EXT4-fs (loop5): error count since last fsck: 1
[ 1910.777584][    C0] EXT4-fs (loop5): last error at time 1780401001: ext4_ext_check_inode:521: inode 13
[ 1910.831549][T14456] loop5: lost filesystem error report for type 5 error -117
[ 1910.850269][T14456] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1910.880433][T12766] usb 2-1: GET_CAPABILITIES returned 0
[ 1910.886163][T12766] usbtmc 2-1:16.0: can't read capabilities
[ 1910.959992][T14456] EXT4-fs (loop5): shut down requested (0)
[ 1911.030336][ T5642] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1911.108497][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4160.tmp-b7:2' failed: Read-only file system
[ 1911.155595][T12766] usb 2-1: USB disconnect, device number 36
[ 1911.201816][ T5636] udevd[5636]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[ 1911.253140][ T5636] udevd[5636]: symlink '../../loop5' '/dev/disk/by-diskseq/4178.tmp-b7:5' failed: Read-only file system
[ 1911.820644][T14487] loop4: detected capacity change from 0 to 256
[ 1911.863165][T14487] FAT-fs (loop4): unable to read block(805306368) for building NFS inode
[ 1911.939827][T14491] netlink: 'syz.5.16511': attribute type 4 has an invalid length.
[ 1912.448947][T14508] loop2: detected capacity change from 0 to 512
[ 1912.458162][T14508] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1912.486101][T14508] EXT4-fs (loop2): 1 truncate cleaned up
[ 1912.530559][T14508] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1912.680445][ T7703] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1912.728618][T14514] netlink: 'syz.4.16521': attribute type 4 has an invalid length.
[ 1912.738262][T14514] netlink: 'syz.4.16521': attribute type 1 has an invalid length.
[ 1912.758416][T14514] netlink: 'syz.4.16521': attribute type 3 has an invalid length.
[ 1912.786045][T14514] netlink: 184 bytes leftover after parsing attributes in process `syz.4.16521'.
[ 1912.806713][T14514] NCSI netlink: No device for ifindex 830110067
[ 1912.825587][T13746] Bluetooth: hci6: command 0x1003 tx timeout
[ 1912.840373][ T1743] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 1913.139704][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[ 1913.613830][T14534] loop4: detected capacity change from 0 to 128
[ 1913.661944][T14534] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1913.984140][T14544] loop2: detected capacity change from 0 to 512
[ 1914.068026][T14544] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1914.153625][T14546] overlayfs: invalid origin (0000006f7665726c61790000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[ 1914.256673][T14544] EXT4-fs warning (device loop2): ext4_begin_enable_verity:134: inode #15: comm syz.2.16533: verity is only allowed on extent-based files
[ 1914.518376][ T7703] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1914.542082][T14558] netlink: 24 bytes leftover after parsing attributes in process `syz.4.16540'.
[ 1914.757201][T14563] veth0_vlan: left promiscuous mode
[ 1915.238277][T14579] netlink: 4 bytes leftover after parsing attributes in process `syz.7.16549'.
[ 1915.280740][T14580] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16551'.
[ 1915.287372][T12755] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[ 1915.308670][T14579] bridge_slave_1 (unregistering): left promiscuous mode
[ 1915.354711][T14579] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1915.499482][T12755] usb 5-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1915.531616][T12755] usb 5-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[ 1915.558859][T12755] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1915.610755][T12755] gspca_main: stv0680-2.14.0 probing 041e:4007
[ 1915.762231][T14590] loop2: detected capacity change from 0 to 256
[ 1915.890072][ T5657] udevd[5657]: symlink '../../loop1' '/dev/disk/by-diskseq/4176.tmp-b7:1' failed: Read-only file system
[ 1915.905396][T14590] FAT-fs (loop2): Directory bread(block 64) failed
[ 1915.909203][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4172.tmp-b7:7' failed: Read-only file system
[ 1915.925541][ T8973] udevd[8973]: symlink '../../loop6' '/dev/disk/by-diskseq/4166.tmp-b7:6' failed: Read-only file system
[ 1915.934010][T14590] FAT-fs (loop2): Directory bread(block 65) failed
[ 1915.948653][ T5943] udevd[5943]: symlink '../../loop5' '/dev/disk/by-diskseq/4180.tmp-b7:5' failed: Read-only file system
[ 1915.987894][T14590] FAT-fs (loop2): Directory bread(block 66) failed
[ 1915.995383][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4188.tmp-b7:2' failed: Read-only file system
[ 1916.029961][T14590] FAT-fs (loop2): Directory bread(block 67) failed
[ 1916.061471][T14590] FAT-fs (loop2): Directory bread(block 68) failed
[ 1916.096980][T14590] FAT-fs (loop2): Directory bread(block 69) failed
[ 1916.106607][ T5657] udevd[5657]: symlink '../../loop6' '/dev/disk/by-diskseq/4166.tmp-b7:6' failed: Read-only file system
[ 1916.140992][T14590] FAT-fs (loop2): Directory bread(block 70) failed
[ 1916.170837][T14590] FAT-fs (loop2): Directory bread(block 71) failed
[ 1916.206210][T14590] FAT-fs (loop2): Directory bread(block 72) failed
[ 1916.215527][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4172.tmp-b7:7' failed: Read-only file system
[ 1916.226994][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4189.tmp-b7:2' failed: Read-only file system
[ 1916.243678][T14600] loop5: detected capacity change from 0 to 1024
[ 1916.250234][T14590] FAT-fs (loop2): Directory bread(block 73) failed
[ 1916.306762][T14600] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1916.428493][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4166.tmp-b7:6' failed: Read-only file system
[ 1916.436052][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4190.tmp-b7:5' failed: Read-only file system
[ 1916.555075][   T30] audit: type=1804 audit(1780401007.661:694): pid=14608 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.16560" name="/newroot/2840/file1/file1" dev="loop5" ino=18 res=1 errno=0
[ 1916.738112][T12755] stv0680 5-1:4.0: Could not get descriptor 0200
[ 1916.770352][ T5642] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1916.943076][T12755] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[ 1916.959381][T12755] stv0680 5-1:4.0: last error: 34,  command = 0x23
[ 1916.972737][T12755] usb 5-1: USB disconnect, device number 44
[ 1917.085060][ T5786] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[ 1917.265121][ T5786] usb 3-1: Using ep0 maxpacket: 8
[ 1917.277759][ T5786] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[ 1917.296598][ T5786] usb 3-1: config 179 has no interface number 0
[ 1917.312676][ T5786] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1917.337334][ T5786] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1917.362644][ T5786] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1917.392501][ T5786] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1917.427764][ T5786] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1917.454079][ T5786] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1917.464864][ T5786] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1917.481407][T14617] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[ 1917.604203][T14631] loop1: detected capacity change from 0 to 128
[ 1917.633678][T14631] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[ 1917.701246][   T30] audit: type=1800 audit(1780401008.811:695): pid=14631 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.16572" name="file1" dev="loop1" ino=94 res=0 errno=0
[ 1917.905920][T14617] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1917.920804][T14617] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1918.186790][T12788] usb 3-1: USB disconnect, device number 43
[ 1918.186793][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1918.186853][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1919.066386][T14662] netlink: 48 bytes leftover after parsing attributes in process `syz.2.16585'.
[ 1919.267578][T14666] netlink: 4 bytes leftover after parsing attributes in process `syz.7.16587'.
[ 1919.389487][T14669] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.16589'.
[ 1919.443145][ T5477] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1920.194457][T14688] nbd4: detected capacity change from 0 to 127
[ 1920.220880][ T5649] block nbd4: Receive control failed (result -32)
[ 1920.330805][ T5657] block nbd4: Dead connection, failed to find a fallback
[ 1920.389570][ T5657] block nbd4: shutting down sockets
[ 1920.453249][ T5657] blk_print_req_error: 25 callbacks suppressed
[ 1920.453277][ T5657] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1920.615821][ T5657] buffer_io_error: 25 callbacks suppressed
[ 1920.615847][ T5657] Buffer I/O error on dev nbd4, logical block 0, async page read
[ 1920.661910][T14704] loop2: detected capacity change from 0 to 8
[ 1920.677682][ T5657] I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1920.679595][T14702] IPVS: wrr: SCTP 172.20.20.187:0 - no destination available
[ 1920.728772][ T5657] Buffer I/O error on dev nbd4, logical block 1, async page read
[ 1920.776837][T14704] SQUASHFS error: Unable to read inode 0x24
[ 1920.791719][ T5657] I/O error, dev nbd4, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1920.874154][ T5657] Buffer I/O error on dev nbd4, logical block 2, async page read
[ 1920.910251][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4172.tmp-b7:7' failed: Read-only file system
[ 1920.933409][ T5657] I/O error, dev nbd4, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1920.976594][ T5657] Buffer I/O error on dev nbd4, logical block 3, async page read
[ 1921.008843][ T5657] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1921.031200][T14707] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1921.036043][ T5657] Buffer I/O error on dev nbd4, logical block 0, async page read
[ 1921.082888][T14707] bridge_slave_0: left allmulticast mode
[ 1921.096787][ T5657] I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1921.110461][T14707] bridge_slave_0: left promiscuous mode
[ 1921.137804][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4195.tmp-b7:2' failed: Read-only file system
[ 1921.146543][ T5657] Buffer I/O error on dev nbd4, logical block 1, async page read
[ 1921.163258][T14707] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1921.188630][ T5657] I/O error, dev nbd4, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1921.236318][ T5657] Buffer I/O error on dev nbd4, logical block 2, async page read
[ 1921.278990][ T5657] I/O error, dev nbd4, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1921.279102][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4195.tmp-b7:2' failed: Read-only file system
[ 1921.294176][T14717] netlink: 52 bytes leftover after parsing attributes in process `syz.1.16610'.
[ 1921.313121][ T5943] udevd[5943]: symlink '../../loop5' '/dev/disk/by-diskseq/4192.tmp-b7:5' failed: Read-only file system
[ 1921.328517][T14310] udevd[14310]: symlink '../../loop1' '/dev/disk/by-diskseq/4194.tmp-b7:1' failed: Read-only file system
[ 1921.343707][ T5657] Buffer I/O error on dev nbd4, logical block 3, async page read
[ 1921.358854][T14719] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16609'.
[ 1921.369654][ T5657] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1921.369704][ T5657] Buffer I/O error on dev nbd4, logical block 0, async page read
[ 1921.369873][ T5657] I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1921.369917][ T5657] Buffer I/O error on dev nbd4, logical block 1, async page read
[ 1921.472803][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4196.tmp-b7:2' failed: Read-only file system
[ 1921.497304][ T5657] ldm_validate_partition_table(): Disk read failed.
[ 1921.540413][ T5657] Dev nbd4: unable to read RDB block 0
[ 1921.558949][T14310] udevd[14310]: symlink '../../loop7' '/dev/disk/by-diskseq/4172.tmp-b7:7' failed: Read-only file system
[ 1921.582765][ T5657]  nbd4: unable to read partition table
[ 1921.640108][ T5657] ldm_validate_partition_table(): Disk read failed.
[ 1921.654077][ T5657] Dev nbd4: unable to read RDB block 0
[ 1921.704197][ T5657]  nbd4: unable to read partition table
[ 1921.774035][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4194.tmp-b7:1' failed: Read-only file system
[ 1921.848003][T14310] udevd[14310]: symlink '../../loop5' '/dev/disk/by-diskseq/4192.tmp-b7:5' failed: Read-only file system
[ 1921.929865][ T5636] udevd[5636]: symlink '../../loop2' '/dev/disk/by-diskseq/4196.tmp-b7:2' failed: Read-only file system
[ 1922.073331][ T5657] ldm_validate_partition_table(): Disk read failed.
[ 1922.113463][ T5657] Dev nbd4: unable to read RDB block 0
[ 1922.153715][ T5657]  nbd4: unable to read partition table
[ 1922.155580][T14696] loop6: detected capacity change from 0 to 32768
[ 1922.213905][T14730] netlink: 68 bytes leftover after parsing attributes in process `syz.4.16616'.
[ 1922.239321][ T5657] ldm_validate_partition_table(): Disk read failed.
[ 1922.284042][ T5657] Dev nbd4: unable to read RDB block 0
[ 1922.331620][ T5657]  nbd4: unable to read partition table
[ 1922.368320][   T30] audit: type=1800 audit(1780401013.481:696): pid=14696 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.16602" name="file1" dev="loop6" ino=4 res=0 errno=0
[ 1923.061420][T14721] Set syz1 is full, maxelem 6117 reached
[ 1923.665551][T14759] netlink: 36 bytes leftover after parsing attributes in process `syz.2.16627'.
[ 1923.806595][T14761] loop7: detected capacity change from 0 to 2048
[ 1923.820389][T14761] EXT4-fs: Ignoring removed i_version option
[ 1923.840410][   T30] audit: type=1326 audit(1780401014.951:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14742 comm="syz.4.16623" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f108219ce59 code=0x7fc00000
[ 1923.912056][T14761] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 1924.010259][T14761] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1924.088695][   T30] audit: type=1800 audit(1780401015.201:698): pid=14761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.16629" name="file0" dev="loop7" ino=13 res=0 errno=0
[ 1924.146814][ T9529] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1924.219192][T14769] loop2: detected capacity change from 0 to 256
[ 1924.262701][T14769] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x39601bbf, utbl_chksum : 0xe619d30d)
[ 1924.437074][T14769] exFAT-fs (loop2): start_clu is invalid cluster(0xffffffff)
[ 1924.495519][ T1743] Bluetooth: hci6: command 0x1003 tx timeout
[ 1924.499296][ T5649] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 1925.033880][T14789] batadv_slave_1: entered promiscuous mode
[ 1925.096561][T14787] batadv_slave_1: left promiscuous mode
[ 1925.423724][T14797] vxlan1: entered promiscuous mode
[ 1925.446775][T14797] vxlan1: entered allmulticast mode
[ 1925.812201][ T5649] Bluetooth: hci1: Malformed LE Event: 0x0d
[ 1925.978541][ T5636] udevd[5636]: symlink '../../loop6' '/dev/disk/by-diskseq/4198.tmp-b7:6' failed: Read-only file system
[ 1926.011626][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4192.tmp-b7:5' failed: Read-only file system
[ 1926.151467][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4201.tmp-b7:7' failed: Read-only file system
[ 1926.213349][ T5636] udevd[5636]: symlink '../../loop4' '/dev/disk/by-diskseq/4187.tmp-b7:4' failed: Read-only file system
[ 1926.269629][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4192.tmp-b7:5' failed: Read-only file system
[ 1926.303176][T14827] input input104: cannot allocate more than FF_MAX_EFFECTS effects
[ 1926.374182][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4201.tmp-b7:7' failed: Read-only file system
[ 1926.512636][ T5636] udevd[5636]: symlink '../../loop1' '/dev/disk/by-diskseq/4194.tmp-b7:1' failed: Read-only file system
[ 1926.619562][ T5657] udevd[5657]: symlink '../../loop5' '/dev/disk/by-diskseq/4192.tmp-b7:5' failed: Read-only file system
[ 1926.633377][T14310] udevd[14310]: symlink '../../loop2' '/dev/disk/by-diskseq/4202.tmp-b7:2' failed: Read-only file system
[ 1926.834913][ T5636] udevd[5636]: symlink '../../loop7' '/dev/disk/by-diskseq/4201.tmp-b7:7' failed: Read-only file system
[ 1927.146209][T14847] loop1: detected capacity change from 0 to 64
[ 1927.297491][T14847] gfs2: path_lookup on c::: returned error -2
[ 1928.636541][T14877] 
[ 1928.638897][T14877] ======================================================
[ 1928.645917][T14877] WARNING: possible circular locking dependency detected
[ 1928.652936][T14877] syzkaller #0 Tainted: G             L     
[ 1928.658918][T14877] ------------------------------------------------------
[ 1928.665929][T14877] syz.7.16680/14877 is trying to acquire lock:
[ 1928.672080][T14877] ffffffff8e9b0f20 (fs_reclaim){+.+.}-{0:0}, at: prepare_alloc_pages+0x166/0x5f0
[ 1928.681296][T14877] 
[ 1928.681296][T14877] but task is already holding lock:
[ 1928.688656][T14877] ffff888038181bb8 (&mm->mmap_lock){++++}-{4:4}, at: lock_mm_and_find_vma+0x35/0x6f0
[ 1928.698205][T14877] 
[ 1928.698205][T14877] which lock already depends on the new lock.
[ 1928.698205][T14877] 
[ 1928.708605][T14877] 
[ 1928.708605][T14877] the existing dependency chain (in reverse order) is:
[ 1928.717615][T14877] 
[ 1928.717615][T14877] -> #7 (&mm->mmap_lock){++++}-{4:4}:
[ 1928.724489][T14885] loop1: detected capacity change from 0 to 1024
[ 1928.725211][T14877]        __might_fault+0xde/0x140
[ 1928.736539][T14877]        _copy_from_iter+0x118/0x1690
[ 1928.741944][T14877]        tcp_sendmsg_locked+0xcab/0x4500
[ 1928.747704][T14877]        tcp_sendmsg+0x2e/0x50
[ 1928.752488][T14877]        inet_sendmsg+0xb9/0x140
[ 1928.757537][T14877]        sock_write_iter+0x4ea/0x5a0
[ 1928.762918][T14877]        vfs_write+0x6ac/0x1070
[ 1928.767822][T14877]        ksys_write+0x1f8/0x250
[ 1928.772695][T14877]        do_syscall_64+0x115/0x870
[ 1928.777833][T14877]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1928.784258][T14877] 
[ 1928.784258][T14877] -> #6 (sk_lock-AF_INET){+.+.}-{0:0}:
[ 1928.791938][T14877]        lock_sock_nested+0x41/0xf0
[ 1928.797206][T14877]        inet_shutdown+0x67/0x410
[ 1928.802254][T14877]        nbd_mark_nsock_dead+0xae/0x5c0
[ 1928.807918][T14877]        sock_shutdown+0x16b/0x200
[ 1928.813053][T14877]        nbd_config_put+0x1eb/0x750
[ 1928.818277][T14877]        nbd_release+0xb7/0x190
[ 1928.823153][T14877]        blkdev_put_whole+0xb0/0xf0
[ 1928.828370][T14877]        bdev_release+0x47f/0x6d0
[ 1928.833415][T14877]        blkdev_release+0x15/0x20
[ 1928.838462][T14877]        __fput+0x3ff/0xb50
[ 1928.842975][T14877]        task_work_run+0x150/0x240
[ 1928.848098][T14877]        exit_to_user_mode_loop+0x157/0x670
[ 1928.854003][T14877]        do_syscall_64+0x666/0x870
[ 1928.859137][T14877]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1928.865560][T14877] 
[ 1928.865560][T14877] -> #5 (&nsock->tx_lock){+.+.}-{4:4}:
[ 1928.873228][T14877]        __mutex_lock+0x1a4/0x1b10
[ 1928.878365][T14877]        nbd_queue_rq+0x428/0x1080
[ 1928.883479][T14877]        blk_mq_dispatch_rq_list+0x422/0x1e70
[ 1928.889656][T14877]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[ 1928.896564][T14877]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[ 1928.903088][T14877]        blk_mq_run_hw_queue+0x23c/0x670
[ 1928.908742][T14877]        blk_mq_dispatch_list+0x51d/0x1360
[ 1928.914573][T14877]        blk_mq_flush_plug_list+0x130/0x600
[ 1928.920492][T14877]        __blk_flush_plug+0x2c4/0x4b0
[ 1928.925916][T14877]        __submit_bio+0x584/0x6c0
[ 1928.930964][T14877]        submit_bio_noacct_nocheck+0x543/0xbf0
[ 1928.937145][T14877]        submit_bio_noacct+0xd18/0x2000
[ 1928.942716][T14877]        submit_bh_wbc+0x681/0x890
[ 1928.947867][T14877]        block_read_full_folio+0x264/0x8e0
[ 1928.953697][T14877]        filemap_read_folio+0xfc/0x3b0
[ 1928.959178][T14877]        do_read_cache_folio+0x2d7/0x6b0
[ 1928.964830][T14877]        read_part_sector+0xd1/0x370
[ 1928.970182][T14877]        adfspart_check_ICS+0x91/0x7d0
[ 1928.975661][T14877]        bdev_disk_changed+0x7a3/0x1250
[ 1928.981241][T14877]        blkdev_get_whole+0x187/0x290
[ 1928.986630][T14877]        bdev_open+0x2c7/0xe40
[ 1928.991417][T14877]        blkdev_open+0x34e/0x4f0
[ 1928.996379][T14877]        do_dentry_open+0x6ab/0x14d0
[ 1929.001689][T14877]        vfs_open+0x82/0x3f0
[ 1929.006285][T14877]        path_openat+0x208c/0x31a0
[ 1929.011398][T14877]        do_file_open+0x20e/0x430
[ 1929.016443][T14877]        do_sys_openat2+0x10d/0x1e0
[ 1929.021650][T14877]        __x64_sys_openat+0x12d/0x210
[ 1929.027030][T14877]        do_syscall_64+0x115/0x870
[ 1929.032163][T14877]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1929.038589][T14877] 
[ 1929.038589][T14877] -> #4 (&cmd->lock){+.+.}-{4:4}:
[ 1929.045850][T14877]        __mutex_lock+0x1a4/0x1b10
[ 1929.050989][T14877]        nbd_queue_rq+0xba/0x1080
[ 1929.056025][T14877]        blk_mq_dispatch_rq_list+0x422/0x1e70
[ 1929.062122][T14877]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[ 1929.069000][T14877]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[ 1929.075529][T14877]        blk_mq_run_hw_queue+0x23c/0x670
[ 1929.081183][T14877]        blk_mq_dispatch_list+0x51d/0x1360
[ 1929.087020][T14877]        blk_mq_flush_plug_list+0x130/0x600
[ 1929.092942][T14877]        __blk_flush_plug+0x2c4/0x4b0
[ 1929.098339][T14877]        __submit_bio+0x584/0x6c0
[ 1929.103385][T14877]        submit_bio_noacct_nocheck+0x543/0xbf0
[ 1929.109565][T14877]        submit_bio_noacct+0xd18/0x2000
[ 1929.115136][T14877]        submit_bh_wbc+0x681/0x890
[ 1929.120269][T14877]        block_read_full_folio+0x264/0x8e0
[ 1929.126103][T14877]        filemap_read_folio+0xfc/0x3b0
[ 1929.131578][T14877]        do_read_cache_folio+0x2d7/0x6b0
[ 1929.137231][T14877]        read_part_sector+0xd1/0x370
[ 1929.142535][T14877]        adfspart_check_ICS+0x91/0x7d0
[ 1929.148012][T14877]        bdev_disk_changed+0x7a3/0x1250
[ 1929.153577][T14877]        blkdev_get_whole+0x187/0x290
[ 1929.158965][T14877]        bdev_open+0x2c7/0xe40
[ 1929.163746][T14877]        blkdev_open+0x34e/0x4f0
[ 1929.168706][T14877]        do_dentry_open+0x6ab/0x14d0
[ 1929.174015][T14877]        vfs_open+0x82/0x3f0
[ 1929.178612][T14877]        path_openat+0x208c/0x31a0
[ 1929.183726][T14877]        do_file_open+0x20e/0x430
[ 1929.188752][T14877]        do_sys_openat2+0x10d/0x1e0
[ 1929.193963][T14877]        __x64_sys_openat+0x12d/0x210
[ 1929.199347][T14877]        do_syscall_64+0x115/0x870
[ 1929.204480][T14877]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1929.210899][T14877] 
[ 1929.210899][T14877] -> #3 (set->srcu){.+.+}-{0:0}:
[ 1929.218043][T14877]        __synchronize_srcu+0xa2/0x300
[ 1929.223511][T14877]        blk_mq_quiesce_queue+0x149/0x1c0
[ 1929.229243][T14877]        elevator_switch+0x17b/0x7e0
[ 1929.234541][T14877]        elevator_change+0x352/0x530
[ 1929.239840][T14877]        elevator_set_default+0x29e/0x360
[ 1929.245606][T14877]        blk_register_queue+0x48e/0x630
[ 1929.251163][T14877]        __add_disk+0x73f/0xe40
[ 1929.256021][T14877]        add_disk_fwnode+0x118/0x5c0
[ 1929.261311][T14877]        nbd_dev_add+0x77a/0xb10
[ 1929.266272][T14877]        nbd_init+0x291/0x2b0
[ 1929.271046][T14877]        do_one_initcall+0x121/0x750
[ 1929.276346][T14877]        kernel_init_freeable+0x6ea/0x7b0
[ 1929.282082][T14877]        kernel_init+0x1f/0x1e0
[ 1929.286937][T14877]        ret_from_fork+0x72b/0xd50
[ 1929.292057][T14877]        ret_from_fork_asm+0x1a/0x30
[ 1929.297357][T14877] 
[ 1929.297357][T14877] -> #2 (&q->elevator_lock){+.+.}-{4:4}:
[ 1929.305205][T14877]        __mutex_lock+0x1a4/0x1b10
[ 1929.310398][T14877]        elevator_change+0x1bc/0x530
[ 1929.315699][T14877]        elevator_set_none+0x92/0xf0
[ 1929.321005][T14877]        blk_mq_update_nr_hw_queues+0x4c1/0x15f0
[ 1929.327333][T14877]        nbd_start_device+0x1a6/0xbd0
[ 1929.332709][T14877]        nbd_genl_connect+0xff2/0x1a40
[ 1929.338171][T14877]        genl_family_rcv_msg_doit+0x214/0x300
[ 1929.344328][T14877]        genl_rcv_msg+0x560/0x800
[ 1929.349375][T14877]        netlink_rcv_skb+0x159/0x420
[ 1929.354676][T14877]        genl_rcv+0x28/0x40
[ 1929.359213][T14877]        netlink_unicast+0x585/0x850
[ 1929.364512][T14877]        netlink_sendmsg+0x8b0/0xda0
[ 1929.369819][T14877]        ____sys_sendmsg+0x9e1/0xb70
[ 1929.375117][T14877]        ___sys_sendmsg+0x190/0x1e0
[ 1929.380335][T14877]        __sys_sendmsg+0x170/0x220
[ 1929.385445][T14877]        do_syscall_64+0x115/0x870
[ 1929.390575][T14877]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1929.396997][T14877] 
[ 1929.396997][T14877] -> #1 (&q->q_usage_counter(io)#52){++++}-{0:0}:
[ 1929.405629][T14877]        blk_alloc_queue+0x610/0x790
[ 1929.410937][T14877]        blk_mq_alloc_queue+0x174/0x290
[ 1929.416484][T14877]        __blk_mq_alloc_disk+0x29/0x120
[ 1929.422031][T14877]        nbd_dev_add+0x492/0xb10
[ 1929.426991][T14877]        nbd_init+0x291/0x2b0
[ 1929.431689][T14877]        do_one_initcall+0x121/0x750
[ 1929.436991][T14877]        kernel_init_freeable+0x6ea/0x7b0
[ 1929.442710][T14877]        kernel_init+0x1f/0x1e0
[ 1929.447570][T14877]        ret_from_fork+0x72b/0xd50
[ 1929.452688][T14877]        ret_from_fork_asm+0x1a/0x30
[ 1929.457991][T14877] 
[ 1929.457991][T14877] -> #0 (fs_reclaim){+.+.}-{0:0}:
[ 1929.465220][T14877]        __lock_acquire+0x14b8/0x2630
[ 1929.470599][T14877]        lock_acquire+0x1b1/0x370
[ 1929.475626][T14877]        fs_reclaim_acquire+0xc4/0x100
[ 1929.481114][T14877]        prepare_alloc_pages+0x166/0x5f0
[ 1929.486771][T14877]        __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1929.493201][T14877]        alloc_pages_mpol+0x1fb/0x540
[ 1929.498631][T14877]        folio_alloc_mpol_noprof+0x36/0x260
[ 1929.504528][T14877]        vma_alloc_folio_noprof+0xed/0x1d0
[ 1929.510339][T14877]        do_anonymous_page+0xb46/0x2050
[ 1929.515892][T14877]        __handle_mm_fault+0x1d2c/0x2a00
[ 1929.521530][T14877]        handle_mm_fault+0x37b/0xa30
[ 1929.526818][T14877]        do_user_addr_fault+0x74c/0x12f0
[ 1929.532485][T14877]        exc_page_fault+0x6f/0xd0
[ 1929.537526][T14877]        asm_exc_page_fault+0x26/0x30
[ 1929.542900][T14877]        _copy_to_user+0x9f/0xd0
[ 1929.547852][T14877]        __vb2_perform_fileio+0x397/0x1380
[ 1929.553719][T14877]        vb2_fop_read+0x211/0x520
[ 1929.558772][T14877]        v4l2_read+0x229/0x2c0
[ 1929.563614][T14877]        vfs_read+0x1e4/0xb30
[ 1929.568306][T14877]        ksys_read+0x12a/0x250
[ 1929.573091][T14877]        do_syscall_64+0x115/0x870
[ 1929.578224][T14877]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1929.584645][T14877] 
[ 1929.584645][T14877] other info that might help us debug this:
[ 1929.584645][T14877] 
[ 1929.594864][T14877] Chain exists of:
[ 1929.594864][T14877]   fs_reclaim --> sk_lock-AF_INET --> &mm->mmap_lock
[ 1929.594864][T14877] 
[ 1929.607408][T14877]  Possible unsafe locking scenario:
[ 1929.607408][T14877] 
[ 1929.614843][T14877]        CPU0                    CPU1
[ 1929.620193][T14877]        ----                    ----
[ 1929.625550][T14877]   rlock(&mm->mmap_lock);
[ 1929.630066][T14877]                                lock(sk_lock-AF_INET);
[ 1929.637006][T14877]                                lock(&mm->mmap_lock);
[ 1929.643876][T14877]   lock(fs_reclaim);
[ 1929.647870][T14877] 
[ 1929.647870][T14877]  *** DEADLOCK ***
[ 1929.647870][T14877] 
[ 1929.656002][T14877] 2 locks held by syz.7.16680/14877:
[ 1929.661278][T14877]  #0: ffff88802e695e10 (&dev->mutex#3){+.+.}-{4:4}, at: vb2_fop_read+0xe5/0x520
[ 1929.670504][T14877]  #1: ffff888038181bb8 (&mm->mmap_lock){++++}-{4:4}, at: lock_mm_and_find_vma+0x35/0x6f0
[ 1929.680471][T14877] 
[ 1929.680471][T14877] stack backtrace:
[ 1929.686357][T14877] CPU: 0 UID: 0 PID: 14877 Comm: syz.7.16680 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1929.686410][T14877] Tainted: [L]=SOFTLOCKUP
[ 1929.686423][T14877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1929.686446][T14877] Call Trace:
[ 1929.686457][T14877]  <TASK>
[ 1929.686471][T14877]  dump_stack_lvl+0x100/0x190
[ 1929.686509][T14877]  print_circular_bug.cold+0x178/0x1c7
[ 1929.686573][T14877]  check_noncircular+0x146/0x160
[ 1929.686619][T14877]  __lock_acquire+0x14b8/0x2630
[ 1929.686669][T14877]  lock_acquire+0x1b1/0x370
[ 1929.686712][T14877]  ? prepare_alloc_pages+0x166/0x5f0
[ 1929.686774][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.686819][T14877]  ? __lock_acquire+0x4a5/0x2630
[ 1929.686863][T14877]  fs_reclaim_acquire+0xc4/0x100
[ 1929.686919][T14877]  ? prepare_alloc_pages+0x166/0x5f0
[ 1929.686977][T14877]  prepare_alloc_pages+0x166/0x5f0
[ 1929.687041][T14877]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1929.687093][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687138][T14877]  ? __lock_acquire+0x4a5/0x2630
[ 1929.687181][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687225][T14877]  ? __lock_acquire+0x4a5/0x2630
[ 1929.687266][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687311][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687357][T14877]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1929.687409][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687454][T14877]  ? do_raw_spin_lock+0x128/0x260
[ 1929.687503][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687551][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687595][T14877]  ? __lock_acquire+0x4a5/0x2630
[ 1929.687636][T14877]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1929.687688][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687740][T14877]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1929.687783][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.687828][T14877]  ? policy_nodemask+0xed/0x4f0
[ 1929.687886][T14877]  alloc_pages_mpol+0x1fb/0x540
[ 1929.687943][T14877]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1929.687997][T14877]  ? do_raw_spin_lock+0x128/0x260
[ 1929.688047][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.688092][T14877]  ? __lock_acquire+0x4a5/0x2630
[ 1929.688135][T14877]  folio_alloc_mpol_noprof+0x36/0x260
[ 1929.688173][T14877]  vma_alloc_folio_noprof+0xed/0x1d0
[ 1929.688210][T14877]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1929.688284][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.688330][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.688377][T14877]  do_anonymous_page+0xb46/0x2050
[ 1929.688419][T14877]  ? rcu_read_unlock+0x2d/0xb0
[ 1929.688460][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.688510][T14877]  __handle_mm_fault+0x1d2c/0x2a00
[ 1929.688554][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.688597][T14877]  ? mt_find+0x45e/0x8e0
[ 1929.688654][T14877]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1929.688693][T14877]  ? __pfx_mt_find+0x10/0x10
[ 1929.688774][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.688818][T14877]  ? find_vma+0xbf/0x140
[ 1929.688868][T14877]  ? __pfx_find_vma+0x10/0x10
[ 1929.688922][T14877]  handle_mm_fault+0x37b/0xa30
[ 1929.688976][T14877]  do_user_addr_fault+0x74c/0x12f0
[ 1929.689026][T14877]  ? trace_page_fault_kernel+0x7a/0x200
[ 1929.689072][T14877]  exc_page_fault+0x6f/0xd0
[ 1929.689124][T14877]  asm_exc_page_fault+0x26/0x30
[ 1929.689159][T14877] RIP: 0010:_copy_to_user+0x9f/0xd0
[ 1929.689209][T14877] Code: 89 ee 48 89 ef e8 e1 79 10 fd 4d 85 ff 75 26 e8 b7 7f 10 fd 89 de 4c 89 e7 e8 dd 73 7d fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb e8 91 7f 10 fd 48 89 d8 5b 5d 41
[ 1929.689245][T14877] RSP: 0018:ffffc90003ad7b58 EFLAGS: 00050246
[ 1929.689273][T14877] RAX: 0000000000000001 RBX: 0000000000008000 RCX: 0000000000008000
[ 1929.689296][T14877] RDX: 0000000000000001 RSI: ffffc900039d8000 RDI: 0000200000008180
[ 1929.689319][T14877] RBP: 0000200000008180 R08: 0000000000000000 R09: fffff5200073bfff
[ 1929.689342][T14877] R10: ffffc900039dffff R11: 0000000000000000 R12: ffffc900039d8000
[ 1929.689366][T14877] R13: 0000200000010180 R14: 00007ffffffff000 R15: 0000000000000000
[ 1929.689401][T14877]  ? _copy_to_user+0x93/0xd0
[ 1929.689450][T14877]  __vb2_perform_fileio+0x397/0x1380
[ 1929.689498][T14877]  ? __pfx___vb2_perform_fileio+0x10/0x10
[ 1929.689537][T14877]  ? __pfx___might_resched+0x10/0x10
[ 1929.689584][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.689635][T14877]  vb2_fop_read+0x211/0x520
[ 1929.689697][T14877]  v4l2_read+0x229/0x2c0
[ 1929.689764][T14877]  ? __pfx_v4l2_read+0x10/0x10
[ 1929.689818][T14877]  vfs_read+0x1e4/0xb30
[ 1929.689871][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.689917][T14877]  ? __pfx_vfs_read+0x10/0x10
[ 1929.689966][T14877]  ? find_held_lock+0x2b/0x80
[ 1929.690019][T14877]  ? __fget_files+0x215/0x3d0
[ 1929.690053][T14877]  ? __fget_files+0x215/0x3d0
[ 1929.690085][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.690133][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.690176][T14877]  ? __fget_files+0x21f/0x3d0
[ 1929.690217][T14877]  ksys_read+0x12a/0x250
[ 1929.690269][T14877]  ? __pfx_ksys_read+0x10/0x10
[ 1929.690327][T14877]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1929.690369][T14877]  ? rcu_is_watching+0x12/0xc0
[ 1929.690423][T14877]  do_syscall_64+0x115/0x870
[ 1929.690479][T14877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1929.690515][T14877] RIP: 0033:0x7f2ac119ce59
[ 1929.690541][T14877] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1929.690577][T14877] RSP: 002b:00007f2abf3f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1929.690608][T14877] RAX: ffffffffffffffda RBX: 00007f2ac1415fa0 RCX: 00007f2ac119ce59
[ 1929.690633][T14877] RDX: 00000000fffffdfc RSI: 0000200000008180 RDI: 0000000000000004
[ 1929.690656][T14877] RBP: 00007f2ac1232d6f R08: 0000000000000000 R09: 0000000000000000
[ 1929.690678][T14877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1929.690718][T14877] R13: 00007f2ac1416038 R14: 00007f2ac1415fa0 R15: 00007ffe4f5bf388
[ 1929.690755][T14877]  </TASK>
[ 1932.976308][ T3295] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)