last executing test programs:

3.153725376s ago: executing program 3 (id=5765):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000000081401"], 0x24}}, 0x0)

3.076814133s ago: executing program 2 (id=5766):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)=ANY=[@ANYBLOB="180100002b00010000000000fcdbdf250701f2800c00030008ac0f0000000000140001"], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)

2.925963377s ago: executing program 3 (id=5769):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x21}, 0xe)

2.679799333s ago: executing program 3 (id=5772):
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0xac, 0x9b, 0xcc, 0x20, 0x18d1, 0x1eaf, 0x5abb, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x7, 0x0, 0x80, 0xb, [{{0x9, 0x4, 0xbb, 0x6, 0x0, 0x3a, 0xe5, 0x4}}]}}]}}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000e80)={0x84, &(0x7f00000002c0)=ANY=[@ANYBLOB="400d21000000de"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.628372363s ago: executing program 2 (id=5773):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000140)="2e00000011008188040f80ec19acbc0437177f3d1300000000000e000a09a60c979c91f349fc0009000000000000", 0x2e}], 0x1}, 0x0)

2.327683431s ago: executing program 2 (id=5777):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101600, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0x4018aee3, &(0x7f00000000c0)=""/26)

2.172147419s ago: executing program 0 (id=5778):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCSFLAGS(r0, 0x40047459, 0x0)

2.110452523s ago: executing program 2 (id=5780):
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0xff, @remote}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="100000000000000029"], 0x10}, 0x0)

1.890279712s ago: executing program 0 (id=5783):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000009300)=[{{&(0x7f0000000100)={0xa, 0x4e23, 0x4, @remote}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=[@flowinfo={{0x14, 0x29, 0xb, 0xc}}, @hopopts={{0x18, 0x29, 0x36, {0xff}}}], 0x30}}], 0x1, 0x24008004)

1.857215688s ago: executing program 2 (id=5784):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x401064d1, &(0x7f0000000180)={0x12, 0x2})

1.830657757s ago: executing program 1 (id=5785):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000180)='./bus\x00', 0x804, &(0x7f00000001c0)={[{@rodir}, {@shortname_lower}, {@fat=@nfs_stale_rw}, {@uni_xlateno}, {@shortname_mixed}, {@utf8no}, {@shortname_winnt}, {@utf8no}, {@fat=@check_normal}, {@fat=@codepage={'codepage', 0x3d, '1250'}}, {@fat=@check_strict}, {@shortname_win95}, {@shortname_winnt}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'maccroatian'}}, {@shortname_win95}]}, 0x1, 0x27b, &(0x7f0000000640)="$eJzs3cFqK1UYAOB/mqRJdJEsXInQAV24Kq1P0CIVxIKgZKEutNgUpAmFFgJVMXblE/gEPo8b8QV8AC93d7u43LmkM0nTyyQlvWlT7v2+TQ//+f85/5kZ2tWc/vBB//jw5Ozo4tf/otFIYm0nduIyiXasxdjvUerfJ+VxAOCRu8yyeJrl6nno/GZGbUZlde3emwMA7sX03/9V9wIAPIyvv/n2i939/b2v0rQR0f9j0Eki/5nP7x7FT9GLbmxFK55HZBP5+LPP9/eimo6046P+cNAZVfa//7u4/u7/EVf129GKdnn9dpqbqh8OOrV4p1h/pxfdL/+KVrxXXv9JSX101uPjD6f634xW/PNjnEQvDovexvW/bafpp9mfz375bhQd1SfDQac+ySuyKw/6YAAAAAAAAAAAAAAAAAAAAAAAeKNtphPtm+fvjA/+nzM/53yg4dT5PFtpmmZJnn9dX433q1Fd5d4BAAAAAAAAAAAAAAAAAADgsTg7//n4oNfrni51MP6sv2QqXtyM1CPi7mttLFoVlaK1XhKx2Fq1qF9V3p5cWXAXzVE/3dOkGst7BMkk0pye2oh8rVGkmQ+mIq+9eiOuBuO36/ggue3hNspekiUMspLXrzKzav3VSLPYQUlyc87q6+/eqeesNWMqiYja5GbOv05tuffw4X4HAQAAAAAAAAAAAAAAAAAAueuPfksmL1bQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACswPX//19gMCyKZ+VkldGgGkVkxVsEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgLfAyAAD//0MUZ+o=")
unlink(&(0x7f0000000100)='./file1\x00')

1.689825149s ago: executing program 0 (id=5786):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

1.543255816s ago: executing program 2 (id=5788):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000200)={0x2, 0xb45, 0x800077, 0x20000000000412, 0x4, 0x6, 0x1000, 0xf67, 0xf})

1.534902368s ago: executing program 1 (id=5789):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000010040b7080000000000007b8af8ff00000000b7080000000000107b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b705000008000000850000005e00000095"], &(0x7f0000001880)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0xa}, 0x94)

1.346270603s ago: executing program 4 (id=5790):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_LACP_RATE={0x5}]}}}]}, 0x3c}}, 0x0)

1.335466307s ago: executing program 1 (id=5791):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3c0, 0x210, 0x9403, 0x3002, 0x210, 0x2c0, 0x2f0, 0x3d8, 0x3d8, 0x2f0, 0x3d8, 0x3, 0x0, {[{{@ipv6={@private2, @remote, [0xffffff00, 0x0, 0xffffffff], [0xffffffff, 0xffffff00, 0xffffffff], 'macvlan1\x00', 'wg2\x00', {}, {0xa4c8dd0ffa9b1578}, 0x73, 0x9, 0x4, 0x48}, 0x0, 0x1c8, 0x210, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xc}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x80, 0x1, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@private1}}}, {{@uncond, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff, 0x0, 0x2}, {0x4, 0x5, 0x5}, {0x3, 0x4}, 0xbf, 0xb}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x47b)

1.156502606s ago: executing program 4 (id=5792):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$sock_buf(r0, 0x1, 0x19, 0x0, &(0x7f0000003080))

1.102355636s ago: executing program 1 (id=5793):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x1c, 0x1e, 0x21, 0x0, 0x0, {0xa}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}]}, 0x1c}}, 0x0)

962.873053ms ago: executing program 4 (id=5794):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(blake2b-256-generic)\x00'}, 0x58)

918.695791ms ago: executing program 0 (id=5795):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x300, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181010100000000010000000000000e000a000f00000002800600121f", 0x2e}], 0x1}, 0x0)

918.266104ms ago: executing program 1 (id=5796):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f00000002c0)={'ip6gre0\x00', &(0x7f0000000300)=@ethtool_rxnfc={0x2f, 0x2, 0x6, {0xe, @usr_ip6_spec={@empty, @dev={0xfe, 0x80, '\x00', 0x24}, 0xfffffff8, 0x3d, 0xe}, {0x0, @remote, 0xe, 0x4, [0x7, 0x6]}, @ah_ip4_spec={@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x5}, {0x0, @broadcast, 0x8, 0x5, [0xf, 0x9]}, 0xff, 0x3}}})

782.716565ms ago: executing program 3 (id=5797):
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x109000, 0x0)
ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f00000001c0))

731.788372ms ago: executing program 1 (id=5798):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x1000000, &(0x7f0000000040), 0x0, 0x559e, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, 0x0)

518.997796ms ago: executing program 0 (id=5799):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'dummy0\x00', &(0x7f00000003c0)=@ethtool_link_settings={0x4c, 0x88f, 0xe3, 0xfd, 0x4, 0x2, 0x8, 0x1, 0x50, 0x5, [0x100, 0x554, 0x6, 0x4, 0x2, 0x9, 0xcba, 0x40]}})

518.373901ms ago: executing program 3 (id=5800):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000010c0)=@newlink={0x40, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xd000}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IKEY={0x8, 0x4, 0x10ba}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x100}, 0x40080c0)

438.215724ms ago: executing program 4 (id=5801):
r0 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r0, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32, @ANYBLOB="ac141410e00000010000000028000000000000000000000007"], 0x48}, 0x0)

289.537035ms ago: executing program 0 (id=5802):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7c, &(0x7f00000000c0), &(0x7f0000000180)=0x8)

237.768742ms ago: executing program 4 (id=5803):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000180)=0x80000004, 0x4)

98.292278ms ago: executing program 3 (id=5804):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000f00)=@filter={'filter\x00', 0x42, 0x4, 0x350, 0xffffffff, 0x1d0, 0x1d0, 0x98, 0xffffffff, 0xffffffff, 0x2b8, 0x2b8, 0x2b8, 0xffffffff, 0x4, 0x0, {[{{@ip={@private=0x4, @remote, 0x0, 0x0, 'ip6gretap0\x00', 'wg2\x00', {}, {}, 0x0, 0x1}, 0xa00, 0x70, 0x98, 0x0, {0x100000000000000}}, @REJECT={0x28}}, {{@ip={@rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x31}, 0xffffff00, 0xffffffff, 'syzkaller1\x00', 'gretap0\x00', {}, {0xff}, 0x29, 0x2, 0x3b}, 0x0, 0xd8, 0x138, 0x0, {}, [@common=@set={{0x40}, {{0x0, [0x1, 0x5, 0xe7a786dd83d11f72, 0x0, 0x700], 0x4, 0x2}}}, @common=@ttl={{0x28}, {0x0, 0x8}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 0x8, 0x7, [0x6c, 0x6, 0x9, 0x4025, 0x9, 0xe, 0x0, 0x25, 0x3b, 0x0, 0x2a, 0x34, 0x32, 0x2, 0x35, 0x1f], 0x0, 0x7, 0x7}}}, {{@ip={@broadcast, @rand_addr=0x64010100, 0xff000000, 0xffffffff, 'veth1\x00', 'bond_slave_0\x00', {0xff}, {}, 0x8, 0x2, 0x3d}, 0x0, 0xc0, 0xe8, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x40000000, 0xfffffffd, 0x0, 0x1, 0x14}}, @common=@socket0={{0x20}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0xe}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3b0)

0s ago: executing program 4 (id=5805):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000340)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x11}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x618}}]}, &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000000)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

kernel console output (not intermixed with test programs):

at=0 ip=0x7f053078e929 code=0x7ffc0000
[  620.013226][   T30] audit: type=1326 audit(1752669582.080:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16062 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f053078e929 code=0x7ffc0000
[  620.111902][   T30] audit: type=1326 audit(1752669582.080:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16062 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f053078e929 code=0x7ffc0000
[  620.771941][T16116] warning: `syz.3.4206' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  621.258523][ T6139] usb 4-1: new high-speed USB device number 114 using dummy_hcd
[  621.295838][T16155] loop4: detected capacity change from 0 to 16
[  621.334419][T16155] erofs (device loop4): mounted with root inode @ nid 36.
[  621.353436][T16155] CIFS mount error: No usable UNC path provided in device string!
[  621.353436][T16155] 
[  621.386289][T16155] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  621.461506][ T6139] usb 4-1: Using ep0 maxpacket: 16
[  621.476469][T16162] tmpfs: Bad value for 'mpol'
[  621.491477][ T6139] usb 4-1: config 8 has an invalid interface number: 206 but max is 0
[  621.511481][ T6139] usb 4-1: config 8 has no interface number 0
[  621.547051][ T6139] usb 4-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[  621.592530][ T6139] usb 4-1: config 8 interface 206 altsetting 1 endpoint 0x87 has invalid maxpacket 33058, setting to 1024
[  621.630300][ T6139] usb 4-1: config 8 interface 206 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 9
[  621.704353][ T6139] usb 4-1: config 8 interface 206 has no altsetting 0
[  621.731200][ T6139] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[  621.754491][T16178] loop0: detected capacity change from 0 to 256
[  621.761187][ T6139] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  621.800939][ T6139] usb 4-1: Product: syz
[  621.814378][T16179] Illegal XDP return value 4294967283 on prog  (id 279) dev N/A, expect packet loss!
[  621.835797][ T6139] usb 4-1: Manufacturer: syz
[  621.852058][T16178] FAT-fs (loop0): Directory bread(block 64) failed
[  621.857860][ T6139] usb 4-1: SerialNumber: syz
[  621.889932][T16178] FAT-fs (loop0): Directory bread(block 65) failed
[  621.923398][T16178] FAT-fs (loop0): Directory bread(block 66) failed
[  621.951982][T16178] FAT-fs (loop0): Directory bread(block 67) failed
[  621.993731][T16178] FAT-fs (loop0): Directory bread(block 68) failed
[  622.022581][T16178] FAT-fs (loop0): Directory bread(block 69) failed
[  622.048108][T16178] FAT-fs (loop0): Directory bread(block 70) failed
[  622.056036][T16178] FAT-fs (loop0): Directory bread(block 71) failed
[  622.078818][T16178] FAT-fs (loop0): Directory bread(block 72) failed
[  622.109445][T16178] FAT-fs (loop0): Directory bread(block 73) failed
[  622.153314][ T6139] garmin_gps 4-1:8.206: Garmin GPS usb/tty converter detected
[  622.189466][ T6139] usb 4-1: Garmin GPS usb/tty converter now attached to ttyUSB0
[  622.343822][T16208] loop4: detected capacity change from 0 to 512
[  622.382129][ T6139] usb 4-1: USB disconnect, device number 114
[  622.388530][T16208] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  622.435837][ T6139] garmin_gps ttyUSB0: Garmin GPS usb/tty converter now disconnected from ttyUSB0
[  622.475401][T16208] EXT4-fs (loop4): 1 truncate cleaned up
[  622.510118][ T6139] garmin_gps 4-1:8.206: device disconnected
[  622.519302][T16208] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  622.685461][ T6038] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  623.064269][T16193] loop2: detected capacity change from 0 to 32768
[  623.215115][T16193] ialloc: diAlloc returned -5!
[  623.435735][T16205] loop1: detected capacity change from 0 to 32768
[  623.448302][T16220] loop0: detected capacity change from 0 to 32768
[  623.466795][T16205] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4231 (16205)
[  623.521133][T16220] 
[  623.521133][T16220]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  623.521133][T16220] 
[  623.541311][T16205] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  623.620724][T16205] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[  623.636707][T16220] ERROR: (device loop0): dbAlloc: the hint is outside the map
[  623.636707][T16220] 
[  623.784403][ T1341] read_mapping_page failed!
[  623.800059][ T1341] ERROR: (device loop0): txCommit: 
[  623.800059][ T1341] 
[  623.810634][ T1341] jfs_write_inode: jfs_commit_inode failed!
[  623.822632][ T6026] 
[  623.822632][ T6026]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  623.822632][ T6026] 
[  623.863524][T16205] BTRFS info (device loop1): rebuilding free space tree
[  623.891968][ T6026] 
[  623.891968][ T6026]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  623.891968][ T6026] 
[  623.957758][T16205] BTRFS info (device loop1): disabling free space tree
[  624.017490][T16205] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  624.058047][T16205] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  624.263819][ T6027] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  624.769028][T16317] syz.2.4252(16317): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  625.022635][ T6139] usb 5-1: new high-speed USB device number 106 using dummy_hcd
[  625.109929][T16331] loop1: detected capacity change from 0 to 64
[  625.204467][ T6139] usb 5-1: Using ep0 maxpacket: 32
[  625.230162][ T6139] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  625.247981][ T6139] usb 5-1: config 0 has no interface number 0
[  625.254205][ T6139] usb 5-1: config 0 interface 12 has no altsetting 0
[  625.343520][ T6139] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  625.353536][ T6139] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  625.380245][ T6139] usb 5-1: Product: syz
[  625.388261][T16347] loop2: detected capacity change from 0 to 16
[  625.390728][ T6139] usb 5-1: Manufacturer: syz
[  625.417672][T16347] erofs (device loop2): mounted with root inode @ nid 36.
[  625.430854][ T6139] usb 5-1: SerialNumber: syz
[  625.458054][ T6139] usb 5-1: config 0 descriptor??
[  625.849147][T16369] loop1: detected capacity change from 0 to 128
[  625.883751][T16369] EXT4-fs (loop1): Test dummy encryption mode enabled
[  625.922497][ T6139] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  625.930277][ T6139] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  625.956764][T16369] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  625.978250][T16381] loop2: detected capacity change from 0 to 2048
[  626.005091][T16375] geneve2: entered promiscuous mode
[  626.011737][T16375] geneve2: entered allmulticast mode
[  626.023034][T16369] ext4 filesystem being mounted at /798/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  626.025858][ T6139] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  626.096802][ T6139] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  626.107757][T16388] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  626.122968][ T6139] usb 5-1: USB disconnect, device number 106
[  626.154058][T16381] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=203
[  626.235909][ T6027] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  626.279117][T16381] Remounting filesystem read-only
[  626.823215][T16422] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  626.847056][T16424] loop4: detected capacity change from 0 to 8
[  626.884648][T16424] SQUASHFS error: Unable to read directory block [1d0:0]
[  627.140635][T16437] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  627.256154][T16443] loop1: detected capacity change from 0 to 2048
[  627.353964][T16447] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  627.458722][T16443] NILFS error (device loop1): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  627.529843][T16443] Remounting filesystem read-only
[  627.578427][T16452] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  627.666192][T16410] loop3: detected capacity change from 0 to 32768
[  627.703652][T16410] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4273 (16410)
[  627.756648][T16414] loop2: detected capacity change from 0 to 40427
[  627.777818][T16410] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  627.791026][T16414] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  627.811697][T16410] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  627.824562][T16414] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  627.870499][T16414] F2FS-fs (loop2): invalid crc value
[  627.870549][T16410] BTRFS info (device loop3): disk space caching is enabled
[  627.934640][T16410] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  628.132155][T16414] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  628.174441][T16491] loop4: detected capacity change from 0 to 256
[  628.249004][T16491] exfat: Deprecated parameter 'namecase'
[  628.253704][T16414] F2FS-fs (loop2): Start checkpoint disabled!
[  628.254978][T16491] exfat: Deprecated parameter 'namecase'
[  628.267190][T16491] exfat: Deprecated parameter 'utf8'
[  628.294626][T16410] BTRFS info (device loop3): rebuilding free space tree
[  628.340531][T16414] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  628.348007][T16414] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  628.362593][T16491] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012366, chksum : 0xd06b6363, utbl_chksum : 0xe619d30d)
[  628.419490][T16410] BTRFS info (device loop3): disabling free space tree
[  628.450513][T16410] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  628.498300][T16410] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  628.542754][T16505] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4294'.
[  628.620715][T16414] syz.2.4275: attempt to access beyond end of device
[  628.620715][T16414] loop2: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  628.822534][ T6028] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  628.869786][ T6130] kworker/u8:7: attempt to access beyond end of device
[  628.869786][ T6130] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  628.950119][ T6130] CPU: 0 UID: 0 PID: 6130 Comm: kworker/u8:7 Not tainted 6.16.0-rc6-next-20250716-syzkaller #0 PREEMPT(full) 
[  628.950149][ T6130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  628.950161][ T6130] Workqueue: writeback wb_workfn (flush-7:2)
[  628.950192][ T6130] Call Trace:
[  628.950202][ T6130]  <TASK>
[  628.950212][ T6130]  dump_stack_lvl+0x189/0x250
[  628.950245][ T6130]  ? __pfx_dump_stack_lvl+0x10/0x10
[  628.950268][ T6130]  ? __pfx_queue_work_on+0x10/0x10
[  628.950287][ T6130]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  628.950309][ T6130]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  628.950347][ T6130]  f2fs_handle_critical_error+0x37c/0x540
[  628.950385][ T6130]  f2fs_write_end_io+0x886/0xb60
[  628.950452][ T6130]  __submit_merged_bio+0x27a/0x6a0
[  628.950490][ T6130]  __submit_merged_write_cond+0x255/0x530
[  628.950528][ T6130]  f2fs_write_data_pages+0x261d/0x3000
[  628.950606][ T6130]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  628.950654][ T6130]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  628.950721][ T6130]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  628.950768][ T6130]  ? trace_f2fs_writepages+0x7f/0x200
[  628.950799][ T6130]  ? f2fs_write_node_pages+0x478/0x6e0
[  628.950835][ T6130]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  628.950883][ T6130]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  628.950916][ T6130]  do_writepages+0x32e/0x550
[  628.950951][ T6130]  ? reacquire_held_locks+0x127/0x1d0
[  628.950974][ T6130]  ? writeback_sb_inodes+0x384/0x1010
[  628.951015][ T6130]  __writeback_single_inode+0x145/0xff0
[  628.951043][ T6130]  ? do_raw_spin_unlock+0x122/0x240
[  628.951077][ T6130]  writeback_sb_inodes+0x6c7/0x1010
[  628.951141][ T6130]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  628.951225][ T6130]  ? rcu_is_watching+0x15/0xb0
[  628.951262][ T6130]  wb_writeback+0x43b/0xaf0
[  628.951300][ T6130]  ? queue_io+0x391/0x590
[  628.951331][ T6130]  ? __pfx_wb_writeback+0x10/0x10
[  628.951369][ T6130]  ? _raw_spin_unlock_irq+0x23/0x50
[  628.951408][ T6130]  wb_workfn+0x409/0xef0
[  628.951453][ T6130]  ? __pfx_wb_workfn+0x10/0x10
[  628.951484][ T6130]  ? __lock_acquire+0xab9/0xd20
[  628.951531][ T6130]  ? process_scheduled_works+0x9ef/0x17b0
[  628.951574][ T6130]  ? _raw_spin_unlock_irq+0x23/0x50
[  628.951596][ T6130]  ? process_scheduled_works+0x9ef/0x17b0
[  628.951628][ T6130]  ? process_scheduled_works+0x9ef/0x17b0
[  628.951663][ T6130]  process_scheduled_works+0xae1/0x17b0
[  628.951736][ T6130]  ? __pfx_process_scheduled_works+0x10/0x10
[  628.951794][ T6130]  worker_thread+0x8a0/0xda0
[  628.951818][ T6130]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  628.951852][ T6130]  ? __kthread_parkme+0x7b/0x200
[  628.951887][ T6130]  kthread+0x70e/0x8a0
[  628.951917][ T6130]  ? __pfx_worker_thread+0x10/0x10
[  628.951937][ T6130]  ? __pfx_kthread+0x10/0x10
[  628.951963][ T6130]  ? _raw_spin_unlock_irq+0x23/0x50
[  628.951984][ T6130]  ? lockdep_hardirqs_on+0x9c/0x150
[  628.952005][ T6130]  ? __pfx_kthread+0x10/0x10
[  628.952031][ T6130]  ret_from_fork+0x3f9/0x770
[  628.952056][ T6130]  ? __pfx_ret_from_fork+0x10/0x10
[  628.952083][ T6130]  ? __switch_to_asm+0x39/0x70
[  628.952108][ T6130]  ? __switch_to_asm+0x33/0x70
[  628.952133][ T6130]  ? __pfx_kthread+0x10/0x10
[  628.952180][ T6130]  ret_from_fork_asm+0x1a/0x30
[  628.952230][ T6130]  </TASK>
[  628.952240][ T6130] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  629.238011][T16516] loop4: detected capacity change from 0 to 4096
[  629.507093][T16523] loop0: detected capacity change from 0 to 4096
[  629.630966][T16523] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  629.723921][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  629.723940][   T30] audit: type=1800 audit(1752669591.356:45): pid=16516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4297" name="file1" dev="loop4" ino=33 res=0 errno=0
[  629.898362][T16523] ntfs3(loop0): ino=19, mi_enum_attr
[  629.952722][T16523] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  630.199104][T16556] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4307'.
[  630.496864][T16567] RDS: rds_bind could not find a transport for ::9d:0:0:0:1, load rds_tcp or rds_rdma?
[  630.562276][T16571] loop2: detected capacity change from 0 to 512
[  630.604074][T16566] loop4: detected capacity change from 0 to 2048
[  630.628900][T16571] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.4299: bad orphan inode 15
[  630.656408][T16571] ext4_test_bit(bit=14, block=5) = 0
[  630.664256][T16566] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  630.703526][T16571] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  630.792088][T16583] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  630.792672][ T6297] udevd[6297]: incorrect nilfs2 checksum on /dev/loop4
[  630.863761][T16587] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4315'.
[  630.868943][T16586] netlink: 'syz.3.4314': attribute type 3 has an invalid length.
[  630.899390][T16586] netlink: 666 bytes leftover after parsing attributes in process `syz.3.4314'.
[  630.918370][ T6041] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  631.480477][T16619] xfrm0: entered promiscuous mode
[  631.503255][T16619] xfrm0: entered allmulticast mode
[  631.563891][T16626] loop4: detected capacity change from 0 to 64
[  632.198879][T16659] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  632.240387][T16657] loop0: detected capacity change from 0 to 4096
[  632.416886][T16666] binder: 16665:16666 ioctl c018620c 200000000380 returned -22
[  633.538958][ T6195] usb 4-1: new high-speed USB device number 115 using dummy_hcd
[  633.727900][ T6195] usb 4-1: Using ep0 maxpacket: 16
[  633.748155][ T6195] usb 4-1: config index 0 descriptor too short (expected 16456, got 72)
[  633.776951][ T6195] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[  633.815496][ T6195] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[  633.854158][ T6195] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[  633.865597][ T6195] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  633.893428][ T6195] usb 4-1: config 0 has no interface number 0
[  633.922991][ T6195] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  633.970215][ T6195] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  633.987985][T16737] loop0: detected capacity change from 0 to 24
[  634.017999][ T6195] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  634.069410][ T6195] usb 4-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  634.106504][ T6195] usb 4-1: config 0 interface 125 has no altsetting 0
[  634.133932][ T6195] usb 4-1: config 0 interface 125 has no altsetting 2
[  634.159078][ T6195] usb 4-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  634.192713][ T6195] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  634.236337][ T6195] usb 4-1: Product: syz
[  634.240594][ T6195] usb 4-1: Manufacturer: syz
[  634.262965][ T6195] usb 4-1: SerialNumber: syz
[  634.314636][ T6195] usb 4-1: config 0 descriptor??
[  634.399888][ T6195] usb 4-1: selecting invalid altsetting 2
[  634.585846][    C0] usb 4-1: async_complete: urb error -71
[  634.591679][    C0] usb 4-1: async_complete: urb error -71
[  634.597473][    C0] usb 4-1: async_complete: urb error -71
[  634.603281][    C0] usb 4-1: async_complete: urb error -71
[  634.658294][ T6195] get_1284_register: usb error -71
[  634.663810][ T6195] uss720 4-1:0.125: probe with driver uss720 failed with error -71
[  634.717457][ T6195] usb 4-1: USB disconnect, device number 115
[  635.892110][T16809] loop0: detected capacity change from 0 to 32768
[  635.912437][T16835] netlink: 'syz.2.4391': attribute type 1 has an invalid length.
[  635.938284][T16804] loop1: detected capacity change from 0 to 32768
[  635.973446][T16835] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  636.127715][T16804] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  636.243528][T16804] (syz.1.4381,16804,0):ocfs2_symlink:2080 ERROR: status = -2
[  636.301693][T16858] netlink: 4168 bytes leftover after parsing attributes in process `syz.2.4394'.
[  636.313709][T16809] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  636.313754][T16809]   allowing incompatible features above 0.0: (unknown version)
[  636.313769][T16809]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  636.407087][ T6027] (syz-executor,6027,0):ocfs2_inode_is_valid_to_delete:928 ERROR: Skipping delete of root inode.
[  636.447615][ T6027] ocfs2: Unmounting device (7,1) on (node local)
[  636.485698][T16819] loop4: detected capacity change from 0 to 32768
[  636.517780][T16819] (syz.4.4386,16819,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  636.520111][T16819] (syz.4.4386,16819,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  636.527881][T16819] JBD2: Ignoring recovery information on journal
[  636.614010][T16809] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[  636.622576][T16809] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  636.631008][T16809] bcachefs (loop0): Version upgrade required:
[  636.631008][T16809] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  636.631008][T16809] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  636.631008][T16809]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  636.773890][T16809] bcachefs (loop0): dropping and reconstructing all alloc info
[  636.798082][T16819] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  636.832076][T16819] (syz.4.4386,16819,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  636.929325][T16809] bcachefs (loop0): accounting_read... done
[  636.972843][T16809] bcachefs (loop0): alloc_read... done
[  636.994838][T16809] bcachefs (loop0): snapshots_read... done
[  637.013138][T16819] (syz.4.4386,16819,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xdf8356d3, computed 0xb8c23ae4. Applying ECC.
[  637.053553][T16819] (syz.4.4386,16819,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xdf8356d3, computed 0x2acb7e3c
[  637.139272][T16819] (syz.4.4386,16819,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  637.177399][T16819] (syz.4.4386,16819,1):ocfs2_quota_read:201 ERROR: status = -5
[  637.210797][T16819] Quota error (device loop4): find_block_dqentry: Can't read quota tree block 6
[  637.255311][T16819] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  637.361896][T16819] (syz.4.4386,16819,0):ocfs2_acquire_dquot:890 ERROR: status = -5
[  637.489192][T16897] netlink: 176 bytes leftover after parsing attributes in process `syz.2.4405'.
[  637.579089][ T6038] ocfs2: Unmounting device (7,4) on (node local)
[  638.113160][T16928] netlink: 52 bytes leftover after parsing attributes in process `syz.3.4415'.
[  638.321775][T16939] ieee802154 phy0 wpan0: encryption failed: -22
[  638.855929][T16965] veth2: entered allmulticast mode
[  638.888747][T16978] loop3: detected capacity change from 0 to 512
[  638.912593][T16978] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  639.013077][T16978] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  639.117741][T16978] ext4 filesystem being mounted at /806/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  639.356832][ T6028] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  639.694133][T17013] loop2: detected capacity change from 0 to 4096
[  639.795123][T17013] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  640.116527][T17040] IPVS: set_ctl: invalid protocol: 18 224.0.0.1:20004
[  640.272553][ T6040] Bluetooth: hci4: command 0x0406 tx timeout
[  640.854650][T17087] fuse: blksize only supported for fuseblk
[  641.253472][T17107] loop1: detected capacity change from 0 to 2048
[  641.307885][T17107] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  641.405418][ T6027] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  641.600970][T17129] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4469'.
[  641.788457][T17078] loop4: detected capacity change from 0 to 32768
[  641.839349][T17078] (syz.4.4456,17078,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  641.906457][T17078] (syz.4.4456,17078,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  641.981036][T17078] (syz.4.4456,17078,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xcfdff595, computed 0xefed4a20. Applying ECC.
[  642.043471][T17078] JBD2: Ignoring recovery information on journal
[  642.115011][T17078] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  642.162729][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  642.169733][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  642.266612][T17078] (syz.4.4456,17078,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xc9ee627, computed 0x1fb6df54. Applying ECC.
[  642.326261][T17078] (syz.4.4456,17078,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xc9ee627, computed 0xfc4047c
[  642.366319][T17078] (syz.4.4456,17078,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  642.397727][   T30] audit: type=1400 audit(1752669603.204:46): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=":(%#{//(@\)//&@},['%%&\#*" pid=17164 comm="syz.2.4480"
[  642.442337][T17078] (syz.4.4456,17078,1):ocfs2_quota_read:201 ERROR: status = -5
[  642.532946][T17078] Quota error (device loop4): find_tree_dqentry: Can't read quota tree block 3
[  642.582418][T17078] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  642.592230][T17078] (syz.4.4456,17078,1):ocfs2_acquire_dquot:890 ERROR: status = -5
[  642.636792][T17178] loop1: detected capacity change from 0 to 8
[  642.671891][T17078] (syz.4.4456,17078,1):ocfs2_mknod:317 ERROR: status = -5
[  642.710609][T17078] (syz.4.4456,17078,1):ocfs2_mknod:505 ERROR: status = -5
[  642.717808][T17078] (syz.4.4456,17078,1):ocfs2_mkdir:661 ERROR: status = -5
[  642.920629][ T6038] ocfs2: Unmounting device (7,4) on (node local)
[  643.483826][T17215] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4489'.
[  643.580664][T17218] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4494'.
[  643.878423][T17230] xt_hashlimit: size too large, truncated to 1048576
[  643.901729][T17186] loop3: detected capacity change from 0 to 32768
[  643.915943][T17232] loop4: detected capacity change from 0 to 16
[  643.978842][T17232] erofs (device loop4): mounted with root inode @ nid 36.
[  644.053176][T17232] erofs (device loop4): per-inode big pcluster without sb feature for nid 36
[  644.097751][T17232] erofs (device loop4): per-inode big pcluster without sb feature for nid 36
[  644.142974][T17232] erofs (device loop4): read error -117 @ 43 of nid 36
[  644.415925][T17209] loop2: detected capacity change from 0 to 32768
[  644.453520][T17209] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.4492 (17209)
[  644.520621][T17209] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  644.591895][T17209] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  644.888769][T17209] BTRFS info (device loop2): rebuilding free space tree
[  644.904150][ T6109] usb 5-1: new high-speed USB device number 107 using dummy_hcd
[  644.947227][T17209] BTRFS info (device loop2): disabling free space tree
[  644.996942][T17209] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  645.040853][T17209] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  645.122942][ T6109] usb 5-1: config 0 has an invalid interface number: 194 but max is 0
[  645.150031][ T6109] usb 5-1: config 0 has no interface number 0
[  645.154713][T17290] loop1: detected capacity change from 0 to 4096
[  645.199156][ T6109] usb 5-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=7d.d2
[  645.210054][ T6109] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  645.221636][T17290] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  645.246777][ T6109] usb 5-1: Product: syz
[  645.251029][ T6109] usb 5-1: Manufacturer: syz
[  645.275262][ T6041] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  645.289322][ T6109] usb 5-1: SerialNumber: syz
[  645.313522][ T6109] usb 5-1: config 0 descriptor??
[  645.395054][T17299] mac80211_hwsim hwsim10 wlan1: entered allmulticast mode
[  645.443586][T17290] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  645.473187][T17290] ntfs3(loop1): ino=19, mi_enum_attr
[  645.582527][T17290] ntfs3(loop1): failed to convert "c46c" to macgaelic
[  645.609274][T17290] ntfs3(loop1): ino=20, mi_enum_attr
[  645.776432][   T24] usb 5-1: USB disconnect, device number 107
[  645.813910][   T24] f81534a_ctrl 5-1:0.194: failed to set register 0x116: -19
[  645.821378][   T24] f81534a_ctrl 5-1:0.194: failed to enable ports: -19
[  645.981974][T17334] loop3: detected capacity change from 0 to 128
[  645.988868][T17325] delete_channel: no stack
[  646.099363][T17337] loop0: detected capacity change from 0 to 1764
[  646.918047][   T30] audit: type=1326 audit(1752669607.430:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17386 comm="syz.0.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bfb8e929 code=0x7ffc0000
[  646.941486][   T30] audit: type=1326 audit(1752669607.449:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17386 comm="syz.0.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7fb8bfb8e929 code=0x7ffc0000
[  646.964838][   T30] audit: type=1326 audit(1752669607.449:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17386 comm="syz.0.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bfb8e929 code=0x7ffc0000
[  646.988336][   T30] audit: type=1326 audit(1752669607.449:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17386 comm="syz.0.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8bfb8e929 code=0x7ffc0000
[  647.041823][T17408] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4537'.
[  647.240003][T17435] loop0: detected capacity change from 0 to 256
[  647.252537][T17434] loop1: detected capacity change from 0 to 1024
[  647.531298][   T49] hfsplus: b-tree write err: -5, ino 4
[  647.848936][T17468] loop4: detected capacity change from 0 to 1024
[  647.933619][   T30] audit: type=1400 audit(1752669608.384:51): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=262620E7 pid=17470 comm="syz.1.4551"
[  648.419377][T17497] netlink: 'syz.2.4557': attribute type 10 has an invalid length.
[  648.632255][T17497] hsr_slave_0 (unregistering): left promiscuous mode
[  648.684674][T17512] netlink: 'syz.1.4560': attribute type 21 has an invalid length.
[  648.721235][T17459] loop0: detected capacity change from 0 to 32768
[  648.782593][T17506] netlink: 'syz.3.4559': attribute type 13 has an invalid length.
[  649.165371][T17459] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=crc64,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  649.165403][T17459]   allowing incompatible features above 0.0: (unknown version)
[  649.165418][T17459]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  649.317851][T17550] /dev/loop0: Can't open blockdev
[  649.361936][T17541] loop2: detected capacity change from 0 to 4096
[  649.368963][T17459] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[  649.395865][T17459] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  649.404647][T17459] bcachefs (loop0): Version upgrade required:
[  649.404647][T17459] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  649.404647][T17459] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  649.404647][T17459]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  649.497977][T17459] bcachefs (loop0): dropping and reconstructing all alloc info
[  649.603661][T17459] bcachefs (loop0): accounting_read... done
[  649.643282][T17459] bcachefs (loop0): alloc_read... done
[  649.695048][T17459] bcachefs (loop0): snapshots_read... done
[  649.775053][T17459] bcachefs (loop0): check_allocations... done
[  649.923460][T17459] bcachefs (loop0): going read-write
[  649.981285][T17459] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[  650.383486][T17459] bcachefs (loop0): inode 536870912 i_sectors underflow: 8 + -32 < 0
[  650.387227][T17592] loop1: detected capacity change from 0 to 2048
[  650.406136][ T1153] bcachefs (loop0): bucket incorrectly unset in freespace btree
[  650.406177][ T1153]   u64s 5 type deleted 0:30:0 len 0 ver 0, , continuing
[  650.517866][T17459] bcachefs (loop0): inode 536870912 i_blocks underflow: 8 + -32 < 0 (ondisk 8)
[  650.550079][ T1153] bcachefs (loop0): bucket incorrectly unset in freespace btree
[  650.550120][ T1153]   u64s 5 type deleted 0:33:0 len 0 ver 0, , continuing
[  650.594548][T17592] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  650.635317][T17592] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.4581: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  650.656872][T17592] EXT4-fs (loop1): Remounting filesystem read-only
[  650.700744][ T1153] bcachefs (loop0): bucket incorrectly unset in freespace btree
[  650.700767][ T1153]   u64s 5 type deleted 0:29:0 len 0 ver 0, , continuing
[  650.728559][ T1153] bcachefs (loop0): bucket incorrectly unset in freespace btree
[  650.728581][ T1153]   u64s 5 type deleted 0:39:0 len 0 ver 0, , continuing
[  650.812818][ T1153] bcachefs (loop0): bucket incorrectly unset in freespace btree
[  650.812839][ T1153]   u64s 5 type deleted 0:46:0 len 0 ver 0, , continuing
[  650.822705][ T6027] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  650.922500][ T6026] bcachefs (loop0): unclean shutdown complete, journal seq 13
[  651.267347][T17587] loop4: detected capacity change from 0 to 32768
[  651.292496][T17587] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4579 (17587)
[  651.376623][T17587] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  651.438445][T17587] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  651.471757][T17636] 9pnet: Could not find request transport: dnix
[  651.745626][T17587] BTRFS info (device loop4): rebuilding free space tree
[  651.837509][T17587] BTRFS info (device loop4): disabling free space tree
[  651.859806][T17587] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  651.895803][T17587] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  652.062016][T17677] loop1: detected capacity change from 0 to 1764
[  652.105084][T17677] iso9660: Corrupted directory entry in block 2 of inode 1920
[  652.135596][ T6038] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  652.432683][T17697] netlink: 13 bytes leftover after parsing attributes in process `syz.2.4605'.
[  652.664294][T17706] loop1: detected capacity change from 0 to 64
[  652.940907][T17719] loop2: detected capacity change from 0 to 512
[  653.006829][T17719] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  653.093307][T17719] EXT4-fs (loop2): orphan cleanup on readonly fs
[  653.104004][T17719] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  653.104590][T17733] __vm_enough_memory: pid: 17733, comm: syz.4.4614, bytes: 4115879641088 not enough memory for the allocation
[  653.130503][T17719] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  653.151068][T17719] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  653.205196][T17719] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4612: bg 0: block 40: padding at end of block bitmap is not set
[  653.308323][T17719] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  653.353206][T17719] EXT4-fs (loop2): 1 truncate cleaned up
[  653.381234][T17719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  653.631985][ T6041] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  653.811715][T17762] loop1: detected capacity change from 0 to 64
[  654.409555][T17747] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  654.606147][T17789] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  654.671698][T17790] loop4: detected capacity change from 0 to 2048
[  654.711192][T17790] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  654.843638][T17768] loop3: detected capacity change from 0 to 32768
[  654.872144][T17796] delete_channel: no stack
[  654.886470][T17768] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4626 (17768)
[  654.893361][T17772] loop2: detected capacity change from 0 to 32768
[  654.956734][T17768] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  654.978188][T17772] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.4627 (17772)
[  655.015458][T17768] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  655.071850][T17772] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  655.082145][T17768] BTRFS info (device loop3): using free-space-tree
[  655.132743][T17818] loop4: detected capacity change from 0 to 256
[  655.142830][T17772] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  655.157753][T17772] BTRFS info (device loop2): using free-space-tree
[  655.317296][T17845] bridge0: port 3(veth0_to_bridge) entered blocking state
[  655.325963][T17845] bridge0: port 3(veth0_to_bridge) entered disabled state
[  655.335178][T17845] veth0_to_bridge: entered allmulticast mode
[  655.345502][T17845] veth0_to_bridge: entered promiscuous mode
[  655.352925][T17845] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  655.367232][T17845] bridge0: port 3(veth0_to_bridge) entered blocking state
[  655.374945][T17845] bridge0: port 3(veth0_to_bridge) entered forwarding state
[  655.383058][ T6139] usb 1-1: new high-speed USB device number 109 using dummy_hcd
[  655.577078][ T6139] usb 1-1: Using ep0 maxpacket: 16
[  655.602665][ T6139] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC6, changing to 0x86
[  655.647180][ T6139] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[  655.657850][T17864] netlink: 52 bytes leftover after parsing attributes in process `syz.4.4639'.
[  655.678472][ T6028] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  655.684162][ T6041] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  655.689335][ T6139] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x86 has invalid maxpacket 0
[  655.708883][ T6139] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  655.725235][ T6139] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  655.765727][ T6139] usb 1-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  655.791175][ T6139] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  655.856877][ T6139] usb 1-1: Product: syz
[  655.861116][ T6139] usb 1-1: Manufacturer: syz
[  655.879213][ T6139] usb 1-1: SerialNumber: syz
[  655.938457][T17869] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  655.976974][ T6139] usb 1-1: config 0 descriptor??
[  656.017896][ T6139] port100 1-1:0.0: NFC: Could not get supported command types
[  656.324801][ T6195] usb 1-1: USB disconnect, device number 109
[  656.978108][T17916] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  657.150607][T17922] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4653'.
[  657.176394][T17924] futex_wake_op: syz.2.4655 tries to shift op by 36; fix this program
[  657.261048][T17878] loop3: detected capacity change from 0 to 32768
[  657.291986][T17878] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4640 (17878)
[  657.363500][T17932] loop1: detected capacity change from 0 to 8
[  657.370668][T17932] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  657.450466][T17878] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  657.466765][T17932] cramfs: Error -3 while decompressing!
[  657.500561][T17940] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4659'.
[  657.503697][T17878] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  657.509893][T17942] netlink: zone id is out of range
[  657.536374][T17932] cramfs: ffffffff99c24b28(18)->ffff8880785c6000(4096)
[  657.569236][T17942] netlink: zone id is out of range
[  657.574419][T17942] netlink: zone id is out of range
[  657.580287][T17932] cramfs: Error -3 while decompressing!
[  657.618855][T17932] cramfs: ffffffff99c24b28(18)->ffff8880785c6000(4096)
[  657.640788][T17942] netlink: zone id is out of range
[  657.661907][   T30] audit: type=1800 audit(1752669617.483:52): pid=17932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4657" name="file1" dev="loop1" ino=324 res=0 errno=0
[  657.697761][T17942] netlink: zone id is out of range
[  657.728882][T17942] netlink: zone id is out of range
[  657.742905][T17942] netlink: zone id is out of range
[  657.891732][T17878] BTRFS info (device loop3): rebuilding free space tree
[  657.999487][T17878] BTRFS info (device loop3): disabling free space tree
[  658.026569][T17878] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  658.061432][T17878] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  658.148835][T17979] loop4: detected capacity change from 0 to 256
[  658.274221][T17979] FAT-fs (loop4): Directory bread(block 64) failed
[  658.299118][T17979] FAT-fs (loop4): Directory bread(block 65) failed
[  658.326469][T17979] FAT-fs (loop4): Directory bread(block 66) failed
[  658.348178][T17979] FAT-fs (loop4): Directory bread(block 67) failed
[  658.380316][T17979] FAT-fs (loop4): Directory bread(block 68) failed
[  658.386924][T17979] FAT-fs (loop4): Directory bread(block 69) failed
[  658.423996][ T6028] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  658.473631][T17979] FAT-fs (loop4): Directory bread(block 70) failed
[  658.516137][T17979] FAT-fs (loop4): Directory bread(block 71) failed
[  658.559340][T17979] FAT-fs (loop4): Directory bread(block 72) failed
[  658.578383][T17979] FAT-fs (loop4): Directory bread(block 73) failed
[  659.546416][T17973] loop0: detected capacity change from 0 to 40427
[  659.586458][ T6195] usb 5-1: new high-speed USB device number 108 using dummy_hcd
[  659.591970][T17973] F2FS-fs (loop0): build fault injection rate: 16
[  659.656322][T17973] F2FS-fs (loop0): build fault injection type: 0x3bfe8c
[  659.747072][T17973] F2FS-fs (loop0): invalid crc value
[  659.778316][ T6195] usb 5-1: Using ep0 maxpacket: 16
[  659.790550][T17973] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  659.799340][ T6195] usb 5-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55
[  659.858265][    C1] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  659.863788][ T6195] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  659.931020][ T6195] usb 5-1: Product: syz
[  659.935735][ T6195] usb 5-1: Manufacturer: syz
[  659.984951][ T6195] usb 5-1: SerialNumber: syz
[  660.013474][ T6195] usb 5-1: config 0 descriptor??
[  660.076158][ T6195] usb 5-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  660.082203][T17973] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  660.162377][T17973] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  660.173954][T18002] loop3: detected capacity change from 0 to 32768
[  660.240094][ T6109] usb 5-1: USB disconnect, device number 108
[  660.240101][ T1341] usb 5-1: Failed to submit usb control message: -71
[  660.276787][T17973] F2FS-fs (loop0): inject dquot initialize in f2fs_dquot_initialize of f2fs_new_inode+0x509/0x1050
[  660.290106][ T1341] usb 5-1: unable to send the bmi data to the device: -71
[  660.297627][T18059] netlink: 'syz.1.4683': attribute type 11 has an invalid length.
[  660.328151][ T1341] usb 5-1: unable to get target info from device
[  660.341092][ T1341] usb 5-1: could not get target info (-71)
[  660.386161][ T1341] usb 5-1: could not probe fw (-71)
[  660.541662][T18002] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,wide_macs,journal_flush_disabled,norecovery,nojournal_transaction_names
[  660.541692][T18002]   allowing incompatible features above 0.0: (unknown version)
[  660.541706][T18002]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  660.585749][T18002] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  660.595774][T18002] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  660.605152][T18002] bcachefs (loop3): Version upgrade required:
[  660.605152][T18002] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  660.605152][T18002] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  660.605152][T18002]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  660.870936][T18002] bcachefs (loop3): error reading btree root btree=alloc level=0: btree_node_read_error, fixing
[  660.925468][T18002] bcachefs (loop3): check_topology... done
[  660.955002][T18002] bcachefs (loop3): accounting_read... done
[  660.984649][T18002] bcachefs (loop3): alloc_read... done
[  660.997552][T18002] bcachefs (loop3): snapshots_read... done
[  661.023293][T18002] bcachefs (loop3): Fixed errors, running fsck a second time to verify fs is clean
[  661.229284][T18101] netlink: 'syz.1.4691': attribute type 10 has an invalid length.
[  661.434761][   T30] audit: type=1326 audit(1752669620.989:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.4.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  661.504339][   T30] audit: type=1326 audit(1752669621.008:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.4.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  661.551613][T18101] hsr_slave_0 (unregistering): left promiscuous mode
[  661.606907][   T30] audit: type=1326 audit(1752669621.008:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.4.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  661.658790][   T30] audit: type=1326 audit(1752669621.008:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.4.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  661.750691][   T30] audit: type=1326 audit(1752669621.008:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.4.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  661.776015][T18127] loop0: detected capacity change from 0 to 64
[  662.005625][T18137] netlink: 'syz.1.4702': attribute type 9 has an invalid length.
[  662.152585][T18145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4704'.
[  662.283140][T18156] loop2: detected capacity change from 0 to 8
[  662.370502][T18161] netlink: 'syz.1.4709': attribute type 29 has an invalid length.
[  662.501772][T18171] loop2: detected capacity change from 0 to 64
[  662.592792][T18178] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  662.653469][T18178] xt_recent: hitcount (33554432) is larger than allowed maximum (65535)
[  662.860940][T18191] loop0: detected capacity change from 0 to 256
[  662.926211][T18192] loop2: detected capacity change from 0 to 2048
[  662.959293][T18191] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cb2, utbl_chksum : 0xe619d30d)
[  662.972890][T18199] net_ratelimit: 11 callbacks suppressed
[  662.972914][T18199] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  663.017309][T18191] exFAT-fs (loop0): valid_size(10) is greater than size(0)
[  663.146497][T18192] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  663.191951][T18192] ext4 filesystem being mounted at /984/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  663.350214][T18218] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4723'.
[  663.420495][ T6041] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.715873][T18238] netlink: 'syz.0.4729': attribute type 2 has an invalid length.
[  664.343595][T18267] loop0: detected capacity change from 0 to 2048
[  664.458289][T18276] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  664.503446][T18267] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #2: directory entry across blocks - offset=0, inode=35184372097012, rec_len=8192, name_len=0
[  664.569209][T18267] Remounting filesystem read-only
[  664.896033][T18300] netlink: 'syz.0.4744': attribute type 2 has an invalid length.
[  664.945056][T18302] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4747'.
[  665.152018][T18316] netlink: 'syz.3.4752': attribute type 32 has an invalid length.
[  665.162085][T18316] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4752'.
[  665.211982][T18316] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  665.267061][T18322] xt_hashlimit: max too large, truncated to 1048576
[  665.638718][T18374] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4761'.
[  665.656428][T18375] loop4: detected capacity change from 0 to 8
[  665.724692][T18375] /dev/loop4: Can't open blockdev
[  665.805698][T18383] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4763'.
[  665.817194][T18382] loop1: detected capacity change from 0 to 8
[  666.172662][T18405] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  666.636895][T18427] loop2: detected capacity change from 0 to 64
[  666.727775][T18364] loop0: detected capacity change from 0 to 32768
[  666.739237][T18432] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4776'.
[  666.838421][T18364] ERROR: (device loop0): diAllocAG: nfreeinos = 0, but iag on freelist
[  666.838421][T18364] 
[  666.896165][T18364] ERROR: (device loop0): remounting filesystem as read-only
[  666.940446][T18364] ialloc: diAlloc returned -5!
[  666.964330][   T30] audit: type=1800 audit(1752669626.170:58): pid=18427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4775" name="file1" dev="loop2" ino=5 res=0 errno=0
[  667.053173][T18442] netlink: 'syz.4.4778': attribute type 10 has an invalid length.
[  667.086324][T18442] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4778'.
[  667.110552][T18442] batadv0: entered promiscuous mode
[  667.127024][T18442] batadv0: entered allmulticast mode
[  667.143482][T18442] bridge0: port 3(batadv0) entered blocking state
[  667.189721][T18442] bridge0: port 3(batadv0) entered disabled state
[  667.233370][T18442] bridge0: port 3(batadv0) entered blocking state
[  667.240039][T18442] bridge0: port 3(batadv0) entered forwarding state
[  667.587043][T18463] xt_connbytes: Forcing CT accounting to be enabled
[  667.686064][   T49] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  667.695972][   T49] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  667.721015][T18418] loop1: detected capacity change from 0 to 32768
[  668.158277][T18489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4792'.
[  668.257697][T18489] netlink: 15 bytes leftover after parsing attributes in process `syz.1.4792'.
[  668.825017][T18455] loop2: detected capacity change from 0 to 40427
[  668.878030][T18455] F2FS-fs (loop2): Image doesn't support compression
[  668.901896][T18455] F2FS-fs (loop2): build fault injection rate: 690
[  668.976350][T18455] F2FS-fs (loop2): invalid crc value
[  669.308421][T18455] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  669.361973][T18455] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  669.435282][T18545] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4809'.
[  669.444313][T18545] netlink: 43 bytes leftover after parsing attributes in process `syz.3.4809'.
[  669.529348][T18545] netlink: 'syz.3.4809': attribute type 5 has an invalid length.
[  669.555732][T18545] netlink: 43 bytes leftover after parsing attributes in process `syz.3.4809'.
[  669.588106][T18509] loop1: detected capacity change from 0 to 32768
[  669.631644][T18509] XFS: ikeep mount option is deprecated.
[  669.702822][T18509] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  669.723382][T18564] .: renamed from bond0 (while UP)
[  670.064828][T18509] XFS (loop1): Ending clean mount
[  670.117164][T18509] XFS (loop1): Quotacheck needed: Please wait.
[  670.203617][T18590] netlink: 'syz.0.4820': attribute type 1 has an invalid length.
[  670.254578][T18509] XFS (loop1): Quotacheck: Done.
[  670.261028][T18590] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  670.476677][ T6027] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  670.969892][T18623] loop0: detected capacity change from 0 to 2048
[  671.119339][T18623] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  671.147075][T18623] ext4 filesystem being mounted at /925/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  671.255447][T18644] loop1: detected capacity change from 0 to 256
[  671.344904][ T6026] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  671.363143][T18644] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  671.436957][T18644] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010364, chksum : 0x43f9f21b, utbl_chksum : 0xe619d30d)
[  671.740984][T18671] usb usb8: usbfs: process 18671 (syz.0.4841) did not claim interface 0 before use
[  671.755705][ T6109] usb 4-1: new high-speed USB device number 116 using dummy_hcd
[  671.937642][ T6109] usb 4-1: Using ep0 maxpacket: 8
[  671.955745][T18681] loop4: detected capacity change from 0 to 256
[  671.962783][ T6109] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  671.980242][ T6109] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  672.020256][ T6109] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  672.060002][ T6109] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  672.094589][T18692] netlink: 'syz.1.4847': attribute type 10 has an invalid length.
[  672.126660][ T6109] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  672.158868][ T6109] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  672.189082][ T6109] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  672.248067][ T6109] usb 4-1: config 0 descriptor??
[  672.265653][T18692] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  672.286587][T18659] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  672.861339][ T6139] usb 4-1: USB disconnect, device number 116
[  672.874483][ T6032] Bluetooth: hci5: Opcode 0x0c03 failed: -19
[  673.015236][T18744] loop2: detected capacity change from 0 to 1024
[  673.024488][T18744] EXT4-fs: Ignoring removed orlov option
[  673.035594][T18744] EXT4-fs: Ignoring removed orlov option
[  673.093186][T18744] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  673.241344][T18760] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4861'.
[  673.283889][ T6041] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  673.736563][   T24] usb 2-1: new high-speed USB device number 111 using dummy_hcd
[  673.918306][   T24] usb 2-1: Using ep0 maxpacket: 8
[  673.939465][   T24] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  673.980290][   T24] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  674.010052][   T24] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  674.039787][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  674.116868][   T24] hub 2-1:1.0: bad descriptor, ignoring hub
[  674.121464][T18808] netlink: 'syz.2.4878': attribute type 7 has an invalid length.
[  674.154126][   T24] hub 2-1:1.0: probe with driver hub failed with error -5
[  674.220862][T18808] : entered promiscuous mode
[  674.250148][   T78] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  674.472120][   T24] usb 2-1: USB disconnect, device number 111
[  674.494855][ T6040] Bluetooth: hci4: command 0x0406 tx timeout
[  674.836016][   T24] usb 1-1: new high-speed USB device number 110 using dummy_hcd
[  675.031932][   T24] usb 1-1: Using ep0 maxpacket: 8
[  675.060747][   T24] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  675.080160][   T24] usb 1-1: config 179 has no interface number 0
[  675.097538][   T24] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  675.113328][T18878] loop3: detected capacity change from 0 to 512
[  675.120249][   T24] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  675.158428][   T24] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  675.208227][   T24] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  675.213853][T18878] EXT4-fs error (device loop3): ext4_orphan_get:1392: comm syz.3.4898: inode #15: comm syz.3.4898: iget: illegal inode #
[  675.263715][   T24] usb 1-1: config 179 interface 65 has no altsetting 0
[  675.282652][   T24] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  675.292248][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  675.359793][   T24] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input41
[  675.390005][T18878] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.4898: couldn't read orphan inode 15 (err -117)
[  675.476838][ T5197] input input41: unable to receive magic message: -110
[  675.499636][T18878] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  675.532565][T18897] loop4: detected capacity change from 0 to 8
[  675.555505][ T5197] input input41: unable to receive magic message: -32
[  675.581851][T18878] EXT4-fs error (device loop3): ext4_lookup:1787: comm syz.3.4898: inode #15: comm syz.3.4898: iget: illegal inode #
[  675.629348][T18897] process 'syz.4.4901' launched './file2' with NULL argv: empty string added
[  675.660373][ T5197] input input41: unable to receive magic message: -32
[  675.696841][ T5197] input input41: unable to receive magic message: -32
[  675.715496][ T5197] input input41: unable to receive magic message: -32
[  675.766703][ T6028] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  675.785389][   T24] usb 1-1: USB disconnect, device number 110
[  675.785498][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  676.052988][T18872] loop2: detected capacity change from 0 to 32768
[  676.092555][T18872] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.4895 (18872)
[  676.174663][T18872] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  676.188299][T18931] loop3: detected capacity change from 0 to 512
[  676.202893][T18935] vlan1: entered allmulticast mode
[  676.227149][T18935] veth0_vlan: entered allmulticast mode
[  676.233120][T18872] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  676.252709][T18931] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  676.278228][T18872] BTRFS info (device loop2): using free-space-tree
[  676.301926][T18931] EXT4-fs (loop3): orphan cleanup on readonly fs
[  676.308483][T18931] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  676.347805][T18931] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  676.357757][T18931] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.4905: bad orphan inode 768
[  676.399588][T18931] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  676.562810][T18931] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  676.597719][T18872] BTRFS info (device loop2): rebuilding free space tree
[  676.660297][T18931] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  676.859952][ T6041] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  676.897541][ T6028] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  677.261547][T18993] loop4: detected capacity change from 0 to 1024
[  677.307646][T18993] hfsplus: bad catalog entry used to create inode
[  677.463206][   T36] hfsplus: b-tree write err: -5, ino 4
[  677.690934][T18997] loop3: detected capacity change from 0 to 4096
[  677.700473][T19006] netlink: 260 bytes leftover after parsing attributes in process `syz.4.4922'.
[  677.730329][T18997] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  677.747281][T19012] loop1: detected capacity change from 0 to 16
[  677.830161][T19012] erofs (device loop1): mounted with root inode @ nid 36.
[  677.856346][T19017] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  677.961171][T18997] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  678.148325][T19029] loop1: detected capacity change from 0 to 256
[  678.258716][T19029] exfat: Deprecated parameter 'utf8'
[  678.288623][T19029] exfat: Deprecated parameter 'utf8'
[  678.410018][T19029] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[  678.562654][T19048] loop2: detected capacity change from 0 to 256
[  678.840487][T19064] netlink: 332 bytes leftover after parsing attributes in process `syz.1.4937'.
[  679.025911][T19073] loop2: detected capacity change from 0 to 1024
[  679.134135][T19089] netlink: 'syz.4.4947': attribute type 11 has an invalid length.
[  679.143012][T19089] netlink: 224 bytes leftover after parsing attributes in process `syz.4.4947'.
[  679.146610][T19073] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  679.258574][T19094] loop0: detected capacity change from 0 to 16
[  679.267517][T19094] erofs (device loop0): mounted with root inode @ nid 36.
[  679.308748][T19094] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36
[  679.355290][T19094] erofs (device loop0): failed to decompress -23 in[64, 4032] out[1851]
[  679.379527][T19094] erofs (device loop0): read error -117 @ 43 of nid 36
[  679.389485][ T6041] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  679.446494][T19104] loop1: detected capacity change from 0 to 256
[  679.453805][T19104] exfat: Deprecated parameter 'utf8'
[  679.597948][T19104] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  680.103260][T19139] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4960'.
[  680.393082][T19163] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[  680.410912][T19158] xt_TCPMSS: Only works on TCP SYN packets
[  681.160567][T19206] netlink: 'syz.4.4982': attribute type 4 has an invalid length.
[  681.214422][T19206] netlink: 2548 bytes leftover after parsing attributes in process `syz.4.4982'.
[  681.444433][T19214] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  681.571697][T19186] loop1: detected capacity change from 0 to 32768
[  681.634403][T19186] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  681.656786][T19186] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  681.785892][T19186] XFS (loop1): Ending clean mount
[  681.879784][T19186] XFS (loop1): Quotacheck needed: Please wait.
[  682.066266][T19186] XFS (loop1): Quotacheck: Done.
[  682.144387][ T6027] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  682.859129][T19222] loop4: detected capacity change from 0 to 32768
[  682.921961][T19222] ea_get: invalid extended attribute
[  682.947478][T19292] libceph: resolve '0' (ret=-3): failed
[  682.970615][T19222] ffff88805807ccf0: 04 00 00 00                                      ....
[  683.033125][T19295] program syz.2.5006 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  683.626939][T19319] loop4: detected capacity change from 0 to 16
[  683.669094][T19319] erofs (device loop4): mounted with root inode @ nid 36.
[  683.719153][T19319] erofs (device loop4): readahead error at folio 2 @ nid 89
[  683.766335][T19319] syz.4.5013: attempt to access beyond end of device
[  683.766335][T19319] loop4: rw=524288, sector=524296, nr_sectors = 8 limit=16
[  683.844306][T19319] erofs (device loop4): failed to decompress -5 in[4096, 0] out[4096]
[  683.866267][T19319] erofs (device loop4): read error -117 @ 0 of nid 89
[  683.874959][T19283] loop0: detected capacity change from 0 to 32768
[  683.909359][T19283] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5002 (19283)
[  683.910092][   T30] audit: type=1800 audit(1752669642.020:59): pid=19319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5013" name="file2" dev="loop4" ino=89 res=0 errno=0
[  683.952729][T19283] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  684.006874][T19283] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  684.023685][T19283] BTRFS info (device loop0): using free-space-tree
[  684.407867][ T6026] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  684.482878][T19361] loop3: detected capacity change from 0 to 764
[  684.652705][T19367] netlink: 'syz.2.5021': attribute type 1 has an invalid length.
[  684.773392][T19302] loop1: detected capacity change from 0 to 32768
[  684.806710][T19302] XFS: ikeep mount option is deprecated.
[  684.812445][T19302] XFS: ikeep mount option is deprecated.
[  684.952658][T19302] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  685.270201][T19302] XFS (loop1): Ending clean mount
[  685.312055][T19302] XFS (loop1): Quotacheck needed: Please wait.
[  685.393923][T19302] XFS (loop1): Quotacheck: Done.
[  685.610497][ T6027] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  686.126927][T19445] netlink: 'syz.3.5042': attribute type 21 has an invalid length.
[  686.195791][T19445] netlink: 'syz.3.5042': attribute type 11 has an invalid length.
[  686.455246][T19459] nftables ruleset with unbound chain
[  686.639897][T19472] No such timeout policy "syz0"
[  686.738963][T19479] loop1: detected capacity change from 0 to 256
[  686.776206][T19479] exfat: Deprecated parameter 'namecase'
[  686.850073][T19479] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  687.070599][T19495] loop0: detected capacity change from 0 to 256
[  687.105523][T19495] exfat: Deprecated parameter 'namecase'
[  687.159511][T19509] netlink: 'syz.1.5061': attribute type 1 has an invalid length.
[  687.190954][T19509] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5061'.
[  687.213163][T19495] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011fc0, chksum : 0xea22d69b, utbl_chksum : 0xe619d30d)
[  687.303450][T19495] overlay: filesystem on . not supported
[  687.682259][T19531] bond3: entered promiscuous mode
[  687.713916][T19531] 8021q: adding VLAN 0 to HW filter on device bond3
[  688.689502][T19559] loop2: detected capacity change from 0 to 32768
[  688.748451][ T6109] usb 4-1: new full-speed USB device number 117 using dummy_hcd
[  688.856041][T19627] netlink: 'syz.1.5085': attribute type 1 has an invalid length.
[  688.897719][T19582] loop4: detected capacity change from 0 to 32768
[  688.923367][ T6109] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[  688.934386][ T6109] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  688.945632][ T6109] usb 4-1: config 0 has no interface number 0
[  688.953384][ T6109] usb 4-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  688.966227][ T6109] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  688.982999][ T6109] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  688.987287][T19582] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.5071 (19582)
[  688.996346][ T6109] usb 4-1: config 0 interface 52 has no altsetting 0
[  689.019833][ T6109] usb 4-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  689.035962][ T6109] usb 4-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  689.050823][ T6109] usb 4-1: Product: syz
[  689.055077][ T6109] usb 4-1: SerialNumber: syz
[  689.074204][ T6109] usb 4-1: config 0 descriptor??
[  689.126429][T19559] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=data_checksum=none,compression=lz4,background_compression=gzip,wide_macs,journal_flush_disabled,norecovery,reconstruct_alloc,version_upgrade=incompatible,no_data_io
[  689.126460][T19559]   allowing incompatible features above 0.0: (unknown version)
[  689.126475][T19559]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  689.164592][T19582] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  689.217592][T19559] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[  689.239378][T19559] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  689.248159][T19582] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm
[  689.271780][T19559] bcachefs (loop2): Now allowing incompatible features up to 1.28: inode_has_case_insensitive, previously allowed up to 0.0: (unknown version)
[  689.271780][T19559] 
[  689.272610][T19582] BTRFS info (device loop4): disk space caching is enabled
[  689.331891][ T6109] input: syz (Stick) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.52/input/input43
[  689.347094][T19559] bcachefs (loop2): dropping and reconstructing all alloc info
[  689.377159][T19582] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  689.407125][T19559] bcachefs (loop2): accounting_read... done
[  689.463532][T19559] bcachefs (loop2): alloc_read... done
[  689.481074][T19559] bcachefs (loop2): snapshots_read... done
[  689.554141][T19647] loop1: detected capacity change from 0 to 4096
[  689.573940][   T24] usb 4-1: USB disconnect, device number 117
[  689.734556][T19582] BTRFS info (device loop4): rebuilding free space tree
[  689.818459][T19582] BTRFS info (device loop4): disabling free space tree
[  689.859744][T19582] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  689.904252][T19582] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  690.100613][   T30] audit: type=1326 audit(1752669647.817:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19696 comm="syz.1.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  690.228500][   T30] audit: type=1326 audit(1752669647.817:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19696 comm="syz.1.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  690.338120][   T30] audit: type=1326 audit(1752669647.817:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19696 comm="syz.1.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  690.404492][   T30] audit: type=1326 audit(1752669647.817:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19696 comm="syz.1.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  690.454359][ T6038] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  691.242882][T19738] netlink: 'syz.3.5103': attribute type 1 has an invalid length.
[  691.273394][T19738] netlink: 224 bytes leftover after parsing attributes in process `syz.3.5103'.
[  691.756580][T19766] loop0: detected capacity change from 0 to 1024
[  691.888807][T19774] loop1: detected capacity change from 0 to 512
[  691.976182][T19774] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  691.993695][T19774] ext4 filesystem being mounted at /972/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  692.283440][ T6027] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  692.989479][T19837] loop2: detected capacity change from 0 to 512
[  693.042028][T19837] EXT4-fs: Ignoring removed bh option
[  693.078669][T19837] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  693.143121][T19837] EXT4-fs (loop2): 1 truncate cleaned up
[  693.177310][T19849] loop4: detected capacity change from 0 to 512
[  693.184751][T19849] EXT4-fs: Ignoring removed bh option
[  693.192922][T19837] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  693.206399][T19852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5133'.
[  693.262813][T19849] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  693.304556][T19849] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  693.331397][T19849] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  693.389219][T19849] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  693.391824][ T6041] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  693.466574][T19849] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  693.516779][T19849] 9pnet: Could not find request transport: •câ'câ×Naò·=—ïNâ/õhÿÈ¡øc‡þ.)»~Âø÷ÿº½tÂC
€sPÛÚ^](—K§MäúuæËÏI%z$þöÑ¡kjàõ9“ÄÀº$àœ<¹è]
[  693.683904][ T6038] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  693.995641][T19889] loop4: detected capacity change from 0 to 2048
[  694.026642][T19894] Cannot find add_set index 3 as target
[  694.122310][T19901] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  694.266743][T19908] dummy0: mtu less than device minimum
[  694.602177][T19931] loop3: detected capacity change from 0 to 256
[  694.710240][T19931] FAT-fs (loop3): Directory bread(block 64) failed
[  694.725258][T19931] FAT-fs (loop3): Directory bread(block 65) failed
[  694.747408][T19931] FAT-fs (loop3): Directory bread(block 66) failed
[  694.783795][T19931] FAT-fs (loop3): Directory bread(block 67) failed
[  694.825625][T19931] FAT-fs (loop3): Directory bread(block 68) failed
[  694.832305][T19931] FAT-fs (loop3): Directory bread(block 69) failed
[  694.897704][T19931] FAT-fs (loop3): Directory bread(block 70) failed
[  694.904316][T19931] FAT-fs (loop3): Directory bread(block 71) failed
[  694.971028][T19931] FAT-fs (loop3): Directory bread(block 72) failed
[  694.996157][T19931] FAT-fs (loop3): Directory bread(block 73) failed
[  695.074685][T19953] loop2: detected capacity change from 0 to 2048
[  695.107691][T19953] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  695.163093][T19963] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  695.610538][    T9] usb 5-1: new high-speed USB device number 109 using dummy_hcd
[  695.827871][    T9] usb 5-1: Using ep0 maxpacket: 32
[  695.849492][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  695.892713][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  695.927956][    T9] usb 5-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  695.943089][T20010] bridge_slave_0: left allmulticast mode
[  695.969398][T20010] bridge_slave_0: left promiscuous mode
[  695.975321][    T9] usb 5-1: config 0 interface 0 has no altsetting 1
[  695.997566][T20010] bridge0: port 1(bridge_slave_0) entered disabled state
[  696.001953][    T9] usb 5-1: New USB device found, idVendor=0582, idProduct=0016, bcdDevice=8e.57
[  696.012350][T20005] loop1: detected capacity change from 0 to 256
[  696.026077][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  696.047754][    T9] usb 5-1: Product: syz
[  696.052002][    T9] usb 5-1: Manufacturer: syz
[  696.083238][T20010] bridge_slave_1: left allmulticast mode
[  696.087377][    T9] usb 5-1: SerialNumber: syz
[  696.099980][T20010] bridge_slave_1: left promiscuous mode
[  696.109975][    T9] usb 5-1: config 0 descriptor??
[  696.119069][T20010] bridge0: port 2(bridge_slave_1) entered disabled state
[  696.142960][T20005] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  696.194731][T20010] bond0: (slave bond_slave_0): Releasing backup interface
[  696.243715][T20010] bond0: (slave bond_slave_1): Releasing backup interface
[  696.278048][T20010] team0: Port device team_slave_0 removed
[  696.321586][T20010] team0: Port device team_slave_1 removed
[  696.341583][T20010] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  696.359772][T20010] batman_adv: batadv0: Removing interface: batadv_slave_0
[  696.393395][T20010] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  696.430881][T20010] batman_adv: batadv0: Removing interface: batadv_slave_1
[  696.624757][    T9] usb 5-1: USB disconnect, device number 109
[  696.699684][T20050] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  696.706273][T20050] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  696.738589][T20050] vhci_hcd vhci_hcd.0: Device attached
[  696.763995][T20061] vhci_hcd vhci_hcd.0: port 0 already used
[  696.790821][T20055] vhci_hcd: connection closed
[  696.809186][ T6130] vhci_hcd: stop threads
[  696.829497][ T6130] vhci_hcd: release socket
[  696.850897][ T6130] vhci_hcd: disconnect device
[  697.056910][T20077] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5192'.
[  697.067243][T20077] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5192'.
[  698.031032][T20127] comedi comedi0: Minor -2147450880 is invalid!
[  698.122859][T20103] infiniband syz!: set down
[  698.127794][T20103] infiniband syz!: added team_slave_0
[  698.397602][T20103] RDS/IB: syz!: added
[  698.402920][T20103] smc: adding ib device syz! with port count 1
[  698.420225][T20103] smc:    ib device syz! port 1 has pnetid 
[  698.779442][ T6109] usb 1-1: new high-speed USB device number 111 using dummy_hcd
[  698.970756][ T6109] usb 1-1: New USB device found, idVendor=0c45, idProduct=60a8, bcdDevice=b5.55
[  698.996651][ T6109] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  699.024206][ T6109] usb 1-1: Product: syz
[  699.038262][ T6109] usb 1-1: Manufacturer: syz
[  699.043314][ T6109] usb 1-1: SerialNumber: syz
[  699.099658][ T6109] usb 1-1: config 0 descriptor??
[  699.109268][T20189] netlink: 'syz.4.5225': attribute type 1 has an invalid length.
[  699.163494][ T6109] gspca_main: sonixb-2.14.0 probing 0c45:60a8
[  699.418833][T20202] team0: Port device team_slave_0 removed
[  699.440843][T20202] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  699.557389][T20209] loop4: detected capacity change from 0 to 256
[  699.584598][ T6109] sonixb 1-1:0.0: Error writing register 01: -71
[  699.611063][ T6109] sonixb 1-1:0.0: probe with driver sonixb failed with error -71
[  699.632216][T20209] FAT-fs (loop4): Directory bread(block 64) failed
[  699.640135][ T6109] usb 1-1: USB disconnect, device number 111
[  699.663694][T20209] FAT-fs (loop4): Directory bread(block 65) failed
[  699.671976][T20209] FAT-fs (loop4): Directory bread(block 66) failed
[  699.679453][T20209] FAT-fs (loop4): Directory bread(block 67) failed
[  699.688171][T20209] FAT-fs (loop4): Directory bread(block 68) failed
[  699.697748][T20209] FAT-fs (loop4): Directory bread(block 69) failed
[  699.756450][T20209] FAT-fs (loop4): Directory bread(block 70) failed
[  699.771266][T20209] FAT-fs (loop4): Directory bread(block 71) failed
[  699.792444][T20209] FAT-fs (loop4): Directory bread(block 72) failed
[  699.801717][T20221] loop1: detected capacity change from 0 to 128
[  699.805198][T20209] FAT-fs (loop4): Directory bread(block 73) failed
[  700.154407][   T30] audit: type=1326 audit(1752669657.215:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20238 comm="syz.4.5237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  700.267760][   T30] audit: type=1326 audit(1752669657.215:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20238 comm="syz.4.5237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  700.355905][   T30] audit: type=1326 audit(1752669657.243:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20238 comm="syz.4.5237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  700.390141][T20249] capability: warning: `syz.1.5239' uses 32-bit capabilities (legacy support in use)
[  700.458372][   T30] audit: type=1326 audit(1752669657.243:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20238 comm="syz.4.5237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  700.543908][   T30] audit: type=1326 audit(1752669657.243:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20238 comm="syz.4.5237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d2ef8e929 code=0x7ffc0000
[  700.688301][T20263] loop2: detected capacity change from 0 to 64
[  701.117256][T20289] netlink: 'syz.2.5253': attribute type 1 has an invalid length.
[  701.149332][T20290] loop0: detected capacity change from 0 to 2048
[  701.208658][T20290] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  701.260482][ T6064] usb 2-1: new high-speed USB device number 112 using dummy_hcd
[  701.473253][ T6064] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[  701.521408][ T6064] usb 2-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  701.545149][ T6064] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  701.580559][ T6064] usb 2-1: config 220 has no interface number 2
[  701.617679][ T6064] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  701.667103][ T6064] usb 2-1: config 220 interface 0 has no altsetting 0
[  701.673959][ T6064] usb 2-1: config 220 interface 76 has no altsetting 0
[  701.695846][ T6064] usb 2-1: config 220 interface 1 has no altsetting 0
[  701.706577][ T6064] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  701.710419][T20315] netlink: 'syz.2.5259': attribute type 1 has an invalid length.
[  701.719861][ T6064] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  701.748703][ T6064] usb 2-1: Product: syz
[  701.763006][ T6064] usb 2-1: Manufacturer: syz
[  701.779490][ T6064] usb 2-1: SerialNumber: syz
[  702.092557][ T6064] usb 2-1: selecting invalid altsetting 0
[  702.117817][ T6064] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  702.147269][ T6064] usb 2-1: No valid video chain found.
[  702.246728][ T6064] usb 2-1: selecting invalid altsetting 0
[  702.257998][ T6064] usbtest 2-1:220.1: probe with driver usbtest failed with error -22
[  702.313229][ T6064] usb 2-1: USB disconnect, device number 112
[  702.779288][T20368] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  702.807698][T20368] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5273'.
[  702.837086][T20368] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  703.274260][T20395] Scaler: =================  START STATUS  =================
[  703.304610][T20395] Scaler: ==================  END STATUS  ==================
[  703.991806][T20433] openvswitch: netlink: Missing valid actions attribute.
[  704.043150][T20433] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  704.548752][T20461] loop1: detected capacity change from 0 to 1764
[  705.036104][T20481] netlink: 292 bytes leftover after parsing attributes in process `syz.2.5312'.
[  705.354265][T20498] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5318'.
[  705.467371][T20504] loop0: detected capacity change from 0 to 256
[  705.520417][T20504] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  705.621282][T20518] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5323'.
[  705.743515][T20524] loop3: detected capacity change from 0 to 256
[  705.784593][T20525] netlink: 'syz.1.5325': attribute type 1 has an invalid length.
[  705.821765][T20525] netlink: 'syz.1.5325': attribute type 2 has an invalid length.
[  705.837685][ T6109] usb 1-1: new high-speed USB device number 112 using dummy_hcd
[  706.053870][ T6109] usb 1-1: config index 0 descriptor too short (expected 32820, got 52)
[  706.086094][ T6109] usb 1-1: config 0 has an invalid descriptor of length 99, skipping remainder of the config
[  706.128603][ T6109] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  706.146808][ T6109] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  706.195843][ T6109] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 61, changing to 9
[  706.232992][ T6109] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 25458, setting to 1024
[  706.271523][ T6109] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  706.307785][ T6109] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0035, bcdDevice= a.97
[  706.327963][ T6109] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  706.359594][   T30] audit: type=1326 audit(1752669663.013:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20552 comm="syz.1.5333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  706.387709][ T6109] usb 1-1: Product: syz
[  706.391946][ T6109] usb 1-1: Manufacturer: syz
[  706.407746][ T6109] usb 1-1: SerialNumber: syz
[  706.433519][ T6109] usb 1-1: config 0 descriptor??
[  706.446024][   T30] audit: type=1326 audit(1752669663.031:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20552 comm="syz.1.5333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  706.486488][ T6109] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  706.565067][   T30] audit: type=1326 audit(1752669663.031:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20552 comm="syz.1.5333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  706.633041][   T30] audit: type=1326 audit(1752669663.031:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20552 comm="syz.1.5333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  706.729626][   T30] audit: type=1326 audit(1752669663.031:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20552 comm="syz.1.5333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  706.753558][T20583] xt_limit: Overflow, try lower: 65536/2147483648
[  706.768505][    T9] usb 1-1: USB disconnect, device number 112
[  706.901500][ T7230] udevd[7230]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  707.309516][T20625] sock: sock_timestamping_bind_phc: sock not bind to device
[  707.862092][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  707.868804][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  708.102170][T20674] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  708.134087][T20674] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  708.217786][T20681] loop3: detected capacity change from 0 to 256
[  708.353090][T20681] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x24500465, utbl_chksum : 0xe619d30d)
[  708.484903][T20698] loop0: detected capacity change from 0 to 128
[  708.701946][T20710] dns_resolver: Unsupported content type (98)
[  708.729426][T20711] netlink: 'syz.3.5373': attribute type 21 has an invalid length.
[  708.764166][T20711] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5373'.
[  708.989276][T20725] xt_l2tp: missing protocol rule (udp|l2tpip)
[  709.257989][T20743] netlink: 'syz.3.5383': attribute type 1 has an invalid length.
[  709.281403][T20743] netlink: 224 bytes leftover after parsing attributes in process `syz.3.5383'.
[  709.340499][T20747] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  709.533956][T20763] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5387'.
[  709.613685][T20763] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5387'.
[  709.813448][T20776] veth0_to_bridge: left allmulticast mode
[  709.831304][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  709.844552][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  709.857957][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  709.870811][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  709.883621][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  709.896246][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  709.908903][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  709.921546][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  709.934751][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  710.008742][T20776] veth0_to_bridge: left promiscuous mode
[  710.014709][T20776] bridge0: port 3(veth0_to_bridge) entered disabled state
[  710.131073][T20776] bridge_slave_0: left allmulticast mode
[  710.142197][T20776] bridge_slave_0: left promiscuous mode
[  710.180738][T20776] bridge0: port 1(bridge_slave_0) entered disabled state
[  710.205640][T20776] bridge_slave_1: left allmulticast mode
[  710.211678][T20776] bridge_slave_1: left promiscuous mode
[  710.217599][T20776] bridge0: port 2(bridge_slave_1) entered disabled state
[  710.237547][T20776] bond0: (slave bond_slave_0): Releasing backup interface
[  710.297695][T20776] bond0: (slave bond_slave_1): Releasing backup interface
[  710.331106][T20776] team0: Port device team_slave_0 removed
[  710.356618][T20776] team0: Port device team_slave_1 removed
[  710.364080][T20776] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  710.393749][T20776] batman_adv: batadv0: Removing interface: batadv_slave_0
[  710.393810][ T6064] usb 1-1: new high-speed USB device number 113 using dummy_hcd
[  710.417666][T20776] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  710.450371][T20776] batman_adv: batadv0: Removing interface: batadv_slave_1
[  710.496663][T20776] bond0: (slave wlan1): Releasing backup interface
[  710.577472][ T6064] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 44, changing to 9
[  710.591924][T20764] loop4: detected capacity change from 0 to 32768
[  710.607975][   T24] usb 4-1: new high-speed USB device number 118 using dummy_hcd
[  710.622897][ T6064] usb 1-1: New USB device found, idVendor=18d1, idProduct=5030, bcdDevice= 0.00
[  710.632245][T20764] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.5386 (20764)
[  710.710126][T20764] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  710.753707][ T6064] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  710.764574][T20764] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  710.792595][T20764] BTRFS info (device loop4): using free-space-tree
[  710.803514][ T6064] usb 1-1: config 0 descriptor??
[  710.823042][   T24] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  710.836434][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  710.934066][   T24] usb 4-1: config 0 descriptor??
[  711.072753][ T6064] usbhid 1-1:0.0: can't add hid device: -71
[  711.120715][ T6064] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  711.169404][ T6064] usb 1-1: USB disconnect, device number 113
[  711.209865][   T24] udl 4-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  711.226645][ T6038] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  711.416021][   T24] [drm:udl_init] *ERROR* Selecting channel failed
[  711.523896][   T24] [drm] Initialized udl 0.0.1 for 4-1:0.0 on minor 2
[  711.543413][   T24] [drm] Initialized udl on minor 2
[  711.564649][   T24] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  711.623111][   T24] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  711.680630][ T6064] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  711.695404][   T24] usb 4-1: USB disconnect, device number 118
[  711.755675][ T6064] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  711.773199][ T6128] usb 5-1: new high-speed USB device number 110 using dummy_hcd
[  711.965833][ T6128] usb 5-1: Using ep0 maxpacket: 16
[  711.989384][ T6128] usb 5-1: unable to get BOS descriptor or descriptor too short
[  712.037427][ T6128] usb 5-1: config 6 has an invalid interface number: 5 but max is 0
[  712.072619][ T6128] usb 5-1: config 6 has an invalid interface descriptor of length 2, skipping
[  712.136231][ T6128] usb 5-1: config 6 has no interface number 0
[  712.158476][ T6128] usb 5-1: config 6 interface 5 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  712.211059][ T6128] usb 5-1: config 6 interface 5 has no altsetting 0
[  712.231696][T20902] loop2: detected capacity change from 0 to 2048
[  712.249960][ T6128] usb 5-1: New USB device found, idVendor=0c52, idProduct=9020, bcdDevice=e8.26
[  712.306091][ T6128] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  712.329083][ T6128] usb 5-1: Product: syz
[  712.351086][ T6128] usb 5-1: Manufacturer: syz
[  712.356346][ T6128] usb 5-1: SerialNumber: syz
[  712.388048][T20902] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  712.441913][T20913] loop0: detected capacity change from 0 to 512
[  712.503573][T20913] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  712.585711][T20913] EXT4-fs (loop0): 1 truncate cleaned up
[  712.615416][T20913] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  712.718846][ T6128] ftdi_sio 5-1:6.5: FTDI USB Serial Device converter detected
[  712.770637][ T6128] ftdi_sio ttyUSB0: unknown device type: 0xe826
[  712.827598][ T6128] usb 5-1: USB disconnect, device number 110
[  712.854361][ T6128] ftdi_sio 5-1:6.5: device disconnected
[  712.912109][T20941] xt_CT: You must specify a L4 protocol and not use inversions on it
[  712.936648][ T6026] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  713.688299][T20988] netlink: 248 bytes leftover after parsing attributes in process `syz.3.5439'.
[  713.828804][T20990] xt_CT: No such helper "snmp_trap"
[  714.183654][T21023] binfmt_misc: register: failed to install interpreter file ./file0
[  714.666843][T21053] netlink: 4768 bytes leftover after parsing attributes in process `syz.1.5456'.
[  714.688739][ T6195] usb 4-1: new high-speed USB device number 119 using dummy_hcd
[  714.900573][ T6195] usb 4-1: config 0 has an invalid interface number: 255 but max is 0
[  714.916681][ T6195] usb 4-1: config 0 has no interface number 0
[  714.937032][ T6195] usb 4-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  714.969804][ T6195] usb 4-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  715.012490][ T6195] usb 4-1: config 0 interface 255 has no altsetting 0
[  715.051653][ T6195] usb 4-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  715.095281][ T6195] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  715.148540][ T6195] usb 4-1: config 0 descriptor??
[  715.178370][ T6195] ums-realtek 4-1:0.255: USB Mass Storage device detected
[  715.434133][ T6195] usb 4-1: USB disconnect, device number 119
[  715.465700][T21035] loop0: detected capacity change from 0 to 32768
[  715.571800][T21035] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  715.709217][ T6026] (syz-executor,6026,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 76
[  715.801400][ T6026] ocfs2: Unmounting device (7,0) on (node local)
[  716.990965][T21175] loop0: detected capacity change from 0 to 256
[  717.085620][T21175] FAT-fs (loop0): Directory bread(block 64) failed
[  717.124222][T21175] FAT-fs (loop0): Directory bread(block 65) failed
[  717.139310][T21107] loop1: detected capacity change from 0 to 32768
[  717.203255][T21175] FAT-fs (loop0): Directory bread(block 66) failed
[  717.221058][T21107] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.5467 (21107)
[  717.266301][T21175] FAT-fs (loop0): Directory bread(block 67) failed
[  717.299353][T21175] FAT-fs (loop0): Directory bread(block 68) failed
[  717.322982][T21175] FAT-fs (loop0): Directory bread(block 69) failed
[  717.331494][T21175] FAT-fs (loop0): Directory bread(block 70) failed
[  717.358472][T21107] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  717.370705][T21175] FAT-fs (loop0): Directory bread(block 71) failed
[  717.392100][T21107] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  717.410163][T21175] FAT-fs (loop0): Directory bread(block 72) failed
[  717.437811][T21107] BTRFS info (device loop1): using free-space-tree
[  717.451160][T21175] FAT-fs (loop0): Directory bread(block 73) failed
[  717.607324][T21217] loop4: detected capacity change from 0 to 256
[  717.752919][T21224] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5493'.
[  717.809985][T21217] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb080095b, utbl_chksum : 0xe619d30d)
[  717.893282][ T6027] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  718.250459][T21248] program syz.4.5500 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  718.690265][T21273] tipc: Trying to set illegal importance in message
[  719.613191][T21322] syz.3.5521: attempt to access beyond end of device
[  719.613191][T21322] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0
[  719.644480][T21322] ADFS-fs (nbd3): error: unable to read block 3, try 0
[  719.909420][T21334] loop0: detected capacity change from 0 to 2048
[  720.016699][T21342] loop3: detected capacity change from 0 to 1764
[  720.038420][T21334] NILFS error (device loop0): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  720.060536][T21346] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  720.095651][T21342] iso9660: Corrupted directory entry in block 2 of inode 1920
[  720.129212][T21334] Remounting filesystem read-only
[  720.167778][T21351] netlink: 'syz.4.5530': attribute type 3 has an invalid length.
[  720.210696][T21334] NILFS (loop0): the device already has a read-only mount.
[  720.221090][T21351] netlink: 'syz.4.5530': attribute type 3 has an invalid length.
[  720.229009][T21351] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5530'.
[  720.279891][T21354] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5531'.
[  720.285656][T21291] loop2: detected capacity change from 0 to 32768
[  720.540146][   T30] audit: type=1326 audit(1752669676.272:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21376 comm="syz.1.5536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  720.586902][   T30] audit: type=1326 audit(1752669676.300:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21376 comm="syz.1.5536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  720.639762][   T30] audit: type=1326 audit(1752669676.300:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21376 comm="syz.1.5536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  720.662565][   T30] audit: type=1326 audit(1752669676.300:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21376 comm="syz.1.5536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd88bb8e929 code=0x7ffc0000
[  720.769026][T21291] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  720.769060][T21291]   allowing incompatible features above 0.0: (unknown version)
[  720.769075][T21291]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  720.958923][T21291] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[  720.987859][T21291] bcachefs (loop2): invalid bkey in superblock btree=snapshots level=1: u64s 11 type inode SPOS_MAX len 0 ver 0: (unpack error)
[  720.987885][T21291]   invalid key type for btree internal btree node (inode), deleting
[  721.087331][T21291] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  721.108867][T21291] bcachefs (loop2): Version upgrade required:
[  721.108867][T21291] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  721.108867][T21291] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  721.108867][T21291]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  721.185727][    C1] vkms_vblank_simulate: vblank timer overrun
[  721.344717][T21291] bcachefs (loop2): dropping and reconstructing all alloc info
[  721.439864][T21291] bcachefs (loop2): accounting_read... done
[  721.463430][T21291] bcachefs (loop2): alloc_read... done
[  721.470964][T21291] bcachefs (loop2): snapshots_read... done
[  721.503767][T21291] bcachefs (loop2): Fixed errors, running fsck a second time to verify fs is clean
[  721.657117][T21420] netlink: 'syz.0.5547': attribute type 1 has an invalid length.
[  722.037069][T21436] loop1: detected capacity change from 0 to 256
[  722.086720][T21400] loop4: detected capacity change from 0 to 32768
[  723.038203][T21474] loop4: detected capacity change from 0 to 256
[  723.085475][T21474] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  723.602620][T21493] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5567'.
[  723.788190][T21471] loop0: detected capacity change from 0 to 32768
[  724.088048][T21516] loop1: detected capacity change from 0 to 1024
[  724.123301][T21519] netlink: 'syz.4.5571': attribute type 1 has an invalid length.
[  724.147313][T21516] hfsplus: inconsistency in B*Tree (0,1,255,1,0)
[  724.211144][T21516] hfsplus: xattr searching failed
[  724.291426][T21471] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  724.291458][T21471]   allowing incompatible features above 0.0: (unknown version)
[  724.291472][T21471]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  724.552703][T21471] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[  724.561448][T21471] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  724.670516][T21471] bcachefs (loop0): Version upgrade required:
[  724.670516][T21471] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  724.670516][T21471] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  724.670516][T21471]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  724.792335][T21471] bcachefs (loop0): dropping and reconstructing all alloc info
[  724.812853][T21543] loop1: detected capacity change from 0 to 512
[  724.851722][T21543] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  724.909664][T21471] bcachefs (loop0): accounting_read...
[  724.922655][T21543] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.5576: bad orphan inode 16
[  724.939214][T21471]  done
[  724.942028][T21471] bcachefs (loop0): alloc_read... done
[  724.985575][T21471] bcachefs (loop0): snapshots_read... done
[  725.003165][T21543] ext4_test_bit(bit=15, block=4) = 0
[  725.044245][T21543] EXT4-fs (loop1): 1 orphan inode deleted
[  725.051862][T21543] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  725.215619][T21543] EXT4-fs error (device loop1): __ext4_new_inode:1073: comm syz.1.5576: reserved inode found cleared - inode=9
[  725.447762][ T6027] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  725.904007][T21590] loop1: detected capacity change from 0 to 512
[  725.938199][T21590] EXT4-fs: Ignoring removed nobh option
[  726.018062][T21590] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[  726.072695][T21590] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.5590: attempt to clear invalid blocks 2 len 1
[  726.090252][T21600] loop3: detected capacity change from 0 to 128
[  726.125545][T21600] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  726.141990][T21590] EXT4-fs (loop1): Remounting filesystem read-only
[  726.142748][T21600] ext4 filesystem being mounted at /1020/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  726.193947][T21590] EXT4-fs (loop1): 1 truncate cleaned up
[  726.207428][T21590] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  726.279103][ T6028] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  726.399652][ T6027] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  727.068347][T21648] ÿ: renamed from bond_slave_0
[  727.360956][T21666] netlink: 830 bytes leftover after parsing attributes in process `syz.4.5614'.
[  727.378123][T21667] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5613'.
[  727.550895][T21626] loop1: detected capacity change from 0 to 32768
[  727.633625][T21626] find_entry called with index >= next_index
[  727.682220][T21626] find_entry called with index >= next_index
[  727.708898][T21626] find_entry called with index >= next_index
[  728.050383][T21692] loop4: detected capacity change from 0 to 4096
[  728.110390][T21692] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  728.308337][T21692] ntfs3(loop4): ino=19, mi_enum_attr
[  728.313817][T21692] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  729.124523][T21754] loop2: detected capacity change from 0 to 64
[  729.216777][    T9] usb 4-1: new high-speed USB device number 120 using dummy_hcd
[  729.337087][ T6195] usb 1-1: new high-speed USB device number 114 using dummy_hcd
[  729.426146][    T9] usb 4-1: Using ep0 maxpacket: 8
[  729.455875][    T9] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  729.465738][    T9] usb 4-1: config 179 has no interface number 0
[  729.481989][    T9] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  729.523945][    T9] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  729.557388][    T9] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  729.577293][ T6195] usb 1-1: config 0 has an invalid interface number: 135 but max is 0
[  729.585914][ T6195] usb 1-1: config 0 has no interface number 0
[  729.601179][    T9] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  729.618161][ T6195] usb 1-1: config 0 interface 135 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 32
[  729.630499][    T9] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  729.646632][T21792] loop4: detected capacity change from 0 to 128
[  729.649467][ T6195] usb 1-1: config 0 interface 135 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  729.679597][    T9] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  729.690400][T21792] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  729.690510][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  729.725793][ T6195] usb 1-1: New USB device found, idVendor=05ac, idProduct=1402, bcdDevice=45.65
[  729.740262][ T6195] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  729.751842][ T6195] usb 1-1: Product: syz
[  729.764824][T21740] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  729.765638][T21792] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  729.784937][ T6195] usb 1-1: Manufacturer: syz
[  729.789643][ T6195] usb 1-1: SerialNumber: syz
[  729.862413][ T6195] usb 1-1: config 0 descriptor??
[  729.894768][T21752] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  729.902811][T21752] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  730.205555][T21752] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  730.234801][T21752] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  730.359925][    T9] usb 4-1: USB disconnect, device number 120
[  730.359989][    C0] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  730.368955][T21820] loop2: detected capacity change from 0 to 128
[  730.375171][    C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  730.457299][T21820] befs: (loop2): invalid magic header
[  730.482838][ T6195] asix 1-1:0.135 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  730.525639][ T6195] asix 1-1:0.135: probe with driver asix failed with error -71
[  730.591905][ T6195] usb 1-1: USB disconnect, device number 114
[  731.310793][T21876] loop3: detected capacity change from 0 to 1764
[  731.546087][ T6128] usb 1-1: new high-speed USB device number 115 using dummy_hcd
[  731.658386][T21907] netlink: 80 bytes leftover after parsing attributes in process `syz.3.5666'.
[  731.738505][ T6128] usb 1-1: Using ep0 maxpacket: 16
[  731.772280][ T6128] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  731.802622][ T6128] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  731.826214][ T6128] usb 1-1: Product: syz
[  731.830477][ T6128] usb 1-1: Manufacturer: syz
[  731.838528][ T6128] usb 1-1: SerialNumber: syz
[  731.877767][ T6128] r8152-cfgselector 1-1: Unknown version 0x0000
[  731.884407][ T6128] r8152-cfgselector 1-1: config 0 descriptor??
[  731.894172][T21912] geneve2: entered promiscuous mode
[  732.125283][    T9] usb 5-1: new low-speed USB device number 111 using dummy_hcd
[  732.321787][    T9] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  732.357536][T21949] loop3: detected capacity change from 0 to 64
[  732.357573][    T9] usb 5-1: string descriptor 0 read error: -22
[  732.390586][    T9] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  732.404341][   T24] r8152-cfgselector 1-1: USB disconnect, device number 115
[  732.411548][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  732.465200][    T9] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22
[  732.693709][    T9] usb 5-1: USB disconnect, device number 111
[  732.739799][T21970] loop3: detected capacity change from 0 to 4096
[  732.861460][T21970] overlay: filesystem on ./file0 is read-only
[  733.054840][T21989] loop2: detected capacity change from 0 to 2048
[  733.130669][T21989] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  733.399754][T22012] syz.0.5693 uses obsolete (PF_INET,SOCK_PACKET)
[  733.706328][ T6195] usb 5-1: new high-speed USB device number 112 using dummy_hcd
[  733.861932][T22047] netlink: 10 bytes leftover after parsing attributes in process `syz.3.5703'.
[  733.898280][T22050] netlink: 172 bytes leftover after parsing attributes in process `syz.1.5704'.
[  733.916798][ T6195] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  733.925965][T22050] netlink: 64 bytes leftover after parsing attributes in process `syz.1.5704'.
[  733.935694][ T6195] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  733.984317][ T6195] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  734.000930][ T6195] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  734.002321][T22050] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5704'.
[  734.037003][ T6195] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  734.088095][ T6195] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  734.127445][ T6195] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  734.143786][ T6195] usb 5-1: Product: syz
[  734.163359][ T6195] usb 5-1: Manufacturer: syz
[  734.200019][ T6195] cdc_wdm 5-1:1.0: skipping garbage
[  734.205346][ T6195] cdc_wdm 5-1:1.0: skipping garbage
[  734.245687][ T6195] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  734.267239][ T6195] cdc_wdm 5-1:1.0: Unknown control protocol
[  734.432900][T22080] loop0: detected capacity change from 0 to 256
[  734.483701][ T6128] usb 5-1: USB disconnect, device number 112
[  734.555103][T22080] FAT-fs (loop0): Directory bread(block 64) failed
[  734.577524][T22080] FAT-fs (loop0): Directory bread(block 65) failed
[  734.600770][T22080] FAT-fs (loop0): Directory bread(block 66) failed
[  734.619830][T22080] FAT-fs (loop0): Directory bread(block 67) failed
[  734.643173][T22080] FAT-fs (loop0): Directory bread(block 68) failed
[  734.682529][T22080] FAT-fs (loop0): Directory bread(block 69) failed
[  734.710889][T22080] FAT-fs (loop0): Directory bread(block 70) failed
[  734.764706][T22080] FAT-fs (loop0): Directory bread(block 71) failed
[  734.786696][T22080] FAT-fs (loop0): Directory bread(block 72) failed
[  734.794271][T22080] FAT-fs (loop0): Directory bread(block 73) failed
[  735.304318][T22134] bridge0: port 3(batadv0) entered disabled state
[  735.390339][T22134] bridge_slave_0: left allmulticast mode
[  735.422905][T22134] bridge_slave_0: left promiscuous mode
[  735.442827][T22134] bridge0: port 1(bridge_slave_0) entered disabled state
[  735.456133][T22134] bridge_slave_1: left allmulticast mode
[  735.469829][T22134] bridge_slave_1: left promiscuous mode
[  735.479095][T22134] bridge0: port 2(bridge_slave_1) entered disabled state
[  735.492960][   T30] audit: type=1107 audit(1752669690.252:78): pid=22144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='h'
[  735.523940][T22134] bond0: (slave bond_slave_0): Releasing backup interface
[  735.526509][T22148] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5731'.
[  735.580802][T22134] bond0: (slave bond_slave_1): Releasing backup interface
[  735.619032][T22134] team0: Port device team_slave_0 removed
[  735.648462][T22134] team0: Port device team_slave_1 removed
[  735.659649][T22134] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  735.669312][T22134] batman_adv: batadv0: Removing interface: batadv_slave_0
[  735.680956][T22134] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  735.689702][T22134] batman_adv: batadv0: Removing interface: batadv_slave_1
[  735.699148][T22154] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5733'.
[  735.904578][T22158] netlink: 'syz.2.5734': attribute type 2 has an invalid length.
[  735.950454][T22158] netlink: 'syz.2.5734': attribute type 8 has an invalid length.
[  735.994720][T22158] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5734'.
[  736.476540][T22152] loop0: detected capacity change from 0 to 32768
[  736.521597][T22152] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5732 (22152)
[  736.644993][T22152] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  736.689107][T22152] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  736.742967][T22152] BTRFS info (device loop0): using free-space-tree
[  737.042104][T22152] BTRFS info (device loop0): rebuilding free space tree
[  737.081972][T22170] loop1: detected capacity change from 0 to 32768
[  737.192536][T22170] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  737.389885][T22241] QAT: failed to copy from user cfg_data.
[  737.406517][ T6026] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  737.442182][T22170] XFS (loop1): Ending clean mount
[  737.610886][ T6027] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  737.666680][T22250] netlink: 14 bytes leftover after parsing attributes in process `syz.3.5757'.
[  738.393148][T22287] netlink: 'syz.2.5766': attribute type 1 has an invalid length.
[  738.491604][T22287] netlink: 228 bytes leftover after parsing attributes in process `syz.2.5766'.
[  738.557553][T22287] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5766'.
[  738.700392][T22301] program syz.0.5770 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  738.961054][T22319] loop0: detected capacity change from 0 to 256
[  739.029605][T22319] exFAT-fs (loop0): error, data size is invalid(34359738378)
[  739.069128][T22316] loop1: detected capacity change from 0 to 4096
[  739.085414][ T6064] usb 4-1: new high-speed USB device number 121 using dummy_hcd
[  739.168499][   T30] audit: type=1800 audit(1752669693.693:79): pid=22316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5774" name="file2" dev="loop1" ino=16 res=0 errno=0
[  739.288444][ T6064] usb 4-1: Using ep0 maxpacket: 32
[  739.304092][ T6064] usb 4-1: unable to get BOS descriptor or descriptor too short
[  739.317294][ T6064] usb 4-1: config 7 has an invalid interface number: 187 but max is 0
[  739.338121][ T6064] usb 4-1: config 7 has no interface number 0
[  739.359844][ T6064] usb 4-1: config 7 interface 187 has no altsetting 0
[  739.394638][ T6064] usb 4-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[  739.428027][ T6064] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  739.452397][ T6064] usb 4-1: Product: syz
[  739.456649][ T6064] usb 4-1: Manufacturer: syz
[  739.502474][ T6064] usb 4-1: SerialNumber: syz
[  739.687162][T22357] loop1: detected capacity change from 0 to 256
[  739.779617][ T6064] usb 4-1: Not enough endpoints found in device, aborting!
[  739.983617][ T6064] usb 4-1: USB disconnect, device number 121
[  740.118239][T22381] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[  740.188262][T22385] Cannot find del_set index 4 as target
[  740.606916][T22401] netlink: 'syz.0.5795': attribute type 10 has an invalid length.
[  740.654871][T22401] lo: entered promiscuous mode
[  740.672407][T22401] .: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  740.726003][T22371] loop2: detected capacity change from 0 to 32768
[  740.760051][T22371] (syz.2.5788,22371,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  740.825878][T22371] (syz.2.5788,22371,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  740.898958][T22371] JBD2: Ignoring recovery information on journal
[  741.100991][T22371] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  741.342346][T22371] 
[  741.344747][T22371] ======================================================
[  741.351792][T22371] WARNING: possible circular locking dependency detected
[  741.358954][T22371] 6.16.0-rc6-next-20250716-syzkaller #0 Not tainted
[  741.365573][T22371] ------------------------------------------------------
[  741.372710][T22371] syz.2.5788/22371 is trying to acquire lock:
[  741.378802][T22371] ffff888027e28618 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_acquire_dquot+0x455/0xb30
[  741.388294][T22371] 
[  741.388294][T22371] but task is already holding lock:
[  741.395798][T22371] ffff888058056a20 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1e8/0x270
[  741.406876][T22371] 
[  741.406876][T22371] which lock already depends on the new lock.
[  741.406876][T22371] 
[  741.417305][T22371] 
[  741.417305][T22371] the existing dependency chain (in reverse order) is:
[  741.426349][T22371] 
[  741.426349][T22371] -> #6 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}:
[  741.435249][T22371]        lock_acquire+0x120/0x360
[  741.440327][T22371]        down_write+0x96/0x1f0
[  741.445126][T22371]        ocfs2_lock_global_qf+0x1e8/0x270
[  741.450853][T22371]        ocfs2_acquire_dquot+0x2b0/0xb30
[  741.456530][T22371]        dqget+0x7ae/0xf10
[  741.460959][T22371]        dquot_get_next_dqblk+0xb2/0x150
[  741.466601][T22371]        quota_getnextquota+0x2b6/0x4a0
[  741.472168][T22371]        __se_sys_quotactl+0x279/0x950
[  741.478123][T22371]        do_syscall_64+0xfa/0x3b0
[  741.483275][T22371]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.489716][T22371] 
[  741.489716][T22371] -> #5 (&ocfs2_sysfile_lock_key[GROUP_QUOTA_SYSTEM_INODE]){+.+.}-{4:4}:
[  741.501372][T22371]        lock_acquire+0x120/0x360
[  741.506443][T22371]        down_write+0x96/0x1f0
[  741.511383][T22371]        ocfs2_lock_global_qf+0x1ca/0x270
[  741.517303][T22371]        ocfs2_acquire_dquot+0x2b0/0xb30
[  741.522966][T22371]        dqget+0x7ae/0xf10
[  741.527483][T22371]        dquot_get_next_dqblk+0xb2/0x150
[  741.533134][T22371]        quota_getnextquota+0x2b6/0x4a0
[  741.538702][T22371]        __se_sys_quotactl+0x279/0x950
[  741.544202][T22371]        do_syscall_64+0xfa/0x3b0
[  741.549264][T22371]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.555709][T22371] 
[  741.555709][T22371] -> #4 (&dquot->dq_lock){+.+.}-{4:4}:
[  741.563529][T22371]        lock_acquire+0x120/0x360
[  741.568600][T22371]        __mutex_lock+0x182/0xe80
[  741.574003][T22371]        dqget+0x72a/0xf10
[  741.578616][T22371]        __dquot_initialize+0x3b3/0xcb0
[  741.584345][T22371]        __ext4_new_inode+0x7db/0x3be0
[  741.590169][T22371]        ext4_xattr_inode_lookup_create+0xa3a/0x1c20
[  741.597173][T22371]        ext4_xattr_block_set+0x223/0x2ac0
[  741.603014][T22371]        ext4_xattr_set_handle+0xdfb/0x1590
[  741.609204][T22371]        ext4_xattr_set+0x230/0x320
[  741.614430][T22371]        __vfs_setxattr+0x439/0x480
[  741.619825][T22371]        __vfs_setxattr_noperm+0x12d/0x660
[  741.625997][T22371]        vfs_setxattr+0x16b/0x2f0
[  741.631165][T22371]        filename_setxattr+0x274/0x600
[  741.636855][T22371]        path_setxattrat+0x364/0x3a0
[  741.642328][T22371]        __x64_sys_lsetxattr+0xbf/0xe0
[  741.648447][T22371]        do_syscall_64+0xfa/0x3b0
[  741.653579][T22371]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.660309][T22371] 
[  741.660309][T22371] -> #3 (&ei->xattr_sem){++++}-{4:4}:
[  741.668001][T22371]        lock_acquire+0x120/0x360
[  741.673043][T22371]        down_read+0x46/0x2e0
[  741.677730][T22371]        ext4_setattr+0x855/0x1bc0
[  741.682866][T22371]        notify_change+0xb36/0xe40
[  741.687987][T22371]        chown_common+0x40c/0x5c0
[  741.693042][T22371]        do_fchownat+0x161/0x270
[  741.697998][T22371]        __x64_sys_chown+0x82/0xa0
[  741.703145][T22371]        do_syscall_64+0xfa/0x3b0
[  741.708182][T22371]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.714781][T22371] 
[  741.714781][T22371] -> #2 (jbd2_handle){++++}-{0:0}:
[  741.722461][T22371]        lock_acquire+0x120/0x360
[  741.727685][T22371]        start_this_handle+0x1fa7/0x21c0
[  741.733373][T22371]        jbd2__journal_start+0x2c1/0x5b0
[  741.739198][T22371]        jbd2_journal_start+0x2a/0x40
[  741.744600][T22371]        ocfs2_start_trans+0x376/0x6d0
[  741.750069][T22371]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  741.756331][T22371]        ocfs2_dismount_volume+0x201/0x8d0
[  741.762157][T22371]        generic_shutdown_super+0x135/0x2c0
[  741.768154][T22371]        kill_block_super+0x44/0x90
[  741.773370][T22371]        deactivate_locked_super+0xb9/0x130
[  741.779273][T22371]        cleanup_mnt+0x425/0x4c0
[  741.784227][T22371]        task_work_run+0x1d1/0x260
[  741.789359][T22371]        exit_to_user_mode_loop+0xec/0x110
[  741.795266][T22371]        do_syscall_64+0x2bd/0x3b0
[  741.800402][T22371]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.806822][T22371] 
[  741.806822][T22371] -> #1 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  741.815367][T22371]        lock_acquire+0x120/0x360
[  741.820414][T22371]        down_read+0x46/0x2e0
[  741.825113][T22371]        ocfs2_start_trans+0x36a/0x6d0
[  741.830585][T22371]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  741.836839][T22371]        ocfs2_dismount_volume+0x201/0x8d0
[  741.842656][T22371]        generic_shutdown_super+0x135/0x2c0
[  741.848573][T22371]        kill_block_super+0x44/0x90
[  741.853817][T22371]        deactivate_locked_super+0xb9/0x130
[  741.859734][T22371]        cleanup_mnt+0x425/0x4c0
[  741.864855][T22371]        task_work_run+0x1d1/0x260
[  741.869994][T22371]        exit_to_user_mode_loop+0xec/0x110
[  741.875906][T22371]        do_syscall_64+0x2bd/0x3b0
[  741.881035][T22371]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.887462][T22371] 
[  741.887462][T22371] -> #0 (sb_internal#2){.+.+}-{0:0}:
[  741.894958][T22371]        validate_chain+0xb9b/0x2140
[  741.900250][T22371]        __lock_acquire+0xab9/0xd20
[  741.905465][T22371]        lock_acquire+0x120/0x360
[  741.910509][T22371]        ocfs2_start_trans+0x26b/0x6d0
[  741.915979][T22371]        ocfs2_acquire_dquot+0x455/0xb30
[  741.921651][T22371]        dqget+0x7ae/0xf10
[  741.926090][T22371]        dquot_set_dqblk+0x2b/0xfa0
[  741.931295][T22371]        quota_setquota+0x4b7/0x540
[  741.936503][T22371]        __se_sys_quotactl+0x279/0x950
[  741.941989][T22371]        do_syscall_64+0xfa/0x3b0
[  741.947202][T22371]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.953625][T22371] 
[  741.953625][T22371] other info that might help us debug this:
[  741.953625][T22371] 
[  741.963861][T22371] Chain exists of:
[  741.963861][T22371]   sb_internal#2 --> &ocfs2_sysfile_lock_key[GROUP_QUOTA_SYSTEM_INODE] --> &ocfs2_quota_ip_alloc_sem_key
[  741.963861][T22371] 
[  741.980942][T22371]  Possible unsafe locking scenario:
[  741.980942][T22371] 
[  741.988412][T22371]        CPU0                    CPU1
[  741.993786][T22371]        ----                    ----
[  741.999154][T22371]   lock(&ocfs2_quota_ip_alloc_sem_key);
[  742.004802][T22371]                                lock(&ocfs2_sysfile_lock_key[GROUP_QUOTA_SYSTEM_INODE]);
[  742.014737][T22371]                                lock(&ocfs2_quota_ip_alloc_sem_key);
[  742.022922][T22371]   rlock(sb_internal#2);
[  742.027274][T22371] 
[  742.027274][T22371]  *** DEADLOCK ***
[  742.027274][T22371] 
[  742.035419][T22371] 4 locks held by syz.2.5788/22371:
[  742.040634][T22371]  #0: ffff888027e280e0 (&type->s_umount_key#79){++++}-{4:4}, at: super_lock+0x2a9/0x3b0
[  742.050582][T22371]  #1: ffff8880583142a8 (&dquot->dq_lock){+.+.}-{4:4}, at: ocfs2_acquire_dquot+0x2a3/0xb30
[  742.060608][T22371]  #2: ffff888058056d80 (&ocfs2_sysfile_lock_key[USER_QUOTA_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_lock_global_qf+0x1ca/0x270
[  742.073675][T22371]  #3: ffff888058056a20 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1e8/0x270
[  742.085016][T22371] 
[  742.085016][T22371] stack backtrace:
[  742.091089][T22371] CPU: 0 UID: 0 PID: 22371 Comm: syz.2.5788 Not tainted 6.16.0-rc6-next-20250716-syzkaller #0 PREEMPT(full) 
[  742.091112][T22371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  742.091123][T22371] Call Trace:
[  742.091133][T22371]  <TASK>
[  742.091141][T22371]  dump_stack_lvl+0x189/0x250
[  742.091167][T22371]  ? __pfx_dump_stack_lvl+0x10/0x10
[  742.091186][T22371]  ? __pfx__printk+0x10/0x10
[  742.091217][T22371]  ? print_lock_name+0xde/0x100
[  742.091241][T22371]  print_circular_bug+0x2ee/0x310
[  742.091262][T22371]  check_noncircular+0x134/0x160
[  742.091284][T22371]  validate_chain+0xb9b/0x2140
[  742.091311][T22371]  __lock_acquire+0xab9/0xd20
[  742.091339][T22371]  ? ocfs2_acquire_dquot+0x455/0xb30
[  742.091358][T22371]  lock_acquire+0x120/0x360
[  742.091382][T22371]  ? ocfs2_acquire_dquot+0x455/0xb30
[  742.091404][T22371]  ? do_raw_spin_unlock+0x122/0x240
[  742.091427][T22371]  ocfs2_start_trans+0x26b/0x6d0
[  742.091446][T22371]  ? ocfs2_acquire_dquot+0x455/0xb30
[  742.091468][T22371]  ? __pfx_ocfs2_start_trans+0x10/0x10
[  742.091486][T22371]  ? do_raw_spin_unlock+0x122/0x240
[  742.091508][T22371]  ? _raw_spin_unlock+0x28/0x50
[  742.091526][T22371]  ? ocfs2_qinfo_unlock+0x121/0x150
[  742.091545][T22371]  ocfs2_acquire_dquot+0x455/0xb30
[  742.091568][T22371]  ? from_kuid+0x1b0/0x640
[  742.091592][T22371]  ? __pfx_ocfs2_acquire_dquot+0x10/0x10
[  742.091612][T22371]  ? percpu_counter_add_batch+0xea/0x1e0
[  742.091634][T22371]  dqget+0x7ae/0xf10
[  742.091653][T22371]  dquot_set_dqblk+0x2b/0xfa0
[  742.091675][T22371]  quota_setquota+0x4b7/0x540
[  742.091700][T22371]  ? __pfx_quota_setquota+0x10/0x10
[  742.091732][T22371]  ? do_quotactl+0x734/0x860
[  742.091757][T22371]  __se_sys_quotactl+0x279/0x950
[  742.091779][T22371]  ? __se_sys_futex+0x36f/0x400
[  742.091803][T22371]  ? __pfx___se_sys_quotactl+0x10/0x10
[  742.091825][T22371]  ? rcu_is_watching+0x15/0xb0
[  742.091844][T22371]  ? do_syscall_64+0xbe/0x3b0
[  742.091867][T22371]  do_syscall_64+0xfa/0x3b0
[  742.091888][T22371]  ? lockdep_hardirqs_on+0x9c/0x150
[  742.091907][T22371]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.091924][T22371]  ? clear_bhb_loop+0x60/0xb0
[  742.091942][T22371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.091960][T22371] RIP: 0033:0x7f053078e929
[  742.091975][T22371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  742.091990][T22371] RSP: 002b:00007f05316a2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  742.092008][T22371] RAX: ffffffffffffffda RBX: 00007f05309b5fa0 RCX: 00007f053078e929
[  742.092021][T22371] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffff80000800
[  742.092033][T22371] RBP: 00007f0530810b39 R08: 0000000000000000 R09: 0000000000000000
[  742.092044][T22371] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000000
[  742.092055][T22371] R13: 0000000000000000 R14: 00007f05309b5fa0 R15: 00007ffe7b82f028
[  742.092073][T22371]  </TASK>
[  742.092119][    C0] vkms_vblank_simulate: vblank timer overrun
[  742.391280][    C0] vkms_vblank_simulate: vblank timer overrun
[  742.402440][T22409] loop1: detected capacity change from 0 to 32768
[  742.464980][T22409] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.5798 (22409)
[  742.493617][T22409] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  742.523830][T22409] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  742.535114][ T6041] ocfs2: Unmounting device (7,2) on (node local)
[  742.537613][T22409] BTRFS info (device loop1): using free-space-tree
[  742.757041][ T6027] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d