last executing test programs:

2m22.765227616s ago: executing program 1 (id=273):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x400e, &(0x7f000000b740)={[{@user_xattr}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@i_version}, {@bsdgroups}, {@nodioread_nolock}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000005c0)='\"', 0x1, 0x4fed0)
setxattr$security_ima(&(0x7f0000000340)='./file1\x00', &(0x7f0000000380), &(0x7f0000000080)=@md5={0x1, "fe45eadea791040002c732c9fc00"}, 0x11, 0x0)
setxattr$security_ima(&(0x7f0000000340)='./file1\x00', &(0x7f0000000380), &(0x7f0000000080)=@md5={0x1, "d7436baf8fac8a9e91f8993fc732acfc"}, 0x1001, 0x2)

2m22.482125054s ago: executing program 1 (id=274):
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./bus\x00', 0x2, &(0x7f0000000b40)=ANY=[@ANYRES32=0x0, @ANYRES8=0x0, @ANYRES32], 0xff, 0x2e7, &(0x7f0000000280)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000680)=""/184, 0xb8)
creat(&(0x7f0000000040)='./file1\x00', 0x80)
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000740)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

2m22.346369887s ago: executing program 1 (id=275):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000000)=0x200000, 0x4)
getsockopt$XDP_STATISTICS(r1, 0x11b, 0x7, &(0x7f0000002180), &(0x7f00000021c0)=0x30)

2m21.720516829s ago: executing program 1 (id=276):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000022c0)={[{@errors_remount}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@dioread_lock}]}, 0x3, 0x439, &(0x7f0000002380)="$eJzs3MtvG0UYAPBv105LXyRU5dEHECiIikfSpKX0wAUEEgeQkOBQjiFJq1K3QU2QaFVBQKgcUSXuiCMSfwEnuCDghMQV7qhShXJp4WS09m5iO3aauE5c8O8nrTuzO9bM592xZ3a6CWBgjWYvScTuiPg9Iobr2eYCo/V/bi1dmf576cp0EtXqW38ltXI3l65MF0WL9+0qMuWI9LMkDrapd/7S5XNTlcrsxTw/vnD+/fH5S5efO3t+6szsmdkLkydPHj828cKJyed7EmcW180DH80d2v/aO9femD517d2fv02K+Fvi6JHRtQ4+Wa32uLr+2tOQTsp9bAgbUqp30xiq9f/hKMXKyRuOVz/ta+OATVWtVqsPdD68WAX+x5LodwuA/ih+6LP5b7Ft0dDjrnDjpfoEKIv7Vr7Vj5QjzcsMtcxve2k0Ik4t/vNVtsXm3IcAAGjyfTb+ebbd+C+NxvtC9+ZrKCMRcV9E7I2IExGxLyLuj6iVfTAiHtpg/a2LJKvHP+n1rgJbp2z892K+ttU8/itGfzFSynN7avEPJafPVmaP5p/JkRjanuUn1qjjh1d++6LTscbxX7Zl9Rdjwbwd18vbm98zM7UwdScxN7rxScSBcrv4k+WVgCQi9kfEgS7rOPv0N4c6Hbt9/GvowTpT9euIp+rnfzFa4i8ka69Pjt8Tldmj48VVsdovv159s1P9dxR/D2Tnf2fb6385/pGkcb12fuN1XP3j845zmm6v/23J2037PpxaWLg4EbEteb3e6JX9pYuTLeUmV8pn8R853L7/742VT+JgRGQX8cMR8UhEPJq3/bGIeDwiDq8R/08vP/Fe9/Fvriz+mQ2d/5XEtmjd0z5ROvfjd02Vjmwk/uz8H6+ljuR71vP9t552dXc1AwAAwH9PGhG7I0nHltNpOjZW/z/8+2JnWpmbX3jm9NwHF2bqzwiMxFBa3OkabrgfOpFP64v8ZEv+WH7f+MvSjlp+bHquMtPv4GHA7erQ/zN/lvrdOmDTdbeOlva8HcDW87wmDC79HwaX/g+Dq03/39GPdgBbr93v/8d9aAew9coNr/nfBAMGhPk/DC79HwaX/g8DaX5H3P4heQmJVYlI74pmSGxSot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAL3xbwAAAP//1Xjmag==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
chdir(&(0x7f0000000080)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1d)

2m21.516426609s ago: executing program 1 (id=278):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000500)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)=[<r2=>0x0], &(0x7f0000000340), 0x0, 0x1, 0x0, 0x0, r1})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r0, 0xc01064ab, &(0x7f0000000380)={0x1, r2, r1})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r0, 0xc01064ab, &(0x7f0000000080)={0x2, r2, r1})

2m21.014582839s ago: executing program 1 (id=285):
r0 = syz_mount_image$iso9660(&(0x7f00000001c0), &(0x7f0000000280)='./file0\x00', 0x14806, &(0x7f0000000080)=ANY=[], 0x0, 0x702, &(0x7f0000001140)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0xf)
write$eventfd(0xffffffffffffffff, 0x0, 0x0)
futimesat(r0, &(0x7f0000000000)='./file1\x00', 0x0)

2m20.531565617s ago: executing program 32 (id=285):
r0 = syz_mount_image$iso9660(&(0x7f00000001c0), &(0x7f0000000280)='./file0\x00', 0x14806, &(0x7f0000000080)=ANY=[], 0x0, 0x702, &(0x7f0000001140)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0xf)
write$eventfd(0xffffffffffffffff, 0x0, 0x0)
futimesat(r0, &(0x7f0000000000)='./file1\x00', 0x0)

1m38.547473559s ago: executing program 2 (id=594):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x2, 0x0, 0x8, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}]}}]}, 0x8c}}, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="01000000eaffffffb7000040"])

1m38.217617972s ago: executing program 2 (id=600):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000002300)={@val={0x0, 0x9}, @void, @eth={@empty, @local, @val={@void, {0x8100, 0x0, 0x0, 0x1}}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x6, 0x14, 0xe4, 0x0, 0x1, 0x2f, 0x0, @empty, @multicast1}}}}}}, 0x2a)

1m37.937074429s ago: executing program 2 (id=603):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000, 0x8}, 0x20)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000080)={0x0, 0x4000, 0x0, 0x5, 0x2}, 0x20)

1m37.571257445s ago: executing program 2 (id=609):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000000)='./file1\x00', 0x1000400, &(0x7f00000001c0)={[{@quota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@usrquota}, {@nodiscard}, {@uid}, {@uid={'uid', 0x3d, 0xee01}}]}, 0x21, 0x61b6, &(0x7f00000075c0)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x9c)
lseek(r0, 0x12, 0x0)
getdents64(r0, 0x0, 0x22)

1m36.944714897s ago: executing program 2 (id=615):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x0, 0xa, 0x2)

1m36.61078053s ago: executing program 4 (id=619):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x100}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
syz_emit_ethernet(0x86, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x2, 0x11, 0x0, @empty, @empty}, {0x0, 0x1b59, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x3, "0000000108653904030405ffffff09c56a3000", "9384bbeb271daeb21b661fe808b21b77", {"694c875dfb9ba53fa4057a62022a1564", "a329d3a13bd5b6cc6a9471314a1d8c69"}}}}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1m36.220341059s ago: executing program 2 (id=620):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setlease(r1, 0x400, 0x0)

1m35.871000703s ago: executing program 33 (id=620):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setlease(r1, 0x400, 0x0)

1m35.865117754s ago: executing program 4 (id=622):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$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")
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x80044940, &(0x7f0000001fc0)={0x0, ""/256, <r1=>0x0, <r2=>0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r3=>0x0, <r4=>0x0, <r5=>0x0, <r6=>0x0})
syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000340)='.\x00', 0x126a4b5, &(0x7f0000004140)=ANY=[@ANYRES16=r6, @ANYRES64=r4, @ANYRES16=r3, @ANYRES16=r6, @ANYRESDEC=r5, @ANYRES16=r2, @ANYRES16, @ANYBLOB="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", @ANYRESHEX=0x0, @ANYRES32=r1], 0x5, 0x0, &(0x7f0000000000))
quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x2, 0x8000000000000001, 0x0, 0x4})

1m35.550122055s ago: executing program 4 (id=626):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
fchdir(r0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r1 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)

1m35.268562963s ago: executing program 4 (id=630):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000c80)='./file0\x00', 0x48, &(0x7f0000001980)=ANY=[@ANYBLOB="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"], 0x4, 0xc24, &(0x7f0000000d00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
truncate(&(0x7f0000000040)='./file1\x00', 0x1001bfc)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

1m35.0912529s ago: executing program 4 (id=631):
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
mount$9p_fd(0x0, &(0x7f0000000380)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}})
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

1m34.925614377s ago: executing program 4 (id=632):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./bus\x00', 0x18418, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRES8], 0xfe, 0x4be, &(0x7f0000000880)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x10)
syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000040)='./bus/file0\x00', 0x802052, 0x0, 0x1, 0x0, &(0x7f00000003c0))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0)

1m19.743688466s ago: executing program 34 (id=632):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./bus\x00', 0x18418, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRES8], 0xfe, 0x4be, &(0x7f0000000880)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x10)
syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000040)='./bus/file0\x00', 0x802052, 0x0, 0x1, 0x0, &(0x7f00000003c0))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0)

37.634985594s ago: executing program 5 (id=1065):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x20004, 0xfffffffc}, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0xa, 0x8, {0x0, r0}, 0x8001, 0x9, 0x1, {0x0, r3, r0}})
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)

36.699977066s ago: executing program 5 (id=1076):
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x1, 0xa08, &(0x7f0000008280)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file1\x00', 0x0, 0x1800, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x80, 0x0)

36.376803848s ago: executing program 5 (id=1077):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0xfffd, 0x0, @mcast2, 0x9}, 0x1c)
syz_emit_ethernet(0x2a, &(0x7f0000000580)=ANY=[@ANYBLOB="aaaa4a6dee90"], 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4001)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x9506, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

36.303580955s ago: executing program 5 (id=1078):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file3\x00', 0x42, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000440)='./file0/file3\x00', 0x0)

35.766595088s ago: executing program 5 (id=1082):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r1, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r1, 0x0, <r2=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000200)={0x48, 0x7, r2, 0x0, 0x10001, 0x0, 0x6, 0xa9613, 0x17e5e9})

35.34438712s ago: executing program 5 (id=1086):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0x68000000}, 0x0)
r0 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}}}, 0x80, 0x0, 0x0, &(0x7f0000000180)=ANY=[], 0x18, 0x68000000}, 0x80fe)
r1 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0xfffffffd, @private1, 0x40000}}, 0x80, 0x0, 0x0, &(0x7f0000000180)=ANY=[], 0x18, 0x68000000}, 0x80fe)

35.069949917s ago: executing program 35 (id=1086):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0x68000000}, 0x0)
r0 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}}}, 0x80, 0x0, 0x0, &(0x7f0000000180)=ANY=[], 0x18, 0x68000000}, 0x80fe)
r1 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0xfffffffd, @private1, 0x40000}}, 0x80, 0x0, 0x0, &(0x7f0000000180)=ANY=[], 0x18, 0x68000000}, 0x80fe)

2.798442584s ago: executing program 7 (id=1353):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x30, r1, 0x5, 0x0, 0x40000000, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x8000)

2.700384634s ago: executing program 7 (id=1355):
unshare(0x20000400)
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x9a460ec3b8f4a522, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)
pidfd_send_signal(r0, 0x3b, 0x0, 0x0)

2.586187355s ago: executing program 7 (id=1358):
r0 = socket(0x2, 0x3, 0xff)
setsockopt$inet_int(r0, 0x0, 0x3, 0x0, 0x0)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000140)=0x9, 0x4)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10)
recvfrom$inet(r0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd92)

2.43470416s ago: executing program 7 (id=1363):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x4)
ioctl$sock_bt_hci(r0, 0x800448d3, &(0x7f00000000c0))

1.939637289s ago: executing program 3 (id=1368):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000002140), 0x802, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000240)='./file0\x00', 0x2000400, &(0x7f00000004c0)=ANY=[], 0x1, 0x229, &(0x7f0000000000)="$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")
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000000001000000"])

1.737758229s ago: executing program 3 (id=1371):
syz_mount_image$squashfs(&(0x7f0000000080), &(0x7f0000000480)='./file1\x00', 0x80, &(0x7f0000000240)=ANY=[], 0xfb, 0x1a5, &(0x7f0000000600)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000001280)=""/4089, 0xff9)

1.648669767s ago: executing program 3 (id=1372):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x19, 0x4, 0x8, 0x808, 0x0, 0xffffffffffffffff, 0x6}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x15, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

1.546062348s ago: executing program 3 (id=1373):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x2, &(0x7f0000000b40)=ANY=[@ANYRES32=0x0, @ANYRES16, @ANYRES32], 0xfd, 0x2f9, &(0x7f0000000b80)="$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")
r0 = fanotify_init(0xf00, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r0, 0x455, 0x40000008, r1, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)

1.458721567s ago: executing program 3 (id=1375):
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000006400)='./file0\x00', 0x221009c, &(0x7f0000000100)=ANY=[@ANYBLOB='errors=remount-ro,quota,nodiscard,iocharset=koi8-u,errors=continue,noquota,errors=remount-ro\x00resize=0x0000000000000000,uid=', @ANYRES8=0x0, @ANYRESHEX=0x0, @ANYRESDEC, @ANYRESOCT], 0x1, 0x60d0, &(0x7f0000006440)="$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")
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83)
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002780)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000480)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
fchown(r0, 0xffffffffffffffff, r2)

1.309691101s ago: executing program 6 (id=1376):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
ftruncate(r0, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

1.233931478s ago: executing program 6 (id=1377):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040), 0x8)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001400090500000000fddbdf25021f00cb", @ANYRES32=r0, @ANYBLOB="080008100002000008000200ffffffff0800090006000000080009000000180008000200ac1414aa080009"], 0x48}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0xed, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}, 0x1, 0x0, 0x0, 0x4080}, 0x0)

1.021172319s ago: executing program 3 (id=1378):
syz_mount_image$reiserfs(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x1000098, &(0x7f00000002c0), 0xfe, 0x10f4, &(0x7f00000022c0)="$eJzs2LGK1FAUBuD/JqNgNXK3DwtaKMjiMr7AFgrTWFjbDVZ2TqXM4/g4spX9sg+wxYK9ksToCoIsGxwYvg9Ccn9ycnLLcwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC9RXI/yVGT1ClrkpSk687Xl0m6KX/4pW1S8ubdevvyw+rVdnwtfdak9FXDup4+qnVVV/W0vjg6e1y3Hz+9b2+0LOlycb3bPHh9NetW+t7trF8EAACAw/D9zpZ77g8AAAD8y2wHCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAzqNNDk6QkXXe+vkzS7fe3AAAAgDsqafJ2+bd8PAb47Vm+LsuQT74Ni+f5PNY/vX33e7cvAQAAgANVbszjT7L4NZf32XEWOTkZ1z9vuTpL2mEy/9PF9W4zXMe7TfmfGwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH6wA8cCAAAAAML8rdPo2AAAAAAAAAAAAAAAgKkCAAD//4CP0SQ=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events.local\x00', 0x275a, 0x0)
ftruncate(r0, 0x2000009)
write$RDMA_USER_CM_CMD_CONNECT(r0, &(0x7f0000000300)={0x6, 0x118, 0xfa00, {{0xbb, 0x3, "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", 0xb, 0x1, 0x5, 0x0, 0xc1, 0x1, 0x6d, 0x1}}}, 0x120)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)

1.019411829s ago: executing program 6 (id=1379):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
sendto$inet(r1, &(0x7f0000000400)='X', 0xfef0, 0x8884, &(0x7f0000000480)={0x2, 0x4e24, @local}, 0x10)

922.483529ms ago: executing program 6 (id=1381):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000f9000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0xffffffffffffff57, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

857.766696ms ago: executing program 6 (id=1382):
syz_mount_image$hfsplus(&(0x7f00000002c0), &(0x7f0000000180)='./bus\x00', 0xc, &(0x7f00000000c0)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16, @ANYRESHEX=0x0, @ANYRES8, @ANYRESDEC, @ANYRES32, @ANYRESOCT, @ANYRES16, @ANYRESOCT, @ANYRES16, @ANYRES32], 0x1, 0x712, &(0x7f0000001240)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='pids.current\x00', 0x275a, 0x0)
truncate(&(0x7f0000000000)='./file2\x00', 0x200001)
ftruncate(r0, 0xc17a)
symlink(&(0x7f000000a900)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

856.920546ms ago: executing program 0 (id=1390):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000000)={&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f000000c000/0x1000)=nil, &(0x7f000001f000/0x1000)=nil, &(0x7f0000015000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f000000c000/0x4000)=nil, &(0x7f000001d000/0x3000)=nil, &(0x7f0000012000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0}, 0x68)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000200700000000000000f40000000000"])
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, 0x0, 0x0)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x4, &(0x7f0000000000)=""/152, &(0x7f00000000c0)=0x98)

786.776673ms ago: executing program 0 (id=1383):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000360000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000140)=r0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r2, &(0x7f00000005c0), 0x0}, 0x20)

663.740985ms ago: executing program 6 (id=1384):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000680)='./file2\x00', 0x800000, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5504, &(0x7f000000c0c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x103042, 0x5d9f61795f7ff7f7)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xf519, 0x0)
write$UHID_DESTROY(r0, &(0x7f0000000000), 0x4)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0)

656.321925ms ago: executing program 0 (id=1393):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f0000000180)={0x1d, r1}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x3}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x8041}, 0x40044)

344.813376ms ago: executing program 0 (id=1385):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x201, 0x0)
ioctl$PPPIOCATTCHAN(r1, 0x40047438, &(0x7f0000000300)=0x1)
ioctl$PPPIOCDISCONN(r1, 0x7439)

220.356389ms ago: executing program 7 (id=1386):
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000600)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400), 0x12)

86.029772ms ago: executing program 0 (id=1387):
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100029bd7000ffdbdf250e000000340002800800080006040000060002004e200000080007000800000005000d00010000000800060009"], 0x48}, 0x1, 0x0, 0x0, 0x40081c4}, 0x44000)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e640000000018000280140008"], 0x48}}, 0x0)
connect$netrom(0xffffffffffffffff, &(0x7f0000000300)={{0x6, @rose, 0xfffbffff}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)
sendmmsg$inet(r0, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)

9.21307ms ago: executing program 7 (id=1388):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./bus\x00', 0x18418, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRES8], 0xfe, 0x4b1, &(0x7f0000001d00)="$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")
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
truncate(&(0x7f0000000100)='./file1\x00', 0x20fdfffffe)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
write(r0, &(0x7f00000002c0)='G', 0x1)

0s ago: executing program 0 (id=1389):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000100001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setuid(r1)
setpriority(0x2, 0xff, 0x0)

kernel console output (not intermixed with test programs):

tooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  167.969683][ T5790] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  167.978729][ T5790] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  167.996343][ T5790] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  168.004218][ T5790] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  168.078132][ T7713] loop4: detected capacity change from 0 to 2048
[  168.088392][ T7713] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  168.099429][ T7713] UDF-fs: Scanning with blocksize 512 failed
[  168.117818][ T7713] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  168.309883][ T7706] chnl_net:caif_netlink_parms(): no params data found
[  168.422192][ T7706] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.429404][ T7706] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.437340][ T7706] bridge_slave_0: entered allmulticast mode
[  168.446113][ T7706] bridge_slave_0: entered promiscuous mode
[  168.456654][ T7706] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.464547][ T7706] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.472819][ T7706] bridge_slave_1: entered allmulticast mode
[  168.486401][ T7706] bridge_slave_1: entered promiscuous mode
[  168.532069][ T7706] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.546556][ T7706] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.619608][ T7706] team0: Port device team_slave_0 added
[  168.639152][ T7706] team0: Port device team_slave_1 added
[  168.693204][ T7706] batman_adv: batadv0: Adding interface: batadv_slave_0
[  168.701102][ T7706] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.734151][ T7706] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  168.748165][ T7706] batman_adv: batadv0: Adding interface: batadv_slave_1
[  168.760998][ T7706] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.787399][ T7706] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  168.884010][ T7706] hsr_slave_0: entered promiscuous mode
[  168.907484][ T7706] hsr_slave_1: entered promiscuous mode
[  168.921490][ T7706] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  168.940211][ T7706] Cannot create hsr debugfs directory
[  169.082173][ T5838] kernel write not supported for file bpf-prog (pid: 5838 comm: kworker/0:3)
[  169.799068][ T7706] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  169.839775][ T7706] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  169.873775][ T7706] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  169.895955][ T7706] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  170.032086][ T7747] loop0: detected capacity change from 0 to 512
[  170.059835][ T7747] EXT4-fs (loop0): Test dummy encryption mode enabled
[  170.060298][ T5795] Bluetooth: hci2: command tx timeout
[  170.098236][ T7747] EXT4-fs error (device loop0): __ext4_iget:5053: inode #11: block 1: comm syz.0.641: invalid block
[  170.113055][ T7706] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.152983][ T7747] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.641: couldn't read orphan inode 11 (err -117)
[  170.171745][ T7706] 8021q: adding VLAN 0 to HW filter on device team0
[  170.200667][ T7747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.221495][ T2940] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.228674][ T2940] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.283651][ T2940] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.291011][ T2940] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.389827][ T7706] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  170.564906][ T7747] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  170.582315][ T7747] EXT4-fs error (device loop0): ext4_add_entry:2486: inode #2: comm syz.0.641: Directory hole found for htree leaf block 0
[  170.750164][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.819452][ T7739] loop3: detected capacity change from 0 to 32768
[  170.836166][ T7739] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.639 (7739)
[  170.876076][ T7706] 8021q: adding VLAN 0 to HW filter on device batadv0
[  170.894479][ T7739] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  170.908224][ T7739] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  170.918158][ T7739] BTRFS info (device loop3): using free space tree
[  171.070981][ T7739] BTRFS info (device loop3): enabling ssd optimizations
[  171.086588][ T7739] BTRFS info (device loop3): auto enabling async discard
[  171.376415][ T5792] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  171.412049][ T5795] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  171.424603][ T5795] CPU: 1 PID: 5795 Comm: kworker/u5:3 Not tainted syzkaller #0
[  171.432231][ T5795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  171.442334][ T5795] Workqueue: hci3 hci_rx_work
[  171.447085][ T5795] Call Trace:
[  171.450405][ T5795]  <TASK>
[  171.453396][ T5795]  dump_stack_lvl+0x16c/0x230
[  171.458125][ T5795]  ? show_regs_print_info+0x20/0x20
[  171.463385][ T5795]  ? load_image+0x3b0/0x3b0
[  171.467947][ T5795]  sysfs_create_dir_ns+0x256/0x280
[  171.473114][ T5795]  ? hci_rx_work+0x43a/0xd80
[  171.477751][ T5795]  ? sysfs_warn_dup+0xa0/0xa0
[  171.482485][ T5795]  ? do_raw_spin_unlock+0x121/0x230
[  171.487737][ T5795]  kobject_add_internal+0x6b8/0xc70
[  171.492981][ T5795]  kobject_add+0x156/0x220
[  171.497446][ T5795]  ? __rwlock_init+0x150/0x150
[  171.502275][ T5795]  ? kobject_init+0x1e0/0x1e0
[  171.507015][ T5795]  ? _raw_spin_unlock+0x28/0x40
[  171.511914][ T5795]  ? get_device_parent+0x366/0x390
[  171.517082][ T5795]  device_add+0x408/0xc20
[  171.521476][ T5795]  hci_conn_add_sysfs+0xd5/0x1e0
[  171.526476][ T5795]  le_conn_complete_evt+0xf36/0x1500
[  171.531818][ T5795]  ? hci_event_packet+0x4a7/0x1210
[  171.537000][ T5795]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  171.543299][ T5795]  ? __copy_skb_header+0xa7/0x550
[  171.548364][ T5795]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  171.554024][ T5795]  ? skb_pull_data+0xfb/0x200
[  171.558770][ T5795]  hci_le_conn_complete_evt+0x187/0x440
[  171.564356][ T5795]  ? hci_remote_host_features_evt+0x160/0x160
[  171.570445][ T5795]  hci_event_packet+0x795/0x1210
[  171.575416][ T5795]  ? bis_list+0x290/0x290
[  171.579775][ T5795]  ? lockdep_hardirqs_on+0x98/0x150
[  171.585003][ T5795]  ? hci_send_to_monitor+0xd7/0x4f0
[  171.590232][ T5795]  hci_rx_work+0x43a/0xd80
[  171.594682][ T5795]  ? process_scheduled_works+0x957/0x15b0
[  171.600421][ T5795]  process_scheduled_works+0xa45/0x15b0
[  171.606011][ T5795]  ? assign_work+0x400/0x400
[  171.610631][ T5795]  ? assign_work+0x39e/0x400
[  171.615249][ T5795]  worker_thread+0xa55/0xfc0
[  171.619884][ T5795]  kthread+0x2fa/0x390
[  171.623975][ T5795]  ? pr_cont_work+0x560/0x560
[  171.628677][ T5795]  ? kthread_blkcg+0xd0/0xd0
[  171.633284][ T5795]  ret_from_fork+0x48/0x80
[  171.637744][ T5795]  ? kthread_blkcg+0xd0/0xd0
[  171.642349][ T5795]  ret_from_fork_asm+0x11/0x20
[  171.647143][ T5795]  </TASK>
[  171.656017][ T5795] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  171.670347][ T5795] Bluetooth: hci3: failed to register connection device
[  171.817651][ T7706] veth0_vlan: entered promiscuous mode
[  171.837781][ T7706] veth1_vlan: entered promiscuous mode
[  171.872561][ T7706] veth0_macvtap: entered promiscuous mode
[  171.888466][ T7706] veth1_macvtap: entered promiscuous mode
[  171.954377][ T7706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.990233][ T7706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.010018][ T7706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.037154][ T7706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.075976][ T7706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.110155][ T7706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.130063][ T7706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.141007][ T5795] Bluetooth: hci2: command tx timeout
[  172.170133][ T7706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.199104][ T7706] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.211407][ T7706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.224375][ T7706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.234499][ T7706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.245090][ T7706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.267780][ T7706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.288517][ T7706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.316306][ T7706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.330169][ T7706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.367179][ T7706] batman_adv: batadv0: Interface activated: batadv_slave_1
[  172.441495][ T7706] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  172.460869][ T7706] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  172.469708][ T7706] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  172.499617][ T7706] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  172.773833][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.795495][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.892354][ T2992] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.905238][ T2992] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.340840][ T7807] netlink: 16 bytes leftover after parsing attributes in process `syz.0.652'.
[  173.400063][ T5846] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  173.487343][ T7809] IPv6: NLM_F_CREATE should be specified when creating new route
[  173.588291][ T5846] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  173.605146][ T5846] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  173.618394][ T5846] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  173.638263][ T5846] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  173.647921][ T5846] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.665321][ T5846] usb 4-1: config 0 descriptor??
[  174.125048][ T5846] plantronics 0003:047F:FFFF.0009: unknown main item tag 0xd
[  174.136168][ T5846] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  174.159851][ T5846] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  174.221338][ T5795] Bluetooth: hci2: command tx timeout
[  174.435688][ T7822] vcan0: tx drop: invalid da for name 0x0000000000000002
[  174.457061][ T5846] usb 4-1: USB disconnect, device number 7
[  175.187681][ T7841] loop0: detected capacity change from 0 to 16
[  175.227337][ T7841] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  175.446263][ T7849] loop5: detected capacity change from 0 to 256
[  175.458244][ T7849] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  175.501027][ T7849] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  175.779298][ T5846] kernel write not supported for file /input/event2 (pid: 5846 comm: kworker/0:4)
[  175.848918][ T7862] loop0: detected capacity change from 0 to 512
[  175.862006][ T7862] EXT4-fs: Ignoring removed oldalloc option
[  175.868270][ T7862] EXT4-fs: quotafile must be on filesystem root
[  176.270945][ T7867] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input14
[  176.310104][ T5790] Bluetooth: hci2: command tx timeout
[  176.956593][ T7879] netlink: 96 bytes leftover after parsing attributes in process `syz.0.682'.
[  177.365754][ T7869] loop5: detected capacity change from 0 to 131072
[  177.377970][ T7869] F2FS-fs (loop5): Wrong CP boundary, start(512) end(1536) blocks(0)
[  177.386225][ T7869] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  177.400122][ T7869] F2FS-fs (loop5): invalid crc value
[  177.427879][ T7869] F2FS-fs (loop5): Found nat_bits in checkpoint
[  177.507065][ T7869] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  177.514251][ T7869] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  177.733579][ T7888] loop0: detected capacity change from 0 to 1024
[  177.736382][ T7876] loop3: detected capacity change from 0 to 40427
[  177.765283][ T7876] F2FS-fs (loop3): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  177.770143][ T7888] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  177.779426][ T7876] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  177.799311][ T7876] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x35f7
[  177.807983][ T7876] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x7ffff
[  177.820295][ T5790] Bluetooth: hci3: command 0x0406 tx timeout
[  177.827480][ T7876] F2FS-fs (loop3): Image doesn't support compression
[  177.843591][ T7876] F2FS-fs (loop3): invalid crc value
[  177.851176][ T7888] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  177.859560][ T7888] EXT4-fs (loop0): orphan cleanup on readonly fs
[  177.893398][ T7876] F2FS-fs (loop3): Found nat_bits in checkpoint
[  177.932263][ T7888] EXT4-fs error (device loop0): ext4_free_blocks:6676: comm syz.0.684: Freeing blocks not in datazone - block = 0, count = 4096
[  177.992138][ T7888] EXT4-fs (loop0): 1 orphan inode deleted
[  177.999262][ T7888] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  178.044945][ T7876] F2FS-fs (loop3): Start checkpoint disabled!
[  178.113909][ T7876] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  178.148146][ T7876] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  178.210313][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.271716][ T7876] syz.3.680: attempt to access beyond end of device
[  178.271716][ T7876] loop3: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[  178.323213][ T7876] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_do_write_data_page+0x8db/0x1bc0
[  178.354910][ T7894] loop0: detected capacity change from 0 to 256
[  178.638690][ T2992] kworker/u4:10: attempt to access beyond end of device
[  178.638690][ T2992] loop3: rw=1, sector=53256, nr_sectors = 8 limit=40427
[  178.680738][ T2992] kworker/u4:10: attempt to access beyond end of device
[  178.680738][ T2992] loop3: rw=1, sector=53248, nr_sectors = 8 limit=40427
[  178.719859][ T2992] kworker/u4:10: attempt to access beyond end of device
[  178.719859][ T2992] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  178.750337][ T2992] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  178.767151][ T2992] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  178.860752][    T8] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  179.050035][    T8] usb 1-1: Using ep0 maxpacket: 16
[  179.057488][    T8] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  179.080018][    T8] usb 1-1: config 0 interface 0 altsetting 9 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  179.110146][    T8] usb 1-1: config 0 interface 0 has no altsetting 0
[  179.116829][    T8] usb 1-1: New USB device found, idVendor=1b1c, idProduct=1b34, bcdDevice= 0.00
[  179.140051][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.150877][    T8] usb 1-1: config 0 descriptor??
[  179.588643][    T8] corsair 0003:1B1C:1B34.000A: hidraw0: USB HID v0.05 Device [HID 1b1c:1b34] on usb-dummy_hcd.0-1/input0
[  180.045905][ T5174] usb 1-1: USB disconnect, device number 12
[  180.275096][ T7902] loop5: detected capacity change from 0 to 32768
[  180.285911][ T7902] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop5 scanned by syz.5.688 (7902)
[  180.312664][ T7902] BTRFS info (device loop5): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  180.343648][ T7902] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  180.397807][ T7902] BTRFS info (device loop5): using free space tree
[  180.466936][ T7902] BTRFS info (device loop5): enabling ssd optimizations
[  180.482510][ T7902] BTRFS info (device loop5): auto enabling async discard
[  180.625640][ T7706] BTRFS info (device loop5): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  181.177018][ T7937] loop5: detected capacity change from 0 to 512
[  181.558374][ T7943] vxcan1: tx drop: invalid sa for name 0x0000000000000005
[  182.089136][ T7952] loop5: detected capacity change from 0 to 1024
[  182.264349][ T7941] loop3: detected capacity change from 0 to 32768
[  182.322583][ T7941] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  182.341081][ T7941] XFS (loop3): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  182.466820][ T7941] XFS (loop3): Ending clean mount
[  182.489342][ T7941] XFS (loop3): Quotacheck needed: Please wait.
[  182.499768][ T7949] loop0: detected capacity change from 0 to 32768
[  182.549256][ T7941] XFS (loop3): Quotacheck: Done.
[  182.740259][ T5792] XFS (loop3): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  183.015115][ T7965] loop5: detected capacity change from 0 to 4096
[  183.474298][ T7967] loop0: detected capacity change from 0 to 32768
[  183.487621][ T7967] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.701 (7967)
[  183.505819][ T7967] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  183.516568][ T7967] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  183.526936][ T7967] BTRFS info (device loop0): using free space tree
[  183.710360][ T7967] BTRFS info (device loop0): enabling ssd optimizations
[  183.717381][ T7967] BTRFS info (device loop0): auto enabling async discard
[  184.059756][ T5799] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  184.241823][ T5790] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  184.285652][ T5790] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  184.294792][ T5790] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  184.312373][ T5790] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  184.330168][ T5790] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  184.345426][ T5790] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  184.818980][ T8008] loop5: detected capacity change from 0 to 512
[  184.913597][ T8008] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.712: casefold flag without casefold feature
[  184.948489][ T8008] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.712: couldn't read orphan inode 15 (err -117)
[  184.988923][ T8008] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.049323][   T58] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.132994][ T7706] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.155272][ T8019] loop3: detected capacity change from 0 to 512
[  185.162636][ T8019] EXT4-fs: Ignoring removed mblk_io_submit option
[  185.178425][ T5174] libceph: connect (1)[c::]:6789 error -101
[  185.186296][ T5174] libceph: mon0 (1)[c::]:6789 connect error
[  185.227875][   T58] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.234151][ T8019] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.250098][ T8014] ceph: No mds server is up or the cluster is laggy
[  185.303781][ T8024] loop5: detected capacity change from 0 to 64
[  185.378385][   T28] audit: type=1800 audit(1760557361.417:330): pid=8019 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.716" name="bus" dev="loop3" ino=18 res=0 errno=0
[  185.380397][   T58] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.479487][ T7706] hfs: node 4:3 still has 1 user(s)!
[  185.573446][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.603623][   T58] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.790867][ T7993] chnl_net:caif_netlink_parms(): no params data found
[  186.119431][ T7993] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.136601][ T7993] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.147579][ T7993] bridge_slave_0: entered allmulticast mode
[  186.163044][ T7993] bridge_slave_0: entered promiscuous mode
[  186.198712][ T7993] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.218618][ T7993] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.228602][ T7993] bridge_slave_1: entered allmulticast mode
[  186.249009][ T7993] bridge_slave_1: entered promiscuous mode
[  186.444686][ T7993] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  186.460348][ T5795] Bluetooth: hci4: command tx timeout
[  186.488892][ T7993] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  186.595315][ T7993] team0: Port device team_slave_0 added
[  186.636785][ T7993] team0: Port device team_slave_1 added
[  186.736592][ T7993] batman_adv: batadv0: Adding interface: batadv_slave_0
[  186.745379][ T7993] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  186.773138][ T7993] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  186.786728][ T7993] batman_adv: batadv0: Adding interface: batadv_slave_1
[  186.797418][ T7993] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  186.838583][ T7993] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  187.076867][ T8063] netlink: 64 bytes leftover after parsing attributes in process `syz.5.731'.
[  187.119767][ T7993] hsr_slave_0: entered promiscuous mode
[  187.139147][ T7993] hsr_slave_1: entered promiscuous mode
[  187.146198][ T7993] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  187.154943][ T7993] Cannot create hsr debugfs directory
[  187.232073][ T2992] tipc: Subscription rejected, illegal request
[  187.947308][   T58] hsr_slave_0: left promiscuous mode
[  187.955301][   T58] hsr_slave_1: left promiscuous mode
[  187.993444][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  188.020680][   T58] batman_adv: batadv0: Removing interface: batadv_slave_0
[  188.040073][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  188.049087][   T58] batman_adv: batadv0: Removing interface: batadv_slave_1
[  188.072543][   T58] bridge_slave_1: left allmulticast mode
[  188.095688][   T58] bridge_slave_1: left promiscuous mode
[  188.110602][   T58] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.140353][   T58] bridge_slave_0: left allmulticast mode
[  188.146251][   T58] bridge_slave_0: left promiscuous mode
[  188.156932][   T58] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.291667][   T58] veth1_macvtap: left promiscuous mode
[  188.297293][   T58] veth0_macvtap: left promiscuous mode
[  188.303986][   T58] veth1_vlan: left promiscuous mode
[  188.309394][   T58] veth0_vlan: left promiscuous mode
[  188.448349][ T8104] loop3: detected capacity change from 0 to 256
[  188.541560][ T5795] Bluetooth: hci4: command tx timeout
[  188.560787][ T8104] FAT-fs (loop3): Directory bread(block 64) failed
[  188.578359][ T8104] FAT-fs (loop3): Directory bread(block 65) failed
[  188.610356][ T8104] FAT-fs (loop3): Directory bread(block 66) failed
[  188.629787][ T8104] FAT-fs (loop3): Directory bread(block 67) failed
[  188.647767][ T8104] FAT-fs (loop3): Directory bread(block 68) failed
[  188.670093][ T8104] FAT-fs (loop3): Directory bread(block 69) failed
[  188.676800][ T8104] FAT-fs (loop3): Directory bread(block 70) failed
[  188.683943][ T8104] FAT-fs (loop3): Directory bread(block 71) failed
[  188.692686][ T8104] FAT-fs (loop3): Directory bread(block 72) failed
[  188.710137][ T8104] FAT-fs (loop3): Directory bread(block 73) failed
[  188.908355][ T8112] loop0: detected capacity change from 0 to 256
[  188.935585][ T2940] kworker/u4:6: attempt to access beyond end of device
[  188.935585][ T2940] loop3: rw=1, sector=1224, nr_sectors = 12 limit=256
[  189.559578][   T58] team0 (unregistering): Port device team_slave_1 removed
[  189.615251][ T8116] loop0: detected capacity change from 0 to 32768
[  189.623977][ T8116] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.753 (8116)
[  189.644631][   T58] team0 (unregistering): Port device team_slave_0 removed
[  189.646131][ T8116] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  189.665558][ T8116] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  189.674392][ T8116] BTRFS info (device loop0): using free space tree
[  189.728854][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  189.774757][ T8116] BTRFS info (device loop0): enabling ssd optimizations
[  189.785253][ T8116] BTRFS info (device loop0): auto enabling async discard
[  189.806328][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  190.158626][ T5799] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  190.620774][ T5795] Bluetooth: hci4: command tx timeout
[  190.729762][   T58] bond0 (unregistering): Released all slaves
[  190.790122][ T5838] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  190.938059][ T7993] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  190.953152][ T7993] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  190.974295][ T7993] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  190.988354][ T5838] usb 1-1: Using ep0 maxpacket: 8
[  191.027036][ T7993] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  191.041614][ T5838] usb 1-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  191.067645][ T5838] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239
[  191.087812][ T5838] usb 1-1: Product: syz
[  191.094256][ T5838] usb 1-1: Manufacturer: syz
[  191.098916][ T5838] usb 1-1: SerialNumber: syz
[  191.118095][ T5838] usb 1-1: config 0 descriptor??
[  191.134934][ T5838] gspca_main: sq905-2.14.0 probing 2770:9120
[  191.199134][    T8] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  191.303419][ T7993] 8021q: adding VLAN 0 to HW filter on device bond0
[  191.330937][ T7993] 8021q: adding VLAN 0 to HW filter on device team0
[  191.359514][ T2992] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.366766][ T2992] bridge0: port 1(bridge_slave_0) entered forwarding state
[  191.388290][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.395513][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  191.433377][    T8] usb 6-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=26.50
[  191.455856][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.498081][    T8] usb 6-1: Product: syz
[  191.529316][    T8] usb 6-1: Manufacturer: syz
[  191.544239][    T8] usb 6-1: SerialNumber: syz
[  191.562622][    T8] usb 6-1: config 0 descriptor??
[  191.587012][    T8] usb 6-1: Waiting for MOTU Microbook II to boot up...
[  191.594482][    T8] usb 6-1: failed setting the sample rate for Motu MicroBook II: -22
[  191.604012][    T8] snd-usb-audio: probe of 6-1:0.0 failed with error -22
[  191.788404][    T9] usb 6-1: USB disconnect, device number 2
[  192.023830][ T8166] loop3: detected capacity change from 0 to 2048
[  192.038367][ T8166] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  192.039438][ T7993] 8021q: adding VLAN 0 to HW filter on device batadv0
[  192.159507][ T5838] gspca_sq905: sq905_read_data: usb_control_msg failed (-71)
[  192.167978][ T5838] sq905: probe of 1-1:0.0 failed with error -71
[  192.186218][ T5838] usb 1-1: USB disconnect, device number 13
[  192.518325][ T7993] veth0_vlan: entered promiscuous mode
[  192.551350][ T7993] veth1_vlan: entered promiscuous mode
[  192.602815][ T7993] veth0_macvtap: entered promiscuous mode
[  192.615359][ T7993] veth1_macvtap: entered promiscuous mode
[  192.667215][ T7993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.686417][ T7993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.698080][ T7993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.714351][ T5795] Bluetooth: hci4: command tx timeout
[  192.720145][ T7993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.730557][ T7993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.747644][ T7993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.758074][ T7993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.769248][ T7993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.782831][ T7993] batman_adv: batadv0: Interface activated: batadv_slave_0
[  192.812812][ T7993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  192.829970][ T7993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.850283][ T7993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  192.879988][ T7993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.901768][ T7993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  192.920292][ T7993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.938382][ T7993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  192.956793][ T7993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.979124][ T7993] batman_adv: batadv0: Interface activated: batadv_slave_1
[  193.036025][ T7993] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  193.053564][ T7993] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  193.064101][ T7993] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  193.081626][ T7993] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  193.256572][ T2992] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.287696][ T2992] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.306349][ T8191] input: syz0 as /devices/virtual/input/input16
[  193.455994][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.468609][ T8181] loop5: detected capacity change from 0 to 32768
[  193.479478][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.517416][ T8181] 
[  193.517416][ T8181]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.517416][ T8181] 
[  193.569111][ T8181] ERROR: (device loop5): diWrite: ixpxd invalid
[  193.569111][ T8181] 
[  193.613494][ T8181] ERROR: (device loop5): txCommit: 
[  193.613494][ T8181] 
[  193.638952][ T8200] 
[  193.638952][ T8200]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.638952][ T8200] 
[  193.672894][ T8200] 
[  193.672894][ T8200]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.672894][ T8200] 
[  193.811483][ T7706] 
[  193.811483][ T7706]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.811483][ T7706] 
[  193.852242][ T7706] 
[  193.852242][ T7706]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.852242][ T7706] 
[  194.546382][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  194.560138][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  195.229566][ T8212] loop0: detected capacity change from 0 to 40427
[  195.232043][ T8214] loop6: detected capacity change from 0 to 32768
[  195.264994][ T8212] F2FS-fs (loop0): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  195.266152][ T8214] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 scanned by syz.6.779 (8214)
[  195.292494][ T8212] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  195.319551][ T8212] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x35f7
[  195.333832][ T8212] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x7ffff
[  195.345526][ T8212] F2FS-fs (loop0): Image doesn't support compression
[  195.355127][ T8214] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  195.364874][ T8212] F2FS-fs (loop0): invalid crc value
[  195.375506][ T8214] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm
[  195.386116][ T8214] BTRFS info (device loop6): setting nodatacow, compression disabled
[  195.401342][ T8223] loop3: detected capacity change from 0 to 32768
[  195.401438][ T8212] F2FS-fs (loop0): Found nat_bits in checkpoint
[  195.415724][ T8214] BTRFS info (device loop6): setting datasum, datacow enabled
[  195.427695][ T8223] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.780 (8223)
[  195.434823][ T8214] BTRFS info (device loop6): setting nodatasum
[  195.455813][ T8214] BTRFS info (device loop6): disabling tree log
[  195.471484][ T8214] BTRFS info (device loop6): max_inline at 0
[  195.477533][ T8214] BTRFS info (device loop6): using free space tree
[  195.484958][ T8223] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  195.501384][ T8223] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  195.521344][ T8223] BTRFS info (device loop3): enabling auto defrag
[  195.529082][ T8223] BTRFS info (device loop3): max_inline at 0
[  195.535230][ T8212] F2FS-fs (loop0): Start checkpoint disabled!
[  195.541634][ T8223] BTRFS info (device loop3): force clearing of disk cache
[  195.555384][ T8223] BTRFS info (device loop3): turning on sync discard
[  195.566402][ T8212] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  195.584995][ T8223] BTRFS info (device loop3): using free space tree
[  195.599571][ T8212] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  195.702734][ T8212] syz.0.778: attempt to access beyond end of device
[  195.702734][ T8212] loop0: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[  195.750216][ T8223] BTRFS info (device loop3): enabling ssd optimizations
[  195.773674][ T8212] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_do_write_data_page+0x8db/0x1bc0
[  195.820305][ T8223] BTRFS info (device loop3): rebuilding free space tree
[  195.928800][ T7993] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  196.072730][   T11] kworker/u4:0: attempt to access beyond end of device
[  196.072730][   T11] loop0: rw=1, sector=53256, nr_sectors = 8 limit=40427
[  196.109735][   T11] kworker/u4:0: attempt to access beyond end of device
[  196.109735][   T11] loop0: rw=1, sector=53248, nr_sectors = 8 limit=40427
[  196.143471][   T11] kworker/u4:0: attempt to access beyond end of device
[  196.143471][   T11] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  196.187016][   T11] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  196.208162][   T11] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  196.212612][ T5792] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  196.980148][  T967] usb 6-1: new low-speed USB device number 3 using dummy_hcd
[  197.207947][  T967] usb 6-1: unable to get BOS descriptor or descriptor too short
[  197.230094][  T967] usb 6-1: unable to read config index 0 descriptor/start: -71
[  197.249815][  T967] usb 6-1: can't read configurations, error -71
[  197.520022][ T5825] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  197.732389][ T5825] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  197.772410][ T5825] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  197.803440][ T5825] usb 7-1: New USB device found, idVendor=1d34, idProduct=0004, bcdDevice= 0.00
[  197.831185][ T5825] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.858397][ T5825] usb 7-1: config 0 descriptor??
[  198.317946][ T5825] hid-led 0003:1D34:0004.000B: item fetching failed at offset 3/5
[  198.358042][ T5825] hid-led: probe of 0003:1D34:0004.000B failed with error -22
[  198.358642][ T8346] loop5: detected capacity change from 0 to 2048
[  198.387338][ T8348] syz.3.805 (8348): drop_caches: 2
[  198.393001][ T8346] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  198.450421][ T8346] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.570141][ T5825] usb 7-1: USB disconnect, device number 2
[  198.623173][ T7706] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.971079][ T8370] kvm: user requested TSC rate below hardware speed
[  199.245653][ T8381] ieee802154 phy0 wpan0: encryption failed: -22
[  199.268004][ T8386] loop3: detected capacity change from 0 to 64
[  199.390108][   T28] audit: type=1800 audit(1760557375.427:331): pid=8386 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.816" name="file1" dev="loop3" ino=21 res=0 errno=0
[  199.451217][ T8386] syz.3.816: attempt to access beyond end of device
[  199.451217][ T8386] loop3: rw=34817, sector=57, nr_sectors = 8 limit=64
[  199.460197][ T8391] netlink: 4 bytes leftover after parsing attributes in process `syz.0.826'.
[  199.514827][ T8387] loop6: detected capacity change from 0 to 8192
[  199.550321][ T8387] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  199.570963][ T8387] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal
[  199.590217][ T8387] REISERFS (device loop6): using ordered data mode
[  199.596822][ T8387] reiserfs: using flush barriers
[  199.654832][ T8398] loop3: detected capacity change from 0 to 1024
[  199.655952][ T8387] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  199.722693][ T8398] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  199.746891][ T8387] REISERFS (device loop6): checking transaction log (loop6)
[  199.768602][ T8401] loop0: detected capacity change from 0 to 512
[  199.796807][ T8398] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.847843][ T8401] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.861035][ T8398] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: comm syz.3.818: lblock 0 mapped to illegal pblock 0 (length 6)
[  199.869993][   T28] audit: type=1800 audit(1760557375.887:332): pid=8398 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.818" name="file1" dev="loop3" ino=15 res=0 errno=0
[  199.914644][ T8398] EXT4-fs error (device loop3): ext4_ext_remove_space:2929: inode #15: comm syz.3.818: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  199.989502][ T8387] REISERFS (device loop6): Using tea hash to sort names
[  199.998625][   T28] audit: type=1800 audit(1760557376.027:333): pid=8401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.819" name="file1" dev="loop0" ino=15 res=0 errno=0
[  200.051263][ T8387] REISERFS warning (device loop6): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  200.080102][ T8387] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[  200.121843][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  200.209868][ T8393] loop5: detected capacity change from 0 to 32768
[  200.233507][ T8393] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.817 (8393)
[  200.258029][ T8393] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  200.278611][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.306457][ T8393] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[  200.334412][ T8393] BTRFS info (device loop5): using free space tree
[  200.510508][ T8426] loop3: detected capacity change from 0 to 2048
[  200.516665][ T8432] loop0: detected capacity change from 0 to 1024
[  200.532384][ T8432] EXT4-fs: Ignoring removed nobh option
[  200.533748][ T8393] BTRFS info (device loop5): enabling ssd optimizations
[  200.538091][ T8432] EXT4-fs: Ignoring removed bh option
[  200.552116][ T8432] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  200.566397][ T8393] BTRFS info (device loop5): auto enabling async discard
[  200.567404][ T8426] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.604861][ T8432] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.621335][ T8426] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.734859][ T8426] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.823: bg 0: block 345: padding at end of block bitmap is not set
[  200.753336][ T8441] netlink: 8 bytes leftover after parsing attributes in process `syz.6.824'.
[  200.848974][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.864196][   T11] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 79 with max blocks 1 with error 28
[  200.910880][ T7706] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  200.924669][   T11] EXT4-fs (loop3): This should not happen!! Data will be lost
[  200.924669][   T11] 
[  200.939672][   T11] EXT4-fs (loop3): Total free blocks count 0
[  200.948077][   T11] EXT4-fs (loop3): Free/Dirty block details
[  200.954625][   T11] EXT4-fs (loop3): free_blocks=0
[  200.959639][   T11] EXT4-fs (loop3): dirty_blocks=16
[  200.966179][   T11] EXT4-fs (loop3): Block reservation details
[  200.972349][   T11] EXT4-fs (loop3): i_reserved_data_blocks=1
[  200.983121][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.155157][ T8446] loop6: detected capacity change from 0 to 4096
[  201.240304][ T8451] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  201.410703][   T28] audit: type=1800 audit(1760557377.447:334): pid=8454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.830" name="file1" dev="loop6" ino=15 res=0 errno=0
[  201.680185][ T8464] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  201.701764][ T8467] loop5: detected capacity change from 0 to 8
[  201.857045][ T8471] loop3: detected capacity change from 0 to 764
[  201.940135][ T5838] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  202.133316][ T5838] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  202.153576][ T5838] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.174891][ T5838] usb 7-1: config 0 descriptor??
[  202.192764][ T5838] cp210x 7-1:0.0: cp210x converter detected
[  202.268121][ T5846] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  202.296827][ T5846] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  202.475156][ T8490] loop5: detected capacity change from 0 to 1764
[  202.680300][ T8465] loop6: detected capacity change from 0 to 2048
[  202.698995][ T8465] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  202.714614][ T8465] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  202.960279][ T5838] cp210x 7-1:0.0: failed to get vendor val 0x000e size 678: -71
[  202.970523][ T5838] cp210x 7-1:0.0: GPIO initialisation failed: -71
[  202.991028][ T5838] usb 7-1: cp210x converter now attached to ttyUSB0
[  203.011322][ T5838] usb 7-1: USB disconnect, device number 3
[  203.036124][ T5838] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  203.055326][ T5838] cp210x 7-1:0.0: device disconnected
[  203.791714][ T8512] loop5: detected capacity change from 0 to 32768
[  203.809226][ T8512] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop5 scanned by syz.5.857 (8512)
[  203.835379][ T8512] BTRFS info (device loop5): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  203.857456][ T8512] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[  203.866967][ T8512] BTRFS info (device loop5): enabling disk space caching
[  203.874478][ T8512] BTRFS info (device loop5): force clearing of disk cache
[  203.882432][ T8512] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  203.892239][ T8512] BTRFS info (device loop5): use zstd compression, level 3
[  203.912493][ T8512] BTRFS info (device loop5): disk space caching is enabled
[  203.961549][ T8512] BTRFS info (device loop5): enabling ssd optimizations
[  203.993407][ T8515] loop0: detected capacity change from 0 to 32768
[  203.997303][ T8512] BTRFS info (device loop5): auto enabling async discard
[  204.020518][ T8512] BTRFS info (device loop5): rebuilding free space tree
[  204.067896][ T8515] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  204.074874][ T8512] BTRFS info (device loop5): disabling free space tree
[  204.096693][ T8512] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  204.117183][ T8512] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  204.211476][ T8515] XFS (loop0): Ending clean mount
[  204.449655][ T5799] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  204.451321][ T8548] netlink: 28 bytes leftover after parsing attributes in process `syz.3.862'.
[  204.733355][ T7706] BTRFS info (device loop5): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  205.216721][ T8560] loop6: detected capacity change from 0 to 512
[  205.317299][ T8562] loop3: detected capacity change from 0 to 512
[  205.375901][ T8562] FAT-fs (loop3): unable to read block(121038582) for building NFS inode
[  206.275303][ T8564] loop0: detected capacity change from 0 to 32768
[  206.313813][ T8564] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  206.363383][ T8564] XFS (loop0): Ending clean mount
[  206.394346][ T8564] XFS (loop0): Quotacheck needed: Please wait.
[  206.469404][ T8564] XFS (loop0): Quotacheck: Done.
[  206.576737][   T28] audit: type=1800 audit(1760557382.617:335): pid=8564 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.870" name="bus" dev="loop0" ino=4431 res=0 errno=0
[  206.605999][ T5799] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  206.950840][ T8586] loop3: detected capacity change from 0 to 40427
[  207.013115][ T8586] F2FS-fs (loop3): invalid crc value
[  207.040712][ T8586] F2FS-fs (loop3): Found nat_bits in checkpoint
[  207.150279][ T8586] F2FS-fs (loop3): Start checkpoint disabled!
[  207.175158][ T8586] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  207.321702][ T8614] loop8: detected capacity change from 0 to 8
[  207.352555][ T8614] Dev loop8: unable to read RDB block 8
[  207.358206][ T8614]  loop8: unable to read partition table
[  207.381002][ T8614] loop8: partition table beyond EOD, truncated
[  207.390402][ T8614] loop_reread_partitions: partition scan of loop8 (�被x�^>�� �) failed (rc=-5)
[  207.431055][ T8616] netlink: 'syz.6.890': attribute type 12 has an invalid length.
[  207.449118][ T8616] netlink: 'syz.6.890': attribute type 29 has an invalid length.
[  207.457978][   T12] kworker/u4:1: attempt to access beyond end of device
[  207.457978][   T12] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  207.459301][ T8616] netlink: 148 bytes leftover after parsing attributes in process `syz.6.890'.
[  207.487216][   T12] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  207.498201][   T12] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  207.518745][ T8616] netlink: 'syz.6.890': attribute type 2 has an invalid length.
[  207.527065][ T8616] netlink: 23 bytes leftover after parsing attributes in process `syz.6.890'.
[  207.617525][ T8618] mmap: syz.6.892 (8618) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  208.322439][ T8605] loop0: detected capacity change from 0 to 65536
[  208.352543][ T8605] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  208.421991][ T8653] loop6: detected capacity change from 0 to 128
[  208.427934][ T8605] XFS (loop0): Ending clean mount
[  208.435738][ T8653] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  208.449767][ T8605] XFS (loop0): Quotacheck needed: Please wait.
[  208.538522][ T8605] XFS (loop0): Quotacheck: Done.
[  208.587400][ T8653] UDF-fs: error (device loop6): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  208.675263][ T5799] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  208.888534][ T8667] loop3: detected capacity change from 0 to 256
[  208.896559][ T8667] exfat: Deprecated parameter 'namecase'
[  208.902955][ T8667] exfat: Deprecated parameter 'utf8'
[  208.918732][ T8667] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  209.068523][ T8673] input: syz0 as /devices/virtual/input/input17
[  209.414739][ T8683] netlink: 'syz.3.916': attribute type 10 has an invalid length.
[  209.436818][ T8683] 8021q: adding VLAN 0 to HW filter on device batadv0
[  209.465645][ T8683] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  209.470828][ T8685] loop5: detected capacity change from 0 to 128
[  209.490266][ T8685] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  209.502761][ T8685] hpfs: filesystem error: improperly stopped
[  209.508796][ T8685] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  209.516977][ T8685] hpfs: You really don't want any checks? You are crazy...
[  209.525567][ T8685] hpfs: hpfs_map_sector(): read error
[  209.531233][ T8685] hpfs: code page support is disabled
[  209.539700][ T8685] hpfs: hpfs_map_4sectors(): unaligned read
[  209.546091][ T8685] hpfs: hpfs_map_4sectors(): unaligned read
[  209.552174][ T8685] hpfs: filesystem error: unable to find root dir
[  209.574181][ T8683] bond0: entered promiscuous mode
[  209.579318][ T8683] bond_slave_0: entered promiscuous mode
[  209.599614][ T8683] bond_slave_1: entered promiscuous mode
[  209.606467][ T8683] batadv0: entered promiscuous mode
[  209.742762][ T8693] syzkaller1: entered promiscuous mode
[  209.748430][ T8693] syzkaller1: entered allmulticast mode
[  209.970497][ T5853] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  210.137103][ T8697] loop5: detected capacity change from 0 to 4096
[  210.162649][ T5853] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  210.168517][ T8697] ntfs: volume version 3.1.
[  210.180017][ T5853] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  210.200259][ T5853] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  210.231089][ T5853] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  210.245751][ T8697] ntfs: (device loop5): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -28).
[  210.250255][ T5853] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.267948][ T8697] ntfs: (device loop5): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -28).
[  210.270941][ T5853] usb 4-1: config 0 descriptor??
[  210.289836][ T8697] ntfs: (device loop5): ntfs_attr_extend_allocation(): Cannot extend allocation of inode 0x43, attribute type 0x80, because the allocation of clusters failed with error code -28.
[  210.553386][ T8709] netlink: 16 bytes leftover after parsing attributes in process `syz.0.927'.
[  210.562935][ T8709] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (133)
[  210.700228][  T967] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  210.710585][ T5853] plantronics 0003:047F:FFFF.000D: ignoring exceeding usage max
[  210.725021][ T5853] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving
[  210.736157][ T5853] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  210.890102][  T967] usb 6-1: Using ep0 maxpacket: 16
[  210.897751][  T967] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  210.910428][  T967] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  210.925813][  T967] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  210.939162][  T967] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  210.953857][  T967] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.967853][  T967] usb 6-1: config 0 descriptor??
[  211.020248][ T5790] Bluetooth: hci0: command 0x1003 tx timeout
[  211.022371][ T5795] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  211.045403][    T9] usb 4-1: USB disconnect, device number 8
[  211.160104][ T5838] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  211.350034][ T5838] usb 1-1: Using ep0 maxpacket: 16
[  211.371076][ T5838] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  211.388287][ T5838] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  211.407811][ T5838] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  211.419063][ T5838] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.435397][ T5838] usb 1-1: Product: syz
[  211.439844][ T5838] usb 1-1: Manufacturer: syz
[  211.446683][ T5838] usb 1-1: SerialNumber: syz
[  211.701478][ T5838] usb 1-1: Audio class v2/v3 interfaces need an interface association
[  211.764563][ T5838] snd-usb-audio: probe of 1-1:1.0 failed with error -22
[  211.788868][ T5838] usb 1-1: USB disconnect, device number 14
[  212.376968][ T8721] loop6: detected capacity change from 0 to 131072
[  212.387356][  T967] HID 045e:07da: Invalid code 65791 type 1
[  212.397094][ T8721] F2FS-fs (loop6): invalid crc value
[  212.408526][  T967] input: HID 045e:07da as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:045E:07DA.000E/input/input18
[  212.438230][ T8721] F2FS-fs (loop6): Found nat_bits in checkpoint
[  212.510082][ T8721] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  212.713989][ T8739] loop0: detected capacity change from 0 to 4096
[  212.728721][  T967] microsoft 0003:045E:07DA.000E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0
[  212.747224][  T967] usb 6-1: USB disconnect, device number 5
[  212.790563][ T8739] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  212.870910][ T8739] ntfs3: loop0: Failed to load $Extend (-22).
[  212.877058][ T8739] ntfs3: loop0: Failed to initialize $Extend.
[  212.900868][ T8747] syzkaller1: entered promiscuous mode
[  212.916717][ T8747] syzkaller1: entered allmulticast mode
[  213.586462][ T8766] loop0: detected capacity change from 0 to 16
[  213.616939][ T8766] erofs: (device loop0): mounted with root inode @ nid 36.
[  213.883538][ T8770] loop0: detected capacity change from 0 to 1024
[  214.026968][ T8770] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  214.051618][ T8770] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  214.167452][ T8778] loop6: detected capacity change from 0 to 128
[  214.177986][ T2992] hfsplus: b-tree write err: -5, ino 4
[  214.285228][   T28] audit: type=1326 audit(1760557390.327:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.327491][   T28] audit: type=1326 audit(1760557390.327:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.381938][   T28] audit: type=1326 audit(1760557390.327:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.410302][ T5838] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  214.420070][   T28] audit: type=1326 audit(1760557390.327:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.453212][ T8768] loop3: detected capacity change from 0 to 32768
[  214.471708][   T28] audit: type=1326 audit(1760557390.327:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.496802][   T28] audit: type=1326 audit(1760557390.327:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.562007][ T8768] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  214.611253][   T28] audit: type=1326 audit(1760557390.337:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.640212][ T5838] usb 6-1: Using ep0 maxpacket: 32
[  214.651880][ T5838] usb 6-1: config 0 has an invalid interface number: 126 but max is 0
[  214.670241][ T5838] usb 6-1: config 0 has no interface number 0
[  214.676459][ T5838] usb 6-1: config 0 interface 126 altsetting 16 bulk endpoint 0x6 has invalid maxpacket 1023
[  214.688404][ T8768] (syz.3.954,8768,1):ocfs2_remount:623 ERROR: Cannot change heartbeat mode on remount
[  214.698648][ T5838] usb 6-1: config 0 interface 126 altsetting 16 endpoint 0x82 has invalid wMaxPacketSize 0
[  214.707264][   T28] audit: type=1326 audit(1760557390.337:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.720423][ T5838] usb 6-1: config 0 interface 126 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 0
[  214.735394][ T8792] loop0: detected capacity change from 0 to 47
[  214.753025][ T5838] usb 6-1: config 0 interface 126 has no altsetting 0
[  214.765135][   T28] audit: type=1326 audit(1760557390.337:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.799562][ T5838] usb 6-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice=b0.1c
[  214.811305][ T5838] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.821013][ T5838] usb 6-1: Product: syz
[  214.827295][   T28] audit: type=1326 audit(1760557390.337:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8779 comm="syz.0.958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f313e18eec9 code=0x7ffc0000
[  214.850595][ T5838] usb 6-1: Manufacturer: syz
[  214.855259][ T5838] usb 6-1: SerialNumber: syz
[  214.863609][ T5838] usb 6-1: config 0 descriptor??
[  214.869433][ T8776] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  214.912578][ T5792] ocfs2: Unmounting device (7,3) on (node local)
[  215.145109][ T8802] loop6: detected capacity change from 0 to 8
[  215.292816][ T8776] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  215.301931][ T8776] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.322967][ T5838] ir_usb 6-1:0.126: IR Dongle converter detected
[  215.541274][ T5838] usb 6-1: IR Dongle converter now attached to ttyUSB0
[  215.715371][ T8801] loop0: detected capacity change from 0 to 40427
[  215.725205][ T8801] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[  215.732537][ T8801] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  215.742967][ T5853] usb 6-1: USB disconnect, device number 6
[  215.759661][ T5853] ir-usb ttyUSB0: IR Dongle converter now disconnected from ttyUSB0
[  215.776189][ T5853] ir_usb 6-1:0.126: device disconnected
[  215.789682][ T8801] F2FS-fs (loop0): Found nat_bits in checkpoint
[  215.851165][ T8801] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  215.858273][ T8801] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  215.936810][ T8801] syz.0.967: attempt to access beyond end of device
[  215.936810][ T8801] loop0: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  216.002228][ T5799] syz-executor: attempt to access beyond end of device
[  216.002228][ T5799] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  216.021440][ T5799] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  216.444949][ T8836] netlink: 4 bytes leftover after parsing attributes in process `syz.6.983'.
[  216.610201][ T5853] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  216.790138][ T5853] usb 4-1: Using ep0 maxpacket: 16
[  216.801577][ T5853] usb 4-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  216.810697][ T5853] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.818725][ T5853] usb 4-1: Product: syz
[  216.824075][ T5853] usb 4-1: Manufacturer: syz
[  216.828725][ T5853] usb 4-1: SerialNumber: syz
[  216.836256][ T5853] usb 4-1: config 0 descriptor??
[  216.999326][ T2959] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.105525][ T2959] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.188303][ T2959] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.249094][ T5853] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  217.259427][ T5853] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  217.270449][ T5853] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  217.279287][ T5853] usb 4-1: media controller created
[  217.307788][ T5853] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  217.315300][ T2959] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.460182][ T5853] zl10353_read_register: readreg error (reg=127, ret==0)
[  217.467339][ T5853] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  217.520064][ T2959] tipc: Disabling bearer <udp:s>
[  217.529867][ T5853] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  217.553680][ T2959] tipc: Left network mode
[  217.601048][ T5853] usb 4-1: USB disconnect, device number 9
[  217.655583][ T5853] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  217.775486][ T8852] loop5: detected capacity change from 0 to 2048
[  217.847206][ T8852] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  217.935550][ T8856] loop0: detected capacity change from 0 to 4096
[  217.965641][ T8856] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  217.973695][ T8856] ntfs3: loop0: Failed to initialize $Extend/$ObjId.
[  218.056941][ T2940] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22.
[  218.086377][ T5799] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  218.106601][ T5799] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  218.120232][ T5799] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  218.166502][ T2940] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22.
[  218.374244][ T8868] loop5: detected capacity change from 0 to 128
[  218.389546][ T8868] EXT4-fs (loop5): Test dummy encryption mode enabled
[  218.434933][ T8868] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a802c118, mo2=0002]
[  218.448393][ T8868] System zones: 1-3, 19-19, 35-36
[  218.458124][ T8868] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  218.480498][ T8868] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.659450][ T7706] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  218.724116][ T8881] loop0: detected capacity change from 0 to 1024
[  218.820556][ T8881] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  218.897851][ T8880] syzkaller1: entered promiscuous mode
[  218.907607][ T8880] syzkaller1: entered allmulticast mode
[  219.105105][ T2959] hsr_slave_0: left promiscuous mode
[  219.146519][ T2959] hsr_slave_1: left promiscuous mode
[  219.163190][ T2959] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  219.184400][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.197910][ T2959] batman_adv: batadv0: Removing interface: batadv_slave_0
[  219.207191][ T2959] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  219.227766][ T2959] batman_adv: batadv0: Removing interface: batadv_slave_1
[  219.268716][ T2959] bridge_slave_1: left allmulticast mode
[  219.274569][ T2959] bridge_slave_1: left promiscuous mode
[  219.287654][ T2959] bridge0: port 2(bridge_slave_1) entered disabled state
[  219.391144][ T2959] bridge_slave_0: left allmulticast mode
[  219.407434][ T2959] bridge_slave_0: left promiscuous mode
[  219.432746][ T2959] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.594502][ T2959] veth1_macvtap: left promiscuous mode
[  219.612769][ T2959] veth0_macvtap: left promiscuous mode
[  219.613047][ T2959] veth1_vlan: left promiscuous mode
[  219.613196][ T2959] veth0_vlan: left promiscuous mode
[  220.077343][ T5174] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  220.147206][ T5838] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  220.274798][ T5174] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[  220.274828][ T5174] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  220.274850][ T5174] usb 7-1: config 220 has an invalid descriptor of length 1, skipping remainder of the config
[  220.274871][ T5174] usb 7-1: config 220 has no interface number 2
[  220.274931][ T5174] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  220.274959][ T5174] usb 7-1: config 220 interface 0 has no altsetting 0
[  220.274978][ T5174] usb 7-1: config 220 interface 76 has no altsetting 0
[  220.274998][ T5174] usb 7-1: config 220 interface 1 has no altsetting 0
[  220.287367][ T5174] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  220.287400][ T5174] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.287424][ T5174] usb 7-1: Product: syz
[  220.287440][ T5174] usb 7-1: Manufacturer: syz
[  220.287455][ T5174] usb 7-1: SerialNumber: syz
[  220.402562][ T5838] usb 1-1: config 0 has an invalid interface number: 229 but max is 0
[  220.433735][ T5838] usb 1-1: config 0 has no interface number 0
[  220.433804][ T5838] usb 1-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice= c.19
[  220.433840][ T5838] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.436435][ T5838] usb 1-1: config 0 descriptor??
[  220.519332][ T5174] usb 7-1: Found UVC 7.01 device syz (8086:0b07)
[  220.542469][ T5174] usb 7-1: No valid video chain found.
[  220.548187][ T5174] usb 7-1: selecting invalid altsetting 0
[  220.595606][ T5174] usb 7-1: selecting invalid altsetting 0
[  220.602240][ T5174] usbtest: probe of 7-1:220.1 failed with error -22
[  220.611861][ T5174] usb 7-1: USB disconnect, device number 4
[  220.698060][ T5838] usb 1-1: USB disconnect, device number 15
[  221.038387][ T2959] team0 (unregistering): Port device team_slave_1 removed
[  221.107979][ T2959] team0 (unregistering): Port device team_slave_0 removed
[  221.217731][ T2959] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  221.330918][ T2959] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  221.570257][ T5838] kernel write not supported for file /134/gid_map (pid: 5838 comm: kworker/0:3)
[  222.136654][ T8948] input: syz1 as /devices/virtual/input/input19
[  222.157394][ T8948] input: failed to attach handler leds to device input19, error: -6
[  222.244965][ T8950] loop0: detected capacity change from 0 to 512
[  222.258551][ T8950] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  222.588067][ T2959] bond0 (unregistering): Released all slaves
[  223.150139][    T9] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  223.377265][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  223.404057][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  223.427646][    T9] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  223.466362][    T9] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  223.487060][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.511564][    T9] usb 1-1: config 0 descriptor??
[  223.735168][ T8990] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  223.743307][ T8990] IPv6: NLM_F_CREATE should be set when creating new route
[  223.750637][ T8990] IPv6: NLM_F_CREATE should be set when creating new route
[  223.757914][ T8990] IPv6: NLM_F_CREATE should be set when creating new route
[  223.932067][    T9] plantronics 0003:047F:FFFF.000F: ignoring exceeding usage max
[  223.945522][    T9] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving
[  223.956508][    T9] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  224.074535][ T8984] loop3: detected capacity change from 0 to 32768
[  224.242612][    T9] usb 1-1: USB disconnect, device number 16
[  224.600144][ T5853] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  224.801929][ T5853] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  224.820045][ T5853] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.850013][ T5853] usb 4-1: Product: syz
[  224.854245][ T5853] usb 4-1: Manufacturer: syz
[  224.858886][ T5853] usb 4-1: SerialNumber: syz
[  224.886588][ T5853] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  224.961267][ T5825] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  225.244122][ T9005] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  225.272149][ T9005] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  225.315384][ T5853] usb 4-1: USB disconnect, device number 10
[  225.376827][ T9019] loop6: detected capacity change from 0 to 32768
[  225.396198][ T9019] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  225.433822][ T9029] loop5: detected capacity change from 0 to 4096
[  225.468927][ T9019] XFS (loop6): Ending clean mount
[  225.481255][ T9019] XFS (loop6): Quotacheck needed: Please wait.
[  225.537793][ T9019] XFS (loop6): Quotacheck: Done.
[  225.640723][ T7993] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  225.976367][ T9057] loop2: detected capacity change from 0 to 7
[  225.990389][ T5825] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  225.993624][ T9057] Dev loop2: unable to read RDB block 7
[  226.006900][ T9057]  loop2: unable to read partition table
[  226.015431][ T9057] loop2: partition table beyond EOD, truncated
[  226.018134][ T5825] ath9k_htc: Failed to initialize the device
[  226.031564][ T9057] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  226.035772][ T5853] usb 4-1: ath9k_htc: USB layer deinitialized
[  226.241308][ T9061] loop0: detected capacity change from 0 to 4096
[  226.255148][ T9061] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  226.357511][ T9061] ntfs3: loop0: ino=1b, "file0" directory corrupted
[  226.692009][ T9078] loop5: detected capacity change from 0 to 1764
[  226.800210][ T5846] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  226.918778][ T9075] loop0: detected capacity change from 0 to 32768
[  226.945119][ T9075] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  226.982374][ T9075] XFS (loop0): Ending clean mount
[  226.998171][ T5846] usb 7-1: New USB device found, idVendor=1645, idProduct=0008, bcdDevice=cf.36
[  227.008122][ T9075] XFS (loop0): Quotacheck needed: Please wait.
[  227.023506][ T5846] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.044903][ T5846] usb 7-1: config 0 descriptor??
[  227.066742][ T9092] loop5: detected capacity change from 0 to 1024
[  227.074514][ T9092] EXT4-fs: Ignoring removed bh option
[  227.089331][ T9092] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  227.092134][ T9075] XFS (loop0): Quotacheck: Done.
[  227.118864][ T9092] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.175046][ T5799] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  227.304973][ T9092] EXT4-fs error (device loop5): ext4_find_dest_de:2115: inode #12: block 7: comm syz.5.1078: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  227.359787][ T5846] kaweth 7-1:0.0: Firmware present in device.
[  227.415276][ T9092] EXT4-fs (loop5): Remounting filesystem read-only
[  227.545184][ T5846] kaweth 7-1:0.0: Statistics collection: 0
[  227.551552][ T5846] kaweth 7-1:0.0: Multicast filter limit: 0
[  227.565236][ T5846] kaweth 7-1:0.0: MTU: 0
[  227.574662][ T5846] kaweth 7-1:0.0: Read MAC address 00:00:00:00:00:00
[  227.594467][ T9102] netlink: 'syz.3.1081': attribute type 4 has an invalid length.
[  227.602803][ T9102] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.1081'.
[  227.689550][ T9104] input: syz1 as /devices/virtual/input/input20
[  227.902690][ T7706] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.985949][ T1134] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.143518][ T5825] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  228.151262][ T5846] kaweth 7-1:0.0: Error setting receive filter
[  228.157819][ T5846] kaweth: probe of 7-1:0.0 failed with error -5
[  228.181272][ T1134] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.188986][ T5846] usb 7-1: USB disconnect, device number 5
[  228.315511][ T9106] loop0: detected capacity change from 0 to 32768
[  228.354061][ T9106] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  228.355105][ T5825] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[  228.379594][ T1134] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.396867][ T5825] usb 4-1: config 0 has no interface number 0
[  228.403734][ T5825] usb 4-1: config 0 interface 41 has no altsetting 0
[  228.413543][ T5825] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  228.429944][ T5825] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.438000][ T5825] usb 4-1: Product: syz
[  228.442385][ T5825] usb 4-1: Manufacturer: syz
[  228.447075][ T5825] usb 4-1: SerialNumber: syz
[  228.456495][ T5825] usb 4-1: config 0 descriptor??
[  228.533216][ T9106] XFS (loop0): Ending clean mount
[  228.559758][ T1134] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.613802][ T9106] XFS (loop0): User initiated shutdown received.
[  228.626369][ T9106] XFS (loop0): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:501).  Shutting down filesystem.
[  228.647125][ T9106] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[  228.725396][ T5799] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  228.757822][ T5790] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  228.780366][ T5790] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  228.794510][ T5790] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  228.804579][ T5790] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  228.813068][ T5790] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  228.820614][ T5790] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  228.838807][ T5795] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  228.851434][ T5795] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  228.880438][ T5795] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  228.900508][ T5795] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  228.908505][ T5795] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  228.916777][ T5795] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  229.559225][ T5825] CoreChips: probe of 4-1:0.41 failed with error -71
[  229.602113][ T5825] usb 4-1: USB disconnect, device number 11
[  229.695329][ T9118] chnl_net:caif_netlink_parms(): no params data found
[  229.909709][ T9118] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.918591][ T9118] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.933342][ T9118] bridge_slave_0: entered allmulticast mode
[  229.946918][ T9118] bridge_slave_0: entered promiscuous mode
[  229.957146][ T9118] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.968316][ T9118] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.975867][ T9118] bridge_slave_1: entered allmulticast mode
[  229.983704][ T9118] bridge_slave_1: entered promiscuous mode
[  230.054762][ T9118] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.096547][ T9118] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.149869][ T9118] team0: Port device team_slave_0 added
[  230.229601][ T9145] loop3: detected capacity change from 0 to 512
[  230.239592][ T9118] team0: Port device team_slave_1 added
[  230.265254][ T9145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.284244][ T9145] ext4 filesystem being mounted at /313/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  230.352848][ T9118] batman_adv: batadv0: Adding interface: batadv_slave_0
[  230.373718][ T9118] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  230.408378][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  230.408396][   T28] audit: type=1800 audit(1760557406.417:355): pid=9145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1096" name="file2" dev="loop3" ino=16 res=0 errno=0
[  230.408793][ T9118] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  230.527554][ T9118] batman_adv: batadv0: Adding interface: batadv_slave_1
[  230.528897][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.541983][ T9118] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  230.571752][ T9118] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  230.637573][ T1134] hsr_slave_0: left promiscuous mode
[  230.653754][ T1134] hsr_slave_1: left promiscuous mode
[  230.664304][ T1134] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  230.690158][ T1134] batman_adv: batadv0: Removing interface: batadv_slave_0
[  230.702404][ T1134] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  230.709867][ T1134] batman_adv: batadv0: Removing interface: batadv_slave_1
[  230.731002][ T1134] bridge_slave_1: left allmulticast mode
[  230.736714][ T1134] bridge_slave_1: left promiscuous mode
[  230.743247][ T1134] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.753429][ T1134] bridge_slave_0: left allmulticast mode
[  230.759121][ T1134] bridge_slave_0: left promiscuous mode
[  230.767131][ T1134] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.811675][ T1134] veth1_macvtap: left promiscuous mode
[  230.817307][ T1134] veth0_macvtap: left promiscuous mode
[  230.823607][ T1134] veth1_vlan: left promiscuous mode
[  230.828989][ T1134] veth0_vlan: left promiscuous mode
[  231.023557][ T5795] Bluetooth: hci0: command tx timeout
[  231.131001][ T9158] loop3: detected capacity change from 0 to 32768
[  231.187070][ T9158] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  231.289763][ T5792] ocfs2: Unmounting device (7,3) on (node local)
[  231.914492][ T1134] team0 (unregistering): Port device team_slave_1 removed
[  231.978874][ T1134] team0 (unregistering): Port device team_slave_0 removed
[  232.037229][ T1134] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  232.102445][ T1134] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  232.828538][ T1134] bond0 (unregistering): Released all slaves
[  233.048331][ T9118] hsr_slave_0: entered promiscuous mode
[  233.051019][ T9179] loop3: detected capacity change from 0 to 1024
[  233.076517][ T9118] hsr_slave_1: entered promiscuous mode
[  233.100163][ T5795] Bluetooth: hci0: command tx timeout
[  233.131703][ T9179] hfsplus: xattr searching failed
[  233.238771][ T9179] hfsplus: xattr searching failed
[  233.436419][ T5792] hfsplus: node 4:3 still has 1 user(s)!
[  233.504537][ T9118] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  233.543940][ T9118] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  233.614358][ T9118] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  233.640903][ T9193] loop0: detected capacity change from 0 to 1024
[  233.651055][ T9193] EXT4-fs: Ignoring removed orlov option
[  233.651330][ T9118] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  233.696762][ T9193] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.789990][   T28] audit: type=1800 audit(1760557409.827:356): pid=9193 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1115" name="file1" dev="loop0" ino=15 res=0 errno=0
[  233.833281][ T9206] loop3: detected capacity change from 0 to 4096
[  233.843323][ T9206] EXT4-fs (loop3): Test dummy encryption mode enabled
[  233.853531][ T9206] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  233.863673][ T9206] System zones: 0-5
[  233.893360][ T9206] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.029460][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.101454][ T9118] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.146837][ T9118] 8021q: adding VLAN 0 to HW filter on device team0
[  234.195557][ T2992] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.202811][ T2992] bridge0: port 1(bridge_slave_0) entered forwarding state
[  234.217211][ T2992] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.224462][ T2992] bridge0: port 2(bridge_slave_1) entered forwarding state
[  234.336967][ T9206] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  234.567570][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.683983][ T9118] 8021q: adding VLAN 0 to HW filter on device batadv0
[  234.794697][ T9226] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1121'.
[  234.875561][ T9230] loop0: detected capacity change from 0 to 16
[  234.903502][ T9230] erofs: (device loop0): mounted with root inode @ nid 36.
[  234.976037][   T28] audit: type=1326 audit(1760557411.017:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.3.1125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c6d78eec9 code=0x7ffc0000
[  235.008092][   T28] audit: type=1326 audit(1760557411.017:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.3.1125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c6d78eec9 code=0x7ffc0000
[  235.042057][   T28] audit: type=1326 audit(1760557411.047:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.3.1125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4c6d78eec9 code=0x7ffc0000
[  235.095947][   T28] audit: type=1326 audit(1760557411.047:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.3.1125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c6d78eec9 code=0x7ffc0000
[  235.129779][ T9241] loop3: detected capacity change from 0 to 8
[  235.139628][   T28] audit: type=1326 audit(1760557411.047:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.3.1125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c6d78eec9 code=0x7ffc0000
[  235.163219][ T9241] SQUASHFS error: zlib decompression failed, data probably corrupt
[  235.172307][ T9241] SQUASHFS error: Failed to read block 0x9b: -5
[  235.178606][ T9241] SQUASHFS error: Unable to read metadata cache entry [99]
[  235.187632][   T28] audit: type=1326 audit(1760557411.047:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.3.1125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f4c6d78eec9 code=0x7ffc0000
[  235.190174][ T5795] Bluetooth: hci0: command tx timeout
[  235.218042][ T9241] SQUASHFS error: Unable to read inode 0x127
[  235.270175][   T28] audit: type=1326 audit(1760557411.047:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.3.1125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c6d78eec9 code=0x7ffc0000
[  235.300187][ T5839] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  235.320945][   T28] audit: type=1326 audit(1760557411.047:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.3.1125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f4c6d78eec9 code=0x7ffc0000
[  235.403608][ T9118] veth0_vlan: entered promiscuous mode
[  235.445756][ T9118] veth1_vlan: entered promiscuous mode
[  235.512302][ T5839] usb 7-1: Using ep0 maxpacket: 8
[  235.532758][ T5839] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[  235.569999][ T5839] usb 7-1: config 179 has no interface number 0
[  235.578216][ T9118] veth0_macvtap: entered promiscuous mode
[  235.586701][ T5839] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  235.632393][ T9118] veth1_macvtap: entered promiscuous mode
[  235.650324][ T5839] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  235.671388][ T9243] loop0: detected capacity change from 0 to 32768
[  235.694076][ T5839] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  235.720364][ T9243] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  235.721546][ T9118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.746977][ T5839] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  235.759818][ T5839] usb 7-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  235.779354][ T9118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.795928][ T5839] usb 7-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  235.796045][ T9243] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  235.808227][ T9118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.838288][ T5839] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.853112][ T9118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.870374][ T9118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.875209][ T9237] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  235.888912][ T9118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.906713][ T9243] (syz.0.1127,9243,0):ocfs2_read_blocks:239 ERROR: status = -12
[  235.909182][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  235.909198][   T28] audit: type=1800 audit(1760557411.907:366): pid=9243 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1127" name="file1" dev="loop0" ino=17058 res=0 errno=0
[  235.915029][ T9243] (syz.0.1127,9243,0):ocfs2_search_chain:1761 ERROR: status = -12
[  235.950232][ T9243] (syz.0.1127,9243,0):ocfs2_search_chain:1871 ERROR: status = -12
[  235.952777][ T9118] batman_adv: batadv0: Interface activated: batadv_slave_0
[  235.958064][ T9243] (syz.0.1127,9243,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -12
[  235.958096][ T9243] (syz.0.1127,9243,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -12
[  235.958122][ T9243] (syz.0.1127,9243,0):__ocfs2_claim_clusters:2355 ERROR: status = -12
[  235.958147][ T9243] (syz.0.1127,9243,0):__ocfs2_claim_clusters:2363 ERROR: status = -12
[  235.999285][ T9243] (syz.0.1127,9243,0):ocfs2_local_alloc_new_window:1203 ERROR: status = -12
[  236.008100][ T9243] (syz.0.1127,9243,0):ocfs2_local_alloc_new_window:1228 ERROR: status = -12
[  236.016954][ T9243] (syz.0.1127,9243,0):ocfs2_local_alloc_slide_window:1302 ERROR: status = -12
[  236.026649][ T9243] (syz.0.1127,9243,0):ocfs2_local_alloc_slide_window:1321 ERROR: status = -12
[  236.036469][ T9243] (syz.0.1127,9243,0):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -12
[  236.045365][ T9243] (syz.0.1127,9243,0):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -12
[  236.055133][ T9243] (syz.0.1127,9243,0):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -12
[  236.064685][ T9243] (syz.0.1127,9243,0):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -12
[  236.075713][ T9243] (syz.0.1127,9243,0):ocfs2_lock_allocators:2672 ERROR: status = -12
[  236.084481][ T9243] (syz.0.1127,9243,0):ocfs2_extend_allocation:592 ERROR: status = -12
[  236.092772][ T9243] (syz.0.1127,9243,0):ocfs2_extend_no_holes:1029 ERROR: status = -12
[  236.101155][ T9243] (syz.0.1127,9243,0):ocfs2_expand_nonsparse_inode:1623 ERROR: status = -12
[  236.109939][ T9243] (syz.0.1127,9243,0):ocfs2_write_begin_nolock:1690 ERROR: status = -12
[  236.118462][ T9243] (syz.0.1127,9243,0):ocfs2_write_begin:1907 ERROR: status = -12
[  236.161724][ T9118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.180050][ T9118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.210024][ T9118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.230835][ T9118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.260003][ T9118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.289989][ T9118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.311736][ T9118] batman_adv: batadv0: Interface activated: batadv_slave_1
[  236.345674][ T5839] input: Generic X-Box pad as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:179.65/input/input21
[  236.357762][ T5799] ocfs2: Unmounting device (7,0) on (node local)
[  236.367718][ T9118] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  236.404882][ T9118] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  236.423986][ T9118] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  236.444279][ T9118] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  236.665212][ T9237] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  236.700873][ T9237] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  236.737049][ T2992] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.743197][ T9247] loop3: detected capacity change from 0 to 32768
[  236.770096][ T2992] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  236.817502][ T9247] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  236.865975][ T1134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.880350][ T1134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  236.924160][ T9247] XFS (loop3): Ending clean mount
[  236.984885][   T28] audit: type=1804 audit(1760557413.027:367): pid=9247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1129" name="/newroot/328/file1/file1" dev="loop3" ino=6150 res=1 errno=0
[  237.047939][    T9] usb 7-1: USB disconnect, device number 6
[  237.050128][    C1] xpad 7-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  237.062216][    C1] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  237.196026][ T5792] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  237.260442][ T5795] Bluetooth: hci0: command tx timeout
[  237.365346][ T9263] overlayfs: failed to decode file handle (len=4, type=248, flags=0, err=-22)
[  238.191606][ T9272] loop6: detected capacity change from 0 to 512
[  238.245567][ T9272] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.245696][ T9272] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.316211][ T9272] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  238.325153][ T9272] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 33 with error 28
[  238.325260][ T9272] EXT4-fs (loop6): This should not happen!! Data will be lost
[  238.325260][ T9272] 
[  238.325279][ T9272] EXT4-fs (loop6): Total free blocks count 0
[  238.325294][ T9272] EXT4-fs (loop6): Free/Dirty block details
[  238.325336][ T9272] EXT4-fs (loop6): free_blocks=65280
[  238.325382][ T9272] EXT4-fs (loop6): dirty_blocks=33
[  238.325396][ T9272] EXT4-fs (loop6): Block reservation details
[  238.325410][ T9272] EXT4-fs (loop6): i_reserved_data_blocks=33
[  238.484196][ T7993] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.503757][ T9261] loop7: detected capacity change from 0 to 131072
[  238.591433][ T9261] F2FS-fs (loop7): invalid crc value
[  238.681588][ T9261] F2FS-fs (loop7): Found nat_bits in checkpoint
[  238.760578][ T9261] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e4
[  238.821881][ T9285] overlayfs: upper fs does not support tmpfile.
[  239.646794][ T9311] loop6: detected capacity change from 0 to 512
[  239.668417][ T9311] EXT4-fs error (device loop6): ext4_orphan_get:1425: comm syz.6.1150: bad orphan inode 11862016
[  239.687706][ T9311] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  239.706262][ T9311] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.850693][ T7993] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  240.288890][ T9325] loop7: detected capacity change from 0 to 1024
[  240.316478][ T9325] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.390732][ T9331] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  240.487393][ T9325] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  240.510231][ T9325] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  240.524516][ T9325] EXT4-fs (loop7): This should not happen!! Data will be lost
[  240.524516][ T9325] 
[  240.534852][ T9325] EXT4-fs (loop7): Total free blocks count 0
[  240.550346][ T9325] EXT4-fs (loop7): Free/Dirty block details
[  240.560329][ T9325] EXT4-fs (loop7): free_blocks=68451041280
[  240.574216][ T9325] EXT4-fs (loop7): dirty_blocks=80
[  240.582918][ T9325] EXT4-fs (loop7): Block reservation details
[  240.589518][ T9325] EXT4-fs (loop7): i_reserved_data_blocks=5
[  240.601019][ T9336] input: syz0 as /devices/virtual/input/input22
[  240.676488][ T1134] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  241.167929][ T9355] loop3: detected capacity change from 0 to 2048
[  241.177519][ T9355] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  241.204232][ T9360] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  241.296655][ T9362] loop0: detected capacity change from 0 to 16
[  241.333486][ T9362] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  241.596158][ T5838] libceph: connect (1)[c::]:6789 error -101
[  241.596715][ T9372] loop2: detected capacity change from 0 to 7
[  241.603345][ T5838] libceph: mon0 (1)[c::]:6789 connect error
[  241.618870][ T9372] Dev loop2: unable to read RDB block 7
[  241.624929][ T9372]  loop2: AHDI p1 p3 p4
[  241.629400][ T9372] loop2: partition table partially beyond EOD, truncated
[  241.638233][ T9372] loop2: p1 start 975770946 is beyond EOD, truncated
[  241.645355][ T9372] loop2: p3 start 6514546 is beyond EOD, truncated
[  241.658294][ T9370] ceph: No mds server is up or the cluster is laggy
[  241.849384][ T9378] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  241.864152][ T9379] loop7: detected capacity change from 0 to 128
[  242.795557][ T9398] loop6: detected capacity change from 0 to 8192
[  242.815391][ T9398] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  242.837184][ T9398] REISERFS (device loop6): found reiserfs format "3.5" with non-standard journal
[  242.850273][ T9398] REISERFS (device loop6): using ordered data mode
[  242.861193][ T9398] reiserfs: using flush barriers
[  242.868193][ T9398] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  242.888933][ T9398] REISERFS (device loop6): checking transaction log (loop6)
[  242.899325][ T9398] REISERFS (device loop6): Using r5 hash to sort names
[  242.909834][ T9398] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[  243.042815][ T9408] loop0: detected capacity change from 0 to 2048
[  243.056661][ T9408] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  243.067655][ T9408] NILFS (loop0): mounting unchecked fs
[  243.110691][ T9408] NILFS (loop0): recovery complete
[  243.141942][ T9409] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  243.257558][ T9411] loop6: detected capacity change from 0 to 2048
[  243.292439][ T9411] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  244.153121][ T9447] syz.0.1204 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  245.917266][ T9520] loop3: detected capacity change from 0 to 2048
[  245.943527][ T9520] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  245.973439][ T9520] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  246.111069][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.650332][  T967] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  246.750017][ T5838] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  246.794878][ T9545] loop6: detected capacity change from 0 to 32768
[  246.805137][ T9545] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 scanned by syz.6.1245 (9545)
[  246.832419][ T9545] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  246.846238][ T9545] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  246.858451][ T9545] BTRFS info (device loop6): enabling auto defrag
[  246.870892][ T9545] BTRFS info (device loop6): max_inline at 0
[  246.877098][ T9545] BTRFS info (device loop6): force clearing of disk cache
[  246.885593][  T967] usb 4-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=26.50
[  246.899650][  T967] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.907827][ T9545] BTRFS info (device loop6): turning on sync discard
[  246.915268][  T967] usb 4-1: Product: syz
[  246.919489][  T967] usb 4-1: Manufacturer: syz
[  246.929465][ T9545] BTRFS info (device loop6): using free space tree
[  246.940318][  T967] usb 4-1: SerialNumber: syz
[  246.942570][ T5838] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  246.958444][  T967] usb 4-1: config 0 descriptor??
[  246.967035][ T5838] usb 8-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  246.985921][  T967] usb 4-1: Waiting for MOTU Microbook II to boot up...
[  246.986790][ T5838] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.005866][  T967] usb 4-1: failed setting the sample rate for Motu MicroBook II: -22
[  247.021478][ T9545] BTRFS info (device loop6): enabling ssd optimizations
[  247.025238][ T5838] usb 8-1: config 0 descriptor??
[  247.034192][  T967] snd-usb-audio: probe of 4-1:0.0 failed with error -22
[  247.048470][ T9545] BTRFS info (device loop6): rebuilding free space tree
[  247.155463][ T7993] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  247.222366][ T6837] usb 4-1: USB disconnect, device number 12
[  247.458894][ T5838] keytouch 0003:0926:3333.0010: fixing up Keytouch IEC report descriptor
[  247.474962][ T5838] input: HID 0926:3333 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:0926:3333.0010/input/input23
[  247.491805][ T9571] loop6: detected capacity change from 0 to 512
[  247.499719][ T9571] EXT4-fs (loop6): Test dummy encryption mode enabled
[  247.507263][ T9571] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  247.523180][ T9571] EXT4-fs (loop6): 1 truncate cleaned up
[  247.530239][ T9571] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  247.577170][ T5838] keytouch 0003:0926:3333.0010: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.7-1/input0
[  247.599047][ T7993] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.709912][    C0] usb 8-1: input irq status -75 received
[  247.911472][  T967] usb 8-1: USB disconnect, device number 2
[  247.940135][ T5853] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[  248.143433][ T5853] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  248.154607][ T5853] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  248.166677][ T5853] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  248.176536][ T5853] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  248.194711][ T5853] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  248.203830][ T5853] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.211965][ T5853] usb 7-1: Product: syz
[  248.216166][ T5853] usb 7-1: Manufacturer: syz
[  248.221012][ T5853] usb 7-1: SerialNumber: syz
[  248.229773][ T9575] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  248.450284][ T9575] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  249.017698][ T9595] loop7: detected capacity change from 0 to 1024
[  249.035248][ T9595] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.068788][ T9575] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  249.095752][ T9118] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.280663][ T9603] loop7: detected capacity change from 0 to 764
[  249.283059][ T5853] cdc_ncm 7-1:1.0: bind() failure
[  249.304002][ T5853] cdc_ncm: probe of 7-1:1.1 failed with error -71
[  249.313923][ T5853] cdc_mbim: probe of 7-1:1.1 failed with error -71
[  249.322738][ T5853] usbtest: probe of 7-1:1.1 failed with error -71
[  249.338116][ T5853] usb 7-1: USB disconnect, device number 7
[  249.900352][ T5790] Bluetooth: hci2: command 0x1003 tx timeout
[  249.908399][ T5795] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  249.972910][ T9628] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  250.128800][ T9632] loop3: detected capacity change from 0 to 4096
[  250.172644][ T9635] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  250.218756][   T28] audit: type=1800 audit(1760557426.255:368): pid=9632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1276" name="file1" dev="loop3" ino=15 res=0 errno=0
[  250.364017][ T9640] loop3: detected capacity change from 0 to 128
[  250.378068][ T9640] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  250.391566][ T9640] ext4 filesystem being mounted at /361/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  250.467830][ T5792] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  250.900260][ T5838] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  251.032794][ T6837] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  251.080013][ T5838] usb 4-1: Using ep0 maxpacket: 8
[  251.089826][ T5838] usb 4-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  251.099035][ T5838] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239
[  251.107332][ T5838] usb 4-1: Product: syz
[  251.112013][ T5838] usb 4-1: Manufacturer: syz
[  251.116647][ T5838] usb 4-1: SerialNumber: syz
[  251.124277][ T5838] usb 4-1: config 0 descriptor??
[  251.130061][    T9] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  251.139639][ T5838] gspca_main: sq905-2.14.0 probing 2770:9120
[  251.211743][ T9654] kvm: user requested TSC rate below hardware speed
[  251.223172][ T6837] usb 7-1: Using ep0 maxpacket: 8
[  251.237645][ T6837] usb 7-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  251.247100][ T6837] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.255566][ T6837] usb 7-1: Product: syz
[  251.260372][ T6837] usb 7-1: Manufacturer: syz
[  251.265047][ T6837] usb 7-1: SerialNumber: syz
[  251.273211][ T6837] usb 7-1: config 0 descriptor??
[  251.282279][ T6837] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  251.323013][    T9] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  251.332619][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  251.354040][    T9] usb 8-1: config 0 descriptor??
[  251.368556][    T9] cp210x 8-1:0.0: cp210x converter detected
[  251.376526][ T9657] loop0: detected capacity change from 0 to 2048
[  251.394963][ T9657] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  251.407564][ T9657] ext4 filesystem being mounted at /328/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.459694][ T9657] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.1286: bg 0: block 345: padding at end of block bitmap is not set
[  251.518565][ T1134] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 79 with max blocks 1 with error 28
[  251.531680][ T1134] EXT4-fs (loop0): This should not happen!! Data will be lost
[  251.531680][ T1134] 
[  251.541493][ T1134] EXT4-fs (loop0): Total free blocks count 0
[  251.547515][ T1134] EXT4-fs (loop0): Free/Dirty block details
[  251.554992][ T1134] EXT4-fs (loop0): free_blocks=0
[  251.560398][ T1134] EXT4-fs (loop0): dirty_blocks=16
[  251.565559][ T1134] EXT4-fs (loop0): Block reservation details
[  251.571693][ T1134] EXT4-fs (loop0): i_reserved_data_blocks=1
[  251.581033][ T5799] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.816694][ T9652] loop7: detected capacity change from 0 to 2048
[  251.825922][ T9652] UDF-fs: error (device loop7): udf_process_sequence: Primary Volume Descriptor not found!
[  251.839362][ T9652] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  252.060356][    T9] cp210x 8-1:0.0: failed to get vendor val 0x000e size 678: -71
[  252.077210][    T9] cp210x 8-1:0.0: GPIO initialisation failed: -71
[  252.088042][    T9] usb 8-1: cp210x converter now attached to ttyUSB0
[  252.096994][    T9] usb 8-1: USB disconnect, device number 3
[  252.105732][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  252.117159][    T9] cp210x 8-1:0.0: device disconnected
[  252.165311][ T5838] gspca_sq905: sq905_read_data: usb_control_msg failed (-71)
[  252.173428][ T5838] sq905: probe of 4-1:0.0 failed with error -71
[  252.182334][ T5838] usb 4-1: USB disconnect, device number 13
[  252.325742][ T6837] gspca_sonixj: reg_w1 err -71
[  252.400179][ T6837] sonixj: probe of 7-1:0.0 failed with error -71
[  252.408216][ T6837] usb 7-1: USB disconnect, device number 8
[  252.657101][ T9665] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1296'.
[  252.659558][ T9666] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  252.899695][ T9674] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1292'.
[  253.049460][ T9678] loop6: detected capacity change from 0 to 1024
[  253.153824][ T9678] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.333579][ T7993] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.385668][ T9672] loop3: detected capacity change from 0 to 32768
[  253.449055][ T9672] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  253.582661][ T9705] loop7: detected capacity change from 0 to 512
[  253.593297][ T9672] XFS (loop3): Ending clean mount
[  253.628312][ T9705] FAT-fs (loop7): unable to read block(121038582) for building NFS inode
[  253.650963][ T9707] loop6: detected capacity change from 0 to 1024
[  253.658425][ T9707] EXT4-fs: Ignoring removed nobh option
[  253.681034][ T9707] EXT4-fs: Ignoring removed bh option
[  253.694916][ T9707] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  253.785742][ T9707] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  253.835103][ T5792] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  253.991080][ T7993] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.630463][    T9] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  254.740261][ T9719] loop6: detected capacity change from 0 to 32768
[  254.788494][ T9738] loop3: detected capacity change from 0 to 256
[  254.797768][ T9738] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  254.883357][ T9719] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  254.968702][ T9719] XFS (loop6): Ending clean mount
[  254.986990][ T9719] XFS (loop6): Quotacheck needed: Please wait.
[  255.066522][ T9719] XFS (loop6): Quotacheck: Done.
[  255.198853][   T28] audit: type=1800 audit(1760557431.235:369): pid=9719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1309" name="bus" dev="loop6" ino=4431 res=0 errno=0
[  255.262688][ T7993] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  255.860113][ T9735] loop7: detected capacity change from 0 to 131072
[  255.870283][ T9735] F2FS-fs (loop7): invalid crc value
[  255.878902][ T9735] F2FS-fs (loop7): Found nat_bits in checkpoint
[  255.919303][ T9735] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e4
[  255.928393][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  255.939698][    T9] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  255.948874][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  255.959370][    T9] usb 1-1: config 0 descriptor??
[  255.984553][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  255.994027][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  256.070520][ T9756] netlink: 'syz.3.1319': attribute type 12 has an invalid length.
[  256.078617][ T9756] netlink: 'syz.3.1319': attribute type 29 has an invalid length.
[  256.113882][ T9756] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1319'.
[  256.128305][ T9756] netlink: 'syz.3.1319': attribute type 2 has an invalid length.
[  256.151038][ T9756] netlink: 23 bytes leftover after parsing attributes in process `syz.3.1319'.
[  256.294847][ T9761] loop8: detected capacity change from 0 to 8
[  256.304723][ T9761] Dev loop8: unable to read RDB block 8
[  256.316571][ T9761]  loop8: unable to read partition table
[  256.323236][ T9761] loop8: partition table beyond EOD, truncated
[  256.329829][ T9761] loop_reread_partitions: partition scan of loop8 (�被x�^>�� �) failed (rc=-5)
[  256.394176][    T9] keytouch 0003:0926:3333.0011: fixing up Keytouch IEC report descriptor
[  256.420915][    T9] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0011/input/input24
[  256.563070][    T9] keytouch 0003:0926:3333.0011: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  256.601825][    C0] usb 1-1: input irq status -75 received
[  256.652116][ T9771] loop2: detected capacity change from 0 to 7
[  256.660449][ T9771] Dev loop2: unable to read RDB block 7
[  256.666106][ T9771]  loop2: AHDI p1 p3 p4
[  256.680384][ T9771] loop2: partition table partially beyond EOD, truncated
[  256.687646][ T9771] loop2: p1 start 975770946 is beyond EOD, truncated
[  256.716141][ T9771] loop2: p3 start 6514546 is beyond EOD, truncated
[  256.879719][    T9] usb 1-1: USB disconnect, device number 17
[  257.546918][ T9769] loop6: detected capacity change from 0 to 65536
[  257.846093][ T9769] XFS (loop6): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  257.968511][ T9769] XFS (loop6): Ending clean mount
[  257.989090][ T9769] XFS (loop6): Quotacheck needed: Please wait.
[  258.098665][ T9769] XFS (loop6): Quotacheck: Done.
[  258.342126][   T28] audit: type=1804 audit(1760557434.345:370): pid=9769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1325" name="/newroot/148/file0/file1" dev="loop6" ino=70 res=1 errno=0
[  258.484526][ T7993] XFS (loop6): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  258.759411][ T9783] loop0: detected capacity change from 0 to 131072
[  258.786538][ T9783] F2FS-fs (loop0): invalid crc value
[  258.846109][ T9783] F2FS-fs (loop0): Found nat_bits in checkpoint
[  258.918431][ T9783] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  258.925331][ T9811] netlink: 'syz.7.1339': attribute type 10 has an invalid length.
[  259.031905][ T9811] 8021q: adding VLAN 0 to HW filter on device batadv0
[  259.072598][ T9811] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  259.246738][ T9811] bond0: entered promiscuous mode
[  259.259972][ T9811] bond_slave_0: entered promiscuous mode
[  259.270219][ T9811] bond_slave_1: entered promiscuous mode
[  259.280263][ T9811] batadv0: entered promiscuous mode
[  259.420261][ T6837] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  259.620045][ T6837] usb 7-1: Using ep0 maxpacket: 16
[  259.628102][ T6837] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  259.650357][ T6837] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  259.676752][ T6837] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  259.710827][ T6837] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.718888][ T6837] usb 7-1: Product: syz
[  259.733591][ T6837] usb 7-1: Manufacturer: syz
[  259.738254][ T6837] usb 7-1: SerialNumber: syz
[  259.749468][   T28] audit: type=1326 audit(1760557435.785:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  259.812581][   T28] audit: type=1326 audit(1760557435.815:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  259.867265][ T9829] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1347'.
[  259.892406][   T28] audit: type=1326 audit(1760557435.815:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  259.935700][ T9829] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (133)
[  259.984271][   T28] audit: type=1326 audit(1760557435.825:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  260.008277][ T6837] usb 7-1: Audio class v2/v3 interfaces need an interface association
[  260.030826][   T28] audit: type=1326 audit(1760557435.825:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  260.070346][   T28] audit: type=1326 audit(1760557435.835:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  260.099126][ T6837] snd-usb-audio: probe of 7-1:1.0 failed with error -22
[  260.122785][ T6837] usb 7-1: USB disconnect, device number 9
[  260.132611][   T28] audit: type=1326 audit(1760557435.835:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  260.180303][   T28] audit: type=1326 audit(1760557435.835:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  260.218634][   T28] audit: type=1326 audit(1760557435.835:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9826 comm="syz.7.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61a78eec9 code=0x7ffc0000
[  260.761280][ T6837] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  260.975730][ T6837] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  260.991523][ T6837] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  261.020464][ T6837] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  261.054446][ T6837] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  261.081161][ T6837] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.099189][ T6837] usb 1-1: config 0 descriptor??
[  261.101207][ T9869] loop3: detected capacity change from 0 to 128
[  261.116499][ T9869] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  261.168762][ T9869] UDF-fs: error (device loop3): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  261.272798][ T9871] loop3: detected capacity change from 0 to 16
[  261.296244][ T9871] erofs: (device loop3): mounted with root inode @ nid 36.
[  261.445548][ T9875] loop3: detected capacity change from 0 to 16
[  261.454294][ T9875] erofs: (device loop3): mounted with root inode @ nid 36.
[  261.519728][ T6837] plantronics 0003:047F:FFFF.0012: ignoring exceeding usage max
[  261.548979][ T6837] plantronics 0003:047F:FFFF.0012: No inputs registered, leaving
[  261.565436][ T6837] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  261.615274][ T9884] loop3: detected capacity change from 0 to 8
[  261.804271][ T9891] loop3: detected capacity change from 0 to 128
[  261.874035][ T6837] usb 1-1: USB disconnect, device number 18
[  261.879597][ T9893] loop6: detected capacity change from 0 to 8
[  261.891739][ T9893] SQUASHFS error: zlib decompression failed, data probably corrupt
[  261.905094][ T9893] SQUASHFS error: Failed to read block 0x9b: -5
[  261.911899][ T9893] SQUASHFS error: Unable to read metadata cache entry [99]
[  261.919197][ T9893] SQUASHFS error: Unable to read inode 0x127
[  262.254333][ T9895] loop3: detected capacity change from 0 to 32768
[  262.503636][ T9906] loop6: detected capacity change from 0 to 1024
[  262.547189][ T9906] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  262.553879][ T9906] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  262.652114][   T58] hfsplus: b-tree write err: -5, ino 4
[  262.745926][ T9911] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1393'.
[  262.869266][ T9915] loop3: detected capacity change from 0 to 8192
[  262.892663][ T9915] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  262.913210][ T9915] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  262.924346][ T9915] REISERFS (device loop3): using ordered data mode
[  262.934901][ T9915] reiserfs: using flush barriers
[  262.955656][ T9915] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  262.975064][ T9915] REISERFS (device loop3): checking transaction log (loop3)
[  263.020602][ T5795] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  263.186917][ T9915] REISERFS (device loop3): Using tea hash to sort names
[  263.205054][ T9915] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  263.221104][ T9915] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  263.403117][ T9926] loop7: detected capacity change from 0 to 128
[  263.403394][ T9915] 
[  263.411776][ T9915] ======================================================
[  263.418167][ T9913] loop6: detected capacity change from 0 to 40427
[  263.418814][ T9915] WARNING: possible circular locking dependency detected
[  263.418835][ T9915] syzkaller #0 Not tainted
[  263.429834][ T9926] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  263.432270][ T9915] ------------------------------------------------------
[  263.432278][ T9915] syz.3.1378/9915 is trying to acquire lock:
[  263.432289][ T9915] ffff888059c89d70 (&type->i_mutex_dir_key#24/3){+.+.}-{3:3}
[  263.438220][ T9913] F2FS-fs (loop6): Small segment_count (9 < 1 * 24)
[  263.446271][ T9915] , at: open_xa_dir+0x122/0x6f0
[  263.446304][ T9915] 
[  263.446304][ T9915] but task is already holding lock:
[  263.446311][ T9915] ffff88807ea3a090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock_nested+0x60/0xd0
[  263.446361][ T9915] 
[  263.446361][ T9915] which lock already depends on the new lock.
[  263.446361][ T9915] 
[  263.446367][ T9915] 
[  263.446367][ T9915] the existing dependency chain (in reverse order) is:
[  263.446374][ T9915] 
[  263.446374][ T9915] -> #1 (&sbi->lock){+.+.}-{3:3}:
[  263.446402][ T9915]        __mutex_lock+0x129/0xcc0
[  263.446431][ T9915]        reiserfs_write_lock+0x79/0xd0
[  263.446449][ T9915]        reiserfs_mkdir+0x310/0x970
[  263.446466][ T9915]        open_xa_dir+0x31a/0x6f0
[  263.446484][ T9915]        xattr_lookup+0x22/0x2a0
[  263.446501][ T9915]        reiserfs_xattr_set_handle+0xf9/0xd40
[  263.446521][ T9915]        reiserfs_xattr_set+0x439/0x550
[  263.446539][ T9915]        __vfs_setxattr+0x431/0x470
[  263.446558][ T9915]        __vfs_setxattr_noperm+0x12d/0x5e0
[  263.446579][ T9915]        vfs_setxattr+0x16c/0x2f0
[  263.446599][ T9915]        path_setxattr+0x362/0x550
[  263.446621][ T9915]        __x64_sys_lsetxattr+0xb8/0xd0
[  263.460652][ T9913] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  263.466999][ T9915]        do_syscall_64+0x55/0xb0
[  263.467031][ T9915]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.467051][ T9915] 
[  263.467051][ T9915] -> #0
[  263.507742][ T9926] UDF-fs: error (device loop7): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  263.514857][ T9915]  (&type->i_mutex_dir_key#24/3){+.+.}-{3:3}:
[  263.514898][ T9915]        __lock_acquire+0x2ddb/0x7c80
[  263.514924][ T9915]        lock_acquire+0x197/0x410
[  263.514941][ T9915]        down_write_nested+0x9e/0x1f0
[  263.514958][ T9915]        open_xa_dir+0x122/0x6f0
[  263.514978][ T9915]        reiserfs_for_each_xattr+0x17b/0x960
[  263.514998][ T9915]        reiserfs_delete_xattrs+0x20/0x90
[  263.515017][ T9915]        reiserfs_evict_inode+0x232/0x490
[  263.515035][ T9915]        evict+0x486/0x870
[  263.515053][ T9915]        reiserfs_mkdir+0x7d2/0x970
[  263.515070][ T9915]        vfs_mkdir+0x296/0x440
[  263.568341][ T9913] F2FS-fs (loop6): Found nat_bits in checkpoint
[  263.570505][ T9915]        do_mkdirat+0x1d4/0x440
[  263.570542][ T9915]        __x64_sys_mkdir+0x6e/0x80
[  263.570571][ T9915]        do_syscall_64+0x55/0xb0
[  263.570595][ T9915]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.631377][ T9913] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  263.636157][ T9915] 
[  263.636157][ T9915] other info that might help us debug this:
[  263.636157][ T9915] 
[  263.636165][ T9915]  Possible unsafe locking scenario:
[  263.636165][ T9915] 
[  263.636171][ T9915]        CPU0                    CPU1
[  263.636177][ T9915]        ----                    ----
[  263.636182][ T9915]   lock(&sbi->lock
[  263.657108][ T9913] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  263.657524][ T9915] );
[  263.657530][ T9915]                                lock(
[  263.728498][ T9913] syz.6.1384: attempt to access beyond end of device
[  263.728498][ T9913] loop6: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  263.735656][ T9915] &type->i_mutex_dir_key#24/3);
[  263.735682][ T9915]                                lock(&sbi->lock);
[  263.735698][ T9915]   lock(&type->i_mutex_dir_key#24/3);
[  263.735722][ T9915] 
[  263.735722][ T9915]  *** DEADLOCK ***
[  263.735722][ T9915] 
[  263.735727][ T9915] 3 locks held by syz.3.1378/9915:
[  263.735738][ T9915]  #0: ffff88805884e418 (sb_writers#33){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  263.735805][ T9915]  #1: ffff888059c896d0 (&type->i_mutex_dir_key#24/1){+.+.}-{3:3}, at: filename_create+0x1f6/0x460
[  263.829680][ T9915]  #2: ffff88807ea3a090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock_nested+0x60/0xd0
[  263.839702][ T9915] 
[  263.839702][ T9915] stack backtrace:
[  263.845598][ T9915] CPU: 1 PID: 9915 Comm: syz.3.1378 Not tainted syzkaller #0
[  263.852998][ T9915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  263.863091][ T9915] Call Trace:
[  263.866380][ T9915]  <TASK>
[  263.869313][ T9915]  dump_stack_lvl+0x16c/0x230
[  263.874005][ T9915]  ? load_image+0x3b0/0x3b0
[  263.878533][ T9915]  ? show_regs_print_info+0x20/0x20
[  263.883747][ T9915]  ? print_circular_bug+0x12b/0x1a0
[  263.888968][ T9915]  check_noncircular+0x2bd/0x3c0
[  263.893946][ T9915]  ? look_up_lock_class+0x75/0x140
[  263.899171][ T9915]  ? print_deadlock_bug+0x5d0/0x5d0
[  263.904403][ T9915]  ? lockdep_lock+0xe0/0x220
[  263.909058][ T9915]  ? _find_first_zero_bit+0xd3/0x100
[  263.914373][ T9915]  __lock_acquire+0x2ddb/0x7c80
[  263.919423][ T9915]  ? __lock_acquire+0x7c80/0x7c80
[  263.924461][ T9915]  ? verify_lock_unused+0x140/0x140
[  263.929677][ T9915]  ? is_bpf_text_address+0x28f/0x2a0
[  263.934982][ T9915]  ? is_bpf_text_address+0x26/0x2a0
[  263.940202][ T9915]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.946301][ T9915]  lock_acquire+0x197/0x410
[  263.950819][ T9915]  ? open_xa_dir+0x122/0x6f0
[  263.955469][ T9915]  ? __might_sleep+0xe0/0xe0
[  263.960087][ T9915]  ? read_lock_is_recursive+0x20/0x20
[  263.965508][ T9915]  ? mark_lock+0x94/0x320
[  263.969848][ T9915]  ? __lock_acquire+0x1334/0x7c80
[  263.974887][ T9915]  down_write_nested+0x9e/0x1f0
[  263.979762][ T9915]  ? open_xa_dir+0x122/0x6f0
[  263.984413][ T9915]  ? down_read_non_owner+0x310/0x310
[  263.989730][ T9915]  open_xa_dir+0x122/0x6f0
[  263.994168][ T9915]  ? listxattr_filler+0x520/0x520
[  263.999205][ T9915]  ? truncate_inode_pages_range+0x3a9/0xf00
[  264.005108][ T9915]  ? reiserfs_for_each_xattr+0xa9/0x960
[  264.010670][ T9915]  reiserfs_for_each_xattr+0x17b/0x960
[  264.016151][ T9915]  ? mapping_evict_folio+0x510/0x510
[  264.021468][ T9915]  ? reiserfs_for_each_xattr+0x960/0x960
[  264.027126][ T9915]  ? reiserfs_delete_xattrs+0x90/0x90
[  264.032508][ T9915]  ? reiserfs_xattr_init+0x6a0/0x6a0
[  264.037810][ T9915]  ? inode_wait_for_writeback+0x1b4/0x200
[  264.043544][ T9915]  ? dquot_initialize+0x20/0x20
[  264.048414][ T9915]  ? __rwlock_init+0x150/0x150
[  264.053210][ T9915]  reiserfs_delete_xattrs+0x20/0x90
[  264.058432][ T9915]  reiserfs_evict_inode+0x232/0x490
[  264.063644][ T9915]  ? entry_points_to_object+0x260/0x260
[  264.069200][ T9915]  ? do_raw_spin_lock+0x121/0x2c0
[  264.074252][ T9915]  ? do_raw_spin_unlock+0x121/0x230
[  264.079489][ T9915]  ? entry_points_to_object+0x260/0x260
[  264.085047][ T9915]  evict+0x486/0x870
[  264.088963][ T9915]  ? __lock_acquire+0x7c80/0x7c80
[  264.094063][ T9915]  ? proc_nr_inodes+0x230/0x230
[  264.098926][ T9915]  ? do_raw_spin_unlock+0x121/0x230
[  264.104160][ T9915]  ? _raw_spin_unlock+0x28/0x40
[  264.109032][ T9915]  ? iput+0x70a/0x920
[  264.113167][ T9915]  reiserfs_mkdir+0x7d2/0x970
[  264.117902][ T9915]  ? reiserfs_symlink+0x7b0/0x7b0
[  264.122950][ T9915]  ? from_kgid+0x15d/0x680
[  264.127389][ T9915]  ? generic_permission+0x1f3/0x590
[  264.132620][ T9915]  ? inode_permission+0xf3/0x480
[  264.137577][ T9915]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  264.142642][ T9915]  ? security_inode_mkdir+0xb7/0x100
[  264.147974][ T9915]  vfs_mkdir+0x296/0x440
[  264.152243][ T9915]  do_mkdirat+0x1d4/0x440
[  264.156607][ T9915]  ? vfs_mkdir+0x440/0x440
[  264.161080][ T9915]  ? getname_flags+0x20a/0x500
[  264.165883][ T9915]  __x64_sys_mkdir+0x6e/0x80
[  264.170488][ T9915]  do_syscall_64+0x55/0xb0
[  264.174918][ T9915]  ? clear_bhb_loop+0x40/0x90
[  264.179604][ T9915]  ? clear_bhb_loop+0x40/0x90
[  264.184289][ T9915]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  264.190191][ T9915] RIP: 0033:0x7f4c6d78eec9
[  264.194623][ T9915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.214246][ T9915] RSP: 002b:00007f4c6e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  264.222679][ T9915] RAX: ffffffffffffffda RBX: 00007f4c6d9e5fa0 RCX: 00007f4c6d78eec9
[  264.230680][ T9915] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200
[  264.238656][ T9915] RBP: 00007f4c6d811f91 R08: 0000000000000000 R09: 0000000000000000
[  264.246680][ T9915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.254660][ T9915] R13: 00007f4c6d9e6038 R14: 00007f4c6d9e5fa0 R15: 00007fff503fe728
[  264.262667][ T9915]  </TASK>
[  264.270111][ T7993] syz-executor: attempt to access beyond end of device
[  264.270111][ T7993] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  264.287911][ T7993] F2FS-fs (loop6): Stopped filesystem due to reason: 3