last executing test programs:

2m41.445884052s ago: executing program 1 (id=217):
r0 = syz_open_dev$video4linux(&(0x7f0000000200), 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r0, 0xc0305615, &(0x7f0000000300)={0x0, {0xfffffff8, 0x9}})

2m41.218112286s ago: executing program 1 (id=220):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f000000ac40)="$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")
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000040)={0x1, 0x0, 0xffffffff})

2m39.644219557s ago: executing program 1 (id=233):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, 0x0, 0x0)

2m39.127390867s ago: executing program 1 (id=237):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

2m38.49581905s ago: executing program 1 (id=245):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f00000014c0)={0x3, {{0xa, 0x4e22, 0x6d4e799b, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x400}}}, 0x88)

2m37.719452815s ago: executing program 1 (id=255):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_int(r0, 0x1, 0x8, 0x0, &(0x7f0000000140))

2m37.464500049s ago: executing program 32 (id=255):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_int(r0, 0x1, 0x8, 0x0, &(0x7f0000000140))

3.021766081s ago: executing program 3 (id=2267):
r0 = openat$damon_monitor_on(0xffffffffffffff9c, &(0x7f0000000040), 0x40080, 0x10a)
read(r0, 0x0, 0x0)

2.770205956s ago: executing program 3 (id=2272):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000180)=':00:\x00\x8e\xf7\xd4\t\xe1\xae\x19\xe5\xf7c\x84\x9c\x06\x00\x00\a\x11\x01\xf2 \xec\xbe#\'S\xc4\xbd\xb5\x1e\x98MM\x06\x1a\x7f5U\x18\x90\x99\xb2\xfa\')Z\x9ew\xae\xe8\xdd\b\t\xf0\xc4\xbfj\xb6\x88/)~\x93E\x1d4\xa7\xcb\xeb\x0f\xd4(\xb6>\x87\xc3\t\xb0\x80\xf7\xe6\x8b?\xa4\xb3\b\x00\x81\xbe\xea\x1f\xfe\xed\x9d\x1a\x8aQ\xafQ\x06\x0fJ\xc0\xc0=}\x7f\xaeB\xb1\xed\xa4\xf3c#\xbe\b\x1f\xa4L[\xfa\x01Uu\xe0\x8b\x94E\xda\xd9j\x93\xc8~\xd9\x82\x8f\xcam\x17\xa2\xed\xf3\xc3_h\xfc6\t\x96@\xaf\xe6\xd0!)\xc3\xcfe\xe1g\xe7\xe5F\xbdC\xd9$\x9b@\xaf\xc2j1p\xa9\xb2d\x92\x8fo\xcbg\x9fZ\xd7\xef\xb2z\xf5\x0fq\x7f\b\xc2\xa7\x90\xc5\xf5Y\xbc\xf1s\x93X\xb6\xeb\x86&\xa7\x14%B', 0x0)

2.56568212s ago: executing program 3 (id=2275):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
syz_clone(0x20083500, 0x0, 0x0, 0x0, 0x0, 0x0)

2.153345738s ago: executing program 3 (id=2283):
r0 = syz_open_dev$vim2m(&(0x7f0000000300), 0x61, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000280)={0x0, 0x50323234, 0x3, @discrete={0x3, 0x6}})

1.939980072s ago: executing program 3 (id=2288):
syz_mount_image$xfs(&(0x7f0000009600), &(0x7f0000009640)='./file1\x00', 0x0, &(0x7f0000000100)={[{@lazytime}, {}, {@quota}, {@filestreams}, {@bsdgroups}, {@grpquota}, {@uqnoenforce}]}, 0x4, 0x968d, &(0x7f000001c300)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f00000002c0)={0x7fff, 0x1, 0x5, 0x0, 0x208000008, 0x6, 0x0, 0x2, 0x10000})

1.098746659s ago: executing program 0 (id=2301):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
pread64(r0, 0x0, 0x0, 0x100000000)

1.04910815s ago: executing program 2 (id=2303):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xc, 0x0, 0x0)

905.019393ms ago: executing program 4 (id=2304):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000000540)=[{{&(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_retopts={{0x14, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x4, 0x4, 0x3, 0x3}]}}}], 0x18}}], 0x1, 0x0)

904.293383ms ago: executing program 0 (id=2312):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000010280)={0x0, 0x9, 0x0, 0x5}, 0x10)

892.222643ms ago: executing program 2 (id=2305):
r0 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$sock_SIOCOUTQ(r0, 0x5411, 0x0)

735.644236ms ago: executing program 0 (id=2306):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$bt_hci(r0, 0x0, 0x1, 0x0, &(0x7f0000000080)=0x2)

735.556696ms ago: executing program 4 (id=2307):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000000)='/proc/net/\x00\x00t4/c+\x8fG\xf9aK\fX\a0\x04\x00\x00\x82q\xee'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

693.748867ms ago: executing program 2 (id=2308):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r0, &(0x7f00000024c0)={0x234, 0x7d, 0x0, {{0x500, 0xf3, 0x0, 0x877, {0x0, 0x10000000}, 0x69000000, 0x10000, 0x0, 0x0, 0x1b, '\x04nodevyevoo~\x059\xc6\x00\x05\x00\x007\xd9:\x8b\x92\x00\x00\x00', 0x3c, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00+Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x03\xb4\x94\xe1\xfa\x97t\x02', 0x14, '\xcf\xc2m\xd7\xc5\x00\xf0L\xd8_*p\xf5\xe9\x93\x0e<]\xb4Z', 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aD\x1b4\v\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c2v\xa1\x92^K\x88\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8'}, 0x12c, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x234)

595.868159ms ago: executing program 4 (id=2309):
r0 = gettid()
process_vm_readv(r0, &(0x7f0000001140)=[{&(0x7f0000000000)=""/72, 0x48}], 0x1, &(0x7f0000000180)=[{0xfffffffffffffffc}, {&(0x7f0000000100)=""/53, 0x35}], 0x2, 0x0)

479.381211ms ago: executing program 0 (id=2310):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000340)=@multiplanar_userptr={0x0, 0x1, 0x4, 0x1, 0x3, {}, {0x3, 0x8, 0x5, 0x55, 0x3, 0x87, "000005b5"}, 0x7, 0x2, {0x0}, 0x7f})

435.553142ms ago: executing program 4 (id=2311):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/rcu_expedited', 0x169a82, 0x109)
fsconfig$FSCONFIG_SET_PATH(r0, 0x9c, 0x0, 0x0, r0)

433.614012ms ago: executing program 2 (id=2320):
r0 = openat$damon_monitor_on(0xffffffffffffff9c, &(0x7f0000000040), 0x40080, 0x10a)
read(r0, 0x0, 0x0)

409.652212ms ago: executing program 3 (id=2313):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xb, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000020000006b8a00fe00000000c7080000010000007b8af0ff00000000bda100000000000007000000f8ffffffbfa400000000000007040000f0ffffffb7020000080000fa18230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000001a00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

310.291104ms ago: executing program 2 (id=2314):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
pread64(r0, 0x0, 0x0, 0x100000000)

309.644214ms ago: executing program 0 (id=2323):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000080)=0x80)

283.469125ms ago: executing program 4 (id=2315):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000300)=ANY=[@ANYBLOB="d80000005400010001000000fcffffff07000000", @ANYRES32=0x0, @ANYBLOB="20000100", @ANYRES32, @ANYBLOB="010400000a01010000000000000000000000000008"], 0xd8}, 0x1, 0x0, 0x0, 0x14}, 0x0)

49.452199ms ago: executing program 4 (id=2316):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8923, &(0x7f00000000c0)={'bond_slave_0\x00', @random="013301300108"})

38.26387ms ago: executing program 0 (id=2317):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=@allocspi={0x150, 0x16, 0x1, 0x0, 0x0, {{{@in6=@loopback, @in=@broadcast}, {@in=@dev, 0x0, 0x6c}, @in6=@mcast2}, 0x0, 0x7fff}, [@migrate={0x50, 0x11, [{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in, @in6=@empty, @in6=@local}]}, @proto={0x5, 0x1b}]}, 0x150}}, 0x0)

0s ago: executing program 2 (id=2318):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x2, 0xd, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x4e23, 0x67cd, @private1, 0x5}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0xffff, @private}}]}, 0x50}}, 0x0)

kernel console output (not intermixed with test programs):

duplicate underflow at hook 4
[  135.813475][ T7616] netlink: 4 bytes leftover after parsing attributes in process `syz.3.642'.
[  135.856055][ T7610] loop0: detected capacity change from 0 to 8192
[  135.884560][ T7610] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  136.006921][ T7610] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 1046)
[  136.055591][ T7610] FAT-fs (loop0): Filesystem has been set read-only
[  136.220881][ T5790] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 1046)
[  136.273339][ T7629] netlink: 8 bytes leftover after parsing attributes in process `syz.3.646'.
[  136.289447][ T7594] loop2: detected capacity change from 0 to 32768
[  136.384118][ T7594] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  136.541562][ T7644] netlink: 'syz.4.648': attribute type 1 has an invalid length.
[  136.587884][ T7644] netlink: 12 bytes leftover after parsing attributes in process `syz.4.648'.
[  136.685686][ T7594] XFS (loop2): Ending clean mount
[  136.748937][ T7594] XFS (loop2): Quotacheck needed: Please wait.
[  136.916362][ T7660] netlink: 'syz.0.652': attribute type 3 has an invalid length.
[  136.938927][ T7594] XFS (loop2): Quotacheck: Done.
[  137.135496][ T5791] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  137.546786][ T7680] tmpfs: Bad value for 'mpol'
[  137.963752][ T7691] loop4: detected capacity change from 0 to 4096
[  138.032866][ T7691] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  138.984939][ T7727] netlink: 12 bytes leftover after parsing attributes in process `syz.0.678'.
[  139.025434][ T7727] netlink: 60 bytes leftover after parsing attributes in process `syz.0.678'.
[  139.034625][ T7727] netlink: 12 bytes leftover after parsing attributes in process `syz.0.678'.
[  139.075031][ T7727] netlink: 60 bytes leftover after parsing attributes in process `syz.0.678'.
[  139.111213][ T7727] netlink: 104 bytes leftover after parsing attributes in process `syz.0.678'.
[  139.553714][ T7712] loop2: detected capacity change from 0 to 32768
[  139.599044][ T7712] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.673 (7712)
[  139.641935][ T7707] loop3: detected capacity change from 0 to 32768
[  139.657820][ T7712] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  139.693598][ T7707] gfs2: fsid=statfs_quantum: Trying to join cluster "lock_nolock", "statfs_quantum"
[  139.704285][ T7712] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  139.735934][ T7712] BTRFS info (device loop2): allowing degraded mounts
[  139.742956][ T7712] BTRFS info (device loop2): using free space tree
[  139.760343][ T7707] gfs2: fsid=statfs_quantum: Now mounting FS (format 1801)...
[  140.191896][ T7707] gfs2: fsid=statfs_quantum.s: journal 0 mapped with 18 extents in 0ms
[  140.268366][ T7801] trusted_key: encrypted_key: master key parameter 'user:' is invalid
[  140.297820][ T7712] BTRFS info (device loop2): auto enabling async discard
[  140.389333][ T7712] BTRFS info (device loop2): checking UUID tree
[  140.672320][ T7707] gfs2: fsid=statfs_quantum.s: first mount done, others may mount
[  140.725925][ T5791] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  140.816726][ T7811] netlink: 40 bytes leftover after parsing attributes in process `syz.4.686'.
[  141.117567][ T7813] 8021q: adding VLAN 0 to HW filter on device bond2
[  141.202751][ T7820] netlink: 8 bytes leftover after parsing attributes in process `syz.0.688'.
[  142.080280][ T7848] loop2: detected capacity change from 0 to 1024
[  142.096969][ T7848] EXT4-fs: Ignoring removed nobh option
[  142.109014][ T7848] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  142.247190][ T7848] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #11: comm syz.2.704: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  142.327675][ T7848] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.704: couldn't read orphan inode 11 (err -117)
[  142.374490][ T7848] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.572985][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.699728][ T7876] xt_recent: hitcount (16777216) is larger than allowed maximum (255)
[  142.933652][ T7886] netlink: 'syz.4.722': attribute type 1 has an invalid length.
[  142.962313][ T7886] netlink: 'syz.4.722': attribute type 1 has an invalid length.
[  143.095816][ T7890] loop2: detected capacity change from 0 to 512
[  143.213057][ T5779] IPVS: starting estimator thread 0...
[  143.335557][ T7897] IPVS: using max 21 ests per chain, 50400 per kthread
[  143.399103][ T7905] cgroup: Unexpected value for 'cpuset_v2_mode'
[  143.680447][ T7916] loop2: detected capacity change from 0 to 256
[  143.743254][ T7916] exfat: Deprecated parameter 'namecase'
[  143.785277][ T7915] bond2: entered allmulticast mode
[  143.803696][ T7916] exfat: Deprecated parameter 'namecase'
[  143.916668][ T7916] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  143.942400][ T7925] loop0: detected capacity change from 0 to 4096
[  143.988877][ T7916] overlay: filesystem on ./file0 not supported
[  143.999787][ T7925] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  144.405196][ T7937] netlink: 'syz.3.745': attribute type 1 has an invalid length.
[  144.632690][ T7943] xt_CT: No such helper "netbios-ns"
[  144.868975][ T7958] x_tables: unsorted underflow at hook 3
[  144.974569][ T7962] loop4: detected capacity change from 0 to 256
[  145.009056][ T7962] exfat: Deprecated parameter 'namecase'
[  145.026157][ T7962] exfat: Deprecated parameter 'namecase'
[  145.124910][ T7962] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  145.640709][ T7980] netlink: 'syz.0.766': attribute type 1 has an invalid length.
[  145.659844][ T7980] netlink: 224 bytes leftover after parsing attributes in process `syz.0.766'.
[  145.682741][ T7954] loop2: detected capacity change from 0 to 32768
[  145.735975][ T7954] 
[  145.735975][ T7954]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  145.735975][ T7954] 
[  145.804886][ T7954] jfs_lookup: dtSearch returned -5
[  145.806406][ T7984] loop4: detected capacity change from 0 to 256
[  145.884777][ T7984] FAT-fs (loop4): Directory bread(block 64) failed
[  145.895489][ T5791] 
[  145.895489][ T5791]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  145.895489][ T5791] 
[  145.919936][ T7984] FAT-fs (loop4): Directory bread(block 65) failed
[  145.950567][ T7984] FAT-fs (loop4): Directory bread(block 66) failed
[  145.958474][ T5791] 
[  145.958474][ T5791]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  145.958474][ T5791] 
[  145.971579][ T7984] FAT-fs (loop4): Directory bread(block 67) failed
[  146.016402][ T7984] FAT-fs (loop4): Directory bread(block 68) failed
[  146.038149][ T7984] FAT-fs (loop4): Directory bread(block 69) failed
[  146.050349][ T7984] FAT-fs (loop4): Directory bread(block 70) failed
[  146.057672][ T7984] FAT-fs (loop4): Directory bread(block 71) failed
[  146.069674][ T7984] FAT-fs (loop4): Directory bread(block 72) failed
[  146.076632][ T7984] FAT-fs (loop4): Directory bread(block 73) failed
[  146.156319][   T27] audit: type=1800 audit(1758299478.928:21): pid=7984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.768" name="file1" dev="loop4" ino=1048610 res=0 errno=0
[  146.309000][ T7992] netlink: 8 bytes leftover after parsing attributes in process `syz.0.772'.
[  146.348681][ T7992] netlink: 4 bytes leftover after parsing attributes in process `syz.0.772'.
[  146.432653][ T7996] netlink: 4 bytes leftover after parsing attributes in process `syz.2.774'.
[  146.689903][ T7976] loop3: detected capacity change from 0 to 40427
[  146.702735][ T7976] F2FS-fs (loop3): Invalid log sectorsize (131081)
[  146.725994][ T7976] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  146.780032][ T7976] F2FS-fs (loop3): invalid crc value
[  146.864153][ T8010] loop0: detected capacity change from 0 to 1024
[  147.003990][ T8009] loop2: detected capacity change from 0 to 4096
[  147.062477][ T8009] ntfs3: loop2: It is recommened to use chkdsk.
[  147.097186][ T7976] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  147.107396][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00
[  147.135539][ T7976] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  147.151049][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00
[  147.178094][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00
[  147.220304][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00
[  147.266322][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffc1c00
[  147.295364][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffc2c00
[  147.303275][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffc4c00
[  147.337176][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffc8c00
[  147.345174][ T8009] ntfs3: loop2: try to read out of volume at offset 0x3fffffd0c00
[  147.684882][ T8025] loop4: detected capacity change from 0 to 512
[  147.795272][ T8025] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.905519][ T8025] ext4 filesystem being mounted at /124/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.987123][ T8025] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.788: corrupted xattr block 33: overlapping e_value 
[  148.035564][ T8037] ..0
ˆ: renamed from veth0_to_hsr (while UP)
[  148.047254][ T8038] loop0: detected capacity change from 0 to 128
[  148.122042][ T8038] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fff0000)
[  148.155489][ T8038] FAT-fs (loop0): Filesystem has been set read-only
[  148.160587][ T6481] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.240688][ T8042] loop2: detected capacity change from 0 to 1024
[  148.391971][ T8042] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.597253][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.848251][ T8063] loop4: detected capacity change from 0 to 2048
[  148.936553][ T8063] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  148.969722][ T8063] UDF-fs: Scanning with blocksize 512 failed
[  149.048632][ T8063] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  149.332975][ T8084] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.814'.
[  149.659725][ T8098] netlink: 8 bytes leftover after parsing attributes in process `syz.4.820'.
[  149.796082][ T8101] No such timeout policy "syz1"
[  149.910395][ T8107] netlink: 8 bytes leftover after parsing attributes in process `syz.4.825'.
[  150.092852][ T8114] loop4: detected capacity change from 0 to 256
[  150.118746][ T8116] loop0: detected capacity change from 0 to 256
[  150.156780][ T8114] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  150.195702][ T8114] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  150.239291][ T8116] FAT-fs (loop0): Directory bread(block 64) failed
[  150.258765][ T8116] FAT-fs (loop0): Directory bread(block 65) failed
[  150.273803][ T8114] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  150.294709][ T8116] FAT-fs (loop0): Directory bread(block 66) failed
[  150.323158][ T8116] FAT-fs (loop0): Directory bread(block 67) failed
[  150.343641][ T8116] FAT-fs (loop0): Directory bread(block 68) failed
[  150.389576][ T8116] FAT-fs (loop0): Directory bread(block 69) failed
[  150.418176][ T8116] FAT-fs (loop0): Directory bread(block 70) failed
[  150.425128][ T8116] FAT-fs (loop0): Directory bread(block 71) failed
[  150.469645][ T8116] FAT-fs (loop0): Directory bread(block 72) failed
[  150.477305][ T8116] FAT-fs (loop0): Directory bread(block 73) failed
[  150.897202][ T8138] loop2: detected capacity change from 0 to 64
[  151.749251][ T8168] loop3: detected capacity change from 0 to 128
[  151.777164][ T8168] ext4: Unknown parameter 'fsname'
[  151.826762][ T8172] netlink: 'syz.2.858': attribute type 1 has an invalid length.
[  151.828684][ T8144] loop4: detected capacity change from 0 to 32768
[  151.846158][ T5996] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  151.865103][ T8168] Invalid option length (1047378) for dns_resolver key
[  151.901324][ T8144] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.844 (8144)
[  151.985472][ T8144] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  152.053492][ T8144] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  152.086097][ T8144] BTRFS info (device loop4): allowing degraded mounts
[  152.086121][ T8144] BTRFS info (device loop4): using free space tree
[  152.187022][ T8187] loop2: detected capacity change from 0 to 1024
[  152.262148][ T8144] BTRFS info (device loop4): auto enabling async discard
[  152.298408][ T8144] BTRFS info (device loop4): checking UUID tree
[  152.387752][ T7775] hfsplus: b-tree write err: -5, ino 4
[  152.608272][ T6481] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  152.645599][ T5872] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  152.840250][ T5872] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  152.870420][ T5872] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.919719][ T5872] usb 4-1: Product: syz
[  152.937733][ T5872] usb 4-1: Manufacturer: syz
[  152.942810][ T5872] usb 4-1: SerialNumber: syz
[  152.999607][ T5872] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  153.106743][ T5835] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  153.453991][ T8230] loop0: detected capacity change from 0 to 256
[  153.561965][  T786] usb 4-1: USB disconnect, device number 4
[  153.645501][    T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  153.890583][    T9] usb 3-1: config 0 has an invalid interface number: 216 but max is 0
[  153.894021][ T8244] netlink: 8 bytes leftover after parsing attributes in process `syz.0.884'.
[  153.907322][    T9] usb 3-1: config 0 has no interface number 0
[  153.914854][    T9] usb 3-1: config 0 interface 216 altsetting 4 bulk endpoint 0x8F has invalid maxpacket 64
[  153.953551][    T9] usb 3-1: config 0 interface 216 altsetting 4 endpoint 0x1 has invalid wMaxPacketSize 0
[  153.968995][    T9] usb 3-1: config 0 interface 216 has no altsetting 0
[  153.978943][    T9] usb 3-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c1.2e
[  153.991321][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.004884][    T9] usb 3-1: config 0 descriptor??
[  154.014865][ T8226] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  154.042529][    T9] usb 3-1: NFC: intf ffff88805cb8e000 id ffffffff8d63c060
[  154.174729][ T5835] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  154.205944][ T5835] ath9k_htc: Failed to initialize the device
[  154.215770][  T786] usb 4-1: ath9k_htc: USB layer deinitialized
[  154.232974][ T8254] No such timeout policy "syz1"
[  154.266015][    T9] usb 3-1: USB disconnect, device number 5
[  154.511225][ T8261] libceph: resolve '0' (ret=-3): failed
[  154.673880][ T8250] loop0: detected capacity change from 0 to 32768
[  154.691723][ T8250] gfs2: fsid=statfs_quantum: Trying to join cluster "lock_nolock", "statfs_quantum"
[  154.705474][   T23] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  154.718327][ T8250] gfs2: fsid=statfs_quantum: Now mounting FS (format 1801)...
[  154.744535][ T8250] gfs2: fsid=statfs_quantum.s: journal 0 mapped with 18 extents in 1ms
[  154.895467][   T23] usb 5-1: Using ep0 maxpacket: 16
[  154.927132][   T23] usb 5-1: config index 0 descriptor too short (expected 65, got 36)
[  154.956530][   T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.981696][ T8250] gfs2: fsid=statfs_quantum.s: first mount done, others may mount
[  154.990069][   T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.006097][   T23] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  155.033717][   T23] usb 5-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  155.044626][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.065531][   T23] usb 5-1: config 0 descriptor??
[  155.127741][   T23] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input7
[  155.192317][ T5143] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  155.292068][ T5143] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  155.352765][ T5799] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  155.399639][ T5143] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  155.451907][ T8259] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  155.502196][ T5143] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  155.515213][    T9] usb 5-1: USB disconnect, device number 2
[  155.687192][ T8285] loop3: detected capacity change from 0 to 256
[  155.713750][ T8285] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  155.961978][ T8295] loop3: detected capacity change from 0 to 256
[  155.994602][ T8295] FAT-fs (loop3): Directory bread(block 64) failed
[  156.022365][ T8295] FAT-fs (loop3): Directory bread(block 65) failed
[  156.045843][ T8295] FAT-fs (loop3): Directory bread(block 66) failed
[  156.052735][ T8295] FAT-fs (loop3): Directory bread(block 67) failed
[  156.080649][ T8297] netlink: 'syz.2.908': attribute type 2 has an invalid length.
[  156.098693][ T8295] FAT-fs (loop3): Directory bread(block 68) failed
[  156.116613][ T8299] Cannot find del_set index 4 as target
[  156.138574][ T8295] FAT-fs (loop3): Directory bread(block 69) failed
[  156.175576][ T8295] FAT-fs (loop3): Directory bread(block 70) failed
[  156.202183][ T8295] FAT-fs (loop3): Directory bread(block 71) failed
[  156.216930][ T8295] FAT-fs (loop3): Directory bread(block 72) failed
[  156.224157][ T8295] FAT-fs (loop3): Directory bread(block 73) failed
[  156.312511][ T8295] syz.3.907: attempt to access beyond end of device
[  156.312511][ T8295] loop3: rw=524288, sector=1160, nr_sectors = 4 limit=256
[  156.346018][ T8295] syz.3.907: attempt to access beyond end of device
[  156.346018][ T8295] loop3: rw=0, sector=1160, nr_sectors = 4 limit=256
[  156.406523][   T27] audit: type=1800 audit(1758299489.188:22): pid=8295 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.907" name="memory.events" dev="loop3" ino=1048614 res=0 errno=0
[  156.524758][ T8307] loop4: detected capacity change from 0 to 2048
[  156.647221][ T8314] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  156.733988][ T8307] NILFS error (device loop4): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  156.813287][ T8307] Remounting filesystem read-only
[  156.935054][ T8323] loop3: detected capacity change from 0 to 64
[  156.960837][ T6481] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[  156.975981][ T8323] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing
[  156.992685][ T6481] NILFS (loop4): discard dirty page: offset=0, ino=2
[  157.005898][ T6481] NILFS (loop4): discard dirty block: blocknr=15, size=2048
[  157.037464][ T6481] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=2048
[  157.046107][ T8326] netlink: 'syz.0.921': attribute type 1 has an invalid length.
[  157.057579][ T6481] NILFS (loop4): discard dirty page: offset=4096, ino=6
[  157.064914][ T6481] NILFS (loop4): discard dirty block: blocknr=28, size=2048
[  157.088652][ T6481] NILFS (loop4): discard dirty block: blocknr=29, size=2048
[  157.100219][ T6481] NILFS (loop4): discard dirty page: offset=462848, ino=3
[  157.135519][ T6481] NILFS (loop4): discard dirty block: blocknr=40, size=2048
[  157.143084][ T6481] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=2048
[  158.207189][ T8368] loop0: detected capacity change from 0 to 16
[  158.245676][ T8368] erofs: (device loop0): mounted with root inode @ nid 36.
[  158.305812][ T8368] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress 1929 in[58, 4038] out[2639]
[  158.329080][ T8368] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 39 of nid 36
[  158.362856][ T8342] loop4: detected capacity change from 0 to 32768
[  158.552575][ T8342] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  158.755768][    T9] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  158.844051][ T6481] ocfs2: Unmounting device (7,4) on (node local)
[  158.862266][ T8388] libceph: resolve '0' (ret=-3): failed
[  158.959367][    T9] usb 3-1: Using ep0 maxpacket: 8
[  158.994883][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  159.005433][    T9] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  159.019055][    T9] usb 3-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[  159.028838][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.037399][    T9] usb 3-1: Product: syz
[  159.041851][    T9] usb 3-1: Manufacturer: syz
[  159.057757][    T9] usb 3-1: SerialNumber: syz
[  159.064840][    T9] usb 3-1: config 0 descriptor??
[  159.408284][ T8402] loop4: detected capacity change from 0 to 4096
[  159.417728][ T8402] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  159.475720][ T8405] loop3: detected capacity change from 0 to 4096
[  159.490034][  T786] usb 3-1: USB disconnect, device number 6
[  159.497950][ T8402] ntfs3: loop4: Failed to initialize $Extend/$Reparse.
[  160.501025][   T27] audit: type=1326 audit(1758299493.288:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.2.976" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f784a18ec29 code=0x0
[  160.523643][    C1] vkms_vblank_simulate: vblank timer overrun
[  160.818741][ T8450] netlink: 'syz.3.984': attribute type 1 has an invalid length.
[  161.022349][ T8457] netlink: 292 bytes leftover after parsing attributes in process `syz.2.987'.
[  161.534575][ T8481] netlink: 'syz.2.997': attribute type 1 has an invalid length.
[  161.561201][ T8481] netlink: 224 bytes leftover after parsing attributes in process `syz.2.997'.
[  161.920348][ T8491] loop3: detected capacity change from 0 to 4096
[  161.950235][ T8491] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  162.096874][ T8491] ntfs3: loop3: Failed to load $Extend (-22).
[  162.122329][ T8491] ntfs3: loop3: Failed to initialize $Extend.
[  162.449638][ T8506] xt_cgroup: invalid path, errno=-2
[  162.801289][ T8519] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1016'.
[  162.841365][ T8498] loop0: detected capacity change from 0 to 32768
[  162.846425][ T8519] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1016'.
[  162.882740][ T8519] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1016'.
[  162.899769][ T8498] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  162.911470][ T8519] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1016'.
[  162.925536][ T8519] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1016'.
[  163.143949][ T8498] XFS (loop0): Ending clean mount
[  163.166571][ T8498] XFS (loop0): Quotacheck needed: Please wait.
[  163.255637][ T8498] XFS (loop0): Quotacheck: Done.
[  163.407826][ T8534] loop2: detected capacity change from 0 to 4096
[  163.416246][ T5790] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  163.466717][ T8534] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  163.537160][ T8531] loop3: detected capacity change from 0 to 32768
[  163.590276][ T8531] 
[  163.590276][ T8531]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  163.590276][ T8531] 
[  163.667869][ T8531] ERROR: (device loop3): diWrite: ixpxd invalid
[  163.667869][ T8531] 
[  163.718943][ T8531] ERROR: (device loop3): txCommit: 
[  163.718943][ T8531] 
[  163.811621][ T5787] 
[  163.811621][ T5787]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  163.811621][ T5787] 
[  163.865526][ T5787] 
[  163.865526][ T5787]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  163.865526][ T5787] 
[  164.297134][ T8549] 8021q: adding VLAN 0 to HW filter on device bond2
[  164.671625][ T8560] netlink: 'syz.3.1034': attribute type 29 has an invalid length.
[  164.683072][ T8535] loop4: detected capacity change from 0 to 65536
[  164.703615][ T8560] netlink: 'syz.3.1034': attribute type 29 has an invalid length.
[  164.795799][ T8535] XFS (loop4): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  164.933364][ T8535] XFS (loop4): Ending clean mount
[  164.969562][ T8535] XFS (loop4): Quotacheck needed: Please wait.
[  164.978926][ T8577] netlink: 'syz.2.1035': attribute type 7 has an invalid length.
[  165.064887][   T12] XFS (loop4): Metadata corruption detected at xfs_dinode_verify+0x2b9/0x1140, inode 0x25 dinode
[  165.103515][ T8580] loop0: detected capacity change from 0 to 1024
[  165.120907][   T12] XFS (loop4): Unmount and run xfs_repair
[  165.141040][   T12] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  165.148738][ T8580] EXT4-fs: Ignoring removed nobh option
[  165.177289][   T12] 00000000: 49 4e a1 ff 03 01 00 00 00 00 00 00 00 00 00 00  IN..............
[  165.178644][ T8580] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  165.212111][   T12] 00000010: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  165.229108][   T12] 00000020: 34 f7 58 68 7a bb 44 4d 34 f7 58 68 7a bb 44 4d  4.Xhz.DM4.Xhz.DM
[  165.259213][   T12] 00000030: 34 f7 58 68 7a bb 44 4d 00 00 00 00 00 00 00 27  4.Xhz.DM.......'
[  165.297503][   T12] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  165.313949][ T8580] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.1038: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  165.318839][   T12] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 0c 44 49 b4  .............DI.
[  165.344514][   T12] 00000060: ff ff ff ff f1 fd ce d1 00 00 00 00 00 00 00 02  ................
[  165.353762][   T12] 00000070: 00 00 00 01 00 00 00 10 00 00 00 00 00 00 00 08  ................
[  165.399843][ T8590] netlink: 'syz.2.1042': attribute type 1 has an invalid length.
[  165.457615][ T8535] XFS (loop4): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  165.469729][ T8580] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.1038: couldn't read orphan inode 11 (err -117)
[  165.535240][ T8580] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.728505][ T6481] XFS (loop4): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  165.801822][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.029760][ T8608] loop2: detected capacity change from 0 to 65
[  166.046034][ T8608] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  166.273317][ T8616] loop2: detected capacity change from 0 to 1024
[  166.804791][ T8636] loop3: detected capacity change from 0 to 256
[  166.847988][ T8636] exfat: Deprecated parameter 'utf8'
[  166.870839][ T8636] exfat: Deprecated parameter 'namecase'
[  166.921346][ T8636] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001016b, chksum : 0xc5c53e17, utbl_chksum : 0xe619d30d)
[  167.279094][ T8646] delete_channel: no stack
[  167.533659][ T8654] xt_TCPMSS: Only works on TCP SYN packets
[  167.675204][ T8661] loop0: detected capacity change from 0 to 8
[  167.710648][ T8664] 8021q: adding VLAN 0 to HW filter on device bond3
[  167.848410][ T8661] SQUASHFS error: lzo decompression failed, data probably corrupt
[  167.884253][ T8661] SQUASHFS error: Failed to read block 0x91: -5
[  167.913505][ T8661] SQUASHFS error: Unable to read metadata cache entry [8f]
[  167.925157][ T8672] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1082'.
[  167.947550][ T8661] SQUASHFS error: Unable to read inode 0x11f
[  167.965777][ T8672] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1082'.
[  168.370553][ T8685] 8021q: adding VLAN 0 to HW filter on device bond1
[  168.594838][ T8701] mmap: syz.0.1095 (8701) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  168.731137][ T8700] loop3: detected capacity change from 0 to 4096
[  168.758707][ T8700] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[  168.921068][ T8710] loop0: detected capacity change from 0 to 256
[  168.946059][ T8710] exfat: Deprecated parameter 'namecase'
[  168.947606][ T8712] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1100'.
[  168.985472][ T8710] exfat: Deprecated parameter 'namecase'
[  168.989541][ T8712] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1100'.
[  169.026263][ T8710] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  169.306323][ T8716] sctp: [Deprecated]: syz.2.1104 (pid 8716) Use of int in maxseg socket option.
[  169.306323][ T8716] Use struct sctp_assoc_value instead
[  169.395061][ T8722] bond2: entered allmulticast mode
[  169.907641][ T8736] loop4: detected capacity change from 0 to 4096
[  169.952915][ T8736] ntfs3: loop4: It is recommened to use chkdsk.
[  169.988554][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[  170.012614][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[  170.037320][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[  170.065456][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[  170.094603][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffc1c00
[  170.116767][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffc2c00
[  170.137619][ T8749] loop3: detected capacity change from 0 to 2048
[  170.138831][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffc4c00
[  170.183800][ T8752] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  170.195451][ T8751] openvswitch: netlink: EtherType 0 is less than min 600
[  170.196467][    T9] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  170.202678][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffc8c00
[  170.215424][ T8749] CPU: 0 PID: 8749 Comm: syz.3.1120 Not tainted syzkaller #0
[  170.222620][ T8736] ntfs3: loop4: try to read out of volume at offset 0x3fffffd0c00
[  170.227614][ T8749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  170.227648][ T8749] Call Trace:
[  170.227658][ T8749]  <TASK>
[  170.227671][ T8749]  dump_stack_lvl+0x16c/0x230
[  170.227703][ T8749]  ? show_regs_print_info+0x20/0x20
[  170.227720][ T8749]  ? kmem_cache_alloc+0x14d/0x2e0
[  170.227746][ T8749]  ? __asan_memset+0x22/0x40
[  170.227772][ T8749]  ? nilfs_btree_alloc_path+0x5e5/0x600
[  170.227799][ T8749]  nilfs_btree_last_key+0x489/0x610
[  170.286384][ T8749]  nilfs_bmap_last_key+0x74/0x120
[  170.291423][ T8749]  nilfs_truncate_bmap+0xff/0x340
[  170.296686][ T8749]  ? nilfs_update_inode+0x1d0/0x1d0
[  170.301997][ T8749]  ? block_truncate_page+0x168/0x9f0
[  170.307470][ T8749]  ? nilfs_inode_sub_blocks+0xe0/0xe0
[  170.312951][ T8749]  nilfs_truncate+0x267/0x4a0
[  170.318006][ T8749]  ? nilfs_write_failed+0xa0/0xa0
[  170.323080][ T8749]  nilfs_setattr+0x211/0x2b0
[  170.327947][ T8749]  ? nilfs_clear_inode+0x280/0x280
[  170.333152][ T8749]  ? is_bad_inode+0xd/0x40
[  170.337582][ T8749]  ? evm_inode_setattr+0x94/0x6a0
[  170.342694][ T8749]  ? bpf_lsm_inode_setattr+0x9/0x10
[  170.347982][ T8749]  ? try_break_deleg+0x79/0x120
[  170.352918][ T8749]  ? nilfs_clear_inode+0x280/0x280
[  170.358211][ T8749]  notify_change+0xb0d/0xe10
[  170.362947][ T8749]  do_truncate+0x19b/0x220
[  170.368038][ T8749]  ? put_page_bootmem+0x2c0/0x2c0
[  170.373081][ T8749]  ? apparmor_file_truncate+0x23f/0x2d0
[  170.378785][ T8749]  ? ima_bprm_check+0x1f0/0x1f0
[  170.383811][ T8749]  path_openat+0x298c/0x3190
[  170.388950][ T8749]  ? do_filp_open+0x3d0/0x3d0
[  170.393850][ T8749]  do_filp_open+0x1c5/0x3d0
[  170.398638][ T8749]  ? vfs_tmpfile+0x490/0x490
[  170.403272][ T8749]  ? _raw_spin_unlock+0x28/0x40
[  170.408122][ T8749]  ? alloc_fd+0x58f/0x630
[  170.412899][ T8749]  do_sys_openat2+0x12c/0x1c0
[  170.417585][ T8749]  ? do_sys_open+0xe0/0xe0
[  170.422098][ T8749]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  170.428176][ T8749]  ? lock_chain_count+0x20/0x20
[  170.433193][ T8749]  __x64_sys_creat+0x90/0xb0
[  170.437958][ T8749]  do_syscall_64+0x55/0xb0
[  170.442371][ T8749]  ? clear_bhb_loop+0x40/0x90
[  170.447131][ T8749]  ? clear_bhb_loop+0x40/0x90
[  170.451804][ T8749]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  170.457729][ T8749] RIP: 0033:0x7f55eab8ec29
[  170.462218][ T8749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.482281][ T8749] RSP: 002b:00007f55ebafa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  170.490884][ T8749] RAX: ffffffffffffffda RBX: 00007f55eadd5fa0 RCX: 00007f55eab8ec29
[  170.499041][ T8749] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000200000000100
[  170.507184][ T8749] RBP: 00007f55eac11e41 R08: 0000000000000000 R09: 0000000000000000
[  170.515372][ T8749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  170.523876][ T8749] R13: 00007f55eadd6038 R14: 00007f55eadd5fa0 R15: 00007ffcffa14258
[  170.532135][ T8749]  </TASK>
[  170.551593][ T8749] NILFS (loop3): btree level mismatch (ino=16): 1 != 7
[  170.564929][ T8749] NILFS error (device loop3): nilfs_bmap_last_key: broken bmap (inode number=16)
[  170.583880][ T8749] Remounting filesystem read-only
[  170.592201][ T8749] NILFS (loop3): error -5 truncating bmap (ino=16)
[  170.745895][    T9] usb 3-1: Using ep0 maxpacket: 16
[  170.761007][    T9] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  170.775354][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.808455][    T9] usb 3-1: Product: syz
[  170.814182][ T5787] NILFS (loop3): discard dirty page: offset=4096, ino=6
[  170.835041][    T9] usb 3-1: Manufacturer: syz
[  170.847490][    T9] usb 3-1: SerialNumber: syz
[  170.848050][ T5787] NILFS (loop3): discard dirty block: blocknr=39, size=1024
[  170.859702][    T9] r8152-cfgselector 3-1: config 0 descriptor??
[  170.894883][ T5787] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  170.945129][ T5787] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  170.969577][ T5787] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  170.991227][ T5787] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer
[  171.252192][ T8766] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1128'.
[  171.274941][ T8766] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1128'.
[  171.295589][    T9] r8152-cfgselector 3-1: Unknown version 0x0000
[  171.318397][    T9] r8152-cfgselector 3-1: USB disconnect, device number 7
[  171.332986][ T8766] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  171.837304][ T8786] loop4: detected capacity change from 0 to 256
[  171.888132][ T8786] FAT-fs (loop4): Directory bread(block 64) failed
[  171.904579][ T8786] FAT-fs (loop4): Directory bread(block 65) failed
[  171.922688][ T8786] FAT-fs (loop4): Directory bread(block 66) failed
[  171.943157][ T8786] FAT-fs (loop4): Directory bread(block 67) failed
[  171.969044][ T8786] FAT-fs (loop4): Directory bread(block 68) failed
[  171.995511][ T8786] FAT-fs (loop4): Directory bread(block 69) failed
[  172.002379][ T8786] FAT-fs (loop4): Directory bread(block 70) failed
[  172.041279][ T8786] FAT-fs (loop4): Directory bread(block 71) failed
[  172.059691][ T8786] FAT-fs (loop4): Directory bread(block 72) failed
[  172.079893][ T8786] FAT-fs (loop4): Directory bread(block 73) failed
[  172.509261][ T8802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1144'.
[  173.078579][ T5779] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  173.152720][ T8827] loop0: detected capacity change from 0 to 4096
[  173.301996][ T5779] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  173.314405][ T5779] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 31, changing to 7
[  173.328439][ T5779] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  173.356957][ T5835] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  173.383763][ T5779] usb 3-1: language id specifier not provided by device, defaulting to English
[  173.417776][ T5779] usb 3-1: New USB device found, idVendor=2013, idProduct=0251, bcdDevice=e8.6e
[  173.435984][ T5779] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.444702][ T5779] usb 3-1: Manufacturer: ‰
[  173.445663][ T8835] loop0: detected capacity change from 0 to 2048
[  173.454873][ T5779] usb 3-1: SerialNumber: syz
[  173.464482][ T5779] usb 3-1: config 0 descriptor??
[  173.479694][ T5779] em28xx 3-1:0.0: New device ‰  @ 480 Mbps (2013:0251, interface 0, class 0)
[  173.499322][ T5779] em28xx 3-1:0.0: Audio interface 0 found (Vendor Class)
[  173.504233][ T8835] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  173.544330][ T8835] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  173.626012][ T5835] usb 5-1: unable to get BOS descriptor or descriptor too short
[  173.647188][ T5835] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  173.663811][ T5835] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  173.695365][ T5835] usb 5-1: config 1 has no interface number 1
[  173.705546][ T5835] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  173.766377][ T5779] em28xx 3-1:0.0: unknown em28xx chip ID (0)
[  173.784031][ T5779] em28xx 3-1:0.0: Config register raw data: 0xfffffffb
[  173.790062][ T5835] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  173.803625][ T5779] em28xx 3-1:0.0: AC97 chip type couldn't be determined
[  173.814456][ T5835] usb 5-1: New USB device strings: Mfr=20, Product=2, SerialNumber=3
[  173.825879][ T5779] em28xx 3-1:0.0: No AC97 audio processor
[  173.837166][ T5835] usb 5-1: Product: syz
[  173.853896][ T5835] usb 5-1: Manufacturer: syz
[  173.865379][ T5835] usb 5-1: SerialNumber: syz
[  173.868909][ T5779] usb 3-1: USB disconnect, device number 8
[  173.920244][ T5779] em28xx 3-1:0.0: Disconnecting em28xx
[  173.973543][ T5779] em28xx 3-1:0.0: Freeing device
[  174.014809][ T8841] loop3: detected capacity change from 0 to 4096
[  174.033520][ T8841] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  174.065216][ T8841] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  174.163666][ T5835] usb 5-1: USB disconnect, device number 3
[  174.207218][ T5996] udevd[5996]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  175.216708][ T8886] loop2: detected capacity change from 0 to 16
[  175.222804][ T8887] loop0: detected capacity change from 0 to 64
[  175.266306][ T8886] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  175.375741][ T8883] loop3: detected capacity change from 0 to 8192
[  175.451333][ T8883] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  175.489867][ T8883] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  175.502466][ T8883] REISERFS (device loop3): using ordered data mode
[  175.561274][ T8883] reiserfs: using flush barriers
[  175.564881][ T8896] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1189'.
[  175.592347][ T8883] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  175.655859][ T8883] REISERFS (device loop3): checking transaction log (loop3)
[  175.700269][ T8883] REISERFS (device loop3): Using r5 hash to sort names
[  175.730945][ T8883] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  176.101248][   T27] audit: type=1326 audit(1758299508.888:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8908 comm="syz.4.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff43d78ec29 code=0x7ffc0000
[  176.176084][   T27] audit: type=1326 audit(1758299508.888:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8908 comm="syz.4.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff43d78ec29 code=0x7ffc0000
[  176.209056][   T27] audit: type=1326 audit(1758299508.888:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8908 comm="syz.4.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7ff43d78ec29 code=0x7ffc0000
[  176.279585][   T27] audit: type=1326 audit(1758299508.888:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8908 comm="syz.4.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff43d78ec29 code=0x7ffc0000
[  176.318164][ T8914] loop4: detected capacity change from 0 to 512
[  176.353571][ T8914] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  176.412173][ T8916] loop3: detected capacity change from 0 to 1024
[  176.424965][ T8914] EXT4-fs (loop4): warning: maximal mount count reached, running e2fsck is recommended
[  176.529893][ T8914] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz.4.1198: inode #15: comm syz.4.1198: iget: illegal inode #
[  176.546091][ T8916] hfsplus: invalid extended attribute record
[  176.576157][ T8914] EXT4-fs (loop4): Remounting filesystem read-only
[  176.584082][ T8914] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.679631][ T8928] netlink: 'syz.0.1204': attribute type 1 has an invalid length.
[  176.739759][ T7775] hfsplus: b-tree write err: -5, ino 4
[  176.990624][ T8936] loop2: detected capacity change from 0 to 1024
[  177.035518][   T23] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  177.154582][ T7770] hfsplus: b-tree write err: -5, ino 4
[  177.237137][   T23] usb 5-1: config 1 has an invalid descriptor of length 222, skipping remainder of the config
[  177.260023][   T23] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  177.287487][   T23] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  177.287518][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  177.287537][   T23] usb 5-1: SerialNumber: syz
[  177.296055][   T23] usb 5-1: 0:2 : does not exist
[  177.618469][    T9] usb 5-1: USB disconnect, device number 4
[  177.723653][ T8959] loop2: detected capacity change from 0 to 256
[  177.777099][ T8959] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  178.251238][ T6481] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.452751][ T8982] bond4: entered allmulticast mode
[  178.897808][ T9005] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1242'.
[  179.408065][ T9028] loop2: detected capacity change from 0 to 64
[  179.598629][ T9032] loop4: detected capacity change from 0 to 4096
[  179.884152][ T9040] netlink: 'syz.0.1257': attribute type 2 has an invalid length.
[  180.568375][ T9068] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  180.583656][ T9065] loop2: detected capacity change from 0 to 2048
[  180.613227][ T9065] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  180.775601][   T23] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  180.813944][ T9072] loop0: detected capacity change from 0 to 256
[  180.836565][ T9072] exfat: Deprecated parameter 'namecase'
[  180.860722][ T9072] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  180.904301][ T9072] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[  180.990339][   T23] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[  181.028546][   T23] usb 4-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  181.059189][   T23] usb 4-1: Product: syz
[  181.073746][   T23] usb 4-1: SerialNumber: syz
[  181.091856][   T23] usb 4-1: config 0 descriptor??
[  181.538383][ T9084] cgroup: Name too long
[  181.571130][ T5872] usb 4-1: USB disconnect, device number 5
[  181.845609][ T9095] loop4: detected capacity change from 0 to 256
[  181.936645][ T9095] FAT-fs (loop4): Directory bread(block 64) failed
[  181.945691][ T9095] FAT-fs (loop4): Directory bread(block 65) failed
[  181.975576][    T9] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  181.976742][ T9095] FAT-fs (loop4): Directory bread(block 66) failed
[  182.008563][ T9095] FAT-fs (loop4): Directory bread(block 67) failed
[  182.018159][ T9095] FAT-fs (loop4): Directory bread(block 68) failed
[  182.045688][ T9095] FAT-fs (loop4): Directory bread(block 69) failed
[  182.054046][ T9095] FAT-fs (loop4): Directory bread(block 70) failed
[  182.062418][ T9095] FAT-fs (loop4): Directory bread(block 71) failed
[  182.062947][ T9100] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1287'.
[  182.071739][ T9095] FAT-fs (loop4): Directory bread(block 72) failed
[  182.105771][ T9095] FAT-fs (loop4): Directory bread(block 73) failed
[  182.191513][    T9] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  182.221607][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.229382][ T9095] syz.4.1284: attempt to access beyond end of device
[  182.229382][ T9095] loop4: rw=524288, sector=1160, nr_sectors = 4 limit=256
[  182.269858][ T9095] syz.4.1284: attempt to access beyond end of device
[  182.269858][ T9095] loop4: rw=0, sector=1160, nr_sectors = 4 limit=256
[  182.275364][    T9] usb 3-1: Product: syz
[  182.301271][   T27] audit: type=1800 audit(1758299515.078:28): pid=9095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1284" name="memory.events" dev="loop4" ino=1048621 res=0 errno=0
[  182.341849][    T9] usb 3-1: Manufacturer: syz
[  182.352744][    T9] usb 3-1: SerialNumber: syz
[  182.373604][    T9] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  182.406949][ T5872] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  182.569814][ T9110] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  182.976643][ T9123] afs: Bad value for 'source'
[  183.009624][ T5779] usb 3-1: USB disconnect, device number 9
[  183.440067][ T9142] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1308'.
[  183.450285][ T9142] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1308'.
[  183.455814][ T5872] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  183.487332][ T5872] ath9k_htc: Failed to initialize the device
[  183.494434][ T5779] usb 3-1: ath9k_htc: USB layer deinitialized
[  183.556263][ T9146] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1309'.
[  183.569686][ T9146] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1309'.
[  183.595625][   T23] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  183.718880][ T9151] loop2: detected capacity change from 0 to 16
[  183.734915][ T9151] erofs: (device loop2): mounted with root inode @ nid 36.
[  183.798507][   T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  183.830724][   T23] usb 5-1: New USB device found, idVendor=2040, idProduct=5530, bcdDevice=a8.82
[  183.850970][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.871830][ T9154] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1314'.
[  183.883944][   T23] usb 5-1: config 0 descriptor??
[  183.893810][   T23] smsusb:smsusb_probe: board id=8, interface number 0
[  183.910562][   T23] smsusb:smsusb_probe: Device initialized with return code -19
[  184.001112][ T9157] usb usb3: usbfs: process 9157 (syz.2.1315) did not claim interface 0 before use
[  184.174247][ T5835] usb 5-1: USB disconnect, device number 5
[  184.216037][   T27] audit: type=1326 audit(1758299517.008:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.1327" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdc8718ec29 code=0x0
[  184.416845][ T9171] veth5: entered promiscuous mode
[  184.425418][ T9171] veth5: entered allmulticast mode
[  184.587119][ T9177] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1324'.
[  184.616514][ T9177] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  184.853131][ T9189] loop4: detected capacity change from 0 to 256
[  184.880995][ T9189] exfat: Deprecated parameter 'utf8'
[  184.944854][ T9189] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  185.012523][ T9195] netlink: 'syz.2.1333': attribute type 1 has an invalid length.
[  185.040452][ T9197] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  185.227173][ T9203] loop0: detected capacity change from 0 to 8
[  185.335593][ T9203] SQUASHFS error: Failed to read block 0x636: -5
[  185.371635][ T9203] SQUASHFS error: Unable to read metadata cache entry [634]
[  185.396340][ T9203] SQUASHFS error: Unable to read metadata cache entry [634]
[  185.403861][ T9203] SQUASHFS error: Unable to read directory block [629:0]
[  185.456028][ T9210] netlink: 'syz.4.1341': attribute type 1 has an invalid length.
[  185.473158][ T9210] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1341'.
[  185.843572][ T9224] overlayfs: disabling nfs_export due to verity=on
[  185.855537][ T9224] overlayfs: conflicting options: userxattr,redirect_dir=on
[  185.865044][ T9227] xt_cgroup: invalid path, errno=-2
[  185.876330][ T9226] loop4: detected capacity change from 0 to 764
[  186.049610][ T9233] loop2: detected capacity change from 0 to 256
[  186.171601][ T9233] FAT-fs (loop2): Directory bread(block 64) failed
[  186.187426][ T9233] FAT-fs (loop2): Directory bread(block 65) failed
[  186.194284][ T9233] FAT-fs (loop2): Directory bread(block 66) failed
[  186.215898][ T9232] loop3: detected capacity change from 0 to 4096
[  186.237921][ T9233] FAT-fs (loop2): Directory bread(block 67) failed
[  186.245071][ T9233] FAT-fs (loop2): Directory bread(block 68) failed
[  186.255852][ T9232] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  186.262481][ T9239] loop4: detected capacity change from 0 to 256
[  186.271664][ T9237] loop0: detected capacity change from 0 to 512
[  186.290014][ T9233] FAT-fs (loop2): Directory bread(block 69) failed
[  186.304256][ T9239] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  186.304802][ T9233] FAT-fs (loop2): Directory bread(block 70) failed
[  186.320868][ T9239] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  186.334025][ T9237] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  186.360612][ T9233] FAT-fs (loop2): Directory bread(block 71) failed
[  186.370264][ T9237] EXT4-fs (loop0): warning: maximal mount count reached, running e2fsck is recommended
[  186.375964][ T9233] FAT-fs (loop2): Directory bread(block 72) failed
[  186.392560][ T9237] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz.0.1355: inode #15: comm syz.0.1355: iget: illegal inode #
[  186.398847][ T9233] FAT-fs (loop2): Directory bread(block 73) failed
[  186.415063][ T9239] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  186.459649][ T9232] ntfs3: loop3: failed to convert "c46c" to cp861
[  186.467075][ T9237] EXT4-fs (loop0): Remounting filesystem read-only
[  186.468343][ T9237] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.793563][ T9247] bond3: entered allmulticast mode
[  186.825419][   T23] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  186.877004][ T9253] loop2: detected capacity change from 0 to 256
[  187.021013][   T23] usb 1-1: config 1 has an invalid descriptor of length 222, skipping remainder of the config
[  187.066233][   T23] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  187.090646][   T23] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  187.096637][ T9258] netlink: 'syz.4.1360': attribute type 1 has an invalid length.
[  187.105716][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  187.116401][   T23] usb 1-1: SerialNumber: syz
[  187.122358][ T9258] netlink: 244 bytes leftover after parsing attributes in process `syz.4.1360'.
[  187.139157][   T23] usb 1-1: 0:2 : does not exist
[  187.442183][    T9] usb 1-1: USB disconnect, device number 6
[  187.520630][ T9273] loop2: detected capacity change from 0 to 16
[  187.556623][ T9273] erofs: (device loop2): mounted with root inode @ nid 36.
[  187.583608][ T9273] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  187.597517][ T9276] loop4: detected capacity change from 0 to 128
[  187.617160][ T9273] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -10 in[58, 4038] out[1851]
[  187.647564][ T9276] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  187.648262][ T9273] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  187.713800][ T9276] ext4 filesystem being mounted at /223/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  187.850589][ T6481] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  187.982388][ T9286] Cannot find add_set index 4 as target
[  188.059717][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.168056][ T9293] tmpfs: Bad value for 'mpol'
[  188.321415][ T9299] loop4: detected capacity change from 0 to 4096
[  188.439097][ T9304] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  188.762270][ T9318] loop3: detected capacity change from 0 to 64
[  189.151875][ T9332] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  189.273887][ T9336] netlink: 'syz.0.1398': attribute type 3 has an invalid length.
[  189.322863][ T9338] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  189.569614][ T9344] 8021q: adding VLAN 0 to HW filter on device bond0
[  189.625562][ T9344] bond0: (slave rose0): Enslaving as an active interface with an up link
[  190.736248][ T9399] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1424'.
[  191.323363][ T9385] loop0: detected capacity change from 0 to 32768
[  191.344394][ T9420] loop3: detected capacity change from 0 to 8
[  191.375593][ T9385] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.1417 (9385)
[  191.384314][ T9420] SQUASHFS error: lzo decompression failed, data probably corrupt
[  191.436436][ T9420] SQUASHFS error: Failed to read block 0x91: -5
[  191.443878][ T9420] SQUASHFS error: Unable to read metadata cache entry [8f]
[  191.463633][ T9385] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  191.495422][ T9385] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  191.529459][ T9385] BTRFS info (device loop0): force clearing of disk cache
[  191.556034][ T9420] SQUASHFS error: Unable to read inode 0x11f
[  191.575472][ T9385] BTRFS info (device loop0): metadata ratio 0
[  191.581615][ T9385] BTRFS info (device loop0): enabling ssd optimizations
[  191.613112][ T9396] loop2: detected capacity change from 0 to 32768
[  191.635631][ T9385] BTRFS info (device loop0): using spread ssd allocation scheme
[  191.687076][ T9385] BTRFS info (device loop0): using free space tree
[  191.741225][ T9396] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  191.895542][ T9454] : renamed from veth0_to_bond (while UP)
[  191.920759][ T9385] BTRFS info (device loop0): auto enabling async discard
[  191.971272][ T9385] BTRFS info (device loop0): rebuilding free space tree
[  192.072459][ T9396] XFS (loop2): Ending clean mount
[  192.117976][ T9396] XFS (loop2): Quotacheck needed: Please wait.
[  192.302673][ T9396] XFS (loop2): Quotacheck: Done.
[  192.470968][ T5790] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  192.578233][ T5791] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  193.605186][ T9464] loop3: detected capacity change from 0 to 32768
[  193.730339][ T9464] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  193.949900][ T9469] loop4: detected capacity change from 0 to 32768
[  194.072315][ T9469] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  194.141054][ T9464] XFS (loop3): Ending clean mount
[  194.176666][ T9464] XFS (loop3): Quotacheck needed: Please wait.
[  194.387744][ T9469] XFS (loop4): Ending clean mount
[  194.394519][ T9464] XFS (loop3): Quotacheck: Done.
[  194.408352][ T9469] XFS (loop4): Quotacheck needed: Please wait.
[  194.535589][ T9469] XFS (loop4): Quotacheck: Done.
[  194.594850][ T5787] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  194.702204][ T6481] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  194.738779][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  194.745648][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  196.034595][ T9570] loop4: detected capacity change from 0 to 2048
[  196.055690][    T9] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  196.106951][ T9574] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  196.197664][ T9570] CPU: 1 PID: 9570 Comm: syz.4.1474 Not tainted syzkaller #0
[  196.205370][ T9570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  196.215905][ T9570] Call Trace:
[  196.219476][ T9570]  <TASK>
[  196.222617][ T9570]  dump_stack_lvl+0x16c/0x230
[  196.227780][ T9570]  ? show_regs_print_info+0x20/0x20
[  196.233625][ T9570]  ? kmem_cache_alloc+0x14d/0x2e0
[  196.238885][ T9570]  ? __asan_memset+0x22/0x40
[  196.243868][ T9570]  ? nilfs_btree_alloc_path+0x5e5/0x600
[  196.249717][ T9570]  nilfs_btree_last_key+0x489/0x610
[  196.255491][ T9570]  nilfs_bmap_last_key+0x74/0x120
[  196.261278][ T9570]  nilfs_truncate_bmap+0xff/0x340
[  196.266674][ T9570]  ? nilfs_update_inode+0x1d0/0x1d0
[  196.272311][ T9570]  ? block_truncate_page+0x168/0x9f0
[  196.277706][ T9570]  ? nilfs_inode_sub_blocks+0xe0/0xe0
[  196.283249][ T9570]  nilfs_truncate+0x267/0x4a0
[  196.288019][ T9570]  ? nilfs_write_failed+0xa0/0xa0
[  196.294037][ T9570]  nilfs_setattr+0x211/0x2b0
[  196.298841][ T9570]  ? nilfs_clear_inode+0x280/0x280
[  196.304416][ T9570]  ? is_bad_inode+0xd/0x40
[  196.309374][ T9570]  ? evm_inode_setattr+0x94/0x6a0
[  196.314618][ T9570]  ? bpf_lsm_inode_setattr+0x9/0x10
[  196.320082][ T9570]  ? try_break_deleg+0x79/0x120
[  196.325081][ T9570]  ? nilfs_clear_inode+0x280/0x280
[  196.330310][ T9570]  notify_change+0xb0d/0xe10
[  196.335212][ T9570]  do_truncate+0x19b/0x220
[  196.339895][ T9570]  ? put_page_bootmem+0x2c0/0x2c0
[  196.345090][ T9570]  ? apparmor_file_truncate+0x23f/0x2d0
[  196.351168][ T9570]  ? ima_bprm_check+0x1f0/0x1f0
[  196.356308][ T9570]  path_openat+0x298c/0x3190
[  196.361378][ T9570]  ? do_filp_open+0x3d0/0x3d0
[  196.366278][ T9570]  do_filp_open+0x1c5/0x3d0
[  196.371045][ T9570]  ? vfs_tmpfile+0x490/0x490
[  196.375665][ T9570]  ? _raw_spin_unlock+0x28/0x40
[  196.380707][ T9570]  ? alloc_fd+0x58f/0x630
[  196.385138][ T9570]  do_sys_openat2+0x12c/0x1c0
[  196.390009][ T9570]  ? do_sys_open+0xe0/0xe0
[  196.394521][ T9570]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  196.400590][ T9570]  ? lock_chain_count+0x20/0x20
[  196.405788][ T9570]  __x64_sys_creat+0x90/0xb0
[  196.410475][ T9570]  do_syscall_64+0x55/0xb0
[  196.414892][ T9570]  ? clear_bhb_loop+0x40/0x90
[  196.419743][ T9570]  ? clear_bhb_loop+0x40/0x90
[  196.425383][ T9570]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  196.431816][ T9570] RIP: 0033:0x7ff43d78ec29
[  196.436589][ T9570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.457646][ T9570] RSP: 002b:00007ff43e565038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  196.466608][ T9570] RAX: ffffffffffffffda RBX: 00007ff43d9d5fa0 RCX: 00007ff43d78ec29
[  196.474926][ T9570] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000200000000100
[  196.483116][ T9570] RBP: 00007ff43d811e41 R08: 0000000000000000 R09: 0000000000000000
[  196.491444][ T9570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  196.499786][ T9570] R13: 00007ff43d9d6038 R14: 00007ff43d9d5fa0 R15: 00007fff922b69b8
[  196.507968][ T9570]  </TASK>
[  196.511115][    C1] vkms_vblank_simulate: vblank timer overrun
[  196.536905][ T9570] NILFS (loop4): btree level mismatch (ino=16): 1 != 7
[  196.564653][ T9570] NILFS error (device loop4): nilfs_bmap_last_key: broken bmap (inode number=16)
[  196.576899][ T9570] Remounting filesystem read-only
[  196.582416][ T9570] NILFS (loop4): error -5 truncating bmap (ino=16)
[  196.611031][    T9] usb 3-1: Using ep0 maxpacket: 16
[  196.629530][    T9] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[  196.642533][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  196.685403][    T9] usb 3-1: config 0 has no interface number 0
[  196.703031][ T6481] NILFS (loop4): discard dirty page: offset=4096, ino=6
[  196.706830][    T9] usb 3-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  196.720031][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.730108][ T6481] NILFS (loop4): discard dirty block: blocknr=39, size=1024
[  196.736043][    T9] usb 3-1: Product: syz
[  196.750373][    T9] usb 3-1: Manufacturer: syz
[  196.752665][ T6481] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  196.766010][    T9] usb 3-1: SerialNumber: syz
[  196.776782][    T9] usb 3-1: config 0 descriptor??
[  196.779666][ T6481] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  196.801279][ T6481] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  196.815645][ T5794] Bluetooth: hci0: command 0x0406 tx timeout
[  196.822530][ T6481] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[  196.822824][ T5793] Bluetooth: hci2: command 0x0406 tx timeout
[  196.833578][ T5802] Bluetooth: hci1: command 0x0406 tx timeout
[  197.004846][    T9] usb 3-1: Found UVC 0.00 device syz (046d:08d3)
[  197.032485][    T9] usb 3-1: No valid video chain found.
[  197.273527][    T9] usb 3-1: USB disconnect, device number 10
[  197.544351][ T9612] 9pnet_fd: p9_fd_create_tcp (9612): problem connecting socket to 127.0.0.1
[  197.565949][ T9615] loop4: detected capacity change from 0 to 8
[  197.863325][ T9623] netlink: 'syz.3.1500': attribute type 5 has an invalid length.
[  197.999399][ T9631] netlink: 'syz.3.1504': attribute type 1 has an invalid length.
[  197.999422][ T9631] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1504'.
[  198.288752][   T27] audit: type=1326 audit(1758299531.068:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9640 comm="syz.2.1508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  198.308286][ T9643] tmpfs: Bad value for 'huge'
[  198.374880][   T27] audit: type=1326 audit(1758299531.068:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9640 comm="syz.2.1508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  198.445460][   T27] audit: type=1326 audit(1758299531.118:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9640 comm="syz.2.1508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  198.534048][   T27] audit: type=1326 audit(1758299531.118:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9640 comm="syz.2.1508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  198.557661][    C1] vkms_vblank_simulate: vblank timer overrun
[  198.561818][ T9649] loop2: detected capacity change from 0 to 2048
[  198.605504][   T27] audit: type=1326 audit(1758299531.118:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9640 comm="syz.2.1508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  198.619937][ T9649] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  198.678861][ T9649] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  199.175471][    T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  199.375653][    T9] usb 1-1: Using ep0 maxpacket: 16
[  199.402407][    T9] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  199.412088][ T9655] loop3: detected capacity change from 0 to 32768
[  199.435236][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.466121][    T9] usb 1-1: Product: syz
[  199.471297][    T9] usb 1-1: Manufacturer: syz
[  199.479319][    T9] usb 1-1: SerialNumber: syz
[  199.497272][ T9655] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  199.515640][    T9] r8152-cfgselector 1-1: config 0 descriptor??
[  199.515828][ T9685] netlink: 'syz.4.1528': attribute type 10 has an invalid length.
[  199.556608][ T9685] syz_tun: entered promiscuous mode
[  199.607932][ T9685] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  199.693498][ T9655] XFS (loop3): Ending clean mount
[  199.744092][ T9655] XFS (loop3): Quotacheck needed: Please wait.
[  199.822550][ T9655] XFS (loop3): Quotacheck: Done.
[  199.942405][ T5787] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  199.972241][    T9] r8152-cfgselector 1-1: Unknown version 0x0000
[  200.002745][    T9] r8152-cfgselector 1-1: USB disconnect, device number 7
[  200.309254][ T9682] loop2: detected capacity change from 0 to 32768
[  200.460782][ T2923] read_mapping_page failed!
[  200.479468][ T2923] ERROR: (device loop2): txCommit: 
[  200.479468][ T2923] 
[  200.514742][ T2923] jfs_write_inode: jfs_commit_inode failed!
[  200.732749][ T9702] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1530'.
[  201.468835][ T9724] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1545'.
[  201.525522][ T9730] loop2: detected capacity change from 0 to 164
[  201.645451][ T9730] iso9660: Corrupted directory entry in block 2 of inode 1920
[  201.774336][ T9738] loop3: detected capacity change from 0 to 256
[  201.816286][ T9738] exfat: Deprecated parameter 'namecase'
[  201.890390][ T9742] PKCS8: Unsupported PKCS#8 version
[  201.901690][ T9738] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x3d8a7575, utbl_chksum : 0xe619d30d)
[  202.036109][ T9738] exFAT-fs (loop3): error, tried to truncate zeroed cluster.
[  202.185213][ T9751] loop0: detected capacity change from 0 to 1024
[  202.361633][ T2923] hfsplus: b-tree write err: -5, ino 4
[  202.370516][ T9758] loop3: detected capacity change from 0 to 512
[  202.405586][   T23] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  202.477759][ T9758] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.515648][ T9758] ext4 filesystem being mounted at /404/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.558588][ T9758] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  202.574037][ T9758] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 64512
[  202.585146][ T9758] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1561: Failed to acquire dquot type 0
[  202.608893][   T23] usb 3-1: unable to get BOS descriptor or descriptor too short
[  202.618178][   T23] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  202.634976][   T23] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  202.646167][   T23] usb 3-1: config 1 has no interface number 1
[  202.652776][   T23] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  202.672928][   T23] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  202.691176][   T23] usb 3-1: New USB device strings: Mfr=20, Product=2, SerialNumber=3
[  202.707769][ T9767] loop0: detected capacity change from 0 to 256
[  202.714283][   T23] usb 3-1: Product: syz
[  202.721156][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.731065][   T23] usb 3-1: Manufacturer: syz
[  202.742062][ T9767] exfat: Deprecated parameter 'namecase'
[  202.749233][   T23] usb 3-1: SerialNumber: syz
[  202.754263][ T9767] exfat: Deprecated parameter 'namecase'
[  202.787150][ T9767] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  202.810223][ T9771] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  202.819542][ T9771] overlayfs: missing 'lowerdir'
[  202.936817][ T9767] exFAT-fs (loop0): invalid start cluster (4278190088)
[  203.034893][   T23] usb 3-1: USB disconnect, device number 11
[  203.124898][ T9243] udevd[9243]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  203.283859][ T9782] loop4: detected capacity change from 0 to 256
[  203.344523][ T9782] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  203.638780][ T9791] loop4: detected capacity change from 0 to 2048
[  203.642878][ T9795] netlink: 197276 bytes leftover after parsing attributes in process `syz.0.1578'.
[  203.813383][ T9799] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1579'.
[  203.834065][ T9799] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1579'.
[  204.627008][   T23] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  204.644309][ T9825] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  204.761262][ T9832] IPVS: set_ctl: invalid protocol: 41 172.30.0.5:65534
[  204.847447][   T23] usb 1-1: config index 0 descriptor too short (expected 69, got 36)
[  204.866639][   T23] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  204.898176][   T23] usb 1-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b7.89
[  204.918877][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.945584][   T23] usb 1-1: Product: syz
[  204.949808][   T23] usb 1-1: Manufacturer: syz
[  204.979027][   T23] usb 1-1: SerialNumber: syz
[  205.003933][   T23] usb 1-1: config 0 descriptor??
[  205.018440][   T23] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622
[  205.469262][   T23] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71
[  205.485593][   T23] gspca_pac7302: probe of 1-1:0.0 failed with error -71
[  205.524967][   T23] usb 1-1: USB disconnect, device number 8
[  205.631602][ T9837] loop3: detected capacity change from 0 to 32768
[  205.674791][ T9837] (syz.3.1598,9837,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  205.716446][ T9837] (syz.3.1598,9837,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  205.766374][ T9837] JBD2: Ignoring recovery information on journal
[  205.842059][ T9837] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  206.320865][ T5787] ocfs2: Unmounting device (7,3) on (node local)
[  206.330194][ T9849] loop4: detected capacity change from 0 to 32768
[  206.441090][ T9849] JFS: metapage_get_blocks failed
[  206.450802][ T9849] ERROR: (device loop4): release_metapage: metapage_write_one() failed
[  206.450802][ T9849] 
[  206.498090][ T9849] ERROR: (device loop4): remounting filesystem as read-only
[  206.626073][  T111] blkno = 8ed2c, nblocks = 1
[  206.631085][  T111] ERROR: (device loop4): dbUpdatePMap: blocks are outside the map
[  206.631085][  T111] 
[  206.883018][ T9887] netlink: 'syz.3.1616': attribute type 10 has an invalid length.
[  206.993868][ T9877] loop0: detected capacity change from 0 to 32768
[  207.045703][ T9877] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.1610 (9877)
[  207.098030][ T9877] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  207.133846][ T9877] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  207.163620][ T9895] netlink: 'syz.2.1619': attribute type 9 has an invalid length.
[  207.178630][ T9877] BTRFS info (device loop0): using free space tree
[  207.356467][ T9877] BTRFS info (device loop0): enabling ssd optimizations
[  207.364024][ T9877] BTRFS info (device loop0): auto enabling async discard
[  207.461723][ T9919] loop3: detected capacity change from 0 to 512
[  207.518620][ T5790] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  207.973750][ T9927] netlink: 136 bytes leftover after parsing attributes in process `syz.4.1628'.
[  208.117601][ T9931] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  208.166376][ T9931] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  208.246205][ T9935] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1626'.
[  208.417037][ T9941] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1633'.
[  208.428880][ T9941] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1633'.
[  208.510840][ T9939] loop3: detected capacity change from 0 to 4096
[  208.594180][ T9939] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  208.654429][ T9939] ntfs3: loop3: Failed to load $Extend (-22).
[  208.684393][ T9939] ntfs3: loop3: Failed to initialize $Extend.
[  208.898384][ T9957] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1642'.
[  208.914664][ T9957] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1642'.
[  208.944718][ T9959] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1643'.
[  209.116062][ T9965] loop4: detected capacity change from 0 to 1024
[  209.171197][ T9965] hfsplus: catalog name length corrupted
[  209.221681][ T9971] afs: Bad value for 'source'
[  209.502312][ T9977] loop2: detected capacity change from 0 to 1024
[  209.533713][ T9977] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  209.557493][ T9977] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  209.571272][ T9977] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  209.600543][ T9977] EXT4-fs (loop2): orphan cleanup on readonly fs
[  209.628588][ T9977] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.1652: Inode bitmap for bg 0 marked uninitialized
[  209.657078][ T9977] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  209.701771][ T9977] EXT4-fs (loop2): ext4_remount: Checksum for group 0 failed (32298!=35945)
[  209.793637][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.870198][ T9990] netlink: 'syz.4.1658': attribute type 3 has an invalid length.
[  209.912558][ T9990] netlink: 46 bytes leftover after parsing attributes in process `syz.4.1658'.
[  210.144680][ T9998] loop4: detected capacity change from 0 to 1024
[  210.312172][ T9998] hfsplus: inconsistency in B*Tree (0,1,255,1,0)
[  210.332510][ T9998] hfsplus: inconsistency in B*Tree (0,1,255,1,0)
[  210.438685][ T7775] hfsplus: b-tree write err: -5, ino 4
[  210.659888][T10019] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1672'.
[  211.057297][T10008] loop2: detected capacity change from 0 to 32768
[  211.073721][T10008] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1667 (10008)
[  211.128148][T10008] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  211.155043][T10008] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  211.180262][T10008] BTRFS info (device loop2): using free space tree
[  211.184675][T10016] loop4: detected capacity change from 0 to 32768
[  211.210365][T10016] (syz.4.1670,10016,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  211.245409][T10016] (syz.4.1670,10016,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  211.312908][T10008] BTRFS info (device loop2): enabling ssd optimizations
[  211.325717][T10008] BTRFS info (device loop2): auto enabling async discard
[  211.374832][T10016] JBD2: Ignoring recovery information on journal
[  211.493283][T10016] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  211.788809][ T5791] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  211.857294][T10052] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1680'.
[  211.866913][T10052] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1680'.
[  211.881065][ T6481] ocfs2: Unmounting device (7,4) on (node local)
[  211.923372][    T9] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  212.125521][    T9] usb 1-1: Using ep0 maxpacket: 16
[  212.138114][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 11
[  212.161362][    T9] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  212.201437][    T9] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  212.253500][    T9] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  212.305385][    T9] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  212.325728][    T9] usb 1-1: config 1 interface 0 has no altsetting 0
[  212.339764][    T9] usb 1-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  212.385490][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.432289][    T9] ums-sddr09 1-1:1.0: USB Mass Storage device detected
[  212.666112][    T9] scsi host1: usb-storage 1-1:1.0
[  212.686697][ T5834] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  212.709475][T10074] libceph: resolve '400' (ret=-3): failed
[  212.847745][T10081] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1691'.
[  212.861492][T10081] openvswitch: netlink: Message has 8 unknown bytes.
[  212.904887][   T23] usb 1-1: USB disconnect, device number 9
[  212.920053][ T5834] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  212.939298][ T5834] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.971169][ T5834] usb 4-1: config 0 descriptor??
[  212.987256][ T5834] cp210x 4-1:0.0: cp210x converter detected
[  213.177286][T10091] loop2: detected capacity change from 0 to 128
[  213.242591][ T5834] usb 4-1: cp210x converter now attached to ttyUSB0
[  213.369348][T10096] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1698'.
[  213.379072][T10096] netlink: 'syz.2.1698': attribute type 2 has an invalid length.
[  213.387977][T10096] netlink: 'syz.2.1698': attribute type 1 has an invalid length.
[  213.497185][ T5872] usb 4-1: USB disconnect, device number 6
[  213.497343][T10098] netlink: 'syz.2.1699': attribute type 1 has an invalid length.
[  213.531321][ T5872] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  213.541679][T10098] netlink: 244 bytes leftover after parsing attributes in process `syz.2.1699'.
[  213.562177][ T5872] cp210x 4-1:0.0: device disconnected
[  213.651336][T10101] loop4: detected capacity change from 0 to 4096
[  213.824376][T10101] ntfs3: loop4: ino=5, "/" directory corrupted
[  213.924617][T10108] loop0: detected capacity change from 0 to 256
[  214.012526][T10108] FAT-fs (loop0): Directory bread(block 64) failed
[  214.039900][T10108] FAT-fs (loop0): Directory bread(block 65) failed
[  214.064830][T10108] FAT-fs (loop0): Directory bread(block 66) failed
[  214.083171][T10108] FAT-fs (loop0): Directory bread(block 67) failed
[  214.107699][T10108] FAT-fs (loop0): Directory bread(block 68) failed
[  214.114577][T10108] FAT-fs (loop0): Directory bread(block 69) failed
[  214.169507][T10108] FAT-fs (loop0): Directory bread(block 70) failed
[  214.196977][T10108] FAT-fs (loop0): Directory bread(block 71) failed
[  214.203752][T10108] FAT-fs (loop0): Directory bread(block 72) failed
[  214.225657][T10108] FAT-fs (loop0): Directory bread(block 73) failed
[  214.395547][T10120] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1710'.
[  214.411049][T10108] syz.0.1704: attempt to access beyond end of device
[  214.411049][T10108] loop0: rw=2051, sector=1224, nr_sectors = 32 limit=256
[  214.485462][ T5834] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  214.687505][ T5834] usb 4-1: Using ep0 maxpacket: 32
[  214.695390][ T5779] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  214.734071][ T5834] usb 4-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  214.745315][ T5834] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.758984][ T5834] usb 4-1: Product: syz
[  214.763303][ T5834] usb 4-1: Manufacturer: syz
[  214.769633][ T5834] usb 4-1: SerialNumber: syz
[  214.782757][ T5834] usb 4-1: config 0 descriptor??
[  214.907339][ T5779] usb 5-1: config 220 has an invalid interface number: 76 but max is 2
[  214.924716][ T5779] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  214.953842][ T5779] usb 5-1: config 220 has no interface number 2
[  214.962116][ T5779] usb 5-1: config 220 interface 1 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  214.973123][ T5779] usb 5-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[  215.016381][ T5779] usb 5-1: config 220 interface 0 has no altsetting 0
[  215.024374][ T5779] usb 5-1: config 220 interface 76 has no altsetting 0
[  215.033038][ T5779] usb 5-1: config 220 interface 1 has no altsetting 0
[  215.049448][ T5779] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  215.070963][ T5779] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.086150][ T5779] usb 5-1: Product: syz
[  215.102356][ T5779] usb 5-1: Manufacturer: syz
[  215.107683][ T5779] usb 5-1: SerialNumber: syz
[  215.222751][ T5834] airspy 4-1:0.0: usb_control_msg() failed -71 request 0a
[  215.235820][ T5834] airspy 4-1:0.0: Could not detect board
[  215.242309][ T5834] airspy: probe of 4-1:0.0 failed with error -71
[  215.251822][ T5834] usb 4-1: USB disconnect, device number 7
[  215.305435][   T23] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  215.341425][ T5779] usb 5-1: selecting invalid altsetting 0
[  215.355042][ T5779] usb 5-1: Found UVC 7.01 device syz (8086:0b07)
[  215.362153][ T5779] usb 5-1: No valid video chain found.
[  215.383676][ T5779] usb 5-1: selecting invalid altsetting 0
[  215.390255][ T5779] usbtest: probe of 5-1:220.1 failed with error -22
[  215.402615][ T5779] usb 5-1: USB disconnect, device number 6
[  215.506213][   T23] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  215.524472][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.535125][   T23] usb 1-1: Product: syz
[  215.539774][   T23] usb 1-1: Manufacturer: syz
[  215.545055][   T23] usb 1-1: SerialNumber: syz
[  215.561723][   T23] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  215.592501][ T5834] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  215.782678][T10160] loop2: detected capacity change from 0 to 512
[  215.793227][T10160] EXT4-fs: Ignoring removed nomblk_io_submit option
[  215.802898][T10160] EXT4-fs: Ignoring removed i_version option
[  215.867055][ T5103] Bluetooth: hci2: unexpected event for opcode 0x2023
[  215.891109][T10163] Cannot find add_set index 4 as target
[  216.015749][T10160] EXT4-fs (loop2): 1 orphan inode deleted
[  216.024081][T10160] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.068818][   T23] usb 1-1: USB disconnect, device number 10
[  216.214094][T10168] loop4: detected capacity change from 0 to 4096
[  216.234685][T10168] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  216.411724][T10168] ntfs3: loop4: failed to convert "c46c" to cp861
[  216.498093][  T786] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[  216.660302][ T5834] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  216.681846][ T5834] ath9k_htc: Failed to initialize the device
[  216.698109][   T23] usb 1-1: ath9k_htc: USB layer deinitialized
[  216.721492][T10180] 9pnet: Found fid 0 not clunked
[  216.725779][  T786] usb 3-1: config 0 has an invalid interface number: 120 but max is 0
[  216.749750][  T786] usb 3-1: config 0 has no interface number 0
[  216.767853][  T786] usb 3-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid maxpacket 12349, setting to 64
[  216.795348][  T786] usb 3-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  216.825538][  T786] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.852276][  T786] usb 3-1: config 0 descriptor??
[  216.876327][T10160] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  216.898209][T10184] kernel profiling enabled (shift: 17)
[  216.917810][  T786] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.120/input/input9
[  217.135818][T10192] netlink: 'syz.4.1744': attribute type 2 has an invalid length.
[  217.143948][T10192] netlink: 'syz.4.1744': attribute type 1 has an invalid length.
[  217.171794][T10192] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1744'.
[  217.256457][  T786] usb 3-1: USB disconnect, device number 12
[  217.285872][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1748'.
[  217.540642][T10208] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1753'.
[  217.550403][T10208] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1753'.
[  217.694866][T10212] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1754'.
[  217.878047][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.927545][T10216] loop0: detected capacity change from 0 to 4096
[  218.004579][T10225] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  218.253271][T10229] loop2: detected capacity change from 0 to 1764
[  218.324950][T10229] iso9660: Corrupted directory entry in block 2 of inode 1920
[  218.559269][ T5103] Bluetooth: hci3: hcon ffff88805b9ca000 sent 1 < count 7
[  218.596393][T10243] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1768'.
[  218.671387][   T27] audit: type=1326 audit(1758299551.458:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55eab8ec29 code=0x7ffc0000
[  218.764118][   T27] audit: type=1326 audit(1758299551.458:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55eab8ec29 code=0x7ffc0000
[  218.825389][   T27] audit: type=1326 audit(1758299551.498:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7f55eab8ec29 code=0x7ffc0000
[  218.880141][T10251] loop4: detected capacity change from 0 to 1024
[  218.913165][   T27] audit: type=1326 audit(1758299551.498:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55eab8ec29 code=0x7ffc0000
[  218.940437][T10251] EXT4-fs: Ignoring removed bh option
[  218.967395][T10251] EXT4-fs: inline encryption not supported
[  218.985962][T10251] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  219.013816][   T27] audit: type=1326 audit(1758299551.498:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.3.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55eab8ec29 code=0x7ffc0000
[  219.054661][T10251] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 2: comm syz.4.1774: lblock 2 mapped to illegal pblock 2 (length 1)
[  219.162716][T10251] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  219.216440][T10251] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.1774: lblock 0 mapped to illegal pblock 48 (length 1)
[  219.254292][T10251] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  219.292203][T10251] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1774: Failed to acquire dquot type 0
[  219.317178][T10251] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  219.353645][T10251] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #11: comm syz.4.1774: mark_inode_dirty error
[  219.413132][T10251] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  219.442834][T10251] EXT4-fs (loop4): 1 orphan inode deleted
[  219.453761][T10251] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.471986][   T12] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  219.514856][   T12] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  219.538847][   T12] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:1: Failed to release dquot type 0
[  219.586882][T10251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.601435][T10251] EXT4-fs error (device loop4): __ext4_get_inode_loc:4483: comm syz.4.1774: Invalid inode table block 1 in block_group 0
[  219.653243][T10251] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  219.675710][T10251] EXT4-fs error (device loop4): ext4_quota_off:7224: inode #3: comm syz.4.1774: mark_inode_dirty error
[  219.779181][T10284] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1785'.
[  220.149951][T10294] cgroup: release_agent respecified
[  220.209619][T10296] set match dimension is over the limit!
[  220.368746][T10275] loop3: detected capacity change from 0 to 32768
[  220.437358][T10275] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  220.536200][T10298] loop0: detected capacity change from 0 to 8192
[  220.596702][T10298] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  220.739706][T10275] XFS (loop3): Ending clean mount
[  220.762903][T10275] XFS (loop3): Quotacheck needed: Please wait.
[  220.838152][T10275] XFS (loop3): Quotacheck: Done.
[  221.154745][ T5787] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  221.528985][T10339] [U] 
[  221.549442][T10341] binder: BC_ATTEMPT_ACQUIRE not supported
[  221.565651][T10341] binder: 10340:10341 ioctl c0306201 2000000003c0 returned -22
[  221.971796][T10356] loop0: detected capacity change from 0 to 2048
[  222.075560][T10363] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  222.152819][T10356] NILFS error (device loop0): nilfs_check_page: bad entry in directory #2: rec_len is too small for name_len - offset=16, inode=2, rec_len=16, name_len=255
[  222.243841][T10356] Remounting filesystem read-only
[  222.405683][   T50] Bluetooth: hci3: command 0x0406 tx timeout
[  223.102170][T10401] netlink: 'syz.4.1843': attribute type 6 has an invalid length.
[  223.115346][T10401] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1843'.
[  223.205597][T10403] netlink: 'syz.0.1844': attribute type 10 has an invalid length.
[  223.223920][T10403] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1844'.
[  223.256580][T10403] ipvlan1: entered promiscuous mode
[  223.262167][T10403] ipvlan1: entered allmulticast mode
[  223.287837][T10403] veth0_vlan: entered allmulticast mode
[  223.301266][T10403] bridge0: port 3(ipvlan1) entered blocking state
[  223.349855][T10403] bridge0: port 3(ipvlan1) entered disabled state
[  223.393780][T10403] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  223.973187][T10430] loop2: detected capacity change from 0 to 4096
[  224.018892][T10430] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.353711][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.434617][T10434] loop3: detected capacity change from 0 to 32768
[  224.449372][T10444] loop0: detected capacity change from 0 to 164
[  224.481517][T10434] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.1858 (10434)
[  224.517752][T10444] Unable to read rock-ridge attributes
[  224.553237][T10444] Unable to read rock-ridge attributes
[  224.581282][T10444] iso9660: Corrupted directory entry in block 4 of inode 1792
[  224.619862][T10434] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  224.631893][T10450] tmpfs: Bad value for 'huge'
[  224.652941][T10434] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  224.714736][T10434] BTRFS info (device loop3): force clearing of disk cache
[  224.754399][T10434] BTRFS info (device loop3): metadata ratio 0
[  224.775367][T10434] BTRFS info (device loop3): enabling ssd optimizations
[  224.795895][T10434] BTRFS info (device loop3): using spread ssd allocation scheme
[  224.804433][T10434] BTRFS info (device loop3): using free space tree
[  224.867144][T10455] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1867'.
[  225.063327][T10434] BTRFS info (device loop3): auto enabling async discard
[  225.140971][T10434] BTRFS info (device loop3): rebuilding free space tree
[  225.201709][T10482] loop2: detected capacity change from 0 to 256
[  225.248648][T10482] exfat: Deprecated parameter 'utf8'
[  225.254559][T10482] exfat: Deprecated parameter 'namecase'
[  225.327618][T10482] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  225.401065][T10486] netlink: 'syz.0.1876': attribute type 21 has an invalid length.
[  225.433359][T10486] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1876'.
[  225.435750][ T5787] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  226.037305][T10499] xt_connbytes: Forcing CT accounting to be enabled
[  226.044850][T10499] xt_bpf: check failed: parse error
[  226.136108][T10502] loop4: detected capacity change from 0 to 1024
[  226.298126][T10504] loop3: detected capacity change from 0 to 8
[  226.311958][T10502] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  226.355868][T10502] hfsplus: xattr searching failed
[  226.387085][T10502] syz.4.1882: attempt to access beyond end of device
[  226.387085][T10502] loop4: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  226.455480][T10502] Buffer I/O error on dev loop4, logical block 458752, async page read
[  226.469354][T10502] hfsplus: unable to mark blocks free: error -5
[  226.505394][T10502] hfsplus: can't free extent
[  226.670598][T10491] loop2: detected capacity change from 0 to 32768
[  226.733699][T10491] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  226.757709][T10494] loop0: detected capacity change from 0 to 32768
[  226.843511][T10518] loop4: detected capacity change from 0 to 64
[  227.119518][T10491] XFS (loop2): Ending clean mount
[  227.153967][T10491] XFS (loop2): Quotacheck needed: Please wait.
[  227.314093][T10491] XFS (loop2): Quotacheck: Done.
[  227.415978][T10506] loop3: detected capacity change from 0 to 32768
[  227.514226][ T5791] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  227.554354][ T7775] read_mapping_page failed!
[  227.571007][ T7775] ERROR: (device loop3): txCommit: 
[  227.571007][ T7775] 
[  227.622550][ T7775] jfs_write_inode: jfs_commit_inode failed!
[  228.080427][T10543] sctp: [Deprecated]: syz.4.1899 (pid 10543) Use of struct sctp_assoc_value in delayed_ack socket option.
[  228.080427][T10543] Use struct sctp_sack_info instead
[  228.760344][T10574] loop0: detected capacity change from 0 to 256
[  228.809220][T10574] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  228.934435][T10582] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  228.957583][T10582] overlayfs: missing 'lowerdir'
[  229.286997][T10596] loop0: detected capacity change from 0 to 512
[  229.362505][T10596] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.479916][T10596] ext4 filesystem being mounted at /517/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  229.576654][T10596] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  229.599332][T10596] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 64512
[  229.645566][T10596] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.1922: Failed to acquire dquot type 0
[  229.736100][T10613] virtiofs: Unknown parameter 'always'
[  229.773190][   T27] audit: type=1400 audit(1758299562.558:40): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=10614 comm="syz.3.1929"
[  229.804622][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.914573][T10620] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  230.089250][T10627] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1936'.
[  230.370973][T10639] netlink: 'syz.3.1942': attribute type 2 has an invalid length.
[  230.380021][T10633] loop2: detected capacity change from 0 to 4096
[  230.388007][T10633] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  230.409632][T10639] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1942'.
[  230.471343][T10643] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1943'.
[  230.478461][T10633] ntfs: volume version 3.1.
[  230.563782][T10633] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  230.585489][    C0] vkms_vblank_simulate: vblank timer overrun
[  230.647148][T10633] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  230.668441][    C0] vkms_vblank_simulate: vblank timer overrun
[  230.687219][T10633] ntfs: (device loop2): ntfs_cluster_alloc(): Failed to map page.
[  230.710392][T10633] ntfs: (device loop2): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -5).
[  230.770805][T10633] ntfs: (device loop2): ntfs_truncate(): Cannot truncate inode 0x43, attribute type 0x80, because the conversion from resident to non-resident attribute failed with error code -5.
[  230.945093][ T5791] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  231.116880][T10663] tmpfs: Bad value for 'mpol'
[  231.810867][T10685] loop2: detected capacity change from 0 to 128
[  231.842273][T10685] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  231.891037][T10662] loop4: detected capacity change from 0 to 32768
[  231.923414][T10662] (syz.4.1954,10662,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  231.957567][T10685] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  232.008628][T10662] (syz.4.1954,10662,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  232.149672][T10662] JBD2: Ignoring recovery information on journal
[  232.243865][T10696] loop2: detected capacity change from 0 to 512
[  232.326148][T10662] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  232.683454][ T6481] ocfs2: Unmounting device (7,4) on (node local)
[  233.078616][T10716] loop4: detected capacity change from 0 to 512
[  233.110509][T10719] netlink: 'syz.3.1979': attribute type 9 has an invalid length.
[  233.112329][T10716] EXT4-fs: Ignoring removed mblk_io_submit option
[  233.169726][T10716] EXT4-fs (loop4): orphan cleanup on readonly fs
[  233.215632][T10716] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13
[  233.293152][T10716] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.1975: attempt to clear invalid blocks 2 len 1
[  233.366480][T10716] EXT4-fs (loop4): Remounting filesystem read-only
[  233.378763][T10727] netlink: 136 bytes leftover after parsing attributes in process `syz.0.1984'.
[  233.401656][T10716] EXT4-fs (loop4): 1 truncate cleaned up
[  233.413015][T10729] loop2: detected capacity change from 0 to 512
[  233.416573][T10716] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  233.452478][T10729] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  233.475459][    T9] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  233.510031][T10729] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  233.531020][T10729] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  233.583337][T10729] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  233.616771][T10729] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  233.635631][T10729] System zones: 0-2, 18-18, 34-35
[  233.670874][T10729] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.688929][    T9] usb 4-1: config index 0 descriptor too short (expected 69, got 36)
[  233.705761][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  233.712363][ T6481] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.728269][    T9] usb 4-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b7.89
[  233.738588][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.751309][    T9] usb 4-1: Product: syz
[  233.768952][    T9] usb 4-1: Manufacturer: syz
[  233.773710][    T9] usb 4-1: SerialNumber: syz
[  233.832802][    T9] usb 4-1: config 0 descriptor??
[  233.871878][    T9] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622
[  233.915186][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.943374][T10739] loop4: detected capacity change from 0 to 64
[  233.990870][T10739] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended.  mounting read-only.
[  234.035422][T10739] hfs: filesystem is marked locked, mounting read-only.
[  234.062908][T10742] binfmt_misc: register: failed to install interpreter file ./file1
[  234.237042][T10746] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  234.268700][T10746] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  234.295663][    T9] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71
[  234.303288][    T9] gspca_pac7302: probe of 4-1:0.0 failed with error -71
[  234.327898][    T9] usb 4-1: USB disconnect, device number 8
[  234.495463][    T8] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  234.685458][    T8] usb 3-1: Using ep0 maxpacket: 8
[  234.695774][    T8] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  234.714104][    T8] usb 3-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  234.730834][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.749903][    T8] usb 3-1: config 0 descriptor??
[  234.763377][    T8] gspca_main: vc032x-2.14.0 probing 046d:0892
[  234.833337][T10766] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2002'.
[  234.843359][T10766] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  235.107899][T10760] loop0: detected capacity change from 0 to 32768
[  235.146150][T10775] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-xor(2)
[  235.167607][    T8] gspca_vc032x: reg_w err -71
[  235.172502][    T8] vc032x: probe of 3-1:0.0 failed with error -71
[  235.195957][T10760] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  235.226841][    T8] usb 3-1: USB disconnect, device number 13
[  235.379864][T10760] XFS (loop0): Ending clean mount
[  235.415017][T10760] XFS (loop0): Quotacheck needed: Please wait.
[  235.521003][T10760] XFS (loop0): Quotacheck: Done.
[  235.804329][ T5790] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  236.030994][T10806] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2017'.
[  236.156618][T10810] loop3: detected capacity change from 0 to 64
[  236.190149][T10809] netlink: 92 bytes leftover after parsing attributes in process `syz.2.2019'.
[  236.213671][T10809] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2019'.
[  236.238727][T10810] hfs: filesystem is marked locked, mounting read-only.
[  236.313039][T10810] hfs: filesystem is marked locked, leaving read-only.
[  236.395546][T10814] netlink: 'syz.0.2016': attribute type 3 has an invalid length.
[  236.423868][T10814] netlink: 46 bytes leftover after parsing attributes in process `syz.0.2016'.
[  236.772137][T10830] loop2: detected capacity change from 0 to 1024
[  236.835688][ T5779] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  237.035365][ T5779] usb 5-1: Using ep0 maxpacket: 8
[  237.051103][T10842] netlink: 'syz.0.2035': attribute type 1 has an invalid length.
[  237.067449][ T5779] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  237.069521][T10842] netlink: 216 bytes leftover after parsing attributes in process `syz.0.2035'.
[  237.084434][ T5779] usb 5-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  237.135420][ T5779] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.173825][ T5779] usb 5-1: Product: syz
[  237.185800][ T5779] usb 5-1: Manufacturer: syz
[  237.195584][T10846] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2037'.
[  237.198651][ T5779] usb 5-1: SerialNumber: syz
[  237.221270][ T5779] usb 5-1: config 0 descriptor??
[  237.230331][T10846] netlink: 'syz.3.2037': attribute type 2 has an invalid length.
[  237.234647][ T5779] streamzap 5-1:0.0: streamzap_probe: endpoint doesn't match input device 0203
[  237.252299][T10846] netlink: 'syz.3.2037': attribute type 1 has an invalid length.
[  237.525085][    T8] usb 5-1: USB disconnect, device number 7
[  237.705437][ T5779] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  237.762050][T10868] loop3: detected capacity change from 0 to 16
[  237.772180][T10868] erofs: (device loop3): mounted with root inode @ nid 36.
[  237.905550][ T5779] usb 3-1: Using ep0 maxpacket: 16
[  237.921295][ T5779] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  237.942446][ T5779] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  237.957224][ T5779] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  237.970192][ T5779] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.982794][ T5779] usb 3-1: Product: syz
[  237.982815][ T5779] usb 3-1: Manufacturer: syz
[  237.982829][ T5779] usb 3-1: SerialNumber: syz
[  238.342240][T10886] loop3: detected capacity change from 0 to 764
[  238.410310][ T5779] usb 3-1: cannot find UAC_HEADER
[  238.515404][ T5779] snd-usb-audio: probe of 3-1:1.0 failed with error -22
[  238.538388][ T5779] usb 3-1: USB disconnect, device number 14
[  238.552090][T10892] loop3: detected capacity change from 0 to 256
[  238.574190][ T9243] udevd[9243]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  238.592439][T10892] FAT-fs (loop3): Directory bread(block 64) failed
[  238.626345][T10892] FAT-fs (loop3): Directory bread(block 65) failed
[  238.650628][T10892] FAT-fs (loop3): Directory bread(block 66) failed
[  238.677492][T10892] FAT-fs (loop3): Directory bread(block 67) failed
[  238.684281][T10892] FAT-fs (loop3): Directory bread(block 68) failed
[  238.714232][T10892] FAT-fs (loop3): Directory bread(block 69) failed
[  238.746266][T10892] FAT-fs (loop3): Directory bread(block 70) failed
[  238.752999][T10892] FAT-fs (loop3): Directory bread(block 71) failed
[  238.773418][T10892] FAT-fs (loop3): Directory bread(block 72) failed
[  238.795464][T10892] FAT-fs (loop3): Directory bread(block 73) failed
[  238.924851][T10892] syz.3.2058: attempt to access beyond end of device
[  238.924851][T10892] loop3: rw=2051, sector=1224, nr_sectors = 32 limit=256
[  239.016861][T10902] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2063'.
[  239.028276][T10902] openvswitch: netlink: Message has 8 unknown bytes.
[  239.436432][T10917] loop3: detected capacity change from 0 to 128
[  239.637716][T10928] loop4: detected capacity change from 0 to 128
[  239.804539][T10930] loop3: detected capacity change from 0 to 4096
[  239.853173][T10930] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  240.022914][T10930] ntfs: volume version 3.1.
[  240.164222][T10945] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2083'.
[  240.573509][T10956] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2090'.
[  240.625113][T10962] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2091'.
[  241.152916][T10984] loop2: detected capacity change from 0 to 256
[  241.252126][T10984] FAT-fs (loop2): Directory bread(block 64) failed
[  241.286233][T10984] FAT-fs (loop2): Directory bread(block 65) failed
[  241.317165][T10984] FAT-fs (loop2): Directory bread(block 66) failed
[  241.323935][T10984] FAT-fs (loop2): Directory bread(block 67) failed
[  241.362629][T10984] FAT-fs (loop2): Directory bread(block 68) failed
[  241.387338][T10984] FAT-fs (loop2): Directory bread(block 69) failed
[  241.428452][T10984] FAT-fs (loop2): Directory bread(block 70) failed
[  241.435104][T10984] FAT-fs (loop2): Directory bread(block 71) failed
[  241.446643][T10984] FAT-fs (loop2): Directory bread(block 72) failed
[  241.472444][T10984] FAT-fs (loop2): Directory bread(block 73) failed
[  241.776927][T11006] 9pnet: Found fid 0 not clunked
[  242.406333][T11032] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2126'.
[  242.992954][   T27] audit: type=1326 audit(1758299575.778:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11056 comm="syz.0.2147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc8718ec29 code=0x7ffc0000
[  243.017344][    C1] vkms_vblank_simulate: vblank timer overrun
[  243.071392][   T27] audit: type=1326 audit(1758299575.808:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11056 comm="syz.0.2147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc8718ec29 code=0x7ffc0000
[  243.177524][   T27] audit: type=1326 audit(1758299575.828:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11056 comm="syz.0.2147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7fdc8718ec29 code=0x7ffc0000
[  243.183174][T11065] xt_l2tp: v2 doesn't support IP mode
[  243.229826][   T27] audit: type=1326 audit(1758299575.828:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11056 comm="syz.0.2147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc8718ec29 code=0x7ffc0000
[  243.285670][   T27] audit: type=1326 audit(1758299575.828:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11056 comm="syz.0.2147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc8718ec29 code=0x7ffc0000
[  243.929234][T11096] loop0: detected capacity change from 0 to 1764
[  243.938106][T11099] loop4: detected capacity change from 0 to 256
[  243.963002][T11099] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d)
[  243.995481][T11096] iso9660: Corrupted directory entry in block 2 of inode 1920
[  244.435495][T11107] loop2: detected capacity change from 0 to 8192
[  244.488979][T11107] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  244.522104][T11114] cgroup: release_agent respecified
[  244.882259][T11123] loop0: detected capacity change from 0 to 4096
[  244.990028][T11123] ntfs: volume version 3.1.
[  245.035950][T11123] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  245.084349][   T27] audit: type=1326 audit(1758299577.868:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11133 comm="syz.2.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  245.091115][T11123] ntfs: (device loop0): load_and_init_quota(): Failed to find inode number for $Quota.
[  245.107521][    C0] vkms_vblank_simulate: vblank timer overrun
[  245.166657][   T27] audit: type=1326 audit(1758299577.868:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11133 comm="syz.2.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  245.184357][T11123] ntfs: (device loop0): load_system_files(): Failed to load $Quota.  Mounting read-only.  Run chkdsk.
[  245.189472][    C0] vkms_vblank_simulate: vblank timer overrun
[  245.251708][T11123] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  245.271938][   T27] audit: type=1326 audit(1758299577.898:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11133 comm="syz.2.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  245.283430][T11123] ntfs: (device loop0): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl.
[  245.349712][   T27] audit: type=1326 audit(1758299577.898:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11133 comm="syz.2.2176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784a18ec29 code=0x7ffc0000
[  245.351256][T11123] ntfs: (device loop0): load_system_files(): Failed to load $UsnJrnl.  Will not be able to remount read-write.  Run chkdsk.
[  245.372408][    C0] vkms_vblank_simulate: vblank timer overrun
[  245.686105][   T23] usb 3-1: new full-speed USB device number 15 using dummy_hcd
[  245.713006][T11151] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2185'.
[  245.722666][T11151] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2185'.
[  245.750412][T11151] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2185'.
[  245.767044][T11156] loop4: detected capacity change from 0 to 8
[  245.900325][   T23] usb 3-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  245.930358][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  245.961034][   T23] usb 3-1: Product: syz
[  245.971171][   T23] usb 3-1: Manufacturer: syz
[  245.985810][   T23] usb 3-1: SerialNumber: syz
[  245.998566][   T23] usb 3-1: config 0 descriptor??
[  246.024774][   T23] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  246.044634][T11161] [U] 
[  246.100218][T11164] binder: BC_ATTEMPT_ACQUIRE not supported
[  246.115498][T11164] binder: 11163:11164 ioctl c0306201 2000000003c0 returned -22
[  246.205024][T11167] geneve2: entered promiscuous mode
[  246.230639][T11167] geneve2: entered allmulticast mode
[  246.435557][   T23] gspca_stk1135: reg_w 0x0 err -71
[  246.441780][   T23] gspca_stk1135: serial bus timeout: status=0x00
[  246.467446][   T23] gspca_stk1135: Sensor write failed
[  246.472978][   T23] gspca_stk1135: serial bus timeout: status=0x00
[  246.485830][   T23] gspca_stk1135: Sensor write failed
[  246.491282][   T23] gspca_stk1135: serial bus timeout: status=0x00
[  246.500655][   T23] gspca_stk1135: Sensor read failed
[  246.507226][   T23] gspca_stk1135: serial bus timeout: status=0x00
[  246.513902][   T23] gspca_stk1135: Sensor read failed
[  246.535684][   T23] gspca_stk1135: Detected sensor type unknown (0x0)
[  246.556292][   T23] gspca_stk1135: serial bus timeout: status=0x00
[  246.581248][   T23] gspca_stk1135: Sensor read failed
[  246.586904][   T23] gspca_stk1135: serial bus timeout: status=0x00
[  246.593354][   T23] gspca_stk1135: Sensor read failed
[  246.611597][   T23] gspca_stk1135: serial bus timeout: status=0x00
[  246.643515][   T23] gspca_stk1135: Sensor write failed
[  246.655894][   T23] gspca_stk1135: serial bus timeout: status=0x00
[  246.662891][   T23] gspca_stk1135: Sensor write failed
[  246.666907][T11180] loop0: detected capacity change from 0 to 2048
[  246.681543][   T23] stk1135: probe of 3-1:0.0 failed with error -71
[  246.715404][   T23] usb 3-1: USB disconnect, device number 15
[  246.725917][T11180] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  247.186086][T11200] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2217'.
[  247.196522][T11200] unsupported nlmsg_type 40
[  247.278398][T11202] netlink: 'syz.4.2209': attribute type 12 has an invalid length.
[  247.570580][T11214] netlink: 'syz.4.2215': attribute type 10 has an invalid length.
[  247.606227][T11214] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  247.641109][T11214] team0: Port device virt_wifi0 added
[  248.209168][T11236] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (4)
[  248.315133][T11240] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  248.355109][T11217] loop3: detected capacity change from 0 to 32768
[  248.443991][T11217] __jfs_setxattr: xattr_size = 82, new_size = 12061
[  248.542809][T11245] netlink: 'syz.4.2232': attribute type 1 has an invalid length.
[  248.937852][T11254] 9pnet_fd: p9_fd_create_tcp (11254): problem connecting socket to 127.0.0.1
[  248.992687][T11258] netlink: 2 bytes leftover after parsing attributes in process `syz.2.2239'.
[  249.146752][T11262] loop3: detected capacity change from 0 to 256
[  249.175190][T11262] exfat: Deprecated parameter 'utf8'
[  249.181423][T11262] exfat: Deprecated parameter 'namecase'
[  249.211165][T11262] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  249.252502][T11264] loop2: detected capacity change from 0 to 1764
[  249.512307][T11266] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2243'.
[  249.601165][T11269] loop2: detected capacity change from 0 to 128
[  249.629419][T11269] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  249.710240][T11269] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  249.962854][T11260] loop4: detected capacity change from 0 to 32768
[  249.973395][T11238] loop0: detected capacity change from 0 to 65536
[  249.988791][T11260] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.2240 (11260)
[  250.081122][T11260] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  250.108501][T11238] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  250.117905][T11260] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  250.156729][T11260] BTRFS info (device loop4): force clearing of disk cache
[  250.211719][T11260] BTRFS info (device loop4): metadata ratio 0
[  250.240252][T11260] BTRFS info (device loop4): enabling ssd optimizations
[  250.271599][T11238] XFS (loop0): Ending clean mount
[  250.287190][T11260] BTRFS info (device loop4): using spread ssd allocation scheme
[  250.311331][T11238] XFS (loop0): Quotacheck needed: Please wait.
[  250.330975][T11260] BTRFS info (device loop4): using free space tree
[  250.400328][ T2923] XFS (loop0): Metadata corruption detected at xfs_dinode_verify+0x2b9/0x1140, inode 0x25 dinode
[  250.445461][ T2923] XFS (loop0): Unmount and run xfs_repair
[  250.452217][ T2923] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[  250.460030][ T2923] 00000000: 49 4e a1 ff 03 01 00 00 00 00 00 00 00 00 00 00  IN..............
[  250.469590][ T2923] 00000010: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  250.481262][ T2923] 00000020: 34 f7 58 68 7a bb 44 4d 34 f7 58 68 7a bb 44 4d  4.Xhz.DM4.Xhz.DM
[  250.491919][ T2923] 00000030: 34 f7 58 68 7a bb 44 4d 00 00 00 00 00 00 00 27  4.Xhz.DM.......'
[  250.501787][T11260] BTRFS info (device loop4): auto enabling async discard
[  250.510084][ T2923] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  250.519424][ T2923] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 0c 44 49 b4  .............DI.
[  250.528829][ T2923] 00000060: ff ff ff ff f1 fd ce d1 00 00 00 00 00 00 00 02  ................
[  250.538395][ T2923] 00000070: 00 00 00 01 00 00 00 10 00 00 00 00 00 00 00 08  ................
[  250.554815][T11260] BTRFS info (device loop4): rebuilding free space tree
[  250.603448][T11238] XFS (loop0): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  250.690596][T11313] 
: renamed from bond_slave_0 (while UP)
[  250.775623][ T5790] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  250.886092][ T6481] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  250.916140][T11317] loop3: detected capacity change from 0 to 164
[  250.960360][T11317] Unable to read rock-ridge attributes
[  251.026878][T11317] Unable to read rock-ridge attributes
[  251.055549][T11317] iso9660: Corrupted directory entry in block 4 of inode 1792
[  252.163065][T11355] netlink: 'syz.4.2274': attribute type 21 has an invalid length.
[  252.174678][T11355] netlink: 128 bytes leftover after parsing attributes in process `syz.4.2274'.
[  252.204971][T11355] netlink: 'syz.4.2274': attribute type 4 has an invalid length.
[  252.437069][T11364] bond5: entered promiscuous mode
[  252.442436][T11364] bond5: entered allmulticast mode
[  252.525628][T11370] xt_connbytes: Forcing CT accounting to be enabled
[  252.532477][T11370] xt_bpf: check failed: parse error
[  253.251748][T11397] loop0: detected capacity change from 0 to 1024
[  253.368804][T11397] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  253.396209][T11397] hfsplus: xattr searching failed
[  253.412154][T11397] syz.0.2291: attempt to access beyond end of device
[  253.412154][T11397] loop0: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  253.445904][T11397] Buffer I/O error on dev loop0, logical block 458752, async page read
[  253.454682][T11397] hfsplus: unable to mark blocks free: error -5
[  253.464922][T11397] hfsplus: can't free extent
[  253.840161][T11388] loop3: detected capacity change from 0 to 32768
[  253.900992][T11388] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  254.162886][T11388] XFS (loop3): Ending clean mount
[  254.194203][T11388] XFS (loop3): Quotacheck needed: Please wait.
[  254.292108][T11388] XFS (loop3): Quotacheck: Done.
[  254.418283][ T5787] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  254.834085][T11452] 
: renamed from bond_slave_0 (while UP)
[  254.851355][T11454] ==================================================================
[  254.859995][T11454] BUG: KASAN: slab-use-after-free in xfrm_alloc_spi+0x598/0x11f0
[  254.868088][T11454] Read of size 4 at addr ffff88805c4f20a0 by task syz.0.2317/11454
[  254.876209][T11454] 
[  254.878553][T11454] CPU: 1 PID: 11454 Comm: syz.0.2317 Not tainted syzkaller #0
[  254.886029][T11454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  254.896236][T11454] Call Trace:
[  254.899800][T11454]  <TASK>
[  254.902929][T11454]  dump_stack_lvl+0x16c/0x230
[  254.907913][T11454]  ? __lock_acquire+0x7c80/0x7c80
[  254.913584][T11454]  ? show_regs_print_info+0x20/0x20
[  254.919800][T11454]  ? load_image+0x3b0/0x3b0
[  254.924508][T11454]  ? __virt_addr_valid+0x469/0x540
[  254.929740][T11454]  print_report+0xac/0x220
[  254.934443][T11454]  ? xfrm_alloc_spi+0x598/0x11f0
[  254.939575][T11454]  kasan_report+0x117/0x150
[  254.944105][T11454]  ? xfrm_alloc_spi+0x598/0x11f0
[  254.949751][T11454]  xfrm_alloc_spi+0x598/0x11f0
[  254.954637][T11454]  ? xfrm_alloc_spi+0x2a1/0x11f0
[  254.959798][T11454]  ? verify_spi_info+0x120/0x120
[  254.964952][T11454]  ? xfrm_find_acq+0x79/0x90
[  254.970022][T11454]  xfrm_alloc_userspi+0x5d1/0xa90
[  254.975068][T11454]  ? end_current_label_crit_section+0x170/0x170
[  254.981444][T11454]  ? apparmor_capable+0x137/0x1a0
[  254.986762][T11454]  ? xfrm_dump_policy_done+0x90/0x90
[  254.992233][T11454]  ? __nla_parse+0x40/0x50
[  254.996865][T11454]  xfrm_user_rcv_msg+0x596/0x870
[  255.002177][T11454]  ? lockdep_hardirqs_on+0x98/0x150
[  255.007447][T11454]  ? xfrm_netlink_rcv+0x90/0x90
[  255.012458][T11454]  ? __local_bh_enable_ip+0x12e/0x1c0
[  255.018137][T11454]  ? __dev_queue_xmit+0x245/0x35a0
[  255.023392][T11454]  ? __mutex_trylock_common+0x153/0x250
[  255.029062][T11454]  netlink_rcv_skb+0x216/0x480
[  255.033950][T11454]  ? xfrm_netlink_rcv+0x90/0x90
[  255.038821][T11454]  ? netlink_ack+0x1110/0x1110
[  255.043768][T11454]  ? netlink_deliver_tap+0x2e/0x1b0
[  255.048967][T11454]  ? __lock_acquire+0x7c80/0x7c80
[  255.054009][T11454]  xfrm_netlink_rcv+0x79/0x90
[  255.058868][T11454]  netlink_unicast+0x751/0x8d0
[  255.063724][T11454]  netlink_sendmsg+0x8c1/0xbe0
[  255.068489][T11454]  ? netlink_getsockopt+0x580/0x580
[  255.073944][T11454]  ? aa_sock_msg_perm+0x94/0x150
[  255.078880][T11454]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  255.084338][T11454]  ? security_socket_sendmsg+0x80/0xa0
[  255.089884][T11454]  ? netlink_getsockopt+0x580/0x580
[  255.095165][T11454]  ____sys_sendmsg+0x5bf/0x950
[  255.100015][T11454]  ? __asan_memset+0x22/0x40
[  255.104598][T11454]  ? __sys_sendmsg_sock+0x30/0x30
[  255.109621][T11454]  ? __import_iovec+0x5f2/0x860
[  255.114558][T11454]  ? import_iovec+0x73/0xa0
[  255.119483][T11454]  ___sys_sendmsg+0x220/0x290
[  255.124248][T11454]  ? __sys_sendmsg+0x270/0x270
[  255.129017][T11454]  __se_sys_sendmsg+0x1a5/0x270
[  255.133862][T11454]  ? __x64_sys_sendmsg+0x80/0x80
[  255.138980][T11454]  ? lockdep_hardirqs_on+0x98/0x150
[  255.144266][T11454]  do_syscall_64+0x55/0xb0
[  255.148672][T11454]  ? clear_bhb_loop+0x40/0x90
[  255.153456][T11454]  ? clear_bhb_loop+0x40/0x90
[  255.158186][T11454]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  255.164564][T11454] RIP: 0033:0x7fdc8718ec29
[  255.168980][T11454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  255.188779][T11454] RSP: 002b:00007fdc88039038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  255.197274][T11454] RAX: ffffffffffffffda RBX: 00007fdc873d5fa0 RCX: 00007fdc8718ec29
[  255.205418][T11454] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  255.213507][T11454] RBP: 00007fdc87211e41 R08: 0000000000000000 R09: 0000000000000000
[  255.221479][T11454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  255.229737][T11454] R13: 00007fdc873d6038 R14: 00007fdc873d5fa0 R15: 00007fff8775f318
[  255.238172][T11454]  </TASK>
[  255.241269][T11454] 
[  255.243613][T11454] Allocated by task 9724:
[  255.247952][T11454]  kasan_set_track+0x4e/0x70
[  255.252710][T11454]  __kasan_slab_alloc+0x6c/0x80
[  255.257753][T11454]  slab_post_alloc_hook+0x6e/0x4d0
[  255.262869][T11454]  kmem_cache_alloc+0x11e/0x2e0
[  255.267892][T11454]  xfrm_state_alloc+0x22/0x2a0
[  255.272647][T11454]  __find_acq_core+0x7d8/0x19d0
[  255.277505][T11454]  xfrm_find_acq+0x6a/0x90
[  255.282188][T11454]  xfrm_alloc_userspi+0x57a/0xa90
[  255.287593][T11454]  xfrm_user_rcv_msg+0x596/0x870
[  255.292608][T11454]  netlink_rcv_skb+0x216/0x480
[  255.297400][T11454]  xfrm_netlink_rcv+0x79/0x90
[  255.302298][T11454]  netlink_unicast+0x751/0x8d0
[  255.307343][T11454]  netlink_sendmsg+0x8c1/0xbe0
[  255.312103][T11454]  ____sys_sendmsg+0x5bf/0x950
[  255.317218][T11454]  ___sys_sendmsg+0x220/0x290
[  255.321893][T11454]  __se_sys_sendmsg+0x1a5/0x270
[  255.326828][T11454]  do_syscall_64+0x55/0xb0
[  255.331338][T11454]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  255.337308][T11454] 
[  255.339627][T11454] The buggy address belongs to the object at ffff88805c4f2000
[  255.339627][T11454]  which belongs to the cache xfrm_state of size 848
[  255.353689][T11454] The buggy address is located 160 bytes inside of
[  255.353689][T11454]  freed 848-byte region [ffff88805c4f2000, ffff88805c4f2350)
[  255.367770][T11454] 
[  255.370306][T11454] The buggy address belongs to the physical page:
[  255.377066][T11454] page:ffffea0001713c00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88805c4f2000 pfn:0x5c4f0
[  255.389132][T11454] head:ffffea0001713c00 order:2 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  255.398057][T11454] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  255.409429][T11454] page_type: 0xffffffff()
[  255.413749][T11454] raw: 00fff00000000840 ffff88801c2fe780 dead000000000122 0000000000000000
[  255.422595][T11454] raw: ffff88805c4f2000 0000000080100008 00000001ffffffff 0000000000000000
[  255.432837][T11454] page dumped because: kasan: bad access detected
[  255.440336][T11454] page_owner tracks the page as allocated
[  255.446356][T11454] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5880, tgid 5879 (syz.3.5), ts 76287420685, free_ts 20025595285
[  255.467103][T11454]  post_alloc_hook+0x1cd/0x210
[  255.472041][T11454]  get_page_from_freelist+0x195c/0x19f0
[  255.477689][T11454]  __alloc_pages+0x1e3/0x460
[  255.482296][T11454]  alloc_slab_page+0x5d/0x170
[  255.487357][T11454]  new_slab+0x87/0x2e0
[  255.491447][T11454]  ___slab_alloc+0xc6d/0x1300
[  255.496520][T11454]  kmem_cache_alloc+0x1b7/0x2e0
[  255.501421][T11454]  xfrm_state_alloc+0x22/0x2a0
[  255.506702][T11454]  pfkey_add+0x6e1/0x2da0
[  255.511110][T11454]  pfkey_sendmsg+0xbed/0x1050
[  255.515874][T11454]  ____sys_sendmsg+0x5bf/0x950
[  255.521013][T11454]  ___sys_sendmsg+0x220/0x290
[  255.526042][T11454]  __se_sys_sendmsg+0x1a5/0x270
[  255.531153][T11454]  do_syscall_64+0x55/0xb0
[  255.535650][T11454]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  255.541621][T11454] page last free stack trace:
[  255.546637][T11454]  free_unref_page_prepare+0x7ce/0x8e0
[  255.552354][T11454]  free_unref_page+0x32/0x2e0
[  255.557027][T11454]  free_contig_range+0xa1/0x160
[  255.562069][T11454]  destroy_args+0x80/0x850
[  255.566849][T11454]  debug_vm_pgtable+0x3cc/0x410
[  255.571784][T11454]  do_one_initcall+0x1fd/0x750
[  255.576713][T11454]  do_initcall_level+0x137/0x1f0
[  255.581902][T11454]  do_initcalls+0x69/0xd0
[  255.586563][T11454]  kernel_init_freeable+0x3d2/0x570
[  255.591926][T11454]  kernel_init+0x1d/0x1c0
[  255.596696][T11454]  ret_from_fork+0x48/0x80
[  255.601196][T11454]  ret_from_fork_asm+0x11/0x20
[  255.605950][T11454] 
[  255.608274][T11454] Memory state around the buggy address:
[  255.613974][T11454]  ffff88805c4f1f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  255.622104][T11454]  ffff88805c4f2000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.630331][T11454] >ffff88805c4f2080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.638834][T11454]                                ^
[  255.644108][T11454]  ffff88805c4f2100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.652339][T11454]  ffff88805c4f2180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  255.660559][T11454] ==================================================================
[  255.669500][T11454] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  255.677211][T11454] CPU: 1 PID: 11454 Comm: syz.0.2317 Not tainted syzkaller #0
[  255.684852][T11454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  255.695097][T11454] Call Trace:
[  255.698381][T11454]  <TASK>
[  255.701309][T11454]  dump_stack_lvl+0x16c/0x230
[  255.705983][T11454]  ? show_regs_print_info+0x20/0x20
[  255.711265][T11454]  ? load_image+0x3b0/0x3b0
[  255.715762][T11454]  panic+0x2c0/0x710
[  255.719966][T11454]  ? bpf_jit_dump+0xd0/0xd0
[  255.724556][T11454]  ? _raw_spin_unlock_irqrestore+0xa9/0x110
[  255.730625][T11454]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  255.736598][T11454]  ? _raw_spin_unlock+0x40/0x40
[  255.741439][T11454]  ? print_memory_metadata+0x314/0x400
[  255.747324][T11454]  ? xfrm_alloc_spi+0x598/0x11f0
[  255.752432][T11454]  check_panic_on_warn+0x84/0xa0
[  255.757539][T11454]  ? xfrm_alloc_spi+0x598/0x11f0
[  255.762567][T11454]  end_report+0x6f/0x140
[  255.766889][T11454]  kasan_report+0x128/0x150
[  255.771471][T11454]  ? xfrm_alloc_spi+0x598/0x11f0
[  255.776403][T11454]  xfrm_alloc_spi+0x598/0x11f0
[  255.781163][T11454]  ? xfrm_alloc_spi+0x2a1/0x11f0
[  255.786095][T11454]  ? verify_spi_info+0x120/0x120
[  255.791086][T11454]  ? xfrm_find_acq+0x79/0x90
[  255.795845][T11454]  xfrm_alloc_userspi+0x5d1/0xa90
[  255.800951][T11454]  ? end_current_label_crit_section+0x170/0x170
[  255.807365][T11454]  ? apparmor_capable+0x137/0x1a0
[  255.812645][T11454]  ? xfrm_dump_policy_done+0x90/0x90
[  255.818105][T11454]  ? __nla_parse+0x40/0x50
[  255.822550][T11454]  xfrm_user_rcv_msg+0x596/0x870
[  255.827565][T11454]  ? lockdep_hardirqs_on+0x98/0x150
[  255.832845][T11454]  ? xfrm_netlink_rcv+0x90/0x90
[  255.837788][T11454]  ? __local_bh_enable_ip+0x12e/0x1c0
[  255.843275][T11454]  ? __dev_queue_xmit+0x245/0x35a0
[  255.848479][T11454]  ? __mutex_trylock_common+0x153/0x250
[  255.854033][T11454]  netlink_rcv_skb+0x216/0x480
[  255.858999][T11454]  ? xfrm_netlink_rcv+0x90/0x90
[  255.864035][T11454]  ? netlink_ack+0x1110/0x1110
[  255.868796][T11454]  ? netlink_deliver_tap+0x2e/0x1b0
[  255.874277][T11454]  ? __lock_acquire+0x7c80/0x7c80
[  255.879766][T11454]  xfrm_netlink_rcv+0x79/0x90
[  255.884722][T11454]  netlink_unicast+0x751/0x8d0
[  255.889847][T11454]  netlink_sendmsg+0x8c1/0xbe0
[  255.894808][T11454]  ? netlink_getsockopt+0x580/0x580
[  255.900622][T11454]  ? aa_sock_msg_perm+0x94/0x150
[  255.905822][T11454]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  255.911229][T11454]  ? security_socket_sendmsg+0x80/0xa0
[  255.916692][T11454]  ? netlink_getsockopt+0x580/0x580
[  255.921911][T11454]  ____sys_sendmsg+0x5bf/0x950
[  255.926854][T11454]  ? __asan_memset+0x22/0x40
[  255.931724][T11454]  ? __sys_sendmsg_sock+0x30/0x30
[  255.936851][T11454]  ? __import_iovec+0x5f2/0x860
[  255.941962][T11454]  ? import_iovec+0x73/0xa0
[  255.946457][T11454]  ___sys_sendmsg+0x220/0x290
[  255.951128][T11454]  ? __sys_sendmsg+0x270/0x270
[  255.955922][T11454]  __se_sys_sendmsg+0x1a5/0x270
[  255.961055][T11454]  ? __x64_sys_sendmsg+0x80/0x80
[  255.966214][T11454]  ? lockdep_hardirqs_on+0x98/0x150
[  255.971702][T11454]  do_syscall_64+0x55/0xb0
[  255.976113][T11454]  ? clear_bhb_loop+0x40/0x90
[  255.980882][T11454]  ? clear_bhb_loop+0x40/0x90
[  255.985649][T11454]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  255.991639][T11454] RIP: 0033:0x7fdc8718ec29
[  255.996050][T11454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  256.016437][T11454] RSP: 002b:00007fdc88039038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  256.024930][T11454] RAX: ffffffffffffffda RBX: 00007fdc873d5fa0 RCX: 00007fdc8718ec29
[  256.033067][T11454] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  256.041397][T11454] RBP: 00007fdc87211e41 R08: 0000000000000000 R09: 0000000000000000
[  256.049684][T11454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  256.057736][T11454] R13: 00007fdc873d6038 R14: 00007fdc873d5fa0 R15: 00007fff8775f318
[  256.066139][T11454]  </TASK>
[  256.069505][T11454] Kernel Offset: disabled
[  256.074273][T11454] Rebooting in 86400 seconds..