last executing test programs:

4m45.943494787s ago: executing program 0 (id=2073):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @rand_addr=0x64010102}, 0x3)

4m45.772658171s ago: executing program 0 (id=2076):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x13}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0xe, 0x0, &(0x7f0000000080)="c1dfb080cd21d308098e00008100", 0x0, 0x8006, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4m45.551908379s ago: executing program 0 (id=2078):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0xc43, 0x0)
flock(r0, 0x5)

4m45.372458813s ago: executing program 0 (id=2079):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000340)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@nouid32}, {@grpid}, {@bsdgroups}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x47a, &(0x7f0000000f80)="$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")
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)

4m44.90112176s ago: executing program 0 (id=2084):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000280)={0x4, @win={{0x6123, 0x9, 0x8, 0x2}, 0x8, 0x1, 0x0, 0x2, 0x0, 0x9}})

4m44.135713351s ago: executing program 0 (id=2098):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x64)

4m43.608354183s ago: executing program 32 (id=2098):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x64)

4m41.811234836s ago: executing program 1 (id=2125):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x3, 0x0, 0x0, 0x20000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x5}]}}}]}, 0x3c}}, 0x0)

4m41.601618613s ago: executing program 1 (id=2130):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x0)

4m41.396645629s ago: executing program 1 (id=2132):
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup, 0xffffffffffffffff, 0x2, 0x2}, 0x10)
syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000082505a1a4400001020301090263000201000000090480000102090000052406000105240000000d240f0100000000000000000006341a000001072414"], 0x0)

4m39.665891816s ago: executing program 1 (id=2144):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000340)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@nouid32}, {@grpid}, {@bsdgroups}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x47a, &(0x7f0000000f80)="$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")
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)

4m39.431708435s ago: executing program 1 (id=2146):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000019980)=@raw={'raw\x00', 0x3c1, 0x3, 0x380, 0x1b8, 0x12, 0x60d, 0x1b8, 0x202, 0x2b0, 0x2e8, 0x2e8, 0x2b0, 0x2c0, 0x4, 0x0, {[{{@ipv6={@private1, @dev={0xfe, 0x80, '\x00', 0x41}, [], [], 'tunl0\x00', 'vlan0\x00', {}, {}, 0x0, 0x2}, 0x0, 0x190, 0x1b8, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x4, 0x0, 'kmp\x00', "000000165a8c2e0617ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f672225d6147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac05a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b5", 0x7, 0x2}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@hl={{0x28}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x9, 0x5, 0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e0)

4m37.327079252s ago: executing program 1 (id=2154):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCSREP(r0, 0x80004506, 0xffffffffffffffff)

4m36.737847879s ago: executing program 33 (id=2154):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCSREP(r0, 0x80004506, 0xffffffffffffffff)

2m54.584397073s ago: executing program 2 (id=3495):
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@multicast, @local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x4, 0x20, 0x66, 0x0, 0x7, 0x2, 0x0, @private=0xa010102, @local}, {0x11, 0xfe, 0x0, @empty, '\x00\x00\x00\x00'}}}}}, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000000)=ANY=[], 0x0)

2m54.391062248s ago: executing program 2 (id=3498):
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x40, 0x0)

2m54.144412698s ago: executing program 2 (id=3502):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xf00}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x83}, {0x85, 0x0, 0x0, 0x15}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m54.026533577s ago: executing program 2 (id=3505):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x2000082, &(0x7f00000003c0)={[{@utf8no}, {@shortname_lower}, {@numtail}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '862'}}, {@uni_xlate}, {@rodir}, {@uni_xlate}, {@numtail}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'cp850'}}, {@utf8no}, {@utf8}, {@fat=@check_strict}, {@fat=@usefree}, {@utf8}, {@utf8}]}, 0x9, 0x353, &(0x7f0000006280)="$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")
openat(0xffffffffffffff9c, &(0x7f00000079c0)='./file0\x00', 0x441, 0x104)

2m53.435492994s ago: executing program 2 (id=3513):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000500)="$eJzskr9OAkEQxr+9O/5oFDWxooGC+KdQjkONnZbY29lI4ETiocKRKITijDEUFsbSJ+A1THwBLYwPQE1BrM2ZvZ3bLL6C+yvu2/l2ZnZ2c+d+208B+JkOajhEhIkMPhiDBSDHhDcxhD6TfpI+CcE75R2Rf0+a9Xv9JAC+nceKMC6qnud28gC+I09a/sGdgUnU6ms6qPHFKYAwDEPu1QGejgUlxwTQVnKyFrAaXSKUORYNsA6g2G1dF/1ef6vZqjbchnvpmOU9e8e2d53iWdNzbfFlyhF0FXDdBJBKQ8L3EwAeKJ7HLEwZjfbZHE5kbTJ+www9IExZayi1sTK8yrlSSsUx1sDHugmWFLcQdbEQXakCBpOCkqXMJ85KRxvbtSuvPgQDi8tGsGSP0hgJGThqUN4PsChaDallgbRCOiIdk+b+/DJWwL+PFG0EQBK31W63U+KPJFYsXjnSc5YD9cH4qS/G7OXeDGg0Go1Go9FoNBrNf+c3AAD//8PfdhM=")
open(&(0x7f0000000400)='./file2\x00', 0x40, 0x82)

2m52.35657299s ago: executing program 2 (id=3530):
r0 = syz_open_dev$video4linux(&(0x7f0000000040), 0x3, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000100)={0x1, 0x0, {0x2, 0x0, 0x3011, 0x0, 0x8, 0x1, 0x2, 0x4}})

2m36.077213543s ago: executing program 34 (id=3530):
r0 = syz_open_dev$video4linux(&(0x7f0000000040), 0x3, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000100)={0x1, 0x0, {0x2, 0x0, 0x3011, 0x0, 0x8, 0x1, 0x2, 0x4}})

2.728011563s ago: executing program 3 (id=5761):
r0 = socket(0x10, 0x3, 0x0)
fgetxattr(r0, &(0x7f0000000200)=@known='system.posix_acl_access\x00', 0x0, 0x0)

2.51368592s ago: executing program 3 (id=5763):
r0 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x81, &(0x7f0000000080)=""/4076, &(0x7f00000010c0)=0xfec)

2.300493967s ago: executing program 3 (id=5765):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan1\x00', &(0x7f0000000080)=@ethtool_stats})

2.100527053s ago: executing program 3 (id=5768):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_G_SLICED_VBI_CAP(r0, 0xc0745645, &(0x7f0000000100)={0xfff8, [0x7, 0x6, 0x6, 0xccb, 0x7, 0x1003, 0x1, 0x7, 0xe, 0x3ff, 0x5, 0x4, 0xb, 0x2, 0x4, 0x3, 0x5, 0x7, 0xc27, 0x1, 0x1ff, 0x2522, 0x0, 0x7fe, 0xff, 0x0, 0x800, 0x5, 0x0, 0x8, 0xfff7, 0x3, 0x5, 0x0, 0xff, 0x7, 0x4, 0x8, 0x101, 0xa432, 0x207, 0x7, 0x3, 0x54ae, 0x5, 0xf, 0x7, 0xc9], 0x4})

2.032092298s ago: executing program 4 (id=5769):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000005c0)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cad32b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db012469398685211dfbbae3e2ed0a50e7393bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d300006aca54183fb01c73f979ca9857399537f5dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7af22e30d46a9d26d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977fb536a9caab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff83ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8240000e3428d2129369ee1b85af9ffffff0d0df414b315f651c8412392191fa83ee830548f11be359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92000000000f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb74d4ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905de328c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea95ec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8169ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be3827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f969369de4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b612272d40f522d8c98c879aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd46dbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d65a125e3af1130d66a7b66837ae7e7123dde7404a067ad0a6a2d6bec9411b61cad4121be3c72ff3a04713042253d438e7becf8120de3895b8ce974958bde39cb8da3427a2e9e2de936431e67fed5ab5684db07de39083d8948cc4c8a2608100000000000000000000aecb8b0b7941088f971ce17427eec32a012295cc0cdd32955176b6ad5a4bb953e58ccfa9428f452cfb5a48a9fda26db3985c8be3c2f99827da074825b0c5b7af1c4a3a71fb59d5798100000000000000c76b05a45d2dd8c20d971e2f3e4369168f5cb83d6ff3a18733fec726034fbfa95624135bee374414b2c8c61f52357a520efd6a10aff244bc9062ed367981fb4d5d77f7bc093958ff46527499957da4934cd4b370cf76f72dd05fa80cdfb68c836fd81be7a58532e041a87f9222f157610a4bcdc05b2a55308c8e7568b90f7a338557e816a16972aea79dff5becefa6f9c5ce6c58fb38da9e7532dc53cfdc2e789b76f7d32aca1bfea2aa62621b78dded30fc07171866bf3d5529"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

1.868497991s ago: executing program 3 (id=5772):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000005800000121f", 0x2e}], 0x1}, 0x404c080)

1.794625927s ago: executing program 4 (id=5773):
r0 = syz_open_dev$media(&(0x7f0000000000), 0x0, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r0, 0xc0487c04, &(0x7f00000000c0)={0x0, 0x35, 0x0, 0x0, 0x2f, 0x0, 0x0, 0xfffffe9c, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000fc0)=[{}, {}]})

1.582887424s ago: executing program 4 (id=5776):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x2000000, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c000", 0x0, 0x86, 0x0, 0x31, 0x0, &(0x7f00000001c0)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x50)

1.38968336s ago: executing program 4 (id=5779):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x3, 0x5}, 0x4)

1.338987054s ago: executing program 3 (id=5781):
r0 = syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000000)='./file2\x00', 0x4001, &(0x7f00000003c0)=ANY=[@ANYBLOB='nouser_xattr,jqfmt=vfsv0,active_logs=4,data_flush,heap,nouser_xattr,quota,resuid=', @ANYRESHEX=0xee01, @ANYBLOB=',usrjquota=\x00\x00\x00\x00\x00\x00\x00\x00merge,noflush_merge,noinline_data,nobarrier,\x00'], 0x0, 0x5517, &(0x7f000000b740)="$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")
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000080)="799140356e00f8a02fca19ab87cc4244c706e42772e778049265b01301f1e8437fbc7a67a742f900d036e372a1ce8c6355f412d74f5a9f8deef112b6a5aab141f1d5afe632ac01f08d4f9fa7dd6090cb3f6b520d8cde0b6fe1cb028d77e49c3af4844777734e0000c8223201c00ba233531d28289ed578c5d600f7d4de18dd519c70086d38e41d1800363d97be2fa4a172ba731d0ef0ab55b46ecf83b6b1c6b97a5ff0189791e6f46447998405b3bc9c91d4449ef0623c7d2a6528f0576a84b0e8b2f8044125fb5f5a7298ee6980ce77cf6d681e888f5df0e18ff0ee7c8b23422757e3cad3bcbecc47a55fc56c39266cbb04c0562df6ca458a764c6d657371a6")

1.223351423s ago: executing program 4 (id=5782):
syz_mount_image$jfs(&(0x7f0000000140), &(0x7f0000000080)='./file1\x00', 0x3210842, &(0x7f0000006500)={[{@discard_size={'discard', 0x3d, 0xf4}}, {@usrquota}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-15'}}, {@quota}, {@noquota}, {@noquota}, {@uid}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}]}, 0x24, 0x62cf, &(0x7f0000000200)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

1.223070663s ago: executing program 5 (id=5783):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}], {0x14, 0x10}}, 0xa4}}, 0x4)

1.069100445s ago: executing program 5 (id=5785):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2000000069000b0000000094ee599c504faa940000000000080001"], 0x20}}, 0x4000000)

982.720072ms ago: executing program 6 (id=5786):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/resume_offset', 0x2, 0x0)
write$tun(r0, &(0x7f00000001c0)=ANY=[@ANYRESHEX, @ANYRESOCT], 0x6a)

941.950855ms ago: executing program 5 (id=5787):
syz_mount_image$nilfs2(&(0x7f0000000380), &(0x7f0000000a40)='./file0\x00', 0x0, &(0x7f0000000a80), 0xf, 0xa02, &(0x7f0000001ec0)="$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")
symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00')

712.444733ms ago: executing program 6 (id=5788):
ioperm(0x0, 0x6, 0x2da3b9f3)
fstatfs(0xffffffffffffffff, 0x0)

555.545106ms ago: executing program 6 (id=5789):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB="bc0000001900010000000000000000001c140000fe0000010000000084001200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005001a000d00000008000400", @ANYRES32, @ANYBLOB='\f\x00\t'], 0xbc}}, 0x0)

489.113391ms ago: executing program 5 (id=5790):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a40)={r0, 0x27, 0xe80, 0x0, &(0x7f0000000440)="f8ad48cc02cb29efc8007f5b0800cfd6782b6e30", 0x0, 0x4000, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)

435.764215ms ago: executing program 6 (id=5791):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, 0x0, 0x0)

236.575401ms ago: executing program 6 (id=5792):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x180300, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000040)={0x191, 0x258, 0x1e0, 0x3f, 0x32, 0x1, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4})

208.671573ms ago: executing program 4 (id=5793):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c6572726f72733d72656d6f756e742d726f2c61636c2c00a9b504852143b698d2e379891a0dde7f9adfca8cbec85bf8e749e04e"], 0x11, 0x444f, &(0x7f0000004480)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_access\x00', &(0x7f0000000280)={{}, {}, [], {0x4, 0x1}, [], {0x10, 0x1}, {0x20, 0x4}}, 0x24, 0x0)

183.214935ms ago: executing program 5 (id=5794):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x801, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000000000)={0x6666666666666ca, 0x0, [{0x0, 0x84, 0x4, 0x9, 0x4, 0x0, 0xb}, {0xb, 0x5, 0x0, 0xd, 0x6, 0x0, 0x9}, {0x80000000, 0xffffffff, 0x4, 0x2d, 0x3, 0x40007, 0x1000}, {0x40000001, 0x0, 0x4, 0x10001, 0x6, 0x3, 0x8}, {0xa, 0x3, 0x8, 0x2, 0xfffffff7, 0x8459, 0x401}, {0xc0000001, 0x10000, 0x4, 0x1, 0x203a, 0x9, 0x200}]})

24.512148ms ago: executing program 6 (id=5795):
r0 = socket$caif_seqpacket(0x25, 0x5, 0x3)
setsockopt$CAIFSO_REQ_PARAM(r0, 0x116, 0x80, 0x0, 0x0)

0s ago: executing program 5 (id=5796):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f00000022c0)="7800000018002507b9409b14ffff00000204be04020506050e020409430009003f0000000a0000000d0085a168d0bf46d32345653600648d040005000209000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000402160005000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):


[  475.337493][T16383] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  475.405186][T16383] F2FS-fs (loop5): Found nat_bits in checkpoint
[  475.497673][T16383] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  475.506171][T16383] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  475.530194][ T5910] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  475.771052][ T5910] usb 4-1: config index 0 descriptor too short (expected 3133, got 61)
[  475.790519][ T5910] usb 4-1: config 0 has an invalid interface number: 156 but max is 1
[  475.801344][ T5910] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  475.817549][ T5910] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  475.853305][ T5910] usb 4-1: config 0 has no interface number 0
[  475.863910][ T5910] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  475.876374][ T5910] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  475.910797][ T5910] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  475.933517][ T5910] usb 4-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  475.962245][ T5910] usb 4-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  475.973868][ T5910] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  476.022558][ T5910] usb 4-1: config 0 descriptor??
[  476.041691][ T5910] gspca_main: spca561-2.14.0 probing abcd:cdee
[  476.284422][ T5910] spca561: probe of 4-1:0.156 failed with error -22
[  476.300451][ T5910] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  476.307767][ T5910] usb 4-1: MIDIStreaming interface descriptor not found
[  476.441873][ T5910] usb 4-1: USB disconnect, device number 27
[  476.728401][T16439] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4287'.
[  476.742680][T16439] netlink: 92 bytes leftover after parsing attributes in process `syz.4.4287'.
[  477.001067][T16449] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4292'.
[  477.165791][   T27] audit: type=1326 audit(1755613375.103:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16454 comm="syz.4.4295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  477.266691][   T27] audit: type=1326 audit(1755613375.103:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16454 comm="syz.4.4295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  477.274046][T16459] netlink: 'syz.5.4297': attribute type 1 has an invalid length.
[  477.360364][T16459] netlink: 146340 bytes leftover after parsing attributes in process `syz.5.4297'.
[  477.381777][   T27] audit: type=1326 audit(1755613375.150:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16454 comm="syz.4.4295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  477.481423][   T27] audit: type=1326 audit(1755613375.150:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16454 comm="syz.4.4295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  477.538674][   T27] audit: type=1326 audit(1755613375.150:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16454 comm="syz.4.4295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  478.080659][T16487] loop5: detected capacity change from 0 to 16
[  478.089578][T16487] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  478.127949][T16487] erofs: (device loop5): mounted with root inode @ nid 36.
[  478.156700][T16489] nvme_fabrics: unknown parameter or missing value 'V' in ctrl creation request
[  478.229645][T16491] loop6: detected capacity change from 0 to 512
[  478.270308][T16491] ext4: Unknown parameter '.'
[  478.767176][T16513] loop6: detected capacity change from 0 to 16
[  478.786669][T16513] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  478.816985][T16513] erofs: (device loop6): mounted with root inode @ nid 36.
[  478.983809][   T23] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  479.223320][   T23] usb 5-1: config 0 has an invalid interface number: 176 but max is 2
[  479.233333][   T23] usb 5-1: config 0 has no interface number 1
[  479.240823][   T23] usb 5-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  479.256537][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.290264][   T23] usb 5-1: config 0 descriptor??
[  479.384131][T16530] loop3: detected capacity change from 0 to 4096
[  479.527541][   T23] qcserial 5-1:0.2: Qualcomm USB modem converter detected
[  479.745085][ T5885] usb 5-1: USB disconnect, device number 4
[  479.768797][ T5885] qcserial 5-1:0.2: device disconnected
[  480.443686][T16570] netlink: 'syz.5.4355': attribute type 32 has an invalid length.
[  480.851067][T16590] loop5: detected capacity change from 0 to 512
[  480.894040][T16590] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  481.017505][T16590] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  481.076252][T16590] ext4 filesystem being mounted at /558/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  481.214545][T16590] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  481.280062][T16590] Quota error (device loop5): write_blk: dquota write failed
[  481.299603][T16590] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  481.324313][T16590] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.4354: Failed to acquire dquot type 0
[  481.463100][T11257] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.654598][T16609] loop6: detected capacity change from 0 to 4096
[  481.716936][T16609] ntfs: (device loop6): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  481.759941][T16609] ntfs: (device loop6): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  481.834688][T16609] ntfs: (device loop6): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  481.943138][T16609] ntfs: volume version 3.1.
[  482.234535][T16601] loop3: detected capacity change from 0 to 40427
[  482.253740][T16622] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4369'.
[  482.267958][T16601] F2FS-fs (loop3): Corrupted extension count (64 + 1 > 64)
[  482.305736][T16601] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  482.361054][T16601] F2FS-fs (loop3): Found nat_bits in checkpoint
[  482.506753][T16601] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  482.527581][T16601] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  482.616352][T16636] sock: sock_timestamping_bind_phc: sock not bind to device
[  483.243229][T16650] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4382'.
[  483.412092][T16652] loop6: detected capacity change from 0 to 64
[  483.728946][T16640] loop5: detected capacity change from 0 to 32768
[  483.747537][T16640] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.4376 (16640)
[  483.764759][T16640] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  483.764857][T16640] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  483.764902][T16640] BTRFS info (device loop5): force zlib compression, level 3
[  483.764921][T16640] BTRFS info (device loop5): force clearing of disk cache
[  483.764937][T16640] BTRFS info (device loop5): setting nodatasum
[  483.764955][T16640] BTRFS info (device loop5): allowing degraded mounts
[  483.764971][T16640] BTRFS info (device loop5): enabling disk space caching
[  483.764985][T16640] BTRFS info (device loop5): disk space caching is enabled
[  483.897067][T16640] BTRFS info (device loop5): auto enabling async discard
[  483.931484][T16640] BTRFS info (device loop5): rebuilding free space tree
[  483.995751][T16640] BTRFS info (device loop5): disabling free space tree
[  483.995829][T16640] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  483.995889][T16640] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  484.178340][T16640] BTRFS error (device loop5): balance: invalid convert metadata profile raid0
[  484.359279][T11257] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  484.498052][T16686] binder: 16685:16686 unknown command 0
[  484.504648][T16686] binder: 16685:16686 ioctl c0306201 200000000480 returned -22
[  484.850174][T16679] loop4: detected capacity change from 0 to 32768
[  484.914000][T16679] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.4388 (16679)
[  484.990721][T16698] netdevsim netdevsim6: Firmware load for '..' refused, path contains '..' component
[  485.034017][T16433] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 11 /dev/loop5 scanned by udevd (16433)
[  485.048345][T16679] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  485.072795][T16679] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  485.141688][T16679] BTRFS info (device loop4): force clearing of disk cache
[  485.155562][T16679] BTRFS info (device loop4): force zlib compression, level 3
[  485.193436][T16679] BTRFS info (device loop4): enabling auto defrag
[  485.203743][T16679] BTRFS info (device loop4): max_inline at 0
[  485.210460][T16679] BTRFS info (device loop4): using free space tree
[  485.447921][T16705] loop6: detected capacity change from 0 to 4096
[  485.544091][T16679] BTRFS info (device loop4): enabling ssd optimizations
[  485.588707][T16705] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  485.599940][T16679] BTRFS info (device loop4): auto enabling async discard
[  485.633209][T16679] BTRFS info (device loop4): rebuilding free space tree
[  485.637411][T16705] ntfs3: loop6: Failed to load $Extend (-22).
[  485.673826][T16705] ntfs3: loop6: Failed to initialize $Extend.
[  485.700877][T16729] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4404'.
[  485.959593][T11099] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  486.314188][T15040] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 10 /dev/loop4 scanned by udevd (15040)
[  486.706855][T16759] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4417'.
[  487.347027][T16781] mmap: syz.4.4429 (16781) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  487.507298][T16788] trusted_key: encrypted_key: master key parameter 'user:' is invalid
[  487.700902][T16794] sctp: [Deprecated]: syz.4.4436 (pid 16794) Use of int in maxseg socket option.
[  487.700902][T16794] Use struct sctp_assoc_value instead
[  487.814335][T16796] loop6: detected capacity change from 0 to 2048
[  487.980604][T16796] NILFS error (device loop6): nilfs_check_page: bad entry in directory #2: unaligned directory entry - offset=0, inode=2, rec_len=59, name_len=1
[  488.269428][T16787] loop3: detected capacity change from 0 to 32768
[  488.310449][T16787] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11
[  488.595107][T16433] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11
[  488.705255][T16828] loop3: detected capacity change from 0 to 64
[  488.753254][T16828] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  488.880200][   T54] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  488.931904][T16833] netlink: 228 bytes leftover after parsing attributes in process `syz.3.4455'.
[  489.019196][   T23] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[  489.083972][T16837] loop3: detected capacity change from 0 to 256
[  489.097920][   T54] usb 5-1: config index 0 descriptor too short (expected 3133, got 61)
[  489.110400][   T54] usb 5-1: config 0 has an invalid interface number: 156 but max is 1
[  489.120733][T16837] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  489.134732][   T54] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  489.163095][   T54] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  489.185355][   T54] usb 5-1: config 0 has no interface number 0
[  489.199185][   T54] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  489.218670][   T54] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  489.255424][   T54] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  489.266664][   T23] usb 6-1: config 0 has an invalid interface number: 176 but max is 2
[  489.291293][   T23] usb 6-1: config 0 has no interface number 1
[  489.308614][   T23] usb 6-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  489.319216][   T54] usb 5-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  489.334342][   T23] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.343446][   T54] usb 5-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  489.358144][   T23] usb 6-1: config 0 descriptor??
[  489.379186][   T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.397186][   T54] usb 5-1: config 0 descriptor??
[  489.419207][   T54] gspca_main: spca561-2.14.0 probing abcd:cdee
[  489.617642][   T23] qcserial 6-1:0.2: Qualcomm USB modem converter detected
[  489.641411][   T54] spca561: probe of 5-1:0.156 failed with error -22
[  489.672738][   T54] usb 5-1: Quirk or no altest; falling back to MIDI 1.0
[  489.683796][   T54] usb 5-1: MIDIStreaming interface descriptor not found
[  489.774896][   T54] usb 5-1: USB disconnect, device number 5
[  489.899105][ T5777] usb 6-1: USB disconnect, device number 6
[  489.928744][ T5777] qcserial 6-1:0.2: device disconnected
[  490.194248][T16866] loop3: detected capacity change from 0 to 64
[  490.494327][T16874] kAFS: unparsable volume name
[  490.841865][T16890] loop3: detected capacity change from 0 to 512
[  491.014680][T16890] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  491.125745][T16903] xt_hashlimit: overflow, try lower: 6/0
[  491.126038][T16890] ext4 filesystem being mounted at /1226/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  491.360177][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.770262][T16888] loop5: detected capacity change from 0 to 32768
[  491.838328][T16888] JBD2: Ignoring recovery information on journal
[  491.903434][T16924] wg1 speed is unknown, defaulting to 1000
[  491.928044][T16888] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  491.943427][T16924] wg1 speed is unknown, defaulting to 1000
[  492.071583][T16924] wg1 speed is unknown, defaulting to 1000
[  492.104410][T11257] ocfs2: Unmounting device (7,5) on (node local)
[  492.155734][T16924] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  492.244553][T16924] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  492.505359][T16924] wg1 speed is unknown, defaulting to 1000
[  492.545028][T16924] wg1 speed is unknown, defaulting to 1000
[  492.623709][T16924] wg1 speed is unknown, defaulting to 1000
[  492.702313][T16924] wg1 speed is unknown, defaulting to 1000
[  492.744462][T16924] wg1 speed is unknown, defaulting to 1000
[  492.753227][T16939] loop5: detected capacity change from 0 to 4096
[  492.887837][T16939] ntfs: volume version 3.1.
[  492.906459][T16931] loop6: detected capacity change from 0 to 32768
[  492.936923][T16939] __ntfs_error: 13 callbacks suppressed
[  492.936939][T16939] ntfs: (device loop5): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  492.984671][T16939] ntfs: (device loop5): load_and_init_quota(): Failed to find inode number for $Quota.
[  493.000172][T16939] ntfs: (device loop5): load_system_files(): Failed to load $Quota.  Mounting read-only.  Run chkdsk.
[  493.010911][T16931] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  493.021200][T16939] ntfs: (device loop5): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  493.043605][T16939] ntfs: (device loop5): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl.
[  493.056091][T16939] ntfs: (device loop5): load_system_files(): Failed to load $UsnJrnl.  Will not be able to remount read-write.  Run chkdsk.
[  493.131853][T16931] OCFS2: ERROR (device loop6): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature 
[  493.198418][T16931] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  493.227862][T16931] OCFS2: File system is now read-only.
[  493.228029][T16949] netlink: 1088 bytes leftover after parsing attributes in process `syz.3.4509'.
[  493.252048][T16931] (syz.6.4500,16931,1):ocfs2_search_chain:1785 ERROR: status = -30
[  493.294642][T16931] (syz.6.4500,16931,1):ocfs2_search_chain:1871 ERROR: status = -30
[  493.344131][T16931] (syz.6.4500,16931,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  493.364912][T16931] (syz.6.4500,16931,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  493.378462][T16951] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4510'.
[  493.389683][T16931] (syz.6.4500,16931,1):__ocfs2_claim_clusters:2355 ERROR: status = -30
[  493.427957][T16931] (syz.6.4500,16931,1):__ocfs2_claim_clusters:2363 ERROR: status = -30
[  493.461886][T16931] (syz.6.4500,16931,1):ocfs2_local_alloc_new_window:1203 ERROR: status = -30
[  493.494202][T16931] (syz.6.4500,16931,1):ocfs2_local_alloc_new_window:1228 ERROR: status = -30
[  493.520239][T16931] (syz.6.4500,16931,1):ocfs2_local_alloc_slide_window:1302 ERROR: status = -30
[  493.550528][T16931] (syz.6.4500,16931,1):ocfs2_local_alloc_slide_window:1321 ERROR: status = -30
[  493.589929][T16931] (syz.6.4500,16931,1):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -30
[  493.623972][T16931] (syz.6.4500,16931,1):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30
[  493.663573][T16931] (syz.6.4500,16931,1):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30
[  493.696663][T16931] (syz.6.4500,16931,1):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30
[  493.733157][T16931] (syz.6.4500,16931,1):ocfs2_expand_inline_dir:2858 ERROR: status = -30
[  493.751646][T16931] (syz.6.4500,16931,1):ocfs2_extend_dir:3205 ERROR: status = -30
[  493.775506][T16931] (syz.6.4500,16931,1):ocfs2_prepare_dir_for_insert:4326 ERROR: status = -30
[  493.794569][T16931] (syz.6.4500,16931,1):ocfs2_mknod:298 ERROR: status = -30
[  493.807129][T16931] (syz.6.4500,16931,1):ocfs2_mknod:502 ERROR: status = -30
[  493.841513][T16931] (syz.6.4500,16931,1):ocfs2_mkdir:659 ERROR: status = -30
[  493.903653][ T5885] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  493.907541][T15033] (syz-executor,15033,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  493.945052][T15033] ocfs2: Unmounting device (7,6) on (node local)
[  494.141668][ T5885] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  494.153227][ T5885] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  494.166978][ T5885] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  494.190006][ T5885] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  494.224434][ T5885] usb 6-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  494.251256][ T5885] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  494.278589][ T5885] usb 6-1: config 0 descriptor??
[  494.293385][ T5885] gspca_main: spca561-2.14.0 probing abcd:cdee
[  494.529067][ T5885] spca561: probe of 6-1:0.0 failed with error -22
[  494.557328][ T5885] usb 6-1: Quirk or no altest; falling back to MIDI 1.0
[  494.579763][ T5885] usb 6-1: MIDIStreaming interface descriptor not found
[  494.777340][ T5885] snd-usb-audio: probe of 6-1:0.0 failed with error -12
[  494.826455][ T5885] usb 6-1: USB disconnect, device number 7
[  495.325326][ T5777] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  495.543123][ T5777] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  495.574991][ T5777] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  495.625497][ T5777] usb 5-1: config 1 has no interface number 0
[  495.655768][ T5777] usb 5-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  495.698622][ T5777] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  495.739163][ T5777] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  495.789560][ T5777] usb 5-1: Product: syz
[  495.798521][ T5777] usb 5-1: Manufacturer: syz
[  495.805092][ T5777] usb 5-1: SerialNumber: syz
[  495.847405][ T5777] usb 5-1: selecting invalid altsetting 1
[  495.859541][T17021] mac80211_hwsim hwsim12 wlan0: entered promiscuous mode
[  495.916528][T17021] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  496.278840][T17033] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4551'.
[  496.304031][ T5777] cdc_ncm 5-1:1.1: failed GET_NTB_PARAMETERS
[  496.327596][ T5777] cdc_ncm 5-1:1.1: bind() failure
[  496.351951][ T5777] usb 5-1: USB disconnect, device number 6
[  496.666444][T17045] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4557'.
[  496.902045][T17053] loop5: detected capacity change from 0 to 512
[  496.974921][T17053] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  497.168739][T11257] EXT4-fs (loop5): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  497.327777][T17065] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  497.620868][T17073] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[  497.651588][T17073] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  497.762923][T17079] overlayfs: conflicting options: nfs_export=on,index=off
[  497.862079][T17059] loop3: detected capacity change from 0 to 32768
[  497.874183][ T5852] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  497.907034][T17059] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  497.924711][T17059] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  497.940151][T17059] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  497.959232][ T5885] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  497.968053][ T5885] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  498.035110][ T5885] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 62ms
[  498.044640][ T5885] gfs2: fsid=syz:syz.0: jid=0: Done
[  498.051163][T17059] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  498.088988][T17059] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  498.102990][T17059] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  498.102990][T17059]   inode = 12 2341
[  498.102990][T17059]   function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602
[  498.136761][ T5852] usb 6-1: Using ep0 maxpacket: 32
[  498.156245][ T5852] usb 6-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  498.182221][T17059] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  498.184028][ T5852] usb 6-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  498.227327][ T5852] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  498.228222][T17059] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:17059 [syz.3.4563] __gfs2_lookup+0x90/0x270
[  498.274320][ T5852] usb 6-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  498.278740][T17059] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  498.300190][ T5852] usb 6-1: Product: syz
[  498.304890][ T5852] usb 6-1: Manufacturer: syz
[  498.316531][T17086] loop4: detected capacity change from 0 to 4096
[  498.344355][ T5852] hub 6-1:4.0: USB hub found
[  498.348944][T17059] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  498.382680][T17059] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  498.424257][T17059] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  498.465941][T17059] gfs2: fsid=syz:syz.0: File system withdrawn
[  498.489659][T17086] ntfs: volume version 3.1.
[  498.507997][T17059] CPU: 0 PID: 17059 Comm: syz.3.4563 Not tainted 6.6.102-syzkaller #0
[  498.517761][T17059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  498.529294][T17059] Call Trace:
[  498.532823][T17059]  <TASK>
[  498.536161][T17059]  dump_stack_lvl+0x16c/0x230
[  498.541074][T17059]  ? kobject_uevent_env+0x363/0x8c0
[  498.546662][T17059]  ? show_regs_print_info+0x20/0x20
[  498.552430][T17059]  ? load_image+0x3b0/0x3b0
[  498.557588][T17059]  ? kobject_uevent_env+0x363/0x8c0
[  498.563238][T17059]  gfs2_withdraw+0xe50/0x13b0
[  498.569372][T17059]  ? gfs2_lm+0x220/0x220
[  498.569654][ T5852] hub 6-1:4.0: 1 port detected
[  498.574522][T17059]  ? load_image+0x3b0/0x3b0
[  498.574562][T17059]  ? gfs2_consist_inode_i+0xf5/0x110
[  498.574586][T17059]  gfs2_dirent_scan+0x525/0x650
[  498.574605][T17059]  ? gfs2_dirent_search+0x7e0/0x7e0
[  498.574621][T17059]  ? gfs2_dirent_search+0x7e0/0x7e0
[  498.574636][T17059]  gfs2_dirent_search+0x2e1/0x7e0
[  498.574653][T17059]  ? gfs2_permission+0x370/0x430
[  498.574671][T17059]  ? __might_sleep+0xe0/0xe0
[  498.574693][T17059]  ? gfs2_dir_search+0x220/0x220
[  498.574710][T17059]  ? gfs2_lookupi+0x5a0/0x5a0
[  498.574729][T17059]  ? do_raw_spin_lock+0x121/0x2c0
[  498.574755][T17059]  gfs2_dir_search+0x4d/0x220
[  498.574774][T17059]  gfs2_lookupi+0x3d9/0x5a0
[  498.603620][T17086] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  498.607319][T17059]  ? gfs2_lookup_meta+0x170/0x170
[  498.607360][T17059]  ? __gfs2_lookup+0x90/0x270
[  498.607389][T17059]  __gfs2_lookup+0x90/0x270
[  498.607409][T17059]  ? __lock_acquire+0x7c80/0x7c80
[  498.607428][T17059]  ? gfs2_atomic_open+0x220/0x220
[  498.607452][T17059]  ? do_raw_spin_unlock+0x121/0x230
[  498.696054][T17059]  ? _raw_spin_unlock+0x28/0x40
[  498.701710][T17059]  ? d_alloc+0x173/0x1b0
[  498.706382][T17059]  lookup_one_qstr_excl+0x112/0x250
[  498.712217][T17059]  filename_create+0x222/0x460
[  498.717618][T17059]  ? kern_path_create+0x50/0x50
[  498.722575][T17059]  ? __virt_addr_valid+0x469/0x540
[  498.728205][T17059]  do_mkdirat+0xa1/0x440
[  498.732943][T17059]  ? vfs_mkdir+0x440/0x440
[  498.737844][T17059]  ? getname_flags+0x20a/0x500
[  498.743394][T17059]  __x64_sys_mkdir+0x6e/0x80
[  498.748466][T17059]  do_syscall_64+0x55/0xb0
[  498.753997][T17059]  ? clear_bhb_loop+0x40/0x90
[  498.760443][T17059]  ? clear_bhb_loop+0x40/0x90
[  498.766222][T17059]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  498.773936][T17059] RIP: 0033:0x7f4f9e98ebe9
[  498.779974][T17059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.805808][T17059] RSP: 002b:00007f4f9f87f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  498.816031][T17059] RAX: ffffffffffffffda RBX: 00007f4f9ebb5fa0 RCX: 00007f4f9e98ebe9
[  498.826648][T17059] RDX: 0000000000000000 RSI: 00000000000001ad RDI: 0000200000000180
[  498.837563][T17059] RBP: 00007f4f9ea11e19 R08: 0000000000000000 R09: 0000000000000000
[  498.849476][T17059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.861738][T17059] R13: 00007f4f9ebb6038 R14: 00007f4f9ebb5fa0 R15: 00007ffdaa78f9e8
[  498.872820][T17059]  </TASK>
[  498.878752][ T5852] hub 6-1:4.0: hub_hub_status failed (err = -71)
[  498.889238][T17086] ntfs: (device loop4): load_and_init_quota(): Failed to find inode number for $Quota.
[  498.892550][ T5852] hub 6-1:4.0: config failed, can't get hub status (err -71)
[  498.919393][T17086] ntfs: (device loop4): load_system_files(): Failed to load $Quota.  Mounting read-only.  Run chkdsk.
[  498.944121][T17086] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  499.025143][T17086] ntfs: (device loop4): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl.
[  499.064361][T17086] ntfs: (device loop4): load_system_files(): Failed to load $UsnJrnl.  Will not be able to remount read-write.  Run chkdsk.
[  499.200915][ T5852] usb 6-1: USB disconnect, device number 8
[  499.223301][T17097] loop6: detected capacity change from 0 to 256
[  499.703738][T17108] kernel read not supported for file / 
œÏüÔ¢W)ëS“§Ç-ë (pid: 17108 comm: syz.6.4587)
[  499.740140][   T27] audit: type=1800 audit(1755613396.219:132): pid=17108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.4587" name=20019CCFFCD4A25729EB5393A7C72DEB dev="mqueue" ino=40908 res=0 errno=0
[  500.537076][T17133] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4599'.
[  500.550189][T17133] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4599'.
[  500.554464][T17135] loop4: detected capacity change from 0 to 64
[  500.568815][T17133] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4599'.
[  500.691390][T17114] loop6: detected capacity change from 0 to 32768
[  500.758707][T17114] 
[  500.758707][T17114]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  500.758707][T17114] 
[  500.830115][T17114] JFS: metapage_get_blocks failed
[  500.867656][T17114] ERROR: (device loop6): release_metapage: metapage_write_one() failed
[  500.867656][T17114] 
[  500.964227][T17114] ERROR: (device loop6): diWrite: ixpxd invalid
[  500.964227][T17114] 
[  501.029372][T17147] netlink: 'syz.5.4606': attribute type 1 has an invalid length.
[  501.083137][T17114] ERROR: (device loop6): txCommit: 
[  501.083137][T17114] 
[  501.239880][T15033] 
[  501.239880][T15033]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  501.239880][T15033] 
[  501.293149][T15033] 
[  501.293149][T15033]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  501.293149][T15033] 
[  501.783314][T17161] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4610'.
[  501.966258][T17165] loop5: detected capacity change from 0 to 2048
[  501.999233][T17165] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  502.090978][T17174] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  503.198954][T17212] netlink: 72 bytes leftover after parsing attributes in process `syz.5.4638'.
[  503.234927][T17212] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4638'.
[  503.244876][T17212] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4638'.
[  503.315067][T17216] loop4: detected capacity change from 0 to 64
[  503.357026][T17216] Trying to free block not in datazone
[  503.369203][T17216] Trying to free block not in datazone
[  503.598139][T17199] loop3: detected capacity change from 0 to 32768
[  503.654684][T17199] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  503.726666][T17226] netlink: 'syz.4.4643': attribute type 32 has an invalid length.
[  503.780224][T17199] OCFS2: ERROR (device loop3): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature 
[  503.805729][T17228] netlink: 'syz.6.4644': attribute type 1 has an invalid length.
[  503.876303][T17199] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  503.924655][T17199] OCFS2: File system is now read-only.
[  503.951050][T17199] (syz.3.4630,17199,1):ocfs2_search_chain:1785 ERROR: status = -30
[  503.960662][T17199] (syz.3.4630,17199,1):ocfs2_search_chain:1871 ERROR: status = -30
[  503.993854][T17199] (syz.3.4630,17199,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  504.025874][T17199] (syz.3.4630,17199,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  504.047247][T17199] (syz.3.4630,17199,1):__ocfs2_claim_clusters:2355 ERROR: status = -30
[  504.082395][T17199] (syz.3.4630,17199,1):__ocfs2_claim_clusters:2363 ERROR: status = -30
[  504.100667][T17199] (syz.3.4630,17199,1):ocfs2_local_alloc_new_window:1203 ERROR: status = -30
[  504.125992][T17199] (syz.3.4630,17199,1):ocfs2_local_alloc_new_window:1228 ERROR: status = -30
[  504.143603][T17199] (syz.3.4630,17199,1):ocfs2_local_alloc_slide_window:1302 ERROR: status = -30
[  504.164125][T17199] (syz.3.4630,17199,1):ocfs2_local_alloc_slide_window:1321 ERROR: status = -30
[  504.189580][T17199] (syz.3.4630,17199,1):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -30
[  504.207664][T17236] netlink: 72 bytes leftover after parsing attributes in process `syz.6.4648'.
[  504.216765][T17236] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4648'.
[  504.226815][T17199] (syz.3.4630,17199,1):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30
[  504.259391][T17199] (syz.3.4630,17199,1):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30
[  504.282370][T17199] (syz.3.4630,17199,1):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30
[  504.291864][T17199] (syz.3.4630,17199,1):ocfs2_expand_inline_dir:2858 ERROR: status = -30
[  504.300691][T17236] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4648'.
[  504.325762][T17199] (syz.3.4630,17199,1):ocfs2_extend_dir:3205 ERROR: status = -30
[  504.334591][T17199] (syz.3.4630,17199,1):ocfs2_prepare_dir_for_insert:4326 ERROR: status = -30
[  504.389738][T17199] (syz.3.4630,17199,1):ocfs2_mknod:298 ERROR: status = -30
[  504.397135][T17199] (syz.3.4630,17199,1):ocfs2_mknod:502 ERROR: status = -30
[  504.410195][T17240] loop4: detected capacity change from 0 to 256
[  504.418590][T17199] (syz.3.4630,17199,1):ocfs2_mkdir:659 ERROR: status = -30
[  504.568270][T17240] FAT-fs (loop4): Directory bread(block 64) failed
[  504.581825][T17240] FAT-fs (loop4): Directory bread(block 65) failed
[  504.592895][T17240] FAT-fs (loop4): Directory bread(block 66) failed
[  504.600829][T17240] FAT-fs (loop4): Directory bread(block 67) failed
[  504.620352][ T5788] (syz-executor,5788,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  504.645941][T17240] FAT-fs (loop4): Directory bread(block 68) failed
[  504.651279][ T5788] ocfs2: Unmounting device (7,3) on (node local)
[  504.652674][T17240] FAT-fs (loop4): Directory bread(block 69) failed
[  504.672951][T17240] FAT-fs (loop4): Directory bread(block 70) failed
[  504.673736][T17246] loop5: detected capacity change from 0 to 512
[  504.690029][T17240] FAT-fs (loop4): Directory bread(block 71) failed
[  504.753026][T17240] FAT-fs (loop4): Directory bread(block 72) failed
[  504.763562][T17240] FAT-fs (loop4): Directory bread(block 73) failed
[  504.778094][T17246] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  504.831972][T17246] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  504.846349][T17246] System zones: 0-1, 15-15, 18-18, 34-34
[  504.852927][T17246] EXT4-fs (loop5): orphan cleanup on readonly fs
[  504.860496][T17246] Quota error (device loop5): v2_read_header: Failed header read: expected=8 got=0
[  504.894103][T17246] EXT4-fs warning (device loop5): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  504.942777][T17246] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  504.985103][T17246] EXT4-fs (loop5): 1 truncate cleaned up
[  505.017416][T17246] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  505.130864][T17246] fscrypt (loop5, inode 16): Error -61 getting encryption context
[  505.241754][T11257] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  505.384732][T17244] loop6: detected capacity change from 0 to 32768
[  505.422384][T17244] JBD2: Ignoring recovery information on journal
[  505.515233][T17244] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  505.533652][   T54] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  505.631992][T15033] ocfs2: Unmounting device (7,6) on (node local)
[  505.748618][   T54] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  505.800368][   T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  505.832243][   T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  505.864725][   T54] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  505.917745][   T54] usb 5-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  505.927406][   T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.962854][   T54] usb 5-1: config 0 descriptor??
[  505.984416][   T54] gspca_main: spca561-2.14.0 probing abcd:cdee
[  506.213434][   T54] spca561: probe of 5-1:0.0 failed with error -22
[  506.239477][   T54] usb 5-1: Quirk or no altest; falling back to MIDI 1.0
[  506.247306][   T54] usb 5-1: MIDIStreaming interface descriptor not found
[  506.414811][T15040] udevd[15040]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  506.471812][   T54] snd-usb-audio: probe of 5-1:0.0 failed with error -12
[  506.496970][   T54] usb 5-1: USB disconnect, device number 7
[  506.514261][T17282] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4669'.
[  506.668738][T17286] comedi comedi4: comedi_config --init_data is deprecated
[  506.842394][T17292] loop3: detected capacity change from 0 to 64
[  506.926684][T17294] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4675'.
[  506.964791][T17294] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4675'.
[  507.788429][ T5777] usb 4-1: new full-speed USB device number 28 using dummy_hcd
[  508.015187][ T5777] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  508.043632][ T5777] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  508.071870][ T5777] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  508.084537][T17314] loop4: detected capacity change from 0 to 32768
[  508.125538][ T5777] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  508.173292][ T5777] usb 4-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  508.221339][ T5777] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.259099][ T5777] usb 4-1: config 0 descriptor??
[  508.284441][ T5777] gspca_main: spca561-2.14.0 probing abcd:cdee
[  508.287679][T17340] loop6: detected capacity change from 0 to 256
[  508.315143][T17340] exfat: Deprecated parameter 'utf8'
[  508.334747][T17340] exfat: Deprecated parameter 'namecase'
[  508.340819][T17340] exfat: Deprecated parameter 'utf8'
[  508.434855][T17340] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  508.501311][ T5777] spca561: probe of 4-1:0.0 failed with error -22
[  508.527190][ T5777] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  508.534318][ T5777] usb 4-1: MIDIStreaming interface descriptor not found
[  508.672529][T15031] udevd[15031]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  508.719035][ T5777] snd-usb-audio: probe of 4-1:0.0 failed with error -12
[  508.777499][ T5777] usb 4-1: USB disconnect, device number 28
[  508.872354][T17344] loop5: detected capacity change from 0 to 8192
[  508.910431][T17344] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  508.974582][T17344] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000001)
[  508.992875][T17344] FAT-fs (loop5): Filesystem has been set read-only
[  509.090998][T11257] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000001)
[  509.094081][T17349] loop4: detected capacity change from 0 to 16
[  509.122816][T17349] erofs: (device loop4): mounted with root inode @ nid 36.
[  509.377373][T17352] loop5: detected capacity change from 0 to 256
[  509.418997][T17352] FAT-fs (loop5): Directory bread(block 64) failed
[  509.436520][T17352] FAT-fs (loop5): Directory bread(block 65) failed
[  509.443204][T17352] FAT-fs (loop5): Directory bread(block 66) failed
[  509.485088][T17352] FAT-fs (loop5): Directory bread(block 67) failed
[  509.496030][T17352] FAT-fs (loop5): Directory bread(block 68) failed
[  509.515248][T17352] FAT-fs (loop5): Directory bread(block 69) failed
[  509.542493][T17352] FAT-fs (loop5): Directory bread(block 70) failed
[  509.549526][T17352] FAT-fs (loop5): Directory bread(block 71) failed
[  509.594897][T17352] FAT-fs (loop5): Directory bread(block 72) failed
[  509.602207][T17352] FAT-fs (loop5): Directory bread(block 73) failed
[  509.662712][T17362] loop6: detected capacity change from 0 to 1024
[  509.742091][T17362] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  509.755289][T17362] ext4 filesystem being mounted at /254/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  509.890229][T17362] cifs: Unknown parameter 'no'‘a�£Nð[G¶zob,erèèµ;%j¸¼
[  509.890229][T17362] ‡üzæ,€@q¬Ú÷ôÐåéJ#³"ŽÚh/.�W1ȱ¨nNCº"†CÙ׈¡E)Ð8+€î¶á÷™¿1®ðÚ<“™+`# ÷Ž¢k²–'
[  510.005207][T15033] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  510.145196][ T5852] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  510.365169][ T5852] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  510.392302][ T5852] usb 5-1: config 0 interface 0 has no altsetting 0
[  510.409891][ T5852] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  510.428950][T17392] netlink: 'syz.6.4722': attribute type 16 has an invalid length.
[  510.437754][ T5852] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  510.444334][T17392] netlink: 'syz.6.4722': attribute type 17 has an invalid length.
[  510.447171][ T5852] usb 5-1: Product: syz
[  510.454363][ T5777] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  510.463857][ T5852] usb 5-1: Manufacturer: syz
[  510.472485][ T5852] usb 5-1: SerialNumber: syz
[  510.484115][ T5852] usb 5-1: config 0 descriptor??
[  510.502654][ T5852] usb 5-1: selecting invalid altsetting 0
[  510.691464][ T5777] usb 6-1: New USB device found, idVendor=249c, idProduct=9002, bcdDevice=5e.ad
[  510.713782][ T5777] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.735363][   T23] usb 5-1: USB disconnect, device number 8
[  510.740733][ T5777] usb 6-1: config 0 descriptor??
[  510.992601][ T5777] snd-usb-hiface: probe of 6-1:0.0 failed with error -22
[  511.221318][ T5852] usb 6-1: USB disconnect, device number 9
[  511.345443][T17402] loop3: detected capacity change from 0 to 32768
[  511.411245][T17402] 
[  511.411245][T17402]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  511.411245][T17402] 
[  511.473379][T17402] JFS: metapage_get_blocks failed
[  511.496320][T17402] ERROR: (device loop3): release_metapage: metapage_write_one() failed
[  511.496320][T17402] 
[  511.526440][T17402] ERROR: (device loop3): diWrite: ixpxd invalid
[  511.526440][T17402] 
[  511.572184][T17402] ERROR: (device loop3): txCommit: 
[  511.572184][T17402] 
[  511.607158][T17417] loop6: detected capacity change from 0 to 512
[  511.639002][T17417] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  511.680152][ T5788] 
[  511.680152][ T5788]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  511.680152][ T5788] 
[  511.704418][T17417] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  511.734501][ T5788] 
[  511.734501][ T5788]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  511.734501][ T5788] 
[  511.747950][T17417] System zones: 0-2, 18-18, 34-34
[  511.768546][T17417] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  511.803821][T17417] ext4 filesystem being mounted at /264/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  511.990308][T15033] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  512.120549][T17431] netlink: 'syz.3.4740': attribute type 1 has an invalid length.
[  512.253711][T17433] loop6: detected capacity change from 0 to 256
[  512.288691][ T5777] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  512.341073][T17433] FAT-fs (loop6): Directory bread(block 64) failed
[  512.367772][T17433] FAT-fs (loop6): Directory bread(block 65) failed
[  512.389421][T17433] FAT-fs (loop6): Directory bread(block 66) failed
[  512.404813][T17433] FAT-fs (loop6): Directory bread(block 67) failed
[  512.413843][T17433] FAT-fs (loop6): Directory bread(block 68) failed
[  512.430043][T17433] FAT-fs (loop6): Directory bread(block 69) failed
[  512.436981][T17433] FAT-fs (loop6): Directory bread(block 70) failed
[  512.479793][T17433] FAT-fs (loop6): Directory bread(block 71) failed
[  512.488200][T17433] FAT-fs (loop6): Directory bread(block 72) failed
[  512.513575][T17433] FAT-fs (loop6): Directory bread(block 73) failed
[  512.523877][ T5777] usb 5-1: Using ep0 maxpacket: 16
[  512.528724][ T5777] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  512.528754][ T5777] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.528771][ T5777] usb 5-1: Product: syz
[  512.528785][ T5777] usb 5-1: Manufacturer: syz
[  512.528797][ T5777] usb 5-1: SerialNumber: syz
[  512.531060][ T5777] r8152-cfgselector 5-1: config 0 descriptor??
[  512.780683][T17446] __nla_validate_parse: 1 callbacks suppressed
[  512.780709][T17446] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4747'.
[  512.780733][T17446] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4747'.
[  513.011478][ T5777] r8152-cfgselector 5-1: Unknown version 0x0000
[  513.032920][ T5777] r8152-cfgselector 5-1: USB disconnect, device number 9
[  514.942546][T17522] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  515.004538][T17525] binder: 17523:17525 ioctl c018620c 0 returned -14
[  515.136836][T17530] program syz.5.4790 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  515.267063][T17536] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4792'.
[  515.305188][T17536] netlink: 312 bytes leftover after parsing attributes in process `syz.3.4792'.
[  515.520899][   T27] audit: type=1326 audit(1755613410.982:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17548 comm="syz.6.4797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61da38ebe9 code=0x7ffc0000
[  515.532286][T17550] loop3: detected capacity change from 0 to 16
[  515.576128][T17550] erofs: (device loop3): mounted with root inode @ nid 36.
[  515.592261][   T27] audit: type=1326 audit(1755613410.991:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17548 comm="syz.6.4797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61da38ebe9 code=0x7ffc0000
[  515.671948][   T27] audit: type=1326 audit(1755613411.029:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17548 comm="syz.6.4797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f61da38ebe9 code=0x7ffc0000
[  515.741275][   T27] audit: type=1326 audit(1755613411.029:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17548 comm="syz.6.4797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61da38ebe9 code=0x7ffc0000
[  515.766928][T17554] SET target dimension over the limit!
[  515.798873][   T27] audit: type=1326 audit(1755613411.029:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17548 comm="syz.6.4797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61da38ebe9 code=0x7ffc0000
[  515.933291][ T5852] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  516.039994][ T5885] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  516.138211][ T5852] usb 4-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  516.171178][ T5852] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  516.195256][ T5852] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  516.224892][ T5852] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  516.250032][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  516.275292][ T5852] usb 4-1: Product: syz
[  516.276049][ T5885] usb 5-1: Using ep0 maxpacket: 16
[  516.280979][ T5852] usb 4-1: Manufacturer: syz
[  516.281008][ T5852] usb 4-1: SerialNumber: syz
[  516.344664][ T5885] usb 5-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  516.363657][ T5885] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  516.373615][ T5885] usb 5-1: Product: syz
[  516.379412][ T5885] usb 5-1: Manufacturer: syz
[  516.390339][ T5885] usb 5-1: SerialNumber: syz
[  516.403587][ T5885] usb 5-1: config 0 descriptor??
[  516.411825][ T5885] visor 5-1:0.0: Sony Clie 3.5 converter detected
[  516.523696][ T5852] cdc_ncm 4-1:1.0: skipping garbage
[  516.530923][ T5852] cdc_ncm 4-1:1.0: CDC Union missing and no IAD found
[  516.541227][ T5852] cdc_ncm 4-1:1.0: bind() failure
[  516.551190][ T5852] usb 4-1: USB disconnect, device number 29
[  516.628227][   T23] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  516.644641][ T5885] usb 5-1: clie_3_5_startup: get config number bad return length: 0
[  516.658043][ T5885] visor: probe of 5-1:0.0 failed with error -5
[  516.831153][   T23] usb 6-1: Using ep0 maxpacket: 16
[  516.838584][   T23] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  516.849719][   T23] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 34, changing to 9
[  516.861642][   T23] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  516.873092][   T23] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  516.888328][   T23] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  516.903904][   T23] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  516.909587][ T5885] usb 5-1: USB disconnect, device number 10
[  516.916998][   T23] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  516.930633][   T23] usb 6-1: Manufacturer: syz
[  516.943613][   T23] usb 6-1: config 0 descriptor??
[  517.171107][   T23] usb 6-1: USB disconnect, device number 10
[  517.187242][T17575] netlink: 'syz.3.4811': attribute type 16 has an invalid length.
[  517.207908][T17575] netlink: 'syz.3.4811': attribute type 17 has an invalid length.
[  517.265651][T17576] loop6: detected capacity change from 0 to 4096
[  517.305000][T17576] ntfs: (device loop6): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  517.322717][T17576] ntfs: (device loop6): ntfs_read_locked_inode(): $DATA attribute is missing.
[  517.332162][T17576] ntfs: (device loop6): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  517.355041][T17576] ntfs: (device loop6): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  517.412391][T17576] ntfs: volume version 3.1.
[  517.444339][T17576] ntfs: (device loop6): ntfs_attr_find(): Inode is corrupt.  Run chkdsk.
[  517.911288][T17592] loop5: detected capacity change from 0 to 1024
[  518.052137][   T42] hfsplus: b-tree write err: -5, ino 4
[  518.551681][T17623] wg1 speed is unknown, defaulting to 1000
[  518.692865][T17627] netlink: 'syz.3.4837': attribute type 7 has an invalid length.
[  518.900053][T17637] netlink: 'syz.5.4841': attribute type 16 has an invalid length.
[  518.900075][T17637] netlink: 'syz.5.4841': attribute type 17 has an invalid length.
[  519.073398][T17642] cgroup: release_agent respecified
[  519.250636][T17649] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4847'.
[  519.275078][T17649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4847'.
[  519.300578][T17649] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  519.701514][T17668] ip6t_srh: unknown srh match flags  4001
[  519.843915][T17676] x_tables: ip_tables: ah match: only valid for protocol 51
[  519.857385][T17675] netlink: 'syz.4.4857': attribute type 16 has an invalid length.
[  519.865780][T17675] netlink: 'syz.4.4857': attribute type 17 has an invalid length.
[  519.996730][T17680] Invalid ELF header magic: != ELF
[  520.190264][T17685] netlink: 76 bytes leftover after parsing attributes in process `syz.5.4866'.
[  520.438243][T17696] loop6: detected capacity change from 0 to 1024
[  520.459523][T17699] netlink: 'syz.5.4871': attribute type 9 has an invalid length.
[  520.482271][T17699] netlink: 209836 bytes leftover after parsing attributes in process `syz.5.4871'.
[  520.539032][T17696] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  520.625681][T17696] ext4 filesystem being mounted at /302/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  520.728247][T17696] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  520.777387][T17712] netlink: 'syz.4.4876': attribute type 16 has an invalid length.
[  520.807191][T17712] netlink: 'syz.4.4876': attribute type 17 has an invalid length.
[  520.835596][T15033] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  520.871829][ T5885] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  521.092624][T17722] SET target dimension over the limit!
[  521.117760][ T5885] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  521.134075][ T5885] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  521.202689][ T5885] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  521.223417][ T5885] usb 4-1: config 1 has no interface number 1
[  521.241035][ T5885] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  521.267851][ T5885] usb 4-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  521.272164][ T5885] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  521.272193][ T5885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  521.272212][ T5885] usb 4-1: Product: syz
[  521.272225][ T5885] usb 4-1: Manufacturer: syz
[  521.272238][ T5885] usb 4-1: SerialNumber: syz
[  521.491874][T17734] loop4: detected capacity change from 0 to 256
[  521.559690][ T5885] usb 4-1: No endpoint at altset 1, falling back to MIDI 1.0
[  521.567879][ T5885] usb 4-1: MIDIStreaming interface descriptor not found
[  521.651122][T17734] FAT-fs (loop4): Directory bread(block 64) failed
[  521.694347][ T5885] usb 4-1: USB disconnect, device number 30
[  521.725712][T17734] FAT-fs (loop4): Directory bread(block 65) failed
[  521.758660][T17734] FAT-fs (loop4): Directory bread(block 66) failed
[  521.766681][T17734] FAT-fs (loop4): Directory bread(block 67) failed
[  521.844365][T17734] FAT-fs (loop4): Directory bread(block 68) failed
[  521.851233][T17734] FAT-fs (loop4): Directory bread(block 69) failed
[  521.915341][T17734] FAT-fs (loop4): Directory bread(block 70) failed
[  521.968922][T17734] FAT-fs (loop4): Directory bread(block 71) failed
[  521.976320][T17737] loop5: detected capacity change from 0 to 4096
[  521.989917][T17734] FAT-fs (loop4): Directory bread(block 72) failed
[  522.011557][T17737] __ntfs_error: 6 callbacks suppressed
[  522.011576][T17737] ntfs: (device loop5): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  522.033348][T17734] FAT-fs (loop4): Directory bread(block 73) failed
[  522.049304][T17737] ntfs: (device loop5): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  522.087720][T17737] ntfs: (device loop5): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  522.130130][T17737] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  522.175439][T17737] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  522.230342][T17737] ntfs: volume version 3.1.
[  522.249061][T17737] ntfs: (device loop5): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  522.269786][T17737] ntfs: (device loop5): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  522.294721][T17737] ntfs: (device loop5): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  522.309399][T17737] ntfs: (device loop5): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  522.385881][T17737] ntfs: (device loop5): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  522.699125][ T5885] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  522.857635][T17732] loop6: detected capacity change from 0 to 32768
[  522.887473][T17732] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  522.898197][T17732] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  522.931510][T17732] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  522.940718][ T5885] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  522.947046][   T23] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  522.961883][   T23] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  523.016630][ T5885] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has an invalid bInterval 0, changing to 7
[  523.042546][   T23] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 75ms
[  523.065259][   T23] gfs2: fsid=syz:syz.0: jid=0: Done
[  523.081793][ T5885] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.de
[  523.108916][T17732] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  523.154633][ T5885] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.193989][ T5885] usb 4-1: config 0 descriptor??
[  523.237041][T17732] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  523.276497][T17732] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  523.276497][T17732]   inode = 12 2341
[  523.276497][T17732]   function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602
[  523.306632][T17732] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  523.312073][T17755] loop4: detected capacity change from 0 to 4096
[  523.318140][T17732] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:17732 [syz.6.4886] __gfs2_lookup+0x90/0x270
[  523.370625][T17732] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  523.390763][T17732] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  523.399237][T17732] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  523.409222][T17732] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  523.421379][ T5885] ath6kl: Failed to submit usb control message: -71
[  523.430560][ T5885] ath6kl: unable to send the bmi data to the device: -71
[  523.439592][T17732] gfs2: fsid=syz:syz.0: File system withdrawn
[  523.446654][T17732] CPU: 0 PID: 17732 Comm: syz.6.4886 Not tainted 6.6.102-syzkaller #0
[  523.455280][T17732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  523.463963][T17755] ntfs: volume version 3.1.
[  523.465694][T17732] Call Trace:
[  523.465712][T17732]  <TASK>
[  523.465721][T17732]  dump_stack_lvl+0x16c/0x230
[  523.483719][T17732]  ? kobject_uevent_env+0x363/0x8c0
[  523.489677][T17732]  ? show_regs_print_info+0x20/0x20
[  523.495455][T17732]  ? load_image+0x3b0/0x3b0
[  523.500191][T17732]  ? kobject_uevent_env+0x363/0x8c0
[  523.507492][T17732]  gfs2_withdraw+0xe50/0x13b0
[  523.513111][T17732]  ? gfs2_lm+0x220/0x220
[  523.518751][T17732]  ? load_image+0x3b0/0x3b0
[  523.524701][T17732]  ? gfs2_consist_inode_i+0xf5/0x110
[  523.530957][T17732]  gfs2_dirent_scan+0x525/0x650
[  523.536531][T17732]  ? gfs2_dirent_search+0x7e0/0x7e0
[  523.542373][T17732]  ? gfs2_dirent_search+0x7e0/0x7e0
[  523.549720][T17732]  gfs2_dirent_search+0x2e1/0x7e0
[  523.555387][T17732]  ? gfs2_permission+0x370/0x430
[  523.560524][T17732]  ? __might_sleep+0xe0/0xe0
[  523.565391][T17732]  ? gfs2_dir_search+0x220/0x220
[  523.570953][T17732]  ? gfs2_lookupi+0x5a0/0x5a0
[  523.577842][T17732]  ? do_raw_spin_lock+0x121/0x2c0
[  523.583259][T17732]  gfs2_dir_search+0x4d/0x220
[  523.589628][T17732]  gfs2_lookupi+0x3d9/0x5a0
[  523.595537][T17732]  ? gfs2_lookup_meta+0x170/0x170
[  523.601252][T17732]  ? __gfs2_lookup+0x90/0x270
[  523.607153][T17732]  __gfs2_lookup+0x90/0x270
[  523.612091][T17732]  ? __lock_acquire+0x7c80/0x7c80
[  523.619031][T17732]  ? gfs2_atomic_open+0x220/0x220
[  523.625476][T17732]  ? do_raw_spin_unlock+0x121/0x230
[  523.633768][T17732]  ? _raw_spin_unlock+0x28/0x40
[  523.641007][T17732]  ? d_alloc+0x173/0x1b0
[  523.646943][T17732]  lookup_one_qstr_excl+0x112/0x250
[  523.654278][T17732]  filename_create+0x222/0x460
[  523.659792][T17732]  ? kern_path_create+0x50/0x50
[  523.664674][T17732]  ? __virt_addr_valid+0x469/0x540
[  523.670794][T17732]  do_mkdirat+0xa1/0x440
[  523.675799][T17732]  ? vfs_mkdir+0x440/0x440
[  523.680946][T17732]  ? getname_flags+0x20a/0x500
[  523.686739][T17732]  __x64_sys_mkdir+0x6e/0x80
[  523.691547][T17732]  do_syscall_64+0x55/0xb0
[  523.697567][T17732]  ? clear_bhb_loop+0x40/0x90
[  523.702637][T17732]  ? clear_bhb_loop+0x40/0x90
[  523.707882][T17732]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  523.713982][T17732] RIP: 0033:0x7f61da38ebe9
[  523.718596][T17732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  523.739195][T17732] RSP: 002b:00007f61db182038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  523.748223][T17732] RAX: ffffffffffffffda RBX: 00007f61da5b5fa0 RCX: 00007f61da38ebe9
[  523.756485][T17732] RDX: 0000000000000000 RSI: 00000000000001ad RDI: 0000200000000180
[  523.764575][T17732] RBP: 00007f61da411e19 R08: 0000000000000000 R09: 0000000000000000
[  523.773437][T17732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  523.782112][T17732] R13: 00007f61da5b6038 R14: 00007f61da5b5fa0 R15: 00007ffe26e923d8
[  523.791504][T17732]  </TASK>
[  523.799576][ T5885] ath6kl: Unable to send get target info: -71
[  523.811972][ T5885] ath6kl: Failed to init ath6kl core: -71
[  523.820401][ T5885] ath6kl_usb: probe of 4-1:0.0 failed with error -71
[  523.858599][ T5885] usb 4-1: USB disconnect, device number 31
[  524.217867][T17762] tmpfs: Bad value for 'mpol'
[  524.618140][T17772] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4904'.
[  524.718243][T17758] loop5: detected capacity change from 0 to 40427
[  524.779563][T17758] F2FS-fs (loop5): build fault injection attr: rate: 25, type: 0x7ffff
[  524.793363][T17758] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0x7698c
[  524.837862][T17758] F2FS-fs (loop5): invalid crc value
[  524.886637][T17758] F2FS-fs (loop5): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1d6/0x920
[  524.953554][T17758] F2FS-fs (loop5): Found nat_bits in checkpoint
[  525.111281][T17758] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  525.117242][T17790] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4912'.
[  525.196159][T17758] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  525.284082][T17758] F2FS-fs (loop5): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0
[  525.324267][T17795] loop3: detected capacity change from 0 to 1024
[  525.401286][T17795] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  525.456894][T17795] ext4 filesystem being mounted at /1330/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  525.507188][    C0] F2FS-fs (loop5): inject write IO error in f2fs_write_end_io of blk_update_request+0x597/0xe40
[  525.520523][    C0] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  525.546950][T11257] F2FS-fs (loop5): do_checkpoint failed err:-5, stop checkpoint
[  525.578305][T17795] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  525.736283][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  525.810346][T17809] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4921'.
[  525.831209][T17809] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4921'.
[  525.920899][T17812] netlink: 260 bytes leftover after parsing attributes in process `syz.3.4922'.
[  526.024931][T17816] validate_nla: 2 callbacks suppressed
[  526.024948][T17816] netlink: 'syz.6.4923': attribute type 32 has an invalid length.
[  526.705192][T17844] netlink: 'syz.3.4937': attribute type 9 has an invalid length.
[  526.715524][T17844] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.4937'.
[  527.036703][T17856] ieee802154 phy0 wpan0: encryption failed: -90
[  527.422935][T17870] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4950'.
[  527.560131][T17873] loop5: detected capacity change from 0 to 2048
[  527.639063][T17873] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  527.901670][T17887] loop3: detected capacity change from 0 to 256
[  527.934401][T17888] dlm: no locking on control device
[  528.020971][T17890] loop4: detected capacity change from 0 to 256
[  528.061308][T17887] FAT-fs (loop3): Directory bread(block 64) failed
[  528.063165][T17890] exfat: Deprecated parameter 'namecase'
[  528.113191][T17887] FAT-fs (loop3): Directory bread(block 65) failed
[  528.127617][T17890] exfat: Deprecated parameter 'utf8'
[  528.140534][T17887] FAT-fs (loop3): Directory bread(block 66) failed
[  528.147763][T17887] FAT-fs (loop3): Directory bread(block 67) failed
[  528.173388][T17894] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4962'.
[  528.181014][T17890] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  528.188205][T17887] FAT-fs (loop3): Directory bread(block 68) failed
[  528.253217][T17887] FAT-fs (loop3): Directory bread(block 69) failed
[  528.270285][T17887] FAT-fs (loop3): Directory bread(block 70) failed
[  528.277813][T17887] FAT-fs (loop3): Directory bread(block 71) failed
[  528.324312][T17887] FAT-fs (loop3): Directory bread(block 72) failed
[  528.331441][T17887] FAT-fs (loop3): Directory bread(block 73) failed
[  528.349026][T17896] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4963'.
[  528.896679][T17909] loop4: detected capacity change from 0 to 4096
[  528.924417][T17909] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  529.049677][T17909] ntfs3: loop4: Failed to initialize $Extend/$Reparse.
[  529.280592][T17920] loop6: detected capacity change from 0 to 4096
[  529.729455][T17936] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4983'.
[  529.784420][T17938] loop3: detected capacity change from 0 to 1024
[  529.985467][ T1330] hfsplus: b-tree write err: -5, ino 4
[  530.008901][T17947] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  530.008901][T17947] The task syz.4.4987 (17947) triggered the difference, watch for misbehavior.
[  530.148383][T17951] netlink: 'syz.6.4990': attribute type 9 has an invalid length.
[  530.190904][T17951] netlink: 209836 bytes leftover after parsing attributes in process `syz.6.4990'.
[  530.317238][T17957] loop3: detected capacity change from 0 to 128
[  530.342969][T17957] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  530.367809][T17957] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  530.852168][T17973] netlink: 'syz.3.5001': attribute type 21 has an invalid length.
[  530.877934][T17973] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5001'.
[  530.946021][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  530.953869][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  531.191108][T17985] loop5: detected capacity change from 0 to 16
[  531.213048][T17987] netlink: 'syz.4.5005': attribute type 9 has an invalid length.
[  531.221926][T17987] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.5005'.
[  531.262266][T17985] erofs: (device loop5): mounted with root inode @ nid 36.
[  531.315855][T17985] erofs: (device loop5): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  531.374976][T17985] erofs: (device loop5): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  531.452188][T17991] loop3: detected capacity change from 0 to 1024
[  531.642987][T18000] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[  531.686132][T17999] netlink: 'syz.5.5013': attribute type 1 has an invalid length.
[  531.709031][T17999] netlink: 224 bytes leftover after parsing attributes in process `syz.5.5013'.
[  531.722890][   T48] hfsplus: b-tree write err: -5, ino 4
[  531.955245][T18009] netlink: 'syz.5.5018': attribute type 21 has an invalid length.
[  532.114744][T18013] netlink: 'syz.4.5021': attribute type 9 has an invalid length.
[  532.143722][T18013] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.5021'.
[  532.327871][T18024] loop3: detected capacity change from 0 to 256
[  532.362161][T18024] exfat: Deprecated parameter 'namecase'
[  532.368234][T18024] exfat: Deprecated parameter 'utf8'
[  532.469060][T18024] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  532.537434][T18028] loop4: detected capacity change from 0 to 512
[  532.659598][T18028] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  532.732154][T18028] ext4 filesystem being mounted at /707/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  532.784164][T18028] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #12: comm syz.4.5028: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  532.984140][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  533.378897][T18052] netlink: 'syz.4.5037': attribute type 9 has an invalid length.
[  533.407189][T18052] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.5037'.
[  533.471663][T18054] loop3: detected capacity change from 0 to 16
[  533.510650][T18054] erofs: (device loop3): mounted with root inode @ nid 36.
[  533.565842][T18054] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  533.585984][T18054] erofs: (device loop3): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  533.641880][T18040] loop5: detected capacity change from 0 to 40427
[  533.695194][T18040] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  533.718376][T18040] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  533.774995][T18040] F2FS-fs (loop5): invalid crc_offset: 33558524
[  533.830452][T18040] F2FS-fs (loop5): Found nat_bits in checkpoint
[  534.061546][T18040] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  534.098486][T18040] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  535.114324][T18098] loop4: detected capacity change from 0 to 8192
[  535.156610][T18098] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  535.227279][T18098] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF
[  535.250950][T18078] loop6: detected capacity change from 0 to 40427
[  535.262966][T18098] FAT-fs (loop4): Filesystem has been set read-only
[  535.283733][T18078] F2FS-fs (loop6): build fault injection attr: rate: 25, type: 0x7ffff
[  535.300306][T18078] F2FS-fs (loop6): build fault injection attr: rate: 0, type: 0x7698c
[  535.347897][T18078] F2FS-fs (loop6): invalid crc value
[  535.370644][T18078] F2FS-fs (loop6): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1d6/0x920
[  535.404598][T18078] F2FS-fs (loop6): Found nat_bits in checkpoint
[  535.513662][T18078] F2FS-fs (loop6): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  535.578470][T18114] loop5: detected capacity change from 0 to 128
[  535.597652][T18078] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  535.622128][T18114] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  535.674536][T18114] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  535.741953][T18078] F2FS-fs (loop6): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0
[  535.795079][T18119] loop4: detected capacity change from 0 to 16
[  535.818939][T18119] erofs: (device loop4): mounted with root inode @ nid 36.
[  535.839061][T18119] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  535.861008][    C1] F2FS-fs (loop6): inject write IO error in f2fs_write_end_io of blk_update_request+0x597/0xe40
[  535.871850][T18119] erofs: (device loop4): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  535.872146][    C1] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  535.893910][T15033] F2FS-fs (loop6): do_checkpoint failed err:-5, stop checkpoint
[  536.093221][T18123] loop5: detected capacity change from 0 to 4096
[  536.175239][T18121] loop3: detected capacity change from 0 to 4096
[  536.237277][T18121] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  536.302607][T18121] ntfs3: loop3: Failed to initialize $Extend/$Reparse.
[  536.727714][T18132] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.5075'.
[  537.324180][T18153] misc userio: The device must be registered before sending interrupts
[  537.419727][T18156] loop3: detected capacity change from 0 to 256
[  537.495122][T18156] FAT-fs (loop3): Directory bread(block 64) failed
[  537.501934][T18156] FAT-fs (loop3): Directory bread(block 65) failed
[  537.555523][T18156] FAT-fs (loop3): Directory bread(block 66) failed
[  537.566562][T18156] FAT-fs (loop3): Directory bread(block 67) failed
[  537.593657][T18156] FAT-fs (loop3): Directory bread(block 68) failed
[  537.613936][T18156] FAT-fs (loop3): Directory bread(block 69) failed
[  537.647629][T18156] FAT-fs (loop3): Directory bread(block 70) failed
[  537.669192][T18156] FAT-fs (loop3): Directory bread(block 71) failed
[  537.705863][T18156] FAT-fs (loop3): Directory bread(block 72) failed
[  537.738409][T18156] FAT-fs (loop3): Directory bread(block 73) failed
[  538.180169][T18148] loop4: detected capacity change from 0 to 40427
[  538.198192][T18173] xt_TCPMSS: Only works on TCP SYN packets
[  538.226470][T18148] F2FS-fs (loop4): build fault injection attr: rate: 25, type: 0x7ffff
[  538.283430][T18148] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x7698c
[  538.312529][T18148] F2FS-fs (loop4): invalid crc value
[  538.329932][T18148] F2FS-fs (loop4): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1d6/0x920
[  538.366481][T18148] F2FS-fs (loop4): Found nat_bits in checkpoint
[  538.468272][T18148] F2FS-fs (loop4): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  538.564369][T18148] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  538.620773][T18182] loop6: detected capacity change from 0 to 4096
[  538.632356][T18182] ntfs3: loop6: Different NTFS sector size (2048) and media sector size (512).
[  538.689988][T18148] F2FS-fs (loop4): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0
[  538.705845][T18182] ntfs3: loop6: Failed to initialize $Extend/$ObjId.
[  538.838320][    C0] F2FS-fs (loop4): inject write IO error in f2fs_write_end_io of blk_update_request+0x597/0xe40
[  538.849263][    C0] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  538.893414][T11099] F2FS-fs (loop4): do_checkpoint failed err:-5, stop checkpoint
[  539.126455][T18200] (unnamed net_device) (uninitialized): Unable to set down delay as MII monitoring is disabled
[  539.199952][T18203] netlink: 'syz.6.5108': attribute type 21 has an invalid length.
[  539.208505][T18203] netlink: 128 bytes leftover after parsing attributes in process `syz.6.5108'.
[  539.218980][T18203] netlink: 'syz.6.5108': attribute type 5 has an invalid length.
[  539.228840][T18203] netlink: 'syz.6.5108': attribute type 6 has an invalid length.
[  539.237200][T18203] netlink: 3 bytes leftover after parsing attributes in process `syz.6.5108'.
[  539.596680][T18216] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5113'.
[  539.650398][T18214] loop5: detected capacity change from 0 to 4096
[  539.672463][T18214] __ntfs_error: 12 callbacks suppressed
[  539.672479][T18214] ntfs: (device loop5): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  539.696147][T18214] ntfs: (device loop5): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  539.714095][T18214] ntfs: (device loop5): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  539.733161][T18214] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  539.755953][T18214] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  539.770797][T18214] ntfs: volume version 3.1.
[  539.794386][T18214] ntfs: (device loop5): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  539.807716][T18214] ntfs: (device loop5): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  539.824664][T18214] ntfs: (device loop5): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  539.836330][T18214] ntfs: (device loop5): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  539.849559][T18214] ntfs: (device loop5): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  539.962331][   T54] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  540.052349][T18231] netlink: 'syz.5.5119': attribute type 21 has an invalid length.
[  540.065520][T18231] netlink: 128 bytes leftover after parsing attributes in process `syz.5.5119'.
[  540.079072][T18231] netlink: 'syz.5.5119': attribute type 5 has an invalid length.
[  540.093509][T18231] netlink: 'syz.5.5119': attribute type 6 has an invalid length.
[  540.105180][T18231] netlink: 3 bytes leftover after parsing attributes in process `syz.5.5119'.
[  540.117848][T18233] loop6: detected capacity change from 0 to 128
[  540.140849][T18233] FAT-fs (loop6): Directory bread(block 32) failed
[  540.159364][T18233] FAT-fs (loop6): Directory bread(block 33) failed
[  540.168670][   T54] usb 5-1: Using ep0 maxpacket: 8
[  540.187474][T18233] FAT-fs (loop6): Directory bread(block 34) failed
[  540.202901][   T54] usb 5-1: unable to get BOS descriptor or descriptor too short
[  540.224323][   T54] usb 5-1: config 8 has an invalid interface number: 61 but max is 2
[  540.233411][T18233] FAT-fs (loop6): Directory bread(block 35) failed
[  540.241015][   T54] usb 5-1: config 8 has 1 interface, different from the descriptor's value: 3
[  540.250525][T18233] FAT-fs (loop6): Directory bread(block 36) failed
[  540.257352][T18233] FAT-fs (loop6): Directory bread(block 37) failed
[  540.266202][   T54] usb 5-1: config 8 has no interface number 0
[  540.272947][   T54] usb 5-1: config 8 interface 61 altsetting 8 endpoint 0x9 has invalid wMaxPacketSize 0
[  540.284471][T18233] FAT-fs (loop6): Directory bread(block 38) failed
[  540.291317][T18233] FAT-fs (loop6): Directory bread(block 39) failed
[  540.301532][T18233] FAT-fs (loop6): Directory bread(block 40) failed
[  540.303332][   T54] usb 5-1: config 8 interface 61 altsetting 8 endpoint 0x5 has invalid wMaxPacketSize 0
[  540.313243][T18233] FAT-fs (loop6): Directory bread(block 41) failed
[  540.324806][   T54] usb 5-1: config 8 interface 61 has no altsetting 0
[  540.345375][   T54] usb 5-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=e9.1f
[  540.366243][   T54] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  540.380889][   T54] usb 5-1: Product: syz
[  540.385213][   T54] usb 5-1: Manufacturer: syz
[  540.399660][   T54] usb 5-1: SerialNumber: syz
[  540.517904][T18233] syz.6.5121: attempt to access beyond end of device
[  540.517904][T18233] loop6: rw=0, sector=4108, nr_sectors = 4 limit=128
[  540.534716][T18233] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 196)
[  540.547939][T18233] FAT-fs (loop6): Filesystem has been set read-only
[  540.642181][   T54] bfusb: probe of 5-1:8.61 failed with error -5
[  540.675908][   T54] usb 5-1: USB disconnect, device number 11
[  540.702271][T18241] netlink: 44 bytes leftover after parsing attributes in process `syz.3.5125'.
[  541.211938][ T5885] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  541.417193][ T5885] usb 7-1: config 0 has an invalid interface number: 199 but max is 1
[  541.437352][ T5885] usb 7-1: config 0 has no interface number 1
[  541.444070][ T5885] usb 7-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  541.492280][ T5885] usb 7-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  541.527040][ T5885] usb 7-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00
[  541.551201][ T5885] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  541.570837][ T5885] usb 7-1: SerialNumber: syz
[  541.584537][ T5885] usb 7-1: config 0 descriptor??
[  541.600507][ T5885] usb 7-1: Found UVC 0.00 device <unnamed> (0002:0000)
[  541.631550][ T5885] usb 7-1: No valid video chain found.
[  541.896402][    T9] usb 7-1: USB disconnect, device number 3
[  541.978160][T18284] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5146'.
[  542.300570][T18298] veth1_vlan: left allmulticast mode
[  542.327896][T18299] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5152'.
[  542.396235][T18294] loop5: detected capacity change from 0 to 4096
[  543.138998][T18326] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  543.217805][T18326] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  543.655223][T18309] loop6: detected capacity change from 0 to 40427
[  543.690534][T18309] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  543.708402][T18309] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  543.762845][T18309] F2FS-fs (loop6): invalid crc_offset: 33558524
[  543.794780][T18309] F2FS-fs (loop6): Found nat_bits in checkpoint
[  544.005240][T18309] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  544.033816][T18309] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  544.182116][T18362] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5172'.
[  544.224388][T18362] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5172'.
[  544.726686][T18379] loop4: detected capacity change from 0 to 4096
[  544.810156][T18387] loop3: detected capacity change from 0 to 16
[  544.867881][T18387] erofs: (device loop3): mounted with root inode @ nid 36.
[  544.914657][T18390] vxcan3: entered promiscuous mode
[  544.920093][T18390] vxcan3: entered allmulticast mode
[  544.962929][T18387] erofs: (device loop3): z_erofs_fill_inode_lazy: unknown HEAD1 format 13 for nid 36, please upgrade kernel
[  545.033251][T18387] erofs: (device loop3): z_erofs_fill_inode_lazy: unknown HEAD1 format 13 for nid 36, please upgrade kernel
[  545.082285][T18387] erofs: (device loop3): z_erofs_read_folio: read error -95 @ 43 of nid 36
[  545.156684][   T27] kauditd_printk_skb: 15 callbacks suppressed
[  545.156699][   T27] audit: type=1800 audit(1755613438.712:153): pid=18379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.5179" name="file1" dev="loop4" ino=33 res=0 errno=0
[  545.286466][   T27] audit: type=1326 audit(1755613438.834:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18398 comm="syz.5.5185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  545.391724][   T27] audit: type=1326 audit(1755613438.834:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18398 comm="syz.5.5185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  545.393444][T18403] dlm: non-version read from control device 0
[  545.415206][    C1] vkms_vblank_simulate: vblank timer overrun
[  545.428177][    T9] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  545.481625][   T27] audit: type=1326 audit(1755613438.843:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18398 comm="syz.5.5185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  545.504260][    C1] vkms_vblank_simulate: vblank timer overrun
[  545.575678][   T27] audit: type=1326 audit(1755613438.843:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18398 comm="syz.5.5185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  545.637189][    T9] usb 7-1: Using ep0 maxpacket: 8
[  545.642184][   T27] audit: type=1326 audit(1755613438.843:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18398 comm="syz.5.5185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  545.665731][    C1] vkms_vblank_simulate: vblank timer overrun
[  545.687593][T18411] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  545.699722][    T9] usb 7-1: New USB device found, idVendor=110a, idProduct=1450, bcdDevice=62.cb
[  545.699750][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  545.699769][    T9] usb 7-1: Product: syz
[  545.699793][    T9] usb 7-1: Manufacturer: syz
[  545.699807][    T9] usb 7-1: SerialNumber: syz
[  545.716761][T18411] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  545.933025][T18417] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5194'.
[  546.171553][    T9] mxuport 7-1:254.0: mxuport_recv_ctrl_urb - usb_control_msg failed (-71)
[  546.199745][    T9] mxuport: probe of 7-1:254.0 failed with error -5
[  546.217009][   T27] audit: type=1400 audit(1755613439.713:159): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=262620E7 pid=18424 comm="syz.3.5198"
[  546.233744][    T9] usb 7-1: USB disconnect, device number 4
[  546.533808][T18437] loop3: detected capacity change from 0 to 1024
[  546.633005][T18442] loop4: detected capacity change from 0 to 4096
[  546.668525][T18442] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  546.735982][T18442] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  546.825127][T18442] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  546.884113][T18447] batadv1: entered allmulticast mode
[  546.901454][T18442] ntfs: volume version 3.1.
[  546.977469][T18447] 8021q: adding VLAN 0 to HW filter on device batadv1
[  547.146022][T18452] netlink: 14 bytes leftover after parsing attributes in process `syz.5.5211'.
[  547.168211][T18452] veth1_vlan: left allmulticast mode
[  547.202372][T18452] bond0: (slave macvlan0): Releasing backup interface
[  547.858738][T18486] netlink: 32 bytes leftover after parsing attributes in process `syz.6.5226'.
[  548.051538][T18492] loop3: detected capacity change from 0 to 2048
[  548.094629][T18492] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  548.155282][T18501] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  548.159016][T18492] syz.3.5230: attempt to access beyond end of device
[  548.159016][T18492] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  548.180623][T18500] xt_CT: You must specify a L4 protocol and not use inversions on it
[  548.268116][T18492] syz.3.5230: attempt to access beyond end of device
[  548.268116][T18492] loop3: rw=0, sector=9437254, nr_sectors = 2 limit=2048
[  548.312233][T18492] NILFS (loop3): I/O error reading meta-data file (ino=6, block-offset=0)
[  548.551043][T18515] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5238'.
[  548.923372][T18533] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5250'.
[  549.384209][T18556] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5259'.
[  550.049384][T18580] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5271'.
[  550.076586][T18580] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  550.106645][T18580] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  550.213327][T18584] netlink: 'syz.6.5274': attribute type 10 has an invalid length.
[  550.237004][T18584] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5274'.
[  550.332773][T18584] team0: Port device geneve0 added
[  550.349054][T18588] netlink: 14 bytes leftover after parsing attributes in process `syz.3.5276'.
[  550.414412][T18588] veth1_vlan: left allmulticast mode
[  550.418825][T18593] loop5: detected capacity change from 0 to 256
[  550.431527][T18593] exfat: Deprecated parameter 'namecase'
[  550.457363][T18593] exfat: Deprecated parameter 'namecase'
[  550.484973][T18593] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  550.510046][T18588] bond0: (slave macvlan0): Releasing backup interface
[  550.570261][T18593] exFAT-fs (loop5): invalid start cluster (4278190088)
[  551.012514][T18614] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5289'.
[  551.057540][T18614] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5289'.
[  551.128758][T18618] loop4: detected capacity change from 0 to 16
[  551.174583][T18618] erofs: (device loop4): mounted with root inode @ nid 36.
[  551.379576][T18630] damon-dbgfs: DAMON debugfs interface is deprecated, so users should move to DAMON_SYSFS. If you cannot, please report your usecase to damon@lists.linux.dev and linux-mm@kvack.org.
[  551.716079][T18647] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5305'.
[  551.954114][ T5885] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  552.152993][T18664] bond0: (slave macvlan0): Releasing backup interface
[  552.171361][ T5885] usb 6-1: Using ep0 maxpacket: 8
[  552.187069][ T5885] usb 6-1: config 0 has an invalid interface number: 31 but max is 0
[  552.201192][ T5885] usb 6-1: config 0 has no interface number 0
[  552.221361][   T54] usb 4-1: new full-speed USB device number 32 using dummy_hcd
[  552.226273][ T5885] usb 6-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  552.261027][ T5885] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  552.285597][ T5885] usb 6-1: Product: syz
[  552.289903][ T5885] usb 6-1: Manufacturer: syz
[  552.294737][ T5885] usb 6-1: SerialNumber: syz
[  552.319400][ T5885] usb 6-1: config 0 descriptor??
[  552.436946][   T54] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  552.455998][   T54] usb 4-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f
[  552.467673][T18670] loop4: detected capacity change from 0 to 4096
[  552.483060][   T54] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  552.484187][T18670] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  552.491441][   T54] usb 4-1: Product: syz
[  552.516263][   T54] usb 4-1: Manufacturer: syz
[  552.539725][   T54] usb 4-1: SerialNumber: syz
[  552.546168][ T5885] usb 6-1: Found UVC 0.04 device syz (046d:08c3)
[  552.554729][   T54] usb 4-1: config 0 descriptor??
[  552.569206][   T54] hub 4-1:0.0: bad descriptor, ignoring hub
[  552.569250][ T5885] usb 6-1: No valid video chain found.
[  552.591303][   T54] hub: probe of 4-1:0.0 failed with error -5
[  552.606818][ T5885] usb 6-1: USB disconnect, device number 11
[  552.637554][   T54] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  552.709671][T18670] ntfs3: loop4: failed to convert "c46c" to iso8859-15
[  552.709717][   T54] snd-usb-audio: probe of 4-1:0.0 failed with error -2
[  552.787606][T18668] loop6: detected capacity change from 0 to 32768
[  552.811141][T16433] udevd[16433]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  552.846223][T18668] (syz.6.5315,18668,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  552.895876][T18668] (syz.6.5315,18668,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  552.987402][T18668] JBD2: Ignoring recovery information on journal
[  552.995590][   T54] usb 4-1: USB disconnect, device number 32
[  553.025732][T18675] loop4: detected capacity change from 0 to 256
[  553.033777][T18675] exfat: Deprecated parameter 'utf8'
[  553.039355][T18675] exfat: Deprecated parameter 'namecase'
[  553.063370][T18675] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001016b, chksum : 0xc5c53e17, utbl_chksum : 0xe619d30d)
[  553.082398][T18668] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  553.218902][T18678] loop5: detected capacity change from 0 to 128
[  553.325072][T15033] ocfs2: Unmounting device (7,6) on (node local)
[  553.578548][T18686] ip6gre1: entered promiscuous mode
[  553.719725][T18690] __nla_validate_parse: 1 callbacks suppressed
[  553.719744][T18690] netlink: 209852 bytes leftover after parsing attributes in process `syz.6.5320'.
[  553.766252][T18690] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  553.788261][T18690] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  553.937644][T18700] ieee802154 phy0 wpan0: encryption failed: -22
[  554.182085][T18713] netlink: 14 bytes leftover after parsing attributes in process `syz.6.5335'.
[  554.318462][T18718] netlink: 60 bytes leftover after parsing attributes in process `syz.5.5339'.
[  554.817151][T18737] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5348'.
[  555.463605][T18761] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  555.553043][T18765] netlink: 'syz.4.5362': attribute type 10 has an invalid length.
[  555.584074][T18765] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5362'.
[  555.690521][T18765] geneve0: entered allmulticast mode
[  555.702506][T18772] loop3: detected capacity change from 0 to 256
[  555.732951][T18772] exfat: Deprecated parameter 'namecase'
[  555.738769][T18765] team0: Port device geneve0 added
[  555.790799][T18772] exfat: Deprecated parameter 'namecase'
[  555.850076][T18772] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  555.957972][T18772] exFAT-fs (loop3): invalid start cluster (4278190088)
[  556.037836][T18783] netlink: 'syz.5.5370': attribute type 27 has an invalid length.
[  556.055538][T18783] netlink: 'syz.5.5370': attribute type 3 has an invalid length.
[  556.110212][T18783] netlink: 132 bytes leftover after parsing attributes in process `syz.5.5370'.
[  556.138335][T18787] binfmt_misc: register: failed to install interpreter file ./file0
[  556.326470][T18793] netlink: 'syz.5.5377': attribute type 1 has an invalid length.
[  556.334521][T18793] netlink: 224 bytes leftover after parsing attributes in process `syz.5.5377'.
[  556.868332][T18816] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5386'.
[  557.104206][T18827] cgroup: Bad value for 'name'
[  557.210451][T18833] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  557.256568][T18833] overlayfs: conflicting options: metacopy=off,verity=on
[  558.189121][T18869] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5407'.
[  558.351282][T18838] loop6: detected capacity change from 0 to 32768
[  558.399508][   T54] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  558.489510][T18838] ERROR: (device loop6): dbAllocNext: Corrupt dmap page
[  558.489510][T18838] 
[  558.515779][T18838] ERROR: (device loop6): remounting filesystem as read-only
[  558.536128][T18838] ialloc: diAlloc returned -5!
[  558.557305][ T5885] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  558.626204][   T54] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  558.663901][   T54] usb 6-1: config 1 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  558.687970][   T54] usb 6-1: config 1 interface 0 has no altsetting 0
[  558.698435][   T54] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  558.708364][   T54] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  558.717217][   T54] usb 6-1: Product: syz
[  558.722111][   T54] usb 6-1: Manufacturer: syz
[  558.727132][   T54] usb 6-1: SerialNumber: syz
[  558.795769][ T5885] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  558.822213][ T5885] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  558.843256][ T5885] usb 4-1: config 0 descriptor??
[  559.199469][T18893] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5418'.
[  559.215712][ T5851] usb 6-1: USB disconnect, device number 12
[  559.303869][ T5885] [drm:udl_init] *ERROR* Selecting channel failed
[  559.357558][ T5885] [drm] Initialized udl 0.0.1 20120220 for 4-1:0.0 on minor 2
[  559.374129][ T5885] [drm] Initialized udl on minor 2
[  559.397498][ T5885] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  559.424816][ T5885] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  559.448613][    T9] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  559.464244][ T5885] usb 4-1: USB disconnect, device number 33
[  559.481910][    T9] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  559.518641][T18901] ieee802154 phy0 wpan0: encryption failed: -22
[  559.768789][T18911] netlink: 36 bytes leftover after parsing attributes in process `syz.6.5427'.
[  560.451330][T18936] loop6: detected capacity change from 0 to 4096
[  560.463408][T18936] ntfs3: loop6: Different NTFS sector size (4096) and media sector size (512).
[  560.633306][T18936] ntfs3: loop6: failed to convert "c46c" to ascii
[  560.937324][T18950] loop5: detected capacity change from 0 to 512
[  561.003008][T18950] EXT4-fs (loop5): Test dummy encryption mode enabled
[  561.060680][T18950] EXT4-fs (loop5): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  561.128540][T18941] loop3: detected capacity change from 0 to 32768
[  561.205166][T18941] (syz.3.5441,18941,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  561.274145][T18941] (syz.3.5441,18941,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  561.361963][T18941] JBD2: Ignoring recovery information on journal
[  561.468868][T18941] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  561.563492][T18950] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  561.649070][T18950] EXT4-fs error (device loop5): ext4_add_entry:2486: inode #2: comm syz.5.5446: Directory hole found for htree leaf block 0
[  561.684033][T18950] EXT4-fs (loop5): Remounting filesystem read-only
[  561.713112][T18974] x_tables: duplicate underflow at hook 3
[  561.772285][T11257] EXT4-fs (loop5): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  561.903375][   T27] kauditd_printk_skb: 17 callbacks suppressed
[  561.903390][   T27] audit: type=1326 audit(1755613454.383:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18979 comm="syz.4.5460" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x0
[  562.002317][ T5788] ocfs2: Unmounting device (7,3) on (node local)
[  562.322889][T18994] loop4: detected capacity change from 0 to 128
[  562.360769][T18994] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  562.399751][T18994] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  563.088958][T18992] loop5: detected capacity change from 0 to 32768
[  563.099748][T18992] (syz.5.5464,18992,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  563.151059][T18992] (syz.5.5464,18992,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  563.221027][T18992] JBD2: Ignoring recovery information on journal
[  563.320128][T18992] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  563.480326][T19027] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5479'.
[  563.635949][T19030] loop4: detected capacity change from 0 to 4096
[  563.656697][T19030] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  563.701173][T11257] ocfs2: Unmounting device (7,5) on (node local)
[  563.760995][T19034] batadv1: entered allmulticast mode
[  563.772762][T19030] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  563.798650][T19034] 8021q: adding VLAN 0 to HW filter on device batadv1
[  564.044975][T19039] loop3: detected capacity change from 0 to 256
[  564.256385][T19041] dlm: non-version read from control device 59
[  564.305867][T19043] netlink: 'syz.5.5484': attribute type 3 has an invalid length.
[  564.818919][T19065] batadv1: entered allmulticast mode
[  564.856121][T19065] 8021q: adding VLAN 0 to HW filter on device batadv1
[  565.528972][T19092] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5511'.
[  565.777321][T19105] loop6: detected capacity change from 0 to 128
[  565.822508][T19104] batadv1: entered allmulticast mode
[  565.871515][T19104] 8021q: adding VLAN 0 to HW filter on device batadv1
[  565.882663][T19107] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.5519'.
[  565.886795][T19109] loop4: detected capacity change from 0 to 128
[  565.920537][T19109] FAT-fs (loop4): Directory bread(block 11554) failed
[  565.944705][T19109] FAT-fs (loop4): Directory bread(block 11555) failed
[  565.999124][T19109] FAT-fs (loop4): Directory bread(block 11556) failed
[  566.001791][T19035] Bluetooth: hci4: command 0x0406 tx timeout
[  566.006492][T19109] FAT-fs (loop4): Directory bread(block 11557) failed
[  566.043629][T19109] FAT-fs (loop4): Directory bread(block 11558) failed
[  566.052339][T19109] FAT-fs (loop4): Directory bread(block 11559) failed
[  566.060801][T19109] FAT-fs (loop4): Directory bread(block 11560) failed
[  566.070304][T19109] FAT-fs (loop4): Directory bread(block 11561) failed
[  566.079243][T19109] FAT-fs (loop4): Directory bread(block 11562) failed
[  566.087806][T19109] FAT-fs (loop4): Directory bread(block 11563) failed
[  567.073245][T19141] netlink: 'syz.5.5537': attribute type 4 has an invalid length.
[  567.253140][T19148] netlink: 340 bytes leftover after parsing attributes in process `syz.4.5539'.
[  567.353449][T19148] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5539'.
[  567.432663][T19117] loop3: detected capacity change from 0 to 32768
[  567.465633][T19155] netlink: 'syz.6.5543': attribute type 1 has an invalid length.
[  567.475600][T19117] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  567.503372][T19117] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  567.578844][T19117] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  567.625259][   T54] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  567.636325][   T54] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  567.750755][   T54] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 107ms
[  567.805627][   T54] gfs2: fsid=syz:syz.0: jid=0: Done
[  567.813139][T19117] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  568.215762][T19173] bond0: (slave bond0): Error: Device is in use and cannot be enslaved
[  568.309128][T19174] loop5: detected capacity change from 0 to 1024
[  568.413213][T19166] loop4: detected capacity change from 0 to 32768
[  568.458680][T19166] ialloc: diAlloc returned -5!
[  568.522103][   T42] hfsplus: b-tree write err: -5, ino 4
[  568.885840][ T5851] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  568.898277][T19191] netlink: 'syz.5.5560': attribute type 21 has an invalid length.
[  568.924075][T19191] netlink: 'syz.5.5560': attribute type 6 has an invalid length.
[  568.956419][T19191] netlink: 132 bytes leftover after parsing attributes in process `syz.5.5560'.
[  569.107576][ T5851] usb 7-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  569.117104][T19198] batadv1: entered allmulticast mode
[  569.128536][ T5851] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  569.149905][T19198] 8021q: adding VLAN 0 to HW filter on device batadv1
[  569.151721][ T5851] usb 7-1: config 0 descriptor??
[  569.537416][   T23] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  569.628924][T19214] xt_TCPMSS: Only works on TCP SYN packets
[  569.638571][ T5851] [drm:udl_init] *ERROR* Selecting channel failed
[  569.671208][ T5851] [drm] Initialized udl 0.0.1 20120220 for 7-1:0.0 on minor 2
[  569.697626][ T5851] [drm] Initialized udl on minor 2
[  569.710774][ T5851] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  569.724517][ T5851] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[  569.734934][    T9] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  569.756494][ T5851] usb 7-1: USB disconnect, device number 5
[  569.775141][    T9] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[  569.826710][   T23] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  569.847771][   T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  569.868572][   T23] usb 4-1: Product: syz
[  569.873215][   T23] usb 4-1: Manufacturer: syz
[  569.877928][   T23] usb 4-1: SerialNumber: syz
[  569.893924][   T23] usb 4-1: config 0 descriptor??
[  570.146096][   T23] hso 4-1:0.0: Failed to find BULK IN ep
[  570.156175][   T23] usb-storage 4-1:0.0: USB Mass Storage device detected
[  570.194574][T19212] loop5: detected capacity change from 0 to 32768
[  570.262999][T19212] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  570.365271][   T23] usb 4-1: USB disconnect, device number 34
[  570.372547][T19212] XFS (loop5): Ending clean mount
[  570.401997][T19212] XFS (loop5): Quotacheck needed: Please wait.
[  570.488860][T19236] batadv1: entered allmulticast mode
[  570.495759][T19236] 8021q: adding VLAN 0 to HW filter on device batadv1
[  570.521209][T19212] XFS (loop5): Quotacheck: Done.
[  570.641830][T11257] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  570.701441][T19242] loop6: detected capacity change from 0 to 512
[  570.709968][T19242] EXT4-fs: Ignoring removed mblk_io_submit option
[  570.735217][T19242] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  570.743829][T19242] EXT4-fs (loop6): orphan cleanup on readonly fs
[  570.751107][T19242] Quota error (device loop6): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  570.764639][T19242] EXT4-fs warning (device loop6): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  570.787731][T19242] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  570.805103][T19242] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.5582: bg 0: block 40: padding at end of block bitmap is not set
[  570.845584][T19242] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  570.856541][T19242] EXT4-fs (loop6): 1 truncate cleaned up
[  570.864840][T19242] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  570.922782][T19242] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  571.029326][T15033] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.343441][   T54] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  571.365019][T19252] loop6: detected capacity change from 0 to 32768
[  571.372345][T19252] XFS: noikeep mount option is deprecated.
[  571.390476][T19252] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  571.450714][T19252] XFS (loop6): Ending clean mount
[  571.467771][T19252] XFS (loop6): Quotacheck needed: Please wait.
[  571.529815][T19252] XFS (loop6): Quotacheck: Done.
[  571.550910][   T54] usb 5-1: Using ep0 maxpacket: 8
[  571.572154][   T54] usb 5-1: config 2 has an invalid interface number: 31 but max is 0
[  571.589518][   T54] usb 5-1: config 2 has no interface number 0
[  571.596159][   T54] usb 5-1: config 2 interface 31 has no altsetting 0
[  571.615705][   T54] usb 5-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[  571.629862][   T54] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  571.638845][   T54] usb 5-1: Product: syz
[  571.643594][   T54] usb 5-1: Manufacturer: syz
[  571.645307][T15033] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  571.648382][   T54] usb 5-1: SerialNumber: syz
[  572.199472][   T54] ch9200: probe of 5-1:2.31 failed with error -22
[  572.215357][   T54] usb 5-1: USB disconnect, device number 12
[  572.503927][T19282] netlink: 188 bytes leftover after parsing attributes in process `syz.3.5594'.
[  573.153893][   T27] audit: type=1326 audit(1755613464.908:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19307 comm="syz.4.5608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  573.216963][   T27] audit: type=1326 audit(1755613464.908:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19307 comm="syz.4.5608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  573.261939][   T27] audit: type=1326 audit(1755613464.917:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19307 comm="syz.4.5608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  573.308897][   T27] audit: type=1326 audit(1755613464.917:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19307 comm="syz.4.5608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  573.386114][   T27] audit: type=1326 audit(1755613464.917:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19307 comm="syz.4.5608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  573.472821][T19320] loop5: detected capacity change from 0 to 47
[  573.499926][T19315] loop4: detected capacity change from 0 to 4096
[  573.565801][T19323] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  574.111895][    T9] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  574.153620][T19347] loop6: detected capacity change from 0 to 64
[  574.158744][T19344] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  574.333473][T19351] program syz.4.5627 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  574.336369][    T9] usb 6-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  574.365109][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  574.402620][    T9] usb 6-1: config 0 descriptor??
[  574.851352][    T9] [drm:udl_init] *ERROR* Selecting channel failed
[  574.866856][T19371] loop4: detected capacity change from 0 to 256
[  574.888620][    T9] [drm] Initialized udl 0.0.1 20120220 for 6-1:0.0 on minor 2
[  574.923507][    T9] [drm] Initialized udl on minor 2
[  574.950705][    T9] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  574.964517][T19371] FAT-fs (loop4): Directory bread(block 64) failed
[  574.975662][    T9] udl 6-1:0.0: [drm] Cannot find any crtc or sizes
[  575.007266][T19371] FAT-fs (loop4): Directory bread(block 65) failed
[  575.024923][    T9] usb 6-1: USB disconnect, device number 13
[  575.032104][ T5885] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  575.045620][T19371] FAT-fs (loop4): Directory bread(block 66) failed
[  575.050486][ T5885] udl 6-1:0.0: [drm] Cannot find any crtc or sizes
[  575.071993][T19371] FAT-fs (loop4): Directory bread(block 67) failed
[  575.103030][T19371] FAT-fs (loop4): Directory bread(block 68) failed
[  575.116619][T19371] FAT-fs (loop4): Directory bread(block 69) failed
[  575.138335][T19371] FAT-fs (loop4): Directory bread(block 70) failed
[  575.160046][T19371] FAT-fs (loop4): Directory bread(block 71) failed
[  575.180974][T19371] FAT-fs (loop4): Directory bread(block 72) failed
[  575.187721][T19371] FAT-fs (loop4): Directory bread(block 73) failed
[  575.626492][T19387] loop3: detected capacity change from 0 to 4096
[  575.773675][T19397] loop4: detected capacity change from 0 to 1024
[  575.814695][T19397] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  575.836968][T19387] ntfs3: loop3: Failed to initialize $Extend/$Reparse.
[  575.874015][   T27] audit: type=1326 audit(1755613467.453:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19401 comm="syz.5.5651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  575.910776][T19387] ntfs3: loop3: ino=9, ntfs_sync_fs failed, -22.
[  575.933902][   T27] audit: type=1326 audit(1755613467.453:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19401 comm="syz.5.5651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  575.960193][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.978994][T19387] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  575.988781][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.014407][   T27] audit: type=1326 audit(1755613467.453:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19401 comm="syz.5.5651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  576.045386][   T27] audit: type=1326 audit(1755613467.462:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19401 comm="syz.5.5651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f535778ebe9 code=0x7ffc0000
[  576.069005][    C0] vkms_vblank_simulate: vblank timer overrun
[  576.193281][T19408] netlink: 'syz.6.5656': attribute type 21 has an invalid length.
[  576.223923][T19408] netlink: 156 bytes leftover after parsing attributes in process `syz.6.5656'.
[  576.707123][T19432] ksmbd: Unknown IPC event: 3, ignore.
[  576.732723][   T23] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  576.807431][ T5102] Bluetooth: hci3: unexpected cc 0x0c5b length: 5 > 1
[  576.814690][ T5102] Bluetooth: hci3: unexpected event for opcode 0x0c5b
[  576.946625][   T23] usb 5-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  576.948746][T19442] loop5: detected capacity change from 0 to 64
[  576.967304][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  577.007746][   T23] usb 5-1: config 0 descriptor??
[  577.207118][T19445] loop6: detected capacity change from 0 to 4096
[  577.226389][T19445] __ntfs_warning: 1 callbacks suppressed
[  577.226405][T19445] ntfs: (device loop6): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  577.309431][T19445] ntfs: volume version 3.1.
[  577.380782][T19452] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  577.480105][   T23] [drm:udl_init] *ERROR* Selecting channel failed
[  577.520480][   T23] [drm] Initialized udl 0.0.1 20120220 for 5-1:0.0 on minor 2
[  577.550175][   T23] [drm] Initialized udl on minor 2
[  577.582479][   T23] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  577.603122][   T23] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  577.634246][ T5852] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  577.652118][   T23] usb 5-1: USB disconnect, device number 13
[  577.658607][ T5852] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  578.062421][T19469] loop3: detected capacity change from 0 to 4096
[  578.082226][T19469] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  578.151096][T19469] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  578.289583][T19479] loop6: detected capacity change from 0 to 512
[  578.301543][T19481] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5689'.
[  578.353266][T19479] EXT4-fs (loop6): Test dummy encryption mode enabled
[  578.408438][T19478] loop5: detected capacity change from 0 to 4096
[  578.423960][T19479] EXT4-fs (loop6): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  578.564147][T19479] EXT4-fs error (device loop6): ext4_add_entry:2486: inode #2: comm syz.6.5688: Directory hole found for htree leaf block 0
[  578.568782][T19478] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  578.598442][T19479] EXT4-fs (loop6): Remounting filesystem read-only
[  578.656664][T19478] ntfs3: loop5: ino=9, ntfs_sync_fs failed, -22.
[  578.735886][T15033] EXT4-fs (loop6): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  578.757314][T11257] ntfs3: loop5: ino=9, ntfs_sync_fs failed, -22.
[  579.072565][T19500] libceph: resolve '0' (ret=-3): failed
[  579.237293][T19504] loop5: detected capacity change from 0 to 4096
[  579.286945][T19504] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512).
[  579.291124][T19510] loop3: detected capacity change from 0 to 512
[  579.324392][T19510] EXT4-fs (loop3): Test dummy encryption mode enabled
[  579.421481][T19504] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  579.444532][T19510] EXT4-fs (loop3): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.659560][T19510] EXT4-fs error (device loop3): ext4_add_entry:2486: inode #2: comm syz.3.5703: Directory hole found for htree leaf block 0
[  579.705947][T19510] EXT4-fs (loop3): Remounting filesystem read-only
[  579.821023][ T5788] EXT4-fs (loop3): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  579.990724][T19534] vim2m vim2m.0: Fourcc format (0x47425247) invalid.
[  580.006067][T19533] netlink: 72 bytes leftover after parsing attributes in process `syz.4.5714'.
[  580.156113][T19538] loop6: detected capacity change from 0 to 1024
[  580.302690][   T48] hfsplus: b-tree write err: -5, ino 4
[  580.479561][T19550] loop4: detected capacity change from 0 to 512
[  580.525676][T19550] EXT4-fs (loop4): Test dummy encryption mode enabled
[  580.563172][T19548] loop6: detected capacity change from 0 to 4096
[  580.570907][T19550] EXT4-fs (loop4): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  580.599963][T19548] ntfs3: loop6: Different NTFS sector size (1024) and media sector size (512).
[  580.616963][T19555] AppArmor: change_hat: Invalid input '0'
[  580.686958][T19550] EXT4-fs error (device loop4): ext4_add_entry:2486: inode #2: comm syz.4.5722: Directory hole found for htree leaf block 0
[  580.702165][T19559] loop3: detected capacity change from 0 to 2048
[  580.742240][T19550] EXT4-fs (loop4): Remounting filesystem read-only
[  580.753792][T19559] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  580.803850][T19559] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  580.841559][T19548] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  580.866524][T11099] EXT4-fs (loop4): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  581.734174][T19584] sp0: Synchronizing with TNC
[  581.857229][T19566] loop3: detected capacity change from 0 to 32768
[  581.924874][T19566] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  582.031650][T19566] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  582.140722][T19566] (syz.3.5729,19566,1):ocfs2_mknod:502 ERROR: status = -31
[  582.148337][T19566] (syz.3.5729,19566,1):ocfs2_mkdir:659 ERROR: status = -31
[  582.292921][ T5788] ocfs2: Unmounting device (7,3) on (node local)
[  582.353023][T19601] loop4: detected capacity change from 0 to 8192
[  582.390837][T19607] loop6: detected capacity change from 0 to 8
[  582.402112][T19601] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  582.427421][T19607] SQUASHFS error: zlib decompression failed, data probably corrupt
[  582.458727][T19607] SQUASHFS error: Failed to read block 0x9b: -5
[  582.474645][T19607] SQUASHFS error: Unable to read metadata cache entry [99]
[  582.489611][T19601] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  582.494458][T19607] SQUASHFS error: Unable to read inode 0x127
[  582.522241][T19601] FAT-fs (loop4): Filesystem has been set read-only
[  582.607357][ T5102] Bluetooth: hci4: unexpected event for opcode 0x203c
[  582.794812][T19611] xt_CT: You must specify a L4 protocol and not use inversions on it
[  582.835331][T19617] binder: 19616:19617 ioctl c0306201 200000000080 returned -14
[  583.164360][T19623] loop3: detected capacity change from 0 to 4096
[  583.256556][T19623] ntfs: volume version 3.1.
[  583.507186][   T27] audit: type=1326 audit(1755613474.582:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.4.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  583.604508][   T27] audit: type=1326 audit(1755613474.582:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.4.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  583.692709][T19615] loop5: detected capacity change from 0 to 32768
[  583.719852][   T27] audit: type=1326 audit(1755613474.591:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.4.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  583.827159][   T27] audit: type=1326 audit(1755613474.591:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.4.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7a4f8ebe9 code=0x7ffc0000
[  584.005351][T19619] loop6: detected capacity change from 0 to 32768
[  584.406095][T19652] netlink: 'syz.3.5772': attribute type 10 has an invalid length.
[  584.458795][T19652] bridge0: port 2(bridge_slave_1) entered disabled state
[  584.469727][T19652] bridge0: port 1(bridge_slave_0) entered disabled state
[  584.573141][T19652] bridge0: port 2(bridge_slave_1) entered blocking state
[  584.581226][T19652] bridge0: port 2(bridge_slave_1) entered forwarding state
[  584.591877][T19652] bridge0: port 1(bridge_slave_0) entered blocking state
[  584.599389][T19652] bridge0: port 1(bridge_slave_0) entered forwarding state
[  584.696263][T19652] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  585.086701][T19677] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5784'.
[  585.121268][T19677] netdevsim netdevsim6 netdevsim0: left promiscuous mode
[  585.370224][T19682] loop5: detected capacity change from 0 to 2048
[  585.394037][T19682] NILFS (loop5): invalid segment: Magic number mismatch
[  585.401689][T19682] NILFS (loop5): trying rollback from an earlier position
[  585.456280][T19682] NILFS (loop5): recovery complete
[  585.518651][T19684] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  585.746629][T19674] loop4: detected capacity change from 0 to 32768
[  585.856946][T19674] ERROR: (device loop4): diAllocAG: error reading iag
[  585.856946][T19674] 
[  585.904716][T19674] ialloc: diAlloc returned -5!
[  586.054705][T19671] loop3: detected capacity change from 0 to 40427
[  586.099434][T19671] F2FS-fs (loop3): heap/no_heap options were deprecated
[  586.132664][T19671] F2FS-fs (loop3): invalid crc value
[  586.170389][T19671] F2FS-fs (loop3): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[  586.243997][T19671] F2FS-fs (loop3): Found nat_bits in checkpoint
[  586.326579][T19704] netlink: 'syz.5.5796': attribute type 5 has an invalid length.
[  586.350953][   T29] INFO: task syz-executor:5787 blocked for more than 143 seconds.
[  586.381234][   T29]       Not tainted 6.6.102-syzkaller #0
[  586.412662][T19671] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  586.413618][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  586.459056][   T29] task:syz-executor    state:D stack:20528 pid:5787  ppid:1      flags:0x00004004
[  586.491701][   T29] Call Trace:
[  586.521602][   T29]  <TASK>
[  586.525436][   T29]  __schedule+0x14d2/0x44d0
[  586.530713][   T29]  ? asan.module_dtor+0x20/0x20
[  586.570061][   T29]  ? mark_lock+0x94/0x320
[  586.578863][   T29]  ? lock_chain_count+0x20/0x20
[  586.596136][   T29]  ? _raw_spin_lock_irq+0xaf/0xe0
[  586.602209][   T29]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  586.617185][   T29]  schedule+0xbd/0x170
[  586.628406][   T29]  io_schedule+0x80/0xd0
[  586.637923][   T29]  folio_wait_bit_common+0x6eb/0xf70
[  586.660416][   T29]  ? folio_wait_bit+0x30/0x30
[  586.665359][   T29]  ? filemap_get_entry+0x35c/0x3c0
[  586.670921][   T29]  ? _compound_head+0x120/0x120
[  586.681755][   T29]  ? find_lock_entries+0xc38/0xfe0
[  586.687735][   T29]  __filemap_get_folio+0xbc/0xbc0
[  586.698647][   T29]  truncate_inode_pages_range+0x40a/0xf00
[  586.705129][   T29]  ? mapping_evict_folio+0x510/0x510
[  586.710918][   T29]  ? _raw_spin_lock_irq+0xaf/0xe0
[  586.721931][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  586.728548][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  586.734295][   T29]  evict+0x499/0x870
[  586.746075][   T29]  ? proc_nr_inodes+0x230/0x230
[  586.751188][   T29]  ? do_raw_spin_unlock+0x121/0x230
[  586.761905][   T29]  ? do_raw_spin_unlock+0x121/0x230
[  586.769307][   T29]  evict_inodes+0x5fe/0x690
[  586.774851][   T29]  ? clear_inode+0x150/0x150
[  586.784578][T19698] loop4: detected capacity change from 0 to 32768
[  586.785582][   T29]  generic_shutdown_super+0x97/0x2b0
[  586.805018][   T29]  kill_block_super+0x44/0x90
[  586.814185][   T29]  deactivate_locked_super+0x97/0x100
[  586.824514][   T29]  cleanup_mnt+0x429/0x4c0
[  586.831531][   T29]  task_work_run+0x1ce/0x250
[  586.837847][   T29]  ? task_work_cancel+0x240/0x240
[  586.838377][T19698] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  586.848748][   T29]  ? exit_to_user_mode_loop+0x3b/0x110
[  586.858955][   T29]  exit_to_user_mode_loop+0xe6/0x110
[  586.869461][   T29]  exit_to_user_mode_prepare+0xb1/0x140
[  586.876519][   T29]  syscall_exit_to_user_mode+0x1a/0x50
[  586.882641][   T29]  do_syscall_64+0x61/0xb0
[  586.887328][   T29]  ? clear_bhb_loop+0x40/0x90
[  586.892158][   T29]  ? clear_bhb_loop+0x40/0x90
[  586.893473][T19698] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  586.897081][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  586.897119][   T29] RIP: 0033:0x7f37ee38ff17
[  586.897137][   T29] RSP: 002b:00007ffda340c8e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  586.897157][   T29] RAX: 0000000000000000 RBX: 00007f37ee411c05 RCX: 00007f37ee38ff17
[  586.897169][   T29] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffda340c9a0
[  586.897179][   T29] RBP: 00007ffda340c9a0 R08: 0000000000000000 R09: 0000000000000000
[  586.951978][   T29] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffda340da30
[  586.960262][   T29] R13: 00007f37ee411c05 R14: 000000000005fbf4 R15: 00007ffda340da70
[  586.968764][   T29]  </TASK>
[  586.991719][   T29] 
[  586.991719][   T29] Showing all locks held in the system:
[  586.999766][   T29] 1 lock held by khungtaskd/29:
[  587.005014][   T29]  #0: ffffffff8cd2fbe0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  587.015495][   T29] 2 locks held by getty/5554:
[  587.020298][   T29]  #0: ffff88823bd0a8a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  587.030833][   T29]  #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x425/0x1380
[  587.039869][T19698] (syz.4.5793,19698,1):ocfs2_read_blocks:239 ERROR: status = -12
[  587.041963][   T29] 1 lock held by syz-executor/5787:
[  587.063079][T19698] (syz.4.5793,19698,1):ocfs2_xattr_block_find:2831 ERROR: status = -12
[  587.066624][   T29]  #0: ffff888075c760e0 (&type->s_umount_key#52){+.+.}-{3:3}, at: deactivate_super+0xa4/0xe0
[  587.129647][   T29] 2 locks held by kworker/1:5/5852:
[  587.152050][   T29]  #0: ffff888017872538 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  587.164207][   T29]  #1: ffffc90005087d00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  587.181953][   T29] 1 lock held by syz-executor/11099:
[  587.190647][   T29]  #0: ffffffff8cd35bb8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x448/0x830
[  587.208975][   T29] 
[  587.211648][   T29] =============================================
[  587.211648][   T29] 
[  587.232605][   T29] NMI backtrace for cpu 0
[  587.237269][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.6.102-syzkaller #0
[  587.245283][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  587.256187][   T29] Call Trace:
[  587.259852][   T29]  <TASK>
[  587.262985][   T29]  dump_stack_lvl+0x16c/0x230
[  587.267869][   T29]  ? show_regs_print_info+0x20/0x20
[  587.274372][   T29]  ? load_image+0x3b0/0x3b0
[  587.279488][   T29]  nmi_cpu_backtrace+0x39b/0x3d0
[  587.284813][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  587.291018][   T29]  ? _printk+0xd0/0x110
[  587.295388][   T29]  ? load_image+0x3b0/0x3b0
[  587.299931][   T29]  ? load_image+0x3b0/0x3b0
[  587.304480][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  587.310927][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  587.317088][   T29]  watchdog+0xf41/0xf80
[  587.321251][   T29]  ? watchdog+0x1e1/0xf80
[  587.325685][   T29]  kthread+0x2fa/0x390
[  587.329748][   T29]  ? hungtask_pm_notify+0x90/0x90
[  587.334869][   T29]  ? kthread_blkcg+0xd0/0xd0
[  587.339559][   T29]  ret_from_fork+0x48/0x80
[  587.344284][   T29]  ? kthread_blkcg+0xd0/0xd0
[  587.349604][   T29]  ret_from_fork_asm+0x11/0x20
[  587.357468][   T29]  </TASK>
[  587.361477][   T29] Sending NMI from CPU 0 to CPUs 1:
[  587.367907][    C1] NMI backtrace for cpu 1
[  587.367923][    C1] CPU: 1 PID: 5146 Comm: klogd Not tainted 6.6.102-syzkaller #0
[  587.367939][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  587.367947][    C1] RIP: 0010:kasan_check_range+0x1be/0x290
[  587.367972][    C1] Code: 01 f3 49 8d 5c 24 07 4d 85 e4 49 0f 49 dc 48 83 e3 f8 49 29 dc 74 12 41 80 3b 00 0f 85 a6 00 00 00 49 ff c3 49 ff cc 75 ee 5b <41> 5c 41 5d 41 5e 41 5f 5d c3 45 84 ff 75 61 41 f7 c7 00 ff 00 00
[  587.367986][    C1] RSP: 0018:ffffc900032a7390 EFLAGS: 00000056
[  587.368000][    C1] RAX: 0000000000000001 RBX: 000000000000002c RCX: ffffffff81670940
[  587.368010][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff90da3500
[  587.368019][    C1] RBP: ffffc900032a7608 R08: ffffffff90da3507 R09: 1ffffffff21b46a0
[  587.368031][    C1] R10: dffffc0000000000 R11: fffffbfff21b46a1 R12: 0000000000000001
[  587.368041][    C1] R13: ffff88807d700000 R14: fffffbfff21b46a1 R15: 1ffffffff21b46a0
[  587.368052][    C1] FS:  00007f6cbfc2ec80(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  587.368065][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  587.368076][    C1] CR2: 00007f4f9eb83ad8 CR3: 0000000030cfd000 CR4: 00000000003506e0
[  587.368089][    C1] Call Trace:
[  587.368095][    C1]  <TASK>
[  587.368102][    C1]  __lock_acquire+0x560/0x7c80
[  587.368130][    C1]  ? verify_lock_unused+0x140/0x140
[  587.368144][    C1]  ? mark_lock+0x94/0x320
[  587.368160][    C1]  ? verify_lock_unused+0x140/0x140
[  587.368177][    C1]  ? __lock_acquire+0x1334/0x7c80
[  587.368194][    C1]  ? __kmalloc_node_track_caller+0xb2/0x230
[  587.368218][    C1]  lock_acquire+0x197/0x410
[  587.368232][    C1]  ? ___slab_alloc+0x1ef/0x12f0
[  587.368254][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  587.368270][    C1]  ? read_lock_is_recursive+0x20/0x20
[  587.368286][    C1]  ? lock_chain_count+0x20/0x20
[  587.368302][    C1]  ? ___slab_alloc+0x1ef/0x12f0
[  587.368320][    C1]  ___slab_alloc+0x207/0x12f0
[  587.368337][    C1]  ? ___slab_alloc+0x1ef/0x12f0
[  587.368357][    C1]  ? get_obj_cgroup_from_current+0x1c9/0x280
[  587.368372][    C1]  ? __alloc_skb+0x108/0x2c0
[  587.368392][    C1]  kmem_cache_alloc_node+0x1ea/0x330
[  587.368411][    C1]  ? __alloc_skb+0x108/0x2c0
[  587.368429][    C1]  __alloc_skb+0x108/0x2c0
[  587.368447][    C1]  alloc_skb_with_frags+0xca/0x7c0
[  587.368466][    C1]  sock_alloc_send_pskb+0x857/0x990
[  587.368489][    C1]  ? sock_kzfree_s+0x50/0x50
[  587.368502][    C1]  ? do_raw_spin_lock+0x121/0x2c0
[  587.368520][    C1]  ? __rwlock_init+0x150/0x150
[  587.368537][    C1]  ? do_raw_spin_unlock+0x121/0x230
[  587.368745][    C1]  unix_dgram_sendmsg+0x5a1/0x1720
[  587.368772][    C1]  ? aa_sk_perm+0x7fc/0x930
[  587.368794][    C1]  ? unix_dgram_poll+0x670/0x670
[  587.368811][    C1]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  587.368835][    C1]  ? aa_sock_msg_perm+0x94/0x150
[  587.368851][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  587.368869][    C1]  ? security_socket_sendmsg+0x80/0xa0
[  587.368885][    C1]  __sys_sendto+0x46a/0x620
[  587.368903][    C1]  ? __might_fault+0xaa/0x120
[  587.368919][    C1]  ? __ia32_sys_getpeername+0x90/0x90
[  587.368946][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  587.368963][    C1]  ? lock_chain_count+0x20/0x20
[  587.368980][    C1]  __x64_sys_sendto+0xde/0xf0
[  587.368999][    C1]  do_syscall_64+0x55/0xb0
[  587.369016][    C1]  ? clear_bhb_loop+0x40/0x90
[  587.369030][    C1]  ? clear_bhb_loop+0x40/0x90
[  587.369044][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  587.369068][    C1] RIP: 0033:0x7f6cbfd7e407
[  587.369083][    C1] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  587.369097][    C1] RSP: 002b:00007ffed1103070 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
[  587.369115][    C1] RAX: ffffffffffffffda RBX: 00007f6cbfc2ec80 RCX: 00007f6cbfd7e407
[  587.369127][    C1] RDX: 000000000000005c RSI: 00007ffed11031b0 RDI: 0000000000000003
[  587.369137][    C1] RBP: 00007ffed11035e0 R08: 0000000000000000 R09: 0000000000000000
[  587.369146][    C1] R10: 0000000000004000 R11: 0000000000000202 R12: 00007ffed11035f8
[  587.369156][    C1] R13: 00007ffed11031b0 R14: 0000000000000041 R15: 00007ffed11031b0
[  587.369173][    C1]  </TASK>
[  587.383413][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  587.383429][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.6.102-syzkaller #0
[  587.383446][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  587.383456][   T29] Call Trace:
[  587.383463][   T29]  <TASK>
[  587.383470][   T29]  dump_stack_lvl+0x16c/0x230
[  587.383500][   T29]  ? show_regs_print_info+0x20/0x20
[  587.383519][   T29]  ? load_image+0x3b0/0x3b0
[  587.383552][   T29]  panic+0x2c0/0x710
[  587.383572][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  587.383596][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  587.383616][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  587.383639][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  587.383664][   T29]  watchdog+0xf80/0xf80
[  587.383686][   T29]  ? watchdog+0x1e1/0xf80
[  587.383711][   T29]  kthread+0x2fa/0x390
[  587.383728][   T29]  ? hungtask_pm_notify+0x90/0x90
[  587.383746][   T29]  ? kthread_blkcg+0xd0/0xd0
[  587.383761][   T29]  ret_from_fork+0x48/0x80
[  587.383779][   T29]  ? kthread_blkcg+0xd0/0xd0
[  587.383795][   T29]  ret_from_fork_asm+0x11/0x20
[  587.383826][   T29]  </TASK>
[  587.389936][   T29] Kernel Offset: disabled
[  587.927366][   T29] Rebooting in 86400 seconds..