last executing test programs:

10m46.909828078s ago: executing program 1 (id=8300):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002640)=@newtaction={0xe94, 0x30, 0x3f, 0x0, 0x0, {}, [{0xe80, 0x1, [@m_pedit={0xe7c, 0x1, 0x0, 0x0, {{0xa}, {0xe50, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x2c, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0xfffffffc, 0x0, 0x0, 0x0, 0x100, 0x81}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x5943}, {0x0, 0x800000, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {}, {0x0, 0xa2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1cbe}, {0x0, 0x0, 0x0, 0x5, 0x8}, {}, {0x0, 0x1}, {}, {}, {0x8}, {}, {0x0, 0xfffffffe, 0x400000}, {0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x4, 0xffffff6a}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {}, {0x0, 0x4}, {0x8, 0x0, 0x0, 0x0, 0x800000}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10000000, 0x0, 0x0, 0x8}, {0x0, 0x7fffffff}, {0x3, 0xed, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x27a}, {0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x80000000, 0x0, 0x0, 0xffffffff}, {0x0, 0xfffffffc, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x3}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0xa, 0x0, 0x200}, {0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0xc}, {}, {0x0, 0x0, 0x2b7f}, {0x3ff, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0xcfc, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0x800}, {0xfffffffd, 0x0, 0x0, 0x0, 0xa92}, {0x0, 0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x40000000, 0x1, 0x0, 0x10001}, {0x0, 0x0, 0x20}, {}, {0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, {0xfffffffc}, {}, {}, {}, {0x0, 0xa, 0xfffffffc}, {0x0, 0x0, 0x0, 0x8}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x40, 0x0, 0x0, 0x3}, {}, {}, {}, {0x8, 0x0, 0x0, 0x1, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {0x5}, {}, {}, {0x0, 0x1}, {}, {}, {0x7, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {0x4}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe94}}, 0x0)

10m46.340289248s ago: executing program 1 (id=8306):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x101001, 0x200)
write$tun(r0, &(0x7f0000000000)={@val={0x0, 0x886c}, @void, @eth={@random="000000f400", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}, @val={@void, {0x8100, 0x0, 0x1, 0x2}}, {@llc_tr={0x11, {@llc={0xaa, 0xe, "d8"}}}}}}, 0x19)

10m46.133951943s ago: executing program 1 (id=8309):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r0, &(0x7f0000000040)={0xa, 0x0, 0x7fa4c30d, @mcast2, 0x60}, 0x20)

10m45.859363843s ago: executing program 1 (id=8312):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000640)='./file1\x00', 0x0, &(0x7f00000004c0)={[{@uid={'uid', 0x3d, 0xee00}}, {@part={'part', 0x3d, 0x9}}, {@nobarrier}, {@force}, {@nls={'nls', 0x3d, 'iso8859-13'}}, {@gid={'gid', 0x3d, 0xee00}}, {@nobarrier}, {@uid}, {}]}, 0xfe, 0x5ee, &(0x7f0000000680)="$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")
mount$9p_unix(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x1018, 0x0)

10m45.291698849s ago: executing program 1 (id=8321):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x4}}}]}]}], {0x14}}, 0xb4}, 0x1, 0x0, 0x0, 0x2000c045}, 0x24000004)

10m44.334594285s ago: executing program 1 (id=8336):
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001e40)={0x54, 0x12, 0x101, 0x0, 0x0, {0x0, 0xfe, 0x4, 0x0, {0x0, 0x2000, [0x0, 0x0, 0x1], [0x8, 0x0, 0x0, 0x100]}, 0x400}, [@INET_DIAG_REQ_BYTECODE={0x8, 0x1, "4cbdf778"}]}, 0x54}}, 0x0)

10m43.686981133s ago: executing program 32 (id=8336):
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001e40)={0x54, 0x12, 0x101, 0x0, 0x0, {0x0, 0xfe, 0x4, 0x0, {0x0, 0x2000, [0x0, 0x0, 0x1], [0x8, 0x0, 0x0, 0x100]}, 0x400}, [@INET_DIAG_REQ_BYTECODE={0x8, 0x1, "4cbdf778"}]}, 0x54}}, 0x0)

5m55.197989522s ago: executing program 6 (id=11878):
r0 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg$inet(r0, &(0x7f0000007ac0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000240)='*', 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x40)

5m54.866822084s ago: executing program 6 (id=11882):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000740)='./file1\x00', 0xa00004, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'cp860'}}, {@gid_ignore}, {@dmode}, {@shortad}, {@nostrict}, {@utf8}, {@uid_ignore}, {}, {@longad}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@undelete}, {@nostrict}, {@nostrict}, {@uid_ignore}]}, 0x5, 0xc87, &(0x7f0000000780)="$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")
symlink(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

5m54.251690958s ago: executing program 6 (id=11889):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x5, 0x5, 0x9fd, 0x85, 0x41, 0xffffffffffffffff, 0xfffffffc}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x7, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5m53.894193333s ago: executing program 6 (id=11894):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x2000004, &(0x7f0000000500)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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")
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x80, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

5m53.238052602s ago: executing program 6 (id=11904):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
remap_file_pages(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000000, 0x8, 0x4000000)

5m51.995985028s ago: executing program 6 (id=11909):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
lsetxattr$security_ima(&(0x7f0000000480)='./file0\x00', &(0x7f0000000100), &(0x7f0000000380)=@v2={0x3, 0x2, 0xfe, 0xe79f, 0x1, 'J'}, 0xa, 0x1)

5m51.273638941s ago: executing program 33 (id=11909):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
lsetxattr$security_ima(&(0x7f0000000480)='./file0\x00', &(0x7f0000000100), &(0x7f0000000380)=@v2={0x3, 0x2, 0xfe, 0xe79f, 0x1, 'J'}, 0xa, 0x1)

4.348568397s ago: executing program 7 (id=16644):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2a00000, &(0x7f00000001c0)={[{@undelete}, {@umask={'umask', 0x3d, 0x8}}, {@adinicb}, {@dmode}, {}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {}, {}, {@unhide}, {@umask}]}, 0x1, 0xc76, &(0x7f0000000f40)="$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")
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))

3.87321395s ago: executing program 2 (id=16650):
r0 = syz_mount_image$btrfs(&(0x7f0000000200), &(0x7f0000005600)='./file0\x00', 0x800, &(0x7f0000000240), 0x0, 0x559e, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, 0x0)

3.787639836s ago: executing program 7 (id=16652):
r0 = socket(0x2d, 0x2, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f00000004c0)={&(0x7f0000000000)={0x2d, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x4002000}, 0x20048041)

3.479115977s ago: executing program 7 (id=16657):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x20, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4044}, 0x8000)

3.165354222s ago: executing program 7 (id=16661):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000000)={0x6, 0xaa, 0xdc, 0xd, 0xf, 0x5, 0x4, 0x8, 0x4, 0x7, 0x1, 0x81, 0x6, 0x6}, 0xe)

2.865777654s ago: executing program 7 (id=16665):
r0 = openat$vicodec0(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
preadv(r0, &(0x7f0000001900)=[{&(0x7f0000000500)=""/3, 0x3}], 0x1, 0x1, 0xb1)

2.572857576s ago: executing program 7 (id=16669):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b7500090583", @ANYBLOB="b3"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000100), 0x4000)

2.423258759s ago: executing program 0 (id=16671):
r0 = syz_open_dev$video(&(0x7f0000000580), 0x7, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205647, &(0x7f00000001c0)={0x980000, 0x1, 0x7, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x980913, 0x0, '\x00', @p_u8=0x0}})

2.209461033s ago: executing program 0 (id=16673):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xa, 0x17, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf090000000000009709010000000281650000000000000018010000646c6c2500000000002020207b9af8ff000000002e9100000000000037010000f8ffffffb702000008000000b70300000000000014000000060000805f93000000000000b5030000000000008500000076000000b70000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.839653456s ago: executing program 0 (id=16677):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)

1.838593571s ago: executing program 2 (id=16678):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x1, 0x0, 0x27f})

1.808198804s ago: executing program 3 (id=16679):
r0 = syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f0000000040)={0x1, 0x2, 0x1, 0xffffffff})

1.782718499s ago: executing program 4 (id=16680):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000040000000000000000000000850000002c000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000540000007300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r0, 0x18000000000002a0, 0x13, 0x0, &(0x7f0000000000)="b9ff03006037698cff9e14d186dd043aa4cd4e", 0x0, 0xa0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x28}, 0x50)

1.624407699s ago: executing program 5 (id=16681):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x149302, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x6e5c246950993346})

1.580073091s ago: executing program 3 (id=16682):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f0000000080)='\x00', 0x1)

1.419509221s ago: executing program 4 (id=16683):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="021604000a00000026bd7000fcdbdf250800120002000200bc"], 0x50}}, 0x890)

1.326761897s ago: executing program 5 (id=16684):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000000), 0x4)

1.218561917s ago: executing program 3 (id=16685):
r0 = syz_open_dev$video4linux(&(0x7f0000000040), 0x3, 0x88000)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc040564a, &(0x7f0000000340)={0x0, 0x1, 0x100a, 0xffffffffffffffff, 0x0, 0x0})

1.077913653s ago: executing program 4 (id=16686):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)={0x28, 0x2e, 0x503, 0x0, 0x0, "", [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64=0xd}, @typed={0x8, 0x110, 0x0, 0x0, @ipv4=@loopback}]}]}, 0x28}], 0x1}, 0x14008010)

1.076622157s ago: executing program 5 (id=16687):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_BULK(r0, 0xc0185502, &(0x7f0000000080)={{{0x1, 0x1}}, 0x0, 0x0, 0x0})

1.045446378s ago: executing program 2 (id=16688):
r0 = syz_open_dev$sndctrl(&(0x7f0000000200), 0x0, 0x800)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000240)=""/242)

973.020668ms ago: executing program 3 (id=16689):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

793.50719ms ago: executing program 3 (id=16690):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000008900)=ANY=[@ANYBLOB="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"], 0x84c8}}, 0x20050800)

759.897292ms ago: executing program 2 (id=16691):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e3, &(0x7f0000000500))

756.162005ms ago: executing program 5 (id=16692):
r0 = eventfd2(0x2, 0x80001)
write$eventfd(r0, &(0x7f0000000040)=0xffffffffffffffff, 0x8)

743.336704ms ago: executing program 4 (id=16693):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000040)=0x8, 0x4)

654.384524ms ago: executing program 0 (id=16694):
r0 = socket$inet(0x2, 0x3, 0x8d)
getsockname$inet(r0, 0x0, &(0x7f0000000100))

499.584364ms ago: executing program 5 (id=16695):
r0 = syz_open_dev$cec(&(0x7f0000000340), 0x0, 0x0)
ioctl$IOC_PR_PREEMPT(r0, 0x80026101, &(0x7f0000000040)={0xd0})

445.666175ms ago: executing program 2 (id=16696):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0x2, 0x1}, 0xc)

434.258924ms ago: executing program 4 (id=16697):
r0 = syz_open_procfs(0x0, &(0x7f0000000500)='net/wireless\x00')
preadv(r0, &(0x7f0000000080)=[{&(0x7f0000004540)=""/4105, 0x1009}], 0x1, 0x8001, 0x8)

380.8144ms ago: executing program 3 (id=16698):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="3800000040000100feffffffffdbdf25017c0000040042800c00018006000600800a00001400028010000e"], 0x38}, 0x1, 0x0, 0x0, 0x48815}, 0x800c000)

379.842273ms ago: executing program 0 (id=16699):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)

206.479333ms ago: executing program 5 (id=16700):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x17}, @call={0x85, 0x0, 0x0, 0xe}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

177.406714ms ago: executing program 4 (id=16701):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x30, 0x1, 0x4, 0x301, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x10}, @NFULA_CFG_MODE={0xa, 0x2, {0x3, 0x2}}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000800)

163.525298ms ago: executing program 2 (id=16702):
r0 = syz_open_dev$swradio(&(0x7f00000046c0), 0x1, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f00000000c0)={0x0, 0x4, 0x927bf})

0s ago: executing program 0 (id=16703):
r0 = socket$pptp(0x18, 0x1, 0x2)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000040))

kernel console output (not intermixed with test programs):

ck 69) failed
[ 1613.126786][ T8475] FAT-fs (loop5): Directory bread(block 70) failed
[ 1613.152138][ T8475] FAT-fs (loop5): Directory bread(block 71) failed
[ 1613.184265][ T8475] FAT-fs (loop5): Directory bread(block 72) failed
[ 1613.211768][ T8475] FAT-fs (loop5): Directory bread(block 73) failed
[ 1613.251361][ T8491] netlink: 148 bytes leftover after parsing attributes in process `syz.4.14835'.
[ 1613.461467][ T8493] loop7: detected capacity change from 0 to 764
[ 1613.499981][ T8493] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1613.528309][ T8500] netlink: 20 bytes leftover after parsing attributes in process `syz.3.14846'.
[ 1613.631513][ T8502] net_ratelimit: 65 callbacks suppressed
[ 1613.631540][ T8502] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[ 1613.927456][ T8511] syz_tun: entered promiscuous mode
[ 1614.057250][ T8508] loop0: detected capacity change from 0 to 4096
[ 1614.070703][ T8517] netlink: 'syz.5.14856': attribute type 21 has an invalid length.
[ 1614.084138][ T8517] netlink: 156 bytes leftover after parsing attributes in process `syz.5.14856'.
[ 1614.097928][ T8508] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 1614.155730][ T8508] ntfs3(loop0): ino=19, mi_enum_attr
[ 1614.210543][ T8520] netlink: 16 bytes leftover after parsing attributes in process `syz.7.14858'.
[ 1614.244176][ T8508] ntfs3(loop0): failed to convert "c46c" to maccroatian
[ 1614.294958][ T8508] ntfs3(loop0): ino=20, mi_enum_attr
[ 1614.450135][ T8528] netlink: 'syz.2.14861': attribute type 1 has an invalid length.
[ 1614.648898][ T8530] loop7: detected capacity change from 0 to 256
[ 1615.081721][ T8549] loop3: detected capacity change from 0 to 512
[ 1615.114567][ T8549] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1615.158225][ T8552] bridge_slave_0: left allmulticast mode
[ 1615.178199][ T8549] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13
[ 1615.199909][ T8552] bridge_slave_0: left promiscuous mode
[ 1615.235407][ T8552] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1615.249309][ T8549] EXT4-fs error (device loop3): ext4_free_branches:1020: inode #13: comm syz.3.14870: invalid indirect mapped block 33554432 (level 0)
[ 1615.263327][ T8549] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1615.270539][    C0] EXT4-fs (loop3): error count since last fsck: 1
[ 1615.286153][    C0] EXT4-fs (loop3): initial error at time 2000525944: ext4_free_branches:1020: inode 13
[ 1615.295900][    C0] EXT4-fs (loop3): last error at time 2000525944: ext4_free_branches:1020: inode 13
[ 1615.308006][ T8549] EXT4-fs (loop3): Remounting filesystem read-only
[ 1615.342891][ T8549] EXT4-fs (loop3): 1 truncate cleaned up
[ 1615.352380][ T8552] bridge_slave_1: left allmulticast mode
[ 1615.366756][ T8552] bridge_slave_1: left promiscuous mode
[ 1615.388547][ T8549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1615.401264][ T8552] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1615.556379][ T8552] .`: (slave bond_slave_0): Releasing backup interface
[ 1615.624529][ T8552] .`: (slave bond_slave_1): Releasing backup interface
[ 1615.667591][ T8560] loop4: detected capacity change from 0 to 4096
[ 1615.688296][ T8552] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1615.713981][ T5639] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1615.725415][ T8560] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1615.839192][ T8560] ntfs3(loop4): ino=19, mi_enum_attr
[ 1615.965042][ T8560] ntfs3(loop4): failed to convert "c46c" to maciceland
[ 1616.010805][ T8560] ntfs3(loop4): ino=20, mi_enum_attr
[ 1616.853468][ T8598] loop2: detected capacity change from 0 to 16
[ 1616.901917][ T8598] erofs (device loop2): mounted with root inode @ nid 36.
[ 1616.961813][ T8598] erofs (device loop2): compressed inode (nid 89) is invalid in a plain filesystem
[ 1617.165052][ T8976] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[ 1617.302775][ T8614] loop2: detected capacity change from 0 to 256
[ 1617.361858][ T8976] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1617.401820][ T8976] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1617.442526][ T8976] usb 4-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1617.507355][ T8976] usb 4-1: config 1 interface 0 has no altsetting 1
[ 1617.542316][ T8976] usb 4-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75
[ 1617.579415][ T8976] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1617.613657][ T8976] usb 4-1: Product: syz
[ 1617.633043][ T8976] usb 4-1: Manufacturer: syz
[ 1617.653108][ T8976] usb 4-1: SerialNumber: syz
[ 1617.709257][ T8976] smsusb:smsusb_probe: board id=8, interface number 0
[ 1617.933930][T27246] usb 5-1: new high-speed USB device number 66 using dummy_hcd
[ 1617.943979][ T8976] smsusb:smsusb_probe: Device initialized with return code -19
[ 1617.965758][ T8631] loop7: detected capacity change from 0 to 1024
[ 1618.136068][T27246] usb 5-1: Using ep0 maxpacket: 8
[ 1618.172348][T27246] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1618.206360][T27246] usb 5-1: config 6 has an invalid interface number: 57 but max is 0
[ 1618.218852][   T10] usb 4-1: USB disconnect, device number 54
[ 1618.230001][T27246] usb 5-1: config 6 has no interface number 0
[ 1618.256439][T27246] usb 5-1: config 6 interface 57 has no altsetting 0
[ 1618.309636][T27246] usb 5-1: New USB device found, idVendor=0694, idProduct=0001, bcdDevice=67.16
[ 1618.326951][T27246] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1618.342646][T27246] usb 5-1: Product: syz
[ 1618.347435][T27246] usb 5-1: Manufacturer: syz
[ 1618.353060][T27246] usb 5-1: SerialNumber: syz
[ 1618.492404][ T8642] loop2: detected capacity change from 0 to 16
[ 1618.519975][ T8642] erofs (device loop2): mounted with root inode @ nid 36.
[ 1618.544065][ T8644] netlink: 'syz.7.14915': attribute type 21 has an invalid length.
[ 1618.550665][ T8642] erofs (device loop2): readahead error at folio 2 @ nid 89
[ 1618.569966][ T8644] netlink: 132 bytes leftover after parsing attributes in process `syz.7.14915'.
[ 1618.579707][ T8642] erofs (device loop2): readahead error at folio 1 @ nid 89
[ 1618.608255][ T8642] erofs (device loop2): readahead error at folio 0 @ nid 89
[ 1618.617955][T27246] legousbtower 5-1:6.57: interrupt endpoints not found
[ 1618.636813][ T8642] erofs (device loop2): read error -117 @ 0 of nid 89
[ 1618.657812][T27246] usb 5-1: USB disconnect, device number 66
[ 1618.676393][   T30] kauditd_printk_skb: 9 callbacks suppressed
[ 1618.676416][   T30] audit: type=1800 audit(2000525948.073:258): pid=8642 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.14914" name="file3" dev="loop2" ino=89 res=0 errno=0
[ 1618.907053][ T8652] bridge5: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[ 1618.963308][ T8656] netlink: 40 bytes leftover after parsing attributes in process `syz.5.14920'.
[ 1619.304722][ T8667] loop3: detected capacity change from 0 to 1024
[ 1619.333808][ T8667] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[ 1619.537889][ T8675] xt_policy: too many policy elements
[ 1619.573840][ T8670] loop7: detected capacity change from 0 to 4096
[ 1619.745310][ T8682] netlink: 'syz.4.14935': attribute type 16 has an invalid length.
[ 1619.785646][ T8682] netlink: 156 bytes leftover after parsing attributes in process `syz.4.14935'.
[ 1620.378620][ T8708] SET target dimension over the limit!
[ 1620.631217][ T8716] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1620.748131][ T8723] netlink: 48 bytes leftover after parsing attributes in process `syz.3.14954'.
[ 1620.771251][ T8723] netlink: 48 bytes leftover after parsing attributes in process `syz.3.14954'.
[ 1621.087815][ T8733] loop3: detected capacity change from 0 to 256
[ 1621.280869][ T8739] bond0: entered promiscuous mode
[ 1621.306953][ T8739] bond0: entered allmulticast mode
[ 1621.330575][ T8739] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1621.629445][ T8703] loop4: detected capacity change from 0 to 32768
[ 1621.962749][ T8759] CIFS mount error: No usable UNC path provided in device string!
[ 1621.962749][ T8759] 
[ 1621.992840][ T8759] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1622.531975][ T8779] bond0: (slave dummy0): Releasing backup interface
[ 1622.608249][ T8779] bond0: (slave bond_slave_0): Releasing backup interface
[ 1622.671908][ T8779] bond0: (slave bond_slave_1): Releasing backup interface
[ 1622.725584][ T8779] bond0: (slave batadv_slave_0): Releasing backup interface
[ 1622.756922][ T8779] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1622.952341][ T8790] loop4: detected capacity change from 0 to 4096
[ 1622.986186][ T8790] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1623.063600][ T8797] loop5: detected capacity change from 0 to 2048
[ 1623.099251][ T8790] ntfs3(loop4): ino=19, mi_enum_attr
[ 1623.118402][ T8797] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1623.165625][ T8790] ntfs3(loop4): failed to convert "c46c" to maccroatian
[ 1623.192163][ T8790] ntfs3(loop4): ino=20, mi_enum_attr
[ 1624.247598][ T8833] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1624.312091][   T10] usb 6-1: new high-speed USB device number 71 using dummy_hcd
[ 1624.334753][ T8837] loop2: detected capacity change from 0 to 1024
[ 1624.360035][ T8837] hfsplus: failed to load attributes file
[ 1624.512736][   T10] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1624.544389][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1624.558081][ T8809] loop4: detected capacity change from 0 to 32768
[ 1624.572758][   T10] usb 6-1: Product: syz
[ 1624.585589][   T10] usb 6-1: Manufacturer: syz
[ 1624.602872][ T8809] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.14998 (8809)
[ 1624.603369][   T10] usb 6-1: SerialNumber: syz
[ 1624.681585][ T8809] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1624.683276][   T10] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1624.708329][ T8976] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[ 1624.732381][ T8809] BTRFS info (device loop4): using sha256 checksum algorithm
[ 1624.786391][ T5764] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1624.850981][ T8845] loop0: detected capacity change from 0 to 1024
[ 1624.919428][ T8976] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1624.937649][ T8845] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[ 1624.980043][ T8976] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[ 1625.025719][ T8809] BTRFS info (device loop4): enabling ssd optimizations
[ 1625.033429][ T8809] BTRFS info (device loop4): turning on async discard
[ 1625.041112][ T8809] BTRFS info (device loop4): enabling free space tree
[ 1625.052120][ T8976] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1625.108327][ T8866] QAT: failed to copy from user cfg_data.
[ 1625.116034][ T8976] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[ 1625.184425][ T8976] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[ 1625.246506][ T8976] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1625.295800][ T8976] usb 4-1: Product: syz
[ 1625.318180][ T8976] usb 4-1: Manufacturer: syz
[ 1625.336467][ T8976] usb 4-1: SerialNumber: syz
[ 1625.380199][ T8976] usb 4-1: config 0 descriptor??
[ 1625.429254][ T5634] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1625.467107][ T8976] ums-isd200 4-1:0.0: USB Mass Storage device detected
[ 1625.491527][ T8871] loop0: detected capacity change from 0 to 1024
[ 1625.767802][ T8871] hfsplus: request for non-existent node 33423360 in B*Tree
[ 1625.790150][ T8871] hfsplus: request for non-existent node 33423360 in B*Tree
[ 1625.825764][ T8976] ums-isd200 4-1:0.0: probe with driver ums-isd200 failed with error -22
[ 1625.917947][ T8976] usb 4-1: USB disconnect, device number 55
[ 1625.993628][ T5764] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[ 1626.014519][ T5764] ath9k_htc: Failed to initialize the device
[ 1626.260469][ T8882] set match dimension is over the limit!
[ 1626.395594][ T5764] usb 6-1: ath9k_htc: USB layer deinitialized
[ 1626.607852][ T8893] loop4: detected capacity change from 0 to 16
[ 1626.652941][ T8893] erofs (device loop4): mounted with root inode @ nid 36.
[ 1626.692771][ T8888] loop0: detected capacity change from 0 to 4096
[ 1626.702801][ T8893] erofs (device loop4): readahead error at folio 2 @ nid 89
[ 1626.707243][ T8976] usb 6-1: USB disconnect, device number 71
[ 1626.730460][ T8893] erofs (device loop4): readahead error at folio 1 @ nid 89
[ 1626.758827][ T8893] erofs (device loop4): readahead error at folio 0 @ nid 89
[ 1626.790390][ T8893] erofs (device loop4): read error -117 @ 0 of nid 89
[ 1626.806154][   T30] audit: type=1800 audit(2000525955.690:259): pid=8893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.15030" name="file3" dev="loop4" ino=89 res=0 errno=0
[ 1626.840725][ T8888] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1626.866526][ T8896] loop2: detected capacity change from 0 to 512
[ 1626.923332][ T8888] ntfs3(loop0): Failed to load $Extend (-22).
[ 1626.948674][ T8896] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1626.981603][ T8888] ntfs3(loop0): Failed to initialize $Extend.
[ 1626.988391][ T8896] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[ 1626.997562][ T8896] System zones: 0-1, 15-15, 18-18, 34-34
[ 1627.005055][ T8896] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1627.011571][ T8896] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[ 1627.022163][ T8896] EXT4-fs warning (device loop2): ext4_enable_quotas:7265: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1627.038010][ T8896] EXT4-fs (loop2): Cannot turn on quotas: error -22
[ 1627.046671][ T8896] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.15033: bad orphan inode 16
[ 1627.074160][ T8896] loop2: lost filesystem error report for type 5 error -117
[ 1627.074416][ T8896] ext4_test_bit(bit=15, block=18) = 1
[ 1627.081798][    C1] EXT4-fs (loop2): error count since last fsck: 1
[ 1627.081837][    C1] EXT4-fs (loop2): initial error at time 2000525955: ext4_orphan_get:1423
[ 1627.081880][    C1] EXT4-fs (loop2): last error at time 2000525955: ext4_orphan_get:1423
[ 1627.118302][ T8901] loop7: detected capacity change from 0 to 512
[ 1627.213624][ T8896] is_bad_inode(inode)=0
[ 1627.252448][ T8896] NEXT_ORPHAN(inode)=0
[ 1627.284147][ T8896] max_ino=32
[ 1627.316920][ T8896] i_nlink=2
[ 1627.371090][ T8896] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1627.593169][ T8911] xt_AUDIT: Audit type out of range (valid range: 0..2)
[ 1627.799781][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1627.917916][ T8924] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 1628.046651][ T8919] loop7: detected capacity change from 0 to 4096
[ 1628.075450][ T8919] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512).
[ 1628.102360][ T8931] loop0: detected capacity change from 0 to 16
[ 1628.139594][ T8931] erofs (device loop0): mounted with root inode @ nid 36.
[ 1628.167793][ T8919] ntfs3(loop7): ino=19, mi_enum_attr
[ 1628.180314][ T8931] erofs (device loop0): readahead error at folio 2 @ nid 89
[ 1628.204297][ T8931] erofs (device loop0): readahead error at folio 1 @ nid 89
[ 1628.216399][ T8934] netlink: 'syz.3.15052': attribute type 4 has an invalid length.
[ 1628.230258][ T8931] erofs (device loop0): readahead error at folio 0 @ nid 89
[ 1628.234768][ T8929] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1628.248983][ T8919] ntfs3(loop7): failed to convert "c46c" to maciceland
[ 1628.262781][ T8931] erofs (device loop0): read error -117 @ 0 of nid 89
[ 1628.274411][ T8919] ntfs3(loop7): ino=20, mi_enum_attr
[ 1628.291784][   T30] audit: type=1800 audit(2000525957.075:260): pid=8931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.15049" name="file3" dev="loop0" ino=89 res=0 errno=0
[ 1628.353467][ T8935] pimreg: entered allmulticast mode
[ 1628.793985][ T8949] netlink: 'syz.2.15059': attribute type 15 has an invalid length.
[ 1628.835814][ T8949] netlink: 24 bytes leftover after parsing attributes in process `syz.2.15059'.
[ 1629.302777][ T8966] erofs (device loop3): mounted with root inode @ nid 36.
[ 1629.310104][ T8967] bridge_slave_0: left allmulticast mode
[ 1629.325289][ T8967] bridge_slave_0: left promiscuous mode
[ 1629.350061][ T8967] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1629.356598][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15069'.
[ 1629.368544][ T8966] erofs (device loop3): readahead error at folio 2 @ nid 89
[ 1629.408913][ T8966] erofs (device loop3): readahead error at folio 1 @ nid 89
[ 1629.419254][ T8966] erofs (device loop3): readahead error at folio 0 @ nid 89
[ 1629.436850][ T8967] bridge_slave_1: left allmulticast mode
[ 1629.454253][ T8966] erofs (device loop3): read error -117 @ 0 of nid 89
[ 1629.467145][ T8967] bridge_slave_1: left promiscuous mode
[ 1629.487038][ T8967] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1629.508231][   T30] audit: type=1800 audit(2000525958.208:261): pid=8966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.15068" name="file3" dev="loop3" ino=89 res=0 errno=0
[ 1629.567041][ T8967] bond0: (slave bond_slave_0): Releasing backup interface
[ 1629.625458][ T8967] bond0: (slave bond_slave_1): Releasing backup interface
[ 1629.672401][ T8967] team0: Port device team_slave_0 removed
[ 1629.727639][ T8967] team0: Port device 
2
6±ÿ removed
[ 1629.742155][ T8967] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1629.778599][ T8967] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1629.829534][ T8967] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 1629.988581][   T30] audit: type=1326 audit(2000525958.666:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8989 comm="syz.5.15080" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1630.101028][   T30] audit: type=1326 audit(2000525958.666:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8989 comm="syz.5.15080" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1630.231436][   T30] audit: type=1326 audit(2000525958.666:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8989 comm="syz.5.15080" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1630.299049][ T9002] program syz.7.15085 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1630.322260][   T30] audit: type=1326 audit(2000525958.666:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8989 comm="syz.5.15080" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1630.350507][ T9004] netlink: 'syz.5.15086': attribute type 2 has an invalid length.
[ 1630.418933][   T30] audit: type=1326 audit(2000525958.666:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8989 comm="syz.5.15080" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1630.561426][   T30] audit: type=1326 audit(2000525958.666:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8989 comm="syz.5.15080" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1630.833216][ T9020] set_capacity_and_notify: 2 callbacks suppressed
[ 1630.833245][ T9020] loop2: detected capacity change from 0 to 512
[ 1630.898515][ T9020] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1631.007159][ T9024] loop4: detected capacity change from 0 to 1764
[ 1631.026272][ T9020] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003)
[ 1631.178110][ T9030] hmac(sha224): entered promiscuous mode
[ 1631.260013][ T9026] loop5: detected capacity change from 0 to 4096
[ 1631.294693][ T9026] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[ 1631.396646][ T9026] ntfs3(loop5): ino=19, mi_enum_attr
[ 1631.487917][ T9026] ntfs3(loop5): failed to convert "c46c" to maciceland
[ 1631.520114][ T9026] ntfs3(loop5): ino=20, mi_enum_attr
[ 1631.766356][ T9006] loop0: detected capacity change from 0 to 32768
[ 1632.735469][ T9075] loop7: detected capacity change from 0 to 2048
[ 1633.718542][ T9116] loop2: detected capacity change from 0 to 64
[ 1633.843680][ T9118] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15143'.
[ 1633.886193][ T9118] netlink: 224 bytes leftover after parsing attributes in process `syz.4.15143'.
[ 1634.537361][ T9144] loop5: detected capacity change from 0 to 8
[ 1634.574247][ T9144] MTD: Attempt to mount non-MTD device "/dev/loop5"
[ 1634.613899][ T9142] team0: Port device dummy0 removed
[ 1634.648126][ T9144] cramfs: Error -3 while decompressing!
[ 1634.687392][ T9144] cramfs: ffffffff9b27c888(18)->ffff88804c7c1000(4096)
[ 1634.706675][ T9142] bond0: (slave bond_slave_0): Releasing backup interface
[ 1634.714081][ T9144] cramfs: Error -3 while decompressing!
[ 1634.739826][ T9144] cramfs: ffffffff9b27c888(18)->ffff88804c7c1000(4096)
[ 1634.748826][ T5874] udevd[5874]: incorrect cramfs checksum on /dev/loop5
[ 1634.811400][ T9142] bond0: (slave bond_slave_1): Releasing backup interface
[ 1634.889243][ T5874] udevd[5874]: incorrect cramfs checksum on /dev/loop5
[ 1634.935504][ T9142] team0: Port device team_slave_0 removed
[ 1635.020704][ T9142] team0: Port device team_slave_1 removed
[ 1635.075766][ T9142] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1635.298868][ T9162] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15165'.
[ 1635.587417][ T9170] loop4: detected capacity change from 0 to 256
[ 1635.620987][ T9170] exfat: Deprecated parameter 'namecase'
[ 1635.678146][ T9170] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[ 1635.836486][ T9146] loop0: detected capacity change from 0 to 32768
[ 1635.864907][ T9176] loop5: detected capacity change from 0 to 4096
[ 1635.923259][ T9146] 
[ 1635.923259][ T9146]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1635.923259][ T9146] 
[ 1635.964695][ T9176] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1636.000253][ T9176] ntfs3(loop5): Failed to load $Extend (-22).
[ 1636.027721][ T9176] ntfs3(loop5): Failed to initialize $Extend.
[ 1636.178169][ T5652] 
[ 1636.178169][ T5652]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1636.178169][ T5652] 
[ 1636.257006][ T5652] 
[ 1636.257006][ T5652]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1636.257006][ T5652] 
[ 1636.517572][ T9196] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[ 1637.142257][ T9219] loop3: detected capacity change from 0 to 512
[ 1637.173138][ T9219] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1637.234264][ T9219] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.15192: invalid block
[ 1637.289686][ T9219] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1637.294464][    C1] EXT4-fs (loop3): error count since last fsck: 1
[ 1637.310125][    C1] EXT4-fs (loop3): initial error at time 2000525965: ext4_get_branch:178: inode 11: block 4294967295
[ 1637.321101][    C1] EXT4-fs (loop3): last error at time 2000525965: ext4_get_branch:178: inode 11: block 4294967295
[ 1637.358291][ T9219] EXT4-fs error (device loop3): ext4_free_branches:1020: inode #11: comm syz.3.15192: invalid indirect mapped block 4294967295 (level 1)
[ 1637.373144][ T9219] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1637.375417][ T9219] EXT4-fs error (device loop3): ext4_free_branches:1020: inode #11: comm syz.3.15192: invalid indirect mapped block 4294967295 (level 1)
[ 1637.444479][ T9219] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1637.445310][ T9219] EXT4-fs (loop3): 2 truncates cleaned up
[ 1637.496735][ T9219] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1637.585122][ T9236] netlink: 'syz.4.15198': attribute type 21 has an invalid length.
[ 1637.604738][ T9236] netlink: 'syz.4.15198': attribute type 1 has an invalid length.
[ 1637.634137][ T9236] netlink: 144 bytes leftover after parsing attributes in process `syz.4.15198'.
[ 1637.717451][ T9240] loop2: detected capacity change from 0 to 256
[ 1637.789517][ T9240] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1637.875220][ T5639] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1639.004436][ T5764] usb 6-1: new high-speed USB device number 72 using dummy_hcd
[ 1639.198989][ T5764] usb 6-1: config 0 has an invalid interface number: 69 but max is 0
[ 1639.219846][ T5764] usb 6-1: config 0 has no interface number 0
[ 1639.236944][ T5764] usb 6-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[ 1639.263956][ T5764] usb 6-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1639.315543][ T5764] usb 6-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[ 1639.347100][ T5764] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1639.374235][ T5764] usb 6-1: Product: syz
[ 1639.383675][ T5764] usb 6-1: Manufacturer: syz
[ 1639.394204][ T5764] usb 6-1: SerialNumber: syz
[ 1639.415245][ T5764] usb 6-1: config 0 descriptor??
[ 1639.436653][ T9277] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1639.467232][ T5764] cyberjack 6-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[ 1639.517044][ T5764] usb 6-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[ 1639.702258][    C0] cyberjack ttyUSB0: cyberjack_read_int_callback - failed resubmitting read urb, error -22
[ 1639.710409][ T9265] loop7: detected capacity change from 0 to 32768
[ 1639.917960][ T5764] usb 6-1: USB disconnect, device number 72
[ 1639.972399][ T5764] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[ 1639.996172][ T9307] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15233'.
[ 1640.016476][ T9279] loop0: detected capacity change from 0 to 32768
[ 1640.025405][ T5764] cyberjack 6-1:0.69: device disconnected
[ 1640.129695][ T9311] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[ 1640.436013][ T9317] loop4: detected capacity change from 0 to 64
[ 1640.827775][ T9327] netlink: 'syz.5.15243': attribute type 10 has an invalid length.
[ 1640.880633][ T9327] netlink: 40 bytes leftover after parsing attributes in process `syz.5.15243'.
[ 1640.939758][ T9335] loop2: detected capacity change from 0 to 64
[ 1641.013354][ T9335] syz.2.15247: attempt to access beyond end of device
[ 1641.013354][ T9335] loop2: rw=0, sector=268435468, nr_sectors = 2 limit=64
[ 1641.067310][ T9335] Buffer I/O error on dev loop2, logical block 134217734, async page read
[ 1642.092987][ T8976] usb 6-1: new low-speed USB device number 73 using dummy_hcd
[ 1642.299781][ T8976] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[ 1642.328899][ T9381] loop0: detected capacity change from 0 to 2048
[ 1642.349098][ T8976] usb 6-1: config 0 has no interface number 0
[ 1642.361059][ T8976] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1642.391847][ T8976] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[ 1642.420557][ T8976] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1642.454823][ T9389] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1642.484125][ T8976] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[ 1642.513209][ T8976] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[ 1642.525001][ T8976] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1642.538756][ T8976] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1642.579332][ T8976] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1642.617371][ T8976] usb 6-1: config 0 descriptor??
[ 1642.639720][ T9367] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1642.679832][ T9367] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1642.761942][ T8976] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1642.862388][ T9401] netlink: 'syz.3.15277': attribute type 3 has an invalid length.
[ 1642.879201][ T9404] loop4: detected capacity change from 0 to 512
[ 1642.956012][ T9404] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1643.016469][ T9409] netlink: 'syz.2.15281': attribute type 1 has an invalid length.
[ 1643.043955][ T9404] ext4 filesystem being mounted at /2547/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1643.184039][ T5764] usb 6-1: USB disconnect, device number 73
[ 1643.218351][   T30] kauditd_printk_skb: 2 callbacks suppressed
[ 1643.218376][   T30] audit: type=1326 audit(2000525971.047:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.3.15282" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1643.313440][ T5764] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[ 1643.332115][   T30] audit: type=1326 audit(2000525971.047:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.3.15282" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1643.433477][ T9404] Quota error (device loop4): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[ 1643.455400][   T30] audit: type=1326 audit(2000525971.047:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.3.15282" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1643.525072][ T9404] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[ 1643.542158][   T30] audit: type=1326 audit(2000525971.047:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.3.15282" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1643.574589][ T9404] EXT4-fs error (device loop4): ext4_acquire_dquot:7032: comm syz.4.15278: Failed to acquire dquot type 0
[ 1643.794222][ T9419] loop3: detected capacity change from 0 to 4096
[ 1643.839392][ T9419] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[ 1643.871607][ T5634] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1644.355795][ T9440] usb usb7: usbfs: process 9440 (syz.2.15298) did not claim interface 0 before use
[ 1644.382695][ T9443] loop5: detected capacity change from 0 to 256
[ 1644.442777][ T9443] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[ 1644.953828][ T9456] loop4: detected capacity change from 0 to 512
[ 1644.964297][ T9460] program syz.7.15305 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1645.012683][ T9460] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1645.046677][ T9456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1645.130382][ T9456] ext4 filesystem being mounted at /2550/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1645.322043][ T9465] loop2: detected capacity change from 0 to 4096
[ 1645.352442][ T9465] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[ 1645.369258][ T5634] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1645.598203][   T10] usb 4-1: new high-speed USB device number 56 using dummy_hcd
[ 1645.789111][   T10] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1645.825594][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1645.855167][   T10] usb 4-1: Product: syz
[ 1645.867222][   T10] usb 4-1: Manufacturer: syz
[ 1645.883938][   T10] usb 4-1: SerialNumber: syz
[ 1645.918347][ T9492] binder: 9490:9492 ioctl c0306201 200000000540 returned -22
[ 1645.952840][   T10] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1645.977646][ T5764] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1646.248062][ T9504] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1646.618362][ T9506] loop4: detected capacity change from 0 to 4096
[ 1646.719226][ T9516] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1646.858092][ T9518] syz.0.15333: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1646.933047][ T9518] CPU: 1 UID: 0 PID: 9518 Comm: syz.0.15333 Not tainted syzkaller #0 PREEMPT(full) 
[ 1646.933098][ T9518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1646.933123][ T9518] Call Trace:
[ 1646.933136][ T9518]  <TASK>
[ 1646.933151][ T9518]  dump_stack_lvl+0x100/0x190
[ 1646.933204][ T9518]  warn_alloc.cold+0x95/0x1c1
[ 1646.933249][ T9518]  ? __pfx_warn_alloc+0x10/0x10
[ 1646.933311][ T9518]  ? __lock_acquire+0x4a5/0x2630
[ 1646.933383][ T9518]  __vmalloc_node_range_noprof+0x136c/0x1630
[ 1646.933427][ T9518]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1646.933482][ T9518]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1646.933530][ T9518]  ? rcu_is_watching+0x12/0xc0
[ 1646.933589][ T9518]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1646.933638][ T9518]  ? trace_contention_end+0x122/0x170
[ 1646.933692][ T9518]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1646.933734][ T9518]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1646.933786][ T9518]  ? dvb_dvr_do_ioctl+0x7e/0x270
[ 1646.933825][ T9518]  ? find_held_lock+0x2b/0x80
[ 1646.933893][ T9518]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1646.933935][ T9518]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1646.933975][ T9518]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1646.934029][ T9518]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1646.934070][ T9518]  ? __pfx___mutex_lock+0x10/0x10
[ 1646.934136][ T9518]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1646.934192][ T9518]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1646.934235][ T9518]  ? futex_wait+0x11e/0x370
[ 1646.934281][ T9518]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1646.934322][ T9518]  __vmalloc_node_noprof+0xad/0xf0
[ 1646.934362][ T9518]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1646.934409][ T9518]  dvb_dvr_do_ioctl+0x15d/0x270
[ 1646.934460][ T9518]  dvb_usercopy+0x167/0x340
[ 1646.934498][ T9518]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[ 1646.934544][ T9518]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1646.934603][ T9518]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1646.934653][ T9518]  ? __fget_files+0x21f/0x3d0
[ 1646.934704][ T9518]  dvb_dvr_ioctl+0x29/0x40
[ 1646.934743][ T9518]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[ 1646.934786][ T9518]  __x64_sys_ioctl+0x18e/0x210
[ 1646.934857][ T9518]  do_syscall_64+0x10b/0xf80
[ 1646.934919][ T9518]  ? irqentry_exit+0x117/0x790
[ 1646.934985][ T9518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1646.935027][ T9518] RIP: 0033:0x7ffa4559cdd9
[ 1646.935058][ T9518] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1646.935097][ T9518] RSP: 002b:00007ffa46529028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1646.935134][ T9518] RAX: ffffffffffffffda RBX: 00007ffa45815fa0 RCX: 00007ffa4559cdd9
[ 1646.935161][ T9518] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[ 1646.935187][ T9518] RBP: 00007ffa45632d69 R08: 0000000000000000 R09: 0000000000000000
[ 1646.935213][ T9518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1646.935238][ T9518] R13: 00007ffa45816038 R14: 00007ffa45815fa0 R15: 00007fff0ec1b438
[ 1646.935292][ T9518]  </TASK>
[ 1647.227258][ T5764] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[ 1647.234656][ T5764] ath9k_htc: Failed to initialize the device
[ 1647.286984][ T9518] Mem-Info:
[ 1647.294209][ T9518] active_anon:10281 inactive_anon:1 isolated_anon:0
[ 1647.294209][ T9518]  active_file:11820 inactive_file:5134 isolated_file:0
[ 1647.294209][ T9518]  unevictable:768 dirty:367 writeback:0
[ 1647.294209][ T9518]  slab_reclaimable:7568 slab_unreclaimable:220338
[ 1647.294209][ T9518]  mapped:36832 shmem:1949 pagetables:3941
[ 1647.294209][ T9518]  sec_pagetables:0 bounce:0
[ 1647.294209][ T9518]  kernel_misc_reclaimable:0
[ 1647.294209][ T9518]  free:1194522 free_pcp:9377 free_cma:0
[ 1647.419007][ T9518] Node 0 active_anon:40924kB inactive_anon:4kB active_file:47280kB inactive_file:20396kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:139232kB dirty:1460kB writeback:0kB shmem:6260kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13972kB pagetables:15436kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1647.471306][ T9518] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:8196kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1647.509134][ T9518] Node 0 DMA free:11264kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1647.540287][ T9518] lowmem_reserve[]: 0 2477 2478 2478 2478
[ 1647.561095][ T9518] Node 0 DMA32 free:1209076kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40724kB inactive_anon:4kB active_file:47280kB inactive_file:20472kB unevictable:1536kB writepending:1528kB zspages:0kB present:3129332kB managed:2537232kB mlocked:0kB bounce:0kB free_pcp:38612kB local_pcp:18524kB free_cma:0kB
[ 1647.596095][ T9518] lowmem_reserve[]: 0 0 1 1 1
[ 1647.604051][ T5764] usb 4-1: ath9k_htc: USB layer deinitialized
[ 1647.616093][ T9518] Node 0 Normal free:8kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1096kB mlocked:0kB bounce:0kB free_pcp:24kB local_pcp:12kB free_cma:0kB
[ 1647.743439][ T9518] lowmem_reserve[]: 0 0 0 0 0
[ 1647.763516][ T9518] Node 1 Normal free:3557724kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1647.867001][ T9533] x_tables: unsorted entry at hook 2
[ 1647.876787][ T9518] lowmem_reserve[]: 0 0 0 0 0
[ 1647.893316][ T8976] usb 4-1: USB disconnect, device number 56
[ 1647.920978][ T9518] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 2*4096kB (M) = 11264kB
[ 1647.937948][ T9518] Node 0 DMA32: 6767*4kB (UME) 6298*8kB (UME) 3819*16kB (UME) 189*32kB (UME) 591*64kB (UME) 903*128kB (UME) 779*256kB (UME) 520*512kB (UME) 309*1024kB (UME) 38*2048kB (UM) 13*4096kB (UM) = 1211164kB
[ 1647.995917][ T9535] openvswitch: netlink: VXLAN extension 1 has unexpected len 8 expected 4
[ 1648.017500][ T9518] Node 0 Normal: 2*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[ 1648.058332][ T9518] Node 1 Normal: 11*4kB (UM) 6*8kB (U) 14*16kB (UM) 9*32kB (UM) 10*64kB (UM) 9*128kB (UM) 4*256kB (UM) 4*512kB (UM) 1*1024kB (M) 4*2048kB (M) 865*4096kB (UM) = 3557724kB
[ 1648.098188][ T9518] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1648.156443][ T9518] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1648.198859][ T9518] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1648.223947][ T9518] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1648.258630][ T9518] 18070 total pagecache pages
[ 1648.270915][ T9518] 0 pages in swap cache
[ 1648.291093][ T9518] Free swap  = 124996kB
[ 1648.301683][ T9518] Total swap = 124996kB
[ 1648.307351][ T9518] 2097051 pages RAM
[ 1648.315024][ T9518] 0 pages HighMem/MovableOnly
[ 1648.324012][ T9518] 430854 pages reserved
[ 1648.336839][ T9518] 0 pages cma reserved
[ 1648.731416][   T30] audit: type=1326 audit(2000525976.203:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9562 comm="syz.5.15355" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1648.840427][   T30] audit: type=1326 audit(2000525976.231:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9562 comm="syz.5.15355" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1648.880818][   T30] audit: type=1326 audit(2000525976.231:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9562 comm="syz.5.15355" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1649.022642][ T9571] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1649.033361][   T30] audit: type=1326 audit(2000525976.231:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9562 comm="syz.5.15355" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1649.245804][ T9579] loop4: detected capacity change from 0 to 512
[ 1649.286388][ T9579] EXT4-fs (loop4): revision level too high, forcing read-only mode
[ 1649.320243][ T9579] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002]
[ 1649.370869][ T9579] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1649.402308][ T9579] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[ 1649.411826][ T9579] EXT4-fs warning (device loop4): ext4_enable_quotas:7265: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1649.432744][ T9579] EXT4-fs (loop4): Cannot turn on quotas: error -22
[ 1649.444000][ T9579] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.15363: bg 0: block 40: padding at end of block bitmap is not set
[ 1649.464044][ T9579] loop4: lost filesystem error report for type 5 error -117
[ 1649.465374][ T9579] EXT4-fs (loop4): Remounting filesystem read-only
[ 1649.472774][    C1] EXT4-fs (loop4): error count since last fsck: 1
[ 1649.472805][    C1] EXT4-fs (loop4): initial error at time 2000525976: ext4_validate_block_bitmap:440
[ 1649.472847][    C1] EXT4-fs (loop4): last error at time 2000525976: ext4_validate_block_bitmap:440
[ 1649.535091][ T9579] EXT4-fs (loop4): 1 truncate cleaned up
[ 1649.563370][ T9579] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1649.645469][ T9598] ceph: No source
[ 1649.679864][ T8976] usb 6-1: new high-speed USB device number 74 using dummy_hcd
[ 1649.857102][ T8976] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1649.871219][ T8976] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1649.912927][ T5634] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1649.922603][ T8976] usb 6-1: Product: syz
[ 1649.930980][ T8976] usb 6-1: Manufacturer: syz
[ 1649.936925][ T9602] netlink: 28 bytes leftover after parsing attributes in process `syz.2.15374'.
[ 1649.942001][ T9604] cgroup: Name too long
[ 1649.951530][ T8976] usb 6-1: SerialNumber: syz
[ 1649.997423][ T8976] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1650.019341][T22450] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1650.353605][    C1] usb 6-1: ath9k_htc: invalid pkt_len (ffef)
[ 1650.569532][ T5764] usb 6-1: USB disconnect, device number 74
[ 1650.769293][ T9624] loop3: detected capacity change from 0 to 1024
[ 1650.796191][ T9624] hfsplus: failed to load extents file
[ 1650.876269][ T9627] loop2: detected capacity change from 0 to 64
[ 1650.886707][ T9628] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1651.210643][T22450] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[ 1651.240774][T22450] ath9k_htc: Failed to initialize the device
[ 1651.254012][ T5764] usb 6-1: ath9k_htc: USB layer deinitialized
[ 1651.423178][   T30] audit: type=1400 audit(2000525978.730:278): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AAE86AD47AA0D9495E6D80F7BDE2D18FFB36CF152AED2D408FB58E305FC8E2F2F7D91F81B621CC4214D4A27E1614FBEE0BEAC8F4A045070B770212D46D4A2DF096B791F2A4BA218E12CB76AA24945B70A7C9DD5EDEAC52B5A876F73CFBE66371A72F11F3D9544D6B59B4A5541DCEF5CBF11FFFF37DFD147CCA3E5098A207BE806EA7167101F8C1B5C8FE41E170FD0C775DBC5BE0B6D3AB625AB702E5B1DC15F9C4B3D09BE812F340E681E0694F5BADF640DA3FDFC2F929B4C2BEB9A592C577287B6021BFEEC24146C7F95608BB60A736207A09D9F47E89C4044EADDE57CDEFD15F25B822D2EAF2205DF0D6B71B63EE0B63CB598F26509AF36983578F6F4198A0843CC1B1BD780015007AB9709CC6211E3B5C685B972B5C5E95F054A7A9FE149282F679C8466B9734E3850EC98419DD0C887715902F9E7802842085BC606F30C2654869E9E3701FD0FC69137FE165592689465EEBD5CAFAD7C29DE2ADADEC42A818D8EE389CA1FE33A1EF23617C89116A3A458B56612E4C36C43A9150D5331ADBB0BEB01A062B1F1349FC2ECEA76CB7C40CDFE378185F3099B1D71414D0FDA5A47F8593260CC0BD723A4CCA81435F04
[ 1652.164950][ T9671] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15408'.
[ 1652.514194][ T9682] loop0: detected capacity change from 0 to 512
[ 1652.532599][ T9682] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1652.596578][ T9682] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1652.613998][ T9682] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[ 1652.689403][ T9682] EXT4-fs error (device loop0): ext4_clear_blocks:874: inode #13: comm syz.0.15412: attempt to clear invalid blocks 2 len 1
[ 1652.707229][ T9682] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1652.714213][ T9682] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1314: group 0, 
[ 1652.723814][    C1] EXT4-fs (loop0): error count since last fsck: 1
[ 1652.723849][    C1] EXT4-fs (loop0): initial error at time 2000525979: ext4_clear_blocks:874: inode 13
[ 1652.723906][    C1] EXT4-fs (loop0): last error at time 2000525979: ext4_clear_blocks:874: inode 13
[ 1652.761335][ T9682] block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[ 1652.843838][ T9682] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #13: comm syz.0.15412: invalid indirect mapped block 1819239214 (level 0)
[ 1652.883609][ T9682] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1652.884111][ T9682] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #13: comm syz.0.15412: invalid indirect mapped block 1819239214 (level 1)
[ 1652.917796][ T9682] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1652.919672][ T9682] EXT4-fs (loop0): 1 truncate cleaned up
[ 1652.967592][ T9682] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1652.991972][ T9692] bond6: option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[ 1653.042246][ T9692] bond6 (unregistering): Released all slaves
[ 1653.130880][ T5652] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1653.405542][ T9710] loop2: detected capacity change from 0 to 512
[ 1653.507289][ T9710] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1653.691449][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1653.991985][ T9729] loop7: detected capacity change from 0 to 2048
[ 1654.206616][ T5764] usb 6-1: new high-speed USB device number 75 using dummy_hcd
[ 1654.287285][ T9740] netlink: 68 bytes leftover after parsing attributes in process `syz.0.15441'.
[ 1654.340331][ T9740] netlink: 16 bytes leftover after parsing attributes in process `syz.0.15441'.
[ 1654.402917][ T5764] usb 6-1: Using ep0 maxpacket: 16
[ 1654.416850][ T5764] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[ 1654.429809][ T9749] loop2: detected capacity change from 0 to 128
[ 1654.449964][ T5764] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1654.478329][ T5764] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1654.493676][ T5764] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice=4f.14
[ 1654.527957][ T5764] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1654.561520][ T5764] usb 6-1: Product: syz
[ 1654.581434][ T5764] usb 6-1: Manufacturer: syz
[ 1654.603502][ T5764] usb 6-1: SerialNumber: syz
[ 1654.642873][ T5764] usb 6-1: config 0 descriptor??
[ 1654.660273][ T9730] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1654.751318][ T5764] mceusb 6-1:0.0: mceusb_dev_probe: device setup failed!
[ 1654.779377][ T5764] mceusb 6-1:0.0: probe with driver mceusb failed with error -12
[ 1654.957607][ T5764] usb 6-1: USB disconnect, device number 75
[ 1655.271212][ T9775] binder: binder_mmap: 9772 200000000000-200000b36000 bad vm_flags failed -1
[ 1655.491960][ T9783] netlink: 16 bytes leftover after parsing attributes in process `syz.7.15460'.
[ 1655.711340][ T9788] loop4: detected capacity change from 0 to 2048
[ 1655.716461][ T9791] nbd: couldn't find a device at index 17
[ 1655.747672][ T9788] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1655.820798][ T9796] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1655.874568][ T9788] NILFS error (device loop4): nilfs_lookup: deleted inode referenced: 12
[ 1655.931128][ T9788] Remounting filesystem read-only
[ 1657.124438][ T9813] Bluetooth: hci0: Opcode 0x0401 failed: -4
[ 1657.150186][    T9] kworker/0:0 (9) used greatest stack depth: 17752 bytes left
[ 1657.159875][T22450] usb 5-1: new low-speed USB device number 67 using dummy_hcd
[ 1657.191396][ T9845] loop7: detected capacity change from 0 to 256
[ 1657.264116][ T9842] bond7: option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[ 1657.337054][T22450] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[ 1657.367841][ T9842] bond7 (unregistering): Released all slaves
[ 1657.372932][T22450] usb 5-1: config 0 has no interface number 0
[ 1657.404803][T22450] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1657.442292][T22450] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[ 1657.483833][T22450] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1657.532088][T22450] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[ 1657.570804][T22450] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[ 1657.643393][T22450] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1657.680159][T22450] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1657.705005][T22450] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1657.738688][T22450] usb 5-1: config 0 descriptor??
[ 1657.755851][ T9834] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1657.767690][ T9834] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1657.809574][ T9864] trusted_key: encrypted_key: keyword 'newdefault' not recognized
[ 1657.813083][T22450] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1658.153994][T22450] usb 5-1: USB disconnect, device number 67
[ 1658.195202][T22450] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[ 1658.246816][ T9878] netlink: 'syz.5.15505': attribute type 7 has an invalid length.
[ 1658.533755][ T9887] netlink: 4 bytes leftover after parsing attributes in process `syz.7.15510'.
[ 1658.667807][ T9893] loop2: detected capacity change from 0 to 16
[ 1658.693234][ T9893] MTD: Attempt to mount non-MTD device "/dev/loop2"
[ 1658.764444][ T9893] cramfs: Error -3 while decompressing!
[ 1658.783197][ T5874] udevd[5874]: incorrect cramfs checksum on /dev/loop2
[ 1658.801607][ T9893] cramfs: ffffffff9b2788a8(27)->ffff88807e62b000(4096)
[ 1658.852413][ T9893] cramfs: Error -3 while decompressing!
[ 1658.879803][ T9893] cramfs: ffffffff9b2788a8(27)->ffff88807e62b000(4096)
[ 1658.908888][   T30] audit: type=1800 audit(2000525985.730:279): pid=9893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.15513" name="file2" dev="loop2" ino=348 res=0 errno=0
[ 1658.979467][ T5874] udevd[5874]: incorrect cramfs checksum on /dev/loop2
[ 1659.365624][ T9910] netlink: 16 bytes leftover after parsing attributes in process `syz.4.15521'.
[ 1660.188116][ T9896] loop5: detected capacity change from 0 to 32768
[ 1660.348471][ T9939] bond3: option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[ 1660.428013][ T9939] bond3 (unregistering): Released all slaves
[ 1660.760317][ T9959] SET target dimension over the limit!
[ 1660.816110][ T5764] usb 5-1: new full-speed USB device number 68 using dummy_hcd
[ 1660.947866][ T9964] netlink: 56 bytes leftover after parsing attributes in process `syz.7.15547'.
[ 1661.011315][ T5764] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1661.079795][ T5764] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1661.148359][ T5764] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1661.198328][ T5764] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1661.246796][ T5764] hub 5-1:4.0: USB hub found
[ 1661.276250][ T9973] loop0: detected capacity change from 0 to 256
[ 1661.486044][ T5764] hub 5-1:4.0: 4 ports detected
[ 1661.498031][ T5764] usb 5-1: selecting invalid altsetting 1
[ 1661.520079][ T5764] hub 5-1:4.0: Using single TT (err -22)
[ 1661.529304][ T5764] hub 5-1:4.0: insufficient power available to use all downstream ports
[ 1661.532023][ T9979] loop5: detected capacity change from 0 to 2048
[ 1661.608250][ T9979] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1661.614526][ T9983] loop0: detected capacity change from 0 to 512
[ 1661.651911][ T9985] netlink: 16 bytes leftover after parsing attributes in process `syz.7.15556'.
[ 1661.667097][ T9983] EXT4-fs (loop0): external journal device major/minor numbers have changed
[ 1661.685356][ T9983] EXT4-fs (loop0): failed to open journal device unknown-block(8,3) -6
[ 1661.711135][ T5764] hub 5-1:4.0: hub_hub_status failed (err = -71)
[ 1661.730565][ T9988] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1661.754283][ T5764] hub 5-1:4.0: config failed, can't get hub status (err -71)
[ 1661.790861][ T9979] NILFS error (device loop5): nilfs_lookup: deleted inode referenced: 12
[ 1661.865283][ T5764] usb 5-1: USB disconnect, device number 68
[ 1661.870214][ T9979] Remounting filesystem read-only
[ 1662.583809][T10013] netlink: 'syz.5.15570': attribute type 5 has an invalid length.
[ 1662.615421][T10017] netlink: 28 bytes leftover after parsing attributes in process `syz.4.15572'.
[ 1662.881405][T10025] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized
[ 1663.303210][T10048] netlink: 'syz.0.15586': attribute type 2 has an invalid length.
[ 1663.317306][T10048] netlink: 'syz.0.15586': attribute type 1 has an invalid length.
[ 1663.433367][T10050] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1663.734764][T10062] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15594'.
[ 1664.560429][T10092] netlink: 4 bytes leftover after parsing attributes in process `syz.4.15608'.
[ 1665.219976][T10113] The dccp option matching is deprecated and scheduled to be removed in 2027.
[ 1665.219976][T10113] Please contact the netfilter-devel mailing list or update your nftables rules.
[ 1665.480087][T10121] openvswitch: netlink: Flow key attribute not present in set flow.
[ 1666.005189][T10137] loop2: detected capacity change from 0 to 64
[ 1666.109923][T10133] loop5: detected capacity change from 0 to 4096
[ 1666.141284][T10133] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[ 1666.170521][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[ 1666.332231][T10146] loop3: detected capacity change from 0 to 16
[ 1666.373445][T10133] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1666.382756][T10146] erofs (device loop3): mounted with root inode @ nid 36.
[ 1666.494263][T10133] ntfs3(loop5): ino=1e, mi_enum_attr
[ 1666.520993][T10133] ntfs3(loop5): ino=1e, mi_enum_attr
[ 1666.905138][T10164] x_tables: arp_tables: NFQUEUE target: not valid for this family
[ 1667.009490][T10169] netlink: 104 bytes leftover after parsing attributes in process `syz.0.15646'.
[ 1667.407060][T10178] CIFS mount error: No usable UNC path provided in device string!
[ 1667.407060][T10178] 
[ 1667.431391][T10178] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1668.542476][T10218] loop7: detected capacity change from 0 to 136
[ 1668.905148][T10232] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1669.271287][T10248] netlink: 'syz.7.15696': attribute type 32 has an invalid length.
[ 1669.521802][T10255] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15689'.
[ 1669.997534][T10272] lo: entered allmulticast mode
[ 1670.158955][T10277] loop3: detected capacity change from 0 to 1024
[ 1670.568571][T10290] sit0: entered promiscuous mode
[ 1670.596987][T10290] netlink: 'syz.2.15707': attribute type 1 has an invalid length.
[ 1670.652405][T10290] netlink: 1 bytes leftover after parsing attributes in process `syz.2.15707'.
[ 1670.959466][T10304] loop0: detected capacity change from 0 to 2048
[ 1670.986075][T10304] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1671.037059][   T30] audit: type=1800 audit(2000525997.072:280): pid=10304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.15713" name="file1" dev="loop0" ino=1367 res=0 errno=0
[ 1671.530063][T10324] loop7: detected capacity change from 0 to 1024
[ 1671.586898][ T5764] usb 1-1: new high-speed USB device number 80 using dummy_hcd
[ 1671.797017][ T5764] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1671.834131][ T5764] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1671.857412][T10337] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1671.876962][ T5764] usb 1-1: Product: syz
[ 1671.882240][ T5764] usb 1-1: Manufacturer: syz
[ 1671.893508][ T5764] usb 1-1: SerialNumber: syz
[ 1671.942304][ T5764] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1671.971181][T23163] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1672.554256][T22450] usb 1-1: USB disconnect, device number 80
[ 1672.818668][T10363] ipt_REJECT: TCP_RESET invalid for non-tcp
[ 1673.180428][T23163] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[ 1673.209133][T23163] ath9k_htc: Failed to initialize the device
[ 1673.266210][T22450] usb 1-1: ath9k_htc: USB layer deinitialized
[ 1674.373612][T10424] netlink: 'syz.0.15771': attribute type 6 has an invalid length.
[ 1674.407171][T10424] netlink: 176 bytes leftover after parsing attributes in process `syz.0.15771'.
[ 1674.521561][T10428] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048)
[ 1674.738487][T10436] loop3: detected capacity change from 0 to 64
[ 1674.839730][T10442] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1675.122921][T10450] dlm: no locking on control device
[ 1675.200345][T10454] loop5: detected capacity change from 0 to 64
[ 1675.281008][T10454] syz.5.15787: attempt to access beyond end of device
[ 1675.281008][T10454] loop5: rw=0, sector=1024, nr_sectors = 2 limit=64
[ 1675.330410][T10454] Buffer I/O error on dev loop5, logical block 512, async page read
[ 1675.358361][T10454] syz.5.15787: attempt to access beyond end of device
[ 1675.358361][T10454] loop5: rw=0, sector=113152, nr_sectors = 2 limit=64
[ 1675.411647][T10454] Buffer I/O error on dev loop5, logical block 56576, async page read
[ 1675.523145][T10464] loop7: detected capacity change from 0 to 512
[ 1675.853720][T10472] netlink: 8 bytes leftover after parsing attributes in process `syz.5.15795'.
[ 1675.889914][T10474] netlink: 24 bytes leftover after parsing attributes in process `syz.7.15797'.
[ 1675.920412][T10476] netlink: 16 bytes leftover after parsing attributes in process `syz.0.15798'.
[ 1675.940498][T10474] netlink: 24 bytes leftover after parsing attributes in process `syz.7.15797'.
[ 1676.005690][T10474] netlink: 12 bytes leftover after parsing attributes in process `syz.7.15797'.
[ 1676.180365][T10478] netlink: 'syz.4.15799': attribute type 2 has an invalid length.
[ 1676.222120][T10478] netlink: 244 bytes leftover after parsing attributes in process `syz.4.15799'.
[ 1676.515499][T10452] loop3: detected capacity change from 0 to 32768
[ 1676.595661][T10452] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1676.861425][T10452] XFS (loop3): Ending clean mount
[ 1676.892908][T10452] XFS (loop3): Quotacheck needed: Please wait.
[ 1676.948610][T10508] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15809'.
[ 1676.997963][T10508] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15809'.
[ 1677.034607][T10508] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15809'.
[ 1677.191913][T10452] XFS (loop3): Quotacheck: Done.
[ 1677.531935][ T5639] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1680.221854][T10628] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1680.638922][T10638] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1680.642126][T10645] openvswitch: netlink: Message has 4 unknown bytes.
[ 1680.681008][T10644] loop0: detected capacity change from 0 to 2048
[ 1680.722961][T10645] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1680.796854][T10644] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1680.842351][T10654] netlink: 'syz.4.15877': attribute type 21 has an invalid length.
[ 1680.854924][T10656] __nla_validate_parse: 3 callbacks suppressed
[ 1680.854948][T10656] netlink: 6032 bytes leftover after parsing attributes in process `syz.3.15878'.
[ 1680.879052][T10644] ext4 filesystem being mounted at /2670/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1680.911652][T10654] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1681.007936][T10644] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm syz.0.15875: bg 0: block 345: padding at end of block bitmap is not set
[ 1681.085224][T10644] EXT4-fs (loop0): Remounting filesystem read-only
[ 1681.290382][ T5652] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1681.440747][T10641] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1681.533335][T10678] loop0: detected capacity change from 0 to 64
[ 1681.726353][T10680] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[ 1681.732924][T10680] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1681.805178][T10685] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(6)
[ 1681.811748][T10685] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1681.894452][T10685] vhci_hcd vhci_hcd.0: Device attached
[ 1681.898179][T10680] vhci_hcd vhci_hcd.0: Device attached
[ 1682.048080][T10681] vhci_hcd: connection closed
[ 1682.048376][T10686] vhci_hcd: connection closed
[ 1682.055161][ T6862] vhci_hcd vhci_hcd.2: stop threads
[ 1682.098302][ T6862] vhci_hcd vhci_hcd.2: release socket
[ 1682.126317][ T6862] vhci_hcd vhci_hcd.2: disconnect device
[ 1682.148970][ T6862] vhci_hcd vhci_hcd.2: stop threads
[ 1682.165567][T23163] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[ 1682.174071][ T6862] vhci_hcd vhci_hcd.2: release socket
[ 1682.191986][T23163] usb 37-1: enqueue for inactive port 0
[ 1682.207943][ T6862] vhci_hcd vhci_hcd.2: disconnect device
[ 1682.294750][T23163] vhci_hcd vhci_hcd.2: vhci_device speed not set
[ 1682.352343][T10698] loop4: detected capacity change from 0 to 4096
[ 1682.383930][T10698] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1682.509135][T10698] ntfs3(loop4): ino=19, mi_enum_attr
[ 1682.536815][T10698] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1682.624943][T27246] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[ 1682.822173][T27246] usb 4-1: Using ep0 maxpacket: 16
[ 1682.846695][T27246] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1682.877654][T27246] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1682.890104][T27246] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 29440, setting to 1024
[ 1682.901732][T27246] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 1024
[ 1682.919182][T27246] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1682.949993][T27246] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1682.982270][T27246] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1683.015702][T27246] usb 4-1: Manufacturer: syz
[ 1683.054745][T27246] usb 4-1: config 0 descriptor??
[ 1683.196195][T10724] loop7: detected capacity change from 0 to 4096
[ 1683.222040][T10730] loop5: detected capacity change from 0 to 1024
[ 1683.284965][T10730] hfsplus: inconsistency in B*Tree (0,1,255,1,0)
[ 1683.305258][T10730] hfsplus: xattr search failed
[ 1683.544327][T27246] rc_core: IR keymap rc-hauppauge not found
[ 1683.571724][T27246] Registered IR keymap rc-empty
[ 1683.592543][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1683.640499][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1683.684356][T27246] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[ 1683.737981][T27246] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input100
[ 1683.827355][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1683.877683][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1683.931642][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1683.996327][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1684.036193][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1684.073857][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1684.124108][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1684.159156][T10757] loop7: detected capacity change from 0 to 512
[ 1684.186916][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1684.230171][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1684.273533][T27246] mceusb 4-1:0.0: Error: mce write urb status = -71
[ 1684.340313][T27246] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[ 1684.384531][T27246] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1684.438644][T27246] usb 4-1: USB disconnect, device number 57
[ 1684.529515][T10773] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1684.715581][T10776] netlink: 'syz.4.15932': attribute type 21 has an invalid length.
[ 1684.752449][T10776] netlink: 128 bytes leftover after parsing attributes in process `syz.4.15932'.
[ 1684.792942][T10776] netlink: 'syz.4.15932': attribute type 4 has an invalid length.
[ 1684.835326][T10776] netlink: 'syz.4.15932': attribute type 5 has an invalid length.
[ 1684.860602][T10776] netlink: 3 bytes leftover after parsing attributes in process `syz.4.15932'.
[ 1684.880737][T10782] Invalid option length (1045693) for dns_resolver key
[ 1685.478355][T10797] netlink: 20 bytes leftover after parsing attributes in process `syz.7.15943'.
[ 1685.713730][T10796] loop4: detected capacity change from 0 to 4096
[ 1685.762282][T10796] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1685.825518][T10796] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1685.860995][T10796] ntfs3(loop4): ino=19, mi_enum_attr
[ 1686.269457][T27246] usb 1-1: new high-speed USB device number 81 using dummy_hcd
[ 1686.461005][T27246] usb 1-1: Using ep0 maxpacket: 8
[ 1686.499984][T27246] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1686.534501][T27246] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1686.559697][T27246] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1686.586850][T27246] usb 1-1: Product: syz
[ 1686.602264][T27246] usb 1-1: Manufacturer: syz
[ 1686.611102][T10790] loop3: detected capacity change from 0 to 32768
[ 1686.621593][T27246] usb 1-1: SerialNumber: syz
[ 1686.693812][T10790] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1686.881448][T10790] XFS (loop3): Ending clean mount
[ 1686.940971][T27246] usb 1-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1686.991087][T27246] usb 1-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1687.037256][T27246] usb 1-1: Handspring Visor / Palm OS: Number of ports: 2
[ 1687.049669][T10842] loop7: detected capacity change from 0 to 1024
[ 1687.168905][T27246] usb 1-1: palm_os_3_probe - error -71 getting bytes available request
[ 1687.190940][ T5639] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1687.215630][T27246] visor 1-1:1.0: Handspring Visor / Palm OS converter detected
[ 1687.285851][T27246] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1687.294721][T10848] loop4: detected capacity change from 0 to 24
[ 1687.306699][T10848] MTD: Attempt to mount non-MTD device "/dev/loop4"
[ 1687.327991][T27246] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1687.354998][T10848] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1687.406705][T27246] usb 1-1: USB disconnect, device number 81
[ 1687.453773][T10848] VFS: Lookup of 'file0' in romfs loop4 would have caused loop
[ 1687.476429][T27246] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1687.569599][T27246] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1687.617080][T27246] visor 1-1:1.0: device disconnected
[ 1687.878559][T10858] Cannot find del_set index 4 as target
[ 1688.463033][T10878] loop2: detected capacity change from 0 to 256
[ 1688.490665][T10878] exfat: Deprecated parameter 'namecase'
[ 1688.512184][T10878] exfat: Deprecated parameter 'namecase'
[ 1688.560606][T10878] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1688.586338][T10882] netlink: 'syz.7.15981': attribute type 21 has an invalid length.
[ 1688.619894][T10882] netlink: 128 bytes leftover after parsing attributes in process `syz.7.15981'.
[ 1688.656551][T10882] netlink: 'syz.7.15981': attribute type 4 has an invalid length.
[ 1688.684938][T10882] netlink: 'syz.7.15981': attribute type 5 has an invalid length.
[ 1688.712961][T10882] netlink: 3 bytes leftover after parsing attributes in process `syz.7.15981'.
[ 1688.738512][T10888] block nbd3: NBD_DISCONNECT
[ 1688.746993][T10884] netlink: 20 bytes leftover after parsing attributes in process `syz.5.15982'.
[ 1689.033914][T10894] loop2: detected capacity change from 0 to 8
[ 1689.117139][T10894] SQUASHFS error: Unable to read inode 0xa7
[ 1689.282710][T10901] openvswitch: netlink: IP tunnel dst address not specified
[ 1689.491075][T10906] netlink: 'syz.2.15993': attribute type 2 has an invalid length.
[ 1689.936345][T10922] loop4: detected capacity change from 0 to 256
[ 1689.979384][T10922] exfat: Deprecated parameter 'namecase'
[ 1689.992977][T10922] exfat: Deprecated parameter 'namecase'
[ 1690.032828][T10922] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1690.144817][T10930] loop3: detected capacity change from 0 to 256
[ 1690.171699][T10930] exfat: Deprecated parameter 'utf8'
[ 1690.211042][T10930] exfat: Deprecated parameter 'utf8'
[ 1690.307095][T10930] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dfeff5, utbl_chksum : 0xe619d30d)
[ 1690.482456][T10930] overlay: filesystem on ./file0 not supported
[ 1691.157542][   T30] audit: type=1326 audit(2000526015.909:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10967 comm="syz.4.16024" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f495839cdd9 code=0x7ffc0000
[ 1691.274736][   T30] audit: type=1326 audit(2000526015.909:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10967 comm="syz.4.16024" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f495839cdd9 code=0x7ffc0000
[ 1691.380676][   T30] audit: type=1326 audit(2000526015.947:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10967 comm="syz.4.16024" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f495839cdd9 code=0x7ffc0000
[ 1691.455119][   T30] audit: type=1326 audit(2000526015.947:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10967 comm="syz.4.16024" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f495839cdd9 code=0x7ffc0000
[ 1691.494197][T10978] loop7: detected capacity change from 0 to 256
[ 1691.515607][T10978] exfat: Deprecated parameter 'utf8'
[ 1691.527191][T10978] exfat: Deprecated parameter 'namecase'
[ 1691.549710][T10978] exfat: Deprecated parameter 'namecase'
[ 1691.551064][T10983] loop5: detected capacity change from 0 to 64
[ 1691.660477][T10983] Trying to free block not in datazone
[ 1691.677141][T27246] usb 4-1: new full-speed USB device number 58 using dummy_hcd
[ 1691.817118][T10990] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16035'.
[ 1691.848868][T27246] usb 4-1: config 0 has an invalid interface number: 200 but max is 0
[ 1691.870113][T27246] usb 4-1: config 0 has no interface number 0
[ 1691.893038][T27246] usb 4-1: config 0 interface 200 altsetting 2 has an endpoint descriptor with address 0xB5, changing to 0x85
[ 1691.956128][T27246] usb 4-1: config 0 interface 200 altsetting 2 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1692.002949][T27246] usb 4-1: config 0 interface 200 has no altsetting 0
[ 1692.023640][T27246] usb 4-1: New USB device found, idVendor=0b57, idProduct=8528, bcdDevice=6d.39
[ 1692.049194][T27246] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1692.062563][ T5764] usb 5-1: new high-speed USB device number 69 using dummy_hcd
[ 1692.068240][T27246] usb 4-1: Product: syz
[ 1692.094836][T27246] usb 4-1: Manufacturer: syz
[ 1692.112749][T27246] usb 4-1: SerialNumber: syz
[ 1692.116885][T10997] netlink: 'syz.0.16039': attribute type 39 has an invalid length.
[ 1692.139903][T27246] usb 4-1: config 0 descriptor??
[ 1692.251237][ T5764] usb 5-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[ 1692.277617][ T5764] usb 5-1: New USB device found, idVendor=0979, idProduct=0227, bcdDevice=6f.50
[ 1692.301070][ T5764] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1692.325432][ T5764] usb 5-1: Product: syz
[ 1692.341045][ T5764] usb 5-1: Manufacturer: syz
[ 1692.353411][ T5764] usb 5-1: SerialNumber: syz
[ 1692.427115][T27246] input: Hanwang Art Master III 0906 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.200/input/input101
[ 1692.490130][T27246] usb 4-1: USB disconnect, device number 58
[ 1692.682097][ T5764] gspca_main: jl2005bcd-2.14.0 probing 0979:0227
[ 1692.704915][ T5764] command write [95] error -22
[ 1692.754541][ T5764] usb 5-1: USB disconnect, device number 69
[ 1692.871246][T11020] loop5: detected capacity change from 0 to 64
[ 1693.090969][T11026] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1693.177806][T11030] netlink: 'syz.2.16054': attribute type 1 has an invalid length.
[ 1693.207442][T11030] netlink: 244 bytes leftover after parsing attributes in process `syz.2.16054'.
[ 1693.967170][T11061] loop5: detected capacity change from 0 to 128
[ 1694.025353][T11061] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1694.105764][T11067] loop0: detected capacity change from 0 to 1024
[ 1694.137393][T11061] ext4 filesystem being mounted at /2729/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1694.165251][T11067] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5
[ 1694.187938][T11067] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[ 1694.242290][T11067] EXT4-fs error (device loop0): ext4_acquire_dquot:7032: comm syz.0.16071: Failed to acquire dquot type 0
[ 1694.248793][T11074] netlink: 212408 bytes leftover after parsing attributes in process `syz.4.16073'.
[ 1694.279298][T11067] loop0: lost filesystem error report for type 5 error -117
[ 1694.280649][T11067] EXT4-fs error (device loop0): mb_free_blocks:2046: group 0, 
[ 1694.288015][    C1] EXT4-fs (loop0): error count since last fsck: 1
[ 1694.288050][    C1] EXT4-fs (loop0): initial error at time 2000526018: ext4_acquire_dquot:7032
[ 1694.288094][    C1] EXT4-fs (loop0): last error at time 2000526018: ext4_acquire_dquot:7032
[ 1694.322266][T11067] inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt.
[ 1694.349314][T11072] loop3: detected capacity change from 0 to 4096
[ 1694.389580][T11067] EXT4-fs (loop0): 1 truncate cleaned up
[ 1694.395783][T11072] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1694.410791][T11067] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1694.450143][ T5630] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1694.469853][T11080] netlink: 108 bytes leftover after parsing attributes in process `syz.4.16077'.
[ 1694.535042][T11072] ntfs3(loop3): ino=19, mi_enum_attr
[ 1694.555473][T11072] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[ 1694.594608][T11067] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5
[ 1694.600283][T11082] netlink: 104 bytes leftover after parsing attributes in process `syz.7.16079'.
[ 1694.626367][T11084] netlink: 20 bytes leftover after parsing attributes in process `syz.5.16078'.
[ 1694.638667][T11067] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[ 1694.657281][T11072] ntfs3(loop3): failed to convert "c46c" to macgreek
[ 1694.666289][T11084] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16078'.
[ 1694.693387][T11072] ntfs3(loop3): ino=20, mi_enum_attr
[ 1694.699982][T11067] EXT4-fs error (device loop0): ext4_acquire_dquot:7032: comm syz.0.16071: Failed to acquire dquot type 0
[ 1694.930693][ T5652] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1694.986723][T11091] x_tables: (null)_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 16
[ 1695.305535][T11100] loop0: detected capacity change from 0 to 1024
[ 1695.349247][T11100] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (47942!=20869)
[ 1695.401465][T11100] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1695.453002][T11100] EXT4-fs warning (device loop0): ext4_enable_quotas:7265: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[ 1695.536382][T11110] loop2: detected capacity change from 0 to 164
[ 1695.560216][T11100] EXT4-fs (loop0): Cannot turn on quotas: error -13
[ 1695.617016][T11100] EXT4-fs error (device loop0): ext4_orphan_get:1400: comm syz.0.16084: couldn't read orphan inode 12 (err -116)
[ 1695.676908][T11100] loop0: lost filesystem error report for type 5 error -116
[ 1695.695405][T11100] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1695.812582][T11115] netlink: 'syz.5.16094': attribute type 1 has an invalid length.
[ 1695.841419][T11115] netlink: 'syz.5.16094': attribute type 1 has an invalid length.
[ 1696.161799][ T5652] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1696.450340][T11137] JFS: charset not found
[ 1696.759322][T11154] loop0: detected capacity change from 0 to 764
[ 1696.815393][T11154] Symlink component flag not implemented
[ 1696.829491][T11154] Symlink component flag not implemented (122)
[ 1697.276445][T11169] loop2: detected capacity change from 0 to 4096
[ 1697.445262][T11169] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[ 1697.978824][T11171] netlink: 'syz.0.16118': attribute type 7 has an invalid length.
[ 1698.007902][T25834] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1698.045429][T25834] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1698.080806][T11148] wlan1 speed is unknown, defaulting to 1000
[ 1698.091029][T25834] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1698.142676][T11148] syz0: Port: 1 Link DOWN
[ 1698.347686][T11198] loop4: detected capacity change from 0 to 512
[ 1698.819823][T11219] macsec0: entered promiscuous mode
[ 1698.894654][T11219] macsec0: entered allmulticast mode
[ 1698.935201][T11219] veth1_macvtap: entered allmulticast mode
[ 1699.254784][T11233] usb usb9: usbfs: process 11233 (syz.0.16141) did not claim interface 0 before use
[ 1700.096544][T11259] loop0: detected capacity change from 0 to 256
[ 1700.116708][T11259] exfat: Deprecated parameter 'namecase'
[ 1700.140098][T11259] exfat: Deprecated parameter 'namecase'
[ 1700.195296][T11229] loop5: detected capacity change from 0 to 32768
[ 1700.208089][T11259] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1700.237320][T11229] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.16139 (11229)
[ 1700.339755][T11229] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1700.392846][T11229] BTRFS info (device loop5): using sha256 checksum algorithm
[ 1700.493459][T11270] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16159'.
[ 1700.513780][T11270] openvswitch: netlink: Unexpected mask (mask=c0, allowed=10048)
[ 1700.596342][T11229] BTRFS info (device loop5): enabling ssd optimizations
[ 1700.663391][T11229] BTRFS info (device loop5): turning on async discard
[ 1700.671635][T11231] loop7: detected capacity change from 0 to 32768
[ 1700.716207][T11229] BTRFS info (device loop5): enabling free space tree
[ 1701.002680][ T5630] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1701.257655][   T30] audit: type=1326 audit(2000526025.351:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11302 comm="syz.3.16167" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1701.392999][   T30] audit: type=1326 audit(2000526025.389:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11302 comm="syz.3.16167" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1701.502532][   T30] audit: type=1326 audit(2000526025.417:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11302 comm="syz.3.16167" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1701.672894][T11313] openvswitch: netlink: Multiple metadata blocks provided
[ 1702.264471][T11325] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1702.330978][T11296] loop2: detected capacity change from 0 to 32768
[ 1702.388471][T11296] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.16164 (11296)
[ 1702.481683][T11296] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1702.527459][T11296] BTRFS info (device loop2): using sha256 checksum algorithm
[ 1702.646938][T11327] loop5: detected capacity change from 0 to 4096
[ 1702.678247][T11327] ntfs3(loop5): ino=3, Correct links count -> 2.
[ 1702.718644][T11296] BTRFS info (device loop2): enabling ssd optimizations
[ 1702.767644][T11296] BTRFS info (device loop2): turning on async discard
[ 1702.810640][T27246] usb 1-1: new full-speed USB device number 82 using dummy_hcd
[ 1702.833808][T11296] BTRFS info (device loop2): enabling free space tree
[ 1702.984885][T27246] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1703.002331][T11355] xt_connbytes: Forcing CT accounting to be enabled
[ 1703.022005][T11356] netlink: 'syz.4.16184': attribute type 1 has an invalid length.
[ 1703.046273][T27246] usb 1-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[ 1703.077355][T11356] netlink: 936 bytes leftover after parsing attributes in process `syz.4.16184'.
[ 1703.090998][T27246] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1703.127884][T27246] usb 1-1: Product: syz
[ 1703.146497][T27246] usb 1-1: Manufacturer: syz
[ 1703.170327][T27246] usb 1-1: SerialNumber: syz
[ 1703.179033][ T5640] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1703.207189][T27246] usb 1-1: config 0 descriptor??
[ 1703.285168][T27246] streamzap 1-1:0.0: streamzap_probe: endpoint doesn't match input device 0203
[ 1703.543961][T27246] usb 1-1: USB disconnect, device number 82
[ 1703.548199][T11366] loop4: detected capacity change from 0 to 256
[ 1703.604843][T11366] exfat: Deprecated parameter 'namecase'
[ 1703.682813][T11366] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e8b, chksum : 0xf0cee8ef, utbl_chksum : 0xe619d30d)
[ 1703.899699][T11372] loop7: detected capacity change from 0 to 2048
[ 1704.902064][T11404] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16207'.
[ 1704.942457][T11404] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16207'.
[ 1704.975299][T11408] netlink: 'syz.0.16209': attribute type 26 has an invalid length.
[ 1705.157200][T11414] loop7: detected capacity change from 0 to 64
[ 1705.317771][T11420] MPI: mpi too large (124808 bits)
[ 1705.527713][T11382] loop4: detected capacity change from 0 to 32768
[ 1705.560480][T11382] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16196 (11382)
[ 1705.616249][T11382] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1705.651635][T11382] BTRFS info (device loop4): using sha256 checksum algorithm
[ 1705.755558][T11382] BTRFS info (device loop4): enabling ssd optimizations
[ 1705.791721][T11382] BTRFS info (device loop4): turning on async discard
[ 1705.813637][T11382] BTRFS info (device loop4): enabling free space tree
[ 1706.156400][ T5634] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1706.192219][T11458] netlink: 4 bytes leftover after parsing attributes in process `syz.7.16224'.
[ 1706.205749][T11459] netlink: 'syz.0.16225': attribute type 21 has an invalid length.
[ 1706.225226][T11459] netlink: 128 bytes leftover after parsing attributes in process `syz.0.16225'.
[ 1706.259346][T11459] netlink: 3 bytes leftover after parsing attributes in process `syz.0.16225'.
[ 1707.332366][T11489] loop3: detected capacity change from 0 to 256
[ 1707.369829][T11489] exfat: Deprecated parameter 'namecase'
[ 1707.394637][T11489] exfat: Deprecated parameter 'namecase'
[ 1707.458456][T11489] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1707.565950][T27246] usb 3-1: new high-speed USB device number 81 using dummy_hcd
[ 1707.608799][   T30] audit: type=1326 audit(2000526031.294:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11495 comm="syz.0.16239" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa4559cdd9 code=0x7ffc0000
[ 1707.701563][   T30] audit: type=1326 audit(2000526031.294:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11495 comm="syz.0.16239" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa4559cdd9 code=0x7ffc0000
[ 1707.750389][T27246] usb 3-1: Using ep0 maxpacket: 32
[ 1707.779762][   T30] audit: type=1326 audit(2000526031.331:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11495 comm="syz.0.16239" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7ffa4559cdd9 code=0x7ffc0000
[ 1707.823875][T27246] usb 3-1: config 0 has an invalid interface number: 188 but max is 0
[ 1707.840671][T27246] usb 3-1: config 0 has no interface number 0
[ 1707.861064][T27246] usb 3-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[ 1707.866354][   T30] audit: type=1326 audit(2000526031.331:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11495 comm="syz.0.16239" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa4559cdd9 code=0x7ffc0000
[ 1707.911255][T27246] usb 3-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[ 1707.941473][T27246] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1707.969720][T27246] usb 3-1: Product: syz
[ 1707.995147][T27246] usb 3-1: Manufacturer: syz
[ 1707.999446][   T30] audit: type=1326 audit(2000526031.331:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11495 comm="syz.0.16239" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa4559cdd9 code=0x7ffc0000
[ 1708.037655][T27246] usb 3-1: SerialNumber: syz
[ 1708.053309][T27246] usb 3-1: config 0 descriptor??
[ 1708.074284][T11488] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1708.332277][T11488] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1708.347512][T11479] loop5: detected capacity change from 0 to 32768
[ 1708.377929][T11479] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.16233 (11479)
[ 1708.468587][T11479] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1708.518531][T11479] BTRFS info (device loop5): using crc32c checksum algorithm
[ 1708.592963][T27246] asix 3-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1708.613421][T27246] asix 3-1:0.188: probe with driver asix failed with error -71
[ 1708.634021][T27246] usb 3-1: USB disconnect, device number 81
[ 1708.764891][T11479] BTRFS info (device loop5): enabling ssd optimizations
[ 1708.773660][T11479] BTRFS info (device loop5): turning on flush-on-commit
[ 1708.805544][T11479] BTRFS info (device loop5): enabling free space tree
[ 1708.828498][T11479] BTRFS info (device loop5): enabling auto defrag
[ 1708.863737][T11479] BTRFS info (device loop5): use lzo compression, level 1
[ 1708.904984][T11479] BTRFS info (device loop5): max_inline set to 4096
[ 1708.939738][ T5283] veth0_macvtap: left promiscuous mode
[ 1709.000090][T11479] BTRFS info (device loop5 state M): max_inline set to 4096
[ 1709.215059][ T5630] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1709.813828][T11506] loop0: detected capacity change from 0 to 32768
[ 1709.847105][T11506] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.16243 (11506)
[ 1709.926290][T11506] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1709.988811][T11506] BTRFS info (device loop0): using sha256 checksum algorithm
[ 1710.253442][T11583] loop5: detected capacity change from 0 to 16
[ 1710.276373][T11583] erofs (device loop5): mounted with root inode @ nid 36.
[ 1710.313367][T11506] BTRFS info (device loop0): enabling ssd optimizations
[ 1710.318297][T11583] erofs (device loop5): readahead error at folio 2 @ nid 89
[ 1710.327947][T11506] BTRFS info (device loop0): turning on async discard
[ 1710.368030][T11506] BTRFS info (device loop0): enabling free space tree
[ 1710.381945][T11583] erofs (device loop5): too much compressed data @ la 512 of nid 89
[ 1710.431026][T11583] erofs (device loop5): readahead error at folio 1 @ nid 89
[ 1710.466271][T11583] erofs (device loop5): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1710.524980][T11583] erofs (device loop5): readahead error at folio 0 @ nid 89
[ 1710.571337][T11583] syz.5.16254: attempt to access beyond end of device
[ 1710.571337][T11583] loop5: rw=524288, sector=524296, nr_sectors = 8 limit=16
[ 1710.638066][T11583] erofs (device loop5): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1710.679663][T11583] erofs (device loop5): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 3584
[ 1710.708049][T11583] erofs (device loop5): read error -117 @ 0 of nid 89
[ 1710.715150][   T30] audit: type=1800 audit(2000526034.204:293): pid=11583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.16254" name="file2" dev="loop5" ino=89 res=0 errno=0
[ 1710.737644][ T5652] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1710.802800][T11596] loop2: detected capacity change from 0 to 512
[ 1710.858649][T11596] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1710.929718][T11596] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002]
[ 1710.967970][T11596] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1710.997329][T11596] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #13: comm syz.2.16267: iget: bad i_size value: 12154761577498
[ 1711.010749][T11596] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[ 1711.017449][    C0] EXT4-fs (loop2): error count since last fsck: 1
[ 1711.033078][    C0] EXT4-fs (loop2): initial error at time 2000526034: ext4_orphan_get:1397: inode 13
[ 1711.042526][    C0] EXT4-fs (loop2): last error at time 2000526034: ext4_orphan_get:1397: inode 13
[ 1711.050502][T11596] EXT4-fs error (device loop2): ext4_orphan_get:1400: comm syz.2.16267: couldn't read orphan inode 13 (err -117)
[ 1711.113863][T11596] loop2: lost filesystem error report for type 5 error -117
[ 1711.133481][T11596] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1711.322104][T11596] EXT4-fs warning (device loop2): dx_probe:859: inode #2: comm syz.2.16267: dx entry: limit 65535 != root limit 120
[ 1711.407431][T11596] EXT4-fs warning (device loop2): dx_probe:933: inode #2: comm syz.2.16267: Corrupt directory, running e2fsck is recommended
[ 1711.696087][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1711.864453][T11625] netlink: 'syz.0.16278': attribute type 4 has an invalid length.
[ 1711.901398][T11625] netlink: 152 bytes leftover after parsing attributes in process `syz.0.16278'.
[ 1711.940048][T11625] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1712.350203][T11642] loop0: detected capacity change from 0 to 256
[ 1712.391089][T11642] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[ 1712.445973][T11642] exFAT-fs (loop0): start_clu is invalid cluster(0x0)
[ 1712.454346][T11644] loop5: detected capacity change from 0 to 256
[ 1712.482995][T11644] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1713.059851][T11660] netlink: 12 bytes leftover after parsing attributes in process `syz.4.16295'.
[ 1713.226936][T11666] veth7: entered allmulticast mode
[ 1713.444069][T11677] loop2: detected capacity change from 0 to 128
[ 1714.337743][T11702] bond3: option lp_interval: invalid value (0)
[ 1714.374623][T11702] bond3: option lp_interval: allowed values 1 - 2147483647
[ 1714.428552][T11702] bond3 (unregistering): Released all slaves
[ 1714.487306][T11716] loop2: detected capacity change from 0 to 512
[ 1714.520330][T11716] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[ 1714.612935][T11716] UDF-fs: error (device loop2): udf_read_inode: (ino 19) failed ident=264
[ 1715.061119][T11734] CIFS mount error: No usable UNC path provided in device string!
[ 1715.061119][T11734] 
[ 1715.101152][T11734] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1715.867420][T11722] loop4: detected capacity change from 0 to 32768
[ 1715.905788][T11722] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16324 (11722)
[ 1715.915663][T11762] netlink: 24 bytes leftover after parsing attributes in process `syz.3.16344'.
[ 1715.972569][T11722] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1716.026986][T11722] BTRFS info (device loop4): using sha256 checksum algorithm
[ 1716.226516][T11722] BTRFS info (device loop4): enabling ssd optimizations
[ 1716.266087][T11722] BTRFS info (device loop4): turning on async discard
[ 1716.294719][T11722] BTRFS info (device loop4): enabling free space tree
[ 1716.557016][ T5634] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1717.311124][T11813] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1717.415927][T11817] netlink: 44 bytes leftover after parsing attributes in process `syz.5.16362'.
[ 1717.430086][T11817] netlink: 43 bytes leftover after parsing attributes in process `syz.5.16362'.
[ 1717.465051][T11817] netlink: 'syz.5.16362': attribute type 6 has an invalid length.
[ 1717.489131][T11817] netlink: 'syz.5.16362': attribute type 5 has an invalid length.
[ 1717.522011][T11817] netlink: 43 bytes leftover after parsing attributes in process `syz.5.16362'.
[ 1717.696734][T23163] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[ 1717.793063][T11798] loop2: detected capacity change from 0 to 32768
[ 1717.822724][T11805] loop0: detected capacity change from 0 to 32768
[ 1717.834011][T11798] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[ 1717.851204][T11798] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1717.877560][T11821] loop5: detected capacity change from 0 to 512
[ 1717.881375][T11805] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1717.892873][T11147] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[ 1717.920732][T23163] usb 5-1: Using ep0 maxpacket: 32
[ 1717.928945][T23163] usb 5-1: config 0 has an invalid interface number: 35 but max is 0
[ 1717.944276][T23163] usb 5-1: config 0 has no interface number 0
[ 1717.950679][T23163] usb 5-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1717.962059][T23163] usb 5-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1717.978260][T23163] usb 5-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[ 1717.997142][T23163] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1718.012158][T11821] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1718.024879][T23163] usb 5-1: Product: syz
[ 1718.036149][T23163] usb 5-1: Manufacturer: syz
[ 1718.037279][T11805] XFS (loop0): Ending clean mount
[ 1718.047372][T11821] ext4 filesystem being mounted at /2770/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1718.090511][T23163] usb 5-1: SerialNumber: syz
[ 1718.105994][T11147] usb 4-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1718.131095][T11147] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1718.170074][T23163] usb 5-1: config 0 descriptor??
[ 1718.177401][T11147] usb 4-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1718.200971][ T5652] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1718.225469][T11821] EXT4-fs error (device loop5): ext4_validate_block_bitmap:423: comm syz.5.16365: bg 0: bad block bitmap checksum
[ 1718.226057][T11147] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1718.274014][T11147] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1718.329443][T11798] XFS (loop2): Ending clean mount
[ 1718.339636][T11798] XFS (loop2): Quotacheck needed: Please wait.
[ 1718.422144][T23163] radio-si470x 5-1:0.35: this is not a si470x device.
[ 1718.481488][T11147] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1718.518528][T11147] usb 4-1: invalid MIDI out EP 0
[ 1718.611006][ T5630] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1718.638743][T23163] radio-raremono 5-1:0.35: this is not Thanko's Raremono.
[ 1718.675475][T23163] usb 5-1: USB disconnect, device number 70
[ 1718.788201][T11798] XFS (loop2): Quotacheck: Done.
[ 1718.973057][ T5640] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1718.980143][T11147] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1719.036170][T11147] usb 4-1: USB disconnect, device number 59
[ 1719.107569][T11845] loop0: detected capacity change from 0 to 256
[ 1719.948410][T11871] netlink: 20 bytes leftover after parsing attributes in process `syz.2.16369'.
[ 1720.237513][T11883] CIFS mount error: No usable UNC path provided in device string!
[ 1720.237513][T11883] 
[ 1720.288220][T11883] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1721.203006][T11187] usb 4-1: new full-speed USB device number 60 using dummy_hcd
[ 1721.214773][T11916] loop0: detected capacity change from 0 to 2048
[ 1721.241114][T11916] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1721.313772][T11916] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1721.395279][T11187] usb 4-1: not running at top speed; connect to a high speed hub
[ 1721.415739][T11187] usb 4-1: config 11 has an invalid interface number: 95 but max is 0
[ 1721.425666][T11187] usb 4-1: config 11 has no interface number 0
[ 1721.438034][T11187] usb 4-1: config 11 interface 95 altsetting 64 has an endpoint descriptor with address 0xC6, changing to 0x86
[ 1721.462484][T11187] usb 4-1: config 11 interface 95 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[ 1721.491641][T11187] usb 4-1: config 11 interface 95 has no altsetting 0
[ 1721.510178][T11187] usb 4-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=b1.4d
[ 1721.531052][T11187] usb 4-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0
[ 1721.562676][T11187] usb 4-1: Manufacturer: syz
[ 1721.589880][T11909] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1721.640083][ T5652] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1721.760435][T11901] loop2: detected capacity change from 0 to 32768
[ 1721.789121][T11901] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.16394 (11901)
[ 1721.871977][T11187] usb 4-1: USB disconnect, device number 60
[ 1721.902030][T11901] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1721.957123][T11901] BTRFS info (device loop2): using sha256 checksum algorithm
[ 1722.038795][   T30] audit: type=1326 audit(2000526044.807:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11942 comm="syz.7.16412" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f019cb9cdd9 code=0x7ffc0000
[ 1722.066938][   T30] audit: type=1326 audit(2000526044.825:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11942 comm="syz.7.16412" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f019cb9cdd9 code=0x7ffc0000
[ 1722.094089][   T30] audit: type=1326 audit(2000526044.835:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11942 comm="syz.7.16412" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f019cb9cdd9 code=0x7ffc0000
[ 1722.120454][   T30] audit: type=1326 audit(2000526044.835:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11942 comm="syz.7.16412" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f019cb9cdd9 code=0x7ffc0000
[ 1722.203111][T11901] BTRFS info (device loop2): enabling ssd optimizations
[ 1722.246114][T11901] BTRFS info (device loop2): turning on async discard
[ 1722.280635][T11901] BTRFS info (device loop2): enabling free space tree
[ 1722.383131][T11958] loop4: detected capacity change from 0 to 64
[ 1722.407197][T11957] loop0: detected capacity change from 0 to 512
[ 1722.478785][T11957] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[ 1722.549546][T11957] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[ 1722.568774][ T5640] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1722.585289][T11957] EXT4-fs error (device loop0): ext4_acquire_dquot:7032: comm syz.0.16414: Failed to acquire dquot type 1
[ 1722.597334][T11957] loop0: lost filesystem error report for type 5 error -5
[ 1722.601120][    C1] EXT4-fs (loop0): error count since last fsck: 1
[ 1722.614767][    C1] EXT4-fs (loop0): last error at time 2000526045: ext4_acquire_dquot:7032
[ 1722.736556][T11957] EXT4-fs (loop0): 1 truncate cleaned up
[ 1722.792802][T11957] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1722.877207][T11957] ext4 filesystem being mounted at /2758/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1722.930253][T11966] loop3: detected capacity change from 0 to 1764
[ 1723.027996][T11957] EXT4-fs warning (device loop0): ext4_resize_begin:81: There are errors in the filesystem, so online resizing is not allowed
[ 1723.241740][ T5652] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1723.329254][   T30] audit: type=1326 audit(2000526046.014:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11971 comm="syz.3.16420" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1723.383991][   T30] audit: type=1326 audit(2000526046.014:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11971 comm="syz.3.16420" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1723.443168][T11928] loop5: detected capacity change from 0 to 32768
[ 1723.486157][   T30] audit: type=1326 audit(2000526046.051:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11971 comm="syz.3.16420" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1723.622685][T11928] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1723.710333][   T30] audit: type=1326 audit(2000526046.051:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11971 comm="syz.3.16420" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f379cdd9 code=0x7ffc0000
[ 1723.865455][T11928] XFS (loop5): Ending clean mount
[ 1723.965481][T11989] netlink: 'syz.2.16424': attribute type 11 has an invalid length.
[ 1723.990395][T11187] usb 1-1: new high-speed USB device number 83 using dummy_hcd
[ 1724.074197][ T5630] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1724.172210][T11187] usb 1-1: Using ep0 maxpacket: 16
[ 1724.185331][T11187] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1724.198532][T11187] usb 1-1: config 255 has an invalid interface number: 45 but max is 0
[ 1724.219496][T11187] usb 1-1: config 255 has no interface number 0
[ 1724.240266][T11187] usb 1-1: config 255 interface 45 has no altsetting 0
[ 1724.267772][T11187] usb 1-1: New USB device found, idVendor=07c4, idProduct=a004, bcdDevice= b.6c
[ 1724.290258][T11187] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1724.298362][T11187] usb 1-1: Product: syz
[ 1724.310932][T11187] usb 1-1: Manufacturer: syz
[ 1724.323738][T11187] usb 1-1: SerialNumber: syz
[ 1724.618441][T11187] ums-datafab 1-1:255.45: USB Mass Storage device detected
[ 1724.722366][T11187] usb 1-1: USB disconnect, device number 83
[ 1724.821904][T12009] netlink: 'syz.2.16433': attribute type 10 has an invalid length.
[ 1725.140273][T12019] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16438'.
[ 1725.181456][T12019] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16438'.
[ 1725.390803][T12028] netlink: 'syz.0.16443': attribute type 1 has an invalid length.
[ 1725.410083][T12029] loop4: detected capacity change from 0 to 8
[ 1725.867651][T12042] loop0: detected capacity change from 0 to 4096
[ 1725.921530][T12042] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[ 1725.980262][T12040] loop5: detected capacity change from 0 to 4096
[ 1726.138118][T12040] ntfs3(loop5): ino=b, Correct links count -> 1.
[ 1726.174249][T12040] ntfs3(loop5): ino=18, mi_enum_attr
[ 1726.196104][T12040] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1726.753170][T12069] netlink: 52 bytes leftover after parsing attributes in process `syz.0.16459'.
[ 1726.773924][T12073] netlink: 'syz.5.16461': attribute type 1 has an invalid length.
[ 1726.790704][T12074] loop3: detected capacity change from 0 to 128
[ 1726.818209][T12073] netlink: 4 bytes leftover after parsing attributes in process `syz.5.16461'.
[ 1726.873785][T12074] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1726.934788][T12074] ext4 filesystem being mounted at /2763/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1726.969396][T12082] xt_policy: neither incoming nor outgoing policy selected
[ 1727.041243][ T5639] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1727.260650][T12089] loop0: detected capacity change from 0 to 2048
[ 1727.300614][T12089] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1727.436852][T12098] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1727.648035][T12089] NILFS (loop0): DAT doesn't have a block to manage vblocknr = 147
[ 1727.773976][T12089] NILFS error (device loop0): nilfs_bmap_truncate: broken bmap (inode number=15)
[ 1727.999128][T12089] Remounting filesystem read-only
[ 1728.025843][T12089] NILFS (loop0): error -5 truncating bmap (ino=15)
[ 1728.115510][T12089] syz.0.16467: attempt to access beyond end of device
[ 1728.115510][T12089] loop0: rw=0, sector=262216, nr_sectors = 2 limit=2048
[ 1728.187081][T12089] NILFS (loop0): I/O error reading meta-data file (ino=6, block-offset=1)
[ 1728.386786][ T5652] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer
[ 1728.524405][T12081] loop7: detected capacity change from 0 to 32768
[ 1728.552904][T12081] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.16464 (12081)
[ 1728.617606][T12081] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1728.649529][T12081] BTRFS info (device loop7): using sha256 checksum algorithm
[ 1728.820169][T12081] BTRFS info (device loop7): enabling ssd optimizations
[ 1728.880434][T12081] BTRFS info (device loop7): turning on async discard
[ 1728.918948][T12081] BTRFS info (device loop7): enabling free space tree
[ 1729.222779][ T1701] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1729.338951][T12170] netlink: 4456 bytes leftover after parsing attributes in process `syz.3.16497'.
[ 1729.695955][T12181] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[ 1729.913506][T12188] netlink: 'syz.5.16503': attribute type 1 has an invalid length.
[ 1729.962841][T12188] netlink: 'syz.5.16503': attribute type 2 has an invalid length.
[ 1730.015800][T12190] loop0: detected capacity change from 0 to 64
[ 1730.091393][T12195] loop3: detected capacity change from 0 to 128
[ 1730.190948][T12195] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1730.326298][T12195] ext4 filesystem being mounted at /2772/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1730.454553][T12202] netlink: 12 bytes leftover after parsing attributes in process `syz.5.16510'.
[ 1730.550977][ T5639] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1730.913226][T12218] openvswitch: netlink: Missing key (keys=40, expected=2000)
[ 1730.937082][T12219] loop4: detected capacity change from 0 to 512
[ 1731.035351][T12219] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1731.057163][T12225] loop5: detected capacity change from 0 to 1024
[ 1731.157670][T12219] ext4 filesystem being mounted at /2748/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1731.427158][ T5634] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1731.480521][T12235] loop2: detected capacity change from 0 to 764
[ 1731.583022][T12235] Symlink component flag not implemented
[ 1731.620324][T12235] Symlink component flag not implemented
[ 1731.662268][T12196] loop7: detected capacity change from 0 to 32768
[ 1731.781225][T12245] tmpfs: Bad value for 'grpquota_block_hardlimit'
[ 1731.829392][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[ 1732.121670][T12255] loop0: detected capacity change from 0 to 64
[ 1732.372715][T12264] loop5: detected capacity change from 0 to 256
[ 1732.565270][T12262] veth4: entered promiscuous mode
[ 1732.590955][T12262] veth4: entered allmulticast mode
[ 1732.788658][T12273] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1733.150269][   T30] kauditd_printk_skb: 93 callbacks suppressed
[ 1733.150322][   T30] audit: type=1326 audit(2000526055.203:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1733.255490][   T30] audit: type=1326 audit(2000526055.203:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1733.281483][   T30] audit: type=1326 audit(2000526055.232:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1733.307211][   T30] audit: type=1326 audit(2000526055.232:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1733.351476][T12287] loop4: detected capacity change from 0 to 64
[ 1733.383000][   T30] audit: type=1326 audit(2000526055.232:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1733.502464][   T30] audit: type=1326 audit(2000526055.288:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae679cdd9 code=0x7ffc0000
[ 1733.597579][   T30] audit: type=1326 audit(2000526055.288:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fcae675d60e code=0x7ffc0000
[ 1733.642345][   T30] audit: type=1326 audit(2000526055.288:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fcae675d60e code=0x7ffc0000
[ 1733.659771][T12253] loop2: detected capacity change from 0 to 32768
[ 1733.708656][   T30] audit: type=1326 audit(2000526055.288:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fcae675d60e code=0x7ffc0000
[ 1733.786558][T12253] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1733.797954][   T30] audit: type=1326 audit(2000526055.288:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.5.16547" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fcae675d60e code=0x7ffc0000
[ 1733.937458][T12253] XFS (loop2): Ending clean mount
[ 1734.258245][ T5640] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1734.407537][T12313] loop5: detected capacity change from 0 to 2048
[ 1734.472202][T12313] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found!
[ 1734.522469][T12313] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1734.643945][T12300] loop7: detected capacity change from 0 to 32768
[ 1734.825754][T12324] loop3: detected capacity change from 0 to 1024
[ 1734.867519][T12324] EXT4-fs: Ignoring removed orlov option
[ 1734.992466][T12324] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1735.022513][T12334] netlink: 'syz.4.16562': attribute type 41 has an invalid length.
[ 1735.354212][ T5639] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1735.773207][T12354] tmpfs: Bad value for 'mpol'
[ 1736.041590][T12363] i2c i2c-0: Invalid block write size 34
[ 1736.480834][T23164] IPVS: starting estimator thread 0...
[ 1736.600745][T12388] IPVS: using max 24 ests per chain, 57600 per kthread
[ 1736.633736][T11147] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[ 1736.840146][T11147] usb 4-1: Using ep0 maxpacket: 32
[ 1736.877359][T11147] usb 4-1: config 0 has an invalid interface number: 89 but max is 0
[ 1736.911427][T11147] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1736.964732][T11147] usb 4-1: config 0 has no interface number 0
[ 1736.983118][T11147] usb 4-1: config 0 interface 89 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1737.030849][T11147] usb 4-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[ 1737.061626][T11147] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1737.091257][T11147] usb 4-1: Product: syz
[ 1737.110219][T11147] usb 4-1: Manufacturer: syz
[ 1737.131686][T11147] usb 4-1: SerialNumber: syz
[ 1737.166097][T11147] usb 4-1: config 0 descriptor??
[ 1737.195938][T11147] hub 4-1:0.89: bad descriptor, ignoring hub
[ 1737.255495][T11147] hub 4-1:0.89: probe with driver hub failed with error -5
[ 1737.288880][T11147] option 4-1:0.89: GSM modem (1-port) converter detected
[ 1737.356453][T12421] loop7: detected capacity change from 0 to 256
[ 1737.574764][T11147] usb 4-1: USB disconnect, device number 61
[ 1737.638485][T11147] option 4-1:0.89: device disconnected
[ 1738.508388][T12461] loop2: detected capacity change from 0 to 64
[ 1739.064877][T12474] loop2: detected capacity change from 0 to 2048
[ 1739.123803][T12474] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[ 1739.182227][T12474] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1739.827388][T23163] usb 1-1: new high-speed USB device number 84 using dummy_hcd
[ 1739.975327][T12510] netlink: 'syz.4.16638': attribute type 1 has an invalid length.
[ 1740.007342][T12510] netlink: 96 bytes leftover after parsing attributes in process `syz.4.16638'.
[ 1740.036101][T12510] netlink: 658 bytes leftover after parsing attributes in process `syz.4.16638'.
[ 1740.036156][T12510] netlink: 1 bytes leftover after parsing attributes in process `syz.4.16638'.
[ 1740.049818][T23163] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1740.049861][T23163] usb 1-1: config 220 has 1 interface, different from the descriptor's value: 3
[ 1740.049916][T23163] usb 1-1: config 220 interface 0 has no altsetting 0
[ 1740.055631][T23163] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1740.055679][T23163] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1740.055717][T23163] usb 1-1: Product: syz
[ 1740.055746][T23163] usb 1-1: Manufacturer: syz
[ 1740.055776][T23163] usb 1-1: SerialNumber: syz
[ 1740.125079][T12514] bridge4: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[ 1740.347237][T23163] uvcvideo 1-1:220.0: probe with driver uvcvideo failed with error -22
[ 1740.452941][T23163] usb 1-1: USB disconnect, device number 84
[ 1740.604982][T12524] loop7: detected capacity change from 0 to 2048
[ 1741.150597][T12545] IPVS: length: 72 != 24
[ 1741.332509][T12552] netlink: 5252 bytes leftover after parsing attributes in process `syz.5.16658'.
[ 1741.372197][T12552] nbd: must specify a size in bytes for the device
[ 1741.511084][T12556] loop3: detected capacity change from 0 to 1024
[ 1741.672767][T12561] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[ 1741.691206][T12556] hfsplus: extend alloc file! (16384,256,150995124)
[ 1742.057773][T12564] loop4: detected capacity change from 0 to 4096
[ 1742.083139][T12572] netlink: 52 bytes leftover after parsing attributes in process `syz.3.16668'.
[ 1742.109294][T12564] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1742.232104][T12564] ntfs3(loop4): ino=19, mi_enum_attr
[ 1742.285036][T12536] loop2: detected capacity change from 0 to 32768
[ 1742.311621][T12536] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.16650 (12536)
[ 1742.336098][T12564] ntfs3(loop4): failed to convert "c46c" to cp850
[ 1742.357695][T12577] veth8: entered allmulticast mode
[ 1742.369486][T12564] ntfs3(loop4): ino=20, mi_enum_attr
[ 1742.379237][T12536] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1742.404525][T12536] BTRFS info (device loop2): using sha256 checksum algorithm
[ 1742.521925][T12536] BTRFS info (device loop2): enabling ssd optimizations
[ 1742.543353][T12536] BTRFS info (device loop2): turning on async discard
[ 1742.563859][T12536] BTRFS info (device loop2): enabling free space tree
[ 1742.677558][T12598] netlink: 260 bytes leftover after parsing attributes in process `syz.3.16675'.
[ 1742.807146][ T5640] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1743.697463][T12625] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16686'.
[ 1743.714422][T12626] usb usb9: usbfs: process 12626 (syz.5.16687) did not claim interface 0 before use
[ 1744.419003][T12649] loop0: detected capacity change from 0 to 64
[ 1744.453541][T12649] hfs: unable to locate alternate MDB
[ 1744.466652][T12649] hfs: continuing without an alternate MDB
[ 1744.498136][   T30] kauditd_printk_skb: 64 callbacks suppressed
[ 1744.498164][   T30] audit: type=1800 audit(2000526065.825:469): pid=12649 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.16699" name="file1" dev="loop0" ino=22 res=0 errno=0
[ 1744.599926][ T6872] 
[ 1744.602343][ T6872] ======================================================
[ 1744.609377][ T6872] WARNING: possible circular locking dependency detected
[ 1744.616438][ T6872] syzkaller #0 Not tainted
[ 1744.620869][ T6872] ------------------------------------------------------
[ 1744.627912][ T6872] kworker/u8:11/6872 is trying to acquire lock:
[ 1744.634341][ T6872] ffff8880556913b0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0
[ 1744.645191][ T6872] 
[ 1744.645191][ T6872] but task is already holding lock:
[ 1744.652566][ T6872] ffff8880288680a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1744.661965][ T6872] 
[ 1744.661965][ T6872] which lock already depends on the new lock.
[ 1744.661965][ T6872] 
[ 1744.672387][ T6872] 
[ 1744.672387][ T6872] the existing dependency chain (in reverse order) is:
[ 1744.681411][ T6872] 
[ 1744.681411][ T6872] -> #1 (&tree->tree_lock/1){+.+.}-{4:4}:
[ 1744.689362][ T6872]        __mutex_lock+0x1a4/0x1b10
[ 1744.694512][ T6872]        hfs_find_init+0x273/0x330
[ 1744.699670][ T6872]        hfs_ext_read_extent+0x19d/0x9d0
[ 1744.705338][ T6872]        hfs_get_block+0x576/0x830
[ 1744.710490][ T6872]        block_read_full_folio+0x36c/0x8e0
[ 1744.716338][ T6872]        filemap_read_folio+0xfc/0x3b0
[ 1744.721823][ T6872]        do_read_cache_folio+0x2d7/0x6b0
[ 1744.727584][ T6872]        read_cache_page+0x5b/0x1b0
[ 1744.732818][ T6872]        __hfs_bnode_create+0x718/0x9a0
[ 1744.738394][ T6872]        hfs_bnode_find+0x2d5/0xd30
[ 1744.743612][ T6872]        hfs_brec_find+0x39d/0x620
[ 1744.748744][ T6872]        hfs_brec_read+0x26/0x120
[ 1744.753790][ T6872]        hfs_cat_find_brec+0xdc/0x2a0
[ 1744.759191][ T6872]        hfs_fill_super+0x58d/0x7e0
[ 1744.764401][ T6872]        get_tree_bdev_flags+0x38c/0x620
[ 1744.770067][ T6872]        vfs_get_tree+0x92/0x320
[ 1744.775025][ T6872]        path_mount+0x7d0/0x23d0
[ 1744.779982][ T6872]        __x64_sys_mount+0x293/0x310
[ 1744.785285][ T6872]        do_syscall_64+0x10b/0xf80
[ 1744.790430][ T6872]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1744.796856][ T6872] 
[ 1744.796856][ T6872] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}:
[ 1744.806100][ T6872]        __lock_acquire+0x14b8/0x2630
[ 1744.811496][ T6872]        lock_acquire+0x1b1/0x370
[ 1744.816537][ T6872]        __mutex_lock+0x1a4/0x1b10
[ 1744.821768][ T6872]        hfs_extend_file+0xa6/0xcf0
[ 1744.826998][ T6872]        hfs_bmap_reserve+0x2ab/0x3a0
[ 1744.832394][ T6872]        __hfs_ext_write_extent+0x3c4/0x510
[ 1744.838316][ T6872]        hfs_ext_write_extent+0x1b7/0x200
[ 1744.844075][ T6872]        hfs_write_inode+0xce/0xab0
[ 1744.849287][ T6872]        __writeback_single_inode+0xcd4/0x1350
[ 1744.855477][ T6872]        writeback_sb_inodes+0x766/0x1c60
[ 1744.861238][ T6872]        wb_writeback+0x1bf/0xb90
[ 1744.866292][ T6872]        wb_workfn+0x14f/0xc00
[ 1744.871089][ T6872]        process_one_work+0xa0e/0x1980
[ 1744.876572][ T6872]        worker_thread+0x5ef/0xe50
[ 1744.881701][ T6872]        kthread+0x370/0x450
[ 1744.886305][ T6872]        ret_from_fork+0x72b/0xd50
[ 1744.891429][ T6872]        ret_from_fork_asm+0x1a/0x30
[ 1744.896742][ T6872] 
[ 1744.896742][ T6872] other info that might help us debug this:
[ 1744.896742][ T6872] 
[ 1744.906965][ T6872]  Possible unsafe locking scenario:
[ 1744.906965][ T6872] 
[ 1744.914408][ T6872]        CPU0                    CPU1
[ 1744.919770][ T6872]        ----                    ----
[ 1744.925124][ T6872]   lock(&tree->tree_lock/1);
[ 1744.929821][ T6872]                                lock(&HFS_I(tree->inode)->extents_lock);
[ 1744.938325][ T6872]                                lock(&tree->tree_lock/1);
[ 1744.945545][ T6872]   lock(&HFS_I(tree->inode)->extents_lock);
[ 1744.951540][ T6872] 
[ 1744.951540][ T6872]  *** DEADLOCK ***
[ 1744.951540][ T6872] 
[ 1744.959675][ T6872] 3 locks held by kworker/u8:11/6872:
[ 1744.965043][ T6872]  #0: ffff88801eaaf140 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1744.975810][ T6872]  #1: ffffc9000747fd08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1744.987707][ T6872]  #2: ffff8880288680a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1744.997525][ T6872] 
[ 1744.997525][ T6872] stack backtrace:
[ 1745.003416][ T6872] CPU: 0 UID: 0 PID: 6872 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) 
[ 1745.003460][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1745.003486][ T6872] Workqueue: writeback wb_workfn (flush-7:0)
[ 1745.003553][ T6872] Call Trace:
[ 1745.003566][ T6872]  <TASK>
[ 1745.003580][ T6872]  dump_stack_lvl+0x100/0x190
[ 1745.003619][ T6872]  print_circular_bug.cold+0x178/0x1c7
[ 1745.003681][ T6872]  check_noncircular+0x146/0x160
[ 1745.003719][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.003772][ T6872]  __lock_acquire+0x14b8/0x2630
[ 1745.003819][ T6872]  ? __pfx_stack_trace_save+0x10/0x10
[ 1745.003858][ T6872]  lock_acquire+0x1b1/0x370
[ 1745.003914][ T6872]  ? hfs_extend_file+0xa6/0xcf0
[ 1745.003973][ T6872]  ? __pfx___might_resched+0x10/0x10
[ 1745.004022][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.004065][ T6872]  ? add_lock_to_list+0x99/0x110
[ 1745.004102][ T6872]  __mutex_lock+0x1a4/0x1b10
[ 1745.004160][ T6872]  ? hfs_extend_file+0xa6/0xcf0
[ 1745.004215][ T6872]  ? hfs_extend_file+0xa6/0xcf0
[ 1745.004272][ T6872]  ? hfs_write_inode+0xce/0xab0
[ 1745.004304][ T6872]  ? __writeback_single_inode+0xcd4/0x1350
[ 1745.004363][ T6872]  ? __pfx___mutex_lock+0x10/0x10
[ 1745.004419][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.004462][ T6872]  ? lock_acquire+0x1b1/0x370
[ 1745.004509][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.004553][ T6872]  ? trace_contention_end+0x122/0x170
[ 1745.004600][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.004647][ T6872]  ? hfs_extend_file+0xa6/0xcf0
[ 1745.004701][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.004744][ T6872]  hfs_extend_file+0xa6/0xcf0
[ 1745.004802][ T6872]  ? __pfx_hfs_extend_file+0x10/0x10
[ 1745.004857][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.004916][ T6872]  hfs_bmap_reserve+0x2ab/0x3a0
[ 1745.004972][ T6872]  __hfs_ext_write_extent+0x3c4/0x510
[ 1745.005027][ T6872]  ? hfs_find_init+0x273/0x330
[ 1745.005068][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.005116][ T6872]  hfs_ext_write_extent+0x1b7/0x200
[ 1745.005177][ T6872]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1745.005239][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.005282][ T6872]  ? __mpage_writepages+0x1a8/0x210
[ 1745.005319][ T6872]  ? __pfx___mpage_writepages+0x10/0x10
[ 1745.005356][ T6872]  hfs_write_inode+0xce/0xab0
[ 1745.005391][ T6872]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1745.005424][ T6872]  ? __lock_acquire+0x4a5/0x2630
[ 1745.005481][ T6872]  ? __writeback_single_inode+0x454/0x1350
[ 1745.005537][ T6872]  ? __writeback_single_inode+0x454/0x1350
[ 1745.005593][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.005642][ T6872]  __writeback_single_inode+0xcd4/0x1350
[ 1745.005704][ T6872]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1745.005761][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.005804][ T6872]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1745.005855][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.005908][ T6872]  writeback_sb_inodes+0x766/0x1c60
[ 1745.005975][ T6872]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1745.006031][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.006074][ T6872]  ? wakeup_preempt_fair+0x5f5/0xfd0
[ 1745.006160][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.006202][ T6872]  ? rcu_is_watching+0x12/0xc0
[ 1745.006254][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.006297][ T6872]  ? queue_io+0x287/0x540
[ 1745.006345][ T6872]  wb_writeback+0x1bf/0xb90
[ 1745.006406][ T6872]  ? __pfx_wb_writeback+0x10/0x10
[ 1745.006468][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.006511][ T6872]  ? mark_held_locks+0x40/0x70
[ 1745.006552][ T6872]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1745.006603][ T6872]  wb_workfn+0x14f/0xc00
[ 1745.006661][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.006703][ T6872]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1745.006755][ T6872]  ? __pfx_wb_workfn+0x10/0x10
[ 1745.006813][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.006858][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.006910][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.006953][ T6872]  ? rcu_is_watching+0x12/0xc0
[ 1745.007004][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.007052][ T6872]  process_one_work+0xa0e/0x1980
[ 1745.007108][ T6872]  ? __pfx_process_one_work+0x10/0x10
[ 1745.007151][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.007202][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.007249][ T6872]  worker_thread+0x5ef/0xe50
[ 1745.007302][ T6872]  ? kthread+0x13a/0x450
[ 1745.007339][ T6872]  ? __pfx_worker_thread+0x10/0x10
[ 1745.007382][ T6872]  kthread+0x370/0x450
[ 1745.007419][ T6872]  ? __pfx_kthread+0x10/0x10
[ 1745.007460][ T6872]  ret_from_fork+0x72b/0xd50
[ 1745.007505][ T6872]  ? __pfx_ret_from_fork+0x10/0x10
[ 1745.007548][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.007591][ T6872]  ? __switch_to+0x800/0x1100
[ 1745.007642][ T6872]  ? __switch_to_asm+0x39/0x70
[ 1745.007691][ T6872]  ? __pfx_kthread+0x10/0x10
[ 1745.007732][ T6872]  ret_from_fork_asm+0x1a/0x30
[ 1745.007794][ T6872]  </TASK>
[ 1745.528911][ T6872] hfs: new node 0 already hashed?
[ 1745.534945][ T6872] ------------[ cut here ]------------
[ 1745.540433][ T6872] 1
[ 1745.540450][ T6872] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#0: kworker/u8:11/6872
[ 1745.553267][ T6872] Modules linked in:
[ 1745.557443][ T6872] CPU: 0 UID: 0 PID: 6872 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) 
[ 1745.567333][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1745.577739][ T6872] Workqueue: writeback wb_workfn (flush-7:0)
[ 1745.583811][ T6872] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1745.590003][ T6872] Code: f5 90 64 0a e9 57 21 d1 01 e8 fb 12 e1 00 4c 89 f7 e8 e3 90 64 0a e8 ee 12 e1 00 89 ee 48 c7 c7 80 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 59 24 d1 01 e8 d2 12 e1 00 e8 bd 55 4d 00 e9 b5 26 d1
[ 1745.609804][ T6872] RSP: 0018:ffffc9000747f020 EFLAGS: 00010282
[ 1745.615969][ T6872] RAX: 000000000000001f RBX: ffff888056806200 RCX: 0000000000000000
[ 1745.624043][ T6872] RDX: 000000000000001f RSI: ffffffff81e721e9 RDI: fffff52000e8fdf5
[ 1745.632086][ T6872] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1745.640093][ T6872] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000
[ 1745.648173][ T6872] R13: ffff888028868000 R14: ffff8880288680d8 R15: 0000000000000000
[ 1745.656205][ T6872] FS:  0000000000000000(0000) GS:ffff888124373000(0000) knlGS:0000000000000000
[ 1745.665216][ T6872] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1745.671850][ T6872] CR2: 00007fff080f6f52 CR3: 000000003491c000 CR4: 0000000000350ef0
[ 1745.680050][ T6872] Call Trace:
[ 1745.683370][ T6872]  <TASK>
[ 1745.686311][ T6872]  ? _raw_spin_unlock+0x28/0x50
[ 1745.691181][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.696874][ T6872]  ? hfs_bnode_put+0x208/0x480
[ 1745.701692][ T6872]  hfs_bmap_alloc+0x5a7/0x6b0
[ 1745.706460][ T6872]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1745.711704][ T6872]  ? __asan_memcpy+0x3c/0x60
[ 1745.716347][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.722050][ T6872]  ? hfs_bnode_read.part.0+0x298/0x330
[ 1745.727585][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.733256][ T6872]  ? folio_mark_accessed+0xf3/0x1040
[ 1745.738633][ T6872]  hfs_btree_inc_height.isra.0+0xff/0x820
[ 1745.744405][ T6872]  ? rcu_is_watching+0x12/0xc0
[ 1745.749344][ T6872]  ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1745.755732][ T6872]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1745.761048][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.766719][ T6872]  ? _raw_spin_unlock+0x28/0x50
[ 1745.771644][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.777348][ T6872]  ? hfs_bnode_put+0x208/0x480
[ 1745.782188][ T6872]  hfs_brec_insert+0x8ba/0xc20
[ 1745.787010][ T6872]  ? __pfx_hfs_brec_insert+0x10/0x10
[ 1745.792397][ T6872]  ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1745.797513][ T6872]  __hfs_ext_write_extent+0x3ef/0x510
[ 1745.802998][ T6872]  ? hfs_find_init+0x273/0x330
[ 1745.807794][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.813518][ T6872]  hfs_ext_write_extent+0x1b7/0x200
[ 1745.818778][ T6872]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1745.824661][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.830400][ T6872]  ? __mpage_writepages+0x1a8/0x210
[ 1745.835667][ T6872]  ? __pfx___mpage_writepages+0x10/0x10
[ 1745.841247][ T6872]  hfs_write_inode+0xce/0xab0
[ 1745.846077][ T6872]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1745.851398][ T6872]  ? __lock_acquire+0x4a5/0x2630
[ 1745.856433][ T6872]  ? __writeback_single_inode+0x454/0x1350
[ 1745.862300][ T6872]  ? __writeback_single_inode+0x454/0x1350
[ 1745.868193][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.873875][ T6872]  __writeback_single_inode+0xcd4/0x1350
[ 1745.879577][ T6872]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1745.885725][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.891469][ T6872]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1745.896770][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.902431][ T6872]  writeback_sb_inodes+0x766/0x1c60
[ 1745.908211][ T6872]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1745.913894][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.919581][ T6872]  ? wakeup_preempt_fair+0x5f5/0xfd0
[ 1745.924963][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.930709][ T6872]  ? rcu_is_watching+0x12/0xc0
[ 1745.935526][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.941243][ T6872]  ? queue_io+0x287/0x540
[ 1745.945643][ T6872]  wb_writeback+0x1bf/0xb90
[ 1745.950259][ T6872]  ? __pfx_wb_writeback+0x10/0x10
[ 1745.955350][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.961082][ T6872]  ? mark_held_locks+0x40/0x70
[ 1745.965878][ T6872]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1745.971107][ T6872]  wb_workfn+0x14f/0xc00
[ 1745.975424][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.981091][ T6872]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1745.987011][ T6872]  ? __pfx_wb_workfn+0x10/0x10
[ 1745.991825][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1745.997606][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.003283][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.008996][ T6872]  ? rcu_is_watching+0x12/0xc0
[ 1746.013817][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.019554][ T6872]  process_one_work+0xa0e/0x1980
[ 1746.024583][ T6872]  ? __pfx_process_one_work+0x10/0x10
[ 1746.030116][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.035827][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.041512][ T6872]  worker_thread+0x5ef/0xe50
[ 1746.046142][ T6872]  ? kthread+0x13a/0x450
[ 1746.050465][ T6872]  ? __pfx_worker_thread+0x10/0x10
[ 1746.055657][ T6872]  kthread+0x370/0x450
[ 1746.059824][ T6872]  ? __pfx_kthread+0x10/0x10
[ 1746.064453][ T6872]  ret_from_fork+0x72b/0xd50
[ 1746.069132][ T6872]  ? __pfx_ret_from_fork+0x10/0x10
[ 1746.074307][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.080007][ T6872]  ? __switch_to+0x800/0x1100
[ 1746.084745][ T6872]  ? __switch_to_asm+0x39/0x70
[ 1746.089606][ T6872]  ? __pfx_kthread+0x10/0x10
[ 1746.094255][ T6872]  ret_from_fork_asm+0x1a/0x30
[ 1746.099089][ T6872]  </TASK>
[ 1746.102164][ T6872] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1746.109460][ T6872] CPU: 0 UID: 0 PID: 6872 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) 
[ 1746.119012][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1746.129075][ T6872] Workqueue: writeback wb_workfn (flush-7:0)
[ 1746.135108][ T6872] Call Trace:
[ 1746.138387][ T6872]  <TASK>
[ 1746.141312][ T6872]  dump_stack_lvl+0x100/0x190
[ 1746.146011][ T6872]  vpanic+0x552/0x970
[ 1746.150009][ T6872]  ? __pfx_vpanic+0x10/0x10
[ 1746.154515][ T6872]  ? lock_release+0x245/0x310
[ 1746.159251][ T6872]  panic+0xd1/0xe0
[ 1746.162983][ T6872]  ? __pfx_panic+0x10/0x10
[ 1746.167433][ T6872]  ? check_panic_on_warn+0x1f/0x90
[ 1746.172572][ T6872]  check_panic_on_warn.cold+0x19/0x34
[ 1746.177962][ T6872]  ? hfs_bnode_create.cold+0x41/0x49
[ 1746.183255][ T6872]  __warn.cold+0x191/0x328
[ 1746.187680][ T6872]  __report_bug+0x296/0x3d0
[ 1746.192198][ T6872]  ? hfs_bnode_create.cold+0x41/0x49
[ 1746.197500][ T6872]  ? __pfx___report_bug+0x10/0x10
[ 1746.202546][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.208194][ T6872]  ? preempt_schedule_thunk+0x16/0x30
[ 1746.213607][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.219268][ T6872]  ? preempt_count_add+0x76/0x150
[ 1746.224324][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.229981][ T6872]  ? __wake_up_klogd+0xe2/0x140
[ 1746.234861][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.240519][ T6872]  ? vprintk_emit+0x1c9/0x6b0
[ 1746.245236][ T6872]  ? __pfx_vprintk_emit+0x10/0x10
[ 1746.250296][ T6872]  ? hfs_bnode_create.cold+0x41/0x49
[ 1746.255731][ T6872]  report_bug+0xb2/0x220
[ 1746.260009][ T6872]  ? hfs_bnode_create.cold+0x41/0x49
[ 1746.265326][ T6872]  handle_bug+0x16a/0x2a0
[ 1746.269675][ T6872]  exc_invalid_op+0x17/0x50
[ 1746.274206][ T6872]  asm_exc_invalid_op+0x1a/0x20
[ 1746.279072][ T6872] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1746.285031][ T6872] Code: f5 90 64 0a e9 57 21 d1 01 e8 fb 12 e1 00 4c 89 f7 e8 e3 90 64 0a e8 ee 12 e1 00 89 ee 48 c7 c7 80 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 59 24 d1 01 e8 d2 12 e1 00 e8 bd 55 4d 00 e9 b5 26 d1
[ 1746.304673][ T6872] RSP: 0018:ffffc9000747f020 EFLAGS: 00010282
[ 1746.310941][ T6872] RAX: 000000000000001f RBX: ffff888056806200 RCX: 0000000000000000
[ 1746.318933][ T6872] RDX: 000000000000001f RSI: ffffffff81e721e9 RDI: fffff52000e8fdf5
[ 1746.326921][ T6872] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1746.334997][ T6872] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000
[ 1746.342982][ T6872] R13: ffff888028868000 R14: ffff8880288680d8 R15: 0000000000000000
[ 1746.350983][ T6872]  ? vprintk_emit+0x1c9/0x6b0
[ 1746.355719][ T6872]  ? _raw_spin_unlock+0x28/0x50
[ 1746.360609][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.366267][ T6872]  ? hfs_bnode_put+0x208/0x480
[ 1746.371109][ T6872]  hfs_bmap_alloc+0x5a7/0x6b0
[ 1746.375828][ T6872]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1746.381060][ T6872]  ? __asan_memcpy+0x3c/0x60
[ 1746.385674][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.391326][ T6872]  ? hfs_bnode_read.part.0+0x298/0x330
[ 1746.396905][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.402565][ T6872]  ? folio_mark_accessed+0xf3/0x1040
[ 1746.407898][ T6872]  hfs_btree_inc_height.isra.0+0xff/0x820
[ 1746.413648][ T6872]  ? rcu_is_watching+0x12/0xc0
[ 1746.418443][ T6872]  ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1746.424804][ T6872]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1746.430036][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.435697][ T6872]  ? _raw_spin_unlock+0x28/0x50
[ 1746.440581][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.446237][ T6872]  ? hfs_bnode_put+0x208/0x480
[ 1746.451035][ T6872]  hfs_brec_insert+0x8ba/0xc20
[ 1746.455838][ T6872]  ? __pfx_hfs_brec_insert+0x10/0x10
[ 1746.461157][ T6872]  ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1746.466230][ T6872]  __hfs_ext_write_extent+0x3ef/0x510
[ 1746.471637][ T6872]  ? hfs_find_init+0x273/0x330
[ 1746.476416][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.482092][ T6872]  hfs_ext_write_extent+0x1b7/0x200
[ 1746.487343][ T6872]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1746.493106][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.498763][ T6872]  ? __mpage_writepages+0x1a8/0x210
[ 1746.503974][ T6872]  ? __pfx___mpage_writepages+0x10/0x10
[ 1746.509537][ T6872]  hfs_write_inode+0xce/0xab0
[ 1746.514233][ T6872]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1746.519530][ T6872]  ? __lock_acquire+0x4a5/0x2630
[ 1746.524528][ T6872]  ? __writeback_single_inode+0x454/0x1350
[ 1746.530375][ T6872]  ? __writeback_single_inode+0x454/0x1350
[ 1746.536999][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.542663][ T6872]  __writeback_single_inode+0xcd4/0x1350
[ 1746.548430][ T6872]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1746.554537][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.560196][ T6872]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1746.565426][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.571083][ T6872]  writeback_sb_inodes+0x766/0x1c60
[ 1746.576330][ T6872]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1746.581993][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.587646][ T6872]  ? wakeup_preempt_fair+0x5f5/0xfd0
[ 1746.593016][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.598669][ T6872]  ? rcu_is_watching+0x12/0xc0
[ 1746.603462][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.609117][ T6872]  ? queue_io+0x287/0x540
[ 1746.613474][ T6872]  wb_writeback+0x1bf/0xb90
[ 1746.618018][ T6872]  ? __pfx_wb_writeback+0x10/0x10
[ 1746.623189][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.628866][ T6872]  ? mark_held_locks+0x40/0x70
[ 1746.633657][ T6872]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1746.638899][ T6872]  wb_workfn+0x14f/0xc00
[ 1746.643181][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.648832][ T6872]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1746.654674][ T6872]  ? __pfx_wb_workfn+0x10/0x10
[ 1746.659478][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.665131][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.670783][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.676431][ T6872]  ? rcu_is_watching+0x12/0xc0
[ 1746.681220][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.686873][ T6872]  process_one_work+0xa0e/0x1980
[ 1746.691874][ T6872]  ? __pfx_process_one_work+0x10/0x10
[ 1746.697263][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.702921][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.708575][ T6872]  worker_thread+0x5ef/0xe50
[ 1746.713214][ T6872]  ? kthread+0x13a/0x450
[ 1746.717472][ T6872]  ? __pfx_worker_thread+0x10/0x10
[ 1746.722605][ T6872]  kthread+0x370/0x450
[ 1746.726690][ T6872]  ? __pfx_kthread+0x10/0x10
[ 1746.731296][ T6872]  ret_from_fork+0x72b/0xd50
[ 1746.735911][ T6872]  ? __pfx_ret_from_fork+0x10/0x10
[ 1746.741038][ T6872]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1746.746688][ T6872]  ? __switch_to+0x800/0x1100
[ 1746.751394][ T6872]  ? __switch_to_asm+0x39/0x70
[ 1746.756182][ T6872]  ? __pfx_kthread+0x10/0x10
[ 1746.760789][ T6872]  ret_from_fork_asm+0x1a/0x30
[ 1746.765589][ T6872]  </TASK>
[ 1746.769024][ T6872] Kernel Offset: disabled
[ 1746.773344][ T6872] Rebooting in 86400 seconds..