last executing test programs:

5m56.747600139s ago: executing program 0 (id=3577):
r0 = syz_open_dev$cec(&(0x7f0000000200), 0xffffffffffffffff, 0x4ae60)
ioctl$CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000140)={'\x00\f\x00', 0x0, 0x5, 0x3, 0x0, 0x0, "00000000020000000000002100", "00074702", "0300", "0300", ["fdffffdfc5d5c01000", "d78cb8b0211a83be12ff0bff", "0000efffffffffffbfff00"]})

5m55.956190035s ago: executing program 0 (id=3584):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x4, &(0x7f00000002c0)={@local={0xac, 0x2, 0x44, 0xa}, @private=0x5000000}, 0xc)

5m55.744296419s ago: executing program 0 (id=3587):
r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x80000000004, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000040)={0x2, @pix={0x8, 0x8, 0x30314742, 0x3, 0x6, 0xaf, 0x5, 0x4, 0x0, 0x7, 0x1, 0x2}})

5m55.6719034s ago: executing program 0 (id=3589):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x840, &(0x7f0000000800)={[{@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@gid}, {@gid}, {@umask={'umask', 0x3d, 0x400}}, {@dmask={'dmask', 0x3d, 0x4}}, {@fmask={'fmask', 0x3d, 0x4}}, {@namecase}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@keep_last_dots}]}, 0x1, 0x152c, &(0x7f0000001f80)="$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")
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x80, 0x0)

5m55.265496758s ago: executing program 0 (id=3593):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7fffffff}]})
getresuid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100))

5m54.788283598s ago: executing program 0 (id=3596):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="e800000011000134e8b39b15ba8515c433ebe0441253add78e0ecc747cff6d084dc711992753e19e584b16098930a58cfd58950ece7613a7df35877b37559c142e1f482b986fad149cbc90d0f9389bde"], 0xe8}}, 0x0)

5m54.415123025s ago: executing program 32 (id=3596):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="e800000011000134e8b39b15ba8515c433ebe0441253add78e0ecc747cff6d084dc711992753e19e584b16098930a58cfd58950ece7613a7df35877b37559c142e1f482b986fad149cbc90d0f9389bde"], 0xe8}}, 0x0)

4m41.088934765s ago: executing program 4 (id=4472):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000005cc0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x5c, 0x3, 0x1, 0x301, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x409}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x4, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0xc0}, 0x4000)

4m40.847850739s ago: executing program 4 (id=4476):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000500), 0xb, 0x0)
ioctl$SNDRV_PCM_IOCTL_UNLINK(r0, 0x4161, 0x0)

4m40.657417163s ago: executing program 4 (id=4479):
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfe, &(0x7f00000000c0)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000017f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120c0001000b080c00bdad01409bbc7a46e39a8285dcdf12176679df069163ce947ee2b49e33538afaeb2713f450ebd010a20ff27fff0000000000000000", 0x89}], 0x1}, 0xff0f000000000000)

4m40.366616799s ago: executing program 4 (id=4488):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x840, &(0x7f0000000800)={[{@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@gid}, {@gid}, {@umask={'umask', 0x3d, 0x400}}, {@dmask={'dmask', 0x3d, 0x4}}, {@fmask={'fmask', 0x3d, 0x4}}, {@namecase}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@keep_last_dots}]}, 0x1, 0x152c, &(0x7f0000001f80)="$eJzs3AuYTtUaOPD3XWvtMSS+JrkMa6138yWXZZIklyS5JEklSXJLSJrkSEJiCEkakpBchiSGkFwmJo37/X5JSJImSUJyS9b/mfB3OnX+dc7pn/OceX/Ps59Z76y91n73936Xtfcz833TZUitxrWrNyQi+I/g+R9JABALAAMAIC8ABABQPq58XFZ/TolJ/9lB2J/rgdTLnQG7nLj+2RvXP3vj+mdvXP/sjeufvXH9szeuf/bG9WcsO9s4tdBVvGXfje//Z2f8+f8/JLPMmC9Wl7mmK0DMHx3C9c/euP7/s4I/shPXP3vj+mdXsZc7AfZfgF//2UGOf9rD9c/euP6MZWeX+/7z5d4g8l/2GBzOeb4wf9X5M8YYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjf4FT/hIFABfblzsvxhhjjDHGGGOM/Xl8jsudAWOMMcYYY4wxxv7/QxAgQUEAMZADYiEn5AIBAFdCHsgLEbgK4uBqyAfXQH4oAAWhEMRDYSgCGgxYIAihKBSDKFwLxeE6KAEloRSUBgdlIAGuh7JwA5SDG6E83AQV4GaoCJWgMlSBW6Aq3ArV4DaoDrdDDagJtaA23AF14E6oC3dBPbgb6sM9cC/cBw3gfmgID0AjeBAaw0PQBB6GptAMmkMLaPlvjX8OesDz0BN6QRL0hj7wAvSFftAfXoQB8BIMhJdhELwCyTAYhsCrMBReg2HwOgyHETAS3oBR8CaMhjEwFsZBCoyHCfAWTIS3YRK8A5NhCqTCVJgG78J0mAEz4T2YBe/DbJgDc2EepMEHMB8WQDp8CAvhI8iARbAYlsBSWAbLYQWshFWwGtbAWlgH62EDbIRNsBm2wFbYBtvhY9gBn8BO2AW74VPYA5/9i+NP/sP4rggIKFCgQoUxGIOxGIu5MBfmxtyYB/NgBCMYh3GYD/NhfsyPBbEgxmM8FsEiaNAgIWFRLIpRjGJxLI4lsASWwlLo0GECJmBZvAHLYTksj+WxAlbAilgJK2EVrIJVsSpWw2pYHatjDayBtbAW3oF3YG+si3WxHtbD+lj/4u0pbIgNsRE2wsbYGJtgE2yKTbE5NseW2BJbYStsja2xLbbFdtgO22N7TMRE7IAdsCN2xE7YCTtjZ+yCXbArdsNumc/lAHwen8deWEP0xj7YB/tico7++CK+iC/hQHwZX8ZXMBkH4xB8FV/F13AYnsDhOAJH4kisKt7E0TgGSYzDFEzBCTgBJ+JEzEr0HZyCqTgVp+E0nI4zcAa+h7PwfXwf5+AcnIdpmIbzcQGmYzouxJOYgYtwMS7BpbgMl+IKXIkrcDWuwdW4DtfhBtyAm3ATbsEtuA234ceoAPAT3IW7MBn34B7ci3txH+7D/bgfMzETD+ABPIgH8RAewsN4GI/gUTyGR/E4HscTeBJP4Sk8g2fwLD4T/1Wjj0uuSgaRRQklYkSMiBWxIpfIJXKL3CKPyCMiIiLiRJzIJ/KJ/CK/KCgKingRL4qIIsIII0iEMQAgoiIqioviooQoIUqJUsIJJxJEgigryopyopwoL24SFcTNoqKoJNq4KqKKqCraumriNlFdVBc1RE1RS9QWtUUdUUfUFXVFPVFP1Bf1xb3iPtFA9Mb++IDIqkxjMRibiCHYVDQT8sI7WCsxDFuLNqKteEyMwOHYXrRyieJJ0UGMxo7ib2IMPi06i3HYRTwruopuort4TvQQrV1P0UtMwt6ij5iCfUU/0V+8KKZjTfEezspZS7wiksVgMUS8Kubha2KYeF0MFyPESPGGGCXeFKPFGDFWjBMpYryYIN4SE8XbYpJ4R0wWU0SqmCqmiXfFdDFDzBTviVnifTFbzBFzxTyRJj4Q88UCkS4+FAvFRyJDLBKLxRKxVCwTy8UKsVKsEqvFGrFWrBPrxQaxUWwSm0UsbBXbxHbxsdghPhE7xS6xW3wq9ojPxF7xudgnvhD7xZciU3wlDoivxUHxjTgkvhWHxXfiiDgqjonvxXHxgzghTopT4rQ4I34UZ8VP4pzwAiRKIaVUMpAxMoeMlTllLnmFzC2DC4/uVTJOXi3zyWtkfllAFpSFZLwsLItILY20kmQoi8piMiqvlcXldbKELClLydLSyTIyQV4vy8obZDl5oywvb5IV5M2yoqwkK8sq8hZZVd4qIXL+GDVkTVlL1pZ3yCS4U9aVd8l68m5ZX94j75X3yQbyftlQPiAbyQdlY/mQbCIflk1lM9lctpAt5SOylXxUtpZtZFv5mGwnH5ft5RMyUT4pO0h/4SnytOwsn5Fd5LOyq+wmu8uf5DnpZU/ZS0JvkH3kC7Kv7Cf7xwKAfEkOlC/LQfIVmSwHyyHyVTlUviaHydflcDlCjpRvyFHyTTlajpFj5TiZIsfLCfItOVG+LSfJd+RkOUWmyqmyvxzw80wzpfzd8W/9xvhBPx99g9woN8nNcovcKrfJ7fJjuUPukDvlTrlb7pZ75B65V+6V++Q+uV/ul5kyUx6QB+RBeVAekofkYXlYHpFH5Wn5vTwuf5An5El5Up6WZ+QZefbCYwAKlVBSKRWoGJVDxaqcKpe6QuVWV6o8Kq+KqKtUnLpa5VPXqPyqgCqoCql4VVgVUVoZZRWpUBVVxVRUXYsXnjCqlCqtnCqjEtT1/8p4VVxdp0qokr8YfzG/pH+SX0vVUrVSrVRr1Vq1VW1VO9VOtVftVaJKVB1UB9VRdVSdVCfVWXVWXVSXrOeD6q66qx6qh+qpeqoklaT6qBdUX9VP9VcvqgHqJTVQDVSD1CCVrJLVEDVEDVVD1TA1TA1Xw9VINVKNUqPUaDVajVVjVYpKURPUBDVRTVST1CQ1WU1WqSpVTVPT1HQ1Xc1UM9UsNUvNVrPVXDVXpak0NV/NV+kqXS1UC1WGWqQWqSVqiVqmlqkVaoVapVapNWqNWqfWqQy1UW1Um9VmtVVtVdvVdrVD7VA7xU61W+1We9QetVftVfvUPrVf7VeZKlMdUAfUQXVQHVKH1GF1WB1RR9QxdUwdV8fVCXVCnVKn1Bl1Rp1VZ9U5dS5r2ReIQAQqUEFMEBPEBrFBriBXkDvIHeQJ8gSRIBLEBXFBvuCaIH9QICgYFArig8JBkUAHJrCBuFD0aHBtUDy4LigRlAxKBaUDF5QJEoLrg7LBDUG54MagfHBTUCG4OagYVAoqB1WCW4Kqwa1BteC2oHpwe1AjqBnUCmoHdwR1gjuDusFdQb3g7qB+cE9wb3Bf0CC4P2gYPBA0Ch4MGgcPBU2Ch4OmQbOgedAiaPmnzu/9iQKPup66l07SvXUf/YLuq/vp/vpFPUC/pAfql/Ug/YpO1oP1EP2qHqpf08P063q4HqFH6jf0KP2mHq3H6LF6nE7R4/UE/ZaeqN/Wk/Q7erKeolP1VD1Nv6un6xl6pn5Pz9Lv69l6jp6r5+k0/YGerxfodP2hXqg/0hl6kV6sl+ileplerlfolXqVXq3X6LV6nV6vN+iNepPerLforXqb3q4/1jv0J3qn3qV360/1Hv2Z3qs/1/v0F3q//lJn6q/0Af21Pqi/0Yf0t/qw/k4f0Uf1Mf29Pq5/0Cf0SX1Kn9Zn9I/6rP5Jn9M+a3Gf9fFulFEmxsSYWBNrcplcJrfJbfKYPCZiIibOxJl8Jp/Jb/KbgqagiTfxpogpYrKQIVPUFDVREzXFTXFTwpQwpUwp44wzCSbBlDVlTTlTzpQ35U0FU8FUNBVNZVPZ3GJuMbeaW81t5jZzu7nd1DQ1TW1T29QxdUxdU9fUM/VMfVPf3GvuNQ1MA9PQNDSNTCPT2DQ2TUwT09Q0Nc1Nc9PStDStTCvT2rQ2bU1b0860M+1Ne5NoEk0H08F0NB1NJ9PJdDadTRfTxXQ1XU130930MD1MT9PTJJkk08f0MX1NX9Pf9DcDzAAz0Aw0g8wgk2ySzRAzxAw1Q80wM8wMNyPMyKyFqnnTjDZjzFgzzqSYFDPBTDATzUQzyUwyk81kk2pSzTQzzUw3081MM9PMMrPMbDPbzDVzTZpJM/PNfJNu0s1Cs9BkmAyz2Cw2S81Ss9wsNyvNSrParDZrYa1Zb9abjWaj2Ww2m61mq9lutpsdZofZaXaa3Wa32WP2mL1mr9ln9pn9Zr/JNJnmgDlgDpqD5pA5ZA6bw+aIOWKOmWPmuDluTpgT5pQ5Zc6YAhc+L72JtTltLnuFzW2vtHlsXvuPcUFbyMbbwraI1Ta/LfCL2FhrS9iStpQtbZ0tYxPs9b+KK9pKtrKtYm+xVe2tttqv4jr2TlvX3mXr2bttbXvHL+L69h6btTppgAhgm9lGtoVtbB+yTezDtqltZpvbFradfdy2t0/YRPuk7WCf+lU83y6wK+0qu9qusTvtLnvKnrYH7Tf2jP3R9rS97AD7kh1oX7aD7Cs22Q7+VTzSvmFH2TftaDvGjrXjfhVPtlNsqp1qp9l37XQ741dxmv3AzrLpdradY+faeT/HWTml2w/tQvuRzbABLLZL7FK7zC63Ky7m6vPadXa93WB32E/sZrvFbrXb7PaLC2G7y+62n9o99jN7wH5t99kv7H57yGbar36Os87vkP3WHrbf2SP2qD1mv7fH7Q/q4uisc//e/mTPWW+BkIAkKQoohnJQLOWkXHQF5aYrKQ/lpQhdRXF0NeWjayg/FaCCVIjiqTAVIU2GLBGFVJSKUZSupYvplaLS5KgMJdD1VJZuoHJ0I5Wnm6gC3UwVqRJVpip0C1WlW6ka3UbV6XaqQTWpFtWmO6gO3Ul16S6qR3dTfbqH7qX7qAHdTw3pAWpED1Jjeoia0MPUlJpRc2pBLekRakWPUmtqQ23pMWpHj1N7eoIS6UnqQE9RR/obdaKnqTM9Q13oWepK3ag7PUc96HnqSb0oiXpTH3qB+lI/6k8v0gB6iQbSyzSIXqFkGkxD6FUaSq/RMHqdhtMIGklv0Ch6k0bTGBpL4yiFxtMEeosm0ts0id6hyTSFUmkqTaN3aTrNoJn0Hs2i92k2zaG5NI/S6AOaTwsonT6khfQRZdAiWkxLaCkto+W0glbSKlpNa2gtraP1tIE20ibaTFtoK22j7fQx7aBPaCftot30Ke2hzwjpc9pHX9B++pIy6Ss6QF/TQfqGDtG3vhd9R0foKB2j7+k4/UAn6CSdotN0hn6ks/QTnSNPEGIoQhmqMAhjwhxhbJgzzBVeEeYOrwzzhHnDSHhVGBdeHeYLrwnzhwXCgmGhMD4sHBYJdWhCG1IYhkXDYmE0vDYsHl4XlghLhqXC0qELy4QJ4fVh2fCGsFx4Y1g+vCmsEN4cVgwrhQ/dXSW8Jawa3hpWC28Lq4e3hzXCmmGtsHZ4R1gnvDOsG94V1gvvDsuF94T3hveFDcL7w4bhA2Gj8MGwcfhQ2CR8OGwaNgubhy3CluEjYavw0bB12CZsGz4WtgsfD9uHT4SJ4ZNhh/Cpn/vvWfDP+5PC3mGf8IXwhdD7u+Tc6LxoWvSD6Pzogmh69MPowuhH0Yzoouji6JLo0uiy6PLoiujK6Kro6uia6Nrouuj66Iao97VzgEMnnHTKBS7G5XCxLqfL5a5wud2VLo/L6yLuKhfnrnb53DUuvyvgCrpCLt4VdkWcdsZZRy50RV0xF3XXuuLuOlfClXSlXGnnXBmX4Fq4lq6la+Ueda1dG9fWPeYec4+7x90T7gn3pOvgnnId3d9cJ/e06+yecc+4Z11X1811d8+5Hm58nvOvySTXx/VxfV1f19/1dwPcADfQDXSD3CCX7JLdEDfEDXVD3TA3zA13w91IN9KNcqPcaDfajXVjXYpLcRPcBDfRTXST3CQ32U12qS7VTXPT3HQ33VWdcf4os91sN9fNdWkuzc13WWvGdLfQLXQZLsMtdovdUrfULXfL3Uq30q12q91at9atd+vdRrfRbXab3Va31W13290Ot8Pt9HnPT+r2uL1ur9vn9rn97kuX6b5yB9zX7qD7xh1y37rD7jt3xB11x9z37rj7wZ1wJ90pd9qdcT+6s+4nd855lxIZH5kQeSsyMfJ2ZFLknaxZI6mRqZFpkXcj0yMzIjMj70VmRd6PzI7MicyNzIukRT6IzI8siKRHPowsjHwUyYgsiiyOLIksjSyLeF94c+iL+mI+6q/1xf11voQv6Uv50t75Mj7BX+/L+ht8OX+jL+9v8hX8zb6ir+Qr+4d9U9/MN/ctfEv/iG/lH/WtfRvf1j/m2/nHfXv/hE/0T/oO/inf0f/Nd/JP+87+Gd/FP+u7+m6+u3/O9/DP+56+l0/yvX0f/4Lv6/v5/v5FP8C/5Af6l/0g/4pP9oP9EP+qH+pf88P86364H+FHxrzhR128RIZxPsWP9xP8W36if9tP8u/4yX6KT/VT/TT/rp/uZ/iZ/j0/y7/vZ/s5fq6f59P8B36+X+DT/Yd+of/IZ/hFF28q++V+hV/pV/nVfo1f69f59X6D3+g3+c1+i9/qt/nt/mO/w3/id/pdfrf/1O/xn/m9/nO/z3/h9/svfab/yh/wX/uD/ht/yH/rD/vv/BF/1B/z3/vj/gd/wp/0p/xpf8b/6M/6n/w5/p81xhhjjLE/ZPylpvhlz/nb+b1/Y4z4u537AMCVWwpl/n1/1opybf7z7X4ivl0EAJ7s1eWBi1uNGklJSRf2zZAQFJuTte6+ND4GLsWLoC08DonQBsr+Zv79RLcz9DvzR28CyPV3Y2LhUnxp/s8BMOk35n/ksZHzK4Sn4v4f888BKFHs0piccCleBG1/vr/SBsr9k/wLtPqd/HN+kQLQ+u/G5IZL8aX8E+BReAoSf7EnY4wxxhhjjDF2Xj9RudPF68+Lf/H5W9fn8erSmBxwKf6963PGGGOMMcYYY4xdfk936/7EI4mJbTr9641qv7+P+mMTxvxWVxP4dxPjxr/V8B7g/xYOAP7DCQGyGvKvPItNf8mxki+8dP6xa+lpH8B/Ryn/jMZlfmNijDHGGGOM/ekuLfp/+Xt1uRJijDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcayof/0O97gD3xL3+U+R8YYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY+xy+z8BAAD//9t19x0=")
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x80, 0x0)

4m39.927724667s ago: executing program 4 (id=4486):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0xffe, 0x2)
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f00000000c0)=@userptr={0x2, 0x2, 0x4, 0x4, 0x1, {0x77359400}, {0x4, 0xc, 0x81, 0xa, 0x0, 0x7f, "1aeba4cc"}, 0xf, 0x2, {0x0}, 0xfffffffe})

4m39.220274981s ago: executing program 4 (id=4494):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x60, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xffff}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x60}}, 0x0)

4m38.75354138s ago: executing program 33 (id=4494):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x60, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xffff}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x60}}, 0x0)

3.027938081s ago: executing program 3 (id=8191):
iopl(0x3)
mount_setattr(0xffffffffffffffff, 0x0, 0x8100, &(0x7f0000000080)={0x300084, 0xf0, 0x40000}, 0x20)

2.711079317s ago: executing program 3 (id=8195):
setreuid(0xee01, 0xee00)
ioprio_set$pid(0x2, 0x0, 0x0)

2.521585521s ago: executing program 3 (id=8199):
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000100), 0x24, 0x0)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

2.264150856s ago: executing program 3 (id=8202):
syz_mount_image$romfs(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x2, 0x16c, &(0x7f0000000480)="$eJzs2r9K+1AUB/Dz68/SUnwCp0Iz1KFNmmgV3AXByQcQS3tvvZgYSQRpp+ALKA7xEVxddfMROru5qYurg0SS3GiaFPwDEsHvZ2gOPbknN+FyptNybKvD3RbRone2dV9ybKveNVb6vMN7FNsgonoYTILgvE05O2/5SeC1czc0ruW1OfQ3r7gwmZ6vAQAAAAAAAAAAAAAAAAAAAADwRzQeZFDb9e0LLkzWSWXd0XivZ5rMcZN/FJIzOsR9e40LhRlT9ZrPVI7nd4S/fhzW06bySlipGkSeKPs89dA6UN3RuCWs3pAN2b6uG11tSdOWdTWqpWYrKqdyT0TV8Odf5v2Uy/d5olstP09EtfgytyD8k6OoennW+382qKRWeV9fXmgwT0S/YBsIkuDukWh2qioPKHPccvqs/o/vWd2OUgVt/iUo/tP9dJDtHzSoGI2bsH+0+7Y5+Kh/JKu/8/CSXJvpzABFew0AAP//4hwqDg==")
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8042, 0x0)

1.984690521s ago: executing program 3 (id=8206):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x16}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe99, 0x0, &(0x7f00000001c0)='N', 0x0}, 0x48)

1.768962685s ago: executing program 3 (id=8208):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201050037057b082d0800014b702c02030109021200070100a0000904"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000300)={0x44, &(0x7f0000000240)=ANY=[@ANYBLOB="4000060000007eddbfcd06"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.734072636s ago: executing program 1 (id=8209):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_COPY$syz(r0, 0x3b83, &(0x7f0000000080)={0x28, 0xb16405bdec0730cd, 0x0, 0x0, 0x2aae75, 0xfffffffffffffffe, 0xc, 0x2f98d6})

1.5277499s ago: executing program 1 (id=8211):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x2, 0x6, 0x5d0, 0x1b0, 0x3e0, 0xd0, 0x3e0, 0x310, 0x500, 0x500, 0x500, 0x500, 0x500, 0x6, 0x0, {[{{@ipv6={@mcast2, @private1, [], [0x0, 0xff], 'macvlan1\x00', 'veth1_to_bridge\x00'}, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, [], [], 'syzkaller0\x00', 'team_slave_1\x00'}, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff, 0xfd}, {0xffffffffffffffff}, {}, 0xf3d9, 0x2}}}, {{@ipv6={@mcast1, @remote, [], [0xff, 0x0, 0x0, 0xff], '\x00', 'dummy0\x00'}, 0x0, 0x138, 0x160, 0x0, {}, [@common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @dev, @mcast1, @empty}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x1000, 0x6, 0x3}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@eui64={{0x28}}]}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x630)

1.409505232s ago: executing program 1 (id=8212):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='umask=00000000000000000000000,decompose,nls=cp737,uid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6e6f626172726965722c626172726965722c0086fb43a23b6008456d6a9910153cdb3531061926aeb6b32889f50c0a517181cd62fac0eeb6d1b4109c2ee77b2da377c812ff150786620ceda50f1707824f4a1bbe30530ea0caa76f6492494059e756bc99f5ca376910be8a061482ca49e4d32377e741850bc738781b58f2c499b21a8bf864d1"], 0x20, 0x6de, &(0x7f0000000840)="$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")
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file2\x00', 0x0)

1.139205468s ago: executing program 2 (id=8215):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000140)="06ff03076844babeb89e14f00806", 0x0, 0x100, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.071201449s ago: executing program 1 (id=8217):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETISPACE(r0, 0xc0045003, &(0x7f0000001100))

916.238432ms ago: executing program 5 (id=8218):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x8080)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000040)={{0x1, 0x0, 0x0, 0x3}, 0x2000000, 0x0, 'id0\x00', 'timer0\x00', 0x0, 0x0, 0x1})

871.804913ms ago: executing program 1 (id=8219):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f00000008c0), 0x4)

785.020735ms ago: executing program 2 (id=8220):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
connect$unix(r0, &(0x7f0000000100)=@abs={0x27, 0x0, 0x4e22}, 0x6e)

725.671906ms ago: executing program 1 (id=8221):
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x2010880, &(0x7f0000007400)=ANY=[@ANYBLOB='errors=remount-ro,noquota,nodiscard,iocharset=macturkish,errors=continue,errors=continue,nointegrity\x00iocharset=macgreek,quota,usrquota,usrquota,errors=remount-rocard,noquota,noquota,\x00\x00\x00\x00\x00'], 0x1, 0x6174, &(0x7f0000001280)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x146)

702.044166ms ago: executing program 5 (id=8222):
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0)
rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000fc0)={0x0, 0x0, 0x200})

618.444118ms ago: executing program 2 (id=8223):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_CSUM={0x5, 0x8, 0x1}, @IFLA_GENEVE_PORT={0x6, 0x5, 0x4e21}]}}}]}, 0x44}}, 0x4000)

500.61827ms ago: executing program 5 (id=8224):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={0x2, 0x5, 0x0, 0x9, 0xe, 0x0, 0x0, 0x25dfdbfc, [@sadb_address={0x5, 0x6, 0x33, 0x80, 0x0, @in6={0xa, 0x4e23, 0xf, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}}, @sadb_sa={0x2, 0x1, 0x2, 0x0, 0x0, 0x6, 0x0, 0x40000000}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x4e24, 0x1, @remote, 0xfffff25e}}]}, 0x70}, 0x1, 0x7}, 0x10)

342.187903ms ago: executing program 2 (id=8225):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
getsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0x4, 0x0, &(0x7f0000000680))

302.109764ms ago: executing program 5 (id=8226):
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x5031, 0xffffffffffffffff, 0xdc2dc000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2}, {0x0, [0x0]}}, &(0x7f0000001f80)=""/226, 0x26, 0x81, 0x2}, 0x20)

184.893927ms ago: executing program 2 (id=8227):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000200)='/dev/comedi4\x00', 0x80, 0x0)
ioctl$COMEDI_BUFCONFIG(r0, 0x8020640d, 0x0)

124.641078ms ago: executing program 5 (id=8228):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
writev(r0, &(0x7f0000000280)=[{&(0x7f0000000000)="13acef1f564399910b2038fa3d68064bc89ef60f773ac0126f354cc44b2403100dab930540316cd45804fca3bc4d1e37d1d3f0e04d476eff344a666805b111859ecc57c4421ab7b0f8265644378d61ae9cb0a727a3b63d1847e5cad2dfb10f71d0cbe5c7b85e815a7ff6bc9d6c7024d94d1467461039cc8a7721e7797f3ff332249425fc4026227b7473b881a23043907990c4beb7b788ff45a7a388d5ba0c1754c134ef372eedde1889acc190d73bc5fefb2eddde39c70eb63151e2921c27783b1847a73725", 0xc6}, {&(0x7f00000005c0)="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", 0xfffffffffffffe92}, {&(0x7f0000000140)="4a11d416f45fce0a18ad3d0c37f247ae032c17aa5301dedb033f3bb5f7783f5bd8aa598f1b", 0x25}, {&(0x7f00000004c0)="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", 0xfd}, {&(0x7f0000000200)="a9099f6823e56278e1159ffb9208ffd927eaaf90e86b1f3a06d73e", 0x1b}, {&(0x7f0000000100)="8f4d7b3b8dee38b3ba0c82a701e0e27c3d46dfdc8a74b169501bf659c0b5f0c34848805b1046802a8dc69f244b3bfb649851d0", 0x33}], 0x6)

42.032179ms ago: executing program 2 (id=8229):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000240)=ANY=[@ANYBLOB="240100001600010428bd700000000000fe8000000000000000000000000000bbfc01000000000000000000000000000100040000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027"], 0x124}}, 0x0)

0s ago: executing program 5 (id=8230):
r0 = inotify_init1(0x800)
inotify_add_watch(r0, &(0x7f0000000240)='.\x00', 0x80)

kernel console output (not intermixed with test programs):

[T20037] loop5: detected capacity change from 0 to 4096
[  582.578562][T20041] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  582.599099][T20037] ntfs: (device loop5): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  582.602172][T20035] loop1: detected capacity change from 0 to 4096
[  582.636529][T20037] ntfs: (device loop5): ntfs_read_locked_inode(): $DATA attribute is missing.
[  582.668792][T20037] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  582.668897][T20041] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  582.718310][T20037] ntfs: (device loop5): load_system_files(): Failed to load $MFTMirr.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  582.735640][T20041] ntfs3: loop2: mft corrupted
[  582.744791][T20041] ntfs3: loop2: Failed to load $Extend (-22).
[  582.798789][T20041] ntfs3: loop2: Failed to initialize $Extend.
[  582.840329][T20037] ntfs: volume version 3.1.
[  583.661841][T20059] loop2: detected capacity change from 0 to 24
[  583.671540][T20059] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  583.709736][T20059] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  584.247228][ T5849] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  584.458895][ T5849] usb 3-1: Using ep0 maxpacket: 8
[  584.468587][ T5849] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 7
[  584.489075][ T5849] usb 3-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  584.508748][ T5849] usb 3-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  584.527440][ T5849] usb 3-1: Product: syz
[  584.532238][ T5849] usb 3-1: Manufacturer: syz
[  584.536875][ T5849] usb 3-1: SerialNumber: syz
[  584.606172][T20084] autofs4:pid:20084:autofs_fill_super: called with bogus options
[  584.791940][ T5849] usb 3-1: Handspring Visor / Palm OS: No valid connect info available
[  584.821755][ T5849] usb 3-1: Handspring Visor / Palm OS: port 82, is for unknown use
[  584.847530][ T5849] usb 3-1: Handspring Visor / Palm OS: port 223, is for HotSync use
[  584.877398][ T5849] usb 3-1: Handspring Visor / Palm OS: Number of ports: 2
[  584.894229][T20092] netlink: 256 bytes leftover after parsing attributes in process `syz.1.6316'.
[  585.002969][ T5849] usb 3-1: palm_os_3_probe - error -71 getting bytes available request
[  585.026999][ T5849] visor 3-1:1.0: Handspring Visor / Palm OS converter detected
[  585.041401][ T5849] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  585.055895][ T5849] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  585.078137][ T5849] usb 3-1: USB disconnect, device number 23
[  585.088206][T20096] loop1: detected capacity change from 0 to 764
[  585.130457][ T5849] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  585.180895][ T5849] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  585.192173][ T5849] visor 3-1:1.0: device disconnected
[  585.608974][T20108] autofs4:pid:20108:autofs_fill_super: called with bogus options
[  586.484495][T20126] netlink: 'syz.2.6334': attribute type 3 has an invalid length.
[  586.504001][T20126] netlink: 'syz.2.6334': attribute type 1 has an invalid length.
[  586.529871][T20126] netlink: 216 bytes leftover after parsing attributes in process `syz.2.6334'.
[  586.529986][T20116] loop1: detected capacity change from 0 to 32768
[  586.544624][T20126] NCSI netlink: No device for ifindex 33022
[  586.590764][T20116] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.6328 (20116)
[  586.634255][T20116] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  586.659624][T20116] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  586.668454][T20116] BTRFS info (device loop1): using free space tree
[  586.895659][T20116] BTRFS info (device loop1): enabling ssd optimizations
[  586.927476][T20116] BTRFS info (device loop1): auto enabling async discard
[  587.073779][ T5790] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  587.655179][T20165] loop1: detected capacity change from 0 to 1024
[  587.776684][T20165] syz.1.6347: attempt to access beyond end of device
[  587.776684][T20165] loop1: rw=0, sector=1835012, nr_sectors = 4 limit=1024
[  587.866086][T20165] Buffer I/O error on dev loop1, logical block 458753, async page read
[  587.909140][T20165] hfsplus: unable to mark blocks free: error -5
[  587.916308][T20175] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  587.931383][T20165] hfsplus: can't free extent
[  587.950238][T20175] overlayfs: missing 'lowerdir'
[  588.267687][T20183] loop1: detected capacity change from 0 to 512
[  588.309866][T20183] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  588.363574][T20183] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.436765][T20183] ext4 filesystem being mounted at /1611/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  588.559796][T20183] Quota error (device loop1): do_check_range: Getting block 2052 out of range 1-5
[  588.579941][T20183] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  588.594139][T20183] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.6354: Failed to acquire dquot type 1
[  588.670628][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  588.740525][T20195] openvswitch: netlink: Actions may not be safe on all matching packets
[  589.148818][T20201] loop2: detected capacity change from 0 to 4096
[  589.176337][T20201] ntfs: (device loop2): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  589.265247][T20201] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing.
[  589.277762][T20201] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  589.303095][T20201] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  589.318414][T20210] loop1: detected capacity change from 0 to 256
[  589.361804][T20212] loop5: detected capacity change from 0 to 1024
[  589.386784][T20201] ntfs: volume version 3.1.
[  589.460301][T20210] FAT-fs (loop1): Directory bread(block 64) failed
[  589.501849][T20210] FAT-fs (loop1): Directory bread(block 65) failed
[  589.512014][T20212] syz.5.6363: attempt to access beyond end of device
[  589.512014][T20212] loop5: rw=0, sector=1835012, nr_sectors = 4 limit=1024
[  589.526064][T20210] FAT-fs (loop1): Directory bread(block 66) failed
[  589.560788][T20210] FAT-fs (loop1): Directory bread(block 67) failed
[  589.569587][T20210] FAT-fs (loop1): Directory bread(block 68) failed
[  589.576547][T20210] FAT-fs (loop1): Directory bread(block 69) failed
[  589.584845][T20212] Buffer I/O error on dev loop5, logical block 458753, async page read
[  589.602885][T20210] FAT-fs (loop1): Directory bread(block 70) failed
[  589.619463][T20212] hfsplus: unable to mark blocks free: error -5
[  589.625776][T20212] hfsplus: can't free extent
[  589.644792][T20210] FAT-fs (loop1): Directory bread(block 71) failed
[  589.656787][T20210] FAT-fs (loop1): Directory bread(block 72) failed
[  589.700054][T20210] FAT-fs (loop1): Directory bread(block 73) failed
[  589.860745][T20218] netlink: 'syz.3.6368': attribute type 10 has an invalid length.
[  589.934870][T20218] team0: Port device ªªªªªª added
[  590.150268][T20229] netlink: 256 bytes leftover after parsing attributes in process `syz.2.6374'.
[  590.367171][T20235] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6376'.
[  590.400593][T20239] loop2: detected capacity change from 0 to 1024
[  590.426395][T20234] loop1: detected capacity change from 0 to 4096
[  590.467629][T20234] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  590.468865][T20239] syz.2.6379: attempt to access beyond end of device
[  590.468865][T20239] loop2: rw=0, sector=1835012, nr_sectors = 4 limit=1024
[  590.572331][T20234] ntfs: volume version 3.1.
[  590.609664][T20239] Buffer I/O error on dev loop2, logical block 458753, async page read
[  590.639498][T20239] hfsplus: unable to mark blocks free: error -5
[  590.645915][T20239] hfsplus: can't free extent
[  590.761715][T20234] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  590.849841][T20234] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  590.923549][T20234] ntfs: (device loop1): ntfs_cluster_alloc(): Failed to map page.
[  590.926786][T20248] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6384'.
[  590.979934][T20248] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6384'.
[  591.373051][T20263] netlink: 180 bytes leftover after parsing attributes in process `syz.2.6390'.
[  591.531789][T20267] netlink: 'syz.1.6393': attribute type 13 has an invalid length.
[  591.650553][T20267] gretap0: refused to change device tx_queue_len
[  591.669967][T20267] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  592.310332][ T5794] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  592.499685][ T5794] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  592.517793][ T5794] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  592.545479][ T5794] usb 3-1: Product: syz
[  592.566182][ T5794] usb 3-1: Manufacturer: syz
[  592.588957][ T5794] usb 3-1: SerialNumber: syz
[  592.630803][ T5794] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  592.682746][ T5880] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  592.911716][    C0] usb 3-1: ath9k_htc: invalid pkt_len (fd7e)
[  592.921013][T20305] loop1: detected capacity change from 0 to 4096
[  592.971518][T20305] ntfs: volume version 3.1.
[  593.113841][ T5849] usb 3-1: USB disconnect, device number 24
[  593.248010][T20317] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  593.282925][T20317] overlayfs: missing 'lowerdir'
[  593.517968][T20325] SET target dimension over the limit!
[  593.720204][ T5880] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  593.744726][ T5880] ath9k_htc: Failed to initialize the device
[  593.762030][ T5849] usb 3-1: ath9k_htc: USB layer deinitialized
[  593.778404][T20335] bridge4: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  593.790046][T20335] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  594.140481][T20347] loop1: detected capacity change from 0 to 16
[  594.176876][T20347] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  594.229078][T20347] cramfs: Error -3 while decompressing!
[  594.235783][T20347] cramfs: ffffffff96fdb348(27)->ffff888059a5d000(4096)
[  594.248484][T20347] cramfs: Error -3 while decompressing!
[  594.267251][T20347] cramfs: ffffffff96fdb363(16)->ffff8880559e3000(4096)
[  594.287174][T20347] cramfs: Error -3 while decompressing!
[  594.304205][T20347] cramfs: ffffffff96fdb348(27)->ffff888059a5d000(4096)
[  594.589780][T20361] netlink: 'syz.1.6439': attribute type 10 has an invalid length.
[  594.649910][T20361] bond0: (slave ªªªªªª): Releasing backup interface
[  594.713057][T20361] team0: Port device ªªªªªª added
[  595.969756][ T5794] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  596.169532][ T5794] usb 4-1: Using ep0 maxpacket: 8
[  596.190961][ T5794] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[  596.221977][ T5794] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  596.237461][ T5794] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  596.250671][ T5794] usb 4-1: Product: syz
[  596.254984][ T5794] usb 4-1: Manufacturer: syz
[  596.260300][ T5794] usb 4-1: SerialNumber: syz
[  596.512999][ T5794] usb 4-1: Handspring Visor / Palm OS: No valid connect info available
[  596.536733][ T5794] usb 4-1: Handspring Visor / Palm OS: port 82, is for unknown use
[  596.556358][ T5794] usb 4-1: Handspring Visor / Palm OS: port 223, is for HotSync use
[  596.582826][ T5794] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2
[  596.742265][ T5794] usb 4-1: palm_os_3_probe - error -71 getting bytes available request
[  596.766571][ T5794] visor 4-1:1.0: Handspring Visor / Palm OS converter detected
[  596.805114][ T5794] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  596.811294][T20443] netlink: 14 bytes leftover after parsing attributes in process `syz.2.6480'.
[  596.825175][ T5794] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  596.857000][ T5794] usb 4-1: USB disconnect, device number 28
[  596.906015][ T5794] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  596.947237][ T5794] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  596.978088][ T5794] visor 4-1:1.0: device disconnected
[  597.136562][T20451] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6485'.
[  597.356578][T20461] loop5: detected capacity change from 0 to 128
[  597.393717][T20461] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  597.429866][T20461] hpfs: filesystem error: improperly stopped
[  597.498977][T20461] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  597.517551][T20461] hpfs: You really don't want any checks? You are crazy...
[  597.528830][T20461] hpfs: hpfs_map_sector(): read error
[  597.540700][T20461] hpfs: code page support is disabled
[  597.555516][T20461] hpfs: hpfs_map_4sectors(): unaligned read
[  597.570234][T20461] hpfs: hpfs_map_4sectors(): unaligned read
[  597.576216][T20461] hpfs: filesystem error: unable to find root dir
[  598.605973][T20497] dlm: Unknown command passed to DLM device : 11
[  598.605973][T20497] 
[  599.659982][T20541] openvswitch: netlink: Message has 8 unknown bytes.
[  599.841422][T20548] loop5: detected capacity change from 0 to 16
[  599.905845][T20548] erofs: (device loop5): mounted with root inode @ nid 36.
[  599.982275][T20550] comedi comedi0: rti800: a I/O base address must be specified
[  600.063928][T20554] ieee802154 phy0 wpan0: encryption failed: -22
[  600.184723][T20556] loop2: detected capacity change from 0 to 2048
[  600.207717][T20556] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  600.274157][T20556] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  600.376691][T20563] netlink: 'syz.1.6541': attribute type 2 has an invalid length.
[  600.899651][ T5849] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  601.099539][ T5849] usb 2-1: Using ep0 maxpacket: 8
[  601.111261][ T5849] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 7
[  601.134912][T20560] loop5: detected capacity change from 0 to 40427
[  601.168207][T20560] F2FS-fs (loop5): Invalid log blocks per segment (4278190089)
[  601.190651][ T5849] usb 2-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  601.209536][T20560] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  601.230200][ T5849] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  601.238355][ T5849] usb 2-1: Product: syz
[  601.252342][T20560] F2FS-fs (loop5): invalid crc value
[  601.279823][ T5849] usb 2-1: Manufacturer: syz
[  601.290788][ T5849] usb 2-1: SerialNumber: syz
[  601.314667][T20560] F2FS-fs (loop5): Found nat_bits in checkpoint
[  601.500935][T20560] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  601.535395][T20560] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  601.552201][ T5849] usb 2-1: Handspring Visor / Palm OS: No valid connect info available
[  601.580002][T20594] netlink: 'syz.3.6554': attribute type 10 has an invalid length.
[  601.583000][T20560] F2FS-fs (loop5): Corrupted max_depth of 3: 255
[  601.590454][ T5849] usb 2-1: Handspring Visor / Palm OS: port 82, is for unknown use
[  601.617396][ T5849] usb 2-1: Handspring Visor / Palm OS: port 223, is for HotSync use
[  601.622285][T20560] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  601.630789][ T5849] usb 2-1: Handspring Visor / Palm OS: Number of ports: 2
[  601.688440][T20594] team0: Port device wlan1 added
[  601.753296][ T5849] usb 2-1: palm_os_3_probe - error -71 getting bytes available request
[  601.779743][ T5849] visor 2-1:1.0: Handspring Visor / Palm OS converter detected
[  601.802957][ T5849] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  601.852419][T20600] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  601.859764][T20600] IPv6: NLM_F_CREATE should be set when creating new route
[  601.867094][T20600] IPv6: NLM_F_CREATE should be set when creating new route
[  601.870539][ T5849] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  601.874508][T20600] IPv6: NLM_F_CREATE should be set when creating new route
[  601.923230][ T5849] usb 2-1: USB disconnect, device number 26
[  601.952044][ T5849] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  602.041829][ T5849] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  602.079042][ T5849] visor 2-1:1.0: device disconnected
[  602.431697][T20610] netlink: 72 bytes leftover after parsing attributes in process `syz.5.6558'.
[  602.820275][T20624] loop1: detected capacity change from 0 to 64
[  602.883793][T20624] syz.1.6569: attempt to access beyond end of device
[  602.883793][T20624] loop1: rw=0, sector=268435468, nr_sectors = 2 limit=64
[  602.969619][T20624] Buffer I/O error on dev loop1, logical block 134217734, async page read
[  603.186895][T20630] loop2: detected capacity change from 0 to 4096
[  603.232495][T20630] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  603.448341][T20644] loop1: detected capacity change from 0 to 512
[  603.453484][T20630] ntfs3: loop2: failed to convert "c46c" to iso8859-1
[  603.503850][T20644] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  603.533519][T20644] ext4 filesystem being mounted at /1664/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  603.574742][T20644] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  603.596963][T20644] EXT4-fs (loop1): Remounting filesystem read-only
[  603.647701][T20649] comedi comedi0: rti800: a I/O base address must be specified
[  603.673027][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.697966][   T42] __quota_error: 11 callbacks suppressed
[  603.697982][   T42] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  603.767347][   T42] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  605.540861][T20712] netlink: 'syz.1.6609': attribute type 2 has an invalid length.
[  605.549130][T20712] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.6609'.
[  605.573637][T20714] ip6t_srh: unknown srh invflags 7D00
[  605.824333][T20723] netlink: 14 bytes leftover after parsing attributes in process `syz.3.6613'.
[  606.149666][   T23] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  606.339917][   T23] usb 2-1: Using ep0 maxpacket: 16
[  606.371129][   T23] usb 2-1: config 0 has an invalid interface number: 237 but max is 0
[  606.390231][   T23] usb 2-1: config 0 has no interface number 0
[  606.415514][   T23] usb 2-1: config 0 interface 237 has no altsetting 0
[  606.420031][ T5794] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  606.432291][   T23] usb 2-1: New USB device found, idVendor=0e41, idProduct=5057, bcdDevice= 6.ad
[  606.447337][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  606.459627][   T23] usb 2-1: Product: syz
[  606.469773][   T23] usb 2-1: Manufacturer: syz
[  606.474437][   T23] usb 2-1: SerialNumber: syz
[  606.499519][   T23] usb 2-1: config 0 descriptor??
[  606.514790][   T23] snd_usb_podhd 2-1:0.237: Line 6 POD HD300 found
[  606.610428][ T5794] usb 3-1: Using ep0 maxpacket: 8
[  606.642878][ T5794] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  606.656860][ T5794] usb 3-1: config 179 has no interface number 0
[  606.666250][ T5794] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  606.707237][ T5794] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  606.726847][ T5794] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  606.745077][   T23] snd_usb_podhd 2-1:0.237: cannot get proper max packet size
[  606.754221][ T5794] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  606.758428][   T23] snd_usb_podhd 2-1:0.237: Line 6 POD HD300 now disconnected
[  606.789450][ T5794] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  606.796789][   T23] snd_usb_podhd: probe of 2-1:0.237 failed with error -22
[  606.839537][ T5794] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  606.848651][ T5794] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  606.887576][T20754] loop5: detected capacity change from 0 to 256
[  606.896608][T20736] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  606.929816][T20754] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  606.975998][T20754] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  607.040922][ T5862] usb 2-1: USB disconnect, device number 27
[  607.073155][T20754] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  607.404255][ T5862] usb 3-1: USB disconnect, device number 25
[  607.404301][    C0] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  607.419494][    C0] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  607.798889][   T27] audit: type=1326 audit(1759317089.265:2845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20773 comm="syz.5.6640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  607.863078][   T27] audit: type=1326 audit(1759317089.295:2846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20773 comm="syz.5.6640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  607.917580][   T27] audit: type=1326 audit(1759317089.305:2847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20773 comm="syz.5.6640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  607.942180][   T27] audit: type=1326 audit(1759317089.365:2848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20773 comm="syz.5.6640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  607.965352][   T27] audit: type=1326 audit(1759317089.365:2849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20773 comm="syz.5.6640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  608.391051][T20786] loop1: detected capacity change from 0 to 4096
[  608.424391][T20786] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  608.560826][T20799] netlink: 'syz.5.6650': attribute type 10 has an invalid length.
[  608.648660][T20786] ntfs3: loop1: failed to convert "c46c" to iso8859-1
[  608.678725][T20799] team0: Port device wlan1 added
[  609.179315][T20819] loop1: detected capacity change from 0 to 256
[  609.237677][T20819] FAT-fs (loop1): Directory bread(block 64) failed
[  609.270744][T20819] FAT-fs (loop1): Directory bread(block 65) failed
[  609.277455][T20819] FAT-fs (loop1): Directory bread(block 66) failed
[  609.314827][T20819] FAT-fs (loop1): Directory bread(block 67) failed
[  609.346976][T20819] FAT-fs (loop1): Directory bread(block 68) failed
[  609.381025][T20819] FAT-fs (loop1): Directory bread(block 69) failed
[  609.387773][T20819] FAT-fs (loop1): Directory bread(block 70) failed
[  609.414177][T20825] loop5: detected capacity change from 0 to 128
[  609.419447][T20819] FAT-fs (loop1): Directory bread(block 71) failed
[  609.439546][T20819] FAT-fs (loop1): Directory bread(block 72) failed
[  609.453522][T20825] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  609.457328][T20819] FAT-fs (loop1): Directory bread(block 73) failed
[  609.506571][T20825] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  609.770460][T20829] xt_bpf: check failed: parse error
[  610.019571][T20838] netlink: 'syz.2.6669': attribute type 58 has an invalid length.
[  610.440555][T20851] netlink: 'syz.1.6676': attribute type 10 has an invalid length.
[  610.525390][T20851] team0: Port device wlan1 added
[  610.842934][T20861] loop2: detected capacity change from 0 to 512
[  610.913609][T20861] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  610.960376][T20870] loop1: detected capacity change from 0 to 256
[  610.968346][T20861] ext4 filesystem being mounted at /1721/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  611.180949][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.512393][T20888] comedi comedi0: pcl816: I/O port conflict (0x6,16)
[  611.886328][T20892] loop2: detected capacity change from 0 to 4096
[  611.929155][T20892] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  612.049666][T20892] ntfs: volume version 3.1.
[  612.164530][T20892] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  612.221593][T20892] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  612.272511][T20892] ntfs: (device loop2): ntfs_cluster_alloc(): Failed to map page.
[  612.309265][T20892] ntfs: (device loop2): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -5).
[  612.332004][T20892] ntfs: (device loop2): ntfs_truncate(): Cannot truncate inode 0x43, attribute type 0x80, because the conversion from resident to non-resident attribute failed with error code -5.
[  612.466883][T20910] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  612.485549][T20910] overlayfs: missing 'lowerdir'
[  612.496167][ T5799] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  612.498846][T20912] netlink: 'syz.3.6705': attribute type 2 has an invalid length.
[  612.774058][T20921] netlink: 5064 bytes leftover after parsing attributes in process `syz.3.6708'.
[  613.041384][T20928] x_tables: unsorted entry at hook 1
[  613.276311][T20936] bridge5: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  613.578010][T20916] loop5: detected capacity change from 0 to 32768
[  613.658614][T20916] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.6707 (20916)
[  613.712882][T20916] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  613.739668][T20916] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[  613.780052][T20916] BTRFS info (device loop5): using free space tree
[  613.916257][T20932] loop1: detected capacity change from 0 to 32768
[  613.959978][T20932] (syz.1.6715,20932,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  613.969460][T20916] BTRFS info (device loop5): enabling ssd optimizations
[  613.991420][T20932] (syz.1.6715,20932,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  614.021285][T20916] BTRFS info (device loop5): auto enabling async discard
[  614.132276][T20969] loop2: detected capacity change from 0 to 256
[  614.201508][T20932] JBD2: Ignoring recovery information on journal
[  614.222955][T20969] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  614.316124][T20969] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  614.319871][T20971] bridge6: the hash_elasticity option has been deprecated and is always 16
[  614.382173][T20969] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  614.428760][T15920] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  614.453056][T20932] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  614.696765][T20975] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6728'.
[  614.757100][ T5790] ocfs2: Unmounting device (7,1) on (node local)
[  615.414175][T20993] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6736'.
[  615.807712][T21007] loop5: detected capacity change from 0 to 16
[  615.838536][T21007] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  615.900203][T21007] cramfs: Error -3 while decompressing!
[  615.905844][T21007] cramfs: ffffffff96fdb348(27)->ffff888056a49000(4096)
[  615.940363][T21007] cramfs: Error -3 while decompressing!
[  615.946010][T21007] cramfs: ffffffff96fdb363(16)->ffff888054ddb000(4096)
[  615.983750][T21011] (unnamed net_device) (uninitialized): Unable to set down delay as MII monitoring is disabled
[  615.999502][T21007] cramfs: Error -3 while decompressing!
[  616.005505][T21007] cramfs: ffffffff96fdb348(27)->ffff888056a49000(4096)
[  616.280372][T21017] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6748'.
[  616.304885][T21017] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6748'.
[  616.320082][T21017] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  616.429929][T21021] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6750'.
[  616.609140][T21006] loop1: detected capacity change from 0 to 32768
[  616.618400][T21027] xt_CT: You must specify a L4 protocol and not use inversions on it
[  616.704999][T21006] jfs_strtoUCS: char2uni returned -22.
[  616.725469][T21006] charset = cp950, char = 0xd4
[  616.771702][T21029] netlink: 'syz.2.6754': attribute type 21 has an invalid length.
[  616.966302][T21034] mac80211_hwsim hwsim15 wlan0: entered allmulticast mode
[  617.482060][T21050] netlink: 'syz.1.6763': attribute type 10 has an invalid length.
[  617.627064][T21050] team0: Port device geneve0 removed
[  618.012116][T21073] Timeout policy `syz1' can only be used by L3 protocol number 34825
[  618.266000][T21080] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[  618.915778][T21105] ipip1: entered allmulticast mode
[  619.473217][T21124] loop5: detected capacity change from 0 to 512
[  619.493443][T21123] bridge5: the hash_elasticity option has been deprecated and is always 16
[  619.518375][T21124] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  619.589148][T21124] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.6800: invalid indirect mapped block 4294967295 (level 1)
[  619.656014][T21124] EXT4-fs (loop5): Remounting filesystem read-only
[  619.685623][T21124] EXT4-fs (loop5): 2 truncates cleaned up
[  619.712546][T21124] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  619.850261][T21139] (unnamed net_device) (uninitialized): option lacp_active: invalid value (40)
[  619.990822][T15920] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  620.243380][T21149] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6812'.
[  620.957709][T21182] loop5: detected capacity change from 0 to 256
[  621.052465][T21182] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  622.556232][T21231] loop2: detected capacity change from 0 to 1024
[  622.585027][T21231] EXT4-fs: inline encryption not supported
[  622.612114][T21231] EXT4-fs: Ignoring removed i_version option
[  622.643431][T21231] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  622.726467][T21231] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.6851: lblock 2 mapped to illegal pblock 2 (length 1)
[  622.751151][T21231] Quota error (device loop2): qtree_write_dquot: dquota write failed
[  622.788723][T21231] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.6851: lblock 0 mapped to illegal pblock 48 (length 1)
[  622.811598][T21237] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6853'.
[  622.875160][T21231] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  622.899773][T21231] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.6851: Failed to acquire dquot type 0
[  622.924712][T21231] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  622.945442][T21231] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.6851: mark_inode_dirty error
[  622.988614][T21231] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  623.027199][T21231] EXT4-fs (loop2): 1 orphan inode deleted
[  623.051251][T21231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  623.064230][ T2933] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:9: lblock 1 mapped to illegal pblock 1 (length 1)
[  623.096292][T21218] loop5: detected capacity change from 0 to 32768
[  623.115800][ T2933] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  623.134949][ T2933] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:9: Failed to release dquot type 0
[  623.169748][T21218] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.6844 (21218)
[  623.233543][T21218] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  623.250893][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  623.269029][   T42] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  623.289665][T21218] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  623.312240][   T42] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  623.328696][   T42] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:2: Failed to release dquot type 0
[  623.348385][ T5799] EXT4-fs error (device loop2): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0
[  623.349751][T21218] BTRFS info (device loop5): using free space tree
[  623.368853][ T5799] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  623.379036][ T5799] EXT4-fs error (device loop2): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error
[  623.537873][T21257] loop1: detected capacity change from 0 to 512
[  623.553227][T21257] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  623.585789][T21257] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.6859: invalid indirect mapped block 4294967295 (level 1)
[  623.648413][T21257] EXT4-fs (loop1): Remounting filesystem read-only
[  623.671504][T21218] BTRFS info (device loop5): enabling ssd optimizations
[  623.678538][T21218] BTRFS info (device loop5): auto enabling async discard
[  623.684308][T21257] EXT4-fs (loop1): 2 truncates cleaned up
[  623.739537][T21257] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  623.960399][T15920] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  623.994561][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  624.386299][ T6199] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 9 /dev/loop5 scanned by udevd (6199)
[  624.527694][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  624.535792][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  624.865182][T21296] netlink: 44 bytes leftover after parsing attributes in process `syz.5.6873'.
[  624.909540][T21296] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6873'.
[  625.758234][T21329] No such timeout policy "syz1"
[  626.214397][T21322] loop5: detected capacity change from 0 to 32768
[  626.244450][T21322] 
[  626.244450][T21322]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  626.244450][T21322] 
[  626.286079][   T27] audit: type=1800 audit(1759317107.755:2850): pid=21322 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.6886" name="file1" dev="loop5" ino=4 res=0 errno=0
[  626.352740][T15920] 
[  626.352740][T15920]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  626.352740][T15920] 
[  626.384130][T15920] 
[  626.384130][T15920]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  626.384130][T15920] 
[  626.486083][T21327] loop2: detected capacity change from 0 to 32768
[  626.539565][T21327] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.6888 (21327)
[  626.616785][T21327] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  626.660112][T21327] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  626.679914][T21327] BTRFS info (device loop2): turning on async discard
[  626.686856][T21327] BTRFS info (device loop2): using free space tree
[  626.793995][T21346] loop5: detected capacity change from 0 to 256
[  626.848885][T21346] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  626.990375][T21327] BTRFS info (device loop2): enabling ssd optimizations
[  627.216872][ T5799] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  627.559038][T21367] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6900'.
[  627.574952][T21370] loop5: detected capacity change from 0 to 16
[  627.611056][T21370] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  627.660375][T21370] erofs: (device loop5): mounted with root inode @ nid 36.
[  627.827142][T21376] loop2: detected capacity change from 0 to 1024
[  627.866761][T21376] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[  627.876902][T21376] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  627.886775][T21376] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.6905: Failed to acquire dquot type 0
[  627.941956][T21376] EXT4-fs error (device loop2): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  627.981907][T21376] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.6905: corrupted inode contents
[  628.011659][T21376] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #13: comm syz.2.6905: mark_inode_dirty error
[  628.099222][T21376] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.6905: corrupted inode contents
[  628.145733][T21378] loop1: detected capacity change from 0 to 4096
[  628.148290][T21376] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #13: comm syz.2.6905: mark_inode_dirty error
[  628.216785][T21376] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.6905: corrupted inode contents
[  628.249027][T21376] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  628.270220][T21386] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  628.276052][T21376] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.6905: corrupted inode contents
[  628.302880][T21388] loop5: detected capacity change from 0 to 256
[  628.335306][T21378] NILFS error (device loop1): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1
[  628.347600][T21376] EXT4-fs error (device loop2): ext4_truncate:4288: inode #13: comm syz.2.6905: mark_inode_dirty error
[  628.393252][T21378] Remounting filesystem read-only
[  628.418346][T21376] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  628.486159][T21376] EXT4-fs (loop2): 1 truncate cleaned up
[  628.537200][T21376] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  628.693327][T21376] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  628.830336][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  629.780548][T21432] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6929'.
[  630.425969][T21457] loop1: detected capacity change from 0 to 1024
[  630.435888][T21457] EXT4-fs: inline encryption not supported
[  630.449961][T21457] EXT4-fs: Ignoring removed i_version option
[  630.470156][T21457] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  630.570290][T21457] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 2: comm syz.1.6941: lblock 2 mapped to illegal pblock 2 (length 1)
[  630.633677][T21457] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  630.641990][T21457] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 48: comm syz.1.6941: lblock 0 mapped to illegal pblock 48 (length 1)
[  630.664923][T21464] netlink: 'syz.3.6943': attribute type 5 has an invalid length.
[  630.684865][T21457] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  630.699547][T21457] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.6941: Failed to acquire dquot type 0
[  630.739578][T21457] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  630.790467][T21457] EXT4-fs error (device loop1): ext4_evict_inode:252: inode #11: comm syz.1.6941: mark_inode_dirty error
[  630.829130][T21457] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  630.855426][T21457] EXT4-fs (loop1): 1 orphan inode deleted
[  630.872947][T21457] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  630.890125][   T42] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  630.930730][   T42] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  630.948885][   T42] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:2: Failed to release dquot type 0
[  631.078056][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  631.090063][ T2873] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  631.135372][ T2873] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  631.159441][ T2873] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:6: Failed to release dquot type 0
[  631.217452][ T5790] EXT4-fs error (device loop1): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0
[  631.240802][ T5790] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  631.262629][ T5790] EXT4-fs error (device loop1): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error
[  633.776044][T21497] xt_TCPMSS: Only works on TCP SYN packets
[  633.824095][T21500] loop5: detected capacity change from 0 to 1024
[  633.851361][T21500] EXT4-fs: inline encryption not supported
[  633.857241][T21500] EXT4-fs: Ignoring removed i_version option
[  633.903491][T21500] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  633.932570][T21501] caif0: left allmulticast mode
[  633.950315][T21501] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  634.041175][T21500] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 2: comm syz.5.6959: lblock 2 mapped to illegal pblock 2 (length 1)
[  634.115184][T21500] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  634.184292][T21500] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 48: comm syz.5.6959: lblock 0 mapped to illegal pblock 48 (length 1)
[  634.222150][T21500] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  634.248972][T21500] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.6959: Failed to acquire dquot type 0
[  634.278353][T21516] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6967'.
[  634.304387][T21500] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  634.337399][T21500] EXT4-fs error (device loop5): ext4_evict_inode:252: inode #11: comm syz.5.6959: mark_inode_dirty error
[  634.409421][T21500] EXT4-fs warning (device loop5): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  634.440292][T21500] EXT4-fs (loop5): 1 orphan inode deleted
[  634.451738][T21500] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  634.464089][ T2873] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  634.500727][ T2873] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  634.509282][ T2873] EXT4-fs error (device loop5): ext4_release_dquot:6976: comm kworker/u4:6: Failed to release dquot type 0
[  634.808490][T15920] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  634.847117][T21532] batadv0: entered promiscuous mode
[  634.851894][ T2933] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:9: lblock 1 mapped to illegal pblock 1 (length 1)
[  634.903987][ T2933] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  634.918673][ T2933] EXT4-fs error (device loop5): ext4_release_dquot:6976: comm kworker/u4:9: Failed to release dquot type 0
[  634.952417][T15920] EXT4-fs error (device loop5): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0
[  634.975514][T15920] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  635.001942][T15920] EXT4-fs error (device loop5): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error
[  635.432608][T21543] loop5: detected capacity change from 0 to 4096
[  635.548582][T21543] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  635.586651][T21543] ntfs3: loop5: Failed to load $Extend (-22).
[  635.620306][T21543] ntfs3: loop5: Failed to initialize $Extend.
[  635.743054][T21556] loop2: detected capacity change from 0 to 1024
[  635.790638][T21556] EXT4-fs: inline encryption not supported
[  635.796527][T21556] EXT4-fs: Ignoring removed i_version option
[  635.855747][T21556] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  635.981220][T21556] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.6986: lblock 2 mapped to illegal pblock 2 (length 1)
[  636.080488][T21556] Quota error (device loop2): qtree_write_dquot: dquota write failed
[  636.104571][T21556] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.6986: lblock 0 mapped to illegal pblock 48 (length 1)
[  636.123464][   T27] audit: type=1326 audit(1759317117.595:2851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21561 comm="syz.3.6989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  636.183241][T21556] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  636.202650][T21556] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.6986: Failed to acquire dquot type 0
[  636.210015][   T27] audit: type=1326 audit(1759317117.595:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21561 comm="syz.3.6989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  636.232855][T21556] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  636.282189][   T27] audit: type=1326 audit(1759317117.615:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21561 comm="syz.3.6989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  636.323745][T21556] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.6986: mark_inode_dirty error
[  636.353760][T21556] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  636.373931][   T27] audit: type=1326 audit(1759317117.615:2854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21561 comm="syz.3.6989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  636.394496][T21556] EXT4-fs (loop2): 1 orphan inode deleted
[  636.421182][T21572] netlink: 'syz.5.6992': attribute type 10 has an invalid length.
[  636.429897][T21556] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  636.449862][   T48] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  636.464885][T21572] syz_tun: entered promiscuous mode
[  636.496954][   T48] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:3: Failed to release dquot type 0
[  636.516512][T21572] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  636.667987][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.703740][ T2926] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  636.734013][ T2926] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:8: Failed to release dquot type 0
[  636.776675][ T5799] EXT4-fs error (device loop2): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0
[  636.781526][T21579] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6999'.
[  636.832202][ T5799] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  636.832337][T21581] netlink: 'syz.5.6998': attribute type 21 has an invalid length.
[  636.864651][ T5799] EXT4-fs error (device loop2): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error
[  636.927203][T21581] netlink: 132 bytes leftover after parsing attributes in process `syz.5.6998'.
[  636.949581][T21581] netlink: 'syz.5.6998': attribute type 1 has an invalid length.
[  637.459855][    C1] sd 0:0:1:0: [sda] tag#6087 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  637.470360][    C1] sd 0:0:1:0: [sda] tag#6087 CDB: Read(6) 08 00 9f d1 fe de
[  637.671105][T21608] loop2: detected capacity change from 0 to 2048
[  637.711537][T21608] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  637.830589][T21614] gretap0: left promiscuous mode
[  637.873123][T21614] caif0: left allmulticast mode
[  637.888941][T21614] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  638.429486][ T5849] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  638.563689][T21612] loop1: detected capacity change from 0 to 32768
[  638.616033][ T5849] usb 4-1: Using ep0 maxpacket: 32
[  638.617445][T21612] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  638.646762][ T5849] usb 4-1: config 0 has an invalid descriptor of length 49, skipping remainder of the config
[  638.671753][ T5849] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  638.686085][ T5849] usb 4-1: New USB device found, idVendor=0421, idProduct=00a0, bcdDevice=c8.e1
[  638.719246][ T5849] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  638.724377][T21612] XFS (loop1): Ending clean mount
[  638.756260][ T5849] usb 4-1: config 0 descriptor??
[  638.766061][T21612] XFS (loop1): Quotacheck needed: Please wait.
[  638.786858][ T5849] usb 4-1: bad CDC descriptors
[  638.830466][ T5849] usb 4-1: bad CDC descriptors
[  638.910588][T21612] XFS (loop1): Quotacheck: Done.
[  638.965206][T21651] gretap0: left promiscuous mode
[  639.033625][T21651] $Hÿ: left promiscuous mode
[  639.039150][ T5880] usb 4-1: USB disconnect, device number 29
[  639.079207][T21651] bond_slave_0: left promiscuous mode
[  639.106019][T21651] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[  639.110092][ T5790] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  639.125332][T21651] caif0: left allmulticast mode
[  639.135307][T21651] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  639.760769][   T27] kauditd_printk_skb: 7 callbacks suppressed
[  639.760793][   T27] audit: type=1326 audit(1759317121.235:2860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.5.7037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  639.817380][T21670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7039'.
[  639.856052][   T27] audit: type=1326 audit(1759317121.235:2861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.5.7037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  639.860100][T21670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7039'.
[  639.924428][   T27] audit: type=1326 audit(1759317121.235:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.5.7037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  639.948111][   T27] audit: type=1326 audit(1759317121.235:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.5.7037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  639.971556][   T27] audit: type=1326 audit(1759317121.235:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.5.7037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6155f8eec9 code=0x7ffc0000
[  640.405741][T21689] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7048'.
[  640.489247][T21692] loop1: detected capacity change from 0 to 2048
[  640.557748][T21692] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  641.117240][T21713] netlink: 52 bytes leftover after parsing attributes in process `syz.1.7061'.
[  641.459451][ T5880] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  641.699777][ T5880] usb 4-1: Using ep0 maxpacket: 16
[  641.713953][ T5880] usb 4-1: config 0 has an invalid interface number: 214 but max is 0
[  641.731795][ T5880] usb 4-1: config 0 has no interface number 0
[  641.748157][ T5880] usb 4-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[  641.787778][ T5880] usb 4-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  641.807318][ T5880] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  641.831893][ T5880] usb 4-1: Product: syz
[  641.836160][ T5880] usb 4-1: Manufacturer: syz
[  641.849508][ T5880] usb 4-1: SerialNumber: syz
[  641.860818][ T5880] usb 4-1: config 0 descriptor??
[  641.877345][T21741] netlink: 'syz.2.7073': attribute type 10 has an invalid length.
[  641.931753][T21741] team0: Port device syz_tun added
[  641.965271][   T50] Bluetooth: hci3: command 0x0406 tx timeout
[  642.323390][ T5880] usbtouchscreen: probe of 4-1:0.214 failed with error -71
[  642.345481][ T5880] usb 4-1: USB disconnect, device number 30
[  642.636142][T21762] loop2: detected capacity change from 0 to 4096
[  642.647043][T21762] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  642.696556][T21762] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  642.736069][   T27] audit: type=1800 audit(1759317124.205:2865): pid=21762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.7083" name="file1" dev="loop2" ino=30 res=0 errno=0
[  642.879953][   T23] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  643.069714][   T23] usb 2-1: Using ep0 maxpacket: 32
[  643.083266][   T23] usb 2-1: config 0 has an invalid descriptor of length 49, skipping remainder of the config
[  643.105108][   T23] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  643.131878][   T23] usb 2-1: New USB device found, idVendor=0421, idProduct=00a0, bcdDevice=c8.e1
[  643.147376][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  643.158173][   T23] usb 2-1: config 0 descriptor??
[  643.182203][   T23] usb 2-1: bad CDC descriptors
[  643.202062][   T23] usb 2-1: bad CDC descriptors
[  643.294356][T21780] loop2: detected capacity change from 0 to 764
[  643.446623][ T5849] usb 2-1: USB disconnect, device number 28
[  643.580146][T21786] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  644.165934][T21806] netdevsim netdevsim2: Direct firmware load for  failed with error -2
[  644.178400][T21808] netlink: 'syz.1.7106': attribute type 2 has an invalid length.
[  644.211515][T21806] netdevsim netdevsim2: Falling back to sysfs fallback for: 
[  644.348424][T21813] loop1: detected capacity change from 0 to 512
[  644.395130][T21813] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  644.433223][T21813] ext4 filesystem being mounted at /1792/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  644.504563][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  644.805804][T21824] loop1: detected capacity change from 0 to 4096
[  644.838993][T21824] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  644.949860][T21824] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  645.032885][   T27] audit: type=1800 audit(1759317126.505:2866): pid=21824 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.7110" name="file1" dev="loop1" ino=30 res=0 errno=0
[  645.053560][    C0] vkms_vblank_simulate: vblank timer overrun
[  645.283586][T21838] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7118'.
[  645.369513][T16631] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  645.526460][   T27] audit: type=1326 audit(1759317126.995:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21845 comm="syz.1.7123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  645.567418][   T27] audit: type=1326 audit(1759317126.995:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21845 comm="syz.1.7123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  645.569060][T16631] usb 4-1: config 0 has an invalid interface number: 83 but max is 0
[  645.604164][   T27] audit: type=1326 audit(1759317126.995:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21845 comm="syz.1.7123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  645.632933][   T27] audit: type=1326 audit(1759317126.995:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21845 comm="syz.1.7123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  645.640545][T16631] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  645.655403][    C0] vkms_vblank_simulate: vblank timer overrun
[  645.707733][   T27] audit: type=1326 audit(1759317126.995:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21845 comm="syz.1.7123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  645.729470][T16631] usb 4-1: config 0 has no interface number 0
[  645.744931][T16631] usb 4-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=39.61
[  645.769088][T16631] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  645.792028][T16631] usb 4-1: config 0 descriptor??
[  645.809170][T16631] ttusbir 4-1:0.83: cannot find expected altsetting
[  646.002984][T21858] loop1: detected capacity change from 0 to 4096
[  646.036312][T21860] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  646.040720][T21858] ntfs: (device loop1): check_mft_mirror(): Incomplete multi sector transfer detected in mft record 2.
[  646.049554][T21860] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  646.056389][T21858] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  646.085090][T16631] usb 4-1: USB disconnect, device number 31
[  646.139520][T21858] ntfs: volume version 3.1.
[  646.160525][T21858] ntfs: (device loop1): map_mft_record_page(): Mft record 0x2 is corrupt.  Run chkdsk.
[  646.177976][T21858] ntfs: (device loop1): map_mft_record(): Failed with error code 5.
[  646.202310][T21862] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7129'.
[  647.256002][T21893] tmpfs: Bad value for 'mpol'
[  647.611088][T21881] loop1: detected capacity change from 0 to 32768
[  647.638148][T21881] 
[  647.638148][T21881]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.638148][T21881] 
[  647.715868][T21881] 
[  647.715868][T21881]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.715868][T21881] 
[  647.757197][T21881] 
[  647.757197][T21881]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.757197][T21881] 
[  647.775148][T21881] 
[  647.775148][T21881]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.775148][T21881] 
[  647.795263][T21881] 
[  647.795263][T21881]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.795263][T21881] 
[  647.821006][T21881] 
[  647.821006][T21881]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.821006][T21881] 
[  647.823806][T21907] loop2: detected capacity change from 0 to 512
[  647.908312][T21907] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  647.910258][T21881] 
[  647.910258][T21881]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.910258][T21881] 
[  647.969934][  T110] 
[  647.969934][  T110]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  647.969934][  T110] 
[  647.984640][T21907] ext4 filesystem being mounted at /1861/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  648.120756][ T5790] 
[  648.120756][ T5790]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  648.120756][ T5790] 
[  648.163491][ T5790] 
[  648.163491][ T5790]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  648.163491][ T5790] 
[  648.275795][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  648.964220][T21941] netlink: 'syz.3.7167': attribute type 5 has an invalid length.
[  649.109483][ T5849] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  649.141227][T21945] loop5: detected capacity change from 0 to 2048
[  649.188742][T21945] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  649.290912][T21951] x_tables: duplicate underflow at hook 4
[  649.339755][ T5849] usb 2-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1
[  649.348852][ T5849] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  649.366261][ T5849] usb 2-1: Product: syz
[  649.372901][ T5849] usb 2-1: Manufacturer: syz
[  649.377543][ T5849] usb 2-1: SerialNumber: syz
[  649.386008][ T5849] usb 2-1: config 0 descriptor??
[  649.618967][ T5849] int51x1: probe of 2-1:0.0 failed with error -22
[  649.837285][ T5880] usb 2-1: USB disconnect, device number 29
[  651.157745][T22016] netlink: 56 bytes leftover after parsing attributes in process `syz.3.7203'.
[  651.209989][ T5794] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  651.451498][ T5794] usb 3-1: config 0 has an invalid interface number: 216 but max is 0
[  651.469961][ T5794] usb 3-1: config 0 has no interface number 0
[  651.476167][ T5794] usb 3-1: config 0 interface 216 altsetting 4 bulk endpoint 0x8F has invalid maxpacket 64
[  651.502250][ T5794] usb 3-1: config 0 interface 216 altsetting 4 endpoint 0x1 has invalid wMaxPacketSize 0
[  651.529685][ T5794] usb 3-1: config 0 interface 216 has no altsetting 0
[  651.538112][ T5794] usb 3-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c1.2e
[  651.567680][ T5794] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  651.593036][ T5794] usb 3-1: config 0 descriptor??
[  651.599707][T22008] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  651.621396][ T5794] usb 3-1: NFC: intf ffff88802393d000 id ffffffff8d63ae60
[  651.881212][ T5794] usb 3-1: USB disconnect, device number 26
[  651.956733][T22040] loop1: detected capacity change from 0 to 256
[  651.964758][T22040] exfat: Deprecated parameter 'namecase'
[  651.978255][T22040] exfat: Deprecated parameter 'namecase'
[  652.032770][T22040] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  652.732767][T22067] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7228'.
[  652.897075][T22071] netlink: 72 bytes leftover after parsing attributes in process `syz.3.7230'.
[  652.917160][T22071] netlink: 172 bytes leftover after parsing attributes in process `syz.3.7230'.
[  653.539565][T22097] mmap: syz.1.7243 (22097): VmData 175878144 exceed data ulimit 10. Update limits or use boot option ignore_rlimit_data.
[  653.941515][T22110] netlink: 40 bytes leftover after parsing attributes in process `syz.3.7249'.
[  654.501415][T22128] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7256'.
[  654.613000][T22104] loop5: detected capacity change from 0 to 32768
[  654.662621][T22104] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode.
[  654.985593][T15920] ocfs2: Unmounting device (7,5) on (node local)
[  655.044546][T22143] netlink: 'syz.1.7264': attribute type 1 has an invalid length.
[  655.062814][T22143] netlink: 'syz.1.7264': attribute type 2 has an invalid length.
[  655.666467][T22138] loop2: detected capacity change from 0 to 32768
[  655.721394][T22138] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  655.819604][ T5849] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  655.842155][T22138] OCFS2: ERROR (device loop2): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 2048 but claims that 39166 are free
[  655.893818][T22138] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  655.929407][T22138] OCFS2: File system is now read-only.
[  655.955331][T22138] (syz.2.7261,22138,1):ocfs2_search_chain:1761 ERROR: status = -30
[  655.983250][T22138] (syz.2.7261,22138,1):ocfs2_search_chain:1871 ERROR: status = -30
[  655.994288][T22138] (syz.2.7261,22138,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  656.004839][T22138] (syz.2.7261,22138,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  656.018258][T22138] (syz.2.7261,22138,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  656.027874][ T5849] usb 4-1: Using ep0 maxpacket: 16
[  656.046489][ T5849] usb 4-1: config 0 has an invalid interface number: 8 but max is 0
[  656.057081][ T5849] usb 4-1: config 0 has no interface number 0
[  656.063728][T22138] (syz.2.7261,22138,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  656.075201][ T5849] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 208, changing to 11
[  656.086721][T22138] (syz.2.7261,22138,1):ocfs2_mknod_locked:639 ERROR: status = -30
[  656.095245][ T5849] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 25296, setting to 1024
[  656.106978][T22138] (syz.2.7261,22138,1):ocfs2_mknod:385 ERROR: status = -30
[  656.114825][T22138] (syz.2.7261,22138,1):ocfs2_mknod:502 ERROR: status = -30
[  656.123395][T22138] (syz.2.7261,22138,1):ocfs2_mkdir:659 ERROR: status = -30
[  656.133256][ T5849] usb 4-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  656.149383][ T5849] usb 4-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  656.167762][ T5849] usb 4-1: Product: syz
[  656.176542][ T5849] usb 4-1: SerialNumber: syz
[  656.186856][ T5849] usb 4-1: config 0 descriptor??
[  656.200874][ T5849] cm109 4-1:0.8: invalid payload size 1024, expected 4
[  656.216629][ T5799] ocfs2: Unmounting device (7,2) on (node local)
[  656.221248][ T5849] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.8/input/input35
[  656.721739][    C1] cm109 4-1:0.8: cm109_urb_irq_callback: urb status -71
[  656.723288][ T5794] usb 4-1: USB disconnect, device number 32
[  656.728747][    C1] cm109 4-1:0.8: cm109_urb_irq_callback: usb_submit_urb (urb_ctl) failed -19
[  656.757325][ T5794] cm109 4-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  657.157363][T22197] loop1: detected capacity change from 0 to 256
[  657.165988][T22197] exfat: Deprecated parameter 'utf8'
[  657.185234][T22197] exfat: Deprecated parameter 'namecase'
[  657.248317][T22197] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001016b, chksum : 0xc5c53e17, utbl_chksum : 0xe619d30d)
[  657.443383][T22203] tmpfs: Bad value for 'mpol'
[  657.629267][T22209] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[  657.715153][T22212] loop2: detected capacity change from 0 to 1024
[  657.762953][T22212] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  657.882905][T22212] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  657.929670][T22223] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7300'.
[  657.963389][T22212] EXT4-fs error (device loop2): ext4_xattr_inode_iget:440: inode #11: comm syz.2.7296: missing EA_INODE flag
[  657.977185][T22223] netlink: 68 bytes leftover after parsing attributes in process `syz.1.7300'.
[  658.029672][T22212] EXT4-fs (loop2): Remounting filesystem read-only
[  658.126987][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  658.545043][T22241] netlink: 'syz.2.7307': attribute type 2 has an invalid length.
[  658.619760][T22243] tmpfs: Group quota block hardlimit too large.
[  659.165149][T22257] netlink: 2 bytes leftover after parsing attributes in process `syz.1.7318'.
[  659.414959][T22273] loop1: detected capacity change from 0 to 256
[  659.601172][T22273] FAT-fs (loop1): Directory bread(block 64) failed
[  659.613150][T22273] FAT-fs (loop1): Directory bread(block 65) failed
[  659.622370][T22273] FAT-fs (loop1): Directory bread(block 66) failed
[  659.628949][T22273] FAT-fs (loop1): Directory bread(block 67) failed
[  659.636912][T22273] FAT-fs (loop1): Directory bread(block 68) failed
[  659.658055][T22273] FAT-fs (loop1): Directory bread(block 69) failed
[  659.692043][T22273] FAT-fs (loop1): Directory bread(block 70) failed
[  659.698645][T22273] FAT-fs (loop1): Directory bread(block 71) failed
[  659.720631][T22273] FAT-fs (loop1): Directory bread(block 72) failed
[  659.739429][T22273] FAT-fs (loop1): Directory bread(block 73) failed
[  659.994031][T22287] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  660.001375][T22287] IPv6: NLM_F_CREATE should be set when creating new route
[  660.008752][T22287] IPv6: NLM_F_CREATE should be set when creating new route
[  660.758273][T22309] loop2: detected capacity change from 0 to 4096
[  660.790811][T22309] __ntfs_warning: 4 callbacks suppressed
[  660.790828][T22309] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  660.889988][T22309] ntfs: (device loop2): read_ntfs_boot_sector(): Primary boot sector is invalid.
[  660.924077][T22309] ntfs: (device loop2): read_ntfs_boot_sector(): Hot-fix: Recovery of primary boot sector failed: Read-only mount.
[  660.979120][T22309] ntfs: (device loop2): read_ntfs_boot_sector(): Using backup boot sector.
[  661.035041][T22321] loop1: detected capacity change from 0 to 256
[  661.040911][T22309] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  661.068655][T22321] exfat: Deprecated parameter 'namecase'
[  661.077809][T22309] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  661.120114][T22321] exfat: Deprecated parameter 'namecase'
[  661.139713][T22321] exfat: Deprecated parameter 'utf8'
[  661.186379][T22309] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  661.213099][T22309] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5).
[  661.245416][T22309] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  661.255181][T22309] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  661.280644][T22321] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012366, chksum : 0xd06b6363, utbl_chksum : 0xe619d30d)
[  661.344649][T22309] ntfs: volume version 3.1.
[  661.709642][ T5862] usb 4-1: new full-speed USB device number 33 using dummy_hcd
[  661.782054][T22337] netlink: 'syz.1.7356': attribute type 21 has an invalid length.
[  661.810118][T22337] netlink: 128 bytes leftover after parsing attributes in process `syz.1.7356'.
[  661.829055][T22337] netlink: 'syz.1.7356': attribute type 4 has an invalid length.
[  661.940827][ T5862] usb 4-1: config 0 has an invalid interface number: 90 but max is 0
[  661.948993][ T5862] usb 4-1: config 0 has no interface number 0
[  661.969465][ T5862] usb 4-1: config 0 interface 90 altsetting 0 endpoint 0x85 has invalid maxpacket 512, setting to 64
[  661.983920][ T5862] usb 4-1: New USB device found, idVendor=077d, idProduct=0410, bcdDevice=3a.fa
[  662.014070][ T5862] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  662.023479][T22345] overlayfs: missing 'lowerdir'
[  662.034661][ T5862] usb 4-1: Product: syz
[  662.038887][ T5862] usb 4-1: Manufacturer: syz
[  662.067696][ T5862] usb 4-1: SerialNumber: syz
[  662.077562][ T5862] usb 4-1: config 0 descriptor??
[  662.093633][T22328] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  662.225694][T22352] trusted_key: encrypted_key: insufficient parameters specified
[  662.336387][T22328] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  662.383707][T22328] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  662.449739][ T5862] powermate: Expected payload of 3--6 bytes, found 64 bytes!
[  662.502007][ T5862] input: Griffin PowerMate as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.90/input/input36
[  662.550150][    C1] powermate: config urb returned -71
[  662.556312][    C1] powermate: config urb returned -71
[  662.562646][    C1] powermate: config urb returned -71
[  662.568107][    C1] powermate: config urb returned -71
[  662.587477][ T5862] usb 4-1: USB disconnect, device number 33
[  662.593656][    C1] powermate 4-1:0.90: powermate_irq - usb_submit_urb failed with result: -19
[  662.794867][T22369] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  662.805492][T22369] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  662.815764][T22369] overlayfs: missing 'lowerdir'
[  663.377966][T22390] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7382'.
[  663.419801][ T5862] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  663.609584][ T5862] usb 3-1: Using ep0 maxpacket: 16
[  663.639856][ T5862] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[  663.648874][ T5862] usb 3-1: config 0 has no interface number 0
[  663.665990][ T5862] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 208, changing to 11
[  663.692218][ T5862] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 25296, setting to 1024
[  663.721379][ T5862] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  663.746246][ T5862] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  663.759572][ T5862] usb 3-1: Product: syz
[  663.763909][ T5862] usb 3-1: SerialNumber: syz
[  663.791507][ T5862] usb 3-1: config 0 descriptor??
[  663.812423][ T5862] cm109 3-1:0.8: invalid payload size 1024, expected 4
[  663.841563][ T5862] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input37
[  663.894965][T22403] xt_TPROXY: Can be used only with -p tcp or -p udp
[  664.361429][    C1] cm109 3-1:0.8: cm109_urb_irq_callback: urb status -71
[  664.369085][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.376484][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.383733][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.394120][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.401327][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.409724][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.417050][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.424271][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.433276][ T5849] usb 3-1: USB disconnect, device number 27
[  664.439517][    C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  664.439544][    C1] cm109 3-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  664.483374][ T5849] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  664.533343][T22396] loop1: detected capacity change from 0 to 32768
[  664.994739][T22420] sctp: [Deprecated]: syz.3.7398 (pid 22420) Use of int in max_burst socket option.
[  664.994739][T22420] Use struct sctp_assoc_value instead
[  665.028666][T22421] loop1: detected capacity change from 0 to 1024
[  665.042720][T22421] EXT4-fs: Ignoring removed nobh option
[  665.064020][T22421] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  665.111231][T22423] PKCS7: Unknown OID: [4] 0.0
[  665.118614][T22421] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #11: comm syz.1.7397: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  665.133294][T22423] PKCS7: Only support pkcs7_signedData type
[  665.180000][T22421] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.7397: couldn't read orphan inode 11 (err -117)
[  665.204218][T22421] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  665.445759][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.535690][T22435] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7405'.
[  665.888107][T22448] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (6)
[  666.846083][T22483] netlink: 'syz.3.7427': attribute type 1 has an invalid length.
[  667.492826][T22503] loop2: detected capacity change from 0 to 2048
[  667.556012][T22507] loop1: detected capacity change from 0 to 512
[  667.617489][T22503] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  667.680817][T22507] EXT4-fs: Ignoring removed mblk_io_submit option
[  667.720131][T22507] EXT4-fs (loop1): orphan cleanup on readonly fs
[  667.726672][T22507] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[  667.839034][T22507] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.7440: attempt to clear invalid blocks 2 len 1
[  667.922701][T22507] EXT4-fs (loop1): Remounting filesystem read-only
[  667.960144][T22507] EXT4-fs (loop1): 1 truncate cleaned up
[  667.989915][T22507] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  668.007456][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  668.126355][T22521] QAT: Stopping all acceleration devices.
[  668.165036][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  668.360859][T22527] netlink: 128 bytes leftover after parsing attributes in process `syz.5.7449'.
[  668.401547][T22527] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7449'.
[  669.739666][T22576] comedi comedi0: dt2817: I/O port conflict (0x10000,5)
[  669.769784][T22578] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7472'.
[  669.797598][T22578] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  669.923029][T22582] netlink: 32 bytes leftover after parsing attributes in process `syz.3.7476'.
[  670.831533][T22616] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.7491'.
[  670.838567][T22615] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  670.856959][T22615] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  671.783772][T22642] loop5: detected capacity change from 0 to 4096
[  671.819864][T22642] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[  671.973813][T22642] ntfs3: loop5: failed to convert "c46c" to iso8859-3
[  672.878735][T22686] netlink: 288 bytes leftover after parsing attributes in process `syz.2.7526'.
[  673.644292][T22716] netlink: 68 bytes leftover after parsing attributes in process `syz.1.7541'.
[  673.989621][ T5849] usb 3-1: new full-speed USB device number 28 using dummy_hcd
[  674.191909][ T5849] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 4
[  674.219929][ T5849] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  674.229868][ T5849] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  674.237918][ T5849] usb 3-1: Product: syz
[  674.253734][ T5849] usb 3-1: Manufacturer: syz
[  674.258384][ T5849] usb 3-1: SerialNumber: syz
[  674.293528][ T5849] usb 3-1: config 0 descriptor??
[  674.311145][ T5849] hub 3-1:0.0: bad descriptor, ignoring hub
[  674.317127][ T5849] hub: probe of 3-1:0.0 failed with error -5
[  674.336477][T22740] cgroup: name respecified
[  674.348652][ T5849] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input38
[  674.565103][   T27] kauditd_printk_skb: 11 callbacks suppressed
[  674.565121][   T27] audit: type=1326 audit(1759317156.035:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22745 comm="syz.3.7556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  674.667872][   T27] audit: type=1326 audit(1759317156.035:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22745 comm="syz.3.7556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  674.733660][   T27] audit: type=1326 audit(1759317156.085:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22745 comm="syz.3.7556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  674.816870][   T27] audit: type=1326 audit(1759317156.085:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22745 comm="syz.3.7556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  674.888392][   T27] audit: type=1326 audit(1759317156.085:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22745 comm="syz.3.7556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8343d8eec9 code=0x7ffc0000
[  674.961543][ T5862] usb 3-1: USB disconnect, device number 28
[  675.772956][T22784] autofs4:pid:22784:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.768), cmd(0xc0189375)
[  675.788963][T22784] autofs4:pid:22784:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375)
[  675.969749][T22788] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7577'.
[  676.265069][T22794] netlink: 224 bytes leftover after parsing attributes in process `syz.2.7580'.
[  676.295059][T22794] IPv6: Can't replace route, no match found
[  676.318800][T22796] xt_TPROXY: Can be used only with -p tcp or -p udp
[  676.567443][T22782] loop1: detected capacity change from 0 to 32768
[  676.632210][T22782] ERROR: (device loop1): diAllocAG: numfree > numinos
[  676.632210][T22782] 
[  676.674432][T22782] ERROR: (device loop1): remounting filesystem as read-only
[  676.692760][T22782] ialloc: diAlloc returned -5!
[  676.757139][T22774] loop5: detected capacity change from 0 to 32768
[  676.828929][T22774] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  676.852790][T22774] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  676.995524][T22774] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[  677.196537][T22774] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  677.659639][T22817] netlink: 80 bytes leftover after parsing attributes in process `syz.2.7592'.
[  677.873349][T22823] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  677.889603][T22823] netdevsim netdevsim5 netdevsim0: left allmulticast mode
[  677.902857][T22823] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  677.978549][T22825] overlayfs: cannot append lower layer
[  678.959021][T22862] netlink: 'syz.1.7613': attribute type 9 has an invalid length.
[  678.973713][T22862] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.7613'.
[  679.569560][T22884] bridge7: entered promiscuous mode
[  679.824712][ T5862] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  680.009702][ T5862] usb 2-1: Using ep0 maxpacket: 32
[  680.018693][ T5862] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  680.039870][ T5862] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  680.063491][ T5862] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  680.088870][ T5862] usb 2-1: config 1 has no interface number 0
[  680.105717][ T5862] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  680.126120][ T5862] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  680.149564][ T5862] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  680.158645][ T5862] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  680.194971][ T5862] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  680.421481][ T5862] snd_usb_pod 2-1:1.1: invalid control EP
[  680.427781][ T5862] snd_usb_pod 2-1:1.1: cannot start listening: -22
[  680.449681][ T5862] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  680.463371][ T5862] snd_usb_pod: probe of 2-1:1.1 failed with error -22
[  680.597712][T22896] loop2: detected capacity change from 0 to 32768
[  680.658141][T22896] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  680.682775][ T5862] usb 2-1: USB disconnect, device number 30
[  680.764524][T22896] XFS (loop2): Ending clean mount
[  680.799760][T22896] XFS (loop2): Quotacheck needed: Please wait.
[  680.883539][T22896] XFS (loop2): Quotacheck: Done.
[  681.010876][ T5799] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  681.336702][T22916] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7637'.
[  681.493936][T22921] netlink: 'syz.3.7638': attribute type 62 has an invalid length.
[  682.279353][T22949] netlink: 52 bytes leftover after parsing attributes in process `syz.1.7651'.
[  682.587066][T22961] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7659'.
[  682.655451][T22961] bridge5: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  682.789083][ T5849] IPVS: starting estimator thread 0...
[  682.889609][T22968] IPVS: using max 18 ests per chain, 43200 per kthread
[  683.387280][T22990] loop2: detected capacity change from 0 to 512
[  683.432295][T22990] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec018, mo2=0002]
[  683.449668][T22990] System zones: 0-2, 18-18, 34-34
[  683.482196][T22990] EXT4-fs (loop2): orphan cleanup on readonly fs
[  683.551936][T22990] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.7672: bg 0: block 248: padding at end of block bitmap is not set
[  683.627967][T22990] Quota error (device loop2): write_blk: dquota write failed
[  683.669500][T22990] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  683.709600][T22990] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.7672: Failed to acquire dquot type 1
[  683.762807][T22990] EXT4-fs (loop2): 1 orphan inode deleted
[  683.770160][   T42] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5
[  683.795670][   T42] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:2: Failed to release dquot type 1
[  683.857172][T22990] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  683.954359][T22990] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.7672: deleted inode referenced: 12
[  684.085251][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  684.859293][T23035] loop2: detected capacity change from 0 to 16
[  684.879626][T23035] erofs: (device loop2): mounted with root inode @ nid 36.
[  684.904035][T23035] syz.2.7694: attempt to access beyond end of device
[  684.904035][T23035] loop2: rw=0, sector=4294967295, nr_sectors = 1 limit=16
[  685.009653][ T5794] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  685.018725][T23037] loop2: detected capacity change from 0 to 64
[  685.144875][T23027] loop1: detected capacity change from 0 to 32768
[  685.167386][T23027] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  685.200741][ T5794] usb 4-1: Using ep0 maxpacket: 16
[  685.206056][T23027] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  685.217272][ T5794] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[  685.226799][ T5794] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  685.238862][ T5794] usb 4-1: config 0 descriptor??
[  685.250525][ T5794] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  685.358247][ T5790] ocfs2: Unmounting device (7,1) on (node local)
[  685.460349][ T5794] usb 4-1: Detected FT232A
[  685.477855][ T5794] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  685.677847][ T5794] usb 4-1: USB disconnect, device number 34
[  685.701960][ T5794] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  685.730113][ T5794] ftdi_sio 4-1:0.0: device disconnected
[  685.975639][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  685.982320][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  686.122071][T23063] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7707'.
[  686.937468][T23093] loop1: detected capacity change from 0 to 2048
[  686.986908][T23093] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  687.058406][ T5794] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  687.154653][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  687.312439][T23104] loop2: detected capacity change from 0 to 1764
[  687.315439][ T5794] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config
[  687.347216][ T5794] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  687.371560][T23104] iso9660: Corrupted directory entry in block 2 of inode 1920
[  687.373316][ T5794] usb 4-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  687.404206][ T5794] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  687.429268][ T5794] usb 4-1: Product: syz
[  687.442112][ T5794] usb 4-1: Manufacturer: syz
[  687.463303][ T5794] usb 4-1: SerialNumber: syz
[  687.497045][ T5794] rtl8150 4-1:1.0: couldn't find required endpoints
[  687.530511][ T5794] rtl8150: probe of 4-1:1.0 failed with error -5
[  687.792610][ T5849] usb 4-1: USB disconnect, device number 35
[  687.801140][T23116] loop5: detected capacity change from 0 to 4096
[  687.808678][T23116] ntfs: (device loop5): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  687.845693][T23116] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid.
[  687.865054][T23116] ntfs: (device loop5): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy.
[  687.928024][T23116] ntfs: (device loop5): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  687.968330][T23116] ntfs: (device loop5): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  688.005143][T23116] ntfs: (device loop5): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  688.032872][T23116] ntfs: (device loop5): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5).
[  688.099870][T23116] ntfs: volume version 3.1.
[  688.930791][T23152] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7750'.
[  689.009505][T23158] netlink: 5 bytes leftover after parsing attributes in process `syz.1.7753'.
[  689.098101][T23158] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  689.961971][T23189] loop5: detected capacity change from 0 to 256
[  690.077076][T23194] loop2: detected capacity change from 0 to 65
[  690.094746][T23189] FAT-fs (loop5): Directory bread(block 64) failed
[  690.103335][T23194] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  690.126530][T23189] FAT-fs (loop5): Directory bread(block 65) failed
[  690.147107][T23189] FAT-fs (loop5): Directory bread(block 66) failed
[  690.190139][T23189] FAT-fs (loop5): Directory bread(block 67) failed
[  690.196888][T23189] FAT-fs (loop5): Directory bread(block 68) failed
[  690.232784][T23189] FAT-fs (loop5): Directory bread(block 69) failed
[  690.280465][T23189] FAT-fs (loop5): Directory bread(block 70) failed
[  690.287070][T23189] FAT-fs (loop5): Directory bread(block 71) failed
[  690.347655][T23189] FAT-fs (loop5): Directory bread(block 72) failed
[  690.389653][T23189] FAT-fs (loop5): Directory bread(block 73) failed
[  691.063991][T23219] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7784'.
[  691.118320][T23222] loop1: detected capacity change from 0 to 512
[  691.158985][T23222] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec018, mo2=0002]
[  691.189270][T23222] System zones: 0-2, 18-18, 34-34
[  691.198949][T23222] EXT4-fs (loop1): orphan cleanup on readonly fs
[  691.223546][T23222] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.7783: bg 0: block 248: padding at end of block bitmap is not set
[  691.243993][T23222] __quota_error: 13 callbacks suppressed
[  691.244008][T23222] Quota error (device loop1): write_blk: dquota write failed
[  691.258094][T23222] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  691.277114][T23222] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.7783: Failed to acquire dquot type 1
[  691.331302][T23222] EXT4-fs (loop1): 1 orphan inode deleted
[  691.364651][   T42] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-5
[  691.383315][   T42] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:2: Failed to release dquot type 1
[  691.422558][T23222] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  691.450076][T23235] netlink: 'syz.3.7790': attribute type 21 has an invalid length.
[  691.458185][T23235] netlink: 'syz.3.7790': attribute type 6 has an invalid length.
[  691.466458][T23235] netlink: 132 bytes leftover after parsing attributes in process `syz.3.7790'.
[  691.514272][T23222] EXT4-fs error (device loop1): ext4_lookup:1862: inode #2: comm syz.1.7783: deleted inode referenced: 12
[  691.596025][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  691.686918][T23240] loop1: detected capacity change from 0 to 164
[  691.689462][ T5849] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  691.714648][T23240] iso9660: Corrupted directory entry in block 0 of inode 1792
[  691.890676][ T5849] usb 3-1: Using ep0 maxpacket: 32
[  691.905874][ T5849] usb 3-1: New USB device found, idVendor=0eef, idProduct=0001, bcdDevice= 0.00
[  691.924065][ T5849] usb 3-1: New USB device strings: Mfr=0, Product=3, SerialNumber=0
[  691.942746][ T5849] usb 3-1: Product: syz
[  691.960467][ T5849] usb 3-1: config 0 descriptor??
[  692.078332][T23248] loop1: detected capacity change from 0 to 4096
[  692.094448][T23248] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  692.182375][ T5849] input: syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input39
[  692.186716][T23248] ntfs: (device loop1): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  692.212600][T23248] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing.
[  692.226542][T23248] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  692.250302][T23248] ntfs: (device loop1): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  692.315188][T23248] ntfs: volume version 3.1.
[  692.331553][T23248] ntfs: (device loop1): load_and_init_quota(): Failed to find inode number for $Quota.
[  692.379809][T23248] ntfs: (device loop1): load_system_files(): Failed to load $Quota.  Will not be able to remount read-write.  Run chkdsk.
[  692.385355][ T5849] usb 3-1: USB disconnect, device number 29
[  692.437919][T23252] usb usb8: check_ctrlrecip: process 23252 (syz.3.7798) requesting ep 01 but needs 81
[  692.459041][T23252] usb usb8: usbfs: process 23252 (syz.3.7798) did not claim interface 0 before use
[  693.040601][T23270] netlink: 'syz.1.7806': attribute type 25 has an invalid length.
[  693.156357][T23276] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT
[  693.888385][T23305] No such timeout policy "syz0"
[  694.487094][T23328] loop2: detected capacity change from 0 to 16
[  694.494376][T23328] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  694.595127][T23332] netlink: 'syz.1.7836': attribute type 1 has an invalid length.
[  694.777038][T23336] netlink: 'syz.2.7838': attribute type 1 has an invalid length.
[  694.814494][T23340] loop1: detected capacity change from 0 to 65
[  694.883736][T23340] BFS-fs: bfs_fill_super(): NOTE: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
[  695.650460][T23371] xt_bpf: check failed: parse error
[  695.890126][T23379] loop1: detected capacity change from 0 to 1024
[  695.965535][T23379] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  696.008704][T23379] ext4 filesystem being mounted at /2005/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  696.021849][T23388] tmpfs: Bad value for 'nr_blocks'
[  696.105607][T23379] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz.1.7860: directory missing '..'
[  696.109493][ T5849] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  696.281529][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  696.329907][ T5849] usb 4-1: config index 0 descriptor too short (expected 39, got 27)
[  696.367120][ T5849] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  696.416264][ T5849] usb 4-1: config 0 interface 0 has no altsetting 0
[  696.438439][ T5849] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  696.458320][T23399] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan0, syncid = 0, id = 0
[  696.478354][ T5849] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  696.506836][ T5849] usb 4-1: Product: syz
[  696.514613][ T5849] usb 4-1: Manufacturer: syz
[  696.519259][ T5849] usb 4-1: SerialNumber: syz
[  696.566753][ T5849] usb 4-1: config 0 descriptor??
[  696.600774][ T5849] hub 4-1:0.0: bad descriptor, ignoring hub
[  696.615706][ T5849] hub: probe of 4-1:0.0 failed with error -5
[  696.656663][ T5849] usb 4-1: selecting invalid altsetting 0
[  696.695603][T23405] netlink: 'syz.5.7870': attribute type 30 has an invalid length.
[  696.902636][T23409] netlink: 'syz.2.7873': attribute type 1 has an invalid length.
[  696.945464][T23409] netlink: 'syz.2.7873': attribute type 3 has an invalid length.
[  696.967301][T23409] netlink: 224 bytes leftover after parsing attributes in process `syz.2.7873'.
[  697.020357][ T5849] usb 4-1: USB disconnect, device number 36
[  697.182811][T23416] loop1: detected capacity change from 0 to 512
[  697.246216][T23416] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.7876: corrupted inode contents
[  697.333483][T23416] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #16: comm syz.1.7876: mark_inode_dirty error
[  697.379197][T23416] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.7876: corrupted inode contents
[  697.410237][T23416] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.7876: mark_inode_dirty error
[  697.472354][T23416] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.7876: corrupted inode contents
[  697.516123][T23416] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  697.526814][T23416] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.7876: corrupted inode contents
[  697.545660][T23416] EXT4-fs error (device loop1): ext4_truncate:4288: inode #16: comm syz.1.7876: mark_inode_dirty error
[  697.558918][T23416] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  697.577779][T23416] EXT4-fs (loop1): 1 truncate cleaned up
[  697.585514][T23416] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  697.598752][T23416] ext4 filesystem being mounted at /2009/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  697.613484][ T2933] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  697.634437][ T2933] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:9: Failed to release dquot type 1
[  697.780588][T23413] netdevsim netdevsim5 netdevsim1: Unsupported IPsec algorithm - please use rfc4106(gcm(aes))
[  697.824104][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  697.989614][T23435] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7882'.
[  698.020530][T23435] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7882'.
[  698.045504][T23437] loop5: detected capacity change from 0 to 256
[  698.092860][T23435] bridge6: entered promiscuous mode
[  698.098175][T23435] bridge6: entered allmulticast mode
[  698.107671][T23437] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x2e76b09e, utbl_chksum : 0xe619d30d)
[  698.125170][T23440] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7885'.
[  698.140589][T23440] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7885'.
[  698.172118][T23440] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7885'.
[  698.478634][T23449] IPv6: sit2: Disabled Multicast RS
[  698.687794][T23458] netlink: 132 bytes leftover after parsing attributes in process `syz.1.7893'.
[  699.013646][T23470] loop5: detected capacity change from 0 to 256
[  699.544006][T23487] netlink: 10 bytes leftover after parsing attributes in process `syz.3.7907'.
[  699.961629][T23505] loop5: detected capacity change from 0 to 1764
[  700.210477][T23514] netlink: 'syz.2.7920': attribute type 4 has an invalid length.
[  700.670974][   T27] audit: type=1326 audit(1759317182.145:2877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23531 comm="syz.3.7928" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8343d8eec9 code=0x0
[  700.677530][T23534] loop5: detected capacity change from 0 to 64
[  700.692830][    C0] vkms_vblank_simulate: vblank timer overrun
[  700.724575][T23536] xt_cgroup: invalid path, errno=-2
[  701.019196][T23542] loop5: detected capacity change from 0 to 1024
[  701.036026][T23542] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  701.050526][T23546] loop2: detected capacity change from 0 to 256
[  701.067910][T23546] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  701.102398][T23542] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  701.128914][T23546] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  701.203186][T23542] EXT4-fs error (device loop5): ext4_xattr_inode_iget:440: inode #11: comm syz.5.7933: missing EA_INODE flag
[  701.264444][T23542] EXT4-fs (loop5): Remounting filesystem read-only
[  701.400580][T15920] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  701.540514][T23554] loop1: detected capacity change from 0 to 4096
[  701.623967][T23560] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  701.962664][T23568] trusted_key: encrypted_key: master key parameter is missing
[  702.218643][T23577] netlink: 64 bytes leftover after parsing attributes in process `syz.3.7948'.
[  702.487339][   T27] audit: type=1326 audit(1759317183.955:2878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23585 comm="syz.1.7953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  702.509897][    C0] vkms_vblank_simulate: vblank timer overrun
[  702.558512][   T27] audit: type=1326 audit(1759317183.955:2879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23585 comm="syz.1.7953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  702.639243][T23592] usb usb1: usbfs: process 23592 (syz.3.7957) did not claim interface 2 before use
[  702.642805][   T27] audit: type=1326 audit(1759317183.965:2880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23585 comm="syz.1.7953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  702.720919][   T27] audit: type=1326 audit(1759317183.965:2881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23585 comm="syz.1.7953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d3f8eec9 code=0x7ffc0000
[  702.981044][T23604] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7962'.
[  703.017220][T23604] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7962'.
[  703.046679][T23604] bridge1: entered promiscuous mode
[  703.068660][T23604] bridge1: entered allmulticast mode
[  703.610433][T23626] loop5: detected capacity change from 0 to 1024
[  703.645714][T23626] hfsplus: Filesystem is marked locked, mounting read-only.
[  703.749820][T23626] hfsplus: filesystem is marked locked, leaving read-only.
[  703.944714][T23638] loop1: detected capacity change from 0 to 1024
[  703.980995][T23638] EXT4-fs: inline encryption not supported
[  704.030600][T23638] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  704.280962][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  704.408623][T23656] netlink: 132 bytes leftover after parsing attributes in process `syz.1.7986'.
[  704.549109][T23660] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7989'.
[  704.700442][T23663] trusted_key: encrypted_key: keylen parameter is missing
[  704.775349][T23667] netlink: 'syz.3.7992': attribute type 10 has an invalid length.
[  704.844499][T23667] team0: Device hsr_slave_0 failed to register rx_handler
[  705.126703][T23677] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.7997'.
[  705.428123][T23688] netlink: 'syz.2.8000': attribute type 12 has an invalid length.
[  705.612418][T23691] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8003'.
[  706.109572][T23710] vivid-007: disconnect
[  706.140889][T23709] vivid-007: reconnect
[  706.895818][T23729] loop2: detected capacity change from 0 to 4096
[  706.919518][T23729] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  707.458475][T23722] loop1: detected capacity change from 0 to 32768
[  707.527493][T23722] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  707.736732][T23722] XFS (loop1): Ending clean mount
[  707.816685][T23722] XFS (loop1): Quotacheck needed: Please wait.
[  707.912162][T23760] netlink: 'syz.5.8032': attribute type 1 has an invalid length.
[  707.948528][T23722] XFS (loop1): Quotacheck: Done.
[  708.136921][ T5790] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  709.412985][T23804] netlink: 16 bytes leftover after parsing attributes in process `syz.5.8051'.
[  709.529903][T23808] loop2: detected capacity change from 0 to 1024
[  709.573055][T23808] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[  709.659731][T23808] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  709.669193][T23808] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.8054: Failed to acquire dquot type 0
[  709.776637][T23808] EXT4-fs error (device loop2): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  709.838539][T23808] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.8054: corrupted inode contents
[  709.863496][T23808] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #13: comm syz.2.8054: mark_inode_dirty error
[  709.916273][T23808] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.8054: corrupted inode contents
[  709.970206][T23808] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #13: comm syz.2.8054: mark_inode_dirty error
[  710.029763][T23808] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.8054: corrupted inode contents
[  710.052385][T23808] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  710.063337][T23808] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.8054: corrupted inode contents
[  710.095556][T23808] EXT4-fs error (device loop2): ext4_truncate:4288: inode #13: comm syz.2.8054: mark_inode_dirty error
[  710.149135][T23808] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  710.206878][T23808] EXT4-fs (loop2): 1 truncate cleaned up
[  710.226312][T23808] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  710.287490][T23829] loop1: detected capacity change from 0 to 2048
[  710.330678][T23829] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  710.391669][T23808] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[  710.419579][T23832] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  710.439693][T23808] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  710.452362][T23808] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.8054: Failed to acquire dquot type 0
[  710.526035][T23829] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: unaligned directory entry - offset=152, inode=18446462598732840977, rec_len=65535, name_len=254
[  710.611250][T23829] Remounting filesystem read-only
[  710.626005][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  711.480942][T23863] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  711.543724][T23865] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8081'.
[  711.684541][T23869] netlink: 'syz.3.8083': attribute type 4 has an invalid length.
[  712.338859][T23856] loop2: detected capacity change from 0 to 40427
[  712.354936][T23856] F2FS-fs (loop2): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  712.368153][T23856] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  712.396479][T23856] F2FS-fs (loop2): invalid crc value
[  712.436085][T23856] F2FS-fs (loop2): Found nat_bits in checkpoint
[  712.636300][T23893] netlink: 798 bytes leftover after parsing attributes in process `syz.5.8093'.
[  712.668790][T23856] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  712.685249][T23896] netlink: 3 bytes leftover after parsing attributes in process `syz.1.8095'.
[  712.689385][T23856] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  712.890519][ T5880] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  713.109425][ T5880] usb 4-1: Using ep0 maxpacket: 8
[  713.121725][ T5880] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  713.143076][ T5880] usb 4-1: config 0 interface 0 has no altsetting 0
[  713.169138][ T5880] usb 4-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=bc.76
[  713.190631][ T5880] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  713.229643][ T5880] usb 4-1: Product: syz
[  713.233891][ T5880] usb 4-1: Manufacturer: syz
[  713.238524][ T5880] usb 4-1: SerialNumber: syz
[  713.263957][ T5880] usb 4-1: config 0 descriptor??
[  713.288551][ T5880] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 found
[  713.505478][ T5880] snd_usb_toneport 4-1:0.0: cannot get proper max packet size
[  713.523754][ T5880] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 now disconnected
[  713.559616][ T5880] snd_usb_toneport: probe of 4-1:0.0 failed with error -22
[  713.682691][T23917] [U] 
[  713.767475][ T5880] usb 4-1: USB disconnect, device number 37
[  715.090358][T23964] loop1: detected capacity change from 0 to 8
[  715.097658][T23964] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  715.134606][ T6199] udevd[6199]: incorrect cramfs checksum on /dev/loop1
[  715.168412][T23964] cramfs: Error -3 while decompressing!
[  715.203425][T23964] cramfs: ffffffff96fdf348(26)->ffff88805108d000(4096)
[  715.268527][ T6081] udevd[6081]: incorrect cramfs checksum on /dev/loop1
[  715.269817][T23964] cramfs: bad data blocksize 524314
[  715.349609][T23964] cramfs: bad data blocksize 4294442596
[  715.355308][T23964] cramfs: Error -3 while decompressing!
[  715.377102][T23964] cramfs: ffffffff96fdf348(26)->ffff88805108d000(4096)
[  716.424962][    C1] sd 0:0:1:0: [sda] tag#6112 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  716.435518][    C1] sd 0:0:1:0: [sda] tag#6112 CDB: Read(6) 08 00 9f d1 fe de
[  716.658425][T24023] loop5: detected capacity change from 0 to 2048
[  716.698403][T24023] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[  716.741207][T24023] UDF-fs: Scanning with blocksize 512 failed
[  716.751210][ T5862] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  716.768802][T24023] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  716.956372][T24031] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  716.995092][ T5862] usb 3-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  717.013373][ T5862] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  717.029847][ T5862] usb 3-1: Product: syz
[  717.036674][ T5862] usb 3-1: Manufacturer: syz
[  717.042792][ T5862] usb 3-1: SerialNumber: syz
[  717.072121][ T5862] usb 3-1: config 0 descriptor??
[  717.103121][ T5862] gspca_main: sunplus-2.14.0 probing 055f:c230
[  717.528069][ T5862] gspca_sunplus: reg_r err -71
[  717.540441][ T5862] sunplus: probe of 3-1:0.0 failed with error -71
[  717.567440][ T5862] usb 3-1: USB disconnect, device number 30
[  718.018986][T24065] loop5: detected capacity change from 0 to 64
[  718.380824][T24073] loop1: detected capacity change from 0 to 1024
[  718.483947][T24073] hfsplus: bad catalog entry type
[  718.558531][T24079] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8183'.
[  718.617218][   T48] hfsplus: b-tree write err: -5, ino 4
[  718.750443][   T27] audit: type=1326 audit(1759317200.225:2882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  718.827066][   T27] audit: type=1326 audit(1759317200.225:2883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  718.849683][    C1] vkms_vblank_simulate: vblank timer overrun
[  718.940357][   T27] audit: type=1326 audit(1759317200.225:2884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  718.962845][    C1] vkms_vblank_simulate: vblank timer overrun
[  719.009903][   T27] audit: type=1326 audit(1759317200.225:2885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  719.032517][    C1] vkms_vblank_simulate: vblank timer overrun
[  719.079450][   T27] audit: type=1326 audit(1759317200.225:2886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  719.149798][   T27] audit: type=1326 audit(1759317200.225:2887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  719.243167][   T27] audit: type=1326 audit(1759317200.225:2888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  719.265630][    C1] vkms_vblank_simulate: vblank timer overrun
[  719.339598][   T27] audit: type=1326 audit(1759317200.225:2889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  719.434109][   T27] audit: type=1326 audit(1759317200.225:2890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24084 comm="syz.2.8187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fd9da98eec9 code=0x7ffc0000
[  719.656149][T24081] loop5: detected capacity change from 0 to 32768
[  719.789482][T24081] ERROR: (device loop5): dbAllocAG: Corrupt dmapctl page
[  719.789482][T24081] 
[  719.839447][T24081] ERROR: (device loop5): remounting filesystem as read-only
[  720.154864][T24121] netlink: 'syz.5.8203': attribute type 4 has an invalid length.
[  720.173602][T24123] vivid-000: =================  START STATUS  =================
[  720.199604][T24123] vivid-000: Test Pattern: CSC Colorbar
[  720.203225][T24121] netlink: 152 bytes leftover after parsing attributes in process `syz.5.8203'.
[  720.206006][T24123] vivid-000: Fill Percentage of Frame: 100
[  720.259431][T24123] vivid-000: Horizontal Movement: Move Right
[  720.288735][T24123] vivid-000: Vertical Movement: No Movement
[  720.305779][T24123] vivid-000: OSD Text Mode: All
[  720.306854][T24121] : renamed from bond0 (while UP)
[  720.321179][T24123] vivid-000: Show Border: false
[  720.338871][T24123] vivid-000: Show Square: false
[  720.365519][T24123] vivid-000: Sensor Flipped Horizontally: false
[  720.385460][T24123] vivid-000: Sensor Flipped Vertically: false
[  720.414828][T24123] vivid-000: Insert SAV Code in Image: false
[  720.444174][T24123] vivid-000: Insert EAV Code in Image: false
[  720.458073][T24123] vivid-000: Insert Video Guard Band: false
[  720.468440][T24123] vivid-000: Reduced Framerate: false
[  720.484287][T24123] vivid-000: Enable Capture Cropping: true
[  720.502387][T24123] vivid-000: Enable Capture Composing: true
[  720.509763][T24123] vivid-000: Enable Capture Scaler: true
[  720.520057][T24123] vivid-000: Timestamp Source: Start of Exposure
[  720.550660][T24123] vivid-000: Colorspace: sRGB
[  720.560781][T24123] vivid-000: Transfer Function: Default
[  720.577442][T24123] vivid-000: Y'CbCr Encoding: Default
[  720.584445][T24123] vivid-000: HSV Encoding: Hue 0-256
[  720.590464][T24123] vivid-000: Quantization: Limited Range
[  720.596277][T24123] vivid-000: Apply Alpha To Red Only: false
[  720.607018][T24123] vivid-000: Standard Aspect Ratio: 14x9
[  720.638526][T24135] SET target dimension over the limit!
[  720.639699][T24123] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  720.667824][T24123] vivid-000: DV Timings: 640x480p59 inactive
[  720.674677][T24123] vivid-000: DV Timings Aspect Ratio: 4x3
[  720.682003][T24123] vivid-000: Maximum EDID Blocks: 2
[  720.687334][T24123] vivid-000: Limited RGB Range (16-235): false
[  720.694077][T24123] vivid-000: Rx RGB Quantization Range: Automatic
[  720.700745][ T5867] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  720.712901][T24123] vivid-000: Power Present: 0x00000001
[  720.741205][T24123] tpg source WxH: 320x180 (Luma)
[  720.750027][T24123] tpg field: 1
[  720.753618][T24123] tpg crop: 320x180@0x0
[  720.760561][T24123] tpg compose: 320x180@0x0
[  720.768181][T24123] tpg colorspace: 12
[  720.776902][T24123] tpg transfer function: 4/0
[  720.787967][T24123] tpg quantization: 2/0
[  720.795990][T24137] loop1: detected capacity change from 0 to 1024
[  720.800101][T24123] tpg RGB range: 0/2
[  720.806436][T24123] vivid-000: ==================  END STATUS  ==================
[  720.929545][ T5867] usb 4-1: Using ep0 maxpacket: 8
[  720.947032][ T5867] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[  720.973150][ T5867] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  720.995749][ T5867] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  721.014822][ T2926] hfsplus: b-tree write err: -5, ino 4
[  721.020380][ T5867] usb 4-1: Product: syz
[  721.020399][ T5867] usb 4-1: Manufacturer: syz
[  721.020414][ T5867] usb 4-1: SerialNumber: syz
[  721.283918][ T5867] usb 4-1: Handspring Visor / Palm OS: No valid connect info available
[  721.316354][ T5867] usb 4-1: Handspring Visor / Palm OS: port 205, is for unknown use
[  721.343696][ T5867] usb 4-1: Handspring Visor / Palm OS: port 0, is for unknown use
[  721.361911][ T5867] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2
[  721.484909][ T5867] usb 4-1: palm_os_3_probe - error -71 getting bytes available request
[  721.505843][ T5867] visor 4-1:1.0: Handspring Visor / Palm OS converter detected
[  721.539838][ T5867] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  721.563769][T24159] geneve4: entered allmulticast mode
[  721.568817][ T5867] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  721.618705][ T5867] usb 4-1: USB disconnect, device number 38
[  721.645987][ T5867] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  721.676982][ T5867] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  721.718353][ T5867] visor 4-1:1.0: device disconnected
[  722.149605][T24171] ==================================================================
[  722.157736][T24171] BUG: KASAN: slab-use-after-free in xfrm_alloc_spi+0x598/0x11f0
[  722.165498][T24171] Read of size 4 at addr ffff88805e6b2ca0 by task syz.2.8229/24171
[  722.173414][T24171] 
[  722.175757][T24171] CPU: 1 PID: 24171 Comm: syz.2.8229 Not tainted syzkaller #0
[  722.183244][T24171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  722.193322][T24171] Call Trace:
[  722.196628][T24171]  <TASK>
[  722.199585][T24171]  dump_stack_lvl+0x16c/0x230
[  722.204307][T24171]  ? __lock_acquire+0x7c80/0x7c80
[  722.209361][T24171]  ? show_regs_print_info+0x20/0x20
[  722.214601][T24171]  ? load_image+0x3b0/0x3b0
[  722.219140][T24171]  ? __virt_addr_valid+0x469/0x540
[  722.224284][T24171]  print_report+0xac/0x220
[  722.228727][T24171]  ? xfrm_alloc_spi+0x598/0x11f0
[  722.233698][T24171]  kasan_report+0x117/0x150
[  722.238247][T24171]  ? xfrm_alloc_spi+0x598/0x11f0
[  722.243229][T24171]  xfrm_alloc_spi+0x598/0x11f0
[  722.248146][T24171]  ? xfrm_alloc_spi+0x2a1/0x11f0
[  722.253136][T24171]  ? verify_spi_info+0x120/0x120
[  722.258112][T24171]  ? xfrm_find_acq+0x79/0x90
[  722.263006][T24171]  xfrm_alloc_userspi+0x5d1/0xa90
[  722.268053][T24171]  ? end_current_label_crit_section+0x170/0x170
[  722.274306][T24171]  ? apparmor_capable+0x137/0x1a0
[  722.279334][T24171]  ? xfrm_dump_policy_done+0x90/0x90
[  722.284627][T24171]  ? __nla_parse+0x40/0x50
[  722.289055][T24171]  xfrm_user_rcv_msg+0x596/0x870
[  722.294018][T24171]  ? lockdep_hardirqs_on+0x98/0x150
[  722.299234][T24171]  ? xfrm_netlink_rcv+0x90/0x90
[  722.304089][T24171]  ? __local_bh_enable_ip+0x12e/0x1c0
[  722.309483][T24171]  ? __dev_queue_xmit+0x245/0x35a0
[  722.314616][T24171]  ? __mutex_trylock_common+0x153/0x250
[  722.320188][T24171]  netlink_rcv_skb+0x216/0x480
[  722.325140][T24171]  ? xfrm_netlink_rcv+0x90/0x90
[  722.329998][T24171]  ? netlink_ack+0x1110/0x1110
[  722.334777][T24171]  ? netlink_deliver_tap+0x2e/0x1b0
[  722.339991][T24171]  ? __lock_acquire+0x7c80/0x7c80
[  722.345033][T24171]  xfrm_netlink_rcv+0x79/0x90
[  722.349718][T24171]  netlink_unicast+0x751/0x8d0
[  722.354514][T24171]  netlink_sendmsg+0x8c1/0xbe0
[  722.359298][T24171]  ? netlink_getsockopt+0x580/0x580
[  722.364518][T24171]  ? aa_sock_msg_perm+0x94/0x150
[  722.369463][T24171]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  722.374774][T24171]  ? security_socket_sendmsg+0x80/0xa0
[  722.380237][T24171]  ? netlink_getsockopt+0x580/0x580
[  722.385442][T24171]  ____sys_sendmsg+0x5bf/0x950
[  722.390220][T24171]  ? __asan_memset+0x22/0x40
[  722.394816][T24171]  ? __sys_sendmsg_sock+0x30/0x30
[  722.399855][T24171]  ? __import_iovec+0x5f2/0x860
[  722.404745][T24171]  ? import_iovec+0x73/0xa0
[  722.409263][T24171]  ___sys_sendmsg+0x220/0x290
[  722.413962][T24171]  ? __sys_sendmsg+0x270/0x270
[  722.418761][T24171]  __se_sys_sendmsg+0x1a5/0x270
[  722.423631][T24171]  ? __x64_sys_sendmsg+0x80/0x80
[  722.428618][T24171]  ? lockdep_hardirqs_on+0x98/0x150
[  722.433838][T24171]  do_syscall_64+0x55/0xb0
[  722.438266][T24171]  ? clear_bhb_loop+0x40/0x90
[  722.442951][T24171]  ? clear_bhb_loop+0x40/0x90
[  722.447638][T24171]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.453554][T24171] RIP: 0033:0x7fd9da98eec9
[  722.458068][T24171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  722.477684][T24171] RSP: 002b:00007fd9db745038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  722.486118][T24171] RAX: ffffffffffffffda RBX: 00007fd9dabe5fa0 RCX: 00007fd9da98eec9
[  722.494095][T24171] RDX: 0000000000000000 RSI: 0000200000001580 RDI: 0000000000000003
[  722.502073][T24171] RBP: 00007fd9daa11f91 R08: 0000000000000000 R09: 0000000000000000
[  722.510050][T24171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  722.518025][T24171] R13: 00007fd9dabe6038 R14: 00007fd9dabe5fa0 R15: 00007ffe1f5e8dc8
[  722.526032][T24171]  </TASK>
[  722.529055][T24171] 
[  722.531381][T24171] Allocated by task 22716:
[  722.535797][T24171]  kasan_set_track+0x4e/0x70
[  722.540399][T24171]  __kasan_slab_alloc+0x6c/0x80
[  722.545277][T24171]  slab_post_alloc_hook+0x6e/0x4d0
[  722.550416][T24171]  kmem_cache_alloc+0x11e/0x2e0
[  722.555285][T24171]  xfrm_state_alloc+0x22/0x2a0
[  722.560073][T24171]  xfrm_add_acquire+0x105/0xaf0
[  722.564934][T24171]  xfrm_user_rcv_msg+0x596/0x870
[  722.569874][T24171]  netlink_rcv_skb+0x216/0x480
[  722.574655][T24171]  xfrm_netlink_rcv+0x79/0x90
[  722.579331][T24171]  netlink_unicast+0x751/0x8d0
[  722.584107][T24171]  netlink_sendmsg+0x8c1/0xbe0
[  722.588884][T24171]  ____sys_sendmsg+0x5bf/0x950
[  722.593674][T24171]  ___sys_sendmsg+0x220/0x290
[  722.598367][T24171]  __se_sys_sendmsg+0x1a5/0x270
[  722.603236][T24171]  do_syscall_64+0x55/0xb0
[  722.607658][T24171]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.613576][T24171] 
[  722.615913][T24171] The buggy address belongs to the object at ffff88805e6b2c00
[  722.615913][T24171]  which belongs to the cache xfrm_state of size 848
[  722.629891][T24171] The buggy address is located 160 bytes inside of
[  722.629891][T24171]  freed 848-byte region [ffff88805e6b2c00, ffff88805e6b2f50)
[  722.643710][T24171] 
[  722.646057][T24171] The buggy address belongs to the physical page:
[  722.652482][T24171] page:ffffea000179ac00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88805e6b1000 pfn:0x5e6b0
[  722.664080][T24171] head:ffffea000179ac00 order:2 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  722.673041][T24171] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  722.681037][T24171] page_type: 0xffffffff()
[  722.685375][T24171] raw: 00fff00000000840 ffff888141aa23c0 dead000000000122 0000000000000000
[  722.693966][T24171] raw: ffff88805e6b1000 000000008010000d 00000001ffffffff 0000000000000000
[  722.702548][T24171] page dumped because: kasan: bad access detected
[  722.708979][T24171] page_owner tracks the page as allocated
[  722.714699][T24171] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6106, tgid 6105 (syz.1.109), ts 97599359268, free_ts 97593912419
[  722.735285][T24171]  post_alloc_hook+0x1cd/0x210
[  722.740073][T24171]  get_page_from_freelist+0x195c/0x19f0
[  722.745643][T24171]  __alloc_pages+0x1e3/0x460
[  722.750247][T24171]  alloc_slab_page+0x5d/0x170
[  722.754937][T24171]  new_slab+0x87/0x2e0
[  722.759072][T24171]  ___slab_alloc+0xc6d/0x1300
[  722.763784][T24171]  kmem_cache_alloc+0x1b7/0x2e0
[  722.768648][T24171]  xfrm_state_alloc+0x22/0x2a0
[  722.773424][T24171]  __find_acq_core+0x7d8/0x19d0
[  722.778291][T24171]  xfrm_find_acq+0x6a/0x90
[  722.782723][T24171]  pfkey_getspi+0x64f/0xed0
[  722.787236][T24171]  pfkey_sendmsg+0xbed/0x1050
[  722.791921][T24171]  ____sys_sendmsg+0x5bf/0x950
[  722.796714][T24171]  ___sys_sendmsg+0x220/0x290
[  722.801399][T24171]  __se_sys_sendmsg+0x1a5/0x270
[  722.806352][T24171]  do_syscall_64+0x55/0xb0
[  722.810785][T24171] page last free stack trace:
[  722.815462][T24171]  free_unref_page_prepare+0x7ce/0x8e0
[  722.820940][T24171]  free_unref_page+0x32/0x2e0
[  722.825651][T24171]  __slab_free+0x35e/0x410
[  722.830112][T24171]  qlist_free_all+0x75/0xe0
[  722.834640][T24171]  kasan_quarantine_reduce+0x143/0x160
[  722.840164][T24171]  __kasan_slab_alloc+0x22/0x80
[  722.845028][T24171]  slab_post_alloc_hook+0x6e/0x4d0
[  722.850182][T24171]  __kmem_cache_alloc_node+0x13e/0x260
[  722.855659][T24171]  __kmalloc+0xa4/0x240
[  722.859844][T24171]  tomoyo_realpath_from_path+0xe3/0x5d0
[  722.865417][T24171]  tomoyo_path_number_perm+0x1ea/0x590
[  722.870893][T24171]  security_file_ioctl+0x70/0xa0
[  722.875842][T24171]  __se_sys_ioctl+0x48/0x170
[  722.880458][T24171]  do_syscall_64+0x55/0xb0
[  722.884883][T24171]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.890803][T24171] 
[  722.893137][T24171] Memory state around the buggy address:
[  722.898815][T24171]  ffff88805e6b2b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  722.906928][T24171]  ffff88805e6b2c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  722.914999][T24171] >ffff88805e6b2c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  722.923069][T24171]                                ^
[  722.928194][T24171]  ffff88805e6b2d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  722.936259][T24171]  ffff88805e6b2d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  722.944350][T24171] ==================================================================
[  722.952584][T24171] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  722.959803][T24171] CPU: 1 PID: 24171 Comm: syz.2.8229 Not tainted syzkaller #0
[  722.967372][T24171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  722.977448][T24171] Call Trace:
[  722.980750][T24171]  <TASK>
[  722.983698][T24171]  dump_stack_lvl+0x16c/0x230
[  722.988411][T24171]  ? show_regs_print_info+0x20/0x20
[  722.993637][T24171]  ? load_image+0x3b0/0x3b0
[  722.998175][T24171]  panic+0x2c0/0x710
[  723.002091][T24171]  ? bpf_jit_dump+0xd0/0xd0
[  723.006696][T24171]  ? _raw_spin_unlock_irqrestore+0xa9/0x110
[  723.012686][T24171]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  723.018600][T24171]  ? _raw_spin_unlock+0x40/0x40
[  723.023464][T24171]  ? print_memory_metadata+0x314/0x400
[  723.028944][T24171]  ? xfrm_alloc_spi+0x598/0x11f0
[  723.033891][T24171]  check_panic_on_warn+0x84/0xa0
[  723.038850][T24171]  ? xfrm_alloc_spi+0x598/0x11f0
[  723.043803][T24171]  end_report+0x6f/0x140
[  723.048062][T24171]  kasan_report+0x128/0x150
[  723.052584][T24171]  ? xfrm_alloc_spi+0x598/0x11f0
[  723.057557][T24171]  xfrm_alloc_spi+0x598/0x11f0
[  723.062345][T24171]  ? xfrm_alloc_spi+0x2a1/0x11f0
[  723.067299][T24171]  ? verify_spi_info+0x120/0x120
[  723.072263][T24171]  ? xfrm_find_acq+0x79/0x90
[  723.076858][T24171]  xfrm_alloc_userspi+0x5d1/0xa90
[  723.081891][T24171]  ? end_current_label_crit_section+0x170/0x170
[  723.088142][T24171]  ? apparmor_capable+0x137/0x1a0
[  723.093171][T24171]  ? xfrm_dump_policy_done+0x90/0x90
[  723.098464][T24171]  ? __nla_parse+0x40/0x50
[  723.102891][T24171]  xfrm_user_rcv_msg+0x596/0x870
[  723.107832][T24171]  ? lockdep_hardirqs_on+0x98/0x150
[  723.113147][T24171]  ? xfrm_netlink_rcv+0x90/0x90
[  723.118022][T24171]  ? __local_bh_enable_ip+0x12e/0x1c0
[  723.123424][T24171]  ? __dev_queue_xmit+0x245/0x35a0
[  723.128541][T24171]  ? __mutex_trylock_common+0x153/0x250
[  723.134122][T24171]  netlink_rcv_skb+0x216/0x480
[  723.138904][T24171]  ? xfrm_netlink_rcv+0x90/0x90
[  723.143784][T24171]  ? netlink_ack+0x1110/0x1110
[  723.148565][T24171]  ? netlink_deliver_tap+0x2e/0x1b0
[  723.153773][T24171]  ? __lock_acquire+0x7c80/0x7c80
[  723.158821][T24171]  xfrm_netlink_rcv+0x79/0x90
[  723.163513][T24171]  netlink_unicast+0x751/0x8d0
[  723.168287][T24171]  netlink_sendmsg+0x8c1/0xbe0
[  723.173058][T24171]  ? netlink_getsockopt+0x580/0x580
[  723.178266][T24171]  ? aa_sock_msg_perm+0x94/0x150
[  723.183213][T24171]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  723.188507][T24171]  ? security_socket_sendmsg+0x80/0xa0
[  723.193966][T24171]  ? netlink_getsockopt+0x580/0x580
[  723.199168][T24171]  ____sys_sendmsg+0x5bf/0x950
[  723.203946][T24171]  ? __asan_memset+0x22/0x40
[  723.208541][T24171]  ? __sys_sendmsg_sock+0x30/0x30
[  723.213572][T24171]  ? __import_iovec+0x5f2/0x860
[  723.218440][T24171]  ? import_iovec+0x73/0xa0
[  723.222962][T24171]  ___sys_sendmsg+0x220/0x290
[  723.227654][T24171]  ? __sys_sendmsg+0x270/0x270
[  723.232452][T24171]  __se_sys_sendmsg+0x1a5/0x270
[  723.237317][T24171]  ? __x64_sys_sendmsg+0x80/0x80
[  723.242287][T24171]  ? lockdep_hardirqs_on+0x98/0x150
[  723.247505][T24171]  do_syscall_64+0x55/0xb0
[  723.251929][T24171]  ? clear_bhb_loop+0x40/0x90
[  723.256610][T24171]  ? clear_bhb_loop+0x40/0x90
[  723.261290][T24171]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  723.267199][T24171] RIP: 0033:0x7fd9da98eec9
[  723.271616][T24171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  723.291231][T24171] RSP: 002b:00007fd9db745038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  723.299650][T24171] RAX: ffffffffffffffda RBX: 00007fd9dabe5fa0 RCX: 00007fd9da98eec9
[  723.307632][T24171] RDX: 0000000000000000 RSI: 0000200000001580 RDI: 0000000000000003
[  723.315606][T24171] RBP: 00007fd9daa11f91 R08: 0000000000000000 R09: 0000000000000000
[  723.323603][T24171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  723.331586][T24171] R13: 00007fd9dabe6038 R14: 00007fd9dabe5fa0 R15: 00007ffe1f5e8dc8
[  723.339652][T24171]  </TASK>
[  723.342981][T24171] Kernel Offset: disabled
[  723.347308][T24171] Rebooting in 86400 seconds..