last executing test programs:

25.42826131s ago: executing program 1 (id=1340):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4089, 0x197}, {&(0x7f0000000400)=""/106, 0x1c}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0xbe8}, {&(0x7f0000000540)=""/158, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

25.135823104s ago: executing program 1 (id=1342):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000, &(0x7f0000002740)=ANY=[], 0x1, 0x616a, &(0x7f0000009780)="$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")
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x20441, 0x189)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x380407b, 0x0, 0x1, 0x0, &(0x7f0000000040))

24.219680684s ago: executing program 1 (id=1345):
syz_mount_image$hfsplus(&(0x7f0000000080), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[], 0x2, 0x638, &(0x7f0000000ac0)="$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")
syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000340)='.\x00', 0x126a4b5, &(0x7f0000004140)=ANY=[@ANYRES16, @ANYRES64, @ANYRES16, @ANYRES16, @ANYRESDEC, @ANYRES16, @ANYRES16, @ANYBLOB="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", @ANYRESHEX=0x0, @ANYRES32], 0x5, 0x0, &(0x7f0000000000))
syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000340)='.\x00', 0x126a4b5, &(0x7f0000004140)=ANY=[@ANYRES16, @ANYRES64, @ANYRES16, @ANYRES16, @ANYRESDEC, @ANYRES16, @ANYRES16, @ANYBLOB="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", @ANYRESHEX=0x0, @ANYRES32], 0x5, 0x0, &(0x7f0000000000))

23.883174688s ago: executing program 1 (id=1347):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000000000086666048800000000000109022400010000100809040090010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000005c0)={0x2c, &(0x7f0000000040)={0x0, 0x24, 0x5, {0x5, 0x22, "0f041b"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

20.253614629s ago: executing program 1 (id=1359):
r0 = syz_usb_connect$hid(0x1, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="120100020000000879215300000000000001090224000100000000090401130103000100092100000001220b0009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000780)={0x2c, &(0x7f0000002300)=ANY=[@ANYBLOB="20020b"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, &(0x7f0000000180)={0x20, 0x11, 0x2, {0x2, 0xf}}, 0x0, 0x0, 0x0}, 0x0)

16.419333333s ago: executing program 1 (id=1369):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r1 = dup(r0)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000240)={0x80, 0x6, 0xff, 0x0, 0x44, 0x0, 0x0})

8.192967117s ago: executing program 3 (id=1398):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='smaps_rollup\x00')
r4 = fsopen(&(0x7f0000000000)='proc\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
fchdir(r5)
r6 = inotify_init1(0x800)
inotify_add_watch(r6, 0x0, 0x60000526)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x1aa)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
r8 = dup(r7)
ioctl$TCSETS(r8, 0x40045431, &(0x7f0000000dc0)={0x0, 0x4, 0xfffffffc, 0x0, 0x1b, "0000000009630400"})
r9 = syz_open_pts(r7, 0x80)
ioctl$TCSETS(r7, 0x5402, &(0x7f00000000c0)={0x8000, 0x2000c, 0x8000, 0xffffffed, 0xa, "00f2ff17010400"})
read(r9, &(0x7f00000003c0)=""/213, 0xd5)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
read$FUSE(r3, &(0x7f0000002400)={0x2020}, 0x2020)

7.03826566s ago: executing program 3 (id=1402):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000106a05310300000000000109022400010000800009040002010300010009210000000122f80409058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_emit_ethernet(0x12, &(0x7f0000000440)={@random="b82bb110017f", @random="a445512a1bb1", @val={@void, {0x8100, 0x7, 0x1, 0x1}}, {@generic={0x88ca}}}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

6.589970265s ago: executing program 2 (id=1407):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x46a, 0x4)
sendmmsg$inet(r0, &(0x7f0000000a40)=[{{&(0x7f0000000300)={0x2, 0x4e1b, @empty}, 0x10, 0x0}}], 0x1, 0x4008100)

6.506429966s ago: executing program 2 (id=1408):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_pauseparam={0x8, 0x10, 0x80000000, 0x5}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1f, 0x8, &(0x7f0000000500)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @generic={0x66, 0x8}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x37}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x70)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1f13, 0x12)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @const={0x0, 0x0, 0x0, 0x4}, @func_proto={0x2, 0x0, 0x0, 0x12, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x54}, 0x20)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000001c0)={0xffbffffd, 0x5, 0x0, 'queue0\x00', 0xe})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r5, 0x404c534a, &(0x7f0000000380))
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
read$FUSE(r6, &(0x7f0000001d00)={0x2020}, 0x2020)

5.164935311s ago: executing program 0 (id=1409):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_pauseparam={0x8, 0x10, 0x80000000, 0x5}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1f, 0x8, &(0x7f0000000500)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @generic={0x66, 0x8}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x37}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x70)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1f13, 0x12)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @const={0x0, 0x0, 0x0, 0x4}, @func_proto={0x2, 0x0, 0x0, 0x12, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x54}, 0x20)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000001c0)={0xffbffffd, 0x5, 0x0, 'queue0\x00', 0xe})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r5, 0x404c534a, &(0x7f0000000380))
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
read$FUSE(r6, &(0x7f0000001d00)={0x2020}, 0x2020)

4.801766125s ago: executing program 2 (id=1410):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='smaps_rollup\x00')
r4 = fsopen(&(0x7f0000000000)='proc\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
fchdir(r5)
r6 = inotify_init1(0x800)
inotify_add_watch(r6, 0x0, 0x60000526)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x1aa)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
r8 = dup(r7)
ioctl$TCSETS(r8, 0x40045431, &(0x7f0000000dc0)={0x0, 0x4, 0xfffffffc, 0x0, 0x1b, "0000000009630400"})
r9 = syz_open_pts(r7, 0x80)
ioctl$TCSETS(r7, 0x5402, &(0x7f00000000c0)={0x8000, 0x2000c, 0x8000, 0xffffffed, 0xa, "00f2ff17010400"})
read(r9, &(0x7f00000003c0)=""/213, 0xd5)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
read$FUSE(r3, &(0x7f0000002400)={0x2020}, 0x2020)

4.514937239s ago: executing program 3 (id=1411):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_pauseparam={0x8, 0x10, 0x80000000, 0x5}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1f, 0x8, &(0x7f0000000500)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @generic={0x66, 0x8}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x37}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x70)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x1f13, 0x12)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @const={0x0, 0x0, 0x0, 0x4}, @func_proto={0x2, 0x0, 0x0, 0x12, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x54}, 0x20)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f00000001c0)={0xffbffffd, 0x5, 0x0, 'queue0\x00', 0xe})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f0000000380))
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
read$FUSE(r7, &(0x7f0000001d00)={0x2020}, 0x2020)

3.808869987s ago: executing program 2 (id=1412):
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x4, 0x8001, 0x0, 0x9, 0x0, 0x1, 0xf, 0xffffffff}, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendfile(r0, r0, 0x0, 0x200000)

3.585947729s ago: executing program 0 (id=1413):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)={0x1c, r1, 0x1c05, 0x70bd28, 0x25dfdbfd, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x80)

3.557319579s ago: executing program 0 (id=1414):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000100)={0xf2b, 0xaeb, 0xe57, 0x1, 0x7, "3ce6920887f0bbe1fffffff10c000000800004", 0x4, 0x1ff})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0xd)

3.439522531s ago: executing program 0 (id=1415):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x3, 0x0, 'queue1\x00', 0x6})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0xbf, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000180)={0x17, @time={0xbf, 0x316575}})

3.427841631s ago: executing program 3 (id=1416):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r1=>0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
connect$unix(r3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x4a102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0))
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x9)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(0xffffffffffffffff, 0xfffffffc)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), r6)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
futimesat(r8, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES16=r7, @ANYBLOB="07004506e2ff000000000200000004830680fe9b0d2fec9d57ac0c10e8a1799f93abe8362495cc338b91d2f00e9b80b8632ffefaab83256280cc38726f4d9442d1249046ec9df4fb4b119d14c571bcde08f336ad4f92cbfa79b2795c9e47c4be356475ed603acd3885070773ea5807d93de83812cadb4d7894b1dc465ec7452cb07cb8a66a9e2be2b4a957dac3cde5b8c07bcf3f8687b802cc64f702f2da3d2f844d351fb2eab983b118716f10aef62abc23ad19bef2c514690e16e9996dd5c8be79f91015fa06c044f96cc954cbae7172083fe1a275686544bd81a2f4f151e19a9bf595fd6bfdd3493b3fcb218a0f3278616690648985b5ee35fa762d8aa069c9d772a49157b0108ce078977b4ab07072c4e476827b6f52fd34626bb129797067de8fa2b72e2d65760385bb7aefcf5d8c516fc7ecaf8b6644f80c23633e8cfa4a1e4ba8cac9f044f52a59b41adbae63fdb283e622f20617920798029a25370fd5e2f5bd7e7383fa9af59818800e79ebeb5e5336144d54a2b95ec99242a8d0c34f6f2e8a19949455"], 0x18}}, 0x4040)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0xdddd0000, 0x10000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000180)=[{0x0}], 0x1, 0x5fae, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newlink={0x50, 0x10, 0x3, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @private2}]}]}]}, 0x50}, 0x1, 0x2}, 0x0)

3.371718451s ago: executing program 2 (id=1417):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_pauseparam={0x8, 0x10, 0x80000000, 0x5}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1f, 0x8, &(0x7f0000000500)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @generic={0x66, 0x8}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x37}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x70)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1f13, 0x12)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @const={0x0, 0x0, 0x0, 0x4}, @func_proto={0x2, 0x0, 0x0, 0x12, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x54}, 0x20)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000001c0)={0xffbffffd, 0x5, 0x0, 'queue0\x00', 0xe})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r5, 0x404c534a, &(0x7f0000000380))
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
read$FUSE(r6, &(0x7f0000001d00)={0x2020}, 0x2020)

2.339678313s ago: executing program 0 (id=1418):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000000100)={0x4, 0x3})

777.354861ms ago: executing program 3 (id=1419):
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@bridge_dellink={0x2c, 0x13, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x4, 0x0, 0x1, {0x4, 0x2}}]}]}, 0x2c}}, 0x0)

697.728792ms ago: executing program 0 (id=1420):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000751c0110e60f00979ad1010203010902240001000000000904290202b48cbb0009050402100000fa000905820240"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, &(0x7f0000000b00)={0x1c, &(0x7f0000000640)={0x20, 0xa, 0x6, "3ffb8d3763b6"}, 0x0, 0x0})

561.890404ms ago: executing program 3 (id=1421):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x2, &(0x7f0000000300)=ANY=[@ANYBLOB='nouser_xattr,heartbeat=none,dir_resv_level=00000000000000000250,barrier=00000000000000000004,dir_resv_level=00000000000000000002,localflocks,localalloc=00000000000000000004,coherency=buffered,nointr,acl,localalloc=00000000000022251008,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c7375626a5e726f6c653d275e9b148af1147134daaeaad1251d12de0c417d242a2a252c2e2cb2a74084d068fa9b9038bf597c6fdafa6fadbea47b"], 0x1, 0x4431, &(0x7f0000008940)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2a442, 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x0)
fsync(r0)

31.91387ms ago: executing program 32 (id=1369):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r1 = dup(r0)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000240)={0x80, 0x6, 0xff, 0x0, 0x44, 0x0, 0x0})

0s ago: executing program 2 (id=1423):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_pauseparam={0x8, 0x10, 0x80000000, 0x5}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1f, 0x8, &(0x7f0000000500)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @generic={0x66, 0x8}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x37}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x70)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1f13, 0x12)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @const={0x0, 0x0, 0x0, 0x4}, @func_proto={0x2, 0x0, 0x0, 0x12, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x54}, 0x20)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000001c0)={0xffbffffd, 0x5, 0x0, 'queue0\x00', 0xe})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r5, 0x404c534a, &(0x7f0000000380))
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
read$FUSE(r6, &(0x7f0000001d00)={0x2020}, 0x2020)

kernel console output (not intermixed with test programs):

acity change from 0 to 128
[  501.503248][ T8746] qnx6: superblock #1 checksum error
[  501.656078][   T11] Bluetooth: hci4: Frame reassembly failed (-90)
[  503.565295][ T5788] Bluetooth: hci4: command 0xfc11 tx timeout
[  503.565633][ T5781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  503.720180][ T8753] loop3: detected capacity change from 0 to 1024
[  503.834436][ T8753] hfsplus: invalid btree flag
[  503.840377][ T8753] hfsplus: failed to load catalog file
[  503.867123][ T8752] loop2: detected capacity change from 0 to 512
[  504.629812][ T8752] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  504.651792][ T5781] Bluetooth: hci0: unexpected event for opcode 0x0c1c
[  504.687290][ T8752] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[  504.897318][ T5781] Bluetooth: hci2: unexpected event for opcode 0x0c23
[  504.947019][ T8765] loop2: detected capacity change from 0 to 256
[  506.448882][ T8783] loop3: detected capacity change from 0 to 4096
[  506.600823][ T8331] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  506.879528][ T8780] netlink: 'syz.2.594': attribute type 4 has an invalid length.
[  506.887870][ T8780] netlink: 17 bytes leftover after parsing attributes in process `syz.2.594'.
[  507.141702][ T8780] netlink: 28 bytes leftover after parsing attributes in process `syz.2.594'.
[  507.531989][ T5781] Bluetooth: hci3: unexpected event for opcode 0x202d
[  507.764941][   T11] Bluetooth: hci4: Frame reassembly failed (-90)
[  508.539442][ T8798] loop1: detected capacity change from 0 to 128
[  509.153186][ T8798] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2
[  509.891749][ T5781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  509.898642][ T5788] Bluetooth: hci4: command 0xfc11 tx timeout
[  510.213491][ T8807] loop1: detected capacity change from 0 to 8
[  511.060836][ T8807] SQUASHFS error: xz decompression failed, data probably corrupt
[  511.085541][ T8807] SQUASHFS error: Failed to read block 0x108: -5
[  511.098733][ T8807] SQUASHFS error: Unable to read metadata cache entry [106]
[  511.133308][ T8807] SQUASHFS error: Unable to read inode 0x11f
[  511.343302][ T8817] loop2: detected capacity change from 0 to 8
[  511.431396][ T8817] SQUASHFS error: zlib decompression failed, data probably corrupt
[  511.439517][ T8817] SQUASHFS error: Failed to read block 0x9b: -5
[  511.471270][ T8817] SQUASHFS error: Unable to read metadata cache entry [99]
[  511.501877][ T8821] loop0: detected capacity change from 0 to 512
[  511.513644][ T8817] SQUASHFS error: Unable to read inode 0x127
[  511.822992][ T5781] Bluetooth: hci1: unexpected event for opcode 0x2012
[  511.891082][ T8826] loop2: detected capacity change from 0 to 4096
[  512.079681][ T8832] loop0: detected capacity change from 0 to 2048
[  512.149662][ T8329] I/O error, dev loop2, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  512.195226][ T8832] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  513.283875][ T8140] Bluetooth: hci4: Frame reassembly failed (-90)
[  515.449236][ T5788] Bluetooth: hci4: command 0xfc11 tx timeout
[  515.457693][ T5781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  515.668413][ T8852] loop0: detected capacity change from 0 to 4096
[  516.036447][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  516.043048][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  516.164297][ T5781] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  516.174818][ T5781] Bluetooth: hci1: Injecting HCI hardware error event
[  516.184198][ T5788] Bluetooth: hci1: hardware error 0x00
[  516.286208][ T8861] loop0: detected capacity change from 0 to 128
[  516.334592][ T8861] affs: No valid root block on device loop0
[  516.406353][ T8863] loop1: detected capacity change from 0 to 2048
[  516.549721][ T5781] Bluetooth: hci1: unexpected event for opcode 0x080b
[  516.572846][ T8866] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  516.877640][ T8870] loop0: detected capacity change from 0 to 1024
[  516.972110][ T8870] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  517.129109][ T8870] EXT4-fs (loop0): group descriptors corrupted!
[  517.887780][ T8877] loop1: detected capacity change from 0 to 8
[  517.927805][ T8877] unable to read xattr id index table
[  518.442349][ T5788] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  518.607999][ T8329] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  518.788210][ T8881] loop3: detected capacity change from 0 to 128
[  518.901029][ T8887] loop0: detected capacity change from 0 to 1156
[  518.907274][ T8881] affs: No valid root block on device loop3
[  518.915141][ T8887] ISOFS: unable to read i-node block
[  518.932501][ T8887] isofs_fill_super: get root inode failed
[  519.428048][ T8895] loop0: detected capacity change from 0 to 4096
[  519.444121][ T8897] loop2: detected capacity change from 0 to 2048
[  519.472164][ T8897] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  519.519483][ T8895] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  519.592403][ T8899] xt_CT: You must specify a L4 protocol and not use inversions on it
[  519.714290][ T8899] loop3: detected capacity change from 0 to 1024
[  520.405025][ T8899] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  521.618719][ T8907] loop3: detected capacity change from 0 to 512
[  521.682509][ T8907] EXT4-fs: Ignoring removed nobh option
[  521.757224][ T8907] EXT4-fs (loop3): orphan cleanup on readonly fs
[  521.930237][ T8907] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #15: comm syz.3.637: corrupted inode contents
[  522.007473][ T8907] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  522.028738][ T8913] loop2: detected capacity change from 0 to 512
[  522.529005][ T8907] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #15: comm syz.3.637: corrupted inode contents
[  522.886048][ T8907] EXT4-fs error (device loop3): ext4_evict_inode:302: inode #15: comm syz.3.637: mark_inode_dirty error
[  522.997130][ T8907] EXT4-fs (loop3): 1 orphan inode deleted
[  523.057114][ T8907] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  523.207925][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  523.269700][ T8921] loop0: detected capacity change from 0 to 4096
[  523.298954][ T8921] NILFS (loop0): mounting unchecked fs
[  523.311488][ T8921] NILFS (loop0): recovery required for readonly filesystem
[  523.350851][ T8921] NILFS (loop0): write access will be enabled during recovery
[  523.389683][ T8921] NILFS (loop0): invalid segment: Checksum error in segment payload
[  523.417818][ T5788] Bluetooth: hci2: unexpected event 0x2f length: 509 > 260
[  523.418068][ T8921] NILFS (loop0): trying rollback from an earlier position
[  523.492531][ T8921] NILFS (loop0): norecovery option specified, skipping roll-forward recovery
[  523.647260][ T8929] loop3: detected capacity change from 0 to 512
[  523.755208][ T8929] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  525.347535][ T5781] Bluetooth: hci2: unexpected event for opcode 0x2019
[  525.714687][ T8960] loop3: detected capacity change from 0 to 512
[  525.746050][ T8960] EXT4-fs: Ignoring removed orlov option
[  525.830590][ T8960] EXT4-fs (loop3): orphan cleanup on readonly fs
[  527.737009][ T8960] EXT4-fs error (device loop3): ext4_find_extent:909: inode #4: comm syz.3.659: inode has invalid extent depth: 7
[  527.850746][ T8960] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=-117
[  527.945574][ T8960] EXT4-fs warning (device loop3): ext4_enable_quotas:7188: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  527.996305][ T8960] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  528.012144][ T8960] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  528.070177][ T8975] loop0: detected capacity change from 0 to 16
[  528.083823][ T8975] erofs: (device loop0): mounted with root inode @ nid 36.
[  528.148511][ T8975] syz.0.663: attempt to access beyond end of device
[  528.148511][ T8975] loop0: rw=524288, sector=8, nr_sectors = 24 limit=16
[  528.246086][ T8975] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -23 in[46, 4050] out[4096]
[  528.286754][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  528.318530][   T28] audit: type=1800 audit(1778137267.213:6): pid=8975 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.663" name="file2" dev="loop0" ino=89 res=0 errno=0
[  528.353180][ T8946] loop2: detected capacity change from 0 to 32768
[  528.496502][ T8946] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.653 (8946)
[  529.442821][ T8946] BTRFS error (device loop2): open_ctree failed: -4
[  529.639493][ T5781] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  529.648671][ T5781] Bluetooth: hci2: Injecting HCI hardware error event
[  529.659482][ T5781] Bluetooth: hci2: hardware error 0x00
[  529.676915][ T8994] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.668'.
[  529.722795][ T8994] openvswitch: netlink: Tunnel attr 0 has unexpected len 3060 expected 8
[  529.777469][ T8998] loop1: detected capacity change from 0 to 512
[  529.843370][ T8998] EXT4-fs: inline encryption not supported
[  529.905468][ T8998] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  529.970726][ T8998] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it
[  529.970797][ T8998] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.670: Corrupt directory, running e2fsck is recommended
[  529.996415][ T8998] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  529.996581][ T8998] EXT4-fs error (device loop1): ext4_iget_extra_inode:4739: inode #15: comm syz.1.670: corrupted in-inode xattr: e_name out of bounds
[  530.006312][ T8998] EXT4-fs error (device loop1): ext4_orphan_get:1409: comm syz.1.670: couldn't read orphan inode 15 (err -117)
[  530.021265][ T8998] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  530.208898][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.116394][ T9016] loop2: detected capacity change from 0 to 8
[  531.214374][ T9016] SQUASHFS error: lzo decompression failed, data probably corrupt
[  531.244520][ T9016] SQUASHFS error: Failed to read block 0x91: -5
[  531.251231][ T9016] SQUASHFS error: Unable to read metadata cache entry [8f]
[  531.315468][ T9016] SQUASHFS error: Unable to read inode 0x11f
[  531.671117][ T9016] cifs: Unknown parameter 'ÄBNön"ø7d>Íoß[vgæÍ\ÖΊÀŸÝ•5ò	Aã2ì)5Ì7¦þarc\2õºÉ&Dz¥åÛÍ4MËË”þk'
[  531.894275][ T5781] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  532.459781][ T9029] Unknown options in mask b7f2
[  533.257795][ T5781] Bluetooth: hci3: unexpected event for opcode 0x200f
[  533.564273][ T9037] loop2: detected capacity change from 0 to 128
[  533.585339][ T9037] hpfs: bad mount options.
[  538.564187][ T9104] macvtap0: entered promiscuous mode
[  542.151607][ T9137] loop2: detected capacity change from 0 to 4096
[  542.857548][ T8329] I/O error, dev loop2, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  543.598629][ T8146] Bluetooth: hci4: Frame reassembly failed (-90)
[  545.710937][ T5781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  546.071942][ T9165] comedi comedi0: dt2801: I/O port conflict (0x3,2)
[  547.898624][   T11] Bluetooth: hci4: Frame reassembly failed (-90)
[  550.072536][ T5788] Bluetooth: hci4: command 0xfc11 tx timeout
[  550.080236][ T5781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  550.436323][ T9208] netlink: 16 bytes leftover after parsing attributes in process `syz.2.739'.
[  555.289644][ T9249] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  557.223971][ T9261] netlink: 16 bytes leftover after parsing attributes in process `syz.1.751'.
[  558.277781][ T5781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  558.490577][ T9267] comedi comedi1: multiq3: a I/O base address must be specified
[  559.902145][  T787] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  560.205661][ T9296] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  560.564569][  T787] usb 4-1: Using ep0 maxpacket: 8
[  560.581884][  T787] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  560.593704][  T787] usb 4-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  560.603857][  T787] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  560.658519][  T787] usb 4-1: config 0 descriptor??
[  560.943059][  T787] gspca_main: vc032x-2.14.0 probing 046d:0892
[  561.043922][ T9305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.768'.
[  561.205838][  T787] gspca_vc032x: reg_r err -71
[  561.214116][  T787] vc032x: probe of 4-1:0.0 failed with error -71
[  561.229375][  T787] usb 4-1: USB disconnect, device number 2
[  561.779310][ T9326] netlink: 'syz.2.777': attribute type 10 has an invalid length.
[  561.906633][ T9326] team0: Device veth1_vlan failed to register rx_handler
[  563.414574][ T9346] netlink: 'syz.2.782': attribute type 1 has an invalid length.
[  563.442267][ T9346] netlink: 8 bytes leftover after parsing attributes in process `syz.2.782'.
[  564.047467][ T9359] loop2: detected capacity change from 0 to 16
[  564.145068][ T9359] erofs: (device loop2): mounted with root inode @ nid 36.
[  564.230042][ T9359] erofs: (device loop2): z_erofs_readahead: readahead error at folio 3 @ nid 89
[  564.242757][ T9359] syz.2.786: attempt to access beyond end of device
[  564.242757][ T9359] loop2: rw=524288, sector=34359738360, nr_sectors = 8 limit=16
[  564.279343][ T9359] erofs: (device loop2): z_erofs_readahead: readahead error at folio 4 @ nid 89
[  564.318937][ T9359] syz.2.786: attempt to access beyond end of device
[  564.318937][ T9359] loop2: rw=524288, sector=16, nr_sectors = 40 limit=16
[  564.378126][ T9359] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -4082 in[4096, 0] out[8192]
[  564.413363][   T28] audit: type=1800 audit(1778137300.995:7): pid=9359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.786" name="file2" dev="loop2" ino=89 res=0 errno=0
[  566.462950][ T9386] comedi comedi0: aio_aio12_8: I/O port conflict (0x3,32)
[  567.726969][ T9397] loop0: detected capacity change from 0 to 4096
[  567.975273][ T8329] I/O error, dev loop0, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  573.391169][ T9441] loop0: detected capacity change from 0 to 128
[  574.845054][ T9452] loop2: detected capacity change from 0 to 4096
[  575.894514][ T9454] loop1: detected capacity change from 0 to 32768
[  575.928530][ T9454] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.812 (9454)
[  576.870619][ T9481] loop3: detected capacity change from 0 to 8
[  576.899398][ T9454] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  576.972355][ T9454] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  576.993607][ T9454] BTRFS info (device loop1): using free space tree
[  577.032406][ T9483] loop2: detected capacity change from 0 to 1024
[  577.132741][ T9483] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  577.175575][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  577.185925][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  577.281181][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  577.296797][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  577.310833][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  577.323307][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  577.673241][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  577.930194][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  577.930876][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  578.026468][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  578.064081][ T9483] EXT4-fs warning (device loop2): ext4_rmdir:3243: inode #11: comm syz.2.819: empty directory 'file1' has too many links (111)
[  578.082745][ T9454] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  578.113381][ T9454] BTRFS error (device loop1): open_ctree failed: -12
[  578.266515][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.313304][ T9509] loop0: detected capacity change from 0 to 4096
[  578.545689][ T9516] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  578.569928][ T9515] loop3: detected capacity change from 0 to 512
[  578.659170][ T9515] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  578.666337][ T9509] NILFS (loop0): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  578.721933][ T9509] NILFS error (device loop0): nilfs_bmap_truncate: broken bmap (inode number=12)
[  578.739659][ T9515] EXT4-fs (loop3): orphan cleanup on readonly fs
[  578.772356][ T9515] EXT4-fs error (device loop3): ext4_ext_check_inode:530: inode #3: comm syz.3.825: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  578.828905][ T9509] Remounting filesystem read-only
[  578.839269][ T9515] EXT4-fs error (device loop3): ext4_quota_enable:7147: comm syz.3.825: Bad quota inode: 3, type: 0
[  578.876236][ T9515] EXT4-fs warning (device loop3): ext4_enable_quotas:7188: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  578.886262][ T9509] NILFS (loop0): error -5 truncating bmap (ino=12)
[  578.935873][ T9515] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  578.966470][ T1136] NILFS (loop0): discard dirty page: offset=0, ino=2
[  579.001412][ T9515] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  579.003271][ T1136] NILFS (loop0): discard dirty block: blocknr=14, size=4096
[  579.192743][ T1136] NILFS (loop0): discard dirty page: offset=0, ino=6
[  579.286170][ T1136] NILFS (loop0): discard dirty block: blocknr=23, size=4096
[  579.302004][ T9515] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  579.345903][ T5770] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer
[  579.384839][ T9515] EXT4-fs warning (device loop3): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[  579.388541][ T5770] NILFS (loop0): discard dirty page: offset=4096, ino=6
[  579.446872][ T5770] NILFS (loop0): discard dirty block: blocknr=24, size=4096
[  579.448543][ T9526] hsr0: VLAN not yet supported
[  579.454521][ T5770] NILFS (loop0): discard dirty page: offset=8192, ino=6
[  579.454546][ T5770] NILFS (loop0): discard dirty block: blocknr=25, size=4096
[  579.518505][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.370065][ T9547] loop0: detected capacity change from 0 to 256
[  581.623833][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  581.630786][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  583.169829][ T9570] loop3: detected capacity change from 0 to 512
[  583.220812][ T9570] EXT4-fs: Ignoring removed bh option
[  583.234143][ T9570] EXT4-fs: inline encryption not supported
[  583.298295][ T9570] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  583.399370][ T9570] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  583.456480][ T9570] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.840: bg 0: block 248: padding at end of block bitmap is not set
[  583.501351][ T9570] Quota error (device loop3): write_blk: dquota write failed
[  583.523269][ T9570] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  583.566209][ T9570] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.840: Failed to acquire dquot type 1
[  583.611480][ T9570] EXT4-fs (loop3): 1 truncate cleaned up
[  583.637199][ T9570] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  583.863538][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  584.102574][ T9567] loop2: detected capacity change from 0 to 32768
[  585.337778][ T9567] ERROR: (device loop2): xtSearch: XT_GETPAGE: xtree page corrupt
[  585.337778][ T9567] 
[  585.424204][ T9567] ERROR: (device loop2): remounting filesystem as read-only
[  585.480893][ T9567] xtLookup: xtSearch returned -5
[  585.619511][ T9601] netlink: 132 bytes leftover after parsing attributes in process `syz.3.850'.
[  587.921198][    T8] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  587.971822][ T3461] Bluetooth: hci4: Frame reassembly failed (-84)
[  588.047487][ T9628] netlink: 4 bytes leftover after parsing attributes in process `syz.0.858'.
[  588.074145][ T1136] Bluetooth: hci4: Frame reassembly failed (-90)
[  588.313461][    T8] usb 4-1: Using ep0 maxpacket: 8
[  588.545357][    T8] usb 4-1: config 0 has an invalid interface number: 31 but max is 0
[  588.602809][    T8] usb 4-1: config 0 has no interface number 0
[  588.669438][    T8] usb 4-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  588.748953][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  588.840904][    T8] usb 4-1: Product: syz
[  588.888647][    T8] usb 4-1: Manufacturer: syz
[  588.949891][    T8] usb 4-1: SerialNumber: syz
[  589.096954][    T8] usb 4-1: config 0 descriptor??
[  590.055804][    T8] usb 4-1: USB disconnect, device number 3
[  590.165027][ T5788] Bluetooth: hci4: command 0xfc11 tx timeout
[  590.174480][ T5781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  590.202191][ T8329] udevd[8329]: setting owner of /dev/bus/usb/004/003 to uid=0, gid=0 failed: No such file or directory
[  590.313172][ T9634] netlink: 'syz.1.860': attribute type 29 has an invalid length.
[  590.555820][ T9638] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  594.603755][ T9679] netlink: 4 bytes leftover after parsing attributes in process `syz.1.872'.
[  594.633068][ T8149] Bluetooth: hci4: Frame reassembly failed (-90)
[  596.747584][ T5781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  596.747681][ T5788] Bluetooth: hci4: command 0xfc11 tx timeout
[  598.436096][ T5867] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  598.639046][  T787] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  598.896076][  T787] usb 2-1: not running at top speed; connect to a high speed hub
[  599.002082][  T787] usb 2-1: config 11 has an invalid interface number: 95 but max is 0
[  599.127762][  T787] usb 2-1: config 11 has an invalid descriptor of length 0, skipping remainder of the config
[  599.142774][  T787] usb 2-1: config 11 has no interface number 0
[  599.149221][  T787] usb 2-1: config 11 interface 95 altsetting 64 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  599.162243][  T787] usb 2-1: config 11 interface 95 altsetting 64 endpoint 0x81 has invalid wMaxPacketSize 0
[  599.173262][  T787] usb 2-1: config 11 interface 95 altsetting 64 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  599.224972][  T787] usb 2-1: config 11 interface 95 has no altsetting 0
[  599.290929][  T787] usb 2-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=b1.4d
[  599.353362][  T787] usb 2-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0
[  599.385880][  T787] usb 2-1: Manufacturer: syz
[  599.392207][ T5867] usb 3-1: config 0 has an invalid interface number: 238 but max is 0
[  599.414471][ T5867] usb 3-1: config 0 has no interface number 0
[  599.434728][ T5867] usb 3-1: config 0 interface 238 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  599.462427][ T5867] usb 3-1: config 0 interface 238 altsetting 0 endpoint 0x88 has invalid maxpacket 47698, setting to 1024
[  599.493969][ T5867] usb 3-1: config 0 interface 238 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 1024
[  599.520556][ T5867] usb 3-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=76.6a
[  599.547265][ T5867] usb 3-1: New USB device strings: Mfr=7, Product=2, SerialNumber=3
[  599.555457][ T5867] usb 3-1: Product: syz
[  599.579322][ T5867] usb 3-1: Manufacturer: syz
[  599.588861][ T5867] usb 3-1: SerialNumber: syz
[  599.623367][ T5867] usb 3-1: config 0 descriptor??
[  599.650689][ T9693] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  599.680996][  T787] usb 2-1: USB disconnect, device number 5
[  599.708765][ T5867] ni6501 3-1:0.238: driver 'ni6501' failed to auto-configure device.
[  599.862076][ T9712] netlink: 766 bytes leftover after parsing attributes in process `syz.3.882'.
[  600.043000][  T787] usb 3-1: USB disconnect, device number 4
[  602.159061][ T9749] vivid-007: =================  START STATUS  =================
[  602.166295][ T9747] loop1: detected capacity change from 0 to 4096
[  602.189845][ T9749] vivid-007: Generate PTS: true
[  602.195754][ T9749] vivid-007: Generate SCR: true
[  602.230434][ T9749] tpg source WxH: 640x360 (Y'CbCr)
[  602.236005][ T9749] tpg field: 1
[  602.257996][ T9749] tpg crop: 640x360@0x0
[  602.268072][ T9749] tpg compose: 640x360@0x0
[  602.273668][ T9749] tpg colorspace: 8
[  602.277857][ T9749] tpg transfer function: 0/0
[  602.283628][ T9749] tpg Y'CbCr encoding: 0/0
[  602.290401][ T9749] tpg quantization: 0/0
[  602.336127][ T9749] tpg RGB range: 0/2
[  602.350056][ T9749] vivid-007: ==================  END STATUS  ==================
[  602.727306][ T9758] netlink: 'syz.1.898': attribute type 5 has an invalid length.
[  603.116700][ T9766] loop2: detected capacity change from 0 to 4096
[  603.265280][ T8140] Bluetooth: hci4: Frame reassembly failed (-84)
[  605.467341][ T5785] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  605.475414][ T5781] Bluetooth: hci4: command 0xfc11 tx timeout
[  606.300508][ T9794] netlink: 32 bytes leftover after parsing attributes in process `syz.3.910'.
[  606.439532][ T9787] loop0: detected capacity change from 0 to 32768
[  606.463300][ T9787] 
[  606.463300][ T9787]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  606.463300][ T9787] 
[  606.549613][ T9787] jfs_rename: dtInsert returned -EIO
[  606.645698][ T5770] 
[  606.645698][ T5770]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  606.645698][ T5770] 
[  606.683632][ T5770] 
[  606.683632][ T5770]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  606.683632][ T5770] 
[  607.162672][ T8140] Bluetooth: hci4: Frame reassembly failed (-90)
[  607.191610][ T9806] netlink: 4 bytes leftover after parsing attributes in process `syz.0.913'.
[  609.314703][ T9781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  611.241466][ T9825] xt_CT: No such helper "pptp"
[  611.689822][ T9842] netlink: 4 bytes leftover after parsing attributes in process `syz.2.926'.
[  611.709078][ T8146] Bluetooth: hci4: Frame reassembly failed (-90)
[  611.858151][ T9839] loop3: detected capacity change from 0 to 2048
[  612.973185][ T9844] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  613.845304][ T9781] Bluetooth: hci4: command 0xfc11 tx timeout
[  613.854473][ T5788] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  613.870006][   T28] audit: type=1800 audit(1778137347.252:8): pid=9839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.927" name="file2" dev="loop3" ino=16 res=0 errno=0
[  613.891592][    C0] vkms_vblank_simulate: vblank timer overrun
[  613.978994][ T9848] loop1: detected capacity change from 0 to 256
[  613.996243][ T9848] exfat: Deprecated parameter 'utf8'
[  614.091594][ T9848] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  614.877568][ T9865] loop1: detected capacity change from 0 to 16
[  615.150372][ T5788] Bluetooth: hci0: unexpected event for opcode 0x1004
[  615.811053][ T9884] netlink: 'syz.2.943': attribute type 10 has an invalid length.
[  616.512346][ T9884] batman_adv: batadv0: Local translation table size (92) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:17
[  616.578940][ T9884] batman_adv: batadv0: Local translation table size (92) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:17
[  616.598223][ T9884] 8021q: adding VLAN 0 to HW filter on device batadv0
[  616.605715][ T9884] batman_adv: batadv0: Local translation table size (100) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:17
[  616.624754][ T9884] batman_adv: batadv0: Local translation table size (108) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:17
[  616.651309][ T9884] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  616.674550][ T9887] netlink: 'syz.2.943': attribute type 10 has an invalid length.
[  616.757533][ T9887] netlink: 40 bytes leftover after parsing attributes in process `syz.2.943'.
[  616.811360][ T9891] netlink: 4 bytes leftover after parsing attributes in process `syz.1.944'.
[  616.835477][ T3461] Bluetooth: hci4: Frame reassembly failed (-90)
[  616.842769][ T9887] batadv0: entered promiscuous mode
[  616.849278][ T9887] batadv0: entered allmulticast mode
[  616.875461][ T9887] bond0: (slave batadv0): Releasing backup interface
[  616.991566][ T3461] batman_adv: batadv0: Local translation table size (108) exceeds maximum packet size (-320); Ignoring new local tt entry: 01:00:5e:00:00:01
[  617.418264][ T9887] bridge0: port 3(batadv0) entered blocking state
[  617.504762][ T9887] bridge0: port 3(batadv0) entered disabled state
[  617.757585][ T9887] batman_adv: batadv0: Local translation table size (100) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:2a
[  618.126824][ T1136] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  618.136581][ T1136] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  618.975058][ T5788] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  619.487616][ T5788] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  619.498222][ T5788] Bluetooth: hci0: Injecting HCI hardware error event
[  619.507631][ T9781] Bluetooth: hci0: hardware error 0x00
[  619.699098][ T9912] loop2: detected capacity change from 0 to 256
[  621.253279][   T27] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  621.627079][ T9941] netlink: 4 bytes leftover after parsing attributes in process `syz.2.958'.
[  621.643946][ T8145] Bluetooth: hci4: Frame reassembly failed (-90)
[  621.708901][   T27] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[  621.832539][   T27] usb 2-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  621.879185][ T9781] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  621.944676][   T27] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  622.051074][   T27] usb 2-1: config 220 has no interface number 2
[  622.131803][   T27] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  622.293141][   T27] usb 2-1: config 220 interface 0 has no altsetting 0
[  622.384337][   T27] usb 2-1: config 220 interface 76 has no altsetting 0
[  622.507311][   T27] usb 2-1: config 220 interface 1 has no altsetting 0
[  622.678038][   T27] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  622.856285][   T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  622.984429][   T27] usb 2-1: Product: syz
[  623.053609][   T27] usb 2-1: Manufacturer: syz
[  623.117825][   T27] usb 2-1: SerialNumber: syz
[  623.764160][ T9781] Bluetooth: hci4: command 0xfc11 tx timeout
[  623.771993][ T5788] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  624.004491][   T27] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  624.052105][   T27] usb 2-1: No valid video chain found.
[  624.162306][   T27] usb 2-1: selecting invalid altsetting 0
[  624.207392][   T27] usb 2-1: selecting invalid altsetting 0
[  624.237027][   T27] usbtest: probe of 2-1:220.1 failed with error -22
[  624.289243][   T27] usb 2-1: USB disconnect, device number 6
[  625.718266][ T9967] TCP: TCP_TX_DELAY enabled
[  626.075720][ T9974] loop1: detected capacity change from 0 to 4096
[  626.406514][ T8329] I/O error, dev loop1, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  627.404668][ T9993] sp0: Synchronizing with TNC
[  630.395733][T10048] loop3: detected capacity change from 0 to 4096
[  630.484669][ T8329] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  631.177035][T10057] netlink: 'syz.3.981': attribute type 12 has an invalid length.
[  631.231419][T10057] netlink: 132 bytes leftover after parsing attributes in process `syz.3.981'.
[  631.664092][T10061] loop3: detected capacity change from 0 to 256
[  631.692132][T10061] exfat: Deprecated parameter 'utf8'
[  631.697833][T10061] exfat: Deprecated parameter 'utf8'
[  631.743659][T10061] exfat: Deprecated parameter 'utf8'
[  631.851896][T10061] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  632.795493][   T27] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  633.001281][   T27] usb 4-1: Using ep0 maxpacket: 8
[  634.041709][    C1] hrtimer: interrupt took 44590 ns
[  634.401224][   T27] usb 4-1: unable to get BOS descriptor or descriptor too short
[  634.419046][   T27] usb 4-1: config 4 interface 0 has no altsetting 0
[  634.470345][   T27] usb 4-1: string descriptor 0 read error: -22
[  634.477014][   T27] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  634.530121][   T27] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3
[  634.570754][   T27] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  634.617253][   T27] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  634.678317][   T27] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  634.710260][   T27] usb 4-1: media controller created
[  634.757222][   T27] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  634.896709][ T5817] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  634.982311][   T23] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  635.112977][ T5817] usb 3-1: config 0 has no interfaces?
[  635.122677][ T5817] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  635.133887][ T5817] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=2
[  635.142639][ T5817] usb 3-1: Product: syz
[  635.148258][ T5817] usb 3-1: Manufacturer: syz
[  635.153130][ T5817] usb 3-1: SerialNumber: syz
[  635.162477][ T5817] usb 3-1: config 0 descriptor??
[  635.187043][   T23] usb 1-1: not running at top speed; connect to a high speed hub
[  635.202214][   T23] usb 1-1: config 11 has an invalid interface number: 95 but max is 0
[  635.212084][   T23] usb 1-1: config 11 has an invalid descriptor of length 0, skipping remainder of the config
[  635.223689][   T23] usb 1-1: config 11 has no interface number 0
[  635.230610][   T23] usb 1-1: config 11 interface 95 altsetting 64 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  635.242681][   T23] usb 1-1: config 11 interface 95 altsetting 64 endpoint 0x81 has invalid wMaxPacketSize 0
[  635.253240][   T23] usb 1-1: config 11 interface 95 altsetting 64 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  635.267012][   T23] usb 1-1: config 11 interface 95 has no altsetting 0
[  635.276988][   T23] usb 1-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=b1.4d
[  635.286770][   T23] usb 1-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0
[  635.295122][   T23] usb 1-1: Manufacturer: syz
[  635.413399][ T5788] Bluetooth: hci3: unknown advertising packet type: 0x17
[  635.414844][  T787] usb 3-1: USB disconnect, device number 5
[  635.599617][   T23] usb 1-1: USB disconnect, device number 2
[  635.903301][T10065] usb 4-1: dvb_usb_au6610: wlen=0, aborting
[  635.911028][   T27] zl10353_read_register: readreg error (reg=127, ret==0)
[  635.972178][  T787] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  636.023499][   T27] usb 4-1: USB disconnect, device number 4
[  636.322052][  T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  636.336532][  T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  636.347064][  T787] usb 2-1: New USB device found, idVendor=12ba, idProduct=0100, bcdDevice= 0.00
[  636.598529][ T5821] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  636.610157][  T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  636.843144][  T787] usb 2-1: config 0 descriptor??
[  637.486579][ T5821] usb 1-1: Using ep0 maxpacket: 8
[  637.522750][  T787] sony 0003:12BA:0100.0003: unknown main item tag 0x0
[  637.546857][  T787] sony 0003:12BA:0100.0003: unknown main item tag 0x0
[  637.560435][  T787] sony 0003:12BA:0100.0003: item fetching failed at offset 4/5
[  637.562423][ T5821] usb 1-1: unable to get BOS descriptor or descriptor too short
[  637.580355][ T5821] usb 1-1: config 4 interface 0 has no altsetting 0
[  637.582716][  T787] sony 0003:12BA:0100.0003: parse failed
[  637.598291][ T5821] usb 1-1: string descriptor 0 read error: -22
[  637.607732][  T787] sony: probe of 0003:12BA:0100.0003 failed with error -22
[  637.621874][ T5821] usb 1-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  637.653733][ T5821] usb 1-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3
[  637.711586][ T5821] usb 1-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  637.737667][ T5821] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  637.762394][ T5821] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  637.795498][ T5821] usb 1-1: media controller created
[  637.844309][  T787] usb 2-1: USB disconnect, device number 7
[  637.946599][ T5821] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  638.872885][ T5821] zl10353_read_register: readreg error (reg=127, ret==0)
[  639.081339][ T5821] usb 1-1: USB disconnect, device number 3
[  640.421444][    T8] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  640.442807][ T5821] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  640.635458][ T5817] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  640.658936][ T5821] usb 1-1: config 1 has an invalid interface number: 7 but max is 0
[  640.694559][    T8] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  640.710058][ T5821] usb 1-1: config 1 has no interface number 0
[  640.731355][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  640.748658][ T5821] usb 1-1: config 1 interface 7 altsetting 0 has an invalid endpoint with address 0xDB, skipping
[  640.784712][    T8] usb 3-1: Product: syz
[  640.789491][ T5821] usb 1-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  641.500430][    T8] usb 3-1: Manufacturer: syz
[  641.511371][    T8] usb 3-1: SerialNumber: syz
[  641.544902][ T5821] usb 1-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  641.556785][    T8] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  641.585179][ T5821] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  641.607569][ T5817] usb 2-1: Using ep0 maxpacket: 16
[  641.620715][ T5821] usb 1-1: Product: syz
[  641.625045][ T5821] usb 1-1: Manufacturer: syz
[  641.650356][ T5817] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  641.676226][ T5821] usb 1-1: SerialNumber: syz
[  641.683006][ T5817] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  641.697212][T10121] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  641.716326][ T5867] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  641.725668][ T5817] usb 2-1: New USB device found, idVendor=1b96, idProduct=0008, bcdDevice= 0.00
[  641.734931][ T5817] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  641.756469][ T5821] usb 1-1: Expected 3 endpoints, found: 2
[  641.790537][ T5817] usb 2-1: config 0 descriptor??
[  642.804188][  T787] usb 3-1: USB disconnect, device number 6
[  643.039511][ T5867] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  643.047525][ T5867] ath9k_htc: Failed to initialize the device
[  643.058279][ T5817] ntrig 0003:1B96:0008.0004: nested delimiters
[  643.069159][ T5817] ntrig 0003:1B96:0008.0004: item 0 1 2 10 parsing failed
[  643.083152][ T5817] ntrig 0003:1B96:0008.0004: parse failed
[  643.089517][ T5817] ntrig: probe of 0003:1B96:0008.0004 failed with error -22
[  643.090281][  T787] usb 3-1: ath9k_htc: USB layer deinitialized
[  643.100286][ T5817] usb 2-1: USB disconnect, device number 8
[  643.760880][T10162] loop2: detected capacity change from 0 to 4096
[  643.871793][  T787] usb 1-1: USB disconnect, device number 4
[  645.599624][T10192] loop2: detected capacity change from 0 to 16
[  645.643630][T10192] erofs: (device loop2): mounted with root inode @ nid 36.
[  645.692673][   T28] audit: type=1800 audit(1778137377.039:9): pid=10192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1018" name="file1" dev="loop2" ino=86 res=0 errno=0
[  645.807851][ T5867] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  645.967773][ T5817] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  646.037464][ T5867] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  646.084307][ T8146] Bluetooth: hci4: Frame reassembly failed (-84)
[  646.091524][ T5867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  646.156637][T10199] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1021'.
[  646.193621][ T5867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  646.253579][ T5867] usb 2-1: New USB device found, idVendor=0461, idProduct=4e72, bcdDevice= 0.00
[  646.329814][ T5817] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  646.349023][ T5867] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.410603][ T5817] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  646.484906][ T5817] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  646.527353][ T5867] usb 2-1: config 0 descriptor??
[  646.565554][ T5817] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.996320][ T5817] usb 4-1: config 0 descriptor??
[  647.277059][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  647.283699][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  647.284074][ T5817] hub 4-1:0.0: USB hub found
[  647.535398][ T5867] hid-rmi 0003:0461:4E72.0005: unknown main item tag 0x1
[  647.707075][ T5867] hid-rmi 0003:0461:4E72.0005: item fetching failed at offset 2/11
[  648.124988][ T5867] hid-rmi 0003:0461:4E72.0005: parse failed
[  648.168590][ T5817] hub 4-1:0.0: 7 ports detected
[  648.234665][ T5867] hid-rmi: probe of 0003:0461:4E72.0005 failed with error -22
[  648.259846][ T5817] hub 4-1:0.0: insufficient power available to use all downstream ports
[  648.297097][ T5788] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  648.351654][ T5867] usb 2-1: USB disconnect, device number 9
[  648.617898][ T5817] usb 4-1: USB disconnect, device number 5
[  650.467819][T10219] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  650.537980][T10219] team0: Device ipvlan2 is already an upper device of the team interface
[  651.293977][T10234] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1032'.
[  651.315176][ T8149] Bluetooth: hci4: Frame reassembly failed (-90)
[  651.331865][ T5817] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  651.582891][ T5817] usb 3-1: Using ep0 maxpacket: 16
[  653.426556][ T9781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  653.435896][ T5788] Bluetooth: hci4: command 0xfc11 tx timeout
[  653.515440][ T5817] usb 3-1: config index 0 descriptor too short (expected 51443, got 18)
[  653.536178][ T5817] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  653.546859][ T5817] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  653.557402][ T5817] usb 3-1: Product: syz
[  653.561796][ T5817] usb 3-1: Manufacturer: syz
[  653.567266][ T5817] usb 3-1: SerialNumber: syz
[  653.577910][ T5817] r8152-cfgselector 3-1: config 0 descriptor??
[  654.019121][ T5817] usbip-host 3-1: 3-1 is not in match_busid table... skip!
[  654.153444][ T8151] usb 3-1: config 0 descriptor??
[  654.853469][ T8151] usb 3-1: can't set config #0, error -71
[  654.861997][   T23] usb 3-1: USB disconnect, device number 7
[  654.981695][ T5817] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  655.902988][ T5817] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  656.376270][ T5817] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  656.407698][ T5817] usb 2-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  656.417651][ T5817] usb 2-1: New USB device strings: Mfr=0, Product=159, SerialNumber=0
[  657.308669][ T5817] usb 2-1: Product: syz
[  657.316812][ T5817] usb 2-1: config 0 descriptor??
[  657.441551][ T5817] usb 2-1: can't set config #0, error -71
[  657.484054][ T5817] usb 2-1: USB disconnect, device number 10
[  659.423334][T10268] loop3: detected capacity change from 0 to 32768
[  659.660434][T10268] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.1041 (10268)
[  659.681597][T10268] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  659.693846][T10268] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  659.744411][T10268] BTRFS info (device loop3): metadata ratio 2
[  660.021803][T10268] BTRFS info (device loop3): force zlib compression, level 3
[  660.479210][T10268] BTRFS info (device loop3): enabling auto defrag
[  660.543504][T10268] BTRFS info (device loop3): max_inline at 0
[  660.549786][T10268] BTRFS info (device loop3): using free space tree
[  661.050580][T10284] loop0: detected capacity change from 0 to 32768
[  661.915201][T10268] BTRFS error (device loop3): open_ctree failed: -4
[  662.091643][T10284] JBD2: Ignoring recovery information on journal
[  662.104198][ T8329] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by udevd (8329)
[  662.158225][T10322] loop1: detected capacity change from 0 to 256
[  662.211579][T10322] exfat: Deprecated parameter 'utf8'
[  662.245079][T10322] exfat: Deprecated parameter 'utf8'
[  662.256604][T10284] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  662.347642][T10322] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x97423c56, utbl_chksum : 0xe619d30d)
[  662.454998][   T28] audit: type=1800 audit(1778137392.732:10): pid=10322 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1049" name="file1" dev="loop1" ino=1048607 res=0 errno=0
[  662.796808][ T5770] ocfs2: Unmounting device (7,0) on (node local)
[  663.004479][T10312] loop2: detected capacity change from 0 to 32768
[  663.022177][T10334] loop3: detected capacity change from 0 to 128
[  663.047518][T10334] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  663.082568][T10334] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  663.098406][T10312] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  663.129452][T10312] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  663.162412][T10312] BTRFS info (device loop2): setting nodatasum
[  663.169072][T10312] BTRFS info (device loop2): force zlib compression, level 3
[  663.226590][T10312] BTRFS info (device loop2): enabling ssd optimizations
[  663.253429][T10312] BTRFS info (device loop2): turning on flush-on-commit
[  663.280121][T10312] BTRFS info (device loop2): enabling auto defrag
[  663.308856][T10312] BTRFS info (device loop2): max_inline at 4096
[  663.330549][T10312] BTRFS info (device loop2): using free space tree
[  664.532623][T10312] BTRFS error (device loop2): open_ctree failed: -4
[  665.943843][T10374] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1061'.
[  665.972547][ T8140] Bluetooth: hci4: Frame reassembly failed (-90)
[  666.012448][T10336] loop1: detected capacity change from 0 to 32768
[  667.993714][T10381] loop2: detected capacity change from 0 to 1024
[  668.063095][T10381] EXT4-fs: Ignoring removed mblk_io_submit option
[  668.139356][ T5788] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  668.139964][ T9781] Bluetooth: hci4: command 0xfc11 tx timeout
[  668.204385][T10381] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  668.248339][T10381] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  668.399692][T10381] EXT4-fs error (device loop2): ext4_ext_check_inode:530: inode #11: comm syz.2.1063: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  668.474244][T10387] loop1: detected capacity change from 0 to 256
[  668.520792][T10387] exfat: Deprecated parameter 'utf8'
[  668.570706][T10381] EXT4-fs error (device loop2): ext4_orphan_get:1409: comm syz.2.1063: couldn't read orphan inode 11 (err -117)
[  668.639886][T10381] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  668.699129][T10387] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  668.939764][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  669.154162][T10395] loop1: detected capacity change from 0 to 1024
[  669.176925][T10395] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  669.190244][T10397] loop2: detected capacity change from 0 to 1024
[  669.197763][T10397] EXT4-fs: Ignoring removed bh option
[  669.206710][T10397] EXT4-fs: Ignoring removed nobh option
[  669.326694][T10395] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  669.421300][T10397] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  670.493423][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.543704][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.663800][T10413] loop2: detected capacity change from 0 to 128
[  671.039745][T10417] loop3: detected capacity change from 0 to 256
[  671.067653][T10417] exfat: Deprecated parameter 'namecase'
[  671.851483][T10424] loop2: detected capacity change from 0 to 256
[  671.909401][T10417] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf4419509, utbl_chksum : 0xe619d30d)
[  671.933028][T10424] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  672.486672][T10430] loop2: detected capacity change from 0 to 64
[  672.583850][T10431] loop3: detected capacity change from 0 to 4096
[  672.629552][T10431] EXT4-fs: inline encryption not supported
[  674.288906][T10431] EXT4-fs: Ignoring removed bh option
[  674.307201][T10446] loop2: detected capacity change from 0 to 128
[  674.328332][T10431] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  674.336932][T10431] EXT4-fs (loop3): Test dummy encryption mode enabled
[  674.415345][T10431] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  674.424119][T10431] System zones: 0-5
[  674.469287][T10431] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  674.720337][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.849108][T10435] loop0: detected capacity change from 0 to 40427
[  674.898366][T10435] F2FS-fs (loop0): Corrupted extension count (33554469 + 1 > 64)
[  674.938591][T10435] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  674.967780][T10435] F2FS-fs (loop0): invalid crc value
[  675.186337][T10456] loop3: detected capacity change from 0 to 512
[  675.875963][T10435] F2FS-fs (loop0): Try to recover 2th superblock, ret: -30
[  675.941828][T10435] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  676.156100][T10459] loop2: detected capacity change from 0 to 512
[  676.291959][T10459] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  676.300268][T10459] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  676.308756][T10459] System zones: 0-1, 15-15, 18-18, 34-34
[  676.314954][T10459] EXT4-fs (loop2): orphan cleanup on readonly fs
[  676.321716][T10459] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[  676.331376][T10459] EXT4-fs warning (device loop2): ext4_enable_quotas:7188: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  676.348465][T10459] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  676.385089][T10459] EXT4-fs (loop2): 1 truncate cleaned up
[  676.449802][T10459] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  676.630676][T10467] loop3: detected capacity change from 0 to 256
[  676.706193][T10467] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  676.737926][T10463] loop0: detected capacity change from 0 to 8192
[  676.754432][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  676.815793][T10463] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  676.882249][T10463] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  676.901734][T10463] REISERFS (device loop0): using ordered data mode
[  676.910390][T10463] reiserfs: using flush barriers
[  676.959500][T10463] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  677.777145][T10463] REISERFS (device loop0): checking transaction log (loop0)
[  678.104912][T10474] loop2: detected capacity change from 0 to 8192
[  678.152390][T10463] REISERFS (device loop0): Using tea hash to sort names
[  678.190821][T10463] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  678.229865][T10463] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  678.241860][T10474] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  678.335034][T10476] loop3: detected capacity change from 0 to 4096
[  678.361865][T10476] EXT4-fs: Ignoring removed nomblk_io_submit option
[  678.409646][T10476] EXT4-fs (loop3): stripe (97) is not aligned with cluster size (16), stripe is disabled
[  678.569752][T10476] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  678.796481][T10485] loop2: detected capacity change from 0 to 1024
[  679.863406][T10492] loop1: detected capacity change from 0 to 64
[  680.096911][T10494] loop0: detected capacity change from 0 to 512
[  680.135948][T10494] EXT4-fs: Ignoring removed nobh option
[  680.153362][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.232191][T10494] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  680.263985][T10496] loop2: detected capacity change from 0 to 4096
[  680.278178][T10494] ext4 filesystem being mounted at /266/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  680.340824][T10503] loop3: detected capacity change from 0 to 2048
[  680.422744][T10503] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  680.571616][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.856154][T10513] loop3: detected capacity change from 0 to 1024
[  680.879156][T10513] EXT4-fs: Ignoring removed nomblk_io_submit option
[  680.904278][T10513] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  680.978563][T10513] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  681.243442][T10513] EXT4-fs error (device loop3): ext4_iget_extra_inode:4739: inode #15: comm syz.3.1100: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  681.298116][T10513] EXT4-fs (loop3): Remounting filesystem read-only
[  681.355430][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  681.545158][T10510] loop1: detected capacity change from 0 to 32768
[  681.687924][T10510] 
[  681.687924][T10510]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  681.687924][T10510] 
[  682.168382][ T8149] ERROR: (device loop1): diWrite: ixpxd invalid
[  682.168382][ T8149] 
[  682.259984][ T8149] ERROR: (device loop1): txCommit: 
[  682.259984][ T8149] 
[  682.303679][ T8149] jfs_write_inode: jfs_commit_inode failed!
[  682.311978][ T5771] 
[  682.311978][ T5771]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  682.311978][ T5771] 
[  682.341652][T10524] loop3: detected capacity change from 0 to 128
[  682.355289][ T5771] 
[  682.355289][ T5771]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  682.355289][ T5771] 
[  682.407126][T10524] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  682.465460][T10524] FAT-fs (loop3): Filesystem has been set read-only
[  682.509451][T10527] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  682.731906][T10526] ntfs3: loop0: failed to convert "0080" to maciceland
[  682.781037][T10526] ntfs3: loop0: failed to convert name for inode 1e.
[  683.150038][T10536] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  683.206857][T10535] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  683.248261][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  683.279677][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.084711][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.140606][T10535] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  684.165601][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.187778][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.200766][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.265648][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.278645][T10535] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  684.302269][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.337641][T10547] set_capacity_and_notify: 4 callbacks suppressed
[  684.337659][T10547] loop2: detected capacity change from 0 to 64
[  684.344812][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.344886][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.344906][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.490010][T10548] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1109'.
[  684.523578][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.523652][   T11] Bluetooth: hci4: Frame reassembly failed (-90)
[  684.532605][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.549634][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.558609][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.567831][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.576688][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.585884][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.595401][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.604961][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.613902][T10531] NILFS (loop3): nilfs_palloc_freev (ino=3): entry number 0 already freed
[  684.622458][   T28] audit: type=1800 audit(1778137413.469:11): pid=10547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1108" name="file1" dev="loop2" ino=5 res=0 errno=0
[  684.625313][T10531] NILFS (loop3): error -2 preparing GC: cannot delete virtual blocks from DAT file
[  684.667092][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.681357][ T9781] Bluetooth: hci4: command 0xfc11 tx timeout
[  686.681735][ T5788] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  686.839868][T10556] loop2: detected capacity change from 0 to 16
[  686.865403][T10556] erofs: (device loop2): mounted with root inode @ nid 36.
[  686.976560][T10556] syz.2.1112: attempt to access beyond end of device
[  686.976560][T10556] loop2: rw=0, sector=34359214080, nr_sectors = 8 limit=16
[  687.038207][T10556] erofs: (device loop2): erofs_readdir: fail to readdir of logical block 0 of nid 46
[  687.168763][T10558] loop1: detected capacity change from 0 to 256
[  687.266341][ T5788] Bluetooth: hci3: unexpected event for opcode 0x0c25
[  687.625005][T10566] loop1: detected capacity change from 0 to 4096
[  687.626793][T10565] loop2: detected capacity change from 0 to 4096
[  687.724404][ T8331] I/O error, dev loop2, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  687.922892][T10552] loop0: detected capacity change from 0 to 32768
[  688.074386][T10555] loop3: detected capacity change from 0 to 40427
[  688.095780][T10552] JBD2: Ignoring recovery information on journal
[  688.130721][T10555] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  688.151664][T10555] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  688.181625][T10555] F2FS-fs (loop3): invalid crc value
[  688.242987][T10552] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  688.254333][T10555] F2FS-fs (loop3): Found nat_bits in checkpoint
[  688.433819][   T27] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[  688.487247][T10555] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  688.501358][T10555] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  688.659318][ T5770] ocfs2: Unmounting device (7,0) on (node local)
[  688.712727][   T27] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  688.734692][   T27] usb 2-1: New USB device found, idVendor=06cb, idProduct=73f4, bcdDevice= 0.00
[  688.745307][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  688.757564][   T27] usb 2-1: config 0 descriptor??
[  689.221694][   T27] itetech 0003:06CB:73F4.0006: unknown main item tag 0x2
[  689.239591][T10583] loop2: detected capacity change from 0 to 32768
[  689.256883][   T27] itetech 0003:06CB:73F4.0006: unknown main item tag 0xe
[  689.280891][   T27] itetech 0003:06CB:73F4.0006: unknown main item tag 0x7
[  689.295728][   T27] itetech 0003:06CB:73F4.0006: unknown main item tag 0x0
[  689.304858][   T27] itetech 0003:06CB:73F4.0006: item fetching failed at offset 37/40
[  689.324438][   T27] itetech: probe of 0003:06CB:73F4.0006 failed with error -22
[  689.369994][T10583] XFS (loop2): Mounting V5 Filesystem 6b3d8c96-b8b2-4f73-8344-2893082bca0b
[  689.622986][ T5817] usb 2-1: USB disconnect, device number 11
[  689.813835][T10583] XFS (loop2): Ending clean mount
[  690.845787][ T5772] XFS (loop2): Unmounting Filesystem 6b3d8c96-b8b2-4f73-8344-2893082bca0b
[  691.146441][T10586] loop0: detected capacity change from 0 to 40427
[  691.195883][T10586] F2FS-fs (loop0): invalid crc value
[  691.266534][T10586] F2FS-fs (loop0): Found nat_bits in checkpoint
[  691.281549][T10610] loop3: detected capacity change from 0 to 4096
[  692.102898][T10586] F2FS-fs (loop0): Start checkpoint disabled!
[  692.164577][T10586] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  692.273215][ T8331] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  692.901492][T10633] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1131'.
[  693.923106][T10638] loop0: detected capacity change from 0 to 512
[  693.971772][T10638] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  693.985458][T10638] ext4 filesystem being mounted at /274/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  694.259452][T10648] loop1: detected capacity change from 0 to 128
[  694.292631][T10648] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  694.385358][T10618] loop2: detected capacity change from 0 to 40427
[  694.555082][T10618] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[  694.841150][T10648] hpfs: filesystem error: improperly stopped
[  694.870133][T10618] F2FS-fs (loop2): heap/no_heap options were deprecated
[  694.985344][T10649] Quota error (device loop0): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  695.026698][T10648] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  695.050649][T10618] F2FS-fs (loop2): invalid crc value
[  695.096895][T10649] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  695.109629][T10648] hpfs: You really don't want any checks? You are crazy...
[  695.158690][T10648] hpfs: Code page index out of array
[  695.164160][T10648] hpfs: code page support is disabled
[  695.180934][T10618] F2FS-fs (loop2): Found nat_bits in checkpoint
[  695.197381][T10649] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.1132: Failed to acquire dquot type 0
[  695.225673][T10648] hpfs: hpfs_map_4sectors(): unaligned read
[  695.238973][T10648] hpfs: hpfs_map_4sectors(): unaligned read
[  695.246566][T10648] hpfs: filesystem error: unable to find root dir
[  695.365475][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  695.686412][T10659] loop1: detected capacity change from 0 to 256
[  697.915173][T10668] loop1: detected capacity change from 0 to 512
[  697.960527][T10668] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  698.011782][   T28] audit: type=1800 audit(1778137426.009:12): pid=10668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1141" name="file1" dev="loop1" ino=1048622 res=0 errno=0
[  699.041965][T10675] loop2: detected capacity change from 0 to 4096
[  699.079539][T10680] loop1: detected capacity change from 0 to 64
[  699.246816][ T8331] I/O error, dev loop2, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  700.698661][T10694] loop3: detected capacity change from 0 to 2048
[  701.123399][T10694] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  701.454771][T10694] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  701.589304][T10700] loop2: detected capacity change from 0 to 512
[  701.638351][T10700] EXT4-fs (loop2): orphan cleanup on readonly fs
[  701.667562][T10700] EXT4-fs error (device loop2): ext4_ext_check_inode:530: inode #4: comm syz.2.1148: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 2048(2048)
[  701.765891][T10700] EXT4-fs error (device loop2): ext4_quota_enable:7147: comm syz.2.1148: Bad quota inode: 4, type: 1
[  701.827343][T10700] EXT4-fs warning (device loop2): ext4_enable_quotas:7188: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  701.890457][T10700] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  701.942439][T10700] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  702.960079][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  703.035458][T10714] loop1: detected capacity change from 0 to 128
[  703.067138][T10714] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  703.090661][T10714] hpfs: filesystem error: improperly stopped
[  703.101914][T10714] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  703.158904][T10714] hpfs: You really don't want any checks? You are crazy...
[  703.194346][T10714] hpfs: hpfs_map_sector(): read error
[  703.200295][T10714] hpfs: code page support is disabled
[  703.280459][T10714] hpfs: hpfs_map_4sectors(): unaligned read
[  703.330354][T10714] hpfs: hpfs_map_4sectors(): unaligned read
[  703.336522][T10714] hpfs: filesystem error: unable to find root dir
[  703.346138][T10717] loop0: detected capacity change from 0 to 2048
[  703.459589][T10717] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=2362, location=2362
[  703.550552][T10717] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  704.090610][T10717] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  704.288766][T10717] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  704.579114][T10729] loop2: detected capacity change from 0 to 256
[  704.618310][T10729] FAT-fs (loop2): Directory bread(block 64) failed
[  704.636878][T10729] FAT-fs (loop2): Directory bread(block 65) failed
[  704.658205][T10729] FAT-fs (loop2): Directory bread(block 66) failed
[  704.665132][T10729] FAT-fs (loop2): Directory bread(block 67) failed
[  704.712056][T10729] FAT-fs (loop2): Directory bread(block 68) failed
[  704.718986][T10729] FAT-fs (loop2): Directory bread(block 69) failed
[  704.756578][T10729] FAT-fs (loop2): Directory bread(block 70) failed
[  704.777414][T10729] FAT-fs (loop2): Directory bread(block 71) failed
[  704.797565][T10729] FAT-fs (loop2): Directory bread(block 72) failed
[  704.808934][T10729] FAT-fs (loop2): Directory bread(block 73) failed
[  705.903297][T10726] loop1: detected capacity change from 0 to 32768
[  705.966835][T10726] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1155 (10726)
[  706.029393][T10726] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  706.040215][T10726] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  706.049588][T10726] BTRFS info (device loop1): using free space tree
[  707.278246][T10726] BTRFS error (device loop1): open_ctree failed: -4
[  707.391480][T10759] sp0: Synchronizing with TNC
[  707.421228][T10759] sp0: Found TNC
[  707.458071][T10758] [U] è`
[  707.709034][ T8329] I/O error, dev loop1, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  707.719740][T10763] loop3: detected capacity change from 0 to 128
[  707.741944][T10763] FAT-fs (loop3): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1)
[  708.534384][   T28] audit: type=1804 audit(1778137435.825:13): pid=10767 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1163" name="/newroot/286/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0/file1" dev="loop3" ino=1048625 res=1 errno=0
[  710.481029][T10788] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1170'.
[  710.534444][ T8140] Bluetooth: hci4: Frame reassembly failed (-90)
[  710.547398][T10791] veth0_to_bridge: default FDB implementation only supports local addresses
[  712.680699][ T5788] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  712.689044][ T9781] Bluetooth: hci4: command 0xfc11 tx timeout
[  712.986515][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  712.998868][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  714.978167][ T5817] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[  715.216772][ T5817] usb 3-1: config 155 has an invalid interface number: 7 but max is 0
[  715.249215][ T5817] usb 3-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  715.320058][ T5817] usb 3-1: config 155 has 2 interfaces, different from the descriptor's value: 1
[  715.340567][ T5817] usb 3-1: config 155 has no interface number 1
[  715.358399][ T5817] usb 3-1: config 155 interface 0 altsetting 0 has an invalid endpoint with address 0xE2, skipping
[  716.278741][ T5817] usb 3-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  716.296581][ T5817] usb 3-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  716.330570][ T5817] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  716.382342][ T5817] usb 3-1: Product: syz
[  716.419295][ T5817] usb 3-1: Manufacturer: syz
[  716.452343][ T5817] usb 3-1: SerialNumber: syz
[  716.481254][T10808] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  716.516352][ T5817] imon:imon_find_endpoints: no valid input (IR) endpoint found
[  716.591568][ T5817] imon 3-1:155.0: unable to initialize intf0, err -19
[  716.598644][ T5817] imon:imon_probe: failed to initialize context!
[  716.672957][ T5817] imon 3-1:155.0: unable to register, err -19
[  716.782435][ T5817] imon 3-1:155.7: inconsistent driver matching
[  716.819707][ T5817] imon 3-1:155.7: unable to register, err -22
[  716.869659][ T5817] imon: probe of 3-1:155.7 failed with error -22
[  717.307526][T10838] loop0: detected capacity change from 0 to 8
[  718.211196][ T5775] usb 3-1: USB disconnect, device number 8
[  720.182024][   T28] audit: type=1326 audit(1778137446.746:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbb5d9cdd9 code=0x7ff00000
[  720.229352][   T28] audit: type=1326 audit(1778137446.756:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.287343][   T28] audit: type=1326 audit(1778137446.756:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.374650][   T28] audit: type=1326 audit(1778137446.756:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.466794][   T28] audit: type=1326 audit(1778137446.756:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.566806][   T28] audit: type=1326 audit(1778137446.756:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.635690][   T28] audit: type=1326 audit(1778137446.756:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.697919][T10850] loop1: detected capacity change from 0 to 40427
[  720.721984][   T28] audit: type=1326 audit(1778137446.756:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.763090][   T28] audit: type=1326 audit(1778137446.756:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.789857][T10850] F2FS-fs (loop1): invalid crc value
[  720.797366][   T28] audit: type=1326 audit(1778137446.756:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.0.1188" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcbb5d9ca6b code=0x7ff00000
[  720.826362][T10850] F2FS-fs (loop1): Found nat_bits in checkpoint
[  721.042441][T10850] F2FS-fs (loop1): Start checkpoint disabled!
[  721.078757][T10850] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  721.779390][T10877] loop3: detected capacity change from 0 to 512
[  722.569830][ T8140] kworker/u4:23: attempt to access beyond end of device
[  722.569830][ T8140] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  722.657127][T10877] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #16: comm syz.3.1193: corrupted inode contents
[  722.662798][ T8140] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  722.677829][ T8140] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  722.772183][T10877] EXT4-fs error (device loop3): ext4_dirty_inode:6143: inode #16: comm syz.3.1193: mark_inode_dirty error
[  722.828718][T10877] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #16: comm syz.3.1193: corrupted inode contents
[  722.840683][T10884] batman_adv: batadv0: Interface deactivated: dummy0
[  722.883866][T10877] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.1193: mark_inode_dirty error
[  722.885755][T10884] batman_adv: batadv0: Removing interface: dummy0
[  722.929630][T10877] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #16: comm syz.3.1193: corrupted inode contents
[  722.962867][T10884] bridge_slave_0: left allmulticast mode
[  722.979829][T10877] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  722.997644][T10884] bridge_slave_0: left promiscuous mode
[  723.007820][T10877] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #16: comm syz.3.1193: corrupted inode contents
[  723.026547][T10884] bridge0: port 1(bridge_slave_0) entered disabled state
[  723.053421][T10877] EXT4-fs error (device loop3): ext4_truncate:4301: inode #16: comm syz.3.1193: mark_inode_dirty error
[  723.082091][T10884] bridge_slave_1: left allmulticast mode
[  723.101727][T10877] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  723.109992][T10884] bridge_slave_1: left promiscuous mode
[  723.126408][T10884] bridge0: port 2(bridge_slave_1) entered disabled state
[  723.136138][T10877] EXT4-fs (loop3): 1 truncate cleaned up
[  723.169470][T10877] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  723.187735][T10884] .`: (slave bond_slave_0): Releasing backup interface
[  723.200509][ T3461] EXT4-fs error (device loop3): ext4_release_dquot:6989: comm kworker/u4:9: Failed to release dquot type 1
[  723.227247][T10877] ext4 filesystem being mounted at /295/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  723.239521][T10884] .`: (slave bond_slave_1): Releasing backup interface
[  723.382055][T10884] team0: Port device team_slave_0 removed
[  723.464689][T10884] team0: Port device 
2
6±ÿþ€ removed
[  723.499075][T10884] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  723.525304][T10884] batman_adv: batadv0: Removing interface: batadv_slave_0
[  723.527985][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  723.583958][T10884] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  723.602832][T10884] batman_adv: batadv0: Removing interface: batadv_slave_1
[  723.716943][T10886] loop1: detected capacity change from 0 to 2048
[  723.771833][T10886] EXT4-fs: Ignoring removed i_version option
[  723.867657][T10886] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  723.938456][T10886] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  724.164141][T10896] loop0: detected capacity change from 0 to 64
[  724.243279][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  725.594171][   T27] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  725.829278][T10912] loop0: detected capacity change from 0 to 512
[  725.837172][T10912] EXT4-fs: Ignoring removed oldalloc option
[  725.875543][T10912] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: comm syz.0.1202: Parent and EA inode have the same ino 15
[  725.897007][T10912] EXT4-fs (loop0): 1 orphan inode deleted
[  725.902730][   T27] usb 3-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  725.919971][   T27] usb 3-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  725.930334][   T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  725.939474][   T27] usb 3-1: Product: syz
[  725.944241][   T27] usb 3-1: Manufacturer: syz
[  725.944818][T10912] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  725.949027][   T27] usb 3-1: SerialNumber: syz
[  725.991098][   T27] usb 3-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[  726.204829][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  726.263006][T10920] loop1: detected capacity change from 0 to 128
[  726.301356][T10920] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; going on - but anything won't be destroyed because it's read-only
[  726.322586][T10920] hpfs: filesystem error: improperly stopped
[  726.329339][T10920] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  726.368610][T10920] hpfs: Proceeding, but your filesystem could be corrupted if you delete files or directories
[  726.402478][T10920] hpfs: You really don't want any checks? You are crazy...
[  726.421759][T10920] hpfs: hpfs_map_sector(): read error
[  726.439777][T10920] hpfs: code page support is disabled
[  726.447132][T10920] hpfs: hpfs_map_4sectors(): unaligned read
[  726.455009][T10920] hpfs: hpfs_map_4sectors(): unaligned read
[  726.461429][T10920] hpfs: filesystem error: unable to find root dir
[  726.528017][T10924] loop0: detected capacity change from 0 to 128
[  726.604726][T10924] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  726.624990][T10924] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  726.706577][   T27] usb 3-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[  726.782496][ T5770] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  726.812873][T10929] loop1: detected capacity change from 0 to 512
[  726.820866][   T27] usb 3-1: USB disconnect, device number 9
[  726.854426][T10929] EXT4-fs (loop1): 1 orphan inode deleted
[  726.871091][T10929] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  727.011777][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  727.342396][T10934] loop1: detected capacity change from 0 to 4096
[  727.464823][T10934] ntfs: volume version 3.1.
[  727.775284][T10946] loop2: detected capacity change from 0 to 1024
[  727.787189][T10946] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  727.937748][T10946] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  728.080374][T10946] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  728.293019][T10956] syz.1.1218 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  728.391736][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  728.961020][T10975] loop3: detected capacity change from 0 to 256
[  729.024268][T10975] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  730.995653][T10998] Illegal XDP return value 4294967274 on prog  (id 130) dev N/A, expect packet loss!
[  731.149833][T10973] loop1: detected capacity change from 0 to 32768
[  731.298502][T10973] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1224 (10973)
[  731.382377][T10973] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  731.443325][T10973] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  731.477337][T10973] BTRFS info (device loop1): using free space tree
[  731.832964][T11004] team0: Port device team_slave_0 removed
[  731.843020][T10973] BTRFS info (device loop1): enabling ssd optimizations
[  731.876360][T10973] BTRFS info (device loop1): auto enabling async discard
[  732.825869][ T5771] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  733.197246][T11033] loop3: detected capacity change from 0 to 512
[  733.330321][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.378579][ T8329] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by udevd (8329)
[  733.379379][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.465106][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.478978][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.495225][T11033] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  733.497144][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.522907][T11033] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #16: comm syz.3.1236: corrupted inode contents
[  733.535955][T11033] EXT4-fs error (device loop3): ext4_dirty_inode:6143: inode #16: comm syz.3.1236: mark_inode_dirty error
[  733.552863][T11033] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #16: comm syz.3.1236: corrupted inode contents
[  733.566734][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.569980][T11033] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.1236: mark_inode_dirty error
[  733.614701][T11033] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #16: comm syz.3.1236: corrupted inode contents
[  733.643439][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.654690][T11033] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  733.664494][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.675305][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.702803][T11033] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #16: comm syz.3.1236: corrupted inode contents
[  733.741462][T11037] netlink: 'syz.1.1235': attribute type 3 has an invalid length.
[  733.756625][T11033] EXT4-fs error (device loop3): ext4_truncate:4301: inode #16: comm syz.3.1236: mark_inode_dirty error
[  733.881706][T11033] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  733.949229][T11033] EXT4-fs (loop3): 1 truncate cleaned up
[  733.971927][ T3461] __quota_error: 59 callbacks suppressed
[  733.971948][ T3461] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  733.979159][T11033] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  734.045810][ T3461] EXT4-fs error (device loop3): ext4_release_dquot:6989: comm kworker/u4:9: Failed to release dquot type 1
[  734.201106][T11033] ext4 filesystem being mounted at /305/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  735.061378][T11033] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #12: block 13: comm syz.3.1236: bad entry in directory: inode out of bounds - offset=24, inode=33554445, rec_len=16, size=4096 fake=0
[  735.196104][   T11] Bluetooth: hci4: Frame reassembly failed (-90)
[  735.209005][T11050] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1240'.
[  735.308877][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  735.350654][ T8146] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  735.488106][ T8146] EXT4-fs error (device loop3): ext4_release_dquot:6989: comm kworker/u4:26: Failed to release dquot type 1
[  737.377318][ T9781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  737.497691][T11073] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  738.796121][T11088] loop0: detected capacity change from 0 to 4096
[  739.138102][T11088] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  740.167688][T11112] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1257'.
[  740.178005][T11112] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1257'.
[  740.238276][T11112] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1257'.
[  740.929648][T11129] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1261'.
[  742.076907][T11140] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1265'.
[  742.195426][    T8] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  742.281486][T11144] bridge0: port 4(vlan3) entered blocking state
[  742.289904][T11144] bridge0: port 4(vlan3) entered disabled state
[  742.302345][T11144] vlan3: entered allmulticast mode
[  742.311524][T11144] bridge0: entered allmulticast mode
[  742.326071][T11144] vlan3: left allmulticast mode
[  742.331315][T11144] bridge0: left allmulticast mode
[  742.404200][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  742.432971][    T8] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  742.461019][    T8] usb 4-1: New USB device found, idVendor=04b4, idProduct=de64, bcdDevice= 0.00
[  742.477449][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  742.491160][    T8] usb 4-1: config 0 descriptor??
[  743.182554][    T8] cypress 0003:04B4:DE64.0007: unknown main item tag 0x5
[  743.217072][    T8] cypress 0003:04B4:DE64.0007: collection stack underflow
[  743.262048][    T8] cypress 0003:04B4:DE64.0007: item 0 4 0 12 parsing failed
[  743.277119][    T8] cypress 0003:04B4:DE64.0007: parse failed
[  743.283798][    T8] cypress: probe of 0003:04B4:DE64.0007 failed with error -22
[  743.483302][ T5855] usb 4-1: USB disconnect, device number 6
[  745.334228][T11183] loop2: detected capacity change from 0 to 512
[  745.503104][T11183] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #16: comm syz.2.1276: corrupted inode contents
[  745.531309][T11183] EXT4-fs error (device loop2): ext4_dirty_inode:6143: inode #16: comm syz.2.1276: mark_inode_dirty error
[  745.581908][T11183] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #16: comm syz.2.1276: corrupted inode contents
[  745.637009][T11183] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.1276: mark_inode_dirty error
[  745.662974][T11183] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #16: comm syz.2.1276: corrupted inode contents
[  745.698418][T11183] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  745.720281][T11183] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #16: comm syz.2.1276: corrupted inode contents
[  745.745217][T11183] EXT4-fs error (device loop2): ext4_truncate:4301: inode #16: comm syz.2.1276: mark_inode_dirty error
[  745.788854][T11183] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  745.832332][T11183] EXT4-fs (loop2): 1 truncate cleaned up
[  745.861453][T11183] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  745.876268][ T8149] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  745.903589][ T8149] EXT4-fs error (device loop2): ext4_release_dquot:6989: comm kworker/u4:27: Failed to release dquot type 1
[  745.916638][T11183] ext4 filesystem being mounted at /323/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  746.281851][T11188] loop3: detected capacity change from 0 to 32768
[  746.334000][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  746.360960][T11188] JBD2: Ignoring recovery information on journal
[  746.569593][T11188] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  747.772398][ T5773] ocfs2: Unmounting device (7,3) on (node local)
[  747.856145][T11209] loop1: detected capacity change from 0 to 4096
[  747.902285][T11209] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  748.372638][T11215] loop3: detected capacity change from 0 to 2048
[  748.385896][T11201] loop2: detected capacity change from 0 to 32768
[  748.408419][T11215] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  748.488708][T11201] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  748.519306][ T8329] udevd[8329]: incorrect nilfs2 checksum on /dev/loop3
[  748.534345][T11223] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  748.767515][ T5821] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  748.847086][ T5772] ocfs2: Unmounting device (7,2) on (node local)
[  749.013210][ T5821] usb 1-1: Using ep0 maxpacket: 8
[  749.036246][ T5821] usb 1-1: config 0 has an invalid interface number: 33 but max is 1
[  749.067345][ T5821] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  749.101533][ T5821] usb 1-1: config 0 has no interface number 1
[  749.108274][ T5821] usb 1-1: config 0 interface 33 altsetting 0 endpoint 0x6 has an invalid bInterval 0, changing to 7
[  749.205144][ T5821] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  749.290682][ T5821] usb 1-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1
[  749.337623][ T5821] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  749.380736][ T5821] usb 1-1: Product: syz
[  749.385446][ T5821] usb 1-1: Manufacturer: syz
[  749.466859][ T5821] usb 1-1: SerialNumber: syz
[  749.503206][ T5821] usb 1-1: config 0 descriptor??
[  749.535474][ T5821] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx
[  749.637193][ T5855] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  749.768519][ T2320] pvrusb2: Invalid write control endpoint
[  749.773088][ T5821] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx
[  749.794723][ T5821] usb 1-1: USB disconnect, device number 5
[  749.820490][ T2320] usb 1-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2
[  749.835907][ T5855] usb 2-1: Using ep0 maxpacket: 32
[  749.893152][ T2320] usb 1-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw
[  749.964698][ T5855] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  749.973188][ T5855] usb 2-1: config 0 has no interface number 0
[  750.022154][ T5855] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  750.038889][ T5855] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  750.047498][ T5855] usb 2-1: Product: syz
[  750.057304][ T5855] usb 2-1: Manufacturer: syz
[  750.062850][ T5855] usb 2-1: SerialNumber: syz
[  750.075030][ T5855] usb 2-1: config 0 descriptor??
[  750.086912][ T5855] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  750.235148][T11246] loop2: detected capacity change from 0 to 64
[  750.407924][ T5855] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  750.574724][ T5855] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  750.954178][    C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[  750.972895][   T23] usb 2-1: USB disconnect, device number 12
[  750.992421][   T23] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  751.020844][   T23] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  751.063398][T11252] loop2: detected capacity change from 0 to 4096
[  751.066849][   T23] quatech2 2-1:0.51: device disconnected
[  751.107546][T11252] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  751.759412][    T8] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  751.787288][ T5855] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  752.005425][    T8] usb 3-1: Using ep0 maxpacket: 32
[  752.063490][    T8] usb 3-1: New USB device found, idVendor=0fe9, idProduct=d501, bcdDevice=23.50
[  752.120735][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  752.153081][    T8] usb 3-1: Product: syz
[  752.180974][    T8] usb 3-1: Manufacturer: syz
[  752.205601][    T8] usb 3-1: SerialNumber: syz
[  752.277486][    T8] usb 3-1: config 0 descriptor??
[  752.301536][    T8] dvb-usb: found a 'DViCO FusionHDTV5 USB Gold' in warm state.
[  752.310910][    T8] dvb-usb: bulk message failed: -22 (2/0)
[  752.332615][    T8] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  752.344220][    T8] dvbdev: DVB: registering new adapter (DViCO FusionHDTV5 USB Gold)
[  752.362836][    T8] usb 3-1: media controller created
[  752.368861][ T5855] usb 4-1: Using ep0 maxpacket: 32
[  752.378385][ T5855] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  752.399366][    T8] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  752.415350][ T5855] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  752.428991][ T5855] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  752.453453][    T8] usb 3-1: selecting invalid altsetting 7
[  752.453583][ T5855] usb 4-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  752.502238][ T5855] usb 4-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  752.523177][ T5855] usb 4-1: Product: syz
[  752.527664][ T5855] usb 4-1: Manufacturer: syz
[  752.544254][ T5855] usb 4-1: SerialNumber: syz
[  752.578693][ T5855] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input14
[  752.610407][    T8] cxusb: set interface failed
[  752.615685][    T8] dvb-usb: bulk message failed: -22 (1/0)
[  752.638710][T11272] loop1: detected capacity change from 0 to 32768
[  752.658424][T11264] dvb-usb: bulk message failed: -22 (3/0)
[  752.701571][    T8] DVB: Unable to find symbol lgdt330x_attach()
[  752.708246][    T8] dvb-usb: no frontend was attached by 'DViCO FusionHDTV5 USB Gold'
[  752.805824][T11272] JBD2: Ignoring recovery information on journal
[  752.838717][    T8] rc_core: IR keymap rc-dvico-portable not found
[  752.849520][    T8] Registered IR keymap rc-empty
[  752.856635][    T8] rc rc0: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.2/usb3/3-1/rc/rc0
[  752.870116][    T8] input: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.2/usb3/3-1/rc/rc0/input15
[  752.886165][    T8] dvb-usb: schedule remote query interval to 100 msecs.
[  752.893704][    T8] dvb-usb: DViCO FusionHDTV5 USB Gold successfully initialized and connected.
[  752.913807][    T8] usb 3-1: USB disconnect, device number 10
[  753.047212][T11272] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  753.091669][ T5855] usb 4-1: USB disconnect, device number 7
[  753.141769][ T5855] appletouch 4-1:1.0: input: appletouch disconnected
[  753.323591][    T8] dvb-usb: DViCO FusionHDTV5 USB Gold successfully deinitialized and disconnected.
[  753.452093][ T5771] ocfs2: Unmounting device (7,1) on (node local)
[  753.998126][T11296] loop2: detected capacity change from 0 to 2048
[  754.081750][T11300] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  754.983691][T11300] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  755.017290][T11300] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4)
[  755.058834][T11300] Remounting filesystem read-only
[  755.081606][ T8140] NILFS (loop2): discard dirty page: offset=4096, ino=6
[  755.113247][ T8140] NILFS (loop2): discard dirty block: blocknr=39, size=1024
[  755.147878][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.162837][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.174043][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.187731][ T8140] NILFS (loop2): discard dirty page: offset=0, ino=2
[  755.197581][ T8140] NILFS (loop2): discard dirty block: blocknr=18, size=1024
[  755.211019][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.225033][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.237861][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.251302][ T8140] NILFS (loop2): discard dirty page: offset=0, ino=5
[  755.261521][ T8140] NILFS (loop2): discard dirty block: blocknr=41, size=1024
[  755.270262][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.279561][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.288973][ T8140] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.300041][ T5772] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  755.309956][ T5772] NILFS (loop2): discard dirty page: offset=0, ino=6
[  755.316937][ T5772] NILFS (loop2): discard dirty block: blocknr=35, size=1024
[  755.326009][ T5772] NILFS (loop2): discard dirty block: blocknr=36, size=1024
[  755.344863][ T5772] NILFS (loop2): discard dirty block: blocknr=37, size=1024
[  755.354621][ T5772] NILFS (loop2): discard dirty block: blocknr=38, size=1024
[  755.368982][ T5772] NILFS (loop2): discard dirty page: offset=0, ino=4
[  755.393186][ T5772] NILFS (loop2): discard dirty block: blocknr=40, size=1024
[  755.401592][ T5772] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.417711][ T5772] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.429745][ T5772] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.464248][ T5772] NILFS (loop2): discard dirty page: offset=0, ino=3
[  755.476655][ T5772] NILFS (loop2): discard dirty block: blocknr=42, size=1024
[  755.486455][ T5772] NILFS (loop2): discard dirty block: blocknr=43, size=1024
[  755.498991][ T5772] NILFS (loop2): discard dirty block: blocknr=44, size=1024
[  755.510750][ T5772] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.520503][ T5772] NILFS (loop2): discard dirty page: offset=196608, ino=3
[  755.530512][ T5772] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.544451][ T5772] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  755.558844][ T5772] NILFS (loop2): discard dirty block: blocknr=49, size=1024
[  755.569825][ T5772] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  756.084161][T11309] loop3: detected capacity change from 0 to 4096
[  756.111342][T11309] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  756.932533][ T8149] Bluetooth: hci4: Frame reassembly failed (-90)
[  759.156580][ T9781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  759.628830][T11348] loop1: detected capacity change from 0 to 8192
[  759.645241][T11351] loop2: detected capacity change from 0 to 64
[  759.688452][T11348] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  759.796196][T11348] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  759.851499][T11348] REISERFS (device loop1): using ordered data mode
[  759.858276][T11348] reiserfs: using flush barriers
[  759.935445][T11348] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  759.988495][T11348] REISERFS (device loop1): checking transaction log (loop1)
[  760.037854][ T5772] hfs: node 4:3 still has 1 user(s)!
[  760.249040][T11356] loop2: detected capacity change from 0 to 1024
[  760.279131][T11348] REISERFS (device loop1): Using tea hash to sort names
[  760.309024][T11348] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  760.735195][T11358] loop2: detected capacity change from 0 to 4096
[  760.836607][T11358] ntfs: volume version 3.1.
[  760.852877][T11354] loop3: detected capacity change from 0 to 32768
[  760.988571][T11360] loop1: detected capacity change from 0 to 1024
[  761.038683][T11360] EXT4-fs (loop1): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[  761.119725][T11360] EXT4-fs error (device loop1): ext4_map_blocks:610: inode #3: block 2: comm syz.1.1327: lblock 2 mapped to illegal pblock 2 (length 1)
[  761.180253][T11360] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  761.205402][T11360] EXT4-fs error (device loop1): ext4_map_blocks:610: inode #3: block 48: comm syz.1.1327: lblock 0 mapped to illegal pblock 48 (length 1)
[  761.263755][T11360] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  761.265054][T11365] loop0: detected capacity change from 0 to 4096
[  761.302568][T11360] EXT4-fs error (device loop1): ext4_acquire_dquot:6953: comm syz.1.1327: Failed to acquire dquot type 0
[  761.348606][T11360] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5939: Corrupt filesystem
[  761.384599][T11360] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.1327: mark_inode_dirty error
[  761.385306][T11366] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  761.441366][T11360] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  761.455428][T11365] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  761.464230][T11368] capability: warning: `syz.2.1330' uses 32-bit capabilities (legacy support in use)
[  761.476260][T11365] Remounting filesystem read-only
[  761.505793][T11360] EXT4-fs (loop1): 1 orphan inode deleted
[  761.527813][ T8146] EXT4-fs error (device loop1): ext4_map_blocks:610: inode #3: block 1: comm kworker/u4:26: lblock 1 mapped to illegal pblock 1 (length 1)
[  761.549873][T11360] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  761.610784][ T8146] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  761.639110][ T8146] EXT4-fs error (device loop1): ext4_release_dquot:6989: comm kworker/u4:26: Failed to release dquot type 0
[  761.842507][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  761.857984][ T8151] EXT4-fs error (device loop1): ext4_map_blocks:610: inode #3: block 1: comm kworker/u4:28: lblock 1 mapped to illegal pblock 1 (length 1)
[  761.899615][T11374] loop0: detected capacity change from 0 to 512
[  761.908230][ T8151] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  761.958041][ T8151] EXT4-fs error (device loop1): ext4_release_dquot:6989: comm kworker/u4:28: Failed to release dquot type 0
[  761.982943][ T5771] EXT4-fs error (device loop1): __ext4_get_inode_loc:4496: comm syz-executor: Invalid inode table block 1 in block_group 0
[  762.033477][T11374] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #16: comm syz.0.1333: corrupted inode contents
[  762.049098][ T5771] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5939: Corrupt filesystem
[  762.081267][T11374] EXT4-fs error (device loop0): ext4_dirty_inode:6143: inode #16: comm syz.0.1333: mark_inode_dirty error
[  762.100028][ T5771] EXT4-fs error (device loop1): ext4_quota_off:7237: inode #3: comm syz-executor: mark_inode_dirty error
[  762.130128][T11374] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #16: comm syz.0.1333: corrupted inode contents
[  762.210287][T11374] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.1333: mark_inode_dirty error
[  762.253549][T11374] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #16: comm syz.0.1333: corrupted inode contents
[  762.293796][T11374] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  762.322317][T11374] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #16: comm syz.0.1333: corrupted inode contents
[  762.358414][T11374] EXT4-fs error (device loop0): ext4_truncate:4301: inode #16: comm syz.0.1333: mark_inode_dirty error
[  762.385835][T11374] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  762.424881][T11374] EXT4-fs (loop0): 1 truncate cleaned up
[  762.432361][T11374] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  762.478758][ T8143] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  762.482263][T11374] ext4 filesystem being mounted at /330/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  762.527395][ T8143] EXT4-fs error (device loop0): ext4_release_dquot:6989: comm kworker/u4:24: Failed to release dquot type 1
[  762.634273][T11380] loop3: detected capacity change from 0 to 32768
[  762.843785][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  762.957483][T11380] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  762.990867][T11380] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  763.000593][T11380] BTRFS info (device loop3): using free space tree
[  763.083109][T11380] BTRFS info (device loop3): enabling ssd optimizations
[  763.105446][T11380] BTRFS info (device loop3): auto enabling async discard
[  763.236990][T11376] loop2: detected capacity change from 0 to 32768
[  763.313942][T11376] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  763.715985][ T5773] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  763.755025][T11376] XFS (loop2): Ending clean mount
[  763.820871][T11376] XFS (loop2): Quotacheck needed: Please wait.
[  764.612794][T11376] XFS (loop2): Quotacheck: Done.
[  764.757602][ T5772] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  765.428704][T11429] loop3: detected capacity change from 0 to 1024
[  765.481887][T11429] hfsplus: bad catalog entry type
[  765.531444][ T8149] hfsplus: b-tree write err: -5, ino 25
[  765.537969][ T8149] hfsplus: b-tree write err: -5, ino 4
[  765.544158][ T8149] hfsplus: b-tree write err: -5, ino 2
[  765.648487][T11426] loop1: detected capacity change from 0 to 32768
[  765.693968][T11431] loop3: detected capacity change from 0 to 4096
[  765.703727][T11426] ERROR: (device loop1): diAllocAG: ipimap->i_size is wrong
[  765.703727][T11426] 
[  765.723703][T11426] ERROR: (device loop1): remounting filesystem as read-only
[  765.737961][T11426] ialloc: diAlloc returned -5!
[  765.931436][T11433] loop1: detected capacity change from 0 to 1024
[  766.773869][    T8] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  767.400340][T11450] loop0: detected capacity change from 0 to 128
[  767.462155][T11450] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  767.513736][T11450] hpfs: filesystem error: improperly stopped
[  767.547653][T11450] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  767.558252][T11452] loop2: detected capacity change from 0 to 512
[  767.573317][T11450] hpfs: You really don't want any checks? You are crazy...
[  767.596299][    T8] usb 2-1: Using ep0 maxpacket: 8
[  767.605146][T11450] hpfs: Code page index out of array
[  767.611057][T11452] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  767.611799][T11450] hpfs: code page support is disabled
[  767.644403][    T8] usb 2-1: config 0 interface 0 altsetting 144 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  767.659255][T11450] hpfs: hpfs_map_4sectors(): unaligned read
[  767.668275][    T8] usb 2-1: config 0 interface 0 altsetting 144 endpoint 0x81 has invalid wMaxPacketSize 0
[  767.682082][    T8] usb 2-1: config 0 interface 0 has no altsetting 0
[  767.689555][    T8] usb 2-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[  767.699741][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  767.701428][T11452] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters
[  767.711646][    T8] usb 2-1: config 0 descriptor??
[  767.731752][T11450] hpfs: hpfs_map_4sectors(): unaligned read
[  767.746141][T11452] Quota error (device loop2): write_blk: dquota write failed
[  767.753881][T11452] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[  767.765064][T11452] Quota error (device loop2): write_blk: dquota write failed
[  767.771075][T11450] hpfs: filesystem error: unable to find root dir
[  767.773599][T11452] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  767.790877][T11452] EXT4-fs error (device loop2): ext4_acquire_dquot:6953: comm syz.2.1350: Failed to acquire dquot type 1
[  767.807167][T11452] EXT4-fs (loop2): 1 truncate cleaned up
[  767.819492][T11452] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  768.002750][T11452] EXT4-fs error (device loop2): __ext4_remount:6756: comm syz.2.1350: Abort forced by user
[  768.047634][T11452] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  768.059840][T11452] EXT4-fs error (device loop2): __ext4_remount:6756: comm syz.2.1350: Abort forced by user
[  768.071379][T11452] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[  768.839772][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  769.009931][    T8] smartjoyplus 0003:6666:8804.0008: item fetching failed at offset 2/5
[  769.022515][    T8] smartjoyplus 0003:6666:8804.0008: parse failed
[  769.029092][    T8] smartjoyplus: probe of 0003:6666:8804.0008 failed with error -22
[  769.041873][    T8] usb 2-1: USB disconnect, device number 13
[  769.721278][T11463] loop0: detected capacity change from 0 to 32768
[  769.795244][T11477] loop3: detected capacity change from 0 to 512
[  769.796859][T11463] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  769.851071][T11477] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  769.887359][T11477] EXT4-fs (loop3): Test dummy encryption mode enabled
[  769.902205][T11463] XFS (loop0): Ending clean mount
[  769.918249][T11477] EXT4-fs error (device loop3): dx_probe:823: inode #2: comm syz.3.1357: Attempting to read directory block (0) that is past i_size (256)
[  770.031512][T11477] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  770.042799][T11489] loop2: detected capacity change from 0 to 4096
[  770.065158][ T5770] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  770.074006][T11477] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  770.104770][T11490] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  770.192854][    T8] usb 2-1: new low-speed USB device number 14 using dummy_hcd
[  770.270375][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  770.466773][    T8] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  770.550147][    T8] usb 2-1: config 0 has no interface number 0
[  770.571808][    T8] usb 2-1: config 0 interface 1 altsetting 19 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  770.627559][    T8] usb 2-1: config 0 interface 1 altsetting 19 endpoint 0x81 has invalid wMaxPacketSize 0
[  770.706508][    T8] usb 2-1: config 0 interface 1 has no altsetting 0
[  770.774990][    T8] usb 2-1: New USB device found, idVendor=2179, idProduct=0053, bcdDevice= 0.00
[  770.852843][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  770.933682][    T8] usb 2-1: config 0 descriptor??
[  770.986250][T11499] loop2: detected capacity change from 0 to 256
[  771.027020][T11499] exfat: Deprecated parameter 'utf8'
[  771.032623][T11499] exfat: Deprecated parameter 'utf8'
[  771.109671][T11499] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  771.146544][T11498] loop3: detected capacity change from 0 to 4096
[  772.617749][    T8] uclogic 0003:2179:0053.0009: pen parameters not found
[  773.149234][    T8] uclogic 0003:2179:0053.0009: interface is invalid, ignoring
[  773.161247][    T8] usb 2-1: USB disconnect, device number 14
[  773.399677][T11513] loop0: detected capacity change from 0 to 4096
[  773.462203][T11513] ntfs: volume version 3.1.
[  774.031309][T11533] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1373'.
[  774.042232][T11533] validate_nla: 41 callbacks suppressed
[  774.042249][T11533] netlink: 'syz.0.1373': attribute type 1 has an invalid length.
[  774.562132][T11523] loop2: detected capacity change from 0 to 40427
[  774.578660][T11523] F2FS-fs (loop2): Invalid segment/section count (31, 24 x 1)
[  774.586632][T11523] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  774.599741][T11523] F2FS-fs (loop2): inline encryption not supported
[  774.611463][T11523] F2FS-fs (loop2): invalid crc value
[  774.617994][T11523] F2FS-fs (loop2): Ignore s_resuid=0, s_resgid=60928 w/o reserve_root
[  774.629836][T11523] F2FS-fs (loop2): Found nat_bits in checkpoint
[  774.855705][T11523] F2FS-fs (loop2): Try to recover 2th superblock, ret: -30
[  774.864773][T11523] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  775.767754][T11554] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  776.937003][T11561] loop3: detected capacity change from 0 to 32768
[  776.959706][T11561] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.1381 (11561)
[  776.992729][T11561] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  777.028211][T11561] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  777.029401][T11567] x_tables: ip_tables: icmp match: only valid for protocol 1
[  777.051230][T11561] BTRFS info (device loop3): using free space tree
[  777.146564][T11583] loop2: detected capacity change from 0 to 1024
[  777.173627][T11583] EXT4-fs: Ignoring removed bh option
[  777.197099][T11583] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  777.211637][T11561] BTRFS info (device loop3): enabling ssd optimizations
[  777.241725][T11561] BTRFS info (device loop3): auto enabling async discard
[  777.287415][T11583] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  777.437171][T11583] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  777.601078][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  777.678499][ T5773] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  777.757676][T11593] loop2: detected capacity change from 0 to 256
[  777.841059][T11593] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x726cdf83, utbl_chksum : 0xe619d30d)
[  777.892005][   T28] audit: type=1800 audit(1778137500.761:82): pid=11593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1387" name="file1" dev="loop2" ino=1048631 res=0 errno=0
[  778.585591][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  778.592451][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  778.944739][ T5855] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  779.217261][ T5855] usb 4-1: unable to get BOS descriptor or descriptor too short
[  779.226636][ T5855] usb 4-1: not running at top speed; connect to a high speed hub
[  779.239301][ T5855] usb 4-1: New USB device found, idVendor=2466, idProduct=8010, bcdDevice= 0.40
[  779.249117][ T5855] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  779.258541][ T5855] usb 4-1: Product: syz
[  779.263349][ T5855] usb 4-1: Manufacturer: syz
[  779.268447][ T5855] usb 4-1: SerialNumber: syz
[  779.428260][ T5867] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  779.632831][ T5867] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  779.644552][ T5867] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1056, setting to 64
[  779.655997][ T5867] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  779.669696][ T5867] usb 3-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[  779.679036][ T5867] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  779.690361][ T5867] usb 3-1: config 0 descriptor??
[  779.700440][T11606] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  780.143885][T11610] loop0: detected capacity change from 0 to 128
[  780.161493][ T5867] hkems 0003:2006:0118.000A: unknown main item tag 0x2
[  780.162394][ T5855] usb 4-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  780.178835][ T5855] usb 4-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  780.187177][T11610] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  780.204952][ T5867] hkems 0003:2006:0118.000A: invalid report_count 41914
[  780.213869][ T5867] hkems 0003:2006:0118.000A: item 0 2 1 9 parsing failed
[  780.222680][ T5867] hkems 0003:2006:0118.000A: parse failed
[  780.224645][T11610] hpfs: filesystem error: improperly stopped
[  780.228918][ T5867] hkems: probe of 0003:2006:0118.000A failed with error -22
[  780.246088][T11610] 
[  780.256470][T11610] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  780.270120][ T5855] usb 4-1: USB disconnect, device number 8
[  780.284293][T11610] hpfs: You really don't want any checks? You are crazy...
[  780.319796][T11610] hpfs: hpfs_map_sector(): read error
[  780.330384][T11610] hpfs: code page support is disabled
[  780.350979][T11610] hpfs: hpfs_map_4sectors(): unaligned read
[  780.360072][T11610] hpfs: hpfs_map_4sectors(): unaligned read
[  780.370575][T11610] hpfs: filesystem error: unable to find root dir
[  780.384319][ T5867] usb 3-1: USB disconnect, device number 11
[  781.116466][T11621] loop3: detected capacity change from 0 to 128
[  781.254004][T11621] FAT-fs (loop3): error, corrupted directory (invalid i_start)
[  781.286113][T11621] FAT-fs (loop3): Filesystem has been set read-only
[  783.528650][   T23] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  783.860798][   T23] usb 4-1: Using ep0 maxpacket: 16
[  783.882538][   T23] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  783.895246][   T23] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  783.907517][   T23] usb 4-1: config 0 interface 0 has no altsetting 0
[  783.915640][   T23] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  783.940304][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  783.971563][   T23] usb 4-1: config 0 descriptor??
[  784.544425][   T23] hid (null): usage index exceeded
[  784.803776][    T8] usb 4-1: USB disconnect, device number 9
[  786.768866][ T8143] Bluetooth: hci4: Frame reassembly failed (-84)
[  788.927798][ T5788] Bluetooth: hci4: command 0xfc11 tx timeout
[  788.938483][ T9781] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  789.860614][T11720] loop3: detected capacity change from 0 to 32768
[  789.941324][T11720] JBD2: Ignoring recovery information on journal
[  789.964370][T11720] jbd2_journal_bmap: journal block not found at offset 32 on loop3-75
[  789.980575][T11720] JBD2: bad block at offset 32
[  789.996820][T11720] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  790.283699][T11720] 
[  790.286204][T11720] ======================================================
[  790.293865][T11720] WARNING: possible circular locking dependency detected
[  790.301537][T11720] syzkaller #0 Not tainted
[  790.306603][T11720] ------------------------------------------------------
[  790.314098][T11720] syz.3.1421/11720 is trying to acquire lock:
[  790.320546][T11720] ffff888054299538 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_init_acl+0x30a/0x770
[  790.330190][T11720] 
[  790.330190][T11720] but task is already holding lock:
[  790.338029][T11720] ffff888030b564e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x3a8/0x6f0
[  790.348558][T11720] 
[  790.348558][T11720] which lock already depends on the new lock.
[  790.348558][T11720] 
[  790.359269][T11720] 
[  790.359269][T11720] the existing dependency chain (in reverse order) is:
[  790.368590][T11720] 
[  790.368590][T11720] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  790.377896][T11720]        down_read+0x46/0x2e0
[  790.383335][T11720]        ocfs2_start_trans+0x3a8/0x6f0
[  790.388949][T11720]        ocfs2_shutdown_local_alloc+0x1fc/0xaa0
[  790.395425][T11720]        ocfs2_dismount_volume+0x1e5/0x8a0
[  790.401465][T11720]        generic_shutdown_super+0x134/0x2b0
[  790.408191][T11720]        kill_block_super+0x44/0x90
[  790.413682][T11720]        deactivate_locked_super+0x97/0x100
[  790.419755][T11720]        cleanup_mnt+0x43b/0x4d0
[  790.426136][T11720]        task_work_run+0x1d4/0x260
[  790.431403][T11720]        exit_to_user_mode_loop+0xe6/0x110
[  790.437524][T11720]        exit_to_user_mode_prepare+0xee/0x180
[  790.444006][T11720]        syscall_exit_to_user_mode+0x1a/0x50
[  790.450752][T11720]        do_syscall_64+0x61/0xa0
[  790.456097][T11720]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  790.463296][T11720] 
[  790.463296][T11720] -> #2 (sb_internal#3){.+.+}-{0:0}:
[  790.471270][T11720]        ocfs2_start_trans+0x2a9/0x6f0
[  790.477267][T11720]        ocfs2_xattr_set+0xeb7/0x13e0
[  790.483131][T11720]        __vfs_setxattr+0x431/0x470
[  790.488634][T11720]        __vfs_setxattr_noperm+0x12d/0x5e0
[  790.494778][T11720]        vfs_setxattr+0x16b/0x2f0
[  790.500089][T11720]        path_setxattr+0x3f3/0x5d0
[  790.505354][T11720]        __x64_sys_setxattr+0xbb/0xd0
[  790.511594][T11720]        do_syscall_64+0x55/0xa0
[  790.516589][T11720]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  790.523678][T11720] 
[  790.523678][T11720] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}:
[  790.535402][T11720]        down_write+0x97/0x200
[  790.540405][T11720]        ocfs2_reserve_suballoc_bits+0x16e/0x44c0
[  790.548574][T11720]        ocfs2_reserve_new_metadata_blocks+0x416/0x9a0
[  790.555748][T11720]        ocfs2_init_xattr_set_ctxt+0x30b/0x710
[  790.562191][T11720]        ocfs2_xattr_set+0xc3f/0x13e0
[  790.567886][T11720]        __vfs_setxattr+0x431/0x470
[  790.573563][T11720]        __vfs_setxattr_noperm+0x12d/0x5e0
[  790.579858][T11720]        vfs_setxattr+0x16b/0x2f0
[  790.584938][T11720]        path_setxattr+0x3f3/0x5d0
[  790.590367][T11720]        __x64_sys_setxattr+0xbb/0xd0
[  790.595796][T11720]        do_syscall_64+0x55/0xa0
[  790.601804][T11720]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  790.609162][T11720] 
[  790.609162][T11720] -> #0 (&oi->ip_xattr_sem){++++}-{3:3}:
[  790.618647][T11720]        __lock_acquire+0x2df1/0x7d40
[  790.624618][T11720]        lock_acquire+0x19e/0x420
[  790.630267][T11720]        down_read+0x46/0x2e0
[  790.635254][T11720]        ocfs2_init_acl+0x30a/0x770
[  790.641100][T11720]        ocfs2_mknod+0x140f/0x2300
[  790.647053][T11720]        ocfs2_create+0x196/0x430
[  790.652126][T11720]        path_openat+0x12a0/0x3230
[  790.657639][T11720]        do_filp_open+0x1f5/0x430
[  790.663007][T11720]        do_sys_openat2+0x134/0x1d0
[  790.668562][T11720]        __x64_sys_openat+0x139/0x160
[  790.675217][T11720]        do_syscall_64+0x55/0xa0
[  790.681022][T11720]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  790.687765][T11720] 
[  790.687765][T11720] other info that might help us debug this:
[  790.687765][T11720] 
[  790.698968][T11720] Chain exists of:
[  790.698968][T11720]   &oi->ip_xattr_sem --> sb_internal#3 --> &journal->j_trans_barrier
[  790.698968][T11720] 
[  790.713638][T11720]  Possible unsafe locking scenario:
[  790.713638][T11720] 
[  790.721546][T11720]        CPU0                    CPU1
[  790.727556][T11720]        ----                    ----
[  790.732967][T11720]   rlock(&journal->j_trans_barrier);
[  790.738575][T11720]                                lock(sb_internal#3);
[  790.745652][T11720]                                lock(&journal->j_trans_barrier);
[  790.753888][T11720]   rlock(&oi->ip_xattr_sem);
[  790.758783][T11720] 
[  790.758783][T11720]  *** DEADLOCK ***
[  790.758783][T11720] 
[  790.767247][T11720] 8 locks held by syz.3.1421/11720:
[  790.773188][T11720]  #0: ffff88802274c418 (sb_writers#30){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  790.783645][T11720]  #1: ffff888054299818 (&type->i_mutex_dir_key#26){+.+.}-{3:3}, at: path_openat+0x7dc/0x3230
[  790.795325][T11720]  #2: ffff8880542a89d8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x16e/0x44c0
[  790.810304][T11720]  #3: ffff8880542989d8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x16e/0x44c0
[  790.825183][T11720]  #4: ffff88805429df58 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x16e/0x44c0
[  790.840292][T11720]  #5: ffff88802274c608 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_mknod+0xf1d/0x2300
[  790.850042][T11720]  #6: ffff888030b564e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x3a8/0x6f0
[  790.861103][T11720]  #7: ffff888021afc990 (jbd2_handle#2){.+.+}-{0:0}, at: start_this_handle+0x1f7a/0x21c0
[  790.871304][T11720] 
[  790.871304][T11720] stack backtrace:
[  790.877730][T11720] CPU: 0 PID: 11720 Comm: syz.3.1421 Not tainted syzkaller #0
[  790.885598][T11720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  790.895958][T11720] Call Trace:
[  790.899446][T11720]  <TASK>
[  790.902762][T11720]  dump_stack_lvl+0x18c/0x250
[  790.907673][T11720]  ? load_image+0x420/0x420
[  790.912250][T11720]  ? show_regs_print_info+0x20/0x20
[  790.917912][T11720]  ? print_circular_bug+0x12b/0x1a0
[  790.923338][T11720]  check_noncircular+0x2fc/0x400
[  790.928591][T11720]  ? print_deadlock_bug+0x5d0/0x5d0
[  790.934383][T11720]  ? _find_first_zero_bit+0xd3/0x100
[  790.938047][T11729] PM: Image not found (code -6)
[  790.939963][T11720]  ? add_lock_to_list+0x191/0x280
[  790.950712][T11720]  __lock_acquire+0x2df1/0x7d40
[  790.955716][T11720]  ? verify_lock_unused+0x140/0x140
[  790.961247][T11720]  ? __lock_acquire+0x7d40/0x7d40
[  790.966485][T11720]  ? do_raw_spin_lock+0x11f/0x2c0
[  790.971928][T11720]  lock_acquire+0x19e/0x420
[  790.976579][T11720]  ? ocfs2_init_acl+0x30a/0x770
[  790.981482][T11720]  ? __might_sleep+0xe0/0xe0
[  790.986386][T11720]  ? read_lock_is_recursive+0x20/0x20
[  790.991885][T11720]  ? trace_ocfs2_claim_new_inode_at_loc+0x1c0/0x1c0
[  790.998782][T11720]  ? mark_lock+0x94/0x320
[  791.003531][T11720]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  791.009833][T11720]  down_read+0x46/0x2e0
[  791.014325][T11720]  ? ocfs2_init_acl+0x30a/0x770
[  791.019666][T11720]  ocfs2_init_acl+0x30a/0x770
[  791.024646][T11720]  ? ocfs2_mknod_locked+0x159/0x290
[  791.030364][T11720]  ? ocfs2_acl_chmod+0x330/0x330
[  791.035622][T11720]  ? dquot_alloc_inode+0x211/0xa40
[  791.040904][T11720]  ? ocfs2_block_signals+0x9b/0xe0
[  791.046156][T11720]  ? ocfs2_free_mem_caches+0x50/0x50
[  791.051661][T11720]  ? mark_lock+0x94/0x320
[  791.056129][T11720]  ? ocfs2_init_security_get+0x139/0x1a0
[  791.061806][T11720]  ocfs2_mknod+0x140f/0x2300
[  791.066622][T11720]  ? ocfs2_mkdir+0x430/0x430
[  791.071471][T11720]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  791.077748][T11720]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  791.084676][T11720]  ? ocfs2_inode_unlock+0xa5/0x140
[  791.089917][T11720]  ? __lock_acquire+0x7d40/0x7d40
[  791.095844][T11720]  ? __rwlock_init+0x150/0x150
[  791.100910][T11720]  ? do_raw_spin_unlock+0x121/0x230
[  791.106679][T11720]  ? rcu_is_watching+0x15/0xb0
[  791.111742][T11720]  ? ocfs2_lookup+0x494/0x950
[  791.116815][T11720]  ocfs2_create+0x196/0x430
[  791.121805][T11720]  ? ocfs2_update_inode_fsync_trans+0x240/0x240
[  791.128618][T11720]  ? from_kgid+0x16d/0x690
[  791.133173][T11720]  ? ocfs2_lookup+0x950/0x950
[  791.137893][T11720]  ? HAS_UNMAPPED_ID+0x11a/0x180
[  791.142969][T11720]  ? inode_permission+0xf3/0x480
[  791.148117][T11720]  ? bpf_lsm_inode_create+0x9/0x10
[  791.153621][T11720]  ? security_inode_create+0xb7/0x100
[  791.159580][T11720]  ? ocfs2_lookup+0x950/0x950
[  791.164666][T11720]  path_openat+0x12a0/0x3230
[  791.169333][T11720]  ? do_filp_open+0x430/0x430
[  791.174271][T11720]  ? __virt_addr_valid+0x18c/0x540
[  791.179721][T11720]  do_filp_open+0x1f5/0x430
[  791.184445][T11720]  ? vfs_tmpfile+0x490/0x490
[  791.189614][T11720]  ? _raw_spin_unlock+0x28/0x40
[  791.194775][T11720]  ? alloc_fd+0x58f/0x630
[  791.199597][T11720]  do_sys_openat2+0x134/0x1d0
[  791.204497][T11720]  ? do_sys_open+0xe0/0xe0
[  791.209243][T11720]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  791.215350][T11720]  ? lock_chain_count+0x20/0x20
[  791.220345][T11720]  __x64_sys_openat+0x139/0x160
[  791.225439][T11720]  do_syscall_64+0x55/0xa0
[  791.230241][T11720]  ? clear_bhb_loop+0x40/0x90
[  791.235007][T11720]  ? clear_bhb_loop+0x40/0x90
[  791.239905][T11720]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  791.246213][T11720] RIP: 0033:0x7fa82399cdd9
[  791.250797][T11720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  791.270988][T11720] RSP: 002b:00007fa8247ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  791.279717][T11720] RAX: ffffffffffffffda RBX: 00007fa823c15fa0 RCX: 00007fa82399cdd9
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  791.280168][ T5788] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  791.287805][T11720] RDX: 000000000002a442 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  791.287826][T11720] RBP: 00007fa823a32d69 R08: 0000000000000000 R09: 0000000000000000
[  791.287838][T11720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  791.287849][T11720] R13: 00007fa823c16038 R14: 00007fa823c15fa0 R15: 00007fff8f5ffbe8
[  791.287883][T11720]  </TASK>
[  791.295638][ T5788] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  791.529149][T11740] PM: Image not found (code -6)
[  791.684180][ T5788] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  791.751035][ T5788] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  791.763883][ T5788] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  791.789524][ T5788] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  791.874784][T11735] lo speed is unknown, defaulting to 1000
[  791.897349][ T8506] ocfs2: Unmounting device (7,3) on (node local)
[  792.147165][T11735] chnl_net:caif_netlink_parms(): no params data found
[  792.385656][T11735] bridge0: port 1(bridge_slave_0) entered blocking state
[  792.410961][T11735] bridge0: port 1(bridge_slave_0) entered disabled state
[  792.435975][T11735] bridge_slave_0: entered allmulticast mode
[  792.454032][T11735] bridge_slave_0: entered promiscuous mode
[  792.474621][T11735] bridge0: port 2(bridge_slave_1) entered blocking state
[  792.482423][T11735] bridge0: port 2(bridge_slave_1) entered disabled state
[  792.505746][T11735] bridge_slave_1: entered allmulticast mode
[  792.512988][T11735] bridge_slave_1: entered promiscuous mode
[  792.606952][ T8134] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  792.636123][T11735] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  792.659181][T11735] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  792.700835][ T8134] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  792.755421][T11735] team0: Port device team_slave_0 added
[  792.790033][ T8134] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  792.827442][T11735] team0: Port device team_slave_1 added
[  792.859742][ T8134] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  792.926232][T11735] batman_adv: batadv0: Adding interface: batadv_slave_0
[  792.935799][T11735] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  792.969127][T11735] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  793.017075][T11735] batman_adv: batadv0: Adding interface: batadv_slave_1
[  793.024571][T11735] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  793.053187][T11735] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  793.169828][T11735] hsr_slave_0: entered promiscuous mode
[  793.176847][T11735] hsr_slave_1: entered promiscuous mode
[  793.184952][T11735] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  793.193479][T11735] Cannot create hsr debugfs directory
[  793.565384][T11735] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  793.583281][T11735] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  793.599094][T11735] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  793.610622][T11735] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  793.705832][T11735] 8021q: adding VLAN 0 to HW filter on device bond0
[  793.769697][T11735] 8021q: adding VLAN 0 to HW filter on device team0
[  793.790276][ T8143] bridge0: port 1(bridge_slave_0) entered blocking state
[  793.798621][ T8143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  793.813648][ T8143] bridge0: port 2(bridge_slave_1) entered blocking state
[  793.821309][ T8143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  794.057119][ T5788] Bluetooth: hci4: command tx timeout
[  794.101370][ T8134] hsr_slave_0: left promiscuous mode
[  794.112604][ T8134] hsr_slave_1: left promiscuous mode
[  794.123247][ T8134] veth1_macvtap: left promiscuous mode
[  794.132651][ T8134] veth0_macvtap: left promiscuous mode
[  794.138432][ T8134] veth1_vlan: left promiscuous mode
[  794.893346][ T8134] .` (unregistering): Released all slaves
[  795.047741][T11735] 8021q: adding VLAN 0 to HW filter on device batadv0
[  795.472646][T11735] veth0_vlan: entered promiscuous mode
[  795.488064][T11735] veth1_vlan: entered promiscuous mode
[  795.501196][ T8134] IPVS: stop unused estimator thread 0...
[  795.518299][T11735] veth0_macvtap: entered promiscuous mode
[  795.532903][T11735] veth1_macvtap: entered promiscuous mode
[  795.559954][T11735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  795.570886][T11735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  795.606374][T11735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  795.627201][T11735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  795.647765][T11735] batman_adv: batadv0: Interface activated: batadv_slave_0
[  795.658878][T11735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  795.674015][T11735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  795.686069][T11735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  795.697893][T11735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  795.708181][T11735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  795.719039][T11735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  795.730312][T11735] batman_adv: batadv0: Interface activated: batadv_slave_1
[  795.762115][T11735] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  795.772351][T11735] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  795.781816][T11735] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  795.791368][T11735] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  795.832182][T11735] ieee80211 phy12: Selected rate control algorithm 'minstrel_ht'
[  795.862205][ T8134] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  795.896555][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  795.902219][T11735] ieee80211 phy13: Selected rate control algorithm 'minstrel_ht'
[  795.912023][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  795.950679][ T8134] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  795.955841][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  795.970192][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  796.045239][ T8134] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  796.174271][ T8134] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  796.277649][ T5788] Bluetooth: hci4: command tx timeout
[  797.256081][ T8134] hsr_slave_0: left promiscuous mode
[  797.263206][ T8134] hsr_slave_1: left promiscuous mode
[  797.269354][ T8134] batman_adv: batadv0: Interface deactivated: dummy0
[  797.276930][ T8134] batman_adv: batadv0: Removing interface: dummy0
[  797.286179][ T8134] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  797.294680][ T8134] batman_adv: batadv0: Removing interface: batadv_slave_0
[  797.302947][ T8134] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  797.311128][ T8134] batman_adv: batadv0: Removing interface: batadv_slave_1
[  797.320395][ T8134] bridge_slave_1: left allmulticast mode
[  797.327196][ T8134] bridge_slave_1: left promiscuous mode
[  797.334071][ T8134] bridge0: port 2(bridge_slave_1) entered disabled state
[  797.343852][ T8134] bridge_slave_0: left allmulticast mode
[  797.350555][ T8134] bridge_slave_0: left promiscuous mode
[  797.357560][ T8134] bridge0: port 1(bridge_slave_0) entered disabled state
[  797.370088][ T8134] veth1_macvtap: left promiscuous mode
[  797.376350][ T8134] veth0_macvtap: left promiscuous mode
[  797.383833][ T8134] veth1_vlan: left promiscuous mode
[  797.390954][ T8134] veth0_vlan: left promiscuous mode
[  797.650178][ T8134] team0 (unregistering): Port device team_slave_1 removed
[  797.689647][ T8134] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[  797.728755][ T8134] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[  797.826624][ T8134] .` (unregistering): Released all slaves
[  798.303676][ T8134] IPVS: stop unused estimator thread 0...
[  799.289616][ T8134] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0