last executing test programs:

5m44.11316212s ago: executing program 32 (id=225):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
pwritev2(r0, &(0x7f0000000500)=[{&(0x7f0000000000)='d', 0x200200}, {0x0, 0x7fdfee00}, {&(0x7f0000000140)="d9", 0x98}], 0x2, 0x0, 0x0, 0x3)

5m33.107341264s ago: executing program 0 (id=337):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

5m32.531827371s ago: executing program 0 (id=345):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, 0x0)

5m32.252517704s ago: executing program 0 (id=348):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'veth1_to_hsr\x00', &(0x7f0000000000)=@ethtool_ts_info={0x21}})

5m31.75864154s ago: executing program 0 (id=356):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB='time_offset=0x00000000000000c7,keep_last_dots,fmask=00000000000000000077777,utf8,errors=remount-ro,time_offset=0x0000000000000000,fmask=00000000000000000002001,errors=remount-ro,sys_tz,gid=', @ANYRESHEX=0x0, @ANYBLOB="0080"], 0x1, 0x154d, &(0x7f0000001b00)="$eJzs3AmcjlX7OPDrOufcY0h6mmQZzjnXzZMshyTJkiRLkiRJki0haZJXEhJDtqQhCckyJMsQkmVi0tj3fUlokjRJEpItOf/PFD9vv+r/br2v3+ed6/v5PB/nes59nfvcz/Us930ez3zTdVitJrWrNyIi+JfgL/8kAkAsAAwCgGsAIACA8nHl47L6c0pM/Nd2wv5cD6Vc6RmwK4nrn71x/bM3rn/2xvXP3rj+2RvXP3vj+mdvXH/GsrMtMwpey7fse+P1/+yMP///i2SWHvfFutLXdwOI+XtTuP7ZG9f/v1bw92zE9c/euP7ZVeyVngD7M83559L49Z8d5PjDHq5/9sb1Zyw7+3kdOCdc8XXoK3WDSPb+DuRKP/8YY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjGUPZ/xlCgAuta/0vBhjjDHGGGOMMfbn8Tmu9AwYY4wxxhhjjDH273Tpu34BEhQEEAM5IBZyQi4QAHA15IFrIALXQhxcB3nhesgH+aEAFIR4KASFQYMBCwQhFIGiEIUboBjcCMWhBJSEUuCgNJSBm6As3Azl4BYoD7dCBbgNKkIlqAxV4HaoCndANbgTqsNdUANqQi2oDXdDHbgH6sK9UA/ug/pwPzSAB6AhPAiN4CFoDA9DE3gEmsKj0AyaQwtoCa3+qfwXoCe8CL2gNyRCH+gLL0E/6A8DYCAMgpdhMLwCQ+BVSIKhMAxeg+HwOoyAN2AkjILR8CaMgbdgLIyD8TABkmEiTIK3YTK8A1NgKkyD6ZACM2AmvAuzYDbMgfdgLrwP82A+LICFkAofwCJYDGnwISyBjyAdlsIyWA4rYCWsgtWwBtbCOlj/Yz/YCJtgM2yBrbANtsMO2Am74GPYDZ/AHtj7+nwAyIDP/igfNvxu/ulL+bAPPoUM6IaAgAIFKlQYgzEYi7GYC3NhbsyNeTAPRjCCcRiHeTEv5sN8WAALYDzGY2EsjAYNEhIWwSIYxSgWw2JYHItjSSyJDh2WwTJYFm/GclgOy2N5rIAVsCJWwkpYBatgVayK1bAaVsfqWANrYC2shXfj3dgH62JdrIf1sD7Wv7Q8hY2wETbGxtgEm2BTbIrNsBm2wBbYCltha2yNbbANtsN22B7bYwfsgAmYgB2xI3bCTtgZO2MX7IJdsSt2w+7YPfOFHIAv4ovYG2uIPtgX+2I/TMoxAAfiQHwZB+Mr+Aq+ikk4FIfha/gavo4j8BSOxFE4GkdjVfEWjsVxSGICJmMyTsJJOBkn4xScilNxOqbgDJyJM3EWzsbZ+B7OxffxfZyP83EhpmIqLsLFmIZpuARPYzouxWW4HFfgSlyBq3ENrsZ1uB7X4UbciJtxM27Frbgdt+NO3IkfowLAT3Av7sUkzMAM3I/78QAewIN4EDMxEw/hITyMh/EIHsGjeBSP4XE8gcfxJJ7EU3gaz+AZPIfn8Dw+F/9V449LrE0CkUUJJWJEjIgVsSKXyCVyi9wij8gjIiIi4kScyCvyinwinyggCoh4ES8Ki8LCCCNIhDEAIKIiKoqJYqK4KC5KipLCCSfKiDKirCgryolyory4VVQQt4mKopJo66qIKqKqaOeqiTtFdVFd1BA1RS1RW9QWdUQdUVfUFfVEPVFf1BcNxAOioeiDA/AhkVWZJmIoNhXDsJloLuTF97HWYgS2EW1FO/GEGIUjsYNo7RLE06KjGIudxF/EOHxWdBETsKt4XnQT3UUP8YLoKdq4XqK3mIJ9RF8xHfuJ/mKAGChmYU3xHs7NWUu8KpLEUDFMvCYW4utihHhDjBSjxGjxphgj3hJjxTgxXkwQyWKimCTeFpPFO2KKmCqmiekiRcwQM8W7YpaYLeaI98Rc8b6YJ+aLBWKhSBUfiEVisUgTH4ol4iORLpaKZWK5WCFWilVitVgj1op1Yr3YIDaKTWKz2CK2im1iu9ghdopd4mOxW3wi9oi9Yp/4VGSIz8R+8bk4IL4QB8WXIlN8JQ6Jr8Vh8Y04Ir4VR8V34pg4Lk6I78VJ8YM4JU6LM+KsOCd+FOfFT+KCyHrrRymklEoGMkbmkLEyp8wlr5K5ZXDx0b1WxsnrZF55vcwn88sCsqCMl4VkYamlkVaSDGURWVRG5Q2ymLxRFpclZElZSjpZWpaRN8my8mZZTt4iy8tbZQV5m6woK8nKsoq8XVaVd0iI/LKPGrKmrCVry7tlItwj68p7ZT15n6wv75cN5AOyoXxQNpIPycbyYdlEPiKbykdlM9lctpAtZSv5mGwtH5dtZFvZTj4h28snZQf5lEyQT8uO0l98ijwru8jnZFf5vOwmu8se8id5QXrZS/aW0AdkX/mS7Cf7ywFyoBwkX5aD5StyiHxVJsmhcph8TQ6Xr8sR8g05Uo6So+Wbcox8S46V4+R4OUEmy4lyknxbTpbvyClyqpwmp8sUOUMOuDjSHCn/Zv7bv5M/5Oe9b5Zb5Fa5TW6XO+ROuUt+LHfL3XKP3CP3yX0yQ2bI/XK/PCAPyIPyoMyUmfKQPCQPy8PyiDwij8qj8pg8Ls/K7+VJ+YM8JU/L0/KsPCfPyfMXHwNQqISSSqlAxagcKlblVLnUVSq3ulrlUdeoiLpWxanrVF51vcqn8qsCqqCKV4VUYaWVUVaRClURVVRF1Q148QmjSqpSyqnSqoy66R/JV8XUjaq4KvGr/EvzS/yD+bVSrVRr1Vq1UW1UO9VOtVftVQfVQSWoBNVRdVSdVCfVWXVWXVQX1VV1Vd1UN9VD9VA9VU/VS/VSiSpR9VUvqX6qvxqgBqpB6mU1WA1WQ9QQlaSS1DA1TA1Xw9UINUKNVCPVaDVajVFj1Fg1Vo1X41WySlaT1CQ1WU1WU9QUNU1NUykqRc1UM9UsNUvNUXPUXDVXzVPz1AK1QKWqVLVILVJpKk0tUUtUulqqlqrlarlaqVaq1Wq1WqvWqvVqvdqoNqp0tUVtUdvUNrVD7VC71C61W+1We9QetU/tUxkqQ+1X+9UBdUAdVAdVpspUh9QhdVgdVkfUEXVUHVXH1DF1Qp1QJ9VJdUqdUmfUGXVOnVPn1Xl1QV3IOu0LRCACFaggJogJYoPYIFeQK8gd5A7yBHmCSBAJ4oK4IG9wfZAvyB8UCAoG8UGhoHCgAxPYQFwsejS4ISgW3BgUD0oEJYNSgQtKB2ViLnYGtwTlg1uDCsFtQcWgUlA5qBLcHlQN7giqBXcG1YO7ghpBzaBWUDu4O6gT3BPUDe4N6gX3BfWD+4MGwQNBw+DBoFHwUNA4eDhoEjwSNA0eDZoFzYMWQcugVXBzUO5PG9/7U/kfd710b52o++i++iXdT/fXA/RAPUi/rAfrV/QQ/apO0kP1MP2aHq5f1yP0G3qkHqVH6zf1GP2WHqvH6fF6gk7WE/Uk/baerN/RU/RUPU1P1yl6hp6p39Wz9Gw9R7+n5+r39Tw9Xy/QC3Wq/kAv0ot1mv5QL9Ef6XS9VC/Ty/UKvVKv0qv1Gr1Wr9Pr9Qa9UW/Sm/UWvVVv09v1Dr1T79If6936E71H79X79Kc6Q3+m9+vP9QH9hT6ov9SZ+it9SH+tD+tv9BH9rT6qv9PH9HF9Qn+vT+of9Cl9Wp/RZ/U5/aM+r3/SF7TPOrnP+ng3yigTY2JMrIk1uUwuk9vkNnlMHhMxERNn4kxek9fkM/lMAVPAxJt4U9gUNlnIkCliipioiZpippgpboqbkqakccaZMqaMKWvKmnKmnClvypsKpoKpaCqayqayud3cbu4wd5g7zZ3mLnOXqWlqmtqmtqlj6pi6pq6pZ+qZ+qa+aWAamIamoWlkGpnGprFpYpqYpqapaWaamRamhWllWpnWprVpY9qYdqadaW/amw6mg0kwCaaj6Wg6mU6ms+lsupgupqvparqZbqaH6WF6mp6ml+llEk2i6Wv6mn6mnxlgBphBZpAZbAabIWaISTJJZpgZZoab4WaEGWFGmlFmdNaJqnnLjDXjzHgzwSSbZDPJTDKTzWQzxUwx08w0k2JSzEwz08wys8wcM8fMNXPNPDPPLDALTKpJNYvMIpNm0swSs8Skm3SzzCwzK8wKs8qsMmvMGrPOrDMbYIPZZDaZLWaL2Wa2mR1mh9lldpndZrfZY/aYfWafyTAZZr/Zbw6YA+agOWgyTaY5ZA6Zw+awOWKOmKPmqDlmjpkT5oQ5aU6aU+aUOWPOmHMm/8XPS29ibU6by15lc9urbR57jf3fcQFb0MbbQraw1Tafzf+r2Fhri9sStqQtZZ0tbcvYm34TV7SVbGVbxd5uq9o7bLXfxHXsPbauvdfWs/fZ2vbuX8X17f22gX3ENkQEsM1tY9vSNrGP2Kb2UdvMNrctbEvb3j5pO9inbIJ92na0z/wmXmQX2zV2rV1n19s9dq89Y8/aw/Ybe87+aHvZ3naQfdkOtq/YIfZVm2SH/iYebd+0Y+xbdqwdZ8fbCb+Jp9npNsXOsDPtu3aWnf2bONV+YOfaNDvPzrcL7MKf46w5pdkP7RL7kU23ASyzy+0Ku9Kusqv/Z67L7Ua7yW62u+0ndpvdbnfYnXbXpRNhu9fus5/aDPuZPWS/tgfsF/agPWIz7Vc/x1nHd8R+a4/a7+wxe9yesN/bk/YHdSk769i/tz/ZC9ZbICQgSYoCiqEcFEs5KRddRbnpaspD11CErqU4uo7y0vWUj/JTASpI8VSICpMmQ5aIQipCRSlKN9Cl6ZWkUuSoNJWhm6gs3Uzl6BYqT7dSBbqNKlIlqkxV6HaqSndQNbqTqtNdVINqUi2qTXdTHbqH6tK9VI/uo/p0PzWgB6ghPUiN6CFqTA9TE3qEmtKj1IyaUwtqSa3oMWpNj1Mbakvt6AlqT09SB3qKEuhp6kjPUCf6C3WmZ6kLPUdd6XnqRt2pB71APelF6kW9KZH6UF96ifpRfxpAA2kQvUyD6RUaQq9SEg2lYfQaDafXaQS9QSNpFOUEgDH0Fo2lcTSeJlAyTaRJ9DZNpndoCk2laTSdUmgGzaR3aRbNpjn0Hs2l92kezacFtJBS6QNaRIspjT6kJfQRpdNSWkbLaQWtpFW0mtbQWlpH62kDbaRNtJm20FbaRttpB+2kXfQx7aZPaA/tpX30KWXQZ7SfPqcD9AUdpC8pk76iQ/Q1HaZv6Ah963vTd3SMjtMJ+p5O0g90ik7TGTpL5+hHOk8/0QXyBCGGIpShCoMwJswRxoY5w1zhVWHu8OowT3hNGAmvDePC68K84fVhvjB/WCAsGMaHhcLCoQ5NaEMKw7BIWDSMhjeExcIbw+JhibBkWCp0YemwTHhTWDa8OSwX3hKWD28NK4S3hRXDSuEj91UJbw+rhneE1cI7w+rhXWGNsGZYK6wd3h3WCe8J64b3hvXC+8Jy4f1hg/CBsGH4YNgofChsHD4cNgkfCZuGj4bNwuZhi7Bl2Cp8LGwdPh62CduG7cInwvbhk2GH8KkwIXw67Bg+83P//Yv/uD8x7BP2DV8KXwq9v1cuiC6MpkY/iC6KLo6mRT+MLol+FE2PLo0uiy6ProiujK6Kro6uia6Nrouuj26Iboxuim6Oel87Bzh0wkmnXOBiXA4X63K6XO4ql9td7fK4a1zEXevi3HUur7ve5XP5XQFX0MW7Qq6w084468iFrogr6qLuBlfM3eiKuxKupCvlnCvtyriWrpVr5Vq7x10b19a1c0+4J9yT7kn3lHvKPe06umdcJ/cX19k967q459xz7nnXzXV3PdwLrqebmOeX12Si6+v6un6unxvgBrhBbpAb7Aa7IW6IS3JJbpgb5oa74W6EG+FGupFutBvtxrgxbqwb68a78S7ZJbtJbpKb7Ca7KW6Km+amuRSX4ma6mW6Wm+Wqzv5lL/PcPLfALXCpLtUtclnnjGluiVvi0l26W+aWuRVuhVvlVrk1bo1b59a5DW6D2+Q2uS1ui9vmtrkdbofb5Xa53W632+Ov+WVQl+H2u/3ugDvgDrovXab7yh1yX7vD7ht3xH3rjrrv8hxzx90J97076X5wp9xpd8addefcj+68+8ldcN4lRyZGJkXejkyOvBOZEpkamRaZHkmJzIjMjLwbmRWZHZkTeS8yN/J+ZF5kfmRBZGEkNfJBZFFkcSQt8mFkSeSjSHpkaWRZZHlkRWRlxPtC20JfxBf1UX+DL+Zv9MV9CV/Sl/LOl/Zl/E2+rL/Zl/O3+PL+Vl/B3+Yr+kq+sn/UN/PNfQvf0rfyj/nW/nHfxrf17fwTvr1/0nfwT/kE/7Tv6J/xnfxffGf/rO/in/Nd/fO+m+/ue/gXfE//ou/le/tE38f39S/5fr6/H+AH+kH+ZT/Yv+KH+Fd9kh/qh/nX/HD/uh/h3/Aj/Sg/OuZNP+bSJTJM8Ml+op/k3/aT/Tt+ip/qp/npPsXP8DP9u36Wn+3n+Pf8XP++n+fn+wV+oU/1H/hFfrFP8x/6Jf4jn+6X/s/S8iq/2q/xa/06v95v8Bv9Jr/Zb/Fb/Ta/3e/wO/0u/7Hf7T/xe/xev89/6jP8Z36//9wf8F/4g/5Ln+m/8of81/6w/8Yf8d/6o/47f8wf9yf89/6k/8Gf8qf9GX/Wn/M/+vP+J3+Bf7PGGGOMMfZ3mXi5KX7d88tyfp/fyRF/tXFfALh6e8HMv+7POqPckO+Xdn8R3z4CAE/37vrQpVuNGomJiRe3TZcQFJ0PcOmboCw/LxtfjJdCO3gSEqAtlP3d+fcX3c/R3xg/eitArr/KiYXL8eXxPwfAxN8Z/7EnRi+qEJ6J+/+MPx+geNHLOTnhcrwU2v28vtIWyv3B/PO3/hvzz/lFMkCbv8rJDZfjy/MvA4/DM5Dwqy0ZY4wxxhhjjLFf9BeVO1+6/rz0Pz5/7/o8Xl3OyQGX4791fc4YY4wxxhhjjLEr79nuPZ567NIv9x5LSGjb+ed7/p5GtX9k43+80RT+XSP/H2ng/7ED9B7g0j0KAP7FAQGyGvI/eRRb/yP7Srr4avnfXSvO+gB6FLv4o8c/b6ex/3ot/pnGlXpHYowxxhhjjP27XD7p//X96kpNiDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYy4b+E39O7EofI2OMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMXal/b8AAAD//zCM/8A=")
mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f00000000c0)='securityfs\x00', 0x0, 0x0)

5m31.163492826s ago: executing program 0 (id=362):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340)={0x0, 0xa}, 0xd58495bc, 0x0, 0xffffffffffffffff, 0x2dc2c9024f5022d2, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x29)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r0, 0x2000012, 0xff0, 0x0, &(0x7f0000000c40), 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

5m30.307066648s ago: executing program 0 (id=371):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0xdc, 0x2100)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r0, 0xc040564a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, {0xd4, 0x28}})

5m29.455757705s ago: executing program 33 (id=371):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0xdc, 0x2100)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r0, 0xc040564a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, {0xd4, 0x28}})

4m34.334604723s ago: executing program 7 (id=970):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)=@ipv6_deladdrlabel={0x38, 0x48, 0x1, 0x0, 0x0, {0xa, 0x0, 0x80}, [@IFAL_LABEL={0x8, 0x2, 0x4}, @IFAL_ADDRESS={0x14, 0x1, @loopback}]}, 0x38}}, 0x0)

4m33.938919074s ago: executing program 7 (id=974):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000000180)=ANY=[@ANYBLOB="140000001300010000001f000000000006"], 0x14}], 0x1}, 0x0)

4m33.28365798s ago: executing program 7 (id=978):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7ff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix_mp={0xbe26, 0x0, 0x42474752, 0x2, 0x0, [{0x2}, {0x6}, {0x0, 0x2}, {}, {}, {}, {0x0, 0x5}], 0x0, 0x20, 0x2, 0x1}})

4m32.816582772s ago: executing program 7 (id=984):
syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000240)={[{@errors_remount}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@sys_tz}, {@zero_size_dir}, {@errors_continue}, {@time_offset={'time_offset', 0x3d, 0x8}}, {@discard}, {@errors_continue}, {@dmask={'dmask', 0x3d, 0xb}}, {@discard}, {@keep_last_dots}]}, 0x1, 0x152a, &(0x7f0000003000)="$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")
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)

4m32.134695679s ago: executing program 7 (id=992):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x24, &(0x7f0000000440), &(0x7f0000000100)=0x8)

4m31.450446215s ago: executing program 7 (id=997):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000480)='oom_score_adj\x00')
lseek(r0, 0x10001, 0x0)

4m30.591173037s ago: executing program 34 (id=997):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000480)='oom_score_adj\x00')
lseek(r0, 0x10001, 0x0)

2m42.202523941s ago: executing program 6 (id=2312):
r0 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205647, &(0x7f0000000340)={0xf000000, 0xc, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f90e, 0x0, '\x00', @ptr=0xc}})

2m41.926640781s ago: executing program 6 (id=2317):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYBLOB="0000000000000000240012800b00010067656e657665000014000280080001000100000005000c00080000001400030067656e65766531"], 0x58}}, 0x2000000)

2m41.606445789s ago: executing program 6 (id=2322):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_COPY(r0, 0x3b83, &(0x7f0000000040)={0x28, 0x2, 0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x4001})

2m41.380240482s ago: executing program 6 (id=2326):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2000080, &(0x7f0000000340)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c726f6469722c696f636861727365743d63703836342c756e695f786c6174653d312c636f6465706167653d313235302c73686f72746e616d653d6c6f7765722c756e695f786c6174653d302c726f6469722c6e6f6e756d7461696c3d302c696f636861727365743d63703836322c726f6469722c73686f72746e616d653d77696e39352c6e6f6e756d7461696c3d302c002aa220cdeeb5ba33c93123800bef80e5155d8840d88fc461c6"], 0x25, 0x336, &(0x7f0000000500)="$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")
mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='./file1\x00', 0x0, 0x3002, 0x0)

2m40.366633805s ago: executing program 6 (id=2338):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0)

2m39.762007982s ago: executing program 6 (id=2347):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0x3, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_ifindex, @loopback}, 0x3)

2m39.102148794s ago: executing program 35 (id=2347):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0x3, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_ifindex, @loopback}, 0x3)

53.890177509s ago: executing program 2 (id=3570):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000340)=ANY=[@ANYBLOB="68000000150021042abd7000fedbdf250a3f", @ANYRES32=0x0, @ANYBLOB="1400060001"], 0x68}, 0x1, 0x0, 0x0, 0x20040051}, 0x48080)

53.676091546s ago: executing program 2 (id=3575):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0x9, 0x0, 0x0, {}, [{0x54, 0x1, [@m_bpf={0x50, 0x1, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x2007}, @TCA_ACT_BPF_OPS={0x4}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

53.421704377s ago: executing program 2 (id=3579):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x6, 0x3, &(0x7f0000000500)=@framed, &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x0, 0x85, 0xcf, &(0x7f0000000000)="fae68670fef1c45ff0634fe72a6253b4357c978887379648e34b8e43761f35000437ab851cde4821ce97abc68f6a1c3593e2a7a267f78fff0e9e1743899a7dc5c1d2ecae353bd4bcdb61c053b1d7b1223331d664596d93a54d408700062455bf71027a99387a4c190aa0098ed6ed8951ff86c092399a8d11b76c5e00"/133, &(0x7f00000008c0)=""/206, 0x1000, 0x0, 0x1a, 0x64, 0xfffffffffffffffe, &(0x7f00000000c0)="d5231f25b5f85be12036902ce1a29123e3c1d41aa6d9c06ff230c473bf3c", 0x0, 0x8000}, 0x48)

53.240624041s ago: executing program 2 (id=3582):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000180)='./file2\x00', 0x402, &(0x7f00000001c0)=ANY=[], 0x1, 0x242, &(0x7f0000000380)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

52.852037026s ago: executing program 2 (id=3584):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='oom_adj\x00')
writev(r0, &(0x7f0000000280)=[{&(0x7f0000000140)='1', 0x1}, {&(0x7f0000000400)="4be8", 0x2}], 0x2)

52.377740966s ago: executing program 2 (id=3589):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x14, 0x42, 0x9, 0x70bd27, 0x0, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x44804}, 0x84)

51.885811177s ago: executing program 36 (id=3589):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x14, 0x42, 0x9, 0x70bd27, 0x0, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x44804}, 0x84)

7.438236278s ago: executing program 3 (id=4104):
syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000080)='./file0\x00', 0x4400, &(0x7f0000002840)={[{@nodots}, {@dots}, {@nodots}, {@nodots}, {@dots}, {@fat=@errors_continue}, {@fat=@dos1xfloppy}, {@dots}, {@fat=@nfs_stale_rw}, {@nodots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@dots}, {@fat=@usefree}, {@nodots}, {@nodots}, {@fat=@nfs}, {@fat=@discard}, {@nodots}, {@nodots}, {@nodots}, {@dots}, {@nodots}, {@dots}, {@nodots}, {@dots}, {@nodots}]}, 0x1, 0x1d5, &(0x7f0000002640)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x6ad085a78214bb71, 0x0)

6.729668554s ago: executing program 3 (id=4112):
unshare(0x2c040000)
syz_clone(0x638c1100, 0x0, 0x0, 0x0, 0x0, 0x0)

5.710443723s ago: executing program 3 (id=4121):
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
writev(r0, &(0x7f0000000a40)=[{&(0x7f0000000bc0)="d18a876f8f46c153dde8db040cc7e763ba2fab29", 0x14}, {&(0x7f0000000040)='z', 0x1}], 0x2)

5.199876451s ago: executing program 3 (id=4130):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
fcntl$lock(0xffffffffffffffff, 0x24, 0x0)

4.738161782s ago: executing program 3 (id=4137):
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f0000000180)={[{@debug}]}, 0x0, 0x236, &(0x7f0000000300)="$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")
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000040)=0x1000)

3.708418454s ago: executing program 1 (id=4146):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv6_delrule={0x30, 0x21, 0x1, 0x0, 0x0, {0xa, 0x0, 0x20}, [@FRA_SRC={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x30}}, 0x0)

3.218818671s ago: executing program 1 (id=4152):
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x808080, &(0x7f0000000000), 0x2c, 0x525, &(0x7f0000000100)="$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")
newfstatat(0xffffffffffffff9c, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740), 0x0)

3.218165416s ago: executing program 3 (id=4153):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f00000000c0)='./file1\x00', 0x1010006, &(0x7f00000002c0)={[{@quota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@discard_size={'discard', 0x3d, 0x3}}, {@gid}, {@uid}, {@uid={'uid', 0x3d, 0xee01}}]}, 0x24, 0x61b6, &(0x7f00000075c0)="$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")
unlink(&(0x7f0000000100)='./file1\x00')

2.466352124s ago: executing program 8 (id=4161):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x640000)
fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)

2.143906208s ago: executing program 8 (id=4164):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001640)={0x34, 0x3e, 0x1, 0x7fffc, 0x4, {0x1}, [@typed={0x4}, @nested={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x10, 0x0, 0x1, [@nested={0x5, 0x8, 0x0, 0x1, [@generic="a8"]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x34}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

2.143541069s ago: executing program 1 (id=4165):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x3c1, 0x3, 0x438, 0x208, 0xc8, 0x8, 0x208, 0x5803, 0x368, 0x2e8, 0x2e8, 0x368, 0x2e8, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, [0x0, 0x0, 0x0, 0xffffff00], [], 'erspan0\x00', 'geneve1\x00', {}, {}, 0x0, 0x0, 0x3}, 0x0, 0x198, 0x208, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x10, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b500", 0x1, 0x2}}, @common=@srh={{0x30}, {0x87, 0x1, 0x9, 0x3, 0x6, 0x40, 0x2024}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x6, 0x7, 0x4, 0x1, 0x0, "9c2d68c9fe7a3fe21a38fc41cae3540d864acbf238f3f08750d4b25cbb84846840562379ddc9f61533c3629cdd2b1708b4a1e1fb51c2bfbe4367d4af7009f411"}}}, {{@ipv6={@loopback, @private2, [0xff, 0xff000000, 0xffffff00, 0xff000000], [0xff, 0xff, 0xffffffff, 0xff], 'bond_slave_0\x00', 'nr0\x00', {}, {0xff}, 0x3b, 0xff}, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x13}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x498)

1.944389069s ago: executing program 9 (id=4167):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, 0x0, 0x0)

1.859743441s ago: executing program 4 (id=4169):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x5, &(0x7f0000000000)={0x0, 0x1, 0xffffffff, 0x3})

1.700315067s ago: executing program 8 (id=4170):
r0 = socket(0xa, 0x2400000001, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x10000000000030, &(0x7f0000034000)=""/144, &(0x7f0000002280)=0x90)

1.642400995s ago: executing program 5 (id=4171):
r0 = syz_open_dev$video(&(0x7f0000000180), 0xc407, 0x800)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x5, 0x1, {0xa, @pix_mp={0xaeda, 0x6, 0x34324142, 0x9, 0x3, [{0x74, 0x2d}, {0x8, 0xe}, {0x4, 0x10}, {0x6, 0x8}, {0xf71, 0x8}, {0xff, 0x203}, {0x0, 0x6}, {0x6, 0xffffe59a}], 0xc, 0x4, 0x8, 0x0, 0x7}}})

1.486621384s ago: executing program 1 (id=4172):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x8, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="18080000d0ffffff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b706000014000000b7030000000d00008500000005000000bca900000000000035090100000000009500000000000000b7020000000000007b6af8ff00000000b5090200000000007baaf0ff00000000bf8700000000000007080000fffdffffbf2400000000000007060000f0ffffff740200000800000018200000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7010000080000004608f0ff76000000bf9800000000000079080000000000008500000005000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.486327262s ago: executing program 4 (id=4173):
r0 = memfd_create(&(0x7f0000000000)='-\'#{\\\x00', 0x0)
cachestat(r0, &(0x7f0000000040), 0x0, 0x2)

1.464433577s ago: executing program 9 (id=4174):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x891a, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @empty}})

1.361217989s ago: executing program 8 (id=4175):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x18)

1.347879315s ago: executing program 5 (id=4176):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newlink={0x50, 0x10, 0x1, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x10b88, 0x40421}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_SPOOFCHK={0xc, 0x4, {0x3e, 0x2}}]}]}, @IFLA_IFNAME={0x14, 0x3, 'batadv_slave_0\x00'}, @IFLA_MASTER={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000884}, 0x0)

1.210905977s ago: executing program 4 (id=4177):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000850000005000000095"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001240)={r0, 0x0, 0xe, 0x0, &(0x7f0000000080)="925a95e24550ec24e8e1a95586dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.158702945s ago: executing program 9 (id=4178):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x10}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_CT_KEY={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xc0}}, 0x0)

1.044456762s ago: executing program 8 (id=4179):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

956.919356ms ago: executing program 4 (id=4180):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x1c, 0x44, 0x107, 0xfffffffc, 0x25dfdbfd, {0x1, 0x7c}, [@nested={0x8, 0x3, 0x0, 0x1, [@generic="9e717292"]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

866.910797ms ago: executing program 9 (id=4181):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000040)={{0x1, 0x0, 0x0, 0x3}, 0x0, 0x0, 'id1\x00', 'timer1\x00', 0x0, 0x81, 0x1, 0xffffffffffffd0c4, 0x10000000})

866.048005ms ago: executing program 5 (id=4182):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
getsockname(r0, 0x0, &(0x7f0000000080))

808.781918ms ago: executing program 1 (id=4183):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0xc01, 0x3, 0x2a8, 0x210, 0x5002004a, 0xa, 0x0, 0x0, 0x210, 0x3c8, 0x3c8, 0x210, 0x3c8, 0x3, 0x0, {[{{@ip={@loopback, @loopback, 0x0, 0x0, 'veth0_to_team\x00', 'macvtap0\x00'}, 0x60, 0xd8, 0x118, 0x0, {}, [@common=@unspec=@physdev={{0x68}, {'bridge0\x00', {}, 'batadv0\x00', {}, 0x0, 0x4}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "c7a6bc1f54b88fa2267673e9bdbd68ed89f86114fe5e4c4969e359fcb117"}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'pim6reg1\x00', 'veth1_to_bridge\x00'}, 0x0, 0xd8, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@connlimit={{0x40}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x34d)

518.665229ms ago: executing program 4 (id=4184):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000800)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x7, [@func_proto={0x0, 0x0, 0x0, 0xd, 0xa}, @enum={0x0, 0x2, 0x0, 0x6, 0x4, [{0x5, 0x4}, {0x8, 0x5}]}]}, {0x0, [0x0, 0xe, 0x30, 0x5f, 0x2e]}}, &(0x7f0000000f40)=""/4089, 0x47, 0xff9, 0x1, 0x0, 0x0, @void, @value}, 0x28)

507.415676ms ago: executing program 5 (id=4185):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x8)
timer_create(0x0, &(0x7f0000000640)={0x0, 0xfffffffe, 0x0, @thr={0x0, 0x0}}, 0x0)

468.962283ms ago: executing program 9 (id=4186):
r0 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r0, 0x107, 0xe, 0x0, &(0x7f0000001600))

350.88566ms ago: executing program 8 (id=4187):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f00000019c0)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in6=@local, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@mcast1, 0x14, 0x6c}, @in=@empty=0x14, {0x0, 0x0, 0x0, 0xfffffff7ffffffff, 0x0, 0x0, 0x1000000000000000}, {0x0, 0x4}, {}, 0x0, 0x0, 0x2, 0x1, 0x6}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x4004050}, 0x0)

253.593395ms ago: executing program 1 (id=4188):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x40000000, 0x1, 0x1f, 0xa, "28060000001ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7a9e07ef33f86bf01933bdb6fc4d5dd91b59ca8d541", "78042a8bde94000000008d030000004f07b84819ffdf4a0400", [0x7fffffff, 0x4ac7]})

253.026284ms ago: executing program 5 (id=4189):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000040)=0x3, 0x4)

195.993333ms ago: executing program 4 (id=4190):
r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0xcd1d, 0x10100, 0x1000000}, &(0x7f0000000040), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_PBUF_STATUS(r0, 0x1a, 0x0, 0x1)

154.927311ms ago: executing program 9 (id=4191):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x14b042, 0x0)
writev(r0, &(0x7f0000001540)=[{&(0x7f0000000080)="fdf3e173", 0x4}], 0x1)

0s ago: executing program 5 (id=4192):
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getpeername$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)

kernel console output (not intermixed with test programs):

scall=202 compat=0 ip=0x7f9789f8e929 code=0x7ffc0000
[  321.504202][T12599] netlink: 'syz.3.2524': attribute type 1 has an invalid length.
[  321.524079][   T30] audit: type=1326 audit(2000000096.849:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12590 comm="syz.8.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f9789f8e929 code=0x7ffc0000
[  321.684514][   T30] audit: type=1326 audit(2000000096.849:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12590 comm="syz.8.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9789f8e929 code=0x7ffc0000
[  321.780865][   T30] audit: type=1326 audit(2000000096.849:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12590 comm="syz.8.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9789f8e929 code=0x7ffc0000
[  321.948757][T12171] veth0_vlan: entered promiscuous mode
[  322.020611][T12171] veth1_vlan: entered promiscuous mode
[  322.100518][T12616] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  322.236957][T12171] veth0_macvtap: entered promiscuous mode
[  322.301329][T12171] veth1_macvtap: entered promiscuous mode
[  322.401844][T12171] batman_adv: batadv0: Interface activated: batadv_slave_0
[  322.426107][T12624] snd_dummy snd_dummy.0: control 2:16:0:syz0:-3 is already present
[  322.452350][T12171] batman_adv: batadv0: Interface activated: batadv_slave_1
[  322.557679][T12171] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  322.610816][T12171] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  322.652302][T12171] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  322.694178][T12171] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  322.722045][T12622] loop8: detected capacity change from 0 to 4096
[  322.769280][T12622] ntfs3(loop8): Different NTFS sector size (2048) and media sector size (512).
[  323.034183][ T5839] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  323.201480][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  323.245904][ T5839] usb 3-1: config 0 has an invalid interface number: 64 but max is 0
[  323.270261][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  323.275146][ T5839] usb 3-1: config 0 has no interface number 0
[  323.343804][ T5839] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  323.362312][ T5839] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.454119][ T5839] usb 3-1: Product: syz
[  323.458350][ T5839] usb 3-1: Manufacturer: syz
[  323.462978][ T5839] usb 3-1: SerialNumber: syz
[  323.484852][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  323.496201][ T5839] usb 3-1: config 0 descriptor??
[  323.538532][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  323.734944][ T5839] usb 3-1: Found UVC 0.08 device syz (046d:0823)
[  323.756448][ T5839] usb 3-1: No valid video chain found.
[  323.819356][ T5839] usb 3-1: USB disconnect, device number 7
[  324.057187][T12668] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  324.182776][T12670] openvswitch: netlink: EtherType 0 is less than min 600
[  324.581915][T12682] raw_sendmsg: syz.3.2556 forgot to set AF_INET. Fix it!
[  324.634276][T12686] loop8: detected capacity change from 0 to 64
[  325.254724][T12705] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled
[  325.368125][T12708] Invalid source name
[  325.372175][T12708] UBIFS error (pid: 12708): cannot open "./file0", error -22
[  325.464227][T12712] netlink: 'syz.2.2571': attribute type 1 has an invalid length.
[  325.529853][T12712] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2571'.
[  325.904425][T12723] loop1: detected capacity change from 0 to 2048
[  325.932365][T12723] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 129: 0x32 != 0x7d
[  325.933349][T12723] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  326.462034][T12750] sock: sock_timestamping_bind_phc: sock not bind to device
[  326.485812][T12748] bridge2: entered promiscuous mode
[  326.866849][T12761] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2590'.
[  326.949343][T12768] mac80211_hwsim hwsim6 wlan0: entered promiscuous mode
[  326.984398][T12768] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode
[  327.348352][T12779] loop9: detected capacity change from 0 to 256
[  327.615976][T12779] FAT-fs (loop9): Directory bread(block 64) failed
[  327.645929][T12779] FAT-fs (loop9): Directory bread(block 65) failed
[  327.684356][T12789] overlay: Bad value for 'upperdir'
[  327.703546][T12779] FAT-fs (loop9): Directory bread(block 66) failed
[  327.775154][T12779] FAT-fs (loop9): Directory bread(block 67) failed
[  327.781822][T12779] FAT-fs (loop9): Directory bread(block 68) failed
[  327.849789][T12779] FAT-fs (loop9): Directory bread(block 69) failed
[  327.894217][T12779] FAT-fs (loop9): Directory bread(block 70) failed
[  327.920818][T12800] loop8: detected capacity change from 0 to 2048
[  327.941448][T12779] FAT-fs (loop9): Directory bread(block 71) failed
[  327.992530][T12800] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=26504, location=26504
[  328.001251][T12779] FAT-fs (loop9): Directory bread(block 72) failed
[  328.042392][T12805] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2606'.
[  328.085745][T12779] FAT-fs (loop9): Directory bread(block 73) failed
[  328.102731][T12800] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  329.433503][ T5968] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  329.634199][ T5968] usb 10-1: Using ep0 maxpacket: 32
[  329.669538][ T5968] usb 10-1: config 0 has an invalid interface number: 136 but max is 0
[  329.688476][ T5968] usb 10-1: config 0 has no interface number 0
[  329.712005][ T5968] usb 10-1: config 0 interface 136 altsetting 0 has an endpoint descriptor with address 0xAD, changing to 0x8D
[  329.774055][ T5968] usb 10-1: config 0 interface 136 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0
[  329.797321][ T5968] usb 10-1: config 0 interface 136 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 0
[  329.871424][ T5968] usb 10-1: config 0 interface 136 altsetting 0 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[  329.932183][ T5968] usb 10-1: config 0 interface 136 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  330.003812][ T5968] usb 10-1: New USB device found, idVendor=0763, idProduct=1021, bcdDevice=8e.c0
[  330.057263][ T5968] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.125084][ T5968] usb 10-1: config 0 descriptor??
[  330.187687][ T5968] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  330.296199][T12867] Process accounting resumed
[  330.413901][T12825] loop2: detected capacity change from 0 to 32768
[  330.517595][ T5996] udevd[5996]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.136/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  330.548697][ T5968] usb 10-1: USB disconnect, device number 2
[  330.576211][T12825] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  330.822336][T12825] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  330.963432][T12825] XFS (loop2): Starting recovery (logdev: internal)
[  331.121200][T12825] XFS (loop2): Ending recovery (logdev: internal)
[  331.246697][T12897] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2637'.
[  331.445602][ T5825] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  331.725016][T12910] ieee802154 phy0 wpan0: encryption failed: -22
[  331.828920][T12917] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  331.956243][T12917] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  332.676818][T12942] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2658'.
[  332.734950][T12942] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2658'.
[  332.773149][   T30] audit: type=1326 audit(2000000108.339:1826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.5.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7786f8e929 code=0x7ffc0000
[  332.795662][    C0] vkms_vblank_simulate: vblank timer overrun
[  332.814590][T12942] netlink: 32 bytes leftover after parsing attributes in process `syz.9.2658'.
[  332.934463][   T30] audit: type=1326 audit(2000000108.399:1827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.5.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7786f8e929 code=0x7ffc0000
[  333.074144][   T30] audit: type=1326 audit(2000000108.469:1828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.5.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f7786f8e929 code=0x7ffc0000
[  333.096609][    C0] vkms_vblank_simulate: vblank timer overrun
[  333.254652][   T30] audit: type=1326 audit(2000000108.469:1829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.5.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7786f8e929 code=0x7ffc0000
[  333.277559][    C0] vkms_vblank_simulate: vblank timer overrun
[  333.414064][   T30] audit: type=1326 audit(2000000108.469:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.5.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7786f8e929 code=0x7ffc0000
[  333.466622][T12964] ip6tnl1: entered promiscuous mode
[  333.725402][T12972] virtiofs: Unknown parameter 'always'
[  333.819424][T12977] netlink: 'syz.9.2670': attribute type 10 has an invalid length.
[  334.022890][T12977] veth0_vlan: left promiscuous mode
[  334.090302][T12977] veth0_vlan: entered promiscuous mode
[  334.187657][T12977] team0: Device veth0_vlan failed to register rx_handler
[  334.632576][T13004] loop9: detected capacity change from 0 to 256
[  334.708476][T13004] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00000001)
[  335.037062][T13016] openvswitch: netlink: Tunnel attr 130 out of range max 16
[  335.054457][T13019] xt_cluster: node mask cannot exceed total number of nodes
[  335.254269][T13024] program syz.1.2693 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  335.428678][T13029] loop8: detected capacity change from 0 to 256
[  336.194949][   T24] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  336.404128][   T24] usb 3-1: Using ep0 maxpacket: 16
[  336.444954][T13064] Option '    ' to dns_resolver key: bad/missing value
[  336.474413][   T24] usb 3-1: config 0 has an invalid interface number: 126 but max is 0
[  336.503277][   T24] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  336.562727][   T24] usb 3-1: config 0 has no interface number 0
[  336.572861][   T24] usb 3-1: config 0 interface 126 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  336.591853][T13066] loop8: detected capacity change from 0 to 2048
[  336.614024][   T24] usb 3-1: config 0 interface 126 altsetting 0 endpoint 0x87 has invalid maxpacket 34328, setting to 1024
[  336.618839][T13068] loop1: detected capacity change from 0 to 64
[  336.684827][   T24] usb 3-1: config 0 interface 126 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64
[  336.712217][T13066] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  336.747198][   T24] usb 3-1: config 0 interface 126 altsetting 0 endpoint 0x4 has invalid maxpacket 28001, setting to 1024
[  336.795097][   T24] usb 3-1: config 0 interface 126 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024
[  336.851574][   T24] usb 3-1: config 0 interface 126 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[  336.960364][   T24] usb 3-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88
[  337.007755][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.065037][   T24] usb 3-1: config 0 descriptor??
[  337.073257][T13044] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  337.112557][T13044] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  337.186414][   T24] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  337.434651][   T24] usb 3-1: USB disconnect, device number 8
[  337.800676][T13091] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2720'.
[  337.826194][T13039] loop5: detected capacity change from 0 to 32768
[  338.212582][T13102] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2724'.
[  338.384456][ T6065] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  338.464296][T13078] loop9: detected capacity change from 0 to 32768
[  338.488813][T13109] loop2: detected capacity change from 0 to 512
[  338.517654][T13078] (syz.9.2714,13078,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  338.563876][T13078] (syz.9.2714,13078,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  338.584246][ T6065] usb 9-1: Using ep0 maxpacket: 8
[  338.593457][ T6065] usb 9-1: unable to get BOS descriptor or descriptor too short
[  338.595578][T13109] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  338.630583][ T6065] usb 9-1: config 5 has an invalid interface number: 215 but max is 0
[  338.659530][ T6065] usb 9-1: config 5 has no interface number 0
[  338.695307][ T6065] usb 9-1: config 5 interface 215 has no altsetting 0
[  338.744241][ T6065] usb 9-1: New USB device found, idVendor=1163, idProduct=0100, bcdDevice=dc.ba
[  338.746808][T13078] JBD2: Ignoring recovery information on journal
[  338.773819][ T6065] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.783334][T13109] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002]
[  338.783646][T13109] EXT4-fs (loop2): orphan cleanup on readonly fs
[  338.783755][T13109] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #13: comm syz.2.2727: iget: bad i_size value: 12154761577498
[  338.799886][T13109] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.2727: couldn't read orphan inode 13 (err -117)
[  338.814739][ T6065] usb 9-1: Product: syz
[  338.828914][ T6065] usb 9-1: Manufacturer: syz
[  338.833525][ T6065] usb 9-1: SerialNumber: syz
[  338.884279][T13118] netlink: 'syz.3.2731': attribute type 11 has an invalid length.
[  338.964832][T13109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  338.990607][T13121] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2730'.
[  339.017459][T13078] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[  339.132865][T13109] EXT4-fs warning (device loop2): dx_probe:861: inode #2: comm syz.2.2727: dx entry: limit 65535 != root limit 120
[  339.214268][T13109] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.2727: Corrupt directory, running e2fsck is recommended
[  339.250583][T13126] netlink: 'syz.5.2734': attribute type 5 has an invalid length.
[  339.325664][T13126] netlink: 'syz.5.2734': attribute type 7 has an invalid length.
[  339.382700][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.389103][T13126] : entered promiscuous mode
[  339.454193][T13128] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  339.703739][T12171] ocfs2: Unmounting device (7,9) on (node local)
[  339.720436][ T6065] cypress_m8 9-1:5.215: DeLorme Earthmate USB converter detected
[  339.784567][ T6065] earthmate ttyUSB0: required endpoint is missing
[  339.834084][ T6065] usb 9-1: USB disconnect, device number 8
[  339.861221][ T6065] cypress_m8 9-1:5.215: device disconnected
[  340.194414][ T6065] usb 9-1: new full-speed USB device number 9 using dummy_hcd
[  340.367733][ T6065] usb 9-1: config 0 has an invalid interface number: 120 but max is 0
[  340.386502][ T6065] usb 9-1: config 0 has no interface number 0
[  340.392798][ T6065] usb 9-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  340.438898][T13156] loop3: detected capacity change from 0 to 512
[  340.451823][ T6065] usb 9-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  340.500362][T13156] EXT4-fs (loop3): orphan cleanup on readonly fs
[  340.518214][ T6065] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.578041][T13156] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13
[  340.608101][ T6065] usb 9-1: config 0 descriptor??
[  340.664391][T13156] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  340.672770][ T6065] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.120/input/input21
[  340.749466][T13156] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.2749: attempt to clear invalid blocks 2 len 1
[  340.844105][T13156] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2749: invalid indirect mapped block 1819239214 (level 0)
[  340.906020][T13156] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2749: invalid indirect mapped block 1819239214 (level 1)
[  341.002818][T13156] EXT4-fs (loop3): 1 truncate cleaned up
[  341.020620][T13156] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  341.041076][ T6065] usb 9-1: USB disconnect, device number 9
[  341.140063][T13156] EXT4-fs error (device loop3): ext4_lookup:1784: inode #2: comm syz.3.2749: 'file1' linked to parent dir
[  341.331745][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.365742][T13174] loop1: detected capacity change from 0 to 2048
[  341.382445][T13151] loop5: detected capacity change from 0 to 32768
[  341.405897][T13174] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  341.461836][T13178] loop2: detected capacity change from 0 to 128
[  341.500978][T13178] EXT4-fs (loop2): Test dummy encryption mode enabled
[  341.543897][T13180] binder: 13179:13180 unknown command 0
[  341.574176][T13182] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  341.578723][T13178] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  341.605539][T13180] binder: 13179:13180 ioctl c0306201 200000000480 returned -22
[  341.617887][T13178] ext4 filesystem being mounted at /527/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  342.033733][ T5825] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  342.698982][ T6065] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  342.914268][ T6065] usb 4-1: Using ep0 maxpacket: 32
[  342.960071][ T6065] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  342.989574][ T6065] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  343.031034][ T6065] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  343.083826][ T6065] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  343.123627][ T6065] usb 4-1: config 1 has no interface number 0
[  343.150126][ T6065] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  343.190839][ T6065] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.194207][T13236] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  343.238781][T13240] netlink: 'syz.5.2782': attribute type 1 has an invalid length.
[  343.252661][ T6065] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  343.420498][ T6065] snd_usb_pod 4-1:1.1: set_interface failed
[  343.436653][ T6065] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  343.454296][ T5839] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  343.468359][ T6065] snd_usb_pod 4-1:1.1: probe with driver snd_usb_pod failed with error -71
[  343.499227][ T6065] usb 4-1: USB disconnect, device number 18
[  343.629532][ T5839] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  343.650831][ T5839] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  343.672160][T13250] netlink: 'syz.2.2786': attribute type 1 has an invalid length.
[  343.687012][ T5839] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  343.701434][T13250] netlink: 240 bytes leftover after parsing attributes in process `syz.2.2786'.
[  343.738542][ T5839] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  343.776746][ T5839] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.815451][ T5839] usb 2-1: config 0 descriptor??
[  343.841987][ T5839] hub 2-1:0.0: USB hub found
[  344.062909][ T5839] hub 2-1:0.0: 10 ports detected
[  344.071022][T13262] bond0: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  344.092597][ T5839] hub 2-1:0.0: insufficient power available to use all downstream ports
[  344.145728][T13266] loop3: detected capacity change from 0 to 164
[  344.170816][T13266] Unable to read rock-ridge attributes
[  344.270219][ T5839] hub 2-1:0.0: hub_hub_status failed (err = -71)
[  344.307647][ T5839] hub 2-1:0.0: config failed, can't get hub status (err -71)
[  344.374843][ T5839] usb 2-1: USB disconnect, device number 14
[  344.958576][T13289] loop8: detected capacity change from 0 to 256
[  344.965022][   T30] audit: type=1400 audit(2000000120.529:1831): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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
[  345.036987][T13289] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  345.220102][T13295] loop9: detected capacity change from 0 to 4096
[  345.234196][T13289] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[  345.285762][T13295] EXT4-fs: Ignoring removed orlov option
[  345.314779][T13295] EXT4-fs: Ignoring removed nomblk_io_submit option
[  345.339155][T13289] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  345.426973][T13295] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.587550][T13295] Quota error (device loop9): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  345.595592][ T5839] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  345.644271][T13295] Quota error (device loop9): qtree_read_dquot: Can't read quota structure for id 0
[  345.674239][T13295] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.2807: Failed to acquire dquot type 1
[  345.774206][ T5839] usb 4-1: Using ep0 maxpacket: 16
[  345.798049][ T5839] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  345.831551][ T5839] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  345.864202][ T5839] usb 4-1: Product: syz
[  345.872094][ T5839] usb 4-1: Manufacturer: syz
[  345.882218][ T5839] usb 4-1: SerialNumber: syz
[  345.894613][T12171] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.929655][ T5839] r8152-cfgselector 4-1: Unknown version 0x0000
[  345.956759][ T5839] r8152-cfgselector 4-1: config 0 descriptor??
[  346.097940][T13316] loop8: detected capacity change from 0 to 164
[  346.433775][ T5839] r8152-cfgselector 4-1: USB disconnect, device number 19
[  346.462600][T13297] loop2: detected capacity change from 0 to 32768
[  346.569353][T13330] loop1: detected capacity change from 0 to 16
[  346.649752][T13330] erofs (device loop1): mounted with root inode @ nid 36.
[  346.734586][T13330] erofs (device loop1): bogus lookback distance 1388 @ lcn 42 of nid 36
[  346.810168][T13330] erofs (device loop1): failed to decompress -4 in[49, 4047] out[1851]
[  346.849668][T13330] erofs (device loop1): read error -117 @ 43 of nid 36
[  346.940694][T13341] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2826'.
[  347.640325][T13361] Cannot find set identified by id 0 to match
[  347.993480][T13379] loop9: detected capacity change from 0 to 256
[  348.138395][T13379] FAT-fs (loop9): Directory bread(block 64) failed
[  348.184250][T13379] FAT-fs (loop9): Directory bread(block 65) failed
[  348.190943][T13379] FAT-fs (loop9): Directory bread(block 66) failed
[  348.260905][T13379] FAT-fs (loop9): Directory bread(block 67) failed
[  348.294120][T13379] FAT-fs (loop9): Directory bread(block 68) failed
[  348.341181][T13379] FAT-fs (loop9): Directory bread(block 69) failed
[  348.385120][T13379] FAT-fs (loop9): Directory bread(block 70) failed
[  348.391714][T13379] FAT-fs (loop9): Directory bread(block 71) failed
[  348.474692][T13379] FAT-fs (loop9): Directory bread(block 72) failed
[  348.481285][T13379] FAT-fs (loop9): Directory bread(block 73) failed
[  348.646588][T13396] loop5: detected capacity change from 0 to 2048
[  348.833358][T13396] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  348.982402][T13414] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  350.158502][T13449] loop2: detected capacity change from 0 to 2048
[  351.041690][   T10] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  351.269141][   T10] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  351.319097][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  351.390869][   T10] usb 6-1: Product: syz
[  351.409952][   T10] usb 6-1: Manufacturer: syz
[  351.437118][   T10] usb 6-1: SerialNumber: syz
[  351.490573][   T10] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  351.552219][ T5839] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  351.752560][T13513] netlink: 132 bytes leftover after parsing attributes in process `syz.8.2899'.
[  352.797869][   T10] usb 6-1: USB disconnect, device number 15
[  352.812033][ T5839] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  352.819482][ T5839] ath9k_htc: Failed to initialize the device
[  352.853705][   T10] usb 6-1: ath9k_htc: USB layer deinitialized
[  353.029144][T13545] (unnamed net_device) (uninitialized): option xmit_hash_policy: invalid value (6)
[  353.562614][T13569] loop2: detected capacity change from 0 to 512
[  353.564404][T13569] EXT4-fs: Ignoring removed oldalloc option
[  353.650477][T13577] loop1: detected capacity change from 0 to 16
[  353.653678][T13577] erofs (device loop1): mounted with root inode @ nid 36.
[  353.659171][T13577] erofs (device loop1): readahead error at folio 2 @ nid 89
[  353.660092][T13577] syz.1.2927: attempt to access beyond end of device
[  353.660092][T13577] loop1: rw=524288, sector=524296, nr_sectors = 8 limit=16
[  353.660802][T13569] EXT4-fs (loop2): 1 truncate cleaned up
[  353.662593][T13569] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  353.666751][T13577] syz.1.2927: attempt to access beyond end of device
[  353.666751][T13577] loop1: rw=0, sector=524296, nr_sectors = 8 limit=16
[  353.666869][T13577] erofs (device loop1): failed to decompress -5 in[4096, 0] out[4096]
[  353.666935][T13577] erofs (device loop1): read error -5 @ 0 of nid 89
[  353.674092][   T30] audit: type=1800 audit(2000000129.239:1832): pid=13577 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2927" name="file2" dev="loop1" ino=89 res=0 errno=0
[  354.065163][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.193454][T13593] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  354.379440][T13597] loop1: detected capacity change from 0 to 2048
[  354.421473][T13597] EXT4-fs: Ignoring removed bh option
[  354.553396][T13597] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  354.635268][T13598] loop8: detected capacity change from 0 to 4096
[  354.661083][T13606] ipt_REJECT: TCP_RESET invalid for non-tcp
[  354.888649][T13598] ntfs3(loop8): ino=19, mi_enum_attr
[  354.903851][T13598] ntfs3(loop8): Mark volume as dirty due to NTFS errors
[  354.957915][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.036303][T13598] ntfs3(loop8): try to read out of volume at offset 0x3fffffc7000
[  355.104946][T13598] ntfs3(loop8): ino=21, The size of extended attributes must not exceed 64KiB
[  356.010152][T13644] netlink: ct family unspecified
[  356.032619][T13644] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  356.104372][T13647] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2952'.
[  356.269468][T13652] loop3: detected capacity change from 0 to 2048
[  356.387012][T13652] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  356.587873][T13655] loop8: detected capacity change from 0 to 4096
[  356.640199][T13655] ntfs3(loop8): Different NTFS sector size (2048) and media sector size (512).
[  356.800295][T13655] ntfs3(loop8): Failed to initialize $Extend/$ObjId.
[  357.897180][T13709] i2c i2c-0: Invalid block write size 255
[  358.178523][T13721] loop8: detected capacity change from 0 to 256
[  358.198407][T13720] libceph: resolve '.
[  358.198407][T13720] #)|.زf͹Ç�²a×ïÅ2sˆoÖw¿úÕ?£'Ê%Ð�KAq‰f»�CÖê¨Âz¿e­Sb3L)Hyúo¤¶ÿÿÿÿÿÿÿ÷ǤÜYšM�¤¨ìó¤h‡E$
[  358.198407][T13720] ' (ret=-3): failed
[  358.214149][T13717] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2981'.
[  359.085114][T13751] loop9: detected capacity change from 0 to 2048
[  359.180215][T13751] UDF-fs: error (device loop9): udf_process_sequence: Primary Volume Descriptor not found!
[  359.184273][ T5968] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  359.284018][T13751] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  359.289050][T13756] nftables ruleset with unbound chain
[  359.406359][ T5968] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  359.438785][ T5968] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.485140][ T5968] usb 4-1: config 0 descriptor??
[  359.533925][ T5968] cp210x 4-1:0.0: cp210x converter detected
[  359.770489][T13768] loop9: detected capacity change from 0 to 512
[  359.849705][T13768] EXT4-fs: Ignoring removed i_version option
[  359.888634][T13768] EXT4-fs: Ignoring removed mblk_io_submit option
[  359.934621][T13768] EXT4-fs (loop9): Test dummy encryption mode enabled
[  359.956343][T13737] loop5: detected capacity change from 0 to 32768
[  359.980227][ T5968] usb 4-1: cp210x converter now attached to ttyUSB0
[  359.998895][ T5968] usb 4-1: USB disconnect, device number 20
[  360.002721][T13737] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2991 (13737)
[  360.040917][T13768] EXT4-fs (loop9): orphan cleanup on readonly fs
[  360.074887][ T5968] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  360.082891][T13771] loop1: detected capacity change from 0 to 256
[  360.102271][ T5968] cp210x 4-1:0.0: device disconnected
[  360.109867][T13768] EXT4-fs error (device loop9): ext4_orphan_get:1393: comm syz.9.2999: inode #13: comm syz.9.2999: iget: illegal inode #
[  360.134252][T13737] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  360.174156][T13737] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  360.200253][T13768] EXT4-fs (loop9): Remounting filesystem read-only
[  360.215031][T13737] BTRFS info (device loop5): disk space caching is enabled
[  360.230765][T13768] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  360.255120][T13737] BTRFS warning (device loop5): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  360.320724][T13771] FAT-fs (loop1): Directory bread(block 64) failed
[  360.354395][T13771] FAT-fs (loop1): Directory bread(block 65) failed
[  360.374909][T13768] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000.
[  360.383531][T13771] FAT-fs (loop1): Directory bread(block 66) failed
[  360.412447][T13771] FAT-fs (loop1): Directory bread(block 67) failed
[  360.451233][T13771] FAT-fs (loop1): Directory bread(block 68) failed
[  360.458037][T13771] FAT-fs (loop1): Directory bread(block 69) failed
[  360.465162][T13771] FAT-fs (loop1): Directory bread(block 70) failed
[  360.472485][T13771] FAT-fs (loop1): Directory bread(block 71) failed
[  360.545269][T13771] FAT-fs (loop1): Directory bread(block 72) failed
[  360.551860][T13771] FAT-fs (loop1): Directory bread(block 73) failed
[  360.609452][T13737] BTRFS info (device loop5): rebuilding free space tree
[  360.691367][T12171] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.770580][T13737] BTRFS info (device loop5): disabling free space tree
[  360.814122][T13737] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  360.843100][T13797] netlink: 'syz.8.3003': attribute type 15 has an invalid length.
[  360.885407][T13737] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  361.080030][T13757] loop2: detected capacity change from 0 to 32768
[  361.144428][ T5918] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  361.224579][T13757] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  361.286898][ T5835] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  361.359578][ T5918] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  361.457482][ T5918] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.525547][ T5918] usb 4-1: config 0 descriptor??
[  361.646424][T13757] XFS (loop2): Ending clean mount
[  361.884132][ T5825] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  361.917425][T13831] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3013'.
[  361.988885][ T5918] ath6kl: Failed to submit usb control message: -71
[  362.007804][T13833] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3015'.
[  362.038194][T13833] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3015'.
[  362.040615][ T5918] ath6kl: unable to send the bmi data to the device: -71
[  362.063305][ T5918] ath6kl: Unable to send get target info: -71
[  362.071398][ T5918] ath6kl: Failed to init ath6kl core: -71
[  362.078772][ T5918] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[  362.141006][ T5918] usb 4-1: USB disconnect, device number 21
[  362.287425][T13838] netlink: 452 bytes leftover after parsing attributes in process `syz.9.3017'.
[  362.936266][T13852] loop3: detected capacity change from 0 to 1764
[  363.041395][T13852] iso9660: Corrupted directory entry in block 2 of inode 1920
[  363.367223][T13862] loop8: detected capacity change from 0 to 4096
[  363.504915][T13870] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  363.612132][T13876] loop3: detected capacity change from 0 to 512
[  363.659128][T13876] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  363.786620][T13876] EXT4-fs (loop3): 1 truncate cleaned up
[  363.924376][T13876] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  364.046252][T13876] EXT4-fs error (device loop3): ext4_get_parent:1838: comm syz.3.3028: inode #2: comm syz.3.3028: iget: illegal inode #
[  364.134978][T13847] loop5: detected capacity change from 0 to 32768
[  364.162840][T13847] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.3020 (13847)
[  364.266273][T13847] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  364.348547][T13897] loop9: detected capacity change from 0 to 256
[  364.375368][T13847] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[  364.406231][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.434634][T13847] BTRFS info (device loop5): using free-space-tree
[  364.566522][T13893] loop1: detected capacity change from 0 to 4096
[  365.064070][   T10] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  365.203486][ T5835] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  365.266099][   T10] usb 3-1: Using ep0 maxpacket: 8
[  365.311007][   T10] usb 3-1: config 0 has an invalid interface number: 31 but max is 0
[  365.354222][   T10] usb 3-1: config 0 has no interface number 0
[  365.448013][   T10] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  365.474178][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.506498][   T10] usb 3-1: Product: syz
[  365.511958][   T10] usb 3-1: Manufacturer: syz
[  365.584056][   T10] usb 3-1: SerialNumber: syz
[  365.590587][T13943] loop3: detected capacity change from 0 to 256
[  365.638387][   T10] usb 3-1: config 0 descriptor??
[  365.747289][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  365.801545][T13943] FAT-fs (loop3): Filesystem has been set read-only
[  365.837484][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  365.884238][   T10] usb 3-1: Found UVC 0.04 device syz (046d:08c3)
[  365.890727][   T10] usb 3-1: No valid video chain found.
[  365.904358][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  365.974178][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  365.993207][   T10] usb 3-1: USB disconnect, device number 9
[  366.042366][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  366.104184][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  366.159480][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  366.246888][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  366.301643][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  366.360371][T13943] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  366.405365][T13959] loop1: detected capacity change from 0 to 256
[  366.461916][T13959] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  366.494180][   T30] audit: type=1800 audit(2000000142.059:1833): pid=13943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3049" name="file1" dev="loop3" ino=1048697 res=0 errno=0
[  366.534410][T13966] Cannot find add_set index 0 as target
[  367.204421][ T5968] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  367.243783][T13988] loop8: detected capacity change from 0 to 2048
[  367.249494][T13990] IPv6: Can't replace route, no match found
[  367.394600][ T5968] usb 4-1: Using ep0 maxpacket: 8
[  367.401620][ T5968] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[  367.416930][T13995] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  367.437473][ T5968] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  367.466559][T13994] loop5: detected capacity change from 0 to 1024
[  367.502017][ T5968] usb 4-1: config 0 has no interface number 0
[  367.520564][T13988] NILFS error (device loop8): nilfs_lookup: deleted inode referenced: 12
[  367.545736][ T5968] usb 4-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  367.619642][T13988] Remounting filesystem read-only
[  367.651295][ T5968] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  367.694440][T14004] loop2: detected capacity change from 0 to 512
[  367.721485][T13994] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  367.751240][T14004] EXT4-fs (loop2): Test dummy encryption mode enabled
[  367.773224][ T5968] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  367.795851][ T5968] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  367.829323][ T5968] usb 4-1: config 0 interface 52 has no altsetting 0
[  367.855822][ T5968] usb 4-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  367.871852][T14004] EXT4-fs error (device loop2): __ext4_iget:5379: inode #11: block 1: comm syz.2.3072: invalid block
[  367.876548][ T5968] usb 4-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  367.894496][ T5968] usb 4-1: Product: syz
[  367.898782][ T5968] usb 4-1: SerialNumber: syz
[  367.909468][ T5968] usb 4-1: config 0 descriptor??
[  367.976071][T14004] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.3072: couldn't read orphan inode 11 (err -117)
[  368.053584][T14004] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  368.059782][T14011] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3074'.
[  368.116061][ T5835] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.163546][ T5968] input: syz (Stick) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.52/input/input23
[  368.302585][T14017] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  368.397389][ T5968] usb 4-1: USB disconnect, device number 22
[  368.403422][    C0] synaptics_usb 4-1:0.52: synusb_irq - usb_submit_urb failed with result: -19
[  368.525970][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.322524][T14047] loop3: detected capacity change from 0 to 1024
[  369.390732][T14052] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3092'.
[  369.411672][T14053] netlink: 'syz.8.3094': attribute type 4 has an invalid length.
[  369.420222][T14042] nvme_fabrics: missing parameter 'transport=%s'
[  369.442242][T14042] nvme_fabrics: missing parameter 'nqn=%s'
[  369.471681][T14047] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  369.775753][T14063] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3099'.
[  369.826274][T14063] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3099'.
[  369.900176][T14067] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3102'.
[  369.962584][T14069] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  369.977174][   T30] audit: type=1326 audit(2000000145.529:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14070 comm="syz.1.3103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb302f8e929 code=0x7ffc0000
[  370.142700][   T30] audit: type=1326 audit(2000000145.529:1835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14070 comm="syz.1.3103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb302f8e929 code=0x7ffc0000
[  370.216028][T14077] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  370.234616][   T30] audit: type=1326 audit(2000000145.579:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14070 comm="syz.1.3103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7fb302f8e929 code=0x7ffc0000
[  370.311319][   T30] audit: type=1326 audit(2000000145.579:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14070 comm="syz.1.3103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb302f8e929 code=0x7ffc0000
[  370.354729][   T30] audit: type=1326 audit(2000000145.579:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14070 comm="syz.1.3103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb302f8e929 code=0x7ffc0000
[  370.857105][T14097] loop2: detected capacity change from 0 to 2048
[  370.984573][T14104] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  371.228061][T14111] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3123'.
[  371.689379][T14122] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  371.721354][T14124] loop9: detected capacity change from 0 to 1024
[  371.761385][T14079] loop1: detected capacity change from 0 to 32768
[  371.768090][   T10] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  371.774684][T14124] fuse: Bad value for 'fd'
[  371.894648][T14079] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  371.926192][   T10] usb 9-1: config 220 has an invalid interface number: 76 but max is 2
[  371.934743][   T10] usb 9-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  371.975530][   T10] usb 9-1: config 220 has no interface number 2
[  371.982299][   T10] usb 9-1: config 220 interface 1 altsetting 5 has an endpoint descriptor with address 0x58, changing to 0x8
[  372.000857][ T8539] hfsplus: b-tree write err: -5, ino 4
[  372.045838][   T10] usb 9-1: config 220 interface 1 altsetting 5 endpoint 0x8 has invalid wMaxPacketSize 0
[  372.094068][   T10] usb 9-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[  372.127722][   T10] usb 9-1: config 220 interface 0 has no altsetting 0
[  372.164175][   T10] usb 9-1: config 220 interface 76 has no altsetting 0
[  372.171145][   T10] usb 9-1: config 220 interface 1 has no altsetting 0
[  372.217858][T14079] XFS (loop1): Ending clean mount
[  372.261445][   T10] usb 9-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  372.298300][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.343308][   T10] usb 9-1: Product: syz
[  372.384101][   T10] usb 9-1: Manufacturer: syz
[  372.399952][   T10] usb 9-1: SerialNumber: syz
[  372.517400][ T5829] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  372.677015][   T10] usb 9-1: selecting invalid altsetting 0
[  372.693648][   T10] usb 9-1: Found UVC 7.01 device syz (8086:0b07)
[  372.749813][   T10] usb 9-1: No valid video chain found.
[  372.807018][   T10] usb 9-1: selecting invalid altsetting 0
[  372.812832][   T10] usbtest 9-1:220.1: probe with driver usbtest failed with error -22
[  372.918109][   T10] usb 9-1: USB disconnect, device number 10
[  372.946733][T14160] loop5: detected capacity change from 0 to 8
[  372.961372][   T30] audit: type=1326 audit(2000000148.519:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14157 comm="syz.9.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6c478e929 code=0x7ffc0000
[  373.100819][   T30] audit: type=1326 audit(2000000148.539:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14157 comm="syz.9.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7fb6c478e929 code=0x7ffc0000
[  373.178148][T14160] SQUASHFS error: xz decompression failed, data probably corrupt
[  373.216881][T14160] SQUASHFS error: Failed to read block 0xa8: -5
[  373.234561][   T30] audit: type=1326 audit(2000000148.539:1841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14157 comm="syz.9.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6c478e929 code=0x7ffc0000
[  373.309919][T14160] SQUASHFS error: xz decompression failed, data probably corrupt
[  373.324821][   T30] audit: type=1326 audit(2000000148.539:1842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14157 comm="syz.9.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6c478e929 code=0x7ffc0000
[  373.331002][T14164] xt_hashlimit: max too large, truncated to 1048576
[  373.370962][T14160] SQUASHFS error: Failed to read block 0xa8: -5
[  373.439610][   T30] audit: type=1800 audit(2000000148.979:1843): pid=14160 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3144" name="file0" dev="loop5" ino=3 res=0 errno=0
[  373.496348][T14168] loop1: detected capacity change from 0 to 64
[  373.773593][T14176] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3150'.
[  373.927463][T14180] openvswitch: netlink: IP tunnel dst address not specified
[  374.033239][T14187] ieee802154 phy0 wpan0: encryption failed: -22
[  374.124224][   T43] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  374.220767][T14150] loop2: detected capacity change from 0 to 32768
[  374.280012][T14150] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  374.299315][T14150] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  374.316088][   T43] usb 2-1: Using ep0 maxpacket: 32
[  374.333450][   T43] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9
[  374.355866][   T43] usb 2-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  374.372489][   T43] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.410799][   T43] usb 2-1: Product: syz
[  374.415114][   T43] usb 2-1: Manufacturer: syz
[  374.423990][   T43] usb 2-1: SerialNumber: syz
[  374.451492][   T43] usb 2-1: config 0 descriptor??
[  374.467512][T14178] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  374.504108][   T43] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input24
[  374.523802][T14150] XFS (loop2): Ending clean mount
[  374.571581][T14150] XFS (loop2): Quotacheck needed: Please wait.
[  374.744737][T14150] XFS (loop2): Quotacheck: Done.
[  375.046066][   T10] usb 2-1: USB disconnect, device number 15
[  375.046137][    C1] usbtouchscreen 2-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  375.110406][T14217] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3167'.
[  375.122232][ T5825] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  375.353298][T14223] netlink: 132 bytes leftover after parsing attributes in process `syz.8.3171'.
[  375.649138][T14230] loop9: detected capacity change from 0 to 128
[  375.737230][T14230] FAT-fs (loop9): Directory bread(block 524322) failed
[  375.824037][T14230] FAT-fs (loop9): Directory bread(block 524323) failed
[  375.831056][T14230] FAT-fs (loop9): Directory bread(block 524324) failed
[  375.919355][T14230] FAT-fs (loop9): Directory bread(block 524325) failed
[  375.949808][T14230] FAT-fs (loop9): Directory bread(block 524326) failed
[  375.964760][   T30] audit: type=1326 audit(2000000151.539:1844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14241 comm="syz.8.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9789f8e929 code=0x7ffc0000
[  375.984231][T14230] FAT-fs (loop9): Directory bread(block 524327) failed
[  376.038579][T14230] FAT-fs (loop9): Directory bread(block 524328) failed
[  376.064029][T14230] FAT-fs (loop9): Directory bread(block 524329) failed
[  376.108724][   T30] audit: type=1326 audit(2000000151.589:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14241 comm="syz.8.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7f9789f8e929 code=0x7ffc0000
[  376.131363][    C0] vkms_vblank_simulate: vblank timer overrun
[  376.143776][T14230] FAT-fs (loop9): Directory bread(block 524322) failed
[  376.203260][T14230] FAT-fs (loop9): Directory bread(block 524323) failed
[  376.254102][   T30] audit: type=1326 audit(2000000151.589:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14241 comm="syz.8.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9789f8e929 code=0x7ffc0000
[  376.374065][   T30] audit: type=1326 audit(2000000151.589:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14241 comm="syz.8.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9789f8e929 code=0x7ffc0000
[  376.396618][    C0] vkms_vblank_simulate: vblank timer overrun
[  376.559199][T14263] loop2: detected capacity change from 0 to 64
[  376.865092][T12173] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  377.059518][T12173] usb 9-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  377.089461][T12173] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.113671][T12173] usb 9-1: Product: syz
[  377.132628][T12173] usb 9-1: Manufacturer: syz
[  377.140569][T12173] usb 9-1: SerialNumber: syz
[  377.153898][T12173] usb 9-1: config 0 descriptor??
[  377.172871][T12173] ch341 9-1:0.0: ch341-uart converter detected
[  377.591313][T14297] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3208'.
[  377.614484][T12173] usb 9-1: failed to send control message: -71
[  377.620759][T12173] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  377.689467][T12173] usb 9-1: USB disconnect, device number 11
[  377.712986][T12173] ch341 9-1:0.0: device disconnected
[  377.966108][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  377.972910][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  377.983724][T14309] xt_ipcomp: unknown flags 12
[  378.190236][T14312] loop3: detected capacity change from 0 to 2048
[  378.260852][T14312] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  378.611776][T14325] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3220'.
[  378.800143][T14331] loop8: detected capacity change from 0 to 64
[  378.864530][T14331] hfs: unable to locate alternate MDB
[  378.884293][T14331] hfs: continuing without an alternate MDB
[  378.935202][T14331] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended.  mounting read-only.
[  378.952614][T14335] loop5: detected capacity change from 0 to 1024
[  379.061530][T14301] loop2: detected capacity change from 0 to 32768
[  379.438344][T14301] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=4,compression=lz4,degraded=no,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow,no_data_io
[  379.438382][T14301]   allowing incompatible features above 0.0: (unknown version)
[  379.438397][T14301]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  379.717391][T14301] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[  379.765688][T14301] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  379.766541][T14356] 
@ÿ: renamed from veth0_vlan (while UP)
[  379.809896][T14301] bcachefs (loop2): Version upgrade required:
[  379.809896][T14301] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  379.809896][T14301] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  379.809896][T14301]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  379.975265][T14301] bcachefs (loop2): dropping and reconstructing all alloc info
[  380.071096][T14301] bcachefs (loop2): accounting_read... done
[  380.117329][T14301] bcachefs (loop2): alloc_read... done
[  380.162790][T14301] bcachefs (loop2): snapshots_read... done
[  380.198088][T14301] bcachefs (loop2): done starting filesystem
[  380.472745][ T5825] bcachefs (loop2): shutting down
[  380.722959][T14339] loop3: detected capacity change from 0 to 32768
[  380.916852][ T5825] bcachefs (loop2): shutdown complete
[  380.963422][T14392] netlink: 68 bytes leftover after parsing attributes in process `syz.9.3254'.
[  380.975008][T14339] ERROR: (device loop3): dbAlloc: the hint is outside the map
[  380.975008][T14339] 
[  381.007171][T14339] ialloc: diAlloc returned -5!
[  381.376294][T14404] loop5: detected capacity change from 0 to 2048
[  381.432474][T14404] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  381.506046][T14407] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  381.544036][   T10] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  381.567690][T14404] NILFS (loop5): error -2 truncating bmap (ino=16)
[  381.593648][T14409] netlink: 144 bytes leftover after parsing attributes in process `syz.1.3262'.
[  381.738826][   T10] usb 10-1: Using ep0 maxpacket: 8
[  381.784417][   T10] usb 10-1: config 0 has an invalid interface number: 33 but max is 1
[  381.804040][   T10] usb 10-1: config 0 has no interface number 1
[  381.826316][   T10] usb 10-1: config 0 interface 33 altsetting 0 endpoint 0x6 has an invalid bInterval 0, changing to 7
[  381.883023][   T10] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 247
[  381.890219][T14417] loop8: detected capacity change from 0 to 512
[  381.894541][T14415] netlink: 'syz.1.3265': attribute type 10 has an invalid length.
[  381.927067][   T10] usb 10-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1
[  381.941791][T14415] team0: Device veth1_macvtap failed to register rx_handler
[  381.964980][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  381.986706][   T10] usb 10-1: Product: syz
[  382.003090][T14417] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.004333][   T10] usb 10-1: Manufacturer: syz
[  382.031395][T14417] ext4 filesystem being mounted at /354/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  382.066381][   T10] usb 10-1: SerialNumber: syz
[  382.130118][   T10] usb 10-1: config 0 descriptor??
[  382.170472][   T10] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx
[  382.382984][ T2338] pvrusb2: Invalid read control endpoint
[  382.394360][   T10] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx
[  382.407471][ T2338] usb 10-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2
[  382.419204][ T2338] usb 10-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw
[  382.466917][ T8679] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.645167][   T10] usb 10-1: USB disconnect, device number 3
[  382.958594][T14433] vlan0: entered promiscuous mode
[  383.449656][T14449] netlink: 'syz.1.3279': attribute type 11 has an invalid length.
[  383.509317][T14449] netlink: 'syz.1.3279': attribute type 11 has an invalid length.
[  383.548110][T14449] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3279'.
[  384.447442][T14482] sock: sock_timestamping_bind_phc: sock not bind to device
[  385.127378][T14467] loop3: detected capacity change from 0 to 32768
[  385.134461][T14507] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3304'.
[  385.188055][T14507] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3304'.
[  385.229162][T14507] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3304'.
[  385.382941][T14467] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=/dev/loop3,noinodes_use_key_cache,fsck,norecovery,nojournal_transaction_names
[  385.382987][T14467]   allowing incompatible features above 0.0: (unknown version)
[  385.383002][T14467]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  385.658505][T14467] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  385.690726][T14467] bcachefs (loop3): recovering from clean shutdown, journal seq 13
[  385.730272][T14467] bcachefs (loop3): Version upgrade required:
[  385.730272][T14467] Version upgrade from 0.4: (unknown version) to 1.7: mi_btree_bitmap incomplete
[  385.730272][T14467] Doing incompatible version upgrade from 0.4: (unknown version) to 1.28: inode_has_case_insensitive
[  385.730272][T14467]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  386.069449][T14467] bcachefs (loop3): accounting_read... done
[  386.113732][T14467] bcachefs (loop3): alloc_read... done
[  386.204191][T14467] bcachefs (loop3): snapshots_read... done
[  386.211103][T14467] bcachefs (loop3): done starting filesystem
[  386.446616][T14547] loop5: detected capacity change from 0 to 256
[  386.509267][ T5836] bcachefs (loop3): shutting down
[  386.562021][T14551] loop1: detected capacity change from 0 to 256
[  386.657968][ T5836] bcachefs (loop3): shutdown complete
[  386.773460][T14551] FAT-fs (loop1): Directory bread(block 64) failed
[  386.804046][T14551] FAT-fs (loop1): Directory bread(block 65) failed
[  386.848745][T14551] FAT-fs (loop1): Directory bread(block 66) failed
[  386.884614][T14551] FAT-fs (loop1): Directory bread(block 67) failed
[  386.908021][T14551] FAT-fs (loop1): Directory bread(block 68) failed
[  387.009280][T14551] FAT-fs (loop1): Directory bread(block 69) failed
[  387.029851][T14551] FAT-fs (loop1): Directory bread(block 70) failed
[  387.082937][T14551] FAT-fs (loop1): Directory bread(block 71) failed
[  387.120075][T14551] FAT-fs (loop1): Directory bread(block 72) failed
[  387.161347][T14551] FAT-fs (loop1): Directory bread(block 73) failed
[  387.662548][T14574] netlink: 'syz.5.3340': attribute type 5 has an invalid length.
[  387.691248][T14575] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3339'.
[  387.703064][T14555] loop8: detected capacity change from 0 to 32768
[  387.744083][T14575] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3339'.
[  387.799606][T14574] ip6erspan0: entered promiscuous mode
[  389.187741][T14623] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  389.235689][T14625] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.3365'.
[  389.496608][T14633] netlink: 14 bytes leftover after parsing attributes in process `syz.5.3369'.
[  389.722972][T14643] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3373'.
[  389.888528][T14650] xt_recent: Unsupported userspace flags (000000de)
[  390.058996][T14654] libceph: resolve '4..' (ret=-3): failed
[  390.596047][T14672] loop1: detected capacity change from 0 to 16
[  390.635753][T14672] erofs (device loop1): mounted with root inode @ nid 36.
[  391.045217][T14683] netlink: 'syz.3.3391': attribute type 1 has an invalid length.
[  391.077925][T14639] loop2: detected capacity change from 0 to 32768
[  391.514816][T14659] loop8: detected capacity change from 0 to 32768
[  391.614662][   T43] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  391.635523][T14659] XFS (loop8): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  391.799152][   T43] usb 4-1: Using ep0 maxpacket: 16
[  391.828564][   T43] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  391.887213][T14681] loop1: detected capacity change from 0 to 32768
[  391.928021][   T43] usb 4-1: New USB device found, idVendor=045e, idProduct=0721, bcdDevice=9c.25
[  391.948025][T14659] XFS (loop8): Ending clean mount
[  391.976902][T14681] (syz.1.3390,14681,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  391.988605][   T43] usb 4-1: New USB device strings: Mfr=0, Product=251, SerialNumber=3
[  392.020098][T14659] XFS (loop8): Quotacheck needed: Please wait.
[  392.038386][   T43] usb 4-1: Product: syz
[  392.045687][T14681] (syz.1.3390,14681,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  392.052849][   T43] usb 4-1: SerialNumber: syz
[  392.115091][   T43] usb 4-1: config 0 descriptor??
[  392.194179][T14659] XFS (loop8): Quotacheck: Done.
[  392.241374][T14681] JBD2: Ignoring recovery information on journal
[  392.289303][T14716] loop2: detected capacity change from 0 to 256
[  392.535526][ T8679] XFS (loop8): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  392.553338][   T43] usb 4-1: USB disconnect, device number 23
[  392.598648][T14716] FAT-fs (loop2): Directory bread(block 64) failed
[  392.606513][T14681] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  392.637568][T14716] FAT-fs (loop2): Directory bread(block 65) failed
[  392.689769][T14716] FAT-fs (loop2): Directory bread(block 66) failed
[  392.741182][T14716] FAT-fs (loop2): Directory bread(block 67) failed
[  392.752940][T14716] FAT-fs (loop2): Directory bread(block 68) failed
[  392.790899][T14716] FAT-fs (loop2): Directory bread(block 69) failed
[  392.817179][T14716] FAT-fs (loop2): Directory bread(block 70) failed
[  392.823761][T14716] FAT-fs (loop2): Directory bread(block 71) failed
[  392.866201][T14728] syz.9.3406 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  392.894165][T14716] FAT-fs (loop2): Directory bread(block 72) failed
[  392.897268][ T5829] ocfs2: Unmounting device (7,1) on (node local)
[  392.908566][T14716] FAT-fs (loop2): Directory bread(block 73) failed
[  393.262123][T14732] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3409'.
[  393.282151][T14732] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3409'.
[  393.324376][T14732] netlink: 38 bytes leftover after parsing attributes in process `syz.3.3409'.
[  393.589724][T14738] binder: 14735:14738 ioctl c00c6211 0 returned -14
[  393.759457][T14742] loop1: detected capacity change from 0 to 256
[  393.815107][T14742] exfat: Deprecated parameter 'utf8'
[  393.904888][T14742] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  394.069354][T14723] loop5: detected capacity change from 0 to 32768
[  394.208903][ T5983]  loop5: p1 p2 p3 < p5 >
[  394.220468][ T5983] loop5: p1 size 242222080 extends beyond EOD, truncated
[  394.401695][T14723]  loop5: p1 p2 p3 < p5 >
[  394.406529][T14723] loop5: p1 size 242222080 extends beyond EOD, truncated
[  394.513459][   T43] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  394.684347][   T43] usb 3-1: Using ep0 maxpacket: 32
[  394.716448][   T43] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  394.787155][   T43] usb 3-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  394.827881][   T43] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.858341][   T43] usb 3-1: Product: syz
[  394.879681][   T43] usb 3-1: Manufacturer: syz
[  394.900714][   T43] usb 3-1: SerialNumber: syz
[  394.939333][   T43] usb 3-1: config 0 descriptor??
[  394.954429][T14736] loop8: detected capacity change from 0 to 32768
[  395.168951][T14775] netlink: 'syz.1.3429': attribute type 5 has an invalid length.
[  395.275915][ T5968] usb 3-1: USB disconnect, device number 10
[  395.334618][T14779] loop5: detected capacity change from 0 to 256
[  395.342665][T14736] bcachefs (loop8): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 1791,journal_flush_disabled,fsck,fix_errors=no,norecovery,version_upgrade=incompatible
[  395.342697][T14736]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  395.402160][T14779] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  395.450267][T14783] openvswitch: netlink: VXLAN extension message has 1 unknown bytes.
[  395.654452][T14736] bcachefs (loop8): Using encoding defined by superblock: utf8-12.1.0
[  395.662975][T14736] bcachefs (loop8): recovering from clean shutdown, journal seq 10
[  395.739623][T14736] bcachefs (loop8): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.28: inode_has_case_insensitive
[  395.739623][T14736]   running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[  395.761526][    C1] vkms_vblank_simulate: vblank timer overrun
[  395.829617][T14793] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  395.870471][T14736] bcachefs (loop8): Now allowing incompatible features up to 1.28: inode_has_case_insensitive, previously allowed up to 1.7: mi_btree_bitmap
[  395.870471][T14736] 
[  395.956554][T14793] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  396.024028][T14736] bcachefs (loop8): error reading btree root btree=alloc level=0: btree_node_read_error, fixing
[  396.070114][T10515] udevd[10515]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  396.076222][T14797] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3438'.
[  396.078008][ T6033] udevd[6033]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  396.082262][ T7437] udevd[7437]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  396.127946][ T6277] udevd[6277]: inotify_add_watch(7, /dev/loop5p5, 10) failed: No such file or directory
[  396.178366][T10515] udevd[10515]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  396.203901][ T6277] udevd[6277]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  396.214285][ T5989] udevd[5989]: inotify_add_watch(7, /dev/loop5p5, 10) failed: No such file or directory
[  396.221455][ T7437] udevd[7437]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  396.237954][T14801] netlink: 96 bytes leftover after parsing attributes in process `syz.9.3441'.
[  396.314269][T14736] bcachefs (loop8): btree node read error at btree freespace level 0/0
[  396.314338][T14736]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 4398046511104: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0
[  396.314358][T14736]   loop8 node offset 0/32 bset u64s 0: checksum error, type none: got  should be 
[  396.314373][T14736]   flagging btree freespace lost data
[  396.314386][T14736]   ret fsck_errors_not_fixed
[  396.482004][T14808] loop1: detected capacity change from 0 to 512
[  396.511733][T14808] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  396.517519][T14808] EXT4-fs (loop1): orphan cleanup on readonly fs
[  396.518707][T14808] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.3442: Block bitmap for bg 0 marked uninitialized
[  396.583609][T14736] bcachefs (loop8): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  396.597685][T14808] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  396.614539][T14736] bcachefs (loop8): check_topology... done
[  396.627638][T14736] bcachefs (loop8): accounting_read...
[  396.635873][T14808] EXT4-fs (loop1): 1 orphan inode deleted
[  396.659324][T14736]  done
[  396.662223][T14736] bcachefs (loop8): alloc_read... done
[  396.681512][T14736] bcachefs (loop8): snapshots_read... done
[  396.701412][T14736] bcachefs (loop8): Fixed errors, running fsck a second time to verify fs is clean
[  396.741746][T14808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  396.752164][T14736] bcachefs (loop8): done starting filesystem
[  396.855691][T14808] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  396.931683][T14808] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  396.964139][ T8679] bcachefs (loop8): shutting down
[  397.119773][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.187164][ T8679] bcachefs (loop8): shutdown complete
[  397.296748][T14836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3454'.
[  397.610367][T14843] deleting an unspecified loop device is not supported.
[  398.299884][T14871] loop5: detected capacity change from 0 to 128
[  398.353769][T14871] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  398.396137][T14875] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3475'.
[  398.449349][T14871] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  398.934434][T14893] binder: binder_mmap: 14892 200000ffb000-200000ffd000 bad vm_flags failed -1
[  399.105025][T14899] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  399.482304][T14911] loop2: detected capacity change from 0 to 2048
[  399.520695][T14911] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=27485, location=27485
[  399.585224][T14911] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  400.067783][T14926] ntfs3(nullb0): Primary boot signature is not NTFS.
[  400.104218][T14926] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  400.611650][T14947] loop8: detected capacity change from 0 to 256
[  400.620758][T14947] vfat: Deprecated parameter 'posix'
[  400.643715][T14949] nfs: Unknown parameter 'ntext'
[  400.653575][T14947] FAT-fs: "posix" option is obsolete, not supported now
[  401.289912][T14936] loop1: detected capacity change from 0 to 32768
[  401.453508][T14936] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  401.737759][ T5829] ocfs2: Unmounting device (7,1) on (node local)
[  402.077588][T14961] loop5: detected capacity change from 0 to 32768
[  402.103507][T14961] (syz.5.3515,14961,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  402.144188][T14961] (syz.5.3515,14961,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  402.337238][T14961] JBD2: Ignoring recovery information on journal
[  402.438369][T14961] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  402.459605][T14993] bond2: entered promiscuous mode
[  402.529126][T14993] bond2: entered allmulticast mode
[  402.540949][T14993] 8021q: adding VLAN 0 to HW filter on device bond2
[  402.820242][ T5835] ocfs2: Unmounting device (7,5) on (node local)
[  402.969739][T14982] loop8: detected capacity change from 0 to 32768
[  403.034209][T14982] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.3524 (14982)
[  403.091042][T14982] BTRFS info (device loop8): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  403.123637][T14982] BTRFS info (device loop8): using xxhash64 (xxhash64-generic) checksum algorithm
[  403.151231][T14982] BTRFS info (device loop8): using free-space-tree
[  403.419508][T14982] BTRFS info (device loop8): rebuilding free space tree
[  403.616089][ T5909] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  403.706536][ T8679] BTRFS info (device loop8): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  403.806138][ T5909] usb 4-1: Using ep0 maxpacket: 32
[  403.864206][ T5909] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  403.894051][ T5909] usb 4-1: config 0 has no interface number 0
[  403.925890][ T5909] usb 4-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  404.004116][ T5909] usb 4-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  404.040907][ T5909] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  404.076409][ T5909] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  404.121129][ T5909] usb 4-1: Product: syz
[  404.133872][T15055] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  404.162924][ T5909] usb 4-1: Manufacturer: syz
[  404.194435][ T5909] usb 4-1: SerialNumber: syz
[  404.228919][ T5909] usb 4-1: config 0 descriptor??
[  404.271432][ T5909] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  404.298481][T15060] netlink: 'syz.9.3551': attribute type 1 has an invalid length.
[  404.306860][T15060] netlink: 'syz.9.3551': attribute type 3 has an invalid length.
[  404.315413][T15060] netlink: 224 bytes leftover after parsing attributes in process `syz.9.3551'.
[  404.487138][ T5909] usb 4-1: qt2_setup_urbs - submit read urb failed -90
[  404.539693][ T5909] quatech2 4-1:0.51: probe with driver quatech2 failed with error -90
[  404.713878][   T43] usb 4-1: USB disconnect, device number 24
[  404.817011][T15072] loop1: detected capacity change from 0 to 2048
[  404.890386][T15072] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  405.005768][T15072] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  405.113317][T15072] EXT4-fs (loop1): Remounting filesystem read-only
[  405.278497][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.299586][T15090] xt_l2tp: v2 doesn't support IP mode
[  405.510459][T15098] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  405.914693][   T43] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  406.100294][   T43] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD6, changing to 0x86
[  406.151956][   T43] usb 9-1: New USB device found, idVendor=05f3, idProduct=0240, bcdDevice=1b.24
[  406.183221][   T43] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  406.207166][T15118] loop3: detected capacity change from 0 to 4096
[  406.217672][   T43] usb 9-1: Product: syz
[  406.221935][   T43] usb 9-1: Manufacturer: syz
[  406.238642][   T43] usb 9-1: SerialNumber: syz
[  406.286878][T15118] ntfs3(loop3): It is recommened to use chkdsk.
[  406.306191][   T43] usb 9-1: config 0 descriptor??
[  406.334925][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00
[  406.345043][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00
[  406.353094][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00
[  406.387672][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00
[  406.417020][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffc1c00
[  406.418662][T15128] loop2: detected capacity change from 0 to 16
[  406.437386][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffc2c00
[  406.456249][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffc4c00
[  406.469231][T15128] erofs (device loop2): mounted with root inode @ nid 36.
[  406.517352][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffc8c00
[  406.521529][   T43] powermate: unknown product id 0240
[  406.550567][T15118] ntfs3(loop3): try to read out of volume at offset 0x3fffffd0c00
[  406.577161][   T43] input: Griffin SoundKnob as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/input/input25
[  406.645979][    C1] powermate: config urb returned -71
[  406.651751][    C1] powermate: config urb returned -71
[  406.659297][    C1] powermate: config urb returned -71
[  406.664786][    C1] powermate: config urb returned -71
[  406.698960][   T43] usb 9-1: USB disconnect, device number 12
[  406.705001][    C1] powermate 9-1:0.0: powermate_irq - usb_submit_urb failed with result: -19
[  406.728490][ T5825] syz-executor: attempt to access beyond end of device
[  406.728490][ T5825] loop2: rw=0, sector=103079215096, nr_sectors = 8 limit=16
[  406.764640][ T5825] erofs (device loop2): failed to readdir of logical block 0 of nid 46
[  406.818424][ T5825] erofs (device loop2): bogus i_mode (0) @ nid 281474976710655
[  406.849915][ T5825] erofs (device loop2): bogus i_mode (0) @ nid 281474976710655
[  406.932095][T15135] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  407.280577][T15141] [U] ^C
[  407.419136][   T49] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.590818][   T49] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.759549][T15154] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  407.760692][T15148] loop8: detected capacity change from 0 to 512
[  407.865535][T15148] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  407.876617][   T49] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.939496][T15148] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  407.970992][T15148] EXT4-fs (loop8): orphan cleanup on readonly fs
[  408.045736][T15148] EXT4-fs error (device loop8): ext4_orphan_get:1419: comm syz.8.3593: bad orphan inode 267
[  408.086585][T15148] EXT4-fs (loop8): Remounting filesystem read-only
[  408.116156][T15148] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  408.249156][T15148] EXT4-fs warning (device loop8): dx_probe:861: inode #2: comm syz.8.3593: dx entry: limit 0 != root limit 125
[  408.312384][T15148] EXT4-fs warning (device loop8): dx_probe:934: inode #2: comm syz.8.3593: Corrupt directory, running e2fsck is recommended
[  408.493626][   T49] bond0: (slave netdevsim0): Releasing backup interface
[  408.549478][ T8679] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  408.613722][   T49] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.772266][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  408.781626][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  408.819694][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  408.831945][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  408.843261][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  409.294808][T15195] netlink: 88 bytes leftover after parsing attributes in process `syz.3.3614'.
[  409.379652][T15200] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3617'.
[  409.418907][   T49] bridge_slave_1: left allmulticast mode
[  409.438841][T15203] xt_hashlimit: size too large, truncated to 1048576
[  409.450438][T15203] xt_hashlimit: max too large, truncated to 1048576
[  409.450606][   T49] bridge_slave_1: left promiscuous mode
[  409.474461][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.529274][   T49] bridge_slave_0: left allmulticast mode
[  409.554058][   T49] bridge_slave_0: left promiscuous mode
[  409.599599][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  409.660364][T15205] loop3: detected capacity change from 0 to 128
[  409.715885][T15205] EXT4-fs: Ignoring removed oldalloc option
[  409.779947][T15205] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  409.800567][T15205] ext4 filesystem being mounted at /621/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  409.941791][T15205] EXT4-fs error (device loop3): ext4_validate_block_bitmap:423: comm syz.3.3619: bg 0: bad block bitmap checksum
[  410.167258][ T5836] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  410.464511][ T5832] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  410.654793][   T49] dvmrp1 (unregistering): left allmulticast mode
[  410.662852][ T5832] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[  410.687057][ T5832] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  410.717519][ T5832] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  410.727754][ T5832] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  410.740723][ T5832] usb 2-1: Manufacturer: syz
[  410.755685][ T5832] usb 2-1: config 0 descriptor??
[  410.774663][ T5832] igorplugusb 2-1:0.0: endpoint incorrect
[  410.808505][   T49] team0: Port device bridge0 removed
[  410.915669][ T5849] Bluetooth: hci0: command tx timeout
[  410.985878][ T5968] usb 2-1: USB disconnect, device number 16
[  411.122222][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  411.161985][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  411.184640][   T49] bond0 (unregistering): Released all slaves
[  411.257031][T15247] loop3: detected capacity change from 0 to 256
[  411.415451][T15247] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xcc9b7de9, utbl_chksum : 0xe619d30d)
[  411.575785][   T49] IPVS: stopping backup sync thread 12616 ...
[  411.679108][T15180] chnl_net:caif_netlink_parms(): no params data found
[  412.212343][T15277] sock: sock_timestamping_bind_phc: sock not bind to device
[  412.994308][ T5849] Bluetooth: hci0: command tx timeout
[  413.000030][T15308] ieee802154 phy0 wpan0: encryption failed: -22
[  413.216388][T15315] ipt_rpfilter: unknown options
[  413.891044][   T49] hsr_slave_0: left promiscuous mode
[  413.949861][   T49] hsr_slave_1: left promiscuous mode
[  413.983831][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  414.010705][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  414.015339][T15342] loop8: detected capacity change from 0 to 4096
[  414.078841][T15342] EXT4-fs: Ignoring removed nomblk_io_submit option
[  414.129858][   T49] veth1_macvtap: left promiscuous mode
[  414.142999][T15342] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  414.154077][   T49] veth0_macvtap: left promiscuous mode
[  414.154343][   T49] veth1_vlan: left promiscuous mode
[  414.154507][   T49] veth0_vlan: left promiscuous mode
[  414.179194][T15342] EXT4-fs (loop8): Test dummy encryption mode enabled
[  414.197429][T15342] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.246577][T15342] EXT4-fs: Ignoring removed nomblk_io_submit option
[  414.246683][T15342] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  414.301980][T15342] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  414.458460][ T8679] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.624015][   T24] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  414.808054][   T24] usb 6-1: config 0 has an invalid interface number: 64 but max is 0
[  414.842074][   T24] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  414.882509][   T24] usb 6-1: config 0 has no interface number 0
[  414.911841][   T24] usb 6-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[  414.943421][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.988776][   T24] usb 6-1: Product: syz
[  414.996545][   T24] usb 6-1: Manufacturer: syz
[  415.012292][   T24] usb 6-1: SerialNumber: syz
[  415.064271][   T24] usb 6-1: config 0 descriptor??
[  415.074223][ T5849] Bluetooth: hci0: command tx timeout
[  415.531387][   T24] usb 6-1: Found UVC 0.00 device syz (046d:0823)
[  415.553639][   T24] usb 6-1: No valid video chain found.
[  415.583420][   T24] usb 6-1: USB disconnect, device number 16
[  415.817251][T15387] loop3: detected capacity change from 0 to 8192
[  415.868105][T15387] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  416.262836][T15395] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3701'.
[  416.470551][   T49] team0 (unregistering): Port device team_slave_1 removed
[  416.531967][T15403] loop5: detected capacity change from 0 to 128
[  416.579227][   T49] team0 (unregistering): Port device team_slave_0 removed
[  416.593578][T15403] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  416.618524][T15403] ext4 filesystem being mounted at /681/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  416.660871][T15403] EXT4-fs warning (device loop5): ext4_dirblock_csum_verify:375: inode #2: comm syz.5.3706: No space for directory leaf checksum. Please run e2fsck -D.
[  416.690468][T15403] EXT4-fs error (device loop5): __ext4_find_entry:1626: inode #2: comm syz.5.3706: checksumming directory block 0
[  416.780027][ T5835] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  417.154750][ T5849] Bluetooth: hci0: command tx timeout
[  417.271773][T15412] xt_CT: No such helper "snmp"
[  417.596978][T15180] bridge0: port 1(bridge_slave_0) entered blocking state
[  417.614519][T15180] bridge0: port 1(bridge_slave_0) entered disabled state
[  417.646038][T15180] bridge_slave_0: entered allmulticast mode
[  417.690656][T15180] bridge_slave_0: entered promiscuous mode
[  417.751803][T15180] bridge0: port 2(bridge_slave_1) entered blocking state
[  417.776017][T15180] bridge0: port 2(bridge_slave_1) entered disabled state
[  417.864246][T15180] bridge_slave_1: entered allmulticast mode
[  417.872281][T15180] bridge_slave_1: entered promiscuous mode
[  418.320480][T15180] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  418.413474][T15180] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  418.943860][T15180] team0: Port device team_slave_0 added
[  419.022715][T15180] team0: Port device team_slave_1 added
[  419.051627][T15467] libceph: resolve '400' (ret=-3): failed
[  419.189653][T15474] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  419.613239][T15180] batman_adv: batadv0: Adding interface: batadv_slave_0
[  419.659076][T15180] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  419.747528][T15180] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  419.874979][T15180] batman_adv: batadv0: Adding interface: batadv_slave_1
[  419.924070][T15180] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  419.968510][T15503] loop1: detected capacity change from 0 to 256
[  419.989617][T15503] exfat: Deprecated parameter 'utf8'
[  420.003207][T15180] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  420.053363][T15503] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  420.515149][   T24] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  420.528292][T15180] hsr_slave_0: entered promiscuous mode
[  420.554110][T15518] netlink: 'syz.1.3754': attribute type 10 has an invalid length.
[  420.573567][T15180] hsr_slave_1: entered promiscuous mode
[  420.612482][T15180] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  420.647724][T15180] Cannot create hsr debugfs directory
[  420.672011][T15518] team0: Port device syz_tun added
[  420.680455][T15525] ptrace attach of "./syz-executor exec"[12171] was attempted by ""[15525]
[  420.724215][   T24] usb 4-1: Using ep0 maxpacket: 8
[  420.786097][   T24] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  420.826362][   T24] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  420.874178][   T24] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  420.926722][   T24] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  420.936055][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  420.957850][   T24] usb 4-1: Product: syz
[  420.968915][   T24] usb 4-1: Manufacturer: syz
[  420.993884][   T24] usb 4-1: SerialNumber: syz
[  421.247717][T15539] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  421.271702][T15540] loop1: detected capacity change from 0 to 256
[  421.462779][   T24] usb 4-1: 0:2 : does not exist
[  421.544620][   T24] usb 4-1: USB disconnect, device number 25
[  421.698773][ T6033] udevd[6033]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  421.733649][T15546] netdevsim netdevsim9: Firmware load for '..' refused, path contains '..' component
[  421.769399][T15529] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  421.780700][T15529] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  421.853878][T15529] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  421.892955][T15529] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  423.185451][T15592] loop9: detected capacity change from 0 to 128
[  423.252800][T15592] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  423.324485][ T5909] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  423.361220][T15561] loop1: detected capacity change from 0 to 32768
[  423.375113][T15592] ext4 filesystem being mounted at /223/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  423.480663][T15561] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  423.525582][T15592] EXT4-fs warning (device loop9): ext4_dirblock_csum_verify:375: inode #2: comm syz.9.3783: No space for directory leaf checksum. Please run e2fsck -D.
[  423.541922][ T5909] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  423.573388][ T5909] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  423.594021][T15592] EXT4-fs error (device loop9): __ext4_find_entry:1626: inode #2: comm syz.9.3783: checksumming directory block 0
[  423.641231][ T5909] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  423.670546][T15561] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  423.685700][ T5909] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.735680][T15587] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  423.746926][ T5909] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  423.790154][T12171] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  423.963742][ T5829] ocfs2: Unmounting device (7,1) on (node local)
[  424.077555][T15607] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3788'.
[  424.087343][T15607] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3788'.
[  424.294548][T12173] usb 6-1: USB disconnect, device number 17
[  424.487633][T15608] netlink: 36 bytes leftover after parsing attributes in process `syz.9.3786'.
[  424.547895][T15616] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  424.585147][T15529] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  424.624120][T15529] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  425.406999][T15180] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  425.479025][T15180] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  425.542320][T15180] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  425.590139][T15644] netlink: 92 bytes leftover after parsing attributes in process `syz.5.3804'.
[  425.654070][T15180] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  426.092377][T15180] 8021q: adding VLAN 0 to HW filter on device bond0
[  426.116364][ T5849] Bluetooth: hci5: command 0x0406 tx timeout
[  426.194450][T15529] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  426.244220][T15529] Bluetooth: hci5: Error when powering off device on rfkill (-4)
[  426.292897][T15180] 8021q: adding VLAN 0 to HW filter on device team0
[  426.329334][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  426.336581][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  426.369630][T15633] loop9: detected capacity change from 0 to 32768
[  426.410671][T15633] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.3799 (15633)
[  426.452463][T15633] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  426.452557][T15633] BTRFS info (device loop9): using crc32c (crc32c-x86_64) checksum algorithm
[  426.452592][T15633] BTRFS info (device loop9): using free-space-tree
[  426.533336][T15689] loop3: detected capacity change from 0 to 256
[  426.624562][T15633] BTRFS info (device loop9): rebuilding free space tree
[  426.642205][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  426.649440][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  426.674469][T15529] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  426.680421][T15529] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  426.709321][T15689] FAT-fs (loop3): Directory bread(block 64) failed
[  426.709359][T15689] FAT-fs (loop3): Directory bread(block 65) failed
[  426.709448][T15689] FAT-fs (loop3): Directory bread(block 66) failed
[  426.709476][T15689] FAT-fs (loop3): Directory bread(block 67) failed
[  426.709560][T15689] FAT-fs (loop3): Directory bread(block 68) failed
[  426.709589][T15689] FAT-fs (loop3): Directory bread(block 69) failed
[  426.709673][T15689] FAT-fs (loop3): Directory bread(block 70) failed
[  426.709701][T15689] FAT-fs (loop3): Directory bread(block 71) failed
[  426.709786][T15689] FAT-fs (loop3): Directory bread(block 72) failed
[  426.709814][T15689] FAT-fs (loop3): Directory bread(block 73) failed
[  426.869666][T15180] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  427.060130][T15633] BTRFS info (device loop9 state M): max_inline set to 0
[  427.233387][T12171] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  427.296364][   T30] audit: type=1326 audit(2000000202.859:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15703 comm="syz.3.3816" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd59cb8e929 code=0x0
[  427.920884][T15678] loop1: detected capacity change from 0 to 32768
[  428.056338][T15724] netlink: 10 bytes leftover after parsing attributes in process `syz.5.3823'.
[  428.175267][T15180] 8021q: adding VLAN 0 to HW filter on device batadv0
[  428.310037][T15678] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,recovery_pass_last=accounting_read,nojournal_transaction_names,read_only,version_upgrade=incompatible
[  428.310075][T15678]   allowing incompatible features above 0.0: (unknown version)
[  428.310090][T15678]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  428.574295][T15678] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  428.623087][T15678] bcachefs (loop1): recovering from clean shutdown, journal seq 13
[  428.654785][T15678] bcachefs (loop1): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.28: inode_has_case_insensitive
[  428.654785][T15678]   running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[  428.788356][T15678] bcachefs (loop1): Now allowing incompatible features up to 1.28: inode_has_case_insensitive, previously allowed up to 0.0: (unknown version)
[  428.788356][T15678] 
[  429.014924][T15678] bcachefs (loop1): accounting_read... done
[  429.100622][T15678] bcachefs (loop1): done starting filesystem
[  429.299154][T15764] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3837'.
[  429.356677][T15764] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3837'.
[  429.374219][T15765] netlink: 'syz.9.3838': attribute type 5 has an invalid length.
[  429.500865][ T5829] bcachefs (loop1): shutting down
[  429.656804][ T5829] bcachefs (loop1): shutdown complete
[  429.786037][T15180] veth0_vlan: entered promiscuous mode
[  429.821678][T15782] loop9: detected capacity change from 0 to 512
[  429.850332][T15180] veth1_vlan: entered promiscuous mode
[  429.923705][T15782] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2
[  429.989466][T15782] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2
[  430.050022][T15180] veth0_macvtap: entered promiscuous mode
[  430.062947][T15782] EXT4-fs (loop9): 1 truncate cleaned up
[  430.095376][T15782] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.122023][T15180] veth1_macvtap: entered promiscuous mode
[  430.171877][T15180] batman_adv: batadv0: Interface activated: batadv_slave_0
[  430.222526][T15180] batman_adv: batadv0: Interface activated: batadv_slave_1
[  430.233489][T15782] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  430.288863][T15180] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  430.316813][T15180] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  430.328744][T15180] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  430.340466][T15180] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  430.422110][T12171] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.672368][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  430.725595][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  430.819493][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  430.883433][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  431.071602][T15813] netlink: 'syz.5.3854': attribute type 1 has an invalid length.
[  431.139361][T15813] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3854'.
[  431.648291][T15834] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3864'.
[  431.714549][T15834] netlink: 'syz.8.3864': attribute type 1 has an invalid length.
[  431.908945][T15842] netlink: 'syz.4.3867': attribute type 24 has an invalid length.
[  431.938919][T15845] loop3: detected capacity change from 0 to 512
[  432.032570][T15837] loop9: detected capacity change from 0 to 4096
[  432.107634][T15845] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.224450][T15845] ext4 filesystem being mounted at /682/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  432.248741][T15851] loop8: detected capacity change from 0 to 1024
[  432.461609][T15845] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3868: bg 0: block 145: padding at end of block bitmap is not set
[  432.568945][T15837] ntfs3(loop9): ino=b, mi_enum_attr
[  432.584118][T15848] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 145: padding at end of block bitmap is not set
[  432.621870][T15860] loop5: detected capacity change from 0 to 64
[  432.628650][T15837] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[  432.685318][T15837] ntfs3(loop9): Failed to load $Extend (-22).
[  432.691467][T15837] ntfs3(loop9): Failed to initialize $Extend.
[  432.877955][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.888861][T15837] ntfs3(loop9): try to read out of volume at offset 0x3fffffc7000
[  432.944195][T15837] ntfs3(loop9): ino=21, The size of extended attributes must not exceed 64KiB
[  433.382972][T15882] netlink: 199836 bytes leftover after parsing attributes in process `syz.8.3880'.
[  433.803659][T15897] netlink: 'syz.8.3887': attribute type 10 has an invalid length.
[  433.835637][T15890] xt_CT: No such helper "snmp_trap"
[  433.873190][T15897] lo: entered promiscuous mode
[  433.937285][T15897] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  434.699479][T15929] loop4: detected capacity change from 0 to 65
[  434.734410][T15929] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  434.868894][T15888] loop3: detected capacity change from 0 to 32768
[  434.929622][T15888] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3885 (15888)
[  435.114009][T15888] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  435.170623][T15935] loop1: detected capacity change from 0 to 4096
[  435.177240][T15888] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm
[  435.213506][T15888] BTRFS info (device loop3): using free-space-tree
[  435.610140][T15888] BTRFS info (device loop3): rebuilding free space tree
[  435.832790][T15975] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3912'.
[  436.303160][T15986] autofs4:pid:15986:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a)
[  436.357413][ T5836] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  436.574612][T15994] netlink: 'syz.1.3921': attribute type 1 has an invalid length.
[  436.585532][T15994] netlink: 232 bytes leftover after parsing attributes in process `syz.1.3921'.
[  436.620182][T15990] loop5: detected capacity change from 0 to 2048
[  436.681024][T15990] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  436.812169][T16001] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  437.764203][T16034] netlink: 'syz.9.3935': attribute type 8 has an invalid length.
[  437.844315][T16034] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  438.184182][ T5909] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  438.369776][ T5909] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  438.399251][ T5909] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  438.463650][ T5909] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  438.516897][ T5909] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  438.564039][ T5909] usb 5-1: SerialNumber: syz
[  438.596089][T16057] loop3: detected capacity change from 0 to 4096
[  438.608606][ T5909] usb 5-1: 0:2 : does not exist
[  438.640442][T16057] EXT4-fs (loop3): Test dummy encryption mode enabled
[  438.741633][T16057] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  438.870859][T16072] loop9: detected capacity change from 0 to 64
[  438.961688][T16070] ip6gretap1: entered promiscuous mode
[  438.983660][T16057] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  439.024870][T16070] ip6gretap1: entered allmulticast mode
[  439.084420][ T5909] usb 5-1: USB disconnect, device number 4
[  439.165007][T16057] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3944: bg 0: block 232: padding at end of block bitmap is not set
[  439.418561][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  439.428075][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  439.561256][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.963110][T16102] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3962'.
[  440.510659][T16127] openvswitch: netlink: Flow key attr not present in new flow.
[  440.594493][T12173] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  440.779149][T12173] usb 2-1: config 0 has an invalid interface number: 37 but max is 0
[  440.799093][T12173] usb 2-1: config 0 has an invalid descriptor of length 10, skipping remainder of the config
[  440.862313][T12173] usb 2-1: config 0 has no interface number 0
[  440.915461][T12173] usb 2-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=75.2f
[  440.954209][T12173] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.985973][T12173] usb 2-1: Product: syz
[  440.990202][T12173] usb 2-1: Manufacturer: syz
[  441.021786][T12173] usb 2-1: SerialNumber: syz
[  441.054039][   T43] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  441.065049][T12173] usb 2-1: config 0 descriptor??
[  441.099958][T12173] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  441.110964][T16147] loop4: detected capacity change from 0 to 1024
[  441.254201][   T43] usb 4-1: Using ep0 maxpacket: 8
[  441.266022][T16147] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[  441.307759][   T43] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  441.352323][T16147] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[  441.365802][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 255, changing to 11
[  441.410938][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 59391, setting to 1024
[  441.481560][   T43] usb 4-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  441.498140][T12173] gspca_topro: reg_w err -71
[  441.516140][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  441.527481][ T8551] hfsplus: b-tree write err: -5, ino 4
[  441.528205][T16152] netlink: 'syz.8.3984': attribute type 1 has an invalid length.
[  441.564536][   T43] usb 4-1: Product: syz
[  441.568758][   T43] usb 4-1: Manufacturer: syz
[  441.573450][   T43] usb 4-1: SerialNumber: syz
[  441.579346][T16154] loop9: detected capacity change from 0 to 512
[  441.579742][T12173] gspca_topro: Sensor soi763a
[  441.651747][   T43] usb 4-1: config 0 descriptor??
[  441.664936][T12173] usb 2-1: USB disconnect, device number 17
[  441.689633][T16139] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  441.714809][T16154] EXT4-fs error (device loop9): ext4_iget_extra_inode:5035: inode #15: comm syz.9.3985: corrupted in-inode xattr: invalid ea_ino
[  441.781893][T16154] EXT4-fs error (device loop9): ext4_orphan_get:1398: comm syz.9.3985: couldn't read orphan inode 15 (err -117)
[  441.859150][T16154] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.032377][T12173] usb 4-1: USB disconnect, device number 26
[  442.110761][T16166] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3988'.
[  442.192843][T12171] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.323484][T16140] loop5: detected capacity change from 0 to 32768
[  442.402684][T16170] loop1: detected capacity change from 0 to 256
[  442.438233][T16170] exfat: Deprecated parameter 'namecase'
[  442.447017][T16140] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[  442.521823][T16170] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  442.588056][T16140] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  442.593549][T16163] loop8: detected capacity change from 0 to 32768
[  442.659972][T16163] (syz.8.3987,16163,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  442.713811][T16140] ocfs2: Unmounting device (7,5) on (node local)
[  442.785274][T16163] (syz.8.3987,16163,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  442.845748][   T30] audit: type=1326 audit(2000000218.419:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16181 comm="syz.9.3992" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6c478e929 code=0x0
[  442.914073][T16163] JBD2: Ignoring recovery information on journal
[  443.130068][T16163] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  443.344091][T16197] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3997'.
[  443.413036][T16197] netlink: 168 bytes leftover after parsing attributes in process `syz.3.3997'.
[  443.485760][T16197] netlink: 168 bytes leftover after parsing attributes in process `syz.3.3997'.
[  443.550762][T16197] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  443.758395][ T8679] ocfs2: Unmounting device (7,8) on (node local)
[  444.538889][ T2338] pvrusb2: request_firmware fatal error with code=-110
[  444.546075][T16237] loop3: detected capacity change from 0 to 64
[  444.554108][   T43] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  444.591285][ T2338] pvrusb2: Failure uploading firmware1
[  444.634070][ T2338] pvrusb2: Device initialization was not successful.
[  444.640814][ T2338] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  444.719926][ T2338] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  444.741713][T16242] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4017'.
[  444.754991][   T43] usb 2-1: Using ep0 maxpacket: 32
[  444.774008][ T2338] pvrusb2: Failed to submit write-control URB status=-19
[  444.787447][   T10] pvrusb2: Device being rendered inoperable
[  444.817210][   T43] usb 2-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  444.827175][T16242] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4017'.
[  444.834434][ T2338] usb 10-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2
[  444.864019][ T2338] usb 10-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw
[  444.880596][   T43] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  444.916883][   T43] usb 2-1: Product: syz
[  444.921106][   T43] usb 2-1: Manufacturer: syz
[  444.974090][   T43] usb 2-1: SerialNumber: syz
[  445.036679][   T43] usb 2-1: config 0 descriptor??
[  445.147684][T16255] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4023'.
[  445.273618][   T43] RobotFuzz Open Source InterFace, OSIF 2-1:0.0: version d4.15 found at bus 002 address 018
[  445.374197][T12173] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  445.491090][   T43] usb 2-1: USB disconnect, device number 18
[  445.544343][T12173] usb 9-1: Using ep0 maxpacket: 16
[  445.569867][T12173] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  445.607564][T12173] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  445.649719][T12173] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  445.700277][T12173] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.733191][T12173] usb 9-1: Product: syz
[  445.758228][T12173] usb 9-1: Manufacturer: syz
[  445.804678][T12173] usb 9-1: SerialNumber: syz
[  446.064269][T12173] usb 9-1: 0:2 : does not exist
[  446.140855][T16286] tc_dump_action: action bad kind
[  446.160140][T12173] usb 9-1: USB disconnect, device number 13
[  446.436404][T16300] loop4: detected capacity change from 0 to 22
[  446.443212][T16296] loop5: detected capacity change from 0 to 256
[  446.465371][T16300] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  446.524013][T16300] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  446.570947][T16306] dlm: no locking on control device
[  446.635345][ T6033] udevd[6033]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  447.026008][T16314] loop1: detected capacity change from 0 to 16
[  447.072049][T16316] netlink: 248 bytes leftover after parsing attributes in process `syz.4.4045'.
[  447.215091][T16314] erofs (device loop1): mounted with root inode @ nid 36.
[  447.798171][T16342] loop9: detected capacity change from 0 to 64
[  448.033997][ T5832] usb 2-1: new full-speed USB device number 19 using dummy_hcd
[  448.144991][T16355] bpf: Bad value for 'uid'
[  448.187085][T16357] loop9: detected capacity change from 0 to 8
[  448.236191][ T5832] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  448.266619][ T5832] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  448.301321][ T5832] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  448.316714][ T5832] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  448.366249][ T5832] usb 2-1: Product: syz
[  448.373695][ T5832] usb 2-1: Manufacturer: syz
[  448.396352][ T5832] usb 2-1: SerialNumber: syz
[  448.684205][ T5832] usb 2-1: 0:2 : does not exist
[  448.757219][ T5832] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  448.984325][ T5832] usb 2-1: USB disconnect, device number 19
[  449.153700][T16383] loop8: detected capacity change from 0 to 764
[  449.175919][ T5983] udevd[5983]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  449.280207][T16383] Symlink component flag not implemented
[  449.314541][T16383] Symlink component flag not implemented (7)
[  449.853735][T16397] loop3: detected capacity change from 0 to 1764
[  450.083465][T16366] loop4: detected capacity change from 0 to 32768
[  450.141674][T16408] cgroup: noprefix used incorrectly
[  450.150357][T16359] loop5: detected capacity change from 0 to 32768
[  450.177775][T16366] (syz.4.4068,16366,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  450.249061][T16366] (syz.4.4068,16366,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  450.317192][T16359] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  450.404356][T16366] JBD2: Ignoring recovery information on journal
[  450.493645][T16428] vlan1: entered promiscuous mode
[  450.588494][T16359] XFS (loop5): Ending clean mount
[  450.612010][T16366] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  450.784517][ T5909] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  450.840812][ T5835] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  450.979019][ T5909] usb 9-1: Using ep0 maxpacket: 32
[  451.011086][ T5909] usb 9-1: config 0 has an invalid interface number: 85 but max is 0
[  451.056175][ T5909] usb 9-1: config 0 has no interface number 0
[  451.063110][T16442] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  451.083535][ T5909] usb 9-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  451.151344][ T5909] usb 9-1: config 0 interface 85 has no altsetting 0
[  451.182744][T15180] ocfs2: Unmounting device (7,4) on (node local)
[  451.190638][ T5909] usb 9-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  451.243775][ T5909] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  451.288247][ T5909] usb 9-1: Product: syz
[  451.292475][ T5909] usb 9-1: Manufacturer: syz
[  451.328095][ T5909] usb 9-1: SerialNumber: syz
[  451.449961][ T5909] usb 9-1: config 0 descriptor??
[  451.774100][T16456] delete_channel: no stack
[  451.925187][ T5909] appletouch 9-1:0.85: Failed to request geyser raw mode
[  451.961756][ T5909] appletouch 9-1:0.85: probe with driver appletouch failed with error -5
[  452.068009][ T5909] usb 9-1: USB disconnect, device number 14
[  452.407018][T16478] loop3: detected capacity change from 0 to 256
[  452.513337][T16478] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF
[  452.619554][T16486] loop4: detected capacity change from 0 to 256
[  452.637137][T16486] exfat: Deprecated parameter 'utf8'
[  452.656758][T16487] netlink: 'syz.9.4109': attribute type 30 has an invalid length.
[  452.695369][T16487] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[  452.743054][T16487] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[  452.821343][T16486] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  453.842678][T16512] binder: 16511:16512 ioctl c00c620f 0 returned -14
[  454.087045][T16521] loop9: detected capacity change from 0 to 256
[  454.636108][T16542] loop5: detected capacity change from 0 to 8
[  454.974146][T15613] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  455.084993][T16557] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4138'.
[  455.138546][T16557] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4138'.
[  455.152884][T16558] loop3: detected capacity change from 0 to 128
[  455.174026][T15613] usb 6-1: Using ep0 maxpacket: 32
[  455.191053][T16557] netlink: 156 bytes leftover after parsing attributes in process `syz.9.4138'.
[  455.197198][T15613] usb 6-1: config 0 has an invalid interface number: 194 but max is 0
[  455.244980][T15613] usb 6-1: config 0 has no interface number 0
[  455.287090][T15613] usb 6-1: too many endpoints for config 0 interface 194 altsetting 110: 239, using maximum allowed: 30
[  455.329360][T15613] usb 6-1: config 0 interface 194 altsetting 110 has 0 endpoint descriptors, different from the interface descriptor's value: 239
[  455.363548][T15613] usb 6-1: config 0 interface 194 has no altsetting 0
[  455.374623][T15613] usb 6-1: New USB device found, idVendor=0483, idProduct=3747, bcdDevice= 0.02
[  455.394004][T16558] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  455.395508][T15613] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  455.420648][T15613] usb 6-1: Product: syz
[  455.430796][T15613] usb 6-1: Manufacturer: syz
[  455.440956][T15613] usb 6-1: SerialNumber: syz
[  455.464995][T15613] usb 6-1: config 0 descriptor??
[  455.481753][T16558] System zones: 1-3, 19-19, 35-36
[  455.584742][T16558] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  455.685384][T15613] ftdi_sio 6-1:0.194: FTDI USB Serial Device converter detected
[  455.728171][T16571] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4143'.
[  455.753107][T15613] usb 6-1: Detected SIO
[  455.790428][T16558] ext4 filesystem being mounted at /720/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  455.794818][T15613] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  455.904486][T15613] usb 6-1: USB disconnect, device number 18
[  455.956970][T15613] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  455.971612][T16558] EXT4-fs warning (device loop3): ext4_group_extend:1891: can't read last block, resize aborted
[  456.029050][T15613] ftdi_sio 6-1:0.194: device disconnected
[  456.351621][T16589] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4149'.
[  456.413792][T16589] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4149'.
[  456.481232][ T5836] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  456.535281][T16594] Unsupported ieee802154 address type: 0
[  456.684133][T16598] loop1: detected capacity change from 0 to 512
[  456.783975][T16598] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  456.828137][T16598] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  456.908595][T16598] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  457.067051][T16598] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  457.094936][T16598] System zones: 0-2, 18-18, 34-35
[  457.102510][T16598] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  457.491195][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  457.543373][T16630] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4166'.
[  457.552995][T16630] netlink: 152 bytes leftover after parsing attributes in process `syz.9.4166'.
[  457.587223][T16631] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4.
[  457.721229][T16634] netlink: 'syz.5.4168': attribute type 13 has an invalid length.
[  458.335533][T16655] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  458.389267][T16655] batman_adv: batadv0: Removing interface: batadv_slave_0
[  458.473751][T16655] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  458.667368][T16662] loop8: detected capacity change from 0 to 512
[  458.839679][T16662] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  458.937185][T16662] ext4 filesystem being mounted at /484/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  459.218013][T16611] loop3: detected capacity change from 0 to 32768
[  459.235747][ T8679] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.441363][T16686] loop7: detected capacity change from 256 to 0
[  459.478009][T16686] 
[  459.480416][T16686] ======================================================
[  459.487472][T16686] WARNING: possible circular locking dependency detected
[  459.494492][T16686] 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 Not tainted
[  459.501608][T16686] ------------------------------------------------------
[  459.508626][T16686] syz.1.4188/16686 is trying to acquire lock:
[  459.514698][T16686] ffffffff8f87ab28 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_net_broadcast+0x27e/0x560
[  459.525371][T16686] 
[  459.525371][T16686] but task is already holding lock:
[  459.532743][T16686] ffff888142f16278 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: loop_set_status+0x227/0xaf0
[  459.543081][T16686] 
[  459.543081][T16686] which lock already depends on the new lock.
[  459.543081][T16686] 
[  459.553488][T16686] 
[  459.553488][T16686] the existing dependency chain (in reverse order) is:
[  459.562508][T16686] 
[  459.562508][T16686] -> #2 (&q->q_usage_counter(io)#24){++++}-{0:0}:
[  459.571156][T16686]        lock_acquire+0x120/0x360
[  459.576209][T16686]        blk_alloc_queue+0x538/0x620
[  459.581517][T16686]        __blk_mq_alloc_disk+0x162/0x340
[  459.587181][T16686]        loop_add+0x41b/0xad0
[  459.591878][T16686]        loop_init+0x173/0x230
[  459.596661][T16686]        do_one_initcall+0x236/0x820
[  459.601964][T16686]        do_initcall_level+0x137/0x1f0
[  459.607445][T16686]        do_initcalls+0x69/0xd0
[  459.612357][T16686]        kernel_init_freeable+0x3d9/0x570
[  459.618096][T16686]        kernel_init+0x1d/0x1d0
[  459.622966][T16686]        ret_from_fork+0x3fc/0x770
[  459.628113][T16686]        ret_from_fork_asm+0x1a/0x30
[  459.633424][T16686] 
[  459.633424][T16686] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  459.640667][T16686]        lock_acquire+0x120/0x360
[  459.645708][T16686]        fs_reclaim_acquire+0x72/0x100
[  459.651218][T16686]        kmem_cache_alloc_node_noprof+0x47/0x3c0
[  459.657560][T16686]        __alloc_skb+0x112/0x2d0
[  459.662608][T16686]        alloc_uevent_skb+0x7d/0x230
[  459.667931][T16686]        kobject_uevent_net_broadcast+0x2fa/0x560
[  459.674374][T16686]        kobject_uevent_env+0x55b/0x8c0
[  459.679925][T16686]        kobject_synth_uevent+0x527/0xb00
[  459.685658][T16686]        bus_uevent_store+0x115/0x170
[  459.691058][T16686]        kernfs_fop_write_iter+0x378/0x4f0
[  459.696890][T16686]        vfs_write+0x54b/0xa90
[  459.701664][T16686]        ksys_write+0x145/0x250
[  459.706514][T16686]        do_syscall_64+0xfa/0x3b0
[  459.711553][T16686]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.717965][T16686] 
[  459.717965][T16686] -> #0 (uevent_sock_mutex){+.+.}-{4:4}:
[  459.725805][T16686]        validate_chain+0xb9b/0x2140
[  459.731121][T16686]        __lock_acquire+0xab9/0xd20
[  459.736337][T16686]        lock_acquire+0x120/0x360
[  459.741373][T16686]        __mutex_lock+0x182/0xe80
[  459.746398][T16686]        kobject_uevent_net_broadcast+0x27e/0x560
[  459.752816][T16686]        kobject_uevent_env+0x55b/0x8c0
[  459.758383][T16686]        loop_set_status+0x4d3/0xaf0
[  459.763682][T16686]        lo_ioctl+0xa5e/0x2410
[  459.768452][T16686]        blkdev_ioctl+0x5a8/0x6d0
[  459.773483][T16686]        __se_sys_ioctl+0xfc/0x170
[  459.778601][T16686]        do_syscall_64+0xfa/0x3b0
[  459.783629][T16686]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.790201][T16686] 
[  459.790201][T16686] other info that might help us debug this:
[  459.790201][T16686] 
[  459.800436][T16686] Chain exists of:
[  459.800436][T16686]   uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#24
[  459.800436][T16686] 
[  459.814296][T16686]  Possible unsafe locking scenario:
[  459.814296][T16686] 
[  459.821740][T16686]        CPU0                    CPU1
[  459.827105][T16686]        ----                    ----
[  459.832464][T16686]   lock(&q->q_usage_counter(io)#24);
[  459.837944][T16686]                                lock(fs_reclaim);
[  459.844458][T16686]                                lock(&q->q_usage_counter(io)#24);
[  459.852420][T16686]   lock(uevent_sock_mutex);
[  459.857029][T16686] 
[  459.857029][T16686]  *** DEADLOCK ***
[  459.857029][T16686] 
[  459.865169][T16686] 3 locks held by syz.1.4188/16686:
[  459.870356][T16686]  #0: ffff888024a42400 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2c/0xaf0
[  459.879793][T16686]  #1: ffff888142f16278 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: loop_set_status+0x227/0xaf0
[  459.890459][T16686]  #2: ffff888142f162b0 (&q->q_usage_counter(queue)#21){+.+.}-{0:0}, at: loop_set_status+0x227/0xaf0
[  459.901395][T16686] 
[  459.901395][T16686] stack backtrace:
[  459.907280][T16686] CPU: 0 UID: 0 PID: 16686 Comm: syz.1.4188 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(full) 
[  459.907307][T16686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  459.907321][T16686] Call Trace:
[  459.907331][T16686]  <TASK>
[  459.907340][T16686]  dump_stack_lvl+0x189/0x250
[  459.907382][T16686]  ? __pfx_dump_stack_lvl+0x10/0x10
[  459.907417][T16686]  ? __pfx__printk+0x10/0x10
[  459.907441][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.907468][T16686]  ? print_lock_name+0xde/0x100
[  459.907491][T16686]  print_circular_bug+0x2ee/0x310
[  459.907516][T16686]  check_noncircular+0x134/0x160
[  459.907540][T16686]  validate_chain+0xb9b/0x2140
[  459.907570][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.907597][T16686]  __lock_acquire+0xab9/0xd20
[  459.907633][T16686]  ? kobject_uevent_net_broadcast+0x27e/0x560
[  459.907660][T16686]  lock_acquire+0x120/0x360
[  459.907690][T16686]  ? kobject_uevent_net_broadcast+0x27e/0x560
[  459.907723][T16686]  __mutex_lock+0x182/0xe80
[  459.907748][T16686]  ? kobject_uevent_net_broadcast+0x27e/0x560
[  459.907775][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.907800][T16686]  ? vsnprintf+0xe11/0xf00
[  459.907829][T16686]  ? kobject_uevent_net_broadcast+0x27e/0x560
[  459.907856][T16686]  ? __pfx___mutex_lock+0x10/0x10
[  459.907875][T16686]  ? add_uevent_var+0x278/0x450
[  459.907903][T16686]  ? kobject_uevent_env+0x50a/0x8c0
[  459.907927][T16686]  ? __pfx_add_uevent_var+0x10/0x10
[  459.907954][T16686]  kobject_uevent_net_broadcast+0x27e/0x560
[  459.907983][T16686]  kobject_uevent_env+0x55b/0x8c0
[  459.908013][T16686]  loop_set_status+0x4d3/0xaf0
[  459.908052][T16686]  lo_ioctl+0xa5e/0x2410
[  459.908082][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908106][T16686]  ? stack_trace_save+0x9c/0xe0
[  459.908132][T16686]  ? __pfx_lo_ioctl+0x10/0x10
[  459.908157][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908184][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908209][T16686]  ? __lock_acquire+0xab9/0xd20
[  459.908243][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908270][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908297][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908325][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908349][T16686]  ? __lock_acquire+0xab9/0xd20
[  459.908382][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908406][T16686]  ? __lock_acquire+0xab9/0xd20
[  459.908439][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908466][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908491][T16686]  ? __lock_acquire+0xab9/0xd20
[  459.908524][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908551][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908576][T16686]  ? __lock_acquire+0xab9/0xd20
[  459.908613][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908639][T16686]  ? is_bpf_text_address+0x26/0x2b0
[  459.908675][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908700][T16686]  ? is_bpf_text_address+0x292/0x2b0
[  459.908733][T16686]  ? is_bpf_text_address+0x26/0x2b0
[  459.908771][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908796][T16686]  ? kernel_text_address+0xa5/0xe0
[  459.908824][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908849][T16686]  ? __kernel_text_address+0xd/0x40
[  459.908876][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908900][T16686]  ? unwind_get_return_address+0x4d/0x90
[  459.908935][T16686]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  459.908958][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.908982][T16686]  ? arch_stack_walk+0xfc/0x150
[  459.909013][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.909037][T16686]  ? stack_trace_save+0x9c/0xe0
[  459.909067][T16686]  ? kasan_save_track+0x4f/0x80
[  459.909100][T16686]  ? kasan_save_track+0x3e/0x80
[  459.909131][T16686]  ? kasan_save_free_info+0x46/0x50
[  459.909158][T16686]  ? __kasan_slab_free+0x62/0x70
[  459.909175][T16686]  ? kfree+0x18e/0x440
[  459.909207][T16686]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  459.909232][T16686]  ? security_file_ioctl+0xcb/0x2d0
[  459.909255][T16686]  ? __se_sys_ioctl+0x47/0x170
[  459.909285][T16686]  ? do_syscall_64+0xfa/0x3b0
[  459.909318][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.909342][T16686]  ? do_vfs_ioctl+0xf37/0x1990
[  459.909376][T16686]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  459.909411][T16686]  ? kasan_quarantine_put+0xdd/0x220
[  459.909443][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.909471][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.909496][T16686]  ? blkdev_common_ioctl+0xfc3/0x2450
[  459.909529][T16686]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  459.909555][T16686]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  459.909580][T16686]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  459.909612][T16686]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[  459.909636][T16686]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  459.909662][T16686]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  459.909696][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.909720][T16686]  ? __lock_acquire+0xab9/0xd20
[  459.909764][T16686]  ? __pfx_lo_ioctl+0x10/0x10
[  459.909792][T16686]  blkdev_ioctl+0x5a8/0x6d0
[  459.909825][T16686]  ? __pfx_blkdev_ioctl+0x10/0x10
[  459.909856][T16686]  ? __fget_files+0x2a/0x420
[  459.909881][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.909905][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.909931][T16686]  ? __pfx_blkdev_ioctl+0x10/0x10
[  459.909963][T16686]  __se_sys_ioctl+0xfc/0x170
[  459.909997][T16686]  do_syscall_64+0xfa/0x3b0
[  459.910016][T16686]  ? lockdep_hardirqs_on+0x9c/0x150
[  459.910050][T16686]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.910070][T16686]  ? srso_alias_return_thunk+0x5/0xfbef5
[  459.910095][T16686]  ? exc_page_fault+0x9f/0xf0
[  459.910128][T16686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.910149][T16686] RIP: 0033:0x7fb302f8e929
[  459.910168][T16686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.910187][T16686] RSP: 002b:00007fb303d17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  459.910209][T16686] RAX: ffffffffffffffda RBX: 00007fb3031b5fa0 RCX: 00007fb302f8e929
[  459.910225][T16686] RDX: 00002000000001c0 RSI: 0000000000004c02 RDI: 0000000000000003
[  459.910239][T16686] RBP: 00007fb303010b39 R08: 0000000000000000 R09: 0000000000000000
[  459.910253][T16686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  459.910265][T16686] R13: 0000000000000000 R14: 00007fb3031b5fa0 R15: 00007fff1760b298
[  459.910288][T16686]  </TASK>
[  464.154126][ T5197] udevd[5197]: worker [5996] /devices/platform/dummy_hcd.9/usb10/10-1 is taking a long time