last executing test programs:

12m3.600350719s ago: executing program 2 (id=8286):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000005c0)={0x3c, 0x0, 0x8, 0x201, 0x0, 0x0, {0x3, 0x0, 0x4}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xf6}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x3ff}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24000008}, 0x88)

12m3.351059263s ago: executing program 2 (id=8288):
r0 = syz_open_dev$radio(&(0x7f0000001640), 0x0, 0x2)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000340)="c0c9", 0x2}], 0x1)

12m2.950270354s ago: executing program 2 (id=8295):
syz_mount_image$xfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x4000000, &(0x7f0000000380), 0x1, 0x975c, &(0x7f000001c600)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000280)={0x3, 0x1, 0x800077, 0x8, 0x6, 0x6, 0x0, 0xf67, 0xfffffffd})

12m1.237134324s ago: executing program 2 (id=8317):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000dc0)={[{@umask}, {@nls={'nls', 0x3d, 'maccenteuro'}}, {@part={'part', 0x3d, 0x4}}, {@nobarrier}, {@force}, {@gid}, {@gid}, {}]}, 0x44, 0x70f, &(0x7f00000005c0)="$eJzs3U1sHGcZAOB31uuNN5XcbZu0BSHFakQEDSS2l5IgIRGqCvlQQSQuvS6J01heu8F2kRMh4gCFI5xQDj0UIXPoCfWAVMQBUc5ISFxR7pF6jziwaP7Wu/5Zr+u/JH0eaXa+mfl+3nk983k9m2gD+NyaeStG1yKJmfNvrqbbD9ab7QfrzYWyHBEnIqISUc1XkSxGJJ9EXIl8iS+kO4vukp3Gee3hx++fu/9hM9+qFktWvzKo3YbOgBHWiiUmImKkWMfYnjJR3am/a/F63l+Pu3vqOunGnSbsbJk4OG6dLdb20nyI+xZ43N2NGBndZn8j4mTxqzR9HxDF7FA54vAO3J5mOQAAAHg8jexW4dlH8ShWY/xowgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICnQ5J/Z2BSLJWyPBFJ+f3/tWJfqlY75ngH+9oux9+7cUSBAAAAAAAAAMCh+Kj44P7Mo3gUqzFe7u8k2Wf+r2Qbp7LXZ+LdWI7ZWIoLsRqtWImVWIqpiNHxng5rq62VlaWprS1/F2nLTqdzt2g5HRGNLS2ndwi0csAnDgAAAAAAAABPp5/HTIwfdxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANAriRjJV9lyqiw3olKNiLGIqKX11iL+WpafZH877gAAAADg8NWL9Xjyv7zQSbK/+V/M/u4fi3djMVZiLlaiHbNxPXsWkP/VX/nXWrP9YL25kC5bO/7up3uKI+sxIkbi3g4jT2Y1TndbzMT34odxPibiaizFXPwkWrESszER9fQkohVJNOr504tGGef28V7p27raLXXysz2zKdaXs0jqcSPmstguxLVa5I9NsnNIx3y5Z7Q/1yI2jXgvzU7yncKQObre8/P6bfFcpoz02SH7OByN7MxHuxmZTHNfZOO5wbkfeJ38eNeRpqLSfQZ1amOUdHPzSGXOf7SXnJ/MV2Ppy6/6c37QBjxKG91m3+ZMTEeluPoiXuzP+a0v33++v/FX//33qzcri/M3byyfP8RT2o+J3Sp0k7I5E82eTLw0+OorMtFOM7E2fCa2/DzGhm15uGpFNrKpaMjZ8o2s1IpXei7Bd+J6zMalmIypuByT8a2Yjmb3CkuX0315rTYX+nOS3WuVrfNbfUDwZ7/SU+nXu1Q+WmlenuvJa+9M18iOFXuu/CYme66+5wdfffc+feMHeWnIGSkd/4tFOR3jF93fOI+DvkwUc3MZ3QuDM/H7Tvq63F6cX7rZujXkeOeKdXrbvtc/N/9h+Kg3/3bfjzKC9HpJZ9xqtpXlpF5eL+mxF7p1+/NVKz5xydtVthw73T3WiPGYi+/veKfWivdwW3vKj73Ue+w/GzNnrXh/Ux7re5cT70Q7exeyya5TNQBH7OSrJ2v1h/V/1j+o/7J+s/7m2OsnLp/4Ui1G/1H9y8ifKn+sfDt5NT6In8X4cUcKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABPg+Xbd+Zb7fbsUrcQY5v37LdQ23GswYWo7Fpn/ZnhOoxGxOCxkqJQO9hzfxIL9di0p/x+o/32/FFEDKhT23fwyZ6vsT0X0jwcSIedTp7UbE9nZA/Nq2Wr7etUY3ks5ltJdZs77sTGXRCN+Vb7v52+5vXouWWAp9zFlYVbF5dv3/n63ELr7dm3ZxenL1+6fKn5zalvXLwx156dzF+PO0rgMCzfvjOyze7tvnkYAAAAAAAAAAAAeEwU//p/5TP/Z4bqLnVqS8vbj3zmqE8VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeELNvBWja5HE1OSFyXT7wXqznS5luahW2VglP41IPom4EvkSjZ7ukp3Gee3hx++fu/9hM9+qFktWvzKo3XDWiiUmImKkWO/uxDbdbO3vWk9/a58pvKR7hmnCzpaJg+P2/wAAAP//hd/4FA==")
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x0, 0x0)

12m0.042917747s ago: executing program 2 (id=8331):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x80, 0x10, 0x401, 0x4000, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x49108}, [@IFLA_LINKINFO={0x4c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x3c, 0x2, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xc, 0x11}}, @IFLA_VLAN_INGRESS_QOS={0x28, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0xe265}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x48, 0xef8}}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}]}, 0x80}}, 0x0)

11m59.183514132s ago: executing program 2 (id=8338):
r0 = syz_open_dev$video(&(0x7f0000000440), 0x3ff, 0x0)
ioctl$VIDIOC_STREAMOFF(r0, 0x40045613, &(0x7f0000000200)=0x1)

11m58.645340551s ago: executing program 32 (id=8338):
r0 = syz_open_dev$video(&(0x7f0000000440), 0x3ff, 0x0)
ioctl$VIDIOC_STREAMOFF(r0, 0x40045613, &(0x7f0000000200)=0x1)

5m52.802638862s ago: executing program 1 (id=13201):
r0 = syz_open_dev$vbi(&(0x7f0000000100), 0x1, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205648, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f905, 0xffffbfff, '\x00', @string=0x0}})

5m52.621475232s ago: executing program 1 (id=13204):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000140)={0x0, 0x1, 0x2, 0x401, @vifc_lcl_ifindex, @empty}, 0x10)

5m52.369070784s ago: executing program 1 (id=13208):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000780)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x800006c0, 0x0, 0x0, 0x800006f0, 0x80000720], 0x0, 0x0, &(0x7f00000006c0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0x108)

5m52.225226032s ago: executing program 1 (id=13210):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000004400)={[{@nodecompose}, {@uid}, {@force}, {@gid}, {@nls={'nls', 0x3d, 'cp874'}}, {@part={'part', 0x3d, 0x200006}}]}, 0x1, 0x6fc, &(0x7f0000000b40)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

5m51.838526512s ago: executing program 1 (id=13217):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x3, 0x5, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x20}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

5m51.133097658s ago: executing program 1 (id=13226):
r0 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
ioctl$VIDIOC_S_CROP(r0, 0x4014563c, &(0x7f00000001c0)={0x2, {0x10e4a1ee, 0x2, 0x6d5, 0x2}})

5m50.588500045s ago: executing program 33 (id=13226):
r0 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
ioctl$VIDIOC_S_CROP(r0, 0x4014563c, &(0x7f00000001c0)={0x2, {0x10e4a1ee, 0x2, 0x6d5, 0x2}})

3m26.415118064s ago: executing program 4 (id=14948):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
accept(r0, 0x0, 0x0)

3m26.078735161s ago: executing program 4 (id=14951):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, 0x0)

3m25.90772599s ago: executing program 4 (id=14953):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
gettimeofday(0x0, 0x0)

3m25.573821237s ago: executing program 4 (id=14955):
syz_mount_image$iso9660(&(0x7f0000000380), &(0x7f00000000c0)='./file0\x00', 0x204818, &(0x7f00000003c0)={[{@map_off}, {@check_strict}, {@overriderock}, {@map_off}, {@unhide}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@map_off}, {@mode={'mode', 0x3d, 0x483}}]}, 0x1, 0x544, &(0x7f0000001000)="$eJzs3V9v01YfwPGfS/sQ5ZGqRw8TQlWBQ9mkIpXgJBAUceU5J+mBxI5sB7VXqKIpqkhhokxae8O4YZu0vQh2uRexd4T2EjbZTvqHJjHQv6u+nwjOiX3s8zup5Z/cxscCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADEcmu2XbSkabzOkhrNrQV+a/dtf+sDC+TWvmJMvyJW/E9yObmSLrry1e7qy/F/czKbvpuVXFzkZPu/l//34NLkxGD7MQF/lt+/cE+bW9vPV3q97qujCuQMunpx9LqG9kzom5bT0MqEvqpWKvadxXqo6qapw+Uw0i3lBtqJ/EDNu7dUsVotK11Y9jteo+Y09WDh/dsl266oh4W2doLQ9+48LITuomk2jddI2sSr4zb34wPxkYlUpJ2WUmvrvW45awBxo+KnNCplNSrZpVKxWCoVK/eq9+7b9uSBBfZH5ECLozto8e90hGdv4HAm+vlfmmLEk44siRr6cqUmgfjSGrG+b5D/v7mjx/a7N/8PsvyV3dUzkuT/a+m7a6Py/4hYTu61KVuyLc9lRXrSk668OvWITvbVEC2eGAnFFyMtcZIlqr9ESVUqUhFbnsii1CUUJXUx0hQtoSxLKJHo5IhyJRAtjkTiSyBK5sWVW6KkKFWpSlmUaCnIsvjSEU8aUhMn2cuarCefe1mUNSrGnUbFkcPID467rpTGjJb8j8M70vM3cBh/D/I/AAAAAAA4t6zkt+/x9f+UXE1qddPU9mmHBQAAAAAAjlDyl//ZuJiKa1fF4vofAAAAAIDzxkrusbNEJC/X09qaWMntUvwSAAAAAACAcyL5+/+1uEjmQLku1s50KVz/AwAAAABwTvycOcd+2L5o/fmXBMGU9ba99LW1kczN62xcSLe78PEeo/qMNd3fSVJU0mJy0tWzVi5ttDMJ5od+sZYVh7UbgLMTwI+fE8ClSflVbqRtbqym5epgTdpLvm6auuD6zQdFcZzpiUgvRd+/WP9BkuH/4rWmrZys97qFpy97q0ksb+O9vN3oT6B4YB7FMbG8TuZbSO65GDriqeRGjH6/eUvW1ntde+/4J9LNJ/b3+GZ6TJ/vZC5tNdef8Ta/f/y5uM9iYdTo+1EUDznyd3IzbXNz/mZaDImilBVFaW8Uwz+Lw0dRzoqifMgoAOC0rGVkIUsO5N0vOMt9WXaXz8zu72Q+bTM/k5xYJ2eGnNHtrDO6fcjs9seBZyCNyrFxv799lFXfxxu8H9lv2CxZ8Ud44fXGd3J5c2v79vrGyrPus+6LUqlcse/a9r2STCXD6BfkHgDAEHufsWMNzf+ZT+Gx7mZcVf9/5ysFBXkqL6Unq7KQ3G2QfONg6F7ze76GsJBx1ZpP0mT6hJeFMVd1/0nuchjstzS27f4YyifwkwAA4OTMZeThT8n/CxnX3ftz+fir4/yep7UBAIDjoYMPVj76yQoC035SrFaLTrSoVeC7j1Rgag2tjBfpwF10vIZW7cCPfNdvxpXHpqZDFXbabT+IVN0PVNsPzVIyfaDqP/o91C3Hi4wbtpvaCbVyfS9y3EjVTOiqdufbpgkXdZBsHLa1a+rGdSLjeyr0O4GrC0qFWu9paGrai0zdxFVPtQPTcoKceuw3Oy2tajp0A9OO/HSHg76MV/eDVrLbwml/2AAAnBGbW9vPV3q97qtjrAztOHfiQwUAAH0ZWRoAAAAAAAAAAAAAAAAAAAAAAJwBJ3H/H5VzXhlMBX1W4qFyBJXMU8ebYz85AThW/wQAAP//rVVPjw==")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)

3m25.073306233s ago: executing program 4 (id=14957):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b26, &(0x7f0000001200)={'wlan1\x00', @random="f7280200e700"})

3m24.361046239s ago: executing program 4 (id=14964):
creat(&(0x7f00000008c0)='./file0\x00', 0x80)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file3\x00', &(0x7f0000000080)={0x8080, 0x0, 0x30}, 0x18)

3m23.807026557s ago: executing program 34 (id=14964):
creat(&(0x7f00000008c0)='./file0\x00', 0x80)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file3\x00', &(0x7f0000000080)={0x8080, 0x0, 0x30}, 0x18)

2m5.229113122s ago: executing program 6 (id=15840):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x3, 0x0, 0x7fff0000}]})
get_robust_list(0x0, &(0x7f0000000400)=0x0, &(0x7f0000000580))

2m5.023852653s ago: executing program 6 (id=15843):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000000)="7800000018002507b9409b14ffff00000204be04020506050e0204094300080004000000040011000d0068d0bf46d32345653600648d0a0012000200000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a3200040016000500120000000000e000e218d1ddf66ed538f25232500000", 0x78, 0x0, 0x0, 0x0)

2m4.780320485s ago: executing program 6 (id=15847):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockname(r0, 0x0, &(0x7f0000000000))

2m4.481441871s ago: executing program 6 (id=15850):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x800c11, &(0x7f0000000080)={[{@barrier}, {@uid}, {@nodecompose}, {@type={'type', 0x3d, "25c3f159"}}, {@nls={'nls', 0x3d, 'iso8859-5'}}, {@nodecompose}]}, 0x1, 0x703, &(0x7f0000001240)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

2m4.075639291s ago: executing program 6 (id=15854):
r0 = syz_open_dev$radio(&(0x7f0000000080), 0x2, 0x2)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f0000000000)={0x0, 0x1, 0xc000, 0x0, 0x2, 0xffffffff, 0x7})

2m3.479979821s ago: executing program 6 (id=15861):
clock_gettime(0x7, &(0x7f0000000000)={<r0=>0x0, <r1=>0x0})
clock_settime(0x0, &(0x7f0000000040)={r0, r1+10000000})

2m2.986652277s ago: executing program 35 (id=15861):
clock_gettime(0x7, &(0x7f0000000000)={<r0=>0x0, <r1=>0x0})
clock_settime(0x0, &(0x7f0000000040)={r0, r1+10000000})

2.114158143s ago: executing program 7 (id=17329):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80782, 0x0)
write(r0, 0x0, 0x0)

1.839237207s ago: executing program 7 (id=17334):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)={0x28, 0x10, 0x1, 0x0, 0x0, "", [@nested={0xffffffffffffff85, 0x0, 0x0, 0x0, [@typed={0x3e, 0x0, 0x0, 0x0, @u64}, @typed={0x8, 0x1c, 0x0, 0x0, @u32=0xc9}]}]}, 0x28}], 0x1, 0x0, 0x0, 0xb305e06d8ab48277}, 0x0)

1.696011374s ago: executing program 5 (id=17338):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7ffffffc}]})
getrusage(0x0, &(0x7f0000000000))

1.532449702s ago: executing program 8 (id=17339):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x1028, 0x200000b}}, @sndrcv={0x30, 0x84, 0x1, {0x8, 0xd, 0x8001, 0x4, 0x9, 0x9, 0x4, 0x10001}}], 0x50, 0x2408a044}, 0x48095)

1.488226895s ago: executing program 5 (id=17340):
set_mempolicy(0x4003, &(0x7f0000000200)=0x7, 0x3)
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x20, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @broadcast}, {0x0, 0x883e, 0xc, 0x0, @gue={{0x1, 0x1, 0x3, 0x7, 0x100, @void}}}}}}}, 0x0)

1.470821275s ago: executing program 0 (id=17341):
r0 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, [], [], [0x8, 0x1]})

1.470596625s ago: executing program 3 (id=17342):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_tables_names\x00')
pread64(r0, &(0x7f000001a240)=""/102398, 0x18ffe, 0x7f)

1.390760749s ago: executing program 8 (id=17343):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_T1(r0, 0x103, 0x1, 0x0, &(0x7f0000000080))

1.310187684s ago: executing program 7 (id=17344):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.19507225s ago: executing program 3 (id=17345):
r0 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10d, 0x43, &(0x7f0000000100), 0x4)

1.176510431s ago: executing program 0 (id=17346):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xc, &(0x7f0000000000)=0x8004, 0x4)

1.109135233s ago: executing program 5 (id=17347):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, 0x0)

1.107561063s ago: executing program 8 (id=17348):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000100)=0x3, 0x4)

1.025473678s ago: executing program 7 (id=17349):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0x18000000000002a0, 0x36, 0x0, &(0x7f0000000080)="d2ff03076003008cb89e08f086ddbffafefb8e1ca8df1cf88e793fe15e8f0092ffab64641c6bca470eed08348ff022755bf0339f9c54", 0x0, 0xd5b3, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

924.242743ms ago: executing program 0 (id=17350):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000003c0)=@filter={'filter\x00', 0x42, 0x4, 0x2e8, 0xffffffff, 0x98, 0x98, 0x98, 0xffffffff, 0xffffffff, 0x250, 0x250, 0x250, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x3e020000, 0x70, 0x98, 0x0, {0x88000000}}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x4}}}, {{@uncond, 0x0, 0x70, 0xd0, 0x0, {0x122}}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}}}}, {{@ip={@rand_addr=0x64010101, @empty, 0xffffffff, 0xffffffff, 'batadv_slave_1\x00', 'veth1_to_batadv\x00', {0xff}, {}, 0x4, 0x2, 0x47}, 0x0, 0xc0, 0xe8, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x348)

837.092227ms ago: executing program 3 (id=17351):
r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x7fffffff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x3, @sliced})

829.429848ms ago: executing program 8 (id=17352):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000001010300f0ffffff000000000200000918000280140001"], 0x2c}, 0x1, 0x0, 0x0, 0x4008094}, 0x54)

774.723391ms ago: executing program 5 (id=17353):
socket$inet_udp(0x2, 0x2, 0x0)
pselect6(0x95, &(0x7f00000001c0), 0x0, &(0x7f0000000240)={0x9}, &(0x7f0000000280)={0x0, 0x989680}, 0x0)

569.114491ms ago: executing program 3 (id=17354):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, 0x0, &(0x7f0000000340))

568.847971ms ago: executing program 0 (id=17355):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="38000000200001002dbd7000fcdbdf250a002000090000050100020014000200fc020000010100000000000000000000080017"], 0x38}}, 0x480d0)

567.073771ms ago: executing program 8 (id=17356):
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00')
readlinkat(r0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010)

543.990523ms ago: executing program 7 (id=17357):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@ipv4_newroute={0x24, 0x1a, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3100}, [@RTA_UID={0x8}]}, 0x24}}, 0x0)

543.817533ms ago: executing program 5 (id=17358):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x103701)
ioctl$USBDEVFS_CLAIM_PORT(r0, 0x80045518, &(0x7f0000000040)=0x1)

345.106543ms ago: executing program 8 (id=17359):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0)={[{@errors_remount}, {@barrier}, {@block_validity}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}]}, 0x2, 0x571, &(0x7f0000000d00)="$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")
open(&(0x7f0000000180)='./file1\x00', 0x64042, 0xe4)

321.121654ms ago: executing program 3 (id=17360):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000800)={&(0x7f0000000700)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0xa}]}}, &(0x7f0000000f40)=""/4089, 0x26, 0xff9, 0x1}, 0x28)

296.530645ms ago: executing program 7 (id=17361):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fe07124081173809499b0102030109022400010000000009040000028b8647000905e8ff000900000009050a"], 0x0)
syz_usb_ep_read(r0, 0xa, 0x0, 0x0)

274.800627ms ago: executing program 0 (id=17362):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x540a, 0x2)

208.09295ms ago: executing program 5 (id=17363):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SETINTERFACE(r0, 0x80085504, &(0x7f00000000c0)={0xfffffffd, 0x7fffffff})

76.409356ms ago: executing program 3 (id=17364):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'dummy0\x00', &(0x7f0000000080)=@ethtool_perm_addr={0x4b, 0x25, "5c83276f6ca662254709b89e1e0000010002000000335b021f55001d000000000000000000"}})

0s ago: executing program 0 (id=17365):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x6, 0x2c0, &(0x7f0000000900)="$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")
syz_usb_connect(0x5, 0x35, &(0x7f0000000b00)=ANY=[@ANYBLOB="120100003be004209904a2a9e8c4011903010902230001046b40090904e44401ffe7bf0408240201bb03b610090507"], 0x0)

kernel console output (not intermixed with test programs):

roduct=0001, bcdDevice=4e.53
[ 1678.825975][T10002] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1678.839310][ T7928] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1678.854759][T10002] usb 7-1: config 0 descriptor??
[ 1678.943998][ T7928] IPv6: ADDRCONF(NETDEV_CHANGE): netdevsim0: link becomes ready
[ 1679.110632][T10002] usb 7-1: USB disconnect, device number 16
[ 1679.394277][ T4819] udevd[4819]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1679.435595][ T7950] vim2m vim2m.0: Fourcc format (0x47425247) invalid.
[ 1680.227248][ T7979] __nla_validate_parse: 174 callbacks suppressed
[ 1680.227267][ T7979] netlink: 16 bytes leftover after parsing attributes in process `syz.6.15550'.
[ 1680.418916][ T7989] tmpfs: Bad value for 'mpol'
[ 1680.616502][T21346] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 1680.777980][ T8003] xt_recent: Unsupported userspace flags (000000de)
[ 1680.834760][T21346] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1680.875785][T21346] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1680.906104][T21346] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1680.926686][T21346] usb 4-1: config 1 has no interface number 0
[ 1680.948697][T21346] usb 4-1: too many endpoints for config 1 interface 1 altsetting 1: 32, using maximum allowed: 30
[ 1681.006560][T21346] usb 4-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 32
[ 1681.060194][T21346] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1681.114871][T21346] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1681.130325][ T8014] netlink: 'syz.0.15564': attribute type 3 has an invalid length.
[ 1681.132670][T21346] usb 4-1: Product: syz
[ 1681.153265][T21346] usb 4-1: Manufacturer: syz
[ 1681.177560][T21346] usb 4-1: SerialNumber: syz
[ 1681.196385][ T8014] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.15564'.
[ 1681.738180][T21346] usb 4-1: USB disconnect, device number 40
[ 1682.790759][ T8074] loop3: detected capacity change from 0 to 256
[ 1682.849789][ T8074] /dev/loop3: Can't open blockdev
[ 1682.869399][ T8076] loop5: detected capacity change from 0 to 2048
[ 1682.897299][ T8076] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1682.910143][ T4819] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1682.937173][ T8078] loop6: detected capacity change from 0 to 2048
[ 1682.955394][ T8076] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1683.030111][ T8078] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1683.050338][ T8076] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[ 1683.083208][ T8076] UDF-fs: Scanning with blocksize 512 failed
[ 1683.152440][ T8076] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1683.215176][ T8080] loop0: detected capacity change from 0 to 4096
[ 1683.240754][ T8083] loop3: detected capacity change from 0 to 16
[ 1683.248523][ T8083] /dev/loop3: Can't open blockdev
[ 1683.396959][ T8080] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[ 1683.482361][ T8080] ntfs3: loop0: Failed to load $Extend.
[ 1683.556744][ T8086] raw_sendmsg: syz.6.15592 forgot to set AF_INET. Fix it!
[ 1683.745590][ T8055] loop7: detected capacity change from 0 to 32768
[ 1683.941292][ T8055] XFS (loop7): Mounting V5 Filesystem
[ 1684.144161][ T8055] XFS (loop7): Ending clean mount
[ 1684.313446][ T8111] nvme_fabrics: missing parameter 'transport=%s'
[ 1684.320039][ T8111] nvme_fabrics: missing parameter 'nqn=%s'
[ 1684.447512][ T6474] XFS (loop7): Unmounting Filesystem
[ 1684.678802][ T8124] netlink: 'syz.6.15601': attribute type 7 has an invalid length.
[ 1684.744844][ T8130] netlink: 48 bytes leftover after parsing attributes in process `syz.3.15604'.
[ 1685.000298][ T8133] loop0: detected capacity change from 0 to 4096
[ 1685.126405][ T8143] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1685.126888][ T8133] NILFS error (device loop0): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[ 1685.219935][ T8133] NILFS (loop0): mounting fs with errors
[ 1685.434095][ T8133] NILFS error (device loop0): nilfs_check_page: bad entry in directory #2: disallowed inode number - offset=32, inode=9, rec_len=24, name_len=6
[ 1685.698013][ T8163] xt_cgroup: xt_cgroup: no path or classid specified
[ 1686.410053][ T8185] netlink: 'syz.6.15625': attribute type 21 has an invalid length.
[ 1686.443475][ T8185] netlink: 'syz.6.15625': attribute type 1 has an invalid length.
[ 1686.724271][ T8193] comedi comedi2: dt2814: I/O port conflict (0xfffffffffffffff9,2)
[ 1686.821355][ T8200] loop3: detected capacity change from 0 to 256
[ 1686.857179][ T8200] exfat: Deprecated parameter 'utf8'
[ 1686.876877][ T8200] exfat: Deprecated parameter 'namecase'
[ 1686.922340][ T8200] exfat: Deprecated parameter 'namecase'
[ 1686.928348][ T8200] exfat: Deprecated parameter 'utf8'
[ 1687.008939][ T8200] /dev/loop3: Can't open blockdev
[ 1687.391770][ T8215] usb usb1: usbfs: process 8215 (syz.0.15637) did not claim interface 0 before use
[ 1687.463625][ T6865] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[ 1687.693175][ T6865] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1687.731858][ T6865] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[ 1687.779018][ T6865] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1687.812190][ T6865] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[ 1687.874680][ T6865] usb 6-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[ 1687.922613][ T6865] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1687.947563][ T6865] usb 6-1: Product: syz
[ 1687.959227][ T6865] usb 6-1: Manufacturer: syz
[ 1687.986074][ T6865] usb 6-1: SerialNumber: syz
[ 1688.004983][ T6865] usb 6-1: config 0 descriptor??
[ 1688.060714][ T6865] ums-isd200 6-1:0.0: USB Mass Storage device detected
[ 1688.320490][ T8244] loop6: detected capacity change from 0 to 512
[ 1688.368774][ T6865] ums-isd200: probe of 6-1:0.0 failed with error -22
[ 1688.455385][ T8244] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1688.526194][T21345] usb 6-1: USB disconnect, device number 29
[ 1688.805736][ T2195] EXT4-fs (loop6): unmounting filesystem.
[ 1689.545853][ T8285] loop6: detected capacity change from 0 to 16
[ 1689.618617][ T8285] erofs: (device loop6): mounted with root inode @ nid 36.
[ 1689.661319][ T8285] erofs: (device loop6): init_inode_xattrs: xattr_isize 12 of nid 86 is not supported yet
[ 1689.703051][ T8288] loop3: detected capacity change from 0 to 1024
[ 1689.772196][ T4819] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1690.290413][ T8304] loop0: detected capacity change from 0 to 2048
[ 1690.335281][ T8304] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1690.551781][ T6865] usb 6-1: new full-speed USB device number 30 using dummy_hcd
[ 1690.604483][   T26] audit: type=1400 audit(1776501161.374:3583): apparmor="DENIED" operation="change_hat" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=8315 comm="syz.3.15678"
[ 1690.792493][ T6865] usb 6-1: config 8 has an invalid interface number: 223 but max is 0
[ 1690.818154][ T6865] usb 6-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[ 1690.849587][ T6865] usb 6-1: config 8 has no interface number 0
[ 1690.891122][ T8322] loop3: detected capacity change from 0 to 164
[ 1690.898391][ T6865] usb 6-1: config 8 interface 223 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1690.929765][ T6865] usb 6-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d
[ 1690.970665][ T6865] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1690.991592][ T8322] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1691.006450][ T6865] usb 6-1: Product: syz
[ 1691.012635][ T6865] usb 6-1: Manufacturer: syz
[ 1691.028523][ T6865] usb 6-1: SerialNumber: syz
[ 1691.298565][ T6865] usb 6-1: USB disconnect, device number 30
[ 1691.342359][T10002] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[ 1691.353364][ T8308] loop6: detected capacity change from 0 to 32768
[ 1691.387474][ T8308] read_mapping_page failed!
[ 1691.392710][ T8308] ERROR: (device loop6): txCommit: 
[ 1691.392710][ T8308] 
[ 1691.550124][T10002] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1691.573164][T10002] usb 8-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[ 1691.595159][T10002] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1691.636029][T10002] usb 8-1: config 0 descriptor??
[ 1692.138878][T10002] usb 8-1: USB disconnect, device number 3
[ 1692.147264][ T8330] loop3: detected capacity change from 0 to 32768
[ 1692.174903][ T8347] loop6: detected capacity change from 0 to 512
[ 1692.328386][ T8347] EXT4-fs error (device loop6): ext4_xattr_inode_iget:401: inode #12: comm syz.6.15693: missing EA_INODE flag
[ 1692.379274][ T8347] EXT4-fs error (device loop6): ext4_xattr_inode_iget:406: comm syz.6.15693: error while reading EA inode 12 err=-117
[ 1692.498787][ T8347] EXT4-fs (loop6): 1 orphan inode deleted
[ 1692.523551][ T8347] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1692.618415][ T8343] loop0: detected capacity change from 0 to 32768
[ 1692.786914][ T2195] EXT4-fs (loop6): unmounting filesystem.
[ 1692.794347][ T8343] XFS (loop0): Mounting V5 Filesystem
[ 1692.810217][ T8361] loop5: detected capacity change from 0 to 24
[ 1692.878181][ T8361] MTD: Attempt to mount non-MTD device "/dev/loop5"
[ 1692.980084][ T8343] XFS (loop0): Ending clean mount
[ 1693.011584][ T8361] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1693.026023][ T8373] openvswitch: netlink: Tunnel attr 6 has unexpected len 4 expected 0
[ 1693.113964][ T8361] VFS: Lookup of 'file0' in romfs loop5 would have caused loop
[ 1693.374781][ T4278] XFS (loop0): Unmounting Filesystem
[ 1694.814546][ T8420] loop7: detected capacity change from 0 to 2048
[ 1694.867085][ T8420] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1695.054725][ T8429] netlink: 6716 bytes leftover after parsing attributes in process `syz.0.15728'.
[ 1695.517995][ T8408] loop5: detected capacity change from 0 to 32768
[ 1695.640933][ T8448] loop7: detected capacity change from 0 to 1024
[ 1695.682793][ T8448] EXT4-fs: Ignoring removed bh option
[ 1695.707601][ T8408] XFS (loop5): Mounting V5 Filesystem
[ 1695.729131][ T8448] EXT4-fs: inline encryption not supported
[ 1695.813157][ T8408] XFS (loop5): Ending clean mount
[ 1695.915110][ T8448] EXT4-fs error (device loop7): ext4_map_blocks:637: inode #3: block 2: comm syz.7.15736: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1696.001364][ T8466] loop0: detected capacity change from 0 to 2048
[ 1696.007848][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.015290][T23665] XFS (loop5): Unmounting Filesystem
[ 1696.052908][ T8466] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1696.053868][ T8448] Quota error (device loop7): qtree_write_dquot: dquota write failed
[ 1696.152281][ T8448] EXT4-fs error (device loop7): __ext4_get_inode_loc:4520: comm syz.7.15736: Invalid inode table block 1 in block_group 0
[ 1696.204679][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.222806][ T8448] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5952: Corrupt filesystem
[ 1696.279680][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.302121][ T8448] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #3: comm syz.7.15736: mark_inode_dirty error
[ 1696.348157][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.354980][ T8448] Quota error (device loop7): v2_write_file_info: Can't write info structure
[ 1696.434710][ T8448] EXT4-fs error (device loop7): ext4_acquire_dquot:6841: comm syz.7.15736: Failed to acquire dquot type 0
[ 1696.457720][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.485247][ T8448] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5952: Corrupt filesystem
[ 1696.535004][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.553582][ T8448] EXT4-fs error (device loop7): ext4_evict_inode:281: inode #11: comm syz.7.15736: mark_inode_dirty error
[ 1696.624000][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.644797][ T8448] EXT4-fs warning (device loop7): ext4_evict_inode:284: couldn't mark inode dirty (err -117)
[ 1696.677850][ T8448] EXT4-fs (loop7): 1 orphan inode deleted
[ 1696.701262][T18968] EXT4-fs error (device loop7): ext4_map_blocks:637: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1696.726870][ T8448] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1696.762261][T18968] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.768895][T18968] Quota error (device loop7): remove_tree: Can't read quota data block 1
[ 1696.786926][ T8479] usb usb9: usbfs: process 8479 (syz.0.15746) did not claim interface 0 before use
[ 1696.874536][T18968] EXT4-fs error (device loop7): ext4_release_dquot:6877: comm kworker/u4:2: Failed to release dquot type 0
[ 1696.886385][ T8448] EXT4-fs error (device loop7): __ext4_get_inode_loc:4520: comm syz.7.15736: Invalid inode table block 1 in block_group 0
[ 1696.917789][ T8446] loop6: detected capacity change from 0 to 32768
[ 1696.931473][T18968] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.972700][ T8446] ocfs2: Slot 0 on device (7,6) was already allocated to this node!
[ 1696.981263][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1696.997775][ T8448] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5952: Corrupt filesystem
[ 1697.043219][ T8446] JBD2: Ignoring recovery information on journal
[ 1697.064535][ T8448] EXT4-fs (loop7): Remounting filesystem read-only
[ 1697.132000][ T6474] EXT4-fs (loop7): unmounting filesystem.
[ 1697.141764][ T8446] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1697.149426][ T2278] EXT4-fs error (device loop7): ext4_map_blocks:637: inode #3: block 1: comm kworker/u4:9: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1697.209471][ T2278] EXT4-fs (loop7): Remounting filesystem read-only
[ 1697.237267][ T2278] Quota error (device loop7): remove_tree: Can't read quota data block 1
[ 1697.246047][ T2278] EXT4-fs error (device loop7): ext4_release_dquot:6877: comm kworker/u4:9: Failed to release dquot type 0
[ 1697.341642][ T2278] EXT4-fs (loop7): Remounting filesystem read-only
[ 1697.346386][ T2195] ocfs2: Unmounting device (7,6) on (node local)
[ 1697.352172][ T6474] EXT4-fs error (device loop7): __ext4_get_inode_loc:4520: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 1697.439512][ T6474] EXT4-fs (loop7): Remounting filesystem read-only
[ 1697.460998][ T6474] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5952: Corrupt filesystem
[ 1697.464424][ T8492] xt_ecn: cannot match TCP bits for non-tcp packets
[ 1697.494945][ T6474] EXT4-fs (loop7): Remounting filesystem read-only
[ 1697.528241][ T6474] EXT4-fs error (device loop7): ext4_quota_off:7147: inode #3: comm syz-executor: mark_inode_dirty error
[ 1697.790565][ T8504] xt_hashlimit: size too large, truncated to 1048576
[ 1697.823759][ T8504] xt_hashlimit: max too large, truncated to 1048576
[ 1698.161172][ T8517] loop5: detected capacity change from 0 to 256
[ 1698.344687][ T8526] netlink: 'syz.7.15767': attribute type 10 has an invalid length.
[ 1698.430421][ T8526] 8021q: adding VLAN 0 to HW filter on device team0
[ 1698.487949][ T8526] bond0: (slave team0): Enslaving as an active interface with an up link
[ 1699.169911][ T8554] netlink: 'syz.3.15781': attribute type 3 has an invalid length.
[ 1699.186728][ T8554] netlink: 16 bytes leftover after parsing attributes in process `syz.3.15781'.
[ 1699.388366][ T8540] wg1 speed is unknown, defaulting to 1000
[ 1699.494511][ T8564] netlink: 12 bytes leftover after parsing attributes in process `syz.6.15787'.
[ 1699.759581][ T8573] netlink: 88 bytes leftover after parsing attributes in process `syz.3.15790'.
[ 1699.881291][ T8578] loop3: detected capacity change from 0 to 128
[ 1699.889228][ T8578] EXT4-fs: inline encryption not supported
[ 1699.895445][ T8578] /dev/loop3: Can't open blockdev
[ 1700.215627][T10002] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[ 1700.423565][T10002] usb 8-1: config 0 has an invalid interface number: 50 but max is 0
[ 1700.431776][T10002] usb 8-1: config 0 has no interface number 0
[ 1700.460289][T10002] usb 8-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1700.506380][T10002] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[ 1700.551375][T10002] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1700.559634][T10002] usb 8-1: Product: syz
[ 1700.564335][T10002] usb 8-1: Manufacturer: syz
[ 1700.597305][T10002] usb 8-1: SerialNumber: syz
[ 1700.627843][T10002] usb 8-1: config 0 descriptor??
[ 1700.654154][ T8604] xt_CONNSECMARK: invalid mode: 0
[ 1700.674282][T10002] yurex 8-1:0.50: USB YUREX device now attached to Yurex #0
[ 1701.135804][ T8617] loop0: detected capacity change from 0 to 256
[ 1701.147992][ T5837] usb 8-1: USB disconnect, device number 4
[ 1701.159079][ T5837] yurex 8-1:0.50: USB YUREX #0 now disconnected
[ 1701.225221][ T8617] FAT-fs (loop0): Directory bread(block 64) failed
[ 1701.231836][ T8617] FAT-fs (loop0): Directory bread(block 65) failed
[ 1701.318109][ T8614] loop3: detected capacity change from 0 to 4096
[ 1701.342486][ T8617] FAT-fs (loop0): Directory bread(block 66) failed
[ 1701.371821][ T8617] FAT-fs (loop0): Directory bread(block 67) failed
[ 1701.399657][ T8617] FAT-fs (loop0): Directory bread(block 68) failed
[ 1701.426567][ T8617] FAT-fs (loop0): Directory bread(block 69) failed
[ 1701.457120][ T8614] ntfs3: loop3: Failed to load $Extend.
[ 1701.476418][ T8617] FAT-fs (loop0): Directory bread(block 70) failed
[ 1701.491610][ T8617] FAT-fs (loop0): Directory bread(block 71) failed
[ 1701.509851][ T8617] FAT-fs (loop0): Directory bread(block 72) failed
[ 1701.552978][ T8617] FAT-fs (loop0): Directory bread(block 73) failed
[ 1701.564028][ T8614] ntfs3: loop3: ino=5, "/" directory corrupted
[ 1701.766094][ T4280] Trying to write to read-only block-device loop3
[ 1702.266748][ T8643] loop5: detected capacity change from 0 to 1024
[ 1702.369278][ T8649] netlink: 20 bytes leftover after parsing attributes in process `syz.7.15820'.
[ 1702.416927][ T8649] netlink: 20 bytes leftover after parsing attributes in process `syz.7.15820'.
[ 1702.719942][ T8657] netlink: 120 bytes leftover after parsing attributes in process `syz.3.15824'.
[ 1702.764492][ T8661] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15825'.
[ 1703.129957][ T6865] usb 6-1: new full-speed USB device number 31 using dummy_hcd
[ 1703.134130][ T8668] loop6: detected capacity change from 0 to 4096
[ 1703.287132][ T8668] ntfs3: loop6: ntfs_set_state r=3 failed, -22.
[ 1703.333927][ T8684] netlink: 4 bytes leftover after parsing attributes in process `syz.7.15834'.
[ 1703.337513][ T6865] usb 6-1: config 2 has an invalid interface number: 211 but max is 0
[ 1703.379167][ T6865] usb 6-1: config 2 has no interface number 0
[ 1703.405731][ T6865] usb 6-1: config 2 interface 211 altsetting 0 endpoint 0x4 has invalid maxpacket 512, setting to 64
[ 1703.463351][ T6865] usb 6-1: config 2 interface 211 altsetting 0 endpoint 0x82 has an invalid bInterval 97, changing to 4
[ 1703.477091][ T8684] device bridge_slave_1 left promiscuous mode
[ 1703.483858][ T8684] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1703.515563][ T6865] usb 6-1: config 2 interface 211 altsetting 0 endpoint 0x82 has invalid maxpacket 24929, setting to 1023
[ 1703.539340][ T8684] device bridge_slave_0 left promiscuous mode
[ 1703.557475][ T6865] usb 6-1: New USB device found, idVendor=2040, idProduct=8268, bcdDevice=27.95
[ 1703.563646][T18968] ntfs3: loop6: ntfs3_write_inode r=3 failed, -22.
[ 1703.576824][ T8684] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1703.584140][ T2195] ntfs3: loop6: ntfs_set_state r=3 failed, -22.
[ 1703.584963][ T6865] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1703.604215][ T2195] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[ 1703.617524][ T6865] usb 6-1: Product: syz
[ 1703.633477][ T2195] ntfs3: loop6: ntfs_set_state r=3 failed, -22.
[ 1703.636272][ T6865] usb 6-1: Manufacturer: syz
[ 1703.646252][   T46] ntfs3: loop6: ntfs3_write_inode r=3 failed, -22.
[ 1703.661460][ T2195] ntfs3: loop6: ntfs_evict_inode r=3 failed, -22.
[ 1703.680382][ T6865] usb 6-1: SerialNumber: syz
[ 1703.713774][ T8663] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1703.756102][ T6865] em28xx 6-1:2.211: New device syz syz @ 12 Mbps (2040:8268, interface 211, class 211)
[ 1703.787275][ T6865] em28xx 6-1:2.211: Device initialization failed.
[ 1703.818489][ T6865] em28xx 6-1:2.211: Device must be connected to a high-speed USB 2.0 port.
[ 1704.067306][T21346] usb 6-1: USB disconnect, device number 31
[ 1704.282186][ T8710] netlink: 16 bytes leftover after parsing attributes in process `syz.6.15843'.
[ 1704.414099][ T8715] loop3: detected capacity change from 0 to 512
[ 1704.449777][ T8715] /dev/loop3: Can't open blockdev
[ 1704.722984][ T8724] netlink: 60 bytes leftover after parsing attributes in process `syz.3.15849'.
[ 1704.759941][ T8724] netlink: 60 bytes leftover after parsing attributes in process `syz.3.15849'.
[ 1704.887548][ T8727] loop6: detected capacity change from 0 to 1024
[ 1705.116143][ T2195] hfsplus: bad catalog entry type
[ 1705.591906][ T8716] loop0: detected capacity change from 0 to 32768
[ 1705.631292][ T8745] device batadv0 entered promiscuous mode
[ 1705.648036][ T8745] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[ 1705.957857][ T8751] PKCS7: Unknown OID: [4] 0.0
[ 1705.962717][ T8751] PKCS7: Only support pkcs7_signedData type
[ 1705.985398][   T11] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1706.166894][   T11] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1706.451504][   T11] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1706.547642][ T8762] netlink: 12 bytes leftover after parsing attributes in process `syz.7.15868'.
[ 1706.640397][   T26] audit: type=1326 audit(1776501176.179:3584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.0.15869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1706.723183][   T11] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1706.729153][   T26] audit: type=1326 audit(1776501176.179:3585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.0.15869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1706.765624][ T8767] loop3: detected capacity change from 0 to 512
[ 1706.857910][ T8767] EXT4-fs: Ignoring removed nobh option
[ 1706.868069][   T26] audit: type=1326 audit(1776501176.179:3586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.0.15869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1706.940856][ T8767] /dev/loop3: Can't open blockdev
[ 1706.954373][   T26] audit: type=1326 audit(1776501176.197:3587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.0.15869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1707.080743][   T26] audit: type=1326 audit(1776501176.197:3588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8764 comm="syz.0.15869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1707.361359][ T1319] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1707.371118][ T8782] netlink: 256 bytes leftover after parsing attributes in process `syz.7.15876'.
[ 1707.387596][ T1319] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1707.400127][ T1319] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1707.409064][ T1319] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1707.416934][ T1319] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1707.427231][ T1319] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1708.217020][ T8802] loop7: detected capacity change from 0 to 24
[ 1708.288114][ T8802] MTD: Attempt to mount non-MTD device "/dev/loop7"
[ 1708.316253][ T8777] wg1 speed is unknown, defaulting to 1000
[ 1708.330297][ T8802] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1708.384057][ T8769] loop0: detected capacity change from 0 to 32768
[ 1708.439706][ T8802] VFS: Lookup of 'file0' in romfs loop7 would have caused loop
[ 1709.088731][T21345] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1709.297271][T21345] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[ 1709.316235][T21345] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1709.358149][T21345] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1709.384385][T21345] usb 4-1: config 220 has no interface number 2
[ 1709.390784][T21345] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1709.455913][T21345] usb 4-1: config 220 interface 0 has no altsetting 0
[ 1709.490609][T21345] usb 4-1: config 220 interface 76 has no altsetting 0
[ 1709.497558][T21345] usb 4-1: config 220 interface 1 has no altsetting 0
[ 1709.577431][T21345] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1709.597941][T21345] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1709.606008][T21345] usb 4-1: Product: syz
[ 1709.622677][T21345] usb 4-1: Manufacturer: syz
[ 1709.627368][T21345] usb 4-1: SerialNumber: syz
[ 1709.673860][ T1319] Bluetooth: hci0: command 0x0409 tx timeout
[ 1709.699739][ T8777] chnl_net:caif_netlink_parms(): no params data found
[ 1709.830378][ T8843] loop5: detected capacity change from 0 to 64
[ 1709.878273][T21345] usb 4-1: selecting invalid altsetting 0
[ 1709.899836][T21345] usb 4-1: selecting invalid altsetting 0
[ 1709.922049][T21345] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[ 1709.936478][T21345] usb 4-1: No valid video chain found.
[ 1709.980709][T21345] usb 4-1: selecting invalid altsetting 0
[ 1709.997547][T21345] usbtest: probe of 4-1:220.1 failed with error -22
[ 1710.019645][T21345] usb 4-1: USB disconnect, device number 41
[ 1710.636689][ T8777] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1710.670605][ T8777] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1710.691634][ T8868] loop0: detected capacity change from 0 to 64
[ 1710.701238][ T8777] device bridge_slave_0 entered promiscuous mode
[ 1710.722499][ T8871] netlink: 52 bytes leftover after parsing attributes in process `syz.3.15912'.
[ 1711.101952][ T8777] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1711.117523][ T8777] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1711.178688][ T8777] device bridge_slave_1 entered promiscuous mode
[ 1711.304083][ T8887] overlayfs: option "workdir=./file0:/" is useless in a non-upper mount, ignore
[ 1711.366691][ T8887] overlayfs: missing 'lowerdir'
[ 1711.746690][ T8777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1711.811142][ T8777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1711.927293][ T1319] Bluetooth: hci0: command 0x041b tx timeout
[ 1712.054578][ T8910] netlink: 32 bytes leftover after parsing attributes in process `syz.7.15926'.
[ 1712.189695][ T8777] team0: Port device team_slave_0 added
[ 1712.232598][ T8777] team0: Port device team_slave_1 added
[ 1712.393014][   T11] device hsr_slave_0 left promiscuous mode
[ 1712.402691][   T11] device hsr_slave_1 left promiscuous mode
[ 1712.425954][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1712.433453][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1712.453021][ T8923] loop7: detected capacity change from 0 to 128
[ 1712.466205][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1712.510823][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1712.526624][ T8923] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000c00)
[ 1712.540315][   T11] batman_adv: batadv0: Removing interface: vlan1
[ 1712.614770][   T11] device bridge_slave_1 left promiscuous mode
[ 1712.642483][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1712.665525][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1712.690404][ T6864] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1712.796881][ T8899] loop0: detected capacity change from 0 to 32768
[ 1712.804037][   T11] device veth0_macvtap left promiscuous mode
[ 1712.823419][   T11] device veth1_vlan left promiscuous mode
[ 1712.919219][ T6864] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 1712.938290][ T6864] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1712.974756][ T6864] usb 4-1: Product: syz
[ 1712.984125][ T6864] usb 4-1: Manufacturer: syz
[ 1713.002446][ T6864] usb 4-1: SerialNumber: syz
[ 1713.022273][ T6864] r8152-cfgselector 4-1: config 0 descriptor??
[ 1713.503884][ T6864] r8152-cfgselector 4-1: Unknown version 0x0000
[ 1713.517844][    C1] sd 0:0:1:0: [sda] tag#4254 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 1713.528365][    C1] sd 0:0:1:0: [sda] tag#4254 CDB: Read(6) 08 00 00 00 03 44
[ 1713.536775][ T6864] r8152-cfgselector 4-1: USB disconnect, device number 42
[ 1713.747709][ T8940] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1714.127207][ T8947] netlink: 10 bytes leftover after parsing attributes in process `syz.3.15942'.
[ 1714.196703][ T1319] Bluetooth: hci0: command 0x040f tx timeout
[ 1714.267153][ T8949] loop3: detected capacity change from 0 to 128
[ 1714.317245][ T8951] loop0: detected capacity change from 0 to 1024
[ 1714.361834][ T4819] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1714.405353][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1714.505617][ T4319] hfsplus: b-tree write err: -5, ino 25
[ 1714.515985][ T4319] hfsplus: b-tree write err: -5, ino 4
[ 1714.549527][ T4319] hfsplus: b-tree write err: -5, ino 2
[ 1715.229409][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1715.308404][ T6864] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 1715.317031][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1715.527118][ T6864] usb 1-1: Using ep0 maxpacket: 8
[ 1715.536279][ T6864] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1715.586461][ T6864] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1715.608601][ T6864] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1715.619965][ T6864] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1715.641617][ T6864] usb 1-1: New USB device found, idVendor=0763, idProduct=1031, bcdDevice= 0.40
[ 1715.653189][ T6864] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1715.670940][ T6864] usb 1-1: Product: syz
[ 1715.675430][ T6864] usb 1-1: Manufacturer: syz
[ 1715.683687][ T6864] usb 1-1: SerialNumber: syz
[ 1715.954730][ T6864] usb 1-1: 1:1 : no or invalid class specific endpoint descriptor
[ 1715.962822][ T6864] usb 1-1: 1:1: invalid format type 0x1001 is detected, processed as PCM
[ 1715.987801][ T6864] usb 1-1: 1:1 : invalid UAC_FORMAT_TYPE desc
[ 1715.994509][ T6864] usb 1-1: 1:1 : invalid channels 0
[ 1716.000786][ T6864] usb 1-1: 0:2 : does not exist
[ 1716.002198][   T11] bond0 (unregistering): Released all slaves
[ 1716.026469][ T6864] usb 1-1: USB disconnect, device number 2
[ 1716.182396][ T8777] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1716.195090][ T8777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1716.221709][ T8777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1716.283575][T21345] wg1 speed is unknown, defaulting to 1000
[ 1716.283919][ T4819] udevd[4819]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1716.306318][ T8957] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[ 1716.382318][ T8777] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1716.389339][ T8777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1716.445171][T23669] Bluetooth: hci0: command 0x0419 tx timeout
[ 1716.468999][ T8777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1716.614718][ T8966] loop7: detected capacity change from 0 to 4096
[ 1716.694053][ T8966] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1716.733508][ T8777] device hsr_slave_0 entered promiscuous mode
[ 1716.762574][ T8777] device hsr_slave_1 entered promiscuous mode
[ 1716.769513][ T8966] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 4096)
[ 1716.813106][ T8976] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15956'.
[ 1716.831817][ T8777] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1716.846453][ T8777] Cannot create hsr debugfs directory
[ 1716.900234][ T8977] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1716.979981][ T8966] NILFS error (device loop7): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=1920, inode=0, rec_len=0, name_len=0
[ 1717.071167][ T8966] Remounting filesystem read-only
[ 1717.610522][ T8777] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1717.685973][ T4731] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 1717.697959][ T8777] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1717.748527][ T8777] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1717.814128][ T8777] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1717.897284][ T4731] usb 1-1: Using ep0 maxpacket: 16
[ 1717.907412][ T4731] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[ 1717.959104][ T4731] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1718.000251][ T4731] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1718.037946][ T4731] usb 1-1: too many endpoints for config 1 interface 2 altsetting 0: 255, using maximum allowed: 30
[ 1718.089654][ T9009] loop7: detected capacity change from 0 to 1024
[ 1718.101717][ T8777] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1718.109494][ T4731] usb 1-1: config 1 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1718.166126][ T9009] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1718.213385][ T4731] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1718.265548][ T4731] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1718.273625][ T4731] usb 1-1: Product: syz
[ 1718.316866][ T8777] 8021q: adding VLAN 0 to HW filter on device team0
[ 1718.341504][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1718.350158][ T4731] usb 1-1: Manufacturer: syz
[ 1718.367883][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1718.378315][ T4731] usb 1-1: SerialNumber: syz
[ 1718.406469][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1718.447245][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1718.471835][ T4875] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1718.479039][ T4875] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1718.520151][ T6474] EXT4-fs (loop7): unmounting filesystem.
[ 1718.526864][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1718.571433][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1718.610959][ T4875] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1718.618406][ T4875] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1718.658828][ T4731] usb 1-1: MIDIStreaming interface descriptor not found
[ 1718.667113][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1718.703579][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1718.733151][ T4731] usb 1-1: USB disconnect, device number 3
[ 1718.749196][ T9033] netlink: 16 bytes leftover after parsing attributes in process `syz.3.15973'.
[ 1718.766635][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1718.844522][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1718.881382][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1718.927511][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1718.996222][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1719.025365][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1719.066048][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1719.075857][ T4509] udevd[4509]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1719.112854][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1719.144974][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1719.175210][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1719.196686][ T8777] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1719.619413][ T9056] ip6t_srh: unknown srh invflags 4000
[ 1720.412352][T18968] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1720.419897][T18968] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1720.478712][ T9082] netlink: 'syz.7.15988': attribute type 3 has an invalid length.
[ 1720.493001][ T8777] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1720.765579][ T9090] netlink: 'syz.7.15990': attribute type 2 has an invalid length.
[ 1720.780218][ T9049] loop3: detected capacity change from 0 to 32768
[ 1720.799175][ T9049] /dev/loop3: Can't open blockdev
[ 1720.818834][ T9092] netlink: 'syz.0.15991': attribute type 32 has an invalid length.
[ 1721.065177][ T9099] netlink: 20 bytes leftover after parsing attributes in process `syz.7.15993'.
[ 1721.327309][ T9103] loop5: detected capacity change from 0 to 4096
[ 1721.421709][ T9112] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1722.459488][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1722.468437][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1722.577507][ T2278] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1722.599443][ T2278] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1722.643672][ T2278] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1722.667986][ T2278] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1722.690943][ T9151] loop3: detected capacity change from 0 to 64
[ 1722.708113][ T8777] device veth0_vlan entered promiscuous mode
[ 1722.736502][ T9150] netlink: 4 bytes leftover after parsing attributes in process `syz.5.16014'.
[ 1722.752006][ T4819] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1722.787142][ T9150] netlink: 72 bytes leftover after parsing attributes in process `syz.5.16014'.
[ 1722.831549][ T9150] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[ 1722.896052][ T8777] device veth1_vlan entered promiscuous mode
[ 1722.934968][ T9158] netlink: 'syz.7.16017': attribute type 10 has an invalid length.
[ 1722.980583][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1722.986881][ T9158] netlink: 40 bytes leftover after parsing attributes in process `syz.7.16017'.
[ 1723.002858][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1723.033589][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1723.053644][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1723.116555][ T8777] device veth0_macvtap entered promiscuous mode
[ 1723.130736][ T9158] netlink: 'syz.7.16017': attribute type 10 has an invalid length.
[ 1723.144500][ T9161] kAFS: unable to lookup cell '(,c¾Ì'
[ 1723.151713][ T9158] netlink: 40 bytes leftover after parsing attributes in process `syz.7.16017'.
[ 1723.166713][ T8777] device veth1_macvtap entered promiscuous mode
[ 1723.241575][ T8777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1723.289243][ T8777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1723.346689][ T8777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1723.360383][ T8777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1723.413227][ T8777] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1723.436980][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1723.476594][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1723.498662][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1723.549631][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1723.603632][ T8777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1723.630052][ T8777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1723.648741][ T8777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1723.659788][ T8777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1723.679880][ T8777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1723.691881][ T8777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1723.705033][ T8777] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1723.727044][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1723.738476][ T4875] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1723.772626][ T8777] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1723.790039][ T8777] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1723.817728][ T8777] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1723.834242][T21338] usb 6-1: new full-speed USB device number 32 using dummy_hcd
[ 1723.845377][ T8777] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1724.062953][T21338] usb 6-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1724.089140][T21338] usb 6-1: config 2 interface 0 has no altsetting 0
[ 1724.103253][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1724.122251][T21338] usb 6-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1724.158710][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1724.191785][T21338] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1724.200019][T21338] usb 6-1: Product: syz
[ 1724.212611][T21338] usb 6-1: Manufacturer: syz
[ 1724.217396][T21338] usb 6-1: SerialNumber: syz
[ 1724.233733][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1724.303914][T21338] usb 6-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[ 1724.321422][T21338] usb 6-1: selecting invalid altsetting 0
[ 1724.334456][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1724.364660][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1724.373108][T21338] usb 6-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[ 1724.413434][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1724.477339][ T9203] netlink: 'syz.7.16034': attribute type 32 has an invalid length.
[ 1724.563311][ T6864] usb 6-1: USB disconnect, device number 32
[ 1725.123002][ T9220] netlink: 16 bytes leftover after parsing attributes in process `syz.0.16040'.
[ 1725.203997][ T9224] loop3: detected capacity change from 0 to 16
[ 1725.266370][ T9224] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1725.340207][ T9224] erofs: (device loop3): erofs_fill_dentries: bogus dirent @ nid 36
[ 1726.032518][ T9210] loop7: detected capacity change from 0 to 32768
[ 1726.782477][ T9273] loop0: detected capacity change from 0 to 256
[ 1726.900622][ T9273] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1726.951644][ T9273] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1727.019406][ T9273] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1727.525789][ T9252] loop8: detected capacity change from 0 to 32768
[ 1727.691397][ T9252] XFS (loop8): Mounting V5 Filesystem
[ 1727.794634][ T9310] x_tables: unsorted entry at hook 2
[ 1727.861651][   T26] audit: type=1326 audit(1776501195.765:3589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.3.16072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1727.983756][   T26] audit: type=1326 audit(1776501195.802:3590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.3.16072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1727.998350][ T9252] XFS (loop8): Ending clean mount
[ 1728.122283][   T26] audit: type=1326 audit(1776501195.802:3591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.3.16072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1728.199210][ T9323] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1728.225161][   T26] audit: type=1326 audit(1776501195.802:3592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.3.16072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1728.323972][ T8777] XFS (loop8): Unmounting Filesystem
[ 1728.470260][ T9328] netlink: 'syz.5.16080': attribute type 4 has an invalid length.
[ 1729.544515][ T9355] loop0: detected capacity change from 0 to 4096
[ 1729.576256][ T9355] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[ 1729.652581][ T9368] loop3: detected capacity change from 0 to 128
[ 1729.955735][ T9376] netlink: 'syz.7.16100': attribute type 1 has an invalid length.
[ 1731.208024][ T9422] loop8: detected capacity change from 0 to 2048
[ 1731.220085][ T9417] loop5: detected capacity change from 0 to 1764
[ 1731.272566][ T9422] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1731.429841][ T9429] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1732.134718][ T9447] loop0: detected capacity change from 0 to 1024
[ 1732.222302][ T9447] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[ 1732.240632][ T9454] loop5: detected capacity change from 0 to 64
[ 1732.280176][ T9447] EXT4-fs (loop0): revision level too high, forcing read-only mode
[ 1732.327809][ T9447] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1732.349978][ T9447] EXT4-fs error (device loop0): ext4_read_inode_bitmap:168: comm syz.0.16132: Inode bitmap for bg 0 marked uninitialized
[ 1732.432125][   T26] audit: type=1800 audit(1776501199.983:3593): pid=9454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.16134" name="file1" dev="loop5" ino=5 res=0 errno=0
[ 1732.455541][ T9447] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1732.549071][ T9447] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (32298!=35945)
[ 1732.744417][ T4278] EXT4-fs (loop0): unmounting filesystem.
[ 1732.967376][T21346] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[ 1732.994127][ T9473] netlink: 16 bytes leftover after parsing attributes in process `syz.8.16142'.
[ 1733.006830][ T9475] tmpfs: Unknown parameter 'no'
[ 1733.199258][T21346] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1733.215817][ T9451] loop7: detected capacity change from 0 to 32768
[ 1733.218610][T21346] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1733.266183][ T9451] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 9
[ 1733.277276][T21346] usb 6-1: Product: syz
[ 1733.305314][T21346] usb 6-1: Manufacturer: syz
[ 1733.325648][T21346] usb 6-1: SerialNumber: syz
[ 1733.368739][T21346] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1733.449967][T21346] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1733.804905][ T4819] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 9
[ 1734.004252][T21338] usb 6-1: USB disconnect, device number 33
[ 1734.543749][ T9516] netlink: 40 bytes leftover after parsing attributes in process `syz.3.16158'.
[ 1734.559322][ T9516] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1734.779253][ T9487] loop0: detected capacity change from 0 to 32768
[ 1734.798528][T12657] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1734.906949][T21346] usb 6-1: Service connection timeout for: 256
[ 1734.913320][T21346] ath9k_htc 6-1:1.0: ath9k_htc: Unable to initialize HTC services
[ 1734.933514][T21346] ath9k_htc: Failed to initialize the device
[ 1734.950568][T21338] usb 6-1: ath9k_htc: USB layer deinitialized
[ 1734.972903][ T9487] XFS (loop0): Mounting V5 Filesystem
[ 1735.004193][T12657] usb 9-1: Using ep0 maxpacket: 8
[ 1735.015715][T12657] usb 9-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[ 1735.024820][T12657] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1735.034444][T12657] usb 9-1: Product: syz
[ 1735.044608][T12657] usb 9-1: Manufacturer: syz
[ 1735.049982][T12657] usb 9-1: SerialNumber: syz
[ 1735.057206][T12657] usb 9-1: config 0 descriptor??
[ 1735.066424][T12657] radio-usb-si4713 9-1:0.0: Si4713 development board discovered: (10C4:8244)
[ 1735.126816][ T9532] loop5: detected capacity change from 0 to 4096
[ 1735.145485][ T9532] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[ 1735.168329][ T9487] XFS (loop0): Ending clean mount
[ 1735.349012][ T9487] syz.0.16146: attempt to access beyond end of device
[ 1735.349012][ T9487] loop0: rw=4096, sector=18446744073709547519, nr_sectors = 1 limit=32768
[ 1735.399196][ T9532] ntfs3: loop5: failed to convert "c46c" to cp874
[ 1735.448244][ T9541] netlink: 'syz.3.16164': attribute type 2 has an invalid length.
[ 1735.456247][ T9541] netlink: 'syz.3.16164': attribute type 1 has an invalid length.
[ 1735.529713][T12657] radio-usb-si4713: probe of 9-1:0.0 failed with error -71
[ 1735.546669][T12657] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[ 1735.607810][T12657] usb 9-1: USB disconnect, device number 2
[ 1735.684655][ T4278] XFS (loop0): Unmounting Filesystem
[ 1736.118985][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1736.125540][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1736.402580][ T9520] loop7: detected capacity change from 0 to 40427
[ 1736.449109][ T9520] F2FS-fs (loop7): build fault injection attr: rate: 771, type: 0x3ffff
[ 1736.521153][ T9520] F2FS-fs (loop7): invalid crc value
[ 1736.587553][ T9520] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1736.601729][   T26] audit: type=1326 audit(1776501203.832:3594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1736.694918][   T26] audit: type=1326 audit(1776501203.832:3595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1736.871601][   T26] audit: type=1326 audit(1776501203.887:3596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1736.895396][ T9520] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1736.960609][   T26] audit: type=1326 audit(1776501203.887:3597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1737.037012][   T26] audit: type=1326 audit(1776501203.887:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1737.149519][   T26] audit: type=1326 audit(1776501203.887:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1737.236299][   T26] audit: type=1326 audit(1776501203.887:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1737.353048][ T9584] netlink: 88 bytes leftover after parsing attributes in process `syz.5.16176'.
[ 1737.366122][   T26] audit: type=1326 audit(1776501203.906:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1737.475165][   T26] audit: type=1326 audit(1776501203.906:3602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9559 comm="syz.5.16170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1738.189009][ T9615] loop5: detected capacity change from 0 to 64
[ 1738.923761][ T9639] loop3: detected capacity change from 0 to 64
[ 1739.183085][ T9649] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16209'.
[ 1739.233456][ T9652] dlm: no locking on control device
[ 1739.768340][ T9677] netlink: 32 bytes leftover after parsing attributes in process `syz.8.16223'.
[ 1739.819120][ T9677] netlink: 32 bytes leftover after parsing attributes in process `syz.8.16223'.
[ 1740.061449][ T9681] loop5: detected capacity change from 0 to 2048
[ 1740.103498][ T9681] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found!
[ 1740.183050][ T9681] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1740.759246][ T9711] netlink: 24 bytes leftover after parsing attributes in process `syz.5.16239'.
[ 1741.293575][ T9732] loop3: detected capacity change from 0 to 256
[ 1741.340612][ T9732] exfat: Deprecated parameter 'utf8'
[ 1741.376904][ T9732] exfat: Deprecated parameter 'namecase'
[ 1741.400270][ T9732] exfat: Deprecated parameter 'namecase'
[ 1741.424317][ T9732] /dev/loop3: Can't open blockdev
[ 1742.288855][ T9772] loop0: detected capacity change from 0 to 64
[ 1743.229613][ T9808] netlink: 'syz.0.16282': attribute type 1 has an invalid length.
[ 1743.260790][ T9810] x_tables: duplicate underflow at hook 2
[ 1743.267122][ T9808] netlink: 220 bytes leftover after parsing attributes in process `syz.0.16282'.
[ 1743.292697][ T9808] netlink: 16 bytes leftover after parsing attributes in process `syz.0.16282'.
[ 1743.823522][ T5837] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[ 1743.974963][ T6865] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[ 1744.033094][ T5837] usb 1-1: config 0 has an invalid interface number: 231 but max is 0
[ 1744.055979][ T9839] netlink: 'syz.8.16297': attribute type 5 has an invalid length.
[ 1744.058216][ T5837] usb 1-1: config 0 has no interface number 0
[ 1744.065844][ T9839] netlink: 'syz.8.16297': attribute type 11 has an invalid length.
[ 1744.094472][ T5837] usb 1-1: config 0 interface 231 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[ 1744.125113][ T5837] usb 1-1: New USB device found, idVendor=067b, idProduct=27a1, bcdDevice=b0.9b
[ 1744.159981][ T5837] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1744.181094][ T5837] usb 1-1: Product: syz
[ 1744.185336][ T5837] usb 1-1: Manufacturer: syz
[ 1744.190051][ T5837] usb 1-1: SerialNumber: syz
[ 1744.199003][ T6865] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1744.224106][ T6865] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1744.232261][ T6865] usb 8-1: Product: syz
[ 1744.238755][ T5837] usb 1-1: config 0 descriptor??
[ 1744.244441][ T9820] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1744.272971][ T5837] plusb 1-1:0.231 usb0: register 'plusb' at usb-dummy_hcd.0-1, Prolific PL-2301/PL-2302/PL-25A1/PL-27A1, c2:b2:8d:2e:1e:e8
[ 1744.286484][ T6865] usb 8-1: Manufacturer: syz
[ 1744.304159][ T6865] usb 8-1: SerialNumber: syz
[ 1744.314315][ T6865] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1744.363763][ T5837] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1744.617829][ T9851] netlink: 'syz.3.16302': attribute type 2 has an invalid length.
[ 1744.618469][    C1] usb 8-1: ath: unknown panic pattern!
[ 1744.686237][ T9851] netlink: 'syz.3.16302': attribute type 1 has an invalid length.
[ 1744.919665][T12657] usb 8-1: USB disconnect, device number 5
[ 1744.919678][ T9857] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16304'.
[ 1745.402964][ T9874] ip6t_srh: unknown srh match flags  4000
[ 1745.475277][ T9876] device bridge0 entered promiscuous mode
[ 1745.557188][ T5837] ath9k_htc 8-1:1.0: ath9k_htc: Target is unresponsive
[ 1745.564758][ T5837] ath9k_htc: Failed to initialize the device
[ 1745.600354][T12657] usb 8-1: ath9k_htc: USB layer deinitialized
[ 1745.822747][ T9886] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1745.846842][ T9889] netlink: 80 bytes leftover after parsing attributes in process `syz.8.16315'.
[ 1745.871859][ T9891] loop3: detected capacity change from 0 to 512
[ 1745.899727][ T9891] EXT4-fs: inline encryption not supported
[ 1745.939232][ T9891] /dev/loop3: Can't open blockdev
[ 1746.109479][T12657] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1746.315342][T12657] usb 8-1: Using ep0 maxpacket: 8
[ 1746.341965][T12657] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1746.391120][T12657] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1746.426041][T12657] usb 8-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[ 1746.466837][T12657] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1746.497038][T12657] usb 8-1: Product: syz
[ 1746.508016][T12657] usb 8-1: Manufacturer: syz
[ 1746.529898][T12657] usb 8-1: SerialNumber: syz
[ 1746.543789][T12657] usb 8-1: config 0 descriptor??
[ 1746.584983][ T9908] ipt_CLUSTERIP: ipt_CLUSTERIP is deprecated and it will removed soon, use xt_cluster instead
[ 1746.588254][T12657] snd_usb_toneport 8-1:0.0: Line 6 TonePort UX2 found
[ 1746.612479][T21338] usb 1-1: USB disconnect, device number 4
[ 1746.639534][T21338] plusb 1-1:0.231 usb0: unregister 'plusb' usb-dummy_hcd.0-1, Prolific PL-2301/PL-2302/PL-25A1/PL-27A1
[ 1746.645175][ T9910] loop8: detected capacity change from 0 to 256
[ 1746.696098][ T9908] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1746.775594][T12657] snd_usb_toneport 8-1:0.0: cannot get proper max packet size
[ 1746.835960][T12657] snd_usb_toneport 8-1:0.0: Line 6 TonePort UX2 now disconnected
[ 1746.845079][T12657] snd_usb_toneport: probe of 8-1:0.0 failed with error -22
[ 1746.952012][ T9910] loop8: detected capacity change from 0 to 4096
[ 1746.996776][ T9910] ntfs: (device loop8): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 1747.058147][T21335] usb 8-1: USB disconnect, device number 6
[ 1747.083793][ T9910] ntfs: (device loop8): parse_options(): Option iocharset is deprecated. Please use option nls=<charsetname> in the future.
[ 1747.107789][ T9919] netlink: 'syz.3.16327': attribute type 1 has an invalid length.
[ 1747.148483][ T9910] ntfs: (device loop8): parse_options(): Unrecognized mount option uni_xlate.
[ 1747.219363][ T9910] ntfs: (device loop8): parse_options(): Unrecognized mount option uni_xlate.
[ 1747.268652][ T9910] ntfs: (device loop8): parse_options(): Unrecognized mount option shortname.
[ 1747.304200][ T9910] ntfs: (device loop8): parse_options(): Unrecognized mount option shortname.
[ 1747.343964][ T9923] loop5: detected capacity change from 0 to 2048
[ 1747.363422][ T9910] ntfs: (device loop8): parse_options(): Unrecognized mount option uni_xlate.
[ 1747.394599][ T9910] ntfs: (device loop8): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 1747.465872][ T9923] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1747.526086][ T9910] ntfs: (device loop8): parse_options(): Unrecognized mount option tz.
[ 1747.572462][ T9910] ntfs: (device loop8): parse_options(): Unrecognized mount option shortname.
[ 1747.934679][ T9940] loop5: detected capacity change from 0 to 512
[ 1748.077368][ T9940] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1748.148714][ T9940] EXT4-fs error (device loop5): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 1748.248310][ T9951] netlink: 'syz.0.16340': attribute type 75 has an invalid length.
[ 1748.294554][ T9940] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.16333: corrupted inode contents
[ 1748.355896][ T9940] EXT4-fs error (device loop5): ext4_dirty_inode:6156: inode #11: comm syz.5.16333: mark_inode_dirty error
[ 1748.380320][ T9940] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.16333: invalid indirect mapped block 1 (level 1)
[ 1748.428767][ T9940] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.16333: corrupted inode contents
[ 1748.495086][ T9940] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[ 1748.524929][ T9940] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.16333: corrupted inode contents
[ 1748.568701][ T9940] EXT4-fs error (device loop5): ext4_truncate:4325: inode #11: comm syz.5.16333: mark_inode_dirty error
[ 1748.604272][ T9940] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[ 1748.643532][ T9940] EXT4-fs (loop5): 1 truncate cleaned up
[ 1748.687593][ T9940] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1748.763203][ T9968] netlink: 'syz.0.16346': attribute type 1 has an invalid length.
[ 1748.901547][ T9940] EXT4-fs error (device loop5): ext4_find_dest_de:2115: inode #2: block 13: comm syz.5.16333: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[ 1749.087832][ T9980] netlink: 'syz.3.16351': attribute type 2 has an invalid length.
[ 1749.132062][T12657] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[ 1749.245692][T23665] EXT4-fs (loop5): unmounting filesystem.
[ 1749.348908][T12657] usb 8-1: Using ep0 maxpacket: 32
[ 1749.356357][T12657] usb 8-1: config 0 has an invalid interface number: 85 but max is 0
[ 1749.408321][T12657] usb 8-1: config 0 has no interface number 0
[ 1749.457341][T12657] usb 8-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1749.512604][T12657] usb 8-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1749.512643][T12657] usb 8-1: config 0 interface 85 has no altsetting 0
[ 1749.515450][T12657] usb 8-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 1749.515483][T12657] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1749.515506][T12657] usb 8-1: Product: syz
[ 1749.515522][T12657] usb 8-1: Manufacturer: syz
[ 1749.515538][T12657] usb 8-1: SerialNumber: syz
[ 1749.540615][T12657] usb 8-1: config 0 descriptor??
[ 1749.995774][T12657] appletouch 8-1:0.85: Failed to request geyser raw mode
[ 1750.014512][T12657] appletouch: probe of 8-1:0.85 failed with error -5
[ 1750.075558][T12657] usb 8-1: USB disconnect, device number 7
[ 1750.309142][ T9977] loop8: detected capacity change from 0 to 32768
[ 1750.442011][ T9977] XFS (loop8): Mounting V5 Filesystem
[ 1750.600715][ T9977] XFS (loop8): Ending clean mount
[ 1750.726883][T10005] loop5: detected capacity change from 0 to 32768
[ 1750.817951][ T8777] XFS (loop8): Unmounting Filesystem
[ 1751.144880][T10030] xt_socket: unknown flags 0x4c
[ 1751.448839][T10038] loop0: detected capacity change from 0 to 1024
[ 1751.481132][T10040] loop7: detected capacity change from 0 to 1024
[ 1751.577774][T10038] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1751.969118][ T4278] EXT4-fs (loop0): unmounting filesystem.
[ 1752.473662][T10076] netlink: 72 bytes leftover after parsing attributes in process `syz.5.16379'.
[ 1752.624472][T10080] loop3: detected capacity change from 0 to 1024
[ 1752.820003][T10085] loop5: detected capacity change from 0 to 64
[ 1753.223691][T10096] loop3: detected capacity change from 0 to 16
[ 1753.260969][T10096] /dev/loop3: Can't open blockdev
[ 1753.874315][T10115] loop5: detected capacity change from 0 to 256
[ 1753.892771][T10117] overlayfs: conflicting options: nfs_export=on,index=off
[ 1753.929725][T10115] exfat: Deprecated parameter 'namecase'
[ 1753.993260][T10115] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1754.050392][T10115] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[ 1754.291394][T10122] loop3: detected capacity change from 0 to 4096
[ 1754.336790][T10131] loop0: detected capacity change from 0 to 64
[ 1754.362508][T10122] __ntfs_error: 7 callbacks suppressed
[ 1754.362530][T10122] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[ 1754.487812][T10122] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[ 1754.598485][T10122] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[ 1754.646859][T10122] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1754.714929][T10122] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1754.828444][T10122] ntfs: volume version 3.1.
[ 1754.925414][T10122] ntfs: (device loop3): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[ 1754.971882][T10122] ntfs: (device loop3): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[ 1755.076210][T10122] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[ 1755.122134][T10122] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 1755.196387][T10122] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[ 1755.431741][T10161] loop5: detected capacity change from 0 to 64
[ 1756.092675][T10182] loop3: detected capacity change from 0 to 256
[ 1756.128122][T10182] /dev/loop3: Can't open blockdev
[ 1756.549959][T10186] ntfs: volume version 3.1.
[ 1756.839576][T10203] netlink: 'syz.3.16432': attribute type 10 has an invalid length.
[ 1756.911419][T21338] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1757.106071][T21338] usb 9-1: Using ep0 maxpacket: 16
[ 1757.113197][T21338] usb 9-1: config 0 has an invalid interface number: 8 but max is 0
[ 1757.154982][T21338] usb 9-1: config 0 has no interface number 0
[ 1757.181875][T21338] usb 9-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1757.239645][T21338] usb 9-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1757.277336][T21338] usb 9-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1757.304562][T21338] usb 9-1: Product: syz
[ 1757.315501][T21338] usb 9-1: SerialNumber: syz
[ 1757.342569][T21338] usb 9-1: config 0 descriptor??
[ 1757.365763][T21338] cm109 9-1:0.8: invalid payload size 208, expected 4
[ 1757.410987][T21338] input: CM109 USB driver as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.8/input/input96
[ 1757.740020][T10228] set_capacity_and_notify: 2 callbacks suppressed
[ 1757.740039][T10228] loop7: detected capacity change from 0 to 4096
[ 1757.870432][T10228] ntfs: volume version 3.1.
[ 1757.884063][    C0] cm109 9-1:0.8: cm109_urb_irq_callback: urb status -71
[ 1757.892247][    C0] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1757.899808][    C0] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1757.918985][    C0] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1757.926249][    C0] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1757.933954][    C0] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1757.941351][T21338] usb 9-1: USB disconnect, device number 3
[ 1757.952239][    C0] cm109 9-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1757.959284][    C0] cm109 9-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[ 1757.974855][T21338] cm109 9-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1758.609293][T10214] loop0: detected capacity change from 0 to 32768
[ 1758.708838][T10214] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[ 1758.712813][T10256] loop3: detected capacity change from 0 to 1024
[ 1758.728432][T10214] XFS (loop0): Mounting V5 Filesystem
[ 1758.774228][T10265] netlink: 'syz.5.16455': attribute type 21 has an invalid length.
[ 1758.784427][T10265] netlink: 164 bytes leftover after parsing attributes in process `syz.5.16455'.
[ 1758.938315][T10214] XFS (loop0): Ending clean mount
[ 1758.977238][T10214] XFS (loop0): Quotacheck needed: Please wait.
[ 1759.123772][T10214] XFS (loop0): Quotacheck: Done.
[ 1759.311149][ T4278] XFS (loop0): Unmounting Filesystem
[ 1759.374351][T10279] loop8: detected capacity change from 0 to 512
[ 1759.546809][T10279] EXT4-fs error (device loop8): ext4_orphan_get:1431: comm syz.8.16459: bad orphan inode 14
[ 1759.608791][T10279] ext4_test_bit(bit=13, block=18) = 1
[ 1759.614323][T10279] is_bad_inode(inode)=0
[ 1759.619003][T10279] NEXT_ORPHAN(inode)=0
[ 1759.652287][T10279] max_ino=32
[ 1759.656337][T10279] i_nlink=1
[ 1759.659574][T10279] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1759.702860][T10279] ext4 filesystem being mounted at /79/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1759.943823][ T8777] EXT4-fs (loop8): unmounting filesystem.
[ 1760.551677][T23669] Bluetooth: hci1: command 0x0406 tx timeout
[ 1761.068522][T10310] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1761.311788][T10339] ieee802154 phy0 wpan0: encryption failed: -22
[ 1761.488770][T10303] loop7: detected capacity change from 0 to 40427
[ 1761.553402][T10303] F2FS-fs (loop7): invalid crc value
[ 1761.603995][T10303] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1761.790052][T10303] F2FS-fs (loop7): Start checkpoint disabled!
[ 1761.922602][T10303] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[ 1762.196308][T10362] loop3: detected capacity change from 0 to 4096
[ 1762.244675][T10362] /dev/loop3: Can't open blockdev
[ 1762.327898][T10374] device bond1 entered promiscuous mode
[ 1762.415221][T10374] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1762.632899][T10384] program syz.3.16496 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1762.999077][T10394] x_tables: duplicate underflow at hook 3
[ 1763.611160][   T26] kauditd_printk_skb: 20 callbacks suppressed
[ 1763.611179][   T26] audit: type=1326 audit(1776501228.762:3603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10412 comm="syz.7.16507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1763.733852][   T26] audit: type=1326 audit(1776501228.799:3604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10412 comm="syz.7.16507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1763.869489][   T26] audit: type=1326 audit(1776501228.799:3605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10412 comm="syz.7.16507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1763.952595][   T26] audit: type=1326 audit(1776501228.799:3606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10412 comm="syz.7.16507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1764.117047][T10386] loop0: detected capacity change from 0 to 32768
[ 1764.246773][T10386] XFS (loop0): Mounting V5 Filesystem
[ 1764.342789][T10386] XFS (loop0): Ending clean mount
[ 1764.402973][T10386] XFS (loop0): Quotacheck needed: Please wait.
[ 1764.537320][T10446] netlink: 28 bytes leftover after parsing attributes in process `syz.7.16517'.
[ 1764.568685][T10446] netlink: 28 bytes leftover after parsing attributes in process `syz.7.16517'.
[ 1764.578392][ T6864] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[ 1764.593599][T10386] XFS (loop0): Quotacheck: Done.
[ 1764.761969][ T4278] XFS (loop0): Unmounting Filesystem
[ 1764.848144][ T6864] usb 6-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1764.870858][ T6864] usb 6-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[ 1764.882884][T10454] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16520'.
[ 1764.916236][ T6864] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1764.970352][ T6864] gspca_main: stv0680-2.14.0 probing 041e:4007
[ 1765.707989][T10475] program syz.7.16528 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1765.713863][T10450] loop8: detected capacity change from 0 to 32768
[ 1765.845539][T10450] XFS (loop8): Mounting V5 Filesystem
[ 1765.995086][T10450] XFS (loop8): Ending clean mount
[ 1766.109404][ T6864] stv0680 6-1:4.0: STV(e): camera ping failed!!
[ 1766.239905][ T8777] XFS (loop8): Unmounting Filesystem
[ 1766.349788][ T6864] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[ 1766.382859][ T6864] stv0680 6-1:4.0: last error: 0,  command = 0x0
[ 1766.433505][ T6864] usb 6-1: USB disconnect, device number 34
[ 1766.523007][T10498] loop7: detected capacity change from 0 to 256
[ 1766.636924][T10498] FAT-fs (loop7): Directory bread(block 64) failed
[ 1766.665788][T10498] FAT-fs (loop7): Directory bread(block 65) failed
[ 1766.696940][T10498] FAT-fs (loop7): Directory bread(block 66) failed
[ 1766.719133][T10498] FAT-fs (loop7): Directory bread(block 67) failed
[ 1766.771699][T10498] FAT-fs (loop7): Directory bread(block 68) failed
[ 1766.778326][T10498] FAT-fs (loop7): Directory bread(block 69) failed
[ 1766.864781][T10498] FAT-fs (loop7): Directory bread(block 70) failed
[ 1766.884149][T10502] netlink: 'syz.3.16535': attribute type 2 has an invalid length.
[ 1766.889319][T10498] FAT-fs (loop7): Directory bread(block 71) failed
[ 1766.898738][T10498] FAT-fs (loop7): Directory bread(block 72) failed
[ 1766.965759][T10498] FAT-fs (loop7): Directory bread(block 73) failed
[ 1767.276881][   T26] audit: type=1326 audit(1776501232.140:3607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10507 comm="syz.0.16521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1767.370324][   T26] audit: type=1326 audit(1776501232.177:3608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10507 comm="syz.0.16521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1767.455927][   T26] audit: type=1326 audit(1776501232.177:3609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10507 comm="syz.0.16521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1767.601230][   T26] audit: type=1326 audit(1776501232.177:3610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10507 comm="syz.0.16521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd47a99c819 code=0x7ffc0000
[ 1768.237466][T10538] netlink: 'syz.0.16546': attribute type 15 has an invalid length.
[ 1768.298005][T10538] netlink: 24 bytes leftover after parsing attributes in process `syz.0.16546'.
[ 1769.144920][T10568] netlink: 'syz.8.16559': attribute type 2 has an invalid length.
[ 1769.212304][T10568] netlink: 'syz.8.16559': attribute type 1 has an invalid length.
[ 1769.571948][T10584] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16564'.
[ 1769.716223][T10588] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1770.303449][T10608] loop0: detected capacity change from 0 to 1024
[ 1770.346335][T10608] hfsplus: Filesystem is marked locked, mounting read-only.
[ 1770.413473][T10608] hfsplus: filesystem is marked locked, leaving read-only.
[ 1770.594658][T12657] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1770.755866][T10623] netlink: 'syz.3.16585': attribute type 2 has an invalid length.
[ 1770.800577][T12657] usb 8-1: Using ep0 maxpacket: 32
[ 1770.808130][T12657] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1770.840805][T12657] usb 8-1: config 1 has an invalid interface number: 255 but max is 2
[ 1770.850382][T12657] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1770.898026][T12657] usb 8-1: config 1 has no interface number 2
[ 1770.909232][T12657] usb 8-1: config 1 interface 255 has no altsetting 0
[ 1770.919980][T12657] usb 8-1: config 1 interface 1 has no altsetting 0
[ 1770.936839][T12657] usb 8-1: New USB device found, idVendor=0582, idProduct=0009, bcdDevice= 0.40
[ 1770.963093][T12657] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1770.996308][T12657] usb 8-1: Product: syz
[ 1771.000915][T12657] usb 8-1: Manufacturer: syz
[ 1771.016802][T12657] usb 8-1: SerialNumber: syz
[ 1771.334345][T12657] usb 8-1: USB disconnect, device number 8
[ 1771.599115][ T4819] udevd[4819]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1771.786017][T10654] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1771.856821][T10654] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1771.880535][T10654] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1771.905639][T21341] usb 4-1: new full-speed USB device number 43 using dummy_hcd
[ 1771.950223][T10654] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1772.023510][T10654] IPv6: ADDRCONF(NETDEV_CHANGE): wireguard0: link becomes ready
[ 1772.052841][T10660] netlink: 1392 bytes leftover after parsing attributes in process `syz.0.16603'.
[ 1772.128443][T21341] usb 4-1: not running at top speed; connect to a high speed hub
[ 1772.141323][T21341] usb 4-1: config 11 has an invalid interface number: 95 but max is 0
[ 1772.183299][T21341] usb 4-1: config 11 has an invalid descriptor of length 0, skipping remainder of the config
[ 1772.222159][T21341] usb 4-1: config 11 has no interface number 0
[ 1772.237517][T21341] usb 4-1: config 11 interface 95 altsetting 64 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1772.260217][T21341] usb 4-1: config 11 interface 95 altsetting 64 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1772.315908][T21341] usb 4-1: config 11 interface 95 altsetting 64 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1772.376083][T21341] usb 4-1: config 11 interface 95 has no altsetting 0
[ 1772.398626][T21341] usb 4-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=b1.4d
[ 1772.453527][T21341] usb 4-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0
[ 1772.465289][T10674] netlink: 144 bytes leftover after parsing attributes in process `syz.7.16610'.
[ 1772.474891][T21341] usb 4-1: Manufacturer: syz
[ 1772.716892][T10674] team0: Port device team_slave_0 removed
[ 1772.730014][T10674] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[ 1772.757972][T21341] usb 4-1: USB disconnect, device number 43
[ 1773.947164][T10724] loop0: detected capacity change from 0 to 2048
[ 1773.972964][T10724] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1774.072545][T10731] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1774.099587][T10724] NILFS error (device loop0): __nilfs_read_inode: invalid file type bits in mode 0177777 for inode 12
[ 1774.177338][T10724] Remounting filesystem read-only
[ 1774.925766][T10757] loop8: detected capacity change from 0 to 128
[ 1775.044778][T10757] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1775.102585][T10757] ext4 filesystem being mounted at /119/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1775.283770][T10757] EXT4-fs error (device loop8): ext4_validate_inode_bitmap:106: comm syz.8.16650: Corrupt inode bitmap - block_group = 0, inode_bitmap = 19
[ 1775.493578][ T8777] EXT4-fs (loop8): unmounting filesystem.
[ 1775.698040][T10784] ubi: mtd0 is already attached to ubi16
[ 1775.767264][T10787] netlink: 'syz.8.16660': attribute type 8 has an invalid length.
[ 1776.354549][T10808] loop8: detected capacity change from 0 to 512
[ 1776.396756][T10808] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1776.484813][T10815] loop5: detected capacity change from 0 to 8
[ 1776.499906][T10808] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002]
[ 1776.543943][T10808] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 1776.597014][T10808] EXT4-fs error (device loop8): ext4_orphan_get:1431: comm syz.8.16674: bad orphan inode 267
[ 1776.672853][T10808] EXT4-fs (loop8): Remounting filesystem read-only
[ 1776.737836][T10808] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1776.788015][T10808] EXT4-fs warning (device loop8): dx_probe:893: inode #2: comm syz.8.16674: dx entry: limit 0 != root limit 125
[ 1776.816051][T10808] EXT4-fs warning (device loop8): dx_probe:966: inode #2: comm syz.8.16674: Corrupt directory, running e2fsck is recommended
[ 1776.990026][ T8777] EXT4-fs (loop8): unmounting filesystem.
[ 1777.522505][   T26] audit: type=1326 audit(1776501241.601:3611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.5.16692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1777.588873][   T26] audit: type=1326 audit(1776501241.601:3612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.5.16692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1777.633958][T10851] loop7: detected capacity change from 0 to 64
[ 1777.670402][   T26] audit: type=1326 audit(1776501241.656:3613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.5.16692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1777.702150][T21341] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1777.725347][   T26] audit: type=1326 audit(1776501241.656:3614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.5.16692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1777.812355][   T26] audit: type=1326 audit(1776501241.656:3615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.5.16692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1777.829542][T10819] loop0: detected capacity change from 0 to 32768
[ 1777.907489][T10819] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.16679 (10819)
[ 1777.930038][T21341] usb 9-1: Using ep0 maxpacket: 16
[ 1777.937943][T21341] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1777.969979][T21341] usb 9-1: New USB device found, idVendor=1803, idProduct=5510, bcdDevice=7d.bf
[ 1777.984198][T10819] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1778.002823][T21341] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1778.014088][T10819] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[ 1778.038026][T10819] BTRFS info (device loop0): using free space tree
[ 1778.044608][T21341] usb 9-1: Product: syz
[ 1778.056631][T21341] usb 9-1: Manufacturer: syz
[ 1778.064247][T21341] usb 9-1: SerialNumber: syz
[ 1778.080120][T21341] usb 9-1: config 0 descriptor??
[ 1778.135351][ T5837] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[ 1778.330499][T10819] BTRFS info (device loop0): enabling ssd optimizations
[ 1778.343512][ T5837] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1778.362731][T21341] cxacru 9-1:0.0: usbatm_usb_probe: bind failed: -19!
[ 1778.370541][ T5837] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1778.438705][ T5837] usb 6-1: config 1 has an invalid descriptor of length 242, skipping remainder of the config
[ 1778.488488][ T5837] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1778.534739][ T5837] usb 6-1: New USB device found, idVendor=04b8, idProduct=1222, bcdDevice= 0.40
[ 1778.556842][ T5837] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1778.612090][ T5837] usb 6-1: Product: syz
[ 1778.616334][ T5837] usb 6-1: Manufacturer: syz
[ 1778.628340][T21335] usb 9-1: USB disconnect, device number 4
[ 1778.655370][ T5837] usb 6-1: SerialNumber: syz
[ 1778.751450][ T4278] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1778.931434][ T5837] usb 6-1: USB disconnect, device number 35
[ 1779.172436][ T4819] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 10 /dev/loop0 scanned by udevd (4819)
[ 1779.586519][T10911] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[ 1779.657936][T10911] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[ 1779.673551][T10911] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[ 1779.695772][T10911] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[ 1779.717756][T10911] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[ 1779.750143][T10911] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1779.812550][T10911] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1779.828347][T10911] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1780.004495][   T26] audit: type=1326 audit(1776501243.890:3616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10922 comm="syz.8.16720" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa71c99c819 code=0x0
[ 1780.281394][T10926] netlink: 'syz.7.16721': attribute type 5 has an invalid length.
[ 1780.474804][T10932] loop8: detected capacity change from 0 to 4096
[ 1780.571289][T10939] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1780.628627][T10941] netlink: 'syz.7.16728': attribute type 10 has an invalid length.
[ 1780.728914][T10938] loop0: detected capacity change from 0 to 4096
[ 1780.734035][T10941] team0: Device veth1_macvtap failed to register rx_handler
[ 1780.768332][T10938] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[ 1780.824469][T10937] loop5: detected capacity change from 0 to 4096
[ 1780.918520][T10937] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[ 1781.014802][T10937] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[ 1781.622072][   T26] audit: type=1326 audit(1776501245.385:3617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10962 comm="syz.8.16739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa71c99c819 code=0x7ffc0000
[ 1781.711219][   T26] audit: type=1326 audit(1776501245.413:3618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10962 comm="syz.8.16739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7fa71c99c819 code=0x7ffc0000
[ 1781.810918][   T26] audit: type=1326 audit(1776501245.413:3619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10962 comm="syz.8.16739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa71c99c819 code=0x7ffc0000
[ 1782.156850][T10983] usb usb8: usbfs: process 10983 (syz.3.16746) did not claim interface 0 before use
[ 1782.213049][T10977] loop5: detected capacity change from 0 to 4096
[ 1782.272704][T10977] ntfs3: loop5: Different NTFS' sector size (1024) and media sector size (512)
[ 1783.038684][T11010] loop8: detected capacity change from 0 to 512
[ 1783.072172][T11010] EXT4-fs: inline encryption not supported
[ 1783.097512][ T5842] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1783.106934][T11010] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1783.206222][T11010] EXT4-fs warning (device loop8): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1783.232008][T11010] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.16762: bg 0: block 248: padding at end of block bitmap is not set
[ 1783.304187][T11010] Quota error (device loop8): write_blk: dquota write failed
[ 1783.318468][ T5842] usb 4-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[ 1783.368233][ T5842] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1783.376311][ T5842] usb 4-1: Product: syz
[ 1783.381500][T11010] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[ 1783.409856][ T5842] usb 4-1: Manufacturer: syz
[ 1783.415131][T11010] EXT4-fs error (device loop8): ext4_acquire_dquot:6841: comm syz.8.16762: Failed to acquire dquot type 1
[ 1783.430877][ T5842] usb 4-1: SerialNumber: syz
[ 1783.445104][ T5842] usb 4-1: config 0 descriptor??
[ 1783.459020][ T5842] gspca_main: sunplus-2.14.0 probing 04fc:504a
[ 1783.472616][T11010] EXT4-fs (loop8): 1 truncate cleaned up
[ 1783.481634][T11010] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1783.622291][T11010] Quota error (device loop8): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[ 1783.715545][T11010] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[ 1783.769397][T11010] EXT4-fs error (device loop8): ext4_acquire_dquot:6841: comm syz.8.16762: Failed to acquire dquot type 1
[ 1783.856810][ T8777] EXT4-fs (loop8): unmounting filesystem.
[ 1783.873895][   T46] Quota error (device loop8): do_check_range: Getting block 0 out of range 1-5
[ 1783.910250][ T5842] usb 4-1: USB disconnect, device number 44
[ 1783.911780][   T46] EXT4-fs error (device loop8): ext4_release_dquot:6877: comm kworker/u4:3: Failed to release dquot type 1
[ 1784.212452][T11043] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1784.260216][T11043] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1784.280545][T11043] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1785.492091][T11091] netlink: 20 bytes leftover after parsing attributes in process `syz.0.16801'.
[ 1786.184753][   T26] audit: type=1326 audit(1776501249.594:3620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.7.16812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1786.271819][   T26] audit: type=1326 audit(1776501249.622:3621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.7.16812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1786.372528][   T26] audit: type=1326 audit(1776501249.622:3622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.7.16812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1786.423128][T11119] tmpfs: Bad value for 'mpol'
[ 1786.477756][   T26] audit: type=1326 audit(1776501249.622:3623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.7.16812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1786.524980][T11125] fuse: blksize only supported for fuseblk
[ 1786.845852][T11134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16823'.
[ 1786.889632][T11135] netlink: 'syz.7.16822': attribute type 21 has an invalid length.
[ 1787.205813][T11102] loop0: detected capacity change from 0 to 40427
[ 1787.230446][T11146] netlink: 'syz.8.16827': attribute type 1 has an invalid length.
[ 1787.246306][T11102] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1787.253991][T11145] loop5: detected capacity change from 0 to 2048
[ 1787.266902][T11146] netlink: 192 bytes leftover after parsing attributes in process `syz.8.16827'.
[ 1787.285979][T11102] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1787.341241][T11149] loop7: detected capacity change from 0 to 512
[ 1787.354373][T11149] EXT4-fs: inline encryption not supported
[ 1787.369616][T11102] F2FS-fs (loop0): invalid crc value
[ 1787.432482][T11149] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1787.442078][T11145] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1787.487945][T11102] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 9809626597)
[ 1787.552861][T11149] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1787.605035][T11149] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.16829: bg 0: block 248: padding at end of block bitmap is not set
[ 1787.675055][T11149] Quota error (device loop7): write_blk: dquota write failed
[ 1787.700955][T11149] EXT4-fs error (device loop7): ext4_acquire_dquot:6841: comm syz.7.16829: Failed to acquire dquot type 1
[ 1787.787876][T11149] EXT4-fs (loop7): 1 truncate cleaned up
[ 1787.816096][T11149] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1787.838453][T11102] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1787.849046][T11102] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1787.993921][T11149] EXT4-fs error (device loop7): ext4_acquire_dquot:6841: comm syz.7.16829: Failed to acquire dquot type 1
[ 1788.048857][T11102] fscrypt (loop0, inode 3): Error -61 getting encryption context
[ 1788.247900][ T6474] EXT4-fs (loop7): unmounting filesystem.
[ 1788.282249][ T4336] EXT4-fs error (device loop7): ext4_release_dquot:6877: comm kworker/u4:6: Failed to release dquot type 1
[ 1788.379591][T11169] loop5: detected capacity change from 0 to 8192
[ 1788.391351][T11174] loop8: detected capacity change from 0 to 512
[ 1788.405047][T11169] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1788.428162][T11169] REISERFS (device loop5): found reiserfs format "3.5" with non-standard journal
[ 1788.437544][T11169] REISERFS (device loop5): using ordered data mode
[ 1788.486861][T11169] reiserfs: using flush barriers
[ 1788.494929][T11169] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1788.513324][T11169] REISERFS (device loop5): checking transaction log (loop5)
[ 1788.548055][T11174] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1788.557097][T11174] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1788.588209][T11169] REISERFS (device loop5): Using tea hash to sort names
[ 1788.600089][T11174] EXT4-fs error (device loop8): ext4_xattr_block_get:543: inode #15: comm syz.8.16841: corrupted xattr block 32
[ 1788.623570][T11169] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[ 1788.752842][T21244] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[ 1788.871302][ T8777] EXT4-fs (loop8): unmounting filesystem.
[ 1788.958713][T21244] usb 8-1: Using ep0 maxpacket: 32
[ 1788.968278][T21244] usb 8-1: config 0 has an invalid interface number: 132 but max is 0
[ 1789.010777][T21244] usb 8-1: config 0 has no interface number 0
[ 1789.028411][T21244] usb 8-1: config 0 interface 132 has no altsetting 0
[ 1789.067047][T21244] usb 8-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice= 3.02
[ 1789.087226][T21244] usb 8-1: New USB device strings: Mfr=19, Product=95, SerialNumber=25
[ 1789.130899][T21244] usb 8-1: Product: syz
[ 1789.141834][T21244] usb 8-1: Manufacturer: syz
[ 1789.152793][T21244] usb 8-1: SerialNumber: syz
[ 1789.186963][T21244] usb 8-1: config 0 descriptor??
[ 1789.230641][T21244] ftdi_sio 8-1:0.132: FTDI USB Serial Device converter detected
[ 1789.239124][T21244] ftdi_sio ttyUSB0: unknown device type: 0x302
[ 1789.423906][T21244] usb 8-1: USB disconnect, device number 9
[ 1789.431446][T21244] ftdi_sio 8-1:0.132: device disconnected
[ 1789.512461][T11203] netlink: 28 bytes leftover after parsing attributes in process `syz.8.16853'.
[ 1789.624862][T11207] netlink: 'syz.3.16854': attribute type 12 has an invalid length.
[ 1789.724520][T11212] netlink: 24 bytes leftover after parsing attributes in process `syz.5.16856'.
[ 1790.277475][T11230] loop7: detected capacity change from 0 to 1764
[ 1790.354464][T11230] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1790.468182][T11238] netlink: 'syz.8.16869': attribute type 1 has an invalid length.
[ 1790.549539][T11242] loop5: detected capacity change from 0 to 256
[ 1790.595210][T11244] device bridge_slave_0 entered promiscuous mode
[ 1790.622726][T11244] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1790.644454][T11244] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 1791.126128][T11260] netlink: 44 bytes leftover after parsing attributes in process `syz.8.16880'.
[ 1791.949645][T11250] loop5: detected capacity change from 0 to 32768
[ 1791.970192][T11250] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop5 scanned by syz.5.16875 (11250)
[ 1792.038250][T11250] BTRFS info (device loop5): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1792.111532][T11250] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[ 1792.123026][T11250] BTRFS info (device loop5): enabling ssd optimizations
[ 1792.165262][T11250] BTRFS info (device loop5): not using ssd optimizations
[ 1792.173532][T11250] BTRFS info (device loop5): turning off barriers
[ 1792.196059][T11250] BTRFS info (device loop5): using free space tree
[ 1792.249226][T11295] ax25_connect(): syz.7.16898 uses autobind, please contact jreuter@yaina.de
[ 1792.610862][T23665] BTRFS info (device loop5): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1792.776406][T11324] VFS: could not find a valid V7 on nullb0.
[ 1793.037883][T11326] loop8: detected capacity change from 0 to 4096
[ 1793.075873][T11326] ntfs3: loop8: Different NTFS' sector size (1024) and media sector size (512)
[ 1793.388439][   T26] kauditd_printk_skb: 4 callbacks suppressed
[ 1793.388457][   T26] audit: type=1326 audit(1776501256.240:3624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11333 comm="syz.7.16909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1793.502601][T11292] loop0: detected capacity change from 0 to 32768
[ 1793.519087][   T26] audit: type=1326 audit(1776501256.286:3625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11333 comm="syz.7.16909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1793.559577][   T26] audit: type=1326 audit(1776501256.286:3626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11333 comm="syz.7.16909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1793.604001][T11326] ntfs3: loop8: ino=0, attr_set_size
[ 1793.655941][T11326] ntfs3: loop8: Mark volume as dirty due to NTFS errors
[ 1793.667572][   T26] audit: type=1326 audit(1776501256.286:3627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11333 comm="syz.7.16909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1793.691664][   T26] audit: type=1326 audit(1776501256.286:3628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11333 comm="syz.7.16909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e0f59c819 code=0x7ffc0000
[ 1793.701578][T11292] JBD2: Ignoring recovery information on journal
[ 1793.834737][T11292] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1793.925167][T11342] loop7: detected capacity change from 0 to 4096
[ 1794.009360][T11342] ntfs: volume version 3.1.
[ 1794.049382][T11342] ntfs: (device loop7): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[ 1794.112407][T11342] ntfs: (device loop7): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 1794.168494][T11342] ntfs: (device loop7): load_system_files(): Failed to determine if Windows is hibernated.  Mounting read-only.  Run chkdsk.
[ 1794.254553][T11342] ntfs: (device loop7): ntfs_read_locked_attr_inode(): Failed with error code -2 while reading attribute inode (mft_no 0x1a, type 0x80, name_len 4).  Marking corrupt inode and base inode 0x1a as bad.  Run chkdsk.
[ 1794.321885][T11342] ntfs: (device loop7): load_and_init_usnjrnl(): Failed to load $UsnJrnl/$DATA/$Max attribute.
[ 1794.346812][ T4278] ocfs2: Unmounting device (7,0) on (node local)
[ 1794.564211][T11362] netlink: 'syz.0.16918': attribute type 5 has an invalid length.
[ 1794.965947][T11373] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1795.258072][T11383] netlink: 'syz.7.16928': attribute type 32 has an invalid length.
[ 1796.113269][T11411] loop5: detected capacity change from 0 to 4096
[ 1796.895304][T11439] delete_channel: no stack
[ 1797.496226][T11456] netlink: 312 bytes leftover after parsing attributes in process `syz.0.16964'.
[ 1797.505524][T11456] netlink: 'syz.0.16964': attribute type 1 has an invalid length.
[ 1797.551026][T11427] loop8: detected capacity change from 0 to 32768
[ 1797.625613][T11427] XFS (loop8): Mounting V5 Filesystem
[ 1797.774409][T11447] loop7: detected capacity change from 0 to 32768
[ 1797.837298][T11427] XFS (loop8): Ending clean mount
[ 1797.919183][T11447] XFS (loop7): Mounting V5 Filesystem
[ 1797.941624][ T8777] XFS (loop8): Unmounting Filesystem
[ 1798.161434][T11447] XFS (loop7): Ending clean mount
[ 1798.233107][T21244] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[ 1798.406230][ T6474] XFS (loop7): Unmounting Filesystem
[ 1798.463335][T21244] usb 1-1: Using ep0 maxpacket: 16
[ 1798.492379][T21244] usb 1-1: config 0 has an invalid interface number: 105 but max is 0
[ 1798.536305][T21244] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1798.546570][T21244] usb 1-1: config 0 has no interface number 0
[ 1798.577797][T21244] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[ 1798.598588][T21244] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1798.612717][T21244] usb 1-1: Product: syz
[ 1798.616961][T21244] usb 1-1: Manufacturer: syz
[ 1798.633625][T21244] usb 1-1: SerialNumber: syz
[ 1798.640915][T21244] usb 1-1: config 0 descriptor??
[ 1798.899900][T21244] usb 1-1: Found UVC 0.00 device syz (046d:08d3)
[ 1798.923830][T21244] usb 1-1: No valid video chain found.
[ 1799.034696][T21334] usb 6-1: new full-speed USB device number 36 using dummy_hcd
[ 1799.164936][T21244] usb 1-1: USB disconnect, device number 5
[ 1799.253530][T21334] usb 6-1: config 0 has an invalid interface number: 251 but max is 0
[ 1799.274403][T21334] usb 6-1: config 0 has no interface number 0
[ 1799.310248][T21334] usb 6-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[ 1799.319775][T21334] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1799.328219][T21334] usb 6-1: Product: syz
[ 1799.333421][T21334] usb 6-1: Manufacturer: syz
[ 1799.339758][T21334] usb 6-1: SerialNumber: syz
[ 1799.363859][T21334] usb 6-1: config 0 descriptor??
[ 1799.461011][   T26] kauditd_printk_skb: 8 callbacks suppressed
[ 1799.461030][   T26] audit: type=1326 audit(1776501261.852:3633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11505 comm="syz.3.16981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1799.530313][   T26] audit: type=1326 audit(1776501261.852:3634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11505 comm="syz.3.16981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1799.624142][   T26] audit: type=1326 audit(1776501261.852:3635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11505 comm="syz.3.16981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1799.684629][   T26] audit: type=1326 audit(1776501261.852:3636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11505 comm="syz.3.16981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1799.726494][T11516] netlink: 'syz.3.16985': attribute type 4 has an invalid length.
[ 1799.744336][   T26] audit: type=1326 audit(1776501261.888:3637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11505 comm="syz.3.16981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1799.825430][T21334] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1799.836296][   T26] audit: type=1326 audit(1776501261.888:3638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11505 comm="syz.3.16981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1799.861273][T21334] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71
[ 1799.895321][T21334] asix: probe of 6-1:0.251 failed with error -5
[ 1799.951742][T21334] usb 6-1: USB disconnect, device number 36
[ 1799.966418][   T26] audit: type=1326 audit(1776501261.888:3639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11505 comm="syz.3.16981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1800.063993][   T26] audit: type=1326 audit(1776501261.888:3640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11505 comm="syz.3.16981" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff40699c819 code=0x7ffc0000
[ 1800.688321][T11548] netlink: 20 bytes leftover after parsing attributes in process `syz.8.17000'.
[ 1800.996386][T11550] loop7: detected capacity change from 0 to 4096
[ 1801.018167][T11550] ntfs: (device loop7): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 1801.038725][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1801.142164][T11550] ntfs: (device loop7): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[ 1801.214665][T11550] ntfs: volume version 3.1.
[ 1801.615136][T11574] loop7: detected capacity change from 0 to 256
[ 1801.656950][T11574] exfat: Deprecated parameter 'utf8'
[ 1801.685697][T11574] exfat: Deprecated parameter 'utf8'
[ 1801.723479][T11574] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1802.240332][T11594] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1802.679081][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1802.685828][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1802.695488][T11600] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1802.962332][T11602] netlink: 'syz.3.17028': attribute type 2 has an invalid length.
[ 1803.185074][T11606] netlink: 40 bytes leftover after parsing attributes in process `syz.0.17031'.
[ 1803.219215][T11606] netlink: 40 bytes leftover after parsing attributes in process `syz.0.17031'.
[ 1803.249709][T11596] loop7: detected capacity change from 0 to 32768
[ 1803.292433][T11596] 
[ 1803.292433][T11596]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1803.292433][T11596] 
[ 1803.370732][T11596] JFS: metapage_get_blocks failed
[ 1803.389269][T11596] ERROR: (device loop7): release_metapage: write_one_page() failed
[ 1803.389269][T11596] 
[ 1803.409106][T11596] ERROR: (device loop7): remounting filesystem as read-only
[ 1803.455702][T11596] ERROR: (device loop7): diWrite: ixpxd invalid
[ 1803.455702][T11596] 
[ 1803.488706][T11596] ERROR: (device loop7): txCommit: 
[ 1803.488706][T11596] 
[ 1803.886086][T11619] loop5: detected capacity change from 0 to 256
[ 1803.997597][T11625] autofs4:pid:11625:validate_dev_ioctl: path string terminator missing for cmd(0xc018937e)
[ 1804.255665][T11633] netlink: 12 bytes leftover after parsing attributes in process `syz.3.17043'.
[ 1804.255728][T11631] i2c i2c-0: Invalid block write size 252
[ 1804.890141][T11656] loop3: detected capacity change from 0 to 736
[ 1805.768932][T11681] tmpfs: Bad value for 'mpol'
[ 1805.771137][T11679] loop3: detected capacity change from 0 to 1024
[ 1806.156425][T11658] loop8: detected capacity change from 0 to 32768
[ 1806.344310][T11658] XFS (loop8): Mounting V5 Filesystem
[ 1806.475363][T11670] loop7: detected capacity change from 0 to 32768
[ 1806.550194][T11658] XFS (loop8): Ending clean mount
[ 1806.591352][T11670] XFS (loop7): DAX unsupported by block device. Turning off DAX.
[ 1806.647673][T11714] netlink: 20 bytes leftover after parsing attributes in process `syz.3.17077'.
[ 1806.653281][T11670] XFS (loop7): Mounting V5 Filesystem
[ 1806.884257][ T8777] XFS (loop8): Unmounting Filesystem
[ 1806.912076][T11670] XFS (loop7): Ending clean mount
[ 1806.921196][T11670] XFS (loop7): Quotacheck needed: Please wait.
[ 1807.137313][T11728] ipt_CLUSTERIP: Please specify an interface name
[ 1807.251238][T11670] XFS (loop7): Quotacheck: Done.
[ 1807.581767][ T6474] XFS (loop7): Unmounting Filesystem
[ 1808.366191][T11762] loop0: detected capacity change from 0 to 2048
[ 1808.422019][T11762] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1808.422666][T11768] xt_TCPMSS: Only works on TCP SYN packets
[ 1809.609154][T11803] netlink: 'syz.8.17118': attribute type 10 has an invalid length.
[ 1809.705032][T11804] loop7: detected capacity change from 0 to 2364
[ 1809.791472][T11803] team0: Port device macvlan0 added
[ 1810.145311][T11784] loop5: detected capacity change from 0 to 32768
[ 1810.250905][T11784] XFS (loop5): Mounting V5 Filesystem
[ 1810.330070][T11784] XFS (loop5): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50.
[ 1810.398529][T11784] XFS (loop5): Ending clean mount
[ 1810.527894][T11784] XFS (loop5): Metadata corruption detected at xfs_dinode_verify+0x2d5/0x1110, inode 0x1803 dinode
[ 1810.657560][T11784] XFS (loop5): Unmount and run xfs_repair
[ 1810.672592][T11841] loop8: detected capacity change from 0 to 1024
[ 1810.679463][T11784] XFS (loop5): First 128 bytes of corrupted metadata buffer:
[ 1810.711807][T11784] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00  INA.............
[ 1810.754058][T11784] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1810.790023][T11784] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 e2 bf 3d  4.Xh....4.Xh...=
[ 1810.834817][T11784] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20  4.Xh...=....... 
[ 1810.859915][T11784] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1810.876396][    T9] hfsplus: bad catalog file entry
[ 1810.880360][T11784] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 ca e6 3d c1  ..............=.
[ 1810.897478][T11784] 00000060: ff ff ff ff 6e d0 e3 2d 00 00 00 00 00 00 00 04  ....n..-........
[ 1810.917096][T11784] 00000070: 00 00 00 03 00 00 00 10 00 00 00 00 00 00 00 06  ................
[ 1811.022166][T11850] loop0: detected capacity change from 0 to 256
[ 1811.058986][T23665] XFS (loop5): Unmounting Filesystem
[ 1811.370654][T11857] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1812.057080][T11875] loop7: detected capacity change from 0 to 64
[ 1812.146253][T11849] loop8: detected capacity change from 0 to 32768
[ 1812.239245][T11880] netlink: 'syz.5.17152': attribute type 12 has an invalid length.
[ 1812.273737][T11880] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (255)
[ 1812.294122][T11849] XFS (loop8): DAX unsupported by block device. Turning off DAX.
[ 1812.334796][T11849] XFS (loop8): Mounting V5 Filesystem
[ 1812.396369][T11849] XFS (loop8): Ending clean mount
[ 1812.458476][T11849] XFS (loop8): Quotacheck needed: Please wait.
[ 1812.500962][T11892] loop7: detected capacity change from 0 to 2048
[ 1812.573974][T11849] XFS (loop8): Quotacheck: Done.
[ 1812.606142][T11896] netlink: 'syz.5.17155': attribute type 1 has an invalid length.
[ 1812.624434][T11892] NILFS error (device loop7): nilfs_check_page: bad entry in directory #2: unaligned directory entry - offset=0, inode=18446736377128157191, rec_len=65535, name_len=255
[ 1812.884534][ T8777] XFS (loop8): Unmounting Filesystem
[ 1814.571255][T11919] loop0: detected capacity change from 0 to 32768
[ 1814.604966][T11919] (syz.0.17167,11919,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1814.650738][T11919] (syz.0.17167,11919,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1814.802436][T11919] JBD2: Ignoring recovery information on journal
[ 1815.080370][T11919] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1815.236075][T11952] loop8: detected capacity change from 0 to 32768
[ 1815.274644][T11968] loop5: detected capacity change from 0 to 16
[ 1815.316833][T11968] erofs: Unknown parameter '5‚�ser_xattr'
[ 1815.329371][T11919] (syz.0.17167,11919,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x7dc2e7ff, computed 0xfdefcca9. Applying ECC.
[ 1815.364285][T11968] cifs: Unknown parameter '5‚�ser_xattr'
[ 1815.411883][T11919] (syz.0.17167,11919,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x7dc2e7ff, computed 0xfdefcca9
[ 1815.422103][T11952] XFS (loop8): DAX unsupported by block device. Turning off DAX.
[ 1815.436154][T11919] (syz.0.17167,11919,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[ 1815.448755][T11919] (syz.0.17167,11919,0):ocfs2_quota_read:201 ERROR: status = -5
[ 1815.456699][T11919] __quota_error: 20 callbacks suppressed
[ 1815.456716][T11919] Quota error (device loop0): find_tree_dqentry: Can't read quota tree block 2
[ 1815.463122][T11977] loop7: detected capacity change from 0 to 512
[ 1815.489542][T11952] XFS (loop8): Mounting V5 Filesystem
[ 1815.500159][T11919] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 60929
[ 1815.510788][T11919] (syz.0.17167,11919,1):ocfs2_acquire_dquot:878 ERROR: status = -5
[ 1815.615722][ T4278] ocfs2: Unmounting device (7,0) on (node local)
[ 1815.637709][T11952] XFS (loop8): Ending clean mount
[ 1815.799962][T11952] XFS (loop8): Quotacheck needed: Please wait.
[ 1815.896096][T11986] xt_TCPMSS: Only works on TCP SYN packets
[ 1816.046367][T11952] XFS (loop8): Quotacheck: Done.
[ 1816.318424][ T8777] XFS (loop8): Unmounting Filesystem
[ 1817.020079][T11983] loop5: detected capacity change from 0 to 32768
[ 1817.196005][T12009] loop7: detected capacity change from 0 to 4096
[ 1817.316739][T12009] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1817.417229][T12014] loop3: detected capacity change from 0 to 1024
[ 1817.497840][ T4258] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1818.055902][T12034] loop5: detected capacity change from 0 to 16
[ 1818.098827][T12034] erofs: (device loop5): mounted with root inode @ nid 36.
[ 1818.113862][T21334] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1818.146956][T12034] syz.5.17219: attempt to access beyond end of device
[ 1818.146956][T12034] loop5: rw=524288, sector=1342177272, nr_sectors = 32 limit=16
[ 1818.221014][T12034] syz.5.17219: attempt to access beyond end of device
[ 1818.221014][T12034] loop5: rw=0, sector=1342177272, nr_sectors = 8 limit=16
[ 1818.298260][   T26] audit: type=1800 audit(1776501279.241:3641): pid=12034 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.17219" name="file1" dev="loop5" ino=86 res=0 errno=0
[ 1818.314080][T12039] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1818.327566][T21334] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1818.359954][T21334] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1818.405265][T12042] loop0: detected capacity change from 0 to 2048
[ 1818.408579][T12039] bond0: (slave rose0): Enslaving as an active interface with an up link
[ 1818.432488][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1818.441037][T21334] usb 4-1: New USB device found, idVendor=0763, idProduct=2003, bcdDevice= 0.40
[ 1818.457177][T21334] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1818.481980][T21334] usb 4-1: Product: syz
[ 1818.486302][T21334] usb 4-1: Manufacturer: syz
[ 1818.499528][T12042] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1818.538658][T21334] usb 4-1: SerialNumber: syz
[ 1818.735169][T12047] loop5: detected capacity change from 0 to 2048
[ 1818.799309][T12047] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1818.808142][T21334] usb 4-1: 0:1 : does not exist
[ 1818.814244][T21334] usb 4-1: unit 0 not found!
[ 1818.912029][T21334] usb 4-1: USB disconnect, device number 45
[ 1818.934700][T12052] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1819.236973][ T4258] udevd[4258]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1819.265991][   T26] audit: type=1326 audit(1776501280.136:3642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz.5.17229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1819.353992][   T26] audit: type=1326 audit(1776501280.164:3643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz.5.17229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1819.454024][   T26] audit: type=1326 audit(1776501280.164:3644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz.5.17229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1819.564285][   T26] audit: type=1326 audit(1776501280.164:3645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz.5.17229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1819.684707][   T26] audit: type=1326 audit(1776501280.164:3646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz.5.17229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1819.771476][   T26] audit: type=1326 audit(1776501280.164:3647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz.5.17229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1819.879632][   T26] audit: type=1326 audit(1776501280.164:3648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12061 comm="syz.5.17229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f90ac19c819 code=0x7ffc0000
[ 1820.457413][T12091] loop8: detected capacity change from 0 to 512
[ 1820.501105][T12091] EXT4-fs (loop8): revision level too high, forcing read-only mode
[ 1820.512604][T12091] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 1820.521797][T12089] loop3: detected capacity change from 0 to 4096
[ 1820.544089][T12091] EXT4-fs error (device loop8): ext4_acquire_dquot:6841: comm syz.8.17240: Failed to acquire dquot type 1
[ 1820.552359][T12089] /dev/loop3: Can't open blockdev
[ 1820.612010][T12091] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.17240: bg 0: block 40: padding at end of block bitmap is not set
[ 1820.686395][T12091] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6180: Corrupt filesystem
[ 1820.698783][T12064] loop0: detected capacity change from 0 to 32768
[ 1820.707061][T12091] EXT4-fs (loop8): 1 truncate cleaned up
[ 1820.738849][T12091] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1820.823664][T12097] netlink: 28 bytes leftover after parsing attributes in process `syz.5.17242'.
[ 1820.892424][T12064] XFS (loop0): Mounting V5 Filesystem
[ 1821.040012][T12064] XFS (loop0): Ending clean mount
[ 1821.052233][ T8777] EXT4-fs (loop8): unmounting filesystem.
[ 1821.464357][ T4278] XFS (loop0): Unmounting Filesystem
[ 1822.005837][T12135] loop3: detected capacity change from 0 to 256
[ 1822.015076][T12135] /dev/loop3: Can't open blockdev
[ 1822.045105][T12139] netlink: 68 bytes leftover after parsing attributes in process `syz.5.17255'.
[ 1823.253050][T12179] loop5: detected capacity change from 0 to 512
[ 1823.318644][T12181] netlink: 'syz.7.17273': attribute type 16 has an invalid length.
[ 1823.369894][T12181] netlink: 64138 bytes leftover after parsing attributes in process `syz.7.17273'.
[ 1823.431386][T12179] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1823.476909][T12179] ext4 filesystem being mounted at /1808/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1823.565237][T12179] __quota_error: 8 callbacks suppressed
[ 1823.565259][T12179] Quota error (device loop5): do_check_range: Getting block 589829 out of range 1-5
[ 1823.585443][T12192] SET target dimension over the limit!
[ 1823.606648][T12179] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[ 1823.671789][T12179] EXT4-fs error (device loop5): ext4_acquire_dquot:6841: comm syz.5.17272: Failed to acquire dquot type 1
[ 1823.791398][T12197] netlink: 6 bytes leftover after parsing attributes in process `syz.7.17277'.
[ 1823.853297][T12202] netlink: 20 bytes leftover after parsing attributes in process `syz.0.17279'.
[ 1823.889597][T23665] EXT4-fs (loop5): unmounting filesystem.
[ 1823.910884][T12202] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17279'.
[ 1824.185525][T12214] loop7: detected capacity change from 0 to 512
[ 1824.320199][T12214] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1824.377075][T12214] ext4 filesystem being mounted at /431/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1824.407378][T12224] netlink: 168 bytes leftover after parsing attributes in process `syz.8.17287'.
[ 1824.507973][T12214] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.17284: bg 0: block 248: padding at end of block bitmap is not set
[ 1824.625442][T12214] Quota error (device loop7): write_blk: dquota write failed
[ 1824.697504][T12214] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 1824.780322][T12214] EXT4-fs error (device loop7): ext4_acquire_dquot:6841: comm syz.7.17284: Failed to acquire dquot type 0
[ 1824.782344][T12236] ieee802154 phy0 wpan0: encryption failed: -90
[ 1824.995247][ T6474] EXT4-fs (loop7): unmounting filesystem.
[ 1825.941886][T12268] loop5: detected capacity change from 0 to 4096
[ 1826.018442][T12268] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[ 1826.344465][T12280] loop3: detected capacity change from 0 to 4096
[ 1826.386165][T10136] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1826.498296][T12280] overlayfs: failed to resolve './bus': -2
[ 1827.336638][T12318] netlink: 'syz.5.17331': attribute type 11 has an invalid length.
[ 1828.374169][T12358] ipt_REJECT: ECHOREPLY no longer supported.
[ 1828.471180][T12362] netlink: 16 bytes leftover after parsing attributes in process `syz.8.17352'.
[ 1828.502478][T12362] netlink: 16 bytes leftover after parsing attributes in process `syz.8.17352'.
[ 1828.999762][T12379] loop8: detected capacity change from 0 to 512
[ 1829.145968][T12379] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1829.162689][T12379] ext4 filesystem being mounted at /244/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1829.249143][T12379] 
[ 1829.251550][T12379] ======================================================
[ 1829.258602][T12379] WARNING: possible circular locking dependency detected
[ 1829.265834][T12379] syzkaller #0 Not tainted
[ 1829.270284][T12379] ------------------------------------------------------
[ 1829.277349][T12379] syz.8.17359/12379 is trying to acquire lock:
[ 1829.283580][T12379] ffff8880558a9928 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_commit+0x5a/0x410
[ 1829.292627][T12379] 
[ 1829.292627][T12379] but task is already holding lock:
[ 1829.300032][T12379] ffff888027f234b0 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x910/0x1b70
[ 1829.309772][T12379] 
[ 1829.309772][T12379] which lock already depends on the new lock.
[ 1829.309772][T12379] 
[ 1829.320382][T12379] 
[ 1829.320382][T12379] the existing dependency chain (in reverse order) is:
[ 1829.329604][T12379] 
[ 1829.329604][T12379] -> #2 (&ei->i_data_sem/2){++++}-{3:3}:
[ 1829.337485][T12379]        down_read+0x42/0x2d0
[ 1829.342233][T12379]        ext4_map_blocks+0x323/0x1b70
[ 1829.347707][T12379]        ext4_getblk+0x1cc/0x6f0
[ 1829.352701][T12379]        ext4_bread+0x26/0x170
[ 1829.355198][T12397] loop0: detected capacity change from 0 to 256
[ 1829.357486][T12379]        ext4_quota_read+0x180/0x380
[ 1829.369043][T12379]        find_tree_dqentry+0x1cd/0xf30
[ 1829.374592][T12379]        find_tree_dqentry+0x6b0/0xf30
[ 1829.380100][T12379]        find_tree_dqentry+0x6b0/0xf30
[ 1829.385615][T12379]        find_tree_dqentry+0x6b0/0xf30
[ 1829.391130][T12379]        qtree_read_dquot+0x57b/0x820
[ 1829.396730][T12379]        v2_read_dquot+0xc0/0x110
[ 1829.402070][T12379]        dquot_acquire+0x152/0x520
[ 1829.407237][T12379]        ext4_acquire_dquot+0x2d9/0x4a0
[ 1829.412842][T12379]        dqget+0x778/0xeb0
[ 1829.417307][T12379]        __dquot_initialize+0x333/0xcd0
[ 1829.422897][T12379]        ext4_process_orphan+0x54/0x300
[ 1829.428500][T12379]        ext4_orphan_cleanup+0xbeb/0x1420
[ 1829.434274][T12379]        ext4_fill_super+0x6ee3/0x78c0
[ 1829.439772][T12379]        get_tree_bdev+0x3f1/0x610
[ 1829.444921][T12379]        vfs_get_tree+0x88/0x270
[ 1829.449901][T12379]        do_new_mount+0x24a/0xa40
[ 1829.454958][T12379]        __se_sys_mount+0x2e3/0x3d0
[ 1829.460296][T12379]        do_syscall_64+0x4c/0xa0
[ 1829.465369][T12379]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1829.471839][T12379] 
[ 1829.471839][T12379] -> #1 (&s->s_dquot.dqio_sem){++++}-{3:3}:
[ 1829.479997][T12379]        down_read+0x42/0x2d0
[ 1829.484815][T12379]        v2_read_dquot+0x4a/0x110
[ 1829.489854][T12379]        dquot_acquire+0x152/0x520
[ 1829.494980][T12379]        ext4_acquire_dquot+0x2d9/0x4a0
[ 1829.500537][T12379]        dqget+0x778/0xeb0
[ 1829.505048][T12379]        __dquot_initialize+0x3c3/0xcd0
[ 1829.510726][T12379]        ext4_process_orphan+0x54/0x300
[ 1829.516291][T12379]        ext4_orphan_cleanup+0xbeb/0x1420
[ 1829.522046][T12379]        ext4_fill_super+0x6ee3/0x78c0
[ 1829.527607][T12379]        get_tree_bdev+0x3f1/0x610
[ 1829.532818][T12379]        vfs_get_tree+0x88/0x270
[ 1829.537776][T12379]        do_new_mount+0x24a/0xa40
[ 1829.542836][T12379]        __se_sys_mount+0x2e3/0x3d0
[ 1829.548062][T12379]        do_syscall_64+0x4c/0xa0
[ 1829.553046][T12379]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1829.559490][T12379] 
[ 1829.559490][T12379] -> #0 (&dquot->dq_lock){+.+.}-{3:3}:
[ 1829.567149][T12379]        __lock_acquire+0x2d07/0x7d10
[ 1829.572533][T12379]        lock_acquire+0x1bb/0x4a0
[ 1829.577569][T12379]        __mutex_lock+0x12d/0xaf0
[ 1829.582607][T12379]        dquot_commit+0x5a/0x410
[ 1829.587639][T12379]        ext4_write_dquot+0x1f0/0x360
[ 1829.593021][T12379]        mark_all_dquot_dirty+0xf9/0x400
[ 1829.598679][T12379]        __dquot_alloc_space+0x5fc/0xe60
[ 1829.604415][T12379]        ext4_mb_new_blocks+0xfc4/0x4610
[ 1829.610060][T12379]        ext4_ext_map_blocks+0x195b/0x6810
[ 1829.615949][T12379]        ext4_map_blocks+0x9de/0x1b70
[ 1829.621332][T12379]        ext4_getblk+0x1cc/0x6f0
[ 1829.626302][T12379]        ext4_bread+0x26/0x170
[ 1829.631069][T12379]        ext4_append+0x2be/0x560
[ 1829.636027][T12379]        ext4_add_entry+0x8eb/0xdb0
[ 1829.641237][T12379]        ext4_add_nondir+0x93/0x270
[ 1829.646493][T12379]        ext4_create+0x2e6/0x470
[ 1829.651616][T12379]        path_openat+0x1181/0x2ee0
[ 1829.656736][T12379]        do_filp_open+0x1f1/0x430
[ 1829.661786][T12379]        do_sys_openat2+0x150/0x4b0
[ 1829.667094][T12379]        __x64_sys_open+0x11b/0x140
[ 1829.672321][T12379]        do_syscall_64+0x4c/0xa0
[ 1829.677290][T12379]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1829.683715][T12379] 
[ 1829.683715][T12379] other info that might help us debug this:
[ 1829.683715][T12379] 
[ 1829.694147][T12379] Chain exists of:
[ 1829.694147][T12379]   &dquot->dq_lock --> &s->s_dquot.dqio_sem --> &ei->i_data_sem/2
[ 1829.694147][T12379] 
[ 1829.708021][T12379]  Possible unsafe locking scenario:
[ 1829.708021][T12379] 
[ 1829.715477][T12379]        CPU0                    CPU1
[ 1829.720952][T12379]        ----                    ----
[ 1829.726325][T12379]   lock(&ei->i_data_sem/2);
[ 1829.731062][T12379]                                lock(&s->s_dquot.dqio_sem);
[ 1829.738447][T12379]                                lock(&ei->i_data_sem/2);
[ 1829.745660][T12379]   lock(&dquot->dq_lock);
[ 1829.750105][T12379] 
[ 1829.750105][T12379]  *** DEADLOCK ***
[ 1829.750105][T12379] 
[ 1829.758264][T12379] 4 locks held by syz.8.17359/12379:
[ 1829.763828][T12379]  #0: ffff888050ff6460 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90
[ 1829.773088][T12379]  #1: ffff888027f23628 (&type->i_mutex_dir_key#3){++++}-{3:3}, at: path_openat+0x7d2/0x2ee0
[ 1829.783320][T12379]  #2: ffff888027f234b0 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x910/0x1b70
[ 1829.793605][T12379]  #3: ffffffff8cc74a08 (dquot_srcu){....}-{0:0}, at: __dquot_alloc_space+0x173/0xe60
[ 1829.803360][T12379] 
[ 1829.803360][T12379] stack backtrace:
[ 1829.809262][T12379] CPU: 0 PID: 12379 Comm: syz.8.17359 Not tainted syzkaller #0
[ 1829.816904][T12379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1829.827298][T12379] Call Trace:
[ 1829.830597][T12379]  <TASK>
[ 1829.833542][T12379]  dump_stack_lvl+0x188/0x24e
[ 1829.838336][T12379]  ? load_image+0x400/0x400
[ 1829.842857][T12379]  ? show_regs_print_info+0x12/0x12
[ 1829.848162][T12379]  ? print_circular_bug+0x12b/0x1a0
[ 1829.853389][T12379]  check_noncircular+0x296/0x330
[ 1829.858344][T12379]  ? add_chain_block+0x940/0x940
[ 1829.863294][T12379]  ? lockdep_lock+0xf1/0x1f0
[ 1829.867900][T12379]  ? _find_first_zero_bit+0xcf/0x100
[ 1829.873283][T12379]  __lock_acquire+0x2d07/0x7d10
[ 1829.878148][T12379]  ? check_path+0x40/0x40
[ 1829.882500][T12379]  ? check_noncircular+0x189/0x330
[ 1829.887630][T12379]  ? add_chain_block+0x940/0x940
[ 1829.892585][T12379]  ? lockdep_unlock+0x142/0x2e0
[ 1829.897449][T12379]  ? lockdep_lock+0x1f0/0x1f0
[ 1829.902139][T12379]  ? verify_lock_unused+0x140/0x140
[ 1829.907357][T12379]  ? __lock_acquire+0x28c4/0x7d10
[ 1829.912404][T12379]  lock_acquire+0x1bb/0x4a0
[ 1829.916922][T12379]  ? dquot_commit+0x5a/0x410
[ 1829.921527][T12379]  ? __might_sleep+0xd0/0xd0
[ 1829.926126][T12379]  ? read_lock_is_recursive+0x10/0x10
[ 1829.931517][T12379]  __mutex_lock+0x12d/0xaf0
[ 1829.936040][T12379]  ? dquot_commit+0x5a/0x410
[ 1829.940651][T12379]  ? __might_sleep+0xd0/0xd0
[ 1829.945258][T12379]  ? dquot_commit+0x5a/0x410
[ 1829.949863][T12379]  ? mutex_lock_nested+0x10/0x10
[ 1829.954823][T12379]  ? ext4_journal_check_start+0x17e/0x240
[ 1829.960791][T12379]  dquot_commit+0x5a/0x410
[ 1829.965311][T12379]  ext4_write_dquot+0x1f0/0x360
[ 1829.970175][T12379]  mark_all_dquot_dirty+0xf9/0x400
[ 1829.975311][T12379]  __dquot_alloc_space+0x5fc/0xe60
[ 1829.980437][T12379]  ? __dquot_alloc_space+0x173/0xe60
[ 1829.985824][T12379]  ext4_mb_new_blocks+0xfc4/0x4610
[ 1829.990964][T12379]  ? __es_insert_extent+0x1790/0x1790
[ 1829.996349][T12379]  ? ext4_find_extent+0x367/0xe00
[ 1830.001484][T12379]  ? rcu_is_watching+0x11/0xa0
[ 1830.006365][T12379]  ? ext4_ext_search_right+0x380/0x830
[ 1830.012210][T12379]  ? memcpy+0x3c/0x60
[ 1830.016390][T12379]  ? ext4_mb_pa_callback+0xd0/0xd0
[ 1830.021550][T12379]  ? ext4_ext_check_overlap+0x401/0x560
[ 1830.027204][T12379]  ? ext4_ext_find_goal+0xed/0x1d0
[ 1830.032350][T12379]  ext4_ext_map_blocks+0x195b/0x6810
[ 1830.037672][T12379]  ? ext4_ext_release+0x10/0x10
[ 1830.042619][T12379]  ? rwsem_write_trylock+0x135/0x1c0
[ 1830.047952][T12379]  ? ext4_es_lookup_extent+0x645/0xb10
[ 1830.053512][T12379]  ext4_map_blocks+0x9de/0x1b70
[ 1830.058477][T12379]  ? ext4_issue_zeroout+0x250/0x250
[ 1830.063722][T12379]  ext4_getblk+0x1cc/0x6f0
[ 1830.068166][T12379]  ? ext4_get_block_unwritten+0x100/0x100
[ 1830.073909][T12379]  ? memset+0x1e/0x40
[ 1830.077907][T12379]  ? fscrypt_setup_filename+0x94/0xa40
[ 1830.083381][T12379]  ext4_bread+0x26/0x170
[ 1830.087638][T12379]  ext4_append+0x2be/0x560
[ 1830.092181][T12379]  ? ext4_init_new_dir+0x570/0x570
[ 1830.097406][T12379]  ext4_add_entry+0x8eb/0xdb0
[ 1830.102106][T12379]  ? ext4_inc_count+0x1b0/0x1b0
[ 1830.107152][T12379]  ? dquot_initialize+0x20/0x20
[ 1830.112015][T12379]  ext4_add_nondir+0x93/0x270
[ 1830.116703][T12379]  ext4_create+0x2e6/0x470
[ 1830.121150][T12379]  ? ext4_lookup+0x710/0x710
[ 1830.125760][T12379]  ? inode_permission+0xef/0x480
[ 1830.130708][T12379]  ? bpf_lsm_inode_create+0x5/0x10
[ 1830.135837][T12379]  ? security_inode_create+0xb3/0x100
[ 1830.141237][T12379]  ? ext4_lookup+0x710/0x710
[ 1830.145853][T12379]  path_openat+0x1181/0x2ee0
[ 1830.150466][T12379]  ? do_filp_open+0x430/0x430
[ 1830.155158][T12379]  do_filp_open+0x1f1/0x430
[ 1830.159697][T12379]  ? vfs_tmpfile+0x480/0x480
[ 1830.164324][T12379]  ? _raw_spin_unlock+0x24/0x40
[ 1830.169198][T12379]  ? alloc_fd+0x58f/0x630
[ 1830.173717][T12379]  do_sys_openat2+0x150/0x4b0
[ 1830.178495][T12379]  ? do_sys_open+0xe0/0xe0
[ 1830.182922][T12379]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1830.189005][T12379]  ? lock_chain_count+0x20/0x20
[ 1830.193877][T12379]  __x64_sys_open+0x11b/0x140
[ 1830.198572][T12379]  do_syscall_64+0x4c/0xa0
[ 1830.203096][T12379]  ? clear_bhb_loop+0x60/0xb0
[ 1830.207786][T12379]  ? clear_bhb_loop+0x60/0xb0
[ 1830.212476][T12379]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1830.218472][T12379] RIP: 0033:0x7fa71c99c819
[ 1830.222901][T12379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1830.242706][T12379] RSP: 002b:00007fa71d901028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1830.251238][T12379] RAX: ffffffffffffffda RBX: 00007fa71cc15fa0 RCX: 00007fa71c99c819
[ 1830.259228][T12379] RDX: 00000000000000e4 RSI: 0000000000064042 RDI: 0000200000000180
[ 1830.267211][T12379] RBP: 00007fa71ca32c91 R08: 0000000000000000 R09: 0000000000000000
[ 1830.275217][T12379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1830.283222][T12379] R13: 00007fa71cc16038 R14: 00007fa71cc15fa0 R15: 00007ffd5799e3c8
[ 1830.291224][T12379]  </TASK>
[ 1830.379667][T21343] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1830.389037][T12379] EXT4-fs error (device loop8): ext4_do_update_inode:5279: inode #2: comm syz.8.17359: corrupted inode contents
[ 1830.449815][T12379] EXT4-fs (loop8): Remounting filesystem read-only
[ 1830.458230][ T3932] device veth0_macvtap left promiscuous mode
[ 1830.481407][T12379] EXT4-fs error (device loop8): ext4_dirty_inode:6156: inode #2: comm syz.8.17359: mark_inode_dirty error
[ 1830.499308][T12379] EXT4-fs (loop8): Remounting filesystem read-only
[ 1830.506594][T12379] EXT4-fs error (device loop8): ext4_do_update_inode:5279: inode #2: comm syz.8.17359: corrupted inode contents
[ 1830.521733][T12379] EXT4-fs (loop8): Remounting filesystem read-only
[ 1830.528461][T12379] EXT4-fs error (device loop8): __ext4_ext_dirty:202: inode #2: comm syz.8.17359: mark_inode_dirty error
[ 1830.543072][T12379] EXT4-fs (loop8): Remounting filesystem read-only
[ 1830.567255][ T8777] EXT4-fs (loop8): unmounting filesystem.
[ 1830.608850][T21343] usb 8-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xE8, skipping
[ 1830.619823][T21343] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1830.633394][T17149] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[ 1830.641304][T21334] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1830.653905][T21343] usb 8-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[ 1830.664469][T21343] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1830.672934][T21343] usb 8-1: Product: syz
[ 1830.677228][T21343] usb 8-1: Manufacturer: syz
[ 1830.682152][T21343] usb 8-1: SerialNumber: syz
[ 1830.694076][T21343] usb 8-1: config 0 descriptor??
[ 1830.854654][T17149] usb 1-1: Using ep0 maxpacket: 32
[ 1830.859923][T21334] usb 4-1: Using ep0 maxpacket: 32
[ 1830.867738][T17149] usb 1-1: config 4 has an invalid interface number: 228 but max is 0
[ 1830.876137][T17149] usb 1-1: config 4 has no interface number 0
[ 1830.882848][T21334] usb 4-1: config 0 has an invalid interface number: 136 but max is 0
[ 1830.891192][T21334] usb 4-1: config 0 has no interface number 0
[ 1830.897672][T21334] usb 4-1: config 0 interface 136 altsetting 0 bulk endpoint 0xA has invalid maxpacket 32
[ 1830.911987][T17149] usb 1-1: config 4 interface 228 altsetting 68 endpoint 0x7 has an invalid bInterval 147, changing to 11
[ 1830.933289][T21334] usb 4-1: config 0 interface 136 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 224
[ 1830.949805][T17149] usb 1-1: config 4 interface 228 altsetting 68 endpoint 0x7 has invalid maxpacket 41529, setting to 1024
[ 1830.950843][ T5842] usb 8-1: USB disconnect, device number 10
[ 1830.961802][T17149] usb 1-1: config 4 interface 228 has no altsetting 0
[ 1830.979322][T21334] usb 4-1: New USB device found, idVendor=10cf, idProduct=8063, bcdDevice=d1.d2
[ 1830.988615][T21334] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1830.998295][T21334] usb 4-1: Product: syz
[ 1831.002524][T21334] usb 4-1: Manufacturer: syz
[ 1831.007408][T17149] usb 1-1: New USB device found, idVendor=0499, idProduct=a9a2, bcdDevice=c4.e8
[ 1831.016565][T17149] usb 1-1: New USB device strings: Mfr=1, Product=25, SerialNumber=3
[ 1831.025037][T21334] usb 4-1: SerialNumber: syz
[ 1831.030486][T17149] usb 1-1: Product: syz
[ 1831.035225][T21334] usb 4-1: config 0 descriptor??
[ 1831.040624][T17149] usb 1-1: Manufacturer: syz
[ 1831.045385][T17149] usb 1-1: SerialNumber: syz
[ 1831.045587][T12407] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 1831.057863][T12407] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 1831.069775][T21334] comedi comedi5: driver 'vmk80xx' has successfully auto-configured 'K8061 (VM140)'.
[ 1831.286249][T17149] usb 1-1: invalid MIDI in EP 0
[ 1831.315418][T17149] snd-usb-audio: probe of 1-1:4.228 failed with error -22
[ 1831.318948][ T5842] usb 4-1: USB disconnect, device number 46
[ 1831.324934][T17149] usb 1-1: USB disconnect, device number 6
[ 1831.571019][ T4259] udevd[4259]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:4.228/sound/card3/controlC3/../uevent} for writing: No such file or directory