last executing test programs:

4.478441334s ago: executing program 3 (id=8249):
r0 = syz_open_dev$MSR(&(0x7f0000000900), 0x0, 0x0)
read$msr(r0, 0x0, 0x0)

4.308454965s ago: executing program 3 (id=8253):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fe07124081173809499b0102030109022400010000000009040000028b8647000905e8ff000900000009050a", @ANYRES16], 0x0)
syz_usb_ep_read(r0, 0xa, 0x0, 0x0)

3.069369853s ago: executing program 0 (id=8274):
setreuid(0x0, 0xee00)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)

2.879684298s ago: executing program 0 (id=8277):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x2, 0xd, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@broadcast}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private2}}, @sadb_lifetime={0x4, 0x3}, @sadb_x_sec_ctx={0x1}]}, 0xc8}}, 0x0)

2.879526012s ago: executing program 1 (id=8278):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

2.836304078s ago: executing program 4 (id=8279):
r0 = syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1204408, &(0x7f0000000080)={[{@compress_force}, {@clear_cache}, {@nodatasum}, {@ref_verify}, {}, {@skip_balance}]}, 0x0, 0x51ab, &(0x7f000000a440)="$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")
ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000000)={0x105, 0x0, [0xde, 0x3, 0xfffffffffffffffc, 0x1006], 0x0})

2.818629932s ago: executing program 0 (id=8280):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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", @ANYRES32], 0x1, 0x4468, &(0x7f0000010780)="$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")

2.751168369s ago: executing program 1 (id=8281):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x80, &(0x7f00000000c0)={[{@barrier}, {@creator={'creator', 0x3d, "5a1b3b9a"}}, {@uid}, {@nobarrier}, {@gid}, {}, {@nls={'nls', 0x3d, 'cp437'}}]}, 0x46, 0x718, &(0x7f00000011c0)="$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")
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f00000000c0)='./file1\x00', 0x0, 0x1a29143, 0x0)

2.652745395s ago: executing program 3 (id=8282):
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file1\x00', 0x20e, &(0x7f0000003240)=ANY=[], 0x6, 0x36f, &(0x7f0000000200)="$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")
creat(&(0x7f00000001c0)='./file2\x00', 0x24)

2.439188937s ago: executing program 1 (id=8283):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@hyper})

2.379699895s ago: executing program 3 (id=8284):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)={0x10, 0x1419, 0x1}, 0x10}}, 0x0)

2.130620882s ago: executing program 3 (id=8286):
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x1, 0xbfdffffc}, &(0x7f00000000c0), &(0x7f0000000040))
rt_tgsigqueueinfo(0x0, 0x0, 0x4, &(0x7f0000000000)={0x0, 0x8, 0x406})

2.114210341s ago: executing program 1 (id=8287):
r0 = syz_open_dev$video(&(0x7f0000000c80), 0x5, 0x40240)
ioctl$VIDIOC_G_INPUT(r0, 0x80045626, &(0x7f0000000d40))

1.937588644s ago: executing program 3 (id=8288):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32, @ANYBLOB="0000000000800200380012800b0001006272696467650000280002800c002300fbffffffffffffff0500240000000001"], 0x58}}, 0x0)
syz_usb_connect(0x0, 0x5d, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000551b8920b822276080c20102030109024b0001000000000904000000020a0000052406000005241d00000d240f01000200000000000200072414003824d0062413"], 0x0)

1.871636198s ago: executing program 1 (id=8289):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000002c0)='./file0\x00', 0x44, &(0x7f00000000c0)=ANY=[], 0x1, 0x6216, &(0x7f000000cb40)="$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")
truncate(&(0x7f0000000080)='./file1\x00', 0xf000)

1.675234156s ago: executing program 2 (id=8291):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf25080021"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)

1.508619619s ago: executing program 2 (id=8292):
r0 = socket$inet(0x2, 0x3, 0x1)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f00000003c0)={0x2, 0x0, @multicast2}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000400)='\b\x00', 0x2}, {0x0}], 0x2, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000007000000890704ac1414aa001c000000000000000000000008"], 0x38}, 0x0)

1.303535518s ago: executing program 2 (id=8293):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x21}]}}}]}, 0x3c}}, 0x0)

1.156869427s ago: executing program 4 (id=8294):
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_sack\x00', 0x1, 0x0)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)='\n7', 0x2}], 0x1)

1.050460857s ago: executing program 2 (id=8295):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, 0x0)

771.75922ms ago: executing program 2 (id=8296):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000580)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xae}, @printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x25}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

771.045071ms ago: executing program 0 (id=8297):
r0 = epoll_create(0x3)
epoll_pwait(r0, &(0x7f0000000180)=[{}], 0x1, 0x2, &(0x7f0000000300)={[0x5]}, 0x8)

738.360745ms ago: executing program 4 (id=8298):
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)

539.673046ms ago: executing program 0 (id=8299):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000f00)='./file0\x00', 0x0, &(0x7f0000000f40)=ANY=[@ANYBLOB="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"], 0x1, 0xf01, &(0x7f0000002d40)="$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")
link(&(0x7f0000000940)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

517.272439ms ago: executing program 4 (id=8300):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2865)
writev(r0, &(0x7f0000000740)=[{&(0x7f00000000c0)="cc5e", 0x2}], 0x1)

501.54686ms ago: executing program 2 (id=8301):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000080)={[{@bsdgroups}, {@grpquota}, {@init_itable}, {@errors_remount}, {@nomblk_io_submit}]}, 0x2, 0xbb8, &(0x7f00000017c0)="$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")
rmdir(&(0x7f0000000080)='./file0\x00')

220.858474ms ago: executing program 4 (id=8302):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f00000004c0)={0x100, {{0x2, 0x4e25, @multicast1}}, {{0x2, 0x4e20, @loopback}}}, 0x108)

220.655897ms ago: executing program 1 (id=8303):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
write(r0, 0x0, 0x0)

8.963271ms ago: executing program 4 (id=8304):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010000000900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a32000000008c000000060a010400000000000000000100000008000b400000000064000480340001800b000100657874686472000024000280080001400000000f0800034000000001080004400000002205000200070000002c0001800a00010072656469720000001c0002800800024000000016080001400000001208000340000000020900010073797a30"], 0x100}}, 0x0)

0s ago: executing program 0 (id=8305):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r0, &(0x7f0000000a40)={0x23d, 0x7d, 0x0, {{0x500, 0xfc, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1f, '\x04nodev{evbox%\xff\xff\xff\x81\x02\x00\x00\x00\x00\x00\x00\xff\n\xbc\x92\xff`\x00', 0x2c, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb5\xf6\x1d\x8d\xd8\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00;Y_\xcb\x14\x03C\xda>\xf7uS\xab4\xd5\x15\x1a\x1e6\x04P\xb1T\aT\x99\x8c8\xe0V\v\xf0-\xd8\v\xb1\xef\xb24\xd5\x9e\x13Q\xe4\x85\x98\x00\x00\x00\x00\x00\x00\x00\x00', 0x1d, '\xcf\xc2\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf3\x13\xf6z\xd4\xd9\x8b\xf8\xc2\xa5c3\x80\xca\x00^\xdc\x02SL\xbc\x9flF\x9f\xcb\xf0\xa2\xcb\x8d>\xbc&Q\xeb\xf0m\xff\xe9\xd2k\xa5\'t\xd7\xd3\x1bD\xa5\xde\x01\x13;\xd4-\xf8\x05F\x1a\xe69b\xe1\xcf\xb5\x14\xa1\xb1\x9e\xab\xe8\x94\xbel\xe0G\xf4\x1d\xbd\\\xf0\x03\xf4\xbe\xc1;y>+\x10\x05\xca\v\xac\xe0\x01\x84\xfa\xe0\n\xff\x0f1\xf4\xf5\xed\xe9\xf18\x94\xcbFs\x89\xe30\x06\xc6\xfe\xba\xa0\x0e\xf8o\xe3\xcb\x86Q\xfe4\xff\xd3\xa7|\xf9\xf1\xae\x1b\xcf\x93\xe4\xb6*\x99P\xd9\xb4x\xd4\xb47$p\n\xe8\xac:\xcfr\xe3\xed0s^\xb0W/z?\xae\x89\"\x8cw\xc4\x85\xfb\xcd\xceq8\n\x9a\xd3z.\xaa\x9ax\x1d\x8flM\xdeg2\x8c\xf6', 0x55, '\xf8\xf6i\xfbhm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec%\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xd4\x89\xdad\x9a7\x00'}, 0x12c, 'odev-n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0xffffff63)

kernel console output (not intermixed with test programs):

Number=3
[  729.619455][ T5940] usb 4-1: Product: syz
[  729.628210][ T5940] usb 4-1: Manufacturer: syz
[  729.638306][ T5940] usb 4-1: SerialNumber: syz
[  729.643281][T21474] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6528'.
[  729.729691][ T6189] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  729.907447][ T5940] usb 4-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  729.912951][ T6189] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  729.925974][ T5940] usb 4-1: MIDIStreaming interface descriptor not found
[  729.956379][ T6189] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  729.989845][ T6189] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  730.005869][ T5940] usb 4-1: USB disconnect, device number 24
[  730.024787][ T6189] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  730.073510][ T6189] usb 2-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  730.106455][ T6189] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  730.137338][ T7131] udevd[7131]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  730.166273][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  730.170473][ T6189] usb 2-1: config 0 descriptor??
[  730.182529][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  730.189191][T21458] loop2: detected capacity change from 0 to 32768
[  730.219040][T21458] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6522 (21458)
[  730.246240][T21458] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  730.262994][T21458] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  730.272661][T21494] netlink: 72 bytes leftover after parsing attributes in process `syz.4.6535'.
[  730.302355][T21458] BTRFS info (device loop2): disk space caching is enabled
[  730.309588][T21458] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  730.400316][ T6189] hdpvr 2-1:0.0: firmware version 0x1e dated þÀq|RC¾@µ2£¹ö2[Ì7ÔB½�ËDŠ^jvi0ì
[  730.400316][ T6189] †Ã“‘êpY
[  730.436492][T21458] BTRFS info (device loop2): rebuilding free space tree
[  730.497320][T21458] BTRFS info (device loop2): disabling free space tree
[  730.517087][T21458] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  730.580538][T21458] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  730.617618][ T6189] hdpvr 2-1:0.0: device init failed
[  730.626385][ T6189] hdpvr 2-1:0.0: probe with driver hdpvr failed with error -12
[  730.685810][ T6189] usb 2-1: USB disconnect, device number 5
[  730.744599][T21458] BTRFS error (device loop2): balance: mixed groups data and metadata options must be the same
[  730.851908][T21524] loop4: detected capacity change from 0 to 256
[  730.879972][ T6046] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  730.880130][T21524] exfat: Deprecated parameter 'utf8'
[  730.947545][T21524] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  731.344357][T21538] MPI: mpi too large (124808 bits)
[  732.028376][   T30] audit: type=1326 audit(1752150083.682:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21563 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  732.050744][    C1] vkms_vblank_simulate: vblank timer overrun
[  732.126477][T21568] mac80211_hwsim hwsim10 þÿ: renamed from wlan0
[  732.135768][   T30] audit: type=1326 audit(1752150083.728:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21563 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  732.220886][   T30] audit: type=1326 audit(1752150083.728:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21563 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  732.321276][   T30] audit: type=1326 audit(1752150083.728:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21563 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  732.414439][   T30] audit: type=1326 audit(1752150083.728:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21563 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  732.538246][T21574] loop2: detected capacity change from 0 to 4096
[  732.562972][T21578] netlink: 248 bytes leftover after parsing attributes in process `syz.1.6567'.
[  732.802023][T21583] netlink: 2 bytes leftover after parsing attributes in process `syz.4.6569'.
[  732.822218][T21574] ntfs3(loop2): ino=1e, "file1" attr_set_size
[  732.853773][T21574] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  732.982909][T21586] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6571'.
[  733.169906][T21560] loop3: detected capacity change from 0 to 40427
[  733.179412][T21560] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  733.246270][T21560] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  733.267456][T21560] F2FS-fs (loop3): invalid crc value
[  733.348259][ T6189] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  733.663274][T21560] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  733.677456][T21560] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  733.684830][   T44] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  733.697267][T21560] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  733.746809][ T6189] usb 3-1: Using ep0 maxpacket: 16
[  733.753820][ T6189] usb 3-1: config 8 has an invalid interface number: 206 but max is 0
[  733.768467][ T6189] usb 3-1: config 8 has no interface number 0
[  733.784130][ T6189] usb 3-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[  733.812138][ T6189] usb 3-1: config 8 interface 206 altsetting 1 endpoint 0x87 has invalid maxpacket 33058, setting to 1024
[  733.824057][ T6189] usb 3-1: config 8 interface 206 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 9
[  733.855570][ T6189] usb 3-1: config 8 interface 206 has no altsetting 0
[  733.864679][ T6189] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[  733.866392][   T44] usb 2-1: Using ep0 maxpacket: 16
[  733.892034][   T44] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  733.898433][ T6189] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  733.905878][   T44] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  733.924717][   T44] usb 2-1: config 0 interface 0 has no altsetting 0
[  733.930924][ T6189] usb 3-1: Product: syz
[  733.933912][   T44] usb 2-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  733.935447][ T6189] usb 3-1: Manufacturer: syz
[  733.948728][   T44] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  733.949673][ T6189] usb 3-1: SerialNumber: syz
[  733.957185][   T44] usb 2-1: Product: syz
[  733.957202][   T44] usb 2-1: Manufacturer: syz
[  733.957217][   T44] usb 2-1: SerialNumber: syz
[  733.960321][   T44] usb 2-1: config 0 descriptor??
[  734.241363][ T6189] garmin_gps 3-1:8.206: Garmin GPS usb/tty converter detected
[  734.270997][ T6189] usb 3-1: Garmin GPS usb/tty converter now attached to ttyUSB0
[  734.523322][   T44] usb 2-1: USB disconnect, device number 6
[  734.558034][ T6189] usb 3-1: USB disconnect, device number 22
[  734.576270][ T6189] garmin_gps ttyUSB0: Garmin GPS usb/tty converter now disconnected from ttyUSB0
[  734.604294][ T6189] garmin_gps 3-1:8.206: device disconnected
[  735.397999][T21633] loop1: detected capacity change from 0 to 128
[  735.802752][T21648] loop3: detected capacity change from 0 to 64
[  735.906294][T21652] netlink: 'syz.2.6596': attribute type 1 has an invalid length.
[  735.944198][T21652] netlink: 224 bytes leftover after parsing attributes in process `syz.2.6596'.
[  736.088180][T21597] syz.0.6576 (21597): drop_caches: 3
[  736.490361][T21675] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6607'.
[  737.215412][T21712] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  737.224258][T21712] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  737.243946][T21712] overlayfs: missing 'lowerdir'
[  737.617684][T21733] loop4: detected capacity change from 0 to 16
[  737.642130][T21736] No source specified
[  737.652934][T21733] erofs (device loop4): mounted with root inode @ nid 36.
[  737.698013][T21733] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36
[  737.743207][T21733] erofs (device loop4): failed to decompress -30 in[64, 4032] out[1851]
[  737.776444][T21733] erofs (device loop4): read error -117 @ 43 of nid 36
[  738.173690][T21756] netlink: 'syz.3.6646': attribute type 28 has an invalid length.
[  738.195519][T21756] netlink: 'syz.3.6646': attribute type 29 has an invalid length.
[  738.226351][T21756] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6646'.
[  738.448155][T21767] loop1: detected capacity change from 0 to 512
[  738.477323][T21767] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  738.580020][T21767] EXT4-fs (loop1): 1 truncate cleaned up
[  738.590073][T21767] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  738.769187][ T6040] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  738.889993][T21790] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  739.117696][T21798] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[  739.141980][T21800] loop4: detected capacity change from 0 to 8
[  739.386443][   T30] audit: type=1326 audit(1752150090.484:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21813 comm="syz.3.6675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  739.486234][   T30] audit: type=1326 audit(1752150090.484:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21813 comm="syz.3.6675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  739.549602][   T30] audit: type=1326 audit(1752150090.512:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21813 comm="syz.3.6675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  739.656361][T21825] loop2: detected capacity change from 0 to 2048
[  739.660164][   T30] audit: type=1326 audit(1752150090.512:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21813 comm="syz.3.6675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  739.739857][   T30] audit: type=1326 audit(1752150090.512:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21813 comm="syz.3.6675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  739.776609][T21829] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  739.811147][T21825] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=203
[  739.869743][T21825] Remounting filesystem read-only
[  740.755717][T21878] loop1: detected capacity change from 0 to 512
[  740.776677][T21878] EXT4-fs: Ignoring removed oldalloc option
[  740.785605][T21878] EXT4-fs: inline encryption not supported
[  740.794469][T21878] EXT4-fs: Ignoring removed mblk_io_submit option
[  740.825548][T21878] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  740.847314][T21883] netlink: 'syz.0.6706': attribute type 13 has an invalid length.
[  740.872766][T21870] bridge0: port 2(bridge_slave_1) entered disabled state
[  740.880152][T21870] bridge0: port 1(bridge_slave_0) entered disabled state
[  740.965100][T21878] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.6705: bg 0: block 64: padding at end of block bitmap is not set
[  740.994343][T21878] Quota error (device loop1): write_blk: dquota write failed
[  741.012863][T21878] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  741.024875][T21878] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.6705: Failed to acquire dquot type 0
[  741.038331][T21878] EXT4-fs (loop1): 1 truncate cleaned up
[  741.045650][T21878] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  741.066391][T21878] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  741.197527][T21870] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  741.219432][T21870] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  741.237679][T21893] program syz.1.6711 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  741.499542][T21897] loop1: detected capacity change from 0 to 2048
[  741.535489][T21897] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  741.767245][T21870] bridge1: left promiscuous mode
[  741.777202][T21870] geneve2: left promiscuous mode
[  741.798718][T21870] xfrm1: left promiscuous mode
[  741.803514][T21870] xfrm1: left allmulticast mode
[  741.819822][T21871] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6701'.
[  741.861986][T21871] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6701'.
[  741.900932][T21871] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6701'.
[  741.957595][T21891] geneve2: entered promiscuous mode
[  741.968141][T21891] geneve2: entered allmulticast mode
[  742.013277][ T3504] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  742.059381][ T3504] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  742.108866][T21908] netlink: 'syz.2.6719': attribute type 5 has an invalid length.
[  742.137788][ T3504] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  742.177767][ T3504] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  742.239950][T21917] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  742.431752][T21927] openvswitch: netlink: IP tunnel dst address not specified
[  742.537281][T21932] ipt_ECN: cannot use operation on non-tcp rule
[  742.711499][T21937] netlink: 132 bytes leftover after parsing attributes in process `syz.2.6733'.
[  742.815957][T21945] loop1: detected capacity change from 0 to 512
[  742.879444][T21945] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  742.913507][T21945] EXT4-fs warning (device loop1): dx_probe:837: inode #2: comm syz.1.6735: Unimplemented hash flags: 0x0001
[  743.007499][T21945] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.6735: Corrupt directory, running e2fsck is recommended
[  743.212981][ T6040] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  743.262869][T21967] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6747'.
[  743.317857][T21967] netlink: 'syz.3.6747': attribute type 1 has an invalid length.
[  743.569106][T21987] loop2: detected capacity change from 0 to 64
[  743.620402][T21986] openvswitch: netlink: Tunnel attr 31 out of range max 16
[  743.754729][T21992] loop3: detected capacity change from 0 to 64
[  743.835627][T21995] overlayfs: unescaped trailing colons in lowerdir mount option.
[  744.273135][   T30] audit: type=1326 audit(1752150094.998:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.2.6770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  744.356446][   T30] audit: type=1326 audit(1752150094.998:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.2.6770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  744.415356][   T30] audit: type=1326 audit(1752150095.026:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.2.6770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  744.514425][T16336] Bluetooth: hci3: Invalid handle: 0x203a > 0x0eff
[  744.848075][T22040] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-xor(2)
[  744.958211][T22000] loop4: detected capacity change from 0 to 32768
[  745.316076][T22064] bridge3: entered allmulticast mode
[  745.373764][T22000] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,str_hash=crc32c,noacl,usrquota,grpquota,nojournal_transaction_names,allocator_stuck_timeout=256
[  745.373789][T22000]   allowing incompatible features above 0.0: (unknown version)
[  745.373800][T22000]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  745.377436][T22068] 
: renamed from bond_slave_0
[  745.423451][T22000] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  745.442895][T22000] bcachefs (loop4): initializing new filesystem
[  745.567010][T22000] bcachefs (loop4): going read-write
[  745.610549][T22000] bcachefs (loop4): marking superblocks
[  745.668062][T22078] loop1: detected capacity change from 0 to 1024
[  745.697317][T22078] EXT4-fs: Ignoring removed orlov option
[  745.707810][T22078] EXT4-fs: Ignoring removed orlov option
[  745.740606][T22000] bcachefs (loop4): initializing freespace
[  745.770881][T22000] bcachefs (loop4): done initializing freespace
[  745.800744][T22000] bcachefs (loop4): reading snapshots table
[  745.800795][T22000] bcachefs (loop4): reading snapshots done
[  745.818120][T22078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  745.856209][T22039] loop3: detected capacity change from 0 to 32768
[  745.858846][T22078] EXT4-fs error (device loop1): ext4_xattr_set_entry:1660: inode #13: comm syz.1.6796: corrupted xattr entries
[  745.866537][T22000] bcachefs (loop4): done starting filesystem
[  745.869981][T22039] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6782 (22039)
[  745.942819][T22039] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  745.942893][T22039] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  745.942950][T22039] BTRFS info (device loop3): using free-space-tree
[  746.085018][ T6040] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  746.186894][ T6038] bcachefs (loop4): shutting down
[  746.191950][ T6038] bcachefs (loop4): going read-only
[  746.198249][ T6038] bcachefs (loop4): finished waiting for writes to stop
[  746.225038][ T6038] bcachefs (loop4): flushing journal and stopping allocators, journal seq 2
[  746.339388][ T6052] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  746.386997][ T6038] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 3
[  746.423001][ T6038] bcachefs (loop4): clean shutdown complete, journal seq 4
[  746.431005][ T6038] bcachefs (loop4): marking filesystem clean
[  746.652014][T22110] loop1: detected capacity change from 0 to 4096
[  746.672672][ T6038] bcachefs (loop4): shutdown complete
[  746.795499][T22118] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  747.313985][T22130] bridge0: port 2(bridge_slave_1) entered disabled state
[  747.321367][T22130] bridge0: port 1(bridge_slave_0) entered disabled state
[  748.016236][T22131] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  748.646652][T22184] loop1: detected capacity change from 0 to 2048
[  748.723385][T22184] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  748.749556][T22194] No source specified
[  748.840587][T22198] loop3: detected capacity change from 0 to 8
[  749.009440][T22200] geneve2: entered promiscuous mode
[  749.045022][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  749.045038][   T30] audit: type=1326 audit(1752150099.391:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22202 comm="syz.0.6850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  749.088412][T22200] geneve2: entered allmulticast mode
[  749.157983][   T30] audit: type=1326 audit(1752150099.391:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22202 comm="syz.0.6850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  749.210268][T22210] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6852'.
[  749.229672][   T30] audit: type=1326 audit(1752150099.438:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22202 comm="syz.0.6850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  749.293034][   T30] audit: type=1326 audit(1752150099.438:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22202 comm="syz.0.6850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  749.365147][   T30] audit: type=1326 audit(1752150099.438:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22202 comm="syz.0.6850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  749.492714][T22217] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  749.511138][T22217] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  749.865528][T22204] loop2: detected capacity change from 0 to 32768
[  750.004172][T22239] netlink: 'syz.3.6866': attribute type 1 has an invalid length.
[  750.030929][T22204] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  750.136587][   T30] audit: type=1800 audit(1752150100.407:136): pid=22204 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.6849" name="bus" dev="loop2" ino=17058 res=0 errno=0
[  750.285364][ T6046] ocfs2: Unmounting device (7,2) on (node local)
[  750.301948][T22251] loop3: detected capacity change from 0 to 512
[  750.349164][T22257] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  750.419633][T22251] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  750.488140][T22251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  750.594243][T22251] ext4 filesystem being mounted at /1309/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  750.615693][T13984] usb 1-1: new full-speed USB device number 14 using dummy_hcd
[  750.707969][T22251] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.6873: corrupted xattr block 19: overlapping e_value 
[  750.708657][T22272] loop4: detected capacity change from 0 to 128
[  750.776480][T22251] EXT4-fs error (device loop3): ext4_get_inode_usage:884: inode #15: comm syz.3.6873: corrupted xattr block 19: overlapping e_value 
[  750.816616][T13984] usb 1-1: config 0 has an invalid interface number: 52 but max is 0
[  750.826310][T13984] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  750.852687][T13984] usb 1-1: config 0 has no interface number 0
[  750.862612][T22274] netlink: 'syz.2.6882': attribute type 2 has an invalid length.
[  750.872441][T22272] FAT-fs (loop4): Directory bread(block 32) failed
[  750.891946][T13984] usb 1-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  750.892598][T22274] netlink: 'syz.2.6882': attribute type 1 has an invalid length.
[  750.903649][T22272] FAT-fs (loop4): Directory bread(block 33) failed
[  750.931774][T13984] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  750.948522][T22272] FAT-fs (loop4): Directory bread(block 34) failed
[  750.955234][T13984] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  750.977988][T22272] FAT-fs (loop4): Directory bread(block 35) failed
[  750.998057][T22272] FAT-fs (loop4): Directory bread(block 36) failed
[  751.004704][T22272] FAT-fs (loop4): Directory bread(block 37) failed
[  751.006981][T13984] usb 1-1: config 0 interface 52 has no altsetting 0
[  751.011957][T22272] FAT-fs (loop4): Directory bread(block 38) failed
[  751.024561][T22272] FAT-fs (loop4): Directory bread(block 39) failed
[  751.033149][ T6052] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  751.042900][T22272] FAT-fs (loop4): Directory bread(block 40) failed
[  751.060919][T22272] FAT-fs (loop4): Directory bread(block 41) failed
[  751.065091][T13984] usb 1-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  751.096244][T13984] usb 1-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  751.114456][T13984] usb 1-1: Product: syz
[  751.122440][T13984] usb 1-1: SerialNumber: syz
[  751.130076][T13984] usb 1-1: config 0 descriptor??
[  751.370516][T22272] syz.4.6880: attempt to access beyond end of device
[  751.370516][T22272] loop4: rw=0, sector=4108, nr_sectors = 4 limit=128
[  751.412445][T13984] input: syz (Stick) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.52/input/input65
[  751.442067][T22272] FAT-fs (loop4): Filesystem has been set read-only
[  751.448783][T22272] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF
[  751.714410][T13984] usb 1-1: USB disconnect, device number 14
[  751.720371][    C0] synaptics_usb 1-1:0.52: synusb_irq - usb_submit_urb failed with result: -19
[  751.806061][ T5204] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -19
[  752.216235][T22306] loop3: detected capacity change from 0 to 4096
[  752.271666][T22316] loop4: detected capacity change from 0 to 16
[  752.301942][T22316] erofs (device loop4): mounted with root inode @ nid 36.
[  752.368130][T22306] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  752.510795][T22306] ntfs3(loop3): Failed to load $Extend (-22).
[  752.540535][T22306] ntfs3(loop3): Failed to initialize $Extend.
[  752.598725][T22324] netlink: 52 bytes leftover after parsing attributes in process `syz.2.6906'.
[  752.934299][T22337] IPVS: sync thread started: state = BACKUP, mcast_ifn = dummy0, syncid = 3, id = 0
[  753.071464][T22311] loop1: detected capacity change from 0 to 32768
[  753.121959][T22343] netlink: 'syz.0.6915': attribute type 1 has an invalid length.
[  753.258378][T22311] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,str_hash=crc32c,journal_flush_disabled,norecovery,reconstruct_alloc
[  753.258394][T22311]   allowing incompatible features above 0.0: (unknown version)
[  753.258400][T22311]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  753.368766][T22311] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  753.377046][T22311] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  753.421223][T22311] bcachefs (loop1): Version upgrade required:
[  753.421223][T22311] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  753.421223][T22311] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  753.421223][T22311]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  753.520998][T22358] loop2: detected capacity change from 0 to 512
[  753.528230][T22358] EXT4-fs: Ignoring removed orlov option
[  753.565605][T22311] bcachefs (loop1): dropping and reconstructing all alloc info
[  753.584447][T22358] EXT4-fs: inline encryption not supported
[  753.590291][T22358] EXT4-fs: Ignoring removed mblk_io_submit option
[  753.654460][T22358] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  753.732214][T22358] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6919: bg 0: block 64: padding at end of block bitmap is not set
[  753.733878][T22311] bcachefs (loop1): accounting_read...
[  753.794503][T22358] Quota error (device loop2): write_blk: dquota write failed
[  753.840596][T22311]  done
[  753.844827][T22358] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  753.846555][T22311] bcachefs (loop1): alloc_read... done
[  753.861848][T22311] bcachefs (loop1): snapshots_read... done
[  753.869248][T22358] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.6919: Failed to acquire dquot type 0
[  753.903217][T22358] EXT4-fs (loop2): 1 truncate cleaned up
[  753.909713][T22311] bcachefs (loop1): done starting filesystem
[  753.960918][T22358] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  754.095132][ T6046] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  754.122313][T22383] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6930'.
[  754.153022][ T6040] bcachefs (loop1): shutting down
[  754.201445][T22381] loop4: detected capacity change from 0 to 4096
[  754.221334][ T6040] bcachefs (loop1): shutdown complete
[  754.237228][T22381] ntfs3(loop4): Primary boot: invalid index size -14.
[  754.246214][T22381] ntfs3(loop4): try to read out of volume at offset 0x1ffe00
[  754.330311][T22381] syz.4.6929: attempt to access beyond end of device
[  754.330311][T22381] loop4: rw=0, sector=16, nr_sectors = 2 limit=0
[  754.718935][T22377] loop3: detected capacity change from 0 to 32768
[  755.119382][T22418] loop2: detected capacity change from 0 to 1024
[  755.224845][   T13] hfsplus: b-tree write err: -5, ino 4
[  755.313515][T22422] loop4: detected capacity change from 0 to 64
[  755.787048][T22443] xt_TPROXY: Can be used only with -p tcp or -p udp
[  755.911278][T22377] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[  755.911303][T22377]   allowing incompatible features above 0.0: (unknown version)
[  755.911314][T22377]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  755.976206][T22452] loop1: detected capacity change from 0 to 512
[  756.014303][T22452] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  756.014403][T22452] ext4 filesystem being mounted at /1392/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  756.086796][T22377] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  756.095340][T22377] bcachefs (loop3): initializing new filesystem
[  756.137479][T22377] bcachefs (loop3): going read-write
[  756.177960][T22377] bcachefs (loop3): marking superblocks
[  756.212196][ T6040] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  756.227324][T22377] bcachefs (loop3): initializing freespace
[  756.256783][T22377] bcachefs (loop3): done initializing freespace
[  756.288070][T22377] bcachefs (loop3): reading snapshots table
[  756.314257][T22377] bcachefs (loop3): reading snapshots done
[  756.363863][T22377] bcachefs (loop3): done starting filesystem
[  756.373083][T22466] loop2: detected capacity change from 0 to 64
[  756.625563][ T6052] bcachefs (loop3): shutting down
[  756.639539][ T6052] bcachefs (loop3): going read-only
[  756.667097][ T6052] bcachefs (loop3): finished waiting for writes to stop
[  756.689217][T22477] netlink: 96 bytes leftover after parsing attributes in process `syz.1.6971'.
[  756.703693][ T6052] bcachefs (loop3): flushing journal and stopping allocators, journal seq 8
[  756.797272][ T6052] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 11
[  756.828535][ T6052] bcachefs (loop3): clean shutdown complete, journal seq 12
[  756.838044][ T6052] bcachefs (loop3): marking filesystem clean
[  756.963792][ T6052] bcachefs (loop3): shutdown complete
[  757.171134][T22497] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6981'.
[  757.247109][T22500] loop1: detected capacity change from 0 to 4096
[  757.265597][T22500] EXT4-fs: inline encryption not supported
[  757.295908][T22500] EXT4-fs: Ignoring removed oldalloc option
[  757.361454][T22500] EXT4-fs (loop1): Test dummy encryption mode enabled
[  757.388180][T22500] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  757.566499][ T6040] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  757.791733][ T5940] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  757.843212][T22524] loop2: detected capacity change from 0 to 1764
[  757.983495][ T5940] usb 1-1: Using ep0 maxpacket: 16
[  757.995882][ T5940] usb 1-1: config 0 has an invalid interface number: 69 but max is 0
[  758.012714][ T5940] usb 1-1: config 0 has no interface number 0
[  758.028837][ T5940] usb 1-1: New USB device found, idVendor=05ac, idProduct=0274, bcdDevice=f9.c2
[  758.050118][ T5940] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  758.068047][ T5940] usb 1-1: Product: syz
[  758.076705][ T5940] usb 1-1: Manufacturer: syz
[  758.081476][ T5940] usb 1-1: SerialNumber: syz
[  758.118340][ T5940] usb 1-1: config 0 descriptor??
[  758.146450][ T5940] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.69/input/input66
[  758.299813][T22540] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  758.307391][T22540] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  758.369173][ T5204] bcm5974 1-1:0.69: could not read from device
[  758.378473][T22542] netlink: 'syz.2.7003': attribute type 32 has an invalid length.
[  758.397004][ T5204] bcm5974 1-1:0.69: could not read from device
[  758.419544][ T5940] usb 1-1: USB disconnect, device number 15
[  758.426319][ T5204] bcm5974 1-1:0.69: could not read from device
[  758.995760][T22556] loop3: detected capacity change from 0 to 2048
[  759.086319][T22556] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  759.220129][T22565] openvswitch: netlink: IP tunnel dst address not specified
[  759.275881][ T6052] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  759.496837][T22554] loop2: detected capacity change from 0 to 32768
[  759.573370][T22554] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  759.650117][T22554] OCFS2: ERROR (device loop2): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #17056 has bad chain 1280
[  759.695058][T22554] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  759.740929][T22554] OCFS2: File system is now read-only.
[  759.746632][T22554] (syz.2.7009,22554,0):ocfs2_search_chain:1817 ERROR: status = -30
[  759.774243][T22554] (syz.2.7009,22554,1):ocfs2_search_chain:1940 ERROR: status = -30
[  759.803266][T22554] (syz.2.7009,22554,1):ocfs2_claim_suballoc_bits:2010 ERROR: status = -30
[  759.824975][T22554] (syz.2.7009,22554,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[  759.860839][T22554] (syz.2.7009,22554,0):ocfs2_claim_new_inode:2298 ERROR: status = -30
[  759.877809][T22554] (syz.2.7009,22554,0):ocfs2_claim_new_inode:2313 ERROR: status = -30
[  759.887128][T22554] (syz.2.7009,22554,0):ocfs2_mknod_locked:641 ERROR: status = -30
[  759.896227][T22554] (syz.2.7009,22554,0):ocfs2_mknod:388 ERROR: status = -30
[  759.903902][T22554] (syz.2.7009,22554,0):ocfs2_mknod:505 ERROR: status = -30
[  759.911211][T22554] (syz.2.7009,22554,0):ocfs2_create:678 ERROR: status = -30
[  759.968190][ T6046] ocfs2: Unmounting device (7,2) on (node local)
[  760.161739][T22588] loop3: detected capacity change from 0 to 32768
[  760.331364][T22588] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  760.331390][T22588]   allowing incompatible features above 0.0: (unknown version)
[  760.331401][T22588]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  760.341616][T22605] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode
[  760.354062][T22588] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  760.354173][T22588] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  760.354409][T22588] bcachefs (loop3): Version upgrade required:
[  760.354409][T22588] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  760.354409][T22588] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  760.354409][T22588]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  760.415670][T22605] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[  760.472410][    C1] vkms_vblank_simulate: vblank timer overrun
[  760.519088][T22588] bcachefs (loop3): dropping and reconstructing all alloc info
[  760.623245][T22588] bcachefs (loop3): accounting_read... done
[  760.666682][T22588] bcachefs (loop3): alloc_read... done
[  760.677349][T22588] bcachefs (loop3): snapshots_read... done
[  760.685091][T22588] bcachefs (loop3): done starting filesystem
[  760.912402][ T6052] bcachefs (loop3): shutting down
[  760.998156][T22625] loop2: detected capacity change from 0 to 64
[  761.035759][ T6052] bcachefs (loop3): shutdown complete
[  761.038209][T22625] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[  761.372920][T22640] netlink: 232 bytes leftover after parsing attributes in process `syz.2.7045'.
[  761.666767][ T6189] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  761.848596][ T6189] usb 1-1: Using ep0 maxpacket: 16
[  761.871788][ T6189] usb 1-1: New USB device found, idVendor=1943, idProduct=2257, bcdDevice=91.ed
[  761.888282][ T6189] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  761.900745][ T6189] usb 1-1: Product: syz
[  761.907336][ T6189] usb 1-1: Manufacturer: syz
[  761.922927][ T6189] usb 1-1: SerialNumber: syz
[  761.949337][ T6189] usb 1-1: config 0 descriptor??
[  761.968505][ T6189] s2255 1-1:0.0: Could not find bulk-in endpoint
[  761.982820][ T6189] Sensoray 2255 driver load failed: 0xfffffff4
[  761.991191][ T6189] s2255 1-1:0.0: probe with driver s2255 failed with error -12
[  762.090817][T22669] loop1: detected capacity change from 0 to 256
[  762.215115][ T6162] usb 1-1: USB disconnect, device number 16
[  763.000223][T22699] loop2: detected capacity change from 0 to 1024
[  763.000472][T22700] new mount options do not match the existing superblock, will be ignored
[  763.022174][T22702] snd_dummy snd_dummy.0: control 2:16:0:syz0:-3 is already present
[  763.316143][T22714] netlink: 'syz.2.7081': attribute type 21 has an invalid length.
[  763.538492][T22727] netlink: 'syz.3.7087': attribute type 1 has an invalid length.
[  763.538621][T22728] AppArmor: change_hat: Invalid input ''
[  763.561287][T22727] netlink: 17 bytes leftover after parsing attributes in process `syz.3.7087'.
[  764.207557][ T6189] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  764.405203][T22776] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  764.420566][ T6189] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  764.427105][T22776] batadv_slave_0: entered promiscuous mode
[  764.447799][T22776] batadv_slave_0: entered allmulticast mode
[  764.456056][ T6189] usb 2-1: New USB device found, idVendor=0572, idProduct=0041, bcdDevice=70.54
[  764.465241][ T6189] usb 2-1: New USB device strings: Mfr=1, Product=34, SerialNumber=7
[  764.469884][T22776] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  764.499375][ T6189] usb 2-1: Product: syz
[  764.503987][ T6189] usb 2-1: Manufacturer: syz
[  764.512365][ T6189] usb 2-1: SerialNumber: syz
[  764.549245][ T6189] usb 2-1: config 0 descriptor??
[  764.577024][ T6189] gspca_main: conex-2.14.0 probing 0572:0041
[  764.868082][T22760] loop4: detected capacity change from 0 to 32768
[  764.900512][ T6189] usb 2-1: USB disconnect, device number 7
[  765.159935][T22801] netlink: 'syz.3.7122': attribute type 1 has an invalid length.
[  765.198732][T22801] netlink: 224 bytes leftover after parsing attributes in process `syz.3.7122'.
[  765.209485][ T5940] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  765.383081][ T5940] usb 3-1: Using ep0 maxpacket: 8
[  765.391726][ T5940] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  765.413744][ T5940] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  765.450611][ T5940] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  765.480270][ T5940] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  765.551712][ T5940] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  765.583714][ T5940] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  765.620925][ T5940] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  765.647434][ T5940] usb 3-1: config 0 descriptor??
[  765.664416][T22794] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  766.169918][   T10] usb 3-1: USB disconnect, device number 23
[  766.178649][T16336] Bluetooth: hci5: Opcode 0x0c03 failed: -19
[  766.235221][T22845] netlink: 'syz.4.7143': attribute type 1 has an invalid length.
[  766.262129][T22849] netlink: 48 bytes leftover after parsing attributes in process `syz.0.7146'.
[  766.438392][T22855] openvswitch: netlink: Missing valid actions attribute.
[  766.466190][T22855] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  766.668020][T22861] loop1: detected capacity change from 0 to 2048
[  766.709411][T22861] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=2361, location=2361
[  766.750416][T22861] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  766.825118][T22861] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  766.857327][T22861] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 2016: 0x5c != 0x1b
[  766.921660][T22861] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  767.513428][T22905] netlink: 'syz.1.7173': attribute type 21 has an invalid length.
[  767.561440][T22905] netlink: 164 bytes leftover after parsing attributes in process `syz.1.7173'.
[  767.630429][T22913] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7178'.
[  767.764293][T22921] sctp: [Deprecated]: syz.0.7182 (pid 22921) Use of int in maxseg socket option.
[  767.764293][T22921] Use struct sctp_assoc_value instead
[  767.786404][T22917] loop1: detected capacity change from 0 to 2048
[  767.815912][T22917] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  768.168160][T22937] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7190'.
[  768.177158][T22937] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7190'.
[  768.577547][T22957] loop2: detected capacity change from 0 to 4096
[  768.663379][T22957] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  768.788574][T22971] binder: 22969:22971 ioctl c018620c 200000000380 returned -22
[  768.799527][T22973] netlink: 316 bytes leftover after parsing attributes in process `syz.4.7207'.
[  768.810728][T22957] EXT4-fs error (device loop2): ext4_empty_dir:3093: inode #12: block 80: comm syz.2.7200: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  768.839118][T22957] EXT4-fs warning (device loop2): ext4_empty_dir:3095: inode #12: comm syz.2.7200: directory missing '..'
[  768.915015][ T6046] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  769.053815][T22985] x_tables: unsorted underflow at hook 1
[  769.120955][ T5940] usb 1-1: new full-speed USB device number 17 using dummy_hcd
[  769.229038][ T6162] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  769.280207][T22994] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7217'.
[  769.328376][ T5940] usb 1-1: config 0 has an invalid interface number: 147 but max is 0
[  769.336580][ T5940] usb 1-1: config 0 has no interface number 0
[  769.347850][ T5940] usb 1-1: config 0 interface 147 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  769.347899][T22997] syz.2.7219 uses obsolete (PF_INET,SOCK_PACKET)
[  769.369153][ T5940] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=51.03
[  769.389578][ T5940] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  769.399190][T22999] loop1: detected capacity change from 0 to 256
[  769.410620][ T6162] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  769.429025][ T5940] usb 1-1: Product: syz
[  769.433460][ T6162] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  769.444913][ T5940] usb 1-1: Manufacturer: syz
[  769.456060][ T5940] usb 1-1: SerialNumber: syz
[  769.467546][ T6162] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  769.476590][ T6162] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  769.501134][ T5940] usb 1-1: config 0 descriptor??
[  769.511508][T22975] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  769.521597][ T6162] usb 4-1: SerialNumber: syz
[  769.566491][ T5940] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  769.787337][ T6162] usb 4-1: 0:2 : does not exist
[  769.805134][ T3504] usb 1-1: Failed to submit usb control message: -71
[  769.810261][T23012] loop4: detected capacity change from 0 to 4096
[  769.825346][ T5940] usb 1-1: USB disconnect, device number 17
[  769.833981][ T6162] usb 4-1: unit 5: unexpected type 0x03
[  769.839150][ T3504] usb 1-1: unable to send the bmi data to the device: -71
[  769.859893][ T6162] usb 4-1: USB disconnect, device number 25
[  769.877381][ T3504] usb 1-1: unable to get target info from device
[  769.885099][T23012] NILFS (loop4): invalid segment: Checksum error in segment payload
[  769.900161][T23012] NILFS (loop4): trying rollback from an earlier position
[  769.906153][ T3504] usb 1-1: could not get target info (-71)
[  769.928260][ T3504] usb 1-1: could not probe fw (-71)
[  769.968009][ T7357] udevd[7357]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  770.022509][T23012] NILFS (loop4): recovery complete
[  770.070433][T23018] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  770.600866][T23040] loop1: detected capacity change from 0 to 16
[  770.626073][T23040] erofs (device loop1): mounted with root inode @ nid 36.
[  770.677509][T23040] erofs (device loop1): corrupted dir block 8200 @ nid 36
[  770.842492][T23050] netlink: 244 bytes leftover after parsing attributes in process `syz.3.7243'.
[  770.944537][T23053] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7245'.
[  770.980718][T23057] loop3: detected capacity change from 0 to 256
[  771.028324][T23057] exfat: Deprecated parameter 'namecase'
[  771.028438][T23059] loop1: detected capacity change from 0 to 1024
[  771.034015][T23057] exfat: Deprecated parameter 'namecase'
[  771.113861][T23057] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  771.181422][T23063] loop2: detected capacity change from 0 to 2048
[  771.214889][T23063] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  771.263702][T23063] syz.2.7249: attempt to access beyond end of device
[  771.263702][T23063] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  771.280914][T23066] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  771.385104][T23063] syz.2.7249: attempt to access beyond end of device
[  771.385104][T23063] loop2: rw=0, sector=9437254, nr_sectors = 2 limit=2048
[  771.459444][T23063] NILFS (loop2): I/O error reading meta-data file (ino=6, block-offset=0)
[  771.966542][T23096] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  771.995955][T23096] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  772.208341][T23110] loop1: detected capacity change from 0 to 512
[  772.268767][T23110] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  772.323235][T23110] EXT4-fs (loop1): 1 truncate cleaned up
[  772.350567][T23110] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  772.415852][T23110] EXT4-fs error (device loop1): ext4_append:79: inode #2: comm syz.1.7273: Logical block already allocated
[  772.460166][T23110] EXT4-fs (loop1): Remounting filesystem read-only
[  772.514206][ T6040] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  772.595663][ T5940] usb 4-1: new full-speed USB device number 26 using dummy_hcd
[  772.784479][ T5940] usb 4-1: config 8 has an invalid interface number: 223 but max is 0
[  772.792685][ T5940] usb 4-1: config 8 contains an unexpected descriptor of type 0x1, skipping
[  772.826816][ T5940] usb 4-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  772.858465][ T5940] usb 4-1: config 8 has no interface number 0
[  772.864590][ T5940] usb 4-1: config 8 interface 223 altsetting 0 endpoint 0x7 has invalid maxpacket 15872, setting to 64
[  772.895546][ T5940] usb 4-1: config 8 interface 223 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  772.916215][T23113] loop2: detected capacity change from 0 to 32768
[  772.942183][ T5940] usb 4-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d
[  772.955516][ T5940] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  772.970448][ T5940] usb 4-1: Product: syz
[  772.974807][ T5940] usb 4-1: Manufacturer: syz
[  772.984371][T23113] overlay: Bad value for 'workdir'
[  772.999327][ T5940] usb 4-1: SerialNumber: syz
[  773.070010][T23139] loop1: detected capacity change from 0 to 16
[  773.078378][T23139] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  773.132031][T23139] cramfs: Error -3 while decompressing!
[  773.150110][T23139] cramfs: ffffffff99c3b988(453)->ffff88806df50000(4096)
[  773.282443][ T5940] usb 4-1: USB disconnect, device number 26
[  773.534539][T23147] netlink: 'syz.1.7291': attribute type 1 has an invalid length.
[  773.959076][   T30] audit: type=1326 audit(1752150122.393:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23156 comm="syz.0.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  773.990809][T23143] loop2: detected capacity change from 0 to 32768
[  774.035414][   T30] audit: type=1326 audit(1752150122.393:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23156 comm="syz.0.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  774.058934][T23163] loop3: detected capacity change from 0 to 2048
[  774.146205][T23163] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  774.147337][   T30] audit: type=1326 audit(1752150122.420:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23156 comm="syz.0.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  774.237791][T23172] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7301'.
[  774.266377][   T30] audit: type=1326 audit(1752150122.420:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23156 comm="syz.0.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  774.332117][   T30] audit: type=1326 audit(1752150122.420:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23156 comm="syz.0.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  774.354453][    C1] vkms_vblank_simulate: vblank timer overrun
[  774.547603][   T30] audit: type=1326 audit(1752150122.937:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23178 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c78f8e929 code=0x7ffc0000
[  774.653994][T23143] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  774.654017][T23143]   allowing incompatible features above 0.0: (unknown version)
[  774.654027][T23143]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  774.695060][   T30] audit: type=1326 audit(1752150122.993:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23178 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f3c78f8e929 code=0x7ffc0000
[  774.695111][   T30] audit: type=1326 audit(1752150122.993:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23178 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c78f8e929 code=0x7ffc0000
[  774.695153][   T30] audit: type=1326 audit(1752150122.993:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23178 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c78f8e929 code=0x7ffc0000
[  774.901991][T23191] vlan0: left promiscuous mode
[  774.902044][T23191] veth0_vlan: left promiscuous mode
[  774.902245][T23191] vlan0: entered allmulticast mode
[  774.902260][T23191] veth0_vlan: entered allmulticast mode
[  775.024660][T23143] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[  775.024775][T23143] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  775.025014][T23143] bcachefs (loop2): Version upgrade required:
[  775.025014][T23143] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  775.025014][T23143] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  775.025014][T23143]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  775.025421][T23143] bcachefs (loop2): dropping and reconstructing all alloc info
[  775.127785][    C1] vkms_vblank_simulate: vblank timer overrun
[  775.210180][T23143] bcachefs (loop2): accounting_read... done
[  775.238111][T23143] bcachefs (loop2): alloc_read... done
[  775.249673][T23143] bcachefs (loop2): snapshots_read... done
[  775.286029][T23143] bcachefs (loop2): done starting filesystem
[  775.398459][T23199] (unnamed net_device) (uninitialized): option lp_interval: invalid value (18446744071562067969)
[  775.434639][T23184] loop3: detected capacity change from 0 to 32768
[  775.449407][T23199] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[  775.531572][ T6046] bcachefs (loop2): shutting down
[  775.631285][ T6046] bcachefs (loop2): shutdown complete
[  775.653912][ T6189] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  775.814934][T23184] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  775.814961][T23184]   allowing incompatible features above 0.0: (unknown version)
[  775.814973][T23184]   features: lz4
[  775.855980][T23218] bond0: option min_links: invalid value (18446744073709551604)
[  775.856007][T23218] bond0: option min_links: allowed values 0 - 2147483647
[  775.859674][ T6189] usb 1-1: Using ep0 maxpacket: 16
[  775.867513][ T6189] usb 1-1: unable to get BOS descriptor or descriptor too short
[  775.868529][ T6189] usb 1-1: config 1 has an invalid interface number: 231 but max is 0
[  775.868553][ T6189] usb 1-1: config 1 has no interface number 0
[  775.868593][ T6189] usb 1-1: config 1 interface 231 has no altsetting 0
[  775.874878][ T6189] usb 1-1: string descriptor 0 read error: -22
[  775.875012][ T6189] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=5c.f5
[  775.875035][ T6189] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  775.877340][T23217] loop1: detected capacity change from 0 to 2048
[  775.895996][T23217] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  775.898437][T23217] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  776.117833][ T6189] usbtest 1-1:1.231: Linux gadget zero
[  776.117857][ T6189] usbtest 1-1:1.231: high-speed {control in/out int-out} tests (+alt)
[  776.301439][T23226] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7324'.
[  776.351619][   T44] usb 1-1: USB disconnect, device number 18
[  776.385709][T23184] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  776.422215][T23184] bcachefs (loop3): initializing new filesystem
[  776.478980][T23184] bcachefs (loop3): going read-write
[  776.527713][T23184] bcachefs (loop3): marking superblocks
[  776.599157][T23239] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7328'.
[  776.627343][T23184] bcachefs (loop3): initializing freespace
[  776.637961][T23239] netlink: 48 bytes leftover after parsing attributes in process `syz.4.7328'.
[  776.674939][T23184] bcachefs (loop3): done initializing freespace
[  776.702840][T23184] bcachefs (loop3): reading snapshots table
[  776.725921][T23184] bcachefs (loop3): reading snapshots done
[  776.830212][T23184] bcachefs (loop3): done starting filesystem
[  776.879624][ T6052] bcachefs (loop3): shutting down
[  776.885028][ T6052] bcachefs (loop3): going read-only
[  776.891067][ T6052] bcachefs (loop3): finished waiting for writes to stop
[  776.960835][ T6052] bcachefs (loop3): flushing journal and stopping allocators, journal seq 2
[  777.006333][T23253] netlink: 48 bytes leftover after parsing attributes in process `syz.2.7336'.
[  777.108429][T23255] netlink: 3 bytes leftover after parsing attributes in process `syz.0.7337'.
[  777.117928][T23255] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  777.134415][ T6052] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 3
[  777.177069][ T6052] bcachefs (loop3): clean shutdown complete, journal seq 4
[  777.195092][ T6052] bcachefs (loop3): marking filesystem clean
[  777.202114][T23261] netlink: 'syz.2.7339': attribute type 21 has an invalid length.
[  777.215198][T23261] netlink: 156 bytes leftover after parsing attributes in process `syz.2.7339'.
[  777.284503][T23263] _ÐZ`Ô€@ÿÃ: entered promiscuous mode
[  777.294054][ T6052] bcachefs (loop3): shutdown complete
[  777.404239][T23260] loop1: detected capacity change from 0 to 2048
[  777.477367][T23260] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  777.851738][T23283] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7351'.
[  778.450986][T23281] loop2: detected capacity change from 0 to 32768
[  778.459140][T23281] XFS: ikeep mount option is deprecated.
[  778.511446][T23281] XFS: ikeep mount option is deprecated.
[  778.599732][T23281] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  778.857916][T23281] XFS (loop2): Ending clean mount
[  778.897374][T23281] XFS (loop2): Quotacheck needed: Please wait.
[  778.980767][T23281] XFS (loop2): Quotacheck: Done.
[  779.213718][ T6046] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  779.327650][T23334] sctp: [Deprecated]: syz.4.7372 (pid 23334) Use of int in maxseg socket option.
[  779.327650][T23334] Use struct sctp_assoc_value instead
[  779.493705][T23316] loop1: detected capacity change from 0 to 32768
[  779.588849][T23316] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  779.704495][T23342] netlink: 'syz.2.7371': attribute type 21 has an invalid length.
[  779.708145][T23316] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  779.715342][T23342] netlink: 132 bytes leftover after parsing attributes in process `syz.2.7371'.
[  779.879921][T23316] (syz.1.7362,23316,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry overrun - offset=0, inode=65, rec_len=1296, name_len=0
[  779.949395][T23316] (syz.1.7362,23316,0):ocfs2_prepare_dir_for_insert:4302 ERROR: status = -2
[  779.985515][T23316] (syz.1.7362,23316,0):ocfs2_symlink:1879 ERROR: status = -2
[  780.001805][T23316] (syz.1.7362,23316,0):ocfs2_symlink:2080 ERROR: status = -2
[  780.149082][ T6040] ocfs2: Unmounting device (7,1) on (node local)
[  780.373638][T23365] loop3: detected capacity change from 0 to 8
[  780.541982][T23369] loop4: detected capacity change from 0 to 1024
[  780.612286][T23373] netlink: 'syz.0.7388': attribute type 1 has an invalid length.
[  780.628732][T23369] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  780.639117][T23373] netlink: 'syz.0.7388': attribute type 1 has an invalid length.
[  780.660033][T23369] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  780.693158][T23371] loop1: detected capacity change from 0 to 2048
[  780.711917][T23369] EXT4-fs (loop4): orphan cleanup on readonly fs
[  780.731201][   T30] audit: type=1326 audit(1752150128.641:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23377 comm="syz.0.7390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  780.775583][T23376] loop3: detected capacity change from 0 to 4096
[  780.785228][T23376] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  780.785850][   T30] audit: type=1326 audit(1752150128.641:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23377 comm="syz.0.7390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  780.794604][T23369] Quota error (device loop4): v2_read_file_info: Can't read info structure
[  780.817143][T23371] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  780.834777][   T30] audit: type=1326 audit(1752150128.697:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23377 comm="syz.0.7390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=433 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  780.886670][T23369] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  780.935645][   T30] audit: type=1326 audit(1752150128.697:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23377 comm="syz.0.7390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  780.994915][T23369] EXT4-fs (loop4): Cannot turn on quotas: error -5
[  781.011227][T23369] EXT4-fs (loop4): 1 truncate cleaned up
[  781.045732][T23369] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  781.059938][   T30] audit: type=1326 audit(1752150128.697:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23377 comm="syz.0.7390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb13db8e929 code=0x7ffc0000
[  781.265407][ T6038] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  781.414195][T23392] loop3: detected capacity change from 0 to 256
[  781.498778][T23392] FAT-fs (loop3): Directory bread(block 64) failed
[  781.517063][T23392] FAT-fs (loop3): Directory bread(block 65) failed
[  781.525918][T23392] FAT-fs (loop3): Directory bread(block 66) failed
[  781.553410][T23392] FAT-fs (loop3): Directory bread(block 67) failed
[  781.577465][T23392] FAT-fs (loop3): Directory bread(block 68) failed
[  781.604717][T23392] FAT-fs (loop3): Directory bread(block 69) failed
[  781.628830][T23392] FAT-fs (loop3): Directory bread(block 70) failed
[  781.655791][T23392] FAT-fs (loop3): Directory bread(block 71) failed
[  781.662411][T23392] FAT-fs (loop3): Directory bread(block 72) failed
[  781.695267][T23392] FAT-fs (loop3): Directory bread(block 73) failed
[  781.787472][T23401] loop4: detected capacity change from 0 to 64
[  781.828153][T23404] loop2: detected capacity change from 0 to 256
[  781.866158][T23404] exfat: Deprecated parameter 'utf8'
[  781.919803][T23404] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe649ead, utbl_chksum : 0xe619d30d)
[  782.008161][T23407] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7405'.
[  782.069479][ T5940] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  782.170060][T23387] loop1: detected capacity change from 0 to 32768
[  782.237175][T23387] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  782.263451][ T5940] usb 1-1: too many configurations: 89, using maximum allowed: 8
[  782.265767][T23387] (syz.1.7392,23387,0):ocfs2_mknod:505 ERROR: status = -2
[  782.278412][T23387] (syz.1.7392,23387,0):ocfs2_create:678 ERROR: status = -2
[  782.401381][ T6040] (syz-executor,6040,0):ocfs2_inode_is_valid_to_delete:928 ERROR: Skipping delete of root inode.
[  782.412561][ T5940] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  782.446660][ T5940] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  782.448927][ T6040] ocfs2: Unmounting device (7,1) on (node local)
[  782.454658][ T5940] usb 1-1: Product: syz
[  782.522558][ T5940] usb 1-1: Manufacturer: syz
[  782.527187][ T5940] usb 1-1: SerialNumber: syz
[  782.583680][ T5940] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  782.612371][T23428] loop4: detected capacity change from 0 to 512
[  782.674842][   T44] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  782.776724][T23428] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  782.798718][T23428] ext4 filesystem being mounted at /1529/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  782.993688][T23442] netlink: 'syz.1.7417': attribute type 4 has an invalid length.
[  783.028525][T23428] 9pnet: Could not find request transport: f
[  783.122685][ T6038] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  783.270493][   T10] usb 1-1: USB disconnect, device number 19
[  783.573701][T23464] ptrace attach of "./syz-executor exec"[6038] was attempted by "./syz-executor exec"[23464]
[  783.679555][T23462] loop1: detected capacity change from 0 to 4096
[  783.710855][T23462] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  783.726207][T23468] netlink: 'syz.4.7430': attribute type 1 has an invalid length.
[  783.746940][T23468] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7430'.
[  783.804883][T23462] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  783.811959][   T44] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  783.812176][   T44] ath9k_htc: Failed to initialize the device
[  783.838976][T23462] ntfs3(loop1): Failed to load $Extend (-22).
[  783.859719][T23462] ntfs3(loop1): Failed to initialize $Extend.
[  783.880900][   T10] usb 1-1: ath9k_htc: USB layer deinitialized
[  783.895313][T23470] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7431'.
[  783.969323][T23470] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7431'.
[  783.990144][T23470] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7431'.
[  784.118579][T23477] xt_l2tp: wrong L2TP version: 0
[  784.172716][T23480] netlink: 'syz.1.7434': attribute type 3 has an invalid length.
[  784.202858][T23480] netlink: 'syz.1.7434': attribute type 3 has an invalid length.
[  784.210652][T23480] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7434'.
[  784.220014][   T30] audit: type=1326 audit(1752150131.853:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23481 comm="syz.3.7437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  784.290616][T23454] loop2: detected capacity change from 0 to 32768
[  784.301845][T23454] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7423 (23454)
[  784.336749][   T30] audit: type=1326 audit(1752150131.853:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23481 comm="syz.3.7437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  784.336799][   T30] audit: type=1326 audit(1752150131.909:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23481 comm="syz.3.7437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  784.336840][   T30] audit: type=1326 audit(1752150131.909:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23481 comm="syz.3.7437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  784.367504][T23454] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  784.451595][T23454] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  784.501328][T23454] BTRFS info (device loop2): disk space caching is enabled
[  784.501352][T23454] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  784.746059][T23454] BTRFS info (device loop2): rebuilding free space tree
[  784.779522][T23454] BTRFS info (device loop2): disabling free space tree
[  784.779585][T23454] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  784.779607][T23454] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  784.965958][ T6046] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  784.980519][T23520] netlink: 'syz.1.7448': attribute type 21 has an invalid length.
[  785.252449][T23525] netlink: 'syz.2.7449': attribute type 2 has an invalid length.
[  785.259410][T23527] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7451'.
[  785.348026][T23525] : entered promiscuous mode
[  785.422796][T23530] netlink: 'syz.3.7452': attribute type 2 has an invalid length.
[  785.713208][T23513] loop4: detected capacity change from 0 to 32768
[  785.794806][T23513] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7446 (23513)
[  785.863574][T23513] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  785.880785][T23513] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  785.926325][T23513] BTRFS info (device loop4): using free-space-tree
[  786.217242][ T6038] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  786.260967][T23574] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7466'.
[  786.390533][T23577] ip6tnl2: entered promiscuous mode
[  786.430219][T23577] ip6tnl2: entered allmulticast mode
[  787.087534][T23607] netlink: 'syz.3.7483': attribute type 1 has an invalid length.
[  787.109551][T23607] netlink: 224 bytes leftover after parsing attributes in process `syz.3.7483'.
[  787.509375][   T44] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  787.542460][T23626] netlink: 'syz.0.7492': attribute type 35 has an invalid length.
[  787.576004][T23594] loop4: detected capacity change from 0 to 32768
[  787.699319][   T44] usb 4-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55
[  787.725162][   T44] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  787.765000][   T44] usb 4-1: Product: syz
[  787.779893][   T44] usb 4-1: Manufacturer: syz
[  787.812079][   T44] usb 4-1: SerialNumber: syz
[  787.844776][   T44] usb 4-1: config 0 descriptor??
[  787.862148][T23638] comedi comedi4: bad chanlist[0]=0x00000a8f chan=2703 range length=2
[  787.865769][   T44] gspca_main: sonixb-2.14.0 probing 0c45:608f
[  788.109059][T23649] netlink: 32 bytes leftover after parsing attributes in process `syz.2.7504'.
[  788.142659][T23649] netlink: 32 bytes leftover after parsing attributes in process `syz.2.7504'.
[  788.351330][   T10] usb 4-1: USB disconnect, device number 27
[  788.534468][T23669] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7513'.
[  788.717455][T23678] loop1: detected capacity change from 0 to 256
[  788.740468][T23678] exfat: Deprecated parameter 'utf8'
[  788.769669][T23678] exfat: Deprecated parameter 'utf8'
[  788.874334][T23678] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[  788.891270][T23683] loop2: detected capacity change from 0 to 1024
[  790.074094][T23689] loop3: detected capacity change from 0 to 32768
[  790.164880][T23728] binder: 23727:23728 ioctl c0046209 200000000000000 returned -22
[  790.350999][T23739] netdevsim netdevsim0: Direct firmware load for ..€ failed with error -2
[  790.380072][T23739] netdevsim netdevsim0: Falling back to sysfs fallback for: ..€
[  790.440559][T23746] dlm: no local IP address has been set
[  790.460795][T23746] dlm: cannot start dlm midcomms -107
[  790.483433][T23689] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[  790.483458][T23689]   allowing incompatible features above 0.0: (unknown version)
[  790.483470][T23689]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  790.570876][   T30] audit: type=1326 audit(1752150137.724:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23751 comm="syz.2.7550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  790.570996][   T30] audit: type=1326 audit(1752150137.724:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23751 comm="syz.2.7550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  790.592494][   T30] audit: type=1326 audit(1752150137.742:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23751 comm="syz.2.7550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  790.592545][   T30] audit: type=1326 audit(1752150137.742:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23751 comm="syz.2.7550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  790.846541][T23689] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  790.862442][T23689] bcachefs (loop3): initializing new filesystem
[  790.902256][T23689] bcachefs (loop3): going read-write
[  790.930721][T23689] bcachefs (loop3): marking superblocks
[  791.000476][T23689] bcachefs (loop3): initializing freespace
[  791.031587][T23689] bcachefs (loop3): done initializing freespace
[  791.058540][T23689] bcachefs (loop3): reading snapshots table
[  791.072470][T23689] bcachefs (loop3): reading snapshots done
[  791.110732][T23689] bcachefs (loop3): done starting filesystem
[  791.146730][ T6162] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  791.189929][ T5940] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  791.331867][ T6052] bcachefs (loop3): shutting down
[  791.341401][ T6162] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  791.357473][ T6162] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  791.366197][ T6052] bcachefs (loop3): going read-only
[  791.371416][ T6052] bcachefs (loop3): finished waiting for writes to stop
[  791.378454][ T5940] usb 3-1: Using ep0 maxpacket: 16
[  791.394856][ T6162] usb 2-1: Product: syz
[  791.405651][ T5940] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  791.411478][T23782] xt_bpf: check failed: parse error
[  791.417830][ T6162] usb 2-1: Manufacturer: syz
[  791.425068][ T5940] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  791.428560][ T6052] bcachefs (loop3): flushing journal and stopping allocators, journal seq 12
[  791.436017][ T6162] usb 2-1: SerialNumber: syz
[  791.448473][ T5940] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  791.462015][ T6162] usb 2-1: config 0 descriptor??
[  791.467179][ T5940] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  791.492785][ T5940] usb 3-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[  791.502042][ T5940] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  791.523947][ T5940] usb 3-1: Product: syz
[  791.530135][ T6052] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 14
[  791.547466][ T5940] usb 3-1: Manufacturer: syz
[  791.552105][ T5940] usb 3-1: SerialNumber: syz
[  791.571004][ T6052] bcachefs (loop3): clean shutdown complete, journal seq 15
[  791.579345][ T6052] bcachefs (loop3): marking filesystem clean
[  791.598393][ T5940] usb 3-1: config 0 descriptor??
[  791.639704][ T5940] mcba_usb 3-1:0.0 can0: couldn't setup read URBs
[  791.650428][ T5940] mcba_usb 3-1:0.0 can0: couldn't start device: -90
[  791.706893][ T6052] bcachefs (loop3): shutdown complete
[  791.715103][ T6162] usb-storage 2-1:0.0: USB Mass Storage device detected
[  791.780430][ T5940] mcba_usb 3-1:0.0: probe with driver mcba_usb failed with error -90
[  791.910016][ T6162] usb 3-1: USB disconnect, device number 24
[  791.996219][ T5940] usb 2-1: USB disconnect, device number 8
[  792.181492][T23794] loop4: detected capacity change from 0 to 32768
[  792.194610][T23794] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7569 (23794)
[  792.255833][T23794] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  792.284153][T23794] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  792.292733][T23794] BTRFS info (device loop4): disk space caching is enabled
[  792.318833][T23794] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  792.435189][T23794] BTRFS info (device loop4): rebuilding free space tree
[  792.482784][T23826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7578'.
[  792.489956][T23794] BTRFS info (device loop4): disabling free space tree
[  792.491809][T23826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7578'.
[  792.498525][T23794] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  792.544520][T23794] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  792.851662][ T6038] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  793.187848][T23851] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7591'.
[  793.272766][T23853] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  793.476565][T23859] loop1: detected capacity change from 0 to 64
[  793.529162][T23865] loop4: detected capacity change from 0 to 1024
[  793.748584][T15234] hfsplus: b-tree write err: -5, ino 4
[  794.003729][T23881] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  794.202808][T23890] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  794.256794][T23890] overlayfs: conflicting options: userxattr,redirect_dir=on
[  794.275686][T23893] netlink: 'syz.2.7611': attribute type 46 has an invalid length.
[  794.435829][T23899] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  794.816132][T23921] loop3: detected capacity change from 0 to 256
[  795.050717][T23929] loop2: detected capacity change from 0 to 64
[  795.355055][T23944] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7634'.
[  795.949978][T23964] tmpfs: Bad value for 'mpol'
[  796.129928][T23962] loop1: detected capacity change from 0 to 4096
[  796.153821][T23972] netlink: 'syz.3.7646': attribute type 2 has an invalid length.
[  796.158762][T23962] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  796.161612][T23972] netlink: 'syz.3.7646': attribute type 8 has an invalid length.
[  796.217072][T23972] netlink: 32 bytes leftover after parsing attributes in process `syz.3.7646'.
[  796.235400][T23962] ntfs3(loop1): ino=1a, mi_enum_attr
[  796.261861][T23962] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  796.389062][T23977] loop2: detected capacity change from 0 to 512
[  796.407601][T23977] EXT4-fs: Ignoring removed orlov option
[  796.457567][T23977] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  796.533249][T15234] ntfs3(loop1): ino=1e, ntfs3_write_inode failed, -22.
[  796.547376][T23977] EXT4-fs (loop2): orphan cleanup on readonly fs
[  796.574359][T23977] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.7648: bg 0: block 248: padding at end of block bitmap is not set
[  796.659752][T23977] Quota error (device loop2): write_blk: dquota write failed
[  796.715362][T23977] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  796.731682][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  796.738139][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  796.776486][T23977] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.7648: Failed to acquire dquot type 1
[  796.825066][T23977] EXT4-fs (loop2): 1 truncate cleaned up
[  796.862595][T23977] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  796.954032][T23977] EXT4-fs: Ignoring removed orlov option
[  796.975110][T23977] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  797.091839][T24000] loop3: detected capacity change from 0 to 64
[  797.139414][T23977] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  797.217914][T23977] EXT4-fs error (device loop2): __ext4_remount:6736: comm syz.2.7648: Abort forced by user
[  797.253775][T23977] EXT4-fs (loop2): Remounting filesystem read-only
[  797.286947][T23977] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  797.301965][T23977] ext4 filesystem being remounted at /1481/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  797.306087][T24007] loop4: detected capacity change from 0 to 8
[  797.348171][T24007] cramfs: Error -3 while decompressing!
[  797.365505][T24007] cramfs: ffffffff99c37ac8(26)->ffff8880690d1000(4096)
[  797.375881][T24007] cramfs: Error -3 while decompressing!
[  797.379582][ T7357] udevd[7357]: incorrect cramfs checksum on /dev/loop4
[  797.395996][T24007] cramfs: ffffffff99c37ae2(26)->ffff8880545c4000(4096)
[  797.417399][ T7357] udevd[7357]: incorrect cramfs checksum on /dev/loop4
[  797.419581][T24007] cramfs: Error -3 while decompressing!
[  797.430990][T24007] cramfs: ffffffff99c37afc(16)->ffff888054754000(4096)
[  797.452094][T24007] cramfs: Error -3 while decompressing!
[  797.467047][T24007] cramfs: ffffffff99c37ac8(26)->ffff8880690d1000(4096)
[  797.528846][ T6046] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  798.454949][T24056] netlink: 1010 bytes leftover after parsing attributes in process `syz.2.7685'.
[  798.474206][T24056] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  799.443890][T24097] hsr0 speed is unknown, defaulting to 1000
[  799.467323][T24097] hsr0 speed is unknown, defaulting to 1000
[  799.475859][T24097] hsr0 speed is unknown, defaulting to 1000
[  799.496864][T24097] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  799.566617][T24097] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  799.627651][T24105] loop2: detected capacity change from 0 to 512
[  799.646978][T24097] hsr0 speed is unknown, defaulting to 1000
[  799.666469][T24097] hsr0 speed is unknown, defaulting to 1000
[  799.676283][T24106] loop3: detected capacity change from 0 to 64
[  799.691879][T24097] hsr0 speed is unknown, defaulting to 1000
[  799.698275][T24105] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  799.717640][T24097] hsr0 speed is unknown, defaulting to 1000
[  799.754017][T24097] hsr0 speed is unknown, defaulting to 1000
[  799.773068][T24105] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  799.819812][T24105] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  799.857464][T24105] System zones: 0-1, 15-15, 18-18, 34-34
[  799.895183][T24105] EXT4-fs (loop2): orphan cleanup on readonly fs
[  799.917291][T24105] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[  799.939193][T24105] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  799.962120][T24105] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  799.969667][T24105] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.7708: bg 0: block 40: padding at end of block bitmap is not set
[  800.004948][T24105] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  800.034443][T24105] EXT4-fs (loop2): 1 truncate cleaned up
[  800.044934][T24105] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  800.073060][T24088] loop1: detected capacity change from 0 to 32768
[  800.084640][T24105] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  800.116720][T24105] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  800.263014][ T6046] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  800.462198][T24130] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7721'.
[  800.527027][T24127] hsr0 speed is unknown, defaulting to 1000
[  800.729890][T24139] loop2: detected capacity change from 0 to 512
[  800.764536][T24139] EXT4-fs (loop2): external journal device major/minor numbers have changed
[  800.833727][T24145] ieee802154 phy0 wpan0: encryption failed: -90
[  800.925239][T24139] EXT4-fs (loop2): failed to open journal device unknown-block(2940,205839) -6
[  800.983107][T24139] loop2: detected capacity change from 0 to 512
[  801.008043][T24139] EXT4-fs (loop2): unable to read superblock
[  801.184960][T24154] CIFS mount error: No usable UNC path provided in device string!
[  801.184960][T24154] 
[  801.251167][T24154] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  801.479960][T24167] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7735'.
[  801.556336][T24169] loop2: detected capacity change from 0 to 256
[  801.581838][T24173] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (13)
[  801.635403][T24169] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  801.943896][T24177] loop1: detected capacity change from 0 to 4096
[  802.012436][T24177] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  802.140741][T24177] ntfs3(loop1): ino=19, mi_enum_attr
[  802.234925][T24177] ntfs3(loop1): failed to convert "c46c" to cp932
[  802.252846][T24177] ntfs3(loop1): ino=20, mi_enum_attr
[  802.434638][T24166] loop3: detected capacity change from 0 to 32768
[  802.453375][T24166] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7734 (24166)
[  802.504204][T24201] loop2: detected capacity change from 0 to 64
[  802.566714][T24166] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  802.636491][T24166] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  802.662685][T24166] BTRFS info (device loop3): using free-space-tree
[  802.734549][T24218] loop1: detected capacity change from 0 to 512
[  802.742043][T24218] EXT4-fs: Ignoring removed nobh option
[  802.748832][T24218] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  802.837272][T24218] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  802.845463][T24218] EXT4-fs (loop1): orphan cleanup on readonly fs
[  802.956638][T24218] Quota error (device loop1): do_check_range: Getting dqdh_next_free 196613 out of range 0-5
[  803.046038][T24218] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  803.099864][T24218] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.7756: Failed to acquire dquot type 1
[  803.144018][T24218] EXT4-fs (loop1): Remounting filesystem read-only
[  803.151061][ T6052] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  803.165740][T24240] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7763'.
[  803.175095][T24218] EXT4-fs (loop1): 1 orphan inode deleted
[  803.188221][T24240] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7763'.
[  803.206727][T24218] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  803.316977][ T6040] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  803.573783][T24252] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  803.980693][T24274] netlink: 'syz.4.7779': attribute type 21 has an invalid length.
[  804.003894][T24274] netlink: 128 bytes leftover after parsing attributes in process `syz.4.7779'.
[  804.042982][T24268] veth3: entered promiscuous mode
[  804.048256][T24268] veth3: entered allmulticast mode
[  804.100300][T24274] netlink: 'syz.4.7779': attribute type 4 has an invalid length.
[  804.123150][T24274] netlink: 3 bytes leftover after parsing attributes in process `syz.4.7779'.
[  804.169401][   T10] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  804.353592][   T10] usb 1-1: Using ep0 maxpacket: 8
[  804.373141][   T10] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  804.415734][   T10] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  804.456327][T24293] loop1: detected capacity change from 0 to 164
[  804.463658][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  804.502579][   T10] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  804.523468][T24293] rock: directory entry would overflow storage
[  804.530031][   T10] usb 1-1: New USB device found, idVendor=0af0, idProduct=6751, bcdDevice=75.8b
[  804.530057][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  804.543281][T24295] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7789'.
[  804.560019][T24293] rock: sig=0x5245, size=8, remaining=3
[  804.563684][   T10] usb 1-1: config 0 descriptor??
[  804.616013][   T10] hso 1-1:0.0: Can't find BULK IN endpoint
[  804.664028][   T30] audit: type=1326 audit(1752150150.738:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24299 comm="syz.3.7791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  804.703053][   T30] audit: type=1326 audit(1752150150.756:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24299 comm="syz.3.7791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  804.767218][T24302] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  804.819380][   T30] audit: type=1326 audit(1752150150.766:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24299 comm="syz.3.7791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  804.888192][T13984] usb 1-1: USB disconnect, device number 20
[  804.905148][   T30] audit: type=1326 audit(1752150150.766:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24299 comm="syz.3.7791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  804.938945][T24306] netlink: 196 bytes leftover after parsing attributes in process `syz.4.7794'.
[  804.956840][   T30] audit: type=1326 audit(1752150150.766:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24299 comm="syz.3.7791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  804.992113][T24306] tc_dump_action: action bad kind
[  805.158435][T24317] loop4: detected capacity change from 0 to 512
[  805.173590][T24318] loop2: detected capacity change from 0 to 764
[  805.199479][T24317] EXT4-fs: Ignoring removed oldalloc option
[  805.208997][T24318] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  805.238849][T24317] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  805.251038][T24318] Symlink component flag not implemented
[  805.259811][T24317] EXT4-fs (loop4): 1 truncate cleaned up
[  805.294296][T24324] loop3: detected capacity change from 0 to 256
[  805.297528][T24318] Symlink component flag not implemented (122)
[  805.308637][T24317] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  805.425423][T24317] EXT4-fs error (device loop4): ext4_add_entry:2417: inode #2: comm syz.4.7800: Directory hole found for htree leaf block 0
[  805.620377][ T6038] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  805.796199][T24337] program syz.0.7809 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  805.808320][T24335] loop2: detected capacity change from 0 to 256
[  805.815455][T24335] exfat: Deprecated parameter 'utf8'
[  805.839394][T24320] loop1: detected capacity change from 0 to 32768
[  805.942643][T24335] exFAT-fs (loop2): error, data size is invalid(34359738378)
[  805.945968][T24341] netlink: 45 bytes leftover after parsing attributes in process `syz.4.7810'.
[  806.104212][T24320] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names,noexcl,read_only,version_upgrade=none,nocow
[  806.104237][T24320]   allowing incompatible features above 0.0: (unknown version)
[  806.104249][T24320]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  806.286443][T24320] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  806.294817][T24320] bcachefs (loop1): recovering from clean shutdown, journal seq 13
[  806.349104][T24320] bcachefs (loop1): accounting_read... done
[  806.376734][T24320] bcachefs (loop1): alloc_read... done
[  806.401828][T24320] bcachefs (loop1): snapshots_read... done
[  806.439684][T24320] bcachefs (loop1): journal_replay... done
[  806.469480][T24320] bcachefs (loop1): resume_logged_ops... done
[  806.476441][T24320] bcachefs (loop1): delete_dead_inodes... done
[  806.510729][T24320] bcachefs (loop1): done starting filesystem
[  806.568007][T24365] loop3: detected capacity change from 0 to 1764
[  806.632255][T24320] bcachefs (loop1): going read-write
[  806.880743][T24384] bcachefs (loop1): backpointer doesn't match extent it points to:
[  806.880786][T24384]   u64s 9 type backpointer 0:8921088:0 len 0 ver 0: bucket=0:34:8 btree=extents level=0 data_type=user suboffset=0 len=8 gen=0 pos=1073741825:24:U32_MAX
[  806.880801][T24384]   u64s 8 type extent 1073741825:24:U32_MAX len 24 ver 2: durability: 1 crc: c_size 8 size 24 offset 0 nonce 0 csum chacha20_poly1305_80 5c1d:75853c64f7009f9d  compress lz4 ptr: 0:34:8 gen 0
[  806.880818][T24384]   u64s 9 type backpointer 0:8921088:0 len 0 ver 0: bucket=0:34:8 btree=extents level=0 data_type=user suboffset=0 len=8 gen=0 pos=1073741825:24:U32_MAX, fixing
[  806.913142][ T6040] bcachefs (loop1): shutting down
[  807.015564][ T6040] bcachefs (loop1): going read-only
[  807.042814][T24384] bcachefs (loop1): Detected missing backpointers in bucket 34, now have 1/128 with missing
[  807.042885][T24384]   scheduling recovery pass check_extents_to_backpointers (17)
[  807.055625][ T6040] bcachefs (loop1): finished waiting for writes to stop
[  807.147029][ T6040] bcachefs (loop1): flushing journal and stopping allocators, journal seq 14
[  807.180839][ T6040] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 14
[  807.279437][ T6040] bcachefs (loop1): clean shutdown complete, journal seq 15
[  807.299106][ T6040] bcachefs (loop1): marking filesystem clean
[  807.455837][ T6040] bcachefs (loop1): shutdown complete
[  807.458929][T24400] loop3: detected capacity change from 0 to 764
[  807.562599][T24400] Symlink component flag not implemented
[  807.568842][T24400] Symlink component flag not implemented (7)
[  807.896021][T24412] loop3: detected capacity change from 0 to 1024
[  808.038054][ T1035] hfsplus: b-tree write err: -5, ino 4
[  808.500702][T24438] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7853'.
[  808.565962][T24440] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7855'.
[  808.589718][T24440] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7855'.
[  808.626494][T24440] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7855'.
[  808.665721][T24443] netlink: 'syz.4.7856': attribute type 5 has an invalid length.
[  808.978152][T24458] netlink: 'syz.4.7864': attribute type 2 has an invalid length.
[  808.989562][T24458] netlink: 119 bytes leftover after parsing attributes in process `syz.4.7864'.
[  809.184817][T24466] dlm: Unknown command passed to DLM device : 0
[  809.184817][T24466] 
[  809.899253][T24496] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7883'.
[  810.475214][T24521] netlink: 244 bytes leftover after parsing attributes in process `syz.2.7893'.
[  810.668564][T24531] loop3: detected capacity change from 0 to 512
[  810.744971][T24531] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  810.836991][T24538] delete_channel: no stack
[  810.842974][T24531] EXT4-fs error (device loop3): ext4_iget_extra_inode:5034: inode #15: comm syz.3.7898: corrupted in-inode xattr: e_value out of bounds
[  810.906636][T24531] EXT4-fs (loop3): Remounting filesystem read-only
[  810.915254][T24531] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  810.952451][T24545] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7905'.
[  811.068647][ T6052] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  811.154940][T24555] netlink: 14 bytes leftover after parsing attributes in process `syz.0.7911'.
[  811.227153][T24555] hsr_slave_0: left promiscuous mode
[  811.268474][T24555] hsr_slave_1: left promiscuous mode
[  811.363375][   T10] hsr0 speed is unknown, defaulting to 1000
[  811.383802][   T10] syz2: Port: 1 Link DOWN
[  811.503759][T24569] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7917'.
[  812.067054][T24599] netlink: 'syz.2.7931': attribute type 8 has an invalid length.
[  812.435943][ T5940] usb 1-1: new full-speed USB device number 21 using dummy_hcd
[  812.632783][ T5940] usb 1-1: config 201 has an invalid interface number: 249 but max is 0
[  812.662128][ T5940] usb 1-1: config 201 has no interface number 0
[  812.694888][ T5940] usb 1-1: config 201 interface 249 has no altsetting 0
[  812.714659][ T5940] usb 1-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  812.731977][ T5940] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  812.754238][ T5940] usb 1-1: Product: syz
[  812.758414][ T5940] usb 1-1: Manufacturer: syz
[  812.780546][ T5940] usb 1-1: SerialNumber: syz
[  813.046885][ T5940] ath6kl: Failed to submit usb control message: -71
[  813.063373][ T5940] ath6kl: unable to send the bmi data to the device: -71
[  813.071117][ T5940] ath6kl: Unable to send get target info: -71
[  813.088757][ T5940] ath6kl: Failed to init ath6kl core: -71
[  813.095798][ T5940] ath6kl_usb 1-1:201.249: probe with driver ath6kl_usb failed with error -71
[  813.115321][ T5940] usb 1-1: USB disconnect, device number 21
[  813.171757][   T30] audit: type=1326 audit(1752150158.583:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24638 comm="syz.3.7951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  813.194129][    C1] vkms_vblank_simulate: vblank timer overrun
[  813.216484][T24610] loop1: detected capacity change from 0 to 32768
[  813.242102][   T30] audit: type=1326 audit(1752150158.583:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24638 comm="syz.3.7951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  813.301847][T24610] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  813.314153][   T30] audit: type=1326 audit(1752150158.583:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24638 comm="syz.3.7951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  813.337117][   T30] audit: type=1326 audit(1752150158.583:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24638 comm="syz.3.7951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  813.473891][T24610] XFS (loop1): Ending clean mount
[  813.521593][T24610] XFS (loop1): Quotacheck needed: Please wait.
[  813.616523][T24662] xt_TCPMSS: Only works on TCP SYN packets
[  813.641439][T24610] XFS (loop1): Quotacheck: Done.
[  813.659747][T24610] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  814.321848][T24688] x_tables: unsorted underflow at hook 3
[  814.357811][T24682] loop3: detected capacity change from 0 to 4096
[  814.395522][T24682] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  814.519211][T24682] ntfs3(loop3): ino=19, mi_enum_attr
[  814.524554][T24682] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  814.583577][T24682] ntfs3(loop3): failed to convert "c46c" to maccroatian
[  814.609384][T24682] ntfs3(loop3): ino=20, mi_enum_attr
[  814.858476][T24686] loop2: detected capacity change from 0 to 32768
[  814.890138][T24686] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  815.150355][T24718] __nla_validate_parse: 6 callbacks suppressed
[  815.150372][T24718] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7985'.
[  815.181770][ T6046] ocfs2: Unmounting device (7,2) on (node local)
[  815.241435][T24720] loop1: detected capacity change from 0 to 1764
[  815.286492][T24722] Scaler: =================  START STATUS  =================
[  815.293913][T24722] Scaler: ==================  END STATUS  ==================
[  815.317422][T24720] tmpfs: Unknown parameter 'norock'
[  815.643101][T24736] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048)
[  815.735275][T24740] netlink: 'syz.3.7996': attribute type 11 has an invalid length.
[  815.776440][T24740] netlink: 'syz.3.7996': attribute type 11 has an invalid length.
[  815.792395][T24740] netlink: 224 bytes leftover after parsing attributes in process `syz.3.7996'.
[  815.925158][T24748] loop1: detected capacity change from 0 to 512
[  815.941515][T24748] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found
[  815.971222][T24748] UDF-fs: Scanning with blocksize 512 failed
[  816.006959][T24748] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found
[  816.038012][T24748] UDF-fs: Scanning with blocksize 1024 failed
[  816.048159][T24748] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found
[  816.059333][T24748] UDF-fs: Scanning with blocksize 2048 failed
[  816.071715][T24748] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  816.090210][T24748] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  816.259672][T24767] loop1: detected capacity change from 0 to 256
[  816.307682][   T30] audit: type=1326 audit(1752150161.472:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24768 comm="syz.3.8011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  816.331704][T24772] x_tables: duplicate underflow at hook 2
[  816.353682][   T30] audit: type=1326 audit(1752150161.472:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24768 comm="syz.3.8011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  816.378691][   T30] audit: type=1326 audit(1752150161.472:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24768 comm="syz.3.8011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  816.498664][   T30] audit: type=1326 audit(1752150161.472:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24768 comm="syz.3.8011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  816.556554][T24780] netlink: 'syz.1.8016': attribute type 1 has an invalid length.
[  816.572886][   T30] audit: type=1326 audit(1752150161.472:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24768 comm="syz.3.8011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38a98e929 code=0x7ffc0000
[  816.601296][T24780] netlink: 232 bytes leftover after parsing attributes in process `syz.1.8016'.
[  816.941366][T24798] netlink: 'syz.2.8025': attribute type 1 has an invalid length.
[  816.995169][T24798] netlink: 'syz.2.8025': attribute type 3 has an invalid length.
[  817.027149][T24798] netlink: 224 bytes leftover after parsing attributes in process `syz.2.8025'.
[  817.610136][T24789] loop1: detected capacity change from 0 to 32768
[  817.696956][T24804] loop4: detected capacity change from 0 to 32768
[  817.697084][T24789] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  817.728081][T24804] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8028 (24804)
[  817.799646][T24804] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  817.805558][T24789] ocfs2: Unmounting device (7,1) on (node local)
[  817.831355][T24804] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  817.884353][T24804] BTRFS info (device loop4): using free-space-tree
[  818.303147][ T6038] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  818.595673][T24857] loop3: detected capacity change from 0 to 512
[  818.658774][T24857] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  818.805550][T24872] netlink: 'syz.4.8051': attribute type 30 has an invalid length.
[  818.807858][T24857] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  818.813577][T24872] netlink: 32 bytes leftover after parsing attributes in process `syz.4.8051'.
[  818.836214][T24872] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[  818.847848][T24872] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[  818.903950][T24857] ext4 filesystem being mounted at /1508/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  819.033846][T13984] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  819.167951][ T6052] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  819.198019][T24883] loop1: detected capacity change from 0 to 64
[  819.261928][T13984] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  819.293454][T24886] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8059'.
[  819.309147][T13984] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x9D, changing to 0x8D
[  819.344636][T13984] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  819.413076][T13984] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  819.441440][T13984] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  819.467437][T13984] usb 3-1: Product: syz
[  819.471622][T13984] usb 3-1: Manufacturer: syz
[  819.476216][T13984] usb 3-1: SerialNumber: syz
[  819.506727][T24892] loop1: detected capacity change from 0 to 64
[  819.532172][T13984] usb 3-1: config 0 descriptor??
[  819.755635][T24903] loop3: detected capacity change from 0 to 1024
[  819.816088][T13984] usb 3-1: USB disconnect, device number 25
[  819.836873][   T44] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  819.892706][T24903] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  819.965041][ T7131] udevd[7131]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  820.046137][ T6052] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  820.086518][   T44] usb 1-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  820.106424][   T44] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  820.123139][   T44] usb 1-1: Product: syz
[  820.146341][   T44] usb 1-1: Manufacturer: syz
[  820.151323][   T44] usb 1-1: SerialNumber: syz
[  820.178958][   T44] usb 1-1: config 0 descriptor??
[  820.197973][   T44] i2c-tiny-usb 1-1:0.0: version 6d.cc found at bus 001 address 022
[  820.217889][T24913] loop3: detected capacity change from 0 to 1024
[  820.254120][T24913] fuse: Bad value for 'fd'
[  820.267809][T24900] loop4: detected capacity change from 0 to 32768
[  820.318324][   T59] hfsplus: b-tree write err: -5, ino 4
[  820.636698][   T44]  (null): failure reading functionality
[  820.662602][   T44] i2c i2c-1: failure reading functionality
[  820.688940][   T44] i2c i2c-1: connected i2c-tiny-usb device
[  820.729474][   T44] usb 1-1: USB disconnect, device number 22
[  821.064873][T24937] loop4: detected capacity change from 0 to 1024
[  821.100893][T24937] EXT4-fs: Ignoring removed nomblk_io_submit option
[  821.128197][T24937] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  821.186761][T24937] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  821.309265][T24949] cgroup: Unknown subsys name 'cpuset'
[  821.434800][ T6038] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  821.618618][T24965] openvswitch: netlink: Message has 4 unknown bytes.
[  821.766036][T24972] netlink: 3 bytes leftover after parsing attributes in process `syz.1.8099'.
[  821.791186][T24972] netlink: 3 bytes leftover after parsing attributes in process `syz.1.8099'.
[  821.816325][T24972] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  821.947963][T24980] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8103'.
[  823.028276][T25039] /dev/nullb0: Can't open blockdev
[  823.105386][   T30] audit: type=1326 audit(1752150167.758:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25042 comm="syz.4.8134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  823.128252][   T30] audit: type=1326 audit(1752150167.777:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25042 comm="syz.4.8134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  823.162524][ T6189] usb 2-1: new full-speed USB device number 9 using dummy_hcd
[  823.208354][   T30] audit: type=1326 audit(1752150167.804:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25042 comm="syz.4.8134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  823.209711][ T6162] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  823.263761][   T30] audit: type=1326 audit(1752150167.804:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25042 comm="syz.4.8134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  823.327296][   T30] audit: type=1326 audit(1752150167.804:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25042 comm="syz.4.8134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76f6b8e929 code=0x7ffc0000
[  823.347469][T25053] loop4: detected capacity change from 0 to 128
[  823.376005][ T6189] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  823.401151][ T6189] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  823.412384][ T6162] usb 4-1: Using ep0 maxpacket: 8
[  823.414722][ T6189] usb 2-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x76, changing to 0x6
[  823.441532][ T6162] usb 4-1: config 0 has an invalid interface number: 239 but max is 0
[  823.441823][ T6189] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 30062, setting to 64
[  823.461037][ T6162] usb 4-1: config 0 has no interface number 0
[  823.461084][ T6162] usb 4-1: config 0 interface 239 altsetting 0 endpoint 0x3 has invalid maxpacket 51986, setting to 1024
[  823.472625][ T6189] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  823.530079][ T6162] usb 4-1: config 0 interface 239 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[  823.538586][ T6189] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  823.553970][ T6162] usb 4-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=99.1a
[  823.563293][ T6162] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  823.581232][ T6162] usb 4-1: Product: syz
[  823.597167][ T6162] usb 4-1: Manufacturer: syz
[  823.601237][T25031] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  823.601770][ T6162] usb 4-1: SerialNumber: syz
[  823.615416][ T6189] hub 2-1:1.0: bad descriptor, ignoring hub
[  823.641531][ T6189] hub 2-1:1.0: probe with driver hub failed with error -5
[  823.644956][ T6162] usb 4-1: config 0 descriptor??
[  823.666413][ T6189] cdc_wdm 2-1:1.0: skipping garbage
[  823.680731][T25034] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  823.687963][ T6189] cdc_wdm 2-1:1.0: skipping garbage
[  823.703423][ T6189] cdc_wdm 2-1:1.0: probe with driver cdc_wdm failed with error -22
[  823.951815][ T6162] ath6kl: Failed to submit usb control message: -71
[  823.964219][ T6189] usb 2-1: USB disconnect, device number 9
[  823.971573][ T6162] ath6kl: unable to send the bmi data to the device: -71
[  823.982596][ T6162] ath6kl: Unable to send get target info: -71
[  823.995046][ T6162] ath6kl: Failed to init ath6kl core: -71
[  824.052170][ T6162] ath6kl_usb 4-1:0.239: probe with driver ath6kl_usb failed with error -71
[  824.102601][ T6162] usb 4-1: USB disconnect, device number 28
[  824.581270][T25102] netlink: 348 bytes leftover after parsing attributes in process `syz.4.8162'.
[  824.900599][T25116] loop1: detected capacity change from 0 to 256
[  825.224088][T25130] loop4: detected capacity change from 0 to 256
[  825.266132][T25130] exfat: Deprecated parameter 'namecase'
[  825.298312][T25130] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d)
[  825.954657][T25119] loop2: detected capacity change from 0 to 40427
[  825.981414][T25119] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  825.989175][T25119] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  826.046769][T25119] F2FS-fs (loop2): invalid crc value
[  826.137795][T25164] loop4: detected capacity change from 0 to 1764
[  826.213047][T25173] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8195'.
[  826.391238][T25119] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  826.445452][T25119] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  826.452505][T25119] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  826.573695][T25180] 9pnet: Could not find request transport: 0xffffffffffffffff
[  827.078628][T25197] loop1: detected capacity change from 0 to 4096
[  827.197393][T25197] overlay: filesystem on ./file0 is read-only
[  827.317491][T25187] loop3: detected capacity change from 0 to 40427
[  827.540597][T25187] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  827.574695][T25187] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  828.078333][T25225] loop2: detected capacity change from 0 to 1024
[  828.097473][T25225] EXT4-fs: Ignoring removed nobh option
[  828.126691][T25225] EXT4-fs: Ignoring removed bh option
[  828.180533][T25225] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  828.357104][ T6046] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  828.582099][   T30] audit: type=1326 audit(1752150172.816:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25243 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  828.662462][   T30] audit: type=1326 audit(1752150172.825:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25243 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  828.749752][   T30] audit: type=1326 audit(1752150172.964:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25243 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  828.784862][   T30] audit: type=1326 audit(1752150172.964:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25243 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8de38e929 code=0x7ffc0000
[  828.969429][T25250] loop3: detected capacity change from 0 to 4096
[  828.997762][T25250] ntfs3(loop3): It is recommened to use chkdsk.
[  829.020129][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00
[  829.058186][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00
[  829.074817][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00
[  829.117462][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00
[  829.162889][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffc1c00
[  829.195814][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffc2c00
[  829.258382][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffc4c00
[  829.278254][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffc8c00
[  829.318762][T25250] ntfs3(loop3): try to read out of volume at offset 0x3fffffd0c00
[  829.488729][T25275] loop1: detected capacity change from 0 to 2048
[  829.543735][T25275] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  829.584122][T25275] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  829.915956][T25287] loop2: detected capacity change from 0 to 4096
[  829.938805][T25287] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  830.193116][   T10] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  830.256274][T25306] loop2: detected capacity change from 0 to 64
[  830.288074][T25306] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended.  mounting read-only.
[  830.331693][T25306] hfs: filesystem is marked locked, mounting read-only.
[  830.396096][   T10] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[  830.446778][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  830.486057][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[  830.532123][   T10] usb 4-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  830.572282][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  830.580298][   T10] usb 4-1: Product: syz
[  830.597386][T25318] loop4: detected capacity change from 0 to 512
[  830.603965][   T10] usb 4-1: Manufacturer: syz
[  830.610495][   T10] usb 4-1: SerialNumber: syz
[  830.618300][T25321] loop1: detected capacity change from 0 to 64
[  830.630903][   T10] usb 4-1: config 0 descriptor??
[  830.696508][T25318] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  830.721208][T25318] ext4 filesystem being mounted at /1689/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  830.741093][T25321] hfs: request for non-existent node 327680 in B*Tree
[  830.776632][T25321] hfs: request for non-existent node 327680 in B*Tree
[  830.831607][ T6038] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  830.851152][   T59] hfs: request for non-existent node 327680 in B*Tree
[  830.875532][   T59] hfs: request for non-existent node 327680 in B*Tree
[  831.603195][T25353] loop1: detected capacity change from 0 to 1024
[  831.614624][T25355] loop3: detected capacity change from 0 to 128
[  831.683614][T25355] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  831.707091][T25355] FAT-fs (loop3): Filesystem has been set read-only
[  831.756625][   T59] hfsplus: b-tree write err: -5, ino 4
[  832.399619][T25350] loop4: detected capacity change from 0 to 32768
[  832.461490][T25350] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8279 (25350)
[  832.529248][T25350] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  832.574214][T25350] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  832.612756][T25350] BTRFS info (device loop4): using free-space-tree
[  832.791003][T25350] BTRFS info (device loop4): rebuilding free space tree
[  833.030081][ T6038] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  833.538877][T25368] loop1: detected capacity change from 0 to 32768
[  833.623822][T25368] 
[  833.623822][T25368]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  833.623822][T25368] 
[  833.731754][T25368] 
[  833.731754][T25368]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  833.731754][T25368] 
[  833.774298][T25368] 
[  833.774298][T25368]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  833.774298][T25368] 
[  833.884537][  T112] 
[  833.884537][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  833.884537][  T112] 
[  833.974707][ T1838] 
[  833.974707][ T1838]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  833.974707][ T1838] 
[  834.024818][ T1838] 
[  834.024818][ T1838]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  834.024818][ T1838] 
[  834.054489][T25410] loop2: detected capacity change from 0 to 4096
[  834.057759][ T6040] 
[  834.057759][ T6040]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  834.057759][ T6040] 
[  834.127023][T25410] EXT4-fs: Ignoring removed nomblk_io_submit option
[  834.133322][ T6040] 
[  834.133322][ T6040]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  834.133322][ T6040] 
[  834.179098][  T111] 
[  834.179098][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  834.179098][  T111] 
[  834.196841][T25410] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  834.222172][  T111] ==================================================================
[  834.230242][  T111] BUG: KASAN: slab-use-after-free in txEnd+0x32d/0x530
[  834.237087][  T111] Write of size 8 at addr ffff888027686840 by task jfsCommit/111
[  834.244797][  T111] 
[  834.247118][  T111] CPU: 1 UID: 0 PID: 111 Comm: jfsCommit Not tainted 6.16.0-rc5-next-20250710-syzkaller #0 PREEMPT(full) 
[  834.247144][  T111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  834.247155][  T111] Call Trace:
[  834.247163][  T111]  <TASK>
[  834.247172][  T111]  dump_stack_lvl+0x189/0x250
[  834.247195][  T111]  ? rcu_is_watching+0x15/0xb0
[  834.247211][  T111]  ? __kasan_check_byte+0x12/0x40
[  834.247229][  T111]  ? __pfx_dump_stack_lvl+0x10/0x10
[  834.247245][  T111]  ? rcu_is_watching+0x15/0xb0
[  834.247259][  T111]  ? lock_release+0x4b/0x3e0
[  834.247281][  T111]  ? __virt_addr_valid+0x1c8/0x5c0
[  834.247297][  T111]  ? __virt_addr_valid+0x4a5/0x5c0
[  834.247313][  T111]  print_report+0xca/0x230
[  834.247329][  T111]  ? txEnd+0x32d/0x530
[  834.247349][  T111]  kasan_report+0x118/0x150
[  834.247372][  T111]  ? txEnd+0x32d/0x530
[  834.247394][  T111]  kasan_check_range+0x2b0/0x2c0
[  834.247413][  T111]  txEnd+0x32d/0x530
[  834.247430][  T111]  jfs_lazycommit+0x5ba/0xa90
[  834.247450][  T111]  ? __pfx_jfs_lazycommit+0x10/0x10
[  834.247467][  T111]  ? __pfx_default_wake_function+0x10/0x10
[  834.247493][  T111]  ? __kthread_parkme+0x7b/0x200
[  834.247508][  T111]  ? __kthread_parkme+0x1a1/0x200
[  834.247530][  T111]  kthread+0x711/0x8a0
[  834.247551][  T111]  ? __pfx_jfs_lazycommit+0x10/0x10
[  834.247574][  T111]  ? __pfx_kthread+0x10/0x10
[  834.247590][  T111]  ? _raw_spin_unlock_irq+0x23/0x50
[  834.247610][  T111]  ? lockdep_hardirqs_on+0x9c/0x150
[  834.247622][  T111]  ? __pfx_kthread+0x10/0x10
[  834.247638][  T111]  ret_from_fork+0x3f9/0x770
[  834.247652][  T111]  ? __pfx_ret_from_fork+0x10/0x10
[  834.247668][  T111]  ? __switch_to_asm+0x39/0x70
[  834.247683][  T111]  ? __switch_to_asm+0x33/0x70
[  834.247701][  T111]  ? __pfx_kthread+0x10/0x10
[  834.247723][  T111]  ret_from_fork_asm+0x1a/0x30
[  834.247751][  T111]  </TASK>
[  834.247758][  T111] 
[  834.427678][  T111] Allocated by task 25368:
[  834.432085][  T111]  kasan_save_track+0x3e/0x80
[  834.436751][  T111]  __kasan_kmalloc+0x93/0xb0
[  834.441328][  T111]  __kmalloc_cache_noprof+0x230/0x3d0
[  834.446694][  T111]  lmLogOpen+0x2d1/0xfb0
[  834.450922][  T111]  jfs_mount_rw+0xe9/0x670
[  834.455327][  T111]  jfs_fill_super+0x754/0xd80
[  834.459984][  T111]  get_tree_bdev_flags+0x40e/0x4d0
[  834.465078][  T111]  vfs_get_tree+0x92/0x2b0
[  834.469478][  T111]  do_new_mount+0x2a2/0x9e0
[  834.473969][  T111]  __se_sys_mount+0x317/0x410
[  834.478628][  T111]  do_syscall_64+0xfa/0x3b0
[  834.483116][  T111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.488990][  T111] 
[  834.491300][  T111] Freed by task 6040:
[  834.495265][  T111]  kasan_save_track+0x3e/0x80
[  834.499926][  T111]  kasan_save_free_info+0x46/0x50
[  834.504929][  T111]  __kasan_slab_free+0x62/0x70
[  834.509678][  T111]  kfree+0x18e/0x440
[  834.513559][  T111]  lmLogClose+0x297/0x520
[  834.517871][  T111]  jfs_umount+0x2ef/0x3c0
[  834.522183][  T111]  jfs_put_super+0x8c/0x190
[  834.526676][  T111]  generic_shutdown_super+0x132/0x2c0
[  834.532035][  T111]  kill_block_super+0x44/0x90
[  834.536706][  T111]  deactivate_locked_super+0xbc/0x130
[  834.542063][  T111]  cleanup_mnt+0x425/0x4c0
[  834.546474][  T111]  task_work_run+0x1d4/0x260
[  834.551050][  T111]  exit_to_user_mode_loop+0xec/0x110
[  834.556319][  T111]  do_syscall_64+0x2bd/0x3b0
[  834.560891][  T111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.566765][  T111] 
[  834.569078][  T111] The buggy address belongs to the object at ffff888027686800
[  834.569078][  T111]  which belongs to the cache kmalloc-1k of size 1024
[  834.583107][  T111] The buggy address is located 64 bytes inside of
[  834.583107][  T111]  freed 1024-byte region [ffff888027686800, ffff888027686c00)
[  834.596888][  T111] 
[  834.599193][  T111] The buggy address belongs to the physical page:
[  834.605595][  T111] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x27680
[  834.614340][  T111] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  834.622820][  T111] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  834.630781][  T111] page_type: f5(slab)
[  834.634748][  T111] raw: 00fff00000000040 ffff88801a441dc0 0000000000000000 dead000000000001
[  834.643320][  T111] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  834.651889][  T111] head: 00fff00000000040 ffff88801a441dc0 0000000000000000 dead000000000001
[  834.660540][  T111] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  834.669195][  T111] head: 00fff00000000003 ffffea00009da001 00000000ffffffff 00000000ffffffff
[  834.677850][  T111] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  834.686501][  T111] page dumped because: kasan: bad access detected
[  834.692894][  T111] page_owner tracks the page as allocated
[  834.698586][  T111] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5619, tgid 5619 (dhcpcd), ts 45885988219, free_ts 45856579471
[  834.719414][  T111]  post_alloc_hook+0x240/0x2a0
[  834.724180][  T111]  get_page_from_freelist+0x21e4/0x22c0
[  834.729716][  T111]  __alloc_frozen_pages_noprof+0x181/0x370
[  834.735509][  T111]  alloc_pages_mpol+0x232/0x4a0
[  834.740347][  T111]  allocate_slab+0x8a/0x370
[  834.744831][  T111]  ___slab_alloc+0xbeb/0x1410
[  834.749500][  T111]  __kmalloc_noprof+0x305/0x4f0
[  834.754341][  T111]  load_elf_phdrs+0x139/0x230
[  834.759006][  T111]  load_elf_binary+0x954/0x2730
[  834.763842][  T111]  bprm_execve+0x999/0x1450
[  834.768329][  T111]  do_execveat_common+0x510/0x6a0
[  834.773338][  T111]  __x64_sys_execve+0x94/0xb0
[  834.778000][  T111]  do_syscall_64+0xfa/0x3b0
[  834.782494][  T111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.788367][  T111] page last free pid 5618 tgid 5618 stack trace:
[  834.794672][  T111]  __free_frozen_pages+0xbc4/0xd30
[  834.799769][  T111]  __put_partials+0x156/0x1a0
[  834.804431][  T111]  put_cpu_partial+0x17c/0x250
[  834.809195][  T111]  __slab_free+0x2d5/0x3c0
[  834.813590][  T111]  qlist_free_all+0x97/0x140
[  834.818174][  T111]  kasan_quarantine_reduce+0x148/0x160
[  834.823620][  T111]  __kasan_slab_alloc+0x22/0x80
[  834.828460][  T111]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  834.833901][  T111]  vm_area_dup+0x2b/0x680
[  834.838228][  T111]  __split_vma+0x1a9/0xa00
[  834.842628][  T111]  vms_gather_munmap_vmas+0x4ab/0x12b0
[  834.848068][  T111]  mmap_region+0x724/0x20c0
[  834.852558][  T111]  do_mmap+0xc45/0x10d0
[  834.856703][  T111]  vm_mmap_pgoff+0x2a6/0x4d0
[  834.861276][  T111]  ksys_mmap_pgoff+0x51f/0x760
[  834.866026][  T111]  do_syscall_64+0xfa/0x3b0
[  834.870522][  T111] 
[  834.872827][  T111] Memory state around the buggy address:
[  834.878440][  T111]  ffff888027686700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  834.886486][  T111]  ffff888027686780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  834.894524][  T111] >ffff888027686800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  834.902560][  T111]                                            ^
[  834.908695][  T111]  ffff888027686880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  834.916741][  T111]  ffff888027686900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  834.924782][  T111] ==================================================================
[  835.072206][  T111] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  835.079432][  T111] CPU: 1 UID: 0 PID: 111 Comm: jfsCommit Not tainted 6.16.0-rc5-next-20250710-syzkaller #0 PREEMPT(full) 
[  835.090713][  T111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  835.100767][  T111] Call Trace:
[  835.104048][  T111]  <TASK>
[  835.106974][  T111]  dump_stack_lvl+0x99/0x250
[  835.111555][  T111]  ? __asan_memcpy+0x40/0x70
[  835.116133][  T111]  ? __pfx_dump_stack_lvl+0x10/0x10
[  835.121329][  T111]  ? __pfx__printk+0x10/0x10
[  835.125922][  T111]  panic+0x2e2/0x7b0
[  835.129807][  T111]  ? __pfx_panic+0x10/0x10
[  835.134208][  T111]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  835.140092][  T111]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  835.146413][  T111]  ? print_memory_metadata+0x314/0x400
[  835.151872][  T111]  ? txEnd+0x32d/0x530
[  835.155935][  T111]  check_panic_on_warn+0x89/0xb0
[  835.160862][  T111]  ? txEnd+0x32d/0x530
[  835.164921][  T111]  end_report+0x78/0x160
[  835.169151][  T111]  kasan_report+0x129/0x150
[  835.173650][  T111]  ? txEnd+0x32d/0x530
[  835.177717][  T111]  kasan_check_range+0x2b0/0x2c0
[  835.182647][  T111]  txEnd+0x32d/0x530
[  835.186531][  T111]  jfs_lazycommit+0x5ba/0xa90
[  835.191199][  T111]  ? __pfx_jfs_lazycommit+0x10/0x10
[  835.196392][  T111]  ? __pfx_default_wake_function+0x10/0x10
[  835.202196][  T111]  ? __kthread_parkme+0x7b/0x200
[  835.207124][  T111]  ? __kthread_parkme+0x1a1/0x200
[  835.212143][  T111]  kthread+0x711/0x8a0
[  835.216207][  T111]  ? __pfx_jfs_lazycommit+0x10/0x10
[  835.221390][  T111]  ? __pfx_kthread+0x10/0x10
[  835.225972][  T111]  ? _raw_spin_unlock_irq+0x23/0x50
[  835.231165][  T111]  ? lockdep_hardirqs_on+0x9c/0x150
[  835.236346][  T111]  ? __pfx_kthread+0x10/0x10
[  835.240917][  T111]  ret_from_fork+0x3f9/0x770
[  835.245499][  T111]  ? __pfx_ret_from_fork+0x10/0x10
[  835.250601][  T111]  ? __switch_to_asm+0x39/0x70
[  835.255353][  T111]  ? __switch_to_asm+0x33/0x70
[  835.260104][  T111]  ? __pfx_kthread+0x10/0x10
[  835.264682][  T111]  ret_from_fork_asm+0x1a/0x30
[  835.269442][  T111]  </TASK>
[  835.272682][  T111] Kernel Offset: disabled
[  835.276985][  T111] Rebooting in 86400 seconds..