last executing test programs:

13m59.542487731s ago: executing program 1 (id=253):
r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_QUERYCTRL(r0, 0xc0445624, &(0x7f0000001280)={0x8098f908, 0x101, "24a2fe6abe231db9c9a431078d40f722e600", 0x0, 0x0, 0x4})

13m59.240015287s ago: executing program 1 (id=255):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=@ipv6_getaddr={0x20, 0x16, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@IFA_TARGET_NETNSID={0x8, 0xa, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

13m59.06612167s ago: executing program 1 (id=257):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
ioctl$EVIOCGKEY(r0, 0x8040453f, 0x0)

13m58.766618316s ago: executing program 1 (id=262):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$eJzs281vG8Ufx/HPbGJnk/b3w31yC6qEJSSKiiix05I+gRRa0iL1gbYJAqEWhcYJVhMnitOqraCtxKFHoEggJA7l0AtCVZHgAgcOcOM/4MKtBy6YEycQms2sd+26JK0fEjfvl5R4vPv17uzM7OysdywAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACC9/MpQf9Ysdy4AAEA7HTt1sj/H9R8AgFVlhPt/AACA1cTI0ycy+uHTsjkavF/gHykUz18cPThc/2O9JvhkVxBv//xsbmDnrhcGd4ev//35Zntcx0+NDGUOzEzPzuVLpfx4ZrRYODsznl/yFhr9fK3tQQFkps+dH5+YKGVyOwaqVl9M3e1Zk07tG0zvfzqMHT04PHwqFtOdeOi93+N+I/ykPF2XUfnj2+aYJE+Nl8UibafVeoOD2B4cxOjB4eBApgpjxXm70oQF4VWXSTIsozbURUM2SjZfJtmce7aEPJVktCldNscldYXl8GzwxfDiG/Cako0HZvN5WlJGHVBnK1iPPO2S0Y09Kb1myyys/27p/eXOHFquW55uy2jbS2VzIugP7Plku80jr2deLU7MxGKNcWdUp18f2mmF902+PB0LzviyObncmUHb2cHSaRntHLkQjCsUjEsf2zd46PBIfISxeZHt2NgdLr2Ua3IiNnQwyzSGAAAAAAAAAB51vvGC7+I+/8YP3mfcMyCsEsbT8zL683A5eDQen5fQFZvfUdHpz35am/9e/8DM7KW5wuS783XX9/lD75Tm58bO1l+tXnvyVX0dvtg8hgYljKfdMrr6z51ovylj064biHZ0a3+UN9/UrA3azf8X5rOEzxD2Dm+Op+tm+QGej6XcfumfgOYwxtOQjCa+3+LmfvTpnj7IxX0roz9ubnVxXtIGhadpKvjvTxSm8v029icZffl3GBtMM9MaF7shis3aWE9GHx2tjl3rYjdGsTkbe0hGP5+pH7spih2wsR/IaPb3TBjbZ2OfdLHpKHbH2Zmp8ZYV8Apn+/8rMlr/YsaEdenKy3WzXZXYW+9F/f212g3dp89vtP9PxZZdc+3wrm2vZ7YEbS9or1799npdRl9/t9XFLbSVpFu/Lvgftdc3ZDT5S3Vsn4tdH8Vml1ywHcLW/9syyhXvVMrG1b+rgdj1P1b/T9S2jhbV/7rYspTbb09zDh2SSpcunxubmsrPkSBBYgmJHq2IbCySCPvlh9/OMndMaAt7/f9MRm+e+LUy3nHXfzesjsZ/f12Jrv97azfUouv/+tiyvW40kuiW/Pnp2URa8kuXLj9XmB6bzE/miwO57J7+PTsHs4lkOLaLUg0X1SMp4e7VLnz4VeX+rHr8V3/831e7oRbV/waXzXCfUSfVlMNf9Wz9/yajt368U7mPtvV/sxJRPf4P77OeeWrhtXJ+tqj+N8aWpdx+/9eE4wYAAAAAAAAAAAAAAACATpcwnm7IyD/dbcLfRi1l/t89P5hq0fyvdGzZeJt+r9BwoQJAB/Dk6QsZbVPZXLUL1kpH4694pP0bAAD//3VdHM0=")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

13m58.185699297s ago: executing program 1 (id=266):
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x441, 0x20)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)

13m57.45605491s ago: executing program 1 (id=274):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000002800)='ns/uts\x00')
ioctl$NS_GET_USERNS(r0, 0xb701, 0x0)

13m56.92515309s ago: executing program 32 (id=274):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000002800)='ns/uts\x00')
ioctl$NS_GET_USERNS(r0, 0xb701, 0x0)

13m53.678860782s ago: executing program 3 (id=307):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="100000000000000000000000000000001800000000000000100100000d"], 0x28}, 0x0)

13m53.438957317s ago: executing program 3 (id=310):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000400)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c696e74722c6e6f61636c2c0050890e1d2cc1bbbdf08d08fe06ff2766758d8955927fab01a7ccdecfc59b2041a9461723f1db971e775e0e358c03b00c510998283ed6f1dba0502d352e58b65a28492b0a7053e14eccd84ac5b3452602d77c0ca0"], 0x1, 0x442d, &(0x7f0000004480)="$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")
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x1)

13m51.975402264s ago: executing program 3 (id=316):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73f72cc9f0ba1f848340000005e120602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x800)

13m48.957606092s ago: executing program 3 (id=329):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

13m48.313870244s ago: executing program 3 (id=335):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x24, 0x7, 0x6, 0x401, 0x0, 0x0, {0x5, 0x0, 0x4}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x40800)

13m47.612049708s ago: executing program 3 (id=340):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x17}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ffffffc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x14, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f86dd", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

13m47.154028156s ago: executing program 33 (id=340):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x17}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ffffffc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x14, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f86dd", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

11m13.316130419s ago: executing program 4 (id=2415):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002280)=ANY=[@ANYBLOB="480000001000ffff27bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="100a0500231a0500280012800b000100697036746e6c00001800028014000300ff"], 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)

11m12.984058655s ago: executing program 4 (id=2421):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000040)=@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xa}}, 0x80, 0x0, 0x0, &(0x7f0000002880)=ANY=[], 0xa}, 0x8000840)

11m12.799902869s ago: executing program 4 (id=2424):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newtaction={0x74, 0x30, 0x9, 0x0, 0x0, {}, [{0x60, 0x1, [@m_mpls={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_MPLS_TC={0x5}, @TCA_MPLS_LABEL={0x8}, @TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x2}}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)

11m12.630009542s ago: executing program 4 (id=2429):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000003c0)={[{@errors_remount}, {@gid}, {@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0x8c1}}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@errors_continue}, {@keep_last_dots}, {@errors_remount}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'ascii'}}, {@namecase}]}, 0x1, 0x1531, &(0x7f0000001f80)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)

11m12.20753784s ago: executing program 4 (id=2436):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000000a00)={'sit0\x00', &(0x7f00000000c0)=@ethtool_cmd={0x3a, 0x40009, 0x0, 0x400, 0x2, 0x0, 0x8, 0xfe, 0x0, 0x9, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x45, [0xfff, 0x2]}})

11m11.14777851s ago: executing program 4 (id=2450):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x4, 0x0, 0x47)

11m10.746124457s ago: executing program 34 (id=2450):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x4, 0x0, 0x47)

7m27.756069614s ago: executing program 6 (id=5818):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7ff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix_mp={0x0, 0x1, 0x35314152}})

7m27.523250909s ago: executing program 6 (id=5820):
r0 = socket(0x848000000015, 0x805, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c)

7m27.300081463s ago: executing program 6 (id=5822):
r0 = socket$nl_route(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000100)="24000000580085b3a85c91fddf81ee6366843b3f0941a3080401000501009f0800028001", 0x24)

7m27.111649476s ago: executing program 6 (id=5825):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000400)={[{@umask={'umask', 0x3d, 0x8}}, {@discard}, {@gid={'gid', 0x3d, 0xee00}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@errors_continue}, {@dmask={'dmask', 0x3d, 0x1ff}}, {@umask={'umask', 0x3d, 0x7}}, {@umask={'umask', 0x3d, 0x400}}, {@dmask={'dmask', 0x3d, 0x5}}]}, 0x1, 0x1534, &(0x7f0000002d00)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

7m26.552290787s ago: executing program 6 (id=5832):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000500)={{0x12, 0x1, 0x0, 0xc1, 0x66, 0xa0, 0x10, 0x483, 0x1234, 0xff76, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x7b, 0xe4, 0xa8}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000380)={0x14, 0x0, &(0x7f0000000280)={0x0, 0x3, 0x4, @string={0x4, 0x3, "91f9"}}}, 0x0)

7m25.856026771s ago: executing program 6 (id=5837):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@ipv4_newrule={0x2c, 0x20, 0x301, 0x0, 0x25dfdbfb, {0x2, 0x20}, [@FRA_DST={0x8, 0x1, @empty}, @FRA_FLOW={0x8}]}, 0x2c}}, 0x0)

7m25.463721798s ago: executing program 35 (id=5837):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@ipv4_newrule={0x2c, 0x20, 0x301, 0x0, 0x25dfdbfb, {0x2, 0x20}, [@FRA_DST={0x8, 0x1, @empty}, @FRA_FLOW={0x8}]}, 0x2c}}, 0x0)

4m35.356031946s ago: executing program 0 (id=8145):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="640000000206010100000000000000000000000005000400000000000900020073797a30000000000500010007000000050005000a000000140007800800114000000000080012400000ffff16000300686173683a6e6574"], 0x64}}, 0x0)

4m35.110220341s ago: executing program 0 (id=8148):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r0, &(0x7f0000012c40)=[{{&(0x7f0000010400)={0xa, 0x4e22, 0x101, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1d}, 0x1c, 0x0, 0x0, &(0x7f00000117c0)=[@hopopts={{0x18, 0x29, 0x36, {0x11}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x1000}}], 0x30}}], 0x1, 0x2400c801)

4m34.935410453s ago: executing program 0 (id=8152):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x7, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0xb2}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)

4m34.740635648s ago: executing program 0 (id=8156):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x1, 0x1524, &(0x7f0000002280)="$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")
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)

4m34.417207514s ago: executing program 0 (id=8161):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0xa2400)
ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f00000003c0)=""/241)

4m33.908088493s ago: executing program 0 (id=8167):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
futex(&(0x7f0000004000)=0x8007, 0x4, 0x0, 0x0, &(0x7f0000004000)=0x2, 0x2)

4m33.477144392s ago: executing program 36 (id=8167):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
futex(&(0x7f0000004000)=0x8007, 0x4, 0x0, 0x0, &(0x7f0000004000)=0x2, 0x2)

2m9.824203293s ago: executing program 7 (id=10092):
setreuid(0x0, 0xee00)
request_key(&(0x7f0000000440)='rxrpc_s\x00', &(0x7f0000000480)={'syz', 0x3}, &(0x7f0000000500)='/dev/vcsu#\x00', 0xffffffffffffffff)

2m9.641895086s ago: executing program 7 (id=10094):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_DEL_MFC(r0, 0x0, 0xcd, 0x0, 0x0)

2m9.433629501s ago: executing program 7 (id=10098):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x4, 0x88000)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, 0x0)

2m9.264013834s ago: executing program 7 (id=10102):
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x380401a, &(0x7f0000000380)=ANY=[@ANYBLOB='errors=continue,usrquota,integrity,iocharset=cp857,noquota,grpquota,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c007bd598141a550dbf02d47ded539aef16b5f1cf677018ad5588131d50bbd580000000000000000b9b0fa44661887a1633f523184b4e52fbab2783d4a8e4c913491c6800c959a6cba88690ccbce67e3919"], 0x1, 0x617f, &(0x7f0000012640)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

2m7.809927872s ago: executing program 7 (id=10118):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="60000000020605000000000000000000000000000e0003006269746d61703a697000000005000400000000000900020073797a31000000001800078005000300200000000c00018008000140ffffffff05000500020000000500010006"], 0x60}}, 0x0)

2m6.098983824s ago: executing program 7 (id=10137):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000a00)={'ip_vti0\x00', &(0x7f0000000980)={'syztnl2\x00', 0x0, 0x10, 0x1, 0x0, 0x9, {{0x5, 0x4, 0x3, 0x9, 0x14, 0x64, 0x0, 0x3a, 0x2f, 0x0, @empty, @empty}}}})

2m5.523564726s ago: executing program 37 (id=10137):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000a00)={'ip_vti0\x00', &(0x7f0000000980)={'syztnl2\x00', 0x0, 0x10, 0x1, 0x0, 0x9, {{0x5, 0x4, 0x3, 0x9, 0x14, 0x64, 0x0, 0x3a, 0x2f, 0x0, @empty, @empty}}}})

3.707828278s ago: executing program 5 (id=11676):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
recvfrom(r0, 0x0, 0x0, 0x2040, 0x0, 0x0)

3.502799802s ago: executing program 5 (id=11680):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000005c0)="d8000000140081044e81f782db44b904021f080219000000040060a118000200e800000a09000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c046100a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed04ffece0b42a9ecbee5de6ccd40dd68adbeffa447ef4a6fbd3824305240c000000000000", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

3.232395117s ago: executing program 5 (id=11683):
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

3.08494198s ago: executing program 9 (id=11685):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000}, 0x94)
time(&(0x7f0000000680))

2.837683615s ago: executing program 9 (id=11689):
syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000022546940fa0ae803d0990102030109023600010000000009047500038cbb2a0009050a001000010000090588"], 0x0)
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)

2.004920101s ago: executing program 5 (id=11698):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000003c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0x40485404, &(0x7f0000000180)={{0x3, 0x0, 0x1, 0xfc, 0xfffffffc}})

1.838526424s ago: executing program 5 (id=11699):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c00020036e8040ed82e"], 0xb4}}, 0x0)

1.566037579s ago: executing program 5 (id=11703):
r0 = syz_usb_connect(0x0, 0x5a, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000ec13b2106d04f308280b0102030109024800010000000009046900000e010000084101", @ANYBLOB="32b683adf11f83220156c564000400000000000089c5"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000680)={0x2c, 0x0, &(0x7f00000004c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0)

1.037194589s ago: executing program 8 (id=11711):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_AUDOUT(r0, 0x40345632, &(0x7f0000000000)={0x5, "504aa57f4f8d37386dce37ae7b09c7329b881ccd27113bceefb560cb277f7192", 0x2, 0x1})

987.543971ms ago: executing program 9 (id=11712):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020030000b02d25a806f8c2d94f90424fc602f1a04000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)

799.751374ms ago: executing program 8 (id=11715):
r0 = syz_open_dev$video4linux(&(0x7f00000007c0), 0x5, 0x20040)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f00000000c0)={0x1, 0x0, {0x1, 0x0, 0x1014, 0x4, 0xc, 0x0, 0x5, 0x4}})

752.199085ms ago: executing program 9 (id=11716):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0x14, 0x0, 0x0)

717.160346ms ago: executing program 8 (id=11717):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000e80)=@mangle={'mangle\x00', 0x1f, 0x2, 0x520, 0x290, 0x380, 0x1c0, 0xd0, 0x0, 0x478, 0x478, 0x478, 0x478, 0x478, 0x6, 0x0, {[{{@ipv6={@local, @mcast2, [0x0, 0xff, 0xff, 0xffffff00], [0xffffffff, 0xff000000, 0xff, 0xff], 'veth1_to_hsr\x00', 'wlan1\x00', {0xff}, {}, 0x5c, 0x2, 0x0, 0x50}, 0x0, 0xa8, 0xd0}, @inet=@TOS={0x28}}, {{@uncond, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@remote, @ipv4=@remote}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@loopback, @ipv4=@local, 0x1b, 0x2b, 0xf}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1b}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5a8)

675.653547ms ago: executing program 9 (id=11718):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_GET_EXTENDED_ERROR(r0, 0xc00c6211, 0x0)

636.265587ms ago: executing program 2 (id=11719):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r0, &(0x7f00000002c0), 0xfffffffffffffe4f, 0x9)

532.109799ms ago: executing program 2 (id=11720):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000007c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000f00)={'veth1_macvtap\x00', &(0x7f0000000bc0)=@ethtool_perm_addr={0x4b, 0x21, "4372070000000000476fb2940acfbe4cb631376f385355617a34d3000000000000"}})

475.9451ms ago: executing program 9 (id=11721):
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup, 0xffffffffffffffff, 0x2, 0x2}, 0x10)
syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000082505a1a4400001020301090263000201000000090480000102090000052406000105240000000d240f0100000000000000000006341a000001072414"], 0x0)

475.63485ms ago: executing program 8 (id=11722):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="3c0000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000014002b8008000100", @ANYRES32, @ANYBLOB="080004000280000008001b"], 0x3c}}, 0x0)

351.792743ms ago: executing program 8 (id=11723):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448de, &(0x7f0000000900)='[')

333.597123ms ago: executing program 2 (id=11724):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x71, 0x0)
ioctl$VIDIOC_TRY_DECODER_CMD(r0, 0xc0585605, &(0x7f00000005c0)={0x1, 0x1, @raw_data=[0xb, 0x40200c, 0x3007, 0x1, 0x8, 0x7f, 0xff, 0x4, 0x7, 0x8, 0x5, 0xd60, 0x80000004, 0x204, 0x1, 0xeb]})

258.724845ms ago: executing program 2 (id=11725):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@can_delroute={0x3c, 0x19, 0x1, 0x70bd27, 0x25dfdbfd, {0x1d, 0x1, 0x3}, [@CGW_MOD_UID={0x8}, @CGW_CS_XOR={0x8, 0x5, {0x3, 0x2, 0x3, 0x5}}, @CGW_MOD_AND={0x15, 0x1, {{{}, 0x4, 0x2, 0x0, 0x0, "92c9f484310e1caf"}, 0x4}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

213.221125ms ago: executing program 8 (id=11726):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x20108c0, &(0x7f0000007300)=ANY=[], 0xfe, 0x61b9, &(0x7f0000000400)="$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")
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

147.965406ms ago: executing program 2 (id=11727):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2082)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc0105303, &(0x7f0000000440)={0xfffffffd})

0s ago: executing program 2 (id=11728):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=@delsa={0x34, 0x11, 0x4b49a87d091fa3c9, 0x70bd2c, 0x25dfdbfe, {@in6=@remote, 0x4d6, 0xa, 0x33}, [@mark={0xc, 0x15, {0x35075d, 0x6e}}]}, 0x34}}, 0x8000)

kernel console output (not intermixed with test programs):

usb 3-1: ath9k_htc: USB layer deinitialized
[  739.553295][ T5061] loop8: detected capacity change from 0 to 256
[  739.601253][ T5061] exfat: Deprecated parameter 'utf8'
[  739.625770][ T5061] exfat: Deprecated parameter 'utf8'
[  739.763365][ T5061] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  739.805552][ T5018] loop7: detected capacity change from 0 to 32768
[  739.961177][ T5018] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  740.247195][ T5018] XFS (loop7): Ending clean mount
[  740.278648][ T5018] XFS (loop7): Quotacheck needed: Please wait.
[  740.581992][ T5018] XFS (loop7): Quotacheck: Done.
[  740.827295][T25124] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  742.324361][ T5198] netlink: 'syz.5.9008': attribute type 21 has an invalid length.
[  742.395215][ T5198] netlink: 128 bytes leftover after parsing attributes in process `syz.5.9008'.
[  742.421975][ T5198] netlink: 'syz.5.9008': attribute type 4 has an invalid length.
[  742.492549][ T5206] ALSA: mixer_oss: invalid OSS volume 'Ä'
[  743.563343][   T28] audit: type=1326 audit(1757002262.931:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5264 comm="syz.2.9029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  743.668689][   T28] audit: type=1326 audit(1757002262.931:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5264 comm="syz.2.9029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  743.769746][   T28] audit: type=1326 audit(1757002262.931:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5264 comm="syz.2.9029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  743.828389][   T28] audit: type=1326 audit(1757002262.931:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5264 comm="syz.2.9029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  743.863590][   T28] audit: type=1326 audit(1757002262.931:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5264 comm="syz.2.9029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  744.491199][ T5263] loop8: detected capacity change from 0 to 32768
[  744.553271][ T5263] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  744.746339][   T28] audit: type=1800 audit(1757002264.035:328): pid=5263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.9027" name="file1" dev="loop8" ino=17058 res=0 errno=0
[  744.892777][ T1723] ocfs2: Unmounting device (7,8) on (node local)
[  745.642956][ T5355] loop8: detected capacity change from 0 to 4096
[  745.739419][ T5361] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  745.821872][ T5355] NILFS (loop8): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  745.852406][ T5355] NILFS error (device loop8): nilfs_bmap_truncate: broken bmap (inode number=12)
[  745.889106][ T5355] Remounting filesystem read-only
[  745.905095][ T5355] NILFS (loop8): error -5 truncating bmap (ino=12)
[  746.015738][ T5351] loop2: detected capacity change from 0 to 32768
[  746.077850][ T1723] NILFS (loop8): disposed unprocessed dirty file(s) when detaching log writer
[  746.080325][ T5351] jfs_lookup: iget failed on inum 32
[  746.086778][ T1723] NILFS (loop8): discard dirty page: offset=0, ino=2
[  746.092946][ T5351] jfs_lookup: iget failed on inum 32
[  746.150233][ T1723] NILFS (loop8): discard dirty block: blocknr=14, size=4096
[  746.192832][ T1723] NILFS (loop8): discard dirty page: offset=0, ino=6
[  746.206161][ T1723] NILFS (loop8): discard dirty block: blocknr=23, size=4096
[  746.213683][ T1723] NILFS (loop8): discard dirty page: offset=4096, ino=6
[  746.245969][ T1723] NILFS (loop8): discard dirty block: blocknr=24, size=4096
[  746.269697][ T1723] NILFS (loop8): discard dirty page: offset=8192, ino=6
[  746.296286][ T1723] NILFS (loop8): discard dirty block: blocknr=25, size=4096
[  747.462073][ T5432] loop8: detected capacity change from 0 to 256
[  748.575934][ T5499] netlink: 209852 bytes leftover after parsing attributes in process `syz.7.9098'.
[  749.276539][ T5537] No such timeout policy "syz0"
[  749.569526][ T5508] loop8: detected capacity change from 0 to 32768
[  749.872642][ T5566] netlink: 16 bytes leftover after parsing attributes in process `syz.8.9117'.
[  750.149281][ T5578] netlink: 76 bytes leftover after parsing attributes in process `syz.8.9121'.
[  750.797915][ T5610] batadv0: entered promiscuous mode
[  751.552414][ T5650] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  751.807435][ T5667] netlink: 'syz.8.9148': attribute type 1 has an invalid length.
[  751.890879][ T5671] loop2: detected capacity change from 0 to 256
[  751.917028][ T5671] exfat: Deprecated parameter 'namecase'
[  751.961895][ T5671] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x3d8a7575, utbl_chksum : 0xe619d30d)
[  752.075771][ T5671] exFAT-fs (loop2): error, tried to truncate zeroed cluster.
[  752.170218][ T5682] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  752.568383][ T5704] netlink: 'syz.8.9159': attribute type 16 has an invalid length.
[  752.576280][ T5704] netlink: 64138 bytes leftover after parsing attributes in process `syz.8.9159'.
[  752.623389][ T5708] tmpfs: Group quota inode hardlimit too large.
[  753.117751][ T5734] tc_dump_action: action bad kind
[  753.767706][ T5773] xt_hashlimit: overflow, try lower: 18446744073709551614/15680
[  754.170941][ T5813] netlink: 8 bytes leftover after parsing attributes in process `syz.7.9190'.
[  754.193850][ T5813] netlink: 312 bytes leftover after parsing attributes in process `syz.7.9190'.
[  754.222611][ T5803] loop8: detected capacity change from 0 to 4096
[  754.250421][ T5817] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9191'.
[  754.292406][ T5803] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  754.320335][T26808] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  754.454099][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  754.555424][T26808] usb 3-1: Using ep0 maxpacket: 32
[  754.572514][T26808] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  754.613465][T26808] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  754.642150][T26808] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  754.666325][T26808] usb 3-1: Product: syz
[  754.670582][T26808] usb 3-1: Manufacturer: syz
[  754.680167][T26808] usb 3-1: SerialNumber: syz
[  754.701457][T26808] usb 3-1: config 0 descriptor??
[  754.710293][T26808] cdc_ether: probe of 3-1:0.0 failed with error -22
[  754.723887][T26808] usb 3-1: unsupported MDLM descriptors
[  754.969629][T26808] usb 3-1: USB disconnect, device number 33
[  754.985889][ T5873] vlan0: entered promiscuous mode
[  755.031050][ T5868] loop7: detected capacity change from 0 to 4096
[  755.100993][ T5868] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  755.278790][ T5868] EXT4-fs error (device loop7): ext4_get_first_dir_block:3604: inode #12: block 80: comm syz.7.9198: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  755.313176][ T5868] EXT4-fs error (device loop7): ext4_get_first_dir_block:3606: inode #12: comm syz.7.9198: directory missing '..'
[  755.406208][T25124] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  755.771782][ T5912] loop7: detected capacity change from 0 to 4096
[  755.832541][ T5912] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  756.168440][T25124] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  756.256106][   T23] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  756.330419][ T5942] loop2: detected capacity change from 0 to 2048
[  756.402463][ T5950] netlink: 'syz.5.9216': attribute type 9 has an invalid length.
[  756.403375][ T5942]  loop2: p1 p2 < > p3 < p5 p6 > p4
[  756.412616][ T5950] netlink: 209836 bytes leftover after parsing attributes in process `syz.5.9216'.
[  756.447771][ T5942] loop2: partition table partially beyond EOD, truncated
[  756.464775][ T5942] loop2: p2 start 4278190080 is beyond EOD, truncated
[  756.498542][ T5942] loop2: p4 size 8192 extends beyond EOD, truncated
[  756.511861][   T23] usb 9-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  756.543377][   T23] usb 9-1: New USB device strings: Mfr=13, Product=2, SerialNumber=3
[  756.568212][   T23] usb 9-1: Product: syz
[  756.572474][   T23] usb 9-1: Manufacturer: syz
[  756.589225][ T5942] loop2: p6 size 8192 extends beyond EOD, truncated
[  756.594683][ T5961] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  756.609129][   T23] usb 9-1: SerialNumber: syz
[  756.630186][   T23] r8152-cfgselector 9-1: config 0 descriptor??
[  756.898789][   T23] usbip-host 9-1: 9-1 is not in match_busid table... skip!
[  757.150214][ T5881] usb 9-1: USB disconnect, device number 4
[  757.182939][T13796] udevd[13796]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory
[  757.209286][ T6177] udevd[6177]: inotify_add_watch(7, /dev/loop2p6, 10) failed: No such file or directory
[  757.699613][ T6020] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9231'.
[  758.105016][ T6040] netlink: 24 bytes leftover after parsing attributes in process `syz.2.9238'.
[  758.744881][ T6078] netlink: 3657 bytes leftover after parsing attributes in process `syz.7.9250'.
[  759.169460][ T6100] netlink: 20 bytes leftover after parsing attributes in process `syz.2.9257'.
[  759.565073][ T6119] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  759.596356][ T6123] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9265'.
[  760.478059][ T6171] netlink: 16 bytes leftover after parsing attributes in process `syz.8.9279'.
[  760.524484][ T6171] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9279'.
[  761.205374][ T6216] netlink: 1088 bytes leftover after parsing attributes in process `syz.5.9293'.
[  761.288403][   T28] audit: type=1326 audit(1757002279.507:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6218 comm="syz.2.9295" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd51b58ebe9 code=0x0
[  761.895615][ T6252] ieee802154 phy0 wpan0: encryption failed: -22
[  762.388338][ T6275] netlink: 'syz.7.9313': attribute type 7 has an invalid length.
[  762.424063][ T6275] netlink: 'syz.7.9313': attribute type 8 has an invalid length.
[  762.593104][ T6282] loop2: detected capacity change from 0 to 128
[  762.997155][ T6266] loop8: detected capacity change from 0 to 32768
[  763.030593][ T6266] (syz.8.9310,6266,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  763.065614][ T6266] (syz.8.9310,6266,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  763.117055][ T6266] JBD2: Ignoring recovery information on journal
[  763.205175][ T6266] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  763.224716][ T6266] (syz.8.9310,6266,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  763.518304][ T6266] (syz.8.9310,6266,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  763.622203][ T6266] (syz.8.9310,6266,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xdf8356d3, computed 0xb8c23ae4. Applying ECC.
[  763.661053][ T6266] (syz.8.9310,6266,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xdf8356d3, computed 0x2acb7e3c
[  763.696894][ T6319] netlink: 12 bytes leftover after parsing attributes in process `syz.7.9322'.
[  763.722062][ T6266] (syz.8.9310,6266,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  763.766249][ T6266] (syz.8.9310,6266,0):ocfs2_quota_read:201 ERROR: status = -5
[  763.786820][ T6266] Quota error (device loop8): find_block_dqentry: Can't read quota tree block 6
[  763.819094][ T6266] Quota error (device loop8): qtree_read_dquot: Can't read quota structure for id 0
[  763.820448][ T6324] bridge_slave_0: entered promiscuous mode
[  763.852072][ T6324] netlink: 16 bytes leftover after parsing attributes in process `syz.5.9324'.
[  763.856298][ T6266] (syz.8.9310,6266,0):ocfs2_acquire_dquot:878 ERROR: status = -5
[  763.873866][ T6324] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  763.892116][ T6266] (syz.8.9310,6266,0):ocfs2_mknod:314 ERROR: status = -5
[  763.933874][ T6266] (syz.8.9310,6266,0):ocfs2_mknod:502 ERROR: status = -5
[  763.949397][ T6266] (syz.8.9310,6266,0):ocfs2_mkdir:659 ERROR: status = -5
[  763.986500][ T6295] loop2: detected capacity change from 0 to 32768
[  764.035483][ T6295] 
[  764.035483][ T6295]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  764.035483][ T6295] 
[  764.184074][ T1723] ocfs2: Unmounting device (7,8) on (node local)
[  764.286019][ T5794] 
[  764.286019][ T5794]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  764.286019][ T5794] 
[  764.332952][ T5794] 
[  764.332952][ T5794]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  764.332952][ T5794] 
[  764.458042][ T6341] netlink: 32 bytes leftover after parsing attributes in process `syz.5.9330'.
[  764.498114][ T6343] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9329'.
[  764.562610][ T6343] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  765.267050][ T6379] loop8: detected capacity change from 0 to 512
[  765.339400][ T6383] netlink: 'syz.2.9341': attribute type 1 has an invalid length.
[  765.348900][ T6379] EXT4-fs error (device loop8): ext4_orphan_get:1425: comm syz.8.9339: bad orphan inode 15
[  765.389481][ T6383] netlink: 232 bytes leftover after parsing attributes in process `syz.2.9341'.
[  765.417126][ T6379] ext4_test_bit(bit=14, block=5) = 0
[  765.429685][ T6379] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  765.521153][ T6394] netlink: 16 bytes leftover after parsing attributes in process `syz.5.9344'.
[  765.536826][ T6379] EXT4-fs error (device loop8): __ext4_new_inode:1075: comm syz.8.9339: reserved inode found cleared - inode=1
[  765.678034][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  765.707813][ T6401] loop2: detected capacity change from 0 to 64
[  765.882002][ T6410] netlink: 20 bytes leftover after parsing attributes in process `syz.5.9349'.
[  765.909361][ T6410] netlink: 20 bytes leftover after parsing attributes in process `syz.5.9349'.
[  766.097865][ T6421] loop7: detected capacity change from 0 to 1024
[  766.170170][ T6421] hfsplus: hfsplus: Invalid key length: 29235
[  766.324387][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  766.331041][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  766.580590][ T6447] netlink: 'syz.8.9358': attribute type 27 has an invalid length.
[  766.985003][ T6466] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  767.010144][ T6466] overlayfs: missing 'lowerdir'
[  767.081850][ T6472] loop8: detected capacity change from 0 to 8
[  767.306372][   T28] audit: type=1800 audit(1757002285.129:330): pid=6472 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.9366" name="file1" dev="loop8" ino=5 res=0 errno=0
[  767.507032][ T6494] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9373'.
[  767.516352][ T6494] netdevsim netdevsim5 netdevsim0: left promiscuous mode
[  767.534725][ T6494] netdevsim netdevsim5 netdevsim0: entered allmulticast mode
[  767.871605][ T6515] netlink: 180 bytes leftover after parsing attributes in process `syz.2.9378'.
[  768.190445][ T6530] SET target dimension over the limit!
[  768.320052][ T6534] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  768.665476][ T6547] netlink: 'syz.8.9390': attribute type 1 has an invalid length.
[  768.741055][ T6520] loop7: detected capacity change from 0 to 32768
[  768.831247][ T6520] jfs: Unrecognized mount option "ÿÿÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿš@­LqE�:†‹� á艞Õt}²0ü�$‰" or missing value
[  768.864184][ T6556] loop8: detected capacity change from 0 to 512
[  768.903702][ T6556] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  768.946700][ T6556] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002]
[  768.962537][ T6556] EXT4-fs (loop8): orphan cleanup on readonly fs
[  768.969652][ T6556] EXT4-fs error (device loop8): ext4_orphan_get:1425: comm syz.8.9392: bad orphan inode 267
[  769.003829][ T6556] EXT4-fs (loop8): Remounting filesystem read-only
[  769.014842][ T6556] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  769.071351][ T6556] EXT4-fs warning (device loop8): dx_probe:893: inode #2: comm syz.8.9392: dx entry: limit 0 != root limit 125
[  769.099244][ T6556] EXT4-fs warning (device loop8): dx_probe:966: inode #2: comm syz.8.9392: Corrupt directory, running e2fsck is recommended
[  769.252384][   T28] audit: type=1400 audit(1757002286.943:331): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3A0C7E pid=6566 comm="syz.7.9395"
[  769.322695][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  770.463323][ T6630] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  770.815162][ T6667] loop8: detected capacity change from 0 to 256
[  770.886871][ T6667] FAT-fs (loop8): Directory bread(block 64) failed
[  770.918355][ T6667] FAT-fs (loop8): Directory bread(block 65) failed
[  770.955278][ T6667] FAT-fs (loop8): Directory bread(block 66) failed
[  770.962003][ T6667] FAT-fs (loop8): Directory bread(block 67) failed
[  770.998000][ T6667] FAT-fs (loop8): Directory bread(block 68) failed
[  771.008597][ T6667] FAT-fs (loop8): Directory bread(block 69) failed
[  771.015406][ T6667] FAT-fs (loop8): Directory bread(block 70) failed
[  771.051250][ T6667] FAT-fs (loop8): Directory bread(block 71) failed
[  771.057972][ T6667] FAT-fs (loop8): Directory bread(block 72) failed
[  771.094051][ T6667] FAT-fs (loop8): Directory bread(block 73) failed
[  771.670126][ T6683] block device autoloading is deprecated and will be removed.
[  771.784999][ T6664] loop2: detected capacity change from 0 to 32768
[  771.842698][ T6664] (syz.2.9415,6664,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  771.898362][ T6664] (syz.2.9415,6664,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  771.972602][ T6703] xt_TCPMSS: Only works on TCP SYN packets
[  771.997762][ T6664] JBD2: Ignoring recovery information on journal
[  772.041434][ T6706] netlink: 'syz.8.9427': attribute type 2 has an invalid length.
[  772.202380][ T6712] Scaler: =================  START STATUS  =================
[  772.226571][ T6712] Scaler: ==================  END STATUS  ==================
[  772.234554][ T6664] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  772.565384][ T5794] ocfs2: Unmounting device (7,2) on (node local)
[  772.739539][ T6733] mmap: syz.8.9435 (6733): VmData 37482496 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  773.072705][ T6742] AppArmor: change_hat: Invalid input 'ˆ'
[  774.373666][   T28] audit: type=1400 audit(1757002291.751:332): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AAE86AD47AA0D9495E6D80F7BDE2D18FFB36CF152AED2D408FB58E305FC8E2F2F7D91F81B621CC4214D4A27E1614FBEE0BEAC8F4A045070B770212D46D4A2DF096B791F2A4BA218E12CB76AA24945B70A7C9DD5EDEAC52B5A876F73CFBE66371A72F11F3D9544D6B59B4A5541DCEF5CBF11FFFF37DFD147C8A3E5098A207BE806EA7167101F8C1B5C8FE41E170FD0C775DBC5BE0B6D3AB625AB702E5B1DC15F9C4B3D09BE812F340E681E0694F5BADF640DA3FDFC2F929B4C2BEB9A592C577287B6021BFEEC24146C7F95608BB60A736207A09D9F47E89C4044EADDE57CDEFD15F25B822D2EAF2205DF0D6B71B63EE0B63CB598F26509AF36983578F6F4198A0843CC1B1BD780015007AB9709CC6211E3B5C685B972B5C5E95F054A7A9FE149282F679C8466B9734E3850EC98419DD0C887715902F9E7802842085BC606F30C2654869E9E3701FD0FC69137FE165592689465EEBD5CAFAD7C29DE2ADADEC42A818D8EE389CA1FE33A1EF23617C89116A3A458B56612E4C36C43A9150D5331ADBB0BEB01A062B1F1349FC2ECEA76CB7C40CDFE378185F3099B1D71414D0FDA5A47F8593260CC0BD723A4CCA81435F04
[  774.394973][ T6798] netlink: 'syz.8.9453': attribute type 1 has an invalid length.
[  774.557857][ T6798] netlink: 16 bytes leftover after parsing attributes in process `syz.8.9453'.
[  774.625516][ T6805] nvme_fabrics: unknown parameter or missing value 'Y' in ctrl creation request
[  774.979096][ T6824] netlink: 460 bytes leftover after parsing attributes in process `syz.2.9460'.
[  775.819040][T27094] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  776.031052][T27094] usb 8-1: Using ep0 maxpacket: 32
[  776.073046][T27094] usb 8-1: config 0 has an invalid interface number: 74 but max is 1
[  776.101253][T27094] usb 8-1: config 0 has no interface number 1
[  776.157553][T27094] usb 8-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=8e.fa
[  776.178300][T27094] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  776.199642][T27094] usb 8-1: Product: syz
[  776.214747][T27094] usb 8-1: Manufacturer: syz
[  776.225588][T27094] usb 8-1: SerialNumber: syz
[  776.254958][T27094] usb 8-1: config 0 descriptor??
[  776.401101][T27094] snd-usb-audio: probe of 8-1:0.74 failed with error -22
[  776.508410][ T5792] udevd[5792]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.74/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  777.006294][    T9] usb 8-1: USB disconnect, device number 13
[  777.921173][ T6958] bridge0: port 1(netdevsim0) entered blocking state
[  777.967190][ T6958] bridge0: port 1(netdevsim0) entered disabled state
[  777.992103][ T6958] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  778.373774][ T6975] netlink: 'syz.5.9499': attribute type 21 has an invalid length.
[  779.178702][ T6963] loop7: detected capacity change from 0 to 40427
[  779.233004][ T6963] F2FS-fs (loop7): heap/no_heap options were deprecated
[  779.271195][ T6963] F2FS-fs (loop7): invalid crc value
[  779.282845][ T6963] F2FS-fs (loop7): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[  779.325604][ T6963] F2FS-fs (loop7): Found nat_bits in checkpoint
[  779.558084][ T6963] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  781.453460][ T7092] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9533'.
[  781.708909][ T7061] loop7: detected capacity change from 0 to 32768
[  781.727727][ T7061] XFS: attr2 mount option is deprecated.
[  781.802628][ T7061] XFS (loop7): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  781.906325][ T7061] XFS (loop7): Quotacheck needed: Please wait.
[  782.120078][ T7061] XFS (loop7): Quotacheck: Done.
[  782.367359][T25124] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  782.427631][   T28] audit: type=1326 audit(1757002299.290:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.5.9545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  782.466109][   T28] audit: type=1326 audit(1757002299.290:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.5.9545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  782.557239][   T28] audit: type=1326 audit(1757002299.290:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.5.9545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  782.663634][   T28] audit: type=1326 audit(1757002299.290:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.5.9545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  782.749842][   T28] audit: type=1326 audit(1757002299.290:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.5.9545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  782.908651][ T7145] loop8: detected capacity change from 0 to 4096
[  782.943758][ T7145] ntfs3: loop8: Different NTFS sector size (4096) and media sector size (512).
[  783.121119][ T7145] ntfs3: loop8: Failed to initialize $Extend/$Reparse.
[  783.305947][ T7162] netlink: 44 bytes leftover after parsing attributes in process `syz.2.9551'.
[  783.874148][ T7184] loop2: detected capacity change from 0 to 256
[  783.917076][ T7187] ptrace attach of "./syz-executor exec"[1723] was attempted by "./syz-executor exec"[7187]
[  783.945346][ T7184] exfat: Deprecated parameter 'namecase'
[  784.017247][ T7184] exfat: Deprecated parameter 'namecase'
[  784.138641][ T7184] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  784.360651][ T7199] loop8: detected capacity change from 0 to 4096
[  784.417914][ T7199] NILFS (loop8): mounting unchecked fs
[  784.443855][ T7199] NILFS (loop8): recovery required for readonly filesystem
[  784.476121][ T7199] NILFS (loop8): write access will be enabled during recovery
[  784.534513][ T7199] NILFS (loop8): invalid segment: Checksum error in segment payload
[  784.585549][ T7199] NILFS (loop8): trying rollback from an earlier position
[  784.648103][ T7199] NILFS (loop8): norecovery option specified, skipping roll-forward recovery
[  784.731511][ T7199] NILFS (loop8): couldn't remount because the filesystem is in an incomplete recovery state
[  784.839452][ T7220] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9566'.
[  784.874480][ T7224] kernel read not supported for file / 
œ7³ÏüâW)ës“§Ç!Q�öì¥fsõl{T‡rÒ)r§ÖOš˜õ2:"ôÀT+ÍŸv|�Õ²DvcŽ“ØÖ Å6Òxãc: (pid: 7224 comm: syz.7.9568)
[  784.912304][   T28] audit: type=1800 audit(1757002301.610:338): pid=7224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.9568" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=76844 res=0 errno=0
[  785.133582][ T7228] loop8: detected capacity change from 0 to 1024
[  785.156549][ T7230] xt_CT: You must specify a L4 protocol and not use inversions on it
[  785.323894][ T3476] hfsplus: b-tree write err: -5, ino 4
[  785.459747][ T7248] netlink: 'syz.5.9576': attribute type 6 has an invalid length.
[  786.262344][ T7291] netlink: 'syz.2.9588': attribute type 1 has an invalid length.
[  786.299611][ T7291] netlink: 'syz.2.9588': attribute type 3 has an invalid length.
[  786.319677][ T7291] netlink: 224 bytes leftover after parsing attributes in process `syz.2.9588'.
[  786.542357][ T7295] loop7: detected capacity change from 0 to 8192
[  786.587066][ T7295] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  786.620132][ T7295] REISERFS (device loop7): found reiserfs format "3.5" with non-standard journal
[  786.691553][ T7295] REISERFS (device loop7): using ordered data mode
[  786.698139][ T7295] reiserfs: using flush barriers
[  786.785540][ T7295] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  786.862946][ T7295] REISERFS (device loop7): checking transaction log (loop7)
[  786.919601][ T7295] REISERFS (device loop7): Using r5 hash to sort names
[  786.940038][ T7295] REISERFS (device loop7): Created .reiserfs_priv - reserved for xattr storage.
[  786.955448][ T7327] tc_dump_action: action bad kind
[  787.475872][ T7349] netlink: 36 bytes leftover after parsing attributes in process `syz.5.9608'.
[  788.300899][ T7385] loop8: detected capacity change from 0 to 256
[  788.314554][ T7385] exfat: Deprecated parameter 'utf8'
[  788.352031][ T7385] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  789.062402][ T7419] bond2: entered allmulticast mode
[  789.703721][ T7417] loop8: detected capacity change from 0 to 32768
[  789.751340][   T28] audit: type=1326 audit(1757002306.138:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7479 comm="syz.5.9637" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3f578ebe9 code=0x0
[  789.813372][ T7417] ERROR: (device loop8): diNewExt: no free extents
[  789.813372][ T7417] 
[  789.860617][ T7417] ERROR: (device loop8): remounting filesystem as read-only
[  789.910485][ T7417] ialloc: diAlloc returned -5!
[  790.672479][ T7526] loop2: detected capacity change from 0 to 1024
[  791.126344][ T7547] netlink: 'syz.5.9657': attribute type 1 has an invalid length.
[  791.439935][ T7567] netlink: 128 bytes leftover after parsing attributes in process `syz.8.9664'.
[  791.459485][ T7567] netlink: 20 bytes leftover after parsing attributes in process `syz.8.9664'.
[  791.641257][ T7572] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9665'.
[  791.672702][ T7572] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9665'.
[  792.128891][ T7601] netlink: 28 bytes leftover after parsing attributes in process `syz.5.9675'.
[  792.249544][ T7605] bridge5: entered promiscuous mode
[  792.552152][ T7624] [U] 
[  792.809787][ T7636] loop2: detected capacity change from 0 to 1764
[  792.895232][ T7636] iso9660: Corrupted directory entry in block 2 of inode 1920
[  793.348995][ T7664] loop2: detected capacity change from 0 to 4096
[  793.383015][ T7664] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  793.388603][ T7668] loop7: detected capacity change from 0 to 1024
[  793.449279][ T7668] EXT4-fs (loop7): Test dummy encryption mode enabled
[  793.463022][ T7668] EXT4-fs (loop7): stripe (9) is not aligned with cluster size (16), stripe is disabled
[  793.556876][ T7668] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  793.930408][T25124] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  794.558445][ T7722] loop7: detected capacity change from 0 to 2048
[  794.627561][ T7729] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  794.801011][ T7733] loop8: detected capacity change from 0 to 1024
[  794.877993][ T7733] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  795.123715][ T7733] EXT4-fs error (device loop8): ext4_empty_dir:3166: inode #11: block 38: comm syz.8.9711: Attempting to read directory block (38) that is past i_size (39680)
[  795.340976][ T7757] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  795.368745][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  795.934249][ T7787] loop2: detected capacity change from 0 to 8192
[  795.963491][ T7787] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  795.976779][ T7787] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  795.986232][ T7787] REISERFS (device loop2): using ordered data mode
[  795.993348][ T7787] reiserfs: using flush barriers
[  796.005977][ T7787] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  796.031762][ T7787] REISERFS (device loop2): checking transaction log (loop2)
[  796.067686][ T7787] REISERFS (device loop2): Using r5 hash to sort names
[  796.084160][ T7787] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  796.702545][ T7812] loop2: detected capacity change from 0 to 512
[  796.726252][ T7812] EXT4-fs: Ignoring removed mblk_io_submit option
[  796.733511][   T28] audit: type=1326 audit(1757002312.657:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7814 comm="syz.7.9732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68018ebe9 code=0x7ffc0000
[  796.815688][   T28] audit: type=1326 audit(1757002312.657:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7814 comm="syz.7.9732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68018ebe9 code=0x7ffc0000
[  796.826332][ T7812] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  796.870400][ T7812] EXT4-fs (loop2): orphan cleanup on readonly fs
[  796.872662][   T28] audit: type=1326 audit(1757002312.667:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7814 comm="syz.7.9732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fe68018ebe9 code=0x7ffc0000
[  796.925664][ T7812] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  796.950266][   T28] audit: type=1326 audit(1757002312.667:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7814 comm="syz.7.9732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe68018ebe9 code=0x7ffc0000
[  796.954117][ T7812] EXT4-fs warning (device loop2): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  796.998173][ T7812] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  797.001220][ T7812] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.9731: bg 0: block 40: padding at end of block bitmap is not set
[  797.024975][ T7812] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  797.026180][ T7812] EXT4-fs (loop2): 1 truncate cleaned up
[  797.028133][ T7812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  797.076766][ T7828] loop8: detected capacity change from 0 to 2048
[  797.125904][ T7812] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  797.185168][ T7828] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  797.245409][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  797.324518][ T7840] netlink: 228 bytes leftover after parsing attributes in process `syz.7.9738'.
[  797.460090][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  797.543558][ T7848] loop2: detected capacity change from 0 to 512
[  797.855185][ T7867] netlink: 'syz.8.9744': attribute type 5 has an invalid length.
[  797.883326][ T7867] ip6erspan0: entered allmulticast mode
[  798.439619][ T7895] netlink: 192 bytes leftover after parsing attributes in process `syz.8.9752'.
[  798.461557][   T28] audit: type=1400 audit(1757002314.276:344): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=":=~" pid=7896 comm="syz.7.9753"
[  801.076945][ T8041] loop2: detected capacity change from 0 to 2048
[  801.161250][ T8041] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  801.352016][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  801.753343][ T8080] netlink: 1192 bytes leftover after parsing attributes in process `syz.5.9808'.
[  802.545821][ T8126] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9823'.
[  802.667897][ T8130] netlink: 'syz.5.9824': attribute type 10 has an invalid length.
[  802.720674][ T8130] 8021q: adding VLAN 0 to HW filter on device bond0
[  802.766209][ T8130] team0: Port device bond0 added
[  802.981220][ T8143] loop2: detected capacity change from 0 to 1764
[  803.025592][ T8143] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  803.065694][ T8143] iso9660: Corrupted directory entry in block 2 of inode 1920
[  803.567804][ T8168] loop8: detected capacity change from 0 to 64
[  804.512322][ T8228] binder: 8227:8228 unknown command 0
[  804.528344][ T8228] binder: 8227:8228 ioctl c0306201 200000000480 returned -22
[  804.907643][ T8251] loop8: detected capacity change from 0 to 256
[  804.938182][ T8251] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  804.957864][ T8251] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=512, location=512
[  804.995287][ T8251] UDF-fs: warning (device loop8): udf_load_vrs: No anchor found
[  805.022493][ T8251] UDF-fs: Scanning with blocksize 512 failed
[  805.095759][ T8251] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  805.136702][ T8251] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  805.711170][ T8288] xt_TPROXY: Can be used only with -p tcp or -p udp
[  806.403262][ T8326] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  806.661737][ T8336] netlink: 'syz.2.9885': attribute type 3 has an invalid length.
[  806.691155][ T8336] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9885'.
[  806.929043][ T8363] sock: sock_timestamping_bind_phc: sock not bind to device
[  807.010210][ T8366] netlink: 'syz.7.9889': attribute type 4 has an invalid length.
[  807.122969][ T8372] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[  807.339881][ T8383] ip6t_srh: unknown srh invflags 7D00
[  807.400062][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9896'.
[  807.463841][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9896'.
[  807.484970][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9896'.
[  807.493973][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9896'.
[  807.530609][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9896'.
[  807.550329][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9896'.
[  807.569928][ T8396] netlink: 40 bytes leftover after parsing attributes in process `syz.2.9898'.
[  807.590471][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9896'.
[  807.606007][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9896'.
[  807.925435][ T8410] loop7: detected capacity change from 0 to 512
[  807.937156][ T8410] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  808.024546][ T8410] EXT4-fs (loop7): 1 truncate cleaned up
[  808.032738][ T8410] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  808.054245][ T8410] cifs: Unknown parameter 'dioread_lock'
[  808.131536][T25124] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  808.468636][ T2487] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  808.715289][ T2487] usb 9-1: Using ep0 maxpacket: 16
[  808.733808][ T2487] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  808.754946][ T2487] usb 9-1: config 0 has no interfaces?
[  808.813055][ T2487] usb 9-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  808.840096][ T2487] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  808.874568][ T2487] usb 9-1: Product: syz
[  808.878799][ T2487] usb 9-1: Manufacturer: syz
[  808.894375][ T2487] usb 9-1: SerialNumber: syz
[  808.918491][ T2487] r8152-cfgselector 9-1: config 0 descriptor??
[  809.160890][ T2487] usbip-host 9-1: 9-1 is not in match_busid table... skip!
[  809.326144][ T8474] autofs4:pid:8474:autofs_fill_super: called with bogus options
[  809.393714][ T8476] loop7: detected capacity change from 0 to 1024
[  809.406618][ T2487] usb 9-1: USB disconnect, device number 5
[  809.560662][ T8455] loop2: detected capacity change from 0 to 32768
[  809.578427][ T8455] XFS: ikeep mount option is deprecated.
[  809.657243][ T8455] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  809.896152][ T8455] XFS (loop2): Ending clean mount
[  809.916473][ T8455] XFS (loop2): Quotacheck needed: Please wait.
[  810.149143][ T8519] trusted_key: encrypted_key: insufficient parameters specified
[  810.176931][ T8455] XFS (loop2): Quotacheck: Done.
[  810.567863][ T5794] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  811.014636][ T8555] snd_dummy snd_dummy.0: control 2:8:3:syz1:4 is already present
[  811.137132][ T8559] loop7: detected capacity change from 0 to 1024
[  811.249700][   T28] audit: type=1800 audit(1757002326.249:345): pid=8559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.9943" name="file1" dev="loop7" ino=20 res=0 errno=0
[  811.389183][   T11] hfsplus: b-tree write err: -5, ino 4
[  811.578012][ T8580] loop8: detected capacity change from 0 to 256
[  811.601418][ T8574] loop2: detected capacity change from 0 to 2048
[  811.674526][ T8588] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  811.776385][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  811.866291][ T8574] Remounting filesystem read-only
[  811.918355][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  811.929636][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  811.952901][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  811.986628][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  812.006881][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  812.047612][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  812.085294][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  812.134793][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  812.158265][ T8604] netlink: 'syz.5.9954': attribute type 1 has an invalid length.
[  812.166594][ T8574] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  812.183935][ T8604] __nla_validate_parse: 47 callbacks suppressed
[  812.183952][ T8604] netlink: 224 bytes leftover after parsing attributes in process `syz.5.9954'.
[  812.209503][   T28] audit: type=1800 audit(1757002327.137:346): pid=8574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.9937" name="file2" dev="loop2" ino=16 res=0 errno=0
[  812.210210][ T8604] nbd: must specify at least one socket
[  812.311009][ T8610] netlink: 20 bytes leftover after parsing attributes in process `syz.7.9956'.
[  813.491697][ T8669] loop2: detected capacity change from 0 to 64
[  813.944709][ T8651] loop8: detected capacity change from 0 to 32768
[  814.042217][ T8651] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  814.264468][ T1723] ocfs2: Unmounting device (7,8) on (node local)
[  814.580487][ T8663] loop7: detected capacity change from 0 to 32768
[  814.705531][ T8663] XFS (loop7): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  814.883236][ T8663] XFS (loop7): Starting recovery (logdev: internal)
[  814.975251][ T8663] XFS (loop7): Ending recovery (logdev: internal)
[  815.421669][T25124] XFS (loop7): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  816.071768][ T8771] netlink: 'syz.8.10002': attribute type 10 has an invalid length.
[  816.130314][ T8771] bridge0: port 2(bridge_slave_1) entered disabled state
[  816.138150][ T8771] bridge0: port 1(bridge_slave_0) entered disabled state
[  816.196093][ T8771] bridge0: port 2(bridge_slave_1) entered blocking state
[  816.204178][ T8771] bridge0: port 2(bridge_slave_1) entered forwarding state
[  816.215246][ T8771] bridge0: port 1(bridge_slave_0) entered blocking state
[  816.222586][ T8771] bridge0: port 1(bridge_slave_0) entered forwarding state
[  816.286009][ T8771] team0: Port device bridge0 added
[  816.607602][ T8794] ieee802154 phy0 wpan0: encryption failed: -22
[  816.919968][ T8812] loop7: detected capacity change from 0 to 64
[  817.555566][ T8847] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  817.563019][ T8847] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  817.664178][ T8852] netlink: 8 bytes leftover after parsing attributes in process `syz.5.10027'.
[  817.757027][ T8857] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10028'.
[  817.788604][ T8857] netlink: 312 bytes leftover after parsing attributes in process `syz.2.10028'.
[  817.826439][ T8857] netlink: 'syz.2.10028': attribute type 1 has an invalid length.
[  818.317530][ T8887] syz.2.10038 (8887): drop_caches: 0
[  818.453258][   T28] audit: type=1800 audit(1757002332.974:347): pid=8872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.7.10032" name="/newroot/1023/file0" dev="tmpfs" ino=5213 res=0 errno=0
[  819.419474][ T8941] xt_hashlimit: max too large, truncated to 1048576
[  820.022069][ T8974] loop7: detected capacity change from 0 to 1024
[  820.035737][ T8974] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  820.076183][ T8974] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  820.145082][ T8974] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  820.218066][ T8974] EXT4-fs (loop7): orphan cleanup on readonly fs
[  820.243371][ T8985] loop8: detected capacity change from 0 to 1024
[  820.313165][ T8974] EXT4-fs error (device loop7): ext4_map_blocks:718: inode #3: block 3: comm syz.7.10066: lblock 3 mapped to illegal pblock 3 (length 1)
[  820.328002][ T8985] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  820.359089][ T8974] Quota error (device loop7): write_blk: dquota write failed
[  820.368750][ T8974] Quota error (device loop7): find_free_dqentry: Can't write quota data block 3
[  820.378668][ T8974] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  820.389166][ T8974] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.10066: Failed to acquire dquot type 0
[  820.411918][ T8974] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 3: comm syz.7.10066: lblock 3 mapped to illegal pblock 3 (length 1)
[  820.465385][ T8974] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  820.489767][ T8985] EXT4-fs warning (device loop8): empty_inline_dir:1846: bad inline directory (dir #12) - no `..'
[  820.494885][ T8974] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.10066: Failed to acquire dquot type 0
[  820.523911][ T8974] EXT4-fs error (device loop7): ext4_free_blocks:6676: comm syz.7.10066: Freeing blocks not in datazone - block = 0, count = 4096
[  820.594026][ T8974] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 3: comm syz.7.10066: lblock 3 mapped to illegal pblock 3 (length 1)
[  820.615536][ T8974] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  820.632156][ T8974] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.10066: Failed to acquire dquot type 0
[  820.658346][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  820.690001][ T8974] EXT4-fs (loop7): 1 orphan inode deleted
[  820.799239][ T8974] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  820.968569][ T8974] EXT4-fs error (device loop7): ext4_lookup:1858: inode #15: comm syz.7.10066: iget: bad extended attribute block 6
[  821.101402][ T9013] loop2: detected capacity change from 0 to 4096
[  821.107156][T25124] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  821.120504][ T9013] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  821.206232][ T9013] ntfs3: loop2: Failed to load $Extend (-22).
[  821.241682][ T9013] ntfs3: loop2: Failed to initialize $Extend.
[  821.251213][ T9023] netlink: 16 bytes leftover after parsing attributes in process `syz.5.10079'.
[  821.532342][ T9034] xt_connbytes: Forcing CT accounting to be enabled
[  821.673237][ T2933] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  821.711958][ T2933] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  821.722303][T27094] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  822.307213][ T9079] netlink: 'syz.8.10096': attribute type 2 has an invalid length.
[  822.334043][ T2487] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  822.356735][ T9079] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  822.505947][ T2487] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  822.962703][ T9109] loop2: detected capacity change from 0 to 512
[  823.038075][ T9109] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec018, mo2=0002]
[  823.068899][ T9109] System zones: 0-2, 18-18, 34-34
[  823.105479][ T9109] EXT4-fs (loop2): orphan cleanup on readonly fs
[  823.195405][ T9109] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.10106: bg 0: block 248: padding at end of block bitmap is not set
[  823.258849][ T9109] Quota error (device loop2): write_blk: dquota write failed
[  823.277888][ T9109] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  823.317449][ T9109] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.10106: Failed to acquire dquot type 1
[  823.375123][ T9109] EXT4-fs (loop2): 1 orphan inode deleted
[  823.392512][   T12] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5
[  823.402598][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:1: Failed to release dquot type 1
[  823.483678][ T9109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  823.601582][ T9109] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.10106: deleted inode referenced: 12
[  823.714642][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  823.754408][   T28] audit: type=1326 audit(1757002337.941:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.8.10115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6dd358ebe9 code=0x7ffc0000
[  823.785443][ T9095] loop7: detected capacity change from 0 to 32768
[  823.817406][   T28] audit: type=1326 audit(1757002337.941:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.8.10115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6dd358ebe9 code=0x7ffc0000
[  823.925830][   T28] audit: type=1326 audit(1757002337.941:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.8.10115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f6dd358ebe9 code=0x7ffc0000
[  823.963682][ T9151] loop2: detected capacity change from 0 to 256
[  824.057442][   T28] audit: type=1326 audit(1757002337.941:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.8.10115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6dd358ebe9 code=0x7ffc0000
[  824.162993][   T28] audit: type=1326 audit(1757002337.941:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.8.10115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6dd358ebe9 code=0x7ffc0000
[  824.169016][T25124] read_mapping_page failed!
[  824.247660][T25124] ERROR: (device loop7): txCommit: 
[  824.247660][T25124] 
[  824.270689][T25124] read_mapping_page failed!
[  824.275965][T25124] ERROR: (device loop7): txCommit: 
[  824.275965][T25124] 
[  824.348857][ T9165] netlink: 16 bytes leftover after parsing attributes in process `syz.2.10120'.
[  824.762927][  T112] ERROR: (device loop7): diUpdatePMap: inode 6 not marked as allocated in wmap!
[  824.762927][  T112] 
[  824.785115][  T112] ERROR: (device loop7): diFree: wmap shows inode already free
[  824.785115][  T112] 
[  824.900116][   T42] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  825.029246][   T42] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  825.097584][ T9199] bridge1: entered promiscuous mode
[  825.140810][   T42] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  825.166320][ T9203] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10131'.
[  825.273622][   T42] team0: Port device netdevsim0 removed
[  825.300120][   T42] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  825.362825][ T9211] ./file0: Can't lookup blockdev
[  825.375764][ T9214] loop2: detected capacity change from 0 to 256
[  825.403595][ T9214] exfat: Deprecated parameter 'namecase'
[  825.481921][ T9214] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  826.353682][    C1] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  826.506100][ T9251] loop8: detected capacity change from 0 to 2048
[  826.582612][ T9251] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  827.253335][ T9276] loop8: detected capacity change from 0 to 4096
[  827.291830][ T9276] ntfs3: loop8: Different NTFS sector size (1024) and media sector size (512).
[  827.386112][ T9287] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  827.409359][ T9287] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  827.421954][ T9287] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  827.447254][ T9287] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  827.461323][ T9276] ntfs3: loop8: Failed to load $Extend (-22).
[  827.468213][ T9287] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  827.475488][ T9276] ntfs3: loop8: Failed to initialize $Extend.
[  827.482383][ T9287] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  827.515492][ T5804] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  827.523818][ T5804] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  827.534991][ T5804] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  827.626049][ T5804] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  827.643276][ T5804] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  827.654657][ T5804] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  827.963757][ T9318] loop2: detected capacity change from 0 to 4096
[  828.035522][ T9318] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  828.086102][ T9318] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  828.119390][ T9318] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  828.155379][ T9318] ntfs: volume version 3.1.
[  828.345487][ T5794] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  828.848878][ T9388] syz.8.10157 (9388): drop_caches: 0
[  829.140834][ T9408] netlink: 48 bytes leftover after parsing attributes in process `syz.2.10161'.
[  829.327652][   T42] hsr_slave_0: left promiscuous mode
[  829.376480][   T42] hsr_slave_1: left promiscuous mode
[  829.432821][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  829.454950][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  829.476873][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  829.497028][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  829.528427][   T42] batman_adv: batadv0: Removing interface: virt_wifi0
[  829.538383][   T42] bridge0: port 3(team0) entered disabled state
[  829.604621][   T42] bridge_slave_1: left allmulticast mode
[  829.610350][   T42] bridge_slave_1: left promiscuous mode
[  829.659559][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  829.709525][   T42] bridge_slave_0: left allmulticast mode
[  829.715863][   T42] bridge_slave_0: left promiscuous mode
[  829.727023][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  829.828582][   T42] veth1_macvtap: left promiscuous mode
[  829.845729][   T42] veth0_macvtap: left allmulticast mode
[  829.853602][   T42] veth0_macvtap: left promiscuous mode
[  829.859422][   T42] veth1_vlan: left promiscuous mode
[  829.866145][ T9287] Bluetooth: hci3: command tx timeout
[  829.875005][   T42] veth0_vlan: left promiscuous mode
[  830.263417][   T42] bond2 (unregistering): Released all slaves
[  830.641647][   T42] bond0 (unregistering): Released all slaves
[  831.064245][   T42] bond1 (unregistering): Released all slaves
[  831.560341][T26808] usb 3-1: new full-speed USB device number 34 using dummy_hcd
[  831.770130][T26808] usb 3-1: config 0 has an invalid interface number: 110 but max is 0
[  831.779064][T26808] usb 3-1: config 0 has no interface number 0
[  831.785736][T26808] usb 3-1: config 0 interface 110 has no altsetting 0
[  831.810959][T26808] usb 3-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=af.55
[  831.820679][T26808] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  831.836476][T26808] usb 3-1: Product: syz
[  831.847069][   T42] team_slave_1 (unregistering): left promiscuous mode
[  831.848553][T26808] usb 3-1: Manufacturer: syz
[  831.855247][   T42] team_slave_1 (unregistering): left allmulticast mode
[  831.866016][T26808] usb 3-1: SerialNumber: syz
[  831.875609][T26808] usb 3-1: config 0 descriptor??
[  831.887904][   T42] team0 (unregistering): Port device team_slave_1 removed
[  831.964774][   T42] team_slave_0 (unregistering): left promiscuous mode
[  831.972399][   T42] team_slave_0 (unregistering): left allmulticast mode
[  831.983109][   T42] team0 (unregistering): Port device team_slave_0 removed
[  832.017191][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  832.023750][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  832.094509][ T9287] Bluetooth: hci3: command tx timeout
[  832.129324][T26808] cdc_subset: probe of 3-1:0.110 failed with error -22
[  832.371940][T26808] usb 3-1: USB disconnect, device number 34
[  833.370692][ T9285] chnl_net:caif_netlink_parms(): no params data found
[  833.413205][ T9584] netlink: 256 bytes leftover after parsing attributes in process `syz.5.10185'.
[  834.061275][ T9663] netlink: 8 bytes leftover after parsing attributes in process `syz.5.10192'.
[  834.072351][ T9655] netlink: 'syz.8.10190': attribute type 2 has an invalid length.
[  834.104818][ T9285] bridge0: port 1(bridge_slave_0) entered blocking state
[  834.126505][ T9285] bridge0: port 1(bridge_slave_0) entered disabled state
[  834.157982][ T9285] bridge_slave_0: entered allmulticast mode
[  834.187284][ T9285] bridge_slave_0: entered promiscuous mode
[  834.219783][ T9285] bridge0: port 2(bridge_slave_1) entered blocking state
[  834.278210][ T9285] bridge0: port 2(bridge_slave_1) entered disabled state
[  834.285551][ T9285] bridge_slave_1: entered allmulticast mode
[  834.309505][ T9287] Bluetooth: hci3: command tx timeout
[  834.314670][ T9285] bridge_slave_1: entered promiscuous mode
[  834.349743][ T9677] loop8: detected capacity change from 0 to 164
[  834.437481][ T9677] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet.
[  834.495587][ T9285] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  834.530567][ T9285] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  834.922810][ T9285] team0: Port device team_slave_0 added
[  834.963333][ T9285] team0: Port device team_slave_1 added
[  835.162306][ T9285] batman_adv: batadv0: Adding interface: batadv_slave_0
[  835.221021][ T9285] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  835.358119][ T9285] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  835.381333][ T9790] netlink: 'syz.5.10205': attribute type 3 has an invalid length.
[  835.391628][ T9285] batman_adv: batadv0: Adding interface: batadv_slave_1
[  835.407816][ T9285] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  835.449719][ T9285] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  835.801310][ T9285] hsr_slave_0: entered promiscuous mode
[  835.852845][ T9285] hsr_slave_1: entered promiscuous mode
[  836.096556][ T9881] netlink: 'syz.2.10215': attribute type 12 has an invalid length.
[  836.103562][    C1] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  836.531139][ T9287] Bluetooth: hci3: command tx timeout
[  836.740641][ T9285] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  836.810187][ T9285] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  836.833527][ T9285] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  836.886733][ T9285] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  837.026029][ T9865] loop8: detected capacity change from 0 to 32768
[  837.275517][ T9285] 8021q: adding VLAN 0 to HW filter on device bond0
[  837.391561][ T9285] 8021q: adding VLAN 0 to HW filter on device team0
[  837.489136][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  837.496451][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  837.516296][ T9973] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  837.553713][T31169] bridge0: port 2(bridge_slave_1) entered blocking state
[  837.557585][ T9973] overlayfs: missing 'lowerdir'
[  837.561046][T31169] bridge0: port 2(bridge_slave_1) entered forwarding state
[  838.479493][ T9285] 8021q: adding VLAN 0 to HW filter on device batadv0
[  838.914249][T10035] netlink: 'syz.2.10238': attribute type 7 has an invalid length.
[  839.242545][T10052] No such timeout policy "syz1"
[  839.511868][T10064] netlink: 'syz.5.10245': attribute type 12 has an invalid length.
[  839.555942][ T9285] veth0_vlan: entered promiscuous mode
[  839.622670][ T9285] veth1_vlan: entered promiscuous mode
[  839.768898][ T9285] veth0_macvtap: entered promiscuous mode
[  839.830380][ T9285] veth1_macvtap: entered promiscuous mode
[  839.944176][ T9285] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  839.992449][ T9285] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  840.036394][ T9285] batman_adv: batadv0: Interface activated: batadv_slave_0
[  840.048557][T10087] netlink: 8 bytes leftover after parsing attributes in process `syz.8.10252'.
[  840.097037][ T9285] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  840.166106][ T9285] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  840.199839][ T9285] batman_adv: batadv0: Interface activated: batadv_slave_1
[  840.249077][ T9285] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  840.299905][ T9285] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  840.348106][ T9285] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  840.356876][ T9285] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  840.677438][T10110] netlink: 'syz.8.10258': attribute type 1 has an invalid length.
[  840.734156][T31169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  840.743378][T31169] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  840.868103][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  840.894182][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  841.175635][T10139] loop8: detected capacity change from 0 to 256
[  841.238989][T10139] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  841.713321][T10163] netlink: 372 bytes leftover after parsing attributes in process `syz.2.10269'.
[  841.745775][T10168] netlink: 20 bytes leftover after parsing attributes in process `syz.8.10268'.
[  841.780228][T10168] netlink: 16 bytes leftover after parsing attributes in process `syz.8.10268'.
[  841.976611][T10171] mac80211_hwsim hwsim22 wlan0: entered promiscuous mode
[  842.005832][T10171] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  842.070076][T10181] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10273'.
[  842.448386][T10199] Cannot find del_set index 4 as target
[  842.519733][T10204] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[  842.807070][T10217] netlink: 'syz.8.10284': attribute type 6 has an invalid length.
[  843.244978][T10238] tipc: Can't bind to reserved service type 35
[  843.826028][T10267] loop2: detected capacity change from 0 to 256
[  843.946580][T10267] FAT-fs (loop2): Directory bread(block 64) failed
[  843.973433][T10267] FAT-fs (loop2): Directory bread(block 65) failed
[  843.980146][T10267] FAT-fs (loop2): Directory bread(block 66) failed
[  844.029646][T10267] FAT-fs (loop2): Directory bread(block 67) failed
[  844.040451][T10267] FAT-fs (loop2): Directory bread(block 68) failed
[  844.056869][T10267] FAT-fs (loop2): Directory bread(block 69) failed
[  844.106072][T10267] FAT-fs (loop2): Directory bread(block 70) failed
[  844.122513][T10267] FAT-fs (loop2): Directory bread(block 71) failed
[  844.129257][T10267] FAT-fs (loop2): Directory bread(block 72) failed
[  844.166194][T10267] FAT-fs (loop2): Directory bread(block 73) failed
[  844.227195][T10292] gre1: entered allmulticast mode
[  844.532718][T10306] --map-set only usable from mangle table
[  844.581538][T10311] netlink: 8 bytes leftover after parsing attributes in process `syz.8.10308'.
[  844.788479][T10318] netlink: 'syz.5.10310': attribute type 1 has an invalid length.
[  844.836296][T10318] netlink: 224 bytes leftover after parsing attributes in process `syz.5.10310'.
[  844.839091][T10324] netlink: 180 bytes leftover after parsing attributes in process `syz.8.10312'.
[  845.372623][    T9] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[  845.625713][    T9] usb 10-1: config 179 has an invalid interface number: 65 but max is 0
[  845.656561][    T9] usb 10-1: config 179 has no interface number 0
[  845.693137][    T9] usb 10-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[  845.732269][    T9] usb 10-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 64
[  845.767035][    T9] usb 10-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  845.818099][    T9] usb 10-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 64
[  845.862078][    T9] usb 10-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  845.903362][    T9] usb 10-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  845.939520][    T9] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  845.971684][T10334] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  846.000382][T10334] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  846.024698][T10379] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  846.519746][   T55] usb 10-1: USB disconnect, device number 2
[  846.519871][    C0] xpad 10-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  846.534252][    C0] xpad 10-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  846.718514][T10411] netlink: 'syz.5.10332': attribute type 5 has an invalid length.
[  847.035450][T10417] loop8: detected capacity change from 0 to 4096
[  847.177170][T10433] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.10337'.
[  847.187043][T10417] ntfs3: loop8: Mark volume as dirty due to NTFS errors
[  847.229314][T10417] ntfs3: loop8: Failed to load $Extend (-22).
[  847.253954][T10417] ntfs3: loop8: Failed to initialize $Extend.
[  848.049212][T10475] netlink: 8 bytes leftover after parsing attributes in process `syz.8.10349'.
[  848.069988][T10475] netlink: 12 bytes leftover after parsing attributes in process `syz.8.10349'.
[  849.220959][T10534] netlink: 16 bytes leftover after parsing attributes in process `syz.5.10364'.
[  849.295753][T10534] tc_dump_action: action bad kind
[  850.627865][T10602] netlink: zone id is out of range
[  850.940171][T10616] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10388'.
[  850.974718][T10616] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10388'.
[  851.073237][T10624] netlink: 224 bytes leftover after parsing attributes in process `syz.9.10391'.
[  852.286467][T10692] netlink: 'syz.5.10414': attribute type 21 has an invalid length.
[  852.312482][T10692] netlink: 'syz.5.10414': attribute type 1 has an invalid length.
[  852.330716][T10694] netlink: 8 bytes leftover after parsing attributes in process `syz.9.10415'.
[  852.346582][T10692] netlink: 132 bytes leftover after parsing attributes in process `syz.5.10414'.
[  852.368800][T10694] netlink: 'syz.9.10415': attribute type 1 has an invalid length.
[  852.706681][ T5863] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  852.909272][ T5863] usb 9-1: Using ep0 maxpacket: 16
[  852.933165][ T5863] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  852.933221][ T5863] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  852.933247][ T5863] usb 9-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  852.933275][ T5863] usb 9-1: config 0 interface 0 has no altsetting 0
[  852.936366][ T5863] usb 9-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  852.936397][ T5863] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  852.936420][ T5863] usb 9-1: Product: syz
[  852.936436][ T5863] usb 9-1: Manufacturer: syz
[  852.936452][ T5863] usb 9-1: SerialNumber: syz
[  852.939428][ T5863] usb 9-1: config 0 descriptor??
[  853.046241][T10735] loop2: detected capacity change from 0 to 256
[  853.199518][T10735] FAT-fs (loop2): Directory bread(block 64) failed
[  853.206153][T10735] FAT-fs (loop2): Directory bread(block 65) failed
[  853.273269][T10735] FAT-fs (loop2): Directory bread(block 66) failed
[  853.280686][T10735] FAT-fs (loop2): Directory bread(block 67) failed
[  853.291316][T10735] FAT-fs (loop2): Directory bread(block 68) failed
[  853.302876][T10735] FAT-fs (loop2): Directory bread(block 69) failed
[  853.329956][T10735] FAT-fs (loop2): Directory bread(block 70) failed
[  853.345384][T10735] FAT-fs (loop2): Directory bread(block 71) failed
[  853.357086][T10735] FAT-fs (loop2): Directory bread(block 72) failed
[  853.384290][T10735] FAT-fs (loop2): Directory bread(block 73) failed
[  853.445759][ T5863] usb 9-1: USB disconnect, device number 6
[  853.595883][T10756] loop9: detected capacity change from 0 to 256
[  853.778624][T10756] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d)
[  853.967674][T10756] exFAT-fs (loop9): error, found bogus dentry(12) beyond unused empty group(11) (start_clu : 5, cur_clu : 5)
[  854.021290][T10756] exFAT-fs (loop9): Filesystem has been set read-only
[  854.219753][T10814] netlink: 12 bytes leftover after parsing attributes in process `syz.8.10435'.
[  854.737225][ T5863] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  854.943053][ T5863] usb 9-1: config 0 has an invalid interface number: 156 but max is 0
[  854.961917][ T5863] usb 9-1: config 0 has no interface number 0
[  854.982674][ T5863] usb 9-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  855.030578][ T5863] usb 9-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  855.041531][T10857] veth5: entered promiscuous mode
[  855.046650][T10857] veth5: entered allmulticast mode
[  855.054905][ T5863] usb 9-1: config 0 interface 156 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  855.068380][ T5863] usb 9-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice=d6.b9
[  855.084843][ T5863] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  855.097677][ T5863] usb 9-1: config 0 descriptor??
[  855.110250][ T5863] gspca_main: spca561-2.14.0 probing abcd:cdee
[  855.332642][ T5863] spca561: probe of 9-1:0.156 failed with error -22
[  855.356702][ T5863] usb 9-1: Quirk or no altest; falling back to MIDI 1.0
[  855.389352][ T5863] usb 9-1: MIDIStreaming interface descriptor not found
[  855.501686][ T5863] usb 9-1: USB disconnect, device number 7
[  855.630633][ T5792] udevd[5792]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  855.945904][    C1] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  855.982791][T10936] loop9: detected capacity change from 0 to 256
[  856.032775][T10936] exFAT-fs (loop9): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  856.086385][T10939] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10460'.
[  856.570204][T10954] loop2: detected capacity change from 0 to 4096
[  857.494418][T11006] loop8: detected capacity change from 0 to 256
[  857.649692][T11006] FAT-fs (loop8): Directory bread(block 64) failed
[  857.667004][T11006] FAT-fs (loop8): Directory bread(block 65) failed
[  857.667606][ T5863] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  857.673810][T11006] FAT-fs (loop8): Directory bread(block 66) failed
[  857.705288][T11006] FAT-fs (loop8): Directory bread(block 67) failed
[  857.713561][T11006] FAT-fs (loop8): Directory bread(block 68) failed
[  857.726248][T11006] FAT-fs (loop8): Directory bread(block 69) failed
[  857.762657][T11006] FAT-fs (loop8): Directory bread(block 70) failed
[  857.769266][T11006] FAT-fs (loop8): Directory bread(block 71) failed
[  857.780666][T11006] FAT-fs (loop8): Directory bread(block 72) failed
[  857.789192][T11006] FAT-fs (loop8): Directory bread(block 73) failed
[  857.891150][ T5863] usb 3-1: Using ep0 maxpacket: 32
[  857.913044][ T5863] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  857.938455][ T5863] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  857.974041][ T5863] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  858.016216][ T5863] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  858.050123][ T5863] usb 3-1: config 0 descriptor??
[  858.098550][ T5863] hub 3-1:0.0: USB hub found
[  858.387078][ T5863] hub 3-1:0.0: 1 port detected
[  858.595456][ T5863] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  858.631212][ T5863] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  858.672595][ T5863] usbhid 3-1:0.0: can't add hid device: -71
[  858.678762][ T5863] usbhid: probe of 3-1:0.0 failed with error -71
[  858.763873][ T5863] usb 3-1: USB disconnect, device number 35
[  858.773254][T11059] netlink: 'syz.5.10490': attribute type 1 has an invalid length.
[  859.185085][T11080] netlink: 168 bytes leftover after parsing attributes in process `syz.5.10494'.
[  859.383285][T11045] loop8: detected capacity change from 0 to 32768
[  859.465494][T11045] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  859.767620][ T1723] ocfs2: Unmounting device (7,8) on (node local)
[  859.959273][T11113] loop9: detected capacity change from 0 to 512
[  859.989732][T11113] ext4: Unknown parameter '.'
[  860.093208][ T5792] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  860.187864][T11124] gretap1: entered promiscuous mode
[  860.478301][T11138] netlink: 'syz.8.10500': attribute type 21 has an invalid length.
[  860.512448][T11138] netlink: 132 bytes leftover after parsing attributes in process `syz.8.10500'.
[  860.570315][T11142] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  862.433379][T11240] netlink: 100 bytes leftover after parsing attributes in process `syz.9.10533'.
[  862.541640][T11242] ALSA: mixer_oss: invalid OSS volume 'u'
[  862.943965][T11268] loop8: detected capacity change from 0 to 512
[  863.044879][T11268] ext4: Unknown parameter '.'
[  863.154112][ T5792] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  863.395608][T11290] netlink: 8 bytes leftover after parsing attributes in process `syz.9.10544'.
[  863.609963][T11328] xt_policy: too many policy elements
[  863.912588][T11339] netlink: 'syz.5.10550': attribute type 21 has an invalid length.
[  863.948525][T11339] netlink: 128 bytes leftover after parsing attributes in process `syz.5.10550'.
[  863.958595][T11339] netlink: 'syz.5.10550': attribute type 5 has an invalid length.
[  863.967427][T11339] netlink: 'syz.5.10550': attribute type 6 has an invalid length.
[  863.984018][T11339] netlink: 3 bytes leftover after parsing attributes in process `syz.5.10550'.
[  864.332177][T11284] loop2: detected capacity change from 0 to 32768
[  864.393368][T11284] XFS: attr2 mount option is deprecated.
[  864.481794][T11284] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  864.532782][T11376] xt_hashlimit: size too large, truncated to 1048576
[  864.692840][T11284] XFS (loop2): Ending clean mount
[  864.741393][T11284] XFS (loop2): Quotacheck needed: Please wait.
[  864.842064][ T6754] kworker/dying (6754) used greatest stack depth: 15728 bytes left
[  864.874176][T11397] loop8: detected capacity change from 0 to 64
[  865.002527][T11284] XFS (loop2): Quotacheck: Done.
[  865.092797][T11405] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  865.310358][ T5794] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  867.716114][T27094] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  867.923490][T27094] usb 3-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  867.944050][T27094] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  867.975089][T27094] usb 3-1: Product: syz
[  867.979341][T27094] usb 3-1: Manufacturer: syz
[  868.015336][T27094] usb 3-1: SerialNumber: syz
[  868.058957][T27094] usb 3-1: config 0 descriptor??
[  868.106110][T27094] gspca_main: sunplus-2.14.0 probing 055f:c230
[  868.342191][T27094] gspca_sunplus: reg_r err -71
[  868.367582][T27094] sunplus: probe of 3-1:0.0 failed with error -71
[  868.390685][T27094] usb 3-1: USB disconnect, device number 36
[  869.111607][T11593] loop8: detected capacity change from 0 to 8
[  869.701971][T11624] loop8: detected capacity change from 0 to 512
[  869.735549][T11624] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  869.789070][T11624] EXT4-fs (loop8): warning: checktime reached, running e2fsck is recommended
[  869.814807][T11624] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84fc01c, mo2=0102]
[  869.824250][T11624] System zones: 0-2, 18-18, 34-34
[  869.843066][T11624] EXT4-fs error (device loop8): ext4_orphan_get:1399: inode #15: comm syz.8.10609: iget: bad i_size value: 360287970189639680
[  869.979404][T11624] EXT4-fs error (device loop8): ext4_orphan_get:1404: comm syz.8.10609: couldn't read orphan inode 15 (err -117)
[  870.034769][T11624] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  870.171325][T11624] EXT4-fs error (device loop8): ext4_find_dest_de:2115: inode #2: block 3: comm syz.8.10609: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  870.422950][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  870.945837][T11622] loop2: detected capacity change from 0 to 32768
[  871.243596][   T23] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  871.447767][   T23] usb 9-1: Using ep0 maxpacket: 8
[  871.471866][   T23] usb 9-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[  871.497800][   T23] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  871.548659][   T23] usb 9-1: Product: syz
[  871.552913][   T23] usb 9-1: Manufacturer: syz
[  871.586780][   T23] usb 9-1: SerialNumber: syz
[  871.599906][   T23] usb 9-1: config 0 descriptor??
[  871.624950][   T23] radio-usb-si4713 9-1:0.0: Si4713 development board discovered: (10C4:8244)
[  872.065871][   T23] radio-usb-si4713: probe of 9-1:0.0 failed with error -71
[  872.099597][   T23] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  872.140092][   T23] usb 9-1: USB disconnect, device number 8
[  872.498958][T11749] xt_CT: You must specify a L4 protocol and not use inversions on it
[  872.562215][T11756] loop2: detected capacity change from 0 to 128
[  872.964908][T11771] netlink: 'syz.8.10642': attribute type 1 has an invalid length.
[  872.972860][T11771] netlink: 4 bytes leftover after parsing attributes in process `syz.8.10642'.
[  873.620662][T11792] netlink: 220 bytes leftover after parsing attributes in process `syz.5.10648'.
[  873.723958][T11795] netlink: 'syz.8.10649': attribute type 10 has an invalid length.
[  873.831332][T11762] loop9: detected capacity change from 0 to 32768
[  873.902887][T11762] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  873.924685][T11773] loop2: detected capacity change from 0 to 32768
[  873.952313][T11773] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  874.102777][T11795] veth0_vlan: left promiscuous mode
[  874.156906][T11795] veth0_vlan: entered promiscuous mode
[  874.192329][T11795] team0: Device veth0_vlan failed to register rx_handler
[  874.220658][T11762] XFS (loop9): Ending clean mount
[  874.227644][ T6642] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  874.495090][ T9285] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  875.444258][T11857] netlink: 'syz.2.10663': attribute type 5 has an invalid length.
[  876.542351][T11908] netlink: 'syz.8.10681': attribute type 32 has an invalid length.
[  876.690274][T11911] ipip0: entered promiscuous mode
[  877.018726][T11931] xt_bpf: check failed: parse error
[  877.315944][T11947] netlink: 128 bytes leftover after parsing attributes in process `syz.2.10693'.
[  877.345911][T11947] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  877.700163][T11967] netlink: 'syz.9.10700': attribute type 10 has an invalid length.
[  877.873346][T11967] team0: Device veth1_macvtap failed to register rx_handler
[  878.007517][T11972] netlink: 'syz.2.10702': attribute type 10 has an invalid length.
[  878.130247][T11972] veth0_vlan: left promiscuous mode
[  878.142187][T11972] veth0_vlan: entered promiscuous mode
[  878.186151][T11972] team0: Device veth0_vlan failed to register rx_handler
[  878.260739][T11992] loop9: detected capacity change from 0 to 22
[  878.263445][T11991] sctp: [Deprecated]: syz.5.10708 (pid 11991) Use of int in max_burst socket option deprecated.
[  878.263445][T11991] Use struct sctp_assoc_value instead
[  878.271499][T11992] MTD: Attempt to mount non-MTD device "/dev/loop9"
[  878.342236][T11992] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  878.496345][T11997] syz.5.10709: attempt to access beyond end of device
[  878.496345][T11997] nbd5: rw=0, sector=2, nr_sectors = 2 limit=0
[  878.549004][T11997] syz.5.10709: attempt to access beyond end of device
[  878.549004][T11997] nbd5: rw=0, sector=16, nr_sectors = 2 limit=0
[  879.116737][T12034] netlink: 'syz.5.10719': attribute type 10 has an invalid length.
[  879.311126][T12034] team0: Device veth0_vlan failed to register rx_handler
[  880.271945][T12082] loop8: detected capacity change from 0 to 4096
[  880.324329][T12082] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  880.473596][T12099] netlink: 128 bytes leftover after parsing attributes in process `syz.9.10742'.
[  880.485035][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  880.499924][T12099] netlink: 28 bytes leftover after parsing attributes in process `syz.9.10742'.
[  880.515492][T12101] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10739'.
[  882.015577][T12184] loop8: detected capacity change from 0 to 1024
[  882.207468][ T3476] hfsplus: b-tree write err: -5, ino 4
[  883.970879][T12282] (null): rxe_set_mtu: Set mtu to 1024
[  884.242660][T12260] loop8: detected capacity change from 0 to 32768
[  884.366940][T12260] XFS (loop8): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  884.430305][T12282] infiniband syz1: set down
[  884.439418][T12282] infiniband syz1: added bond_slave_0
[  884.520203][T12282] RDS/IB: syz1: added
[  884.527477][T12282] smc: adding ib device syz1 with port count 1
[  884.534133][T12282] smc:    ib device syz1 port 1 has pnetid 
[  884.664624][T12260] XFS (loop8): Ending clean mount
[  884.682294][T12260] XFS (loop8): Quotacheck needed: Please wait.
[  884.839756][T12260] XFS (loop8): Quotacheck: Done.
[  884.990877][ T1723] XFS (loop8): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  885.490038][T12337] loop9: detected capacity change from 0 to 1024
[  885.569188][T12337] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  885.578929][T12337] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  885.658228][T12337] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  885.669660][T12337] EXT4-fs (loop9): orphan cleanup on readonly fs
[  885.682045][T12337] EXT4-fs error (device loop9): ext4_read_inode_bitmap:168: comm syz.9.10809: Inode bitmap for bg 0 marked uninitialized
[  885.745917][T12337] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  885.864158][T12337] EXT4-fs (loop9): ext4_remount: Checksum for group 0 failed (32298!=35945)
[  885.981484][ T9285] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  887.148573][T12367] loop9: detected capacity change from 0 to 32768
[  887.430671][T12389] loop9: detected capacity change from 32768 to 0
[  887.551881][ T9285] syz-executor: attempt to access beyond end of device
[  887.551881][ T9285] loop9: rw=1, sector=256, nr_sectors = 8 limit=0
[  887.589605][ T9285] metapage_write_end_io: I/O error
[  887.595216][ T9285] syz-executor: attempt to access beyond end of device
[  887.595216][ T9285] loop9: rw=1, sector=176, nr_sectors = 8 limit=0
[  887.643261][ T9285] metapage_write_end_io: I/O error
[  887.648792][ T9285] syz-executor: attempt to access beyond end of device
[  887.648792][ T9285] loop9: rw=1, sector=72, nr_sectors = 8 limit=0
[  887.727077][ T9285] metapage_write_end_io: I/O error
[  887.747607][ T9285] syz-executor: attempt to access beyond end of device
[  887.747607][ T9285] loop9: rw=1, sector=128, nr_sectors = 8 limit=0
[  887.792494][ T9285] metapage_write_end_io: I/O error
[  887.798171][ T9285] syz-executor: attempt to access beyond end of device
[  887.798171][ T9285] loop9: rw=1, sector=88, nr_sectors = 8 limit=0
[  887.836482][ T9285] metapage_write_end_io: I/O error
[  887.865105][ T9285] syz-executor: attempt to access beyond end of device
[  887.865105][ T9285] loop9: rw=1, sector=104, nr_sectors = 8 limit=0
[  887.892865][ T9285] metapage_write_end_io: I/O error
[  887.898302][ T9285] syz-executor: attempt to access beyond end of device
[  887.898302][ T9285] loop9: rw=0, sector=64, nr_sectors = 8 limit=0
[  887.954286][ T9285] syz-executor: attempt to access beyond end of device
[  887.954286][ T9285] loop9: rw=0, sector=120, nr_sectors = 8 limit=0
[  887.974413][ T9285] syz-executor: attempt to access beyond end of device
[  887.974413][ T9285] loop9: rw=2049, sector=30744, nr_sectors = 8 limit=0
[  888.027659][ T9285] lbmIODone: I/O error in JFS log
[  888.044938][ T9285] syz-executor: attempt to access beyond end of device
[  888.044938][ T9285] loop9: rw=0, sector=30728, nr_sectors = 8 limit=0
[  888.091804][ T9285] lbmIODone: I/O error in JFS log
[  888.096981][ T9285] lbmIODone: I/O error in JFS log
[  888.126377][ T9285] lmLogShutdown: exit(-5)
[  888.130970][ T9285] jfs_umount failed with return code -5
[  888.442047][T12432] loop8: detected capacity change from 0 to 512
[  888.550333][T12432] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  888.648908][T12432] ext4 filesystem being mounted at /663/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  888.923872][T12459] netlink: 16126 bytes leftover after parsing attributes in process `syz.2.10843'.
[  889.109394][ T1723] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  889.452249][T12481] loop2: detected capacity change from 0 to 2048
[  889.479828][T12481] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=3932051, location=3932051
[  889.528293][T12481] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  889.531504][T12485] netlink: 'syz.5.10850': attribute type 10 has an invalid length.
[  889.592516][T12485] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  889.936066][T12500] netlink: 8 bytes leftover after parsing attributes in process `syz.9.10854'.
[  890.062323][T12506] devtmpfs: Unknown parameter 'GPL'
[  890.586601][T12523] loop2: detected capacity change from 0 to 8192
[  890.628840][T12523] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  890.659718][T12523] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  890.716609][T12523] REISERFS (device loop2): using ordered data mode
[  890.769097][T12523] reiserfs: using flush barriers
[  890.810402][T12523] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  890.872068][T12523] REISERFS (device loop2): checking transaction log (loop2)
[  890.905488][T12523] REISERFS (device loop2): Using r5 hash to sort names
[  890.937977][T12523] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  891.223830][T12557] loop8: detected capacity change from 0 to 2048
[  891.297860][T12557] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  891.495860][T12569] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  891.540724][T12569] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  891.567820][T12569] overlayfs: missing 'lowerdir'
[  892.401873][T12615] loop8: detected capacity change from 0 to 64
[  892.477163][T12615] hfs: filesystem is marked locked, mounting read-only.
[  892.511166][T12615] hfs: filesystem is marked locked, leaving read-only.
[  892.594825][T12622] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  892.966904][T12638] netlink: 6 bytes leftover after parsing attributes in process `syz.8.10895'.
[  892.986794][T12638] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  893.731540][T12677] netlink: 'syz.5.10908': attribute type 6 has an invalid length.
[  893.753800][T12677] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.10908'.
[  893.777005][T12679] netlink: 8 bytes leftover after parsing attributes in process `syz.9.10910'.
[  893.810518][T12683] loop8: detected capacity change from 0 to 128
[  893.829329][T12683] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  893.885913][T12683] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  894.168695][T32548] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  894.720448][T12707] netlink: 132 bytes leftover after parsing attributes in process `syz.8.10916'.
[  895.148547][T12713] loop8: detected capacity change from 0 to 4096
[  895.207704][T12722] netlink: 44 bytes leftover after parsing attributes in process `syz.9.10920'.
[  895.261695][T12722] netlink: 43 bytes leftover after parsing attributes in process `syz.9.10920'.
[  895.287410][T12722] netlink: 'syz.9.10920': attribute type 5 has an invalid length.
[  895.295553][T12722] netlink: 43 bytes leftover after parsing attributes in process `syz.9.10920'.
[  895.366270][T12713] ntfs3: loop8: Mark volume as dirty due to NTFS errors
[  895.428433][T12713] ntfs3: loop8: ino=9, ntfs_sync_fs failed, -22.
[  895.522385][ T1723] ntfs3: loop8: ino=9, ntfs_sync_fs failed, -22.
[  895.628992][    C1] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  895.950576][T12749] netlink: 'syz.9.10927': attribute type 5 has an invalid length.
[  896.160053][T12759] netlink: 'syz.8.10930': attribute type 7 has an invalid length.
[  896.177267][T12759] netlink: 'syz.8.10930': attribute type 8 has an invalid length.
[  896.342149][T12768] loop9: detected capacity change from 0 to 512
[  896.399450][T12768] EXT4-fs error (device loop9): ext4_orphan_get:1425: comm syz.9.10934: bad orphan inode 15
[  896.433683][T12768] ext4_test_bit(bit=14, block=5) = 0
[  896.440380][T12768] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  896.624872][T12768] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 7987 vs 220 free clusters
[  896.691394][T12768] EXT4-fs error (device loop9): ext4_free_inode:356: comm syz.9.10934: bit already cleared for inode 13
[  896.875575][ T9285] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  897.691756][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  897.698519][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  898.295485][T12871] loop9: detected capacity change from 0 to 128
[  898.333843][T12871] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  898.353421][T12871] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  898.968518][T12906] ..0
ˆ: renamed from veth0_to_hsr (while UP)
[  899.389188][T12930] netlink: 24 bytes leftover after parsing attributes in process `syz.8.10982'.
[  899.910190][   T28] audit: type=1326 audit(1757002409.175:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12959 comm="syz.2.10991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  899.932655][    C1] vkms_vblank_simulate: vblank timer overrun
[  899.986948][   T28] audit: type=1326 audit(1757002409.175:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12959 comm="syz.2.10991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  900.061546][   T28] audit: type=1326 audit(1757002409.221:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12959 comm="syz.2.10991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  900.106956][   T28] audit: type=1326 audit(1757002409.221:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12959 comm="syz.2.10991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  900.129468][    C1] vkms_vblank_simulate: vblank timer overrun
[  900.172684][   T28] audit: type=1326 audit(1757002409.221:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12959 comm="syz.2.10991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  900.363118][T12981] loop9: detected capacity change from 0 to 1024
[  900.455220][T12981] hfsplus: detected inconsistent attributes file, running fsck.hfsplus is recommended.
[  901.020012][T13010] loop8: detected capacity change from 0 to 4096
[  901.026988][T13016] netlink: 100 bytes leftover after parsing attributes in process `syz.2.11007'.
[  901.060797][T13010] ntfs3: loop8: Different NTFS sector size (4096) and media sector size (512).
[  901.565739][T13036] netlink: 197276 bytes leftover after parsing attributes in process `syz.8.11011'.
[  901.890703][T13013] loop9: detected capacity change from 0 to 32768
[  901.930461][T13013] ERROR: (device loop9): diAllocAG: numfree > numinos
[  901.930461][T13013] 
[  901.993769][T13013] ERROR: (device loop9): remounting filesystem as read-only
[  902.018224][T13013] ialloc: diAlloc returned -5!
[  902.071422][T13055] loop2: detected capacity change from 0 to 1024
[  902.159311][T13055] hfsplus: extend alloc file! (8192,512,17039360)
[  902.824316][T13088] netlink: 'syz.5.11025': attribute type 1 has an invalid length.
[  903.378424][T13120] netlink: 830 bytes leftover after parsing attributes in process `syz.9.11036'.
[  903.845405][T13143] netlink: 'syz.5.11043': attribute type 2 has an invalid length.
[  903.881215][T13143] netlink: 'syz.5.11043': attribute type 1 has an invalid length.
[  903.912559][T13150] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  904.762101][T13198] usb usb7: usbfs: process 13198 (syz.2.11060) did not claim interface 0 before use
[  905.686244][T13244] netlink: 'syz.8.11074': attribute type 27 has an invalid length.
[  905.971103][T13250] loop9: detected capacity change from 0 to 4096
[  906.020020][T13250] ntfs3: loop9: Different NTFS sector size (4096) and media sector size (512).
[  906.247277][T13250] ntfs3: loop9: failed to convert "c46c" to iso8859-4
[  907.281912][   T28] audit: type=1326 audit(1757002416.069:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13311 comm="syz.2.11096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  907.387114][   T28] audit: type=1326 audit(1757002416.069:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13311 comm="syz.2.11096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  907.503555][   T28] audit: type=1326 audit(1757002416.069:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13311 comm="syz.2.11096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  907.526072][    C1] vkms_vblank_simulate: vblank timer overrun
[  907.600669][   T28] audit: type=1326 audit(1757002416.069:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13311 comm="syz.2.11096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  907.677358][   T28] audit: type=1326 audit(1757002416.069:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13311 comm="syz.2.11096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  908.198377][T13357] loop9: detected capacity change from 0 to 512
[  908.230942][T13357] EXT4-fs: Ignoring removed i_version option
[  908.275328][T13357] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  908.315978][T13357] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e12c, mo2=0002]
[  908.376689][T13357] System zones: 1-12
[  908.381191][T13357] EXT4-fs (loop9): orphan cleanup on readonly fs
[  908.390203][T13357] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #11: comm syz.9.11110: invalid indirect mapped block 12 (level 1)
[  908.411602][T13357] EXT4-fs (loop9): Remounting filesystem read-only
[  908.419142][T13357] EXT4-fs (loop9): 1 truncate cleaned up
[  908.426421][T13357] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  908.656169][ T9285] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  908.772279][T13388] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_team, syncid = 0, id = 0
[  908.912468][T13383] loop8: detected capacity change from 0 to 4096
[  908.937875][T13383] ntfs3: loop8: Different NTFS sector size (4096) and media sector size (512).
[  909.026036][T13383] ntfs3: loop8: Failed to initialize $Extend/$Reparse.
[  909.054209][T13399] loop9: detected capacity change from 0 to 1024
[  909.091779][T13399] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  909.137287][T13383] ntfs3: loop8: ino=1b, "file0" attr_set_size
[  909.186311][T13399] EXT4-fs (loop9): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  909.207261][T13383] ntfs3: loop8: Mark volume as dirty due to NTFS errors
[  909.257196][T13399] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  909.339287][T13399] EXT4-fs error (device loop9): ext4_xattr_inode_iget:440: inode #11: comm syz.9.11123: missing EA_INODE flag
[  909.361285][T13411] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11124'.
[  909.410115][T13399] EXT4-fs (loop9): Remounting filesystem read-only
[  909.563129][ T9285] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  910.245509][T13442] xt_CT: No such helper "snmp"
[  910.541967][T13422] loop2: detected capacity change from 0 to 32768
[  910.625924][T13464] netlink: 'syz.5.11140': attribute type 21 has an invalid length.
[  910.631468][T13422] 
[  910.631468][T13422]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  910.631468][T13422] 
[  910.666846][T13464] netlink: 132 bytes leftover after parsing attributes in process `syz.5.11140'.
[  910.729308][T13422] 
[  910.729308][T13422]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  910.729308][T13422] 
[  910.741440][T13464] netlink: 20 bytes leftover after parsing attributes in process `syz.5.11140'.
[  910.750644][T13422] 
[  910.750644][T13422]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  910.750644][T13422] 
[  910.762814][T13422] 
[  910.762814][T13422]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  910.762814][T13422] 
[  910.774885][T13422] 
[  910.774885][T13422]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  910.774885][T13422] 
[  910.826030][  T111] 
[  910.826030][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  910.826030][  T111] 
[  910.947668][ T5794] 
[  910.947668][ T5794]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  910.947668][ T5794] 
[  911.014093][ T5794] 
[  911.014093][ T5794]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  911.014093][ T5794] 
[  911.765211][T13504] loop8: detected capacity change from 0 to 4096
[  911.802731][T13504] ntfs3: loop8: Different NTFS sector size (4096) and media sector size (512).
[  912.322494][T13539] loop2: detected capacity change from 0 to 16
[  912.362165][T13539] erofs: (device loop2): mounted with root inode @ nid 36.
[  912.450565][T13539] erofs: (device loop2): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 89
[  912.478405][T13539] erofs: (device loop2): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 89
[  912.498752][ T2487] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  912.508908][T13539] erofs: (device loop2): z_erofs_readahead: readahead error at folio 3 @ nid 89
[  912.518568][T13539] erofs: (device loop2): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 89
[  912.562301][T13539] erofs: (device loop2): z_erofs_readahead: readahead error at folio 2 @ nid 89
[  912.586859][T13539] erofs: (device loop2): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 89
[  912.609578][T13539] erofs: (device loop2): z_erofs_readahead: readahead error at folio 1 @ nid 89
[  912.638120][T13539] erofs: (device loop2): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 89
[  912.674479][T13539] erofs: (device loop2): z_erofs_readahead: readahead error at folio 0 @ nid 89
[  912.684131][T13539] erofs: (device loop2): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 89
[  912.698953][T13539] erofs: (device loop2): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 89
[  912.722741][T13539] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 0 of nid 89
[  912.761574][ T2487] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  912.780998][ T2487] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 2
[  912.785686][   T28] audit: type=1800 audit(1757002421.213:363): pid=13539 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.11163" name="file2" dev="loop2" ino=89 res=0 errno=0
[  912.798467][ T2487] usb 10-1: config 1 has no interface number 0
[  912.820222][ T2487] usb 10-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  912.853593][T13557] netlink: 4 bytes leftover after parsing attributes in process `syz.8.11168'.
[  912.890862][ T2487] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  912.906962][ T2487] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  912.915277][ T2487] usb 10-1: Product: syz
[  912.946438][ T2487] usb 10-1: Manufacturer: syz
[  912.966579][ T2487] usb 10-1: SerialNumber: syz
[  912.986898][ T2487] usb 10-1: selecting invalid altsetting 1
[  913.447643][ T2487] cdc_ncm 10-1:1.1: failed GET_NTB_PARAMETERS
[  913.470381][ T2487] cdc_ncm 10-1:1.1: bind() failure
[  913.490305][ T2487] usb 10-1: USB disconnect, device number 3
[  913.582800][T11435] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  913.802941][T11435] usb 3-1: Using ep0 maxpacket: 32
[  913.812222][T11435] usb 3-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  913.826502][T11435] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  913.845141][T11435] usb 3-1: config 0 descriptor??
[  913.888661][T11435] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  914.298195][T11435] gspca_vc032x: reg_w err -71
[  914.320281][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.325648][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.350336][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.355791][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.381051][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.386449][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.413362][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.418759][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.444489][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.471433][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.487959][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.493354][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.526262][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.540669][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.562466][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.567844][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.604871][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.610258][T11435] gspca_vc032x: I2c Bus Busy Wait 00
[  914.636694][T11435] gspca_vc032x: Unknown sensor...
[  914.641868][T11435] vc032x: probe of 3-1:0.0 failed with error -22
[  914.667070][T11435] usb 3-1: USB disconnect, device number 37
[  914.991742][T13664] netlink: 'syz.9.11195': attribute type 1 has an invalid length.
[  915.085627][T13664] netlink: 112865 bytes leftover after parsing attributes in process `syz.9.11195'.
[  916.198604][T13724] netlink: 8 bytes leftover after parsing attributes in process `syz.9.11215'.
[  916.929050][T13758] xt_TCPMSS: Only works on TCP SYN packets
[  917.344384][T13780] loop2: detected capacity change from 0 to 256
[  917.416918][T13780] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  917.459308][T13780] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  917.506307][T13780] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  917.975245][T13817] netlink: 8 bytes leftover after parsing attributes in process `syz.8.11243'.
[  918.011829][T13816] netlink: 'syz.5.11245': attribute type 2 has an invalid length.
[  918.647824][T13850] netlink: 8 bytes leftover after parsing attributes in process `syz.8.11254'.
[  918.879738][T13861] x_tables: ip_tables: socket match: used from hooks POSTROUTING, but only valid from PREROUTING/INPUT
[  920.853445][T13974] netlink: 'syz.9.11294': attribute type 15 has an invalid length.
[  920.880128][T13975] netlink: 256 bytes leftover after parsing attributes in process `syz.8.11295'.
[  920.895984][T13979] loop2: detected capacity change from 0 to 256
[  921.155162][T13990] libceph: resolve '4.' (ret=-3): failed
[  921.273402][T13997] CIFS: VFS: Malformed UNC in devname
[  921.469646][T14008] loop9: detected capacity change from 0 to 8
[  921.669936][T14019] netlink: 'syz.5.11307': attribute type 4 has an invalid length.
[  921.949269][T14036] netlink: 16 bytes leftover after parsing attributes in process `syz.8.11312'.
[  922.169767][T14044] netlink: 20 bytes leftover after parsing attributes in process `syz.5.11314'.
[  922.611397][T14067] comedi comedi4: comedi_config --init_data is deprecated
[  922.845835][T14081] mac80211_hwsim hwsim13 wlan1: entered allmulticast mode
[  923.462099][T14111] netlink: 'syz.2.11337': attribute type 1 has an invalid length.
[  923.673960][T14116] loop9: detected capacity change from 0 to 2048
[  923.771087][T14116]  loop9: p1 < > p4 < >
[  925.222334][T14200] netlink: 44 bytes leftover after parsing attributes in process `syz.5.11363'.
[  925.252214][T14200] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  925.322020][T14162] loop8: detected capacity change from 0 to 32768
[  925.396828][T14205] loop9: detected capacity change from 0 to 2048
[  925.414810][T14162] ERROR: (device loop8): dbAlloc: unable to allocate blocks
[  925.414810][T14162] 
[  925.452928][T14162] jfs_create: dtInsert returned -EIO
[  925.462818][T14205] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  925.495775][T14162] ERROR: (device loop8): jfs_create: 
[  925.495775][T14162] 
[  925.701832][T14219] netlink: 132 bytes leftover after parsing attributes in process `syz.2.11368'.
[  926.187203][T14244] SET target dimension over the limit!
[  926.826155][T14271] loop8: detected capacity change from 0 to 2048
[  926.882617][T14271] UDF-fs: warning (device loop8): udf_load_vrs: No anchor found
[  926.906488][T14271] UDF-fs: Scanning with blocksize 512 failed
[  926.979721][T14271] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  926.979976][T14279] trusted_key: encrypted_key: master key parameter '' is invalid
[  928.796800][T14350] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  929.157328][T14320] loop2: detected capacity change from 0 to 32768
[  929.203752][T14320] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  929.575185][ T5794] ocfs2: Unmounting device (7,2) on (node local)
[  930.067141][T14404] loop2: detected capacity change from 0 to 1024
[  930.103091][T14404] EXT4-fs (loop2): Test dummy encryption mode enabled
[  930.130209][T14404] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  930.235999][T14404] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  930.406848][T14404] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.11423: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  930.632123][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  930.655370][T14435] netlink: 666 bytes leftover after parsing attributes in process `syz.9.11432'.
[  931.011839][T14440] loop2: detected capacity change from 0 to 4096
[  931.050674][T14440] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  931.143239][   T23] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  931.346422][   T23] usb 9-1: Using ep0 maxpacket: 32
[  931.369436][T14468] loop9: detected capacity change from 0 to 16
[  931.376828][T14468] MTD: Attempt to mount non-MTD device "/dev/loop9"
[  931.385961][   T23] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[  931.415134][   T23] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  931.458970][   T23] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  931.506920][   T23] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[  931.537141][   T23] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  931.592421][   T23] usb 9-1: config 0 interface 0 has no altsetting 0
[  931.624028][   T23] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  931.665031][   T23] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  931.680369][   T23] usb 9-1: Product: syz
[  931.695926][   T23] usb 9-1: Manufacturer: syz
[  931.710787][   T23] usb 9-1: SerialNumber: syz
[  931.732936][   T23] usb 9-1: config 0 descriptor??
[  931.759589][   T23] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  931.795821][   T23] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  931.837254][T14489] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  931.865548][T14489] netdevsim netdevsim5 netdevsim0: left allmulticast mode
[  931.877011][T14489] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  932.045039][T14445] ldusb 9-1:0.0: Couldn't submit interrupt_in_urb -90
[  932.070350][   T23] usb 9-1: USB disconnect, device number 9
[  932.081032][   T23] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[  932.231144][T14513] netlink: 84 bytes leftover after parsing attributes in process `syz.9.11450'.
[  932.378605][T14522] loop9: detected capacity change from 0 to 16
[  932.427224][T14522] erofs: (device loop9): mounted with root inode @ nid 36.
[  932.457684][T14527] tmpfs: Bad value for 'mpol'
[  932.480754][T14522] erofs: (device loop9): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  932.518762][T14529] xt_l2tp: unknown flags: 17
[  932.521337][T14522] erofs: (device loop9): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851]
[  932.553519][T14522] erofs: (device loop9): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  933.093734][T14558] loop9: detected capacity change from 0 to 1024
[  933.691244][T14592] loop8: detected capacity change from 0 to 1764
[  933.960862][T14605] netlink: 48 bytes leftover after parsing attributes in process `syz.2.11477'.
[  934.275387][T14625] netlink: 'syz.8.11483': attribute type 8 has an invalid length.
[  934.414586][T14633] netlink: 'syz.9.11485': attribute type 10 has an invalid length.
[  934.802212][T14652] netlink: 16 bytes leftover after parsing attributes in process `syz.2.11491'.
[  934.915423][T14658] netlink: 4 bytes leftover after parsing attributes in process `syz.5.11493'.
[  934.941729][T14657] comedi comedi4: bad chanlist[0]=0x000040e3 chan=16611 range length=2
[  935.419280][T14682] netlink: 424 bytes leftover after parsing attributes in process `syz.2.11501'.
[  935.460476][T14682] netlink: 'syz.2.11501': attribute type 1 has an invalid length.
[  935.822907][T14704] overlayfs: missing 'lowerdir'
[  936.013995][T14715] loop8: detected capacity change from 0 to 256
[  936.146338][ T2487] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  936.227587][   T28] audit: type=1326 audit(1757002443.148:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14725 comm="syz.9.11515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb581f8ebe9 code=0x7ffc0000
[  936.315864][   T28] audit: type=1326 audit(1757002443.148:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14725 comm="syz.9.11515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb581f8ebe9 code=0x7ffc0000
[  936.404762][   T28] audit: type=1326 audit(1757002443.177:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14725 comm="syz.9.11515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7fb581f8ebe9 code=0x7ffc0000
[  936.463143][   T28] audit: type=1326 audit(1757002443.177:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14725 comm="syz.9.11515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb581f8ebe9 code=0x7ffc0000
[  936.501097][T14736] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11519'.
[  936.511433][   T28] audit: type=1326 audit(1757002443.177:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14725 comm="syz.9.11515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb581f8ebe9 code=0x7ffc0000
[  937.031500][T14791] loop2: detected capacity change from 0 to 1024
[  937.116311][ T2487] ip6_tunnel: ip6gre3 xmit: Local address not yet configured!
[  938.242564][T14786] syz.8.11523 (14786): drop_caches: 2
[  938.521065][T14842] netlink: 14 bytes leftover after parsing attributes in process `syz.2.11539'.
[  938.576725][T14842] hsr_slave_0: left promiscuous mode
[  938.624494][T14842] hsr_slave_1: left promiscuous mode
[  939.045905][T14866] loop9: detected capacity change from 0 to 128
[  939.372666][T14885] loop9: detected capacity change from 0 to 128
[  939.445352][T14885] FAT-fs (loop9): error, fat_free_clusters: deleting FAT entry beyond EOF
[  939.457672][T14885] FAT-fs (loop9): Filesystem has been set read-only
[  939.612214][T14898] siw: device registration error -23
[  939.930392][T14915] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11559'.
[  939.951727][T14915] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11559'.
[  939.997705][T14919] IPVS: length: 225 != 8
[  940.292472][T14929] netlink: 32 bytes leftover after parsing attributes in process `syz.8.11564'.
[  940.822878][T14968] netlink: 'syz.8.11574': attribute type 10 has an invalid length.
[  940.833176][T14968] veth1_macvtap: left promiscuous mode
[  941.250703][T14976] loop9: detected capacity change from 0 to 4096
[  941.329747][T14986] loop2: detected capacity change from 0 to 512
[  941.383653][T14976] ntfs: volume version 3.1.
[  941.423797][T14986] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  941.496189][T14986] ext4 filesystem being mounted at /2866/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  941.782803][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  943.024790][T15047] netlink: 32 bytes leftover after parsing attributes in process `syz.5.11594'.
[  943.594371][T15011] syz.2.11583 (15011): drop_caches: 2
[  943.947469][T15083] loop8: detected capacity change from 0 to 2048
[  943.993072][T15083] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  944.421659][   T28] audit: type=1326 audit(1757002450.819:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15108 comm="syz.2.11613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  944.466304][   T28] audit: type=1326 audit(1757002450.837:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15108 comm="syz.2.11613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  944.488767][    C0] vkms_vblank_simulate: vblank timer overrun
[  944.517304][   T28] audit: type=1326 audit(1757002450.856:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15108 comm="syz.2.11613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  944.578992][   T28] audit: type=1326 audit(1757002450.856:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15108 comm="syz.2.11613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  944.614251][   T28] audit: type=1326 audit(1757002450.856:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15108 comm="syz.2.11613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd51b58ebe9 code=0x7ffc0000
[  944.695459][   T28] audit: type=1326 audit(1757002451.034:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15117 comm="syz.5.11617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  944.777739][   T28] audit: type=1326 audit(1757002451.034:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15117 comm="syz.5.11617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  944.866833][   T28] audit: type=1326 audit(1757002451.081:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15117 comm="syz.5.11617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=232 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  944.936181][   T28] audit: type=1326 audit(1757002451.081:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15117 comm="syz.5.11617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f578ebe9 code=0x7ffc0000
[  945.737211][T15180] netlink: 80 bytes leftover after parsing attributes in process `syz.9.11637'.
[  947.004214][T15240] loop9: detected capacity change from 0 to 512
[  947.039483][T15240] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  947.141327][T15240] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #11: comm syz.9.11656: invalid indirect mapped block 4294967295 (level 1)
[  947.163929][T15240] EXT4-fs (loop9): Remounting filesystem read-only
[  947.172163][T15240] EXT4-fs (loop9): 2 truncates cleaned up
[  947.179759][T15240] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  947.448408][ T9285] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  947.487234][T15270] program syz.8.11663 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  947.542942][T15270] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  947.682011][T15279] netlink: 24 bytes leftover after parsing attributes in process `syz.9.11666'.
[  947.779523][T15288] loop8: detected capacity change from 0 to 256
[  947.920373][T15288] FAT-fs (loop8): Directory bread(block 64) failed
[  947.935068][T15288] FAT-fs (loop8): Directory bread(block 65) failed
[  947.965880][T15288] FAT-fs (loop8): Directory bread(block 66) failed
[  948.002348][T15288] FAT-fs (loop8): Directory bread(block 67) failed
[  948.009058][T15288] FAT-fs (loop8): Directory bread(block 68) failed
[  948.027376][T15288] FAT-fs (loop8): Directory bread(block 69) failed
[  948.038973][T15288] FAT-fs (loop8): Directory bread(block 70) failed
[  948.063031][T15288] FAT-fs (loop8): Directory bread(block 71) failed
[  948.073983][T15288] FAT-fs (loop8): Directory bread(block 72) failed
[  948.104006][T15288] FAT-fs (loop8): Directory bread(block 73) failed
[  948.422422][T15319] netlink: 'syz.5.11680': attribute type 2 has an invalid length.
[  948.438840][T15319] netlink: 'syz.5.11680': attribute type 8 has an invalid length.
[  948.458033][T15319] netlink: 32 bytes leftover after parsing attributes in process `syz.5.11680'.
[  948.468467][T15320] netlink: 4 bytes leftover after parsing attributes in process `syz.8.11679'.
[  948.478323][T15320] netlink: 10 bytes leftover after parsing attributes in process `syz.8.11679'.
[  949.392184][T27094] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  949.604428][T27094] usb 10-1: config 0 has an invalid interface number: 117 but max is 0
[  949.616285][T27094] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  949.647507][T27094] usb 10-1: config 0 has no interface number 0
[  949.665248][T27094] usb 10-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  949.708618][T27094] usb 10-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  949.747645][T27094] usb 10-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  949.766957][T27094] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  949.793683][T27094] usb 10-1: Product: syz
[  949.821200][T27094] usb 10-1: Manufacturer: syz
[  949.825963][T27094] usb 10-1: SerialNumber: syz
[  949.849296][T27094] usb 10-1: config 0 descriptor??
[  949.916282][T15372] delete_channel: no stack
[  950.102923][T15385] netlink: 16 bytes leftover after parsing attributes in process `syz.5.11699'.
[  950.126789][T27094] usbtouchscreen: probe of 10-1:0.117 failed with error -71
[  950.140531][T15385] netlink: 92 bytes leftover after parsing attributes in process `syz.5.11699'.
[  950.172865][T27094] usb 10-1: USB disconnect, device number 4
[  950.474313][T15411] cgroup: release_agent respecified
[  950.923801][T15433] netlink: 'syz.9.11712': attribute type 4 has an invalid length.
[  950.951089][T15433] netlink: 128124 bytes leftover after parsing attributes in process `syz.9.11712'.
[  951.211094][T15448] binder: 15446:15448 ioctl c00c6211 0 returned -14
[  951.386629][T15460] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  951.679734][T11435] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  951.805168][T15482] ==================================================================
[  951.813300][T15482] BUG: KASAN: slab-use-after-free in __xfrm_state_lookup+0x6b2/0x8d0
[  951.821431][T15482] Read of size 2 at addr ffff88802fde2922 by task syz.2.11728/15482
[  951.829450][T15482] 
[  951.831820][T15482] CPU: 1 PID: 15482 Comm: syz.2.11728 Not tainted syzkaller #0
[  951.839401][T15482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  951.849515][T15482] Call Trace:
[  951.852833][T15482]  <TASK>
[  951.855809][T15482]  dump_stack_lvl+0x16c/0x230
[  951.860619][T15482]  ? __lock_acquire+0x7c80/0x7c80
[  951.865695][T15482]  ? show_regs_print_info+0x20/0x20
[  951.870940][T15482]  ? load_image+0x3b0/0x3b0
[  951.875488][T15482]  ? __virt_addr_valid+0x469/0x540
[  951.880640][T15482]  print_report+0xac/0x220
[  951.885178][T15482]  ? __xfrm_state_lookup+0x6b2/0x8d0
[  951.890494][T15482]  kasan_report+0x117/0x150
[  951.895043][T15482]  ? __xfrm_state_lookup+0x6b2/0x8d0
[  951.900366][T15482]  __xfrm_state_lookup+0x6b2/0x8d0
[  951.905508][T15482]  ? dev_hard_start_xmit+0x246/0x740
[  951.910814][T15482]  ? __dev_queue_xmit+0x1a64/0x35a0
[  951.916032][T15482]  ? __netlink_deliver_tap+0x5ab/0x830
[  951.921539][T15482]  ? xfrm_state_lookup+0x1a0/0x1a0
[  951.926672][T15482]  ? __nla_validate_parse+0x22dc/0x2cd0
[  951.932242][T15482]  xfrm_state_lookup+0xef/0x1a0
[  951.937112][T15482]  ? xfrm_state_lookup+0x36/0x1a0
[  951.942149][T15482]  xfrm_user_state_lookup+0x232/0x360
[  951.947538][T15482]  ? xfrm_update_ae_params+0x630/0x630
[  951.953011][T15482]  ? aa_get_newest_label+0xf8/0x5c0
[  951.958224][T15482]  ? __nla_validate+0x50/0x50
[  951.962944][T15482]  xfrm_del_sa+0xf2/0x3e0
[  951.967292][T15482]  ? xfrm_add_sa+0x30a0/0x30a0
[  951.972075][T15482]  ? __nla_parse+0x40/0x50
[  951.976522][T15482]  xfrm_user_rcv_msg+0x596/0x870
[  951.981488][T15482]  ? lockdep_hardirqs_on+0x98/0x150
[  951.986727][T15482]  ? xfrm_netlink_rcv+0x90/0x90
[  951.991599][T15482]  ? __local_bh_enable_ip+0x12e/0x1c0
[  951.997003][T15482]  ? __dev_queue_xmit+0x245/0x35a0
[  952.002137][T15482]  ? __mutex_trylock_common+0x153/0x250
[  952.007726][T15482]  netlink_rcv_skb+0x216/0x480
[  952.012513][T15482]  ? xfrm_netlink_rcv+0x90/0x90
[  952.017378][T15482]  ? netlink_ack+0x1110/0x1110
[  952.022171][T15482]  ? netlink_deliver_tap+0x2e/0x1b0
[  952.027414][T15482]  ? __lock_acquire+0x7c80/0x7c80
[  952.032476][T15482]  xfrm_netlink_rcv+0x79/0x90
[  952.037164][T15482]  netlink_unicast+0x751/0x8d0
[  952.041945][T15482]  netlink_sendmsg+0x8c1/0xbe0
[  952.046750][T15482]  ? netlink_getsockopt+0x580/0x580
[  952.051961][T15482]  ? aa_sock_msg_perm+0x94/0x150
[  952.056913][T15482]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  952.062210][T15482]  ? security_socket_sendmsg+0x80/0xa0
[  952.067683][T15482]  ? netlink_getsockopt+0x580/0x580
[  952.072895][T15482]  ____sys_sendmsg+0x5bf/0x950
[  952.077689][T15482]  ? __asan_memset+0x22/0x40
[  952.082296][T15482]  ? __sys_sendmsg_sock+0x30/0x30
[  952.087348][T15482]  ? __import_iovec+0x5f2/0x860
[  952.092220][T15482]  ? import_iovec+0x73/0xa0
[  952.096758][T15482]  ___sys_sendmsg+0x220/0x290
[  952.101486][T15482]  ? __sys_sendmsg+0x270/0x270
[  952.106301][T15482]  __se_sys_sendmsg+0x1a5/0x270
[  952.111181][T15482]  ? __x64_sys_sendmsg+0x80/0x80
[  952.116152][T15482]  ? lockdep_hardirqs_on+0x98/0x150
[  952.121392][T15482]  do_syscall_64+0x55/0xb0
[  952.125841][T15482]  ? clear_bhb_loop+0x40/0x90
[  952.130532][T15482]  ? clear_bhb_loop+0x40/0x90
[  952.135224][T15482]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  952.141137][T15482] RIP: 0033:0x7fd51b58ebe9
[  952.145574][T15482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  952.165215][T15482] RSP: 002b:00007fd51c48f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  952.173652][T15482] RAX: ffffffffffffffda RBX: 00007fd51b7c5fa0 RCX: 00007fd51b58ebe9
[  952.181635][T15482] RDX: 0000000000008000 RSI: 0000200000000040 RDI: 0000000000000003
[  952.189617][T15482] RBP: 00007fd51b611e19 R08: 0000000000000000 R09: 0000000000000000
[  952.197602][T15482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  952.205582][T15482] R13: 00007fd51b7c6038 R14: 00007fd51b7c5fa0 R15: 00007ffe357845c8
[  952.213578][T15482]  </TASK>
[  952.216607][T15482] 
[  952.218939][T15482] Allocated by task 10163:
[  952.223355][T15482]  kasan_set_track+0x4e/0x70
[  952.227962][T15482]  __kasan_slab_alloc+0x6c/0x80
[  952.232819][T15482]  slab_post_alloc_hook+0x6e/0x4d0
[  952.237947][T15482]  kmem_cache_alloc+0x11e/0x2e0
[  952.242817][T15482]  xfrm_state_alloc+0x22/0x2a0
[  952.247593][T15482]  __find_acq_core+0x7d8/0x19d0
[  952.252453][T15482]  xfrm_find_acq+0x6a/0x90
[  952.256886][T15482]  xfrm_alloc_userspi+0x57a/0xa90
[  952.261921][T15482]  xfrm_user_rcv_msg+0x596/0x870
[  952.266865][T15482]  netlink_rcv_skb+0x216/0x480
[  952.271728][T15482]  xfrm_netlink_rcv+0x79/0x90
[  952.276413][T15482]  netlink_unicast+0x751/0x8d0
[  952.281190][T15482]  netlink_sendmsg+0x8c1/0xbe0
[  952.285970][T15482]  ____sys_sendmsg+0x5bf/0x950
[  952.290752][T15482]  ___sys_sendmsg+0x220/0x290
[  952.295448][T15482]  __se_sys_sendmsg+0x1a5/0x270
[  952.300312][T15482]  do_syscall_64+0x55/0xb0
[  952.304742][T15482]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  952.310658][T15482] 
[  952.312988][T15482] The buggy address belongs to the object at ffff88802fde2800
[  952.312988][T15482]  which belongs to the cache xfrm_state of size 848
[  952.326963][T15482] The buggy address is located 290 bytes inside of
[  952.326963][T15482]  freed 848-byte region [ffff88802fde2800, ffff88802fde2b50)
[  952.340874][T15482] 
[  952.343213][T15482] The buggy address belongs to the physical page:
[  952.349666][T15482] page:ffffea0000bf7800 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88802fde2800 pfn:0x2fde0
[  952.361153][T15482] head:ffffea0000bf7800 order:2 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  952.370102][T15482] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  952.378101][T15482] page_type: 0xffffffff()
[  952.382443][T15482] raw: 00fff00000000840 ffff888144a6cdc0 dead000000000122 0000000000000000
[  952.391037][T15482] raw: ffff88802fde2800 0000000080100007 00000001ffffffff 0000000000000000
[  952.399626][T15482] page dumped because: kasan: bad access detected
[  952.406051][T15482] page_owner tracks the page as allocated
[  952.411768][T15482] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5910, tgid 5907 (syz.2.3), ts 91706674665, free_ts 91624059371
[  952.432011][T15482]  post_alloc_hook+0x1cd/0x210
[  952.436800][T15482]  get_page_from_freelist+0x195c/0x19f0
[  952.442374][T15482]  __alloc_pages+0x1e3/0x460
[  952.446985][T15482]  alloc_slab_page+0x5d/0x170
[  952.451686][T15482]  new_slab+0x87/0x2e0
[  952.455774][T15482]  ___slab_alloc+0xc6d/0x12f0
[  952.460470][T15482]  kmem_cache_alloc+0x1b7/0x2e0
[  952.465339][T15482]  xfrm_state_alloc+0x22/0x2a0
[  952.470123][T15482]  __find_acq_core+0x7d8/0x19d0
[  952.474994][T15482]  xfrm_find_acq+0x6a/0x90
[  952.479423][T15482]  xfrm_alloc_userspi+0x57a/0xa90
[  952.484453][T15482]  xfrm_user_rcv_msg+0x596/0x870
[  952.489409][T15482]  netlink_rcv_skb+0x216/0x480
[  952.494184][T15482]  xfrm_netlink_rcv+0x79/0x90
[  952.498874][T15482]  netlink_unicast+0x751/0x8d0
[  952.503649][T15482]  netlink_sendmsg+0x8c1/0xbe0
[  952.508430][T15482] page last free stack trace:
[  952.513109][T15482]  free_unref_page_prepare+0x7ce/0x8e0
[  952.518692][T15482]  free_unref_page+0x32/0x2e0
[  952.523393][T15482]  __unfreeze_partials+0x1cf/0x210
[  952.528520][T15482]  put_cpu_partial+0x17c/0x250
[  952.533312][T15482]  __slab_free+0x31d/0x410
[  952.537749][T15482]  qlist_free_all+0x75/0xe0
[  952.542268][T15482]  kasan_quarantine_reduce+0x143/0x160
[  952.547748][T15482]  __kasan_slab_alloc+0x22/0x80
[  952.552611][T15482]  slab_post_alloc_hook+0x6e/0x4d0
[  952.557741][T15482]  kmem_cache_alloc+0x11e/0x2e0
[  952.562607][T15482]  getname_flags+0xbb/0x500
[  952.567125][T15482]  user_path_at_empty+0x2c/0x60
[  952.571998][T15482]  do_utimes+0x13c/0x2a0
[  952.576269][T15482]  __x64_sys_utimensat+0x150/0x230
[  952.581397][T15482]  do_syscall_64+0x55/0xb0
[  952.585827][T15482]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  952.591829][T15482] 
[  952.594159][T15482] Memory state around the buggy address:
[  952.599792][T15482]  ffff88802fde2800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  952.607858][T15482]  ffff88802fde2880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  952.615931][T15482] >ffff88802fde2900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  952.624002][T15482]                                ^
[  952.629128][T15482]  ffff88802fde2980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  952.637193][T15482]  ffff88802fde2a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  952.645254][T15482] ==================================================================
[  952.684595][T15482] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  952.691848][T15482] CPU: 0 PID: 15482 Comm: syz.2.11728 Not tainted syzkaller #0
[  952.699421][T15482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  952.709518][T15482] Call Trace:
[  952.712821][T15482]  <TASK>
[  952.715780][T15482]  dump_stack_lvl+0x16c/0x230
[  952.719532][T11435] usb 10-1: Using ep0 maxpacket: 8
[  952.723256][T11435] usb 10-1: config 1 has an invalid interface number: 128 but max is 1
[  952.723283][T11435] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  952.723304][T11435] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 2
[  952.723325][T11435] usb 10-1: config 1 has no interface number 0
[  952.723381][T11435] usb 10-1: config 1 interface 128 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  952.726223][T11435] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  952.726251][T11435] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  952.726272][T11435] usb 10-1: Product: syz
[  952.726288][T11435] usb 10-1: Manufacturer: syz
[  952.726304][T11435] usb 10-1: SerialNumber: syz
[  952.736278][T11435] cdc_wdm 10-1:1.128: skipping garbage
[  952.736298][T11435] cdc_wdm 10-1:1.128: invalid descriptor buffer length
[  952.736324][T11435] cdc_wdm: probe of 10-1:1.128 failed with error -22
[  952.822188][T15482]  ? show_regs_print_info+0x20/0x20
[  952.827410][T15482]  ? load_image+0x3b0/0x3b0
[  952.831930][T15482]  panic+0x2c0/0x710
[  952.835847][T15482]  ? bpf_jit_dump+0xd0/0xd0
[  952.840371][T15482]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  952.846278][T15482]  ? _raw_spin_unlock+0x40/0x40
[  952.851153][T15482]  ? print_memory_metadata+0x314/0x400
[  952.856627][T15482]  ? __xfrm_state_lookup+0x6b2/0x8d0
[  952.861925][T15482]  check_panic_on_warn+0x84/0xa0
[  952.866876][T15482]  ? __xfrm_state_lookup+0x6b2/0x8d0
[  952.872176][T15482]  end_report+0x6f/0x140
[  952.876450][T15482]  kasan_report+0x128/0x150
[  952.880969][T15482]  ? __xfrm_state_lookup+0x6b2/0x8d0
[  952.886272][T15482]  __xfrm_state_lookup+0x6b2/0x8d0
[  952.891399][T15482]  ? dev_hard_start_xmit+0x246/0x740
[  952.896697][T15482]  ? __dev_queue_xmit+0x1a64/0x35a0
[  952.901908][T15482]  ? __netlink_deliver_tap+0x5ab/0x830
[  952.907386][T15482]  ? xfrm_state_lookup+0x1a0/0x1a0
[  952.912513][T15482]  ? __nla_validate_parse+0x22dc/0x2cd0
[  952.918085][T15482]  xfrm_state_lookup+0xef/0x1a0
[  952.922974][T15482]  ? xfrm_state_lookup+0x36/0x1a0
[  952.928011][T15482]  xfrm_user_state_lookup+0x232/0x360
[  952.933400][T15482]  ? xfrm_update_ae_params+0x630/0x630
[  952.938867][T15482]  ? aa_get_newest_label+0xf8/0x5c0
[  952.944075][T15482]  ? __nla_validate+0x50/0x50
[  952.948773][T15482]  xfrm_del_sa+0xf2/0x3e0
[  952.953114][T15482]  ? xfrm_add_sa+0x30a0/0x30a0
[  952.957893][T15482]  ? __nla_parse+0x40/0x50
[  952.962329][T15482]  xfrm_user_rcv_msg+0x596/0x870
[  952.967297][T15482]  ? lockdep_hardirqs_on+0x98/0x150
[  952.972544][T15482]  ? xfrm_netlink_rcv+0x90/0x90
[  952.977409][T15482]  ? __local_bh_enable_ip+0x12e/0x1c0
[  952.982806][T15482]  ? __dev_queue_xmit+0x245/0x35a0
[  952.987929][T15482]  ? __mutex_trylock_common+0x153/0x250
[  952.993499][T15482]  netlink_rcv_skb+0x216/0x480
[  952.998279][T15482]  ? xfrm_netlink_rcv+0x90/0x90
[  953.003231][T15482]  ? netlink_ack+0x1110/0x1110
[  953.008019][T15482]  ? netlink_deliver_tap+0x2e/0x1b0
[  953.013235][T15482]  ? __lock_acquire+0x7c80/0x7c80
[  953.018276][T15482]  xfrm_netlink_rcv+0x79/0x90
[  953.022964][T15482]  netlink_unicast+0x751/0x8d0
[  953.027745][T15482]  netlink_sendmsg+0x8c1/0xbe0
[  953.032525][T15482]  ? netlink_getsockopt+0x580/0x580
[  953.037746][T15482]  ? aa_sock_msg_perm+0x94/0x150
[  953.042702][T15482]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  953.048000][T15482]  ? security_socket_sendmsg+0x80/0xa0
[  953.053511][T15482]  ? netlink_getsockopt+0x580/0x580
[  953.058727][T15482]  ____sys_sendmsg+0x5bf/0x950
[  953.063513][T15482]  ? __asan_memset+0x22/0x40
[  953.068125][T15482]  ? __sys_sendmsg_sock+0x30/0x30
[  953.073165][T15482]  ? __import_iovec+0x5f2/0x860
[  953.078036][T15482]  ? import_iovec+0x73/0xa0
[  953.082562][T15482]  ___sys_sendmsg+0x220/0x290
[  953.087267][T15482]  ? __sys_sendmsg+0x270/0x270
[  953.092081][T15482]  __se_sys_sendmsg+0x1a5/0x270
[  953.096985][T15482]  ? __x64_sys_sendmsg+0x80/0x80
[  953.101975][T15482]  ? lockdep_hardirqs_on+0x98/0x150
[  953.107207][T15482]  do_syscall_64+0x55/0xb0
[  953.111678][T15482]  ? clear_bhb_loop+0x40/0x90
[  953.116374][T15482]  ? clear_bhb_loop+0x40/0x90
[  953.121062][T15482]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  953.126992][T15482] RIP: 0033:0x7fd51b58ebe9
[  953.131428][T15482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  953.151055][T15482] RSP: 002b:00007fd51c48f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  953.159495][T15482] RAX: ffffffffffffffda RBX: 00007fd51b7c5fa0 RCX: 00007fd51b58ebe9
[  953.167495][T15482] RDX: 0000000000008000 RSI: 0000200000000040 RDI: 0000000000000003
[  953.175490][T15482] RBP: 00007fd51b611e19 R08: 0000000000000000 R09: 0000000000000000
[  953.183477][T15482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  953.191477][T15482] R13: 00007fd51b7c6038 R14: 00007fd51b7c5fa0 R15: 00007ffe357845c8
[  953.199485][T15482]  </TASK>
[  953.202817][T15482] Kernel Offset: disabled
[  953.207145][T15482] Rebooting in 86400 seconds..