last executing test programs:

12m9.762486397s ago: executing program 1 (id=9137):
r0 = syz_open_dev$radio(&(0x7f00000000c0), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205647, &(0x7f0000000100)={0xf010004, 0x0, 0xfffffffc, 0xffffffffffffffff, 0x0, 0x0})

12m9.612677579s ago: executing program 1 (id=9140):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x2, @pix={0xfeedcafe, 0x8, 0x31435641, 0x9, 0x5, 0xb8, 0x3, 0x6, 0x0, 0x6, 0x0, 0x74c3924ecb75b6cd}})

12m9.4745116s ago: executing program 1 (id=9142):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000001800010600000000000000001c140000fe0000010000000004001a"], 0x24}}, 0x0)

12m9.058960756s ago: executing program 1 (id=9148):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='iocharset=cp865,uid=', @ANYRESHEX=0x0, @ANYBLOB=',namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c666d61736b3d30303030303030303030303030303030303030303031302c757466382c666d61736b3d30303030303030303030303030303030303030303030362c6572726f72733d636f6e74696e75652c7379735f747a2c616c6c6f775f7574696d653d30303030303030303030303030303030303134373036342c00968868822eaa4073da2a8bad3e75bf3fa58e5fe9023e2efe14b61e42154e792855b9c44517fcaf42990fa252a8fcc76df45041b88e383db02cc075636a6b415c49ee2ad1af7ecfc73f3809bce1541b2c780705cdd96cfb760a1f342582ee152abbe3f5828666937a000000800f62dc427b22ae7bd20a2fb9094ffaf7b7eda15af87283045448d6cabb51f8a411539d39a9d6db38d1409fe568885e22b71e7a4823804f8c350397801bc23742343cecb0758cec6286312c4d"], 0x1, 0x1545, &(0x7f0000001a00)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

12m8.524249894s ago: executing program 1 (id=9156):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr\x00')
sync_file_range(r0, 0x6, 0x7ff, 0x4)

12m7.904623452s ago: executing program 1 (id=9168):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000300)={{}, {0xfc, 0x8}, 0x5, 0x1})

12m7.582243656s ago: executing program 32 (id=9168):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000300)={{}, {0xfc, 0x8}, 0x5, 0x1})

16.646455882s ago: executing program 3 (id=21400):
r0 = add_key$keyring(&(0x7f0000000240), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f0000000000)="30800201", 0x1001, r0)

16.462272864s ago: executing program 3 (id=21403):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)

16.278088137s ago: executing program 3 (id=21405):
r0 = syz_open_dev$vim2m(&(0x7f0000000b00), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000180)={0x28, 0x1, 0x1, "7322dd6cfede865cbdfe000000000000000b00000000000000002005d8213200"})

16.05487645s ago: executing program 3 (id=21409):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="050000000e0000004000000003"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={r0, &(0x7f0000000300), 0x0}, 0x20)

15.854347813s ago: executing program 3 (id=21413):
syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0xfd, 0x200, &(0x7f00000002c0)="$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")
open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0)

14.939018515s ago: executing program 3 (id=21429):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
write(r0, &(0x7f0000001e80)="8f41", 0x2)

2.463343286s ago: executing program 2 (id=21632):
r0 = socket$inet(0x2, 0x1, 0x0)
getsockopt(r0, 0x0, 0x13, 0xffffffffffffffff, &(0x7f0000000080))

2.271212559s ago: executing program 2 (id=21636):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, 0x0, 0x0)

2.126477181s ago: executing program 2 (id=21639):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000200), 0x0, 0x0)
mmap$snddsp_control(&(0x7f0000ffc000/0x2000)=nil, 0x1015, 0x2000003, 0x82012, r0, 0x83000000)

1.979544333s ago: executing program 2 (id=21643):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000709c3120e80401669b81010203010902120001010000000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000480)={0x44, &(0x7f00000001c0)={0x20, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.469992909s ago: executing program 5 (id=21653):
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)={{}, {0x2}}, 0xfe44, 0x0)

1.295840672s ago: executing program 4 (id=21655):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x2808044, &(0x7f0000001980)={[{@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'iso8859-15'}}, {@shortname_lower}, {@fat=@codepage={'codepage', 0x3d, '950'}}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@iocharset={'iocharset', 0x3d, 'cp855'}}, {@uni_xlateno}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'maccyrillic'}}, {@rodir}, {@uni_xlateno}]}, 0x1, 0x294, &(0x7f0000000500)="$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")
mount(&(0x7f0000000000)=@filename='\x00', &(0x7f00000000c0)='.\x00', &(0x7f0000000000)='ubifs\x00', 0x0, 0x0)

1.226271393s ago: executing program 5 (id=21658):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
timerfd_settime(r0, 0x2, &(0x7f00000000c0)={{}, {0x0, 0x989680}}, 0x0)

1.136062744s ago: executing program 4 (id=21659):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x8000, 0x0)
statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x100, 0x800, 0x0)

974.461286ms ago: executing program 5 (id=21661):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x5)

937.362457ms ago: executing program 4 (id=21662):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@ipv6_newaddrlabel={0x38, 0x48, 0x1, 0x70bd29, 0x25dfdbfb, {0xa, 0x0, 0x78, 0x0, 0x0, 0xb6c9}, [@IFAL_LABEL={0x8, 0x2, 0x2}, @IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x15}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040004}, 0x4000000)

904.806607ms ago: executing program 0 (id=21663):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000d40)=ANY=[@ANYBLOB="4c000000190033444ab8a96272b3ee2502ff0300"], 0x4c}, 0x1, 0x0, 0x0, 0x20001080}, 0x40006)

840.986748ms ago: executing program 5 (id=21664):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001580), 0x0, 0x0)
pread64(r0, &(0x7f0000000180)=""/39, 0x27, 0x2b)

706.57057ms ago: executing program 4 (id=21665):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
setsockopt$X25_QBITINCL(r0, 0x106, 0x1, &(0x7f0000001080)=0x1, 0x4)

706.44866ms ago: executing program 0 (id=21666):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x40, 0x101000)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000380)={0x1, @pix={0x1, 0x2, 0x36315247, 0x0, 0x0, 0x0, 0x9, 0xfeedcafe, 0x3, 0x0, 0x1, 0x7}})

698.73827ms ago: executing program 5 (id=21667):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=@newtaction={0xeb8, 0x30, 0x1, 0x0, 0x0, {}, [{0xea4, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x0, 0xfffffffe}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}, @m_pedit={0xe54, 0x2, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x4}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x8}, [{}, {0x0, 0x4}, {}, {0x1, 0x0, 0x0, 0x7fff, 0x0, 0xfffffffd}, {}, {0x0, 0xfffffffc}, {}, {0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xfffffffd}, {}, {0x0, 0x0, 0x9, 0x2, 0xa46}, {}, {}, {}, {}, {0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x1c69, 0x100}, {0x0, 0x0, 0x10000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {0x20}, {0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x7}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {0x0, 0xff}, {0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x8000}, {}, {0x0, 0x3}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8001}, {0x0, 0x0, 0x0, 0xfffff800}, {}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {0x9}, {}, {0x3}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, {}, {}, {0x400}, {}, {}, {0x0, 0x0, 0xabd}, {}, {0x0, 0xdd86}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x1}, {0x40000}, {}, {0x0, 0x0, 0x0, 0x0, 0x40000}, {0x4}, {}, {0xfffffffe}, {}, {}, {}, {0x80000000, 0x3}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x212}, {0x0, 0x0, 0x0, 0x0, 0x4000000}], [{}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x7}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x2}, {0x4}, {0x3}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {0x5, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xe}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1}, {}, {}, {0x7}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xeb8}}, 0x0)

603.621931ms ago: executing program 0 (id=21668):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@newtaction={0x6c, 0x30, 0xb, 0x0, 0x0, {}, [{0x58, 0x1, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x7, 0xffff, 0xf, 0xfffffffa, 0x3}, 0x2}}, @TCA_VLAN_PUSH_VLAN_ID={0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)

545.046222ms ago: executing program 33 (id=21429):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
write(r0, &(0x7f0000001e80)="8f41", 0x2)

540.270232ms ago: executing program 4 (id=21670):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000e00)={r0, &(0x7f0000000d00), 0x0}, 0x20)

539.557652ms ago: executing program 5 (id=21671):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")

438.319694ms ago: executing program 4 (id=21672):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

437.618454ms ago: executing program 0 (id=21681):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x58, 0x10, 0x49920d862a92153b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20800}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0xffffffffffffffef, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x2, 0x1802}}}}}}, @IFLA_MTU={0x8, 0x3}, @IFLA_LINKMODE={0x5, 0x11, 0x1}]}, 0x58}}, 0x0)

288.662606ms ago: executing program 2 (id=21673):
r0 = socket$inet(0xa, 0x801, 0x84)
getsockopt$bt_hci(r0, 0x84, 0x1, &(0x7f0000001500)=""/4110, &(0x7f0000000000)=0x100e)

162.767638ms ago: executing program 0 (id=21674):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)

103.253688ms ago: executing program 2 (id=21675):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000001ac0)={{0x12, 0x1, 0x0, 0xe1, 0x3d, 0x6a, 0x20, 0x1964, 0x1, 0xd415, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xf7, 0x25, 0xca}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

0s ago: executing program 0 (id=21676):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)={0x14, 0x27, 0x9, 0xffffffff, 0x25dfdbfd, {0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x48091}, 0x0)

kernel console output (not intermixed with test programs):

es in process `syz.0.19535'.
[ 1683.166234][T15881] Mount JFS Failure: -22
[ 1683.170590][T15881] jfs_mount failed w/return code = -22
[ 1683.430246][T15895] ipt_REJECT: TCP_RESET invalid for non-tcp
[ 1683.621538][T15905] cgroup: name respecified
[ 1683.765699][T15912] netlink: 108 bytes leftover after parsing attributes in process `syz.5.19548'.
[ 1684.551850][T15962] device ip6gre2 entered promiscuous mode
[ 1684.571764][T15964] device netdevsim0 entered promiscuous mode
[ 1684.620197][T15964] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1684.646593][T15968] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19567'.
[ 1684.699706][T15971] netlink: 8 bytes leftover after parsing attributes in process `syz.5.19568'.
[ 1684.744250][T15971] netlink: 24 bytes leftover after parsing attributes in process `syz.5.19568'.
[ 1684.749283][T15976] netlink: 'syz.0.19569': attribute type 10 has an invalid length.
[ 1684.852313][T15976] team0: Port device � added
[ 1684.899128][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1684.905588][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1685.184590][T15999] loop3: detected capacity change from 0 to 2048
[ 1685.239586][T15999] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1685.463591][T16013] loop4: detected capacity change from 0 to 256
[ 1685.523729][T16013] FAT-fs (loop4): Directory bread(block 64) failed
[ 1685.590676][T16013] FAT-fs (loop4): Directory bread(block 65) failed
[ 1685.631146][T16013] FAT-fs (loop4): Directory bread(block 66) failed
[ 1685.640447][T16013] FAT-fs (loop4): Directory bread(block 67) failed
[ 1685.677913][T16013] FAT-fs (loop4): Directory bread(block 68) failed
[ 1685.684530][T16013] FAT-fs (loop4): Directory bread(block 69) failed
[ 1685.758355][T16013] FAT-fs (loop4): Directory bread(block 70) failed
[ 1685.797480][T16013] FAT-fs (loop4): Directory bread(block 71) failed
[ 1685.837053][T16013] FAT-fs (loop4): Directory bread(block 72) failed
[ 1685.883582][T16013] FAT-fs (loop4): Directory bread(block 73) failed
[ 1685.962458][T16046] loop3: detected capacity change from 0 to 256
[ 1686.090577][T16046] FAT-fs (loop3): Directory bread(block 64) failed
[ 1686.137586][T16046] FAT-fs (loop3): Directory bread(block 65) failed
[ 1686.184095][T16046] FAT-fs (loop3): Directory bread(block 66) failed
[ 1686.190700][T16046] FAT-fs (loop3): Directory bread(block 67) failed
[ 1686.221432][T16046] FAT-fs (loop3): Directory bread(block 68) failed
[ 1686.239216][T16055] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 1686.253329][T16046] FAT-fs (loop3): Directory bread(block 69) failed
[ 1686.275898][T16046] FAT-fs (loop3): Directory bread(block 70) failed
[ 1686.303443][T16046] FAT-fs (loop3): Directory bread(block 71) failed
[ 1686.329970][T16046] FAT-fs (loop3): Directory bread(block 72) failed
[ 1686.337342][T16046] FAT-fs (loop3): Directory bread(block 73) failed
[ 1686.502653][T16066] loop2: detected capacity change from 0 to 1024
[ 1686.576948][T16066] hfsplus: extend alloc file! (8192,512,17039360)
[ 1686.698627][T16081] usb usb1: check_ctrlrecip: process 16081 (syz.5.19603) requesting ep 01 but needs 81
[ 1686.759776][T16081] usb usb1: usbfs: process 16081 (syz.5.19603) did not claim interface 0 before use
[ 1686.944053][T16101] vim2m vim2m.0: Fourcc format (0x47425247) invalid.
[ 1686.958367][   T26] audit: type=1326 audit(2000000239.966:2454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16102 comm="syz.3.19608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1686.988649][   T26] audit: type=1326 audit(2000000239.997:2455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16102 comm="syz.3.19608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1687.062577][   T26] audit: type=1326 audit(2000000240.029:2456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16102 comm="syz.3.19608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1687.120012][   T26] audit: type=1326 audit(2000000240.029:2457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16102 comm="syz.3.19608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1687.152119][T16112] loop3: detected capacity change from 0 to 512
[ 1687.164519][ T6327] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 1687.173520][T16112] EXT4-fs: inline encryption not supported
[ 1687.193819][   T26] audit: type=1326 audit(2000000240.029:2458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16102 comm="syz.3.19608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1687.277522][T16112] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1687.296815][T16112] ext4 filesystem being mounted at /3873/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1687.366813][ T6327] usb 1-1: config 0 has an invalid interface number: 64 but max is 0
[ 1687.379259][ T6327] usb 1-1: config 0 has no interface number 0
[ 1687.396718][ T4724] EXT4-fs (loop3): unmounting filesystem.
[ 1687.404110][ T6327] usb 1-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[ 1687.423425][ T6327] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1687.435456][T16129] cifs: Unknown parameter 'no'�a��N�[G�zob,er��;%j��
[ 1687.435456][T16129] ��z�,�@q�������J#�"��h/.�W1ȱ�nNC�"�C�׈�E)�8+����'
[ 1687.450566][ T6327] usb 1-1: Product: syz
[ 1687.460279][ T6327] usb 1-1: Manufacturer: syz
[ 1687.464994][ T6327] usb 1-1: SerialNumber: syz
[ 1687.487666][ T6327] usb 1-1: config 0 descriptor??
[ 1687.689986][ T6327] usb 1-1: Found UVC 0.08 device syz (046d:0823)
[ 1687.698499][ T6327] uvcvideo 1-1:0.64: Entity type for entity Output 3 was not initialized!
[ 1687.726867][ T6327] usb 1-1: Failed to create links for entity 3
[ 1687.734324][T16149] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1687.745508][ T6327] usb 1-1: Failed to register entities (-22).
[ 1687.774997][ T6327] usb 1-1: USB disconnect, device number 34
[ 1687.935473][T16166] netlink: 'syz.2.19622': attribute type 4 has an invalid length.
[ 1687.962696][T16166] netlink: 'syz.2.19622': attribute type 3 has an invalid length.
[ 1687.978818][T16166] netlink: 132 bytes leftover after parsing attributes in process `syz.2.19622'.
[ 1688.095898][T16173] netlink: 340 bytes leftover after parsing attributes in process `syz.4.19625'.
[ 1688.134495][T16173] netlink: 12 bytes leftover after parsing attributes in process `syz.4.19625'.
[ 1688.165148][T16179] netlink: 48 bytes leftover after parsing attributes in process `syz.5.19626'.
[ 1688.587940][T16204] netlink: 'syz.2.19636': attribute type 10 has an invalid length.
[ 1688.640776][T16208] netlink: 'syz.4.19638': attribute type 29 has an invalid length.
[ 1688.660849][   T52] block nbd0: Attempted send on invalid socket
[ 1688.667069][   T52] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1688.673841][T16208] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19638'.
[ 1688.676881][   T52] block nbd0: Attempted send on invalid socket
[ 1688.691511][   T52] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1688.701507][ T1043] block nbd0: Attempted send on invalid socket
[ 1688.708287][ T1043] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1688.718440][ T1043] block nbd0: Attempted send on invalid socket
[ 1688.724695][ T1043] I/O error, dev nbd0, sector 18 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1688.734923][ T1043] block nbd0: Attempted send on invalid socket
[ 1688.741282][ T1043] I/O error, dev nbd0, sector 30 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1688.751234][   T52] block nbd0: Attempted send on invalid socket
[ 1688.751572][T16204] team0: Cannot enslave team device to itself
[ 1688.757798][   T52] I/O error, dev nbd0, sector 36 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1688.792997][T16211] VFS: unable to find oldfs superblock on device nbd0
[ 1688.800351][T16208] netlink: 'syz.4.19638': attribute type 29 has an invalid length.
[ 1688.822807][T16208] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19638'.
[ 1689.047913][T16195] loop5: detected capacity change from 0 to 32768
[ 1689.575449][T16251] xt_hashlimit: overflow, rate too high: 0
[ 1689.586071][T16252] xt_NFQUEUE: number of total queues is 0
[ 1690.564258][T16313] netlink: 40 bytes leftover after parsing attributes in process `syz.3.19674'.
[ 1690.822838][T16329] MTD: Attempt to mount non-MTD device "/dev/nbd0"
[ 1690.867387][   T52] block nbd0: Attempted send on invalid socket
[ 1690.873689][   T52] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1691.068035][T16344] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[ 1691.186861][T16351] netlink: 'syz.2.19689': attribute type 10 has an invalid length.
[ 1691.241049][T16351] netlink: 40 bytes leftover after parsing attributes in process `syz.2.19689'.
[ 1691.282750][T16351] bridge0: port 2(dummy0) entered blocking state
[ 1691.303543][T16351] bridge0: port 2(dummy0) entered disabled state
[ 1691.339079][T16351] device dummy0 entered promiscuous mode
[ 1691.546030][T16369] xt_TCPMSS: Only works on TCP SYN packets
[ 1691.750273][T16384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1691.800677][T16384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1691.835399][T16384] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1691.856799][T16384] device batadv_slave_0 entered promiscuous mode
[ 1692.114115][T16408] i2c i2c-0: Invalid block write size 34
[ 1692.252807][ T8073] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 1692.395216][T16425] loop5: detected capacity change from 0 to 256
[ 1692.453202][ T8073] usb 3-1: Using ep0 maxpacket: 16
[ 1692.460903][ T8073] usb 3-1: config 0 has an invalid interface number: 64 but max is 0
[ 1692.462018][T16425] FAT-fs (loop5): Directory bread(block 64) failed
[ 1692.476672][T16425] FAT-fs (loop5): Directory bread(block 65) failed
[ 1692.484211][T16425] FAT-fs (loop5): Directory bread(block 66) failed
[ 1692.489095][ T8073] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1692.491877][T16425] FAT-fs (loop5): Directory bread(block 67) failed
[ 1692.508111][T16425] FAT-fs (loop5): Directory bread(block 68) failed
[ 1692.529314][ T8073] usb 3-1: config 0 has no interface number 0
[ 1692.535524][ T8073] usb 3-1: New USB device found, idVendor=0bd3, idProduct=0555, bcdDevice= 0.5b
[ 1692.541416][T16425] FAT-fs (loop5): Directory bread(block 69) failed
[ 1692.567628][T16425] FAT-fs (loop5): Directory bread(block 70) failed
[ 1692.577191][ T8073] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1692.587331][T16425] FAT-fs (loop5): Directory bread(block 71) failed
[ 1692.594011][T16425] FAT-fs (loop5): Directory bread(block 72) failed
[ 1692.604883][ T8073] usb 3-1: config 0 descriptor??
[ 1692.639587][ T8073] usb 3-1: Found UVC 0.00 device <unnamed> (0bd3:0555)
[ 1692.648656][T16425] FAT-fs (loop5): Directory bread(block 73) failed
[ 1692.662861][ T8073] usb 3-1: No valid video chain found.
[ 1692.707400][T16443] usb usb8: usbfs: process 16443 (syz.4.19716) did not claim interface 0 before use
[ 1692.752500][T16445] loop3: detected capacity change from 0 to 16
[ 1692.765923][   T26] audit: type=1800 audit(2000000246.063:2459): pid=16425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.19714" name="file1" dev="loop5" ino=1048728 res=0 errno=0
[ 1692.796505][ T6327] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 1692.806060][T16445] MTD: Attempt to mount non-MTD device "/dev/loop3"
[ 1692.864295][ T6179] usb 3-1: USB disconnect, device number 9
[ 1692.909952][T16456] netlink: 24 bytes leftover after parsing attributes in process `syz.4.19718'.
[ 1693.025025][ T6327] usb 1-1: Using ep0 maxpacket: 16
[ 1693.052247][ T6327] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1693.084678][ T6327] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1693.093331][ T6327] usb 1-1: Product: syz
[ 1693.097529][ T6327] usb 1-1: Manufacturer: syz
[ 1693.110671][ T6327] usb 1-1: SerialNumber: syz
[ 1693.130506][ T6327] r8152-cfgselector 1-1: config 0 descriptor??
[ 1693.167289][T16465] loop3: detected capacity change from 0 to 4096
[ 1693.213734][T16465] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1693.247113][T16479] Timeout policy `syz1' can only be used by L3 protocol number 0
[ 1693.301890][ T4724] EXT4-fs (loop3): unmounting filesystem.
[ 1693.543544][ T6327] r8152-cfgselector 1-1: Unknown version 0x0000
[ 1693.561621][ T6327] r8152-cfgselector 1-1: bad CDC descriptors
[ 1693.605236][ T6327] r8152-cfgselector 1-1: Unknown version 0x0000
[ 1693.640612][ T6327] r8152-cfgselector 1-1: USB disconnect, device number 35
[ 1693.731180][T16512] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1694.021911][   T26] audit: type=1326 audit(2000000247.375:2460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16524 comm="syz.2.19734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1694.087095][T16528] dlm: no locking on control device
[ 1694.111007][   T26] audit: type=1326 audit(2000000247.375:2461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16524 comm="syz.2.19734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1694.133589][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1694.169714][   T26] audit: type=1326 audit(2000000247.427:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16524 comm="syz.2.19734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1694.292076][   T26] audit: type=1326 audit(2000000247.427:2463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16524 comm="syz.2.19734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1694.349283][T16540] loop2: detected capacity change from 0 to 256
[ 1694.368706][   T26] audit: type=1326 audit(2000000247.427:2464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16524 comm="syz.2.19734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1694.391355][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1694.391917][T16542] binder: 16538:16542 ioctl c0046209 100000000000000 returned -22
[ 1694.671067][T16563] SET target dimension over the limit!
[ 1694.759400][ T6327] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[ 1694.880820][T16574] netlink: 292 bytes leftover after parsing attributes in process `syz.3.19750'.
[ 1694.961099][ T6327] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1694.979217][ T6327] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1695.006033][ T6327] usb 6-1: config 0 descriptor??
[ 1695.026300][ T6327] cp210x 6-1:0.0: cp210x converter detected
[ 1695.037013][T16578] loop2: detected capacity change from 0 to 1024
[ 1695.154527][T16578] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1695.156960][T16588] loop3: detected capacity change from 0 to 256
[ 1695.224548][ T6327] usb 6-1: cp210x converter now attached to ttyUSB0
[ 1695.309414][T16588] FAT-fs (loop3): Directory bread(block 64) failed
[ 1695.326344][T16588] FAT-fs (loop3): Directory bread(block 65) failed
[ 1695.354583][T16588] FAT-fs (loop3): Directory bread(block 66) failed
[ 1695.381684][T16588] FAT-fs (loop3): Directory bread(block 67) failed
[ 1695.407488][T16588] FAT-fs (loop3): Directory bread(block 68) failed
[ 1695.414115][T16588] FAT-fs (loop3): Directory bread(block 69) failed
[ 1695.433558][ T6327] usb 6-1: USB disconnect, device number 33
[ 1695.463864][ T6327] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1695.482438][T16588] FAT-fs (loop3): Directory bread(block 70) failed
[ 1695.491554][ T6327] cp210x 6-1:0.0: device disconnected
[ 1695.505188][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1695.518094][T16588] FAT-fs (loop3): Directory bread(block 71) failed
[ 1695.567650][T16588] FAT-fs (loop3): Directory bread(block 72) failed
[ 1695.620114][T16588] FAT-fs (loop3): Directory bread(block 73) failed
[ 1695.932308][   T26] audit: type=1326 audit(2000000249.389:2465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16629 comm="syz.4.19762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1695.997774][   T26] audit: type=1326 audit(2000000249.389:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16629 comm="syz.4.19762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1696.066611][   T26] audit: type=1326 audit(2000000249.431:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16629 comm="syz.4.19762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1696.166779][   T26] audit: type=1326 audit(2000000249.431:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16629 comm="syz.4.19762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1696.530874][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1696.557690][T16663] loop2: detected capacity change from 0 to 4096
[ 1696.570226][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1696.579758][T16666] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1696.599379][ T1243] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1696.650745][T16671] loop4: detected capacity change from 0 to 256
[ 1696.680623][T16671] exfat: Deprecated parameter 'namecase'
[ 1696.695812][T16663] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1696.739696][T16680] loop3: detected capacity change from 0 to 512
[ 1696.812959][T16671] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[ 1696.814582][T16680] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.19778: casefold flag without casefold feature
[ 1696.912245][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1696.930693][T16688] kAFS: unable to lookup cell '
[ 1696.930693][T16688] $)-.�ײf�Y�ǝ�a���2s�
[ 1696.930693][T16688] '
[ 1696.939273][T16680] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.19778: couldn't read orphan inode 15 (err -117)
[ 1696.962763][T16680] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1697.022225][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1697.146039][ T4724] EXT4-fs (loop3): unmounting filesystem.
[ 1697.713557][ T8073] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[ 1697.866755][T16744] loop2: detected capacity change from 0 to 128
[ 1697.932879][ T8073] usb 5-1: Using ep0 maxpacket: 32
[ 1697.940202][ T8073] usb 5-1: config 0 has an invalid interface number: 35 but max is 0
[ 1697.980030][ T8073] usb 5-1: config 0 has no interface number 0
[ 1698.014209][ T8073] usb 5-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[ 1698.028375][ T8073] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1698.036876][ T8073] usb 5-1: Product: syz
[ 1698.044436][ T8073] usb 5-1: Manufacturer: syz
[ 1698.050257][ T8073] usb 5-1: SerialNumber: syz
[ 1698.090335][ T8073] usb 5-1: config 0 descriptor??
[ 1698.107654][ T8073] radio-si470x 5-1:0.35: could not find interrupt in endpoint
[ 1698.120526][ T8073] radio-si470x: probe of 5-1:0.35 failed with error -5
[ 1698.293995][ T8073] radio-raremono 5-1:0.35: Thanko's Raremono connected: (10C4:818A)
[ 1698.316256][T16769] loop2: detected capacity change from 0 to 64
[ 1698.494120][ T8073] radio-raremono 5-1:0.35: raremono_cmd_main failed (-71)
[ 1698.539099][ T8073] radio-raremono 5-1:0.35: V4L2 device registered as radio48
[ 1698.585357][T16791] netlink: 60 bytes leftover after parsing attributes in process `syz.2.19808'.
[ 1698.595964][ T8073] usb 5-1: USB disconnect, device number 57
[ 1698.602583][T16792] cgroup2: Unexpected value for 'nsdelegate'
[ 1698.619468][ T8073] radio-raremono 5-1:0.35: Thanko's Raremono disconnected
[ 1698.680926][T16796] netlink: 20 bytes leftover after parsing attributes in process `syz.5.19809'.
[ 1698.731410][T16796] netlink: 4 bytes leftover after parsing attributes in process `syz.5.19809'.
[ 1698.745999][T16796] netlink: 4 bytes leftover after parsing attributes in process `syz.5.19809'.
[ 1699.241855][T16832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.19821'.
[ 1700.097753][ T6327] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[ 1700.158591][T16887] netlink: 12 bytes leftover after parsing attributes in process `syz.2.19837'.
[ 1700.276427][   T14] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 1700.286098][ T6327] usb 6-1: Using ep0 maxpacket: 32
[ 1700.300122][ T6327] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1700.321377][ T6327] usb 6-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[ 1700.340829][ T6327] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1700.349823][ T6327] usb 6-1: Product: syz
[ 1700.359166][ T6327] usb 6-1: Manufacturer: syz
[ 1700.368959][ T6327] usb 6-1: SerialNumber: syz
[ 1700.379186][ T6327] usb 6-1: config 0 descriptor??
[ 1700.391084][ T6327] usb 6-1: bad CDC descriptors
[ 1700.406670][ T6327] usb 6-1: unsupported MDLM descriptors
[ 1700.451900][   T14] usb 1-1: Using ep0 maxpacket: 16
[ 1700.470723][   T14] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1700.488021][   T14] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1700.496415][   T14] usb 1-1: Product: syz
[ 1700.500606][   T14] usb 1-1: Manufacturer: syz
[ 1700.505273][   T14] usb 1-1: SerialNumber: syz
[ 1700.520784][   T14] r8152-cfgselector 1-1: config 0 descriptor??
[ 1700.533811][ T8073] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[ 1700.585265][ T6327] usb 6-1: USB disconnect, device number 34
[ 1700.705883][ T8073] usb 5-1: Using ep0 maxpacket: 8
[ 1700.715322][ T8073] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1700.730676][ T8073] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1700.741312][ T8073] usb 5-1: config 0 descriptor??
[ 1700.925545][   T14] r8152-cfgselector 1-1: Unknown version 0x0000
[ 1700.939407][   T14] r8152-cfgselector 1-1: bad CDC descriptors
[ 1700.954969][ T8073] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1700.961080][   T14] r8152-cfgselector 1-1: Unknown version 0x0000
[ 1700.982601][T16941] netlink: 20 bytes leftover after parsing attributes in process `syz.3.19848'.
[ 1700.983550][ T8073] asix: probe of 5-1:0.0 failed with error -71
[ 1701.001997][   T14] r8152-cfgselector 1-1: USB disconnect, device number 36
[ 1701.017613][ T8073] usb 5-1: USB disconnect, device number 58
[ 1701.212456][T16964] netlink: 288 bytes leftover after parsing attributes in process `syz.5.19852'.
[ 1701.411954][T16977] loop2: detected capacity change from 0 to 8
[ 1701.506258][T16977] SQUASHFS error: Failed to read block 0x738: -5
[ 1701.515073][T16977] SQUASHFS error: Unable to read metadata cache entry [736]
[ 1701.792588][T16999] loop5: detected capacity change from 0 to 256
[ 1702.166964][T17021] netlink: 172 bytes leftover after parsing attributes in process `syz.3.19870'.
[ 1702.602074][T17047] xt_l2tp: v2 tid > 0xffff: 134217728
[ 1702.609992][T17049] loop5: detected capacity change from 0 to 128
[ 1702.966478][   T26] kauditd_printk_skb: 1 callbacks suppressed
[ 1702.966494][   T26] audit: type=1326 audit(2000000256.767:2470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17074 comm="syz.0.19889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a3958e969 code=0x7ffc0000
[ 1703.113253][   T26] audit: type=1326 audit(2000000256.767:2471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17074 comm="syz.0.19889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7f8a3958e969 code=0x7ffc0000
[ 1703.135885][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1703.283650][   T26] audit: type=1326 audit(2000000256.767:2472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17074 comm="syz.0.19889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a3958e969 code=0x7ffc0000
[ 1703.338978][   T26] audit: type=1326 audit(2000000257.008:2473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17087 comm="syz.4.19894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1703.361517][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1703.389122][T17095] loop2: detected capacity change from 0 to 512
[ 1703.417801][   T26] audit: type=1326 audit(2000000257.008:2474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17087 comm="syz.4.19894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1703.428620][T17099] usb usb8: usbfs: process 17099 (syz.5.19897) did not claim interface 0 before use
[ 1703.440659][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1703.518331][T17095] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1703.534859][   T26] audit: type=1326 audit(2000000257.019:2475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17087 comm="syz.4.19894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1703.535820][T17095] ext4 filesystem being mounted at /3988/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1703.656717][   T26] audit: type=1326 audit(2000000257.407:2476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17087 comm="syz.4.19894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1703.736736][T17114] netlink: 14 bytes leftover after parsing attributes in process `syz.5.19901'.
[ 1703.744724][T17116] netlink: 'syz.3.19900': attribute type 3 has an invalid length.
[ 1703.790572][   T26] audit: type=1326 audit(2000000257.407:2477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17087 comm="syz.4.19894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1703.818320][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1704.201959][T17138] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19908'.
[ 1704.224951][ T4812] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1704.248974][T17144] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1704.252735][ T4812] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1704.291819][T17149] netlink: 'syz.0.19912': attribute type 6 has an invalid length.
[ 1704.305141][T17146] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1704.332234][T16126] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1704.964833][T17185] nfs: Unknown parameter 'ntext'
[ 1705.177891][T17199] netlink: 'syz.4.19930': attribute type 1 has an invalid length.
[ 1705.436164][T17216] loop3: detected capacity change from 0 to 64
[ 1705.998595][T17247] netlink: 'syz.3.19944': attribute type 10 has an invalid length.
[ 1706.071168][T17247] batman_adv: batadv0: Adding interface: wlan0
[ 1706.077432][T17247] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1706.213562][T17247] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active
[ 1706.365300][T17262] loop5: detected capacity change from 0 to 1024
[ 1706.406286][T17262] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[ 1706.502763][T17262] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[ 1706.564050][T17262] jbd2_journal_init_inode: Cannot locate journal superblock
[ 1706.593903][T17262] EXT4-fs (loop5): Could not load journal inode
[ 1706.603902][ T6179] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[ 1706.799226][ T6179] usb 5-1: Using ep0 maxpacket: 16
[ 1706.807300][ T6179] usb 5-1: config 0 has an invalid interface number: 105 but max is 0
[ 1706.849484][ T6179] usb 5-1: config 0 descriptor has 1 excess byte, ignoring
[ 1706.877154][ T6179] usb 5-1: config 0 has no interface number 0
[ 1706.895826][ T6179] usb 5-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[ 1706.920363][ T6179] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1706.952196][ T6179] usb 5-1: Product: syz
[ 1706.960903][ T6179] usb 5-1: Manufacturer: syz
[ 1706.965578][ T6179] usb 5-1: SerialNumber: syz
[ 1707.010216][ T6179] usb 5-1: config 0 descriptor??
[ 1707.070401][ T6179] usb 5-1: Found UVC 0.00 device syz (046d:08f3)
[ 1707.090843][ T6179] usb 5-1: No valid video chain found.
[ 1707.251426][ T6179] usb 5-1: USB disconnect, device number 59
[ 1707.542398][T17322] netlink: 'syz.5.19965': attribute type 10 has an invalid length.
[ 1707.562645][T17322] bond0: (slave wlan1): Enslaving as an active interface with a down link
[ 1707.869785][T17339] netlink: 12 bytes leftover after parsing attributes in process `syz.2.19970'.
[ 1707.928578][T17339] netlink: 'syz.2.19970': attribute type 1 has an invalid length.
[ 1708.382680][T17368] netlink: 20 bytes leftover after parsing attributes in process `syz.4.19982'.
[ 1708.405273][T17368] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19982'.
[ 1708.555889][T17382] netlink: 16 bytes leftover after parsing attributes in process `syz.0.19985'.
[ 1708.824304][ T8073] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[ 1708.864248][T17407] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19992'.
[ 1708.900429][T17407] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19992'.
[ 1709.005690][ T8073] usb 3-1: Using ep0 maxpacket: 16
[ 1709.012857][ T8073] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1709.049003][ T8073] usb 3-1: config 0 has no interface number 0
[ 1709.063554][ T8073] usb 3-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[ 1709.097657][ T8073] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1709.120048][ T8073] usb 3-1: Product: syz
[ 1709.124673][ T8073] usb 3-1: Manufacturer: syz
[ 1709.166655][ T8073] usb 3-1: SerialNumber: syz
[ 1709.178717][ T8073] usb 3-1: config 0 descriptor??
[ 1709.204817][ T8073] gspca_main: spca1528-2.14.0 probing 04fc:1528
[ 1709.219315][T17431] netlink: 'syz.5.20001': attribute type 12 has an invalid length.
[ 1709.237304][T17431] netlink: 120 bytes leftover after parsing attributes in process `syz.5.20001'.
[ 1709.452976][T17442] (unnamed net_device) (uninitialized): up delay (7) is not a multiple of miimon (3), value rounded to 6 ms
[ 1709.560260][T17442] (unnamed net_device) (uninitialized): down delay (7) is not a multiple of miimon (3), value rounded to 6 ms
[ 1709.687522][ T8073] gspca_spca1528: reg_w err -71
[ 1709.720264][ T8073] spca1528: probe of 3-1:0.1 failed with error -71
[ 1709.738606][ T8073] usb 3-1: USB disconnect, device number 10
[ 1709.863390][T17442] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1710.038887][T17501] netlink: 14 bytes leftover after parsing attributes in process `syz.3.20012'.
[ 1710.448211][T17454] loop4: detected capacity change from 0 to 32768
[ 1710.465779][   T14] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[ 1710.655931][   T14] usb 6-1: Using ep0 maxpacket: 16
[ 1710.669000][   T14] usb 6-1: config 0 has an invalid interface number: 105 but max is 0
[ 1710.701881][   T14] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1710.746548][   T14] usb 6-1: config 0 has no interface number 0
[ 1710.761497][   T14] usb 6-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[ 1710.817289][   T14] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1710.850699][   T14] usb 6-1: Product: syz
[ 1710.860354][   T14] usb 6-1: Manufacturer: syz
[ 1710.865412][   T14] usb 6-1: SerialNumber: syz
[ 1710.912240][   T14] usb 6-1: config 0 descriptor??
[ 1711.119124][ T8073] usb 6-1: USB disconnect, device number 35
[ 1711.295447][T17574] sctp: [Deprecated]: syz.2.20033 (pid 17574) Use of int in max_burst socket option deprecated.
[ 1711.295447][T17574] Use struct sctp_assoc_value instead
[ 1711.443783][T17583] netlink: 4 bytes leftover after parsing attributes in process `syz.3.20036'.
[ 1711.835964][ T8073] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[ 1711.889898][T17612] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1712.050301][ T8073] usb 3-1: Using ep0 maxpacket: 32
[ 1712.064671][ T8073] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1712.099003][ T8073] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[ 1712.143259][ T8073] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1712.165052][ T8073] usb 3-1: Product: syz
[ 1712.182937][ T8073] usb 3-1: Manufacturer: syz
[ 1712.187639][ T8073] usb 3-1: SerialNumber: syz
[ 1712.212172][ T8073] usb 3-1: config 0 descriptor??
[ 1712.237771][ T8073] cdc_ether 3-1:0.0: skipping garbage
[ 1712.243310][ T8073] usb 3-1: bad CDC descriptors
[ 1712.274471][ T8073] usb 3-1: unsupported MDLM descriptors
[ 1712.460327][T11106] usb 3-1: USB disconnect, device number 11
[ 1712.903082][   T14] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[ 1713.098674][   T14] usb 4-1: New USB device found, idVendor=0582, idProduct=008d, bcdDevice=7a.ac
[ 1713.119232][   T14] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1713.130066][   T14] usb 4-1: Product: syz
[ 1713.147690][   T14] usb 4-1: Manufacturer: syz
[ 1713.176226][   T14] usb 4-1: SerialNumber: syz
[ 1713.201633][   T14] usb 4-1: config 0 descriptor??
[ 1713.231207][   T14] usb 4-1: interface 1 not found
[ 1713.251269][T17696] loop5: detected capacity change from 0 to 256
[ 1713.321419][T17696] FAT-fs (loop5): Directory bread(block 64) failed
[ 1713.358522][T17696] FAT-fs (loop5): Directory bread(block 65) failed
[ 1713.371880][T17696] FAT-fs (loop5): Directory bread(block 66) failed
[ 1713.392867][T17696] FAT-fs (loop5): Directory bread(block 67) failed
[ 1713.404705][   T14] usb 4-1: USB disconnect, device number 33
[ 1713.409782][T17696] FAT-fs (loop5): Directory bread(block 68) failed
[ 1713.435849][T17696] FAT-fs (loop5): Directory bread(block 69) failed
[ 1713.465048][T17696] FAT-fs (loop5): Directory bread(block 70) failed
[ 1713.481212][T17696] FAT-fs (loop5): Directory bread(block 71) failed
[ 1713.512262][T17677] loop4: detected capacity change from 0 to 32768
[ 1713.519051][T17696] FAT-fs (loop5): Directory bread(block 72) failed
[ 1713.524474][T17677] 
[ 1713.524474][T17677]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1713.524474][T17677] 
[ 1713.551077][T17696] FAT-fs (loop5): Directory bread(block 73) failed
[ 1713.647822][T17677] __jfs_setxattr: xattr_size = 243, new_size = 337
[ 1713.792018][ T1239] 
[ 1713.792018][ T1239]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1713.792018][ T1239] 
[ 1713.827659][ T1239] 
[ 1713.827659][ T1239]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1713.827659][ T1239] 
[ 1713.860481][ T4727] 
[ 1713.860481][ T4727]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1713.860481][ T4727] 
[ 1713.909562][  T107] 
[ 1713.909562][  T107]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1713.909562][  T107] 
[ 1713.930573][ T4727] 
[ 1713.930573][ T4727]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1713.930573][ T4727] 
[ 1714.131095][T17741] netlink: 72 bytes leftover after parsing attributes in process `syz.3.20084'.
[ 1714.182376][T17734] loop2: detected capacity change from 0 to 4096
[ 1714.189605][T17741] netlink: 72 bytes leftover after parsing attributes in process `syz.3.20084'.
[ 1714.229807][T17734] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[ 1714.387653][T17734] ntfs3: loop2: failed to convert "c46c" to macceltic
[ 1714.457780][T17756] loop3: detected capacity change from 0 to 64
[ 1714.791799][T17778] netlink: 12 bytes leftover after parsing attributes in process `syz.4.20093'.
[ 1714.968032][T11106] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[ 1715.050696][T17793] loop3: detected capacity change from 0 to 16
[ 1715.058182][T17793] MTD: Attempt to mount non-MTD device "/dev/loop3"
[ 1715.150364][T17798] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1715.211100][T11106] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1715.233519][T11106] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1715.264568][T11106] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1715.293134][T17768] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1715.606133][T11106] usb 3-1: USB disconnect, device number 12
[ 1715.706561][T17848] loop3: detected capacity change from 0 to 8
[ 1716.161321][T17877] Invalid ELF header magic: != ELF
[ 1716.343452][T17889] netlink: 188 bytes leftover after parsing attributes in process `syz.5.20121'.
[ 1716.371563][T17889] ksmbd: Unknown IPC event: 10, ignore.
[ 1717.060580][T17937] netlink: 28 bytes leftover after parsing attributes in process `syz.5.20138'.
[ 1717.100919][T17937] netlink: 28 bytes leftover after parsing attributes in process `syz.5.20138'.
[ 1717.348153][T17954] loop5: detected capacity change from 0 to 512
[ 1717.409968][T17954] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1717.410059][T17954] ext4 filesystem being mounted at /2162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1717.555609][T24915] EXT4-fs (loop5): unmounting filesystem.
[ 1717.601881][T17969] loop3: detected capacity change from 0 to 64
[ 1717.987494][T17986] loop3: detected capacity change from 0 to 1024
[ 1718.019272][T17986] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[ 1718.130608][T18001] sctp: [Deprecated]: syz.5.20158 (pid 18001) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1718.130608][T18001] Use struct sctp_sack_info instead
[ 1718.254376][T18006] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1719.096489][T18062] netlink: 12 bytes leftover after parsing attributes in process `syz.0.20178'.
[ 1719.543652][T18088] autofs4:pid:18088:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(4294967071.1), cmd(0xc018937e)
[ 1719.630257][T18088] autofs4:pid:18088:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e)
[ 1719.910456][T18098] loop4: detected capacity change from 0 to 8192
[ 1719.955238][T18098] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1719.983797][T18098] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[ 1720.002144][T18098] REISERFS (device loop4): using ordered data mode
[ 1720.012001][T18098] reiserfs: using flush barriers
[ 1720.021142][T18098] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1720.149204][T18098] REISERFS (device loop4): checking transaction log (loop4)
[ 1720.166687][T18098] REISERFS (device loop4): Using rupasov hash to sort names
[ 1720.188924][T18098] REISERFS (device loop4): using 3.5.x disk format
[ 1720.213088][T18098] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1720.224945][T18098] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1720.240941][T18098] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1720.287445][T18098] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2)
[ 1720.373715][T18098] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[ 1720.449912][ T6331] usb 1-1: new full-speed USB device number 37 using dummy_hcd
[ 1720.463736][T18098] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1720.500471][T18098] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1720.671481][ T6331] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1720.671518][ T6331] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1720.673009][ T6331] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1720.673046][ T6331] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[ 1720.673068][ T6331] usb 1-1: Product: syz
[ 1720.673083][ T6331] usb 1-1: Manufacturer: syz
[ 1720.676996][ T6331] hub 1-1:4.0: USB hub found
[ 1720.871188][ T6331] hub 1-1:4.0: config failed, hub has too many ports! (err -19)
[ 1721.108416][T18187] loop5: detected capacity change from 0 to 64
[ 1721.129209][T18187] hfs: unable to locate alternate MDB
[ 1721.134644][T18187] hfs: continuing without an alternate MDB
[ 1721.209501][ T8073] usb 1-1: USB disconnect, device number 37
[ 1721.378642][ T6331] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[ 1721.603904][ T6331] usb 3-1: Using ep0 maxpacket: 32
[ 1721.613837][ T6331] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1721.651451][ T6331] usb 3-1: New USB device found, idVendor=d5ff, idProduct=0066, bcdDevice=d8.b0
[ 1721.688779][ T6331] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1721.721785][ T6331] usb 3-1: config 0 descriptor??
[ 1721.738693][ T6331] usb 3-1: bad CDC descriptors
[ 1721.930741][   T14] usb 3-1: USB disconnect, device number 13
[ 1722.087004][T18261] x_tables: ip6_tables: sctp match: only valid for protocol 132
[ 1722.223277][T18271] netlink: 8 bytes leftover after parsing attributes in process `syz.0.20240'.
[ 1722.281120][    T7] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[ 1722.446477][T18282] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[ 1722.470509][    T7] usb 5-1: Using ep0 maxpacket: 32
[ 1722.485412][    T7] usb 5-1: config 0 has an invalid interface number: 6 but max is 0
[ 1722.494111][T18282] overlayfs: missing 'lowerdir'
[ 1722.496900][    T7] usb 5-1: config 0 has 2 interfaces, different from the descriptor's value: 1
[ 1722.508316][    T7] usb 5-1: config 0 has no interface number 1
[ 1722.536391][    T7] usb 5-1: New USB device found, idVendor=10cf, idProduct=8061, bcdDevice=b7.12
[ 1722.559321][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1722.599595][    T7] usb 5-1: Product: syz
[ 1722.604060][    T7] usb 5-1: Manufacturer: syz
[ 1722.608687][    T7] usb 5-1: SerialNumber: syz
[ 1722.631575][    T7] usb 5-1: config 0 descriptor??
[ 1722.692097][    T7] comedi comedi0: driver 'vmk80xx' has successfully auto-configured 'K8061 (VM140)'.
[ 1722.770162][    T7] vmk80xx 5-1:0.0: driver 'vmk80xx' failed to auto-configure device.
[ 1722.935657][    T7] usb 5-1: USB disconnect, device number 60
[ 1723.714335][T18367] IPv6: sit2: Disabled Multicast RS
[ 1724.002387][T18390] loop2: detected capacity change from 0 to 1024
[ 1724.044142][T18390] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1724.081123][ T6331] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[ 1724.136096][T18390] EXT4-fs (loop2): 1 truncate cleaned up
[ 1724.149954][T18390] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1724.203729][T18405] netlink: 4 bytes leftover after parsing attributes in process `syz.3.20280'.
[ 1724.224064][T18405] netlink: 4260 bytes leftover after parsing attributes in process `syz.3.20280'.
[ 1724.290815][ T6331] usb 6-1: New USB device found, idVendor=0582, idProduct=008d, bcdDevice=7a.ac
[ 1724.302937][T18410] netlink: 'syz.0.20281': attribute type 3 has an invalid length.
[ 1724.312020][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1724.318866][ T6331] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1724.337723][T18410] netlink: 16 bytes leftover after parsing attributes in process `syz.0.20281'.
[ 1724.346965][ T6331] usb 6-1: Product: syz
[ 1724.351739][ T6331] usb 6-1: Manufacturer: syz
[ 1724.356431][ T6331] usb 6-1: SerialNumber: syz
[ 1724.388493][ T6331] usb 6-1: config 0 descriptor??
[ 1724.421505][ T6331] usb 6-1: interface 1 not found
[ 1724.625386][ T6331] usb 6-1: USB disconnect, device number 36
[ 1724.801760][   T26] audit: type=1326 audit(2000000279.675:2478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18438 comm="syz.4.20288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1724.871898][   T26] audit: type=1326 audit(2000000279.675:2479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18438 comm="syz.4.20288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1724.894554][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1724.935363][T18446] netlink: 36 bytes leftover after parsing attributes in process `syz.3.20290'.
[ 1725.192351][   T26] audit: type=1326 audit(2000000279.707:2480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18438 comm="syz.4.20288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1725.214801][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1725.256606][   T26] audit: type=1326 audit(2000000279.707:2481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18438 comm="syz.4.20288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1725.279242][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1725.339935][   T26] audit: type=1326 audit(2000000279.707:2482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18438 comm="syz.4.20288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f318e969 code=0x7ffc0000
[ 1725.484167][    T7] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[ 1725.674042][    T7] usb 5-1: New USB device found, idVendor=093a, idProduct=050f, bcdDevice=c2.b7
[ 1725.719326][    T7] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1725.763899][    T7] usb 5-1: config 0 descriptor??
[ 1725.780707][    T7] gspca_main: mars-2.14.0 probing 093a:050f
[ 1725.973357][ T6179] usb 5-1: USB disconnect, device number 61
[ 1726.716867][T18592] loop5: detected capacity change from 0 to 256
[ 1726.769907][T18592] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84977, utbl_chksum : 0xe619d30d)
[ 1726.924760][T18601] loop3: detected capacity change from 0 to 256
[ 1727.025989][T18601] FAT-fs (loop3): Directory bread(block 64) failed
[ 1727.073567][T18601] FAT-fs (loop3): Directory bread(block 65) failed
[ 1727.080244][T18601] FAT-fs (loop3): Directory bread(block 66) failed
[ 1727.202557][T18601] FAT-fs (loop3): Directory bread(block 67) failed
[ 1727.242977][T18601] FAT-fs (loop3): Directory bread(block 68) failed
[ 1727.274159][T18601] FAT-fs (loop3): Directory bread(block 69) failed
[ 1727.280860][T18601] FAT-fs (loop3): Directory bread(block 70) failed
[ 1727.294264][T18621] �: mtu less than device minimum
[ 1727.299676][T18621] team0: Device � failed to change mtu
[ 1727.340123][T18601] FAT-fs (loop3): Directory bread(block 71) failed
[ 1727.378096][T18601] FAT-fs (loop3): Directory bread(block 72) failed
[ 1727.406461][T18601] FAT-fs (loop3): Directory bread(block 73) failed
[ 1728.148720][T18670] loop2: detected capacity change from 0 to 1024
[ 1728.298265][T18655] infiniband syz1: set active
[ 1728.338298][T18655] infiniband syz1: added team0
[ 1728.607842][T18655] RDS/IB: syz1: added
[ 1728.611962][T18655] smc: adding ib device syz1 with port count 1
[ 1728.633123][T18666] loop4: detected capacity change from 0 to 32768
[ 1728.664324][T18655] smc:    ib device syz1 port 1 has pnetid 
[ 1728.749041][T18695] program syz.5.20354 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1729.239600][T18716] No such timeout policy "syz1"
[ 1729.334237][T18718] loop2: detected capacity change from 0 to 1024
[ 1729.352721][T18720] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20364'.
[ 1729.469867][T18718] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1729.487539][T18718] EXT4-fs error (device loop2): ext4_lookup:1858: comm syz.2.20363: inode #12: comm syz.2.20363: iget: illegal inode #
[ 1729.553220][T18729] loop4: detected capacity change from 0 to 2048
[ 1729.604036][T18735] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1729.636332][T18729] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1729.649265][T18729] Remounting filesystem read-only
[ 1729.655154][T18729] NILFS error (device loop4): nilfs_bmap_last_key: broken bmap (inode number=16)
[ 1729.727163][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1729.741084][T18729] NILFS (loop4): error -5 truncating bmap (ino=16)
[ 1729.888246][   T26] audit: type=1326 audit(2000000285.017:2483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18743 comm="syz.2.20369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1729.932181][ T4727] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[ 1729.960306][   T26] audit: type=1326 audit(2000000285.059:2484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18743 comm="syz.2.20369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1730.092351][   T26] audit: type=1326 audit(2000000285.059:2485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18743 comm="syz.2.20369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1730.126949][T18752] loop5: detected capacity change from 0 to 1764
[ 1730.151339][   T26] audit: type=1326 audit(2000000285.059:2486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18743 comm="syz.2.20369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1730.208015][T18752] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1730.427039][T18769] netlink: 'syz.4.20377': attribute type 1 has an invalid length.
[ 1730.540289][T18776] netlink: 'syz.2.20379': attribute type 28 has an invalid length.
[ 1731.388855][T18829] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[ 1732.379036][T18896] netlink: 'syz.2.20421': attribute type 1 has an invalid length.
[ 1732.615316][T18909] loop5: detected capacity change from 0 to 1024
[ 1732.823435][T18922] loop4: detected capacity change from 0 to 1024
[ 1732.914650][ T4770] hfsplus: b-tree write err: -5, ino 4
[ 1732.993123][T18922] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1733.034121][T18922] EXT4-fs error (device loop4): ext4_find_dest_de:2115: inode #2: block 16: comm syz.4.20429: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=2, rec_len=41827, size=1024 fake=1
[ 1733.228732][ T4727] EXT4-fs (loop4): unmounting filesystem.
[ 1733.528773][T18964] netlink: 24 bytes leftover after parsing attributes in process `syz.0.20442'.
[ 1733.979079][T18994] printk: syz.3.20452 (18994): Attempt to access syslog with CAP_SYS_ADMIN but no CAP_SYSLOG (deprecated).
[ 1734.502863][T19029] loop4: detected capacity change from 0 to 1024
[ 1734.685158][T19029] hfsplus: extend alloc file! (8192,512,16777721)
[ 1735.039538][T19055] device veth3 entered promiscuous mode
[ 1735.105022][T19074] netlink: 6 bytes leftover after parsing attributes in process `syz.5.20473'.
[ 1735.186670][T19074] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1735.244606][T19074] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1735.410193][T19031] loop3: detected capacity change from 0 to 32768
[ 1735.502030][T19031] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1735.600806][T19031] OCFS2: ERROR (device loop3): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 2304 but max bitmap bits of 2048
[ 1735.732790][T19031] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1735.787743][T19031] OCFS2: File system is now read-only.
[ 1735.850245][T19031] (syz.3.20465,19031,1):ocfs2_search_chain:1761 ERROR: status = -30
[ 1735.877957][T19031] (syz.3.20465,19031,1):ocfs2_search_chain:1871 ERROR: status = -30
[ 1735.896235][T19031] (syz.3.20465,19031,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[ 1735.930904][T19031] (syz.3.20465,19031,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[ 1735.966247][T19031] (syz.3.20465,19031,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[ 1736.001530][T19031] (syz.3.20465,19031,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[ 1736.010212][T19031] (syz.3.20465,19031,1):ocfs2_mknod_locked:639 ERROR: status = -30
[ 1736.043343][T19031] (syz.3.20465,19031,1):ocfs2_mknod:385 ERROR: status = -30
[ 1736.080742][T19031] (syz.3.20465,19031,1):ocfs2_mknod:502 ERROR: status = -30
[ 1736.094900][T19031] (syz.3.20465,19031,1):ocfs2_mkdir:659 ERROR: status = -30
[ 1736.128982][   T26] audit: type=1326 audit(2000000291.565:2487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19125 comm="syz.0.20491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a3958e969 code=0x7ffc0000
[ 1736.169778][T19128] netlink: 'syz.5.20492': attribute type 1 has an invalid length.
[ 1736.174709][ T4724] ocfs2: Unmounting device (7,3) on (node local)
[ 1736.187789][T19128] netlink: 224 bytes leftover after parsing attributes in process `syz.5.20492'.
[ 1736.197259][   T26] audit: type=1326 audit(2000000291.565:2488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19125 comm="syz.0.20491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f8a3958e969 code=0x7ffc0000
[ 1736.205316][T19130] loop2: detected capacity change from 0 to 256
[ 1736.265801][   T26] audit: type=1326 audit(2000000291.565:2489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19125 comm="syz.0.20491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a3958e969 code=0x7ffc0000
[ 1736.345923][T19130] exfat: Deprecated parameter 'namecase'
[ 1736.389082][T19130] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[ 1736.393713][   T26] audit: type=1326 audit(2000000291.565:2490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19125 comm="syz.0.20491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a3958e969 code=0x7ffc0000
[ 1736.485013][T19130] UBIFS error (pid: 19130): cannot open "./file0", error -22
[ 1736.707618][   T26] audit: type=1326 audit(2000000292.173:2491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19148 comm="syz.3.20494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1736.773412][T19158] device sit0 entered promiscuous mode
[ 1736.817339][   T26] audit: type=1326 audit(2000000292.173:2492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19148 comm="syz.3.20494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1736.858620][T19158] netlink: 'syz.0.20501': attribute type 1 has an invalid length.
[ 1736.893599][   T26] audit: type=1326 audit(2000000292.173:2493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19148 comm="syz.3.20494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1736.923087][T19158] netlink: 1 bytes leftover after parsing attributes in process `syz.0.20501'.
[ 1736.949290][   T26] audit: type=1326 audit(2000000292.173:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19148 comm="syz.3.20494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1739.296757][T19266] loop5: detected capacity change from 0 to 32768
[ 1739.924352][T19348] loop2: detected capacity change from 0 to 8
[ 1740.131694][T19359] netlink: 'syz.4.20569': attribute type 21 has an invalid length.
[ 1740.179562][T19359] netlink: 132 bytes leftover after parsing attributes in process `syz.4.20569'.
[ 1740.189633][  T128] usb 1-1: new full-speed USB device number 38 using dummy_hcd
[ 1740.357755][T19363] loop2: detected capacity change from 0 to 4096
[ 1740.388945][  T128] usb 1-1: config 0 has an invalid interface number: 235 but max is 0
[ 1740.405795][  T128] usb 1-1: config 0 has no interface number 0
[ 1740.422638][T19329] loop5: detected capacity change from 0 to 32768
[ 1740.442142][  T128] usb 1-1: config 0 interface 235 altsetting 16 endpoint 0x5 has invalid maxpacket 48424, setting to 64
[ 1740.443054][T19363] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[ 1740.471006][  T128] usb 1-1: config 0 interface 235 has no altsetting 0
[ 1740.495602][T19329] __jfs_setxattr: xattr_size = 74, new_size = 12053
[ 1740.505509][  T128] usb 1-1: New USB device found, idVendor=06cd, idProduct=0112, bcdDevice=3e.18
[ 1740.506875][T19363] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1740.545575][  T128] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1740.582776][  T128] usb 1-1: Product: syz
[ 1740.600137][  T128] usb 1-1: Manufacturer: syz
[ 1740.612489][T19363] ntfs: volume version 3.1.
[ 1740.617285][  T128] usb 1-1: SerialNumber: syz
[ 1740.639300][  T128] usb 1-1: config 0 descriptor??
[ 1740.667997][T19347] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1740.678799][  T128] keyspan 1-1:0.235: Keyspan 1 port adapter converter detected
[ 1740.710580][  T128] keyspan 1-1:0.235: found no endpoint descriptor for endpoint 87
[ 1740.718606][  T128] keyspan 1-1:0.235: found no endpoint descriptor for endpoint 7
[ 1740.786500][  T128] keyspan 1-1:0.235: found no endpoint descriptor for endpoint 81
[ 1740.823541][  T128] keyspan 1-1:0.235: found no endpoint descriptor for endpoint 1
[ 1740.868423][  T128] keyspan 1-1:0.235: found no endpoint descriptor for endpoint 85
[ 1740.896909][  T128] usb 1-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[ 1740.951222][T19397] netlink: 'syz.2.20577': attribute type 16 has an invalid length.
[ 1740.952193][  T128] usb 1-1: USB disconnect, device number 38
[ 1741.000692][T19397] netlink: 'syz.2.20577': attribute type 3 has an invalid length.
[ 1741.039353][  T128] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[ 1741.042695][T19397] netlink: 132 bytes leftover after parsing attributes in process `syz.2.20577'.
[ 1741.084486][  T128] keyspan 1-1:0.235: device disconnected
[ 1741.485971][T19378] loop4: detected capacity change from 0 to 32768
[ 1741.541370][T19378] ERROR: (device loop4): diAllocAG: numfree > numinos
[ 1741.541370][T19378] 
[ 1741.591322][T19378] ialloc: diAlloc returned -5!
[ 1742.101984][T19452] xt_ecn: cannot match TCP bits for non-tcp packets
[ 1742.450337][T19473] netlink: 'syz.2.20599': attribute type 15 has an invalid length.
[ 1742.691175][   T26] kauditd_printk_skb: 13 callbacks suppressed
[ 1742.691191][   T26] audit: type=1326 audit(2000000298.449:2495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19486 comm="syz.5.20605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcec2b8e969 code=0x7ffc0000
[ 1742.815524][   T26] audit: type=1326 audit(2000000298.449:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19486 comm="syz.5.20605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7fcec2b8e969 code=0x7ffc0000
[ 1742.920301][   T26] audit: type=1326 audit(2000000298.449:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19486 comm="syz.5.20605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcec2b8e969 code=0x7ffc0000
[ 1743.221256][T19464] loop4: detected capacity change from 0 to 32768
[ 1743.295387][T19464] CIFS mount error: No usable UNC path provided in device string!
[ 1743.295387][T19464] 
[ 1743.325943][T19464] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1743.446173][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1743.452703][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1743.612185][T24034] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1743.812639][T24034] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1743.851165][T24034] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1743.884379][T24034] usb 1-1: config 0 descriptor??
[ 1743.907742][T24034] cp210x 1-1:0.0: cp210x converter detected
[ 1744.035831][   T26] audit: type=1400 audit(2000000299.866:2498): apparmor="DENIED" operation="stack" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A2F2C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=19534 comm="syz.5.20619"
[ 1744.279726][T19549] loop5: detected capacity change from 0 to 256
[ 1744.292224][T24034] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: -71
[ 1744.309181][T24034] cp210x 1-1:0.0: failed to get vendor val 0x3711 size 2: -71
[ 1744.327376][T24034] cp210x 1-1:0.0: GPIO initialisation failed: -71
[ 1744.356237][T24034] usb 1-1: cp210x converter now attached to ttyUSB0
[ 1744.370357][T19549] FAT-fs (loop5): Directory bread(block 64) failed
[ 1744.396074][T24034] usb 1-1: USB disconnect, device number 39
[ 1744.404469][T19549] FAT-fs (loop5): Directory bread(block 65) failed
[ 1744.437394][T19549] FAT-fs (loop5): Directory bread(block 66) failed
[ 1744.465252][T19549] FAT-fs (loop5): Directory bread(block 67) failed
[ 1744.472034][T19549] FAT-fs (loop5): Directory bread(block 68) failed
[ 1744.494049][T24034] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1744.509726][T24034] cp210x 1-1:0.0: device disconnected
[ 1744.516625][T19549] FAT-fs (loop5): Directory bread(block 69) failed
[ 1744.527254][T19549] FAT-fs (loop5): Directory bread(block 70) failed
[ 1744.541967][T19549] FAT-fs (loop5): Directory bread(block 71) failed
[ 1744.548657][T19549] FAT-fs (loop5): Directory bread(block 72) failed
[ 1744.558010][T19549] FAT-fs (loop5): Directory bread(block 73) failed
[ 1744.903703][T19590] netlink: 4 bytes leftover after parsing attributes in process `syz.5.20629'.
[ 1745.296205][T19566] loop3: detected capacity change from 0 to 32768
[ 1745.520132][   T26] audit: type=1326 audit(2000000301.419:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.2.20641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1745.595620][   T26] audit: type=1326 audit(2000000301.419:2500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.2.20641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1745.671566][   T26] audit: type=1326 audit(2000000301.419:2501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.2.20641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1745.730825][   T26] audit: type=1326 audit(2000000301.419:2502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.2.20641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a72d8e969 code=0x7ffc0000
[ 1746.327711][T19667] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20658'.
[ 1747.236149][T19722] loop2: detected capacity change from 0 to 512
[ 1747.338236][T19722] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1747.378642][T19722] ext4 filesystem being mounted at /4141/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1747.400968][T19732] usb usb8: usbfs: process 19732 (syz.3.20679) did not claim interface 0 before use
[ 1747.533019][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1747.837754][T19704] loop4: detected capacity change from 0 to 32768
[ 1747.907061][T19756] loop2: detected capacity change from 0 to 1764
[ 1748.104984][T19768] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1748.118165][T19768] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1748.355714][T19783] ip6t_REJECT: ECHOREPLY is not supported
[ 1748.935317][T19813] loop3: detected capacity change from 0 to 8
[ 1749.042412][T19818] xt_TCPMSS: Only works on TCP SYN packets
[ 1749.075145][T19814] loop4: detected capacity change from 0 to 4096
[ 1749.103085][T19824] netlink: 8 bytes leftover after parsing attributes in process `syz.2.20705'.
[ 1749.130054][T19814] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[ 1749.180294][T19814] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1749.264120][T19814] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[ 1749.295534][T11106] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[ 1749.309729][T19814] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1749.367994][T19814] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1749.410374][T19814] ntfs: volume version 3.1.
[ 1749.443375][T19814] ntfs: (device loop4): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[ 1749.485841][T11106] usb 4-1: Using ep0 maxpacket: 32
[ 1749.493230][T11106] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1749.496073][T19838] netlink: 'syz.2.20709': attribute type 5 has an invalid length.
[ 1749.504588][T19814] ntfs: (device loop4): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[ 1749.543710][T11106] usb 4-1: config 7 has an invalid interface number: 128 but max is 0
[ 1749.551939][T11106] usb 4-1: config 7 contains an unexpected descriptor of type 0x1, skipping
[ 1749.567874][T19838] netlink: 7 bytes leftover after parsing attributes in process `syz.2.20709'.
[ 1749.594763][T19814] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[ 1749.606002][T11106] usb 4-1: config 7 has an invalid descriptor of length 148, skipping remainder of the config
[ 1749.636302][T19814] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 1749.648728][T19841] Timeout policy `syz0' can only be used by L3 protocol number 0
[ 1749.657821][T11106] usb 4-1: config 7 has no interface number 0
[ 1749.663978][T11106] usb 4-1: config 7 interface 128 altsetting 2 has an invalid endpoint with address 0x17, skipping
[ 1749.682689][T19814] ntfs: (device loop4): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[ 1749.707408][T11106] usb 4-1: config 7 interface 128 altsetting 2 endpoint 0x87 has an invalid bInterval 209, changing to 11
[ 1749.741866][T11106] usb 4-1: config 7 interface 128 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[ 1749.796852][T11106] usb 4-1: config 7 interface 128 has no altsetting 0
[ 1749.807812][T19844] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[ 1749.820499][T11106] usb 4-1: New USB device found, idVendor=6033, idProduct=4108, bcdDevice=cc.13
[ 1749.844052][T11106] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1749.862473][T11106] usb 4-1: Product: syz
[ 1749.866998][T19844] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[ 1749.875471][T11106] usb 4-1: Manufacturer: syz
[ 1749.900230][T11106] usb 4-1: SerialNumber: syz
[ 1749.917079][T19813] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1749.934833][T19844] overlayfs: missing 'lowerdir'
[ 1750.160161][T11106] usb 4-1: MIDIStreaming interface descriptor not found
[ 1750.250230][T11106] usb 4-1: USB disconnect, device number 34
[ 1750.328529][T19856] loop4: detected capacity change from 0 to 4096
[ 1750.371962][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[ 1750.381055][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[ 1750.397574][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[ 1750.409409][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[ 1750.421578][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffc1c00
[ 1750.454822][T19897] netlink: 'syz.0.20720': attribute type 1 has an invalid length.
[ 1750.455283][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffc2c00
[ 1750.526156][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffc4c00
[ 1750.544458][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffc8c00
[ 1750.562919][ T5627] udevd[5627]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:7.128/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1750.582475][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffd0c00
[ 1750.595393][T19856] ntfs3: loop4: try to read out of volume at offset 0x3fffffe0c00
[ 1751.698709][T19958] netlink: 144 bytes leftover after parsing attributes in process `syz.3.20740'.
[ 1751.902308][T19973] netlink: 'syz.5.20744': attribute type 1 has an invalid length.
[ 1752.020827][ T8073] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[ 1752.125728][T19927] loop2: detected capacity change from 0 to 32768
[ 1752.232574][ T8073] usb 5-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b
[ 1752.250072][ T8073] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1752.280098][ T8073] usb 5-1: config 0 descriptor??
[ 1752.439487][T11106] usb 4-1: new full-speed USB device number 35 using dummy_hcd
[ 1752.671085][T11106] usb 4-1: config 0 has an invalid interface number: 128 but max is 0
[ 1752.686119][ T8073] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 1752.702084][T11106] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1752.719783][ T8073] asix: probe of 5-1:0.0 failed with error -71
[ 1752.745461][T11106] usb 4-1: config 0 has no interface number 0
[ 1752.751733][ T8073] usb 5-1: USB disconnect, device number 62
[ 1752.761488][T11106] usb 4-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice=7a.5a
[ 1752.778820][T11106] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1752.801945][T24034] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[ 1752.821383][T11106] usb 4-1: Product: syz
[ 1752.825602][T11106] usb 4-1: Manufacturer: syz
[ 1752.840500][T11106] usb 4-1: SerialNumber: syz
[ 1752.866128][T11106] usb 4-1: config 0 descriptor??
[ 1752.884619][T20030] netlink: 2 bytes leftover after parsing attributes in process `syz.5.20760'.
[ 1752.974799][T20040] netlink: 16 bytes leftover after parsing attributes in process `syz.5.20762'.
[ 1752.993380][T24034] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1753.019393][T24034] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1753.020725][T20042] netlink: 56 bytes leftover after parsing attributes in process `syz.0.20764'.
[ 1753.048522][T24034] usb 3-1: config 0 descriptor??
[ 1753.085549][ T8073] usb 4-1: USB disconnect, device number 35
[ 1753.093296][T24034] cp210x 3-1:0.0: cp210x converter detected
[ 1753.340620][T20064] netlink: 'syz.5.20769': attribute type 4 has an invalid length.
[ 1753.474377][T24034] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -71
[ 1753.491976][T24034] cp210x 3-1:0.0: failed to get vendor val 0x3711 size 2: -71
[ 1753.506267][T24034] cp210x 3-1:0.0: GPIO initialisation failed: -71
[ 1753.526454][T24034] usb 3-1: cp210x converter now attached to ttyUSB0
[ 1753.563555][T24034] usb 3-1: USB disconnect, device number 14
[ 1753.601171][T24034] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1753.658431][T24034] cp210x 3-1:0.0: device disconnected
[ 1753.763720][T20096] loop3: detected capacity change from 0 to 16
[ 1753.814441][T20096] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1753.873057][T20096] erofs: (device loop3): erofs_fill_dentries: bogus dirent @ nid 36
[ 1753.899260][T20100] xt_TCPMSS: Only works on TCP SYN packets
[ 1754.378837][T20109] xt_CT: No such helper "snmp_trap"
[ 1754.428823][   T26] kauditd_printk_skb: 10 callbacks suppressed
[ 1754.428839][   T26] audit: type=1326 audit(2000000310.769:2508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20122 comm="syz.3.20783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1754.519194][   T26] audit: type=1326 audit(2000000310.769:2509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20122 comm="syz.3.20783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1754.611602][   T26] audit: type=1326 audit(2000000310.779:2510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20122 comm="syz.3.20783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1754.700865][   T26] audit: type=1326 audit(2000000310.779:2511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20122 comm="syz.3.20783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674738e969 code=0x7ffc0000
[ 1754.793772][T24034] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[ 1754.888000][T20148] loop3: detected capacity change from 0 to 256
[ 1754.988444][T24034] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1755.012894][T24034] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1755.051275][T24034] usb 6-1: Product: syz
[ 1755.056555][T24034] usb 6-1: Manufacturer: syz
[ 1755.074478][T24034] usb 6-1: SerialNumber: syz
[ 1755.100425][T24034] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1755.181931][T24034] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1755.370078][T20177] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1755.577056][T20188] netlink: 28 bytes leftover after parsing attributes in process `syz.4.20802'.
[ 1755.623847][ T8073] usb 6-1: USB disconnect, device number 37
[ 1755.982898][T20214] netlink: 12 bytes leftover after parsing attributes in process `syz.0.20811'.
[ 1756.018434][T20218] Cannot find del_set index 4 as target
[ 1756.038009][T20214] netlink: 12 bytes leftover after parsing attributes in process `syz.0.20811'.
[ 1756.251499][T24034] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[ 1756.258594][T24034] ath9k_htc: Failed to initialize the device
[ 1756.295366][ T8073] usb 6-1: ath9k_htc: USB layer deinitialized
[ 1756.692019][T20261] netlink: 32 bytes leftover after parsing attributes in process `syz.5.20826'.
[ 1756.745351][T20261] netlink: 9 bytes leftover after parsing attributes in process `syz.5.20826'.
[ 1756.794801][T20261] netlink: 9 bytes leftover after parsing attributes in process `syz.5.20826'.
[ 1756.804432][T20261] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[ 1756.862706][T20272] netlink: 156 bytes leftover after parsing attributes in process `syz.4.20830'.
[ 1758.021853][T20347] netlink: 8 bytes leftover after parsing attributes in process `syz.0.20855'.
[ 1758.092529][T20355] netlink: 'syz.3.20857': attribute type 9 has an invalid length.
[ 1758.133602][T20355] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.20857'.
[ 1758.417021][T20370] xt_CT: No such helper "syz0"
[ 1758.735791][T20400] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20870'.
[ 1758.766477][T20402] netlink: 3 bytes leftover after parsing attributes in process `syz.4.20869'.
[ 1758.809124][T20405] loop5: detected capacity change from 0 to 256
[ 1758.894994][T20405] FAT-fs (loop5): error, fat_free_clusters: deleting FAT entry beyond EOF
[ 1759.352647][T20428] loop5: detected capacity change from 0 to 8192
[ 1759.377341][T20428] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1759.390916][T20428] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[ 1759.400283][T20428] REISERFS (device loop5): using ordered data mode
[ 1759.407122][T20428] reiserfs: using flush barriers
[ 1759.413704][T20428] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1759.432273][T20428] REISERFS (device loop5): checking transaction log (loop5)
[ 1759.518193][T20428] REISERFS (device loop5): Using tea hash to sort names
[ 1759.530173][T20428] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[ 1760.293261][T20471] loop5: detected capacity change from 0 to 256
[ 1760.353370][T20471] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0x31e44978, utbl_chksum : 0xe619d30d)
[ 1760.611990][T20440] loop3: detected capacity change from 0 to 40427
[ 1760.636861][T20440] F2FS-fs (loop3): build fault injection attr: rate: 4, type: 0x3ffff
[ 1760.688923][T20440] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x4
[ 1760.746621][T20440] F2FS-fs (loop3): invalid crc value
[ 1760.779901][T20440] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of __get_meta_page+0x14e/0x300
[ 1760.826730][T20440] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x3e6/0x9b0
[ 1760.874097][T20440] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1760.975581][T20460] loop2: detected capacity change from 0 to 32768
[ 1761.001573][T20440] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x3e6/0x9b0
[ 1761.037734][T20440] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x3e6/0x9b0
[ 1761.069058][T20440] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of __get_meta_page+0x14e/0x300
[ 1761.097788][T20460] I/O error, dev loop14, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1761.145951][T20460] lbmIODone: I/O error in JFS log
[ 1761.168107][T20440] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1761.201490][T20460] *** Log Format Error ! ***
[ 1761.235485][T20460] lmLogInit: exit(-22)
[ 1761.255035][T20460] lmLogOpen: exit(-22)
[ 1761.315674][T20440] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of f2fs_get_read_data_page+0xe5/0x610
[ 1761.651262][ T4724] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of f2fs_grab_meta_page+0x63/0x210
[ 1761.937506][T20545] netlink: 'syz.5.20916': attribute type 1 has an invalid length.
[ 1762.215192][T20557] loop5: detected capacity change from 0 to 1024
[ 1762.419906][ T4812] hfsplus: b-tree write err: -5, ino 4
[ 1762.912226][ T6179] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1763.112630][ T6179] usb 3-1: Using ep0 maxpacket: 8
[ 1763.127040][ T6179] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1763.164882][ T6179] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1763.190902][ T6179] usb 3-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[ 1763.220970][ T6179] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1763.239441][ T6179] usb 3-1: Product: syz
[ 1763.243680][ T6179] usb 3-1: Manufacturer: syz
[ 1763.268960][ T6179] usb 3-1: SerialNumber: syz
[ 1763.289317][ T6179] usb 3-1: config 0 descriptor??
[ 1763.374652][T20578] loop3: detected capacity change from 0 to 32768
[ 1763.435386][T20578] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[ 1763.483899][T20578] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1763.636267][ T4724] ocfs2: Unmounting device (7,3) on (node local)
[ 1763.709594][T20648] loop4: detected capacity change from 0 to 128
[ 1763.720481][T24034] usb 3-1: USB disconnect, device number 15
[ 1763.786542][T20656] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1763.855874][T20656] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[ 1763.922247][T20656] overlayfs: missing 'lowerdir'
[ 1764.433246][T20694] loop4: detected capacity change from 0 to 256
[ 1764.456845][T20694] exfat: Deprecated parameter 'utf8'
[ 1764.495460][T20694] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[ 1764.875079][T20719] loop2: detected capacity change from 0 to 512
[ 1764.906782][T20724] netlink: 40 bytes leftover after parsing attributes in process `syz.3.20966'.
[ 1764.982693][T20719] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1764.991992][T20724] netlink: 40 bytes leftover after parsing attributes in process `syz.3.20966'.
[ 1765.018982][T20719] ext4 filesystem being mounted at /4194/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1765.225409][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1765.621023][T20771] netlink: 224 bytes leftover after parsing attributes in process `syz.4.20981'.
[ 1765.638226][T20771] netlink: 16 bytes leftover after parsing attributes in process `syz.4.20981'.
[ 1766.184675][T20803] afs: Bad value for 'source'
[ 1766.687451][  T128] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1766.874924][T20799] loop4: detected capacity change from 0 to 32768
[ 1766.893783][  T128] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1766.916242][  T128] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1766.970851][T20799] ERROR: (device loop4): dbAlloc: the hint is outside the map
[ 1766.970851][T20799] 
[ 1766.987840][  T128] usb 1-1: config 0 descriptor??
[ 1767.054055][T20799] ERROR: (device loop4): remounting filesystem as read-only
[ 1767.400750][  T128] ath6kl: Failed to submit usb control message: -71
[ 1767.407452][  T128] ath6kl: unable to send the bmi data to the device: -71
[ 1767.425324][  T128] ath6kl: Unable to send get target info: -71
[ 1767.459324][  T128] ath6kl: Failed to init ath6kl core: -71
[ 1767.617284][  T128] ath6kl_usb: probe of 1-1:0.0 failed with error -71
[ 1767.638028][  T128] usb 1-1: USB disconnect, device number 40
[ 1767.823366][T20833] loop5: detected capacity change from 0 to 32768
[ 1767.860934][T20833] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[ 1767.904407][T20833] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1768.155699][T24915] ocfs2: Unmounting device (7,5) on (node local)
[ 1768.442160][T20900] loop3: detected capacity change from 0 to 16
[ 1768.468995][T20900] erofs: (device loop3): erofs_superblock_csum_verify: invalid checksum 0x3e7468d6, 0x5438428d expected
[ 1768.526898][ T4828] udevd[4828]: incorrect erofs checksum on /dev/loop3
[ 1768.544446][T20900] CIFS mount error: No usable UNC path provided in device string!
[ 1768.544446][T20900] 
[ 1768.618506][T20900] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1768.719930][T20915] tmpfs: Bad value for 'mpol'
[ 1769.135897][T20937] netlink: 'syz.2.21031': attribute type 2 has an invalid length.
[ 1769.384764][T20963] tmpfs: Bad value for 'mpol'
[ 1769.589111][T20971] netlink: 'syz.2.21040': attribute type 9 has an invalid length.
[ 1770.312844][T21015] Zero length message leads to an empty skb
[ 1770.432751][T21014] loop2: detected capacity change from 0 to 2048
[ 1770.499879][T21014] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[ 1770.560032][T21014] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1771.876590][T21103] netlink: 156 bytes leftover after parsing attributes in process `syz.5.21084'.
[ 1772.155927][   T26] audit: type=1400 audit(2000000329.354:2512): apparmor="DENIED" operation="stack_onexec" info="label not found" error=-2 profile="unconfined" name=":(%#{//(@\)//&@},['%%&\#*" pid=21115 comm="syz.5.21088"
[ 1772.701581][T21149] netlink: 'syz.2.21098': attribute type 24 has an invalid length.
[ 1772.946312][T21164] loop4: detected capacity change from 0 to 1024
[ 1772.974682][T21161] loop5: detected capacity change from 0 to 4096
[ 1773.014171][T21161] ntfs3: loop5: Different NTFS' sector size (2048) and media sector size (512)
[ 1773.124951][T21161] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[ 1773.248273][T21183] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21108'.
[ 1773.379333][T24915] ntfs3: loop5: ntfs_evict_inode r=5 failed, -22.
[ 1773.642733][T21202] bond0: (slave gre0): Error: Device type is different from other slaves
[ 1773.722970][T21206] loop5: detected capacity change from 0 to 512
[ 1773.755657][T21206] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1773.785716][T21206] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1773.856386][T21206] EXT4-fs (loop5): 1 truncate cleaned up
[ 1773.879370][T21206] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1773.943476][T21206] EXT4-fs error (device loop5): ext4_search_dir:1549: inode #2: block 13: comm syz.5.21116: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=16, rec_len=0, size=1024 fake=0
[ 1773.972723][T21206] EXT4-fs (loop5): Remounting filesystem read-only
[ 1773.986738][T21223] loop2: detected capacity change from 0 to 2048
[ 1774.029819][T21223] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[ 1774.115829][T21223] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1774.162337][T24915] EXT4-fs (loop5): unmounting filesystem.
[ 1774.413328][T21246] loop5: detected capacity change from 0 to 64
[ 1774.962482][T21278] netlink: 'syz.4.21136': attribute type 21 has an invalid length.
[ 1775.014298][T21278] netlink: 164 bytes leftover after parsing attributes in process `syz.4.21136'.
[ 1775.832949][T21331] Timeout policy `syz0' can only be used by L3 protocol number 0
[ 1776.342899][T21371] netlink: 8 bytes leftover after parsing attributes in process `syz.3.21169'.
[ 1776.539224][ T6327] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[ 1776.557204][T21382] loop5: detected capacity change from 0 to 1024
[ 1776.751010][ T6327] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1776.774670][ T6327] usb 1-1: New USB device found, idVendor=0421, idProduct=026c, bcdDevice=1f.2f
[ 1776.794359][ T6327] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1776.822802][ T6327] usb 1-1: config 0 descriptor??
[ 1776.835348][ T1239] hfsplus: b-tree write err: -5, ino 4
[ 1776.843720][ T6327] usb 1-1: bad CDC descriptors
[ 1776.916751][ T6327] usb 1-1: bad CDC descriptors
[ 1777.042149][ T6327] usb 1-1: USB disconnect, device number 41
[ 1777.054969][T21415] loop4: detected capacity change from 0 to 2048
[ 1777.101654][T21415] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1777.170440][  T128] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[ 1777.323835][T21434] loop5: detected capacity change from 0 to 1024
[ 1777.371150][  T128] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1777.394983][  T128] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1777.464088][  T128] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1777.484835][  T128] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1777.501625][  T128] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1777.566308][  T128] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1777.603583][  T128] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1777.641284][  T128] usb 4-1: Product: syz
[ 1777.655284][  T128] usb 4-1: Manufacturer: syz
[ 1777.701452][  T128] cdc_wdm 4-1:1.0: skipping garbage
[ 1777.714202][  T128] cdc_wdm 4-1:1.0: skipping garbage
[ 1777.735405][  T128] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1777.746614][  T128] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1777.832220][T21471] usb usb8: usbfs: process 21471 (syz.5.21194) did not claim interface 4 before use
[ 1777.898912][T21406] cdc_wdm 4-1:1.0: Error submitting int urb - -90
[ 1777.922530][T24034] usb 4-1: USB disconnect, device number 36
[ 1778.207057][  T128] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[ 1778.379840][T21510] device veth1_macvtap left promiscuous mode
[ 1778.397369][  T128] usb 5-1: Using ep0 maxpacket: 32
[ 1778.404392][  T128] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[ 1778.433012][  T128] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1778.455039][  T128] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1778.469839][  T128] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1778.480030][  T128] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1778.493417][  T128] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1778.504746][  T128] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1778.559225][  T128] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1778.586581][  T128] usb 5-1: Product: syz
[ 1778.594834][  T128] usb 5-1: Manufacturer: syz
[ 1778.601990][  T128] usb 5-1: SerialNumber: syz
[ 1778.641382][  T128] usb 5-1: config 0 descriptor??
[ 1778.657720][  T128] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1778.722641][  T128] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1778.894657][T21482] ldusb 5-1:0.0: Couldn't submit interrupt_in_urb -90
[ 1778.918788][  T128] usb 5-1: USB disconnect, device number 63
[ 1778.933973][T21536] 9pnet: Could not find request transport: 0xffffffffffffffff
[ 1778.957479][  T128] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[ 1779.411282][T21577] netlink: 17 bytes leftover after parsing attributes in process `syz.2.21221'.
[ 1779.652095][T21592] __vm_enough_memory: pid: 21592, comm: syz.5.21226, no enough memory for the allocation
[ 1779.702039][T21594] netlink: 96 bytes leftover after parsing attributes in process `syz.0.21227'.
[ 1779.974833][T21612] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21233'.
[ 1780.056585][T21615] loop2: detected capacity change from 0 to 512
[ 1780.130863][T21615] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1780.151888][T21615] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[ 1780.162545][T21615] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[ 1780.172877][T21615] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.21234: Failed to acquire dquot type 1
[ 1780.190376][T21615] EXT4-fs (loop2): 1 truncate cleaned up
[ 1780.208885][T21615] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1780.405160][T21639] proc: Bad value for 'gid'
[ 1780.447285][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1780.587420][T21637] loop4: detected capacity change from 0 to 4096
[ 1780.670641][T21658] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1780.685090][T21637] ntfs3: loop4: ino=5, "/" attr_set_size
[ 1780.702071][T21637] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[ 1780.864435][T21653] xt_CT: No such helper "netbios-ns"
[ 1781.053039][T21669] loop4: detected capacity change from 0 to 4096
[ 1781.108643][T21669] EXT4-fs: Ignoring removed orlov option
[ 1781.125635][T21669] EXT4-fs: Ignoring removed nobh option
[ 1781.210583][T21687] netlink: 256 bytes leftover after parsing attributes in process `syz.0.21255'.
[ 1781.241269][T21669] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1781.391042][T21669] Quota error (device loop4): find_block_dqentry: Quota for id 0 referenced but not present
[ 1781.416956][T21669] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[ 1781.443398][T21669] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.21251: Failed to acquire dquot type 1
[ 1781.482913][T21694] loop2: detected capacity change from 0 to 4096
[ 1781.550807][T21694] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1781.610414][ T4727] EXT4-fs (loop4): unmounting filesystem.
[ 1781.627654][T21694] Quota error (device loop2): find_block_dqentry: Quota for id 0 referenced but not present
[ 1781.687846][T21694] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[ 1781.723634][T21694] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.21257: Failed to acquire dquot type 0
[ 1781.992416][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1782.912025][T21763] loop5: detected capacity change from 0 to 4096
[ 1782.966372][T21763] ntfs: (device loop5): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[ 1783.070525][T21763] ntfs: volume version 3.1.
[ 1783.559581][T21802] loop3: detected capacity change from 0 to 64
[ 1783.719800][T21809] loop2: detected capacity change from 0 to 4096
[ 1783.736299][T21809] ntfs3: loop2: Different NTFS' sector size (2048) and media sector size (512)
[ 1784.448087][T21857] loop4: detected capacity change from 0 to 64
[ 1784.637825][T21865] netlink: 6 bytes leftover after parsing attributes in process `syz.3.21315'.
[ 1784.739336][T21874] loop4: detected capacity change from 0 to 1024
[ 1784.898622][    T9] hfsplus: b-tree write err: -5, ino 4
[ 1784.972423][ T8073] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[ 1785.162904][ T8073] usb 3-1: Using ep0 maxpacket: 32
[ 1785.170765][ T8073] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[ 1785.187890][ T8073] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1785.230630][ T8073] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1785.258169][ T8073] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1785.270658][ T8073] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1785.270693][ T8073] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1785.329047][ T8073] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1785.339794][ T8073] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1785.351422][ T8073] usb 3-1: Product: syz
[ 1785.356048][ T8073] usb 3-1: Manufacturer: syz
[ 1785.360667][ T8073] usb 3-1: SerialNumber: syz
[ 1785.368850][T21910] loop5: detected capacity change from 0 to 128
[ 1785.392686][ T8073] usb 3-1: config 0 descriptor??
[ 1785.398525][ T8073] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1785.413658][ T8073] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1785.631540][T21873] ldusb 3-1:0.0: Couldn't submit interrupt_in_urb -90
[ 1785.640120][ T6179] usb 3-1: USB disconnect, device number 16
[ 1785.660040][ T6179] ldusb 3-1:0.0: LD USB Device #0 now disconnected
[ 1785.796922][T21946] loop4: detected capacity change from 0 to 8
[ 1785.967329][T21956] netlink: 24 bytes leftover after parsing attributes in process `syz.3.21340'.
[ 1786.261359][T21964] loop3: detected capacity change from 0 to 4096
[ 1786.313042][T21964] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[ 1786.609346][T21993] netlink: 8 bytes leftover after parsing attributes in process `syz.5.21350'.
[ 1787.429731][T22033] loop4: detected capacity change from 0 to 4096
[ 1787.451647][T22033] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[ 1787.520718][T22045] loop3: detected capacity change from 0 to 2048
[ 1787.542964][T22033] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1787.565121][T22045] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1787.608566][T22033] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[ 1787.647239][T22058] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1787.668055][T22033] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1787.720905][T22033] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1787.779722][T22033] ntfs: volume version 3.1.
[ 1787.797794][T22063] netlink: 'syz.0.21372': attribute type 1 has an invalid length.
[ 1787.847940][T22033] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[ 1787.878331][T22033] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 1787.939419][T22033] ntfs: (device loop4): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[ 1787.995991][T22033] ntfs: (device loop4): ntfs_read_locked_index_inode(): $INDEX_ROOT attribute is corrupt.
[ 1788.012170][T22033] ntfs: (device loop4): ntfs_read_locked_index_inode(): Failed with error code -5 while reading index inode (mft_no 0x18, name_len 2.
[ 1788.068298][T22074] netlink: 12 bytes leftover after parsing attributes in process `syz.0.21375'.
[ 1788.669876][  T128] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[ 1788.699134][T22113] lo speed is unknown, defaulting to 1000
[ 1788.881301][  T128] usb 6-1: Using ep0 maxpacket: 8
[ 1788.896545][  T128] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1788.952090][  T128] usb 6-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1788.984663][  T128] usb 6-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1788.992899][  T128] usb 6-1: Product: syz
[ 1789.015033][  T128] usb 6-1: Manufacturer: syz
[ 1789.024020][  T128] usb 6-1: SerialNumber: syz
[ 1789.035216][T22130] loop2: detected capacity change from 0 to 2048
[ 1789.101290][T22146] loop4: detected capacity change from 0 to 256
[ 1789.114707][T22130] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1789.138559][T22130] ext4 filesystem being mounted at /4283/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1789.163865][T22146] FAT-fs (loop4): Directory bread(block 64) failed
[ 1789.195953][T22146] FAT-fs (loop4): Directory bread(block 65) failed
[ 1789.202745][T22146] FAT-fs (loop4): Directory bread(block 66) failed
[ 1789.227269][T22146] FAT-fs (loop4): Directory bread(block 67) failed
[ 1789.234492][T22146] FAT-fs (loop4): Directory bread(block 68) failed
[ 1789.240780][  T128] usb 6-1: Handspring Visor / Palm OS: No valid connect info available
[ 1789.241053][T22146] FAT-fs (loop4): Directory bread(block 69) failed
[ 1789.256175][T22146] FAT-fs (loop4): Directory bread(block 70) failed
[ 1789.263445][T22146] FAT-fs (loop4): Directory bread(block 71) failed
[ 1789.270091][T22146] FAT-fs (loop4): Directory bread(block 72) failed
[ 1789.276828][  T128] usb 6-1: Handspring Visor / Palm OS: port 167, is for unknown use
[ 1789.276888][T22146] FAT-fs (loop4): Directory bread(block 73) failed
[ 1789.291951][ T6327] usb 1-1: new full-speed USB device number 42 using dummy_hcd
[ 1789.305040][  T128] usb 6-1: Handspring Visor / Palm OS: port 62, is for unknown use
[ 1789.333714][ T4718] EXT4-fs (loop2): unmounting filesystem.
[ 1789.334922][  T128] usb 6-1: Handspring Visor / Palm OS: Number of ports: 2
[ 1789.441699][  T128] usb 6-1: palm_os_3_probe - error -71 getting bytes available request
[ 1789.454104][  T128] visor 6-1:1.0: Handspring Visor / Palm OS converter detected
[ 1789.491954][  T128] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1789.510340][ T6327] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1789.524296][  T128] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1789.553281][ T6327] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1789.572715][  T128] usb 6-1: USB disconnect, device number 38
[ 1789.575870][ T6327] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[ 1789.616044][  T128] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1789.638957][ T6327] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1789.641643][  T128] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1789.662951][ T6327] usb 1-1: SerialNumber: syz
[ 1789.697623][ T6327] usb 1-1: 0:2 : does not exist
[ 1789.702387][  T128] visor 6-1:1.0: device disconnected
[ 1790.109027][ T6327] usb 1-1: USB disconnect, device number 42
[ 1790.337004][T22236] loop5: detected capacity change from 0 to 512
[ 1790.384404][T22239] loop3: detected capacity change from 0 to 8
[ 1790.394783][T22236] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1790.421606][T22236] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1790.489336][T22239] SQUASHFS error: Failed to read block 0x106: -5
[ 1790.507509][T22236] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1790.521345][T22247] netlink: 160 bytes leftover after parsing attributes in process `syz.4.21414'.
[ 1790.540171][T22236] EXT4-fs (loop5): 1 truncate cleaned up
[ 1790.545998][T22236] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1790.773213][T24915] EXT4-fs (loop5): unmounting filesystem.
[ 1790.828299][T22263] loop2: detected capacity change from 0 to 164
[ 1790.864201][T22263] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet.
[ 1791.307969][T22288] netlink: 'syz.4.21428': attribute type 9 has an invalid length.
[ 1791.425343][T22295] random: crng reseeded on system resumption
[ 1791.508039][T22300] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[ 1792.060084][T22335] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1792.067426][T22335] IPv6: NLM_F_CREATE should be set when creating new route
[ 1792.074819][T22335] IPv6: NLM_F_CREATE should be set when creating new route
[ 1792.098706][T22337] deleting an unspecified loop device is not supported.
[ 1792.242520][T22345] loop4: detected capacity change from 0 to 256
[ 1792.306044][ T6327] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[ 1792.323815][T22345] FAT-fs (loop4): Directory bread(block 64) failed
[ 1792.338922][T22345] FAT-fs (loop4): Directory bread(block 65) failed
[ 1792.361213][T22345] FAT-fs (loop4): Directory bread(block 66) failed
[ 1792.387386][T22345] FAT-fs (loop4): Directory bread(block 67) failed
[ 1792.404027][T22345] FAT-fs (loop4): Directory bread(block 68) failed
[ 1792.424873][T22345] FAT-fs (loop4): Directory bread(block 69) failed
[ 1792.431568][T22345] FAT-fs (loop4): Directory bread(block 70) failed
[ 1792.453724][T22345] FAT-fs (loop4): Directory bread(block 71) failed
[ 1792.468223][T22345] FAT-fs (loop4): Directory bread(block 72) failed
[ 1792.475156][T22345] FAT-fs (loop4): Directory bread(block 73) failed
[ 1792.510286][ T6327] usb 6-1: Using ep0 maxpacket: 32
[ 1792.517708][ T6327] usb 6-1: config 0 has an invalid interface number: 183 but max is 0
[ 1792.543825][ T6327] usb 6-1: config 0 has no interface number 0
[ 1792.553657][ T6327] usb 6-1: config 0 interface 183 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 528
[ 1792.558807][T22358] loop2: detected capacity change from 0 to 64
[ 1792.576733][ T6327] usb 6-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=70.f8
[ 1792.634515][ T6327] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1792.659220][ T6327] usb 6-1: Product: syz
[ 1792.672428][ T6327] usb 6-1: Manufacturer: syz
[ 1792.677123][ T6327] usb 6-1: SerialNumber: syz
[ 1792.712528][ T6327] usb 6-1: config 0 descriptor??
[ 1792.729499][T22309] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1792.973824][T22309] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1793.011641][ T6327] net1080 6-1:0.183 usb0: register 'net1080' at usb-dummy_hcd.5-1, NetChip TurboCONNECT, 56:36:ff:02:d2:8a
[ 1793.237134][ T6179] usb 6-1: USB disconnect, device number 39
[ 1793.243992][ T6179] net1080 6-1:0.183 usb0: unregister 'net1080' usb-dummy_hcd.5-1, NetChip TurboCONNECT
[ 1793.415810][ T6327] usb 5-1: new full-speed USB device number 64 using dummy_hcd
[ 1793.627471][ T6327] usb 5-1: config 0 has an invalid interface number: 72 but max is 0
[ 1793.641003][ T6327] usb 5-1: config 0 has no interface number 0
[ 1793.653807][ T6327] usb 5-1: too many endpoints for config 0 interface 72 altsetting 65: 192, using maximum allowed: 30
[ 1793.682873][ T6327] usb 5-1: config 0 interface 72 altsetting 65 has 0 endpoint descriptors, different from the interface descriptor's value: 192
[ 1793.706058][ T6327] usb 5-1: config 0 interface 72 has no altsetting 0
[ 1793.721338][ T6327] usb 5-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[ 1793.747197][ T6327] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1793.768158][ T6327] usb 5-1: config 0 descriptor??
[ 1794.002583][ T6327] usb 5-1: USB disconnect, device number 64
[ 1794.479097][T22478] loop5: detected capacity change from 0 to 4096
[ 1794.495167][T22481] netlink: 24 bytes leftover after parsing attributes in process `syz.0.21480'.
[ 1794.516891][T22478] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[ 1794.596433][T22478] ntfs3: loop5: failed to convert "c46c" to iso8859-1
[ 1794.772109][T22494] loop2: detected capacity change from 0 to 256
[ 1794.832720][T22494] FAT-fs (loop2): error, clusters badly computed (0 != 128)
[ 1794.851704][T22494] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[ 1795.016667][T22505] netlink: 24 bytes leftover after parsing attributes in process `syz.4.21486'.
[ 1795.408780][T22529] netlink: 996 bytes leftover after parsing attributes in process `syz.5.21492'.
[ 1795.435453][T22534] loop4: detected capacity change from 0 to 1024
[ 1795.448118][T22533] device ip6gretap3 entered promiscuous mode
[ 1795.567175][T22540] siw: device registration error -23
[ 1795.651976][ T4812] hfsplus: b-tree write err: -5, ino 4
[ 1796.761244][T22597] netlink: 'syz.5.21511': attribute type 10 has an invalid length.
[ 1796.763225][T22597] team0: Device ipvlan1 failed to register rx_handler
[ 1797.139494][T22616] cifs: Unknown parameter '�[���b����IT�&��:���"����1:���ӭ'�4,�Zz-#F�<��]%gC��
[ 1797.139494][T22616] S�Ș�ȞZ�6��'
[ 1797.559085][T22638] netlink: 16 bytes leftover after parsing attributes in process `syz.5.21527'.
[ 1797.639795][T22644] overlayfs: conflicting options: metacopy=on,redirect_dir=follow
[ 1797.929632][T22663] netlink: 12 bytes leftover after parsing attributes in process `syz.5.21536'.
[ 1798.526622][T22699] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[ 1799.869794][ T6179] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[ 1800.063759][ T6179] usb 6-1: New USB device found, idVendor=0c45, idProduct=60a8, bcdDevice=b5.55
[ 1800.102114][ T6179] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1800.111955][ T6179] usb 6-1: Product: syz
[ 1800.139942][ T6179] usb 6-1: Manufacturer: syz
[ 1800.144886][ T6179] usb 6-1: SerialNumber: syz
[ 1800.151672][ T6179] usb 6-1: config 0 descriptor??
[ 1800.164078][T22790] loop2: detected capacity change from 0 to 4096
[ 1800.186550][ T6179] gspca_main: sonixb-2.14.0 probing 0c45:60a8
[ 1800.189710][T22790] __ntfs_warning: 9 callbacks suppressed
[ 1800.189725][T22790] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 1800.219136][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1800.267272][T22790] ntfs: (device loop2): read_ntfs_boot_sector(): Primary boot sector is invalid.
[ 1800.280860][T22790] ntfs: (device loop2): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy.
[ 1800.333328][T22790] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[ 1800.347308][T22790] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[ 1800.372228][T22790] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[ 1800.414878][T22790] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5).
[ 1800.462513][T22790] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[ 1800.483946][T22790] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[ 1800.557240][T22790] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[ 1800.576890][ T6179] sonixb 6-1:0.0: Error writing register 01: -71
[ 1800.589466][ T6179] sonixb: probe of 6-1:0.0 failed with error -71
[ 1800.608143][ T6179] usb 6-1: USB disconnect, device number 40
[ 1800.653039][T22790] ntfs: volume version 3.1.
[ 1801.266653][T22837] loop4: detected capacity change from 0 to 164
[ 1801.504210][T22848] ubi31: attaching mtd0
[ 1801.547759][T22848] ubi31: scanning is finished
[ 1801.552545][T22848] ubi31: empty MTD device detected
[ 1801.706406][T22848] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1801.714022][T22848] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1801.751837][T22848] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1801.759522][ T4735] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[ 1801.777325][T22848] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1801.796799][T22848] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1801.826085][T22848] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1801.836001][  T128] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[ 1801.854077][T22848] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1435413891
[ 1801.894165][T22848] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1801.937777][T22860] ubi31: background thread "ubi_bgt31d" started, PID 22860
[ 1801.954581][ T4735] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1801.994604][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1801.995924][ T4735] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1802.015262][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1802.025507][  T128] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1802.041965][  T128] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1802.062225][ T4735] usb 5-1: Product: syz
[ 1802.066460][ T4735] usb 5-1: Manufacturer: syz
[ 1802.072958][  T128] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1802.091900][ T4735] usb 5-1: SerialNumber: syz
[ 1802.096928][  T128] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1802.124817][  T128] usb 6-1: Manufacturer: syz
[ 1802.131732][ T4735] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1802.158240][  T128] usb 6-1: config 0 descriptor??
[ 1802.219782][ T4735] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1802.382631][  T128] rc_core: IR keymap rc-hauppauge not found
[ 1802.390543][  T128] Registered IR keymap rc-empty
[ 1802.410319][  T128] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[ 1802.448115][  T128] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input144
[ 1802.464438][    C0] igorplugusb 6-1:0.0: Error: urb status = -32
[ 1802.483409][  T128] usb 6-1: USB disconnect, device number 41
[ 1802.682447][ T6179] usb 5-1: USB disconnect, device number 65
[ 1803.212017][ T4735] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[ 1803.219182][ T4735] ath9k_htc: Failed to initialize the device
[ 1803.259913][ T6179] usb 5-1: ath9k_htc: USB layer deinitialized
[ 1803.285585][T22951] SET target dimension over the limit!
[ 1803.597472][T22973] loop2: detected capacity change from 0 to 128
[ 1804.169753][T23006] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21640'.
[ 1804.603647][ T6179] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[ 1804.661497][T23039] netlink: 'syz.4.21649': attribute type 2 has an invalid length.
[ 1804.680544][T23039] netlink: 'syz.4.21649': attribute type 1 has an invalid length.
[ 1804.717977][T23043] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21651'.
[ 1804.789624][ T6179] usb 3-1: Using ep0 maxpacket: 32
[ 1804.798866][ T6179] usb 3-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=81.9b
[ 1804.828113][ T6179] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1804.857544][ T6179] usb 3-1: Product: syz
[ 1804.867441][ T6179] usb 3-1: Manufacturer: syz
[ 1804.877347][ T6179] usb 3-1: SerialNumber: syz
[ 1804.943916][T23056] loop4: detected capacity change from 0 to 256
[ 1804.987026][T23056] UBIFS error (pid: 23056): cannot open "ubifs", error -22
[ 1805.096946][ T6179] visor 3-1:1.0: Handspring Visor / Palm OS converter detected
[ 1805.135124][ T6179] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1805.171396][ T6179] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1805.333363][ T6179] usb 3-1: USB disconnect, device number 17
[ 1805.352105][ T6179] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1805.372353][T23085] netlink: 48 bytes leftover after parsing attributes in process `syz.0.21663'.
[ 1805.388680][ T6179] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1805.416427][ T6179] visor 3-1:1.0: device disconnected
[ 1805.857222][T23123] netlink: 20 bytes leftover after parsing attributes in process `syz.0.21681'.
[ 1806.255393][T18781] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1806.270082][T18781] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1806.289487][T18781] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1806.297411][T18781] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1806.305522][T18781] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1806.313158][T18781] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1806.431793][T23140] lo speed is unknown, defaulting to 1000
[ 1806.460867][ T4735] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[ 1806.593237][T23118] loop5: detected capacity change from 0 to 32768
[ 1806.624123][T23118] (syz.5.21671,23118,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1806.638040][T23161] netlink: 'syz.0.21679': attribute type 1 has an invalid length.
[ 1806.646355][ T4735] usb 3-1: Using ep0 maxpacket: 32
[ 1806.660389][T23118] (syz.5.21671,23118,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1806.682277][T23161] netlink: 'syz.0.21679': attribute type 2 has an invalid length.
[ 1806.691939][ T4735] usb 3-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[ 1806.717824][ T4735] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1806.743948][ T4735] usb 3-1: Product: syz
[ 1806.758979][ T4735] usb 3-1: Manufacturer: syz
[ 1806.763637][ T4735] usb 3-1: SerialNumber: syz
[ 1806.780164][T23118] JBD2: Ignoring recovery information on journal
[ 1806.786844][ T4735] usb 3-1: config 0 descriptor??
[ 1806.836290][T23118] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1806.958201][T23118] ocfs2: Unmounting device (7,5) on (node local)
[ 1807.001896][ T4735] RobotFuzz Open Source InterFace, OSIF 3-1:0.0: version d4.15 found at bus 003 address 018
[ 1807.071171][T23177] netlink: 4 bytes leftover after parsing attributes in process `syz.4.21683'.
[ 1807.212301][ T6179] usb 3-1: USB disconnect, device number 18
[ 1807.219499][T23184] loop5: detected capacity change from 0 to 512
[ 1807.317511][T23220] netlink: 194488 bytes leftover after parsing attributes in process `syz.4.21686'.
[ 1807.378278][T23184] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1807.394233][T23184] ext4 filesystem being mounted at /2481/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1807.533187][T24915] EXT4-fs (loop5): unmounting filesystem.
[ 1807.571216][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1807.673407][T23140] chnl_net:caif_netlink_parms(): no params data found
[ 1807.754801][T23140] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1807.764212][T23140] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1807.772950][T23140] device bridge_slave_0 entered promiscuous mode
[ 1807.781987][T23140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1807.789879][T23140] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1807.798567][T23140] device bridge_slave_1 entered promiscuous mode
[ 1807.838547][T23140] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1807.851504][T23140] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1807.899873][T23140] team0: Port device team_slave_0 added
[ 1807.912083][T23140] team0: Port device team_slave_1 added
[ 1807.941786][T23140] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1807.949583][T23140] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1807.977666][T23140] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1807.989892][T23140] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1807.996974][T23140] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1808.023287][T23140] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1808.071132][T23140] device hsr_slave_0 entered promiscuous mode
[ 1808.079019][T23140] device hsr_slave_1 entered promiscuous mode
[ 1808.086205][T23140] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1808.096644][T23140] Cannot create hsr debugfs directory
[ 1808.265393][T23140] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1808.275546][T23140] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1808.286437][T23140] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1808.297062][T23140] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1808.319887][T23140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1808.327005][T23140] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1808.329121][T18781] Bluetooth: hci5: command 0x0409 tx timeout
[ 1808.334424][T23140] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1808.348204][T23140] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1808.406140][T23140] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1808.420014][T16126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1808.431704][T16126] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1808.440464][T16126] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1808.450355][T16126] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1808.470477][T23140] 8021q: adding VLAN 0 to HW filter on device team0
[ 1808.482502][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1808.492105][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1808.503083][ T4812] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1808.510202][ T4812] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1808.528967][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1808.537962][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1808.547452][ T4812] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1808.554644][ T4812] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1808.562775][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1808.573661][   T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1808.586589][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1808.598078][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1808.615516][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1808.625396][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1808.634879][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1808.644372][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1808.653664][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1808.665010][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1808.673948][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1808.685866][T23140] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1808.889572][T16126] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1808.897312][T16126] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1808.911224][T23140] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1809.200420][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1809.209745][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1809.227298][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1809.237695][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1809.248999][   T36] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1809.263455][   T36] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1809.274090][T23140] device veth0_vlan entered promiscuous mode
[ 1809.286952][T23140] device veth1_vlan entered promiscuous mode
[ 1809.308027][   T36] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1809.318335][   T36] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1809.327495][   T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1809.336908][   T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1809.348068][T23140] device veth0_macvtap entered promiscuous mode
[ 1809.359770][T23140] device veth1_macvtap entered promiscuous mode
[ 1809.375852][T23140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1809.389140][T23140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1809.401183][T23140] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1809.412460][T23140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1809.423150][T23140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1809.434207][T23140] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1809.441904][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1809.450480][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1809.461708][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1809.478796][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1809.487892][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1809.497328][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1809.508893][T23140] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1809.518567][T23140] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1809.527419][T23140] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1809.536289][T23140] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1809.633174][T16126] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1809.644221][T16126] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1809.659665][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1809.688958][T16126] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1809.700160][T16126] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1809.714119][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1810.304112][T18781] Bluetooth: hci5: command 0x041b tx timeout
[ 1812.283737][ T4678] Bluetooth: hci5: command 0x040f tx timeout
[ 1814.266225][ T4678] Bluetooth: hci5: command 0x0419 tx timeout
[ 1860.543334][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1860.549943][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1919.089705][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1919.095996][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1925.948635][T18781] Bluetooth: hci5: command 0x0406 tx timeout
[ 1933.725852][   T27] INFO: task syz-executor:4724 blocked for more than 143 seconds.
[ 1933.734077][   T27]       Not tainted 6.1.140-syzkaller #0
[ 1933.739731][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1933.748578][   T27] task:syz-executor    state:D stack:22048 pid:4724  ppid:1      flags:0x00004004
[ 1933.757887][   T27] Call Trace:
[ 1933.761214][   T27]  <TASK>
[ 1933.764422][   T27]  __schedule+0x10e9/0x40d0
[ 1933.768987][   T27]  ? release_firmware_map_entry+0x18a/0x18a
[ 1933.774952][   T27]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1933.781026][   T27]  ? lock_chain_count+0x20/0x20
[ 1933.785915][   T27]  ? _raw_spin_lock_irq+0xab/0xe0
[ 1933.791129][   T27]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 1933.796565][   T27]  schedule+0xb9/0x180
[ 1933.800705][   T27]  io_schedule+0x7c/0xd0
[ 1933.804995][   T27]  folio_wait_bit_common+0x6e1/0xf60
[ 1933.810500][   T27]  ? folio_wait_bit+0x30/0x30
[ 1933.815222][   T27]  ? migration_entry_wait_on_locked+0xe50/0xe50
[ 1933.821626][   T27]  ? folio_mapping+0x1ba/0x4d0
[ 1933.826471][   T27]  truncate_inode_pages_range+0x9a2/0xff0
[ 1933.832387][   T27]  ? mapping_evict_folio+0x520/0x520
[ 1933.837744][   T27]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1933.843839][   T27]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1933.849264][   T27]  ? lockdep_hardirqs_on+0x94/0x140
[ 1933.854517][   T27]  evict+0x498/0x870
[ 1933.858605][   T27]  ? proc_nr_inodes+0x2f0/0x2f0
[ 1933.863543][   T27]  ? do_raw_spin_unlock+0x11d/0x230
[ 1933.869032][   T27]  ? _raw_spin_unlock+0x24/0x40
[ 1933.873953][   T27]  ? do_raw_spin_unlock+0x11d/0x230
[ 1933.879298][   T27]  evict_inodes+0x604/0x690
[ 1933.883883][   T27]  ? clear_inode+0x150/0x150
[ 1933.894093][   T27]  ? dput+0x1c9/0x1d0
[ 1933.900267][   T27]  ? sync_filesystem+0x103/0x220
[ 1933.905291][   T27]  generic_shutdown_super+0x93/0x340
[ 1933.910606][   T27]  kill_block_super+0x7c/0xe0
[ 1933.916446][   T27]  deactivate_locked_super+0x93/0xf0
[ 1933.921788][   T27]  cleanup_mnt+0x463/0x4f0
[ 1933.927127][   T27]  ? lockdep_hardirqs_on+0x94/0x140
[ 1933.932368][   T27]  task_work_run+0x1ca/0x250
[ 1933.937088][   T27]  ? task_work_cancel+0x230/0x230
[ 1933.942251][   T27]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1933.948072][   T27]  exit_to_user_mode_loop+0xe6/0x110
[ 1933.953845][   T27]  exit_to_user_mode_prepare+0xb1/0x140
[ 1933.959427][   T27]  syscall_exit_to_user_mode+0x16/0x40
[ 1933.965104][   T27]  do_syscall_64+0x58/0xa0
[ 1933.969588][   T27]  ? clear_bhb_loop+0x60/0xb0
[ 1933.974522][   T27]  ? clear_bhb_loop+0x60/0xb0
[ 1933.979228][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1933.985360][   T27] RIP: 0033:0x7f674738fc97
[ 1933.989803][   T27] RSP: 002b:00007fff76185918 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1933.998349][   T27] RAX: 0000000000000000 RBX: 00007f674741089d RCX: 00007f674738fc97
[ 1934.006476][   T27] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff761859d0
[ 1934.014523][   T27] RBP: 00007fff761859d0 R08: 0000000000000000 R09: 0000000000000000
[ 1934.022677][   T27] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff76186a60
[ 1934.030909][   T27] R13: 00007f674741089d R14: 00000000001c19d4 R15: 00007fff76186aa0
[ 1934.039033][   T27]  </TASK>
[ 1934.042182][   T27] 
[ 1934.042182][   T27] Showing all locks held in the system:
[ 1934.050005][   T27] 1 lock held by rcu_tasks_kthre/12:
[ 1934.055298][   T27]  #0: ffffffff8c92b4b0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[ 1934.066064][   T27] 1 lock held by rcu_tasks_trace/13:
[ 1934.071955][   T27]  #0: ffffffff8c92bcd0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[ 1934.083642][   T27] 1 lock held by khungtaskd/27:
[ 1934.089916][   T27]  #0: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[ 1934.100004][   T27] 1 lock held by syslogd/3605:
[ 1934.104781][   T27]  #0: ffff8880b8e3aa58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140
[ 1934.117174][   T27] 2 locks held by getty/4015:
[ 1934.121903][   T27]  #0: ffff888030152098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[ 1934.133383][   T27]  #1: ffffc9000325e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41b/0x1380
[ 1934.143757][   T27] 1 lock held by syz-executor/4724:
[ 1934.149030][   T27]  #0: ffff888079ff80e0 (&type->s_umount_key#104){+.+.}-{3:3}, at: deactivate_super+0xa0/0xd0
[ 1934.159519][   T27] 
[ 1934.161871][   T27] =============================================
[ 1934.161871][   T27] 
[ 1934.170571][   T27] NMI backtrace for cpu 1
[ 1934.174931][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.1.140-syzkaller #0
[ 1934.182849][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1934.192916][   T27] Call Trace:
[ 1934.196197][   T27]  <TASK>
[ 1934.199129][   T27]  dump_stack_lvl+0x168/0x22e
[ 1934.203823][   T27]  ? irq_work_queue+0xb8/0x140
[ 1934.208597][   T27]  ? show_regs_print_info+0x12/0x12
[ 1934.213801][   T27]  ? load_image+0x3b0/0x3b0
[ 1934.218299][   T27]  ? vprintk_emit+0x571/0x680
[ 1934.222984][   T27]  ? printk_sprint+0x460/0x460
[ 1934.227757][   T27]  nmi_cpu_backtrace+0x3f4/0x470
[ 1934.232700][   T27]  ? nmi_trigger_cpumask_backtrace+0x450/0x450
[ 1934.238862][   T27]  ? _printk+0xcc/0x110
[ 1934.243030][   T27]  ? load_image+0x3b0/0x3b0
[ 1934.247530][   T27]  ? load_image+0x3b0/0x3b0
[ 1934.252034][   T27]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 1934.258119][   T27]  nmi_trigger_cpumask_backtrace+0x1d4/0x450
[ 1934.264133][   T27]  watchdog+0xeee/0xf30
[ 1934.268313][   T27]  ? watchdog+0x1ed/0xf30
[ 1934.272666][   T27]  kthread+0x29d/0x330
[ 1934.276756][   T27]  ? hungtask_pm_notify+0x40/0x40
[ 1934.281788][   T27]  ? kthread_blkcg+0xd0/0xd0
[ 1934.286386][   T27]  ret_from_fork+0x1f/0x30
[ 1934.290813][   T27]  </TASK>
[ 1934.293880][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1934.300291][   T27] Sending NMI from CPU 1 to CPUs 0:
[ 1934.305598][    C0] NMI backtrace for cpu 0
[ 1934.305609][    C0] CPU: 0 PID: 36 Comm: kworker/u4:2 Not tainted 6.1.140-syzkaller #0
[ 1934.305626][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1934.305636][    C0] Workqueue: bat_events batadv_nc_worker
[ 1934.305658][    C0] RIP: 0010:kasan_check_range+0x3a/0x290
[ 1934.305686][    C0] Code: 49 89 f8 49 01 f0 0f 82 57 02 00 00 49 89 f8 49 c1 e8 2f 41 81 f8 ff ff 01 00 0f 82 43 02 00 00 49 bf 01 00 00 00 00 fc ff df <49> 89 fb 49 c1 eb 03 49 b8 00 00 00 00 00 fc ff df 4f 8d 0c 03 48
[ 1934.305700][    C0] RSP: 0018:ffffc90000007740 EFLAGS: 00000046
[ 1934.305713][    C0] RAX: 0000000000000001 RBX: ffff88801c2c0000 RCX: ffffffff8163a284
[ 1934.305725][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff908b8240
[ 1934.305735][    C0] RBP: 0000000000000004 R08: 000000000001ffff R09: fffffbfff211704a
[ 1934.305746][    C0] R10: fffffbfff211704a R11: 1ffffffff2117049 R12: 0000000000000010
[ 1934.305758][    C0] R13: dffffc0000000000 R14: ffff88801c2c0b80 R15: dffffc0000000001
[ 1934.305770][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1934.305784][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1934.305795][    C0] CR2: 00007f2da1f736c8 CR3: 000000000c68e000 CR4: 00000000003506f0
[ 1934.305809][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1934.305818][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1934.305828][    C0] Call Trace:
[ 1934.305833][    C0]  <IRQ>
[ 1934.305840][    C0]  mark_lock+0x94/0x320
[ 1934.305864][    C0]  __lock_acquire+0xc69/0x7c50
[ 1934.305885][    C0]  ? __lock_acquire+0x13c0/0x7c50
[ 1934.305906][    C0]  ? mark_lock+0x94/0x320
[ 1934.305932][    C0]  ? verify_lock_unused+0x140/0x140
[ 1934.305955][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1934.305977][    C0]  ? verify_lock_unused+0x140/0x140
[ 1934.305998][    C0]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[ 1934.306023][    C0]  lock_acquire+0x1b4/0x490
[ 1934.306042][    C0]  ? debug_object_deactivate+0x63/0x340
[ 1934.306065][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 1934.306090][    C0]  _raw_spin_lock_irqsave+0xa4/0xf0
[ 1934.306112][    C0]  ? debug_object_deactivate+0x63/0x340
[ 1934.306130][    C0]  ? _raw_spin_lock+0x40/0x40
[ 1934.306154][    C0]  debug_object_deactivate+0x63/0x340
[ 1934.306176][    C0]  detach_timer+0x30/0x350
[ 1934.306192][    C0]  __run_timers+0x4ab/0x7c0
[ 1934.306211][    C0]  ? detach_timer+0x350/0x350
[ 1934.306227][    C0]  ? lock_chain_count+0x20/0x20
[ 1934.306246][    C0]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[ 1934.306266][    C0]  run_timer_softirq+0x63/0xf0
[ 1934.306291][    C0]  handle_softirqs+0x2a1/0x920
[ 1934.306317][    C0]  ? __irq_exit_rcu+0x12f/0x220
[ 1934.306342][    C0]  ? do_softirq+0x200/0x200
[ 1934.306368][    C0]  __irq_exit_rcu+0x12f/0x220
[ 1934.306391][    C0]  ? irq_exit_rcu+0x20/0x20
[ 1934.306418][    C0]  irq_exit_rcu+0x5/0x20
[ 1934.306439][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[ 1934.306481][    C0]  </IRQ>
[ 1934.306485][    C0]  <TASK>
[ 1934.306490][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1934.306505][    C0] RIP: 0010:lock_acquire+0x20f/0x490
[ 1934.306524][    C0] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f5 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 44 3d 00 00 00 00 00 66 43 c7 44 3d 09 00 00 43 c6 44 3d 0b
[ 1934.306536][    C0] RSP: 0018:ffffc90000ad7a40 EFLAGS: 00000206
[ 1934.306547][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0056a8370730e800
[ 1934.306556][    C0] RDX: 0000000000000000 RSI: ffffffff8a6c1180 RDI: ffffffff8abf1260
[ 1934.306567][    C0] RBP: ffffc90000ad7b58 R08: dffffc0000000000 R09: fffffbfff2117049
[ 1934.306578][    C0] R10: fffffbfff2117049 R11: 1ffffffff2117048 R12: 0000000000000000
[ 1934.306588][    C0] R13: 1ffff9200015af54 R14: 0000000000000246 R15: dffffc0000000000
[ 1934.306607][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 1934.306628][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[ 1934.306650][    C0]  ? batadv_nc_purge_paths+0x316/0x3b0
[ 1934.306666][    C0]  ? batadv_nc_to_purge_nc_path_coding+0x120/0x120
[ 1934.306683][    C0]  ? batadv_nc_fwd_flush+0x330/0x330
[ 1934.306699][    C0]  ? batadv_nc_fwd_flush+0x330/0x330
[ 1934.306716][    C0]  batadv_nc_process_nc_paths+0xdb/0x390
[ 1934.306732][    C0]  ? batadv_nc_process_nc_paths+0xba/0x390
[ 1934.306750][    C0]  ? batadv_nc_process_nc_paths+0xba/0x390
[ 1934.306768][    C0]  batadv_nc_worker+0x527/0x600
[ 1934.306785][    C0]  ? process_one_work+0x7a1/0x1160
[ 1934.306800][    C0]  process_one_work+0x898/0x1160
[ 1934.306820][    C0]  ? worker_detach_from_pool+0x240/0x240
[ 1934.306837][    C0]  ? _raw_spin_lock_irq+0xab/0xe0
[ 1934.306857][    C0]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 1934.306877][    C0]  ? kthread_data+0x4b/0xc0
[ 1934.306899][    C0]  worker_thread+0xaa2/0x1250
[ 1934.306923][    C0]  kthread+0x29d/0x330
[ 1934.306943][    C0]  ? worker_clr_flags+0x1a0/0x1a0
[ 1934.306957][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1934.306979][    C0]  ret_from_fork+0x1f/0x30
[ 1934.307003][    C0]  </TASK>
[ 1934.307723][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[ 1934.791653][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.1.140-syzkaller #0
[ 1934.799543][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1934.809597][   T27] Call Trace:
[ 1934.812870][   T27]  <TASK>
[ 1934.815797][   T27]  dump_stack_lvl+0x168/0x22e
[ 1934.820480][   T27]  ? memcpy+0x3c/0x60
[ 1934.824462][   T27]  ? show_regs_print_info+0x12/0x12
[ 1934.829671][   T27]  ? load_image+0x3b0/0x3b0
[ 1934.834183][   T27]  panic+0x2c9/0x710
[ 1934.838084][   T27]  ? schedule_preempt_disabled+0x20/0x20
[ 1934.843714][   T27]  ? bpf_jit_dump+0xd0/0xd0
[ 1934.848259][   T27]  ? __irq_work_queue_local+0x12c/0x190
[ 1934.853814][   T27]  ? nmi_trigger_cpumask_backtrace+0x35b/0x450
[ 1934.859969][   T27]  ? nmi_trigger_cpumask_backtrace+0x360/0x450
[ 1934.866123][   T27]  watchdog+0xf2d/0xf30
[ 1934.870285][   T27]  ? watchdog+0x1ed/0xf30
[ 1934.874618][   T27]  kthread+0x29d/0x330
[ 1934.878697][   T27]  ? hungtask_pm_notify+0x40/0x40
[ 1934.883718][   T27]  ? kthread_blkcg+0xd0/0xd0
[ 1934.888312][   T27]  ret_from_fork+0x1f/0x30
[ 1934.892740][   T27]  </TASK>
[ 1934.896058][   T27] Kernel Offset: disabled
[ 1934.900380][   T27] Rebooting in 86400 seconds..