last executing test programs:

3m30.567959238s ago: executing program 0 (id=712):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
r1 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @dev}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000480)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}})

3m30.279293313s ago: executing program 0 (id=713):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)={0x2, 0x0, [{0x5000, 0xd5, &(0x7f0000000200)=""/213}, {0x4, 0x3b, &(0x7f0000000100)=""/59}]})
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f00000003c0)={0x1})

3m29.896340098s ago: executing program 0 (id=716):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x1c, 0x15, 0x200, 0x70bd28, 0x25dfdbfd, {0x11}, [@typed={0x8, 0x142, 0x0, 0x0, @u32=0x61}]}, 0x1c}, 0x1, 0x0, 0x0, 0x14048005}, 0x4040)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="2d000e0080000000ffffffffffff08021100000008021100000000000000000000000000640000002503000000000000080026006c09"], 0x80}}, 0x0)

3m29.687327316s ago: executing program 0 (id=717):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000a40)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@resuid={'resuid', 0x3d, 0xee01}}]}, 0x2, 0x44a, &(0x7f0000000400)="$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")
mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x1000040, &(0x7f0000000140)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000240)='./file0\x00')
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)

3m28.611711289s ago: executing program 0 (id=722):
r0 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat(r1, &(0x7f0000000340)='.\x00', 0x0, 0x131)
lseek(r2, 0x1, 0x1)

3m27.558416787s ago: executing program 0 (id=728):
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x0)
lchown(&(0x7f00000006c0)='./file0\x00', r0, 0x0)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="020000000100000000000000040004000000000008000000", @ANYRES32=0xee01, @ANYBLOB="100003000000000020"], 0x2c, 0x0)
lchown(&(0x7f0000000040)='./file0/../file0\x00', r0, 0x0)

3m26.524870291s ago: executing program 32 (id=728):
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x0)
lchown(&(0x7f00000006c0)='./file0\x00', r0, 0x0)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="020000000100000000000000040004000000000008000000", @ANYRES32=0xee01, @ANYBLOB="100003000000000020"], 0x2c, 0x0)
lchown(&(0x7f0000000040)='./file0/../file0\x00', r0, 0x0)

5.120385772s ago: executing program 2 (id=1973):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
chdir(&(0x7f0000000480)='./cgroup\x00')
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)

4.783787181s ago: executing program 4 (id=1976):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000200)={[{@noblock_validity}, {}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200}}, {@norecovery}, {@data_err_abort}, {@errors_continue}, {@usrjquota}, {@noauto_da_alloc}, {@nojournal_checksum}]}, 0x1, 0x56a, &(0x7f00000015c0)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
lsetxattr$trusted_overlay_upper(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000280)=ANY=[], 0xe01, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000500)='./file1\x00', &(0x7f0000000540), 0x0, 0x0, 0x1)
unlink(&(0x7f0000000100)='./file1\x00')

4.515686567s ago: executing program 3 (id=1977):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f00000000c0)={[{@sysvgroups}, {@orlov}, {@nogrpid}, {@init_itable}, {@dioread_nolock}, {@grpjquota, 0x2e}, {@oldalloc}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x0, 0x4da, &(0x7f0000000140)="$eJzs3MtrHdUfAPDvTF59J+2vv0cfPxutYrCatGnVLlyoKHQjCLrQjRDTtNSmrTQRbCm2FalL8S9Ql4Lgyo0rBRF1pbjVvQhFuml1IVfmzkw6yc29vTdJE839fOAm58wj53zPzJl77pw7CaBrDWc/kogtEfFTRAzm2fkbDOe/bt24NPn7jUuTSdRqL/yW1Le7eePSZLlpud/mIjOSRqTvJLFnkXJnLlw8PTE9PXW+yI/Nnnl9bObCxUdOnZk4OXVy6uz40aNHDh96/LHxR1ckziyum7vfOrd317GX339ushavfvtJVt8txfpqHLmhZZc5HMMbIqKWub20v/7zgWX/9b+XrZV00ruGFaEjPRGRHa6+ev8fjJ64ffAG49m35zJfrVEFgbsme2/a3rC0p/id5m9ewDqV3KGPJ8XIfrXqA6yW8h0/+/xbvlZz/LHWrj+VX96yuG8Vr3xNb6TZqqH8E3tPk/3/s8zyt0TES1f++CB7xaL3IQAAVtYX2fjn4cXGf+m8sc22Yg5lKCIORMSOiPhXROyMiH8X46D/RsT/Oix/eEG+cfzzw8YlBdambPz3RDG3lb9emYs/l8zlttbj70tOnJqeOli0yUj0DZy4Qw2/fObH95qtG66M/7JXVodyLFjU49fegfn7HJ+YnVhqvAtdvxqxu7caf9n+ydxMQNYCuyJi9xL+ftZmpx76eG+W3ra5cX1j/NlIuxp/Cyswz1T7KOLB/PhfiQXxl5K8pGbzk2MbYnrq4Fh5VjT67vtrz1fzfZV0Hn8lkjZi2tB5mE1lx39TLH7868puUM7XznRexrWf3236mabx+CdZe1QU53+lj2Xnf3/yYj3dXyx7c2J29vyhiP5iwbzl47f3LfPl9ln8I/sXiz/NrnF/fljstycispP4/xFxT0TsK+p+b0TcFxH7W8T/zdP3v9a6hVr1/7sri/94q+MfMZRU5+sbE73RdFWe6Dn99efNym/v+neknhoplrRz/WtRnXmJ5bQdAAAA/FOk9TnoJB0t05WbUztjUzp9bmb2wHC8cfZ4Plc9FH1peadrsHI/9FBxb7jMjy/IH46I7fXvEG2s50cnz01vXcvAgfqzOvP6f6Tp6Gi+7pdmX3oB1o+O5tGqTwd++tnKVwZYVZ7XhO6l/0P30v+he+n/0L0W6/+XI26tQVWAVeb9H7pXZ/3f1QLWEz0aupf+D12p8ZH48h8ttPf8fLPEjmPL2n0JiTKi9vaqDd6ValzpfK+emQtXV7AaEVH/9xlZIhq2qQ1UltQG8m9zLq2sSFtv099Y+iKJy6t7kpSJ9I7bPLnEZukgsa9IDEREu3tdbqtVV+hEAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWAf+CgAA///Xp8Iq")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x8004587d, &(0x7f0000000140)={0x2, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x8)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x8010661b, 0x0)

4.436994438s ago: executing program 2 (id=1978):
syz_mount_image$hfs(&(0x7f0000001600), &(0x7f0000000000)='./file1\x00', 0x2000000, &(0x7f0000000f40)={[{@file_umask={'file_umask', 0x3d, 0x80004}}, {@type={'type', 0x3d, "7763e6ef"}}, {@codepage={'codepage', 0x3d, 'cp866'}}, {@dir_umask={'dir_umask', 0x3d, 0x5}}, {}]}, 0x1, 0x2fe, &(0x7f0000001100)="$eJzs3U1vE0ccx/HfrO3EaaJ0m6Sq1EurtJHaS9S0PVS9uKp87b2nqm3sSBFWEEmQgAsm4oh4Adx5C7wILiDeAHDhxAvIbdHMzq7X9nidCDubhO9HsjWenYf/sE8zK5EVgE/Wn+3XT395Zz9Gqqkm6XcpktSU6pK+1FfN2wfH+8e9bqesoZqrYT9GaU0zVmb3oBuqauu5Gl5sf9W1UszDfCRJ8sebqoNA5dzZHxBJi/48dNubFxzXrIwOri99U1EolSn+G5hTneqOVisMBwBwCfj7f+RvEysuyyiKpC1/27/S9/9Rp1UHMFu/9sayktIKhfu/m90lxu7fz92mwXrPLeHs9ihbJZ4lmMbI7wWlR9bQHMyEV5Vvk5SPJVra269re/eBOpFO1PIKFTbcdyc9dDNTot0MrE1LTG6tob8+S0djZ5RLo5uzkPb2e91FmwjEv36+Hj+eeW5emn9MrCfq5PO/emLsbnJ7Kh7ZU1HDxv/T5BaXXS1bSn7Z32q1oqEiX7hOvvY9eFNG2QyvSIptZg8I+nkEgThPsoTre03DjxXS0e2EOjCDxtdDteL813hd19fGUK2aPxK2d2/2Sh+lzEc2RPPY/G029V7P1C7M/yMb35YKZ2bZpd64kv7ISMezEC5ZdyXjsTtHP099m0fgLZ57bJDO+bTskf7Xb1o9unvvRq3X6x7axH+BxK2VQ+NzGg+lYJn5J2oqKaP+IMfdPO4nyVlbTuYZ/I8zbdBeP/Ice/qECtuzLM+JLno3Xb9EXaFN7RcqOyDnmsimLjNp0E60JmyayzUKl8yRyXa6zxibxOKas/Muk67/3Ezez+rcdcZ+xSXz9PJFpoZa3MlXcMNTwbXQ3GXK2mB58gqu0OPPE9aMbs313Q/S94VMo9IeYxfntWHaeqV/ef4PAAAAAAAAAAAAAAAAAABw1VzE/1ioeowAAAAAAAAAAAAAAAAAAAAAAFx1Z3//79LgTU2hvxHv3v8bT33/79ALgP2Lonj/L1CNDwEAAP//FJB9Ww==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')

3.701788701s ago: executing program 4 (id=1983):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000080)="00c3ff", 0xd}, {&(0x7f0000000000)='G', 0x1}], 0x2)

3.701412968s ago: executing program 2 (id=1984):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000005600)='./bus\x00', 0x8000, &(0x7f0000000100), 0x1, 0x559d, &(0x7f0000005680)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFSLABEL(r0, 0x80809440, 0x0)

3.298749138s ago: executing program 3 (id=1985):
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
write$qrtrtun(r0, &(0x7f0000001300)="9d8d645e53b6183d874f9e93a18dd009a09560ff682bd07dc3d28385a8f3f9e18418950d4dfe49f13a19e24320444a7d6c121741ba3dc510dba4f980bbd9a315544fa0a1622d949faba79788908354e467989e8458e6f5f76e0e4e781bfca4c928c956321dd514877569805db6602f1584a8bd051f13bad882bea021ffb5ce918a1f87f1d439ec93772d6ecaaf8891f7678f2037ccced78ea5c1aa805f1b9f5a2c3974c5124cac5e163d9b6f5b998c1c7263fa2331d1241523986dccbd4e1f32b2f521380a2ea4732132264de6d26ce40177a780df98cbf94b96d900a2dfc5c877db675ebb1d7cbc398ca422ddbadc24ee6f3bf036f62cdb056502a6b657ff95930ea668649ad0003afe9a912179ce61631b3d2b94642d2768f1f22299deb9eddb917fc0076b74406149024514d07417c6007e8cd4dc4e2295be71f412044b52b1ce32aac048cad9c413a8c19528dc1b432fe7f9fda7182a47243af427a76ede78aa5c6ef75ea1f48e2e9e9d203d4760a1ff6a0119b39a2458a050f9519d4bbd821684ef8356985e8f5b8d86346f428788fc374e7eaa0c2a2ef8478a13b4a56d0821201c37a0066fb9f5cc583005b9f71b67daa300311066bacbf43630a8388aff734a568a123a48ba1344a5500e5c6f8cef539617cd3970ffb873579a3b76bd529f1626d1f90543b2a0190df38bb1e8b6fc9bfc5c42693814665679e78ed8adce4d23b8725416101ae4113fee000cb92b32c6a74851a6c4af4625f28810ec16834a1589063af1bf0b29aa57e06dddc0fddf408fab63c536d5afd9ba5a71f9e534f99e5ea9c1eaaaad710ef30a37df0f87978894333850f4feac3740a3b010da7c250d060c8046cab40d0527234d4b4b28366bc7d5899948ddbfac66c848ef0f842eab95248e9d064c0ec4247483f0aa0cad7ca970365e474fe73cf79cf8c70fc7a015caa273ce41723453632cf5b809584d227f7e98e8ec41494518b0b8a8adbaf5ead6529451b116fab06529b653bffdd6d98f8322265305bdc0ff69f4a70dea414fcc63d149c564c834f24b8f7495cd9ccafa1e3f652cd3270935800ee0d5598afcaa41c150dac263408d77a61b5c77e2c3644dda1b8c333a36c30ce893140ce133827dde34d896d35c498bf6dda965a27cc77e2872fcedaf9dcb89614c758cf62ad769ac05a4fb9e27b421b82c1761f1322b03cc9ea586d15f7d2ffb6ed63c639cee97d9eea8f3934045e60b15eca5c13ebe002467c09815712165cee2af784f9e5db9f7227701ca9a3de588503c84c490f4986aa26e7b63d4c5a30157cdf82e433a1b64496392a1990b2a46b910d9a16429736308f71d8e78824a26f25f21829546b973c0905b20c2ef751eb0064eaf831874f0b58ef8779cafd02bcf075a212e79e07c73c49fc240d6845877fda649d1ab59ea06b907ec5031299a0e1fa2f8cbc241a8531ad241302b569d4581dcc944f27799f25593b97ea7681ba74d6cde9c8f58840ac4c4be3aa90e6273a64e549c47c7232f423406604c9c210eabe3d6a2343bd6c2ae72ab013ce2af32467bcfa8cbf0769f9156e35424", 0x45c)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)

2.833969064s ago: executing program 5 (id=1987):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f0000000140)={0x1d, r1}, 0x10)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000000), 0x0)
close(r0)

2.548183714s ago: executing program 4 (id=1988):
r0 = io_uring_setup(0x669, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xfff})
setresuid(0xffffffffffffffff, 0xffffffffffffffff, 0xee01)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
setresuid(0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.531843577s ago: executing program 1 (id=1989):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f00000002c0)=0x3, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000240)="c4", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

2.387069342s ago: executing program 1 (id=1990):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000340)={{0x80, 0xfc}, 'port0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7})
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80, 0x80}, 'port0\x00', 0x0, 0x120820, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000200)={{0x80}, 'port0\x00', 0x5, 0x1425, 0x8, 0x0, 0x0, 0x0, 0x2000})

2.189626788s ago: executing program 2 (id=1991):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a9646", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x96, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a967e", 0x60, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x18, 0x20, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x8dffffff, 0x2}, @md5sig={0x13, 0x12, "ca0c73a263a2ef1df706fbd1dd9500"}, @timestamp={0x8, 0xa}, @md5sig={0x13, 0x12, "2bdd4b74a1f6aa675459bc4d77085aa8"}, @mptcp=@remove_addr={0x1e, 0x11, 0x7, 0x0, "8a3d6de393730d29f70e7f85ba19"}]}}}}}}}}, 0x0)

2.15828582s ago: executing program 5 (id=1992):
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
pwritev2(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="df", 0xff00}], 0x1, 0x7ffffe, 0x0, 0x0)
r1 = open(&(0x7f0000000300)='./file1\x00', 0x149442, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendfile(r2, r1, 0x0, 0x105dc)

2.072478259s ago: executing program 3 (id=1993):
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0xdf)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xb)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r1, 0x0)
copy_file_range(r1, &(0x7f0000000080), r0, &(0x7f0000000100)=0x7ffffffffffff, 0xfffffffffffffff8, 0x0)

2.036284113s ago: executing program 4 (id=1994):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000480)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x28, r1, 0x1, 0x0, 0x0, {{0x38}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x1}]}, 0x41}}, 0x0)

1.96896396s ago: executing program 1 (id=1995):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x44, &(0x7f0000000000), 0x4)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000140)={r2, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000200)=0x90)

1.649147578s ago: executing program 1 (id=1996):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r2=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f00000014c0)={r2, @in={{0x2, 0x0, @remote}}}, &(0x7f00000015c0)=0x100)

1.543872498s ago: executing program 4 (id=1997):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x2d}, {0x6}]}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r1, &(0x7f00000001c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0xfffffffc, @loopback}, 0x1c, &(0x7f0000000640)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)

1.496368405s ago: executing program 5 (id=1998):
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000e80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10000, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x1, 0x2ad, &(0x7f0000000580)="$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")
socket$inet6(0xa, 0x80001, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet(0x2, 0xa, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000001000010700000000000000000a000000060001001700000008000a00", @ANYRES32=r1], 0x24}}, 0x0)

1.415461401s ago: executing program 3 (id=1999):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r3, 0x0, r1, 0x0, 0xf3a, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000200)=ANY=[], 0x18c6)
read$FUSE(r0, &(0x7f000000e400)={0x2020}, 0x2020)

919.08559ms ago: executing program 5 (id=2000):
socket$inet(0x2, 0x4000000805, 0x0)
socket$tipc(0x1e, 0x4, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000780)={0x6, 0x8}, 0x0)
socket$xdp(0x2c, 0x3, 0x0)

918.599434ms ago: executing program 3 (id=2001):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xa0, 0xffffff84}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x64, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000000)=r1, 0x4)
sendmsg$OSF_MSG_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)={0x14, 0x0, 0x5, 0x101}, 0x14}}, 0x0)

682.385281ms ago: executing program 5 (id=2002):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000040), 0x4)
sendto$inet6(r0, &(0x7f0000000580)="03", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

483.996029ms ago: executing program 2 (id=2003):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000200000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x8012, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)

465.708057ms ago: executing program 1 (id=2004):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
sendmsg$rds(r0, &(0x7f0000000680)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

365.891466ms ago: executing program 4 (id=2005):
r0 = syz_io_uring_setup(0x5c2, &(0x7f00000006c0), &(0x7f00000002c0)=<r1=>0x0, &(0x7f00000001c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
io_setup(0x81, &(0x7f0000001440)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f00000008c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
io_uring_enter(r0, 0x219, 0x0, 0x0, 0x0, 0x0)

89.303702ms ago: executing program 5 (id=2006):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x20082, 0x0)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000000e40)='\b', 0x17ff}], 0x5)

83.274148ms ago: executing program 3 (id=2007):
symlink(&(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='./file0\x00')
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file5\x00', 0xc000, 0x6)
r0 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x10, 0x0)
landlock_restrict_self(r0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file5\x00', 0x2)

258.532µs ago: executing program 1 (id=2008):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./file1\x00', 0x482, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1, 0x258, &(0x7f0000001140)="$eJzs3E9rI3UYB/DHtm7/LLvpQQQF8Yde9DJs6wuQILsgFpS6EfUgzNqpho5JyYRKRNy9efV1LB71JLi+gV68effWi+BlD2KkabpN1oIgG6c2nw8k84RfvuQZZhKeCSRH73/z2d5ule3m/VhYSbEQcS8eRqwfV2NPjbcLo/pKTLoXr179/ZcX3v3gw7eaW1s3t1O61bz92mZK6fqLP37+5bcv/dS/+t53139YjsP1j45+2/z18NnD547+vP1pu0rtKnW6/ZSnO91uP79TFmmnXe1lKb1TFnlVpHanKnpT67tld39/kPLOzrW1/V5RVSnvDNJeMUj9bur3Bin/JG93UpZl6dpa8E9a97e382bdXTAzS8d3vV4zX4yI1b8tt+7X0RQAUK+LPf8fTy3m/9kx/8+D4/l/bfz+nWb+BwAAAAAAAAAAAACA/4OHw2FjOBw2Trent+WIWImI08d198lsOP7zbeKHeysR5dcHrYPWyfZkvbkb7SijiBvRiD9G58PYSX3rza2bN9LIejwo747zdw9ai9P5jWjE+vn5jZN8igffL57ln461yfxmNOKZ8/Obj/KTr38lXnl5Ip9FI37+OLpRxs7ovD7Lf7WR0htvbz2WXx09DwAAAC6DLD1y7vV7lk2vL49z/+L7gceur5fi+aX69hsAAADmSTX4Yi8vy6KnuITF6xFxAdpQTBYrT/qgrMYsWq37kwkAAHjSzob+ujsBAAAAAAAAAAAAAAAAAACA+fVf/OFZ3fsIAAAAAAAAAAAAAAAAAAAAAAAAF8VfAQAA//+gfid7")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0)

0s ago: executing program 2 (id=2009):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
r1 = fanotify_init(0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
fanotify_mark(r1, 0x165, 0x22, r2, 0x0)
fanotify_mark(r1, 0x102, 0x28, r0, 0x0)

kernel console output (not intermixed with test programs):

okup:1817: inode #2: comm syz-executor: deleted inode referenced: 15
[  383.898395][ T5848] usb 5-1: config 0 descriptor??
[  384.125962][ T7779] overlayfs: workdir and upperdir must reside under the same mount
[  384.464314][ T4665] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.495278][ T5808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.637932][ T7782] loop3: detected capacity change from 0 to 128
[  384.738206][ T5809] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 8796093022222
[  384.747622][ T5809] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=16)
[  384.775178][ T7782] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  384.922979][ T7782] ext4 filesystem being mounted at /137/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  385.001276][ T5809] Remounting filesystem read-only
[  385.006676][ T5809] NILFS (loop1): error -5 truncating bmap (ino=16)
[  385.047447][ T4665] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.246350][ T2166] usb 5-1: USB disconnect, device number 3
[  385.268874][ T4665] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.291735][ T5809] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  385.628808][ T5800] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  385.657279][ T4665] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.138233][ T5803] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  386.162058][ T5803] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  386.189546][ T5803] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  386.219526][ T5803] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  386.237187][ T5803] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  386.249029][ T5803] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  386.988742][ T4665] bridge_slave_1: left allmulticast mode
[  386.994777][ T4665] bridge_slave_1: left promiscuous mode
[  387.001376][ T4665] bridge0: port 2(bridge_slave_1) entered disabled state
[  387.596311][ T4665] bridge0 (unregistering): left allmulticast mode
[  387.687576][ T4665] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  387.766058][ T4665] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  387.831785][ T4665] bond0 (unregistering): Released all slaves
[  387.907499][ T7816] loop3: detected capacity change from 0 to 4096
[  387.919132][ T7816] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  388.512556][ T5801] Bluetooth: hci3: command tx timeout
[  388.673639][ T4665] hsr_slave_0: left promiscuous mode
[  388.713077][ T4665] hsr_slave_1: left promiscuous mode
[  388.766252][ T4665] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  388.774253][ T4665] batman_adv: batadv0: Removing interface: batadv_slave_0
[  388.835112][ T4665] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.847147][ T4665] batman_adv: batadv0: Removing interface: batadv_slave_1
[  388.917664][ T4665] veth1_macvtap: left promiscuous mode
[  388.923817][ T4665] veth0_macvtap: left promiscuous mode
[  388.929714][ T4665] veth1_vlan: left promiscuous mode
[  388.935877][ T4665] veth0_vlan: left promiscuous mode
[  389.864924][ T4665] team0 (unregistering): Port device team_slave_1 removed
[  389.891002][ T4665] team0 (unregistering): Port device team_slave_0 removed
[  390.616311][ T5801] Bluetooth: hci3: command tx timeout
[  390.851053][ T7794] chnl_net:caif_netlink_parms(): no params data found
[  392.146313][ T7794] bridge0: port 1(bridge_slave_0) entered blocking state
[  392.154135][ T7794] bridge0: port 1(bridge_slave_0) entered disabled state
[  392.161884][ T7794] bridge_slave_0: entered allmulticast mode
[  392.170938][ T7794] bridge_slave_0: entered promiscuous mode
[  392.186599][ T7794] bridge0: port 2(bridge_slave_1) entered blocking state
[  392.194533][ T7794] bridge0: port 2(bridge_slave_1) entered disabled state
[  392.202418][ T7794] bridge_slave_1: entered allmulticast mode
[  392.211358][ T7794] bridge_slave_1: entered promiscuous mode
[  392.483179][ T7794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  392.533306][ T7794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  392.673333][ T5801] Bluetooth: hci3: command tx timeout
[  392.710069][ T7794] team0: Port device team_slave_0 added
[  392.767998][ T7794] team0: Port device team_slave_1 added
[  392.870835][ T7878] hsr0: entered promiscuous mode
[  392.878705][ T7794] batman_adv: batadv0: Adding interface: batadv_slave_0
[  392.887402][ T7794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  392.914730][ T7794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  393.027317][ T7794] batman_adv: batadv0: Adding interface: batadv_slave_1
[  393.034593][ T7794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  393.061527][ T7794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  393.404364][ T7794] hsr_slave_0: entered promiscuous mode
[  393.482346][ T7794] hsr_slave_1: entered promiscuous mode
[  393.526579][ T7794] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  393.534703][ T7794] Cannot create hsr debugfs directory
[  393.755863][ T7894] loop2: detected capacity change from 0 to 1024
[  393.783161][ T7894] hfsplus: Unknown parameter 'ÿÿÿÿ18446744073709551615'
[  393.801117][ T7895] gretap0: entered promiscuous mode
[  393.806821][ T7895] macsec1: entered promiscuous mode
[  393.813100][ T7895] macsec1: entered allmulticast mode
[  393.818629][ T7895] gretap0: entered allmulticast mode
[  393.845713][ T7895] gretap0: left allmulticast mode
[  393.851994][ T7895] gretap0: left promiscuous mode
[  394.435029][ T7910] loop4: detected capacity change from 0 to 128
[  394.459827][ T7910] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  394.572774][ T7794] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  394.594328][ T7794] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  394.619123][ T7794] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  394.626426][ T7910] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  394.658463][ T7910] ext2 filesystem being mounted at /168/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  394.736836][ T7794] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  394.745975][ T5801] Bluetooth: hci3: command tx timeout
[  395.062881][ T5805] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  395.423909][ T7794] 8021q: adding VLAN 0 to HW filter on device bond0
[  395.466456][ T7794] 8021q: adding VLAN 0 to HW filter on device team0
[  395.504792][ T3903] bridge0: port 1(bridge_slave_0) entered blocking state
[  395.512585][ T3903] bridge0: port 1(bridge_slave_0) entered forwarding state
[  395.605505][ T7925] netlink: 116 bytes leftover after parsing attributes in process `syz.2.781'.
[  395.644460][ T3903] bridge0: port 2(bridge_slave_1) entered blocking state
[  395.652344][ T3903] bridge0: port 2(bridge_slave_1) entered forwarding state
[  396.101464][ T7934] sctp: [Deprecated]: syz.2.785 (pid 7934) Use of struct sctp_assoc_value in delayed_ack socket option.
[  396.101464][ T7934] Use struct sctp_sack_info instead
[  396.532386][ T7942] netlink: 28 bytes leftover after parsing attributes in process `syz.2.786'.
[  396.541718][ T7942] netlink: 472 bytes leftover after parsing attributes in process `syz.2.786'.
[  396.694639][ T7794] 8021q: adding VLAN 0 to HW filter on device batadv0
[  397.732952][ T7962] loop2: detected capacity change from 0 to 512
[  397.798579][   T29] audit: type=1326 audit(1732424903.593:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.4.793" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f88b1b7e819 code=0x0
[  397.833351][ T7962] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.795: corrupted in-inode xattr: invalid ea_ino
[  397.868513][ T7962] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.795: couldn't read orphan inode 15 (err -117)
[  397.889302][ T7962] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  397.938258][ T7970] loop3: detected capacity change from 0 to 256
[  397.991997][ T7970] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  398.118311][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.228981][ T7794] veth0_vlan: entered promiscuous mode
[  398.313736][ T7794] veth1_vlan: entered promiscuous mode
[  398.406272][ T7972] loop2: detected capacity change from 0 to 512
[  398.436067][ T7972] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
[  398.497492][ T7794] veth0_macvtap: entered promiscuous mode
[  398.533280][ T7794] veth1_macvtap: entered promiscuous mode
[  398.619845][ T7794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.631495][ T7794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.641795][ T7794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.652675][ T7794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.662808][ T7794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.673610][ T7794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.683842][ T7794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.697097][ T7794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.712378][ T7794] batman_adv: batadv0: Interface activated: batadv_slave_0
[  398.857647][ T7794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.868463][ T7794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.878679][ T7794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.889449][ T7794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.903026][ T7794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.915461][ T7794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.927340][ T7794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.938138][ T7794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.952649][ T7794] batman_adv: batadv0: Interface activated: batadv_slave_1
[  399.063526][ T7794] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  399.072733][ T7794] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  399.081770][ T7794] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  399.091073][ T7794] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  399.831931][ T7996] netlink: 'syz.3.805': attribute type 1 has an invalid length.
[  399.839970][ T7996] netlink: 'syz.3.805': attribute type 2 has an invalid length.
[  399.908856][ T7998] loop9: detected capacity change from 0 to 7
[  399.980608][ T7998] Dev loop9: unable to read RDB block 7
[  399.987199][ T7998]  loop9: unable to read partition table
[  400.053644][ T7998] loop9: partition table beyond EOD, truncated
[  400.060144][ T7998] loop_reread_partitions: partition scan of loop9 (þ被xü—ŸÑà– ) failed (rc=-5)
[  401.769028][ T8033] netlink: 16 bytes leftover after parsing attributes in process `syz.1.819'.
[  403.460632][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  403.467632][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  403.534865][ T3865] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  403.543663][ T3865] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  403.683220][ T8063] loop2: detected capacity change from 0 to 4096
[  403.749803][ T3447] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  403.758748][ T3447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  404.159537][ T2166] kernel read not supported for file /video7 (pid: 2166 comm: kworker/0:2)
[  404.210905][ T8076] loop1: detected capacity change from 0 to 1024
[  404.320250][ T8076] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  404.685405][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.353942][ T8127] loop3: detected capacity change from 0 to 128
[  406.412358][ T8127] VFS: Found a Xenix FS (block size = 1024) on device loop3
[  406.452940][ T8127] syz.3.850: attempt to access beyond end of device
[  406.452940][ T8127] loop3: rw=0, sector=6491536, nr_sectors = 2 limit=128
[  406.467127][ T8127] Buffer I/O error on dev loop3, logical block 3245768, async page read
[  406.648609][ T5800] sysv_free_block: flc_count > flc_size
[  406.654608][ T5800] sysv_free_block: flc_count > flc_size
[  406.660347][ T5800] sysv_free_block: flc_count > flc_size
[  406.666287][ T5800] sysv_free_block: flc_count > flc_size
[  406.672018][ T5800] sysv_free_block: flc_count > flc_size
[  406.677842][ T5800] sysv_free_block: flc_count > flc_size
[  406.687145][ T5800] sysv_free_block: flc_count > flc_size
[  406.693888][ T5800] sysv_free_block: flc_count > flc_size
[  406.699679][ T5800] sysv_free_block: flc_count > flc_size
[  406.705547][ T5800] sysv_free_block: flc_count > flc_size
[  406.712731][ T5800] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  407.006498][ T8140] devtmpfs: Too few inodes for current use
[  407.405573][ T8147] loop2: detected capacity change from 0 to 64
[  408.376532][ T8171] loop2: detected capacity change from 0 to 64
[  408.991685][ T8182] loop4: detected capacity change from 0 to 256
[  409.037899][ T8182] vfat: Unknown parameter ''
[  409.645078][ T8198] loop3: detected capacity change from 0 to 256
[  409.686658][ T8198] exfat: Deprecated parameter 'utf8'
[  409.832901][ T8198] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xba7df490, utbl_chksum : 0xe619d30d)
[  410.941738][ T8223] input: syz0 as /devices/virtual/input/input13
[  410.948768][ T8223] input: failed to attach handler leds to device input13, error: -6
[  411.395490][ T8225] loop4: detected capacity change from 0 to 1024
[  411.693033][   T44] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  411.910035][   T44] usb 3-1: Using ep0 maxpacket: 16
[  412.050000][   T44] usb 3-1: New USB device found, idVendor=0586, idProduct=1500, bcdDevice=2e.97
[  412.059885][   T44] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  412.069365][   T44] usb 3-1: Product: syz
[  412.074424][   T44] usb 3-1: Manufacturer: syz
[  412.079269][   T44] usb 3-1: SerialNumber: syz
[  412.131875][   T44] usb 3-1: config 0 descriptor??
[  412.145281][   T44] omninet 3-1:0.0: required endpoints missing
[  412.373998][ T2166] usb 3-1: USB disconnect, device number 5
[  413.381324][ T8261] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  413.388203][ T8261] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  413.408990][ T8261] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  413.415605][ T8261] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  413.433739][ T8261] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  413.443091][ T8261] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  413.487955][ T8261] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  413.494471][ T8261] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  413.515553][ T8261] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  413.534759][ T8261] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  413.541120][ T8261] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  413.559337][ T8261] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  414.017703][ T8271] loop2: detected capacity change from 0 to 256
[  414.718827][ T8281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.919'.
[  414.728255][ T8281] netlink: 52 bytes leftover after parsing attributes in process `syz.2.919'.
[  414.737612][ T8281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.919'.
[  414.938881][ T8286] binder: 8285:8286 ioctl 4018620d 0 returned -22
[  415.428348][ T8295] Bluetooth: MGMT ver 1.23
[  415.463054][ T5803] Bluetooth: hci1: command 0x0406 tx timeout
[  415.463927][ T5801] Bluetooth: hci0: command 0x0406 tx timeout
[  415.568304][ T5801] Bluetooth: hci4: command 0x0c1a tx timeout
[  415.574954][ T5803] Bluetooth: hci2: command 0x0406 tx timeout
[  415.622610][ T5801] Bluetooth: hci3: command 0x0c1a tx timeout
[  415.778252][ T8300] sctp: [Deprecated]: syz.1.926 (pid 8300) Use of int in max_burst socket option.
[  415.778252][ T8300] Use struct sctp_assoc_value instead
[  416.091553][ T8307] loop1: detected capacity change from 0 to 256
[  416.474986][ T8314] loop4: detected capacity change from 0 to 1024
[  416.496657][ T8314] EXT4-fs: Ignoring removed orlov option
[  416.505098][ T8314] EXT4-fs: Ignoring removed nomblk_io_submit option
[  416.632034][ T8307] FAT-fs (loop1): Directory bread(block 64) failed
[  416.639227][ T8307] FAT-fs (loop1): Directory bread(block 65) failed
[  416.646479][ T8307] FAT-fs (loop1): Directory bread(block 66) failed
[  416.653430][ T8307] FAT-fs (loop1): Directory bread(block 67) failed
[  416.660338][ T8307] FAT-fs (loop1): Directory bread(block 68) failed
[  416.667296][ T8307] FAT-fs (loop1): Directory bread(block 69) failed
[  416.674363][ T8307] FAT-fs (loop1): Directory bread(block 70) failed
[  416.681148][ T8307] FAT-fs (loop1): Directory bread(block 71) failed
[  416.688202][ T8307] FAT-fs (loop1): Directory bread(block 72) failed
[  416.695111][ T8307] FAT-fs (loop1): Directory bread(block 73) failed
[  417.115446][ T8315] loop2: detected capacity change from 0 to 32768
[  417.123239][ T8314] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.141721][ T8315] 
[  417.141721][ T8315]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  417.141721][ T8315] 
[  417.243214][ T3903] 
[  417.243214][ T3903]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  417.243214][ T3903] 
[  417.254127][ T3903] 
[  417.254127][ T3903]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  417.254127][ T3903] 
[  417.274645][  T110] 
[  417.274645][  T110]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  417.274645][  T110] 
[  417.322845][ T5797] 
[  417.322845][ T5797]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  417.322845][ T5797] 
[  417.366628][ T5797] 
[  417.366628][ T5797]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  417.366628][ T5797] 
[  417.542754][ T5801] Bluetooth: hci0: command 0x0406 tx timeout
[  417.553611][ T5801] Bluetooth: hci1: command 0x0406 tx timeout
[  417.571468][   T44] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  417.622737][ T5801] Bluetooth: hci4: command 0x0c1a tx timeout
[  417.629193][ T5801] Bluetooth: hci2: command 0x0406 tx timeout
[  417.702459][ T5801] Bluetooth: hci3: command 0x0c1a tx timeout
[  417.976792][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.009536][   T44] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  418.021086][   T44] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  418.031373][   T44] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  418.044823][   T44] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  418.055512][   T44] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  418.089503][   T44] usb 4-1: config 0 descriptor??
[  418.102595][ T8327] loop5: detected capacity change from 0 to 1764
[  418.562807][ T5855] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  418.692935][   T44] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  418.732775][ T8339] loop1: detected capacity change from 0 to 128
[  418.760752][   T44] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  418.818327][ T8342] netlink: 64 bytes leftover after parsing attributes in process `syz.5.943'.
[  418.842895][ T5855] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  418.852532][ T5855] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  418.895348][ T5855] usb 5-1: config 0 descriptor??
[  418.953963][ T8339] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  419.016786][ T2166] usb 4-1: USB disconnect, device number 7
[  419.064773][ T8339] ext4 filesystem being mounted at /177/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  419.563149][   T29] audit: type=1326 audit(1732424925.343:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.4.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b1b7e819 code=0x7ffc0000
[  419.585450][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.595301][   T29] audit: type=1326 audit(1732424925.343:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.4.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b1b7e819 code=0x7ffc0000
[  419.617563][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.708226][ T8351] loop2: detected capacity change from 0 to 256
[  419.716833][ T5801] Bluetooth: hci4: command 0x0c1a tx timeout
[  419.722561][ T5809] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  419.743169][   T29] audit: type=1326 audit(1732424925.483:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.4.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f88b1b7e41b code=0x7ffc0000
[  419.765929][   T29] audit: type=1326 audit(1732424925.483:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.4.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f88b1b7e41b code=0x7ffc0000
[  419.788097][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.801076][   T29] audit: type=1326 audit(1732424925.493:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.4.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f88b1bb0905 code=0x7ffc0000
[  419.808170][ T5801] Bluetooth: hci3: command 0x0c1a tx timeout
[  419.834616][ T8351] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  419.928276][ T5855] usb 5-1: Cannot set autoneg
[  419.938999][ T5855] MOSCHIP usb-ethernet driver 5-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  419.943301][   T29] audit: type=1326 audit(1732424925.723:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.4.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b1b7e819 code=0x7ffc0000
[  419.960847][ T5855] usb 5-1: USB disconnect, device number 4
[  420.005268][ T8352] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  420.014570][ T8352] FAT-fs (loop2): Filesystem has been set read-only
[  420.055075][   T29] audit: type=1326 audit(1732424925.833:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.4.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88b1b7e819 code=0x7ffc0000
[  420.318260][ T8357] loop5: detected capacity change from 0 to 764
[  420.367694][ T8361] syzkaller1: entered promiscuous mode
[  420.373509][ T8361] syzkaller1: entered allmulticast mode
[  422.012492][ T5855] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  422.408719][ T5855] usb 6-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[  422.418291][ T5855] usb 6-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[  422.427054][ T5855] usb 6-1: Manufacturer: syz
[  422.477368][ T5855] usb 6-1: config 0 descriptor??
[  422.820169][ T8391] loop1: detected capacity change from 0 to 512
[  422.892870][ T8391] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  422.923845][ T5855] gs_usb 6-1:0.0: Configuring for 1 interfaces
[  422.924864][ T8393] netlink: 'syz.3.967': attribute type 29 has an invalid length.
[  423.035872][ T8393] netlink: 'syz.3.967': attribute type 29 has an invalid length.
[  423.063001][ T8391] EXT4-fs (loop1): 1 truncate cleaned up
[  423.074662][ T8391] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  423.153264][ T5855] gs_usb 6-1:0.0: Couldn't register candev for channel 0 (-EINVAL)
[  423.195028][ T5855] gs_usb 6-1:0.0: probe with driver gs_usb failed with error -22
[  423.358936][ T8376] loop4: detected capacity change from 0 to 32768
[  423.449932][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.487253][ T2166] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  423.537257][ T5855] usb 6-1: USB disconnect, device number 2
[  423.803219][ T2166] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  423.814880][ T2166] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  423.825291][ T2166] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  423.839928][ T2166] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  423.849555][ T2166] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.870586][ T2166] usb 3-1: config 0 descriptor??
[  423.899589][ T8376] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  424.313211][ T2166] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  424.327282][ T2166] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  424.409507][ T2166] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  424.438059][ T5805] ocfs2: Unmounting device (7,4) on (node local)
[  424.587522][   T10] usb 3-1: USB disconnect, device number 6
[  425.968290][ T8428] Bluetooth: MGMT ver 1.23
[  426.305152][ T8433] netlink: 20 bytes leftover after parsing attributes in process `syz.1.982'.
[  426.658177][ T8443] loop1: detected capacity change from 0 to 2048
[  426.792560][ T8443] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  426.852846][ T8443] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  427.286117][ T8451] loop5: detected capacity change from 0 to 2048
[  427.505823][ T8451] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  427.551584][ T8453] loop2: detected capacity change from 0 to 2048
[  427.627469][ T8451] EXT4-fs (loop5): shut down requested (0)
[  427.698828][ T8464] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  427.743065][ T5855] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  427.771927][ T8463] smc: net device batadv_slave_0 applied user defined pnetid SYZ2
[  427.824808][ T8463] smc: net device wlan0 applied user defined pnetid SYZ2
[  427.895699][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.924181][ T5855] usb 2-1: Using ep0 maxpacket: 8
[  427.992905][ T5855] usb 2-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  428.003660][ T5855] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  428.011933][ T5855] usb 2-1: Product: syz
[  428.017009][ T5855] usb 2-1: Manufacturer: syz
[  428.021873][ T5855] usb 2-1: SerialNumber: syz
[  428.099277][ T5855] usb 2-1: config 0 descriptor??
[  428.139552][ T5855] gspca_main: se401-2.14.0 probing 047d:5003
[  428.664394][ T5855] gspca_se401: Frame size: 0x1 bayer
[  428.669933][ T5855] gspca_se401: Frame size: 0x0 1/16th janggu
[  428.676604][ T5855] gspca_se401: Frame size: 0x0 1/16th janggu
[  428.682894][ T5855] gspca_se401: Frame size: 0x0 1/16th janggu
[  428.689094][ T5855] gspca_se401: Frame size: 0x0 1/16th janggu
[  428.695415][ T5855] gspca_se401: Frame size: 0x0 1/16th janggu
[  428.703581][ T5855] gspca_se401: Frame size: 0x0 1/16th janggu
[  428.709779][ T5855] gspca_se401: Frame size: 0x0 1/16th janggu
[  428.905747][ T5855] input: se401 as /devices/platform/dummy_hcd.1/usb2/2-1/input/input14
[  428.950959][ T5855] usb 2-1: USB disconnect, device number 4
[  429.450709][   T10] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  429.941313][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  429.953042][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  429.963329][   T10] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  429.972829][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.180194][   T10] usb 5-1: config 0 descriptor??
[  430.775522][ T8499] loop2: detected capacity change from 0 to 32768
[  430.947295][   T10] pyra 0003:1E7D:2CF6.000B: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.4-1/input0
[  431.593936][   T10] pyra 0003:1E7D:2CF6.000B: couldn't init struct pyra_device
[  431.609056][   T10] pyra 0003:1E7D:2CF6.000B: couldn't install mouse
[  431.659292][   T10] pyra 0003:1E7D:2CF6.000B: probe with driver pyra failed with error -71
[  431.724101][   T10] usb 5-1: USB disconnect, device number 5
[  432.034054][ T8513] netlink: 'syz.1.1017': attribute type 1 has an invalid length.
[  433.863955][ T8550] mmap: syz.1.1030 (8550): VmData 37425152 exceed data ulimit 3626. Update limits or use boot option ignore_rlimit_data.
[  433.914340][ T8553] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1031'.
[  434.333087][   T29] audit: type=1326 audit(1732424940.113:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8559 comm="syz.1.1036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa772f7e819 code=0x7ffc0000
[  434.356035][   T29] audit: type=1326 audit(1732424940.123:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8559 comm="syz.1.1036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fa772f7e819 code=0x7ffc0000
[  434.379476][   T29] audit: type=1326 audit(1732424940.123:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8559 comm="syz.1.1036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa772f7e819 code=0x7ffc0000
[  434.402489][   T29] audit: type=1326 audit(1732424940.143:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8559 comm="syz.1.1036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7fa772f7e819 code=0x7ffc0000
[  434.424969][   T29] audit: type=1326 audit(1732424940.143:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8559 comm="syz.1.1036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa772f7e819 code=0x7ffc0000
[  434.910991][ T8574] input: syz0 as /devices/virtual/input/input15
[  434.918605][ T8574] input: failed to attach handler leds to device input15, error: -6
[  435.359817][ T8585] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1044'.
[  435.370106][ T8585] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1044'.
[  435.491566][ T8587] loop4: detected capacity change from 0 to 512
[  435.658166][ T8587] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.673032][ T8587] ext4 filesystem being mounted at /213/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.379702][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.554154][   T10] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  436.712723][   T10] usb 3-1: Using ep0 maxpacket: 8
[  436.731161][   T10] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  436.743968][   T10] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  436.754472][   T10] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  436.764847][   T10] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  436.778676][   T10] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  436.790371][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  437.232726][   T10] usb 3-1: usb_control_msg returned -32
[  437.238842][   T10] usbtmc 3-1:16.0: can't read capabilities
[  439.402892][ T8656] loop4: detected capacity change from 0 to 256
[  439.584044][ T2166] usb 3-1: USB disconnect, device number 7
[  439.588778][ T8656] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84977, utbl_chksum : 0xe619d30d)
[  441.035211][ T8686] nbd: device at index 5 is going down
[  441.077697][ T8689] Invalid ELF header magic: != ELF
[  441.099375][ T8687] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1085'.
[  441.235180][ T8691] bridge0: port 3(vlan2) entered blocking state
[  441.242377][ T8691] bridge0: port 3(vlan2) entered disabled state
[  441.249937][ T8691] vlan2: entered allmulticast mode
[  441.255494][ T8691] macvlan0: entered allmulticast mode
[  441.261104][ T8691] veth1_vlan: entered allmulticast mode
[  441.270204][ T8691] vlan2: entered promiscuous mode
[  441.275706][ T8691] macvlan0: entered promiscuous mode
[  441.287235][ T8691] bridge0: port 3(vlan2) entered blocking state
[  441.294317][ T8691] bridge0: port 3(vlan2) entered forwarding state
[  442.734056][ T8722] loop4: detected capacity change from 0 to 128
[  443.365140][ T8722] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  443.396482][ T8735] loop2: detected capacity change from 0 to 256
[  443.427459][ T8722] ext4 filesystem being mounted at /223/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  443.561842][ T5805] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  443.989638][ T8709] loop3: detected capacity change from 0 to 32768
[  444.786288][ T8750] syz.2.1110: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  444.786859][ T8750] CPU: 1 UID: 0 PID: 8750 Comm: syz.2.1110 Not tainted 6.12.0-syzkaller-09073-g9f16d5e6f220 #0
[  444.787018][ T8750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  444.787111][ T8750] Call Trace:
[  444.787172][ T8750]  <TASK>
[  444.787225][ T8750]  dump_stack_lvl+0x216/0x2d0
[  444.787395][ T8750]  dump_stack+0x1e/0x30
[  444.787541][ T8750]  warn_alloc+0x455/0x650
[  444.787704][ T8750]  ? kmsan_get_metadata+0x13e/0x1c0
[  444.787897][ T8750]  ? __vmalloc_node_range_noprof+0xd6/0x26b0
[  444.788062][ T8750]  __vmalloc_node_range_noprof+0x130/0x26b0
[  444.788218][ T8750]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  444.788427][ T8750]  ? kmsan_get_metadata+0x13e/0x1c0
[  444.788617][ T8750]  ? kmsan_get_metadata+0x13e/0x1c0
[  444.788804][ T8750]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  444.789001][ T8750]  ? kmsan_get_metadata+0x13e/0x1c0
[  444.789189][ T8750]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  444.789387][ T8750]  vmalloc_user_noprof+0x90/0xb0
[  444.789538][ T8750]  ? xskq_create+0x105/0x270
[  444.789675][ T8750]  xskq_create+0x105/0x270
[  444.789807][ T8750]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  444.790010][ T8750]  xsk_init_queue+0x115/0x1f0
[  444.790209][ T8750]  xsk_setsockopt+0x882/0xcc0
[  444.790410][ T8750]  do_sock_setsockopt+0x4bb/0x7d0
[  444.790579][ T8750]  ? __pfx_xsk_setsockopt+0x10/0x10
[  444.790770][ T8750]  __x64_sys_setsockopt+0x33d/0x4f0
[  444.790947][ T8750]  x64_sys_call+0x30b9/0x3c30
[  444.791121][ T8750]  do_syscall_64+0xcd/0x1e0
[  444.791266][ T8750]  ? clear_bhb_loop+0x25/0x80
[  444.791421][ T8750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.791623][ T8750] RIP: 0033:0x7f9e68b7e819
[  444.791749][ T8750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  444.791880][ T8750] RSP: 002b:00007f9e669d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  444.792028][ T8750] RAX: ffffffffffffffda RBX: 00007f9e68d36080 RCX: 00007f9e68b7e819
[  444.792143][ T8750] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005
[  444.792233][ T8750] RBP: 00007f9e68bf175e R08: 0000000000000020 R09: 0000000000000000
[  444.792332][ T8750] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000
[  444.792431][ T8750] R13: 0000000000000000 R14: 00007f9e68d36080 R15: 00007ffe570f84e8
[  444.792558][ T8750]  </TASK>
[  444.793212][ T8750] Mem-Info:
[  444.793269][ T8750] active_anon:6968 inactive_anon:0 isolated_anon:0
[  444.793269][ T8750]  active_file:4079 inactive_file:48090 isolated_file:0
[  444.793269][ T8750]  unevictable:768 dirty:392 writeback:0
[  444.793269][ T8750]  slab_reclaimable:4974 slab_unreclaimable:23547
[  444.793269][ T8750]  mapped:28781 shmem:4823 pagetables:699
[  444.793269][ T8750]  sec_pagetables:0 bounce:0
[  444.793269][ T8750]  kernel_misc_reclaimable:0
[  444.793269][ T8750]  free:378736 free_pcp:1592 free_cma:0
[  444.793640][ T8750] Node 0 active_anon:27872kB inactive_anon:0kB active_file:16316kB inactive_file:192288kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:115124kB dirty:1564kB writeback:0kB shmem:17756kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5040kB pagetables:2796kB sec_pagetables:0kB all_unreclaimable? no
[  444.793997][ T8750] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:0kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  444.794344][ T8750] Node 0 DMA free:4096kB boost:0kB min:160kB low:200kB high:240kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  444.794736][ T8750] lowmem_reserve[]: 0 891 1204 0 0
[  444.795005][ T8750] Node 0 DMA32 free:531944kB boost:0kB min:36084kB low:45104kB high:54124kB reserved_highatomic:0KB active_anon:13320kB inactive_anon:0kB active_file:14616kB inactive_file:106368kB unevictable:0kB writepending:288kB present:3129332kB managed:951400kB mlocked:0kB bounce:0kB free_pcp:2056kB local_pcp:952kB free_cma:0kB
[  444.795400][ T8750] lowmem_reserve[]: 0 0 312 0 0
[  444.795666][ T8750] Node 0 Normal free:17080kB boost:0kB min:12672kB low:15840kB high:19008kB reserved_highatomic:0KB active_anon:14576kB inactive_anon:0kB active_file:1700kB inactive_file:85920kB unevictable:1536kB writepending:1276kB present:1048580kB managed:320496kB mlocked:0kB bounce:0kB free_pcp:4312kB local_pcp:3472kB free_cma:0kB
[  444.796059][ T8750] lowmem_reserve[]: 0 0 0 0 0
[  444.796315][ T8750] Node 1 Normal free:961824kB boost:0kB min:41188kB low:51484kB high:61780kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:1041664kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  444.796709][ T8750] lowmem_reserve[]: 0 0 0 0 0
[  444.796971][ T8750] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[  444.797780][ T8750] Node 0 DMA32: 300*4kB (UME) 540*8kB (UME) 491*16kB (UME) 459*32kB (UME) 221*64kB (UME) 40*128kB (UME) 21*256kB (UME) 12*512kB (UME) 4*1024kB (UME) 3*2048kB (ME) 113*4096kB (UM) = 531936kB
[  444.799000][ T8750] Node 0 Normal: 3*4kB (UME) 39*8kB (UME) 66*16kB (UME) 10*32kB (UME) 5*64kB (UE) 27*128kB (UME) 11*256kB (UM) 3*512kB (UM) 1*1024kB (E) 1*2048kB (U) 1*4096kB (M) = 16996kB
[  444.800213][ T8750] Node 1 Normal: 4*4kB (UM) 8*8kB (UME) 23*16kB (UME) 21*32kB (UME) 27*64kB (UME) 8*128kB (UME) 10*256kB (UME) 6*512kB (UME) 8*1024kB (UME) 5*2048kB (UME) 228*4096kB (UM) = 961824kB
[  444.801425][ T8750] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  444.801543][ T8750] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  444.801654][ T8750] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  444.801767][ T8750] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  444.801878][ T8750] 56960 total pagecache pages
[  444.801932][ T8750] 0 pages in swap cache
[  444.801982][ T8750] Free swap  = 124332kB
[  444.802034][ T8750] Total swap = 124996kB
[  444.802096][ T8750] 2097051 pages RAM
[  444.802292][ T8750] 0 pages HighMem/MovableOnly
[  444.802345][ T8750] 1517637 pages reserved
[  444.802395][ T8750] 0 pages cma reserved
[  445.833459][ T8752] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1113'.
[  448.657060][ T8771] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1120'.
[  448.949478][   T29] audit: type=1326 audit(1732424954.733:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.1123" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb881d7e819 code=0x0
[  449.909622][ T8792] loop4: detected capacity change from 0 to 128
[  450.053352][ T8792] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  450.168356][ T8797] loop3: detected capacity change from 0 to 512
[  450.190398][ T8797] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  450.307550][ T8797] EXT4-fs (loop3): 1 truncate cleaned up
[  450.315618][ T8797] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  450.484299][ T8802] loop2: detected capacity change from 0 to 1024
[  450.561964][ T8804] loop5: detected capacity change from 0 to 164
[  450.674091][ T8804] Unable to read rock-ridge attributes
[  450.707999][ T8802] hfsplus: xattr searching failed
[  450.720150][ T8804] iso9660: Corrupted directory entry in block 4 of inode 1792
[  450.748980][ T8802] hfsplus: b-tree write err: -5, ino 3
[  450.786059][ T8809] hfsplus: xattr searching failed
[  450.796335][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.807806][ T8809] hfsplus: xattr searching failed
[  450.939524][ T8811] loop3: detected capacity change from 0 to 64
[  451.148605][ T4665] hfsplus: b-tree write err: -5, ino 3
[  451.632478][ T5855] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  451.885792][ T8831] tipc: Started in network mode
[  451.891014][ T8831] tipc: Node identity ac1414aa, cluster identity 4711
[  451.904211][ T8831] tipc: Enabled bearer <udp:s>, priority 10
[  451.943386][ T5855] usb 3-1: Using ep0 maxpacket: 8
[  451.980153][ T5855] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  451.983968][ T8837] netem: change failed
[  451.990767][ T5855] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  452.002052][ T5855] usb 3-1: Product: syz
[  452.006610][ T5855] usb 3-1: Manufacturer: syz
[  452.011452][ T5855] usb 3-1: SerialNumber: syz
[  452.108627][   T10] IPVS: starting estimator thread 0...
[  452.111911][ T5855] usb 3-1: config 0 descriptor??
[  452.223130][ T8835] IPVS: using max 240 ests per chain, 12000 per kthread
[  452.422031][ T5855] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  452.970928][   T29] audit: type=1326 audit(1732424958.763:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.008046][   T29] audit: type=1326 audit(1732424958.803:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.031040][ T2166] tipc: Node number set to 2886997162
[  453.182704][   T29] audit: type=1326 audit(1732424958.863:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.205749][   T29] audit: type=1326 audit(1732424958.863:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.213101][   T10] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  453.229535][   T29] audit: type=1326 audit(1732424958.873:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.259669][   T29] audit: type=1326 audit(1732424958.883:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.283999][   T29] audit: type=1326 audit(1732424958.893:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.307114][   T29] audit: type=1326 audit(1732424958.903:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.330099][   T29] audit: type=1326 audit(1732424958.903:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.5.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64f417e819 code=0x7ffc0000
[  453.495480][   T10] usb 4-1: Using ep0 maxpacket: 16
[  453.508622][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  453.520567][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  453.530892][   T10] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  453.544313][   T10] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  453.553785][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.616325][   T10] usb 4-1: config 0 descriptor??
[  453.636557][ T5855] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  453.713678][ T5855] usb 3-1: USB disconnect, device number 8
[  454.098866][ T8866] syzkaller1: entered promiscuous mode
[  454.106350][ T8866] syzkaller1: entered allmulticast mode
[  454.135713][   T10] microsoft 0003:045E:07DA.000C: No inputs registered, leaving
[  454.216894][   T10] microsoft 0003:045E:07DA.000C: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  454.228958][   T10] microsoft 0003:045E:07DA.000C: no inputs found
[  454.235863][   T10] microsoft 0003:045E:07DA.000C: could not initialize ff, continuing anyway
[  454.323154][ T5855] usb 4-1: USB disconnect, device number 8
[  454.404642][ T8873] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  455.432769][ T8893] loop2: detected capacity change from 0 to 2048
[  455.433147][ T8894] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1170'.
[  455.448784][ T8894] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1170'.
[  455.478248][ T8893] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  457.661516][ T8941] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1190'.
[  457.671389][ T8941] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1190'.
[  458.446890][ T8957] vlan2: entered promiscuous mode
[  458.452441][ T8957] bond0: entered promiscuous mode
[  458.457724][ T8957] bond_slave_0: entered promiscuous mode
[  458.464658][ T8957] bond_slave_1: entered promiscuous mode
[  458.472353][ T8957] vlan2: entered allmulticast mode
[  458.477711][ T8957] bond0: entered allmulticast mode
[  458.483246][ T8957] bond_slave_0: entered allmulticast mode
[  458.489225][ T8957] bond_slave_1: entered allmulticast mode
[  459.257844][ T8974] trusted_key: syz.5.1204 sent an empty control message without MSG_MORE.
[  460.115638][ T8985] loop3: detected capacity change from 0 to 64
[  460.600660][ T8991] team0: entered promiscuous mode
[  460.606221][ T8991] team_slave_0: entered promiscuous mode
[  460.613207][ T8991] team_slave_1: entered promiscuous mode
[  460.650783][ T8989] team0: left promiscuous mode
[  460.656057][ T8989] team_slave_0: left promiscuous mode
[  460.662711][ T8989] team_slave_1: left promiscuous mode
[  461.558563][ T8984] loop2: detected capacity change from 0 to 32768
[  461.774300][ T8999] dummy0 speed is unknown, defaulting to 1000
[  461.785954][ T8999] dummy0 speed is unknown, defaulting to 1000
[  461.793465][ T8999] dummy0 speed is unknown, defaulting to 1000
[  462.171309][ T8999] infiniband syz2: set active
[  462.176511][ T8999] infiniband syz2: added dummy0
[  462.192532][ T5855] dummy0 speed is unknown, defaulting to 1000
[  462.510545][ T9009] loop3: detected capacity change from 0 to 2048
[  462.522461][ T8999] RDS/IB: syz2: added
[  462.526772][ T8999] smc: adding ib device syz2 with port count 1
[  462.533518][ T8999] smc:    ib device syz2 port 1 has pnetid SYZ0 (user defined)
[  462.542935][ T8999] dummy0 speed is unknown, defaulting to 1000
[  462.958909][ T8999] dummy0 speed is unknown, defaulting to 1000
[  463.365688][ T8999] dummy0 speed is unknown, defaulting to 1000
[  463.774267][ T8999] dummy0 speed is unknown, defaulting to 1000
[  464.190702][ T8999] dummy0 speed is unknown, defaulting to 1000
[  464.416402][   T10] dummy0 speed is unknown, defaulting to 1000
[  464.633031][ T9017] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  464.846729][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  464.853688][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  465.383539][   T10] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  465.864385][   T10] usb 5-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b
[  465.876360][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  466.042667][   T10] usb 5-1: config 0 descriptor??
[  466.496656][ T9031] dummy0 speed is unknown, defaulting to 1000
[  467.181766][ T9032] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  467.191555][ T9032] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  467.569140][   T10] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  467.580941][   T10] asix 5-1:0.0: probe with driver asix failed with error -71
[  467.680084][ T9035] loop5: detected capacity change from 0 to 512
[  467.722774][   T10] usb 5-1: USB disconnect, device number 6
[  467.761725][ T9035] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  467.857987][ T9035] EXT4-fs (loop5): 1 truncate cleaned up
[  467.865937][ T9035] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  468.537051][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.936788][ T9053] loop3: detected capacity change from 0 to 1024
[  470.017256][ T9053] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  470.440353][ T9063] loop5: detected capacity change from 0 to 2048
[  470.478877][ T9064] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  470.539657][ T9067] 9pnet_fd: Insufficient options for proto=fd
[  470.610454][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  470.610533][   T29] audit: type=1800 audit(1732424976.393:50): pid=9063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1241" name="file2" dev="loop5" ino=16 res=0 errno=0
[  470.650548][ T9063] NILFS (loop5): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3)
[  470.661723][ T9063] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=16)
[  470.689014][ T9063] Remounting filesystem read-only
[  470.690110][ T9069] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1242'.
[  470.733465][ T9071] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  470.733465][ T9071] The task syz.3.1240 (9071) triggered the difference, watch for misbehavior.
[  470.797106][ T7794] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer
[  470.971543][ T9073] loop4: detected capacity change from 0 to 256
[  470.994957][ T9073] exfat: Deprecated parameter 'utf8'
[  471.077641][ T9073] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  471.206072][ T9075] loop2: detected capacity change from 0 to 2048
[  471.292964][ T9075] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  471.331572][ T9075] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  472.161879][ T9089] loop5: detected capacity change from 0 to 2048
[  473.283307][ T9111] loop4: detected capacity change from 0 to 256
[  473.403864][   T29] audit: type=1804 audit(1732424979.203:51): pid=9111 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1260" name="/newroot/254/bus/file0" dev="loop4" ino=1048635 res=1 errno=0
[  473.450665][ T9114] geneve0: entered allmulticast mode
[  473.662631][ T2166] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  473.849425][ T2166] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  473.863521][ T2166] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  473.876386][ T2166] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  473.890104][ T2166] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  473.899597][ T2166] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  473.904796][ T9123] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1266'.
[  473.917545][ T9123] netlink: 'syz.1.1266': attribute type 7 has an invalid length.
[  473.925633][ T9123] netlink: 'syz.1.1266': attribute type 8 has an invalid length.
[  473.933979][ T9123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1266'.
[  473.994472][ T2166] usb 4-1: config 0 descriptor??
[  474.206198][ T9127] loop5: detected capacity change from 0 to 512
[  474.289978][ T9127] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.1268: casefold flag without casefold feature
[  474.343098][ T9127] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1268: couldn't read orphan inode 15 (err -117)
[  474.360731][ T9127] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.490979][ T2166] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving
[  474.549587][ T2166] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  474.627062][ T9136] loop2: detected capacity change from 0 to 512
[  474.641628][ T9136] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  474.676684][ T9136] EXT4-fs (loop2): invalid journal inode
[  474.682992][ T9136] EXT4-fs (loop2): can't get journal size
[  474.710098][ T9136] EXT4-fs (loop2): 1 truncate cleaned up
[  474.717848][ T9136] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  474.774948][ T2166] usb 4-1: USB disconnect, device number 9
[  474.843593][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.895945][ T9136] EXT4-fs error (device loop2): ext4_append:79: inode #2: comm syz.2.1271: Logical block already allocated
[  475.245625][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.537768][ T9145] tun0: tun_chr_ioctl cmd 1074025675
[  475.537879][ T9145] tun0: persist enabled
[  475.538687][ T9145] tun0: tun_chr_ioctl cmd 1074025675
[  475.538781][ T9145] tun0: persist disabled
[  476.171178][ T9152] loop2: detected capacity change from 0 to 8
[  476.267796][ T9152] SQUASHFS error: lzo decompression failed, data probably corrupt
[  476.276207][ T9152] SQUASHFS error: Failed to read block 0x91: -5
[  476.283030][ T9152] SQUASHFS error: Unable to read metadata cache entry [8f]
[  476.290449][ T9152] SQUASHFS error: Unable to read inode 0x11f
[  476.523731][ T9159] 9pnet_fd: Insufficient options for proto=fd
[  476.533584][   T10] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  476.708616][   T10] usb 6-1: config 0 has an invalid interface number: 18 but max is 0
[  476.717344][   T10] usb 6-1: config 0 has no interface number 0
[  476.726416][   T10] usb 6-1: config 0 interface 18 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  476.738598][   T10] usb 6-1: config 0 interface 18 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  476.851229][   T10] usb 6-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10
[  476.860860][   T10] usb 6-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  476.873812][   T10] usb 6-1: Manufacturer: syz
[  476.944608][   T10] usb 6-1: config 0 descriptor??
[  476.977288][ T9152] loop2: detected capacity change from 0 to 1024
[  477.355688][ T9171] loop4: detected capacity change from 0 to 8
[  477.551726][   T10] input: syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.18/0003:054C:03D5.000E/input/input20
[  477.594735][ T9174] loop3: detected capacity change from 0 to 512
[  477.642036][   T10] sony 0003:054C:03D5.000E: input,hidraw0: USB HID v0.00 Joystick [syz] on usb-dummy_hcd.5-1/input18
[  477.714117][ T9174] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  477.727775][ T9174] ext4 filesystem being mounted at /261/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  477.801450][   T10] usb 6-1: USB disconnect, device number 3
[  477.822585][ T9174] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.1285: corrupted inode contents
[  477.880548][ T9174] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.1285: mark_inode_dirty error
[  477.985223][ T9174] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.1285: corrupted inode contents
[  477.998134][ T9184] loop4: detected capacity change from 0 to 764
[  478.009164][ T9174] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.1285: mark_inode_dirty error
[  478.027822][ T9184] rock: directory entry would overflow storage
[  478.034455][ T9184] rock: sig=0x4654, size=5, remaining=4
[  478.171589][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  478.509907][ T9190] loop4: detected capacity change from 0 to 512
[  478.557113][ T9190] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1290: corrupted in-inode xattr: invalid ea_ino
[  478.590257][ T9190] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1290: couldn't read orphan inode 15 (err -117)
[  478.634048][ T9190] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  478.635526][   T29] audit: type=1326 audit(1732424984.423:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9188 comm="syz.3.1288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb881d7e819 code=0x7fc00000
[  478.930982][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  479.293541][   T29] audit: type=1326 audit(1732424985.083:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9188 comm="syz.3.1288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb881d80737 code=0x7fc00000
[  479.964550][ T9227] loop2: detected capacity change from 0 to 1024
[  480.080146][ T9228] loop4: detected capacity change from 0 to 512
[  480.209906][ T9228] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  480.223543][ T9228] ext4 filesystem being mounted at /263/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  480.769393][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.992483][ T9233] loop3: detected capacity change from 0 to 32768
[  481.070189][ T9233] (syz.3.1306,9233,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  481.085712][ T9233] (syz.3.1306,9233,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  481.215601][ T9244] loop4: detected capacity change from 0 to 256
[  481.386060][ T9233] JBD2: Ignoring recovery information on journal
[  481.473819][ T9248] Bluetooth: hci5: Frame reassembly failed (-84)
[  481.481908][ T1317] Bluetooth: hci5: Frame reassembly failed (-84)
[  481.504114][ T9244] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  481.519373][ T9233] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  481.715423][ T5800] ocfs2: Unmounting device (7,3) on (node local)
[  481.897066][ T9254] netlink: 18 bytes leftover after parsing attributes in process `syz.2.1316'.
[  481.906651][ T9254] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1316'.
[  482.178526][ T9260] loop4: detected capacity change from 0 to 512
[  482.216266][ T9260] EXT4-fs: Ignoring removed bh option
[  482.382533][ T9260] EXT4-fs error (device loop4): __ext4_iget:4984: inode #15: block 1803188595: comm syz.4.1317: invalid block
[  482.533520][ T9260] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1317: couldn't read orphan inode 15 (err -117)
[  482.630181][ T9260] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  482.664826][   T29] audit: type=1800 audit(1732424988.463:54): pid=9260 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1317" name="bus" dev="loop4" ino=18 res=0 errno=0
[  482.934814][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  483.150293][ T9280] loop2: detected capacity change from 0 to 256
[  483.175347][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.219922][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.229130][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.236736][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.304697][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.312039][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.319346][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.355035][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.362439][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.369473][ T9280] FAT-fs (loop2): Directory bread(block 1285) failed
[  483.546884][ T5803] Bluetooth: hci5: command 0xfc11 tx timeout
[  483.606881][ T5801] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[  484.322754][   T10] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  484.398805][ T9295] loop5: detected capacity change from 0 to 1024
[  484.409050][ T9295] EXT4-fs: Ignoring removed mblk_io_submit option
[  484.470363][ T9295] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  484.489844][   T10] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  484.500838][   T10] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  484.511781][   T10] usb 3-1: config 1 has no interface number 0
[  484.518877][   T10] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  484.530297][   T10] usb 3-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  484.570380][   T10] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  484.579940][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  484.588469][   T10] usb 3-1: Product: syz
[  484.592960][   T10] usb 3-1: Manufacturer: syz
[  484.597797][   T10] usb 3-1: SerialNumber: syz
[  485.021518][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  485.317160][ T9315] loop5: detected capacity change from 0 to 1024
[  485.593620][ T9315] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  485.682764][   T10] cdc_ncm 3-1:1.1: bind() failure
[  485.926401][   T10] usb 3-1: USB disconnect, device number 9
[  485.944095][ T2166] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  485.950598][ T9313] loop3: detected capacity change from 0 to 32768
[  486.081672][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.158951][ T2166] usb 2-1: Using ep0 maxpacket: 16
[  486.288208][ T2166] usb 2-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[  486.297830][ T2166] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.306315][ T2166] usb 2-1: Product: syz
[  486.310713][ T2166] usb 2-1: Manufacturer: syz
[  486.315670][ T2166] usb 2-1: SerialNumber: syz
[  486.330372][ T2166] usb 2-1: config 0 descriptor??
[  486.581618][ T2166] speedtch 2-1:0.0: speedtch_bind: wrong device class 68
[  486.590631][ T2166] speedtch 2-1:0.0: usbatm_usb_probe: bind failed: -19!
[  486.614967][ T2166] usb 2-1: USB disconnect, device number 5
[  486.795946][ T9329] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1347'.
[  486.935551][ T9333] sctp: [Deprecated]: syz.5.1348 (pid 9333) Use of int in max_burst socket option deprecated.
[  486.935551][ T9333] Use struct sctp_assoc_value instead
[  487.351655][ T9338] loop5: detected capacity change from 0 to 4096
[  487.397270][ T9338] ntfs3(loop5): Primary boot: unsupported bytes per index 8192.
[  487.406578][ T9338] ntfs3(loop5): try to read out of volume at offset 0x1ffe00
[  488.747494][ T9348] loop2: detected capacity change from 0 to 32768
[  489.760086][ T9374] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1365'.
[  489.952535][   T25] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  490.312729][   T25] usb 2-1: Using ep0 maxpacket: 32
[  490.338107][   T25] usb 2-1: New USB device found, idVendor=0cf2, idProduct=6250, bcdDevice=10.ae
[  490.349283][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  490.358820][   T25] usb 2-1: Product: syz
[  490.363713][   T25] usb 2-1: Manufacturer: syz
[  490.368558][   T25] usb 2-1: SerialNumber: syz
[  490.411442][   T25] usb 2-1: config 0 descriptor??
[  490.446770][   T25] ums_eneub6250 2-1:0.0: USB Mass Storage device detected
[  490.639636][   T25] usb 2-1: USB disconnect, device number 6
[  490.829554][ T9394] loop5: detected capacity change from 0 to 256
[  490.870633][ T9394] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  491.303650][ T2166] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  491.374639][ T9401] tmpfs: Bad value for 'nr_blocks'
[  491.472790][ T2166] usb 3-1: Using ep0 maxpacket: 8
[  491.538446][ T2166] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  491.547297][ T2166] usb 3-1: config 179 has no interface number 0
[  491.554229][ T2166] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  491.565834][ T2166] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  491.579271][ T2166] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  491.591410][ T2166] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  491.603318][ T2166] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  491.617083][ T2166] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  491.626652][ T2166] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  491.757999][ T9397] loop3: detected capacity change from 0 to 32768
[  491.792841][ T9397] (syz.3.1375,9397,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  491.809649][ T9397] (syz.3.1375,9397,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  491.881856][ T9397] JBD2: Ignoring recovery information on journal
[  491.981505][ T9397] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  491.992904][ T9399] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  492.303208][ T5800] ocfs2: Unmounting device (7,3) on (node local)
[  492.341601][ T2166] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input21
[  492.768580][ T9399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  492.779852][ T9399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  493.338232][ T9422] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1384'.
[  493.555216][   T25] usb 3-1: USB disconnect, device number 10
[  493.555274][    C0] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  493.555457][    C0] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  493.578309][   T25] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  493.758176][ T9427] loop4: detected capacity change from 0 to 64
[  493.811319][ T9427] hfs: filesystem is marked locked, mounting read-only.
[  494.058039][ T9430] loop5: detected capacity change from 0 to 512
[  494.135477][ T9430] EXT4-fs: Ignoring removed i_version option
[  494.141757][ T9430] EXT4-fs: Ignoring removed nobh option
[  494.186959][ T9430] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  494.244260][ T9430] EXT4-fs (loop5): 1 truncate cleaned up
[  494.251970][ T9430] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  494.553418][ T9446] loop3: detected capacity change from 0 to 1024
[  494.630360][ T9449] loop2: detected capacity change from 0 to 16
[  494.655820][ T9449] erofs (device loop2): negative i_size @ nid 36
[  494.824409][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.005258][ T9457] loop5: detected capacity change from 0 to 512
[  495.071408][ T9457] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  495.162762][ T2166] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  495.203834][ T9457] EXT4-fs (loop5): 1 truncate cleaned up
[  495.211756][ T9457] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  495.386532][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.444628][ T2166] usb 5-1: New USB device found, idVendor=0856, idProduct=ac31, bcdDevice=93.1e
[  495.454248][ T2166] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  495.464357][ T2166] usb 5-1: Product: syz
[  495.468762][ T2166] usb 5-1: Manufacturer: syz
[  495.474668][ T2166] usb 5-1: SerialNumber: syz
[  495.573200][ T9469] geneve2: entered promiscuous mode
[  495.578773][ T9469] geneve2: entered allmulticast mode
[  495.604700][ T2166] usb 5-1: config 0 descriptor??
[  496.037383][ T9478] loop3: detected capacity change from 0 to 128
[  496.303152][ T2166] mos7840 5-1:0.0: required endpoints missing
[  496.497919][ T2166] usb 5-1: USB disconnect, device number 7
[  499.209437][ T9508] loop3: detected capacity change from 0 to 32768
[  499.339358][   T29] audit: type=1800 audit(1732425005.043:55): pid=9508 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1418" name="file2" dev="loop3" ino=5 res=0 errno=0
[  500.961313][ T2166] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  501.420364][ T2166] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  501.430583][ T2166] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  501.439141][ T2166] usb 5-1: Product: syz
[  501.443686][ T2166] usb 5-1: Manufacturer: syz
[  501.448528][ T2166] usb 5-1: SerialNumber: syz
[  501.491474][ T2166] usb 5-1: config 0 descriptor??
[  501.728758][ T2166] usb 5-1: USB disconnect, device number 8
[  502.017150][ T9550] loop5: detected capacity change from 0 to 128
[  502.068183][ T9550] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  502.090471][ T9550] ext4 filesystem being mounted at /139/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  502.430306][ T7794] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  503.601467][ T9572] loop5: detected capacity change from 0 to 32768
[  503.663665][ T9572] 
[  503.663665][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.663665][ T9572] 
[  503.732581][ T9572] 
[  503.732581][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.732581][ T9572] 
[  503.743442][ T9572] 
[  503.743442][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.743442][ T9572] 
[  503.754352][ T9572] 
[  503.754352][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.754352][ T9572] 
[  503.766045][ T9572] 
[  503.766045][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.766045][ T9572] 
[  503.778216][  T110] 
[  503.778216][  T110]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.778216][  T110] 
[  503.791549][ T9572] 
[  503.791549][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.791549][ T9572] 
[  503.803422][ T9572] 
[  503.803422][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.803422][ T9572] 
[  503.814347][ T9572] 
[  503.814347][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.814347][ T9572] 
[  503.825241][ T9572] 
[  503.825241][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.825241][ T9572] 
[  503.835935][ T9572] 
[  503.835935][ T9572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.835935][ T9572] 
[  503.920292][  T111] 
[  503.920292][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.920292][  T111] 
[  503.949301][ T7794] 
[  503.949301][ T7794]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.949301][ T7794] 
[  503.997346][ T7794] 
[  503.997346][ T7794]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  503.997346][ T7794] 
[  504.308462][ T9590] loop3: detected capacity change from 0 to 256
[  504.637554][ T9592] loop2: detected capacity change from 0 to 2048
[  504.898865][ T9598] loop5: detected capacity change from 0 to 512
[  504.925366][ T9592] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  505.100268][ T9604] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  505.222735][ T9598] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  505.235903][ T9598] ext4 filesystem being mounted at /141/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  505.434959][ T9598] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #2: block 18: comm syz.5.1458: lblock 23 mapped to illegal pblock 18 (length 1)
[  505.516505][   T25] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  505.580919][ T9598] EXT4-fs error (device loop5): ext4_readdir:261: inode #2: block 12: comm syz.5.1458: path /141/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  505.672674][ T9598] EXT4-fs error (device loop5): ext4_readdir:261: inode #2: block 13: comm syz.5.1458: path /141/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  505.790493][   T25] usb 4-1: Using ep0 maxpacket: 8
[  505.814322][   T25] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  505.825497][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  505.834766][   T25] usb 4-1: Product: syz
[  505.839165][   T25] usb 4-1: Manufacturer: syz
[  505.844123][   T25] usb 4-1: SerialNumber: syz
[  505.874628][   T25] usb 4-1: config 0 descriptor??
[  505.985865][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  506.175030][   T25] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  506.717205][   T25] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  506.763330][   T25] usb 4-1: USB disconnect, device number 10
[  506.889981][ T9634] loop5: detected capacity change from 0 to 1024
[  507.209360][ T5855] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  507.275355][ T1317] hfsplus: b-tree write err: -5, ino 4
[  507.481293][ T5855] usb 2-1: Using ep0 maxpacket: 16
[  507.530784][ T5855] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[  507.540510][ T5855] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  507.551295][ T5855] usb 2-1: Product: syz
[  507.556108][ T5855] usb 2-1: Manufacturer: syz
[  507.560954][ T5855] usb 2-1: SerialNumber: syz
[  507.613024][ T5855] usb 2-1: config 0 descriptor??
[  507.638062][ T5855] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[  507.649179][ T5855] usb 2-1: Detected FT-X
[  507.893155][ T5855] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  508.169822][ T9652] pim6reg: entered allmulticast mode
[  508.273949][ T9652] pim6reg: left allmulticast mode
[  508.350168][ T5855] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  508.409382][ T9655] loop3: detected capacity change from 0 to 128
[  508.612875][ T5855] usb 2-1: USB disconnect, device number 7
[  508.669542][ T5855] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  508.683806][ T5855] ftdi_sio 2-1:0.0: device disconnected
[  509.115660][ T9662] netlink: 'syz.3.1488': attribute type 39 has an invalid length.
[  509.152295][ T9662] bridge0: port 1(bridge_slave_0) entered disabled state
[  509.205313][ T9662] bridge_slave_0 (unregistering): left allmulticast mode
[  509.212726][ T9662] bridge_slave_0 (unregistering): left promiscuous mode
[  509.220160][ T9662] bridge0: port 1(bridge_slave_0) entered disabled state
[  509.242921][ T2166] IPVS: starting estimator thread 0...
[  509.362789][ T9668] IPVS: using max 288 ests per chain, 14400 per kthread
[  509.399563][ T9665] bridge0: port 4(vlan3) entered blocking state
[  509.408397][ T9665] bridge0: port 4(vlan3) entered disabled state
[  509.415592][ T9665] vlan3: entered allmulticast mode
[  509.421012][ T9665] dummy0: entered allmulticast mode
[  509.429570][ T9665] vlan3: entered promiscuous mode
[  509.435004][ T9665] dummy0: entered promiscuous mode
[  509.443730][ T9665] bridge0: port 4(vlan3) entered blocking state
[  509.450654][ T9665] bridge0: port 4(vlan3) entered forwarding state
[  510.971849][ T9698] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1502'.
[  510.981382][ T9698] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1502'.
[  511.660096][ T9710] loop3: detected capacity change from 0 to 1024
[  511.800594][ T9710] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  512.300724][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  512.351678][ T9725] netlink: 165 bytes leftover after parsing attributes in process `syz.5.1512'.
[  513.444385][ T9744] loop5: detected capacity change from 0 to 1024
[  513.493683][ T9744] EXT4-fs: Ignoring removed orlov option
[  513.510870][ T9744] EXT4-fs (loop5): Test dummy encryption mode enabled
[  513.529081][ T9744] EXT4-fs (loop5): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  513.608197][ T9744] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  513.957335][ T9749] loop4: detected capacity change from 0 to 128
[  513.995061][ T9749] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  514.102851][ T9749] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  514.311806][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  514.949802][   T29] audit: type=1326 audit(1732425020.733:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  514.972714][   T29] audit: type=1326 audit(1732425020.733:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  515.052590][   T29] audit: type=1326 audit(1732425020.813:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  515.075335][   T29] audit: type=1326 audit(1732425020.813:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  515.098674][   T29] audit: type=1326 audit(1732425020.843:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  515.121417][   T29] audit: type=1326 audit(1732425020.843:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  515.145725][   T29] audit: type=1326 audit(1732425020.853:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  515.169456][   T29] audit: type=1326 audit(1732425020.853:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  515.192374][   T29] audit: type=1326 audit(1732425020.873:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  515.212246][ T9770] lo: entered promiscuous mode
[  515.215636][   T29] audit: type=1326 audit(1732425020.873:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.2.1530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e68b7e819 code=0x7ffc0000
[  516.125361][ T9786] program syz.5.1539 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  516.372451][ T2166] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  516.561978][ T2166] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  516.574060][ T2166] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  516.589512][ T2166] usb 5-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00
[  516.599120][ T2166] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  516.637761][ T2166] usb 5-1: config 0 descriptor??
[  517.113210][ T2166] steelseries 0003:1038:12B6.000F: unknown main item tag 0x3
[  517.163507][ T2166] steelseries 0003:1038:12B6.000F: hidraw0: USB HID v0.00 Device [HID 1038:12b6] on usb-dummy_hcd.4-1/input0
[  517.327741][ T5855] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  517.652640][ T5855] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  517.662074][ T5855] usb 6-1: config 1 has no interface number 0
[  517.668569][ T5855] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  517.680006][ T5855] usb 6-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  517.690487][ T5855] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 25705, setting to 64
[  517.754963][ T9807] team_slave_0: entered promiscuous mode
[  517.760958][ T9807] team_slave_1: entered promiscuous mode
[  517.767275][ T9807] macvlan2: entered promiscuous mode
[  517.773366][ T9807] team0: entered promiscuous mode
[  517.781196][ T9807] macvlan2: entered allmulticast mode
[  517.787582][ T9807] team0: entered allmulticast mode
[  517.793078][ T9807] team_slave_0: entered allmulticast mode
[  517.799026][ T9807] team_slave_1: entered allmulticast mode
[  517.809577][ T9807] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  517.851623][ T9807] macvlan3: entered promiscuous mode
[  517.858215][ T9807] macvlan3: entered allmulticast mode
[  517.862688][ T5855] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  517.870448][ T9807] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  517.873003][ T5855] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  517.889315][ T5855] usb 6-1: Product: syz
[  517.893851][ T5855] usb 6-1: Manufacturer: syz
[  517.898693][ T5855] usb 6-1: SerialNumber: syz
[  518.021146][ T2166] usb 5-1: USB disconnect, device number 9
[  519.348270][ T5855] cdc_ncm 6-1:1.1: bind() failure
[  519.515835][ T9829] bridge0: port 3(gretap0) entered blocking state
[  519.523349][ T9829] bridge0: port 3(gretap0) entered disabled state
[  519.531064][ T9829] gretap0: entered allmulticast mode
[  519.544599][ T9829] gretap0: entered promiscuous mode
[  519.552336][ T9829] bridge0: port 3(gretap0) entered blocking state
[  519.559395][ T9829] bridge0: port 3(gretap0) entered forwarding state
[  519.578393][ T9833] gretap0: left allmulticast mode
[  519.584328][ T9833] gretap0: left promiscuous mode
[  519.590382][ T9833] bridge0: port 3(gretap0) entered disabled state
[  519.623406][   T25] usb 6-1: USB disconnect, device number 4
[  519.702538][ T5855] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  519.896543][ T5855] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 64, changing to 10
[  519.908421][ T5855] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  519.918679][ T5855] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  519.928925][ T5855] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  519.979315][ T5855] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  519.988949][ T5855] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  519.997504][ T5855] usb 4-1: Product: syz
[  520.001906][ T5855] usb 4-1: Manufacturer: syz
[  520.006885][ T5855] usb 4-1: SerialNumber: syz
[  520.284644][ T9842] netlink: 'syz.2.1562': attribute type 1 has an invalid length.
[  520.475581][ T5855] cdc_ncm 4-1:1.0: bind() failure
[  520.515174][ T5855] cdc_ncm 4-1:1.1: probe with driver cdc_ncm failed with error -71
[  520.535310][ T5855] cdc_mbim 4-1:1.1: probe with driver cdc_mbim failed with error -71
[  520.552963][ T5855] usbtest 4-1:1.1: probe with driver usbtest failed with error -71
[  520.585189][ T5855] usb 4-1: USB disconnect, device number 11
[  520.599207][ T9844] loop5: detected capacity change from 0 to 512
[  520.706051][ T9844] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.1564: casefold flag without casefold feature
[  520.758091][ T9844] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.1564: couldn't read orphan inode 15 (err -117)
[  520.855811][ T9844] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  521.050627][ T9857] loop2: detected capacity change from 0 to 128
[  521.291222][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  521.567044][ T9866] loop4: detected capacity change from 0 to 512
[  521.596912][ T9866] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  521.788898][ T9866] EXT4-fs (loop4): 1 truncate cleaned up
[  521.797554][ T9866] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  523.102902][ T9876] loop3: detected capacity change from 0 to 32768
[  523.293204][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  523.325869][ T9876] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  523.478655][ T9876] XFS (loop3): Ending clean mount
[  523.589802][ T5800] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  524.083055][ T5853] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  524.279776][ T5853] usb 6-1: Using ep0 maxpacket: 16
[  524.316504][ T5853] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  524.329609][ T5853] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  524.341919][ T5853] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  524.359068][ T5853] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  524.370141][ T5853] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  524.469473][ T5853] usb 6-1: config 0 descriptor??
[  524.896699][ T5853] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  524.904460][ T5853] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  524.912023][ T5853] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  524.920160][ T5853] microsoft 0003:045E:07DA.0010: item 0 4 0 8 parsing failed
[  524.999059][ T5853] microsoft 0003:045E:07DA.0010: parse failed
[  525.006465][ T5853] microsoft 0003:045E:07DA.0010: probe with driver microsoft failed with error -22
[  525.097321][ T5853] usb 6-1: USB disconnect, device number 5
[  525.866502][ T2166] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  526.063149][ T2166] usb 3-1: Using ep0 maxpacket: 8
[  526.120954][ T2166] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  526.129811][ T2166] usb 3-1: config 179 has no interface number 0
[  526.136651][ T2166] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  526.148246][ T2166] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  526.159807][ T2166] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  526.171200][ T2166] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  526.183600][ T2166] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  526.197266][ T2166] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  526.207067][ T2166] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  526.219706][ T9929] loop3: detected capacity change from 0 to 128
[  526.249359][ T9929] VFS: Found a Xenix FS (block size = 512) on device loop3
[  526.311396][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  526.319921][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  526.358689][ T9922] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  526.861415][ T5855] usb 3-1: USB disconnect, device number 11
[  526.861461][    C0] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  526.861729][    C0] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  527.145953][ T9929] sysv_count_free_blocks: free block count was -2041545935, correcting to 0
[  527.166105][ T9935] loop4: detected capacity change from 0 to 128
[  528.065179][   T25] IPVS: starting estimator thread 0...
[  528.100974][ T9935] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  528.153076][ T9942] IPVS: using max 240 ests per chain, 12000 per kthread
[  528.196180][ T9935] ext4 filesystem being mounted at /325/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  528.255847][ T9946] loop5: detected capacity change from 0 to 2048
[  528.280044][ T9946] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  528.327169][ T9947] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  528.518042][ T9929] sysv_count_free_inodes: unable to read inode table
[  528.629225][ T5800] sysv_free_block: trying to free block not in datazone
[  528.636490][ T5800] sysv_free_block: trying to free block not in datazone
[  528.644507][ T5800] sysv_free_block: trying to free block not in datazone
[  528.651635][ T5800] sysv_free_block: trying to free block not in datazone
[  528.659000][ T5800] sysv_free_block: trying to free block not in datazone
[  528.666257][ T5800] sysv_free_block: trying to free block not in datazone
[  528.673559][ T5800] sysv_free_block: trying to free block not in datazone
[  528.751736][ T5800] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  529.187098][ T5805] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  529.808173][ T9972] loop4: detected capacity change from 0 to 16
[  529.858298][ T9972] erofs (device loop4): mounted with root inode @ nid 36.
[  529.935827][ T9972] syz.4.1608: attempt to access beyond end of device
[  529.935827][ T9972] loop4: rw=0, sector=1049256, nr_sectors = 128 limit=16
[  529.950876][ T9972] erofs (device loop4): read error -5 @ 0 of nid 36
[  531.060224][ T9984] loop3: detected capacity change from 0 to 32768
[  531.125378][ T9981] loop5: detected capacity change from 0 to 2048
[  531.191123][ T9987] tipc: Started in network mode
[  531.196464][ T9987] tipc: Node identity ac141441, cluster identity 4711
[  531.205537][ T9987] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  531.258144][ T9981] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  531.313988][   T29] audit: type=1800 audit(1732425037.113:66): pid=9981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1612" name="file1" dev="loop5" ino=1415 res=0 errno=0
[  531.335612][   T29] audit: type=1800 audit(1732425037.113:67): pid=9981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1612" name="file1" dev="loop5" ino=1415 res=0 errno=0
[  533.015882][T10004] loop3: detected capacity change from 0 to 32768
[  534.201208][T10023] loop2: detected capacity change from 0 to 128
[  534.256337][T10023] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  534.416196][T10023] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  534.805043][T10031] loop5: detected capacity change from 0 to 512
[  534.944217][T10031] EXT4-fs error (device loop5): ext4_orphan_get:1415: comm syz.5.1636: bad orphan inode 13
[  535.024482][T10031] ext4_test_bit(bit=12, block=4) = 1
[  535.030043][T10031] is_bad_inode(inode)=0
[  535.034862][T10031] NEXT_ORPHAN(inode)=0
[  535.039136][T10031] max_ino=32
[  535.043303][T10031] i_nlink=1
[  535.048188][T10031] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  535.172955][T10031] EXT4-fs warning (device loop5): dx_probe:833: inode #2: comm syz.5.1636: Unrecognised inode hash code 20
[  535.185088][T10031] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.1636: Corrupt directory, running e2fsck is recommended
[  535.263947][T10031] EXT4-fs warning (device loop5): dx_probe:833: inode #2: comm syz.5.1636: Unrecognised inode hash code 20
[  535.276572][T10031] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.1636: Corrupt directory, running e2fsck is recommended
[  535.613735][T10050] loop3: detected capacity change from 0 to 256
[  535.631438][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.649841][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.657167][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.664389][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.677515][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.684756][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.691815][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.703297][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.711086][T10050] FAT-fs (loop3): FAT read failed (blocknr 1281)
[  535.759396][T10050] FAT-fs (loop3): Directory bread(block 1285) failed
[  535.791424][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  536.221723][T10056] loop5: detected capacity change from 0 to 256
[  539.286032][T10107] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1668'.
[  539.541373][T10111] loop3: detected capacity change from 0 to 128
[  539.602744][T10111] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  539.647857][T10111] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  540.263846][T10121] loop5: detected capacity change from 0 to 1024
[  541.339106][T10121] Process accounting resumed
[  542.844694][T10153] loop3: detected capacity change from 0 to 256
[  542.902334][   T29] audit: type=1800 audit(1732425048.673:68): pid=10153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1689" name="file1" dev="loop3" ino=1048643 res=0 errno=0
[  542.913789][T10155] sp0: Synchronizing with TNC
[  543.047700][T10157] FAT-fs (loop3): error, corrupted file size (i_pos 196, 2097162)
[  543.057077][T10157] FAT-fs (loop3): Filesystem has been set read-only
[  544.062098][T10171] vivid-004: disconnect
[  544.093565][T10166] vivid-004: reconnect
[  544.538628][T10178] loop4: detected capacity change from 0 to 512
[  544.721292][T10178] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  544.733555][T10178] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  544.744173][T10178] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.1699: Corrupt directory, running e2fsck is recommended
[  544.868883][T10178] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  544.896615][T10178] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1699: corrupted in-inode xattr: invalid ea_ino
[  544.937628][T10178] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1699: couldn't read orphan inode 15 (err -117)
[  545.014071][T10178] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  545.413180][T10178] EXT4-fs error (device loop4): __ext4_remount:6749: comm syz.4.1699: Abort forced by user
[  545.442695][T10190] loop2: detected capacity change from 0 to 256
[  545.553158][T10178] EXT4-fs (loop4): Remounting filesystem read-only
[  545.560027][T10178] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  545.697014][T10190] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  545.710197][T10190] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  546.184412][T10188] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  546.525084][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.170757][T10204] loop2: detected capacity change from 0 to 64
[  547.384294][ T2166] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  547.600112][ T2166] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  547.603940][T10213] input: syz1 as /devices/virtual/input/input22
[  547.611532][ T2166] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  547.618420][T10213] input: failed to attach handler leds to device input22, error: -6
[  547.627831][ T2166] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  547.649622][ T2166] usb 2-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  547.659448][ T2166] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  547.688924][ T2166] usb 2-1: config 0 descriptor??
[  547.994181][T10221] netlink: 9 bytes leftover after parsing attributes in process `syz.5.1715'.
[  548.012739][T10221] gretap0: entered promiscuous mode
[  548.050869][T10221] netlink: 5 bytes leftover after parsing attributes in process `syz.5.1715'.
[  548.062401][T10221] 0ªX¹¦D: renamed from gretap0
[  548.096300][T10221] 0ªX¹¦D: left promiscuous mode
[  548.101668][T10221] 0ªX¹¦D: entered allmulticast mode
[  548.117934][T10221] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[  548.143321][ T2166] acrux 0003:1A34:0802.0011: unknown main item tag 0x0
[  548.150578][ T2166] acrux 0003:1A34:0802.0011: item fetching failed at offset 1/5
[  548.177450][ T2166] acrux 0003:1A34:0802.0011: parse failed
[  548.184342][ T2166] acrux 0003:1A34:0802.0011: probe with driver acrux failed with error -22
[  548.384294][ T2166] usb 2-1: USB disconnect, device number 8
[  548.661850][T10232] loop3: detected capacity change from 0 to 1024
[  548.689783][T10232] EXT4-fs: Ignoring removed oldalloc option
[  548.697346][T10232] EXT4-fs: inline encryption not supported
[  548.729659][T10232] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  548.814075][T10232] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  549.098836][T10232] EXT4-fs: Ignoring removed orlov option
[  549.131811][T10232] EXT4-fs (loop3): can't enable nombcache during remount
[  549.615191][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.998783][T10256] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  550.005658][T10256] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  550.014224][T10256] vhci_hcd vhci_hcd.0: Device attached
[  550.067218][T10259] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(6)
[  550.074043][T10259] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  550.082829][T10259] vhci_hcd vhci_hcd.0: Device attached
[  550.168751][T10259] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  550.208776][T10256] vhci_hcd vhci_hcd.0: pdev(5) rhport(2) sockfd(5)
[  550.215613][T10256] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  550.224560][T10256] vhci_hcd vhci_hcd.0: Device attached
[  550.472758][ T5853] vhci_hcd: vhci_device speed not set
[  550.943309][ T5853] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[  551.063638][T10257] vhci_hcd: connection closed
[  551.078591][T10269] loop3: detected capacity change from 0 to 32768
[  551.094732][T10260] vhci_hcd: connection closed
[  551.095381][T10262] vhci_hcd: connection closed
[  551.113574][T10269] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1730 (10269)
[  551.145833][T10256] vhci_hcd vhci_hcd.0: pdev(5) rhport(4) sockfd(9)
[  551.152638][T10256] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  551.160682][T10256] vhci_hcd vhci_hcd.0: Device attached
[  551.173558][T10272] vhci_hcd: connection closed
[  551.175546][ T4911] vhci_hcd: stop threads
[  551.185592][ T4911] vhci_hcd: release socket
[  551.190229][ T4911] vhci_hcd: disconnect device
[  551.206343][ T4911] vhci_hcd: stop threads
[  551.210897][ T4911] vhci_hcd: release socket
[  551.215894][ T4911] vhci_hcd: disconnect device
[  551.242429][ T4911] vhci_hcd: stop threads
[  551.246887][ T4911] vhci_hcd: release socket
[  551.251560][ T4911] vhci_hcd: disconnect device
[  551.270622][ T4911] vhci_hcd: stop threads
[  551.275406][ T4911] vhci_hcd: release socket
[  551.280182][ T4911] vhci_hcd: disconnect device
[  551.305172][T10269] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  551.315866][T10269] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  551.326302][T10269] BTRFS info (device loop3): using free-space-tree
[  551.552997][T10296] loop2: detected capacity change from 0 to 256
[  551.698295][T10296] Process accounting resumed
[  551.704211][T10296] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  551.713587][T10296] FAT-fs (loop2): Filesystem has been set read-only
[  551.741261][T10296] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  551.849559][ T5800] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  552.009400][T10306] loop5: detected capacity change from 0 to 256
[  552.850816][T10318] loop5: detected capacity change from 0 to 1024
[  552.860783][T10318] EXT4-fs: Ignoring removed oldalloc option
[  553.119458][T10318] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  553.397157][T10335] syzkaller1: entered promiscuous mode
[  553.403140][T10335] syzkaller1: entered allmulticast mode
[  554.009718][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  554.322905][ T2166] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  554.425287][T10353] input: syz1 as /devices/virtual/input/input23
[  554.470484][T10302] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  554.596374][ T2166] usb 4-1: unable to get BOS descriptor or descriptor too short
[  554.617051][ T2166] usb 4-1: not running at top speed; connect to a high speed hub
[  554.636009][T10302] usb 5-1: Using ep0 maxpacket: 32
[  554.652895][ T2166] usb 4-1: config 129 has an invalid interface number: 135 but max is 0
[  554.661533][ T2166] usb 4-1: config 129 has an invalid interface number: 5 but max is 0
[  554.671520][ T2166] usb 4-1: config 129 descriptor has 1 excess byte, ignoring
[  554.679408][ T2166] usb 4-1: config 129 has 2 interfaces, different from the descriptor's value: 1
[  554.689087][ T2166] usb 4-1: config 129 has no interface number 0
[  554.695705][ T2166] usb 4-1: config 129 has no interface number 1
[  554.702412][ T2166] usb 4-1: config 129 interface 135 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  554.716935][ T2166] usb 4-1: too many endpoints for config 129 interface 5 altsetting 7: 37, using maximum allowed: 30
[  554.728312][ T2166] usb 4-1: config 129 interface 5 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 37
[  554.742587][ T2166] usb 4-1: config 129 interface 135 has no altsetting 0
[  554.749835][ T2166] usb 4-1: config 129 interface 5 has no altsetting 0
[  554.846409][T10302] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  554.855936][T10302] usb 5-1: config 0 has no interface number 0
[  554.934752][T10302] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  554.944402][T10302] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.945413][ T2166] usb 4-1: string descriptor 0 read error: -22
[  554.952700][T10302] usb 5-1: Product: syz
[  554.952814][T10302] usb 5-1: Manufacturer: syz
[  554.952919][T10302] usb 5-1: SerialNumber: syz
[  554.974225][ T2166] usb 4-1: New USB device found, idVendor=2040, idProduct=721f, bcdDevice=f2.62
[  554.985258][ T2166] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  555.019253][T10302] usb 5-1: config 0 descriptor??
[  555.052545][T10302] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  555.052960][ T2166] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  555.069607][ T2166] usb 4-1: MIDIStreaming interface descriptor not found
[  555.378037][ T2166] usb 4-1: USB disconnect, device number 12
[  555.428525][T10302] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  555.455015][T10302] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  555.644828][T10369] lo: entered allmulticast mode
[  555.665156][T10338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  555.675242][T10338] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  555.835686][T10367] syz.2.1765 (10367) used greatest stack depth: 3928 bytes left
[  555.957573][    C1] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[  555.960293][ T2166] usb 5-1: USB disconnect, device number 10
[  555.983827][ T2166] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  556.004402][ T2166] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  556.018817][ T2166] quatech2 5-1:0.51: device disconnected
[  556.103731][ T5853] vhci_hcd: vhci_device speed not set
[  556.368042][T10380] usb usb9: usbfs: process 10380 (syz.5.1770) did not claim interface 0 before use
[  557.063173][T10391] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  557.221345][T10393] vlan3: entered allmulticast mode
[  557.396135][   T25] usb usb44-port3: attempt power cycle
[  557.813062][T10302] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  557.998348][   T25] usb usb44-port3: unable to enumerate USB device
[  558.029837][T10302] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  558.041281][T10302] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  558.051522][T10302] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  558.061147][T10302] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  558.106273][T10302] usb 6-1: config 0 descriptor??
[  558.571733][T10302] cm6533_jd 0003:0D8C:0022.0012: unknown main item tag 0x0
[  558.579784][T10302] cm6533_jd 0003:0D8C:0022.0012: unknown main item tag 0x0
[  558.639110][T10302] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0D8C:0022.0012/input/input24
[  558.701366][T10302] cm6533_jd 0003:0D8C:0022.0012: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.5-1/input0
[  558.774885][ T5853] usb 6-1: USB disconnect, device number 6
[  559.435576][T10433] netlink: 'syz.4.1793': attribute type 1 has an invalid length.
[  559.444135][T10433] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.1793'.
[  559.588548][T10438] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1794'.
[  559.598071][T10438] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1794'.
[  559.920842][   T29] audit: type=1326 audit(1732425065.713:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10444 comm="syz.4.1799" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f88b1b7e819 code=0x0
[  560.163956][T10455] loop5: detected capacity change from 0 to 16
[  560.177962][T10454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1803'.
[  560.186324][T10455] erofs (device loop5): mounted with root inode @ nid 36.
[  560.526862][T10457] loop2: detected capacity change from 0 to 128
[  560.570645][T10457] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  560.642427][T10457] ext4 filesystem being mounted at /386/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  561.153257][ T5797] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  561.366529][T10473] loop5: detected capacity change from 0 to 1024
[  561.411487][T10473] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  561.424569][T10473] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  561.539233][T10473] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1813: bg 0: block 393: padding at end of block bitmap is not set
[  561.651826][T10473] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 117
[  561.665029][T10473] EXT4-fs (loop5): This should not happen!! Data will be lost
[  561.665029][T10473] 
[  562.125697][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  562.425114][T10504] input: syz1 as /devices/virtual/input/input25
[  563.046020][T10517] loop4: detected capacity change from 0 to 256
[  563.145819][T10520] syz.1.1829[10520] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  563.146231][T10520] syz.1.1829[10520] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  563.226683][T10520] syz.1.1829[10520] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  566.228533][T10575] loop5: detected capacity change from 0 to 1024
[  566.347160][T10575] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  566.791683][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  567.115813][T10586] loop4: detected capacity change from 0 to 256
[  567.268981][T10586] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  567.283003][T10586] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  568.006273][T10593] loop5: detected capacity change from 0 to 2048
[  568.087932][T10593] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  568.543305][ T7794] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  568.619540][T10606] sctp: [Deprecated]: syz.4.1866 (pid 10606) Use of struct sctp_assoc_value in delayed_ack socket option.
[  568.619540][T10606] Use struct sctp_sack_info instead
[  569.193398][T10616] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1871'.
[  569.202956][T10616] bond0: option arp_interval: invalid value (18446744071562199076)
[  569.211143][T10616] bond0: option arp_interval: allowed values 0 - 2147483647
[  569.808415][T10628] loop2: detected capacity change from 0 to 1024
[  569.853244][T10628] hfsplus: bad catalog entry type
[  569.930586][ T1317] hfsplus: b-tree write err: -5, ino 4
[  570.050922][T10630] loop4: detected capacity change from 0 to 764
[  570.107801][T10630] rock: directory entry would overflow storage
[  570.115600][T10630] rock: sig=0x4654, size=5, remaining=4
[  570.184089][T10630] ISOFS: unable to read i-node block
[  570.692530][T10644] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.750994][ T4911] bridge0: port 1(bridge_slave_0) entered blocking state
[  570.758926][ T4911] bridge0: port 1(bridge_slave_0) entered forwarding state
[  571.157858][T10651] tipc: Enabled bearer <udp:s>, priority 10
[  571.238246][T10653] loop2: detected capacity change from 0 to 512
[  571.685519][T10653] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13
[  571.726656][T10653] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1888: invalid indirect mapped block 2683928664 (level 1)
[  571.758286][T10653] EXT4-fs (loop2): 1 truncate cleaned up
[  571.766392][T10653] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  571.962745][T10666] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[  571.999428][T10666] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[  572.300194][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  572.585813][T10668] loop4: detected capacity change from 0 to 32768
[  572.595948][ T5853] tipc: Node number set to 2886997057
[  572.755971][T10668] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  572.786533][T10679] vivid-000: disconnect
[  572.804060][ T2166] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  572.819367][T10679] vivid-000: reconnect
[  572.968786][ T2166] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  572.981643][ T2166] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  572.992044][ T2166] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  573.001593][ T2166] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  573.129866][T10668] XFS (loop4): Ending clean mount
[  573.140113][ T2166] usb 6-1: config 0 descriptor??
[  573.344614][ T5805] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  573.575121][ T2166] cm6533_jd 0003:0D8C:0022.0013: unknown main item tag 0x0
[  573.583133][ T2166] cm6533_jd 0003:0D8C:0022.0013: unknown main item tag 0x0
[  573.637145][ T2166] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0D8C:0022.0013/input/input26
[  573.666252][T10690] netlink: 87 bytes leftover after parsing attributes in process `syz.2.1903'.
[  573.710475][ T2166] cm6533_jd 0003:0D8C:0022.0013: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.5-1/input0
[  573.779565][ T2166] usb 6-1: USB disconnect, device number 7
[  574.205327][T10695] loop2: detected capacity change from 0 to 128
[  574.227135][T10695] befs: Bad value for 'gid'
[  574.231892][T10695] befs: Bad value for 'gid'
[  574.913213][T10702] batadv_slave_1: entered promiscuous mode
[  574.965319][T10701] batadv_slave_1: left promiscuous mode
[  575.017707][T10705] input: syz1 as /devices/virtual/input/input27
[  575.025136][T10705] input: failed to attach handler leds to device input27, error: -6
[  575.056006][T10706] loop2: detected capacity change from 0 to 164
[  576.267485][T10721] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1914'.
[  576.855259][T10719] loop3: detected capacity change from 0 to 32768
[  576.972962][T10719] ERROR: (device loop3): diRead: i_ino != di_number
[  576.972962][T10719] 
[  577.492519][ T5853] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  577.656047][T10735] loop2: detected capacity change from 0 to 256
[  577.793728][ T5853] usb 5-1: Using ep0 maxpacket: 8
[  577.812589][ T5853] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  577.823262][ T5853] usb 5-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  577.832862][ T5853] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  577.900536][ T5853] usb 5-1: config 0 descriptor??
[  577.937809][ T5853] gspca_main: vc032x-2.14.0 probing 046d:0892
[  578.609324][T10743] loop2: detected capacity change from 0 to 16
[  578.989264][ T5853] gspca_vc032x: reg_r err -71
[  578.994623][ T5853] vc032x 5-1:0.0: probe with driver vc032x failed with error -71
[  579.014521][ T5853] usb 5-1: USB disconnect, device number 11
[  579.709124][T10751] vlan3: entered promiscuous mode
[  579.714576][T10751] vlan3: entered allmulticast mode
[  579.721046][T10751] vlan0: entered allmulticast mode
[  579.727970][T10751] veth0_vlan: entered allmulticast mode
[  579.734948][T10751] vlan0: entered promiscuous mode
[  579.753245][T10751] team0: Port device vlan3 added
[  579.831020][T10753] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1927'.
[  580.958659][T10770] netlink: 'syz.4.1934': attribute type 11 has an invalid length.
[  581.863994][ T5853] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  582.037272][ T5853] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  582.049625][ T5853] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  582.061095][ T5853] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  582.071393][ T5853] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  582.085004][ T5853] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  582.094940][ T5853] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  582.112993][ T5853] usb 3-1: config 0 descriptor??
[  582.894105][ T5853] plantronics 0003:047F:FFFF.0014: No inputs registered, leaving
[  582.939238][ T5853] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  583.158059][ T5853] usb 3-1: USB disconnect, device number 12
[  584.193021][T10808] loop3: detected capacity change from 0 to 32768
[  584.303160][T10808] ialloc: diAlloc returned -5!
[  584.695045][T10818] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1954'.
[  586.140876][T10842] loop3: detected capacity change from 0 to 64
[  587.721627][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  587.728977][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  587.780300][T10870] loop4: detected capacity change from 0 to 1024
[  587.934416][T10870] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  587.992733][T10879] loop2: detected capacity change from 0 to 64
[  588.000042][T10872] loop3: detected capacity change from 0 to 512
[  588.026827][T10872] EXT4-fs: Ignoring removed orlov option
[  588.056568][T10881] loop5: detected capacity change from 0 to 1024
[  588.088731][T10870] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #14: comm syz.4.1976: attempt to clear invalid blocks 1886221359 len 1
[  588.159550][T10872] EXT4-fs error (device loop3): dx_probe:823: inode #2: comm syz.3.1977: Attempting to read directory block (0) that is past i_size (256)
[  588.196334][   T29] audit: type=1800 audit(1732425093.913:70): pid=10881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1980" name=A814F6F2377BCFC78E2E86368C138510A04CEDF7175AF8C2034FAE7413E3ACE8C71AB9A0AF1CA7042011A6ED028E205648535DABF3B2F85196AE18D36B839E3CD54AE4933AD529888FDAC7BB8A70C72BC0FC81BA06506F2D5BC7686E219BBE5283959CBEF9950E071CB6D9F341FC624A5110341F26CEBD71 dev="loop5" ino=25 res=0 errno=0
[  588.263298][T10872] EXT4-fs (loop3): Remounting filesystem read-only
[  588.315167][T10872] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  588.325708][T10872] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.500574][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  589.024682][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  589.384308][T10887] loop2: detected capacity change from 0 to 32768
[  589.403519][T10887] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1984 (10887)
[  589.425850][T10887] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  589.437281][T10887] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  589.447614][T10887] BTRFS info (device loop2): using free-space-tree
[  589.999203][ T5797] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  590.961283][T10934] loop5: detected capacity change from 0 to 256
[  591.778344][T10945] sctp: [Deprecated]: syz.5.2002 (pid 10945) Use of int in max_burst socket option deprecated.
[  591.778344][T10945] Use struct sctp_assoc_value instead
[  592.423441][ T3865] =====================================================
[  592.430737][ T3865] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0x539/0xb40
[  592.439732][ T3865]  n_tty_receive_buf_closing+0x539/0xb40
[  592.445653][ T3865]  n_tty_receive_buf_common+0x196b/0x2490
[  592.451569][ T3865]  n_tty_receive_buf2+0x4c/0x60
[  592.456899][ T3865]  tty_ldisc_receive_buf+0xd0/0x290
[  592.462435][ T3865]  tty_port_default_receive_buf+0xdf/0x190
[  592.468463][ T3865]  flush_to_ldisc+0x473/0xdb0
[  592.473515][ T3865]  process_scheduled_works+0xae0/0x1c40
[  592.479269][ T3865]  worker_thread+0xea7/0x14f0
[  592.484335][ T3865]  kthread+0x3e2/0x540
[  592.488565][ T3865]  ret_from_fork+0x6d/0x90
[  592.493295][ T3865]  ret_from_fork_asm+0x1a/0x30
[  592.498264][ T3865] 
[  592.500680][ T3865] Uninit was created at:
[  592.505343][ T3865]  __kmalloc_noprof+0x661/0xf30
[  592.510382][ T3865]  __tty_buffer_request_room+0x36e/0x6d0
[  592.516749][ T3865]  __tty_insert_flip_string_flags+0x140/0x570
[  592.523161][ T3865]  uart_insert_char+0x39e/0xa10
[  592.528197][ T3865]  serial8250_read_char+0x1a7/0x5d0
[  592.533750][ T3865]  serial8250_handle_irq+0x970/0x1130
[  592.539859][ T3865]  serial8250_default_handle_irq+0x120/0x2b0
[  592.546256][ T3865]  serial8250_interrupt+0xc5/0x360
[  592.551544][ T3865]  __handle_irq_event_percpu+0x118/0xca0
[  592.557555][ T3865]  handle_irq_event+0xef/0x2c0
[  592.562604][ T3865]  handle_edge_irq+0x340/0xfb0
[  592.567558][ T3865]  __common_interrupt+0x97/0x1f0
[  592.572815][ T3865]  common_interrupt+0x92/0xb0
[  592.577685][ T3865]  asm_common_interrupt+0x2b/0x40
[  592.583018][ T3865] 
[  592.585438][ T3865] CPU: 1 UID: 0 PID: 3865 Comm: kworker/u8:11 Not tainted 6.12.0-syzkaller-09073-g9f16d5e6f220 #0
[  592.596647][ T3865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  592.607399][ T3865] Workqueue: events_unbound flush_to_ldisc
[  592.613539][ T3865] =====================================================
[  592.620582][ T3865] Disabling lock debugging due to kernel taint
[  592.626929][ T3865] Kernel panic - not syncing: kmsan.panic set ...
[  592.633480][ T3865] CPU: 1 UID: 0 PID: 3865 Comm: kworker/u8:11 Tainted: G    B              6.12.0-syzkaller-09073-g9f16d5e6f220 #0
[  592.645763][ T3865] Tainted: [B]=BAD_PAGE
[  592.650034][ T3865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  592.660253][ T3865] Workqueue: events_unbound flush_to_ldisc
[  592.666295][ T3865] Call Trace:
[  592.669689][ T3865]  <TASK>
[  592.672738][ T3865]  dump_stack_lvl+0x216/0x2d0
[  592.677607][ T3865]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  592.683661][ T3865]  dump_stack+0x1e/0x30
[  592.687998][ T3865]  panic+0x4e2/0xcf0
[  592.692064][ T3865]  ? kmsan_get_metadata+0x81/0x1c0
[  592.697417][ T3865]  kmsan_report+0x2c7/0x2d0
[  592.702135][ T3865]  ? __msan_warning+0x95/0x120
[  592.707094][ T3865]  ? n_tty_receive_buf_closing+0x539/0xb40
[  592.713082][ T3865]  ? n_tty_receive_buf_common+0x196b/0x2490
[  592.719154][ T3865]  ? n_tty_receive_buf2+0x4c/0x60
[  592.724344][ T3865]  ? tty_ldisc_receive_buf+0xd0/0x290
[  592.729913][ T3865]  ? tty_port_default_receive_buf+0xdf/0x190
[  592.736118][ T3865]  ? flush_to_ldisc+0x473/0xdb0
[  592.741199][ T3865]  ? process_scheduled_works+0xae0/0x1c40
[  592.747130][ T3865]  ? worker_thread+0xea7/0x14f0
[  592.752181][ T3865]  ? kthread+0x3e2/0x540
[  592.756657][ T3865]  ? ret_from_fork+0x6d/0x90
[  592.761415][ T3865]  ? ret_from_fork_asm+0x1a/0x30
[  592.766564][ T3865]  ? rpm_suspend+0xa5/0x26f0
[  592.771319][ T3865]  ? kmsan_get_metadata+0x13e/0x1c0
[  592.776734][ T3865]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  592.782774][ T3865]  ? __update_load_avg_cfs_rq+0xaac/0x10e0
[  592.788796][ T3865]  ? kmsan_get_metadata+0x13e/0x1c0
[  592.794207][ T3865]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  592.800253][ T3865]  ? kmsan_get_metadata+0x13e/0x1c0
[  592.805665][ T3865]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  592.811692][ T3865]  __msan_warning+0x95/0x120
[  592.816479][ T3865]  n_tty_receive_buf_closing+0x539/0xb40
[  592.822322][ T3865]  n_tty_receive_buf_common+0x196b/0x2490
[  592.828215][ T3865]  ? kmsan_get_metadata+0x13e/0x1c0
[  592.833665][ T3865]  n_tty_receive_buf2+0x4c/0x60
[  592.838698][ T3865]  ? __pfx_n_tty_receive_buf2+0x10/0x10
[  592.844418][ T3865]  tty_ldisc_receive_buf+0xd0/0x290
[  592.849829][ T3865]  tty_port_default_receive_buf+0xdf/0x190
[  592.855848][ T3865]  flush_to_ldisc+0x473/0xdb0
[  592.860729][ T3865]  ? __pfx_tty_port_default_receive_buf+0x10/0x10
[  592.867364][ T3865]  ? __pfx_flush_to_ldisc+0x10/0x10
[  592.872765][ T3865]  process_scheduled_works+0xae0/0x1c40
[  592.878544][ T3865]  worker_thread+0xea7/0x14f0
[  592.883434][ T3865]  kthread+0x3e2/0x540
[  592.887648][ T3865]  ? __pfx_worker_thread+0x10/0x10
[  592.892960][ T3865]  ? __pfx_kthread+0x10/0x10
[  592.897698][ T3865]  ret_from_fork+0x6d/0x90
[  592.902277][ T3865]  ? __pfx_kthread+0x10/0x10
[  592.907016][ T3865]  ret_from_fork_asm+0x1a/0x30
[  592.911977][ T3865]  </TASK>
[  592.915255][ T3865] Kernel Offset: disabled
[  592.919655][ T3865] Rebooting in 86400 seconds..