last executing test programs:

8m7.376530429s ago: executing program 4 (id=113):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x3, 0x1, 0x0, 0x0, 0x1}})

8m7.164182626s ago: executing program 4 (id=116):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x1000000)
move_pages(0x0, 0x1, &(0x7f0000002600)=[&(0x7f0000ffc000/0x1000)=nil], &(0x7f0000002640)=[0x1], &(0x7f0000000000), 0x0)

8m6.824388663s ago: executing program 4 (id=120):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x4c, 0x10, 0x439, 0x70bd2a, 0xffffffea, {0x0, 0x0, 0xe403, 0x0, 0x3, 0x610c0}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_IKEY={0x8, 0x4, 0x3}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x2}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e20}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)

8m6.500184339s ago: executing program 4 (id=125):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})

8m5.672419506s ago: executing program 4 (id=133):
syz_mount_image$minix(&(0x7f00000001c0), &(0x7f0000000040)='./file2\x00', 0x1200808, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESDEC, @ANYRES64, @ANYRESDEC, @ANYRES16, @ANYRES8=0x0], 0x1, 0x1e5, &(0x7f0000000400)="$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")
truncate(&(0x7f0000000000)='./file2\x00', 0x3)

8m4.646594478s ago: executing program 4 (id=148):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, &(0x7f0000000080)=0x20)

8m4.221427053s ago: executing program 32 (id=148):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, &(0x7f0000000080)=0x20)

7m43.538169367s ago: executing program 5 (id=354):
unshare(0x22020600)
fsmount(0xffffffffffffffff, 0x0, 0x0)

7m43.177120556s ago: executing program 5 (id=357):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0xc0, &(0x7f0000000300)={[{@fileset={'fileset', 0x3d, 0x4}}, {@mode={'mode', 0x3d, 0x7}}, {@umask={'umask', 0x3d, 0x10002}}, {@anchor={'anchor', 0x3d, 0x16}}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@uid_ignore}, {}, {@lastblock={'lastblock', 0x3d, 0x2}}, {@volume={'volume', 0x3d, 0x2}}, {@iocharset={'iocharset', 0x3d, 'cp850'}}]}, 0x1, 0xc37, &(0x7f0000001280)="$eJzs3U1sXNd9N+D/uRyKI/l9KyZ2FCeNi0lbpLJiufqKqViFO6pptgFkWQjF7AJwJI7UgSmSIKlGNtKC6aaLLgIURRdZEWiNAikaGE0RdMm0LpBsvCiy6opoYSMoumCLAFkFLO6dM+KQIm1FFCVKeh6b+s3ce86dc+4Z3ysLOvcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABDxe6+dP3EyPexWAAAP0sXxr5445f4PAE+Uy/7/HwAAAAAAAAAAAAAA9rsURTwdKeYurqXJ6n1X/UJn8OatidGx7asdTFXNgap8+VM/eer0mS+9NHK2lxc6Mx9R/377bLwxfvl849XZG3Pz7YWF9lRjYqZzdXaqfddH2G39rY5VJ6Bx482bU9euLTROvXh60+5bwx8OPXVk+NzI88ef65WdGB0bG98oUu8vX7vnhnTtNMPjQBRxPFK88L2fplZEFLH7c1F/sGO/1cGqE8eqTkyMjlUdme60ZhbLnZd6J6KIaPRVavbO0fZjEbXBB9qHnTUjlsrmlw0+VnZvfK4137oy3W5cas0vdhY7szOXUre1ZX8aUcTZFLEcEatDdx5uMIqoRYrvHF5LVyJioHcevlhNDN65HcUe9vEulO1sDEYsF4/AmO1jQ1HE65HiZ+8djav5OlNda74Q8XqZP4h4p8xXIlL5xTgT8cE23yMeTbUo4s/L8T+3lqaq60HvunLha42vzFyb7Svbu678kveHO64UD+n+cHBLPhj7/NpUjyJa1RV/Ld37b3YAAAAAAAAAAAAAAAAAuN8ORhGfiRSv/dsfVfOKo5qXfvjcyO8P///+OePPfsxxyrIvRsRScXdzcg/kiYGX0qWUHvJc4idZPYr44zz/71sPuzEAAAAAAAAAAAAAAAAAAABPtCJ+Eilefv9oWo7+NcU7M9cbl1tXprurwvbW/u2tmb6+vr7eSN1s5pzMuZRzOedKztWcUeT6OZs5J3Mu5VzOuZJzNWcM5Po5mzkncy7lXM65knM1Z9Ry/ZzNnJM5l3Iu51zJuZoz9snavQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAj5MiivhFpPj2N9ZSpIhoRkxGN1eGHnbrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDSUCri+5Gi8QfN29tqEZGqf7uOlr+cieaBMj8ZzZEyX4nm+ZytKmvNbz2E9rM7g6mIH0eKofq7twc8j/9g993tr0G8882Nd5+tdXOgt3P4w6Gnjhw+NzL2a8/u9Dpt14BjFzozN281JkbHxsb7Ntfyp3+yb9tw/tzi/nSdiFh46+03W9PT7fl7f1F+BXZR/RF6kWpPSk+9qF5EbV804+H0nSdAef//IFL89vv/3rvhd+//9fh/3Xe37/Dx8z/ZuP+/vPVA297zy+Kb7/+1rfXy/b+8p293/3+6b9vL+Xcjg7WI+uKNucEjEfWFt94+3rnRut6+3p45c+LEl0dGvnz6xOCBiPq1znS779V9OV0AAAAAAAAAAAAAAAAAD04q4ncjRevHa6kREbequVvD50aeP/7cQAxU8602zdt+Y/zy+carszfm5tsLC+2pxsRM5+rsVPtuP65eTfeaGB3bk858rIN73P6D9Vdn596a71z/w8Vt9x+qn7+ysDjfurr97jgYRUSzf8uxqsETo2NVo6c7rZmq6qVtJ9P/8gZTEf8RKa6eaaTP5215/v/WGf6b5v8vbT3QHs3//0TftvIzUyri55Hit/7i2fh81c5Dccc5y+X+JlIcO/u5XC4OlOV6beg+V6A7M7As+z+R4h9+sblsbz7k0xtlT971iX1ElON/OFJ8/8++G7+et21+/sP2439o64H2aPyf6dt2aNPzCnbddfL4H48Urzz9bvxG3vZRz//oPXvjaC58+/kcezT+n+rbNpw/9zfvT9cBAAAAAAAAAAAeaYOpiL+NFD8cq6WX8ra7+ft/U1sPtEd//+vTfdum7s96RR/7YtcnFQAAAAD2icFUxE8ixfXFd2/Pod48/7tv/ufvbMz/HE1b9lZ/zvcr1XMD7uef//Ubzp87uftuAwAAAAAAAAAAAAAAAAAAwL6SUhEv5fXUJ6v5/FM7rqe+Eile+68Xcrl0pCzXWwd+uPq1fnF25vj56enZq63F1pXpdmN8rnW1XdZ9JlKs/fXnct2iWl+9t958d433jbXY5yPF2N/1ynbXYu+tTf5Mr+xS+2RZ9hOR4j//fnPZ3jrWn9o47qmy7F9Fiq//0/Zlj2yUPV2W/W6k+NHXG72yh8qyveejfnqj7ItXZ4s9GBUAAAAAAAAAAAAAAAAAAACeNIOpiD+NFP99Y/n2XP68/v9g39vKO9/sW+9/i1vVOv/D1fr/O72+l/X/q+cKLO30qQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8HhKUcTbkWLu4lpaGSrfd9UvdGZu3poYHdu+2sFU1Ryoypc/9ZOnTp/50ksjZ3v50fXvt8/EG+OXzzdenb0xN99eWGhPNSZmOldnp9p3fYTd1t/qWHUCGjfevDl17dpC49SLpzftvjX84dBTR4bPjTx//Lle2YnRsbHxvjK1wXv+9DukHbYfiCL+MlK88L2fph8ORRSx+3PxMd+dvXaw6sSxqhMTo2NVR6Y7rZnFcuel3okoIhp9lZq9c/QAxmJXmhFLZfPLBh8ruzc+15pvXZluNy615hc7i53ZmUup29qyP40o4myKWI6I1aE7DzcYRbwZKb5zeC3981DEQO88fPHi+FdPnNq5HcUe9vEulO1sDEYsFx81Ztt0mE2Gooh/jBQ/e+9o/MtQRC26P/GFiNfL/EHEO9Ed71R+Mc5EfOC0PjZqUcT/luN/bi29N1ReD3rXlQtfa3xl5tpsX9nedeWRvz88SPv8flKPIn5UXfHX0r/67xoAAAAAAAAAAAAAAABgHyniVyPFy+8fTdX84Ntzijsz1xuXW1emu9P6enP/enOm19fX1xupm82ckzmXci7nXMm5mjOKXD9ns8z6+vpkfr+UcznnSs7VnDGQ6+ds5pzMuZRzOedKztWcUcv1czZzTuZcyrmccyXnas7YJ3P3AAAAAAAAAAAAAAAAAACAx0tR/ZPi299YS+tD1frSA719K9YDfez9XwAAAP//PuH35A==")
symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00')

7m42.51833499s ago: executing program 5 (id=360):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5}]}}, 0x0, 0x2a}, 0x20)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, r0, 0x4002, 0x5}, 0x48)

7m42.13807434s ago: executing program 5 (id=365):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})

7m41.623717512s ago: executing program 5 (id=370):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)={0x38, 0x1403, 0x1, 0x20000000, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'vcan0\x00'}}]}, 0x38}}, 0x0)

7m40.698515226s ago: executing program 5 (id=379):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r0, &(0x7f00000004c0)={0x293, 0x7d, 0x0, {{0x500, 0xf0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1f, ' nodev{cvfox\x92\xff\xff\xff\x81\x02\x00\x00\x00\x00\x001\xff\xce\xbc\x92\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05\xf7\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00;Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x06\xb4\x94\xe1', 0x12, '\xcf\xc2\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf3\x13\xf6\x00', 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xd4\x89\xdad\x9a7\x00'}, 0x12c, 'odev-n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x232)

7m40.224805794s ago: executing program 33 (id=379):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r0, &(0x7f00000004c0)={0x293, 0x7d, 0x0, {{0x500, 0xf0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1f, ' nodev{cvfox\x92\xff\xff\xff\x81\x02\x00\x00\x00\x00\x001\xff\xce\xbc\x92\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05\xf7\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00;Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x06\xb4\x94\xe1', 0x12, '\xcf\xc2\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf3\x13\xf6\x00', 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xd4\x89\xdad\x9a7\x00'}, 0x12c, 'odev-n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x232)

1m14.520060934s ago: executing program 2 (id=5161):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000080), &(0x7f0000000100)=0x8)

1m14.32737768s ago: executing program 2 (id=5164):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x0)

1m14.07367816s ago: executing program 2 (id=5166):
mknod$loop(&(0x7f00000017c0)='./file0\x00', 0x2480, 0x1)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='ubifs\x00', 0x0, 0x0)

1m13.873563066s ago: executing program 2 (id=5169):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000140)={[{@umask={'umask', 0x3d, 0xe}}, {@nobarrier}, {}, {@nls={'nls', 0x3d, 'macroman'}}, {@barrier}, {@uid}, {@umask={'umask', 0x3d, 0x8}}]}, 0x44, 0x6ff, &(0x7f0000000500)="$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")
mount$9p_unix(&(0x7f0000000140)='./file1\x00', &(0x7f0000000240)='./file1\x00', 0x0, 0x801000, 0x0)

1m13.496113667s ago: executing program 2 (id=5174):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000780)=ANY=[@ANYBLOB="3000000004060104000000000000000003000005050001"], 0x30}, 0x1, 0x0, 0x0, 0xc080}, 0xe821651e0a1b45fc)

1m13.052599852s ago: executing program 2 (id=5178):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@ipv6_newrule={0x2c, 0x20, 0x2d2c6d60ea1da725, 0x70bd29, 0x25dfdbfd, {0xa, 0x0, 0x0, 0xcd, 0xff, 0x0, 0x0, 0x1, 0x10002}, [@FIB_RULE_POLICY=@FRA_PRIORITY={0x8}, @FIB_RULE_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x87}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008081}, 0x0)

1m12.612951467s ago: executing program 34 (id=5178):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@ipv6_newrule={0x2c, 0x20, 0x2d2c6d60ea1da725, 0x70bd29, 0x25dfdbfd, {0xa, 0x0, 0x0, 0xcd, 0xff, 0x0, 0x0, 0x1, 0x10002}, [@FIB_RULE_POLICY=@FRA_PRIORITY={0x8}, @FIB_RULE_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x87}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008081}, 0x0)

6.39411295s ago: executing program 1 (id=5926):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff0200}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1b, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6}]})

2.820870965s ago: executing program 1 (id=5973):
r0 = add_key$keyring(&(0x7f0000000400), &(0x7f0000000380)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$restrict_keyring(0xa, r0, &(0x7f0000000080)='blacklist\x00', &(0x7f0000000240)='id:Om\x84\xcf\xa4\xdb%iJ\xb10\xd7eym\xa6\x1f\xba~\"P\xac\x92\xc2c\xd7\x1b\x1e\x95\xc7\xea~>\xf1\xbf\xd6\xef\x81\xa9\xc3\xd8\xdd\xb1\x84?2\xfb\xddp\r\xf7\xb0\xa6\x0f\xd6\x1b\x81\xae\xbe\xd9\xef\xfep\xb1\xc3!\xa9\x1d=\x1em\x80S\xa5\xb1\x05Q\v\x15X\xdf\xcdN\xec\x80\x8e\xe1\xfcd{+\xf4\xa0\xc40\xd4\xca\a\x00yUC:d\xb5\x9ar\x01Z\xb2\xa4\xf3\xbd\xe5\x13\x98\xad\xfc\xb6t\xd4\x16\x84\xd5\x9fE\xf0\x1b\x8bhw\xc2\xe7\x10e/\xba\xe6KG\xad\xfd\xa9+/T\xe7\x05\xc8J\xd3f}2\a:~\x81\xd8\xbe|\xf2\xd6\xdcp\x13\xc6\xe8\x19/*+\x06\xb3k\xa9\x8fZ\x86_\xedN\f<\xa3\xbcW\xdb\xc7Y\x9a\xc9,\x0fs\x9a_\x97\'\xc0\x8b\x82D\x82{\xe8\xd7\\\x96\x98\x904\xa2\x94\x1c\t--\xeb\x99\x88\xb3n\xbc\x1f\xdc\xd8')

2.088134824s ago: executing program 7 (id=5982):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f8482e0000005e140602000000000e000a001000000002800000128cd8c8e9", 0x31}], 0x1}, 0x0)

2.053077696s ago: executing program 0 (id=5983):
syz_mount_image$ext4(&(0x7f0000001080)='ext4\x00', &(0x7f0000000480)='./bus\x00', 0x0, &(0x7f0000000080), 0x1, 0x438, &(0x7f00000004c0)="$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")
syz_emit_ethernet(0x42, &(0x7f0000000580)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@lsrr={0x83, 0x3, 0xd2}, @timestamp={0x44, 0x8, 0x5, 0x2, 0x0, [0x0]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)

1.664661818s ago: executing program 7 (id=5987):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r0, &(0x7f00000000c0)={0xa, 0x0, 0xdd, @mcast1, 0x2, 0x4}, 0x20)

1.606424282s ago: executing program 1 (id=5988):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x1c, 0x2f, 0x9, 0x0, 0x0, {0x2}, [@nested={0x6, 0x1, 0x0, 0x1, [@generic='9y']}]}, 0x1c}}, 0x0)

1.455923415s ago: executing program 6 (id=5990):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000002c0)={0x14, 0x2e, 0x1, 0x70bd2b, 0x0, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0)

1.443482025s ago: executing program 0 (id=5991):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@ipv4_newroute={0x3c, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x1}, @RTA_ENCAP={0x18, 0x16, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x4}}]}, 0x3c}}, 0x0)

1.277981949s ago: executing program 7 (id=5992):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000880)={0x28, 0x1, 0x2, 0x401, 0x0, 0x0, {0x2}, [@CTA_EXPECT_FN={0x8, 0xb, 'sip\x00'}, @CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_TUPLE={0x4}]}, 0x28}}, 0x0)

1.277429098s ago: executing program 1 (id=5993):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$bt_hci(r0, 0x0, 0x0)

1.167657757s ago: executing program 3 (id=5994):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
getpeername(r0, 0x0, 0x0)

1.146492789s ago: executing program 6 (id=5995):
r0 = socket$unix(0x1, 0x5, 0x0)
accept4(r0, 0x0, 0x0, 0x800)

1.111883232s ago: executing program 0 (id=5996):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f0000000100)={0x0, 0x1, &(0x7f0000000000)=[0x0], 0xfffffffffffffffe, 0x0, 0x0})

1.032551348s ago: executing program 7 (id=5997):
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)

1.00378519s ago: executing program 1 (id=5998):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=@getneightbl={0x14, 0x42, 0x727d4c0aeeddad0d, 0x0, 0x0, {0x3}}, 0x14}}, 0x0)

897.849589ms ago: executing program 6 (id=5999):
io_setup(0x3, &(0x7f0000000140)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f0000000140))

886.18533ms ago: executing program 3 (id=6000):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x5c, 0x2, 0x6, 0x3, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x0, 0x0, 0xfff}, @IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)

873.166701ms ago: executing program 0 (id=6001):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="300000001900010000000b8d01283bc90aa9900015110005000000000c00090008001100", @ANYRES32=0x0, @ANYBLOB="080001"], 0x30}}, 0x0)

757.31127ms ago: executing program 7 (id=6002):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000d00)={[{@utf8no}, {@uni_xlateno}, {@fat=@errors_remount}, {@fat=@nfs}, {@fat=@codepage={'codepage', 0x3d, '1255'}}, {@shortname_lower}, {@numtail}, {@numtail}, {@numtail}, {@utf8no}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'cp860'}}, {@uni_xlateno}]}, 0x2a, 0x34c, &(0x7f0000000400)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)

746.409211ms ago: executing program 1 (id=6003):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000640)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401001186eee200090582"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)

688.793216ms ago: executing program 3 (id=6004):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, 0x0, &(0x7f0000000080))

686.630306ms ago: executing program 0 (id=6005):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f0000000040)=0x2)

506.56063ms ago: executing program 6 (id=6006):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e1e, 0x0, @mcast1}}, 0x0, 0xa000}, 0x90)

500.92113ms ago: executing program 3 (id=6007):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x61, 0x0, 0x32)

485.961432ms ago: executing program 0 (id=6008):
r0 = syz_mount_image$btrfs(&(0x7f0000000080), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000003a40), 0x0, 0x559e, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_SNAP_DESTROY(r0, 0x5000940f, &(0x7f00000000c0)={{}, "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"})

267.338819ms ago: executing program 3 (id=6009):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x5c, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1c}]}}}]}]}], {0x14}}, 0xc4}}, 0x0)

240.897611ms ago: executing program 6 (id=6010):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r0, 0x3, 0x0)

77.666824ms ago: executing program 3 (id=6011):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000a00)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@grpid}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x47a, &(0x7f0000000ac0)="$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")
truncate(&(0x7f0000000180)='./file0/../file0/file0\x00', 0x0)

76.970045ms ago: executing program 7 (id=6012):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, 0x1, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x4040}, 0x8000)

0s ago: executing program 6 (id=6013):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000280)='/dev/comedi3\x00', 0x0, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000180)={'pcl818\x00', [0x4f27, 0x4, 0x3, 0x2, 0xa, 0xcc9, 0xf, 0x7, 0x5, 0x0, 0xefd, 0x1, 0x6, 0x1, 0x6, 0x101, 0x9, 0x1a449, 0x3, 0x40000007, 0x9d, 0xcaa7, 0x4, 0x20001e58, 0x4, 0xe6a, 0x3c, 0x8, 0x5, 0x0, 0xfffff7f8]})

kernel console output (not intermixed with test programs):

journal. Quota mode: writeback.
[  430.315496][T14622] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  430.344462][T14622] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  430.480270][ T4275] EXT4-fs (loop2): unmounting filesystem.
[  431.152319][T14663] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4293'.
[  431.499757][T14679] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4302'.
[  431.548612][T14679] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4302'.
[  431.687181][T14687] netlink: 'syz.3.4306': attribute type 2 has an invalid length.
[  432.172495][T14699] loop1: detected capacity change from 0 to 1024
[  432.285891][ T4305] hfsplus: b-tree write err: -5, ino 4
[  432.560699][T14713] loop0: detected capacity change from 0 to 128
[  432.732376][T14713] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF
[  432.785028][T14713] FAT-fs (loop0): Filesystem has been set read-only
[  432.848966][T14721] loop1: detected capacity change from 0 to 512
[  432.900106][T14721] EXT4-fs: Ignoring removed nobh option
[  432.951088][T14724] loop3: detected capacity change from 0 to 128
[  432.961702][T14721] EXT4-fs error (device loop1): ext4_orphan_get:1400: comm syz.1.4323: inode #15: comm syz.1.4323: iget: illegal inode #
[  433.032199][T14724] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  433.055767][T14721] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.4323: couldn't read orphan inode 15 (err -117)
[  433.126420][T14721] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  433.143924][T14731] kAFS: Can only specify source 'none' with -o dyn
[  433.308556][ T4264] EXT4-fs (loop1): unmounting filesystem.
[  433.379386][ T6015] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  433.488598][T14742] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4332'.
[  433.581141][ T6015] usb 4-1: config 0 has an invalid interface number: 216 but max is 0
[  433.600354][ T6015] usb 4-1: config 0 has no interface number 0
[  433.615454][ T6015] usb 4-1: config 0 interface 216 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  433.635818][ T6015] usb 4-1: config 0 interface 216 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  433.695183][ T6015] usb 4-1: New USB device found, idVendor=0499, idProduct=1002, bcdDevice=df.d7
[  433.719204][ T6015] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  433.742362][ T6015] usb 4-1: Product: syz
[  433.746723][ T6015] usb 4-1: Manufacturer: syz
[  433.765349][ T6015] usb 4-1: SerialNumber: syz
[  433.789846][ T6015] usb 4-1: config 0 descriptor??
[  433.795589][ T6015] usb 4-1: Interface #216 referenced by multiple IADs
[  433.905258][ T6015] snd-usb-audio: probe of 4-1:0.216 failed with error -2
[  433.964641][ T6129] udevd[6129]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.216/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  434.093838][ T6015] usb 4-1: USB disconnect, device number 16
[  434.456692][T14773] netlink: 76 bytes leftover after parsing attributes in process `syz.6.4347'.
[  434.518487][T14776] netlink: 'syz.1.4349': attribute type 10 has an invalid length.
[  434.539313][T14776] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4349'.
[  434.574855][T14776] device vlan1 left promiscuous mode
[  434.588736][T14776] A link change request failed with some changes committed already. Interface vlan1 may have been left with an inconsistent configuration, please check.
[  435.080579][T14792] qrtr: Invalid version 0
[  435.374993][T14807] loop0: detected capacity change from 0 to 1024
[  435.473318][T14810] netlink: 'syz.2.4364': attribute type 6 has an invalid length.
[  436.369780][   T26] audit: type=1326 audit(1756461111.278:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14840 comm="syz.1.4380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f264158ebe9 code=0x7ffc0000
[  436.432557][   T26] audit: type=1326 audit(1756461111.278:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14840 comm="syz.1.4380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f264158ebe9 code=0x7ffc0000
[  436.479231][   T26] audit: type=1326 audit(1756461111.308:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14840 comm="syz.1.4380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f264158ebe9 code=0x7ffc0000
[  436.520422][   T26] audit: type=1326 audit(1756461111.308:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14840 comm="syz.1.4380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f264158ebe9 code=0x7ffc0000
[  436.569208][ T5816] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  436.641141][   T26] audit: type=1326 audit(1756461111.308:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14840 comm="syz.1.4380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f264158ebe9 code=0x7ffc0000
[  436.769337][ T5816] usb 1-1: Using ep0 maxpacket: 32
[  436.776999][ T5816] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  436.816425][ T5816] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  436.842888][ T5816] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  436.869234][ T5816] usb 1-1: config 1 has no interface number 0
[  436.879523][ T5816] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  436.901205][ T5816] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 10229, setting to 1024
[  436.965022][ T5816] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  437.003999][T14857] loop1: detected capacity change from 0 to 4096
[  437.020557][ T5816] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  437.038830][ T5816] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  437.047142][T14857] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  437.098656][T14839] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  437.121067][ T5816] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  437.127731][T14857] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  437.186578][T14857] ntfs3: loop1: mft corrupted
[  437.219211][T14857] ntfs3: loop1: Failed to load $Extend.
[  437.339619][T14839] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  437.351274][ T5816] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  437.634226][T14869] netlink: 276 bytes leftover after parsing attributes in process `syz.1.4393'.
[  437.684805][T14869] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4393'.
[  437.722294][ T4335] usb 1-1: USB disconnect, device number 15
[  437.730270][ T4335] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  438.127551][T14885] loop3: detected capacity change from 0 to 1764
[  438.178551][T14885] iso9660: Corrupted directory entry in block 2 of inode 1920
[  438.508960][T14901] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4409'.
[  439.134639][T14887] loop1: detected capacity change from 0 to 32768
[  439.203218][T14887] XFS (loop1): Mounting V5 Filesystem
[  439.245812][T14925] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4418'.
[  439.396184][T14887] XFS (loop1): Ending clean mount
[  439.490026][   T26] audit: type=1326 audit(1756461114.408:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14933 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  439.594419][ T4264] XFS (loop1): Unmounting Filesystem
[  439.607637][   T26] audit: type=1326 audit(1756461114.408:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14933 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  439.728354][   T26] audit: type=1326 audit(1756461114.408:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14933 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  439.750877][    C0] vkms_vblank_simulate: vblank timer overrun
[  439.777899][T14944] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4428'.
[  439.787444][T14944] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4428'.
[  439.806922][   T26] audit: type=1326 audit(1756461114.408:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14933 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  439.827817][T14944] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4428'.
[  440.181729][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  440.188216][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  440.392006][T14961] loop6: detected capacity change from 0 to 128
[  440.504394][T14961] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  440.560893][T14967] loop2: detected capacity change from 0 to 1024
[  440.573526][T14961] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  440.644316][T14967] fuse: Invalid rootmode
[  440.795154][ T4352] hfsplus: b-tree write err: -5, ino 4
[  440.842095][T14971] loop3: detected capacity change from 0 to 2048
[  440.910087][T14977] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  441.132661][ T6015] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  441.172501][T14984] loop2: detected capacity change from 0 to 256
[  441.217248][ T6023] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  441.247895][T14984] FAT-fs (loop2): error, clusters badly computed (0 != 128)
[  441.266147][T14984] FAT-fs (loop2): Filesystem has been set read-only
[  441.274002][T14984] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  441.330606][T14989] netlink: 3 bytes leftover after parsing attributes in process `syz.3.4446'.
[  441.339931][ T6015] usb 1-1: Using ep0 maxpacket: 8
[  441.347224][ T6015] usb 1-1: config 0 interface 0 has no altsetting 0
[  441.367197][ T6015] usb 1-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  441.395062][ T6015] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  441.409163][ T6023] usb 2-1: Using ep0 maxpacket: 32
[  441.417211][T14989] 0ªX¹¦À: renamed from caif0
[  441.423944][ T6023] usb 2-1: config 6 has an invalid interface number: 225 but max is 0
[  441.441738][ T6023] usb 2-1: config 6 has no interface number 0
[  441.448223][ T6015] usb 1-1: Product: syz
[  441.453209][ T6015] usb 1-1: Manufacturer: syz
[  441.458016][ T6023] usb 2-1: config 6 interface 225 has no altsetting 0
[  441.465392][ T6015] usb 1-1: SerialNumber: syz
[  441.477708][T14989] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  441.505169][ T6023] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0060, bcdDevice=65.ac
[  441.516364][ T6015] usb 1-1: config 0 descriptor??
[  441.528883][ T6015] snd_usb_toneport 1-1:0.0: Line 6 TonePort UX2 found
[  441.546686][ T6023] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  441.556308][ T6023] usb 2-1: Product: syz
[  441.580057][ T6023] usb 2-1: Manufacturer: syz
[  441.615484][ T6023] usb 2-1: SerialNumber: syz
[  441.637377][T14995] loop6: detected capacity change from 0 to 2048
[  441.655758][T14995] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024)
[  441.741508][ T6015] snd_usb_toneport 1-1:0.0: Line 6 TonePort UX2 now disconnected
[  441.771549][ T6015] snd_usb_toneport: probe of 1-1:0.0 failed with error -22
[  441.794806][T14998] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  441.818452][ T4373] udevd[4373]: incorrect nilfs2 checksum on /dev/loop6
[  441.842981][ T6023] dvb-usb: found a 'Terratec Cinergy HT Express' in cold state, will try to load a firmware
[  441.862244][T14995] NILFS (loop6): error -2 truncating bmap (ino=16)
[  441.914215][ T6023] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  441.960218][ T6023] dib0700: firmware download failed at 7 with -22
[  441.962701][ T5817] usb 1-1: USB disconnect, device number 16
[  441.986323][T15002] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.4452'.
[  441.997056][ T6023] usb 2-1: USB disconnect, device number 15
[  443.088573][T15043] loop0: detected capacity change from 0 to 256
[  443.183339][T15043] FAT-fs (loop0): Directory bread(block 64) failed
[  443.228114][T15043] FAT-fs (loop0): Directory bread(block 65) failed
[  443.249553][T15043] FAT-fs (loop0): Directory bread(block 66) failed
[  443.256164][T15043] FAT-fs (loop0): Directory bread(block 67) failed
[  443.336415][T15043] FAT-fs (loop0): Directory bread(block 68) failed
[  443.373693][T15043] FAT-fs (loop0): Directory bread(block 69) failed
[  443.415367][T15043] FAT-fs (loop0): Directory bread(block 70) failed
[  443.454785][T15043] FAT-fs (loop0): Directory bread(block 71) failed
[  443.465453][   T26] audit: type=1326 audit(1756461118.378:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  443.479229][T15043] FAT-fs (loop0): Directory bread(block 72) failed
[  443.488433][    C0] vkms_vblank_simulate: vblank timer overrun
[  443.572336][T15043] FAT-fs (loop0): Directory bread(block 73) failed
[  443.619954][   T26] audit: type=1326 audit(1756461118.378:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  443.731723][   T26] audit: type=1326 audit(1756461118.378:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  443.754916][    C0] vkms_vblank_simulate: vblank timer overrun
[  443.876914][   T26] audit: type=1326 audit(1756461118.378:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  444.106190][T15073] xt_l2tp: missing protocol rule (udp|l2tpip)
[  444.120983][T15069] loop2: detected capacity change from 0 to 4096
[  444.151919][T15069] ntfs3: loop2: Different NTFS' sector size (2048) and media sector size (512)
[  444.413275][T15083] netlink: 'syz.6.4490': attribute type 30 has an invalid length.
[  444.435965][T15082] netlink: 'syz.1.4492': attribute type 1 has an invalid length.
[  444.879280][ T5817] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  444.887972][T15095] loop1: detected capacity change from 0 to 2048
[  444.952387][T15098] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  445.079293][ T5817] usb 4-1: Using ep0 maxpacket: 8
[  445.088789][ T5817] usb 4-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  445.126433][ T5817] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.146837][ T5817] usb 4-1: Product: syz
[  445.151501][ T5817] usb 4-1: Manufacturer: syz
[  445.159785][ T5817] usb 4-1: SerialNumber: syz
[  445.203395][ T5817] usb 4-1: config 0 descriptor??
[  445.418736][ T5817] usb 4-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[  445.535053][T15077] loop0: detected capacity change from 0 to 40427
[  445.572661][T15077] F2FS-fs (loop0): Wrong SSA boundary, start(3584) end(4096) blocks(0)
[  445.603287][T15077] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  445.620378][ T5817] usb write operation failed. (-71)
[  445.643439][ T5817] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  445.650704][T15077] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x6
[  445.687171][ T5817] dvbdev: DVB: registering new adapter (Terratec H7)
[  445.710903][T15077] F2FS-fs (loop0): invalid crc value
[  445.714460][ T5817] usb 4-1: media controller created
[  445.753908][T15077] F2FS-fs (loop0): Found nat_bits in checkpoint
[  445.773584][ T5817] usb read operation failed. (-71)
[  445.799187][ T5817] usb write operation failed. (-71)
[  445.823328][ T5817] dvb_usb_az6007: probe of 4-1:0.0 failed with error -5
[  445.876720][ T5817] usb 4-1: USB disconnect, device number 17
[  445.971014][T15077] F2FS-fs (loop0): Start checkpoint disabled!
[  446.024623][T15077] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  446.049302][T15077] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  446.053156][T15100] loop6: detected capacity change from 0 to 32768
[  446.104260][T15120] libceph: resolve '0' (ret=-3): failed
[  446.145614][T15100] (syz.6.4500,15100,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  446.221835][T15100] (syz.6.4500,15100,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  446.352348][T15100] JBD2: Ignoring recovery information on journal
[  446.409524][T15127] loop1: detected capacity change from 0 to 512
[  446.427788][T15127] EXT4-fs: Ignoring removed i_version option
[  446.439359][T15127] EXT4-fs: Ignoring removed mblk_io_submit option
[  446.540300][T15129] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4514'.
[  446.576911][T15127] EXT4-fs error (device loop1): ext4_orphan_get:1400: comm syz.1.4511: inode #13: comm syz.1.4511: iget: illegal inode #
[  446.594087][T15100] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  446.635575][T15127] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.4511: couldn't read orphan inode 13 (err -117)
[  446.699375][ T5817] usb 4-1: new full-speed USB device number 18 using dummy_hcd
[  446.715055][T15127] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  446.912675][ T5817] usb 4-1: config 0 has an invalid interface number: 207 but max is 0
[  446.942254][ T5817] usb 4-1: config 0 has no interface number 0
[  446.974280][ T5817] usb 4-1: New USB device found, idVendor=12d1, idProduct=ed56, bcdDevice=46.dd
[  446.981433][ T4264] EXT4-fs (loop1): unmounting filesystem.
[  447.039606][ T5817] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  447.057994][ T5817] usb 4-1: Product: syz
[  447.078266][ T5817] usb 4-1: Manufacturer: syz
[  447.098540][ T5817] usb 4-1: SerialNumber: syz
[  447.130282][ T5817] usb 4-1: config 0 descriptor??
[  447.151856][ T5817] qmi_wwan 4-1:0.207: bogus CDC Union: master=0, slave=1
[  447.203996][ T5348] ocfs2: Unmounting device (7,6) on (node local)
[  447.360563][ T5817] qmi_wwan: probe of 4-1:0.207 failed with error -22
[  447.598732][ T5817] usb 4-1: USB disconnect, device number 18
[  447.683265][T15146] loop2: detected capacity change from 0 to 2048
[  447.716894][T15146] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  447.815173][T15150] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  447.853199][T15146] NILFS (loop2): error -2 truncating bmap (ino=16)
[  448.377323][T15169] loop6: detected capacity change from 0 to 512
[  448.477759][T15169] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  448.550955][T15169] FAT-fs (loop6): FAT read failed (blocknr 1568)
[  448.834810][T15184] loop1: detected capacity change from 0 to 1764
[  449.210412][T15199] device batadv0 entered promiscuous mode
[  449.236543][T15195] loop2: detected capacity change from 0 to 2048
[  449.244426][T15201] xt_hashlimit: size too large, truncated to 1048576
[  449.296719][T15195] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  449.306916][T15201] xt_hashlimit: overflow, try lower: 0/0
[  449.375620][T15195] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1376) has entry at pos 100 with incorrect tag e01
[  449.479442][ T6015] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  449.676523][ T6015] usb 7-1: Using ep0 maxpacket: 16
[  449.698910][ T6015] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 3233, setting to 64
[  449.713529][T15209] loop2: detected capacity change from 0 to 4096
[  449.737867][ T6015] usb 7-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55
[  449.763042][T15209] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512)
[  449.776724][ T6015] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.809316][ T6015] usb 7-1: Product: syz
[  449.813560][ T6015] usb 7-1: Manufacturer: syz
[  449.822972][ T6015] usb 7-1: SerialNumber: syz
[  449.840141][ T6015] usb 7-1: config 0 descriptor??
[  449.920474][T15209] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  449.992778][ T6015] usb 7-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  450.065337][   T41] usb 7-1: Failed to submit usb control message: -71
[  450.084782][ T6015] usb 7-1: USB disconnect, device number 15
[  450.094049][   T41] usb 7-1: unable to send the bmi data to the device: -71
[  450.142921][   T41] usb 7-1: unable to get target info from device
[  450.187364][   T41] usb 7-1: could not get target info (-71)
[  450.218403][   T41] usb 7-1: could not probe fw (-71)
[  450.369311][ T5824] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  450.377490][T15235] No such timeout policy "syz0"
[  450.563405][T15239] netlink: 'syz.0.4563': attribute type 3 has an invalid length.
[  450.579312][ T5824] usb 4-1: Using ep0 maxpacket: 16
[  450.584969][T15239] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.4563'.
[  450.600810][ T5824] usb 4-1: config 0 has an invalid interface number: 105 but max is 0
[  450.674246][ T5824] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  450.719241][ T5824] usb 4-1: config 0 has no interface number 0
[  450.742987][T15243] loop1: detected capacity change from 0 to 256
[  450.762650][ T5824] usb 4-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  450.792311][ T5824] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.812172][T15243] exfat: Deprecated parameter 'namecase'
[  450.818313][T15243] exfat: Deprecated parameter 'namecase'
[  450.828208][ T5824] usb 4-1: Product: syz
[  450.844705][ T5824] usb 4-1: Manufacturer: syz
[  450.854855][ T5824] usb 4-1: SerialNumber: syz
[  450.876182][ T5824] usb 4-1: config 0 descriptor??
[  450.895722][T15243] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  450.915969][ T5824] usb 4-1: Found UVC 0.00 device syz (046d:08f3)
[  450.953275][ T5824] usb 4-1: No valid video chain found.
[  451.089836][T15243] exFAT-fs (loop1): invalid start cluster (4278190088)
[  451.172290][ T5817] usb 4-1: USB disconnect, device number 19
[  451.270203][   T26] audit: type=1326 audit(1756461126.188:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15254 comm="syz.0.4572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8cab98ebe9 code=0x7ffc0000
[  451.349200][   T26] audit: type=1326 audit(1756461126.218:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15254 comm="syz.0.4572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f8cab98ebe9 code=0x7ffc0000
[  451.454853][   T26] audit: type=1326 audit(1756461126.218:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15254 comm="syz.0.4572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8cab98ebe9 code=0x7ffc0000
[  451.565961][   T26] audit: type=1326 audit(1756461126.218:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15254 comm="syz.0.4572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8cab98ebe9 code=0x7ffc0000
[  452.329574][ T5817] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  452.580654][ T5817] usb 1-1: Using ep0 maxpacket: 8
[  452.604215][ T5817] usb 1-1: New USB device found, idVendor=0763, idProduct=2080, bcdDevice=d9.40
[  452.624244][ T5817] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  452.688267][ T5817] usb 1-1: Product: syz
[  452.693701][ T5817] usb 1-1: Manufacturer: syz
[  452.698689][ T5817] usb 1-1: SerialNumber: syz
[  452.730017][ T5817] usb 1-1: config 0 descriptor??
[  452.772633][T15269] loop1: detected capacity change from 0 to 32768
[  452.907712][T15269] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  453.100752][T15269] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #17056 has bad chain 1280
[  453.119516][    C1] vkms_vblank_simulate: vblank timer overrun
[  453.139445][T15269] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  453.147507][ T5817] usb 1-1: USB disconnect, device number 17
[  453.230217][    C1] vkms_vblank_simulate: vblank timer overrun
[  453.246199][T15269] OCFS2: File system is now read-only.
[  453.256993][T15269] (syz.1.4579,15269,1):ocfs2_search_chain:1761 ERROR: status = -30
[  453.265350][T15269] (syz.1.4579,15269,1):ocfs2_search_chain:1871 ERROR: status = -30
[  453.306216][T15269] (syz.1.4579,15269,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  453.315460][T15269] (syz.1.4579,15269,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  453.324487][T15269] (syz.1.4579,15269,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  453.341555][T15269] (syz.1.4579,15269,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  453.359604][T15269] (syz.1.4579,15269,1):ocfs2_mknod_locked:639 ERROR: status = -30
[  453.368692][T15269] (syz.1.4579,15269,1):ocfs2_mknod:385 ERROR: status = -30
[  453.423813][T15309] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4598'.
[  453.434380][T15269] (syz.1.4579,15269,1):ocfs2_mknod:502 ERROR: status = -30
[  453.462666][ T6129] udevd[6129]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  453.482813][T15269] (syz.1.4579,15269,1):ocfs2_create:676 ERROR: status = -30
[  453.555102][ T4264] ocfs2: Unmounting device (7,1) on (node local)
[  453.793515][T15295] loop2: detected capacity change from 0 to 32768
[  453.829398][T15295] (syz.2.4592,15295,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  453.909260][T15295] (syz.2.4592,15295,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  454.080555][T15295] JBD2: Ignoring recovery information on journal
[  454.269705][T15295] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  454.370130][T15332] loop1: detected capacity change from 0 to 2048
[  454.439177][T15332] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  454.506484][T15332] syz.1.4609: attempt to access beyond end of device
[  454.506484][T15332] loop1: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  454.522038][T15337] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  454.671760][T15332] NILFS error (device loop1): nilfs_bmap_last_key: broken bmap (inode number=16)
[  454.711027][ T4275] ocfs2: Unmounting device (7,2) on (node local)
[  454.771999][T15332] Remounting filesystem read-only
[  454.777718][T15332] NILFS (loop1): error -5 truncating bmap (ino=16)
[  454.944085][ T4264] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  455.256602][T15353] loop6: detected capacity change from 0 to 2048
[  455.298752][T15351] loop3: detected capacity change from 0 to 4096
[  455.319348][T15353] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  455.398748][T15351] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[  455.575861][T15351] ntfs3: loop3: failed to convert "c46c" to koi8-r
[  455.933733][T15375] loop0: detected capacity change from 0 to 64
[  456.757694][T15398] loop6: detected capacity change from 0 to 4096
[  456.853698][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffc0c00
[  456.885969][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffc0c00
[  456.909869][T15411] loop1: detected capacity change from 0 to 24
[  456.917086][T15411] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  456.942061][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffc0c00
[  456.976033][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffc0c00
[  457.050618][T15411] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  457.059343][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffc1c00
[  457.059481][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffc2c00
[  457.059532][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffc4c00
[  457.059568][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffc8c00
[  457.059670][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffd0c00
[  457.059704][T15398] ntfs3: loop6: try to read out of volume at offset 0x3fffffe0c00
[  457.549996][T15421] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4648'.
[  457.652042][T15428] xt_cgroup: path and classid specified
[  457.973276][T15438] device tunl0 entered promiscuous mode
[  458.012502][T15438] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  458.058688][T15413] loop3: detected capacity change from 0 to 32768
[  458.118214][T15413] 
[  458.118214][T15413]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  458.118214][T15413] 
[  458.204507][T15413] JFS: metapage_get_blocks failed
[  458.232544][T15413] ERROR: (device loop3): release_metapage: write_one_page() failed
[  458.232544][T15413] 
[  458.296871][T15447] netlink: 'syz.2.4658': attribute type 1 has an invalid length.
[  458.302255][T15413] ERROR: (device loop3): diWrite: ixpxd invalid
[  458.302255][T15413] 
[  458.312283][T15446] loop0: detected capacity change from 0 to 1024
[  458.326156][T15413] ERROR: (device loop3): txCommit: 
[  458.326156][T15413] 
[  458.360647][T15446] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  458.493830][T15446] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  458.536248][T15446] ext4 filesystem being mounted at /938/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  458.579894][ T4274] 
[  458.579894][ T4274]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  458.579894][ T4274] 
[  458.589881][T15457] netlink: 65051 bytes leftover after parsing attributes in process `syz.1.4663'.
[  458.637103][ T4274] 
[  458.637103][ T4274]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  458.637103][ T4274] 
[  458.664850][T15446] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  458.777254][T15446] EXT4-fs (loop0): Remounting filesystem read-only
[  458.825705][T15446] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.4659: inode #1536: comm syz.0.4659: iget: illegal inode #
[  458.876826][T15446] EXT4-fs (loop0): Remounting filesystem read-only
[  458.912238][T15446] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.4659: error while reading EA inode 1536 err=-117
[  458.950626][T15446] EXT4-fs (loop0): Remounting filesystem read-only
[  458.957575][T15446] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.4659: inode #1536: comm syz.0.4659: iget: illegal inode #
[  459.057218][T15446] EXT4-fs (loop0): Remounting filesystem read-only
[  459.069962][T15446] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.4659: error while reading EA inode 1536 err=-117
[  459.090851][T15459] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4665'.
[  459.147284][T15446] EXT4-fs (loop0): Remounting filesystem read-only
[  459.293895][ T4268] EXT4-fs (loop0): unmounting filesystem.
[  459.381806][T15473] loop1: detected capacity change from 0 to 1024
[  459.418836][T15475] loop6: detected capacity change from 0 to 2048
[  459.510870][T15473] hfsplus: hfsplus: Invalid key length: 29235
[  459.536424][T15475] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  460.424745][T15500] loop3: detected capacity change from 0 to 4096
[  460.476301][T15500] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512)
[  460.596353][T15500] ntfs3: Couldn't remount rw because journal is not replayed. Please umount/remount instead
[  460.596353][T15500] 
[  461.169406][ T5817] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  461.201301][T15526] netlink: 'syz.2.4695': attribute type 1 has an invalid length.
[  461.273126][T15528] vivid-002: =================  START STATUS  =================
[  461.284837][T15498] loop0: detected capacity change from 0 to 32768
[  461.291697][T15528] vivid-002: Radio HW Seek Mode: Bounded
[  461.298278][T15528] vivid-002: Radio Programmable HW Seek: false
[  461.347472][T15498] find_entry called with index >= next_index
[  461.354710][T15528] vivid-002: RDS Rx I/O Mode: Block I/O
[  461.368515][T15498] find_entry called with index >= next_index
[  461.375174][T15528] vivid-002: Generate RBDS Instead of RDS: false
[  461.381869][T15498] find_entry called with index >= next_index
[  461.383903][ T5817] usb 7-1: config 0 has no interfaces?
[  461.391279][T15528] vivid-002: RDS Reception: true
[  461.412087][T15528] vivid-002: RDS Program Type: 0 inactive
[  461.428287][T15528] vivid-002: RDS PS Name:  inactive
[  461.429974][ T5817] usb 7-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  461.433946][T15528] vivid-002: RDS Radio Text: 
[  461.467979][ T5817] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  461.482601][T15528]  inactive
[  461.499464][T15528] vivid-002: RDS Traffic Announcement: false inactive
[  461.525938][ T5817] usb 7-1: Product: syz
[  461.539214][T15528] vivid-002: RDS Traffic Program: false inactive
[  461.539653][ T5817] usb 7-1: Manufacturer: syz
[  461.569626][T15528] vivid-002: RDS Music: false inactive
[  461.595305][T15528] vivid-002: ==================  END STATUS  ==================
[  461.595570][ T5817] usb 7-1: SerialNumber: syz
[  461.670029][ T5817] r8152-cfgselector 7-1: config 0 descriptor??
[  461.904782][ T5817] r8152-cfgselector 7-1: Unknown version 0x00d0
[  461.914910][T15540] loop3: detected capacity change from 0 to 512
[  461.946097][T15540] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  462.016319][T15540] EXT4-fs (loop3): Test dummy encryption mode enabled
[  462.066464][T15544] netlink: 'syz.2.4704': attribute type 7 has an invalid length.
[  462.084438][T15540] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13
[  462.105270][T15540] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.4703: attempt to clear invalid blocks 2 len 1
[  462.152403][ T6015] r8152-cfgselector 7-1: USB disconnect, device number 16
[  462.170340][T15544] netlink: 'syz.2.4704': attribute type 8 has an invalid length.
[  462.180160][T15540] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  462.227121][T15547] loop0: detected capacity change from 0 to 256
[  462.269922][T15540] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4703: invalid indirect mapped block 1819239214 (level 0)
[  462.309751][T15540] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4703: invalid indirect mapped block 1819239214 (level 1)
[  462.363257][T15547] FAT-fs (loop0): Directory bread(block 64) failed
[  462.364561][T15540] EXT4-fs (loop3): 1 truncate cleaned up
[  462.379853][T15547] FAT-fs (loop0): Directory bread(block 65) failed
[  462.396319][T15540] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  462.405968][T15547] FAT-fs (loop0): Directory bread(block 66) failed
[  462.448913][T15547] FAT-fs (loop0): Directory bread(block 67) failed
[  462.456527][T15540] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  462.479497][T15547] FAT-fs (loop0): Directory bread(block 68) failed
[  462.489781][T15524] loop1: detected capacity change from 0 to 40427
[  462.505707][T15547] FAT-fs (loop0): Directory bread(block 69) failed
[  462.516145][T15540] EXT4-fs (loop3): re-mounted. Quota mode: writeback.
[  462.523837][T15547] FAT-fs (loop0): Directory bread(block 70) failed
[  462.569839][T15524] F2FS-fs (loop1): invalid crc value
[  462.596205][T15547] FAT-fs (loop0): Directory bread(block 71) failed
[  462.606266][T15524] F2FS-fs (loop1): Found nat_bits in checkpoint
[  462.633401][T15547] FAT-fs (loop0): Directory bread(block 72) failed
[  462.658589][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  462.663702][T15547] FAT-fs (loop0): Directory bread(block 73) failed
[  462.878051][T15524] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[  462.914078][T15524] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  463.114577][T15524] F2FS-fs (loop1): switch extent_cache option is not allowed
[  463.827920][T15588] loop2: detected capacity change from 0 to 1024
[  464.198317][T15587] loop0: detected capacity change from 0 to 4096
[  464.205546][T15600] netlink: 'syz.2.4725': attribute type 7 has an invalid length.
[  466.005610][T15662] loop0: detected capacity change from 0 to 128
[  466.024568][T15664] loop1: detected capacity change from 0 to 256
[  466.043333][T15662] VFS: Found a Xenix FS (block size = 1024) on device loop0
[  466.085302][T15664] exfat: Deprecated parameter 'namecase'
[  466.121171][T15662] syz.0.4753: attempt to access beyond end of device
[  466.121171][T15662] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128
[  466.156284][T15664] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[  466.249756][T15662] Buffer I/O error on dev loop0, logical block 3245768, async page read
[  466.480909][ T4268] sysv_free_block: flc_count > flc_size
[  466.486588][ T4268] sysv_free_block: flc_count > flc_size
[  466.540920][ T4268] sysv_free_block: flc_count > flc_size
[  466.546535][ T4268] sysv_free_block: flc_count > flc_size
[  466.599370][ T4268] sysv_free_block: flc_count > flc_size
[  466.623088][ T4268] sysv_free_block: flc_count > flc_size
[  466.649425][ T4268] sysv_free_block: flc_count > flc_size
[  466.655130][ T4268] sysv_free_block: flc_count > flc_size
[  466.705721][T15681] loop1: detected capacity change from 0 to 2048
[  466.722496][ T4268] sysv_free_block: flc_count > flc_size
[  466.728206][ T4268] sysv_free_block: flc_count > flc_size
[  466.772087][ T4268] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  466.856620][T15688] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  466.879629][T15687] loop3: detected capacity change from 0 to 256
[  466.902021][T15681] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  466.961730][T15687] FAT-fs (loop3): Directory bread(block 64) failed
[  466.996266][T15687] FAT-fs (loop3): Directory bread(block 65) failed
[  467.026278][T15687] FAT-fs (loop3): Directory bread(block 66) failed
[  467.030647][T15681] Remounting filesystem read-only
[  467.079305][T15681] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  467.096559][T15687] FAT-fs (loop3): Directory bread(block 67) failed
[  467.171157][T15687] FAT-fs (loop3): Directory bread(block 68) failed
[  467.177856][T15687] FAT-fs (loop3): Directory bread(block 69) failed
[  467.216195][T15687] FAT-fs (loop3): Directory bread(block 70) failed
[  467.259177][T15687] FAT-fs (loop3): Directory bread(block 71) failed
[  467.265915][T15687] FAT-fs (loop3): Directory bread(block 72) failed
[  467.319152][T15687] FAT-fs (loop3): Directory bread(block 73) failed
[  467.840709][T15703] xt_CT: No such helper "pptp"
[  467.906363][T15718] loop6: detected capacity change from 0 to 128
[  467.913559][T15717] netlink: 45 bytes leftover after parsing attributes in process `syz.0.4773'.
[  468.010433][T15718] FAT-fs (loop6): error, corrupted directory (invalid entries)
[  468.060431][T15718] FAT-fs (loop6): Filesystem has been set read-only
[  468.456969][T15733] loop6: detected capacity change from 0 to 512
[  468.577887][T15733] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  468.606687][T15733] ext4 filesystem being mounted at /885/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  468.732574][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  468.791317][T15750] device bridge4 entered promiscuous mode
[  469.098721][T15760] SET target dimension over the limit!
[  470.360498][T15768] loop1: detected capacity change from 0 to 40427
[  470.418719][T15768] F2FS-fs (loop1): invalid crc value
[  470.454464][T15768] F2FS-fs (loop1): Found nat_bits in checkpoint
[  470.670956][T15768] F2FS-fs (loop1): Start checkpoint disabled!
[  470.692425][T15768] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  471.106579][T15782] loop6: detected capacity change from 0 to 32768
[  471.218945][T15782] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  471.276483][T15782] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  471.412360][T15782] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[  471.564916][T15782] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  472.415167][T15846] netlink: 'syz.2.4835': attribute type 5 has an invalid length.
[  472.562422][T15852] loop3: detected capacity change from 0 to 2048
[  472.586691][T15854] loop6: detected capacity change from 0 to 512
[  472.632143][T15854] EXT4-fs: Ignoring removed nobh option
[  472.677812][T15852] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  472.700320][T15854] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  472.744111][T15861] loop1: detected capacity change from 0 to 128
[  472.752378][T15861] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  472.776739][T15861] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  472.906691][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  473.161702][   T41] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  473.424002][   T26] audit: type=1326 audit(1756461148.328:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.4850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff95f8ebe9 code=0x7ffc0000
[  473.531654][   T26] audit: type=1326 audit(1756461148.328:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.4850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff95f8ebe9 code=0x7ffc0000
[  473.554647][    C0] vkms_vblank_simulate: vblank timer overrun
[  473.639252][   T26] audit: type=1326 audit(1756461148.428:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.4850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7eff95f8ebe9 code=0x7ffc0000
[  473.749142][   T26] audit: type=1326 audit(1756461148.428:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.4850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff95f8ebe9 code=0x7ffc0000
[  473.771954][    C0] vkms_vblank_simulate: vblank timer overrun
[  473.853696][   T26] audit: type=1326 audit(1756461148.428:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.4850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff95f8ebe9 code=0x7ffc0000
[  474.007820][T15896] loop2: detected capacity change from 0 to 4096
[  474.048937][T15896] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  474.109828][T15903] netlink: 'syz.1.4862': attribute type 27 has an invalid length.
[  474.163307][T15896] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  474.212323][T15896] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  474.246336][T15907] cgroup: No subsys list or none specified
[  474.371205][T15896] ntfs: volume version 3.1.
[  474.532346][T15917] netlink: 188 bytes leftover after parsing attributes in process `syz.0.4868'.
[  475.471266][T15911] loop1: detected capacity change from 0 to 32768
[  475.608199][T15911] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  475.719270][ T4328] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  475.843533][ T4264] ocfs2: Unmounting device (7,1) on (node local)
[  475.923448][ T4328] usb 3-1: config 0 has an invalid interface number: 128 but max is 0
[  475.942495][ T4328] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  475.964671][   T26] audit: type=1326 audit(1756461150.878:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15965 comm="syz.0.4890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8cab98ebe9 code=0x7ffc0000
[  475.987215][    C0] vkms_vblank_simulate: vblank timer overrun
[  476.019296][ T4328] usb 3-1: config 0 has no interface number 0
[  476.027930][ T4328] usb 3-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice=7a.5a
[  476.054792][   T26] audit: type=1326 audit(1756461150.878:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15965 comm="syz.0.4890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7f8cab98ebe9 code=0x7ffc0000
[  476.079297][ T4328] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  476.087753][ T4328] usb 3-1: Product: syz
[  476.129328][ T4328] usb 3-1: Manufacturer: syz
[  476.134744][ T4328] usb 3-1: SerialNumber: syz
[  476.180165][ T4328] usb 3-1: config 0 descriptor??
[  476.188234][T15974] loop0: detected capacity change from 0 to 1024
[  476.287043][T15948] Bluetooth: hci0: Opcode 0x0c20 failed: -4
[  476.323739][T15974] hfsplus: xattr searching failed
[  476.413214][   T11] hfsplus: b-tree write err: -5, ino 4
[  476.431808][ T5824] usb 3-1: USB disconnect, device number 16
[  477.136491][T16001] x_tables: ip_tables: osf match: only valid for protocol 6
[  477.341580][T16009] (unnamed net_device) (uninitialized): option xmit_hash_policy: invalid value (34)
[  477.919338][T16034] ax25_connect(): syz.1.4922 uses autobind, please contact jreuter@yaina.de
[  477.977058][T16030] loop3: detected capacity change from 0 to 2048
[  478.071123][T16037] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  478.098071][T16030] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  478.161991][T16030] Remounting filesystem read-only
[  478.168633][T16030] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  478.448476][T16046] loop6: detected capacity change from 0 to 1024
[  478.848035][T16058] overlayfs: unrecognized mount option "\" or missing value
[  479.071134][T16033] loop2: detected capacity change from 0 to 32768
[  479.131152][T16065] loop3: detected capacity change from 0 to 512
[  479.149489][T16033] ea_get: invalid extended attribute
[  479.155641][T16033] ffff888037d00330: 04 00 00 00                                      ....
[  479.196122][T16065] EXT4-fs: Ignoring removed nomblk_io_submit option
[  479.270194][T16065] EXT4-fs: Ignoring removed bh option
[  479.435437][T16065] EXT4-fs error (device loop3): mb_free_blocks:1810: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  479.519954][T16065] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #11: comm syz.3.4938: corrupted inode contents
[  479.572221][T16065] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #11: comm syz.3.4938: mark_inode_dirty error
[  479.619838][T16065] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.4938: invalid indirect mapped block 1 (level 1)
[  479.653342][T16065] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #11: comm syz.3.4938: corrupted inode contents
[  479.705828][T16065] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  479.739664][T16065] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #11: comm syz.3.4938: corrupted inode contents
[  479.788458][T16065] EXT4-fs error (device loop3): ext4_truncate:4312: inode #11: comm syz.3.4938: mark_inode_dirty error
[  479.812307][T16065] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  479.846107][T16065] EXT4-fs (loop3): 1 truncate cleaned up
[  479.852333][T16065] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  479.860714][T16059] loop6: detected capacity change from 0 to 32768
[  479.892349][T16059] BTRFS error: device /dev/loop6 already registered with a higher generation, found 8 expect 13
[  479.910374][T16065] EXT4-fs error (device loop3): ext4_find_dest_de:2115: inode #2: block 13: comm syz.3.4938: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  480.064337][T16087] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  480.117322][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  480.213335][ T6124] BTRFS error: device /dev/loop6 already registered with a higher generation, found 8 expect 13
[  480.487371][T16100] 9pnet: Found fid 0 not clunked
[  480.758969][T16111] ax25_connect(): syz.3.4959 uses autobind, please contact jreuter@yaina.de
[  481.709157][ T4328] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  481.903744][ T4328] usb 4-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  481.921727][ T4328] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  481.943612][ T4328] usb 4-1: Product: syz
[  481.947950][ T4328] usb 4-1: Manufacturer: syz
[  481.989643][ T4328] usb 4-1: SerialNumber: syz
[  482.032279][ T4328] usb 4-1: config 0 descriptor??
[  482.066606][ T4328] ch341 4-1:0.0: ch341-uart converter detected
[  482.158353][T16165] loop2: detected capacity change from 0 to 136
[  482.196311][T16165] Attempt to read inode for relocated directory
[  482.464565][ T4328] usb 4-1: failed to send control message: -71
[  482.482171][ T4328] ch341-uart: probe of ttyUSB0 failed with error -71
[  482.522549][ T4328] usb 4-1: USB disconnect, device number 20
[  482.559941][ T4328] ch341 4-1:0.0: device disconnected
[  483.154580][T16195] loop3: detected capacity change from 0 to 136
[  483.186550][T16195] Attempt to read inode for relocated directory
[  483.512424][T16199] netlink: 'syz.3.5002': attribute type 5 has an invalid length.
[  483.559084][T16199] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5002'.
[  483.598159][T16181] loop6: detected capacity change from 0 to 32768
[  483.612909][T16203] netlink: 68 bytes leftover after parsing attributes in process `syz.0.5004'.
[  483.724004][T16181] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  483.739754][T16183] loop2: detected capacity change from 0 to 32768
[  483.828338][T16183] XFS (loop2): Mounting V5 Filesystem
[  483.838213][T16213] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5006'.
[  483.860843][T16181] OCFS2: ERROR (device loop6): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 57088 but max bitmap bits of 2048
[  483.882409][T16181] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  483.893108][T16181] OCFS2: File system is now read-only.
[  483.898630][T16181] (syz.6.4993,16181,0):ocfs2_search_chain:1761 ERROR: status = -30
[  483.910457][T16181] (syz.6.4993,16181,0):ocfs2_search_chain:1871 ERROR: status = -30
[  483.918734][T16181] (syz.6.4993,16181,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  483.927800][T16181] (syz.6.4993,16181,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  483.981658][T16181] (syz.6.4993,16181,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  483.990913][T16181] (syz.6.4993,16181,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  484.000942][T16181] (syz.6.4993,16181,1):ocfs2_mknod_locked:639 ERROR: status = -30
[  484.009414][T16181] (syz.6.4993,16181,1):ocfs2_mknod:385 ERROR: status = -30
[  484.033873][T16181] (syz.6.4993,16181,1):ocfs2_mknod:502 ERROR: status = -30
[  484.059238][T16181] (syz.6.4993,16181,1):ocfs2_mkdir:659 ERROR: status = -30
[  484.148683][ T5348] ocfs2: Unmounting device (7,6) on (node local)
[  484.167396][T16183] XFS (loop2): Ending clean mount
[  484.213530][T16183] XFS (loop2): Quotacheck needed: Please wait.
[  484.371967][T16183] XFS (loop2): Quotacheck: Done.
[  484.382155][T16183] XFS (loop2): Unmounting Filesystem
[  484.787445][T16238] loop6: detected capacity change from 0 to 1764
[  485.352024][T16251] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5020'.
[  485.470192][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  485.470210][   T26] audit: type=1326 audit(2000000010.491:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16253 comm="syz.2.5024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  485.594880][   T26] audit: type=1326 audit(2000000010.491:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16253 comm="syz.2.5024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  485.624914][T16259] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  485.660259][   T26] audit: type=1326 audit(2000000010.521:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16253 comm="syz.2.5024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  485.669201][T16259] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  485.698896][   T26] audit: type=1326 audit(2000000010.521:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16253 comm="syz.2.5024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  485.721908][    C1] vkms_vblank_simulate: vblank timer overrun
[  485.735878][T16262] loop2: detected capacity change from 0 to 1024
[  485.788395][   T26] audit: type=1326 audit(2000000010.521:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16253 comm="syz.2.5024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f901298ebe9 code=0x7ffc0000
[  485.824238][T16262] hfsplus: failed to load root directory
[  486.118908][T16271] bridge5: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  486.382258][T16247] loop1: detected capacity change from 0 to 32768
[  486.425126][T16279] loop2: detected capacity change from 0 to 1024
[  486.436794][T16247] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  486.508894][T16247] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  486.771596][T16288] netlink: 'syz.0.5038': attribute type 10 has an invalid length.
[  486.799119][T16288] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5038'.
[  486.989687][   T41] hfsplus: b-tree write err: -5, ino 4
[  487.017894][ T4264] ocfs2: Unmounting device (7,1) on (node local)
[  487.539847][T16310] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[  487.698103][T16314] loop0: detected capacity change from 0 to 1024
[  487.881309][T16322] netlink: 'syz.1.5054': attribute type 1 has an invalid length.
[  487.993806][    T9] hfsplus: b-tree write err: -5, ino 4
[  488.445898][T16334] loop1: detected capacity change from 0 to 4096
[  488.526171][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffc0c00
[  488.552746][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffc0c00
[  488.593471][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffc0c00
[  488.629915][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffc0c00
[  488.699786][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffc1c00
[  488.707747][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffc2c00
[  488.759458][T16353] netlink: 'syz.2.5070': attribute type 9 has an invalid length.
[  488.783714][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffc4c00
[  488.815050][   T26] audit: type=1326 audit(2000000013.831:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16352 comm="syz.6.5071" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff95f8ebe9 code=0x0
[  488.816122][T16356] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5072'.
[  488.837179][    C1] vkms_vblank_simulate: vblank timer overrun
[  488.855711][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffc8c00
[  488.889535][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffd0c00
[  488.929451][T16334] ntfs3: loop1: try to read out of volume at offset 0x3fffffe0c00
[  489.339208][T16369] netlink: 'syz.6.5079': attribute type 7 has an invalid length.
[  489.393343][T16369] netlink: 'syz.6.5079': attribute type 5 has an invalid length.
[  489.586319][T16378] netlink: 'syz.0.5082': attribute type 13 has an invalid length.
[  489.663944][T16378] netlink: 152 bytes leftover after parsing attributes in process `syz.0.5082'.
[  489.714066][T16378] syz_tun: refused to change device tx_queue_len
[  489.734333][T16383] loop6: detected capacity change from 0 to 64
[  489.748288][T16378] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  490.263603][T16402] comedi comedi0: dt2815: I/O port conflict (0x3,2)
[  490.330097][T16404] binder: 16403:16404 ioctl c018620b 0 returned -14
[  490.506532][T16411] netlink: 'syz.1.5099': attribute type 9 has an invalid length.
[  490.771599][T16420] loop3: detected capacity change from 0 to 64
[  491.616109][T16449] loop2: detected capacity change from 0 to 1764
[  491.738018][T16455] loop3: detected capacity change from 0 to 64
[  491.795430][T16451] loop1: detected capacity change from 0 to 4096
[  491.923635][T16451] ntfs: (device loop1): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  491.971848][T16451] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x4 as bad.  Run chkdsk.
[  492.059240][T16451] ntfs: (device loop1): load_and_init_attrdef(): Failed to initialize attribute definition table.
[  492.096021][T16451] ntfs: (device loop1): ntfs_fill_super(): Failed to load system files.
[  492.204068][T16459] xt_CT: No such helper "pptp"
[  492.464389][T16476] tmpfs: Bad value for 'mpol'
[  492.718066][T16485] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5135'.
[  492.942724][T16492] netlink: 'syz.0.5136': attribute type 3 has an invalid length.
[  492.966707][T16493] loop3: detected capacity change from 0 to 256
[  492.969920][T16492] netlink: 'syz.0.5136': attribute type 3 has an invalid length.
[  493.022854][T16492] netlink: 'syz.0.5136': attribute type 3 has an invalid length.
[  493.060329][T16492] netlink: 'syz.0.5136': attribute type 3 has an invalid length.
[  493.109338][T16492] netlink: 'syz.0.5136': attribute type 3 has an invalid length.
[  493.178812][T16497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5140'.
[  493.499514][T16506] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5144'.
[  493.617613][T16509] loop1: detected capacity change from 0 to 4096
[  493.693524][T16509] NILFS error (device loop1): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  493.719183][T16514] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  493.775685][T16509] NILFS (loop1): mounting fs with errors
[  493.881208][T16509] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: disallowed inode number - offset=32, inode=9, rec_len=24, name_len=6
[  494.153285][T16528] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5154'.
[  494.268196][T16531] loop6: detected capacity change from 0 to 256
[  494.335730][T16531] FAT-fs (loop6): Directory bread(block 64) failed
[  494.383962][T16531] FAT-fs (loop6): Directory bread(block 65) failed
[  494.415012][T16531] FAT-fs (loop6): Directory bread(block 66) failed
[  494.459628][T16531] FAT-fs (loop6): Directory bread(block 67) failed
[  494.482709][T16531] FAT-fs (loop6): Directory bread(block 68) failed
[  494.549218][T16531] FAT-fs (loop6): Directory bread(block 69) failed
[  494.556032][T16531] FAT-fs (loop6): Directory bread(block 70) failed
[  494.609143][T16531] FAT-fs (loop6): Directory bread(block 71) failed
[  494.639524][T16531] FAT-fs (loop6): Directory bread(block 72) failed
[  494.646482][T16531] FAT-fs (loop6): Directory bread(block 73) failed
[  494.816701][T16542] loop1: detected capacity change from 0 to 8192
[  494.948923][T16550] UBIFS error (pid: 16550): cannot open "./file0", error -22
[  495.073361][T16554] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5168'.
[  495.156391][T16556] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5170'.
[  495.198421][T16558] loop2: detected capacity change from 0 to 1024
[  495.415444][ T4275] hfsplus: bad catalog entry type
[  495.738417][ T4275] team0: Port device syz_tun removed
[  495.813453][   T41] hfsplus: b-tree write err: -5, ino 4
[  496.041514][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.052939][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  496.064563][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 2] type 2 family 0 port 44979 - 0
[  496.076582][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 3] type 2 family 0 port 39610 - 0
[  496.264958][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.319176][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  496.345692][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 2] type 2 family 0 port 44979 - 0
[  496.380611][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 3] type 2 family 0 port 39610 - 0
[  496.492973][T16570] loop6: detected capacity change from 0 to 32768
[  496.541280][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.576796][T16570] ERROR: (device loop6): dbAllocAG: unable to allocate blocks
[  496.576796][T16570] 
[  496.589281][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  496.624324][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 2] type 2 family 0 port 44979 - 0
[  496.657548][T16570] ERROR: (device loop6): remounting filesystem as read-only
[  496.658495][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 3] type 2 family 0 port 39610 - 0
[  496.705834][T16570] jfs_create: dtInsert returned -EIO
[  496.726659][T16570] ERROR: (device loop6): jfs_create: 
[  496.726659][T16570] 
[  496.836063][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.879192][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  496.917556][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 2] type 2 family 0 port 44979 - 0
[  496.978726][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 3] type 2 family 0 port 39610 - 0
[  497.049933][ T4270] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  497.078251][ T4270] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  497.087666][T16596] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  497.091288][T16597] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5188'.
[  497.113457][T16596] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  497.130636][T16596] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  497.138193][T16596] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  497.983274][T16619] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  498.020107][T16619] overlayfs: missing 'lowerdir'
[  498.567222][T16628] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  498.649503][T16636] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5204'.
[  498.872189][T16608] loop0: detected capacity change from 0 to 32768
[  498.929844][T16608] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  499.011464][T16608] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  499.227496][ T4279] Bluetooth: hci4: command 0x0409 tx timeout
[  499.527341][ T4268] ocfs2: Unmounting device (7,0) on (node local)
[  499.955142][T16672] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5217'.
[  500.007163][T16672] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5217'.
[  500.081944][T16594] chnl_net:caif_netlink_parms(): no params data found
[  501.262565][T16687] loop6: detected capacity change from 0 to 32768
[  501.299325][ T4279] Bluetooth: hci4: command 0x041b tx timeout
[  501.349457][T16687] ocfs2: Slot 0 on device (7,6) was already allocated to this node!
[  501.391059][T16687] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  501.418686][T16594] bridge0: port 1(bridge_slave_0) entered blocking state
[  501.444218][T16594] bridge0: port 1(bridge_slave_0) entered disabled state
[  501.502291][T16594] device bridge_slave_0 entered promiscuous mode
[  501.579278][T16594] bridge0: port 2(bridge_slave_1) entered blocking state
[  501.606946][T16594] bridge0: port 2(bridge_slave_1) entered disabled state
[  501.622040][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  501.628621][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  501.701272][T16594] device bridge_slave_1 entered promiscuous mode
[  501.768905][ T5348] ocfs2: Unmounting device (7,6) on (node local)
[  502.036418][T16730] loop0: detected capacity change from 0 to 2048
[  502.057790][T16594] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  502.106174][T16730] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  502.192769][T16594] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  502.486000][T16594] team0: Port device team_slave_0 added
[  502.530519][ T4313] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  502.558287][   T11] device hsr_slave_0 left promiscuous mode
[  502.558957][   T11] device hsr_slave_1 left promiscuous mode
[  502.567623][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  502.567675][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  502.577117][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  502.657986][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  502.660299][   T11] device bridge_slave_1 left promiscuous mode
[  502.660449][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  502.667800][   T11] device bridge_slave_0 left promiscuous mode
[  502.667943][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  502.741216][ T4313] usb 2-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  502.741251][ T4313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  502.743217][ T4313] usb 2-1: config 0 descriptor??
[  502.748097][ T4313] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  502.761337][   T11] device veth0_macvtap left promiscuous mode
[  502.761443][   T11] device veth1_vlan left promiscuous mode
[  503.155443][ T4313] gspca_stv06xx: I2C: Read error writing address: -71
[  503.188766][ T4313] usb 2-1: USB disconnect, device number 16
[  503.389270][ T4279] Bluetooth: hci4: command 0x040f tx timeout
[  503.403337][   T11] bond2 (unregistering): Released all slaves
[  503.767141][   T11] bond1 (unregistering): Released all slaves
[  504.716581][   T11] team0 (unregistering): Port device team_slave_1 removed
[  504.791645][   T11] team0 (unregistering): Port device team_slave_0 removed
[  504.861821][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  504.935904][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  505.311823][   T11] team0 (unregistering): Port device dummy0 removed
[  505.464665][ T4279] Bluetooth: hci4: command 0x0419 tx timeout
[  505.844123][   T11] bond0 (unregistering): Released all slaves
[  505.931674][T16594] team0: Port device team_slave_1 added
[  506.079907][T16594] batman_adv: batadv0: Adding interface: batadv_slave_0
[  506.147762][T16594] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  506.271276][T16594] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  506.311166][T16788] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma?
[  506.339629][T16594] batman_adv: batadv0: Adding interface: batadv_slave_1
[  506.364188][T16594] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  506.392336][T16786] loop3: detected capacity change from 0 to 2048
[  506.457846][T16594] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  506.535610][T16786] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  506.763239][T16594] device hsr_slave_0 entered promiscuous mode
[  506.789475][T16594] device hsr_slave_1 entered promiscuous mode
[  506.837711][T16594] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  506.863723][T16594] Cannot create hsr debugfs directory
[  507.622786][T16594] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  507.729702][T16594] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  507.807289][T16594] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  507.837666][T16594] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  507.870294][T16835] tmpfs: Bad value for 'size'
[  508.095665][   T26] audit: type=1400 audit(2000000033.111:109): apparmor="DENIED" operation="change_profile" info="label not found" error=-2 profile="unconfined" name=3A273A02 pid=16847 comm="syz.0.5280"
[  508.254388][T16594] 8021q: adding VLAN 0 to HW filter on device bond0
[  508.371666][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  508.385379][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  508.403830][T16594] 8021q: adding VLAN 0 to HW filter on device team0
[  508.455331][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  508.499685][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  508.549353][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  508.556721][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  508.629788][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  508.657751][T16864] loop3: detected capacity change from 0 to 1024
[  508.674495][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  508.718154][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  508.725501][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  508.771226][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  508.841053][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  508.860158][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  508.916783][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  508.979531][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  509.029873][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  509.051811][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  509.067105][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  509.084252][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  509.096535][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  509.113108][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  509.133833][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  509.156839][T16594] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  509.612208][T16862] loop1: detected capacity change from 0 to 32768
[  509.697647][T16891] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5297'.
[  510.258456][T16908] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5303'.
[  510.317547][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  510.359375][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  510.407374][T16594] 8021q: adding VLAN 0 to HW filter on device batadv0
[  510.792028][T16919] loop0: detected capacity change from 0 to 4096
[  510.885426][T16919] ntfs3: loop0: ino=3, Correct links count -> 2.
[  512.129365][ T4313] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  512.160675][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  512.200523][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  512.315253][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  512.319115][ T4313] usb 2-1: Using ep0 maxpacket: 16
[  512.335542][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  512.362221][ T4313] usb 2-1: config 0 has no interfaces?
[  512.367706][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  512.390964][ T4313] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  512.400049][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  512.419162][ T4313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.429704][T16594] device veth0_vlan entered promiscuous mode
[  512.459400][ T4313] usb 2-1: Product: syz
[  512.463967][ T4313] usb 2-1: Manufacturer: syz
[  512.468666][ T4313] usb 2-1: SerialNumber: syz
[  512.494620][ T4313] r8152-cfgselector 2-1: config 0 descriptor??
[  512.521099][T16594] device veth1_vlan entered promiscuous mode
[  512.531045][T16938] loop3: detected capacity change from 0 to 32768
[  512.659389][T15003] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  512.685578][T15003] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  512.728223][ T4313] usbip-host 2-1: 2-1 is not in match_busid table... skip!
[  512.780368][T15003] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  512.790452][T16938] XFS (loop3): Mounting V5 Filesystem
[  512.810348][T15003] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  512.888109][T16594] device veth0_macvtap entered promiscuous mode
[  512.954139][T16938] XFS (loop3): Ending clean mount
[  512.961362][ T6015] usb 2-1: USB disconnect, device number 17
[  512.970467][T16938] XFS (loop3): Quotacheck needed: Please wait.
[  512.991055][T16594] device veth1_macvtap entered promiscuous mode
[  513.051617][T16938] XFS (loop3): Quotacheck: Done.
[  513.088014][T16594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.139052][T16594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.179612][T16594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.219430][T16594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.289182][T16594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.319288][T16594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.358072][ T4274] XFS (loop3): Unmounting Filesystem
[  513.366492][T16594] batman_adv: batadv0: Interface activated: batadv_slave_0
[  513.426026][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  513.444970][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  513.527805][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  513.563546][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  513.610052][T16594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.650238][T16594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.694459][T16594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.730980][T16594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.777590][T16594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.807844][T16594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.824602][T16594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.836102][T16594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.858879][T17003] loop1: detected capacity change from 0 to 4096
[  513.868840][T16594] batman_adv: batadv0: Interface activated: batadv_slave_1
[  513.888768][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  513.917297][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  513.947344][T17003] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  513.950046][T16594] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  513.985616][T16594] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  514.020738][T16594] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  514.039998][T16594] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  514.105644][T17003] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  514.175795][T17003] ntfs3: loop1: Failed to load $Extend.
[  514.320675][T15003] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  514.369486][T15003] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  514.418512][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  514.480422][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  514.493919][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  514.552202][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  514.885106][T17034] validate_nla: 41 callbacks suppressed
[  514.885126][T17034] netlink: 'syz.0.5347': attribute type 30 has an invalid length.
[  514.929423][T17034] (unnamed net_device) (uninitialized): option arp_missed_max: mode dependency failed, not supported in mode balance-alb(6)
[  515.171059][T17041] loop6: detected capacity change from 0 to 8
[  515.291360][T17041] SQUASHFS error: Unable to read directory block [629:26]
[  515.687835][T17059] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5355'.
[  515.831057][T17053] loop7: detected capacity change from 0 to 4096
[  515.880568][T17053] ntfs3: loop7: Different NTFS' sector size (2048) and media sector size (512)
[  515.906700][T17062] netlink: 48 bytes leftover after parsing attributes in process `syz.6.5359'.
[  515.947672][T17053] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[  516.301574][T16594] ntfs3: loop7: ntfs_evict_inode r=5 failed, -22.
[  516.953716][T17097] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5372'.
[  517.003773][T17097] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5372'.
[  517.165152][T17099] loop0: detected capacity change from 0 to 4096
[  517.221273][T17099] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  517.254341][T17065] loop3: detected capacity change from 0 to 32768
[  517.294466][T17099] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing.
[  517.307680][T17065] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 13
[  517.363461][T17099] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  517.447955][T17099] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  517.485167][T17110] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  517.594965][T17099] ntfs: volume version 3.1.
[  517.803116][ T6124] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 13
[  517.888306][T17121] netlink: 64 bytes leftover after parsing attributes in process `syz.6.5380'.
[  518.083597][T17127] loop0: detected capacity change from 0 to 1024
[  518.159150][   T14] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  518.294258][ T4362] hfsplus: b-tree write err: -5, ino 4
[  518.371098][   T14] usb 8-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  518.409191][   T14] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  518.462627][   T14] usb 8-1: config 0 descriptor??
[  518.499512][ T6015] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  518.689136][ T6015] usb 2-1: Using ep0 maxpacket: 32
[  518.697826][ T6015] usb 2-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  518.721267][ T6015] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  518.738702][T17146] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5391'.
[  518.743619][ T6015] usb 2-1: config 0 descriptor??
[  518.813136][ T6015] gspca_main: nw80x-2.14.0 probing 055f:d001
[  518.896553][   T14] [drm:udl_init] *ERROR* Selecting channel failed
[  518.960430][   T14] [drm] Initialized udl 0.0.1 20120220 for 8-1:0.0 on minor 2
[  518.983098][   T14] [drm] Initialized udl on minor 2
[  519.004907][   T14] udl 8-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  519.034638][   T14] udl 8-1:0.0: [drm] Cannot find any crtc or sizes
[  519.082113][   T14] usb 8-1: USB disconnect, device number 2
[  519.090460][ T4328] udl 8-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  519.120160][ T4328] udl 8-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  519.139403][ T4328] udl 8-1:0.0: [drm] Cannot find any crtc or sizes
[  519.179469][ T6015] gspca_nw80x: reg_r err -71
[  519.184625][ T6015] nw80x: probe of 2-1:0.0 failed with error -71
[  519.212225][ T6015] usb 2-1: USB disconnect, device number 18
[  519.455383][T17164] netlink: 76 bytes leftover after parsing attributes in process `syz.3.5399'.
[  520.429446][T17200] loop7: detected capacity change from 0 to 1764
[  521.664990][T17246] loop3: detected capacity change from 0 to 1024
[  521.775262][T17246] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  521.874590][T17246] ext4 filesystem being mounted at /1101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  521.945413][T17246] EXT4-fs error (device loop3): ext4_get_first_dir_block:3605: inode #12: comm syz.3.5432: directory missing '..'
[  521.982503][T17246] EXT4-fs (loop3): Remounting filesystem read-only
[  522.302422][T17218] loop7: detected capacity change from 0 to 40427
[  522.309471][T17262] comedi comedi4: bad chanlist[0]=0x0000ffff chan=65535 range length=2
[  522.385312][T17218] F2FS-fs (loop7): Found nat_bits in checkpoint
[  522.561296][T17218] F2FS-fs (loop7): Cannot turn on quotas: -2 on 1
[  522.588879][T17218] F2FS-fs (loop7): Cannot turn on quotas: -2 on 2
[  522.616772][T17218] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  522.940709][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  523.371598][ T5816] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  523.589447][ T5816] usb 7-1: Using ep0 maxpacket: 32
[  523.604236][ T5816] usb 7-1: config 0 has an invalid interface number: 196 but max is 0
[  523.674255][ T5816] usb 7-1: config 0 has no interface number 0
[  523.706536][ T5816] usb 7-1: config 0 interface 196 has no altsetting 0
[  523.739823][ T5816] usb 7-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  523.799481][ T5816] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  523.835012][ T5816] usb 7-1: Product: syz
[  523.862527][ T5816] usb 7-1: Manufacturer: syz
[  523.867307][ T5816] usb 7-1: SerialNumber: syz
[  523.930149][ T5816] usb 7-1: config 0 descriptor??
[  524.005202][T17310] netlink: 56 bytes leftover after parsing attributes in process `syz.3.5455'.
[  524.155823][ T5816] ipheth 7-1:0.196: Unable to find endpoints
[  524.210625][ T5816] usb 7-1: USB disconnect, device number 17
[  524.247575][T17318] loop0: detected capacity change from 0 to 256
[  524.354844][T17322] netlink: 'syz.3.5459': attribute type 1 has an invalid length.
[  524.368965][T17318] FAT-fs (loop0): Directory bread(block 64) failed
[  524.376532][T17318] FAT-fs (loop0): Directory bread(block 65) failed
[  524.439901][T17318] FAT-fs (loop0): Directory bread(block 66) failed
[  524.460324][T17318] FAT-fs (loop0): Directory bread(block 67) failed
[  524.487917][T17318] FAT-fs (loop0): Directory bread(block 68) failed
[  524.531186][T17318] FAT-fs (loop0): Directory bread(block 69) failed
[  524.575614][T17318] FAT-fs (loop0): Directory bread(block 70) failed
[  524.596857][T17318] FAT-fs (loop0): Directory bread(block 71) failed
[  524.629352][T17318] FAT-fs (loop0): Directory bread(block 72) failed
[  524.657273][T17318] FAT-fs (loop0): Directory bread(block 73) failed
[  524.673707][T17328] netlink: 'syz.1.5462': attribute type 7 has an invalid length.
[  525.404003][T17354] loop3: detected capacity change from 0 to 256
[  525.586461][T17354] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d)
[  526.104235][T17373] loop3: detected capacity change from 0 to 64
[  527.068827][T17394] loop1: detected capacity change from 0 to 8192
[  527.661166][T17423] loop3: detected capacity change from 0 to 128
[  527.735248][T17423] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  527.778330][T17423] ext4 filesystem being mounted at /1116/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  527.892828][T17423] EXT4-fs warning (device loop3): verify_group_input:151: Cannot add at group 1029 (only 1 groups)
[  528.023439][T17435] device netdevsim0 entered promiscuous mode
[  528.078361][T17399] loop7: detected capacity change from 0 to 32768
[  528.143860][T17399] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 13
[  528.172433][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  528.651665][T17452] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5509'.
[  528.666539][T17452] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5509'.
[  528.674057][ T6129] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 13
[  528.889185][ T5817] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  529.100993][ T5817] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  529.127721][T17425] loop1: detected capacity change from 0 to 32768
[  529.135027][ T5817] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  529.153915][T17425] XFS: noikeep mount option is deprecated.
[  529.160073][T17463] loop0: detected capacity change from 0 to 8
[  529.168152][T17463] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  529.185423][ T5817] usb 4-1: config 0 descriptor??
[  529.224795][ T6124] udevd[6124]: incorrect cramfs checksum on /dev/loop0
[  529.231020][T17463] cramfs: Error -3 while decompressing!
[  529.244895][T17463] cramfs: ffffffff96d751c2(26)->ffff888039c35000(4096)
[  529.279622][T17463] cramfs: Error -3 while decompressing!
[  529.299603][T17463] cramfs: ffffffff96d751dc(16)->ffff8880388a3000(4096)
[  529.317470][ T6124] udevd[6124]: incorrect cramfs checksum on /dev/loop0
[  529.332079][T17463] cramfs: Error -3 while decompressing!
[  529.337993][T17463] cramfs: ffffffff96d751c2(26)->ffff888039c35000(4096)
[  529.346988][T17425] XFS (loop1): Mounting V5 Filesystem
[  529.443990][   T26] audit: type=1800 audit(2000000054.461:110): pid=17463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5514" name="file2" dev="loop0" ino=348 res=0 errno=0
[  529.553510][T17425] XFS (loop1): Ending clean mount
[  529.574925][T17425] XFS (loop1): Quotacheck needed: Please wait.
[  529.616640][ T5817] [drm:udl_init] *ERROR* Selecting channel failed
[  529.651363][ T5817] [drm] Initialized udl 0.0.1 20120220 for 4-1:0.0 on minor 2
[  529.667245][ T5817] [drm] Initialized udl on minor 2
[  529.702592][ T5817] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  529.753535][ T5817] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  529.791083][T17486] loop6: detected capacity change from 0 to 16
[  529.795709][ T5817] usb 4-1: USB disconnect, device number 21
[  529.813475][T17485] loop7: detected capacity change from 0 to 1024
[  529.825381][ T5824] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  529.835553][ T5824] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  529.868905][ T5824] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  529.871244][T17486] erofs: (device loop6): mounted with root inode @ nid 36.
[  529.890628][T17425] XFS (loop1): Quotacheck: Done.
[  530.039412][   T46] hfsplus: b-tree write err: -5, ino 4
[  530.178604][ T4264] XFS (loop1): Unmounting Filesystem
[  531.310680][T17529] loop3: detected capacity change from 0 to 256
[  531.348558][T17529] exfat: Deprecated parameter 'utf8'
[  531.380218][T17529] exfat: Deprecated parameter 'utf8'
[  531.389399][   T14] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  531.430563][T17529] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  531.597142][   T14] usb 7-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  531.629528][   T14] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  531.655356][   T14] usb 7-1: config 0 descriptor??
[  531.716796][T17539] device veth1_macvtap left promiscuous mode
[  532.080041][   T14] [drm:udl_init] *ERROR* Selecting channel failed
[  532.103022][   T14] [drm] Initialized udl 0.0.1 20120220 for 7-1:0.0 on minor 2
[  532.117746][T17550] loop0: detected capacity change from 0 to 1024
[  532.136053][   T14] [drm] Initialized udl on minor 2
[  532.157599][   T14] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  532.183521][   T14] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[  532.209333][   T14] usb 7-1: USB disconnect, device number 18
[  532.233341][ T4313] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  532.289992][T17550] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  532.300319][ T4313] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  532.308409][ T4313] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[  532.325141][T17550] ext4 filesystem being mounted at /1128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  532.538068][ T4268] EXT4-fs (loop0): unmounting filesystem.
[  533.231365][T17551] loop7: detected capacity change from 0 to 32768
[  533.535364][T17597] loop1: detected capacity change from 0 to 512
[  533.600229][T17597] EXT4-fs: Ignoring removed orlov option
[  533.672105][T17597] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  533.804355][T17597] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2195: inode #15: comm syz.1.5571: corrupted in-inode xattr
[  533.902475][T17597] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.5571: couldn't read orphan inode 15 (err -117)
[  533.950433][T17597] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  534.247503][ T4264] EXT4-fs (loop1): unmounting filesystem.
[  535.131435][T17651] loop3: detected capacity change from 0 to 512
[  535.189984][T17651] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  535.298325][T17651] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[  535.360960][T17651] Quota error (device loop3): write_blk: dquota write failed
[  535.368975][T17651] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  535.454445][T17651] EXT4-fs error (device loop3): ext4_acquire_dquot:6816: comm syz.3.5591: Failed to acquire dquot type 0
[  535.468220][T17659] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5594'.
[  535.499143][T17659] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5594'.
[  535.500531][T17651] EXT4-fs (loop3): 1 truncate cleaned up
[  535.559249][T17651] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  535.625820][T17651] Quota error (device loop3): write_blk: dquota write failed
[  535.674083][T17651] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  535.739106][T17651] EXT4-fs error (device loop3): ext4_acquire_dquot:6816: comm syz.3.5591: Failed to acquire dquot type 0
[  535.953021][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  536.398628][T17681] device veth1_macvtap left promiscuous mode
[  536.438641][T17683] loop6: detected capacity change from 0 to 256
[  536.464319][T17656] loop1: detected capacity change from 0 to 32768
[  536.994708][T17698] loop3: detected capacity change from 0 to 256
[  537.134768][T17698] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  537.260796][T17702] loop7: detected capacity change from 0 to 512
[  537.331024][T17693] loop1: detected capacity change from 0 to 8192
[  537.331670][T17702] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002]
[  537.428327][T17702] System zones: 1-12
[  537.447539][T17702] EXT4-fs error (device loop7): ext4_get_branch:178: inode #11: block 33261: comm syz.7.5611: invalid block
[  537.477847][T17702] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #11: comm syz.7.5611: invalid indirect mapped block 8 (level 2)
[  537.505219][T17702] EXT4-fs (loop7): 1 truncate cleaned up
[  537.512120][T17702] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  537.675025][T17702] EXT4-fs error (device loop7): ext4_map_blocks:635: inode #2: block 5: comm syz.7.5611: lblock 0 mapped to illegal pblock 5 (length 1)
[  537.869180][T17702] EXT4-fs warning (device loop7): ext4_empty_dir:3139: inode #2: lblock 0: comm syz.7.5611: error -117 reading directory block
[  537.997401][T17721] tmpfs: Bad value for 'mpol'
[  538.044200][T16594] EXT4-fs (loop7): unmounting filesystem.
[  538.253035][T17728] netlink: 'syz.7.5618': attribute type 3 has an invalid length.
[  538.726259][T17741] loop3: detected capacity change from 0 to 512
[  538.751646][T17743] loop7: detected capacity change from 0 to 256
[  538.780206][   T14] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  538.845749][T17741] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  538.859418][T17741] ext4 filesystem being mounted at /1140/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  538.963985][T17717] loop6: detected capacity change from 0 to 32768
[  538.976258][   T14] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  538.991274][   T14] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2
[  539.006517][T17717] jfs_strtoUCS: char2uni returned -22.
[  539.007410][   T14] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  539.030160][   T14] usb 2-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5
[  539.055540][T17717] charset = euc-jp, char = 0xd4
[  539.069120][   T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  539.108243][   T14] usb 2-1: Product: syz
[  539.121519][   T14] usb 2-1: Manufacturer: syz
[  539.126334][   T14] usb 2-1: SerialNumber: syz
[  539.166978][   T14] usb 2-1: config 0 descriptor??
[  539.174809][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  539.399919][   T14] usb 2-1: Found UVC 34.00 device syz (8086:0b5b)
[  539.406664][   T14] usb 2-1: No valid video chain found.
[  539.490126][   T14] usb 2-1: USB disconnect, device number 19
[  539.862171][T17763] loop6: detected capacity change from 0 to 4096
[  541.176215][T17808] loop1: detected capacity change from 0 to 4096
[  541.572635][T17828] A link change request failed with some changes committed already. Interface veth0_macvtap may have been left with an inconsistent configuration, please check.
[  542.698584][T17869] loop1: detected capacity change from 0 to 1024
[  542.993186][T17880] netlink: 45 bytes leftover after parsing attributes in process `syz.7.5678'.
[  543.002733][ T5816] usb 4-1: new full-speed USB device number 22 using dummy_hcd
[  543.089222][ T4305] hfsplus: b-tree write err: -5, ino 4
[  543.193062][ T5816] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[  543.222097][ T5816] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  543.296306][ T5816] usb 4-1: config 0 has no interface number 0
[  543.309103][ T5816] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  543.357459][ T5816] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  543.377755][T17855] loop0: detected capacity change from 0 to 32768
[  543.394794][ T5816] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  543.448089][ T5816] usb 4-1: config 0 interface 52 has no altsetting 0
[  543.466332][T17855] XFS: noikeep mount option is deprecated.
[  543.516385][ T5816] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[  543.539500][ T5816] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[  543.547942][ T5816] usb 4-1: SerialNumber: syz
[  543.622132][ T5816] usb 4-1: config 0 descriptor??
[  543.655025][T17855] XFS (loop0): Mounting V5 Filesystem
[  543.835354][ T5816] synaptics_usb 4-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  543.855156][ T5816] synaptics_usb: probe of 4-1:0.52 failed with error -5
[  543.885858][T17855] XFS (loop0): Ending clean mount
[  543.969500][T17855] XFS (loop0): Quotacheck needed: Please wait.
[  543.973329][T17917] loop6: detected capacity change from 0 to 16
[  544.024462][T17917] erofs: (device loop6): mounted with root inode @ nid 36.
[  544.026489][T17918] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5689'.
[  544.074921][ T4328] usb 4-1: USB disconnect, device number 22
[  544.134487][T17855] XFS (loop0): Quotacheck: Done.
[  544.384922][ T4268] XFS (loop0): Unmounting Filesystem
[  544.531410][T17924] loop1: detected capacity change from 0 to 4096
[  544.573199][T17924] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  544.729692][T17924] ntfs3: loop1: failed to convert "c46c" to cp863
[  544.788044][T17934] loop6: detected capacity change from 0 to 1024
[  544.936391][T17934] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  545.018245][T17934] EXT4-fs error (device loop6): ext4_empty_dir:3154: inode #11: block 32: comm syz.6.5695: bad entry in directory: rec_len % 4 != 0 - offset=12, inode=2, rec_len=65526, size=1024 fake=1
[  545.094956][T17934] EXT4-fs warning (device loop6): ext4_empty_dir:3156: inode #11: comm syz.6.5695: directory missing '..'
[  545.368748][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  545.470055][T17953] loop3: detected capacity change from 0 to 1024
[  546.292001][T17988] autofs4:pid:17988:validate_dev_ioctl: path string terminator missing for cmd(0xc018937e)
[  547.231013][T18027] loop7: detected capacity change from 0 to 2048
[  547.308166][T18027] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  547.827330][T18050] comedi comedi0: mpc624: I/O port conflict (0xf2,16)
[  548.343348][T18061] loop6: detected capacity change from 0 to 4096
[  548.475906][T18061] ntfs: volume version 3.1.
[  548.709127][   T14] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  548.906467][   T14] usb 2-1: Using ep0 maxpacket: 16
[  548.930151][   T14] usb 2-1: config 0 has an invalid interface number: 2 but max is 0
[  548.975289][   T14] usb 2-1: config 0 has no interface number 0
[  549.001738][   T14] usb 2-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 0.01
[  549.042604][   T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  549.055233][T18094] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  549.099091][   T14] usb 2-1: Product: syz
[  549.103329][   T14] usb 2-1: Manufacturer: syz
[  549.144298][   T14] usb 2-1: SerialNumber: syz
[  549.167958][   T14] usb 2-1: config 0 descriptor??
[  549.190336][   T14] gspca_main: xirlink-cit-2.14.0 probing 0545:8080
[  549.349372][T18102] netlink: 'syz.3.5755': attribute type 21 has an invalid length.
[  549.595565][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0112, value 0x01, error -71)
[  549.630841][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0400, value 0x00, error -71)
[  549.703060][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0400, value 0x01, error -71)
[  549.703431][T18115] xt_l2tp: wrong L2TP version: 0
[  549.744253][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0420, value 0x00, error -71)
[  549.788664][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0420, value 0x01, error -71)
[  549.850076][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0409, value 0x0D, error -71)
[  549.886003][   T14] gspca_xirlink_cit: Failed to write a register (index 0x040A, value 0x02, error -71)
[  549.933062][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0405, value 0x18, error -71)
[  549.991975][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0435, value 0x08, error -71)
[  550.033904][   T14] gspca_xirlink_cit: Failed to write a register (index 0x040B, value 0x26, error -71)
[  550.077759][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0437, value 0x07, error -71)
[  550.140525][   T14] gspca_xirlink_cit: Failed to write a register (index 0x042F, value 0x15, error -71)
[  550.185828][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0439, value 0x2B, error -71)
[  550.246939][   T14] gspca_xirlink_cit: Failed to write a register (index 0x043A, value 0x26, error -71)
[  550.320419][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0438, value 0x08, error -71)
[  550.379385][   T14] gspca_xirlink_cit: Failed to write a register (index 0x042B, value 0x1E, error -71)
[  550.424034][   T14] gspca_xirlink_cit: Failed to write a register (index 0x042C, value 0x41, error -71)
[  550.478933][   T14] gspca_xirlink_cit: Failed to write a register (index 0x0100, value 0xC0, error -71)
[  550.566789][   T14] input: xirlink-cit as /devices/platform/dummy_hcd.1/usb2/2-1/input/input17
[  550.660097][   T14] usb 2-1: USB disconnect, device number 20
[  551.082792][T18154] loop0: detected capacity change from 0 to 2048
[  551.103295][T18157] loop1: detected capacity change from 0 to 164
[  551.197865][T18157] Unsupported NM flag settings (8)
[  551.207626][T18159] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  551.288038][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.369113][T18154] Remounting filesystem read-only
[  551.385030][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.420041][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.456148][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.485398][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.502512][T18167] netlink: 'syz.6.5783': attribute type 1 has an invalid length.
[  551.510677][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.544803][T18167] netlink: 212408 bytes leftover after parsing attributes in process `syz.6.5783'.
[  551.561074][T18123] loop7: detected capacity change from 0 to 40427
[  551.577142][T18123] F2FS-fs (loop7): Insane cp_payload (553648128 >= 504)
[  551.584182][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.604738][T18123] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  551.625394][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.647773][T18123] F2FS-fs (loop7): invalid crc value
[  551.659228][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.667729][T18170] loop3: detected capacity change from 0 to 128
[  551.704335][T18154] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  551.724713][T18123] F2FS-fs (loop7): Found nat_bits in checkpoint
[  551.736221][   T26] audit: type=1800 audit(2000000076.751:111): pid=18154 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5777" name="file2" dev="loop0" ino=16 res=0 errno=0
[  551.853982][T18170] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  551.900863][T18174] netlink: 'syz.1.5785': attribute type 8 has an invalid length.
[  551.908633][T18178] sctp: [Deprecated]: syz.0.5786 (pid 18178) Use of struct sctp_assoc_value in delayed_ack socket option.
[  551.908633][T18178] Use struct sctp_sack_info instead
[  551.969463][T18170] ext4 filesystem being mounted at /1175/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  552.037344][T18123] F2FS-fs (loop7): Cannot turn on quotas: -2 on 2
[  552.044460][T18170] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #2: comm syz.3.5784: No space for directory leaf checksum. Please run e2fsck -D.
[  552.077375][T18123] F2FS-fs (loop7): Start checkpoint disabled!
[  552.119502][T18170] EXT4-fs error (device loop3): __ext4_find_entry:1696: inode #2: comm syz.3.5784: checksumming directory block 0
[  552.155737][T18123] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  552.163470][T18123] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  552.248939][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  552.266928][T18185] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  552.413141][   T14] usb 7-1: new full-speed USB device number 19 using dummy_hcd
[  552.508034][T18187] loop1: detected capacity change from 0 to 4096
[  552.558522][T18187] ntfs3: loop1: ino=3, Correct links count -> 2.
[  552.614679][   T14] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  552.646452][   T14] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  552.678792][   T14] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  552.723966][   T14] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  552.801640][   T14] usb 7-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  552.831186][   T14] usb 7-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  552.852986][   T14] usb 7-1: Manufacturer: syz
[  552.927780][   T14] usb 7-1: config 0 descriptor??
[  553.115103][T18189] loop3: detected capacity change from 0 to 32768
[  553.156142][T18189] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  553.191004][   T14] usb 7-1: USB disconnect, device number 19
[  553.206374][T18189] (syz.3.5790,18189,1):ocfs2_symlink:2065 ERROR: status = -2
[  553.249154][ T4328] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  553.348138][ T4274] (syz-executor,4274,0):ocfs2_inode_is_valid_to_delete:852 ERROR: Skipping delete of root inode.
[  553.388668][T18208] netlink: 'syz.1.5799': attribute type 24 has an invalid length.
[  553.398474][ T4274] ocfs2: Unmounting device (7,3) on (node local)
[  553.441106][ T4328] usb 8-1: config 220 has an invalid interface number: 76 but max is 2
[  553.477007][ T4328] usb 8-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  553.522160][ T4328] usb 8-1: config 220 has no interface number 2
[  553.552607][ T4328] usb 8-1: config 220 interface 1 altsetting 5 endpoint 0x9 has invalid wMaxPacketSize 0
[  553.603030][ T4328] usb 8-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[  553.648598][ T4328] usb 8-1: config 220 interface 0 has no altsetting 0
[  553.668919][ T4328] usb 8-1: config 220 interface 76 has no altsetting 0
[  553.697005][ T4328] usb 8-1: config 220 interface 1 has no altsetting 0
[  553.727310][ T4328] usb 8-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  553.758656][ T4328] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  553.790381][ T4328] usb 8-1: Product: syz
[  553.795031][ T4328] usb 8-1: Manufacturer: syz
[  553.838262][ T4328] usb 8-1: SerialNumber: syz
[  554.089495][ T4328] usb 8-1: selecting invalid altsetting 0
[  554.096435][ T4328] usb 8-1: Found UVC 7.01 device syz (8086:0b07)
[  554.144729][ T4328] usb 8-1: No valid video chain found.
[  554.160379][T18223] loop3: detected capacity change from 0 to 8192
[  554.197197][T18223] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  554.241635][ T4328] usb 8-1: selecting invalid altsetting 0
[  554.247700][ T4328] usbtest: probe of 8-1:220.1 failed with error -22
[  554.256797][T18233] loop1: detected capacity change from 0 to 8
[  554.262722][T18232] loop0: detected capacity change from 0 to 4096
[  554.271948][T18223] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  554.272015][T18232] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  554.281920][T18223] REISERFS (device loop3): using ordered data mode
[  554.297765][T18223] reiserfs: using flush barriers
[  554.305387][T18233] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  554.321202][T18223] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  554.339414][T18223] REISERFS (device loop3): checking transaction log (loop3)
[  554.349506][ T4328] usb 8-1: USB disconnect, device number 3
[  554.363295][T18233] cramfs: Error -3 while decompressing!
[  554.371629][T18233] cramfs: ffffffff96d791a8(26)->ffff88803c661000(4096)
[  554.386510][T18233] cramfs: Error -3 while decompressing!
[  554.397354][T18223] REISERFS (device loop3): Using r5 hash to sort names
[  554.406004][T18233] cramfs: ffffffff96d791c2(26)->ffff8880509fa000(4096)
[  554.407907][ T6124] udevd[6124]: incorrect cramfs checksum on /dev/loop1
[  554.449151][T18233] cramfs: Error -3 while decompressing!
[  554.454872][T18233] cramfs: ffffffff96d791dc(16)->ffff8880509fb000(4096)
[  554.495163][T18233] cramfs: Error -3 while decompressing!
[  554.518209][T18233] cramfs: ffffffff96d791a8(26)->ffff88803c661000(4096)
[  554.546299][ T4404] udevd[4404]: incorrect cramfs checksum on /dev/loop1
[  554.599607][   T26] audit: type=1800 audit(2000000079.621:112): pid=18233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5810" name="file2" dev="loop1" ino=348 res=0 errno=0
[  554.614822][ T6124] udevd[6124]: incorrect cramfs checksum on /dev/loop1
[  554.965648][T18242] afs: Unknown parameter 'dont_hash'
[  555.189272][T18249] netlink: 'syz.1.5819': attribute type 2 has an invalid length.
[  555.625408][T18266] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5826'.
[  555.697583][T18266] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5826'.
[  555.738136][T18266] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5826'.
[  555.815309][T18265] loop7: detected capacity change from 0 to 8192
[  555.888004][T18265] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  556.002893][T18265] REISERFS (device loop7): found reiserfs format "3.5" with non-standard journal
[  556.013792][T18265] REISERFS (device loop7): using ordered data mode
[  556.021249][T18265] reiserfs: using flush barriers
[  556.036833][T18265] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  556.070999][T18265] REISERFS (device loop7): checking transaction log (loop7)
[  556.095721][T18265] REISERFS (device loop7): Using r5 hash to sort names
[  556.765041][T18301] loop0: detected capacity change from 0 to 256
[  557.073004][T18311] CIFS: iocharset name too long
[  557.221941][T18316] loop3: detected capacity change from 0 to 16
[  557.230076][T18317] loop7: detected capacity change from 0 to 512
[  557.291003][T18316] erofs: (device loop3): mounted with root inode @ nid 36.
[  557.355108][T18317] EXT4-fs (loop7): 1 truncate cleaned up
[  557.389210][T18317] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  557.426912][T18316] syz.3.5851: attempt to access beyond end of device
[  557.426912][T18316] loop3: rw=524288, sector=7864328, nr_sectors = 8 limit=16
[  557.449604][T18316] syz.3.5851: attempt to access beyond end of device
[  557.449604][T18316] loop3: rw=0, sector=7864328, nr_sectors = 8 limit=16
[  557.491959][   T26] audit: type=1800 audit(2000000082.511:113): pid=18316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5851" name="file3" dev="loop3" ino=89 res=0 errno=0
[  557.775066][T16594] EXT4-fs (loop7): unmounting filesystem.
[  558.321993][T18353] overlayfs: missing 'lowerdir'
[  558.493632][T18359] bond0: Error: Cannot enslave bond to itself.
[  558.591857][T18355] loop6: detected capacity change from 0 to 4096
[  558.638583][T18355] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512)
[  558.752607][T18355] ntfs3: loop6: failed to convert "c46c" to iso8859-9
[  559.429811][T18362] loop1: detected capacity change from 0 to 32768
[  559.465639][T18362] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  559.642598][T18384] kAFS: unable to lookup cell '.,'
[  559.767559][ T6129] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  560.046742][T18390] loop1: detected capacity change from 0 to 4096
[  560.071393][T18390] ntfs3: loop1: ino=3, Correct links count -> 2.
[  560.088158][T18390] ntfs3: loop1: Failed to load $Volume.
[  560.567341][T18404] loop3: detected capacity change from 0 to 4096
[  560.599448][T18404] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512)
[  560.627447][T18411] netlink: 'syz.1.5897': attribute type 10 has an invalid length.
[  560.706841][T18414] loop7: detected capacity change from 0 to 64
[  560.838661][   T26] audit: type=1800 audit(2000000085.851:114): pid=18404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.5893" name="file1" dev="loop3" ino=30 res=0 errno=0
[  560.913862][T18418] loop6: detected capacity change from 0 to 256
[  560.939083][   T26] audit: type=1800 audit(2000000085.881:115): pid=18414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.5898" name="file1" dev="loop7" ino=21 res=0 errno=0
[  561.041826][T18418] FAT-fs (loop6): "posix" option is obsolete, not supported now
[  561.264120][T18426] loop0: detected capacity change from 0 to 2048
[  561.308584][T18426] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  561.446578][T18432] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  561.458913][ T4373] udevd[4373]: incorrect nilfs2 checksum on /dev/loop0
[  561.881073][T18439] device bond2 entered promiscuous mode
[  561.887016][T18439] 8021q: adding VLAN 0 to HW filter on device bond2
[  562.628935][   T26] audit: type=1326 audit(2000000087.641:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18472 comm="syz.1.5926" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f264158ebe9 code=0x0
[  562.729475][   T26] audit: type=1326 audit(2000000087.681:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18472 comm="syz.1.5926" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f264158ebe9 code=0x0
[  562.752059][    C1] vkms_vblank_simulate: vblank timer overrun
[  562.810243][   T26] audit: type=1326 audit(2000000087.701:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18472 comm="syz.1.5926" exe="/root/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f264158ebe9 code=0x0
[  562.833141][    C1] vkms_vblank_simulate: vblank timer overrun
[  562.864315][T18484] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5930'.
[  563.064677][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  563.075573][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  563.098758][   T26] audit: type=1326 audit(2000000088.111:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18487 comm="syz.7.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2f838ebe9 code=0x7ffc0000
[  563.120079][T18491] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5934'.
[  563.121245][    C1] vkms_vblank_simulate: vblank timer overrun
[  563.180332][   T26] audit: type=1326 audit(2000000088.151:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18487 comm="syz.7.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7fd2f838ebe9 code=0x7ffc0000
[  563.193489][T18491] unsupported nlmsg_type 40
[  563.203249][    C1] vkms_vblank_simulate: vblank timer overrun
[  563.259156][   T26] audit: type=1326 audit(2000000088.151:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18487 comm="syz.7.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2f838ebe9 code=0x7ffc0000
[  563.349183][   T26] audit: type=1326 audit(2000000088.151:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18487 comm="syz.7.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2f838ebe9 code=0x7ffc0000
[  563.402046][T18500] loop7: detected capacity change from 0 to 512
[  563.550588][T18500] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  563.587979][T18500] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  563.694736][T18500] EXT4-fs error (device loop7): ext4_get_first_dir_block:3583: inode #12: comm syz.7.5938: Attempting to read directory block (0) that is past i_size (3)
[  563.775755][T18500] EXT4-fs (loop7): Remounting filesystem read-only
[  563.924584][T16594] EXT4-fs (loop7): unmounting filesystem.
[  564.095942][T18520] RDS: rds_bind could not find a transport for 0:0:4::1, load rds_tcp or rds_rdma?
[  564.276652][T18526] loop0: detected capacity change from 0 to 512
[  564.327146][T18526] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  564.404792][T18526] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:477: comm syz.0.5948: Invalid block bitmap block 0 in block_group 0
[  564.445536][T18530] loop7: detected capacity change from 0 to 1024
[  564.535798][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  564.588821][T18526] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  564.651705][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  564.706533][T18526] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #11: comm syz.0.5948: attempt to clear invalid blocks 983261 len 1
[  564.738027][T18539] netlink: 'syz.3.5954': attribute type 1 has an invalid length.
[  564.759765][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  564.766503][T18526] EXT4-fs error (device loop0): __ext4_get_inode_loc:4507: comm syz.0.5948: Invalid inode table block 0 in block_group 0
[  564.812588][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  564.842662][T18526] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5915: Corrupt filesystem
[  564.874299][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  564.894647][T18526] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  564.928265][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  564.944348][T18526] EXT4-fs error (device loop0): __ext4_get_inode_loc:4507: comm syz.0.5948: Invalid inode table block 0 in block_group 0
[  565.004647][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  565.029239][T18526] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5915: Corrupt filesystem
[  565.097068][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  565.123800][T18526] EXT4-fs error (device loop0): ext4_truncate:4312: inode #11: comm syz.0.5948: mark_inode_dirty error
[  565.134938][T18551] loop3: detected capacity change from 0 to 256
[  565.148946][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  565.168498][T18553] netlink: 'syz.6.5960': attribute type 49 has an invalid length.
[  565.186317][T18526] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  565.214370][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  565.228727][T18526] EXT4-fs error (device loop0): __ext4_get_inode_loc:4507: comm syz.0.5948: Invalid inode table block 0 in block_group 0
[  565.251478][T18555] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5962'.
[  565.266182][T18526] EXT4-fs (loop0): Remounting filesystem read-only
[  565.285670][T18526] EXT4-fs (loop0): 1 truncate cleaned up
[  565.302199][T18526] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  565.570558][T18558] netlink: 'syz.6.5964': attribute type 1 has an invalid length.
[  565.572033][ T4268] EXT4-fs (loop0): unmounting filesystem.
[  566.008735][T18573] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  566.523312][T18585] ksmbd: Unknown IPC event: 4, ignore.
[  566.645863][T18565] loop3: detected capacity change from 0 to 32768
[  566.707082][T18565] jfs: Unrecognized mount option "ÿ00000000000000000000ÿÿÿÿ18446744073709551615ÿÿÿÿ" or missing value
[  566.774245][   T26] audit: type=1326 audit(2000000091.791:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18590 comm="syz.6.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff95f8ebe9 code=0x7ffc0000
[  566.853364][   T26] audit: type=1326 audit(2000000091.831:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18590 comm="syz.6.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7eff95f8ebe9 code=0x7ffc0000
[  566.939672][T18593] netlink: 'syz.7.5982': attribute type 10 has an invalid length.
[  566.989257][   T26] audit: type=1326 audit(2000000091.831:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18590 comm="syz.6.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff95f8ebe9 code=0x7ffc0000
[  566.994980][T18595] loop0: detected capacity change from 0 to 512
[  567.072767][T18595] EXT4-fs error (device loop0): __ext4_fill_super:5404: inode #2: comm syz.0.5983: casefold flag without casefold feature
[  567.114635][T18593] team0: Device hsr_slave_0 failed to register rx_handler
[  567.178545][T18595] EXT4-fs (loop0): get root inode failed
[  567.200472][T18595] EXT4-fs (loop0): mount failed
[  568.251258][T18636] loop7: detected capacity change from 0 to 256
[  568.328670][T18636] FAT-fs (loop7): Directory bread(block 64) failed
[  568.345956][T18636] FAT-fs (loop7): Directory bread(block 65) failed
[  568.369496][T18636] FAT-fs (loop7): Directory bread(block 66) failed
[  568.400005][T18636] FAT-fs (loop7): Directory bread(block 67) failed
[  568.428688][T18636] FAT-fs (loop7): Directory bread(block 68) failed
[  568.439156][T18636] FAT-fs (loop7): Directory bread(block 69) failed
[  568.446015][T18636] FAT-fs (loop7): Directory bread(block 70) failed
[  568.498100][T18636] FAT-fs (loop7): Directory bread(block 71) failed
[  568.520404][T18636] FAT-fs (loop7): Directory bread(block 72) failed
[  568.527006][T18636] FAT-fs (loop7): Directory bread(block 73) failed
[  568.549064][ T5824] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  568.739272][ T5824] usb 2-1: Using ep0 maxpacket: 32
[  568.746511][ T5824] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  568.775842][ T5824] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  568.805351][ T5824] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  568.825094][ T5824] usb 2-1: config 1 has no interface number 0
[  568.885816][ T5824] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  568.907573][ T5824] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  568.931545][ T5824] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  568.944930][T18656] comedi comedi3: pcl818: I/O port conflict (0x4f27,16)
[  568.952841][T18654] loop3: detected capacity change from 0 to 512
[  568.959838][ T5824] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  568.968674][T18656] general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] PREEMPT SMP KASAN
[  568.981002][T18656] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]
[  568.989422][T18656] CPU: 1 PID: 18656 Comm: syz.6.6013 Not tainted syzkaller #0
[  568.997057][T18656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  569.007207][T18656] RIP: 0010:pcl818_ai_cancel+0x65/0x3e0
[  569.012789][T18656] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 2d 9a 15 fa 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 0c 9a 15 fa 4d 8b 24 24 48 83 c3
[  569.032784][T18656] RSP: 0018:ffffc9000ca47a18 EFLAGS: 00010206
[  569.038911][T18656] RAX: 0000000000000005 RBX: ffff88802dbbcd00 RCX: 0000000000080000
[  569.047065][T18656] RDX: ffffc900126d9000 RSI: 0000000000001fcc RDI: 0000000000001fcd
[  569.055258][T18656] RBP: 0000000000000001 R08: dffffc0000000000 R09: ffffed10059e7926
[  569.063755][T18656] R10: ffffed10059e7926 R11: 1ffff110059e7925 R12: 0000000000000028
[  569.071907][T18656] R13: dffffc0000000000 R14: ffff88802cf3c800 R15: dffffc0000000000
[  569.080151][T18656] FS:  00007eff96e376c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  569.089348][T18656] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  569.096115][T18656] CR2: 00007eff96e36f98 CR3: 000000005e0c2000 CR4: 00000000003506e0
[  569.104483][T18656] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  569.112641][T18656] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  569.120812][T18656] Call Trace:
[  569.124308][T18656]  <TASK>
[  569.127355][T18656]  pcl818_detach+0x62/0xd0
[  569.131837][T18656]  comedi_device_detach_locked+0x16e/0x710
[  569.137839][T18656]  comedi_device_attach+0x5c9/0x700
[  569.143049][T18656]  comedi_unlocked_ioctl+0x5a6/0x1050
[  569.148541][T18656]  ? __lock_acquire+0x7c50/0x7c50
[  569.153576][T18656]  ? tomoyo_path_number_perm+0x4ae/0x600
[  569.159217][T18656]  ? comedi_poll+0x8b0/0x8b0
[  569.163926][T18656]  ? __fget_files+0x28/0x4d0
[  569.168635][T18656]  ? bpf_lsm_file_ioctl+0x5/0x10
[  569.173771][T18656]  ? security_file_ioctl+0x7c/0xa0
[  569.178977][T18656]  ? comedi_poll+0x8b0/0x8b0
[  569.183684][T18656]  __se_sys_ioctl+0xfa/0x170
[  569.188343][T18656]  do_syscall_64+0x4c/0xa0
[  569.192865][T18656]  ? clear_bhb_loop+0x60/0xb0
[  569.197558][T18656]  ? clear_bhb_loop+0x60/0xb0
[  569.202239][T18656]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  569.208158][T18656] RIP: 0033:0x7eff95f8ebe9
[  569.212671][T18656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.232377][T18656] RSP: 002b:00007eff96e37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  569.240798][T18656] RAX: ffffffffffffffda RBX: 00007eff961b5fa0 RCX: 00007eff95f8ebe9
[  569.248869][T18656] RDX: 0000200000000180 RSI: 0000000040946400 RDI: 0000000000000003
[  569.257202][T18656] RBP: 00007eff96011e19 R08: 0000000000000000 R09: 0000000000000000
[  569.265267][T18656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  569.273340][T18656] R13: 00007eff961b6038 R14: 00007eff961b5fa0 R15: 00007ffeba68a6b8
[  569.281427][T18656]  </TASK>
[  569.284512][T18656] Modules linked in:
[  569.301849][T18656] ---[ end trace 0000000000000000 ]---
[  569.307611][T18656] RIP: 0010:pcl818_ai_cancel+0x65/0x3e0
[  569.321208][ T5824] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  569.335819][T18654] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.6011: bad orphan inode 15
[  569.352922][T18656] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 2d 9a 15 fa 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 0c 9a 15 fa 4d 8b 24 24 48 83 c3
[  569.395424][T18654] ext4_test_bit(bit=14, block=5) = 0
[  569.414976][T18646] loop0: detected capacity change from 0 to 32768
[  569.419786][T18656] RSP: 0018:ffffc9000ca47a18 EFLAGS: 00010206
[  569.432165][T18654] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  569.432639][T18646] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9
[  569.441385][T18656] RAX: 0000000000000005 RBX: ffff88802dbbcd00 RCX: 0000000000080000
[  569.459964][T18656] RDX: ffffc900126d9000 RSI: 0000000000001fcc RDI: 0000000000001fcd
[  569.472250][T18656] RBP: 0000000000000001 R08: dffffc0000000000 R09: ffffed10059e7926
[  569.490730][T18654] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 7987 vs 220 free clusters
[  569.516615][T18656] R10: ffffed10059e7926 R11: 1ffff110059e7925 R12: 0000000000000028
[  569.530079][ T5824] snd_usb_pod 2-1:1.1: invalid control EP
[  569.536864][ T5824] snd_usb_pod 2-1:1.1: cannot start listening: -22
[  569.556419][ T5824] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  569.561821][T18656] R13: dffffc0000000000 R14: ffff88802cf3c800 R15: dffffc0000000000
[  569.571999][T18656] FS:  00007eff96e376c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  569.579310][ T5824] snd_usb_pod: probe of 2-1:1.1 failed with error -22
[  569.581987][T18656] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  569.597127][T18656] CR2: 00007f8cabb84198 CR3: 000000005e0c2000 CR4: 00000000003506f0
[  569.599879][ T4373] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9
[  569.614941][T18656] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  569.616114][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  569.624525][T18656] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  569.641040][T18656] Kernel panic - not syncing: Fatal exception
[  569.647886][T18656] Kernel Offset: disabled
[  569.652212][T18656] Rebooting in 86400 seconds..