last executing test programs:

14m59.964300559s ago: executing program 0 (id=4759):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000025000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

14m59.652738553s ago: executing program 0 (id=4764):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000e80)=@generic)

14m59.360167627s ago: executing program 0 (id=4768):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_FILTER(r0, 0x6b, 0x1, &(0x7f0000000180)=[{0x2, 0x1, {0x2, 0xf0, 0x2}, {0x2, 0xff, 0x4}, 0xff}], 0x41)

14m59.085420381s ago: executing program 0 (id=4772):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='iocharset=cp865,uid=', @ANYRESHEX=0x0, @ANYBLOB=',namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x1545, &(0x7f0000001a00)="$eJzs3AucTVX7OPDnWWvtMSROk1yGtdazOcllmSTJJUkuSZIkSW4JSZO8kpAYQpKGJCSXIYkhJJeJSeN+v18SkqRJkpDckvX/TPFXb97f+77/t19+/988389nf2Y9Z+9n7Wef55w5e2/mfNt1aK0mtas3IiL4j+CvP5IAIBYABgJAXgAIAKB8XPm4rPU5JSb9Zzthf64HU690BexK4v5nb9z/7I37n71x/7M37n/2xv3P3rj/2Rv3n7HsbNO0Qtfwkn2XP/v+fyzf////CH/+/y+SWWbsl2vKXNcNIOZfTeH+Z2/c//+1gn9lI+5/9pTzwk/uf3YVe6ULYH+lPpd/mN//2UGOf7iG+5+9cf8Zy86u9P3nv3KJuczxQuR/2HNw5MK12V+0vyv9+mOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxlj2c9pcoALg4vtJ1McYYY4wxxhhj7M/jc1zpChhjjDHGGGOMMfbfD0GABAUBxEAOiIWckAsEAFwNeSAvROAaiINrIR9cB/mhABSEQhAPhaEIaDBggSCEolAMonA9FIcboASUhFJQGhyUgQS4EcrCTVAObobycAtUgFuhIlSCylAFboOqcDtUgzugOtwJNaAm1ILacBfUgbuhLtwD9eBeqA/3IcD90BAegEbwIDSGh6AJPAxN4RFoBs2hBbSEVv91PjS4bP7z0BNegF7QG5KgD/SFF6Ef9IcB8BIMhJdhELwCg+FVSIYhMBReg2HwOgyHN2AEjIRR8CaMhrdgDIyFcTAeUmACTIS3YRK8A5PhXZgCUyEVpsF0eA9mwEyYBe/DbPgA5sBcmAfzIQ0+hAWwENLhI1gEH0MGLIYlsBSWwXJYASthFayGNbAW1sF62AAbYRNshi2wFbbBdtgBn8BO+BR2wW7YA5/BXvj838w/9Xf53RAQUKBAhQpjMAZjMRZzYS7MjbkxD+bBCEYwDuMwH+bD/JgfC2JBjMd4LIJF0KBBQsKiWBSjGMXiWBxLYAkshaXQocMETMCyeBOWw3JYHstjBayAFbESVsIqWAWrYlWshtWwOlbHGlgDa2EtvAvvwj5YF+tiPayH9bH+xdtT2AgbYWNsjE2wCTbFptgMm2ELbIGtsBW2xtbYBttgO2yH7bE9dsAOmIiJ2BE7YifshJ2xM3bBLtgVu2I37I7dM5/PAfgCvoC9sYbog32xL/bD5BwD8CV8CV/GQfgKvoKvYjIOwaH4Gr6Gr+NwPIkjcCSOwlFYVbyFY3AskhiPKZiCE3EiTsJJmFXouzgVU3EaTsfpOANn4kx8H2fjB/gBzsW5OB/TMA0X4EJMx3RchKcwAxfjElyKy3A5LsOVuApX4hpci2twPa7HjbgRN+Nm3IpbcTtux09QAeCnuBt3YzLuxb24D/fhftyPB/AAZmImHsSDeAgP4WE8jEfwCB7FY3gcj+EJPIEn8RSextN4Fs/iOXw2/uvGn5RcnQwiixJKxIgYEStiRS6RS+QWuUUekUdERETEiTiRT+QT+UV+UVAUFPEiXhQRRYQRRpAIYwBAREVUFBfFRQlRQpQSpYQTTiSIBFFWlBXlRDlRXtwiKohbRUVRSbR1VUQVUVW0c9XEHaK6qC5qiJqilqgtaos6oo6oK+qKeqKeqC/qiwbiftFQ9MEB+KDI6kwTMQSbiqHYTDQX8sJvsNZiOLYRbUU78bgYiSOwg2jtEsVToqMYg53E38RYfEZ0EeOxq3hOdBPdRQ/xvOgp2rheoreYjH1EXzEV+4n+YoB4SczAmuJ9nJ2zlnhVJIshYqh4TczH18Vw8YYYIUaKUeJNMVq8JcaIsWKcGC9SxAQxUbwtJol3xGTxrpgipopUMU1MF++JGWKmmCXeF7PFB2KOmCvmifkiTXwoFoiFIl18JBaJj0WGWCyWiKVimVguVoiVYpVYLdaItWKdWC82iI1ik9gstoitYpvYLnaIT8RO8anYJXaLPeIzsVd8LvaJL8R+8aU4IL4SmeJrcVB8Iw6Jb8Vh8Z04Ir4XR8UxcVz8IE6IH8VJcUqcFmfEWfGTOCd+FueFFyBRCimlkoGMkTlkrMwpc8mrZG4ZXHh2r5Fx8lqZT14n88sCsqAsJONlYVlEammklSRDWVQWk1F5vSwub5AlZElZSpaWTpaRCfJGWVbeJMvJm2V5eYusIG+VFWUlWVlWkbfJqvJ2CZFf91FD1pS1ZG15l0yCu2VdeY+sJ++V9eV9soG8XzaUD8hG8kHZWD4km8iHZVP5iGwmm8sWsqVsJR+VreVjso1sK9vJx2V7+YTsIJ+UifIp2VH6Cy+RZ2QX+azsKp+T3WR32UP+LM9LL3vJ3hL6gOwrX5T9ZH85IBYA5MtykHxFDpavymQ5RA6Vr8lh8nU5XL4hR8iRcpR8U46Wb8kxcqwcJ8fLFDlBTpRvy0nyHTlZviunyKkyVU6TA+TAX2aaJeU/zX/7MvmDf9n7RrlJbpZb5Fa5TW6XO+QncqfcKXfJXXKP3CP3yr1yn9wn98v98oA8IDNlpjwoD8pD8pA8LA/LI/KIPCqPyTPyB3lC/ihPylPylDwjz8qz8tyF5wAUKqGkUipQMSqHilU5VS51lcqtrlZ5VF4VUdeoOHWtyqeuU/lVAVVQFVLxqrAqorQyyipSoSqqiqmouh4vvGBUKVVaOVVGJagb/518VVzdoEqokr/Lv1hf0j+or5VqpVqr1qqNaqPaqXaqvWqvOqgOKlElqo6qo+qkOqnOqrPqorqorqqr6qa6qR6qh+qpeqpeqpdKUkmqr3pR9VP91QD1khqoXlaD1CA1WA1WySpZDVVD1TA1TA1Xw9UINUKNUqPUaDVajVFj1Dg1TqWoFDVRTVST1CQ1WU1WU9QUlapS1XQ1Xc1QM9QsNUvNVrPVHDVHzVPzVJpKUwvUApWu0tUitUhlqMVqsVqqlqrlarlaqVaq1Wq1WqvWqvVqvcpQm9QmtUVtUdvUNrVD7VA71U61S+1Se9QetVftVfvUPrVf7VcH1AGVqTLVQXVQHVKH1GF1WB1RR9RRdVQdV8fVCXVCnVQn1Wl1Wp1VZ9U5dU6dV+ezTvsCEYhABSqICWKC2CA2yBXkCnIHuYM8QZ4gEkSCuCAuyBdcF+QPCgQFg0JBfFA4KBLowAQ2EBeaHg2uD4oHNwQlgpJBqaB04IIyQUJwY1A2uCkoF9wclA9uCSoEtwYVg0pB5aBKcFtQNbg9qBbcEVQP7gxqBDWDWkHt4K6gTnB3UDe4J6gX3BvUD+4LGgT3Bw2DB4JGwYNB4+ChoEnwcNA0eCRoFjQPWgQtg1Z/6vzenyzwmOule+sk3Uf31S/qfrq/HqBf0gP1y3qQfkUP1q/qZD1ED9Wv6WH6dT1cv6FH6JF6lH5Tj9Zv6TF6rB6nx+sUPUFP1G/rSfodPVm/q6foqTpVT9PT9Xt6hp6pZ+n39Wz9gZ6j5+p5er5O0x/qBXqhTtcf6UX6Y52hF+sleqleppfrFXqlXqVX6zV6rV6n1+sNeqPepDfrLXqr3qa36x36E71Tf6p36d16j/5M79Wf6336C71ff6kP6K90pv5aH9Tf6EP6W31Yf6eP6O/1UX1MH9c/6BP6R31Sn9Kn9Rl9Vv+kz+mf9Xnts07usz7ejTLKxJgYE2tiTS6Ty+Q2uU0ek8dETMTEmTiTz+Qz+U1+U9AUNPEm3hQxRUwWMmSKmqImaqKmuCluSpgSppQpZZxxJsEkmLKmrClnypnyprypYCqYiqaiqWwqm9vMbeZ2c7u5w9xh7jR3mpqmpqltaps6po6pa+qaeqaeqW/qmwamgWloGppGppFpbBqbJqaJaWqammammWlhWphWppVpbVqbNqaNaWfamfamvelgOphEk2g6mo6mk+lkOpvOpovpYrqarqab6WZ6mB6mp+lpepleJskkmb6mr+ln+pkBZoAZaAaaQWaQGWwGm2STbIaaoWaYGWaGm+FmhBlpRmWdqJq3zBgz1owz402KSTETzUQzyUwyk81kM8VMMakm1Uw3080MM8PMMrPMbDPbzDFzzDwzz6SZNLPALDDpJt0sMotMhskwS8wSs8wsMyvMCrPKrDJrzBqzDtaZDWaD2WQ2mS1mi9lmtpkdZofZaXaaXWaX2WP2mL1mr9ln9pn9Zr85YA6YTJNpDpqD5pA5ZA6bw+aIOWKOmqPmuDluTpgT5qQ5aU6b0+asKXDh89KbWJvT5rJX2dz2apvH5rV/Hxe0hWy8LWyLWG3z2wK/i421toQtaUvZ0tbZMjbB3viHuKKtZCvbKvY2W9Xebqv9Ia5j77Z17T22nr3X1rZ3/S6ub++zDezDtiEigG1uG9uWtol92Da1j9hmtrltYVva9vYJ28E+aRPtU7ajffoP8QK70K6yq+0au9busrvtaXvGHrLf2rP2J9vL9rYD7ct2kH3FDrav2mQ75A/xKPumHW3fsmPsWDvOjv9DPMVOtal2mp1u37Mz7Mw/xGn2Qzvbpts5dq6dZ+f/EmfVlG4/sovsxzbDBrDELrXL7HK7wq68WKvPa9fbDXaj3Wk/tVvsVrvNbrc7Lp4I2912j/3M7rWf24P2G7vffmkP2MM20379S5x1fIftd/aI/d4etcfscfuDPWF/VBezs479B/uzPW+9BUICkqQooBjKQbGUk3LRVZSbrqY8lJcidA3F0bWUj66j/FSAClIhiqfCVIQ0GbJEFFJRKkZRup4ulleKSpOjMpRAN1JZuonK0c1Unm6hCnQrVaRKVJmq0G1UlW6nanQHVac7qQbVpFpUm+6iOnQ31aV7qB7dS/XpPmpA91NDeoAa0YPUmB6iJvQwNaVHqBk1pxbUklrRo9SaHqM21Jba0ePUnp6gDvQkJdJT1JGepk70N+pMz1AXepa60nPUjbpTD3qeetIL1It6UxL1ob70IvWj/jSAXqKB9DINoldoML1KyTSEhtJrNIxep+H0Bo2gkTSK3qTR9BaNobE0jsZTCk2gifQ2TaJ3aDK9S1NoKqXSNJpO79EMmkmz6H2aTR/QHJpL82g+pdGHtIAWUjp9RIvoY8qgxbSEltIyWk4raCWtotW0htbSOlpPG2gjbaLNtIW20jbaTjvoE9pJn9Iu2k176DPaS5/TPvqC9tOXdIC+okz6mg7SN3SIvqXD9J3vTd/TUTpGx+kHOkE/0kk6RafpDJ2ln+gc/UznyROEGIpQhioMwpgwRxgb5gxzhVeFucOrwzxh3jASXhPGhdeG+cLrwvxhgbBgWCiMDwuHRUIdmtCGFIZh0bBYGA2vD4uHN4QlwpJhqbB06MIyYUJ4Y1g2vCksF94clg9vCSuEt4YVw0rhw/dWCW8Lq4a3h9XCO8Lq4Z1hjbBmWCusHd4V1gnvDuuG94T1wnvDcuF9YYPw/rBh+EDYKHwwbBw+FDYJHw6bho+EzcLmYYuwZdgqfDRsHT4Wtgnbhu3Cx8P24RNhh/DJMDF8KuwYPv3L+vsW/uP1SWGfsG/4Yvhi6P09cl50fjQt+mF0QXRhND36UXRR9ONoRnRxdEl0aXRZdHl0RXRldFV0dXRNdG10XXR9dEN0Y9T72jnAoRNOOuUCF+NyuFiX0+VyV7nc7mqXx+V1EXeNi3PXunzuOpffFXAFXSEX7wq7Ik4746wjF7qirpiLuutdcXeDK+FKulKutHOujEtwLV0r18q1do+5Nq6ta+ced4+7J9wT7kn3pHvKdXRPu07ub66ze8Z1cc+6Z91zrpvr7nq4511PNyHPr+/JJNfX9XX9XD83wA1wA91AN8gNcoPdYJfskt1QN9QNc8PccDfcjXAj3Cg3yo12o90YN8aNc+NciktxE91EN8lNcpPdZDfFTXGpLtVNd9PdDDfDVZ35617muDlunpvn0lyaW+CyzhnT3SK3yGW4DLfELXHL3DK3wq1wq9wqt8atcevcOrfBbXCb3Ca3xW1x29w2t8PtcDvdTrfL5/11UrfX7XP73H633x1wX7lM97U76L5xh9y37rD7zh1x37uj7pg77n5wJ9yP7qQ75U67M+6s+8mdcz+78867lMiEyMTI25FJkXcikyPvRqZEpkZSI9Mi0yPvRWZEZkZmRd6PzI58EJkTmRuZF5kfSYt8GFkQWRhJj3wUWRT5OJIRWRxZElkaWRZZHvG+8JbQF/XFfNRf74v7G3wJX9KX8qW982V8gr/Rl/U3+XL+Zl/e3+Ir+Ft9RV/JV/aP+Ga+uW/hW/pW/lHf2j/m2/i2vp1/3Lf3T/gO/kmf6J/yHf3TvpP/m+/sn/Fd/LO+q3/Od/PdfQ//vO/pX/C9fG+f5Pv4vv5F38/39wP8S36gf9kP8q/4wf5Vn+yH+KH+NT/Mv+6H+zf8CD/Sj4p504++eIkM432Kn+An+rf9JP+On+zf9VPOep/qp/np/j0/w8/0s/z7frb/wM/xc/08P9+n+Q/9Ar/Qp/uP/CL/sc/wiy/eVPYr/Eq/yq/2a/xav86v9xv8Rr/Jb/Zb/Fa/zW/3O/wnfqf/1O/yu/0e/5nf6z/3+/wXfr//0h/wX/lM/7U/6L/xh/y3/rD/zh/x3/uj/pg/7n/wJ/yP/qQ/5U/7M/6s/8mf8z/78/w3a4wxxhhj/5IJl4bi92t+vZ3f5zI54jcb9wWAq7cWyvzt+qwzynX5fx33F/HtIwDwVO+uD15catRI+r/bZkgIis0FuPgvQVli4FK8GNrBE5AIbaHsZevvL7qfpT/On5T0m/mjtwDk+k1OLFyKL83/BQAmXWb+Rx8ftaBCeDruv5h/LkCJYpdycsKleDG0++X+Slso9w/qL9D6n9Sf88sUgDa/yckNl+JL9SfAY/A0JP5uS8YYY4wxxhhj7Ff9ReXOF68/L/6Pz7+/vs26Po9Xl3JywKX4n12fM8YYY4wxxhhj7Mp7pnuPJx9NTGzb+d8fVPt/yvqXB03hv2tmHlx24D3AxUcUAPyHEwJkDeRfeRSb/5J9JV946/z9qmVnfAD/M1r5Zwyu8C8mxhhjjDHG2J/u0kn/7x9XV6ogxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGMsG/orvk6Mv02AMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcZYdvd/AgAA//8vzfwg")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

14m58.594619528s ago: executing program 0 (id=4778):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='xfs\x00', 0x0, 0x0)

14m57.751153529s ago: executing program 0 (id=4787):
r0 = syz_init_net_socket$bt_cmtp(0x1f, 0x3, 0x5)
ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r0, 0x800443d3, &(0x7f0000000000)={@none, 0x7, 0x0, 0x10001})

14m57.075195648s ago: executing program 32 (id=4787):
r0 = syz_init_net_socket$bt_cmtp(0x1f, 0x3, 0x5)
ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r0, 0x800443d3, &(0x7f0000000000)={@none, 0x7, 0x0, 0x10001})

12m54.060022813s ago: executing program 1 (id=6289):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000005c0), 0x80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000600)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x21dc}}, './file0\x00'})

12m53.867670046s ago: executing program 1 (id=6293):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="5800000000090102000000000000000001000009240002000c00028005000100000000001400018008000100ac14141d08000200ac1e000108000540000000040900010073797a30000000000c0004"], 0x58}}, 0x0)

12m53.447246971s ago: executing program 1 (id=6300):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="500000000202050000000000000000000a0000063c0002800c00028005000100900000002c000180140003"], 0x50}}, 0x20000000)

12m53.135715116s ago: executing program 1 (id=6304):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000019c0)=ANY=[@ANYBLOB='allow_utime=00000000000000000000304,namecase=1,errors=remount-ro,umask=00000000000000000000020,fmask=00000000000000000000005,iocharset=cp1251,gid=', @ANYRESHEX=0x0, @ANYBLOB=',umask=00000000000000000000003,errors=continue,fmask=00000000000000000000005,allow_utime=0000000000000002\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x1, 0x152a, &(0x7f0000000340)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

12m52.651144032s ago: executing program 1 (id=6311):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000100000000000000000000008500000087000000850000000500000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0810", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

12m52.134612629s ago: executing program 1 (id=6317):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000940)=[{{&(0x7f00000004c0)={0xa, 0x4e1d, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="200000000000000029000000370000002f00000000000000c204040000070000400000000000000029000000360000000005000000000000c2040000000b0720e597e8ca06400900050000000000000000010000000000003f0000000000000014000000000000002900000008000000000000000000000014000000000000002900000034000000800000000000feff1300000000000000290000000b00000000000401060000002000000000000000290000003700000000000000000000000a01000401000000180000000000000029000000040000002b0000000000000014"], 0xf8}}], 0x2, 0x0)

12m51.513914957s ago: executing program 33 (id=6317):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000940)=[{{&(0x7f00000004c0)={0xa, 0x4e1d, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="200000000000000029000000370000002f00000000000000c204040000070000400000000000000029000000360000000005000000000000c2040000000b0720e597e8ca06400900050000000000000000010000000000003f0000000000000014000000000000002900000008000000000000000000000014000000000000002900000034000000800000000000feff1300000000000000290000000b00000000000401060000002000000000000000290000003700000000000000000000000a01000401000000180000000000000029000000040000002b0000000000000014"], 0xf8}}], 0x2, 0x0)

4m41.781632497s ago: executing program 5 (id=12608):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="60000000020601020000740000000000000000000900020073797a31000000000500010007000000050005000a000000140007800800134000e4000008001240ffffffff11000300686173683a69702c706f727400000000050004"], 0x60}}, 0x0)

4m41.58423161s ago: executing program 5 (id=12610):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r0, 0x8905, &(0x7f00000000c0))

4m41.418655242s ago: executing program 5 (id=12613):
r0 = socket$kcm(0x15, 0x5, 0x0)
sendmsg$kcm(r0, &(0x7f0000001b00)={&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x20000000, @ipv4={'\x00', '\xff\xff', @empty}, 0x7ffb}, 0x80, 0x0}, 0x0)

4m41.135220856s ago: executing program 5 (id=12618):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0xc02, &(0x7f0000000280)={[{@iocharset={'iocharset', 0x3d, 'macturkish'}}, {}, {@errors_continue}, {@fmask={'fmask', 0x3d, 0x4}}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@keep_last_dots}, {@keep_last_dots}, {@namecase}, {@errors_continue}, {}]}, 0x1, 0x1524, &(0x7f0000007640)="$eJzs3AuYjtXaOPD7Xms9Y0h6m+QwrLXuhzc5LJMkOSTJIUmSJMkpIWmSLQmJIaekIQnJYUgOQ0gOE5PG+Xw+JCRJkyQhOSXrf0342+3a3977233bd31z/67ruaz7Xc+9nvW89/u8z8HMfNdlaM3Gtao1JCL4t+DFf5IAIBYABgLAdQAQAEC5uHJxWf05JSb9exthf65HUq/2DNjVxPXP3rj+2RvXP3vj+mdvXP/sjeufvXH9szeuP2PZ2ebpBa/nJfsu/Pw/O+Pz//8hmaXHfrW29I1dAWL+2RSuf/bG9f8/K/hnVuL6Z29c/+wq9mpPgP0vwMd/dpDj7/Zw/bM3rj9j2dnVfv58tReIZO/34Gp//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMZQ9n/BUKAC63r/a8GGOMMcYYY4wx9ufxOa72DBhjjDHGGGOMMfY/D0GABAUBxEAOiIWckAsEAFwLeeA6iMD1EAc3QF64EfJBfigABSEeCkFh0GAgBghCKAJFIQo3QTG4GYpDCSgJpcBBaUiAW6AM3Apl4TYoB7dDebgDKkBFqASV4U6oAndBVbgbqsE9UB1qQE2oBfdCbbgP6sD9UBcegHrwINSHh6ABPAwN4RFoBI9CY3gMmsDj0BSaQXNoAS3/W/kvQQ94GXpCL0iC3tAHXoG+0A/6wwAYCK/CIHgNBsPrkAxDYCi8AcPgTRgOb8EIGAmj4G0YDe/AGBgL42A8pMAEmAjvwiR4DybDFJgK0yAVpsMMeB9mwiyYDR/AHPgQ5sI8mA8LIA0+goWwCNLhY1gMn0AGLIGlsAyWwwpYCatgNayBtbAO1sMG2AibYDNsga2wDbbDDtgJn8Iu+Ax2wx7YC5/DPvjiX8w//Tf5XREQUKBAhQpjMAZjMRZzYS7MjbkxD+bBCEYwDuMwL+bFfJgPC2ABjMd4LIyF0aBBQsIiWASjGMViWAyLY3EsiSXRocMETMAyeCuWxbJYDstheSyPFbAiVsTKWBmrYBWsilWxGlbD6lgda2JNvBfvxd5YB+tgXayL9bDe5cdT2BAbYiNshI2xMTbBJtgUm2JzbI4tsSW2wlbYGltjW2yL7bAdtsf2mIiJ2AE7YEfsiJ2wE3bGztgFu2BX7IbdMl/KAfgyvoy9sLrojX2wD/bF5Bz9cQAOwFdxEL6Gr+HrmIxDcCi+gW/gmzgcT+EIHImjcBRWEe/gGByLJMZjCqbgRJyIk3ASTsYpOAWnYSpOxxk4A2fiLJyFH+Ac/BA/xHk4DxdgGqbhQlyE6ZiOi/E0ZuASXIrLcDmuwOW4ClfjKlyL63AtbsANuAk34RbcgttwG+7AHfgpKgD8DPfgHkzGfbgP9+N+PIAH8CAexEzMxEN4CA/jYTyCR/AoHsVjeBxP4HE8iSfxFJ7GM3gGz+E5PI8vxH/T6NMSa5JBZFFCiRgRI2JFrMglconcIrfII/KIiIiIOBEn8oq8Ip/IJwqIAiJexIvCorAwwggSYQwAiKiIimKimCguiouSoqRwwokEkSDKiDKirCgryonbRXlxh6ggKoo2rrKoLKqItq6quFtUE9VEdVFD1BS1RC1RW9QWdUQdUVfUFfVEPVFfPCQaiN7YHx8RWZVpLIZgEzEUm4pmQl76BmslhmNr0Ua0FU+JkTgC24tWLlE8KzqIMdhR/EWMxedFZzEeu4gXRVfRTXQXL4keorXrKXqJydhb9BHTsK/oJ/qLAWIm1hAf4JycNcXrIlkMEUPFG2IBvimGi7fECDFSjBJvi9HiHTFGjBXjxHiRIiaIieJdMUm8JyaLKWKqmCZSxXQxQ7wvZopZYrb4QMwRH4q5Yp6YLxaINPGRWCgWiXTxsVgsPhEZYolYKpaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Cq2ie1ih9gpPhW7xGdit9gj9orPxT7xhdgvvhQHxFfioPhaZIpvxCHxrTgsvhNHxPfiqPhBHBPHxQnxozgpfhKnxGlxRpwV58TP4rz4RVwQXoBEKaSUSgYyRuaQsTKnzCWvkbllcOndvV7GyRtkXnmjzCfzywKyoIyXhWRhqaWRVpIMZRFZVEblTbKYvFkWlyVkSVlKOllaJshbZBl5qywrb5Pl5O2yvLxDVpAVZSVZWd4pq8i7JEQubqO6rCFrylryXpkE98k68n5ZVz4g68kHZX35kGwgH5YN5SOykXxUNpaPySbycdlUNpPNZQvZUj4hW8knZWvZRraVT8l28mnZXj4jE+WzsoP0lz4iz8vO8gXZRb4ou8pusrv8RV6QXvaUvST0BtlHviL7yn6yvxwgB8pX5SD5mhwsX5fJcogcKt+Qw+Sbcrh8S46QI+Uo+bYcLd+RY+RYOU6Olylygpwo35WT5Htyspwip8ppMlVOl/0vjTRbyn+Y/+4f5A/+deub5Ga5RW6V2+R2uUPulJ/KXXKX3C13y71yr9wn98n9cr88IA/Ig/KgzJSZ8pA8JA/Lw/KIPCKPyqPymDwuz8of5Un5kzwlT8vT8qw8J8/J85feA1CohJJKqUDFqBwqVuVUudQ1Kre6VuVR16mIul7FqRtUXnWjyqfyqwKqoIpXhVRhpZVRVpEKVRFVVEXVTXjpA6NKqlLKqdIqQd3yr+SrYupmVVyV+E3+5fkl/Z35tVQtVSvVSrVWrVVb1Va1U+1Ue9VeJapE1UF1UB1VR9VJdVKdVWfVRXVRXVVX1V11Vz1UD9VT9VRJKkn1Ua+ovqqf6q8GqIHqVTVIDVKD1WCVrJLVUDVUDVPD1HA1XI1QI9QoNUqNVqPVGDVGjVPjVIpKURPVRDVJTVKT1WQ1VU1VqSpVzVAz1Ew1U81Ws9UcNUfNVXPVfDVfpak0tVAtVOkqXS1Wi1WGWqKWqGVqmVqhVqhVapVao9aodWqd2qA2qAy1WW1WW9VWtV1tVzvVTrVL7VK71W61V+1V+9Q+tV/tVwfUAXVQHVSZKlMdUofUYXVYHVFH1FF1VB1Tx9QJdUKdVCfVKXVKnVFn1Dl1Tp1X59UFdSHrsi8QgQhUkHWmjQlig9ggV5AryB3kDvIEeYJIEAnigrggb3BjkC/IHxQICgbxQaGgcKADE9hAXCp6NLgpKBbcHBQPSgQlg1KBC0oHCcEtQZng1qBscFtQLrg9KB/cEVQIKgaVgsrBnUGV4K6ganB3UC24J6ge1AhqBrWCe4PawX1BneD+oG7wQFAveDCoHzwUNAgeDhoGjwSNgkeDxsFjQZPg8aBp0CxoHrQIWv6p43t/Kv+TrqfupZN0b91Hv6L76n66vx6gB+pX9SD9mh6sX9fJeogeqt/Qw/Sberh+S4/QI/Uo/bYerd/RY/RYPU6P1yl6gp6o39WT9Ht6sp6ip+ppOlVP1zP0+3qmnqVn6w/0HP2hnqvn6fl6gU7TH+mFepFO1x/rxfoTnaGX6KV6mV6uV+iVepVerdfotXqdXq836I16k96st+itepvernfonfpTvUt/pnfrPXqv/lzv01/o/fpLfUB/pQ/qr3Wm/kYf0t/qw/o7fUR/r4/qH/QxfVyf0D/qk/onfUqf1mf0WX1O/6zP61/0Be2zLu6zTu9GGWViTIyJNbEml8llcpvcJo/JYyImYuJMnMlr8pp8Jp8pYAqYeBNvCpvCJgsZMkVMERM1UVPMFDPFTXFT0pQ0zjiTYBJMGVPGlDVlTTlTzpQ35U0FU8FUMpXMneZOc5e5y9xt7jb3mHtMDVPD1DK1TG1T29QxdUxdU9fUM/VMfVPfNDANTEPT0DQyjUxj09g0MU1MU9PUNDfNTUvT0rQyrUxr09q0NW1NO9POtDftTaJJNB1MB9PRdDSdTCfT2XQ2XUwX09V0Nd1Nd9PD9DA9TU+TZJJMH9PH9DV9TX/T3ww0A80gM8gMNoNNskk2Q81QM8wMM8PNcDPCjDSjsg4f844ZY8aacWa8STEpZqKZaCaZSWaymWymmqkm1aSaGWaGmWlmmtlmtplj5pi5Zq6Zb+abNJNmFpqFJt2km8VmsckwGWapWWqWm+VmpVlpVpvVZq1Za9bDerPRbDSbzWaz1Ww12812s9PsNLvMLrPb7DZ7zV6zz+wz+81+c8AcMAfNQZNpMs0hc8gcNofNEXPEHDVHzTFzzJwwJ8xJc9KcMqfMGXPGnDP5L50vvYm1OW0ue43Nba+1eex19m/jAragjbeFbGGrbT6b/zexsdYWtyVsSVvKOlvaJthbfhdXsBVtJVvZ3mmr2Lts1d/Fte19to6939a1D9ha9t7fxPXsg7a+fcw2QASwzWwj28I2to/ZJvZx29Q2s81tC9vOPm3b22dson3WdrDP/S5eaBfZ1XaNXWvX2d12jz1jz9rD9jt7zv5se9pedqB91Q6yr9nB9nWbbIf8Lh5l37aj7Tt2jB1rx9nxv4un2mk21U63M+z7dqad9bs4zX5k59h0O9fOs/Ptgl/jrDml24/tYvuJzbABLLXL7HK7wq60q/7/XJfZDXaj3WR32c/sVrvNbrc77M7LF8J2j91rP7f77Bf2kP3WHrBf2YP2iM203/waZ+3fEfu9PWp/sMfscXvC/mhP2p/U5eysff/R/mIvWG+BkIAkKQoohnJQLOWkXHQN5aZrKQ9dRxG6nuLoBspLN1I+yk8FqCDFUyEqTJoMWSIKqQgVpSjdRJenV5JKkaPSlEC3UBm6lcrSbVSObqfydAdVoIpUiSrTnVSF7qKqdDdVo3uoOtWgmlSL7qXadB/VofupLjxA9ehBqk8PUQN6mBrSI9SIHqXG9Bg1ocepKTWj5tSCWtIT1IqepNbUhtrSU9SOnqb29Awl0rPUgZ6jjvQX6kTPU2d6gbrQi9SVulF3eol60MvUk3pREvWmPvQK9aV+1J8G0EB6lQbRazSYXqdkGkJD6Q0aRm/ScHqLRtBIGkVv02h6h8bQWBpH4ymFJtBEepcm0Xs0mabQVJpGqTSdZtD7NJNm0Wz6gObQhzSX5tF8WkBp9BEtpEWUTh/TYvqEMmgJLaVltJxW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nXbQTvqUdtFntJv20F76nPbRF7SfvqQD9BUdpK8pk76hQ/QtHabv6Ah973vRD3SMjtMJ+pFO0k90ik7TGTpL5+hnOk+/0AXyBCGGIpShCoMwJswRxoY5w1zhNWHu8NowT3hdGAmvD+PCG8K84Y1hvjB/WCAsGMaHhcLCoQ5NaEMKw7BIWDSMhjeFxcKbw+JhibBkWCp0YekwIbwlLBPeGpYNbwvLhbeH5cM7wgphxfCxByqHd4ZVwrvCquHdYbXwnrB6WCOsGdYK7w1rh/eFdcL7w7rhA2HZ8MGwfvhQ2CB8OGwYPhI2Ch8NG4ePhU3Cx8OmYbOwedgibBk+EbYKnwxbh23CtuFTYbvw6bB9+EyYGD4bdgif+7X/wUV/vz8p7B32CV8JXwm9v1/Ojy6IpkU/ii6MLoqmRz+OLo5+Es2ILokujS6LLo+uiK6Mroqujq6Jro2ui66PbohujG6Kel8rBzh0wkmnXOBiXA4X63K6XO4al9td6/K461zEXe/i3A0ur7vR5XP5XQFX0MW7Qq6w084468iFrogr6qLuJlfM3eyKuxKupCvlnCvtElwL19K1dK3ck661a+PauqfcU+5p97R7xj3jnnUd3HOuo/uL6+Sed53dC+4F96Lr6rq57u4l18NNyHPxmExyfVwf19f1df1dfzfQDXSD3CA32A12yS7ZDXVD3TA3zA13w90IN8KNcqPcaDfajXFj3Dg3zqW4FDfRTXST3CQ32U12U91Ul+pS3Qw3w810M12VWRe3MtfNdfPdfJfm0txCl3XNmO4Wu8Uuw2W4pW6pW+6Wu5VupVvtVru1bq1b79a7jW6j2+w2u61uq9vutrudbqfb5Xa53f66i4O6fW6/2+8OuAPuoPvaZbpv3CH3rTvsvnNH3PfuqPvBHXPH3Qn3ozvpfnKn3Gl3xp1159zP7rz7xV1w3qVEJkQmRt6NTIq8F5kcmRKZGpkWSY1Mj8yIvB+ZGZkVmR35IDIn8mFkbmReZH5kQSQt8lFkYWRRJD3ycWRx5JNIRmRJZGlkWWR5ZEXE+0JbQ1/EF/VRf5Mv5m/2xX0JX9KX8s6X9gn+Fl/G3+rL+tt8OX+7L+/v8BV8RV/JP+6b+ma+uW/hW/onfCv/pG/t2/i2/infzj/t2/tnfKJ/1nfwz/mO/i++k3/ed/Yv+C7+Rd/Vd/Pd/Uu+h3/Z9/S9fJLv7fv4V3xf38/39wP8QP+qH+Rf84P96z7ZD/FD/Rt+mH/TD/dv+RF+pB8V87YfffkWGcb7FD/BT/Tv+kn+PbjbT/FT/TSf6qf7Gf59P9PP8rP9B36O/9DP9fP8fL/Ap/mP/EK/yKf7j/1i/4nP8EsuP1T2K/0qv9qv8Wv9Or/eb/Ab/Sa/2W/xW/02v93v8Dv9p36X/8zv9nv8Xv+53+e/8Pv9l/6A/8of9F/7TP+NP+S/9Yf9d/6I/94f9T/4Y/64P+F/9Cf9T/6UP+3P+LP+nP/Zn/e/+Av8O2uMMcYYY/+UCVea4rc9Fx/n9/6DHPFXK/cBgGu3Fcz86/6sK8r1+S62+4n4dhEAeLZXl0cuL9WrJyUlXVo3Q0JQdB7A5f8JyhIDV+Il0BaehkRoA2X+cP79RLdz9A/Gj94OkOuvcmLhSnxl/C8BMOkPxn/iqVELy4dn4v6L8ecBFC96JScnXImXQNtfn6+0gbJ/Z/75W/2D+ef8KgWg9V/l5IYr8ZX5J8CT8Bwk/mZNxhhjjDHGGGPson6iUqfL95+Xf+Lzj+7P49WVnBxwJf5H9+eMMcYYY4wxxhi7+p7v1v2ZJxIT23T61xtV/1tZ/3SjCfxPjcyNP2x4D3D5FQUA/+aAAFkN+Z/ciy3/kW0lXzp0/rZr+VkfwP+OUv4Zjav8xcQYY4wxxhj701256P/t6+pqTYgxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGMuG/hN/Tuxq7yNjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDF2tf2/AAAA//8BsgGO")
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x1480, 0x0)

4m40.797917491s ago: executing program 5 (id=12621):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='auxv\x00')
readv(r0, &(0x7f000000d500)=[{&(0x7f000000c500)=""/4096, 0x1000}], 0x1)

4m40.217968278s ago: executing program 5 (id=12626):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x20, 0x0, 0x8, {0x0, @empty}}}], 0x20}}], 0x1, 0x0)

4m39.684660325s ago: executing program 34 (id=12626):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x20, 0x0, 0x8, {0x0, @empty}}}], 0x20}}], 0x1, 0x0)

3.098023237s ago: executing program 6 (id=16121):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0xfd, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000800)="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", 0x0, 0x0, 0x0, 0x0, 0x0})

2.91046639s ago: executing program 4 (id=16124):
prctl$PR_MCE_KILL(0x21, 0x1, 0x0)
prctl$PR_MCE_KILL_GET(0x22)

2.817647932s ago: executing program 6 (id=16126):
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000540)='ns/pid\x00')
ioctl$NS_GET_OWNER_UID(r0, 0xb704, 0x0)

2.595209614s ago: executing program 4 (id=16128):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x4a, &(0x7f0000000200)=0x633a, 0x4)

2.586968615s ago: executing program 3 (id=16129):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x1ff, 0x1501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x80, &(0x7f00000004c0)={0x1, 0xd, 0x19, 0xfff}, 0x8, 0x2, 0x3c04, 0x0, 0x7fffffff, 0x0, 0x0})

2.435159897s ago: executing program 7 (id=16131):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x6a, 0xa, 0xff00}, [@call={0xc}, @exit, @map_fd, @jmp]}, &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2d)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="110000000000000000d8"], 0x20)

2.434957277s ago: executing program 6 (id=16132):
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={'team_slave_0\x00', {0x2, 0x4e20, @multicast1}})

2.327494478s ago: executing program 3 (id=16133):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000001d00070f000200000000000007"], 0x24}}, 0x0)

2.297576238s ago: executing program 4 (id=16134):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e00, 0x0, @mcast2={0xff, 0x5}}, 0x1c)

2.20715205s ago: executing program 7 (id=16136):
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x541b, 0x0)

2.206781539s ago: executing program 6 (id=16137):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="757466383d302c756e695f786c6174653d302c6572726f72733d72656d6f756e742d726f2c636865636b3d7374726963742c636f6465706167653d3934392c757466383d312c696f636861727365743d6b6f69382d72752c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c757466383d302c6e6f6e756d7461696c3d302c696f636861727365743d63703835302c726f6469722c00ca51450ed2991a5765393ac25d4ee6b200b2600eed77fcaeac96b7abedf3b82cba4f598fb22528ec5848a94ac996e61e4bdb5e754fa7445335a60f4f3047a7f085b9ba91929999c92d3aa0c5695902e42830eba00fd0dd965b090b402cf4c6d7f63e5cbd9908ee529c7657180034c43fe4b89f2909b67525a23c21be8a2c3600d437551d8381d9a5fe46"], 0x2a, 0x346, &(0x7f0000000fc0)="$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")
open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)

2.080084871s ago: executing program 3 (id=16138):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000300)={&(0x7f0000000180)={0x2, 0x18, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x20, 0x0, @in={0x2, 0x4e24, @multicast2}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}]}, 0x50}}, 0x80)

1.919211714s ago: executing program 4 (id=16140):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000001c0)={[{@xattr}, {}, {@cpuset_v2_mode}, {@name={'name', 0x3d, '.'}}, {@release_agent={'release_agent', 0x3d, './file0'}}], [{@pcr}]})

1.918968504s ago: executing program 7 (id=16141):
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
writev(r0, &(0x7f0000000780)=[{&(0x7f0000000100)="1b", 0x1}, {0x0, 0x2000000}], 0x2)

1.823206985s ago: executing program 3 (id=16142):
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e)

1.673855857s ago: executing program 7 (id=16144):
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x40, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x3, 0x80000000, 0x5, 0xfff, 0x6, 0x1ff, 0x0, 0xa}, &(0x7f0000000140)={0x9, 0x6, 0x0, 0x100, 0xcf9, 0x0, 0x4, 0x7}, 0x0, 0x0, 0x0)

1.631210308s ago: executing program 4 (id=16145):
sigaltstack(&(0x7f0000001040)={&(0x7f0000001580)=""/4097, 0x0, 0xffffffffffffff0d}, 0x0)
sigaltstack(&(0x7f0000000000)={0x0}, &(0x7f0000000340)={0x0})

1.537170419s ago: executing program 3 (id=16146):
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000000)='./bus\x00', 0x400, &(0x7f0000000480)=ANY=[], 0x1, 0x626f, &(0x7f000000f3c0)="$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")
truncate(&(0x7f0000000000)='./file1\x00', 0xe)

1.379122801s ago: executing program 6 (id=16148):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCGPKT(r0, 0x80045438, &(0x7f00000003c0))

1.361991881s ago: executing program 7 (id=16149):
r0 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r0, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000800)=[@ip_retopts={{0x18, 0x0, 0x7, {[@noop, @end, @ssrr={0x89, 0x3, 0xd9}]}}}], 0x18}, 0x0)

1.360245391s ago: executing program 4 (id=16150):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000002c0)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYRES64=0x0], 0x5, 0x6235, &(0x7f00000004c0)="$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")
symlink(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.305426112s ago: executing program 2 (id=16151):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0xffffffffffffffff, 0x0, 0x3b, @buffer={0x0, 0x0, 0x0}, &(0x7f00000000c0), 0x0, 0xffffffff, 0x10023, 0x2, 0x0})

1.134840164s ago: executing program 7 (id=16152):
syz_mount_image$ocfs2(&(0x7f0000004480), &(0x7f00000044c0)='./file1\x00', 0x800401, &(0x7f00000001c0)=ANY=[@ANYBLOB='errors=remount-ro,noacl,heartbeat=none,intr,user_xattr,data=writeback,coherency=full,dir_resv_level=18446744073709551615\x00data=ordered,errors=remount-ro,\x00'], 0x8, 0x446c, &(0x7f0000004780)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000000)='.\x00', 0x61, &(0x7f00000001c0)=ANY=[], 0x1, 0x0, &(0x7f0000000000))

1.084027175s ago: executing program 2 (id=16153):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000040)={0x0, 0x0, {0x0, 0x0, 0x3011, 0x0, 0x9, 0xd, 0x3}})

1.077839785s ago: executing program 6 (id=16154):
syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0), 0x1, 0x228, &(0x7f0000000300)="$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")
syz_usb_connect(0x3, 0x71, &(0x7f0000000480)=ANY=[@ANYBLOB="120100074ca0b5203360084113cc0102030109025f000107a1407509048002060103ec010905170220009100060725018008ff0009058703ff03d1010702010900100000020000000725"], &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0})

803.027089ms ago: executing program 2 (id=16155):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001f80)=ANY=[@ANYBLOB="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"/2832], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff4f, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a5cfd", 0x0, 0x14000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

536.486113ms ago: executing program 2 (id=16156):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
bind$qrtr(r0, &(0x7f0000000080)={0x2a, 0x1, 0x97ff}, 0xc)

348.374515ms ago: executing program 2 (id=16157):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f00000001c0)='./file0\x00', 0x80000c, &(0x7f0000000240)={[{}, {@umask={'umask', 0x3d, 0x20}}, {@barrier}, {@type={'type', 0x3d, "883b7f38"}}, {@part={'part', 0x3d, 0x2}}, {@nls={'nls', 0x3d, 'cp874'}}, {@force}, {@nodecompose}, {@nobarrier}]}, 0x2, 0x6da, &(0x7f0000000580)="$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")
listxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

27.084869ms ago: executing program 2 (id=16158):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2000082, &(0x7f0000002380)={[{@shortname_winnt}, {@shortname_mixed}, {@shortname_win95}, {@rodir}, {@fat=@codepage={'codepage', 0x3d, '949'}}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@shortname_lower}, {@shortname_mixed}, {@fat=@showexec}, {@iocharset={'iocharset', 0x3d, 'cp860'}}, {@uni_xlate}, {@rodir}, {@shortname_win95}, {@shortname_win95}, {@uni_xlateno}]}, 0x1, 0x358, &(0x7f0000000480)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

0s ago: executing program 3 (id=16159):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000300)=[@in6={0xa, 0x4e21, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x5}, @in6={0xa, 0x4e21, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xffffffff}]}, &(0x7f0000000040)=0x10)

kernel console output (not intermixed with test programs):

rings: Mfr=1, Product=2, SerialNumber=3
[ 1167.805546][T14898] usb 4-1: Product: syz
[ 1167.816486][   T26] audit: type=1326 audit(2000000948.215:2078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23754 comm="syz.6.13951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f706ff8e969 code=0x7ffc0000
[ 1167.847702][T14898] usb 4-1: Manufacturer: syz
[ 1167.852992][T14898] usb 4-1: SerialNumber: syz
[ 1167.878262][T14898] usb 4-1: config 0 descriptor??
[ 1167.894551][T23742] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1167.917967][T14898] usb-storage 4-1:0.20: USB Mass Storage device detected
[ 1167.936703][T23774] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13957'.
[ 1167.944698][T14898] usb-storage 4-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[ 1168.166518][T14898] scsi host1: usb-storage 4-1:0.20
[ 1168.384937][ T6867] usb 4-1: USB disconnect, device number 41
[ 1168.710721][T23818] loop7: detected capacity change from 0 to 256
[ 1168.765046][T23818] FAT-fs (loop7): error, clusters badly computed (0 != 128)
[ 1168.803400][T23818] FAT-fs (loop7): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[ 1168.829488][T23768] loop6: detected capacity change from 0 to 32768
[ 1168.889421][T23768] (syz.6.13956,23768,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1168.955162][T23826] x_tables: ip_tables: osf match: only valid for protocol 6
[ 1168.967113][T23768] (syz.6.13956,23768,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1169.057175][T23768] (syz.6.13956,23768,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xcfdff595, computed 0xefed4a20. Applying ECC.
[ 1169.117543][T23768] JBD2: Ignoring recovery information on journal
[ 1169.288032][T23768] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1169.780509][T27010] ocfs2: Unmounting device (7,6) on (node local)
[ 1170.117647][T23868] xt_ecn: cannot match TCP bits for non-tcp packets
[ 1170.139253][T23832] loop4: detected capacity change from 0 to 32768
[ 1170.225289][T23832] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.13972 (23832)
[ 1170.366203][T23832] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1170.396731][T23832] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[ 1170.457080][T23832] BTRFS info (device loop4): setting nodatasum
[ 1170.476463][T23832] BTRFS info (device loop4): force zlib compression, level 3
[ 1170.537750][T23832] BTRFS info (device loop4): metadata ratio 1
[ 1170.556715][T23832] BTRFS info (device loop4): enabling ssd optimizations
[ 1170.563835][T23832] BTRFS info (device loop4): allowing degraded mounts
[ 1170.584946][T23832] BTRFS info (device loop4): using free space tree
[ 1170.645051][T23890] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744071562330114)
[ 1170.688805][T23890] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[ 1171.240791][ T4261] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1171.348343][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1171.891983][T30222] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 11 /dev/loop4 scanned by udevd (30222)
[ 1172.006635][   T27] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[ 1172.126718][T14898] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[ 1172.180738][T23965] netlink: 17 bytes leftover after parsing attributes in process `syz.3.14004'.
[ 1172.218270][   T27] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1172.236896][   T27] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 1172.245839][   T27] usb 8-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[ 1172.301012][   T27] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1172.321339][T14898] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1172.328751][   T27] usb 8-1: config 0 descriptor??
[ 1172.372168][T14898] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1172.396482][T14898] usb 5-1: Product: syz
[ 1172.400719][T14898] usb 5-1: Manufacturer: syz
[ 1172.425797][T14898] usb 5-1: SerialNumber: syz
[ 1172.471964][T14898] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1172.546014][T14898] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1172.744986][   T27] Bluetooth: Can't get version to change to load ram patch err
[ 1172.759342][   T27] Bluetooth: Loading patch file failed
[ 1172.785331][   T27] ath3k: probe of 8-1:0.0 failed with error -71
[ 1172.817069][   T27] usb 8-1: USB disconnect, device number 7
[ 1173.059470][T14904] usb 5-1: USB disconnect, device number 48
[ 1173.331173][   T26] audit: type=1326 audit(2000000954.115:2079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24016 comm="syz.2.14013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1173.411576][   T26] audit: type=1326 audit(2000000954.115:2080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24016 comm="syz.2.14013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1173.434208][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1173.514856][   T26] audit: type=1326 audit(2000000954.185:2081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24016 comm="syz.2.14013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1173.537680][   T26] audit: type=1326 audit(2000000954.185:2082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24016 comm="syz.2.14013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1173.560954][   T26] audit: type=1326 audit(2000000954.185:2083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24016 comm="syz.2.14013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1173.583560][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1173.626654][T14898] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[ 1173.633748][T14898] ath9k_htc: Failed to initialize the device
[ 1173.671719][T14904] usb 5-1: ath9k_htc: USB layer deinitialized
[ 1173.827811][T24039] netlink: 17 bytes leftover after parsing attributes in process `syz.7.14018'.
[ 1173.915838][T24044] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14020'.
[ 1173.950283][T24044] netlink: 312 bytes leftover after parsing attributes in process `syz.4.14020'.
[ 1173.996532][T24044] netlink: 'syz.4.14020': attribute type 1 has an invalid length.
[ 1175.036474][ T4306] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[ 1175.224682][T24110] loop6: detected capacity change from 0 to 64
[ 1175.246404][ T4306] usb 5-1: Using ep0 maxpacket: 32
[ 1175.257544][ T4306] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1175.300519][ T4306] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1175.346739][ T4306] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1175.355881][ T4306] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1175.426333][ T4306] usb 5-1: config 0 descriptor??
[ 1175.438464][ T4306] hub 5-1:0.0: USB hub found
[ 1175.640083][ T4306] hub 5-1:0.0: 5 ports detected
[ 1175.655550][ T4306] hub 5-1:0.0: insufficient power available to use all downstream ports
[ 1175.840571][ T4306] hub 5-1:0.0: hub_hub_status failed (err = -71)
[ 1175.866811][ T4306] hub 5-1:0.0: config failed, can't get hub status (err -71)
[ 1175.915238][ T4306] usbhid 5-1:0.0: can't add hid device: -71
[ 1175.921728][ T4306] usbhid: probe of 5-1:0.0 failed with error -71
[ 1175.958418][ T4306] usb 5-1: USB disconnect, device number 49
[ 1176.496489][ T4306] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1176.512226][T24161] loop7: detected capacity change from 0 to 40427
[ 1176.568125][T24161] F2FS-fs (loop7): Insane cp_payload (553648128 >= 504)
[ 1176.575138][T24161] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[ 1176.614862][T24161] F2FS-fs (loop7): build fault injection attr: rate: 7, type: 0x3ffff
[ 1176.631551][T24161] F2FS-fs (loop7): build fault injection attr: rate: 0, type: 0x1f8
[ 1176.652662][T24161] F2FS-fs (loop7): invalid crc value
[ 1176.706514][ T4306] usb 4-1: Using ep0 maxpacket: 32
[ 1176.718301][ T4306] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1176.729588][T24161] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1176.768512][ T4306] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1176.786703][ T4306] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1176.795799][ T4306] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1176.833351][T24192] i2c i2c-0: Invalid block write size 34
[ 1176.836034][ T4306] hub 4-1:4.0: USB hub found
[ 1176.849096][T24161] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[ 1176.869485][T24161] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1177.038458][ T4306] hub 4-1:4.0: 2 ports detected
[ 1177.043423][ T4306] usb 4-1: selecting invalid altsetting 1
[ 1177.075748][ T4306] hub 4-1:4.0: Using single TT (err -22)
[ 1177.088135][T24161] F2FS-fs (loop7) : inject alloc nid in f2fs_alloc_nid of f2fs_get_dnode_of_data+0x5ad/0x1670
[ 1177.251067][ T4306] hub 4-1:4.0: hub_hub_status failed (err = -71)
[ 1177.265350][ T4306] hub 4-1:4.0: config failed, can't get hub status (err -71)
[ 1177.353625][T18391] syz-executor: attempt to access beyond end of device
[ 1177.353625][T18391] loop7: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[ 1177.372268][ T4306] usb 4-1: USB disconnect, device number 42
[ 1177.835044][T24232] loop6: detected capacity change from 0 to 4096
[ 1177.896816][T24232] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512)
[ 1178.023981][T24232] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[ 1178.287954][T24247] loop3: detected capacity change from 0 to 64
[ 1178.669602][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1178.675966][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.743450][T24273] program syz.3.14081 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1179.140117][T24295] loop3: detected capacity change from 0 to 2048
[ 1179.169800][T24295] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1179.179078][ T6867] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[ 1179.337070][T24301] netlink: 24 bytes leftover after parsing attributes in process `syz.4.14090'.
[ 1179.368697][ T6867] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1179.390901][ T6867] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1179.425652][ T6867] usb 7-1: config 0 descriptor??
[ 1179.455306][ T6867] cp210x 7-1:0.0: cp210x converter detected
[ 1179.664338][ T6867] usb 7-1: cp210x converter now attached to ttyUSB0
[ 1179.880134][ T6867] usb 7-1: USB disconnect, device number 23
[ 1179.898477][ T6867] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1179.915891][ T6867] cp210x 7-1:0.0: device disconnected
[ 1180.884366][T24379] openvswitch: netlink: Message has 8 unknown bytes.
[ 1181.689720][T24402] device bridge7 entered promiscuous mode
[ 1181.982507][T24416] loop3: detected capacity change from 0 to 256
[ 1182.037296][T24416] exfat: Deprecated parameter 'namecase'
[ 1182.062183][T24356] loop7: detected capacity change from 0 to 65536
[ 1182.100687][T24416] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1182.221996][T24356] XFS (loop7): Mounting V5 Filesystem
[ 1182.324409][T24356] XFS (loop7): Ending clean mount
[ 1182.526849][T24437] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744071562330114)
[ 1182.562208][T24437] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[ 1182.736955][T18391] XFS (loop7): Unmounting Filesystem
[ 1182.841998][T24362] loop4: detected capacity change from 0 to 65536
[ 1182.941742][T24362] XFS (loop4): Mounting V5 Filesystem
[ 1183.160935][T24362] XFS (loop4): Ending clean mount
[ 1183.273696][ T4261] XFS (loop4): Unmounting Filesystem
[ 1183.341903][T24468] loop6: detected capacity change from 0 to 1024
[ 1183.946879][T14904] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[ 1184.136743][T14904] usb 7-1: Using ep0 maxpacket: 32
[ 1184.146240][T14904] usb 7-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=67.fe
[ 1184.186520][T14904] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1184.195326][T14904] usb 7-1: Product: syz
[ 1184.207227][T14904] usb 7-1: Manufacturer: syz
[ 1184.211923][T14904] usb 7-1: SerialNumber: syz
[ 1184.237589][T14904] usb 7-1: config 0 descriptor??
[ 1184.451467][T14904] snd-usb-6fire 7-1:0.0: unknown device firmware state received from device:
[ 1184.476751][T14904] eb 00 00 00 00 00 00 00 
[ 1184.481381][T14904] snd-usb-6fire: probe of 7-1:0.0 failed with error -5
[ 1184.667741][T14904] usb 7-1: USB disconnect, device number 24
[ 1185.521914][T24550] netlink: 12 bytes leftover after parsing attributes in process `syz.4.14152'.
[ 1185.866711][ T4263] Bluetooth: hci1: command 0x0406 tx timeout
[ 1186.324188][T24592] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[ 1187.364323][T24630] device bond8 entered promiscuous mode
[ 1187.556586][T24632] loop3: detected capacity change from 0 to 4096
[ 1187.986804][T24611] loop7: detected capacity change from 0 to 32768
[ 1188.069544][T24611] __jfs_setxattr: xattr_size = 74, new_size = 12053
[ 1188.388039][T24697] loop3: detected capacity change from 0 to 1024
[ 1188.395312][T24697] EXT4-fs: Ignoring removed bh option
[ 1188.441910][T24697] EXT4-fs: inline encryption not supported
[ 1188.517729][T24697] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[ 1188.588278][T24697] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 2: comm syz.3.14190: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1188.659935][T24697] Quota error (device loop3): qtree_write_dquot: dquota write failed
[ 1188.700039][T24697] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 48: comm syz.3.14190: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1188.806703][T24697] Quota error (device loop3): v2_write_file_info: Can't write info structure
[ 1188.815603][T24697] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.14190: Failed to acquire dquot type 0
[ 1188.967900][T24697] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5914: Corrupt filesystem
[ 1189.038593][T24697] EXT4-fs error (device loop3): ext4_evict_inode:279: inode #11: comm syz.3.14190: mark_inode_dirty error
[ 1189.066113][T24697] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[ 1189.099817][T24697] EXT4-fs (loop3): 1 orphan inode deleted
[ 1189.116716][ T4304] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1189.146628][T24697] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1189.166699][ T4304] Quota error (device loop3): remove_tree: Can't read quota data block 1
[ 1189.231597][T24697] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 1: comm syz.3.14190: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1189.253370][T24734] netlink: 'syz.2.14199': attribute type 1 has an invalid length.
[ 1189.256819][ T4304] EXT4-fs error (device loop3): ext4_release_dquot:6838: comm kworker/u4:5: Failed to release dquot type 0
[ 1189.322108][T24697] Quota error (device loop3): find_next_id: Can't read quota tree block 1
[ 1189.323156][T24734] netlink: 'syz.2.14199': attribute type 2 has an invalid length.
[ 1189.485969][ T4258] EXT4-fs (loop3): unmounting filesystem.
[ 1189.517234][ T4258] EXT4-fs error (device loop3): __ext4_get_inode_loc:4507: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 1189.561501][T24743] netlink: 12 bytes leftover after parsing attributes in process `syz.4.14203'.
[ 1189.592911][ T4258] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5914: Corrupt filesystem
[ 1189.616767][T24743] netlink: 33 bytes leftover after parsing attributes in process `syz.4.14203'.
[ 1189.646796][T24743] netlink: 33 bytes leftover after parsing attributes in process `syz.4.14203'.
[ 1189.656919][ T4258] EXT4-fs error (device loop3): ext4_quota_off:7108: inode #3: comm syz-executor: mark_inode_dirty error
[ 1189.674353][T24747] netlink: 4 bytes leftover after parsing attributes in process `syz.7.14205'.
[ 1189.682885][T24743] netlink: 'syz.4.14203': attribute type 6 has an invalid length.
[ 1189.711227][T24747] netlink: 4 bytes leftover after parsing attributes in process `syz.7.14205'.
[ 1189.713551][T24750] netlink: 'syz.2.14207': attribute type 10 has an invalid length.
[ 1189.806780][T24750] netlink: 40 bytes leftover after parsing attributes in process `syz.2.14207'.
[ 1189.824952][T24750] device batadv0 entered promiscuous mode
[ 1189.831073][T24750] IPv6: ADDRCONF(NETDEV_CHANGE): batadv0: link becomes ready
[ 1189.858525][T24750] IPv6: ADDRCONF(NETDEV_CHANGE): batadv0: link becomes ready
[ 1189.904239][T24750] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[ 1190.219225][T24777] netlink: 'syz.7.14215': attribute type 1 has an invalid length.
[ 1190.269609][T24777] netlink: 192 bytes leftover after parsing attributes in process `syz.7.14215'.
[ 1190.420269][T24785] CIFS: iocharset name too long
[ 1191.986444][T14898] usb 4-1: new full-speed USB device number 43 using dummy_hcd
[ 1192.188690][T14898] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[ 1192.234595][T24825] loop6: detected capacity change from 0 to 32768
[ 1192.236456][T14898] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1192.310864][T14898] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[ 1192.326469][T14898] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1192.380582][T24825] XFS (loop6): Mounting V5 Filesystem
[ 1192.439159][T24885] kernel read not supported for file / 
œ7³ÏüâW)ës“§Ç!Q�öì¥fsõl{T‡rÒ)r§ÖOš˜õ2:"ôÀT+ÍŸv|�Õ²DvcŽ“ØÖ Å6Òxãc: (pid: 24885 comm: syz.4.14247)
[ 1192.545556][   T26] audit: type=1800 audit(2000000973.325:2084): pid=24885 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.14247" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=133119 res=0 errno=0
[ 1192.577758][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1192.616932][T24825] XFS (loop6): Ending clean mount
[ 1192.776703][T14898] aiptek 4-1:17.0: Aiptek using 400 ms programming speed
[ 1192.794746][T14898] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input42
[ 1192.806855][T27010] XFS (loop6): Unmounting Filesystem
[ 1192.923686][T14898] input: failed to attach handler kbd to device input42, error: -5
[ 1193.005596][T14898] usb 4-1: USB disconnect, device number 43
[ 1193.228528][T24924] netlink: 32 bytes leftover after parsing attributes in process `syz.7.14255'.
[ 1193.266991][T24924] netlink: 7 bytes leftover after parsing attributes in process `syz.7.14255'.
[ 1193.571757][T24939] netlink: 4 bytes leftover after parsing attributes in process `syz.3.14260'.
[ 1193.623385][T24939] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 1193.978073][T24958] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1195.038898][T24992] loop4: detected capacity change from 0 to 64
[ 1195.081864][T24952] loop3: detected capacity change from 0 to 32768
[ 1195.177521][T24952] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.14265 (24952)
[ 1195.273737][T24952] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1195.318993][T24952] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[ 1195.381843][T24952] BTRFS info (device loop3): force clearing of disk cache
[ 1195.433480][T24952] BTRFS info (device loop3): enabling auto defrag
[ 1195.486643][T24952] BTRFS info (device loop3): max_inline at 0
[ 1195.519932][T24952] BTRFS info (device loop3): enabling disk space caching
[ 1195.549094][T24952] BTRFS info (device loop3): disk space caching is enabled
[ 1195.911308][T24952] BTRFS info (device loop3): enabling ssd optimizations
[ 1195.978961][T24952] BTRFS info (device loop3): rebuilding free space tree
[ 1196.089777][T24952] BTRFS info (device loop3): disabling free space tree
[ 1196.135525][T24952] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1196.164078][T24952] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1196.427506][ T4258] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1196.727899][T25004] loop6: detected capacity change from 0 to 32768
[ 1197.034702][T30222] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 11 /dev/loop3 scanned by udevd (30222)
[ 1197.810870][T25089] loop4: detected capacity change from 0 to 64
[ 1198.431611][T25112] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14308'.
[ 1198.667265][T25120] loop7: detected capacity change from 0 to 1024
[ 1198.761005][T25120] hfsplus: extend alloc file! (8192,512,16777719)
[ 1199.294719][T25161] netlink: 'syz.7.14321': attribute type 16 has an invalid length.
[ 1199.310592][T25161] netlink: 'syz.7.14321': attribute type 3 has an invalid length.
[ 1199.324004][T25161] netlink: 132 bytes leftover after parsing attributes in process `syz.7.14321'.
[ 1199.514107][ T4496] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1199.757643][ T4496] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1199.785660][ T4496] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[ 1199.842889][ T4496] usb 4-1: New USB device found, idVendor=0499, idProduct=103e, bcdDevice=4e.18
[ 1199.886389][ T4496] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1199.914884][ T4496] usb 4-1: Product: syz
[ 1199.939621][ T4496] usb 4-1: Manufacturer: syz
[ 1199.944299][ T4496] usb 4-1: SerialNumber: syz
[ 1199.970117][ T4496] usb 4-1: config 0 descriptor??
[ 1200.086811][T25190] [U] 	
[ 1200.447190][ T4496] usb 4-1: USB disconnect, device number 44
[ 1201.039773][T25191] loop7: detected capacity change from 0 to 32768
[ 1201.076199][T25191] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop7 scanned by syz.7.14331 (25191)
[ 1201.115446][T25191] BTRFS info (device loop7): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1201.136534][T25191] BTRFS info (device loop7): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1201.145834][T25191] BTRFS info (device loop7): force zlib compression, level 3
[ 1201.219602][T25191] BTRFS info (device loop7): force clearing of disk cache
[ 1201.258435][T25191] BTRFS info (device loop7): setting nodatasum
[ 1201.296702][T25191] BTRFS info (device loop7): doing ref verification
[ 1201.303424][T25191] BTRFS info (device loop7): allowing degraded mounts
[ 1201.356577][T25191] BTRFS info (device loop7): enabling disk space caching
[ 1201.363687][T25191] BTRFS info (device loop7): disk space caching is enabled
[ 1201.816521][T25191] BTRFS info (device loop7): enabling ssd optimizations
[ 1201.864187][T25191] BTRFS info (device loop7): rebuilding free space tree
[ 1202.011860][T25191] BTRFS info (device loop7): disabling free space tree
[ 1202.026142][T25191] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1202.117440][T25191] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1202.453631][T18391] BTRFS info (device loop7): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1202.763585][ T4917] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 11 /dev/loop7 scanned by udevd (4917)
[ 1202.946149][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1203.412320][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1204.633989][ T4497] hid-generic C990:0003:0000.0001: unknown main item tag 0x0
[ 1204.705959][ T4497] hid-generic C990:0003:0000.0001: unknown main item tag 0x0
[ 1204.785346][ T4497] hid-generic C990:0003:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1204.961799][T25370] loop6: detected capacity change from 0 to 32768
[ 1205.032518][T25370] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop6 scanned by syz.6.14372 (25370)
[ 1205.110421][T25370] BTRFS info (device loop6): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1205.141470][T25405] fido_id[25405]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1205.173230][T25370] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[ 1205.216625][T25370] BTRFS info (device loop6): use zlib compression, level 3
[ 1205.224308][T25370] BTRFS info (device loop6): using free space tree
[ 1205.736379][T25459] netlink: 19 bytes leftover after parsing attributes in process `syz.3.14393'.
[ 1205.753358][T25370] BTRFS info (device loop6): enabling ssd optimizations
[ 1205.796691][T25459] netlink: 19 bytes leftover after parsing attributes in process `syz.3.14393'.
[ 1205.992411][T27010] BTRFS info (device loop6): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[ 1206.031243][T25471] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[ 1206.316118][T30222] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 9 /dev/loop6 scanned by udevd (30222)
[ 1206.728694][T25452] loop7: detected capacity change from 0 to 32768
[ 1206.787071][T25452] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 11
[ 1207.066187][T25498] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 1207.254485][ T4917] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 11
[ 1207.562962][T25479] loop4: detected capacity change from 0 to 32768
[ 1207.611051][T25479] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 11
[ 1208.044750][T30222] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 11
[ 1208.741831][T25539] syz.4.14417 (25539): drop_caches: 2
[ 1209.020552][T25525] loop6: detected capacity change from 0 to 32768
[ 1209.074065][T25525] BTRFS error: device /dev/loop6 already registered with a higher generation, found 8 expect 11
[ 1209.214349][T25566] x_tables: ip_tables: icmp match: only valid for protocol 1
[ 1209.459889][ T4917] BTRFS error: device /dev/loop6 already registered with a higher generation, found 8 expect 11
[ 1209.786720][T14901] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1209.986576][T14901] usb 4-1: Using ep0 maxpacket: 16
[ 1210.012730][T14901] usb 4-1: New USB device found, idVendor=09e8, idProduct=0062, bcdDevice=80.f2
[ 1210.056509][T14901] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1210.072219][T14901] usb 4-1: Product: syz
[ 1210.086062][T14901] usb 4-1: Manufacturer: syz
[ 1210.091400][T14901] usb 4-1: SerialNumber: syz
[ 1210.107357][T14901] usb 4-1: config 0 descriptor??
[ 1210.167450][T14901] snd-usb-audio: probe of 4-1:0.0 failed with error -2
[ 1210.223511][T30222] udevd[30222]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1210.364903][T25625] netlink: 'syz.6.14441': attribute type 1 has an invalid length.
[ 1210.395235][T14901] usb 4-1: USB disconnect, device number 45
[ 1210.406560][T25625] netlink: 'syz.6.14441': attribute type 2 has an invalid length.
[ 1210.432291][T25625] netlink: 4 bytes leftover after parsing attributes in process `syz.6.14441'.
[ 1210.504437][T25596] loop7: detected capacity change from 0 to 32768
[ 1210.538655][T25596] ERROR: (device loop7): dbAlloc: the hint is outside the map
[ 1210.538655][T25596] 
[ 1210.574817][T25596] ialloc: diAlloc returned -5!
[ 1211.484932][T25683] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14457'.
[ 1211.535089][T25683] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14457'.
[ 1211.988859][T25712] loop3: detected capacity change from 0 to 1024
[ 1212.057504][T25712] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1212.134312][T25712] EXT4-fs error (device loop3): __ext4_new_inode:1075: comm syz.3.14465: reserved inode found cleared - inode=18
[ 1212.264432][T25726] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1212.313422][ T4258] EXT4-fs (loop3): unmounting filesystem.
[ 1212.327482][T25726] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[ 1212.363651][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1212.366707][T25726] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[ 1212.430722][T25726] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[ 1212.470435][T25726] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[ 1212.516177][T25726] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[ 1212.565837][T25726] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[ 1212.693906][T25734] loop3: detected capacity change from 0 to 4096
[ 1212.720438][T25734] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[ 1213.433839][T25765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1213.546528][T25765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.589619][T25757] loop3: detected capacity change from 0 to 8192
[ 1213.702173][T25757] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1213.736494][T25757] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[ 1213.801795][T25757] REISERFS (device loop3): using ordered data mode
[ 1213.808951][T25757] reiserfs: using flush barriers
[ 1213.822263][T25757] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1213.856616][T25757] REISERFS (device loop3): checking transaction log (loop3)
[ 1213.935629][T25757] REISERFS (device loop3): Using r5 hash to sort names
[ 1214.551324][T25812] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14495'.
[ 1214.564013][T25813] NILFS (nullb0): couldn't find nilfs on the device
[ 1214.720694][T25820] netlink: 'syz.6.14497': attribute type 15 has an invalid length.
[ 1214.759534][T25820] netlink: 666 bytes leftover after parsing attributes in process `syz.6.14497'.
[ 1215.940224][T25879] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14516'.
[ 1216.151954][T25847] loop6: detected capacity change from 0 to 32768
[ 1216.195216][T25847] BTRFS error: device /dev/loop6 already registered with a higher generation, found 8 expect 11
[ 1216.234160][T25888] loop7: detected capacity change from 0 to 1024
[ 1216.583880][T30222] BTRFS error: device /dev/loop6 already registered with a higher generation, found 8 expect 11
[ 1217.684079][T25958] loop7: detected capacity change from 0 to 512
[ 1217.705615][T25961] loop4: detected capacity change from 0 to 512
[ 1217.712522][T25953] loop3: detected capacity change from 0 to 4096
[ 1217.754195][T25958] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1217.777725][T25953] ntfs3: loop3: ino=3, Correct links count -> 2.
[ 1217.835963][T25958] ext4 filesystem being mounted at /341/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1217.880007][T25961] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1217.936501][T25961] ext4 filesystem being mounted at /2944/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1218.157696][T18391] EXT4-fs (loop7): unmounting filesystem.
[ 1218.194971][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1218.235368][ T4261] EXT4-fs (loop4): unmounting filesystem.
[ 1218.473404][T25996] netlink: 'syz.3.14549': attribute type 5 has an invalid length.
[ 1218.519945][T25996] netlink: 176 bytes leftover after parsing attributes in process `syz.3.14549'.
[ 1219.035450][T26024] loop7: detected capacity change from 0 to 1024
[ 1219.072563][T26024] EXT4-fs: Ignoring removed orlov option
[ 1219.153742][T26024] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1219.538089][T18391] EXT4-fs (loop7): unmounting filesystem.
[ 1219.593129][T26049] device veth1_vlan left promiscuous mode
[ 1219.612610][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1219.719817][T26049] A link change request failed with some changes committed already. Interface macvlan1 may have been left with an inconsistent configuration, please check.
[ 1219.785305][T26056] netlink: 76 bytes leftover after parsing attributes in process `syz.7.14566'.
[ 1220.111017][T26072] netlink: 44 bytes leftover after parsing attributes in process `syz.7.14573'.
[ 1220.135990][T26072] netlink: 44 bytes leftover after parsing attributes in process `syz.7.14573'.
[ 1220.174954][T26039] loop6: detected capacity change from 0 to 32768
[ 1220.359022][T26039] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1220.394662][T26086] netlink: 'syz.7.14577': attribute type 10 has an invalid length.
[ 1220.411599][T26086] netlink: 40 bytes leftover after parsing attributes in process `syz.7.14577'.
[ 1220.428112][T26086] device dummy0 entered promiscuous mode
[ 1220.448856][T26039] OCFS2: ERROR (device loop6): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[ 1220.457670][T26086] bridge0: port 3(dummy0) entered blocking state
[ 1220.516013][T26086] bridge0: port 3(dummy0) entered disabled state
[ 1220.549323][T26086] bridge0: port 3(dummy0) entered blocking state
[ 1220.555896][T26086] bridge0: port 3(dummy0) entered forwarding state
[ 1220.578269][T26039] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1220.651976][T26039] OCFS2: File system is now read-only.
[ 1220.677314][T26039] (syz.6.14561,26039,0):ocfs2_find_leaf:1941 ERROR: status = -30
[ 1220.734380][T26039] (syz.6.14561,26039,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[ 1220.760745][T26039] (syz.6.14561,26039,0):ocfs2_get_clusters:624 ERROR: status = -30
[ 1220.787747][T26039] (syz.6.14561,26039,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[ 1220.808624][T26039] (syz.6.14561,26039,0):ocfs2_read_virt_blocks:981 ERROR: status = -30
[ 1220.827968][T26039] (syz.6.14561,26039,0):ocfs2_read_dir_block:511 ERROR: status = -30
[ 1220.855359][T26039] (syz.6.14561,26039,0):ocfs2_find_dir_space_el:3504 ERROR: status = -5
[ 1220.877509][T26039] (syz.6.14561,26039,0):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -5
[ 1220.915574][T26039] (syz.6.14561,26039,0):ocfs2_mknod:298 ERROR: status = -5
[ 1220.967696][T26039] (syz.6.14561,26039,0):ocfs2_mknod:502 ERROR: status = -5
[ 1220.975319][T26039] (syz.6.14561,26039,0):ocfs2_create:676 ERROR: status = -5
[ 1221.081269][T26109] loop3: detected capacity change from 0 to 256
[ 1221.145808][T27010] ocfs2: Unmounting device (7,6) on (node local)
[ 1221.281871][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.356445][T26109] FAT-fs (loop3): Filesystem has been set read-only
[ 1221.390963][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.416990][T26121] netlink: 'syz.4.14588': attribute type 2 has an invalid length.
[ 1221.474893][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.544337][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.583515][T26126] netlink: 16 bytes leftover after parsing attributes in process `syz.7.14590'.
[ 1221.586992][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.606985][T26126] bond0: (slave bond_slave_0): Slave does not support ipsec offload
[ 1221.656036][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.704035][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.740505][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.770049][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.825104][T26109] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[ 1221.874497][   T26] audit: type=1800 audit(2000001002.648:2085): pid=26109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.14584" name="file1" dev="loop3" ino=1048782 res=0 errno=0
[ 1221.894858][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1222.041335][T26148] (unnamed net_device) (uninitialized): option arp_validate: mode dependency failed, not supported in mode 802.3ad(4)
[ 1223.310676][   T26] audit: type=1326 audit(2000001004.088:2086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26212 comm="syz.6.14619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f706ff8e969 code=0x7ffc0000
[ 1223.406110][   T26] audit: type=1326 audit(2000001004.138:2087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26212 comm="syz.6.14619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f706ff8e969 code=0x7ffc0000
[ 1223.420458][T26220] xt_NFQUEUE: number of total queues is 0
[ 1223.518644][   T26] audit: type=1326 audit(2000001004.138:2088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26212 comm="syz.6.14619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f706ff8e969 code=0x7ffc0000
[ 1223.602611][   T26] audit: type=1326 audit(2000001004.138:2089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26212 comm="syz.6.14619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f706ff8e969 code=0x7ffc0000
[ 1223.781145][T26227] can0: slcan on ptm0.
[ 1223.955811][T26226] can0 (unregistered): slcan off ptm0.
[ 1224.249961][T26254] dlm: no locking on control device
[ 1225.165651][T26233] loop6: detected capacity change from 0 to 32768
[ 1225.291148][T26233] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1225.367343][T26233] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1225.433163][T26233] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[ 1225.505181][T26306] netlink: 40 bytes leftover after parsing attributes in process `syz.4.14642'.
[ 1225.556682][T26306] netlink: 40 bytes leftover after parsing attributes in process `syz.4.14642'.
[ 1225.610492][T26310] loop3: detected capacity change from 0 to 256
[ 1225.658668][T26233] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 1225.719005][T26310] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1226.207550][T26327] loop4: detected capacity change from 0 to 4096
[ 1226.256356][T26327] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[ 1226.269535][T26342] loop7: detected capacity change from 0 to 8
[ 1226.457530][T26327] ntfs3: loop4: failed to convert "c46c" to cp936
[ 1226.591303][T26350] loop3: detected capacity change from 0 to 2048
[ 1226.668097][T26350] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1227.449893][T26398] netlink: 16 bytes leftover after parsing attributes in process `syz.4.14663'.
[ 1227.573048][T26404] loop3: detected capacity change from 0 to 164
[ 1228.267922][T26435] device ip6gretap4 entered promiscuous mode
[ 1229.683656][T26468] loop3: detected capacity change from 0 to 32768
[ 1229.734698][T26468] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.14681 (26468)
[ 1229.790592][T26468] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1229.814779][T26468] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[ 1229.844583][T26468] BTRFS info (device loop3): using free space tree
[ 1230.054223][T26468] BTRFS info (device loop3): enabling ssd optimizations
[ 1230.235592][ T4258] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1230.352770][T26546] netlink: 'syz.4.14701': attribute type 10 has an invalid length.
[ 1230.401181][T26546] netlink: 40 bytes leftover after parsing attributes in process `syz.4.14701'.
[ 1230.444809][T26546] device dummy0 entered promiscuous mode
[ 1230.578577][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1230.695562][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1230.827227][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1230.927909][T26546] bond0: (slave dummy0): Releasing backup interface
[ 1230.944268][T26546] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[ 1230.961277][T26553] netlink: 'syz.7.14702': attribute type 10 has an invalid length.
[ 1231.020650][T26553] 8021q: adding VLAN 0 to HW filter on device team0
[ 1231.041140][T26553] bond0: (slave team0): Enslaving as an active interface with an up link
[ 1231.087037][ T4305] usb 7-1: new low-speed USB device number 25 using dummy_hcd
[ 1231.185708][T26571] netlink: 'syz.3.14716': attribute type 10 has an invalid length.
[ 1231.195326][T26571] netlink: 40 bytes leftover after parsing attributes in process `syz.3.14716'.
[ 1231.205223][T26571] device dummy0 entered promiscuous mode
[ 1231.213174][T26571] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[ 1231.278925][ T4305] usb 7-1: config 1 has an invalid interface descriptor of length 6, skipping
[ 1231.301629][ T4305] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1231.339310][ T4305] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1231.349626][ T4305] usb 7-1: config 1 has no interface number 1
[ 1231.355772][ T4305] usb 7-1: too many endpoints for config 1 interface 2 altsetting 116: 104, using maximum allowed: 30
[ 1231.386695][ T4305] usb 7-1: config 1 interface 2 altsetting 116 has 0 endpoint descriptors, different from the interface descriptor's value: 104
[ 1231.411474][ T4305] usb 7-1: config 1 interface 2 has no altsetting 1
[ 1231.435014][ T4305] usb 7-1: string descriptor 0 read error: -22
[ 1231.442027][ T4305] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1231.462273][ T4305] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1231.517115][ T4305] usb 7-1: MIDIStreaming interface descriptor not found
[ 1231.752610][ T4496] usb 7-1: USB disconnect, device number 25
[ 1231.888041][T26623] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 1232.710534][T26669] x_tables: unsorted underflow at hook 3
[ 1232.746786][T14901] usb 7-1: new full-speed USB device number 26 using dummy_hcd
[ 1232.959869][T14901] usb 7-1: config 0 has an invalid interface number: 52 but max is 0
[ 1232.983843][T14901] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1233.029936][T14901] usb 7-1: config 0 has no interface number 0
[ 1233.036293][T14901] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[ 1233.090238][T14901] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1233.144130][T14901] usb 7-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1233.179575][T14901] usb 7-1: config 0 interface 52 has no altsetting 0
[ 1233.221516][T14901] usb 7-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[ 1233.250365][T14901] usb 7-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0
[ 1233.268928][T14901] usb 7-1: Manufacturer: syz
[ 1233.295529][T14901] usb 7-1: config 0 descriptor??
[ 1233.512319][T14901] synaptics_usb 7-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[ 1233.544978][T14901] synaptics_usb: probe of 7-1:0.52 failed with error -5
[ 1233.545945][T26651] loop3: detected capacity change from 0 to 32768
[ 1233.714330][T14901] usb 7-1: USB disconnect, device number 26
[ 1233.773184][T26651] XFS (loop3): Mounting V5 Filesystem
[ 1233.824151][T26732] netlink: 12 bytes leftover after parsing attributes in process `syz.7.14743'.
[ 1233.837067][T26732] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14743'.
[ 1233.985733][T26651] XFS (loop3): Ending clean mount
[ 1234.011582][T26651] XFS (loop3): Quotacheck needed: Please wait.
[ 1234.104752][T26651] XFS (loop3): Quotacheck: Done.
[ 1234.178597][ T4258] XFS (loop3): Unmounting Filesystem
[ 1234.737542][T26766] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1234.767843][T26766] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1234.835693][T26766] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[ 1234.898843][T26766] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[ 1234.949835][T26766] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[ 1235.008537][T26766] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[ 1235.049555][T26766] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[ 1236.719621][T26808] netlink: 20 bytes leftover after parsing attributes in process `syz.3.14767'.
[ 1236.783857][T26808] netlink: 16 bytes leftover after parsing attributes in process `syz.3.14767'.
[ 1236.800974][T26808] netlink: 16 bytes leftover after parsing attributes in process `syz.3.14767'.
[ 1237.384859][T26792] loop4: detected capacity change from 0 to 32768
[ 1237.440524][T26792] CIFS mount error: No usable UNC path provided in device string!
[ 1237.440524][T26792] 
[ 1237.474019][T26792] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1237.596406][ T4496] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1237.750858][T26860] xt_recent: hitcount (16777216) is larger than allowed maximum (255)
[ 1237.821168][ T4496] usb 8-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[ 1237.846452][ T4496] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1237.854573][ T4496] usb 8-1: Product: syz
[ 1237.896403][ T4496] usb 8-1: Manufacturer: syz
[ 1237.901076][ T4496] usb 8-1: SerialNumber: syz
[ 1237.929502][T26864] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[ 1237.938333][ T4496] usb 8-1: config 0 descriptor??
[ 1237.992174][T26864] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[ 1238.065624][T26864] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[ 1238.085403][T26864] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[ 1238.097757][T26864] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[ 1238.121738][T26864] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[ 1238.153093][ T4496] hso 8-1:0.0: Can't find BULK IN endpoint
[ 1238.166979][ T4496] usb-storage 8-1:0.0: USB Mass Storage device detected
[ 1238.243204][T26874] netlink: 'syz.3.14786': attribute type 15 has an invalid length.
[ 1238.403787][T14893] usb 8-1: USB disconnect, device number 8
[ 1238.523428][T14901] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[ 1238.722211][T14901] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[ 1238.762868][T14901] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1238.781101][T14901] usb 5-1: Product: syz
[ 1238.785519][T14901] usb 5-1: Manufacturer: syz
[ 1238.806265][T14901] usb 5-1: SerialNumber: syz
[ 1238.825096][T14901] usb 5-1: config 0 descriptor??
[ 1238.842992][T14901] i2c-tiny-usb 5-1:0.0: version 6d.cc found at bus 005 address 050
[ 1238.868152][T26920] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14796'.
[ 1239.237357][T26935] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[ 1239.253692][T14901]  (null): failure reading functionality
[ 1239.264854][T14901] i2c i2c-1: failure reading functionality
[ 1239.283153][T26935] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[ 1239.307151][T14901] i2c i2c-1: connected i2c-tiny-usb device
[ 1239.323858][T14901] usb 5-1: USB disconnect, device number 50
[ 1239.334047][T26935] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[ 1239.384080][T26935] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[ 1239.429431][T26935] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[ 1239.478837][T26935] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[ 1239.482430][T26958] xt_hashlimit: overflow, try lower: 5/0
[ 1239.895703][T26976] loop4: detected capacity change from 0 to 64
[ 1239.930622][T26976] Trying to free block not in datazone
[ 1239.949682][T26979] loop3: detected capacity change from 0 to 2048
[ 1239.988740][T26979] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1240.065003][T26984] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1240.081753][T26979] syz.3.14811: attempt to access beyond end of device
[ 1240.081753][T26979] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 1240.107003][ T4517] kworker/dying (4517) used greatest stack depth: 19464 bytes left
[ 1240.115424][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1240.124426][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1240.339353][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1240.422974][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1240.496510][T26979] Remounting filesystem read-only
[ 1240.588881][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1240.655348][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1240.710118][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1240.759449][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1240.803737][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1240.823815][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1240.841511][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1240.852310][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1240.889532][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1240.911857][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1240.973802][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.035174][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.080132][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.127552][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.201339][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.246569][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.284194][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.325915][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.345725][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.374399][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.448911][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.486218][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.555989][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.601928][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.632481][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.683815][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.745615][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.778761][T27054] loop4: detected capacity change from 0 to 64
[ 1241.796636][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.836880][T27054] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[ 1241.858363][T26979] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9
[ 1241.877140][T26979] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1241.905809][   T26] audit: type=1800 audit(2000001022.678:2090): pid=26979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.14811" name="file2" dev="loop3" ino=16 res=0 errno=0
[ 1242.062081][T26979] syz.3.14811 (26979) used greatest stack depth: 19048 bytes left
[ 1242.157243][T27071] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[ 1242.203034][T27071] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[ 1242.257984][T27071] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[ 1242.302866][T27071] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[ 1242.369939][T27071] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[ 1242.429906][T27071] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[ 1242.524819][T27078] syz.3.14837 (27078): drop_caches: 2
[ 1242.978737][T27110] loop4: detected capacity change from 0 to 1024
[ 1243.056679][T14902] usb 8-1: new full-speed USB device number 9 using dummy_hcd
[ 1243.184071][ T4304] hfsplus: b-tree write err: -5, ino 4
[ 1243.258792][T14902] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1243.289484][T14902] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1243.341389][T14902] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[ 1243.392207][T14902] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1243.422571][T14902] usb 8-1: SerialNumber: syz
[ 1243.455800][T14902] usb 8-1: 0:2 : does not exist
[ 1243.478619][T27126] loop3: detected capacity change from 0 to 4096
[ 1243.568856][T27126] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1243.743571][T27150] syz.2.14858 (27150): drop_caches: 2
[ 1243.793267][ T4258] EXT4-fs (loop3): unmounting filesystem.
[ 1243.884662][ T4496] usb 8-1: USB disconnect, device number 9
[ 1244.031168][T27166] loop6: detected capacity change from 0 to 512
[ 1244.192270][T27166] EXT4-fs (loop6): revision level too high, forcing read-only mode
[ 1244.251457][T27166] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[ 1244.330991][T27166] System zones: 0-1, 15-15, 18-18, 34-34
[ 1244.382747][T27166] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1244.396877][T27166] Quota error (device loop6): v2_read_header: Failed header read: expected=8 got=0
[ 1244.444307][T27166] EXT4-fs warning (device loop6): ext4_enable_quotas:7054: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1244.527068][T27166] EXT4-fs (loop6): Cannot turn on quotas: error -22
[ 1244.544828][T27166] EXT4-fs error (device loop6): ext4_orphan_get:1426: comm syz.6.14860: bad orphan inode 16
[ 1244.600297][T27166] ext4_test_bit(bit=15, block=18) = 1
[ 1244.621758][T27166] is_bad_inode(inode)=0
[ 1244.626575][T27166] NEXT_ORPHAN(inode)=0
[ 1244.646397][T27166] max_ino=32
[ 1244.649662][T27166] i_nlink=2
[ 1244.666658][T27166] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1244.723259][T27166] fscrypt (loop6, inode 16): Error -61 getting encryption context
[ 1244.815780][T27192] loop4: detected capacity change from 0 to 4096
[ 1244.886777][T27192] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[ 1244.912539][T27010] EXT4-fs (loop6): unmounting filesystem.
[ 1245.429312][T27217] loop6: detected capacity change from 0 to 4096
[ 1245.507157][T27217] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512)
[ 1245.597192][T27238] libceph: resolve '0' (ret=-3): failed
[ 1246.163643][T27264] loop7: detected capacity change from 0 to 512
[ 1246.265360][T27264] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1246.276908][T27264] ext4 filesystem being mounted at /414/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1246.362482][T27272] SET target dimension over the limit!
[ 1246.541571][T18391] EXT4-fs (loop7): unmounting filesystem.
[ 1246.931462][T27295] loop7: detected capacity change from 0 to 4096
[ 1246.938370][ T4305] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[ 1246.964374][T27295] ntfs3: loop7: Different NTFS' sector size (4096) and media sector size (512)
[ 1247.141110][T27307] xt_hashlimit: overflow, try lower: 5/0
[ 1247.156792][ T4305] usb 5-1: Using ep0 maxpacket: 16
[ 1247.169626][ T4305] usb 5-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[ 1247.209596][ T4305] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1247.236478][ T4305] usb 5-1: Product: syz
[ 1247.258971][ T4305] usb 5-1: Manufacturer: syz
[ 1247.274079][ T4305] usb 5-1: SerialNumber: syz
[ 1247.307745][ T4305] usb 5-1: config 0 descriptor??
[ 1247.519451][ T4305] speedtch 5-1:0.0: speedtch_bind: data interface not found!
[ 1247.541950][ T4305] speedtch 5-1:0.0: usbatm_usb_probe: bind failed: -19!
[ 1247.739302][ T4305] usb 5-1: USB disconnect, device number 51
[ 1248.963809][T27381] netlink: 'syz.3.14916': attribute type 10 has an invalid length.
[ 1249.023084][T27381] team0: Port device veth1_macvtap added
[ 1249.054292][   T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1249.959400][T27426] loop6: detected capacity change from 0 to 64
[ 1250.233157][T27433] netlink: 132 bytes leftover after parsing attributes in process `syz.4.14932'.
[ 1250.753354][T27462] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14938'.
[ 1250.765878][   T26] audit: type=1326 audit(2000001031.548:2091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27465 comm="syz.3.14940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f344a58e969 code=0x7ffc0000
[ 1250.836436][T27462] netlink: 'syz.2.14938': attribute type 1 has an invalid length.
[ 1250.846621][   T26] audit: type=1326 audit(2000001031.548:2092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27465 comm="syz.3.14940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f344a58e969 code=0x7ffc0000
[ 1250.967357][   T26] audit: type=1326 audit(2000001031.548:2093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27465 comm="syz.3.14940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f344a58e969 code=0x7ffc0000
[ 1251.046402][   T26] audit: type=1326 audit(2000001031.548:2094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27465 comm="syz.3.14940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f344a58e969 code=0x7ffc0000
[ 1251.559245][T27446] loop7: detected capacity change from 0 to 32768
[ 1251.598589][T27495] netlink: 'syz.6.14948': attribute type 8 has an invalid length.
[ 1251.620756][T27495] netlink: 128124 bytes leftover after parsing attributes in process `syz.6.14948'.
[ 1251.731581][T27446] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1251.788943][T27446] OCFS2: ERROR (device loop7): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[ 1251.899301][T27446] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1251.950161][T27446] OCFS2: File system is now read-only.
[ 1251.996734][T27446] (syz.7.14934,27446,1):ocfs2_find_leaf:1941 ERROR: status = -30
[ 1252.004536][T27446] (syz.7.14934,27446,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[ 1252.078044][T27446] (syz.7.14934,27446,1):ocfs2_get_clusters:624 ERROR: status = -30
[ 1252.086035][T27446] (syz.7.14934,27446,1):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[ 1252.144399][T27446] (syz.7.14934,27446,1):ocfs2_read_virt_blocks:981 ERROR: status = -30
[ 1252.196390][T27446] (syz.7.14934,27446,1):ocfs2_read_dir_block:511 ERROR: status = -30
[ 1252.222178][T27446] (syz.7.14934,27446,1):ocfs2_find_dir_space_el:3504 ERROR: status = -5
[ 1252.280871][T27446] (syz.7.14934,27446,1):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -5
[ 1252.299403][   T26] audit: type=1326 audit(2000001033.078:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27523 comm="syz.2.14956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1252.346520][T27446] (syz.7.14934,27446,0):ocfs2_mknod:298 ERROR: status = -5
[ 1252.354504][T27446] (syz.7.14934,27446,0):ocfs2_mknod:502 ERROR: status = -5
[ 1252.392515][T27446] (syz.7.14934,27446,0):ocfs2_create:676 ERROR: status = -5
[ 1252.406572][   T26] audit: type=1326 audit(2000001033.098:2096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27523 comm="syz.2.14956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1252.536464][   T26] audit: type=1326 audit(2000001033.098:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27523 comm="syz.2.14956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1252.599465][T18391] ocfs2: Unmounting device (7,7) on (node local)
[ 1252.690933][   T26] audit: type=1326 audit(2000001033.098:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27523 comm="syz.2.14956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1253.192166][T27509] loop3: detected capacity change from 0 to 32768
[ 1254.970314][T27636] netlink: 168 bytes leftover after parsing attributes in process `syz.7.14989'.
[ 1255.058307][T27642] netlink: 28 bytes leftover after parsing attributes in process `syz.4.14991'.
[ 1255.098273][T27642] netlink: 148 bytes leftover after parsing attributes in process `syz.4.14991'.
[ 1255.139756][T27645] SET target dimension over the limit!
[ 1255.218983][T27647] loop6: detected capacity change from 0 to 1024
[ 1255.339881][T27647] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1255.580515][T27010] EXT4-fs (loop6): unmounting filesystem.
[ 1255.636755][ T4496] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1255.888805][ T4496] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1255.956371][ T4496] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1255.964474][ T4496] usb 8-1: Product: syz
[ 1255.982752][ T4496] usb 8-1: Manufacturer: syz
[ 1256.027447][ T4496] usb 8-1: SerialNumber: syz
[ 1256.089580][ T4496] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1256.228555][ T4496] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1256.586913][ T4305] usb 5-1: new full-speed USB device number 52 using dummy_hcd
[ 1256.735428][ T6867] usb 8-1: USB disconnect, device number 10
[ 1256.776259][T27724] netlink: 12 bytes leftover after parsing attributes in process `syz.6.15014'.
[ 1256.849570][ T4305] usb 5-1: config 0 has an invalid interface number: 207 but max is 0
[ 1256.866483][ T4305] usb 5-1: config 0 has no interface number 0
[ 1256.896624][ T4305] usb 5-1: New USB device found, idVendor=12d1, idProduct=ed56, bcdDevice=46.dd
[ 1256.931940][ T4305] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1256.960737][ T4305] usb 5-1: Product: syz
[ 1256.964959][ T4305] usb 5-1: Manufacturer: syz
[ 1256.995608][ T4305] usb 5-1: SerialNumber: syz
[ 1257.018681][ T4305] usb 5-1: config 0 descriptor??
[ 1257.039386][ T4305] qmi_wwan 5-1:0.207: bogus CDC Union: master=0, slave=1
[ 1257.095191][T27728] loop3: detected capacity change from 0 to 8192
[ 1257.119771][T27728] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1257.230587][ T4305] qmi_wwan: probe of 5-1:0.207 failed with error -22
[ 1257.306717][ T4496] ath9k_htc 8-1:1.0: ath9k_htc: Target is unresponsive
[ 1257.313808][ T4496] ath9k_htc: Failed to initialize the device
[ 1257.365161][ T6867] usb 8-1: ath9k_htc: USB layer deinitialized
[ 1257.443010][ T4305] usb 5-1: USB disconnect, device number 52
[ 1257.940671][T27775] netlink: 'syz.7.15026': attribute type 5 has an invalid length.
[ 1257.989956][T27775] netlink: 'syz.7.15026': attribute type 11 has an invalid length.
[ 1258.462288][T27799] delete_channel: no stack
[ 1258.572079][T27808] loop3: detected capacity change from 0 to 64
[ 1258.669684][   T26] audit: type=1400 audit(2000001039.448:2099): apparmor="DENIED" operation="change_profile" info="label not found" error=-22 profile="unconfined" name="&" pid=27812 comm="syz.2.15040"
[ 1259.631472][T27859] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15055'.
[ 1259.661998][T27859] netlink: 20 bytes leftover after parsing attributes in process `syz.4.15055'.
[ 1260.023661][T27876] loop6: detected capacity change from 0 to 64
[ 1260.075822][T27880] netlink: 20 bytes leftover after parsing attributes in process `syz.3.15060'.
[ 1260.080257][T27881] loop4: detected capacity change from 0 to 1024
[ 1260.167629][T27881] hfsplus: request for non-existent node 3 in B*Tree
[ 1260.231585][T27881] hfsplus: request for non-existent node 3 in B*Tree
[ 1260.478424][T27893] cgroup2: Unexpected value for 'nsdelegate'
[ 1260.963830][T27924] loop7: detected capacity change from 0 to 256
[ 1261.087802][T27924] FAT-fs (loop7): Unrecognized mount option "ìoûZǺ
[ 1261.087802][T27924] e=1" or missing value
[ 1261.184160][T27936] ip6t_REJECT: TCP_RESET illegal for non-tcp
[ 1261.466528][T27952] netlink: 32 bytes leftover after parsing attributes in process `syz.2.15084'.
[ 1261.917672][T27970] loop3: detected capacity change from 0 to 1764
[ 1261.994845][T27970] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1262.246900][T27987] loop7: detected capacity change from 0 to 1024
[ 1262.318695][T27987] syz.7.15096: attempt to access beyond end of device
[ 1262.318695][T27987] loop7: rw=0, sector=5778, nr_sectors = 2 limit=1024
[ 1262.693808][T28000] loop6: detected capacity change from 0 to 8192
[ 1262.772551][T28000] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1262.837912][T28000] REISERFS (device loop6): found reiserfs format "3.5" with non-standard journal
[ 1262.858280][T28000] REISERFS (device loop6): using ordered data mode
[ 1262.864894][T28000] reiserfs: using flush barriers
[ 1262.936475][T28000] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1263.097497][T28000] REISERFS (device loop6): checking transaction log (loop6)
[ 1263.141753][T28000] REISERFS (device loop6): Using r5 hash to sort names
[ 1263.165294][T28035] netlink: 24 bytes leftover after parsing attributes in process `syz.3.15108'.
[ 1263.723373][T28055] netlink: 'syz.2.15116': attribute type 24 has an invalid length.
[ 1264.177510][T28074] netlink: 'syz.6.15122': attribute type 2 has an invalid length.
[ 1264.598563][ T4305] kernel write not supported for file /6194/net/sockstat (pid: 4305 comm: kworker/1:7)
[ 1264.644488][T28083] loop3: detected capacity change from 0 to 8192
[ 1264.682715][T28083] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1264.737674][T28083] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[ 1264.763124][T28083] REISERFS (device loop3): using ordered data mode
[ 1264.783554][T28083] reiserfs: using flush barriers
[ 1264.804044][T28083] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1264.820886][T28083] REISERFS (device loop3): checking transaction log (loop3)
[ 1264.831861][T28083] REISERFS (device loop3): Using r5 hash to sort names
[ 1264.839270][T28083] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[ 1264.853265][T28083] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[ 1265.201275][ T4305] kernel write not supported for file /input/event2 (pid: 4305 comm: kworker/1:7)
[ 1265.560746][T28097] loop7: detected capacity change from 0 to 32768
[ 1265.583639][T28134] netlink: 'syz.6.15138': attribute type 2 has an invalid length.
[ 1265.604163][T28097] BTRFS info (device loop7): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1265.622721][T28097] BTRFS info (device loop7): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1265.649652][T28097] BTRFS info (device loop7): force zlib compression, level 3
[ 1265.675396][T28097] BTRFS info (device loop7): force clearing of disk cache
[ 1265.742681][T28097] BTRFS info (device loop7): setting nodatasum
[ 1265.786819][T28097] BTRFS info (device loop7): allowing degraded mounts
[ 1265.793675][T28097] BTRFS info (device loop7): enabling disk space caching
[ 1265.826718][T28097] BTRFS info (device loop7): disk space caching is enabled
[ 1265.863687][T28147] ieee802154 phy0 wpan0: encryption failed: -22
[ 1266.207219][T28097] BTRFS info (device loop7): rebuilding free space tree
[ 1266.298381][T28097] BTRFS info (device loop7): disabling free space tree
[ 1266.305488][T28097] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1266.350702][T28097] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1266.481745][T28097] BTRFS info (device loop7): balance: start -sprofiles=data|system|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800,usage=6,usage=6..0,drange=18446744073709551614..70368744177664
[ 1266.586278][T28097] BTRFS info (device loop7): balance: ended with status: 0
[ 1266.721112][T18391] BTRFS info (device loop7): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1267.135982][T28221] loop4: detected capacity change from 0 to 512
[ 1267.179444][T28221] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1267.334109][T28221] EXT4-fs (loop4): 1 truncate cleaned up
[ 1267.355261][T28221] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1267.412993][T28221] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2195: inode #15: comm syz.4.15160: corrupted in-inode xattr
[ 1267.583130][T28221] EXT4-fs warning (device loop4): ext4_xattr_set_entry:1732: inode #15: comm syz.4.15160: unable to update i_inline_off
[ 1267.607264][T28221] EXT4-fs error (device loop4): ext4_xattr_ibody_get:603: inode #15: comm syz.4.15160: corrupted in-inode xattr
[ 1267.630929][T28280] netlink: 'syz.7.15156': attribute type 1 has an invalid length.
[ 1267.819524][ T4261] EXT4-fs (loop4): unmounting filesystem.
[ 1268.217272][T28305] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[ 1268.556551][T14902] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[ 1268.746467][T14902] usb 7-1: Using ep0 maxpacket: 16
[ 1268.754386][T14902] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1268.808228][T14902] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1268.818472][T14902] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1268.849878][T14902] usb 7-1: Product: syz
[ 1268.854110][T14902] usb 7-1: Manufacturer: syz
[ 1268.856535][T28345] loop4: detected capacity change from 0 to 256
[ 1268.866994][T14902] usb 7-1: SerialNumber: syz
[ 1268.884436][T14902] usb 7-1: config 0 descriptor??
[ 1268.886547][T28345] exfat: Deprecated parameter 'namecase'
[ 1268.901378][T14902] hub 7-1:0.0: bad descriptor, ignoring hub
[ 1268.914759][T14902] hub: probe of 7-1:0.0 failed with error -5
[ 1268.936927][T14902] input: syz syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input45
[ 1268.963961][T28345] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[ 1269.050742][   T26] audit: type=1326 audit(2000001049.828:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28352 comm="syz.7.15185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1269.149704][   T26] audit: type=1326 audit(2000001049.878:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28352 comm="syz.7.15185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1269.201234][   T26] audit: type=1326 audit(2000001049.968:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28352 comm="syz.7.15185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1269.238491][   T26] audit: type=1326 audit(2000001049.968:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28352 comm="syz.7.15185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1269.285163][   T26] audit: type=1326 audit(2000001049.968:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28352 comm="syz.7.15185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1269.367112][T14902] usb 7-1: USB disconnect, device number 27
[ 1269.667188][T28379] netlink: 'syz.7.15192': attribute type 11 has an invalid length.
[ 1270.318170][T28415] loop7: detected capacity change from 0 to 512
[ 1270.354590][T28415] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1270.431147][T28415] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1270.466720][T28415] ext4 filesystem being mounted at /468/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1270.819212][T18391] EXT4-fs (loop7): unmounting filesystem.
[ 1270.858370][T28450] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[ 1271.256595][T14904] usb 8-1: new low-speed USB device number 11 using dummy_hcd
[ 1271.269452][T28470] netlink: 4 bytes leftover after parsing attributes in process `syz.6.15216'.
[ 1271.390917][   T26] audit: type=1326 audit(2000001052.168:2105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28474 comm="syz.2.15218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1271.448459][T14904] usb 8-1: config index 0 descriptor too short (expected 1307, got 27)
[ 1271.466589][T14904] usb 8-1: config 0 has an invalid interface number: 0 but max is -1
[ 1271.481438][   T26] audit: type=1326 audit(2000001052.168:2106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28474 comm="syz.2.15218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1271.514796][T14904] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 0
[ 1271.534429][T14904] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[ 1271.551922][   T26] audit: type=1326 audit(2000001052.208:2107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28474 comm="syz.2.15218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1271.585102][T14904] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[ 1271.626144][T14904] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1271.663029][T14904] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[ 1271.682818][   T26] audit: type=1326 audit(2000001052.208:2108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28474 comm="syz.2.15218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1271.739459][T14904] usb 8-1: string descriptor 0 read error: -22
[ 1271.745782][T14904] usb 8-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[ 1271.785911][   T26] audit: type=1326 audit(2000001052.208:2109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28474 comm="syz.2.15218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1271.826514][T14904] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1271.833710][T28490] overlayfs: missing 'lowerdir'
[ 1271.856718][T14904] usb 8-1: config 0 descriptor??
[ 1271.886835][T14904] hub 8-1:0.0: bad descriptor, ignoring hub
[ 1271.892907][T14904] hub: probe of 8-1:0.0 failed with error -5
[ 1271.928517][T14904] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/input/input46
[ 1272.944445][T28549] netlink: 16 bytes leftover after parsing attributes in process `syz.6.15241'.
[ 1272.987391][T28549] netlink: 16 bytes leftover after parsing attributes in process `syz.6.15241'.
[ 1273.019984][T28549] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[ 1273.181613][T28549] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1273.208857][T28592] netlink: 32 bytes leftover after parsing attributes in process `syz.2.15246'.
[ 1273.687977][T14904] usb 8-1: USB disconnect, device number 11
[ 1273.866936][ T4305] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1273.933969][T28646] IPVS: length: 178 != 8
[ 1274.058560][ T4305] usb 4-1: config 0 has an invalid interface number: 142 but max is 0
[ 1274.083734][ T4305] usb 4-1: config 0 has no interface number 0
[ 1274.116871][ T4305] usb 4-1: New USB device found, idVendor=1df7, idProduct=2500, bcdDevice= 0.5e
[ 1274.176370][ T4305] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1274.204944][ T4305] usb 4-1: Product: syz
[ 1274.226358][ T4305] usb 4-1: Manufacturer: syz
[ 1274.235840][   T52] block nbd6: Attempted send on invalid socket
[ 1274.242259][   T52] I/O error, dev nbd6, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1274.251104][T28660] loop4: detected capacity change from 0 to 512
[ 1274.252106][ T4305] usb 4-1: SerialNumber: syz
[ 1274.272824][T28658] vxfs: unable to read disk superblock at 1
[ 1274.290483][ T4305] usb 4-1: config 0 descriptor??
[ 1274.301957][   T52] block nbd6: Attempted send on invalid socket
[ 1274.308338][   T52] I/O error, dev nbd6, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1274.321252][T28658] vxfs: unable to read disk superblock at 8
[ 1274.370174][T28658] vxfs: can't find superblock.
[ 1274.388117][T28660] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1274.426646][T28660] ext4 filesystem being mounted at /3104/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1274.471916][T28674] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15263'.
[ 1274.594830][ T4261] EXT4-fs (loop4): unmounting filesystem.
[ 1274.768028][T28686] netlink: 'syz.2.15266': attribute type 1 has an invalid length.
[ 1274.775915][T28686] netlink: 'syz.2.15266': attribute type 3 has an invalid length.
[ 1274.834730][T28686] netlink: 224 bytes leftover after parsing attributes in process `syz.2.15266'.
[ 1274.982945][ T4305] msi2500 4-1:0.142: Registered as swradio24
[ 1274.994005][ T4305] msi2500 4-1:0.142: SDR API is still slightly experimental and functionality changes may follow
[ 1275.066717][ T4305] usb 4-1: USB disconnect, device number 46
[ 1275.372696][T28725] kcapi: manufacturer command 18446744073709551608 unknown.
[ 1275.806156][T28749] overlayfs: conflicting options: userxattr,metacopy=on
[ 1275.855756][T28753] xt_hashlimit: max too large, truncated to 1048576
[ 1276.271466][T28771] loop3: detected capacity change from 0 to 512
[ 1276.338459][T28771] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1276.484760][T28771] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[ 1276.537830][T28771] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec02c, mo2=0002]
[ 1276.597260][T28771] System zones: 0-2, 18-18, 34-34
[ 1276.637413][T28771] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1276.726107][T28771] EXT4-fs (loop3): 1 truncate cleaned up
[ 1276.745789][T28771] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1276.832316][T28771] EXT4-fs error (device loop3): ext4_generic_delete_entry:2729: inode #2: block 3: comm syz.3.15287: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[ 1276.996958][T28771] EXT4-fs (loop3): Remounting filesystem read-only
[ 1277.016583][T28771] EXT4-fs error (device loop3) in ext4_delete_entry:2800: Corrupt filesystem
[ 1277.034924][T28815] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15299'.
[ 1277.037523][T28771] EXT4-fs (loop3): Remounting filesystem read-only
[ 1277.156696][T14902] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[ 1277.175925][ T4258] EXT4-fs (loop3): unmounting filesystem.
[ 1277.346591][T14902] usb 7-1: Using ep0 maxpacket: 8
[ 1277.353620][T14902] usb 7-1: config 93 has an invalid interface number: 31 but max is 0
[ 1277.386749][T14902] usb 7-1: config 93 has an invalid descriptor of length 0, skipping remainder of the config
[ 1277.410504][T14902] usb 7-1: config 93 has no interface number 0
[ 1277.442134][T14902] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[ 1277.476481][T14902] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1277.504964][T14902] usb 7-1: Product: syz
[ 1277.515094][T14902] usb 7-1: Manufacturer: syz
[ 1277.534918][T14902] usb 7-1: SerialNumber: syz
[ 1277.573586][T14902] usb 7-1: Found UVC 0.00 device syz (046d:08c3)
[ 1277.600794][T14902] usb 7-1: No valid video chain found.
[ 1277.610295][T28839] loop4: detected capacity change from 0 to 2048
[ 1277.671220][T28839] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1277.768242][T14902] usb 7-1: USB disconnect, device number 28
[ 1277.824583][T28852] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[ 1277.876542][T28852] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[ 1277.911802][T28852] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[ 1277.958699][T28852] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[ 1278.014276][T28852] IPv6: ADDRCONF(NETDEV_CHANGE): geneve3: link becomes ready
[ 1278.310352][T28875] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (8)
[ 1278.371748][T28880] netlink: 'syz.4.15317': attribute type 6 has an invalid length.
[ 1278.598347][T28891] loop7: detected capacity change from 0 to 512
[ 1278.653280][T28895] loop4: detected capacity change from 0 to 1024
[ 1278.724424][T28891] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1278.821956][T28891] ext4 filesystem being mounted at /483/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1278.836001][T28895] fuse: Bad value for 'fd'
[ 1279.025115][ T4304] hfsplus: b-tree write err: -5, ino 4
[ 1279.112025][T18391] EXT4-fs (loop7): unmounting filesystem.
[ 1279.328250][T28926] netlink: 'syz.7.15327': attribute type 16 has an invalid length.
[ 1279.529206][ T4305] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[ 1279.593434][T28936] netlink: 28 bytes leftover after parsing attributes in process `syz.3.15330'.
[ 1279.782999][ T4305] usb 5-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 1279.819920][ T4305] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1279.836631][ T4305] usb 5-1: Product: syz
[ 1279.846649][ T4305] usb 5-1: Manufacturer: syz
[ 1279.851391][ T4305] usb 5-1: SerialNumber: syz
[ 1279.868628][ T4305] r8152-cfgselector 5-1: config 0 descriptor??
[ 1280.327041][ T4305] r8152-cfgselector 5-1: Unknown version 0x0000
[ 1280.352395][ T4305] r8152-cfgselector 5-1: USB disconnect, device number 53
[ 1280.666148][T28993] netlink: 'syz.2.15347': attribute type 12 has an invalid length.
[ 1280.694384][T28993] netlink: 'syz.2.15347': attribute type 12 has an invalid length.
[ 1280.707666][T28993] netlink: 'syz.2.15347': attribute type 12 has an invalid length.
[ 1280.864095][T29002] sctp: [Deprecated]: syz.7.15350 (pid 29002) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1280.864095][T29002] Use struct sctp_sack_info instead
[ 1281.134376][T29013] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15353'.
[ 1281.163548][T29013] netlink: 56 bytes leftover after parsing attributes in process `syz.3.15353'.
[ 1281.367042][T29024] netlink: 8 bytes leftover after parsing attributes in process `syz.2.15358'.
[ 1282.194225][T29066] loop4: detected capacity change from 0 to 2048
[ 1282.275854][T29066] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1282.315447][T29066] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1282.366624][T29066] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[ 1282.374345][T29066] UDF-fs: Scanning with blocksize 512 failed
[ 1282.420568][T29079] netlink: 'syz.3.15375': attribute type 4 has an invalid length.
[ 1282.448031][T29066] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1282.627144][T29084] loop6: detected capacity change from 0 to 256
[ 1282.647523][T29084] exfat: Deprecated parameter 'namecase'
[ 1282.658130][T29084] exfat: Deprecated parameter 'namecase'
[ 1282.769033][T29084] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[ 1282.829891][T29096] tmpfs: Bad value for 'mpol'
[ 1284.323483][T29166] netlink: 32 bytes leftover after parsing attributes in process `syz.3.15402'.
[ 1284.368703][T29136] loop4: detected capacity change from 0 to 32768
[ 1284.404876][T29136] (syz.4.15393,29136,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1284.477514][T29136] (syz.4.15393,29136,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1284.604960][T29136] JBD2: Ignoring recovery information on journal
[ 1284.765016][T29136] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1284.934065][ T4305] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[ 1285.041943][ T4261] ocfs2: Unmounting device (7,4) on (node local)
[ 1285.152562][ T4305] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1285.174779][ T4305] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1285.200767][ T4305] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1285.221329][ T4305] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1285.254005][T29182] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[ 1285.508057][T29191] loop7: detected capacity change from 0 to 32768
[ 1285.573302][T29191] read_mapping_page failed!
[ 1285.579124][T29191] ialloc: diAlloc returned -5!
[ 1285.704729][T14902] usb 7-1: USB disconnect, device number 29
[ 1285.885900][T29239] netlink: 'syz.4.15412': attribute type 10 has an invalid length.
[ 1285.913396][T29197] loop3: detected capacity change from 0 to 32768
[ 1285.973217][T29197] JBD2: Ignoring recovery information on journal
[ 1286.158959][T29197] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1286.365570][ T4258] ocfs2: Unmounting device (7,3) on (node local)
[ 1286.407829][ T4305] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[ 1286.617894][ T4305] usb 8-1: config 0 has an invalid interface number: 207 but max is 0
[ 1286.626149][ T4305] usb 8-1: config 0 has no interface number 0
[ 1286.675699][ T4305] usb 8-1: New USB device found, idVendor=12d1, idProduct=ed56, bcdDevice=46.dd
[ 1286.695991][ T4305] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1286.733114][ T4305] usb 8-1: Product: syz
[ 1286.747011][ T4305] usb 8-1: Manufacturer: syz
[ 1286.751775][ T4305] usb 8-1: SerialNumber: syz
[ 1286.773027][ T4305] usb 8-1: config 0 descriptor??
[ 1286.792747][ T4305] qmi_wwan 8-1:0.207: bogus CDC Union: master=0, slave=1
[ 1286.941754][T29286] netlink: 48 bytes leftover after parsing attributes in process `syz.4.15423'.
[ 1287.018353][ T4305] qmi_wwan: probe of 8-1:0.207 failed with error -22
[ 1287.198144][T29299] netlink: 'syz.4.15426': attribute type 1 has an invalid length.
[ 1287.225992][T29299] netlink: 'syz.4.15426': attribute type 3 has an invalid length.
[ 1287.242993][T29299] netlink: 224 bytes leftover after parsing attributes in process `syz.4.15426'.
[ 1287.248786][T14902] usb 8-1: USB disconnect, device number 12
[ 1288.007636][T29341] netlink: 'syz.3.15438': attribute type 2 has an invalid length.
[ 1288.030944][T29343] netlink: zone id is out of range
[ 1288.036198][T29343] netlink: zone id is out of range
[ 1288.736510][T29362] loop6: detected capacity change from 0 to 8192
[ 1288.773979][T29362] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1288.836808][T29362] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal
[ 1288.882312][T29362] REISERFS (device loop6): using ordered data mode
[ 1288.922985][T29362] reiserfs: using flush barriers
[ 1288.987120][T29362] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1289.069733][T29362] REISERFS (device loop6): checking transaction log (loop6)
[ 1289.113538][T29362] REISERFS (device loop6): Using r5 hash to sort names
[ 1289.137295][T29362] REISERFS warning (device loop6): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[ 1289.198391][T29362] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[ 1289.311437][T29394] loop4: detected capacity change from 0 to 8
[ 1289.437772][T29394] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1289.456620][T29394] SQUASHFS error: Failed to read block 0x29b: -5
[ 1289.463023][T29394] SQUASHFS error: Unable to read metadata cache entry [299]
[ 1289.829998][T29412] ieee802154 phy0 wpan0: encryption failed: -90
[ 1290.194626][T29427] netlink: 32 bytes leftover after parsing attributes in process `syz.6.15463'.
[ 1290.364086][T29437] loop7: detected capacity change from 0 to 512
[ 1290.425996][T29437] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1290.528149][T29437] EXT4-fs (loop7): 1 truncate cleaned up
[ 1290.534013][T29437] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1290.645030][T29437] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2195: inode #15: comm syz.7.15467: corrupted in-inode xattr
[ 1290.708514][T29437] EXT4-fs warning (device loop7): ext4_xattr_set_entry:1732: inode #15: comm syz.7.15467: unable to update i_inline_off
[ 1290.744398][T29437] EXT4-fs error (device loop7): ext4_xattr_ibody_get:603: inode #15: comm syz.7.15467: corrupted in-inode xattr
[ 1290.975295][T18391] EXT4-fs (loop7): unmounting filesystem.
[ 1291.174752][T29485] netlink: 16 bytes leftover after parsing attributes in process `syz.4.15481'.
[ 1291.290260][   T26] audit: type=1326 audit(2000001072.068:2110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29492 comm="syz.2.15484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1291.317373][T12020] kworker/dying (12020) used greatest stack depth: 15208 bytes left
[ 1291.439605][   T26] audit: type=1326 audit(2000001072.128:2111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29492 comm="syz.2.15484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1291.529199][   T26] audit: type=1326 audit(2000001072.128:2112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29492 comm="syz.2.15484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1291.635226][   T26] audit: type=1326 audit(2000001072.128:2113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29492 comm="syz.2.15484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb858e969 code=0x7ffc0000
[ 1292.206016][T29527] loop7: detected capacity change from 0 to 8192
[ 1292.216486][T29542] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15500'.
[ 1292.228920][T29541] loop4: detected capacity change from 0 to 512
[ 1292.263189][T29527] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1292.286554][T29527] REISERFS (device loop7): found reiserfs format "3.5" with non-standard journal
[ 1292.295822][T29527] REISERFS (device loop7): using ordered data mode
[ 1292.316464][T14902] usb 4-1: new low-speed USB device number 47 using dummy_hcd
[ 1292.344451][T29547] loop6: detected capacity change from 0 to 256
[ 1292.376766][T29527] reiserfs: using flush barriers
[ 1292.401462][T29527] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1292.403405][T29541] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1292.427544][T29527] REISERFS (device loop7): checking transaction log (loop7)
[ 1292.438437][T29541] ext4 filesystem being mounted at /3149/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1292.449245][T29547] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[ 1292.502522][T29527] REISERFS (device loop7): Using r5 hash to sort names
[ 1292.538947][T14902] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1292.547291][T29527] REISERFS (device loop7): Created .reiserfs_priv - reserved for xattr storage.
[ 1292.570836][T29541] EXT4-fs warning (device loop4): ext4_empty_dir:3156: inode #12: comm syz.4.15499: directory missing '..'
[ 1292.577433][T14902] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[ 1292.646586][T14902] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 is Bulk; changing to Interrupt
[ 1292.700049][ T4261] EXT4-fs (loop4): unmounting filesystem.
[ 1292.706503][T14902] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1292.716203][T14902] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1292.777152][T14902] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[ 1292.786529][T14902] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1292.860177][T14902] usb 4-1: config 0 descriptor??
[ 1292.865855][T29530] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1293.163583][ T4305] usb 4-1: USB disconnect, device number 47
[ 1293.519446][T29598] netlink: 204732 bytes leftover after parsing attributes in process `syz.4.15512'.
[ 1294.218059][ T4305] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[ 1294.418347][ T4305] usb 8-1: config 0 has an invalid interface number: 142 but max is 0
[ 1294.451232][ T4305] usb 8-1: config 0 has no interface number 0
[ 1294.480735][ T4305] usb 8-1: New USB device found, idVendor=1df7, idProduct=2500, bcdDevice= 0.5e
[ 1294.510889][ T4305] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1294.531156][ T4305] usb 8-1: Product: syz
[ 1294.535389][ T4305] usb 8-1: Manufacturer: syz
[ 1294.558067][ T4305] usb 8-1: SerialNumber: syz
[ 1294.594258][ T4305] usb 8-1: config 0 descriptor??
[ 1295.125207][ T4305] msi2500 8-1:0.142: Registered as swradio24
[ 1295.163404][ T4305] msi2500 8-1:0.142: SDR API is still slightly experimental and functionality changes may follow
[ 1295.198352][ T4305] usb 8-1: USB disconnect, device number 13
[ 1296.810801][T29778] xt_hashlimit: max too large, truncated to 1048576
[ 1297.064432][T29786] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15564'.
[ 1297.577142][ T4305] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[ 1297.615791][T29822] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.15577'.
[ 1297.617040][T29824] netlink: 28 bytes leftover after parsing attributes in process `syz.6.15576'.
[ 1297.635431][T29824] netlink: 28 bytes leftover after parsing attributes in process `syz.6.15576'.
[ 1297.656627][T29822] netlink: zone id is out of range
[ 1297.788139][ T4305] usb 8-1: config 0 has an invalid interface number: 95 but max is 0
[ 1297.831772][ T4305] usb 8-1: config 0 has no interface number 0
[ 1297.846373][ T4305] usb 8-1: config 0 interface 95 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 8
[ 1297.868256][ T4305] usb 8-1: New USB device found, idVendor=7725, idProduct=b0a8, bcdDevice= 7.46
[ 1297.882713][T29834] loop4: detected capacity change from 0 to 1764
[ 1297.885506][ T4305] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1297.926423][ T4305] usb 8-1: Product: syz
[ 1297.930657][ T4305] usb 8-1: Manufacturer: syz
[ 1297.959545][ T4305] usb 8-1: SerialNumber: syz
[ 1297.984490][ T4305] usb 8-1: config 0 descriptor??
[ 1297.996101][T29802] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[ 1298.217235][ T4305] usb 8-1: MIDIStreaming interface descriptor not found
[ 1298.276885][ T4305] usb 8-1: USB disconnect, device number 14
[ 1298.609505][ T4242] udevd[4242]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.95/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1298.727565][T29895] loop6: detected capacity change from 0 to 4096
[ 1298.773447][T29895] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512)
[ 1298.863249][T29895] ntfs3: loop6: failed to convert "c46c" to cp437
[ 1300.191463][T29975] netlink: 'syz.2.15616': attribute type 3 has an invalid length.
[ 1300.494423][T29992] loop3: detected capacity change from 0 to 64
[ 1300.547208][T29992] hfs: unable to locate alternate MDB
[ 1300.596528][T29992] hfs: continuing without an alternate MDB
[ 1300.800908][T30004] netlink: 16186 bytes leftover after parsing attributes in process `syz.7.15624'.
[ 1300.920551][T30015] loop6: detected capacity change from 0 to 128
[ 1300.971672][T30015] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[ 1301.067922][T30015] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[ 1301.123302][T30015] FAT-fs (loop6): Filesystem has been set read-only
[ 1301.128873][T30023] loop7: detected capacity change from 0 to 256
[ 1301.288175][T27010] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[ 1301.436707][T14902] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[ 1301.503665][T30046] netlink: 'syz.7.15635': attribute type 29 has an invalid length.
[ 1301.530031][T30046] netlink: 'syz.7.15635': attribute type 29 has an invalid length.
[ 1301.549311][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1301.556026][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1301.639118][T14902] usb 4-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[ 1301.676465][T14902] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1301.707853][T14902] usb 4-1: config 0 descriptor??
[ 1301.729233][T14902] gspca_main: STV06xx-2.14.0 probing 046d:0870
[ 1302.008643][T30068] loop6: detected capacity change from 0 to 1024
[ 1302.128349][T14902] gspca_stv06xx: I2C: Read error writing address: -71
[ 1302.150393][T14902] usb 4-1: USB disconnect, device number 48
[ 1302.253085][T15055] hfsplus: b-tree write err: -5, ino 4
[ 1302.427758][T30093] loop6: detected capacity change from 0 to 1024
[ 1302.481607][T30092] loop4: detected capacity change from 0 to 4096
[ 1302.509404][T30092] ntfs3: loop4: ino=3, Correct links count -> 2.
[ 1302.585275][T30092] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[ 1303.005448][T30107] syz.6.15651: attempt to access beyond end of device
[ 1303.005448][T30107] sda: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=4194304
[ 1303.042074][T30112] netlink: 'syz.3.15652': attribute type 7 has an invalid length.
[ 1303.051088][T30112] netlink: 'syz.3.15652': attribute type 8 has an invalid length.
[ 1303.125094][T30088] loop7: detected capacity change from 0 to 32768
[ 1303.184023][T30088] ERROR: (device loop7): diAllocBit: iag inconsistent
[ 1303.184023][T30088] 
[ 1303.224556][T30088] ialloc: diAlloc returned -5!
[ 1303.329640][T30125] loop4: detected capacity change from 0 to 64
[ 1304.011109][T30151] loop6: detected capacity change from 0 to 4096
[ 1304.049057][T30151] ntfs3: loop6: Different NTFS' sector size (1024) and media sector size (512)
[ 1304.286052][T30172] bond0: Unable to set up delay as MII monitoring is disabled
[ 1304.750975][T30183] loop4: detected capacity change from 0 to 4096
[ 1305.030072][T30203] netlink: 12 bytes leftover after parsing attributes in process `syz.6.15677'.
[ 1305.067089][T30203] netlink: 8 bytes leftover after parsing attributes in process `syz.6.15677'.
[ 1305.076104][T30203] netlink: 8 bytes leftover after parsing attributes in process `syz.6.15677'.
[ 1305.901257][T30247] loop3: detected capacity change from 0 to 512
[ 1305.918675][T30247] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1305.998116][T30247] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1306.028966][T30247] ext4 filesystem being mounted at /3173/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1306.256275][ T4258] EXT4-fs (loop3): unmounting filesystem.
[ 1307.218361][T30315] loop6: detected capacity change from 0 to 16
[ 1307.258515][T30315] erofs: (device loop6): mounted with root inode @ nid 36.
[ 1308.575022][T30386] loop4: detected capacity change from 0 to 64
[ 1308.591735][T30385] loop6: detected capacity change from 0 to 256
[ 1309.136110][T30370] loop7: detected capacity change from 0 to 32768
[ 1309.216566][T14893] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[ 1309.242765][T30417] loop3: detected capacity change from 0 to 512
[ 1309.310359][T30417] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[ 1309.342336][T30370] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1309.382392][T30417] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[ 1309.419662][T14893] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1309.469665][T14893] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1309.479770][T30417] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.15742: Failed to acquire dquot type 1
[ 1309.532541][T14893] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1309.564049][T30417] EXT4-fs (loop3): 1 truncate cleaned up
[ 1309.576420][T14893] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1309.584793][T30417] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1309.600505][T14893] usb 5-1: SerialNumber: syz
[ 1309.605905][T30417] ext4 filesystem being mounted at /3182/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1309.646259][T18391] ocfs2: Unmounting device (7,7) on (node local)
[ 1309.752451][ T4258] EXT4-fs (loop3): unmounting filesystem.
[ 1309.802211][T30444] loop7: detected capacity change from 0 to 64
[ 1309.847043][T14893] usb 5-1: 0:2 : does not exist
[ 1309.903067][T14893] usb 5-1: USB disconnect, device number 54
[ 1310.243086][ T4917] udevd[4917]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1310.533447][T30493] loop7: detected capacity change from 0 to 512
[ 1310.631683][T30493] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1310.659718][T30493] ext4 filesystem being mounted at /564/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1310.697854][T30493] EXT4-fs warning (device loop7): ext4_empty_dir:3156: inode #12: comm syz.7.15757: directory missing '..'
[ 1310.724931][   T26] audit: type=1326 audit(2000001091.498:2114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30504 comm="syz.3.15759" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f344a58e969 code=0x0
[ 1310.950215][T18391] EXT4-fs (loop7): unmounting filesystem.
[ 1311.479525][T30546] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15771'.
[ 1311.495820][T30549] loop4: detected capacity change from 0 to 128
[ 1311.578895][T30552] loop7: detected capacity change from 0 to 64
[ 1311.596954][T30549] FAT-fs (loop4): error, clusters badly computed (4 != 3)
[ 1311.607665][T30549] FAT-fs (loop4): Filesystem has been set read-only
[ 1311.656741][T30549] FAT-fs (loop4): error, clusters badly computed (5 != 4)
[ 1311.696979][T30549] FAT-fs (loop4): error, clusters badly computed (6 != 5)
[ 1311.986605][T30577] netlink: 'syz.4.15778': attribute type 10 has an invalid length.
[ 1312.556565][T30636] netlink: 'syz.3.15787': attribute type 21 has an invalid length.
[ 1313.633741][   T26] audit: type=1326 audit(2000001094.408:2115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30688 comm="syz.4.15806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418c38e969 code=0x7ffc0000
[ 1313.656356][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1313.697608][   T26] audit: type=1326 audit(2000001094.448:2116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30688 comm="syz.4.15806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f418c38d2d0 code=0x7ffc0000
[ 1313.773118][   T26] audit: type=1326 audit(2000001094.448:2117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30688 comm="syz.4.15806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f418c390197 code=0x7ffc0000
[ 1313.865763][   T26] audit: type=1326 audit(2000001094.448:2118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30688 comm="syz.4.15806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f418c38e969 code=0x7ffc0000
[ 1313.926254][   T26] audit: type=1326 audit(2000001094.448:2119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30688 comm="syz.4.15806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f418c390197 code=0x7ffc0000
[ 1313.956941][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1314.033743][   T26] audit: type=1326 audit(2000001094.448:2120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30688 comm="syz.4.15806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f418c38d5ca code=0x7ffc0000
[ 1314.056200][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1314.107488][   T26] audit: type=1326 audit(2000001094.448:2121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30688 comm="syz.4.15806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f418c38e969 code=0x7ffc0000
[ 1315.216732][ T4305] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[ 1315.446410][ T4305] usb 7-1: Using ep0 maxpacket: 8
[ 1315.458584][ T4305] usb 7-1: config 0 has an invalid interface number: 31 but max is 0
[ 1315.466110][T30765] netlink: 'syz.2.15826': attribute type 1 has an invalid length.
[ 1315.483113][T30765] netlink: 244 bytes leftover after parsing attributes in process `syz.2.15826'.
[ 1315.487365][ T4305] usb 7-1: config 0 has no interface number 0
[ 1315.542331][ T4305] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[ 1315.576341][ T4305] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1315.584411][ T4305] usb 7-1: Product: syz
[ 1315.627154][ T4305] usb 7-1: Manufacturer: syz
[ 1315.632038][ T4305] usb 7-1: SerialNumber: syz
[ 1315.675226][ T4305] usb 7-1: config 0 descriptor??
[ 1315.898864][T30745] loop3: detected capacity change from 0 to 32768
[ 1315.902079][ T4305] usb 7-1: Found UVC 0.04 device syz (046d:08c3)
[ 1315.932574][ T4305] usb 7-1: Failed to initialize entity for entity 6
[ 1315.975590][ T4305] usb 7-1: Failed to register entities (-22).
[ 1316.043191][T30745] XFS (loop3): Mounting V5 Filesystem
[ 1316.091182][T30792] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1316.160654][ T4305] usb 7-1: USB disconnect, device number 30
[ 1316.161969][T30745] XFS (loop3): Ending clean mount
[ 1316.648542][ T4258] XFS (loop3): Unmounting Filesystem
[ 1317.256422][T14893] usb 7-1: new full-speed USB device number 31 using dummy_hcd
[ 1317.293823][T30842] loop7: detected capacity change from 0 to 164
[ 1317.358159][T30842] iso9660: Corrupted directory entry in block 0 of inode 1792
[ 1317.449571][T14893] usb 7-1: config 0 has an invalid interface number: 176 but max is 2
[ 1317.472767][T14893] usb 7-1: config 0 has no interface number 1
[ 1317.486792][T14893] usb 7-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[ 1317.509327][T14893] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1317.540783][T14893] usb 7-1: config 0 descriptor??
[ 1317.754265][T14893] qcserial 7-1:0.2: Qualcomm USB modem converter detected
[ 1317.928473][T30869] loop7: detected capacity change from 0 to 512
[ 1317.977243][T14893] usb 7-1: USB disconnect, device number 31
[ 1317.995314][T14893] qcserial 7-1:0.2: device disconnected
[ 1318.081280][T30869] Quota error (device loop7): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[ 1318.143666][T30869] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[ 1318.166187][T30894] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15853'.
[ 1318.183862][T30869] EXT4-fs error (device loop7): ext4_acquire_dquot:6802: comm syz.7.15850: Failed to acquire dquot type 1
[ 1318.245556][T30869] EXT4-fs (loop7): 1 truncate cleaned up
[ 1318.258623][T30869] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1318.286710][T30869] ext4 filesystem being mounted at /586/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1318.430799][T18391] EXT4-fs (loop7): unmounting filesystem.
[ 1318.991029][T30936] loop4: detected capacity change from 0 to 256
[ 1319.091926][T30940] loop3: detected capacity change from 0 to 256
[ 1319.204414][T30945] netlink: 'syz.4.15868': attribute type 30 has an invalid length.
[ 1319.850970][T30973] loop4: detected capacity change from 0 to 8
[ 1320.021563][T30974] loop7: detected capacity change from 0 to 4096
[ 1320.286529][ T4305] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[ 1320.514863][ T4305] usb 5-1: Using ep0 maxpacket: 32
[ 1320.522535][ T4305] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1320.567663][ T4305] usb 5-1: config 7 has an invalid interface number: 128 but max is 0
[ 1320.587210][ T4305] usb 5-1: config 7 contains an unexpected descriptor of type 0x1, skipping
[ 1320.595959][ T4305] usb 5-1: config 7 has an invalid descriptor of length 148, skipping remainder of the config
[ 1320.597931][T31007] netlink: 'syz.2.15884': attribute type 10 has an invalid length.
[ 1320.661806][ T4305] usb 5-1: config 7 has no interface number 0
[ 1320.688253][ T4305] usb 5-1: config 7 interface 128 altsetting 2 has an invalid endpoint with address 0x17, skipping
[ 1320.739643][ T4305] usb 5-1: config 7 interface 128 altsetting 2 endpoint 0x87 has an invalid bInterval 209, changing to 11
[ 1320.774387][T31007] team0: Port device bond0 removed
[ 1320.826521][ T4305] usb 5-1: config 7 interface 128 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[ 1320.886382][ T4305] usb 5-1: config 7 interface 128 has no altsetting 0
[ 1320.908577][ T4305] usb 5-1: New USB device found, idVendor=6033, idProduct=4108, bcdDevice=cc.13
[ 1320.923863][ T4305] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1320.933176][ T4305] usb 5-1: Product: syz
[ 1320.953098][ T4305] usb 5-1: Manufacturer: syz
[ 1320.976365][ T4305] usb 5-1: SerialNumber: syz
[ 1321.028515][T30973] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1321.262525][ T4305] usb 5-1: MIDIStreaming interface descriptor not found
[ 1321.377901][ T4305] usb 5-1: USB disconnect, device number 55
[ 1321.698783][ T4269] udevd[4269]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:7.128/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1322.061180][T31094] netlink: 'syz.4.15905': attribute type 6 has an invalid length.
[ 1322.389368][T31113] netlink: 12 bytes leftover after parsing attributes in process `syz.6.15909'.
[ 1322.748922][T31130] loop7: detected capacity change from 0 to 8
[ 1322.905361][T31144] netlink: 20 bytes leftover after parsing attributes in process `syz.6.15919'.
[ 1322.986853][T31144] netlink: 'syz.6.15919': attribute type 1 has an invalid length.
[ 1323.258543][T31159] netlink: 24 bytes leftover after parsing attributes in process `syz.4.15926'.
[ 1323.400228][T31164] netlink: 'syz.2.15928': attribute type 2 has an invalid length.
[ 1323.427292][T31164] netlink: 8 bytes leftover after parsing attributes in process `syz.2.15928'.
[ 1323.459707][T31164] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1323.696787][T31177] vxcan1 speed is unknown, defaulting to 1000
[ 1323.731909][T31177] vxcan1 speed is unknown, defaulting to 1000
[ 1323.767237][T31177] vxcan1 speed is unknown, defaulting to 1000
[ 1323.865881][T31183] loop4: detected capacity change from 0 to 1764
[ 1323.992244][T31183] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1324.250950][T31177] infiniband syz2: set down
[ 1324.255610][T14903] vxcan1 speed is unknown, defaulting to 1000
[ 1324.271961][T31177] infiniband syz2: added vxcan1
[ 1324.369278][T31172] loop6: detected capacity change from 0 to 32768
[ 1324.434270][T31177] RDS/IB: syz2: added
[ 1324.458874][T31172] JBD2: Ignoring recovery information on journal
[ 1324.462591][T31177] smc: adding ib device syz2 with port count 1
[ 1324.499577][T31177] smc:    ib device syz2 port 1 has pnetid 
[ 1324.523337][T14903] vxcan1 speed is unknown, defaulting to 1000
[ 1324.562500][T31172] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1324.568818][T31177] vxcan1 speed is unknown, defaulting to 1000
[ 1324.665213][T31220] loop4: detected capacity change from 0 to 1764
[ 1324.809876][T27010] ocfs2: Unmounting device (7,6) on (node local)
[ 1324.992431][T31177] vxcan1 speed is unknown, defaulting to 1000
[ 1325.369665][T31177] vxcan1 speed is unknown, defaulting to 1000
[ 1325.719876][T31177] vxcan1 speed is unknown, defaulting to 1000
[ 1325.778244][T31270] netlink: 20 bytes leftover after parsing attributes in process `syz.4.15957'.
[ 1326.066861][T31177] vxcan1 speed is unknown, defaulting to 1000
[ 1326.578653][T31300] loop6: detected capacity change from 0 to 4096
[ 1326.779079][T31313] loop4: detected capacity change from 0 to 256
[ 1326.851833][T31313] FAT-fs (loop4): Directory bread(block 64) failed
[ 1326.881783][T31313] FAT-fs (loop4): Directory bread(block 65) failed
[ 1326.896193][T31313] FAT-fs (loop4): Directory bread(block 66) failed
[ 1326.923596][T31313] FAT-fs (loop4): Directory bread(block 67) failed
[ 1326.981507][T31313] FAT-fs (loop4): Directory bread(block 68) failed
[ 1327.020669][T31313] FAT-fs (loop4): Directory bread(block 69) failed
[ 1327.068711][T31313] FAT-fs (loop4): Directory bread(block 70) failed
[ 1327.075330][T31313] FAT-fs (loop4): Directory bread(block 71) failed
[ 1327.143468][T31313] FAT-fs (loop4): Directory bread(block 72) failed
[ 1327.194989][T31313] FAT-fs (loop4): Directory bread(block 73) failed
[ 1327.455133][   T26] audit: type=1326 audit(2000001108.228:2122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31335 comm="syz.6.15976" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f706ff8e969 code=0x0
[ 1327.943738][T31311] loop7: detected capacity change from 0 to 32768
[ 1327.985323][T31311] XFS: ikeep mount option is deprecated.
[ 1328.083749][T31311] XFS (loop7): Mounting V5 Filesystem
[ 1328.093840][T31374] loop6: detected capacity change from 0 to 512
[ 1328.149723][T31374] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1328.187187][T31374] ext4 filesystem being mounted at /1964/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1328.204048][T31311] XFS (loop7): Ending clean mount
[ 1328.242482][T31311] XFS (loop7): Quotacheck needed: Please wait.
[ 1328.359128][T31394] xt_ecn: cannot match TCP bits for non-tcp packets
[ 1328.400797][T27010] EXT4-fs (loop6): unmounting filesystem.
[ 1328.482329][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1328.527124][T31311] XFS (loop7): Quotacheck: Done.
[ 1328.677362][T18391] XFS (loop7): Unmounting Filesystem
[ 1329.286124][T31425] loop4: detected capacity change from 0 to 64
[ 1329.303387][T31388] loop3: detected capacity change from 0 to 32768
[ 1329.343075][T31388] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.15986 (31388)
[ 1329.419742][T31388] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1329.470829][T31388] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[ 1329.507946][T31388] BTRFS info (device loop3): using free space tree
[ 1329.610378][T31443] netlink: 'syz.6.16000': attribute type 13 has an invalid length.
[ 1329.666073][T31443] device veth0_macvtap left promiscuous mode
[ 1329.727003][T31443] device macvtap0 entered promiscuous mode
[ 1329.761482][T31443] macvtap0: refused to change device tx_queue_len
[ 1329.792584][T31388] BTRFS info (device loop3): enabling ssd optimizations
[ 1329.855918][ T4258] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1330.067142][T31470] UBIFS error (pid: 31470): cannot open "/dev/sg0", error -22
[ 1330.660786][T31496] netlink: 52 bytes leftover after parsing attributes in process `syz.3.16004'.
[ 1330.882641][T31508] loop3: detected capacity change from 0 to 16
[ 1330.915597][T31513] netlink: 'syz.2.16017': attribute type 3 has an invalid length.
[ 1330.924758][T31508] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1331.231113][T31525] program syz.2.16020 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1331.847158][T31552] loop6: detected capacity change from 0 to 64
[ 1332.219387][T31577] netlink: 200 bytes leftover after parsing attributes in process `syz.2.16035'.
[ 1332.505142][   T26] audit: type=1326 audit(2000001113.278:2123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.7.16039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1332.594632][   T26] audit: type=1326 audit(2000001113.318:2124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.7.16039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1332.716493][   T26] audit: type=1326 audit(2000001113.318:2125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.7.16039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1332.791760][T31603] netlink: 'syz.2.16044': attribute type 3 has an invalid length.
[ 1332.825460][T31605] xt_recent: Unsupported userspace flags (000000de)
[ 1332.833261][T31603] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.16044'.
[ 1332.859076][   T26] audit: type=1326 audit(2000001113.318:2126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.7.16039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05d678e969 code=0x7ffc0000
[ 1333.166514][T31622] loop3: detected capacity change from 0 to 64
[ 1333.430089][T31635] netlink: 830 bytes leftover after parsing attributes in process `syz.6.16054'.
[ 1333.466440][T31636] netlink: 'syz.7.16055': attribute type 21 has an invalid length.
[ 1333.484756][T31636] netlink: 132 bytes leftover after parsing attributes in process `syz.7.16055'.
[ 1333.776982][T31649] netlink: 'syz.6.16059': attribute type 10 has an invalid length.
[ 1333.858197][T31649] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[ 1333.935251][T31649] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[ 1333.986821][T31649] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[ 1334.051308][T31649] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[ 1334.099234][T31660] loop3: detected capacity change from 0 to 4096
[ 1334.162713][T31660] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[ 1334.833919][T31690] loop7: detected capacity change from 0 to 4096
[ 1334.900393][T31690] ntfs: (device loop7): check_mft_mirror(): $MFT and $MFTMirr (record 0) do not match.  Run ntfsfix or chkdsk.
[ 1334.968506][T31690] ntfs: (device loop7): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1335.064948][T31690] ntfs: volume version 3.1.
[ 1335.089451][T31690] ntfs: (device loop7): ntfs_read_locked_attr_inode(): Failed with error code -2 while reading attribute inode (mft_no 0x1a, type 0x80, name_len 4).  Marking corrupt inode and base inode 0x1a as bad.  Run chkdsk.
[ 1335.184884][T31690] ntfs: (device loop7): load_and_init_usnjrnl(): Failed to load $UsnJrnl/$DATA/$Max attribute.
[ 1335.264775][T31690] ntfs: (device loop7): load_system_files(): Failed to load $UsnJrnl.  Will not be able to remount read-write.  Run chkdsk.
[ 1335.459804][T31727] ip6t_REJECT: ECHOREPLY is not supported
[ 1335.635816][T31732] netlink: 48 bytes leftover after parsing attributes in process `syz.7.16086'.
[ 1335.876772][T31744] netlink: 'syz.2.16091': attribute type 1 has an invalid length.
[ 1336.636658][T31781] netlink: 'syz.7.16103': attribute type 4 has an invalid length.
[ 1336.989930][T31739] loop4: detected capacity change from 0 to 32768
[ 1337.194111][T31739] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1337.457109][ T4261] ocfs2: Unmounting device (7,4) on (node local)
[ 1337.687342][T31842] ipt_CLUSTERIP: Please specify destination IP
[ 1338.495454][T31885] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16133'.
[ 1338.610446][T31893] loop6: detected capacity change from 0 to 256
[ 1338.753716][T31893] FAT-fs (loop6): Directory bread(block 64) failed
[ 1338.789399][T31893] FAT-fs (loop6): Directory bread(block 65) failed
[ 1338.842907][T31893] FAT-fs (loop6): Directory bread(block 66) failed
[ 1338.867134][T31893] FAT-fs (loop6): Directory bread(block 67) failed
[ 1338.891957][T31893] FAT-fs (loop6): Directory bread(block 68) failed
[ 1338.905273][T31908] cgroup: Unknown subsys name 'pcr'
[ 1338.914216][T31893] FAT-fs (loop6): Directory bread(block 69) failed
[ 1338.954884][T31893] FAT-fs (loop6): Directory bread(block 70) failed
[ 1338.996434][T31893] FAT-fs (loop6): Directory bread(block 71) failed
[ 1339.034095][T31893] FAT-fs (loop6): Directory bread(block 72) failed
[ 1339.052740][T31893] FAT-fs (loop6): Directory bread(block 73) failed
[ 1339.758556][T31945] loop6: detected capacity change from 0 to 8
[ 1340.207702][ T6867] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[ 1340.265039][T31925] loop3: detected capacity change from 0 to 32768
[ 1340.326669][T31925] 
[ 1340.326669][T31925]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1340.326669][T31925] 
[ 1340.426517][ T6867] usb 7-1: Using ep0 maxpacket: 32
[ 1340.426891][T31925] 
[ 1340.426891][T31925]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1340.426891][T31925] 
[ 1340.434188][ T6867] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1340.492104][T31925] 
[ 1340.492104][T31925]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1340.492104][T31925] 
[ 1340.507127][ T6867] usb 7-1: config 7 has an invalid interface number: 128 but max is 0
[ 1340.515386][ T6867] usb 7-1: config 7 contains an unexpected descriptor of type 0x1, skipping
[ 1340.552920][  T107] 
[ 1340.552920][  T107]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1340.552920][  T107] 
[ 1340.586805][ T6867] usb 7-1: config 7 has an invalid descriptor of length 148, skipping remainder of the config
[ 1340.606433][ T6867] usb 7-1: config 7 has no interface number 0
[ 1340.612593][ T6867] usb 7-1: config 7 interface 128 altsetting 2 has an invalid endpoint with address 0x17, skipping
[ 1340.656511][ T6867] usb 7-1: config 7 interface 128 altsetting 2 endpoint 0x87 has an invalid bInterval 209, changing to 11
[ 1340.681371][T31941] loop7: detected capacity change from 0 to 32768
[ 1340.699953][T31939] loop4: detected capacity change from 0 to 32768
[ 1340.708351][ T6867] usb 7-1: config 7 interface 128 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[ 1340.733700][   T29] 
[ 1340.733700][   T29]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1340.733700][   T29] 
[ 1340.753777][ T6867] usb 7-1: config 7 interface 128 has no altsetting 0
[ 1340.761297][   T29] 
[ 1340.761297][   T29]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1340.761297][   T29] 
[ 1340.798783][T31941] JBD2: Ignoring recovery information on journal
[ 1340.802387][ T4258] 
[ 1340.802387][ T4258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1340.802387][ T4258] 
[ 1340.829362][T31939] ERROR: (device loop4): dbAllocAG: Corrupt dmapctl page
[ 1340.829362][T31939] 
[ 1340.839775][ T4258] 
[ 1340.839775][ T4258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1340.839775][ T4258] 
[ 1340.849997][ T6867] usb 7-1: New USB device found, idVendor=6033, idProduct=4108, bcdDevice=cc.13
[ 1340.876506][  T107] ==================================================================
[ 1340.884627][  T107] BUG: KASAN: use-after-free in __lock_acquire+0xf7/0x7c50
[ 1340.891862][  T107] Read of size 8 at addr ffff8880302e00d8 by task jfsCommit/107
[ 1340.899507][  T107] 
[ 1340.901895][  T107] CPU: 1 PID: 107 Comm: jfsCommit Not tainted 6.1.138-syzkaller #0
[ 1340.909791][  T107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1340.919851][  T107] Call Trace:
[ 1340.923136][  T107]  <TASK>
[ 1340.926081][  T107]  dump_stack_lvl+0x168/0x22e
[ 1340.930788][  T107]  ? __lock_acquire+0x7c50/0x7c50
[ 1340.935841][  T107]  ? show_regs_print_info+0x12/0x12
[ 1340.941062][  T107]  ? load_image+0x3b0/0x3b0
[ 1340.945584][  T107]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 1340.950981][  T107]  ? __virt_addr_valid+0x188/0x540
[ 1340.956107][  T107]  ? __virt_addr_valid+0x465/0x540
[ 1340.961233][  T107]  ? __lock_acquire+0xf7/0x7c50
[ 1340.966096][  T107]  print_report+0xa8/0x220
[ 1340.970538][  T107]  kasan_report+0x10b/0x140
[ 1340.975059][  T107]  ? __lock_acquire+0xf7/0x7c50
[ 1340.979939][  T107]  __lock_acquire+0xf7/0x7c50
[ 1340.984634][  T107]  ? mark_lock+0x94/0x320
[ 1340.989000][  T107]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1340.995008][  T107]  ? __schedule+0x10b7/0x40d0
[ 1340.999700][  T107]  ? verify_lock_unused+0x140/0x140
[ 1341.004922][  T107]  ? finish_task_switch+0x265/0x8f0
[ 1341.010138][  T107]  ? lockdep_hardirqs_on+0x94/0x140
[ 1341.015526][  T107]  ? finish_task_switch+0x265/0x8f0
[ 1341.020736][  T107]  ? __schedule+0x10f1/0x40d0
[ 1341.025442][  T107]  lock_acquire+0x1b4/0x490
[ 1341.029977][  T107]  ? __mutex_lock+0x270/0xaf0
[ 1341.034680][  T107]  ? read_lock_is_recursive+0x10/0x10
[ 1341.040084][  T107]  ? mutex_spin_on_owner+0x27e/0x350
[ 1341.045416][  T107]  _raw_spin_lock+0x2a/0x40
[ 1341.049960][  T107]  ? __mutex_lock+0x270/0xaf0
[ 1341.054644][  T107]  __mutex_lock+0x270/0xaf0
[ 1341.059252][  T107]  ? jfs_syncpt+0x21/0x90
[ 1341.063586][  T107]  ? txEnd+0x2d4/0x520
[ 1341.067665][  T107]  ? mutex_lock_nested+0x10/0x10
[ 1341.072610][  T107]  ? __rwlock_init+0x140/0x140
[ 1341.077389][  T107]  jfs_syncpt+0x21/0x90
[ 1341.081554][  T107]  txEnd+0x2e1/0x520
[ 1341.085459][  T107]  jfs_lazycommit+0x5a2/0xa50
[ 1341.090151][  T107]  ? txFreelock+0x5a0/0x5a0
[ 1341.094684][  T107]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[ 1341.100602][  T107]  ? do_task_dead+0xd0/0xd0
[ 1341.105142][  T107]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 1341.111054][  T107]  ? __kthread_parkme+0x162/0x1c0
[ 1341.116113][  T107]  kthread+0x29d/0x330
[ 1341.120220][  T107]  ? txFreelock+0x5a0/0x5a0
[ 1341.124749][  T107]  ? kthread_blkcg+0xd0/0xd0
[ 1341.129372][  T107]  ret_from_fork+0x1f/0x30
[ 1341.133818][  T107]  </TASK>
[ 1341.136840][  T107] 
[ 1341.139161][  T107] Allocated by task 31925:
[ 1341.143631][  T107]  kasan_set_track+0x4b/0x70
[ 1341.148236][  T107]  __kasan_kmalloc+0x8e/0xa0
[ 1341.152836][  T107]  lmLogOpen+0x2c0/0xf90
[ 1341.157085][  T107]  jfs_mount_rw+0xf2/0x5c0
[ 1341.161513][  T107]  jfs_fill_super+0x58e/0xac0
[ 1341.166196][  T107]  mount_bdev+0x287/0x3c0
[ 1341.170532][  T107]  legacy_get_tree+0xe6/0x180
[ 1341.175214][  T107]  vfs_get_tree+0x88/0x270
[ 1341.179635][  T107]  do_new_mount+0x24a/0xa40
[ 1341.184519][  T107]  __se_sys_mount+0x2d6/0x3c0
[ 1341.189219][  T107]  do_syscall_64+0x4c/0xa0
[ 1341.193651][  T107]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1341.199582][  T107] 
[ 1341.201912][  T107] Freed by task 4258:
[ 1341.205895][  T107]  kasan_set_track+0x4b/0x70
[ 1341.210507][  T107]  kasan_save_free_info+0x2d/0x50
[ 1341.215972][  T107]  ____kasan_slab_free+0x126/0x1e0
[ 1341.221092][  T107]  slab_free_freelist_hook+0x131/0x1a0
[ 1341.226561][  T107]  __kmem_cache_free+0xb6/0x1f0
[ 1341.231423][  T107]  lmLogClose+0x293/0x520
[ 1341.235759][  T107]  jfs_umount+0x28f/0x360
[ 1341.240103][  T107]  jfs_put_super+0x88/0x190
[ 1341.244615][  T107]  generic_shutdown_super+0x130/0x340
[ 1341.249993][  T107]  kill_block_super+0x7c/0xe0
[ 1341.254689][  T107]  deactivate_locked_super+0x93/0xf0
[ 1341.259983][  T107]  cleanup_mnt+0x463/0x4f0
[ 1341.264405][  T107]  task_work_run+0x1ca/0x250
[ 1341.269012][  T107]  exit_to_user_mode_loop+0xe6/0x110
[ 1341.274306][  T107]  exit_to_user_mode_prepare+0xb1/0x140
[ 1341.279866][  T107]  syscall_exit_to_user_mode+0x16/0x40
[ 1341.285329][  T107]  do_syscall_64+0x58/0xa0
[ 1341.289755][  T107]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1341.295673][  T107] 
[ 1341.297994][  T107] Last potentially related work creation:
[ 1341.303715][  T107]  kasan_save_stack+0x3a/0x60
[ 1341.308401][  T107]  __kasan_record_aux_stack+0xb2/0xc0
[ 1341.313774][  T107]  kvfree_call_rcu+0x108/0x870
[ 1341.318544][  T107]  ops_init+0x2da/0x5f0
[ 1341.322709][  T107]  register_pernet_operations+0x2a3/0x5f0
[ 1341.328435][  T107]  register_pernet_device+0x26/0x70
[ 1341.333673][  T107]  tipc_init+0x52/0x180
[ 1341.337842][  T107]  do_one_initcall+0x214/0x7a0
[ 1341.342612][  T107]  do_initcall_level+0x137/0x1e4
[ 1341.347559][  T107]  do_initcalls+0x4b/0x8a
[ 1341.351936][  T107]  kernel_init_freeable+0x3fa/0x5ac
[ 1341.357143][  T107]  kernel_init+0x19/0x1b0
[ 1341.361472][  T107]  ret_from_fork+0x1f/0x30
[ 1341.365900][  T107] 
[ 1341.368223][  T107] The buggy address belongs to the object at ffff8880302e0000
[ 1341.368223][  T107]  which belongs to the cache kmalloc-1k of size 1024
[ 1341.382365][  T107] The buggy address is located 216 bytes inside of
[ 1341.382365][  T107]  1024-byte region [ffff8880302e0000, ffff8880302e0400)
[ 1341.395727][  T107] 
[ 1341.398071][  T107] The buggy address belongs to the physical page:
[ 1341.404477][  T107] page:ffffea0000c0b800 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff8880302e0800 pfn:0x302e0
[ 1341.415977][  T107] head:ffffea0000c0b800 order:3 compound_mapcount:0 compound_pincount:0
[ 1341.424300][  T107] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1341.432333][  T107] raw: 00fff00000010200 ffffea0001c27208 ffffea0001e6c608 ffff888017441dc0
[ 1341.440925][  T107] raw: ffff8880302e0800 000000000010000f 00000001ffffffff 0000000000000000
[ 1341.449508][  T107] page dumped because: kasan: bad access detected
[ 1341.455929][  T107] page_owner tracks the page as allocated
[ 1341.461680][  T107] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 25709992192, free_ts 0
[ 1341.481394][  T107]  post_alloc_hook+0x173/0x1a0
[ 1341.486185][  T107]  get_page_from_freelist+0x1a26/0x1ac0
[ 1341.491746][  T107]  __alloc_pages+0x1df/0x4e0
[ 1341.496346][  T107]  alloc_page_interleave+0x24/0x1e0
[ 1341.501556][  T107]  alloc_slab_page+0x5d/0x160
[ 1341.506241][  T107]  new_slab+0x87/0x2c0
[ 1341.510322][  T107]  ___slab_alloc+0xbc6/0x1220
[ 1341.515001][  T107]  __kmem_cache_alloc_node+0x1a0/0x260
[ 1341.520462][  T107]  __kmalloc+0xa0/0x240
[ 1341.524705][  T107]  ops_init+0x203/0x5f0
[ 1341.528865][  T107]  register_pernet_operations+0x2a3/0x5f0
[ 1341.534591][  T107]  register_pernet_device+0x26/0x70
[ 1341.539798][  T107]  rds_tcp_init+0x5e/0xc1
[ 1341.544139][  T107]  do_one_initcall+0x214/0x7a0
[ 1341.548912][  T107]  do_initcall_level+0x137/0x1e4
[ 1341.553863][  T107]  do_initcalls+0x4b/0x8a
[ 1341.558219][  T107] page_owner free stack trace missing
[ 1341.563674][  T107] 
[ 1341.565996][  T107] Memory state around the buggy address:
[ 1341.571631][  T107]  ffff8880302dff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1341.579721][  T107]  ffff8880302e0000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1341.587782][  T107] >ffff8880302e0080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1341.595845][  T107]                                                     ^
[ 1341.602784][  T107]  ffff8880302e0100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1341.610848][  T107]  ffff8880302e0180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1341.618928][  T107] ==================================================================
[ 1341.627004][  T107] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1341.634198][  T107] CPU: 1 PID: 107 Comm: jfsCommit Not tainted 6.1.138-syzkaller #0
[ 1341.642093][  T107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1341.652154][  T107] Call Trace:
[ 1341.655443][  T107]  <TASK>
[ 1341.658377][  T107]  dump_stack_lvl+0x168/0x22e
[ 1341.663066][  T107]  ? memcpy+0x3c/0x60
[ 1341.667054][  T107]  ? show_regs_print_info+0x12/0x12
[ 1341.672348][  T107]  ? load_image+0x3b0/0x3b0
[ 1341.676860][  T107]  panic+0x2c9/0x710
[ 1341.680773][  T107]  ? __lock_acquire+0x7c50/0x7c50
[ 1341.685817][  T107]  ? bpf_jit_dump+0xd0/0xd0
[ 1341.690345][  T107]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 1341.696255][  T107]  ? _raw_spin_unlock+0x40/0x40
[ 1341.701126][  T107]  check_panic_on_warn+0x80/0xa0
[ 1341.706088][  T107]  ? __lock_acquire+0xf7/0x7c50
[ 1341.710970][  T107]  end_report+0x66/0x110
[ 1341.715243][  T107]  kasan_report+0x118/0x140
[ 1341.719757][  T107]  ? __lock_acquire+0xf7/0x7c50
[ 1341.724621][  T107]  __lock_acquire+0xf7/0x7c50
[ 1341.729309][  T107]  ? mark_lock+0x94/0x320
[ 1341.733646][  T107]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1341.739638][  T107]  ? __schedule+0x10b7/0x40d0
[ 1341.744316][  T107]  ? verify_lock_unused+0x140/0x140
[ 1341.749526][  T107]  ? finish_task_switch+0x265/0x8f0
[ 1341.754751][  T107]  ? lockdep_hardirqs_on+0x94/0x140
[ 1341.759983][  T107]  ? finish_task_switch+0x265/0x8f0
[ 1341.765193][  T107]  ? __schedule+0x10f1/0x40d0
[ 1341.769879][  T107]  lock_acquire+0x1b4/0x490
[ 1341.774393][  T107]  ? __mutex_lock+0x270/0xaf0
[ 1341.779077][  T107]  ? read_lock_is_recursive+0x10/0x10
[ 1341.784456][  T107]  ? mutex_spin_on_owner+0x27e/0x350
[ 1341.789768][  T107]  _raw_spin_lock+0x2a/0x40
[ 1341.794284][  T107]  ? __mutex_lock+0x270/0xaf0
[ 1341.798972][  T107]  __mutex_lock+0x270/0xaf0
[ 1341.803513][  T107]  ? jfs_syncpt+0x21/0x90
[ 1341.807854][  T107]  ? txEnd+0x2d4/0x520
[ 1341.811931][  T107]  ? mutex_lock_nested+0x10/0x10
[ 1341.816877][  T107]  ? __rwlock_init+0x140/0x140
[ 1341.821658][  T107]  jfs_syncpt+0x21/0x90
[ 1341.825827][  T107]  txEnd+0x2e1/0x520
[ 1341.829734][  T107]  jfs_lazycommit+0x5a2/0xa50
[ 1341.834426][  T107]  ? txFreelock+0x5a0/0x5a0
[ 1341.838937][  T107]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[ 1341.844840][  T107]  ? do_task_dead+0xd0/0xd0
[ 1341.849350][  T107]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 1341.855251][  T107]  ? __kthread_parkme+0x162/0x1c0
[ 1341.860286][  T107]  kthread+0x29d/0x330
[ 1341.864362][  T107]  ? txFreelock+0x5a0/0x5a0
[ 1341.868875][  T107]  ? kthread_blkcg+0xd0/0xd0
[ 1341.873506][  T107]  ret_from_fork+0x1f/0x30
[ 1341.877961][  T107]  </TASK>
[ 1341.881434][  T107] Kernel Offset: disabled
[ 1341.885762][  T107] Rebooting in 86400 seconds..