last executing test programs:

56.571635924s ago: executing program 2 (id=5917):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x200000, &(0x7f0000000300)={[{@iocharset={'iocharset', 0x3d, 'cp949'}}, {@gid_forget}, {@nostrict}, {@anchor={'anchor', 0x3d, 0x3}}, {@umask={'umask', 0x3d, 0xd8d8}}, {}, {@noadinicb}, {@rootdir={'rootdir', 0x3d, 0x6}}, {@noadinicb}]}, 0x1, 0xc32, &(0x7f0000003a80)="$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")
mkdir(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x18f)

56.115649957s ago: executing program 2 (id=5924):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01080000000000000000030000000900010073797a310000000020000000020a01040000000000000000000000000900010073797a3000000000340000001f0a030000000000000000000300000008000340000000000900010073797a3100000000090002"], 0x9c}}, 0x0)

55.940822829s ago: executing program 2 (id=5927):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x13, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffff858500000071000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

55.77080208s ago: executing program 2 (id=5930):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000040)='./file1\x00', 0xa08813, &(0x7f0000000380)={[{@discard_sync}, {@notreelog}, {@compress_force}, {@compress}, {@flushoncommit}, {@rescue={'rescue', 0x3d, 'imetacsums'}}, {@user_subvol_rm}, {@nodiscard}]}, 0xfb, 0x5142, &(0x7f0000005140)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204081, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})

53.566270013s ago: executing program 2 (id=5959):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001500)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2000}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0, 0x0, 0x2}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0xfffffffc}]}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x50}, 0x20000000)

52.696927574s ago: executing program 2 (id=5972):
mprotect(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xf, &(0x7f0000001540)=@ringbuf={{0x18, 0x3, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0xa00}, {{}, {}, {0x5, 0x0, 0xb, 0x2}, {}, {0x4}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x8, 0x1001, &(0x7f0000002e80)=""/4097, 0x0, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)

52.166779811s ago: executing program 32 (id=5972):
mprotect(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xf, &(0x7f0000001540)=@ringbuf={{0x18, 0x3, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0xa00}, {{}, {}, {0x5, 0x0, 0xb, 0x2}, {}, {0x4}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x8, 0x1001, &(0x7f0000002e80)=""/4097, 0x0, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)

2.470473524s ago: executing program 0 (id=6660):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ifreq(r0, 0x89a3, &(0x7f00000001c0)={'veth0_to_bond\x00', @ifru_mtu=0x6})

2.344832502s ago: executing program 0 (id=6661):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
brk(0x55555ede6001)

2.308241978s ago: executing program 0 (id=6662):
syz_usb_connect$cdc_ncm(0x4, 0xd1, &(0x7f0000000040)=ANY=[@ANYBLOB="12011003020000182505a1a44000010203010902bf00020106500008ffffffe7020d0000052406000108247c2a6ad07be4aefb0000000300ff000606241a05001407240a050905580c240c00000000a90c090003042402020424"], 0x0)
syz_usb_connect(0x3, 0xf5, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000772aed408680070bb96c010203010902e30003dc2000000904003f000e01000505a40600010524007f000d240f0104000000080000000006241a03000a05240101070424020a1524120009a317a88b045e4f01a607c0ffcb7e392a09044c03003a92a2010a240109000102010205240401050c2402"], 0x0)

1.360870569s ago: executing program 4 (id=6675):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x200003, 0x3, 0x0, 0x7})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000002540)={@fallback, 0x24, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

1.245249879s ago: executing program 5 (id=6676):
r0 = socket(0x2b, 0x80801, 0x1)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000003c0)=@mangle={'mangle\x00', 0x1f, 0x6, 0x520, 0x210, 0x4f8, 0x0, 0x308, 0x210, 0x4f8, 0x4f8, 0x4f8, 0x4f8, 0x4f8, 0x6, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @private=0xa010100}, @empty, [0xff, 0xffffffff, 0xffffffff], [0xff000000, 0xffffff00, 0xffffff00, 0xffffff00], 'team_slave_1\x00', 'veth1\x00', {0xff}, {}, 0x0, 0x9, 0x2, 0x93}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@empty, @ipv4=@multicast1, 0x2a, 0x8, 0x3}}}, {{@ipv6={@mcast1, @private0, [0xffffffff, 0x0, 0xff, 0xff], [0xff, 0xffffff00, 0xffffff00], 'netdevsim0\x00', 'veth0_to_bond\x00', {}, {0xff}, 0x0, 0xba, 0x1, 0x4c}, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@private2={0xfc, 0x2, '\x00', 0x1}, @ipv6=@private2, 0x2e, 0x40, 0x9}}}, {{@ipv6={@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [0x0, 0xffffffff, 0xff000000, 0xff], [0xffffffff, 0xff000000, 0xffffff00, 0xff], 'veth0_to_bond\x00', 'veth1_macvtap\x00', {0xff}, {0xff}, 0x4, 0x0, 0x2, 0x44}, 0x0, 0xa8, 0xd0}, @HL={0x28, 'HL\x00', 0x0, {0x2, 0xc8}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x0, 0x3}}}, {{@ipv6={@loopback, @loopback, [0xff, 0x0, 0xff000000, 0xff000000], [0xffffffff, 0xffffffff, 0xff000000, 0xffffffff], 'gretap0\x00', 'bond_slave_0\x00', {}, {}, 0x84, 0x8, 0x5, 0x34}, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x3a}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x580)

1.227202117s ago: executing program 3 (id=6677):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000014c0)=@newsa={0x13c, 0x10, 0x413, 0x70bd29, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@rand_addr=' \x01\x00', 0xfffd, 0x0, 0x4e24, 0x0, 0x2, 0x0, 0x20, 0x0, 0x0, 0xee00}, {@in=@rand_addr=0x64010100, 0x20, 0x3c}, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, {0x0, 0x7, 0x0, 0x4, 0x2000000000000000, 0x4, 0x20000000008}, {0x100000001, 0x8, 0xcd, 0x8}, {0xfc}, 0x0, 0x4, 0x2, 0x0, 0x1}, [@algo_aead={0x4c, 0x12, {{'rfc4309(ccm(aes))\x00'}, 0x0, 0x40}}]}, 0x13c}}, 0x844)

1.128350777s ago: executing program 4 (id=6679):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x702, 0xe, 0x0, &(0x7f0000000380)="e460330800d8d407eb00c15286d9", 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.107471636s ago: executing program 1 (id=6680):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)

998.729289ms ago: executing program 5 (id=6681):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x2e8, 0xffffffff, 0x98, 0x98, 0x198, 0xffffffff, 0xffffffff, 0x250, 0x250, 0x250, 0xffffffff, 0x4, 0x0, {[{{@ip={@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xff, 0x0, 'netpci0\x00', 'syzkaller1\x00', {}, {}, 0x6, 0x1}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'veth1_macvtap\x00', 'ip6_vti0\x00'}, 0x0, 0xa0, 0x100, 0x0, {0x60010000}, [@common=@unspec=@connmark={{0x30}, {0x0, 0x0, 0x41}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @empty, 0x0, 0xfffc, [0x16, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x100]}}}, {{@uncond, 0x0, 0x90, 0xb8, 0x0, {}, [@common=@socket0={{0x20}}]}, @REJECT={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x348)

957.73228ms ago: executing program 4 (id=6682):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="2400000076001f03"], 0x24}], 0x1}, 0x0)

900.753239ms ago: executing program 3 (id=6683):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000000), 0x1)
writev(r0, &(0x7f0000000640)=[{&(0x7f0000000a40)="b799fea43507d507b738d0cbf1285004ac61b36fbd66375ac5389b10fecafb1bae35959dd08032ed9901caa9c5fd487f4c0d41957227819f2517315d6c45540b3c47281aab9381ef3a0632048200aa2395bf63b4a9e6b8abef35f28ff8ae37516e91b30777aa62e99c8323b791a7d86d8b8107b62fe9583e442fe12164cc33276fdeaaf459a90f510656926beb5e73d7e399ac9b401982518a6449bd9ac30dfad93a42ad5616e179f49787efa2f6de298f513a0a36ed3c769660a1abacc9", 0xbe}, {&(0x7f0000000280)="c25f440ec7d6be04c60f0b2f851fe4ce2963bcc1930bae9d5f703046043b8033ae039cac9c1e017a3604718913f672a6397655ee24abd8916f8bc0783b31c3260107074500003a694cdc44a6612e09d92ed7b7c28fe189597c6c3299a0c47a17825dbdef0b4beb0129641cd9e1b740928426f8a0ad5bd1d300539eb352bcd4e62362f836d8c15bcbf0f47cfc2cc13b4c5c408e360eadaee79df006828fdd880a13ddb3f22c8d5e4c199f53565cd3389e77c1185d114c714c28faec4539aefe", 0xbf}, {&(0x7f00000012c0)="bed327b63e2852ecd9fade315423044699e972ac7d683b60ba394758ded8fe681db29ab978d35c82f917b26d00dd75865ea404239fb0be76b4f44b3badd8e60080000000000000dc07796c56773a8416dc2847f6903df8e7e9daae1dbeadbfc1726cab3c6c678d359beaeb1e098efae7ffc61bf7d14c2bd7008fcf9b5613d14d99e04a0486e3f1be189214d2908309da19f36ef78b4f4f5853c6ef5767001349070105fa16514c0000000000000000000061a0", 0xb3}], 0x3)

898.383447ms ago: executing program 1 (id=6684):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f0000002e00)=""/1, &(0x7f0000000000)=0x1)

757.056957ms ago: executing program 3 (id=6685):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000006000000850000000e000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x28, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x320e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

722.899992ms ago: executing program 1 (id=6686):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x9, 0x7, 0x7, 0x4}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r0}, &(0x7f0000000840), &(0x7f0000000880), 0x4000}, 0x20)

674.136877ms ago: executing program 5 (id=6687):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)={0x64, 0x19, 0x1, 0x0, 0x0, {0x1d, 0xd601, 0x9}, [@nested={0x50, 0x10, 0x0, 0x1, [@typed={0x49, 0x121, 0x0, 0x0, @binary="c9a7befe6f6d645a1a11b81b2c4b101c7510e19feecb90ee6bb49f6cc7a2c50fd57c06db1a75df432aa833928a0772ff8f5e9ed32d3b477d35b296674f1fe35663c0d236fd"}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

576.141497ms ago: executing program 4 (id=6688):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000440)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x0, 0x20020, &(0x7f0000000140)=""/24}, &(0x7f0000000380)="851666ce20db", 0x0, 0xfffffffb, 0x39, 0x0, 0x0})

567.848596ms ago: executing program 1 (id=6689):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000080)={0x0, 0x2, 0x1})

522.523744ms ago: executing program 5 (id=6690):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000180000000800000014"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r0, 0x0, 0x0}, 0x20)

502.372658ms ago: executing program 3 (id=6691):
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
prctl$PR_GET_SECUREBITS(0x1b)

490.843219ms ago: executing program 0 (id=6692):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x13, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

437.911999ms ago: executing program 4 (id=6693):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x504, &(0x7f0000002580)="$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")
lchown(&(0x7f0000000140)='./file0\x00', 0xee00, 0x0)

411.379321ms ago: executing program 1 (id=6694):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000040)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdcedd9467f5cd2d6c4e8b3043614238ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESDEC=0x0], 0x11, 0x31b, &(0x7f0000000240)="$eJzs3T1rFE8cB/Dv7F5yl3+O/FcTESxEogHTiMZGbE7CvQgrUXMXCC4naoIPCEaxEjG9vaWtr0FsFME6VlZiYRULGZmHvX3e2+jt3UW/H/DY3dmZ/e3NzlMwWRDRP2u1vfvq/Bf1TwAuXODZRcAB0ABqAI7gaGOrt7mx6Xc7RQW5OF43uQRMTpE6Z63XzcragM1heWqvhmb0GFVDSnnp87iDoLHTrV+6we6M/jyhe4K6bZ06sTHGGLM83n+Wb+rmtqsIZqIU15TYwx7uNZsjC4eIiCaSMOO7Y8f5pp2/Ow6wZAcTlTZx4//v2ht3AJWThalm/MdcsPKSQtX7/zopXO/pJZxKd4JVYlZZrxP7U4n9aZinx40FMGhVqWNxZtY3/O6ZtZt+x8ETtKzIaQv6s2MfTysWbT1V9GLG2rRAv7SZ3FNE9oxyVt/DlLqHFRP/XQCx+OcLr1gB8U58EFeEh5fo6PpXalKoatI15SVqysR/Nr9EfZeeOgu222i1Wk7slEP6IsfsFawBd9mIhxE1bcuM/YDAGxSnznU4kcvc3bkBueYzc63o7WU4ObkWYrnU3axv+G/zLzUS4oW4LBbxFW/Q7te/aj6u6eqTLTPy0IetRiyZoUB/46p1xms2orZkeyI9cmx92n1ojqebS/9bTDdY60dxn0b78BzXcQFzd+4/uOH6fve22rjmq8dVb/SP3GraDb879RSIJk3KBrbDI3VILXVyMCiNMrDloRao+o+MJNWwet+DI6qVDSrw0Z/Go/qBSr+62RJ3sb+NoOsaToHt98N5kIJpQyzpp5RyhI1ox07Ykklj65lohMJKL3d+xlSHDjZVpcKs/8L1Ss1M9tSHlzlPL/mDAFuiVHPs/gouzCvNjBzAfwUruKxic1dw6TVXas2o11wnTwOnyl/Rs3H+JUQbH3E1Mv8nIiIiIiIiIiIiIiIiIiIiIiIiIqIDodpfMKih/P8sJyIiIiIiIiIiIiIiIiIiIiIiIiIiIiKiPKsNmL97jeD9vyj3/t/kq1hc8yfBh/L+350e+P5four9CgAA//8sNHMW")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x20020c0, 0x0, 0x1, 0x0, &(0x7f0000001a00))

355.597981ms ago: executing program 5 (id=6695):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r0, 0xc0844123, &(0x7f0000002fc0))

284.852384ms ago: executing program 3 (id=6696):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001b00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0xa0, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x78, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x89}]}}}, {0x40, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_DATA={0xc, 0x7, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, '+'}]}, @NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x114}}, 0x0)

283.147121ms ago: executing program 0 (id=6697):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1006}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_IFLAGS={0x6}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0x6}]}}}]}, 0x44}}, 0x40080c0)

165.585986ms ago: executing program 3 (id=6698):
prctl$PR_SET_SECUREBITS(0x1c, 0x38)
prctl$PR_SET_SECUREBITS(0x8, 0x0)

115.033696ms ago: executing program 5 (id=6699):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xfffb, 0x3}, 0xf)

77.470632ms ago: executing program 4 (id=6700):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000a80)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x7, 0xee6, &(0x7f0000001ec0)="$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")
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000ac0)={{}, {0x1, 0x5}, [], {0x4, 0x2}, [], {0x10, 0x6}, {0x20, 0x2}}, 0x24, 0x3)

51.268022ms ago: executing program 0 (id=6701):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@typed={0x4}, @nested={0x14, 0x2, 0x0, 0x1, [@generic="bf74a7dffdd8f8331b9dd3f2f9834b7f"]}]}, 0x2c}}, 0x0)

0s ago: executing program 1 (id=6702):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x15, 0x17, 0xee, 0x40, 0xaf0, 0x7a05, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xff, 0x5, 0x49}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000b00)={0x1c, &(0x7f0000000180)=ANY=[@ANYBLOB="400e1100000001"], 0x0, 0x0})

kernel console output (not intermixed with test programs):

syz
[  607.099844][ T5916] usb 1-1: SerialNumber: syz
[  607.118737][ T5916] usb 1-1: config 0 descriptor??
[  607.219217][ T1223] gspca_sn9c2028: read1 error -71
[  607.230975][ T1223] gspca_sn9c2028: read1 error -71
[  607.258057][ T1223] sn9c2028 4-1:0.0: probe with driver sn9c2028 failed with error -71
[  607.271383][ T1223] usb 4-1: USB disconnect, device number 106
[  607.387958][ T5916] uvcvideo 1-1:0.250: Found UVC 0.00 device syz (0408:3090)
[  607.395327][ T5916] uvcvideo 1-1:0.250: No valid video chain found.
[  607.454445][ T5916] usb 1-1: USB disconnect, device number 115
[  608.402479][T18227] loop2: detected capacity change from 0 to 32768
[  608.522298][T18227] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  608.617752][T18238] loop1: detected capacity change from 0 to 32768
[  608.820587][T18227] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  608.931569][T18227] XFS (loop2): Starting recovery (logdev: internal)
[  608.980034][T18280] loop0: detected capacity change from 0 to 512
[  609.010185][T18227] XFS (loop2): Ending recovery (logdev: internal)
[  609.042813][T18227] XFS (loop2): AG 0: Corrupt finobt pointer at level 1 index 0.
[  609.081783][T18227] loop2: lost filesystem error report for type 5 error -117
[  609.081940][T18227] XFS (loop2): Failed to initialize disk quotas, err -117.
[  609.141728][T18280] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  609.273753][T18280] EXT4-fs error (device loop0): ext4_xattr_block_find:1879: inode #12: comm syz.0.5206: corrupted xattr block 6: invalid header
[  609.295414][T18227] XFS (loop2): AG 0: Corrupt finobt pointer at level 1 index 0.
[  609.417221][T18252] loop3: detected capacity change from 0 to 32768
[  609.427294][ T5834] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  609.454935][ T5834] XFS (loop2): Uncorrected metadata errors detected; please run xfs_repair.
[  609.498992][T18252] JBD2: Ignoring recovery information on journal
[  609.509872][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  609.629594][T18252] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  609.705710][T18252] (syz.3.5199,18252,1):ocfs2_find_entry:1104 ERROR: status = -117
[  609.788917][T18252] (syz.3.5199,18252,0):ocfs2_find_entry:1104 ERROR: status = -117
[  609.825743][T18252] (syz.3.5199,18252,0):ocfs2_mknod:506 ERROR: status = -117
[  609.868637][T18252] (syz.3.5199,18252,0):ocfs2_create:679 ERROR: status = -117
[  610.132554][ T5830] ocfs2: Unmounting device (7,3) on (node local)
[  610.149724][T18322] loop4: detected capacity change from 0 to 64
[  610.970852][T18353] loop4: detected capacity change from 0 to 8
[  611.002714][T18358] loop1: detected capacity change from 0 to 64
[  611.050047][T18353] SQUASHFS error: Corrupted symlink
[  611.186642][T18363] netlink: 'syz.0.5235': attribute type 10 has an invalid length.
[  611.221374][T18363] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5235'.
[  611.270620][T18363] ipvlan1: entered promiscuous mode
[  611.280902][T18363] ipvlan1: entered allmulticast mode
[  611.296362][T18363] bridge0: port 3(ipvlan1) entered blocking state
[  611.328572][T18363] bridge0: port 3(ipvlan1) entered disabled state
[  611.381246][T18363] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  611.435506][T18372] loop1: detected capacity change from 0 to 512
[  611.487884][T18366] loop3: detected capacity change from 0 to 4096
[  611.494997][T18372] EXT4-fs (loop1): orphan cleanup on readonly fs
[  611.514144][T18368] loop2: detected capacity change from 0 to 4096
[  611.550113][T18366] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  611.594113][T18372] EXT4-fs warning (device loop1): ext4_xattr_inode_get:560: inode #11: comm syz.1.5239: EA inode hash validation failed
[  611.620869][T18368] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  611.667109][T18366] ntfs3(loop3): ino=19, mi_enum_attr
[  611.680955][T18372] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #15: comm syz.1.5239: corrupted inode contents
[  611.763479][T18372] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  611.765163][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  611.775833][T18366] ntfs3(loop3): failed to convert "c46c" to koi8-u
[  611.780889][    C1] EXT4-fs (loop1): initial error at time 578: ext4_do_update_inode:5569: inode 15
[  611.796651][    C1] EXT4-fs (loop1): last error at time 578: ext4_do_update_inode:5569: inode 15
[  611.816576][T18372] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #15: comm syz.1.5239: mark_inode_dirty error
[  611.861936][T18372] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  611.865370][T18372] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #15: comm syz.1.5239: corrupted inode contents
[  611.865780][T18368] ntfs3(loop2): ino=1e, "file1" ntfs_sync_inode failed, -22.
[  611.885005][T18372] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  611.907827][T18366] ntfs3(loop3): ino=20, mi_enum_attr
[  611.934182][T18372] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3001: inode #15: comm syz.1.5239: mark_inode_dirty error
[  611.951428][ T1096] hfsplus: b-tree write err: -5, ino 4
[  611.971344][T18368] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  611.993084][T18384] QAT: Invalid ioctl 21531
[  612.012674][T18372] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  612.016932][T18372] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3004: inode #15: comm syz.1.5239: mark inode dirty (error -117)
[  612.057560][T18372] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  612.058045][T18372] EXT4-fs warning (device loop1): ext4_evict_inode:275: xattr delete (err -117)
[  612.117693][T18372] EXT4-fs (loop1): 1 orphan inode deleted
[  612.219632][T18372] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  612.329352][   T77] ntfs3(loop2): ino=1e, ntfs3_write_inode failed, -22.
[  612.504367][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  612.924869][T18407] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5250'.
[  612.960924][T18409] infiniband: Added to hash: ib_dev=ffff88807e174000 (0)() ndev=ffff8880758b8000 (38)(lo)
[  612.998438][T18409] lo speed is unknown, defaulting to 1000
[  613.023442][T18409] lo speed is unknown, defaulting to 1000
[  613.114108][T18409] lo speed is unknown, defaulting to 1000
[  613.125506][T18416] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5254'.
[  613.182161][T18409] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  613.240974][T18419] netlink: 'syz.1.5255': attribute type 12 has an invalid length.
[  613.296423][T18409] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  613.465660][T18426] netlink: 892 bytes leftover after parsing attributes in process `syz.4.5258'.
[  613.570120][T18409] lo speed is unknown, defaulting to 1000
[  613.630003][T18409] lo speed is unknown, defaulting to 1000
[  613.687733][T18409] lo speed is unknown, defaulting to 1000
[  613.749776][T18409] lo speed is unknown, defaulting to 1000
[  613.787335][T18409] lo speed is unknown, defaulting to 1000
[  613.966052][ T5849] usb 1-1: new high-speed USB device number 116 using dummy_hcd
[  614.126921][ T5849] usb 1-1: Using ep0 maxpacket: 16
[  614.146848][ T5849] usb 1-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice=93.b9
[  614.191576][ T5849] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  614.240051][ T5849] usb 1-1: Product: syz
[  614.244348][ T5849] usb 1-1: Manufacturer: syz
[  614.256236][ T5849] usb 1-1: SerialNumber: syz
[  614.308398][ T5849] usb 1-1: config 0 descriptor??
[  614.573128][ T5849] speedtch 1-1:0.0: speedtch_bind: wrong device class 141
[  614.580309][ T5849] speedtch 1-1:0.0: usbatm_usb_probe: bind failed: -19!
[  614.651507][T18480] 9pnet_fd: Insufficient options for proto=fd
[  614.786063][   T24] usb 1-1: USB disconnect, device number 116
[  615.056434][T18489] set_capacity_and_notify: 2 callbacks suppressed
[  615.056455][T18489] loop3: detected capacity change from 0 to 4096
[  615.181870][T18502] comedi comedi1: Minor 1094349763 is invalid!
[  615.188421][T18489] ntfs3(loop3): new label is too long
[  615.342886][T18505] loop1: detected capacity change from 0 to 2048
[  615.413854][T18505] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  615.451578][T18511] xt_hashlimit: overflow, try lower: 17592186044416/11
[  616.356152][T18547] loop1: detected capacity change from 0 to 1024
[  616.370274][   T30] audit: type=1326 audit(582.396:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18548 comm="syz.4.5303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  616.435692][   T30] audit: type=1326 audit(582.405:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18548 comm="syz.4.5303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  616.532080][   T30] audit: type=1326 audit(582.405:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18548 comm="syz.4.5303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  616.612563][   T36] hfsplus: b-tree write err: -5, ino 4
[  616.629731][   T30] audit: type=1326 audit(582.405:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18548 comm="syz.4.5303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  616.721970][   T30] audit: type=1326 audit(582.405:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18548 comm="syz.4.5303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  616.753926][T18553] loop0: detected capacity change from 0 to 4096
[  616.800655][T18553] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  616.874858][T18553] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  617.536389][T18588] loop0: detected capacity change from 0 to 4096
[  617.570932][T18588] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  617.677856][T18588] ntfs3(loop0): ino=19, mi_enum_attr
[  617.702814][T18588] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  617.801090][T18588] ntfs3(loop0): failed to convert "c46c" to cp775
[  617.838800][T18588] ntfs3(loop0): ino=20, mi_enum_attr
[  618.644981][T18641] netlink: 'syz.4.5343': attribute type 4 has an invalid length.
[  618.768495][T18639] loop0: detected capacity change from 0 to 4096
[  618.845387][T18639] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[  618.860970][T18651] kAFS: unable to lookup cell 'mS²jQ€·”œ­=È A4Z1Ë¡8'
[  619.601942][T18683] loop4: detected capacity change from 0 to 512
[  619.701706][T18683] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  620.297393][ T5840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  620.991985][T18707] loop3: detected capacity change from 0 to 32768
[  621.025473][T18707] add_index: next_index = 0.  Resetting!
[  621.045978][T18707] find_entry called with index >= next_index
[  621.059496][T18707] find_entry called with index >= next_index
[  621.933509][T18777] netlink: 'syz.1.5400': attribute type 11 has an invalid length.
[  622.067592][   T30] audit: type=1326 audit(587.676:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  622.165269][   T30] audit: type=1326 audit(587.694:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  622.240413][T18787] loop3: detected capacity change from 0 to 4096
[  622.251559][   T30] audit: type=1326 audit(587.703:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  622.327394][T18793] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  622.335299][   T30] audit: type=1326 audit(587.712:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  622.450955][   T30] audit: type=1326 audit(587.712:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  622.561047][   T30] audit: type=1326 audit(587.712:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  622.649247][   T30] audit: type=1326 audit(587.712:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  622.729382][   T30] audit: type=1326 audit(587.712:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  622.800609][   T30] audit: type=1326 audit(587.712:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.2.5403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  623.069229][T18781] loop0: detected capacity change from 0 to 32768
[  623.091339][T18781] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5402 (18781)
[  623.123423][T18781] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  623.143687][T18781] BTRFS info (device loop0): using sha256 checksum algorithm
[  623.188676][T18815] loop2: detected capacity change from 0 to 4096
[  623.232970][T18815] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  623.248322][T18829] loop1: detected capacity change from 0 to 1024
[  623.262904][T18829] EXT4-fs: Ignoring removed oldalloc option
[  623.332166][T18781] BTRFS info (device loop0): enabling ssd optimizations
[  623.371643][T18781] BTRFS info (device loop0): turning on async discard
[  623.382876][T18829] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  623.395428][T18815] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  623.416981][T18781] BTRFS info (device loop0): enabling free space tree
[  623.449320][T18815] ntfs3(loop2): ino=1e, mi_enum_attr
[  623.466044][T18815] ntfs3(loop2): ino=1e, mi_enum_attr
[  623.483138][T18850] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5427'.
[  623.740538][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  624.030186][ T5846] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  624.201537][T18869] loop3: detected capacity change from 0 to 22
[  624.226556][T18869] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  624.258550][T18869] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  625.001663][T18891] loop1: detected capacity change from 0 to 4096
[  625.074754][T18900] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5451'.
[  625.123717][T18891] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  625.196941][T18891] ntfs3(loop1): Failed to load $Extend (-22).
[  625.232898][T18891] ntfs3(loop1): Failed to initialize $Extend.
[  625.586374][T18920] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5460'.
[  625.630968][T18920] tc_dump_action: action bad kind
[  625.645319][   T29] usb 1-1: new high-speed USB device number 117 using dummy_hcd
[  625.851897][   T29] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  625.884629][   T29] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=8e.0b
[  625.914450][   T29] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  625.922498][   T29] usb 1-1: Product: syz
[  625.940292][   T29] usb 1-1: Manufacturer: syz
[  625.944956][   T29] usb 1-1: SerialNumber: syz
[  625.979144][   T29] usb 1-1: config 0 descriptor??
[  626.185401][ T5916] usb 5-1: new high-speed USB device number 115 using dummy_hcd
[  626.188112][T18946] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5474'.
[  626.213605][T18948] netlink: 'syz.2.5475': attribute type 10 has an invalid length.
[  626.254944][T18948] veth1_macvtap: left promiscuous mode
[  626.382571][ T5916] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  626.426528][ T5916] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x7A, changing to 0xA
[  626.454079][ T5916] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  626.486389][ T5916] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  626.497755][ T1223] usb 1-1: USB disconnect, device number 117
[  626.521163][ T5916] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  626.529427][ T5916] usb 5-1: Manufacturer: syz
[  626.567386][ T5916] usb 5-1: config 0 descriptor??
[  626.609406][ T5916] igorplugusb 5-1:0.0: endpoint incorrect
[  626.657213][T18960] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5481'.
[  626.674913][T18960] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5481'.
[  626.800290][ T1223] usb 5-1: USB disconnect, device number 115
[  626.807618][T18966] dlm: no local IP address has been set
[  626.832191][T18966] dlm: cannot start dlm midcomms -107
[  626.922956][T18968] loop1: detected capacity change from 0 to 64
[  626.950334][T18970] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5487'.
[  626.982720][T18972] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  627.338424][T18979] loop1: detected capacity change from 0 to 4096
[  627.378437][T18979] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  627.536754][T18979] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  628.236797][   T30] audit: type=1326 audit(593.352:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.4.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  628.298041][   T30] audit: type=1326 audit(593.352:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.4.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  628.373884][   T30] audit: type=1326 audit(593.398:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.4.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  628.441378][   T30] audit: type=1326 audit(593.398:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.4.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  628.479694][T18992] loop0: detected capacity change from 0 to 32768
[  628.499556][   T30] audit: type=1326 audit(593.398:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.4.5508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  628.523193][T18992] find_entry called with index >= next_index
[  628.559323][T18992] find_entry called with index >= next_index
[  628.588323][T18992] find_entry called with index >= next_index
[  629.082745][T19039] xt_cgroup: path and classid specified
[  629.094712][T19034] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  629.148585][  T957] lo speed is unknown, defaulting to 1000
[  629.278564][T19044] loop4: detected capacity change from 0 to 1024
[  629.785729][T19052] loop4: detected capacity change from 0 to 8192
[  629.842308][T19052] FAT-fs (loop4): error, corrupted directory (invalid entries)
[  629.862474][T19052] FAT-fs (loop4): Filesystem has been set read-only
[  630.061717][T19042] loop0: detected capacity change from 0 to 32768
[  630.094171][T19042] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5521 (19042)
[  630.189220][T19042] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  630.203691][T19064] loop4: detected capacity change from 0 to 4096
[  630.219709][T19064] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  630.226510][T19042] BTRFS info (device loop0): using sha256 checksum algorithm
[  630.336971][T19064] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  630.356556][  T957] usb 3-1: new high-speed USB device number 127 using dummy_hcd
[  630.409843][T19042] BTRFS info (device loop0): enabling ssd optimizations
[  630.425659][T19056] loop1: detected capacity change from 0 to 32768
[  630.432217][T19042] BTRFS info (device loop0): turning on async discard
[  630.439061][T19042] BTRFS info (device loop0): enabling free space tree
[  630.532070][T19056] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  630.537098][  T957] usb 3-1: too many configurations: 202, using maximum allowed: 8
[  630.570557][  T957] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  630.586541][ T5846] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  630.594543][  T957] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  630.619272][  T957] usb 3-1: Product: syz
[  630.624231][  T957] usb 3-1: Manufacturer: syz
[  630.629446][  T957] usb 3-1: SerialNumber: syz
[  630.640501][T19058] Bluetooth: hci1: Opcode 0x080f failed: -4
[  630.642268][  T957] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  630.682664][T19056] XFS (loop1): Ending clean mount
[  630.708557][T19056] XFS (loop1): Quotacheck needed: Please wait.
[  630.762652][ T5916] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  630.821252][T19056] XFS (loop1): Quotacheck: Done.
[  630.921176][T19093] xt_l2tp: missing protocol rule (udp|l2tpip)
[  630.989568][ T5829] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  631.223244][T19098] loop4: detected capacity change from 0 to 1024
[  631.257699][T19098] EXT4-fs: Ignoring removed oldalloc option
[  631.379418][T19098] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  631.456893][   T29] usb 3-1: USB disconnect, device number 127
[  631.585980][T19098] EXT4-fs error (device loop4): ext4_empty_dir:3107: inode #11: block 623: comm syz.4.5538: Attempting to read directory block (623) that is past i_size (638464)
[  631.825148][ T5840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  631.960420][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  631.982034][ T5916] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  631.989280][ T5916] ath9k_htc: Failed to initialize the device
[  632.019140][   T29] usb 3-1: ath9k_htc: USB layer deinitialized
[  632.394083][T19141] xt_CT: You must specify a L4 protocol and not use inversions on it
[  632.420515][T19145] vim2m vim2m.0: Fourcc format (0x42474752) invalid.
[  632.555558][T19148] netdevsim netdevsim3: Firmware load for './cgroup/../file0' refused, path contains '..' component
[  632.557769][T19137] loop0: detected capacity change from 0 to 4096
[  632.573263][T19149] loop1: detected capacity change from 0 to 512
[  632.649332][T19149] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  632.776638][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  633.014995][T19167] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5566'.
[  633.074759][T19170] xt_TCPMSS: Only works on TCP SYN packets
[  633.480284][T19181] loop4: detected capacity change from 0 to 4096
[  633.513021][T19181] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  633.562366][T19181] ntfs3(loop4): ino=1a, mi_enum_attr
[  633.569330][T19187] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5579'.
[  633.591846][T19181] ntfs3(loop4): ino=1a, mi_enum_attr
[  633.602030][T19181] ntfs3(loop4): Failed to initialize $Extend/$Reparse.
[  633.710326][T19181] ntfs3(loop4): ino=1a, mi_enum_attr
[  634.111859][T19199] loop3: detected capacity change from 0 to 64
[  634.174731][T19201] netlink: 'syz.2.5586': attribute type 1 has an invalid length.
[  634.176201][T19199] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended.  mounting read-only.
[  634.199369][T19177] loop1: detected capacity change from 0 to 32768
[  634.210684][T19201] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5586'.
[  634.236576][T19199] hfs: filesystem is marked locked, mounting read-only.
[  634.237512][T19201] netlink: 658 bytes leftover after parsing attributes in process `syz.2.5586'.
[  634.263042][T19177] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.5574 (19177)
[  634.274128][T19201] netlink: 1 bytes leftover after parsing attributes in process `syz.2.5586'.
[  634.361182][T19177] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  634.382787][T19177] BTRFS info (device loop1): using sha256 checksum algorithm
[  634.557216][T19177] BTRFS info (device loop1): enabling ssd optimizations
[  634.568089][T19177] BTRFS info (device loop1): turning on async discard
[  634.582428][T19177] BTRFS info (device loop1): enabling free space tree
[  634.624789][T19229] netlink: 'syz.2.5593': attribute type 11 has an invalid length.
[  634.662458][T19229] netlink: 224 bytes leftover after parsing attributes in process `syz.2.5593'.
[  634.788125][ T5829] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  635.155176][T19244] loop0: detected capacity change from 0 to 4096
[  635.212952][T19244] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  635.268704][T19244] ntfs3(loop0): ino=3, mi_enum_attr
[  635.569153][T19244] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  635.588951][T19244] ntfs3(loop0): ino=1f, "file2" failed to open parent directory r=5 to update
[  635.730893][   T13] ntfs3(loop0): ino=1f, failed to open parent directory r=5 to update
[  636.139367][T19286] loop3: detected capacity change from 0 to 1024
[  636.195443][T19286] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  636.265598][T19297] netlink: 'syz.4.5625': attribute type 1 has an invalid length.
[  636.299701][T19297] netlink: 'syz.4.5625': attribute type 1 has an invalid length.
[  636.304761][T19286] EXT4-fs error (device loop3): __ext4_new_inode:1073: comm syz.3.5623: reserved inode found cleared - inode=1
[  636.339939][T19286] EXT4-fs (loop3): Remounting filesystem read-only
[  636.460965][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.958801][T19319] loop4: detected capacity change from 0 to 4096
[  637.030780][T19319] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  637.072074][T19319] ntfs3(loop4): Failed to load $Extend (-22).
[  637.093735][T19319] ntfs3(loop4): Failed to initialize $Extend.
[  637.469423][T19349] Cannot find del_set index 286 as target
[  637.479499][   T30] audit: type=1326 audit(601.908:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19347 comm="syz.2.5651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  637.561332][   T30] audit: type=1326 audit(601.908:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19347 comm="syz.2.5651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  637.626449][   T30] audit: type=1326 audit(601.908:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19347 comm="syz.2.5651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  637.714966][T19317] loop0: detected capacity change from 0 to 32768
[  637.732701][   T30] audit: type=1326 audit(601.908:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19347 comm="syz.2.5651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84af79aeb9 code=0x7ffc0000
[  637.765729][T19317] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5635 (19317)
[  637.821684][T19317] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  637.845637][T19317] BTRFS info (device loop0): using sha256 checksum algorithm
[  638.075119][   T30] audit: type=1326 audit(602.453:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19378 comm="syz.1.5659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  638.075470][T19317] BTRFS info (device loop0): enabling ssd optimizations
[  638.115978][T19317] BTRFS info (device loop0): turning on async discard
[  638.122938][   T30] audit: type=1326 audit(602.453:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19378 comm="syz.1.5659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  638.145010][   T30] audit: type=1326 audit(602.490:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19378 comm="syz.1.5659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  638.167190][   T30] audit: type=1326 audit(602.490:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19378 comm="syz.1.5659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  638.190185][   T30] audit: type=1326 audit(602.490:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19378 comm="syz.1.5659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  638.204453][T19317] BTRFS info (device loop0): enabling free space tree
[  638.265749][   T30] audit: type=1326 audit(602.536:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19378 comm="syz.1.5659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fabe015b78e code=0x7ffc0000
[  638.333042][T19383] loop2: detected capacity change from 0 to 4096
[  638.372577][T19383] EXT4-fs: Ignoring removed nomblk_io_submit option
[  638.433682][T19383] EXT4-fs (loop2): Test dummy encryption mode enabled
[  638.444404][ T5846] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  638.454629][T19383] EXT4-fs (loop2): stripe (97) is not aligned with cluster size (16), stripe is disabled
[  638.464354][T19383] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002]
[  638.494659][T19383] System zones: 0-5
[  638.583523][T19383] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  638.701771][T19383] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  639.003487][T19407] netlink: 'syz.0.5672': attribute type 8 has an invalid length.
[  639.048074][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  639.340125][T19417] netlink: 'syz.4.5678': attribute type 39 has an invalid length.
[  640.280038][T19452] program syz.1.5694 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  640.472835][T19454] loop0: detected capacity change from 0 to 1024
[  641.061192][T19479] ipt_rpfilter: unknown options
[  641.682213][T19511] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5723'.
[  641.965967][T19522] netlink: 'syz.1.5729': attribute type 21 has an invalid length.
[  641.966921][T19526] program syz.0.5730 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  641.992229][T19522] netlink: 'syz.1.5729': attribute type 20 has an invalid length.
[  641.993064][T19525] loop3: detected capacity change from 0 to 256
[  642.070034][T19525] FAT-fs (loop3): Directory bread(block 64) failed
[  642.090010][T19525] FAT-fs (loop3): Directory bread(block 65) failed
[  642.121797][T19525] FAT-fs (loop3): Directory bread(block 66) failed
[  642.147016][T19525] FAT-fs (loop3): Directory bread(block 67) failed
[  642.164743][T19525] FAT-fs (loop3): Directory bread(block 68) failed
[  642.190865][T19525] FAT-fs (loop3): Directory bread(block 69) failed
[  642.222471][T19525] FAT-fs (loop3): Directory bread(block 70) failed
[  642.229061][T19525] FAT-fs (loop3): Directory bread(block 71) failed
[  642.252208][T19534] loop0: detected capacity change from 0 to 512
[  642.261242][T19525] FAT-fs (loop3): Directory bread(block 72) failed
[  642.277847][T19525] FAT-fs (loop3): Directory bread(block 73) failed
[  642.289482][T19534] EXT4-fs error (device loop0): ext4_acquire_dquot:7003: comm syz.0.5735: Failed to acquire dquot type 1
[  642.373716][T19534] loop0: lost filesystem error report for type 5 error -5
[  642.382463][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  642.396125][    C0] EXT4-fs (loop0): last error at time 606: ext4_acquire_dquot:7003
[  642.406992][T19534] EXT4-fs (loop0): 1 truncate cleaned up
[  642.446358][T19534] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  642.476901][T19544] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5738'.
[  642.545292][T19534] EXT4-fs error (device loop0): ext4_acquire_dquot:7003: comm syz.0.5735: Failed to acquire dquot type 1
[  642.705662][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  642.713456][T19552] netlink: 68 bytes leftover after parsing attributes in process `syz.1.5742'.
[  642.783052][T19552] netlink: 64 bytes leftover after parsing attributes in process `syz.1.5742'.
[  643.260419][T19573] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5752'.
[  643.637422][T19584] netlink: 'syz.1.5759': attribute type 10 has an invalid length.
[  643.661200][T19584] netlink: 55 bytes leftover after parsing attributes in process `syz.1.5759'.
[  643.703674][T19556] loop2: detected capacity change from 0 to 32768
[  643.858156][T19591] loop0: detected capacity change from 0 to 512
[  643.906151][T19592] loop3: detected capacity change from 0 to 256
[  643.981655][T19592] FAT-fs (loop3): Directory bread(block 64) failed
[  644.039601][T19592] FAT-fs (loop3): Directory bread(block 65) failed
[  644.050378][T19592] FAT-fs (loop3): Directory bread(block 66) failed
[  644.060229][T19591] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  644.116690][T19592] FAT-fs (loop3): Directory bread(block 67) failed
[  644.142222][T19592] FAT-fs (loop3): Directory bread(block 68) failed
[  644.150650][T19601] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5765'.
[  644.166343][T19592] FAT-fs (loop3): Directory bread(block 69) failed
[  644.203698][T19592] FAT-fs (loop3): Directory bread(block 70) failed
[  644.224426][T19592] FAT-fs (loop3): Directory bread(block 71) failed
[  644.272165][T19592] FAT-fs (loop3): Directory bread(block 72) failed
[  644.279930][T19592] FAT-fs (loop3): Directory bread(block 73) failed
[  644.354509][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  644.830665][   T30] kauditd_printk_skb: 45 callbacks suppressed
[  644.830686][   T30] audit: type=1326 audit(608.683:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  644.879401][T19630] loop1: detected capacity change from 0 to 164
[  644.966330][T19630] iso9660: Corrupted directory entry in block 2 of inode 1920
[  644.977255][   T30] audit: type=1326 audit(608.720:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.075258][   T30] audit: type=1326 audit(608.720:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.132037][T19638] Invalid source name
[  645.145693][   T30] audit: type=1326 audit(608.720:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.167288][T19638] UBIFS error (pid: 19638): cannot open "./file0", error -22
[  645.210335][   T30] audit: type=1326 audit(608.729:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.287455][   T30] audit: type=1326 audit(608.729:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.407549][   T30] audit: type=1326 audit(608.729:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.430925][T19646] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5785'.
[  645.459236][   T30] audit: type=1326 audit(608.729:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.491151][T19646] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5785'.
[  645.503160][T19648] binder: 19647:19648 ioctl 400c620e 200000000100 returned -22
[  645.536480][   T30] audit: type=1326 audit(608.729:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.605350][T19624] loop4: detected capacity change from 0 to 32768
[  645.624014][   T30] audit: type=1326 audit(608.729:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19625 comm="syz.0.5776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9e4b99aeb9 code=0x7ffc0000
[  645.656639][T19624] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.5777 (19624)
[  645.716528][T19624] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  645.737916][T19654] loop3: detected capacity change from 0 to 64
[  645.786334][T19624] BTRFS info (device loop4): using sha256 checksum algorithm
[  645.933536][T19624] BTRFS info (device loop4): enabling ssd optimizations
[  645.951661][T19624] BTRFS info (device loop4): turning on async discard
[  645.973598][T19624] BTRFS info (device loop4): enabling free space tree
[  646.052858][T19676] netlink: 'syz.0.5792': attribute type 1 has an invalid length.
[  646.174310][ T5840] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  646.697388][T19650] loop2: detected capacity change from 0 to 32768
[  646.781964][T19701] netlink: 'syz.0.5805': attribute type 32 has an invalid length.
[  646.790396][T19616] Bluetooth: hci2: command 0x0406 tx timeout
[  646.980392][T19703] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5806'.
[  647.093252][T19707] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  647.450943][T19716] loop4: detected capacity change from 0 to 2048
[  647.489422][T19716] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  647.553674][T19716] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  647.586597][T19720] loop2: detected capacity change from 0 to 2048
[  647.669936][T19720] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  647.728951][T19720] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  647.803253][T19724] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  648.041404][T19705] loop0: detected capacity change from 0 to 32768
[  648.073537][T19705] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5809 (19705)
[  648.137024][T19705] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  648.179608][T19705] BTRFS info (device loop0): using sha256 checksum algorithm
[  648.243940][ T1223] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  648.293339][T19705] BTRFS info (device loop0): enabling ssd optimizations
[  648.295259][T19750] x_tables: duplicate underflow at hook 2
[  648.309587][T19705] BTRFS info (device loop0): turning on async discard
[  648.321696][T19705] BTRFS info (device loop0): enabling free space tree
[  648.418109][ T1223] usb 3-1: Using ep0 maxpacket: 32
[  648.425505][ T5846] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  648.429743][ T1223] usb 3-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  648.460641][ T5849] usb 2-1: new high-speed USB device number 116 using dummy_hcd
[  648.469197][ T1223] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  648.502163][ T1223] gspca_main: nw80x-2.14.0 probing 055f:d001
[  648.633850][ T5849] usb 2-1: Using ep0 maxpacket: 16
[  648.642400][ T5849] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  648.683367][ T5849] usb 2-1: config 0 has no interface number 0
[  648.700149][ T5849] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  648.754950][ T5849] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  648.789950][T19726] loop4: detected capacity change from 0 to 32768
[  648.796581][ T5849] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  648.804742][ T5849] usb 2-1: Product: syz
[  648.829753][ T5849] usb 2-1: SerialNumber: syz
[  648.839905][T19726] BTRFS info: device /dev/loop4 (7:4) using temp-fsid d34eefb1-0496-4f32-9f48-525a681447f1
[  648.863736][T19726] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.5817 (19726)
[  648.905829][ T5849] usb 2-1: config 0 descriptor??
[  648.920535][ T5849] cm109 2-1:0.8: invalid payload size 208, expected 4
[  648.943944][ T1223] gspca_nw80x: reg_r err -71
[  648.971671][ T5849] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input56
[  648.982242][T19726] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  648.999154][ T1223] nw80x 3-1:3.0: probe with driver nw80x failed with error -71
[  649.024814][ T1223] usb 3-1: USB disconnect, device number 2
[  649.033430][T19763] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  649.042288][T19726] BTRFS info (device loop4): using crc32c checksum algorithm
[  649.273977][T19726] BTRFS info (device loop4): turning off barriers
[  649.280568][T19726] BTRFS info (device loop4): enabling free space tree
[  649.302790][T19726] BTRFS info (device loop4): use zstd compression, level 3
[  649.342011][T19782] __nla_validate_parse: 1 callbacks suppressed
[  649.342060][T19782] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5830'.
[  649.426014][    C0] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  649.433463][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  649.440758][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  649.447994][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  649.455185][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  649.462416][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  649.469616][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  649.476710][ T1223] usb 2-1: USB disconnect, device number 116
[  649.476803][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  649.476826][    C0] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  649.506519][ T5840] BTRFS info (device loop4): last unmount of filesystem d34eefb1-0496-4f32-9f48-525a681447f1
[  649.561042][ T1223] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  649.681911][T19788] loop3: detected capacity change from 0 to 512
[  649.714244][T19788] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  649.756871][T19788] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[  649.782541][T19788] System zones: 1-12
[  649.786793][T19788] EXT4-fs (loop3): orphan cleanup on readonly fs
[  649.814611][T19788] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.5834: attempt to clear invalid blocks 1024 len 1
[  649.898727][T19788] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  649.901526][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  649.917246][    C1] EXT4-fs (loop3): initial error at time 613: ext4_clear_blocks:876: inode 11
[  649.926179][    C1] EXT4-fs (loop3): last error at time 613: ext4_clear_blocks:876: inode 11
[  649.947949][T19788] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5834: bg 0: block 361: padding at end of block bitmap is not set
[  650.031577][T19788] loop3: lost filesystem error report for type 5 error -117
[  650.032322][T19788] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6687: Corrupt filesystem
[  650.095727][T19788] loop3: lost filesystem error report for type 5 error -117
[  650.118672][T19788] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.5834: invalid indirect mapped block 1811939328 (level 0)
[  650.177365][T19788] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  650.177884][T19788] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.5834: invalid indirect mapped block 2 (level 2)
[  650.278391][T19788] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  650.279158][T19788] EXT4-fs (loop3): 1 truncate cleaned up
[  650.366616][T19810] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5844'.
[  650.377365][T19788] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  650.522249][T19788] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (17031!=33349)
[  650.670846][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  650.808680][T19825] i2c i2c-0: Invalid block write size 150
[  650.998064][T19834] loop3: detected capacity change from 0 to 64
[  651.453737][T19856] netlink: 'syz.2.5867': attribute type 41 has an invalid length.
[  651.826232][T19873] loop0: detected capacity change from 0 to 1764
[  652.300253][T19895] netlink: 'syz.3.5887': attribute type 9 has an invalid length.
[  653.140950][  T119] usb 4-1: new high-speed USB device number 107 using dummy_hcd
[  653.183102][T19935] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  653.220122][T19935] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  653.245514][T19935] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  653.282680][T19937] netlink: 56 bytes leftover after parsing attributes in process `syz.2.5907'.
[  653.291833][T19937] netlink: 92 bytes leftover after parsing attributes in process `syz.2.5907'.
[  653.301953][T19937] netlink: 'syz.2.5907': attribute type 2 has an invalid length.
[  653.326861][  T119] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  653.341079][  T119] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  653.363565][  T119] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  653.374873][  T119] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  653.385296][  T119] usb 4-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  653.395863][  T119] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.415471][  T119] usb 4-1: config 0 descriptor??
[  653.586492][T19929] loop1: detected capacity change from 0 to 32768
[  653.614876][T19929] BTRFS info: device /dev/loop1 (7:1) using temp-fsid 56dfe5ee-8984-42d3-8ef9-eeff496fc585
[  653.650906][T19929] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.5903 (19929)
[  653.655748][  T119] hdpvr 4-1:0.0: firmware version 0x1e dated 
[  653.704822][T19929] BTRFS info (device loop1 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  653.746802][T19929] BTRFS info (device loop1 state S): using crc32c checksum algorithm
[  653.822049][   T36] BTRFS warning (device loop1 state ES): checksum verify failed on logical 1052672 mirror 1 wanted 0x37e030f7 found 0x6dcb794b level 0, ignored
[  653.874928][  T119] hdpvr 4-1:0.0: device init failed
[  653.896734][  T119] hdpvr 4-1:0.0: probe with driver hdpvr failed with error -12
[  653.920293][T19929] BTRFS critical (device loop1 state ES): unable to find chunk map for logical 5332992 length 4096
[  653.941211][T19929] BTRFS critical (device loop1 state ES): unable to find chunk map for logical 5332992 length 4096
[  653.952357][  T119] usb 4-1: USB disconnect, device number 107
[  653.961254][T19929] BTRFS warning (device loop1 state ES): couldn't read tree root
[  654.027130][T19968] SET target dimension over the limit!
[  654.128998][T19929] BTRFS error (device loop1 state ES): open_ctree failed: -5
[  654.285932][T19970] loop2: detected capacity change from 0 to 2048
[  654.358997][T19970] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  654.715687][T19987] mmap: syz.0.5926 (19987): VmData 37470208 exceed data ulimit 9868. Update limits or use boot option ignore_rlimit_data.
[  654.733639][  T119] usb 2-1: new high-speed USB device number 117 using dummy_hcd
[  654.744633][T19988] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5925'.
[  654.905709][T19984] loop4: detected capacity change from 0 to 4096
[  654.941422][  T119] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[  654.976481][  T119] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  655.017003][  T119] usb 2-1: config 0 descriptor??
[  655.506642][  T119] ath6kl: Failed to read usb control message: -71
[  655.519126][T20005] loop4: detected capacity change from 0 to 4096
[  655.547185][  T119] ath6kl: Unable to read the bmi data from the device: -71
[  655.560249][  T119] ath6kl: Unable to recv target info: -71
[  655.596267][  T119] ath6kl: Failed to init ath6kl core: -71
[  655.614030][  T119] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  655.682387][T20005] ntfs3(loop4): ino=5, "/" indx_read_ra
[  655.686056][  T119] usb 2-1: USB disconnect, device number 117
[  655.855621][T20018] loop3: detected capacity change from 0 to 256
[  656.040193][T19997] loop2: detected capacity change from 0 to 32768
[  656.077745][T19997] BTRFS info: device /dev/loop2 (7:2) using temp-fsid 79def635-fe5a-48aa-b1e0-3585104c7fc8
[  656.138667][T19997] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.5930 (19997)
[  656.183132][T19997] BTRFS info (device loop2 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  656.200715][T19997] BTRFS info (device loop2 state S): using crc32c checksum algorithm
[  656.368972][ T3557] BTRFS warning (device loop2 state ES): checksum verify failed on logical 1052672 mirror 1 wanted 0x37e030f7 found 0x4e035593 level 0, ignored
[  656.471483][   T36] BTRFS warning (device loop2 state ES): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xbeadaddc level 0, ignored
[  656.493977][   T36] BTRFS warning (device loop2 state ES): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x48746f3c level 0, ignored
[  656.538362][ T1096] BTRFS warning (device loop2 state ES): checksum verify failed on logical 5328896 mirror 1 wanted 0x51ec978b found 0x49206b5e level 0, ignored
[  656.575749][   T24] usb 5-1: new high-speed USB device number 116 using dummy_hcd
[  656.585512][T19997] BTRFS info (device loop2 state ES): bdev /dev/loop2 errs: wr 0, rd 0, flush 0, corrupt 7, gen 0
[  656.675783][T19997] BTRFS info (device loop2 state ES): enabling ssd optimizations
[  656.700460][T19997] BTRFS info (device loop2 state ES): disabling tree log
[  656.713469][T20057] loop1: detected capacity change from 0 to 1764
[  656.727552][T19997] BTRFS info (device loop2 state ES): turning on flush-on-commit
[  656.741286][T19997] BTRFS info (device loop2 state ES): enabling free space tree
[  656.761785][   T24] usb 5-1: config 160 has an invalid interface number: 200 but max is 0
[  656.772214][T19997] BTRFS info (device loop2 state ES): ignoring meta csums
[  656.779372][T19997] BTRFS info (device loop2 state ES): use zlib compression, level 3
[  656.791223][   T24] usb 5-1: config 160 has no interface number 0
[  656.808608][T20057] iso9660: Corrupted directory entry in block 2 of inode 1920
[  656.818837][   T24] usb 5-1: config 160 interface 200 has no altsetting 0
[  656.838264][T20063] loop3: detected capacity change from 0 to 64
[  656.848378][   T77] BTRFS warning (device loop2 state ES): checksum verify failed on logical 5308416 mirror 1 wanted 0xe1d58233 found 0x9b2456e4 level 0, ignored
[  656.850504][   T24] usb 5-1: New USB device found, idVendor=21bb, idProduct=2070, bcdDevice=87.0b
[  656.886159][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  656.900367][   T24] usb 5-1: Product: syz
[  656.933521][   T24] usb 5-1: Manufacturer: syz
[  656.938181][   T24] usb 5-1: SerialNumber: syz
[  657.187308][T20072] overlayfs: conflicting options: metacopy=on,redirect_dir=follow
[  657.253571][   T24] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  657.290525][   T24] usb 5-1: MIDIStreaming interface descriptor not found
[  657.548333][   T24] usb 5-1: USB disconnect, device number 116
[  657.715089][ T5834] BTRFS info (device loop2 state ES): last unmount of filesystem 79def635-fe5a-48aa-b1e0-3585104c7fc8
[  658.094370][   T36] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.342164][   T36] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.390362][T20084] loop1: detected capacity change from 0 to 32768
[  658.405677][T20084] BTRFS info: device /dev/loop1 (7:1) using temp-fsid f608fa30-ec5b-40d0-b3fc-3040deda8f32
[  658.416636][T20084] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.5966 (20084)
[  658.488846][T20084] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  658.536423][T20084] BTRFS info (device loop1): using crc32c checksum algorithm
[  658.550628][   T36] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.791092][   T36] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.820143][T20084] BTRFS info (device loop1): turning off barriers
[  658.826627][T20084] BTRFS info (device loop1): enabling free space tree
[  658.904857][T20084] BTRFS info (device loop1): use zstd compression, level 3
[  658.913263][T20125] loop0: detected capacity change from 0 to 512
[  658.938921][T20125] EXT4-fs: Ignoring removed orlov option
[  658.947234][T20125] EXT4-fs: Ignoring removed bh option
[  659.016988][T20125] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  659.043395][T19616] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  659.054534][T19616] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  659.065082][T19616] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  659.074382][T19616] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  659.093107][T19616] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  659.099077][T20125] EXT4-fs (loop0): orphan cleanup on readonly fs
[  659.180390][T20125] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5980: bg 0: block 248: padding at end of block bitmap is not set
[  659.204248][ T5829] BTRFS info (device loop1): last unmount of filesystem f608fa30-ec5b-40d0-b3fc-3040deda8f32
[  659.221797][T20125] loop0: lost filesystem error report for type 5 error -117
[  659.229721][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  659.243828][    C1] EXT4-fs (loop0): last error at time 621: ext4_validate_block_bitmap:441
[  659.260780][T20125] Quota error (device loop0): write_blk: dquota write failed
[  659.273937][T20125] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  659.284307][T20125] EXT4-fs error (device loop0): ext4_acquire_dquot:7003: comm syz.0.5980: Failed to acquire dquot type 1
[  659.296239][T20125] loop0: lost filesystem error report for type 5 error -117
[  659.297683][T20125] EXT4-fs (loop0): 1 truncate cleaned up
[  659.354589][T20125] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  659.466617][T20125] EXT4-fs: Ignoring removed orlov option
[  659.532147][T20125] EXT4-fs: Ignoring removed bh option
[  659.554979][T20125] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  659.563198][   T36] bridge_slave_1: left allmulticast mode
[  659.588820][T20141] netlink: 520 bytes leftover after parsing attributes in process `syz.3.5987'.
[  659.591114][   T36] bridge_slave_1: left promiscuous mode
[  659.635285][T20125] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  659.670007][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  659.772449][T20125] EXT4-fs error (device loop0): __ext4_remount:6806: comm syz.0.5980: Abort forced by user
[  659.818026][   T36] bridge_slave_0: left allmulticast mode
[  659.823965][   T36] bridge_slave_0: left promiscuous mode
[  659.847838][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  659.858431][T20125] EXT4-fs (loop0): Remounting filesystem read-only
[  659.864983][T20125] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  660.089641][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  660.397472][   T30] audit: type=1326 audit(623.054:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20169 comm="syz.1.5994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  660.454543][   T30] audit: type=1326 audit(623.082:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20169 comm="syz.1.5994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  660.495530][   T30] audit: type=1326 audit(623.082:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20169 comm="syz.1.5994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  660.530970][   T30] audit: type=1326 audit(623.082:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20169 comm="syz.1.5994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  660.555990][   T30] audit: type=1326 audit(623.082:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20169 comm="syz.1.5994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabe019aeb9 code=0x7ffc0000
[  660.988177][T20186] netlink: 208 bytes leftover after parsing attributes in process `syz.1.6000'.
[  661.215719][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  661.234892][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  661.247904][   T36] bond0 (unregistering): Released all slaves
[  661.290242][T20126] lo speed is unknown, defaulting to 1000
[  661.342843][   T51] Bluetooth: hci2: command tx timeout
[  661.777753][T20212] loop1: detected capacity change from 0 to 512
[  661.876094][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  661.882472][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  661.911859][T20212] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #3: comm syz.1.6012: corrupted inode contents
[  661.971120][T20212] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  661.971700][T20212] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #3: comm syz.1.6012: mark_inode_dirty error
[  661.992117][    C0] EXT4-fs (loop1): error count since last fsck: 1
[  661.992144][    C0] EXT4-fs (loop1): initial error at time 624: ext4_do_update_inode:5569: inode 3
[  661.992177][    C0] EXT4-fs (loop1): last error at time 624: ext4_do_update_inode:5569: inode 3
[  662.124539][T20212] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  662.127331][T20212] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #3: comm syz.1.6012: corrupted inode contents
[  662.224162][T20212] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  662.224682][T20212] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #3: comm syz.1.6012: mark_inode_dirty error
[  662.270611][T20212] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  662.271546][T20212] Quota error (device loop1): write_blk: dquota write failed
[  662.317642][T20212] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  662.365056][T20212] EXT4-fs error (device loop1): ext4_acquire_dquot:7003: comm syz.1.6012: Failed to acquire dquot type 0
[  662.402090][T20212] loop1: lost filesystem error report for type 5 error -117
[  662.426111][T20212] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #16: comm syz.1.6012: corrupted inode contents
[  662.470899][T20212] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  662.472933][T20212] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #16: comm syz.1.6012: mark_inode_dirty error
[  662.493919][T20212] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  662.494426][T20212] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #16: comm syz.1.6012: corrupted inode contents
[  662.515883][T20212] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  662.516632][T20212] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #16: comm syz.1.6012: mark_inode_dirty error
[  662.558970][T20212] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  662.559582][T20212] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #16: comm syz.1.6012: corrupted inode contents
[  662.621043][T20212] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  662.639877][T20212] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[  662.699707][T20212] loop1: lost filesystem error report for type 5 error -117
[  662.710702][T20212] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #16: comm syz.1.6012: corrupted inode contents
[  662.798320][T20212] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  662.802144][T20212] EXT4-fs error (device loop1): ext4_truncate:4587: inode #16: comm syz.1.6012: mark_inode_dirty error
[  662.802499][T20253] xt_limit: Overflow, try lower: 65536/2147483648
[  662.850847][T20212] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[  662.872103][   T36] hsr_slave_0: left promiscuous mode
[  662.913400][T20212] loop1: lost filesystem error report for type 5 error -117
[  662.933441][   T36] hsr_slave_1: left promiscuous mode
[  662.933613][T20212] EXT4-fs (loop1): 1 truncate cleaned up
[  662.964400][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  662.980702][T20212] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  663.003480][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  663.065694][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  663.097836][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  663.179268][   T36] veth0_macvtap: left promiscuous mode
[  663.210491][   T36] veth1_vlan: left promiscuous mode
[  663.215903][   T36] veth0_vlan: left promiscuous mode
[  663.250766][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.516722][T20274] loop1: detected capacity change from 0 to 256
[  663.570842][T20274] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  663.599708][   T51] Bluetooth: hci2: command tx timeout
[  663.907968][T20287] MPI: mpi too large (124808 bits)
[  664.014620][T20290] loop3: detected capacity change from 0 to 2048
[  664.090182][T20290] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 129: 0x32 != 0x7d
[  664.110148][T20290] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  664.534272][T20309] openvswitch: netlink: IPv4 tun info is not correct
[  664.931115][   T36] team0 (unregistering): Port device team_slave_1 removed
[  664.977468][   T36] team0 (unregistering): Port device team_slave_0 removed
[  665.393094][   T13] infiniband: netdevice_event(NETDEV_UNREGISTER) ib_dev=ffff88807e174000 (7)(syz0) start
[  665.425425][  T119] lo speed is unknown, defaulting to 1000
[  665.432579][  T119] syz0: Port: 1 Link DOWN
[  665.449185][T20316] netlink: 666 bytes leftover after parsing attributes in process `syz.0.6055'.
[  665.474185][T20126] chnl_net:caif_netlink_parms(): no params data found
[  665.532073][   T13] infiniband: Removed from hash: ib_dev=ffff88807e174000 (0)(syz0) ndev=ffff8880758b8000 (3)(lo)
[  665.627384][   T13] infiniband: netdevice_event(NETDEV_UNREGISTER) ib_dev=ffff88807e174000 (0)(syz0) end
[  665.849583][   T51] Bluetooth: hci2: command tx timeout
[  666.130738][T20126] bridge0: port 1(bridge_slave_0) entered blocking state
[  666.151084][T20126] bridge0: port 1(bridge_slave_0) entered disabled state
[  666.164172][T20126] bridge_slave_0: entered allmulticast mode
[  666.184881][T20126] bridge_slave_0: entered promiscuous mode
[  666.232837][T20126] bridge0: port 2(bridge_slave_1) entered blocking state
[  666.276273][T20126] bridge0: port 2(bridge_slave_1) entered disabled state
[  666.301273][T20126] bridge_slave_1: entered allmulticast mode
[  666.321186][T20126] bridge_slave_1: entered promiscuous mode
[  666.483921][T20126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  666.624730][T20126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  666.779839][T20126] team0: Port device team_slave_0 added
[  666.836760][T20126] team0: Port device team_slave_1 added
[  666.962641][T20376] netlink: 'syz.4.6076': attribute type 2 has an invalid length.
[  667.032001][T20126] batman_adv: batadv0: Adding interface: batadv_slave_0
[  667.039082][T20126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  667.093131][T20126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  667.174351][T20126] batman_adv: batadv0: Adding interface: batadv_slave_1
[  667.181461][T20126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  667.239931][T20126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  667.490424][T20126] hsr_slave_0: entered promiscuous mode
[  667.510562][T20126] hsr_slave_1: entered promiscuous mode
[  667.520179][T20126] debugfs: 'hsr0' already exists in 'hsr'
[  667.528791][T20126] Cannot create hsr debugfs directory
[  667.910130][ T1223] usb 5-1: new high-speed USB device number 117 using dummy_hcd
[  667.966432][T20416] loop0: detected capacity change from 0 to 164
[  668.039167][T20416] iso9660: Corrupted directory entry in block 2 of inode 1920
[  668.104505][   T51] Bluetooth: hci2: command tx timeout
[  668.118529][ T1223] usb 5-1: Using ep0 maxpacket: 8
[  668.166521][ T1223] usb 5-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  668.203893][ T1223] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  668.237059][ T1223] usb 5-1: Product: syz
[  668.241279][ T1223] usb 5-1: Manufacturer: syz
[  668.281880][ T1223] usb 5-1: SerialNumber: syz
[  668.307040][ T1223] usb 5-1: config 0 descriptor??
[  668.365895][ T1223] gspca_main: sq930x-2.14.0 probing 2770:930c
[  668.488714][T20436] netlink: 'syz.3.6100': attribute type 1 has an invalid length.
[  668.524357][T20126] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  668.587766][T20126] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  668.692199][T20126] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  668.748722][T20126] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  668.780611][ T1223] gspca_sq930x: ucbus_write failed -71
[  669.056462][ T1223] gspca_sq930x: Sensor ov9630 not yet treated
[  669.065560][ T1223] sq930x 5-1:0.0: probe with driver sq930x failed with error -22
[  669.137482][ T1223] usb 5-1: USB disconnect, device number 117
[  669.287414][T20126] 8021q: adding VLAN 0 to HW filter on device bond0
[  669.376874][T20429] loop0: detected capacity change from 0 to 32768
[  669.424716][T20126] 8021q: adding VLAN 0 to HW filter on device team0
[  669.478441][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  669.485709][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  669.590650][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  669.597842][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  669.849197][T20480] netlink: 64 bytes leftover after parsing attributes in process `syz.1.6114'.
[  670.102855][T20485] loop4: detected capacity change from 0 to 2048
[  670.216058][ T6969] GPT:first_usable_lbas don't match.
[  670.224480][ T6969] GPT:34 != 290
[  670.237977][ T6969] GPT: Use GNU Parted to correct GPT errors.
[  670.260036][ T6969]  loop4: p1 p2 p3
[  670.385797][T20485] GPT:first_usable_lbas don't match.
[  670.407562][T20485] GPT:34 != 290
[  670.427320][T20485] GPT: Use GNU Parted to correct GPT errors.
[  670.454593][T20485]  loop4: p1 p2 p3
[  670.470281][T20503] netlink: 'syz.1.6121': attribute type 10 has an invalid length.
[  670.494747][T20503] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6121'.
[  670.515165][T20503] dummy0: entered promiscuous mode
[  670.539165][T20503] bridge0: port 3(dummy0) entered blocking state
[  670.559286][T20503] bridge0: port 3(dummy0) entered disabled state
[  670.567498][T20503] dummy0: entered allmulticast mode
[  670.588338][T20503] bridge0: port 3(dummy0) entered blocking state
[  670.594947][T20503] bridge0: port 3(dummy0) entered forwarding state
[  670.652759][ T6969] udevd[6969]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  670.655111][ T5885] udevd[5885]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  670.678204][T20508] xt_l2tp: invalid flags combination: c
[  670.688192][ T6971] udevd[6971]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  670.782937][ T6969] udevd[6969]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  670.794398][ T5885] udevd[5885]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  670.798974][ T6971] udevd[6971]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  670.814699][T20126] 8021q: adding VLAN 0 to HW filter on device batadv0
[  671.007276][T20521] loop1: detected capacity change from 0 to 8
[  671.074950][T20521] SQUASHFS error: Unable to read inode 0xa7
[  671.568005][T20542] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6138'.
[  671.856200][T20126] veth0_vlan: entered promiscuous mode
[  671.901174][T20126] veth1_vlan: entered promiscuous mode
[  672.040901][T20126] veth0_macvtap: entered promiscuous mode
[  672.060168][T20126] veth1_macvtap: entered promiscuous mode
[  672.119184][T20126] batman_adv: batadv0: Interface activated: batadv_slave_0
[  672.196006][T20126] batman_adv: batadv0: Interface activated: batadv_slave_1
[  672.241062][   T49] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  672.302442][   T49] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  672.345974][   T49] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  672.367457][   T49] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  672.423508][T20536] loop0: detected capacity change from 0 to 32768
[  672.432556][T20568] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  672.502835][T20536] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  672.702969][ T1096] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  672.709108][T20536] XFS (loop0): Ending clean mount
[  672.719033][ T1096] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  672.856902][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  672.872166][ T5846] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  672.883482][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  673.033081][   T30] audit: type=1326 audit(634.712:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20585 comm="syz.4.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  673.124996][   T30] audit: type=1326 audit(634.712:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20585 comm="syz.4.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  673.256853][   T30] audit: type=1326 audit(634.749:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20585 comm="syz.4.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  673.293206][T20594] loop1: detected capacity change from 0 to 128
[  673.326920][T20597] netlink: 80 bytes leftover after parsing attributes in process `syz.3.6159'.
[  673.353894][   T30] audit: type=1326 audit(634.749:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20585 comm="syz.4.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  673.405146][T20594] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  673.414331][   T30] audit: type=1326 audit(634.749:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20585 comm="syz.4.6155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  673.433509][T20594] System zones: 1-3, 19-19, 35-36
[  673.522052][T20594] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  673.552782][T20604] netlink: 128 bytes leftover after parsing attributes in process `syz.0.6164'.
[  673.581862][T20606] netlink: 14 bytes leftover after parsing attributes in process `syz.5.6161'.
[  673.598765][T20608] binder: Bad value for 'stats'
[  673.628699][T20594] EXT4-fs warning (device loop1): ext4_group_extend:1862: can't shrink FS - resize aborted
[  673.784415][ T5829] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  674.016370][T20619] Cannot find del_set index 2334 as target
[  674.450625][T20636] loop4: detected capacity change from 0 to 2048
[  674.505156][T20636] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  674.938330][T20615] loop3: detected capacity change from 0 to 32768
[  674.997666][T20615] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  675.099687][T20615] XFS (loop3): Ending clean mount
[  675.115518][T20627] loop1: detected capacity change from 0 to 32768
[  675.122591][T20660] netlink: 'syz.4.6184': attribute type 10 has an invalid length.
[  675.132611][T20615] XFS (loop3): Quotacheck needed: Please wait.
[  675.156452][T20660] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6184'.
[  675.179799][T20627] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6171 (20627)
[  675.220345][T20660] dummy0: entered promiscuous mode
[  675.227601][T20615] XFS (loop3): Quotacheck: Done.
[  675.237679][T20627] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  675.248805][T20627] BTRFS info (device loop1): using sha256 checksum algorithm
[  675.269813][T20660] bridge0: port 3(dummy0) entered blocking state
[  675.365125][T20660] bridge0: port 3(dummy0) entered disabled state
[  675.424769][T20660] dummy0: entered allmulticast mode
[  675.434885][T20627] BTRFS info (device loop1): enabling ssd optimizations
[  675.451705][T20627] BTRFS info (device loop1): turning on async discard
[  675.463561][T20627] BTRFS info (device loop1): enabling free space tree
[  675.496851][T20660] bridge0: port 3(dummy0) entered blocking state
[  675.503466][T20660] bridge0: port 3(dummy0) entered forwarding state
[  675.554339][ T5830] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  675.635079][T20627] BTRFS info (device loop1): balance: start -f
[  675.647893][T20646] loop0: detected capacity change from 0 to 32768
[  675.681771][T20627] BTRFS info (device loop1): balance: ended with status: 0
[  675.689208][T20646] BTRFS info: device /dev/loop0 (7:0) using temp-fsid a63452bc-c817-4674-b164-c7bc4564efcc
[  675.689292][T20646] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6180 (20646)
[  675.743300][T20646] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  675.829591][T20646] BTRFS info (device loop0): using sha256 checksum algorithm
[  676.028148][T20698] loop4: detected capacity change from 0 to 512
[  676.104805][ T5829] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  676.126829][T20698] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  676.194740][T20646] BTRFS info (device loop0): enabling ssd optimizations
[  676.229212][T20646] BTRFS info (device loop0): turning on async discard
[  676.261228][T20646] BTRFS info (device loop0): enabling free space tree
[  676.327008][T20710] loop3: detected capacity change from 0 to 4096
[  676.349510][T20698] Quota error (device loop4): do_check_range: Getting dqdh_next_free 2741 out of range 0-6
[  676.421685][T20698] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  676.421896][T20710] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  676.488485][T20698] EXT4-fs error (device loop4): ext4_acquire_dquot:7003: comm syz.4.6190: Failed to acquire dquot type 0
[  676.541665][ T5846] BTRFS info (device loop0): last unmount of filesystem a63452bc-c817-4674-b164-c7bc4564efcc
[  676.577255][T20710] ntfs3(loop3): ino=1a, mi_enum_attr
[  676.587572][T20710] ntfs3(loop3): ino=1a, mi_enum_attr
[  676.598963][T20710] ntfs3(loop3): Failed to initialize $Extend/$Reparse.
[  676.676147][T20713] loop5: detected capacity change from 0 to 764
[  676.715115][ T5840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  676.773311][T20710] ntfs3(loop3): ino=5, "/" indx_read_ra
[  676.785286][T20713] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  677.273921][T20727] loop1: detected capacity change from 0 to 512
[  677.338549][T20727] EXT4-fs: Ignoring removed orlov option
[  677.426339][T20727] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  677.712333][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  677.726479][T20745] IPv6: sit2: Disabled Multicast RS
[  677.733018][T20745] sit2: entered allmulticast mode
[  677.842975][   T29] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  678.037993][   T29] usb 6-1: Using ep0 maxpacket: 16
[  678.080978][   T29] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  678.089552][T20756] overlayfs: missing 'workdir'
[  678.113916][   T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  678.146276][   T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  678.178867][   T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  678.188575][   T29] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  678.222222][   T29] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  678.232960][   T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  678.254457][   T29] usb 6-1: config 0 descriptor??
[  678.427979][   T29] rc_core: IR keymap rc-hauppauge not found
[  678.433973][   T29] Registered IR keymap rc-empty
[  678.452482][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.493061][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.505933][T20765] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6215'.
[  678.527371][   T29] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[  678.611583][   T29] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input58
[  678.692860][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.762766][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.811775][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.850801][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.871550][T20751] loop0: detected capacity change from 0 to 32768
[  678.895933][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.936289][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.984208][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  678.989517][T20751] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  679.013185][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  679.034969][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  679.055952][T20751] XFS (loop0): Ending clean mount
[  679.061866][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  679.067971][T20782] loop4: detected capacity change from 0 to 1764
[  679.128087][T20751] XFS (loop0): Quotacheck needed: Please wait.
[  679.165855][   T29] mceusb 6-1:0.0: Registered  with mce emulator interface version 1
[  679.186717][T20782] iso9660: Corrupted directory entry in block 2 of inode 1920
[  679.215337][   T29] mceusb 6-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  679.236742][   T29] usb 6-1: USB disconnect, device number 2
[  679.361488][T20751] XFS (loop0): Quotacheck: Done.
[  679.553542][ T5846] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  680.887859][T20854] xt_CT: You must specify a L4 protocol and not use inversions on it
[  681.010691][T20858] loop5: detected capacity change from 0 to 256
[  681.104425][T20858] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  681.148431][T20866] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6257'.
[  681.358123][T20873] sock: sock_timestamping_bind_phc: sock not bind to device
[  681.636235][T20884] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6262'.
[  681.645351][T20884] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6262'.
[  681.678826][T20884] netlink: 'syz.0.6262': attribute type 6 has an invalid length.
[  681.863975][T20893] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6266'.
[  682.516460][T20871] loop4: detected capacity change from 0 to 32768
[  682.622322][T20871] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  682.783531][T20871] XFS (loop4): Ending clean mount
[  682.897001][T20942] loop1: detected capacity change from 0 to 16
[  683.054668][ T5840] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  683.583556][T20967] loop1: detected capacity change from 0 to 128
[  683.619576][T20970] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6292'.
[  683.642727][T20967] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  683.665719][T20970] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6292'.
[  683.693832][T20967] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  684.144695][T20989] loop1: detected capacity change from 0 to 512
[  684.199396][T20989] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  684.236836][T20989] EXT4-fs (loop1): invalid journal inode
[  684.242640][T20989] EXT4-fs (loop1): can't get journal size
[  684.392046][T20989] EXT4-fs (loop1): 1 truncate cleaned up
[  684.426664][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.452420][T20989] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  684.490284][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.535643][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.596090][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.646980][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.691289][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.712581][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.739244][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.781153][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.783544][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  684.812826][T21005] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6306'.
[  684.885052][T21022] loop4: detected capacity change from 0 to 2048
[  684.921853][T21022] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  685.171028][T21017] bond1: option lacp_rate: mode dependency failed, not supported in mode active-backup(1)
[  685.251945][T21017] bond1 (unregistering): Released all slaves
[  685.398832][T21037] loop5: detected capacity change from 0 to 512
[  685.489118][T21037] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  685.645994][T20126] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.022554][T21067] loop3: detected capacity change from 0 to 512
[  686.095506][T21067] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  686.278338][T21067] EXT4-fs error (device loop3): ext4_empty_dir:3078: inode #12: comm syz.3.6327: Directory hole found for htree leaf block 0
[  686.475195][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.931531][T21098] loop3: detected capacity change from 0 to 4096
[  687.002875][T21108] loop0: detected capacity change from 0 to 164
[  687.025712][T21105] bridge0: port 3(dummy0) entered disabled state
[  687.032376][T21105] bridge0: port 2(bridge_slave_1) entered disabled state
[  687.039897][T21105] bridge0: port 1(bridge_slave_0) entered disabled state
[  687.100572][T21108] Unable to read rock-ridge attributes
[  687.163295][T21108] Unable to read rock-ridge attributes
[  687.196093][T21108] iso9660: Corrupted directory entry in block 4 of inode 1792
[  688.044354][T21146] loop5: detected capacity change from 0 to 128
[  688.149850][T21104] loop1: detected capacity change from 0 to 40427
[  688.178441][T21104] F2FS-fs: heap/no_heap options were deprecated
[  688.223408][T21104] F2FS-fs (loop1): build fault injection rate: 19
[  688.229896][T21104] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[  688.252200][T21104] F2FS-fs (loop1): invalid crc value
[  688.255102][T21151] loop3: detected capacity change from 0 to 256
[  688.294136][T21104] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_build_free_nids+0x9d8/0x1810
[  688.310122][T21151] exfat: Deprecated parameter 'namecase'
[  688.346523][T21151] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  688.381154][T21151] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[  688.529194][T21163] loop0: detected capacity change from 0 to 164
[  688.598011][T21104] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x221/0x410
[  688.691512][T21104] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  688.745036][T21104] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  688.907414][T21174] sit0: entered promiscuous mode
[  688.931621][T21174] netlink: 'syz.5.6373': attribute type 1 has an invalid length.
[  689.271163][T21185] loop0: detected capacity change from 0 to 2048
[  689.349011][T21192] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  689.407162][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.446961][T21185] Remounting filesystem read-only
[  689.469724][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.514784][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.540881][T21195] netlink: 'syz.3.6384': attribute type 58 has an invalid length.
[  689.608170][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.686434][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.722754][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.761367][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.771268][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.856154][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.898717][T21185] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  689.944863][   T30] audit: type=1800 audit(650.320:165): pid=21185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.6380" name="file2" dev="loop0" ino=16 res=0 errno=0
[  690.015309][T21185] syz.0.6380 (21185) used greatest stack depth: 18568 bytes left
[  690.359033][  T957] usb 4-1: new high-speed USB device number 108 using dummy_hcd
[  690.430969][T21227] loop0: detected capacity change from 0 to 256
[  690.498280][T21228] loop5: detected capacity change from 0 to 1024
[  690.542746][  T957] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 53407, setting to 1024
[  690.553706][T21228] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  690.562502][T21227] FAT-fs (loop0): Directory bread(block 64) failed
[  690.605798][  T957] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[  690.615802][  T957] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  690.631708][T21227] FAT-fs (loop0): Directory bread(block 65) failed
[  690.643245][T21232] loop4: detected capacity change from 0 to 1024
[  690.655903][T21227] FAT-fs (loop0): Directory bread(block 66) failed
[  690.681947][T21227] FAT-fs (loop0): Directory bread(block 67) failed
[  690.700526][T21227] FAT-fs (loop0): Directory bread(block 68) failed
[  690.709592][  T957] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  690.729840][  T957] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  690.748412][T21227] FAT-fs (loop0): Directory bread(block 69) failed
[  690.755116][  T957] usb 4-1: SerialNumber: syz
[  690.769235][T21227] FAT-fs (loop0): Directory bread(block 70) failed
[  690.778690][T21227] FAT-fs (loop0): Directory bread(block 71) failed
[  690.786229][T21227] FAT-fs (loop0): Directory bread(block 72) failed
[  690.798637][T21227] FAT-fs (loop0): Directory bread(block 73) failed
[  690.848456][T21213] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  691.111908][  T957] usbtest 4-1:1.0: Linux user mode ISO test driver
[  691.122666][  T957] usbtest 4-1:1.0: high-speed {control bulk-in bulk-out} tests (+alt)
[  691.188806][  T957] usb 4-1: USB disconnect, device number 108
[  691.318443][T21244] nvme_fabrics: missing parameter 'transport=%s'
[  691.325986][T21244] nvme_fabrics: missing parameter 'nqn=%s'
[  691.644396][T21264] __nla_validate_parse: 134 callbacks suppressed
[  691.644418][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.722461][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.731391][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.788005][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.824777][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.856681][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.895057][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.921829][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.951505][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  691.961356][T21264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6415'.
[  692.000370][T21278] tmpfs: Bad value for 'mpol'
[  692.042461][T21264] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  692.051278][T21264] mac80211_hwsim hwsim10 wlan0: left promiscuous mode
[  693.123801][T21323] netlink: 'syz.4.6447': attribute type 21 has an invalid length.
[  693.174058][T21329] set_capacity_and_notify: 1 callbacks suppressed
[  693.174079][T21329] loop1: detected capacity change from 0 to 16
[  693.275703][T21329] erofs (device loop1): mounted with root inode @ nid 36.
[  693.651675][T21338] loop3: detected capacity change from 0 to 4096
[  693.722429][T21353] SET target dimension over the limit!
[  693.732770][T21352] loop1: detected capacity change from 0 to 1024
[  693.761439][T21352] EXT4-fs: Ignoring removed orlov option
[  693.806481][T21349] loop4: detected capacity change from 0 to 2048
[  693.830959][T21338] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  693.838246][T21352] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a803c118, mo2=0102]
[  693.880306][T21352] System zones: 0-1, 3-12
[  693.902243][T21357] netlink: 'syz.5.6460': attribute type 21 has an invalid length.
[  693.939988][T21349] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  693.985976][   T30] audit: type=1326 audit(654.039:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21359 comm="syz.5.6461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  694.009843][T21338] ntfs3(loop3): ino=9, ntfs_sync_fs failed, -22.
[  694.043664][T21352] EXT4-fs (loop1): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  694.086832][   T30] audit: type=1326 audit(654.049:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21359 comm="syz.5.6461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  694.114311][T21352] EXT4-fs error (device loop1): ext4_find_dest_de:2050: inode #2: block 16: comm syz.1.6457: bad entry in directory: directory entry overrun - offset=60, inode=21519, rec_len=1024, size=1024 fake=0
[  694.155342][ T5830] ntfs3(loop3): ino=9, ntfs_sync_fs failed, -22.
[  694.166339][   T30] audit: type=1326 audit(654.049:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21359 comm="syz.5.6461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  694.273695][   T30] audit: type=1326 audit(654.049:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21359 comm="syz.5.6461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  694.355813][T21370] loop4: detected capacity change from 0 to 64
[  694.368709][   T30] audit: type=1326 audit(654.049:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21359 comm="syz.5.6461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  694.395106][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  694.787698][   T29] usb 1-1: new high-speed USB device number 118 using dummy_hcd
[  694.866261][T21380] loop3: detected capacity change from 0 to 4096
[  694.896318][T21380] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  694.967963][T21380] ntfs3(loop3): ino=19, mi_enum_attr
[  694.973525][   T29] usb 1-1: Using ep0 maxpacket: 32
[  695.002306][   T29] usb 1-1: config 0 has an invalid interface number: 221 but max is 0
[  695.010673][T21380] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  695.028759][   T29] usb 1-1: config 0 has no interface number 0
[  695.046074][   T29] usb 1-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  695.057230][   T29] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  695.080482][   T29] usb 1-1: Product: syz
[  695.085486][   T29] usb 1-1: Manufacturer: syz
[  695.090126][   T29] usb 1-1: SerialNumber: syz
[  695.124646][   T29] usb 1-1: config 0 descriptor??
[  695.261890][T21400] loop5: detected capacity change from 0 to 2048
[  695.299612][T21400] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  695.395175][  T957] usb 1-1: USB disconnect, device number 118
[  695.605733][T21409] loop5: detected capacity change from 0 to 1024
[  695.625728][T21409] EXT4-fs (loop5): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[  695.711108][T21409] EXT4-fs error (device loop5): ext4_map_blocks:776: inode #3: block 2: comm syz.5.6485: lblock 2 mapped to illegal pblock 2 (length 1)
[  695.736476][T21409] fserror_report: 1 callbacks suppressed
[  695.736505][T21409] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  695.749176][T21409] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  695.758597][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  695.758623][    C1] EXT4-fs (loop5): initial error at time 655: ext4_map_blocks:776: inode 3: block 2
[  695.758665][    C1] EXT4-fs (loop5): last error at time 655: ext4_map_blocks:776: inode 3: block 2
[  695.774289][T21420] dlm: non-version read from control device 4096
[  695.802532][T21409] EXT4-fs error (device loop5): ext4_map_blocks:776: inode #3: block 48: comm syz.5.6485: lblock 0 mapped to illegal pblock 48 (length 1)
[  695.817021][T21409] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  695.817317][T21409] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  695.837584][T21409] EXT4-fs error (device loop5): ext4_acquire_dquot:7003: comm syz.5.6485: Failed to acquire dquot type 0
[  695.855950][T21409] loop5: lost filesystem error report for type 5 error -117
[  695.859753][   T30] audit: type=1326 audit(655.784:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21421 comm="syz.3.6490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfe919aeb9 code=0x7ffc0000
[  695.884224][T21409] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6246: Corrupt filesystem
[  695.913673][T21409] loop5: lost filesystem error report for type 5 error -117
[  695.915799][T21409] EXT4-fs error (device loop5): ext4_evict_inode:255: inode #11: comm syz.5.6485: mark_inode_dirty error
[  695.995613][T21409] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  695.995964][T21409] EXT4-fs warning (device loop5): ext4_evict_inode:258: couldn't mark inode dirty (err -117)
[  696.015546][   T30] audit: type=1326 audit(655.784:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21421 comm="syz.3.6490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfe919aeb9 code=0x7ffc0000
[  696.063545][T21426] netlink: 'syz.4.6491': attribute type 32 has an invalid length.
[  696.088082][T21409] EXT4-fs (loop5): 1 orphan inode deleted
[  696.093530][   T30] audit: type=1326 audit(655.784:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21421 comm="syz.3.6490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7fdfe919aeb9 code=0x7ffc0000
[  696.111240][T21409] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  696.128745][   T13] EXT4-fs error (device loop5): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  696.180815][   T13] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  696.198745][   T13] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  696.217970][   T30] audit: type=1326 audit(655.793:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21421 comm="syz.3.6490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfe919aeb9 code=0x7ffc0000
[  696.230203][   T13] EXT4-fs error (device loop5): ext4_release_dquot:7039: comm kworker/u8:1: Failed to release dquot type 0
[  696.384116][T21435] loop0: detected capacity change from 0 to 24
[  696.511996][T20126] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  696.537065][   T49] EXT4-fs error (device loop5): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  696.592335][   T49] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  696.594789][   T49] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  696.651253][   T49] EXT4-fs error (device loop5): ext4_release_dquot:7039: comm kworker/u8:3: Failed to release dquot type 0
[  696.678526][   T49] loop5: lost filesystem error report for type 5 error -117
[  696.691394][T20126] EXT4-fs error (device loop5): __ext4_get_inode_loc:4782: comm syz-executor: Invalid inode table block 1 in block_group 0
[  696.759684][T20126] loop5: lost filesystem error report for type 5 error -117
[  696.770656][T20126] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6246: Corrupt filesystem
[  696.844817][T20126] loop5: lost filesystem error report for type 5 error -117
[  696.848786][T20126] EXT4-fs error (device loop5): ext4_quota_off:7287: inode #3: comm syz-executor: mark_inode_dirty error
[  696.891909][T20126] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  696.956916][T21455] netlink: 'syz.4.6505': attribute type 10 has an invalid length.
[  697.149314][T21463] loop0: detected capacity change from 0 to 256
[  697.197430][T21463] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  697.256433][T21463] exFAT-fs (loop0): valid_size(150994954) is greater than size(10)
[  697.262023][T21470] __nla_validate_parse: 148 callbacks suppressed
[  697.262042][T21470] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6514'.
[  697.755794][T21481] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  697.849246][T21481] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  697.948313][T21493] cifs: Unknown parameter '
2í¡Qƒé
[  697.948313][T21493] @Ý"2a×ch}#úä`Ü[TäŒ&¬æ:ÅèÙ"‚Õë�ï1:ºÃÃÓ­'Ä4,�Zz-#FÇ<æõ]%gCžÊ
[  697.948313][T21493] SÃÿ
'
[  697.964032][T21493] CIFS mount error: No usable UNC path provided in device string!
[  697.964032][T21493] 
[  697.974974][T21493] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  698.040349][   T24] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  698.174096][T21503] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  698.244002][   T24] usb 6-1: Using ep0 maxpacket: 8
[  698.268369][   T24] usb 6-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  698.303049][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  698.332890][   T24] usb 6-1: Product: syz
[  698.339434][   T24] usb 6-1: Manufacturer: syz
[  698.360662][   T24] usb 6-1: SerialNumber: syz
[  698.375802][   T24] usb 6-1: config 0 descriptor??
[  698.397304][   T24] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  698.682719][T21520] netlink: 41 bytes leftover after parsing attributes in process `syz.1.6539'.
[  698.698914][T21520] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6539'.
[  698.828151][   T24] gspca_sonixj: reg_r err -71
[  698.834267][   T24] sonixj 6-1:0.0: probe with driver sonixj failed with error -71
[  698.868372][   T24] usb 6-1: USB disconnect, device number 3
[  699.003696][T21506] set_capacity_and_notify: 1 callbacks suppressed
[  699.003718][T21506] loop3: detected capacity change from 0 to 32768
[  699.237286][T21534] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6546'.
[  699.254621][T21534] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6546'.
[  699.270447][T21537] loop4: detected capacity change from 0 to 256
[  699.289684][T21539] loop1: detected capacity change from 0 to 8
[  699.304266][T21539] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  699.318140][ T5885] udevd[5885]: incorrect cramfs checksum on /dev/loop1
[  699.436136][T21537] FAT-fs (loop4): Directory bread(block 64) failed
[  699.485002][T21537] FAT-fs (loop4): Directory bread(block 65) failed
[  699.523238][T21537] FAT-fs (loop4): Directory bread(block 66) failed
[  699.529835][T21537] FAT-fs (loop4): Directory bread(block 67) failed
[  699.536715][ T1223] IPVS: starting estimator thread 0...
[  699.591660][T21537] FAT-fs (loop4): Directory bread(block 68) failed
[  699.620131][T21537] FAT-fs (loop4): Directory bread(block 69) failed
[  699.626884][T21537] FAT-fs (loop4): Directory bread(block 70) failed
[  699.641581][T21542] IPVS: using max 30 ests per chain, 72000 per kthread
[  699.643251][T21537] FAT-fs (loop4): Directory bread(block 71) failed
[  699.739287][T21537] FAT-fs (loop4): Directory bread(block 72) failed
[  699.745878][T21537] FAT-fs (loop4): Directory bread(block 73) failed
[  700.111125][T21566] openvswitch: netlink: Missing valid actions attribute.
[  700.118498][T21566] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  700.467734][T21577] delete_channel: no stack
[  700.729369][T21589] loop4: detected capacity change from 0 to 2048
[  700.736225][T21591] loop1: detected capacity change from 0 to 256
[  700.788218][T21589] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  700.898513][T21591] FAT-fs (loop1): Directory bread(block 64) failed
[  700.905102][T21591] FAT-fs (loop1): Directory bread(block 65) failed
[  700.968551][T21591] FAT-fs (loop1): Directory bread(block 66) failed
[  700.983895][T21591] FAT-fs (loop1): Directory bread(block 67) failed
[  700.993167][T21591] FAT-fs (loop1): Directory bread(block 68) failed
[  701.001474][T21591] FAT-fs (loop1): Directory bread(block 69) failed
[  701.033664][ T5840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  701.036710][T21591] FAT-fs (loop1): Directory bread(block 70) failed
[  701.061513][T21591] FAT-fs (loop1): Directory bread(block 71) failed
[  701.069142][T21591] FAT-fs (loop1): Directory bread(block 72) failed
[  701.076119][T21591] FAT-fs (loop1): Directory bread(block 73) failed
[  701.153048][T21604] netlink: 68 bytes leftover after parsing attributes in process `syz.0.6579'.
[  701.255611][T21602] loop5: detected capacity change from 0 to 4096
[  701.310526][T21584] loop3: detected capacity change from 0 to 32768
[  701.331651][T21584] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6569 (21584)
[  701.393879][T21584] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  701.404904][T21612] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6582'.
[  701.430284][T21612] netlink: 108 bytes leftover after parsing attributes in process `syz.1.6582'.
[  701.439670][T21584] BTRFS info (device loop3): using sha256 checksum algorithm
[  701.473388][T21612] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6582'.
[  701.506802][T21612] netlink: 108 bytes leftover after parsing attributes in process `syz.1.6582'.
[  701.660817][T21584] BTRFS info (device loop3): enabling ssd optimizations
[  701.710641][T21584] BTRFS info (device loop3): turning on async discard
[  701.764897][T21584] BTRFS info (device loop3): enabling free space tree
[  701.952748][   T30] audit: type=1326 audit(661.396:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21642 comm="syz.4.6590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  702.029640][   T30] audit: type=1326 audit(661.405:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21642 comm="syz.4.6590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  702.143206][   T30] audit: type=1326 audit(661.442:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21642 comm="syz.4.6590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  702.211478][ T5830] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  702.243964][   T30] audit: type=1326 audit(661.442:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21642 comm="syz.4.6590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  702.336670][   T30] audit: type=1326 audit(661.442:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21642 comm="syz.4.6590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11bd59aeb9 code=0x7ffc0000
[  702.682202][T21663] netlink: 'syz.3.6594': attribute type 1 has an invalid length.
[  703.311674][T21645] loop0: detected capacity change from 0 to 32768
[  703.377449][T21645] JBD2: Ignoring recovery information on journal
[  703.604790][T21645] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  703.835969][T21688] loop1: detected capacity change from 0 to 4096
[  703.857147][T21688] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  703.934473][T21692] 8021q: adding VLAN 0 to HW filter on device bond1
[  703.942162][T21688] ntfs3(loop1): ino=19, mi_enum_attr
[  703.956363][ T5846] ocfs2: Unmounting device (7,0) on (node local)
[  703.982896][T21688] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  704.085515][T21688] ntfs3(loop1): failed to convert "c46c" to cp855
[  704.127658][T21688] ntfs3(loop1): ino=20, mi_enum_attr
[  704.578539][T21699] loop5: detected capacity change from 0 to 4096
[  704.597789][T21708] mac80211_hwsim hwsim7 @: renamed from wlan1
[  704.605673][T21699] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  704.681755][T21678] loop4: detected capacity change from 0 to 32768
[  704.724470][T21678] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  704.732707][T21678] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  704.798724][T21717] loop3: detected capacity change from 0 to 64
[  704.822828][T21678] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  704.849342][T21699] ntfs3(loop5): ino=1a, mi_enum_attr
[  704.884621][   T24] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  704.888156][T21699] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  704.900847][   T24] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  704.945456][T21699] ntfs3(loop5): ino=1a, mi_enum_attr
[  704.961011][T21699] ntfs3(loop5): Failed to initialize $Extend/$Reparse.
[  704.985884][T21699] ntfs3(loop5): ino=1b, mi_enum_attr
[  705.031606][T21699] ntfs3(loop5): ino=1b, mi_enum_attr
[  705.173594][   T24] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 251ms
[  705.232108][   T24] gfs2: fsid=syz:syz.0: jid=0: Done
[  705.259381][T21678] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  705.268091][T21723] __nla_validate_parse: 2 callbacks suppressed
[  705.268110][T21723] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6628'.
[  705.334133][T21723] netlink: 'syz.0.6628': attribute type 1 has an invalid length.
[  705.389258][T21723] netlink: 224 bytes leftover after parsing attributes in process `syz.0.6628'.
[  705.400778][T21729] netlink: 'syz.3.6629': attribute type 5 has an invalid length.
[  705.435940][T21729] netlink: 'syz.3.6629': attribute type 5 has an invalid length.
[  705.458634][T21729] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.6629'.
[  705.551723][T21678] gfs2: fsid=syz:syz.0: found 1 quota changes
[  705.719666][T21714] loop1: detected capacity change from 0 to 32768
[  705.756738][T21740] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6633'.
[  705.797330][T21714] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  705.818357][ T6019] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  705.827990][ T5840] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129
[  705.844967][ T5840] CPU: 0 UID: 0 PID: 5840 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  705.845001][ T5840] Tainted: [L]=SOFTLOCKUP
[  705.845008][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  705.845019][ T5840] Call Trace:
[  705.845028][ T5840]  <TASK>
[  705.845036][ T5840]  dump_stack_lvl+0xe8/0x150
[  705.845068][ T5840]  gfs2_assert_warn_i+0x194/0x2c0
[  705.845100][ T5840]  gfs2_qd_dispose+0x466/0x570
[  705.845125][ T5840]  gfs2_quota_cleanup+0x434/0x760
[  705.845169][ T5840]  ? __pfx_gfs2_quota_cleanup+0x10/0x10
[  705.845221][ T5840]  gfs2_make_fs_ro+0x2a0/0x320
[  705.845252][ T5840]  ? __pfx_gfs2_make_fs_ro+0x10/0x10
[  705.845276][ T5840]  ? do_raw_spin_lock+0x12b/0x2f0
[  705.845309][ T5840]  ? do_raw_spin_unlock+0xf5/0x210
[  705.845334][ T5840]  gfs2_put_super+0x220/0x860
[  705.845368][ T5840]  ? __pfx_gfs2_put_super+0x10/0x10
[  705.845394][ T5840]  generic_shutdown_super+0x13d/0x2d0
[  705.845427][ T5840]  kill_block_super+0x44/0x90
[  705.845450][ T5840]  deactivate_locked_super+0xbc/0x130
[  705.845482][ T5840]  cleanup_mnt+0x437/0x4d0
[  705.845503][ T5840]  ? _raw_spin_unlock_irq+0x23/0x50
[  705.845531][ T5840]  task_work_run+0x1d9/0x270
[  705.845557][ T5840]  ? __pfx_task_work_run+0x10/0x10
[  705.845591][ T5840]  exit_to_user_mode_loop+0xed/0x480
[  705.845613][ T5840]  ? rcu_is_watching+0x15/0xb0
[  705.845646][ T5840]  do_syscall_64+0x32d/0xf80
[  705.845670][ T5840]  ? trace_irq_disable+0x3b/0x150
[  705.845696][ T5840]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.845717][ T5840]  ? clear_bhb_loop+0x40/0x90
[  705.845743][ T5840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.845764][ T5840] RIP: 0033:0x7f11bd59c117
[  705.845784][ T5840] Code: a2 c7 05 7c a4 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  705.845801][ T5840] RSP: 002b:00007ffebe9e8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  705.845823][ T5840] RAX: 0000000000000000 RBX: 00007f11bd60471f RCX: 00007f11bd59c117
[  705.845838][ T5840] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffebe9e80f0
[  705.845850][ T5840] RBP: 00007ffebe9e80f0 R08: 00007ffebe9e90f0 R09: 00000000ffffffff
[  705.845864][ T5840] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffebe9e9180
[  705.845876][ T5840] R13: 00007f11bd60471f R14: 00000000000a24ee R15: 00007ffebe9e91c0
[  705.845910][ T5840]  </TASK>
[  706.126613][T21740] bridge3: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  706.142061][T21748] loop3: detected capacity change from 0 to 128
[  706.262586][T21714] XFS (loop1): Ending clean mount
[  706.307992][T21714] XFS (loop1): Quotacheck needed: Please wait.
[  706.325058][ T6019] usb 6-1: config 0 has an invalid interface number: 106 but max is 0
[  706.333676][ T6019] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  706.344010][ T6019] usb 6-1: config 0 has no interface number 0
[  706.352894][ T6019] usb 6-1: config 0 interface 106 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 236
[  706.363220][ T6019] usb 6-1: config 0 interface 106 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  706.388615][ T6019] usb 6-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=df.bb
[  706.416284][ T6019] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  706.458435][ T6019] usb 6-1: config 0 descriptor??
[  706.469112][T21732] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  706.514433][T21714] XFS (loop1): Quotacheck: Done.
[  706.569382][ T6019] usb 6-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  706.696039][ T5829] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  706.723160][   T36] usb 6-1: Failed to submit usb control message: -71
[  706.723441][ T5849] usb 6-1: USB disconnect, device number 4
[  706.736851][   T36] usb 6-1: unable to send the bmi data to the device: -71
[  706.744783][   T36] usb 6-1: unable to get target info from device
[  706.752882][   T36] usb 6-1: could not get target info (-71)
[  706.758926][   T36] usb 6-1: could not probe fw (-71)
[  706.898629][T21765] bond0: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  707.019571][ T1223] usb 4-1: new high-speed USB device number 109 using dummy_hcd
[  707.209195][ T1223] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  707.223117][T21775] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  707.254134][ T1223] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  707.270060][ T1223] usb 4-1: Product: syz
[  707.274320][ T1223] usb 4-1: Manufacturer: syz
[  707.301196][ T1223] usb 4-1: SerialNumber: syz
[  707.330504][ T1223] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  707.370255][ T5849] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  707.597035][T21787] loop4: detected capacity change from 0 to 512
[  707.617660][T21763] random: crng reseeded on system resumption
[  707.669704][   T30] audit: type=1326 audit(666.684:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21788 comm="syz.5.6654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  707.700008][T21793] ieee802154 phy0 wpan0: encryption failed: -22
[  707.715642][T21787] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  707.746430][  T119] usb 4-1: USB disconnect, device number 109
[  707.792701][T21787] Quota error (device loop4): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  707.804530][   T30] audit: type=1326 audit(666.712:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21788 comm="syz.5.6654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  707.826957][T21787] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  707.827058][T21787] EXT4-fs error (device loop4): ext4_acquire_dquot:7003: comm syz.4.6652: Failed to acquire dquot type 0
[  707.876019][   T30] audit: type=1326 audit(666.712:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21788 comm="syz.5.6654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  707.898253][   T30] audit: type=1326 audit(666.712:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21788 comm="syz.5.6654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  707.920569][   T30] audit: type=1326 audit(666.712:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21788 comm="syz.5.6654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  707.944160][   T30] audit: type=1326 audit(666.712:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21788 comm="syz.5.6654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  708.016445][ T5840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  708.029519][   T30] audit: type=1326 audit(666.712:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21788 comm="syz.5.6654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  708.064899][T21800] loop5: detected capacity change from 0 to 256
[  708.100738][T21800] FAT-fs (loop5): Directory bread(block 64) failed
[  708.113788][   T30] audit: type=1326 audit(666.712:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21788 comm="syz.5.6654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f098cb9aeb9 code=0x7ffc0000
[  708.139916][T21800] FAT-fs (loop5): Directory bread(block 65) failed
[  708.157490][T21800] FAT-fs (loop5): Directory bread(block 66) failed
[  708.175070][T21800] FAT-fs (loop5): Directory bread(block 67) failed
[  708.186186][T21800] FAT-fs (loop5): Directory bread(block 68) failed
[  708.209280][T21800] FAT-fs (loop5): Directory bread(block 69) failed
[  708.240547][T21800] FAT-fs (loop5): Directory bread(block 70) failed
[  708.265668][T21800] FAT-fs (loop5): Directory bread(block 71) failed
[  708.272348][T21800] FAT-fs (loop5): Directory bread(block 72) failed
[  708.298129][T21800] FAT-fs (loop5): Directory bread(block 73) failed
[  708.587879][ T5849] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  708.631007][ T5849] ath9k_htc: Failed to initialize the device
[  708.639742][  T119] usb 4-1: ath9k_htc: USB layer deinitialized
[  708.699909][ T1223] usb 1-1: new high-speed USB device number 119 using dummy_hcd
[  708.750867][T21821] loop4: detected capacity change from 0 to 256
[  708.881059][ T1223] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  708.904639][ T1223] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  708.924481][ T1223] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  708.973936][ T1223] usb 1-1: config 220 has no interface number 2
[  709.000356][ T1223] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  709.032675][ T1223] usb 1-1: config 220 interface 0 has no altsetting 0
[  709.047034][ T1223] usb 1-1: config 220 interface 76 has no altsetting 0
[  709.069539][ T1223] usb 1-1: config 220 interface 1 has no altsetting 0
[  709.107518][ T1223] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  709.143099][ T1223] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  709.176307][ T1223] usb 1-1: Product: syz
[  709.183840][ T1223] usb 1-1: Manufacturer: syz
[  709.193788][ T1223] usb 1-1: SerialNumber: syz
[  709.216914][T21827] loop5: detected capacity change from 0 to 8192
[  709.274312][T21827] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  709.316384][T21827] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000001)
[  709.324615][T21827] FAT-fs (loop5): Filesystem has been set read-only
[  709.512044][ T1223] usb 1-1: selecting invalid altsetting 0
[  709.518306][ T1223] uvcvideo 1-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  709.566454][ T1223] uvcvideo 1-1:220.0: No valid video chain found.
[  709.617040][ T1223] usb 1-1: selecting invalid altsetting 0
[  709.649013][ T1223] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[  709.687932][ T1223] usb 1-1: USB disconnect, device number 119
[  709.847356][T21853] qrtr: Invalid version 183
[  709.925936][T21856] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6682'.
[  710.373850][T21876] loop1: detected capacity change from 0 to 64
[  710.393728][T21875] loop4: detected capacity change from 0 to 512
[  710.416322][T21876] hfs: unable to locate alternate MDB
[  710.434560][T21876] hfs: continuing without an alternate MDB
[  710.477464][T21875] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  710.675687][   T77] 
[  710.678067][   T77] ======================================================
[  710.685101][   T77] WARNING: possible circular locking dependency detected
[  710.692125][   T77] syzkaller #0 Tainted: G             L     
[  710.698099][   T77] ------------------------------------------------------
[  710.705115][   T77] kworker/u8:4/77 is trying to acquire lock:
[  710.711095][   T77] ffff88807e28cef8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xf2/0x15e0
[  710.721889][   T77] 
[  710.721889][   T77] but task is already holding lock:
[  710.729268][   T77] ffff888020bf20b0 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x18e/0x300
[  710.738766][   T77] 
[  710.738766][   T77] which lock already depends on the new lock.
[  710.738766][   T77] 
[  710.749249][   T77] 
[  710.749249][   T77] the existing dependency chain (in reverse order) is:
[  710.758255][   T77] 
[  710.758255][   T77] -> #1 (&tree->tree_lock#2/1){+.+.}-{4:4}:
[  710.766342][   T77]        __mutex_lock+0x19f/0x1300
[  710.771546][   T77]        hfs_find_init+0x18e/0x300
[  710.776659][   T77]        hfs_get_block+0x556/0xc50
[  710.781764][   T77]        block_read_full_folio+0x29f/0x830
[  710.787567][   T77]        filemap_read_folio+0x137/0x3b0
[  710.793110][   T77]        do_read_cache_folio+0x358/0x590
[  710.798744][   T77]        read_cache_page+0x5d/0x170
[  710.803941][   T77]        __hfs_bnode_create+0x4b9/0x980
[  710.809496][   T77]        hfs_bnode_find+0x211/0xd40
[  710.814798][   T77]        hfs_brec_find+0x17b/0x510
[  710.819912][   T77]        hfs_brec_read+0x24/0x110
[  710.824938][   T77]        hfs_cat_find_brec+0x177/0x3f0
[  710.830395][   T77]        hfs_fill_super+0x4ff/0x770
[  710.835603][   T77]        get_tree_bdev_flags+0x431/0x4f0
[  710.841330][   T77]        vfs_get_tree+0x92/0x2a0
[  710.846266][   T77]        do_new_mount+0x341/0xd30
[  710.851295][   T77]        __se_sys_mount+0x31d/0x420
[  710.856494][   T77]        do_syscall_64+0x14d/0xf80
[  710.861612][   T77]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.868028][   T77] 
[  710.868028][   T77] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}:
[  710.877409][   T77]        __lock_acquire+0x15a5/0x2cf0
[  710.882872][   T77]        lock_acquire+0xf0/0x2e0
[  710.887808][   T77]        __mutex_lock+0x19f/0x1300
[  710.892931][   T77]        hfs_extend_file+0xf2/0x15e0
[  710.898215][   T77]        hfs_bmap_reserve+0x107/0x430
[  710.903589][   T77]        __hfs_ext_write_extent+0x1fa/0x470
[  710.909479][   T77]        hfs_ext_write_extent+0x17e/0x210
[  710.915198][   T77]        hfs_write_inode+0x117/0x960
[  710.920487][   T77]        __writeback_single_inode+0x75a/0x11a0
[  710.926642][   T77]        writeback_sb_inodes+0x944/0x19a0
[  710.932436][   T77]        wb_writeback+0x456/0xb70
[  710.937463][   T77]        wb_workfn+0x414/0xf50
[  710.942223][   T77]        process_one_work+0x949/0x1650
[  710.947686][   T77]        worker_thread+0xb46/0x1140
[  710.952888][   T77]        kthread+0x388/0x470
[  710.957572][   T77]        ret_from_fork+0x51e/0xb90
[  710.962683][   T77]        ret_from_fork_asm+0x1a/0x30
[  710.967969][   T77] 
[  710.967969][   T77] other info that might help us debug this:
[  710.967969][   T77] 
[  710.978226][   T77]  Possible unsafe locking scenario:
[  710.978226][   T77] 
[  710.985667][   T77]        CPU0                    CPU1
[  710.991024][   T77]        ----                    ----
[  710.996391][   T77]   lock(&tree->tree_lock#2/1);
[  711.001257][   T77]                                lock(&HFS_I(tree->inode)->extents_lock);
[  711.009753][   T77]                                lock(&tree->tree_lock#2/1);
[  711.017133][   T77]   lock(&HFS_I(tree->inode)->extents_lock);
[  711.023205][   T77] 
[  711.023205][   T77]  *** DEADLOCK ***
[  711.023205][   T77] 
[  711.031345][   T77] 3 locks held by kworker/u8:4/77:
[  711.036455][   T77]  #0: ffff888020a96948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x855/0x1650
[  711.047073][   T77]  #1: ffffc9000215fc40 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x87c/0x1650
[  711.058906][   T77]  #2: ffff888020bf20b0 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x18e/0x300
[  711.068847][   T77] 
[  711.068847][   T77] stack backtrace:
[  711.074740][   T77] CPU: 1 UID: 0 PID: 77 Comm: kworker/u8:4 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  711.074761][   T77] Tainted: [L]=SOFTLOCKUP
[  711.074767][   T77] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  711.074779][   T77] Workqueue: writeback wb_workfn (flush-7:1)
[  711.074798][   T77] Call Trace:
[  711.074805][   T77]  <TASK>
[  711.074812][   T77]  dump_stack_lvl+0xe8/0x150
[  711.074833][   T77]  print_circular_bug+0x2e1/0x300
[  711.074856][   T77]  check_noncircular+0x12e/0x150
[  711.074880][   T77]  __lock_acquire+0x15a5/0x2cf0
[  711.074899][   T77]  ? unwind_next_frame+0x1aaf/0x23c0
[  711.074922][   T77]  ? unwind_next_frame+0xa5/0x23c0
[  711.074943][   T77]  ? ret_from_fork_asm+0x1a/0x30
[  711.074963][   T77]  ? ret_from_fork_asm+0x1a/0x30
[  711.074985][   T77]  lock_acquire+0xf0/0x2e0
[  711.075001][   T77]  ? hfs_extend_file+0xf2/0x15e0
[  711.075020][   T77]  __mutex_lock+0x19f/0x1300
[  711.075037][   T77]  ? hfs_extend_file+0xf2/0x15e0
[  711.075052][   T77]  ? check_path+0x21/0x40
[  711.075071][   T77]  ? check_noncircular+0xda/0x150
[  711.075091][   T77]  ? add_lock_to_list+0xc7/0x100
[  711.075111][   T77]  ? hfs_extend_file+0xf2/0x15e0
[  711.075126][   T77]  ? __pfx___mutex_lock+0x10/0x10
[  711.075144][   T77]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  711.075166][   T77]  hfs_extend_file+0xf2/0x15e0
[  711.075189][   T77]  ? __pfx___mutex_trylock_common+0x10/0x10
[  711.075213][   T77]  ? __pfx_hfs_extend_file+0x10/0x10
[  711.075227][   T77]  ? trace_contention_end+0x3d/0x150
[  711.075249][   T77]  ? __mutex_lock+0x319/0x1300
[  711.075268][   T77]  ? __asan_memset+0x22/0x50
[  711.075290][   T77]  ? hfs_brec_find+0x19a/0x510
[  711.075311][   T77]  hfs_bmap_reserve+0x107/0x430
[  711.075329][   T77]  __hfs_ext_write_extent+0x1fa/0x470
[  711.075346][   T77]  hfs_ext_write_extent+0x17e/0x210
[  711.075362][   T77]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[  711.075382][   T77]  hfs_write_inode+0x117/0x960
[  711.075400][   T77]  ? __pfx_hfs_write_inode+0x10/0x10
[  711.075418][   T77]  ? __pfx_hfs_writepages+0x10/0x10
[  711.075439][   T77]  ? do_raw_spin_unlock+0xf5/0x210
[  711.075455][   T77]  __writeback_single_inode+0x75a/0x11a0
[  711.075476][   T77]  writeback_sb_inodes+0x944/0x19a0
[  711.075501][   T77]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  711.075518][   T77]  ? do_raw_spin_lock+0x12b/0x2f0
[  711.075543][   T77]  ? rcu_is_watching+0x15/0xb0
[  711.075565][   T77]  wb_writeback+0x456/0xb70
[  711.075584][   T77]  ? queue_io+0x241/0x4a0
[  711.075603][   T77]  ? __pfx_wb_writeback+0x10/0x10
[  711.075620][   T77]  ? do_raw_spin_lock+0x12b/0x2f0
[  711.075638][   T77]  wb_workfn+0x414/0xf50
[  711.075653][   T77]  ? look_up_lock_class+0x57/0x110
[  711.075674][   T77]  ? __pfx_wb_workfn+0x10/0x10
[  711.075689][   T77]  ? do_raw_spin_lock+0x12b/0x2f0
[  711.075703][   T77]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  711.075723][   T77]  ? process_one_work+0x87c/0x1650
[  711.075740][   T77]  process_one_work+0x949/0x1650
[  711.075764][   T77]  ? __pfx_process_one_work+0x10/0x10
[  711.075780][   T77]  ? do_raw_spin_lock+0x12b/0x2f0
[  711.075799][   T77]  worker_thread+0xb46/0x1140
[  711.075825][   T77]  kthread+0x388/0x470
[  711.075839][   T77]  ? __pfx_worker_thread+0x10/0x10
[  711.075857][   T77]  ? __pfx_kthread+0x10/0x10
[  711.075870][   T77]  ret_from_fork+0x51e/0xb90
[  711.075890][   T77]  ? __pfx_ret_from_fork+0x10/0x10
[  711.075907][   T77]  ? __switch_to+0xc7d/0x1450
[  711.075923][   T77]  ? __pfx_kthread+0x10/0x10
[  711.075936][   T77]  ret_from_fork_asm+0x1a/0x30
[  711.075962][   T77]  </TASK>
[  711.453811][ T5840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  711.578015][T21894] loop4: detected capacity change from 0 to 4096
[  711.599334][T21897] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  711.819208][  T957] usb 2-1: new high-speed USB device number 118 using dummy_hcd
[  711.984624][  T957] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  711.993786][  T957] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  712.001802][  T957] usb 2-1: Product: syz
[  712.006130][  T957] usb 2-1: Manufacturer: syz
[  712.010752][  T957] usb 2-1: SerialNumber: syz
[  712.016694][  T957] usb 2-1: config 0 descriptor??
[  712.245049][  T957] hso 2-1:0.0: Failed to find BULK IN ep
[  712.252104][  T957] usb-storage 2-1:0.0: USB Mass Storage device detected
[  712.470976][ T1223] usb 2-1: USB disconnect, device number 118