last executing test programs:

5.504773552s ago: executing program 1 (id=822):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0180000000000000000001000000000000000b"], 0x28}}, 0x40000)

5.412638444s ago: executing program 1 (id=823):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TCSETA(r0, 0x5406, 0x0)

5.124668179s ago: executing program 4 (id=825):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x80478b, &(0x7f0000000500), 0x0, 0x489, &(0x7f0000000c80)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="8000000000010104000000000000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001"], 0x80}, 0x1, 0x0, 0x0, 0x4040}, 0x20000000)

4.628620928s ago: executing program 1 (id=829):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000017000000480006"], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)

3.964066321s ago: executing program 4 (id=831):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x10}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x81}]}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}, @NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0x4}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xcc}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

3.91716503s ago: executing program 1 (id=833):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r0, 0x0, 0xffdd)

3.040404234s ago: executing program 4 (id=841):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e570000002b21c90b000000000000721a5dbb56a3d9e16e7c2179c9b5b24722944820e624fc5b17d0822ca4232c98a9936ba722475ca5", 0x72}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0x87}, {&(0x7f0000001400)="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", 0x17f}], 0x3}, 0x0)

2.951926271s ago: executing program 2 (id=842):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
capset(&(0x7f0000019340)={0x20071026}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff, 0xe})
ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, 0x0)

2.860697302s ago: executing program 1 (id=844):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000004a00)='./file0\x00', 0x4000, &(0x7f0000004a80)=ANY=[@ANYBLOB="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"], 0xff, 0x5e5c, &(0x7f0000005d80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))

2.842188869s ago: executing program 4 (id=845):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0xff05, 0x0)

2.678875216s ago: executing program 2 (id=846):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg$unix(r1, &(0x7f00000003c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x14, 0x1, 0x1, [r0]}}], 0x30, 0x1}}], 0x1, 0x80)

2.677685199s ago: executing program 0 (id=847):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x1c, 0x2, 0x6, 0x3, 0x0, 0x0, {0x0, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="1401000020000107000000000000000001"], 0x114}], 0x1}, 0x0)

2.54678843s ago: executing program 3 (id=848):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000740)={&(0x7f0000000040)={0x2, 0x0, @dev}, 0x10, 0x0, 0x0, &(0x7f0000004680)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f0000002bc0)=[{&(0x7f0000001900)=""/135, 0x87}, {0xfffffffffffffffe, 0x2}], 0x2}}], 0x48}, 0x0)

2.546585463s ago: executing program 4 (id=849):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a030200000000000000000200000009"], 0x68}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c0000006800010003001000fdffff7f00000000000000000c0002000100000a15000000080010"], 0x2c}, 0x1, 0x0, 0x0, 0x4008018}, 0x4004080)

2.495050588s ago: executing program 4 (id=850):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000040)='./file1\x00', 0x800810, &(0x7f0000000140)={[{@nossd_spread}, {@nodatasum}, {@compress_force}, {@compress_algo={'compress', 0x3d, 'lzo'}}, {@flushoncommit}, {@autodefrag}, {@max_inline={'max_inline', 0x3d, [0x30, 0x37, 0x65]}}, {@nodiscard}]}, 0xfb, 0x510a, &(0x7f000000d000)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000009380)={"c46fdf153682268b1100", 0x0, 0x0, {0x1, 0xdb2a}, {0x93, 0x6}, 0x4e8, [0x91f7, 0x80000000, 0x10001, 0x7, 0xb, 0x2, 0x4, 0x5, 0x2000000000000004, 0x9, 0x2, 0xf1, 0x402, 0x2, 0xb, 0x7]})

2.453989797s ago: executing program 0 (id=851):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f00000002c0)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{0x4, 0x5}, {0x0}, 0x0, 0x0, 0x61, 0x2}}], 0x90}, 0x0)

2.43107529s ago: executing program 2 (id=852):
r0 = gettid()
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
syz_open_procfs(r0, &(0x7f0000000000)='net/tcp\x00')

2.110829202s ago: executing program 3 (id=853):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0)

2.110569069s ago: executing program 0 (id=855):
r0 = syz_io_uring_setup(0x4172, &(0x7f0000000180)={0x0, 0x6317, 0x10000, 0x2, 0x2d0}, &(0x7f0000001040), &(0x7f0000001080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)

1.910397578s ago: executing program 2 (id=856):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x2099, 0x3, 0x20000006, 0x7ffffff9}, 0x10)
write(r0, &(0x7f00000000c0)="1800000016005f0227fffffffffffff80700000001000000", 0x18)

1.708969836s ago: executing program 2 (id=857):
r0 = syz_io_uring_setup(0x4b6, &(0x7f0000000100)={0x0, 0x0, 0x400, 0x0, 0x20e}, &(0x7f0000ff0000), &(0x7f0000000000), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000300)=""/14, 0xe}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000040)=""/6, 0x6}], 0x0, 0x2}, 0x20)

1.615009261s ago: executing program 0 (id=858):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f00000003c0)='./file1\x00', 0x0, &(0x7f0000000700)=ANY=[], 0x1, 0x700, &(0x7f00000011c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0xfffffffffffffffe, 0xffee)

1.477483147s ago: executing program 2 (id=859):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={&(0x7f0000000800)={0x2, 0x4001, @empty}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x20044818)
sendmsg$sock(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)='k', 0xfdef}], 0x1, &(0x7f0000000080)=[@timestamping={{0x14, 0x1, 0x25, 0x303}}], 0x18}, 0x4000081)

1.426775808s ago: executing program 3 (id=860):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000d0000000000010000000000000001410000001c0017000000000000000065746870c16fcdc9cd54b53a73"], 0x38}}, 0x0)

1.047585559s ago: executing program 3 (id=861):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000440)=[{0x20, 0x2, 0x81, 0xfffff034}, {0x20, 0x0, 0x0, 0xfffff00c}, {0x6, 0x0, 0x0, 0xfffffffe}]}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@link_local={0x3, 0x80, 0xc2, 0x0, 0x0, 0x2}, @random="068cba240a87", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x81, 0x1, 0x0, @rand_addr=0x64010101, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x9, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x7, 0x65, 0x0, 0x0, 0x6, 0x0, @local, @loopback}}}}}}, 0x0)

1.025536289s ago: executing program 0 (id=862):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x4, 0x7ffc0001}]})
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
rename(&(0x7f0000000180)='./bus\x00', &(0x7f00000001c0)='./file0\x00')

847.32262ms ago: executing program 3 (id=863):
unshare(0x20040600)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000009840)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000100)={0x10000000})

217.861624ms ago: executing program 3 (id=864):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000002180)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x0, 0x2002, 0x40000002, 0x4, 0xa17433da3c5d6980, 0x2, 0x81}, 0x9c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000004c0)={0x0, @in={{0x2, 0x4e22, @empty}}, 0xfffffff8, 0x40, 0xc, 0xffffffbb, 0x40, 0x1, 0x1}, &(0x7f00000003c0)=0x9c)

3.01979ms ago: executing program 0 (id=865):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x10000, &(0x7f0000000640), 0x1, 0x5c5, &(0x7f0000001a00)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
quotactl$Q_GETNEXTQUOTA(0xffffffff80000900, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

0s ago: executing program 1 (id=866):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000d00)='./file1\x00', 0x200408, &(0x7f0000000280)=ANY=[], 0x1, 0x1de, &(0x7f0000000d40)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

kernel console output (not intermixed with test programs):

interface batadv_slave_0 (retrying later): interface not active
[   93.060134][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.060147][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.060172][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.072333][ T5830] hsr_slave_0: entered promiscuous mode
[   93.073646][ T5830] hsr_slave_1: entered promiscuous mode
[   93.079802][ T5830] debugfs: 'hsr0' already exists in 'hsr'
[   93.079906][ T5830] Cannot create hsr debugfs directory
[   93.099275][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.099293][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.099318][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.100904][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.100916][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.100941][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.823516][ T5834] hsr_slave_0: entered promiscuous mode
[   93.824378][ T5834] hsr_slave_1: entered promiscuous mode
[   93.826875][ T5834] debugfs: 'hsr0' already exists in 'hsr'
[   93.826894][ T5834] Cannot create hsr debugfs directory
[   93.903784][ T5836] hsr_slave_0: entered promiscuous mode
[   93.907618][ T5836] hsr_slave_1: entered promiscuous mode
[   93.908645][ T5836] debugfs: 'hsr0' already exists in 'hsr'
[   93.908670][ T5836] Cannot create hsr debugfs directory
[   93.919450][ T5835] hsr_slave_0: entered promiscuous mode
[   93.920900][ T5835] hsr_slave_1: entered promiscuous mode
[   93.922942][ T5835] debugfs: 'hsr0' already exists in 'hsr'
[   93.922969][ T5835] Cannot create hsr debugfs directory
[   94.185178][ T5831] Bluetooth: hci0: command tx timeout
[   94.185201][ T5832] Bluetooth: hci1: command tx timeout
[   94.425266][ T5832] Bluetooth: hci4: command tx timeout
[   94.505880][ T5832] Bluetooth: hci2: command tx timeout
[   94.587568][ T5832] Bluetooth: hci3: command tx timeout
[   94.667535][ T5827] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   94.713118][ T5827] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   94.722587][ T5827] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   94.758565][ T5827] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   94.762954][ T5827] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   94.801991][ T5827] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   94.829348][ T5827] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   94.859848][ T5827] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   95.010512][ T5834] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   95.027944][ T5834] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   95.033431][ T5834] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   95.070099][ T5834] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   95.074131][ T5834] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   95.121592][ T5834] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   95.150917][ T5834] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   95.178388][ T5834] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   95.332870][ T5836] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   95.360904][ T5836] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   95.375227][ T5836] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   95.400802][ T5836] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   95.414047][ T5836] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   95.438952][ T5836] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   95.466212][ T5836] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   95.501917][ T5836] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   95.671342][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.691746][ T5830] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   95.728138][ T5830] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   95.735312][ T5830] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   95.778813][ T5830] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   95.794236][ T5830] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   95.831383][ T5830] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   95.860261][ T5830] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   95.921503][ T5830] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   96.006692][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   96.073093][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.082167][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.098816][ T5835] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   96.140381][ T5835] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   96.160883][ T5835] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   96.199459][ T5835] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   96.210779][ T5835] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   96.238037][ T5835] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   96.244106][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.250939][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.265314][ T5832] Bluetooth: hci0: command tx timeout
[   96.275026][ T5832] Bluetooth: hci1: command tx timeout
[   96.280803][ T5835] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   96.318812][ T5835] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   96.394450][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.505588][ T5832] Bluetooth: hci4: command tx timeout
[   96.507648][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   96.569575][   T93] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.569716][   T93] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.585430][ T5832] Bluetooth: hci2: command tx timeout
[   96.606394][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.636884][   T93] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.637246][   T93] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.666175][ T5832] Bluetooth: hci3: command tx timeout
[   96.783516][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[   96.851345][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.851561][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.929465][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.945301][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.945457][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.069788][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   97.107491][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   97.141616][ T1055] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.141844][ T1055] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.193563][ T1055] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.193797][ T1055] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.280912][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   97.341464][   T93] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.341693][   T93] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.389168][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.430914][   T44] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.447215][   T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.693876][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.851285][ T5827] veth0_vlan: entered promiscuous mode
[   97.955219][ T5827] veth1_vlan: entered promiscuous mode
[   97.999408][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.193554][ T5834] veth0_vlan: entered promiscuous mode
[   98.259219][ T5834] veth1_vlan: entered promiscuous mode
[   98.344915][ T5832] Bluetooth: hci1: command tx timeout
[   98.344952][ T5832] Bluetooth: hci0: command tx timeout
[   98.370159][ T5827] veth0_macvtap: entered promiscuous mode
[   98.422227][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.441522][ T5827] veth1_macvtap: entered promiscuous mode
[   98.498247][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.548954][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.570086][ T5834] veth0_macvtap: entered promiscuous mode
[   98.584859][ T5831] Bluetooth: hci4: command tx timeout
[   98.587446][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.610800][ T5834] veth1_macvtap: entered promiscuous mode
[   98.639629][   T57] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.664864][ T5831] Bluetooth: hci2: command tx timeout
[   98.669401][   T57] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.698915][   T57] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.702982][   T57] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.745047][ T5831] Bluetooth: hci3: command tx timeout
[   98.797393][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.802603][ T5836] veth0_vlan: entered promiscuous mode
[   98.815111][ T5830] veth0_vlan: entered promiscuous mode
[   98.889418][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.985993][ T5835] veth0_vlan: entered promiscuous mode
[   99.033488][ T5836] veth1_vlan: entered promiscuous mode
[   99.040198][   T93] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.042551][ T5830] veth1_vlan: entered promiscuous mode
[   99.048532][   T93] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.054541][   T93] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.083024][   T93] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.179952][ T5835] veth1_vlan: entered promiscuous mode
[   99.462799][   T93] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.462824][   T93] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.557790][ T5836] veth0_macvtap: entered promiscuous mode
[   99.599048][ T5836] veth1_macvtap: entered promiscuous mode
[   99.610251][ T5830] veth0_macvtap: entered promiscuous mode
[   99.632399][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.632421][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.650575][ T5835] veth0_macvtap: entered promiscuous mode
[   99.657041][ T5830] veth1_macvtap: entered promiscuous mode
[   99.692119][ T5835] veth1_macvtap: entered promiscuous mode
[   99.733151][   T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.733173][   T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.755676][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.807636][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.838917][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.918282][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.940174][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.959195][   T44] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.970932][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.970956][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.992480][   T44] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.011606][   T44] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.027686][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.046135][ T1122] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.064350][ T1122] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.082304][ T1122] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.151949][ T1122] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.192408][ T1122] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.193466][ T1122] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.223018][ T1122] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.240101][ T1122] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.336463][ T1122] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.591263][ T5947] netlink: 60 bytes leftover after parsing attributes in process `syz.1.7'.
[  101.656156][   T93] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.656182][   T93] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.777283][   T44] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.777310][   T44] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.103683][ T3520] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.103709][ T3520] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.251729][ T5944] loop3: detected capacity change from 0 to 32768
[  102.408050][   T44] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.408073][   T44] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.592086][ T5897] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[  102.856266][ T1376] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.856291][ T1376] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.970119][ T5897] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  103.005037][ T5897] usb 2-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  103.005072][ T5897] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.005095][ T5897] usb 2-1: Product: syz
[  103.005110][ T5897] usb 2-1: Manufacturer: syz
[  103.005125][ T5897] usb 2-1: SerialNumber: syz
[  103.417351][ T5897] usb 2-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[  103.532981][ T1055] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.533003][ T1055] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.464487][ T5956] loop4: detected capacity change from 0 to 24
[  104.497320][ T5897] usb 2-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[  104.597706][ T5956] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  104.873848][ T5956] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  105.111190][ T5897] usb 2-1: USB disconnect, device number 2
[  105.255454][   T38] audit: type=1326 audit(1776167127.364:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.255514][   T38] audit: type=1326 audit(1776167127.364:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.392308][   T38] audit: type=1326 audit(1776167127.434:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.392369][   T38] audit: type=1326 audit(1776167127.464:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.392409][   T38] audit: type=1326 audit(1776167127.464:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.392447][   T38] audit: type=1326 audit(1776167127.464:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.392485][   T38] audit: type=1326 audit(1776167127.464:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.392522][   T38] audit: type=1326 audit(1776167127.474:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.392561][   T38] audit: type=1326 audit(1776167127.474:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  105.392597][   T38] audit: type=1326 audit(1776167127.474:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5961 comm="syz.1.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  106.272512][ T5969] loop1: detected capacity change from 0 to 1024
[  106.293488][ T5969] EXT4-fs: Ignoring removed bh option
[  106.920858][ T5969] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.006110][ T5969] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2860: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  107.575629][ T5985] loop4: detected capacity change from 0 to 8192
[  107.756144][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.788702][ T5897] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  107.964824][ T5897] usb 4-1: Using ep0 maxpacket: 32
[  108.054825][ T5897] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  108.054863][ T5897] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  108.054888][ T5897] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  108.054916][ T5897] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0
[  108.075902][ T5897] usb 4-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  108.075936][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.075957][ T5897] usb 4-1: Product: syz
[  108.075972][ T5897] usb 4-1: Manufacturer: syz
[  108.075986][ T5897] usb 4-1: SerialNumber: syz
[  108.211790][ T5897] usb 4-1: config 0 descriptor??
[  108.276378][ T5897] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input5
[  108.299730][ T5985] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  108.538891][ T5897] usb 4-1: USB disconnect, device number 2
[  110.342931][ T6031] loop1: detected capacity change from 0 to 128
[  111.096571][    T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  111.268971][    T9] usb 1-1: Using ep0 maxpacket: 32
[  111.280702][    T9] usb 1-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  111.280737][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.659171][    T9] gspca_main: nw80x-2.14.0 probing 055f:d001
[  111.848569][ T6058] Zero length message leads to an empty skb
[  112.062395][ T6061] loop4: detected capacity change from 0 to 512
[  112.198549][ T6061] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.237088][    T9] gspca_nw80x: reg_w err -71
[  112.237187][    T9] nw80x 1-1:3.0: probe with driver nw80x failed with error -71
[  112.314492][    T9] usb 1-1: USB disconnect, device number 2
[  112.531305][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.664810][ T5897] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  112.844899][ T5897] usb 3-1: Using ep0 maxpacket: 16
[  112.862809][ T5897] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  112.862882][ T5897] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  112.862917][ T5897] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  112.862940][ T5897] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  112.862963][ T5897] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  112.926869][ T5897] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  112.926911][ T5897] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  112.926933][ T5897] usb 3-1: Manufacturer: syz
[  113.023540][ T5897] usb 3-1: config 0 descriptor??
[  113.046240][ T6076] netlink: 'syz.1.54': attribute type 2 has an invalid length.
[  113.802575][ T5897] rc_core: IR keymap rc-hauppauge not found
[  113.802600][ T5897] Registered IR keymap rc-empty
[  113.818260][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  113.854299][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  113.868787][ T5897] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  113.869158][  T820] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  113.938875][ T5897] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input6
[  114.008220][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.035445][  T820] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  114.035478][  T820] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  114.035496][  T820] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  114.035516][  T820] usb 1-1: config 220 has no interface number 2
[  114.035585][  T820] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  114.035614][  T820] usb 1-1: config 220 interface 0 has no altsetting 0
[  114.035632][  T820] usb 1-1: config 220 interface 76 has no altsetting 0
[  114.035650][  T820] usb 1-1: config 220 interface 1 has no altsetting 0
[  114.036540][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.100530][  T820] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  114.100563][  T820] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.100582][  T820] usb 1-1: Product: syz
[  114.100595][  T820] usb 1-1: Manufacturer: syz
[  114.100611][  T820] usb 1-1: SerialNumber: syz
[  114.157281][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.184958][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.196121][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.225668][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.254963][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.285539][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.315089][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.340215][ T5897] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  114.397165][ T5897] mceusb 3-1:0.0: Registered  with mce emulator interface version 1
[  114.397194][ T5897] mceusb 3-1:0.0: 2 tx ports (0x1 cabled) and 2 rx sensors (0x0 active)
[  114.461040][ T5897] usb 3-1: USB disconnect, device number 2
[  114.662940][ T6076] !©�9: entered promiscuous mode
[  114.860566][  T820] uvcvideo 1-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  114.860610][  T820] uvcvideo 1-1:220.0: No valid video chain found.
[  114.860731][  T820] usb 1-1: selecting invalid altsetting 0
[  115.191676][ T5914] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  115.203858][  T820] usb 1-1: selecting invalid altsetting 0
[  115.203899][  T820] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[  115.298038][  T820] usb 1-1: USB disconnect, device number 3
[  115.352964][ T6090] loop2: detected capacity change from 0 to 1024
[  115.400890][ T5914] usb 4-1: Using ep0 maxpacket: 16
[  115.403426][ T5914] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  115.403460][ T5914] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  115.403485][ T5914] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 202
[  115.445873][ T5914] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  115.445908][ T5914] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  115.445931][ T5914] usb 4-1: SerialNumber: syz
[  115.597329][ T6074] loop4: detected capacity change from 0 to 40427
[  115.671461][ T6086] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  115.818565][ T5914] cdc_acm 4-1:1.0: skipping garbage
[  115.829087][ T5914] cdc_acm 4-1:1.0: probe with driver cdc_acm failed with error -12
[  115.995228][ T6074] F2FS-fs (loop4): invalid crc value
[  116.071824][ T5914] usb 4-1: USB disconnect, device number 3
[  116.083770][ T6074] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-4)
[  117.068736][ T6112] loop3: detected capacity change from 0 to 128
[  117.154910][ T6112] EXT4-fs (loop3): Test dummy encryption mode enabled
[  117.174180][ T6112] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  117.174296][ T6112] System zones: 1-3, 19-19, 35-36
[  117.256257][ T5914] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  117.366655][ T6112] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  117.421023][ T6112] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.474789][ T5914] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  117.474854][ T5914] usb 2-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  117.474877][ T5914] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.580627][ T5914] gspca_main: stv0680-2.14.0 probing 041e:4007
[  117.607156][ T6094] loop0: detected capacity change from 0 to 32768
[  117.645659][ T6094] =======================================================
[  117.645659][ T6094] WARNING: The mand mount option has been deprecated and
[  117.645659][ T6094]          and is ignored by this kernel. Remove the mand
[  117.645659][ T6094]          option from the mount to silence this warning.
[  117.645659][ T6094] =======================================================
[  117.714434][ T6118] loop4: detected capacity change from 0 to 128
[  117.864819][ T6094] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  117.919167][ T6118] msdos: Bad value for 'gid'
[  117.919190][ T6118] msdos: Bad value for 'gid'
[  117.985953][ T5827] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.410062][ T6094] JBD2: Ignoring recovery information on journal
[  118.808365][ T5914] gspca_stv0680: usb_control_msg error 2, request = 0x6, error = -71
[  118.808394][ T5914] stv0680 2-1:4.0: Could not get descriptor 0200
[  118.808959][ T5914] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  118.808978][ T5914] stv0680 2-1:4.0: last error: 9,  command = 0x5
[  118.852724][ T5914] usb 2-1: USB disconnect, device number 3
[  119.346963][ T6094] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  119.512658][   T38] kauditd_printk_skb: 4 callbacks suppressed
[  119.512678][   T38] audit: type=1326 audit(1776167141.624:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.4.80" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa4663ac819 code=0x0
[  120.046437][ T5914] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  120.062339][ T5835] ocfs2: Unmounting device (7,0) on (node local)
[  120.219871][ T5914] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.219909][ T5914] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.219949][ T5914] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  120.219975][ T5914] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.244008][ T5914] usb 4-1: config 0 descriptor??
[  120.821517][ T5914] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  120.821572][ T5914] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  120.821600][ T5914] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  120.821625][ T5914] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  120.821651][ T5914] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  121.314011][ T5914] hid-steam 0003:28DE:1142.0001: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0
[  121.380110][ T6169] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  121.380142][ T6169] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  121.523136][ T5914] usb 4-1: USB disconnect, device number 4
[  121.572190][ T6169] vhci_hcd vhci_hcd.0: Device attached
[  121.614824][ T5964] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  121.719472][ T6170] fido_id[6170]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  121.780840][   T38] audit: type=1326 audit(1776167143.894:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  121.782511][ T5964] usb 1-1: config 0 has no interfaces?
[  121.782554][ T5964] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  121.782579][ T5964] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.803855][   T38] audit: type=1326 audit(1776167143.894:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  121.861924][   T38] audit: type=1326 audit(1776167143.974:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  121.863509][   T38] audit: type=1326 audit(1776167143.974:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  121.877762][   T38] audit: type=1326 audit(1776167143.984:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  121.882920][   T38] audit: type=1326 audit(1776167143.994:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f61baf6c582 code=0x7ffc0000
[  121.896031][ T6186] loop2: detected capacity change from 0 to 512
[  121.983071][   T38] audit: type=1326 audit(1776167144.094:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f61baf2d04e code=0x7ffc0000
[  122.046902][  T819] usb 33-1: new low-speed USB device number 2 using vhci_hcd
[  122.068285][ T5964] usb 1-1: config 0 descriptor??
[  122.095496][   T38] audit: type=1326 audit(1776167144.194:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f61baf6c647 code=0x7ffc0000
[  122.095559][   T38] audit: type=1326 audit(1776167144.204:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f61baf2d04e code=0x7ffc0000
[  122.100603][ T6189] loop4: detected capacity change from 0 to 512
[  122.101839][ T6187] loop3: detected capacity change from 0 to 2048
[  122.129787][ T6186] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  122.145517][ T6186] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002]
[  122.145909][ T6186] EXT4-fs (loop2): orphan cleanup on readonly fs
[  122.293073][ T6174] usbip_core: unknown command
[  122.293090][ T6174] vhci_hcd: unknown pdu 0
[  122.293103][ T6174] usbip_core: unknown command
[  122.330053][ T5964] usb 1-1: USB disconnect, device number 4
[  122.395208][ T1376] vhci_hcd vhci_hcd.0: stop threads
[  122.396846][ T1376] vhci_hcd vhci_hcd.0: release socket
[  122.437953][ T6186] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4222: comm syz.2.99: Allocating blocks 41-42 which overlap fs metadata
[  122.438091][ T6186] loop2: lost filesystem error report for type 5 error -117
[  122.446535][    C1] EXT4-fs (loop2): error count since last fsck: 1
[  122.446562][    C1] EXT4-fs (loop2): initial error at time 1776167144: ext4_mb_mark_diskspace_used:4222
[  122.446586][    C1] EXT4-fs (loop2): last error at time 1776167144: ext4_mb_mark_diskspace_used:4222
[  122.446739][  T819] usb 33-1: device descriptor read/64, error -71
[  122.540338][ T6189] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.541669][ T1376] vhci_hcd vhci_hcd.0: disconnect device
[  122.575838][ T6186] EXT4-fs (loop2): Remounting filesystem read-only
[  122.608333][ T6186] EXT4-fs (loop2): 1 truncate cleaned up
[  122.643643][  T819] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  122.671466][ T6187] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  122.769950][ T6186] EXT4-fs (loop2): pa ffff88803dd8b940: logic 1, phys. 41, len 23
[  122.799180][ T6186] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  123.202455][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.588116][ T6201] loop0: detected capacity change from 0 to 64
[  123.854472][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.055375][ T6183] loop1: detected capacity change from 0 to 32768
[  124.403816][ T6183] XFS (loop1): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  124.496526][  T819] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  124.675722][  T819] usb 5-1: Using ep0 maxpacket: 16
[  124.680664][  T819] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  124.680721][  T819] usb 5-1: New USB device found, idVendor=0c12, idProduct=0030, bcdDevice= 0.00
[  124.680748][  T819] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.734516][  T819] usb 5-1: config 0 descriptor??
[  124.899746][ T6183] XFS (loop1): Ending clean mount
[  125.217840][ T6223] loop2: detected capacity change from 0 to 16
[  125.235845][  T819] zeroplus 0003:0C12:0030.0002: unknown main item tag 0x0
[  125.235884][  T819] zeroplus 0003:0C12:0030.0002: unknown main item tag 0x0
[  125.235911][  T819] zeroplus 0003:0C12:0030.0002: unknown main item tag 0x0
[  125.235935][  T819] zeroplus 0003:0C12:0030.0002: unknown main item tag 0x0
[  125.235960][  T819] zeroplus 0003:0C12:0030.0002: unknown main item tag 0x0
[  125.265415][ T5834] XFS (loop1): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  125.315375][  T819] zeroplus 0003:0C12:0030.0002: hidraw0: USB HID v0.0a Device [HID 0c12:0030] on usb-dummy_hcd.4-1/input0
[  125.315413][  T819] zeroplus 0003:0C12:0030.0002: no inputs found
[  125.513041][ T5964] usb 5-1: USB disconnect, device number 2
[  125.871739][ T6223] erofs (device loop2): mounted with root inode @ nid 36.
[  126.798228][ T6216] mmap: syz.3.104 (6216) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  127.917478][ T6260] loop4: detected capacity change from 0 to 64
[  128.058246][ T6263] binder: 6262:6263 ioctl 5000943a 0 returned -22
[  128.459690][ T6268] loop1: detected capacity change from 0 to 1024
[  128.796694][ T6268] hfsplus: b-tree write err: -5, ino 2
[  129.371867][   T12] hfsplus: b-tree write err: -5, ino 25
[  129.372103][   T12] hfsplus: b-tree write err: -5, ino 4
[  129.406135][ T6257] loop2: detected capacity change from 0 to 32768
[  129.446638][   T12] hfsplus: b-tree write err: -5, ino 2
[  129.446955][   T12] hfsplus: b-tree write err: -5, ino 26
[  129.852944][ T6289] loop4: detected capacity change from 0 to 1764
[  129.927271][ T6292] capability: warning: `syz.3.136' uses 32-bit capabilities (legacy support in use)
[  130.268054][ T6298] loop0: detected capacity change from 0 to 512
[  130.561560][ T6298] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.597906][ T6298] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 49 (only 1 groups)
[  130.768606][ T5835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.202274][ T6305] loop4: detected capacity change from 0 to 128
[  131.232109][ T6305] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  131.346359][ T5914] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  131.399820][ T6297] loop3: detected capacity change from 0 to 32768
[  131.492996][ T6297] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.140 (6297)
[  131.499544][ T5914] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 206, changing to 11
[  131.499584][ T5914] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 42414, setting to 1024
[  131.499637][ T5914] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  131.499680][ T5914] usb 1-1: New USB device found, idVendor=0404, idProduct=ffff, bcdDevice= 0.00
[  131.499707][ T5914] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.596963][ T5914] usb 1-1: config 0 descriptor??
[  131.599551][ T6303] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  131.689992][ T6294] loop1: detected capacity change from 0 to 32768
[  131.756889][ T6307] netlink: 4 bytes leftover after parsing attributes in process `syz.2.139'.
[  131.828052][ T6294] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  131.871157][ T5914] usbhid 1-1:0.0: can't add hid device: -71
[  131.871294][ T5914] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  131.909510][ T5914] usb 1-1: USB disconnect, device number 5
[  131.953530][ T6317] loop4: detected capacity change from 0 to 64
[  132.056561][ T6319] loop2: detected capacity change from 0 to 512
[  132.282364][ T6319] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.283487][ T6294] XFS (loop1): Ending clean mount
[  133.091031][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.250474][ T5834] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  133.404496][ T1333] ieee802154 phy0 wpan0: encryption failed: -22
[  133.404601][ T1333] ieee802154 phy1 wpan1: encryption failed: -22
[  133.492351][ T6297] BTRFS error (device loop3): open_ctree failed: -4
[  133.779076][ T6333] loop0: detected capacity change from 0 to 2048
[  134.063902][ T5958] udevd[5958]: incorrect nilfs2 checksum on /dev/loop0
[  134.434718][ T6333] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  134.493332][ T6333] NILFS (loop0): mounting unchecked fs
[  134.500063][ T5958] udevd[5958]: incorrect nilfs2 checksum on /dev/loop0
[  135.082685][ T6333] NILFS (loop0): recovery complete
[  135.189118][ T6356] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  135.403119][ T5897] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  135.580909][ T5897] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  135.580942][ T5897] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.678763][ T5897] usb 4-1: config 0 descriptor??
[  135.777391][ T5897] cp210x 4-1:0.0: cp210x converter detected
[  136.450539][ T5897] cp210x 4-1:0.0: failed to get vendor val 0x000e size 678: -71
[  136.450596][ T5897] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  136.523212][ T5897] usb 4-1: cp210x converter now attached to ttyUSB0
[  136.548907][ T5897] usb 4-1: USB disconnect, device number 5
[  136.606923][ T5897] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  136.607989][ T5897] cp210x 4-1:0.0: device disconnected
[  136.807442][ T6350] loop2: detected capacity change from 0 to 32768
[  136.959650][ T6350] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.157 (6350)
[  137.050103][ T6378] hub 9-0:1.0: USB hub found
[  137.093578][ T6378] hub 9-0:1.0: 1 port detected
[  137.528105][ T6350] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  137.528147][ T6350] BTRFS info (device loop2): using sha256 checksum algorithm
[  137.571228][ T6391] loop4: detected capacity change from 0 to 2048
[  137.657140][ T6391] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  137.657664][ T6391] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  137.657683][ T6391] UDF-fs: Scanning with blocksize 512 failed
[  137.825818][ T6391] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  137.896682][ T6350] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  137.945223][ T6350] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  137.967353][ T6350] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  137.973491][ T6350] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  137.973831][ T6350] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  138.006884][  T819] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  138.089770][ T6350] BTRFS error (device loop2): open_ctree failed: -12
[  138.188203][  T819] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  138.188239][  T819] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.188259][  T819] usb 1-1: Product: syz
[  138.188273][  T819] usb 1-1: Manufacturer: syz
[  138.188287][  T819] usb 1-1: SerialNumber: syz
[  138.255243][  T819] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  138.641793][ T6414] program syz.3.177 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  138.696227][ T6415] program syz.3.177 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  138.716819][ T6415] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  139.295195][ T5897] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  140.193178][ T6436] loop4: detected capacity change from 0 to 256
[  140.749637][ T5897] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  140.786552][ T5897] ath9k_htc: Failed to initialize the device
[  141.137122][ T6436] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  141.228912][ T6448] ieee802154 phy0 wpan0: encryption failed: -22
[  141.580430][ T5897] usb 1-1: ath9k_htc: USB layer deinitialized
[  141.929434][   T38] kauditd_printk_skb: 27 callbacks suppressed
[  141.929457][   T38] audit: type=1326 audit(1776167164.034:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4663ac819 code=0x7ffc0000
[  141.950852][   T38] audit: type=1326 audit(1776167164.054:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fa4663ac819 code=0x7ffc0000
[  141.950909][   T38] audit: type=1326 audit(1776167164.054:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4663ac819 code=0x7ffc0000
[  142.083068][   T32] usb 1-1: USB disconnect, device number 6
[  142.389177][ T6466] loop2: detected capacity change from 0 to 512
[  142.917803][ T6466] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.917996][ T6466] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.169789][ T6485] loop4: detected capacity change from 0 to 256
[  143.476146][ T6494] smc: net device wlan0 applied user defined pnetid SYZ0
[  143.960922][ T6502] loop3: detected capacity change from 0 to 128
[  143.974217][ T6502] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  143.978909][ T6502] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  144.186867][ T5897] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  144.364771][ T5897] usb 1-1: Using ep0 maxpacket: 8
[  144.368442][ T5897] usb 1-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5
[  144.368537][ T5897] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.408382][ T5897] usb 1-1: config 0 descriptor??
[  144.431099][ T5897] uvcvideo 1-1:0.0: probe with driver uvcvideo failed with error -22
[  144.768807][ T5897] usb 1-1: USB disconnect, device number 7
[  144.978979][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.689936][ T6526] loop1: detected capacity change from 0 to 512
[  145.863425][ T6526] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.222: inode has both inline data and extents flags
[  145.863642][ T6526] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  145.870598][    C0] EXT4-fs (loop1): initial error at time 1776167167: ext4_orphan_get:1397: inode 15
[  145.870638][    C0] EXT4-fs (loop1): last error at time 1776167167: ext4_orphan_get:1397: inode 15
[  145.933016][ T6526] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.222: couldn't read orphan inode 15 (err -117)
[  145.933056][ T6526] loop1: lost filesystem error report for type 5 error -117
[  145.936996][ T6526] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.310823][ T6540] loop2: detected capacity change from 0 to 512
[  146.322134][ T6540] EXT4-fs: Ignoring removed nomblk_io_submit option
[  146.322210][ T6540] EXT4-fs: Ignoring removed mblk_io_submit option
[  146.362750][ T6543] vivid-007: disconnect
[  146.377875][ T6542] vivid-007: reconnect
[  146.441321][ T6540] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  146.441364][ T6540] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[  146.472413][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.839157][ T6553] loop1: detected capacity change from 0 to 16
[  146.840453][ T6553] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  146.894587][ T6540] EXT4-fs (loop2): 1 truncate cleaned up
[  146.896451][ T6549] loop4: detected capacity change from 0 to 1764
[  146.911803][ T6552] loop3: detected capacity change from 0 to 256
[  146.962114][ T6540] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.015008][ T6552] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe39e9277, utbl_chksum : 0x7319d30d)
[  147.241091][ T6540] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #2: block 4: comm syz.2.228: lblock 0 mapped to illegal pblock 4 (length 1)
[  147.270015][ T6540] EXT4-fs (loop2): Remounting filesystem read-only
[  147.621999][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.857413][ T6558] loop2: detected capacity change from 0 to 256
[  147.858762][ T6558] exfat: Deprecated parameter 'namecase'
[  148.014068][ T6558] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0xf3765126, utbl_chksum : 0xe619d30d)
[  148.639311][ T6556] loop4: detected capacity change from 0 to 32768
[  148.662270][ T6556] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.234 (6556)
[  148.742371][ T6568] loop3: detected capacity change from 0 to 128
[  148.828840][ T6568] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  148.843252][ T6568] ext4 filesystem being mounted at /40/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  148.955935][ T6556] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  148.956002][ T6556] BTRFS info (device loop4): using crc32c checksum algorithm
[  149.206525][ T5827] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  149.444840][ T5964] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  149.634802][ T5964] usb 1-1: Using ep0 maxpacket: 8
[  149.688456][ T5964] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  149.688501][ T5964] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  149.688577][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.688607][ T5964] usb 1-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  149.688655][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  149.688682][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  149.688709][ T5964] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  149.688736][ T5964] usb 1-1: config 168 interface 0 has no altsetting 0
[  149.691967][ T5964] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  149.692019][ T5964] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  149.692063][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.692093][ T5964] usb 1-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  149.692119][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  149.692145][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  149.692175][ T5964] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  149.692205][ T5964] usb 1-1: config 168 interface 0 has no altsetting 0
[  149.693814][ T5964] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  149.693848][ T5964] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  149.693885][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.693909][ T5964] usb 1-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  149.693934][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  149.693959][ T5964] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  149.751124][ T5964] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  149.751164][ T5964] usb 1-1: config 168 interface 0 has no altsetting 0
[  149.982549][ T5964] usb 1-1: string descriptor 0 read error: -22
[  149.982730][ T5964] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  149.982756][ T5964] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.253642][ T6560] loop1: detected capacity change from 0 to 32768
[  150.703494][ T6556] BTRFS info (device loop4): setting nodatasum
[  150.703524][ T6556] BTRFS info (device loop4): setting nodatacow
[  150.703543][ T6556] BTRFS info (device loop4): turning on async discard
[  150.703560][ T6556] BTRFS info (device loop4): enabling free space tree
[  150.703576][ T6556] BTRFS info (device loop4): enabling auto defrag
[  150.703595][ T6556] BTRFS info (device loop4): max_inline set to 0
[  150.849398][ T5964] adutux 1-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  150.912510][ T5964] usb 1-1: USB disconnect, device number 8
[  151.322171][ T6607] loop2: detected capacity change from 0 to 1024
[  151.691185][ T6615] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  151.760016][ T5836] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  151.762283][ T6607] hfsplus: invalid btree flag
[  151.762949][ T6607] hfsplus: failed to load attributes file
[  151.907523][ T6618] loop3: detected capacity change from 0 to 256
[  152.129008][ T6618] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x204323ec, utbl_chksum : 0xe619d30d)
[  152.739597][ T6625] loop2: detected capacity change from 0 to 64
[  154.867650][ T6637] loop1: detected capacity change from 0 to 32768
[  154.929617][ T6665] netlink: 4 bytes leftover after parsing attributes in process `syz.2.275'.
[  154.958262][ T6637] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  155.251459][ T6637] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  155.267647][ T6637] XFS (loop1): Starting recovery (logdev: internal)
[  155.519595][ T6637] XFS (loop1): Ending recovery (logdev: internal)
[  156.059194][ T6700] netlink: 20 bytes leftover after parsing attributes in process `syz.4.287'.
[  156.105017][   T38] audit: type=1800 audit(1776167178.144:54): pid=6637 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.262" name="file1" dev="loop1" ino=4422 res=0 errno=0
[  156.553515][ T5834] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  156.723508][ T6720] ptrace attach of "./syz-executor exec"[5830] was attempted by "@      n                                        €                              €\x0d      
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 
[  156.826691][ T5964] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  156.984997][ T5964] usb 4-1: Using ep0 maxpacket: 16
[  156.987381][ T5964] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.987415][ T5964] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.987438][ T5964] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  156.987478][ T5964] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  156.987502][ T5964] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.085452][ T5964] usb 4-1: config 0 descriptor??
[  157.085741][ T6722] loop2: detected capacity change from 0 to 64
[  157.669195][ T5964] hid_parser_main: 33 callbacks suppressed
[  157.669226][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669256][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669282][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669308][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669335][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669361][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669387][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669414][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669440][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.669467][ T5964] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0
[  157.830147][ T5964] microsoft 0003:045E:07DA.0003: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  157.830186][ T5964] microsoft 0003:045E:07DA.0003: no inputs found
[  157.830202][ T5964] microsoft 0003:045E:07DA.0003: could not initialize ff, continuing anyway
[  157.889746][ T5964] usb 4-1: USB disconnect, device number 6
[  158.022328][ T6716] loop4: detected capacity change from 0 to 32768
[  158.186603][ T6734] netlink: 'syz.0.303': attribute type 29 has an invalid length.
[  158.189306][ T6734] netlink: 'syz.0.303': attribute type 29 has an invalid length.
[  158.303027][ T6736] loop1: detected capacity change from 0 to 512
[  158.333393][ T6732] fido_id[6732]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  158.532335][ T6716] JBD2: Ignoring recovery information on journal
[  158.710273][ T6744] syz.3.307 uses obsolete (PF_INET,SOCK_PACKET)
[  158.799324][ T6716] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  158.925329][ T6716] (syz.4.298,6716,0):ocfs2_reconfigure:634 ERROR: Cannot change data mode on remount
[  159.010992][ T6747] netlink: 10 bytes leftover after parsing attributes in process `syz.0.308'.
[  159.011071][ T6747] netlink: 10 bytes leftover after parsing attributes in process `syz.0.308'.
[  159.801123][ T5836] ocfs2: Unmounting device (7,4) on (node local)
[  160.165208][ T6761] team_slave_0: entered promiscuous mode
[  160.165299][ T6761] team_slave_1: entered promiscuous mode
[  160.178477][ T6761] macvlan2: entered promiscuous mode
[  160.178501][ T6761] team0: entered promiscuous mode
[  160.265102][ T6761] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  160.576295][ T6777] loop2: detected capacity change from 0 to 256
[  161.071696][ T6786] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  161.294011][ T6788] loop0: detected capacity change from 0 to 4096
[  162.152671][ T6806] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  162.492975][ T6788] ntfs3(loop0): failed to convert "0000" to iso8859-6
[  162.819846][ T6793] loop2: detected capacity change from 0 to 32768
[  162.851194][ T6793] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.327 (6793)
[  163.383606][ T6793] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  163.383645][ T6793] BTRFS info (device loop2): using crc32c checksum algorithm
[  163.878626][ T6793] BTRFS info (device loop2): turning on async discard
[  163.878657][ T6793] BTRFS info (device loop2): enabling free space tree
[  163.878675][ T6793] BTRFS info (device loop2): enabling auto defrag
[  163.878694][ T6793] BTRFS info (device loop2): force zlib compression, level 3
[  163.878715][ T6793] BTRFS info (device loop2): max_inline set to 0
[  164.092357][ T6847] loop3: detected capacity change from 0 to 512
[  164.129519][ T5830] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  164.334910][ T6847] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  164.334933][ T6847] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  165.142855][ T6847] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.348: bg 0: block 104: invalid block bitmap
[  165.142894][ T6847] loop3: lost filesystem error report for type 5 error -117
[  165.234714][    C0] EXT4-fs (loop3): initial error at time 1776167187: ext4_validate_block_bitmap:432
[  165.234753][    C0] EXT4-fs (loop3): last error at time 1776167187: ext4_validate_block_bitmap:432
[  165.277964][ T6847] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  165.278012][ T6847] loop3: lost filesystem error report for type 5 error -117
[  165.359461][ T6847] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.348: invalid indirect mapped block 1 (level 1)
[  165.359490][ T6847] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  165.553502][ T6847] EXT4-fs (loop3): 1 truncate cleaned up
[  165.611646][ T6873] netlink: 'syz.1.359': attribute type 1 has an invalid length.
[  165.611674][ T6873] netlink: 96 bytes leftover after parsing attributes in process `syz.1.359'.
[  165.611701][ T6873] netlink: 'syz.1.359': attribute type 1 has an invalid length.
[  165.611716][ T6873] netlink: 638 bytes leftover after parsing attributes in process `syz.1.359'.
[  165.611730][ T6873] netlink: 1 bytes leftover after parsing attributes in process `syz.1.359'.
[  165.843985][ T6847] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.133824][ T6884] netlink: 'syz.4.363': attribute type 21 has an invalid length.
[  166.133851][ T6884] netlink: 128 bytes leftover after parsing attributes in process `syz.4.363'.
[  166.133962][ T6884] netlink: 'syz.4.363': attribute type 4 has an invalid length.
[  166.133975][ T6884] netlink: 'syz.4.363': attribute type 3 has an invalid length.
[  166.134003][ T6884] netlink: 3 bytes leftover after parsing attributes in process `syz.4.363'.
[  167.367094][ T5827] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.853561][ T6916] loop3: detected capacity change from 0 to 128
[  168.068719][ T6918] usb usb8: usbfs: process 6918 (syz.2.378) did not claim interface 14 before use
[  168.293023][ T6897] loop1: detected capacity change from 0 to 32768
[  168.574882][ T6897] 
[  168.574882][ T6897]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  168.574882][ T6897] 
[  168.913561][ T6897] 
[  168.913561][ T6897]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  168.913561][ T6897] 
[  168.913636][ T6897] 
[  168.913636][ T6897]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  168.913636][ T6897] 
[  168.913658][ T6897] 
[  168.913658][ T6897]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  168.913658][ T6897] 
[  168.913677][ T6897] 
[  168.913677][ T6897]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  168.913677][ T6897] 
[  169.320718][  T126] 
[  169.320718][  T126]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  169.320718][  T126] 
[  169.376279][ T6946] netlink: 'syz.0.390': attribute type 8 has an invalid length.
[  169.376295][ T6946] netlink: 209840 bytes leftover after parsing attributes in process `syz.0.390'.
[  169.901365][ T6959] loop2: detected capacity change from 0 to 256
[  169.903089][ T6959] exfat: Deprecated parameter 'namecase'
[  169.969216][ T6931] 
[  169.969216][ T6931]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  169.969216][ T6931] 
[  170.039840][ T6931] 
[  170.039840][ T6931]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  170.039840][ T6931] 
[  170.039938][ T6931] 
[  170.039938][ T6931]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  170.039938][ T6931] 
[  170.040025][ T6931] 
[  170.040025][ T6931]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  170.040025][ T6931] 
[  170.040110][ T6931] 
[  170.040110][ T6931]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  170.040110][ T6931] 
[  170.040195][ T6931] 
[  170.040195][ T6931]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  170.040195][ T6931] 
[  170.073871][ T6959] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[  170.141760][  T127] 
[  170.141760][  T127]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  170.141760][  T127] 
[  170.290433][ T6962] Invalid ELF header magic: != ELF
[  170.362499][ T5834] 
[  170.362499][ T5834]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  170.362499][ T5834] 
[  170.394295][ T5834] 
[  170.394295][ T5834]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  170.394295][ T5834] 
[  170.710169][ T6954] loop4: detected capacity change from 0 to 32768
[  170.759142][ T6954] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.394 (6954)
[  170.817116][ T6954] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  170.817154][ T6954] BTRFS info (device loop4): using blake2b checksum algorithm
[  170.952965][ T6975] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  171.049021][ T6975] overlayfs: overlapping lowerdir path
[  171.347423][ T6954] BTRFS info (device loop4): enabling ssd optimizations
[  171.347455][ T6954] BTRFS info (device loop4): turning on async discard
[  171.347472][ T6954] BTRFS info (device loop4): enabling free space tree
[  172.154485][   T38] audit: type=1800 audit(1776167194.264:55): pid=6954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.394" name="file1" dev="loop4" ino=260 res=0 errno=0
[  172.979041][ T7032] devpts: Bad value for 'max'
[  173.267136][ T7036] comedi comedi3: multiq3: I/O base address or length out of range
[  173.267366][ T7034] netlink: 20 bytes leftover after parsing attributes in process `syz.0.421'.
[  173.625583][ T7044] veth0_to_bond: entered allmulticast mode
[  174.062953][ T7055] loop2: detected capacity change from 0 to 512
[  174.131366][ T7055] EXT4-fs (loop2): Test dummy encryption mode enabled
[  174.320949][ T7055] EXT4-fs (loop2): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.431454][ T7055] EXT4-fs error (device loop2): htree_dirblock_to_tree:1051: inode #2: comm syz.2.429: Directory hole found for htree leaf block 0
[  174.497788][ T7055] EXT4-fs (loop2): Remounting filesystem read-only
[  174.669058][ T5830] EXT4-fs (loop2): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  174.884111][ T7074] loop3: detected capacity change from 0 to 512
[  174.952475][ T7074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.952629][ T7074] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.070938][ T5827] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.788741][ T5831] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  175.788935][ T5831] Bluetooth: hci0: Injecting HCI hardware error event
[  175.816739][ T5832] Bluetooth: hci0: hardware error 0x00
[  175.861313][ T5836] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  176.408678][ T7067] loop0: detected capacity change from 0 to 32768
[  176.415879][ T7067] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.434 (7067)
[  176.834822][ T7067] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  176.834865][ T7067] BTRFS info (device loop0): using sha256 checksum algorithm
[  177.528832][ T7112] misc userio: No port type given on /dev/userio
[  177.530669][ T7112] misc userio: The device must be registered before sending interrupts
[  177.539574][ T7113] loop4: detected capacity change from 0 to 64
[  177.838305][ T7088] loop3: detected capacity change from 0 to 32768
[  178.054581][ T7118] loop2: detected capacity change from 0 to 136
[  178.154610][   T38] audit: type=1800 audit(1776167200.264:56): pid=7088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.443" name="file2" dev="loop3" ino=5 res=0 errno=0
[  178.530223][ T5832] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  178.917180][ T7067] BTRFS error (device loop0): open_ctree failed: -4
[  179.756670][ T7134] loop3: detected capacity change from 0 to 4096
[  180.427589][ T7151] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  181.533285][ T7175] loop4: detected capacity change from 0 to 2048
[  181.804830][   T32] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  181.988621][   T32] usb 2-1: config 0 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  181.988667][   T32] usb 2-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0
[  181.988690][   T32] usb 2-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  181.988717][   T32] usb 2-1: config 0 interface 0 has no altsetting 0
[  181.988754][   T32] usb 2-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.00
[  181.988778][   T32] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.073149][   T32] usb 2-1: config 0 descriptor??
[  182.240143][ T7193] capability: warning: `syz.2.481' uses deprecated v2 capabilities in a way that may be insecure
[  182.338691][ T7197] netlink: 156 bytes leftover after parsing attributes in process `syz.0.482'.
[  182.593823][   T32] holtek 0003:1241:5015.0004: unknown main item tag 0x4
[  182.593865][   T32] holtek 0003:1241:5015.0004: unknown main item tag 0x3
[  182.593890][   T32] holtek 0003:1241:5015.0004: item fetching failed at offset 4/5
[  182.603838][   T32] holtek 0003:1241:5015.0004: parse failed
[  182.603926][   T32] holtek 0003:1241:5015.0004: probe with driver holtek failed with error -22
[  182.770357][ T7207] loop3: detected capacity change from 0 to 256
[  182.805299][  T820] usb 2-1: USB disconnect, device number 4
[  182.956222][ T7211] loop0: detected capacity change from 0 to 256
[  182.969155][ T7211] exfat: Deprecated parameter 'utf8'
[  182.969266][ T7211] exfat: Deprecated parameter 'namecase'
[  183.041968][ T7207] FAT-fs (loop3): Directory bread(block 64) failed
[  183.042010][ T7207] FAT-fs (loop3): Directory bread(block 65) failed
[  183.073045][ T7211] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001fe89, chksum : 0xf974f890, utbl_chksum : 0xe619d30d)
[  183.107372][ T7207] FAT-fs (loop3): Directory bread(block 66) failed
[  183.107415][ T7207] FAT-fs (loop3): Directory bread(block 67) failed
[  183.107567][ T7207] FAT-fs (loop3): Directory bread(block 68) failed
[  183.107592][ T7207] FAT-fs (loop3): Directory bread(block 69) failed
[  183.107664][ T7207] FAT-fs (loop3): Directory bread(block 70) failed
[  183.107678][ T7207] FAT-fs (loop3): Directory bread(block 71) failed
[  183.107743][ T7207] FAT-fs (loop3): Directory bread(block 72) failed
[  183.107757][ T7207] FAT-fs (loop3): Directory bread(block 73) failed
[  183.602619][ T7219] netlink: 268 bytes leftover after parsing attributes in process `syz.1.494'.
[  183.602651][ T7219] netlink: 12 bytes leftover after parsing attributes in process `syz.1.494'.
[  183.691052][ T7222] loop2: detected capacity change from 0 to 1024
[  183.694911][ T7217] Bluetooth: MGMT ver 1.23
[  184.349544][ T7239] loop3: detected capacity change from 0 to 256
[  184.352466][ T7239] exfat: Deprecated parameter 'utf8'
[  184.352572][ T7239] exfat: Deprecated parameter 'namecase'
[  184.408811][ T7238] loop4: detected capacity change from 0 to 1024
[  184.563662][ T7241] loop0: detected capacity change from 0 to 64
[  184.663142][ T7239] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[  184.700407][   T93] hfsplus: b-tree write err: -5, ino 25
[  184.700585][   T93] hfsplus: b-tree write err: -5, ino 4
[  184.700711][   T93] hfsplus: b-tree write err: -5, ino 2
[  184.757944][ T7238] hfsplus: bad catalog entry type
[  184.847433][   T93] hfsplus: b-tree write err: -5, ino 25
[  184.847627][   T93] hfsplus: b-tree write err: -5, ino 4
[  184.929856][   T93] hfsplus: b-tree write err: -5, ino 2
[  185.768087][ T7264] netlink: 8 bytes leftover after parsing attributes in process `syz.2.515'.
[  186.068455][ T7244] Trying to free block not in datazone
[  186.373327][ T7277] netlink: 'syz.2.522': attribute type 1 has an invalid length.
[  187.129612][ T7301] loop3: detected capacity change from 0 to 512
[  187.269102][ T7301] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #17: comm syz.3.531: iget: bogus i_mode (0)
[  187.269140][ T7301] loop3: lost file I/O error report for ino 17 type 5 pos 0x0 len 0x0 error -117
[  187.269544][ T7301] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.531: couldn't read orphan inode 17 (err -117)
[  187.269574][ T7301] loop3: lost filesystem error report for type 5 error -117
[  187.354131][ T7301] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.370468][ T7307] loop4: detected capacity change from 0 to 256
[  187.436706][   T38] audit: type=1326 audit(1776167209.544:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  187.436764][   T38] audit: type=1326 audit(1776167209.544:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  187.436810][   T38] audit: type=1326 audit(1776167209.544:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  187.436854][   T38] audit: type=1326 audit(1776167209.544:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  187.436897][   T38] audit: type=1326 audit(1776167209.544:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  187.436939][   T38] audit: type=1326 audit(1776167209.544:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd45180c582 code=0x7ffc0000
[  187.438779][   T38] audit: type=1326 audit(1776167209.554:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd4517cd04e code=0x7ffc0000
[  187.440815][   T38] audit: type=1326 audit(1776167209.554:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd45180c647 code=0x7ffc0000
[  187.440869][   T38] audit: type=1326 audit(1776167209.554:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd4517cd04e code=0x7ffc0000
[  187.440915][   T38] audit: type=1326 audit(1776167209.554:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7308 comm="syz.0.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd45180c4ab code=0x7ffc0000
[  187.443864][ T7309] loop0: detected capacity change from 0 to 256
[  187.848436][ T7309] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF
[  187.848467][ T7309] FAT-fs (loop0): Filesystem has been set read-only
[  187.904986][ T7306] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 7: invalid block bitmap
[  187.983310][ T5827] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.670317][ T7330] loop4: detected capacity change from 0 to 512
[  188.698978][ T7330] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #2: block 3: comm syz.4.539: lblock 0 mapped to illegal pblock 3 (length 1)
[  188.699021][ T7330] loop4: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[  188.711440][    C0] EXT4-fs (loop4): initial error at time 1776167210: ext4_map_blocks:791: inode 2: block 3
[  188.711479][    C0] EXT4-fs (loop4): last error at time 1776167210: ext4_map_blocks:791: inode 2: block 3
[  188.966884][ T7330] EXT4-fs warning (device loop4): dx_probe:791: inode #2: lblock 0: comm syz.4.539: error -117 reading directory block
[  188.973783][ T7330] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  188.978531][ T7330] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.002243][ T7330] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #2: block 3: comm syz.4.539: lblock 0 mapped to illegal pblock 3 (length 1)
[  189.031319][ T7330] EXT4-fs warning (device loop4): dx_probe:791: inode #2: lblock 0: comm syz.4.539: error -117 reading directory block
[  189.064217][ T7336] loop2: detected capacity change from 0 to 256
[  189.170076][ T7342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.546'.
[  189.234078][ T7344] netlink: 16 bytes leftover after parsing attributes in process `syz.0.549'.
[  189.266977][ T7340] loop3: detected capacity change from 0 to 1024
[  189.268199][ T7340] EXT4-fs: Ignoring removed i_version option
[  189.268235][ T7340] EXT4-fs: inline encryption not supported
[  189.269354][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.421605][ T7336] FAT-fs (loop2): Directory bread(block 64) failed
[  189.421656][ T7336] FAT-fs (loop2): Directory bread(block 65) failed
[  189.421847][ T7336] FAT-fs (loop2): Directory bread(block 66) failed
[  189.421872][ T7336] FAT-fs (loop2): Directory bread(block 67) failed
[  189.421977][ T7336] FAT-fs (loop2): Directory bread(block 68) failed
[  189.422002][ T7336] FAT-fs (loop2): Directory bread(block 69) failed
[  189.422139][ T7336] FAT-fs (loop2): Directory bread(block 70) failed
[  189.422163][ T7336] FAT-fs (loop2): Directory bread(block 71) failed
[  189.422271][ T7336] FAT-fs (loop2): Directory bread(block 72) failed
[  189.422295][ T7336] FAT-fs (loop2): Directory bread(block 73) failed
[  189.455340][ T7347] netlink: 'syz.0.550': attribute type 13 has an invalid length.
[  189.537637][ T7347] gretap0: refused to change device tx_queue_len
[  189.538173][ T7347] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  189.579189][ T7340] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.776314][ T7351] loop4: detected capacity change from 0 to 128
[  190.034602][ T7340] EXT4-fs: Can't set or change test_dummy_encryption on remount
[  190.226696][ T5827] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.379737][ T7359] loop1: detected capacity change from 0 to 4096
[  190.391419][ T7359] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[  191.100887][ T7359] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[  191.113269][ T7374] loop4: detected capacity change from 0 to 1024
[  191.170146][ T7377] netlink: 8 bytes leftover after parsing attributes in process `syz.2.562'.
[  191.170173][ T7377] netlink: 4 bytes leftover after parsing attributes in process `syz.2.562'.
[  191.170200][ T7377] netlink: 'syz.2.562': attribute type 14 has an invalid length.
[  191.170216][ T7377] netlink: 'syz.2.562': attribute type 12 has an invalid length.
[  191.402934][   T57] hfsplus: b-tree write err: -5, ino 25
[  191.469950][   T57] hfsplus: b-tree write err: -5, ino 4
[  191.532780][   T57] hfsplus: b-tree write err: -5, ino 2
[  191.794774][ T7381] loop2: detected capacity change from 0 to 1764
[  191.931116][ T7384] netlink: 'syz.3.566': attribute type 178 has an invalid length.
[  192.371681][ T7358] set_capacity_and_notify: 1 callbacks suppressed
[  192.371704][ T7358] loop0: detected capacity change from 0 to 32768
[  193.335358][ T7406] program syz.4.574 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  193.824529][ T7409] loop4: detected capacity change from 0 to 4096
[  193.869998][ T7411] loop1: detected capacity change from 0 to 2048
[  194.101719][ T7411] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  194.218535][ T7414] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  194.351822][ T7418] loop2: detected capacity change from 0 to 256
[  194.400452][ T7419] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  194.876055][ T1333] ieee802154 phy0 wpan0: encryption failed: -22
[  194.876125][ T1333] ieee802154 phy1 wpan1: encryption failed: -22
[  195.075081][ T7418] FAT-fs (loop2): Directory bread(block 64) failed
[  195.075123][ T7418] FAT-fs (loop2): Directory bread(block 65) failed
[  195.075239][ T7418] FAT-fs (loop2): Directory bread(block 66) failed
[  195.075264][ T7418] FAT-fs (loop2): Directory bread(block 67) failed
[  195.075374][ T7418] FAT-fs (loop2): Directory bread(block 68) failed
[  195.075398][ T7418] FAT-fs (loop2): Directory bread(block 69) failed
[  195.075508][ T7418] FAT-fs (loop2): Directory bread(block 70) failed
[  195.075532][ T7418] FAT-fs (loop2): Directory bread(block 71) failed
[  195.075641][ T7418] FAT-fs (loop2): Directory bread(block 72) failed
[  195.075664][ T7418] FAT-fs (loop2): Directory bread(block 73) failed
[  195.572090][ T7428] loop1: detected capacity change from 0 to 512
[  195.585076][ T7428] EXT4-fs: Ignoring removed bh option
[  195.585134][ T7428] EXT4-fs: Ignoring removed mblk_io_submit option
[  195.589173][ T7428] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  195.636082][ T7428] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  195.636438][ T7428] EXT4-fs (loop1): orphan cleanup on readonly fs
[  195.642367][ T7428] __quota_error: 18 callbacks suppressed
[  195.642389][ T7428] Quota error (device loop1): do_insert_tree: Free block already used in tree: block 4
[  195.642490][ T7428] Quota error (device loop1): qtree_write_dquot: Error -5 occurred while creating quota
[  195.668897][ T7427] loop0: detected capacity change from 0 to 1024
[  195.694325][ T7427] EXT4-fs: Ignoring removed bh option
[  195.767324][ T7428] EXT4-fs error (device loop1): ext4_acquire_dquot:7034: comm syz.1.580: Failed to acquire dquot type 1
[  195.767362][ T7428] loop1: lost filesystem error report for type 5 error -5
[  195.774365][ T7428] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.580: Invalid block bitmap block 0 in block_group 0
[  195.774403][ T7428] loop1: lost filesystem error report for type 5 error -117
[  195.777349][    C1] EXT4-fs (loop1): error count since last fsck: 2
[  195.777377][    C1] EXT4-fs (loop1): last error at time 1776167217: ext4_read_block_bitmap_nowait:483
[  195.795246][ T7413] loop3: detected capacity change from 0 to 32768
[  195.827451][ T7413] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.578 (7413)
[  195.932643][ T7428] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.580: Invalid block bitmap block 0 in block_group 0
[  195.932685][ T7428] loop1: lost filesystem error report for type 5 error -117
[  195.987634][ T7428] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.580: Invalid block bitmap block 0 in block_group 0
[  195.987676][ T7428] loop1: lost filesystem error report for type 5 error -117
[  195.988719][ T7428] Quota error (device loop1): write_blk: dquota write failed
[  195.988854][ T7428] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  195.988898][ T7428] EXT4-fs error (device loop1): ext4_acquire_dquot:7034: comm syz.1.580: Failed to acquire dquot type 1
[  195.988921][ T7428] loop1: lost filesystem error report for type 5 error -28
[  196.033868][ T7413] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  196.033907][ T7413] BTRFS info (device loop3): using crc32c checksum algorithm
[  196.068172][ T7427] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.245837][ T7428] Quota error (device loop1): write_blk: dquota write failed
[  196.245981][ T7428] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  196.246031][ T7428] EXT4-fs error (device loop1): ext4_acquire_dquot:7034: comm syz.1.580: Failed to acquire dquot type 1
[  196.246055][ T7428] loop1: lost filesystem error report for type 5 error -28
[  196.582729][ T7450] loop2: detected capacity change from 0 to 2048
[  196.655782][ T7428] EXT4-fs (loop1): 1 orphan inode deleted
[  196.722748][ T7450] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  196.761711][ T7428] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  196.910134][ T7413] BTRFS info (device loop3): enabling ssd optimizations
[  196.910166][ T7413] BTRFS info (device loop3): turning on flush-on-commit
[  196.910184][ T7413] BTRFS info (device loop3): enabling free space tree
[  196.910202][ T7413] BTRFS info (device loop3): enabling auto defrag
[  196.910221][ T7413] BTRFS info (device loop3): use lzo compression, level 1
[  196.910243][ T7413] BTRFS info (device loop3): max_inline set to 4096
[  196.992648][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.028478][ T5835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.244226][ T5827] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  197.441529][ T7460] loop2: detected capacity change from 0 to 256
[  197.477551][ T7460] exfat: Deprecated parameter 'namecase'
[  197.531552][ T7460] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  198.238334][ T7478] netlink: 8 bytes leftover after parsing attributes in process `syz.4.588'.
[  198.238363][ T7478] netlink: 8 bytes leftover after parsing attributes in process `syz.4.588'.
[  200.161340][ T7525] loop0: detected capacity change from 0 to 1024
[  200.247353][ T7525] hfsplus: bad catalog entry type
[  200.327031][ T1376] hfsplus: b-tree write err: -5, ino 25
[  200.327293][ T1376] hfsplus: b-tree write err: -5, ino 4
[  200.327437][ T1376] hfsplus: b-tree write err: -5, ino 2
[  200.383236][ T7529] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  200.951064][ T7541] warning: `syz.2.623' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  201.000033][   T38] audit: type=1326 audit(1776167223.114:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7539 comm="syz.1.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  201.003911][   T38] audit: type=1326 audit(1776167223.114:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7539 comm="syz.1.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=269 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  201.012517][   T38] audit: type=1326 audit(1776167223.124:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7539 comm="syz.1.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0eeddc819 code=0x7ffc0000
[  201.401806][ T7523] loop4: detected capacity change from 0 to 32768
[  201.439574][ T7520] loop3: detected capacity change from 0 to 32768
[  201.475971][ T7523] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.614 (7523)
[  201.569297][ T7554] loop0: detected capacity change from 0 to 256
[  201.921902][ T7523] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  201.921942][ T7523] BTRFS info (device loop4): using blake2b checksum algorithm
[  202.287068][ T7523] BTRFS info (device loop4 state EC): enabling ssd optimizations
[  202.287097][ T7523] BTRFS info (device loop4 state EC): using spread ssd allocation scheme
[  202.287114][ T7523] BTRFS info (device loop4 state EC): turning off barriers
[  202.287131][ T7523] BTRFS info (device loop4 state EC): enabling free space tree
[  202.287148][ T7523] BTRFS info (device loop4 state EC): enabling auto defrag
[  202.287164][ T7523] BTRFS info (device loop4 state EC): ignoring data csums
[  202.287181][ T7523] BTRFS info (device loop4 state EC): force zlib compression, level 3
[  202.409208][ T7573] loop2: detected capacity change from 0 to 512
[  202.431248][ T7573] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  203.003268][ T5836] BTRFS info (device loop4 state EC): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  203.162529][ T7573] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.633: Invalid block bitmap block 0 in block_group 0
[  203.162556][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.167316][    C0] EXT4-fs (loop2): initial error at time 1776167225: ext4_read_block_bitmap_nowait:483
[  203.167356][    C0] EXT4-fs (loop2): last error at time 1776167225: ext4_read_block_bitmap_nowait:483
[  203.194792][   T32] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  203.279684][ T7573] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  203.279711][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.347456][ T7573] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #11: comm syz.2.633: attempt to clear invalid blocks 983261 len 1
[  203.347500][ T7573] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  203.348875][ T7573] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz.2.633: Invalid inode table block 0 in block_group 0
[  203.348908][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.354184][ T7573] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  203.354216][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.413639][   T32] usb 4-1: Using ep0 maxpacket: 32
[  203.446984][   T32] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  203.447016][   T32] usb 4-1: config 0 has no interface number 0
[  203.455316][   T32] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  203.455349][   T32] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.455370][   T32] usb 4-1: Product: syz
[  203.455386][   T32] usb 4-1: Manufacturer: syz
[  203.455401][   T32] usb 4-1: SerialNumber: syz
[  203.511780][   T32] usb 4-1: config 0 descriptor??
[  203.569787][ T7573] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  203.569819][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.573190][   T32] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  203.575629][ T7573] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz.2.633: Invalid inode table block 0 in block_group 0
[  203.575664][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.576256][ T7573] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  203.576346][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.578307][ T7573] EXT4-fs error (device loop2): ext4_truncate:4690: inode #11: comm syz.2.633: mark_inode_dirty error
[  203.578404][ T7573] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  203.579684][ T7573] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  203.579707][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.580329][ T7573] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz.2.633: Invalid inode table block 0 in block_group 0
[  203.580360][ T7573] loop2: lost filesystem error report for type 5 error -117
[  203.587761][ T7573] EXT4-fs (loop2): 1 truncate cleaned up
[  203.652726][ T7573] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.926705][   T32] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  203.996221][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.080484][   T32] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  204.230532][    C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[  204.273006][   T32] usb 4-1: USB disconnect, device number 7
[  204.401997][   T32] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  204.484845][   T32] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  204.498818][   T32] quatech2 4-1:0.51: device disconnected
[  205.359564][ T7610] loop2: detected capacity change from 0 to 1024
[  205.382771][ T7610] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  205.397132][ T7610] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  205.397625][ T7610] EXT4-fs (loop2): orphan cleanup on readonly fs
[  205.433040][ T7613] loop0: detected capacity change from 0 to 128
[  205.526504][ T7613] EXT4-fs (loop0): Test dummy encryption mode enabled
[  205.533204][ T7613] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  205.533279][ T7613] System zones: 1-3, 19-19, 35-36
[  205.584269][ T7613] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  205.596376][ T7613] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.832960][ T7610] Quota error (device loop2): do_check_range: Getting dqdh_entries 512 out of range 0-14
[  205.833132][ T7610] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  205.833214][ T7610] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.647: Failed to acquire dquot type 0
[  205.833239][ T7610] loop2: lost filesystem error report for type 5 error -117
[  205.833952][ T7610] Quota error (device loop2): do_check_range: Getting dqdh_entries 512 out of range 0-14
[  205.834107][ T7610] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  205.834170][ T7610] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.647: Failed to acquire dquot type 0
[  205.836922][    C0] EXT4-fs (loop2): error count since last fsck: 2
[  205.836947][    C0] EXT4-fs (loop2): initial error at time 1776167227: ext4_acquire_dquot:7034
[  205.836971][    C0] EXT4-fs (loop2): last error at time 1776167227: ext4_acquire_dquot:7034
[  205.841261][ T7610] EXT4-fs error (device loop2): ext4_free_blocks:6718: comm syz.2.647: Freeing blocks not in datazone - block = 0, count = 4096
[  205.881220][ T7610] Quota error (device loop2): do_check_range: Getting dqdh_entries 512 out of range 0-14
[  205.881399][ T7610] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  205.881462][ T7610] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.647: Failed to acquire dquot type 0
[  205.882129][ T7610] EXT4-fs (loop2): 1 orphan inode deleted
[  205.938237][ T7610] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  205.982650][ T5835] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  206.226455][ T7624] loop0: detected capacity change from 0 to 256
[  206.310134][ T7624] FAT-fs (loop0): Directory bread(block 64) failed
[  206.310172][ T7624] FAT-fs (loop0): Directory bread(block 65) failed
[  206.310278][ T7624] FAT-fs (loop0): Directory bread(block 66) failed
[  206.310303][ T7624] FAT-fs (loop0): Directory bread(block 67) failed
[  206.310417][ T7624] FAT-fs (loop0): Directory bread(block 68) failed
[  206.310439][ T7624] FAT-fs (loop0): Directory bread(block 69) failed
[  206.310545][ T7624] FAT-fs (loop0): Directory bread(block 70) failed
[  206.310568][ T7624] FAT-fs (loop0): Directory bread(block 71) failed
[  206.310675][ T7624] FAT-fs (loop0): Directory bread(block 72) failed
[  206.310699][ T7624] FAT-fs (loop0): Directory bread(block 73) failed
[  206.381995][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.901220][ T7637] loop2: detected capacity change from 0 to 2048
[  207.030079][ T7643] loop4: detected capacity change from 0 to 1024
[  207.031465][ T7643] EXT4-fs: Ignoring removed bh option
[  207.085220][ T7637] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.216023][ T7637] EXT4-fs: can't change dax mount option while remounting
[  207.231189][ T7643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.494316][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.648506][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.031341][ T7694] loop1: detected capacity change from 0 to 512
[  209.032520][ T7694] EXT4-fs: Ignoring removed nobh option
[  209.070702][ T7694] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  209.321713][ T7694] EXT4-fs (loop1): 1 truncate cleaned up
[  209.350855][ T7694] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.517215][ T7659] loop3: detected capacity change from 0 to 32768
[  209.534412][ T7659] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.666 (7659)
[  209.685654][ T7659] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  209.685694][ T7659] BTRFS info (device loop3): using blake2b checksum algorithm
[  209.763028][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.865290][ T7696] Bluetooth: hci0: Opcode 0x080f failed: -4
[  210.029143][ T7723] netlink: 'syz.2.681': attribute type 11 has an invalid length.
[  210.412961][ T7732] netlink: 'syz.2.685': attribute type 29 has an invalid length.
[  210.575899][ T7735] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  211.123114][ T7659] BTRFS error (device loop3): open_ctree failed: -4
[  212.267875][ T5831] Bluetooth: hci1: command 0x0406 tx timeout
[  212.771073][ T7784] loop4: detected capacity change from 0 to 512
[  212.814990][ T7784] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  212.815369][ T7784] EXT4-fs (loop4): orphan cleanup on readonly fs
[  212.899525][ T7784] EXT4-fs warning (device loop4): ext4_enable_quotas:7269: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  213.108335][ T7784] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  213.113301][ T7784] EXT4-fs error (device loop4): ext4_ext_check_inode:521: inode #13: comm syz.4.703: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  213.113356][ T7784] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  213.114715][    C0] EXT4-fs (loop4): error count since last fsck: 1
[  213.114738][    C0] EXT4-fs (loop4): last error at time 1776167235: ext4_ext_check_inode:521: inode 13
[  213.136516][ T7791] tipc: Started in network mode
[  213.136548][ T7791] tipc: Node identity ac14140f, cluster identity 4711
[  213.173979][ T7784] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.703: couldn't read orphan inode 13 (err -117)
[  213.174016][ T7784] fserror_report: 3 callbacks suppressed
[  213.174027][ T7784] loop4: lost filesystem error report for type 5 error -117
[  213.261572][ T7784] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  213.261887][ T7791] tipc: Enabled bearer <udp:syz2>, priority 10
[  213.487052][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.602261][ T7799] syz_tun: entered allmulticast mode
[  213.617849][ T7799] syz_tun: left allmulticast mode
[  213.957389][ T7804] Driver unsupported XDP return value 0 on prog  (id 42) dev N/A, expect packet loss!
[  214.030440][ T7809] loop2: detected capacity change from 0 to 512
[  214.040171][ T7809] EXT4-fs: Ignoring removed nomblk_io_submit option
[  214.094376][ T7812] loop1: detected capacity change from 0 to 1024
[  214.153831][ T7816] netlink: 132 bytes leftover after parsing attributes in process `syz.4.719'.
[  214.273331][ T5914] tipc: Node number set to 2886997007
[  214.316586][ T7809] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  214.316613][ T7809] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  214.317078][ T7809] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  214.317099][ T7809] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features
[  214.320639][ T7809] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  214.359131][ T7809] EXT4-fs warning (device loop2): dx_probe:861: inode #2: comm syz.2.715: dx entry: limit 65535 != root limit 120
[  214.359165][ T7809] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.715: Corrupt directory, running e2fsck is recommended
[  214.359309][ T7809] EXT4-fs error (device loop2): ext4_readdir:265: inode #2: block 3: comm syz.2.715: path /150/file0: bad entry in directory: directory entry overrun - offset=0, inode=4294967295, rec_len=65552, size=1024 fake=0
[  214.496938][  T154] hfsplus: b-tree write err: -5, ino 25
[  214.497272][  T154] hfsplus: b-tree write err: -5, ino 4
[  214.497413][  T154] hfsplus: b-tree write err: -5, ino 2
[  214.684996][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.965161][ T7828] loop4: detected capacity change from 0 to 512
[  214.969836][ T7828] EXT4-fs: Ignoring removed nomblk_io_submit option
[  215.039495][ T7828] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  215.133574][ T7828] EXT4-fs (loop4): 1 truncate cleaned up
[  215.240635][ T5832] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  215.240776][ T5832] Bluetooth: hci2: Injecting HCI hardware error event
[  215.260767][ T5832] Bluetooth: hci2: hardware error 0x00
[  215.584233][ T7828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.761445][ T7847] /dev/nullb0: Can't open blockdev
[  215.761801][ T7843] dummy0: entered promiscuous mode
[  215.762019][ T7843] macsec1: entered promiscuous mode
[  215.909180][ T7843] dummy0: left promiscuous mode
[  216.450877][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.614356][ T7860] loop3: detected capacity change from 0 to 64
[  217.031955][ T7871] loop2: detected capacity change from 0 to 1024
[  217.035177][ T7871] EXT4-fs: Ignoring removed bh option
[  217.035232][ T7871] EXT4-fs: inline encryption not supported
[  217.038067][ T7871] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  217.296226][ T7871] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 2: comm syz.2.742: lblock 2 mapped to illegal pblock 2 (length 1)
[  217.296272][ T7871] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  217.310207][    C0] EXT4-fs (loop2): initial error at time 1776167239: ext4_map_blocks:791: inode 3: block 2
[  217.310256][    C0] EXT4-fs (loop2): last error at time 1776167239: ext4_map_blocks:791: inode 3: block 2
[  217.368504][ T7885] loop3: detected capacity change from 0 to 512
[  217.421690][ T7871] Quota error (device loop2): qtree_write_dquot: dquota write failed
[  217.421867][ T7871] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz.2.742: Invalid inode table block 1 in block_group 0
[  217.421898][ T7871] loop2: lost filesystem error report for type 5 error -117
[  217.422357][ T7871] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  217.422384][ T7871] loop2: lost filesystem error report for type 5 error -117
[  217.423920][ T7871] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #3: comm syz.2.742: mark_inode_dirty error
[  217.423950][ T7871] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  217.426021][ T7871] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  217.426044][ T7871] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.742: Failed to acquire dquot type 0
[  217.426065][ T7871] loop2: lost filesystem error report for type 5 error -117
[  217.427925][ T7871] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  217.427947][ T7871] loop2: lost filesystem error report for type 5 error -117
[  217.438086][ T7885] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  217.438389][ T7871] EXT4-fs error (device loop2): ext4_evict_inode:267: inode #11: comm syz.2.742: mark_inode_dirty error
[  217.438497][ T7871] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  217.439548][ T7871] EXT4-fs warning (device loop2): ext4_evict_inode:270: couldn't mark inode dirty (err -117)
[  217.439646][ T7871] EXT4-fs (loop2): 1 orphan inode deleted
[  217.464796][   T60] Bluetooth: hci3: command 0x0406 tx timeout
[  217.466925][ T7871] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.526613][  T154] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  217.868467][ T5832] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  217.872185][ T7889] netlink: 24 bytes leftover after parsing attributes in process `syz.1.747'.
[  217.881308][ T7885] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters
[  217.994009][    C1] EXT4-fs (loop3): initial error at time 1776167239: ext4_mb_generate_buddy:1317
[  217.994048][    C1] EXT4-fs (loop3): last error at time 1776167239: ext4_mb_generate_buddy:1317
[  218.011156][ T7885] Quota error (device loop3): write_blk: dquota write failed
[  218.011179][ T7885] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5
[  218.011298][ T7885] Quota error (device loop3): write_blk: dquota write failed
[  218.011411][ T7885] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  218.011463][ T7885] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.746: Failed to acquire dquot type 1
[  218.011485][ T7885] loop3: lost filesystem error report for type 5 error -28
[  218.112878][ T7894] loop4: detected capacity change from 0 to 512
[  218.117683][  T154] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  218.117732][  T154] EXT4-fs error (device loop2): ext4_release_dquot:7070: comm kworker/u8:6: Failed to release dquot type 0
[  218.349062][ T7894] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.394340][ T7894] ext4 filesystem being mounted at /148/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.463289][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.546423][ T5830] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz-executor: Invalid inode table block 1 in block_group 0
[  218.546459][ T5830] loop2: lost filesystem error report for type 5 error -117
[  218.604222][ T5830] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  218.604251][ T5830] loop2: lost filesystem error report for type 5 error -117
[  218.624406][ T5830] EXT4-fs error (device loop2): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error
[  218.624432][ T5830] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  218.650465][ T7885] EXT4-fs (loop3): 1 truncate cleaned up
[  218.669753][ T7885] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.006562][ T5827] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.094358][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.292064][   T32] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  219.464701][   T32] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  219.464737][   T32] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.464758][   T32] usb 2-1: Product: syz
[  219.464774][   T32] usb 2-1: Manufacturer: syz
[  219.464790][   T32] usb 2-1: SerialNumber: syz
[  219.537493][ T7916] netlink: 'syz.0.758': attribute type 9 has an invalid length.
[  219.537517][ T7916] netlink: 8 bytes leftover after parsing attributes in process `syz.0.758'.
[  219.743069][ T7916] gretap0: entered promiscuous mode
[  219.743259][ T7916] macvlan3: entered promiscuous mode
[  219.743451][ T7916] macvlan3: entered allmulticast mode
[  219.743466][ T7916] gretap0: entered allmulticast mode
[  219.880533][ T7923] loop2: detected capacity change from 0 to 64
[  219.943232][   T32] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  220.024636][ T5992] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  220.025524][ T7925] loop4: detected capacity change from 0 to 64
[  220.792132][ T5939] usb 2-1: USB disconnect, device number 5
[  220.842365][ T7933] netlink: 'syz.4.767': attribute type 1 has an invalid length.
[  220.921244][ T7935] loop0: detected capacity change from 0 to 512
[  220.929232][ T7935] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  221.005081][   T32] kernel read not supported for file /binder/failed_transaction_log (pid: 32 comm: kworker/1:0)
[  221.197335][ T7945] loop3: detected capacity change from 0 to 164
[  221.276440][   T32] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  221.341336][ T7945] rock: directory entry would overflow storage
[  221.341345][ T7945] rock: sig=0x4d4e, size=5, remaining=4
[  221.416962][ T7945] isofs: isofs_export_get_parent(): child directory not normalized!
[  221.485139][   T32] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  221.485171][   T32] usb 3-1: config 0 has no interface number 0
[  221.548100][   T32] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  221.548129][   T32] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.548141][   T32] usb 3-1: Product: syz
[  221.548150][   T32] usb 3-1: Manufacturer: syz
[  221.548159][   T32] usb 3-1: SerialNumber: syz
[  221.569607][   T32] usb 3-1: config 0 descriptor??
[  221.714930][ T5992] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  221.715284][ T5992] ath9k_htc: Failed to initialize the device
[  221.721149][ T5939] usb 2-1: ath9k_htc: USB layer deinitialized
[  221.910499][   T32] usb 3-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  222.221956][   T32] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  222.274217][   T32] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  222.274344][   T32] usb 3-1: media controller created
[  222.801358][ T7951] loop4: detected capacity change from 0 to 32768
[  222.969628][   T32] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  222.991792][ T7978] loop1: detected capacity change from 0 to 512
[  223.007375][ T7951] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  223.063127][ T7985] program syz.3.786 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  223.133587][ T7951] XFS (loop4): Ending clean mount
[  223.180944][ T7978] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  223.181115][ T7978] ext4 filesystem being mounted at /156/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.247269][ T7978] EXT4-fs warning (device loop1): ext4_group_add:1715: Can't resize non-sparse filesystem further
[  223.290063][    C1] sd 0:0:1:0: [sda] tag#6209 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  223.290127][    C1] sd 0:0:1:0: [sda] tag#6209 CDB: Write(6) 0a 00 00 00 00 00
[  223.428562][   T38] audit: type=1800 audit(1776167245.544:88): pid=7951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.774" name="file1" dev="loop4" ino=6150 res=0 errno=0
[  223.528621][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  223.760820][ T7997] loop0: detected capacity change from 0 to 256
[  223.790683][ T5836] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  224.048603][ T7997] exfat: Deprecated parameter 'namecase'
[  224.130214][ T7997] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e8b, chksum : 0xf0cee8ef, utbl_chksum : 0xe619d30d)
[  224.255400][   T32] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  225.383153][   T32] usb 3-1: USB disconnect, device number 3
[  226.184268][ T8034] loop3: detected capacity change from 0 to 512
[  226.291029][ T8034] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -13
[  226.291195][ T8034] EXT4-fs error (device loop3): ext4_iget_extra_inode:5128: inode #15: comm syz.3.798: corrupted in-inode xattr: invalid ea_ino
[  226.291226][ T8034] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  226.294741][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  226.294769][    C1] EXT4-fs (loop3): initial error at time 1776167248: ext4_iget_extra_inode:5128: inode 15
[  226.294805][    C1] EXT4-fs (loop3): last error at time 1776167248: ext4_iget_extra_inode:5128: inode 15
[  226.317650][ T8034] EXT4-fs (loop3): Remounting filesystem read-only
[  226.337937][ T8034] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.383971][ T8034] EXT4-fs warning (device loop3): ext4_empty_dir:3085: inode #2: lblock 0: comm syz.3.798: error -117 reading directory block
[  226.646032][ T5827] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.654225][ T8038] loop4: detected capacity change from 0 to 4096
[  226.743326][ T8043] loop1: detected capacity change from 0 to 4096
[  226.770271][ T8047] loop2: detected capacity change from 0 to 512
[  226.905397][ T8047] EXT4-fs warning (device loop2): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  226.905433][ T8047] EXT4-fs warning (device loop2): dx_probe:849: Enable large directory feature to access it
[  226.905451][ T8047] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.802: Corrupt directory, running e2fsck is recommended
[  226.971504][ T8047] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  226.971955][ T8047] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.802: corrupted in-inode xattr: invalid ea_ino
[  226.972100][ T8047] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  226.976209][    C0] EXT4-fs (loop2): error count since last fsck: 1
[  226.976231][    C0] EXT4-fs (loop2): initial error at time 1776167249: ext4_iget_extra_inode:5128: inode 15
[  226.976256][    C0] EXT4-fs (loop2): last error at time 1776167249: ext4_iget_extra_inode:5128: inode 15
[  226.979603][ T8047] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.802: couldn't read orphan inode 15 (err -117)
[  226.979638][ T8047] loop2: lost filesystem error report for type 5 error -117
[  227.008805][ T8047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.211472][ T8043] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  227.320300][ T8054] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  227.321110][ T8038] NILFS error (device loop4): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  227.636977][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.861415][ T8043] ntfs3(loop1): Failed to load $Extend (-22).
[  227.861449][ T8043] ntfs3(loop1): Failed to initialize $Extend.
[  227.964022][ T8038] Remounting filesystem read-only
[  228.677815][ T8076] loop1: detected capacity change from 0 to 512
[  228.692779][ T8076] EXT4-fs: Ignoring removed oldalloc option
[  228.798721][ T8076] EXT4-fs (loop1): 1 truncate cleaned up
[  228.802477][ T8076] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.874773][ T5904] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  229.057383][ T5904] usb 4-1: too many endpoints for config 0 interface 0 altsetting 254: 254, using maximum allowed: 30
[  229.057455][ T5904] usb 4-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  229.057478][ T5904] usb 4-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[  229.057505][ T5904] usb 4-1: config 0 interface 0 has no altsetting 0
[  229.057536][ T5904] usb 4-1: New USB device found, idVendor=044f, idProduct=b605, bcdDevice= 0.00
[  229.057559][ T5904] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.106525][ T5904] usb 4-1: config 0 descriptor??
[  229.367812][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.755943][  T820] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  229.779884][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.779925][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.779952][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.779979][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.780006][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.780032][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.780059][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.780085][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.780112][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.780138][ T5904] thrustmaster 0003:044F:B605.0005: unknown main item tag 0x0
[  229.865245][ T8096] loop4: detected capacity change from 0 to 64
[  229.909843][  T820] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  229.909878][  T820] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  229.909904][  T820] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[  229.934006][  T820] usb 3-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  229.934038][  T820] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.934058][  T820] usb 3-1: Product: syz
[  229.934072][  T820] usb 3-1: Manufacturer: syz
[  229.934086][  T820] usb 3-1: SerialNumber: syz
[  230.156192][  T820] usb 3-1: config 0 descriptor??
[  230.157290][ T8086] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  230.218126][ T8086] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  230.247993][  T820] usb 3-1: ucan: probing device on interface #0
[  230.606222][ T5904] thrustmaster 0003:044F:B605.0005: hidraw0: USB HID v0.20 Device [HID 044f:b605] on usb-dummy_hcd.3-1/input0
[  230.606505][ T5904] thrustmaster 0003:044F:B605.0005: no inputs found
[  230.966210][ T8113] loop4: detected capacity change from 0 to 512
[  230.980073][  T820] ucan 3-1:0.0: probe with driver ucan failed with error -71
[  231.082669][ T5904] usb 4-1: USB disconnect, device number 8
[  231.172120][ T8113] EXT4-fs (loop4): orphan cleanup on readonly fs
[  231.196332][ T8113] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #11: comm syz.4.825: ea_inode with extended attributes
[  231.196373][ T8113] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  231.207985][    C1] EXT4-fs (loop4): initial error at time 1776167253: ext4_xattr_inode_iget:441: inode 11
[  231.208028][    C1] EXT4-fs (loop4): last error at time 1776167253: ext4_xattr_inode_iget:441: inode 11
[  231.337605][ T8113] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.825: error while reading EA inode 11 err=-117
[  231.337633][ T8113] loop4: lost filesystem error report for type 5 error -117
[  231.388623][ T8113] EXT4-fs (loop4): 1 orphan inode deleted
[  231.390513][ T8113] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  231.408870][  T820] usb 3-1: USB disconnect, device number 4
[  231.438423][ T8113] netlink: 36 bytes leftover after parsing attributes in process `syz.4.825'.
[  231.438447][ T8113] netlink: 12 bytes leftover after parsing attributes in process `syz.4.825'.
[  231.438457][ T8113] netlink: 16 bytes leftover after parsing attributes in process `syz.4.825'.
[  231.536467][   T38] audit: type=1326 audit(1776167253.654:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  231.607211][   T38] audit: type=1326 audit(1776167253.654:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  231.607405][   T38] audit: type=1326 audit(1776167253.724:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  231.630546][   T38] audit: type=1326 audit(1776167253.734:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  231.630602][   T38] audit: type=1326 audit(1776167253.744:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  231.630643][   T38] audit: type=1326 audit(1776167253.744:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61baf6c819 code=0x7ffc0000
[  232.051005][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.872655][ T8151] loop3: detected capacity change from 0 to 256
[  232.892274][ T8151] exfat: Deprecated parameter 'namecase'
[  232.981006][ T8151] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  233.048441][ T8159] netlink: 'syz.0.847': attribute type 1 has an invalid length.
[  234.150774][ T8185] loop0: detected capacity change from 0 to 1024
[  234.323196][ T8154] loop1: detected capacity change from 0 to 32768
[  234.438501][ T8190] tipc: Enabling of bearer <ethpÁoÍÉÍTµ:s> rejected, media not registered
[  234.833740][ T8166] loop4: detected capacity change from 0 to 32768
[  234.891375][ T8166] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.850 (8166)
[  234.999333][ T8166] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  234.999372][ T8166] BTRFS info (device loop4): using crc32c checksum algorithm
[  235.153378][   T38] audit: type=1326 audit(1776167257.254:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8199 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  235.153441][   T38] audit: type=1326 audit(1776167257.264:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8199 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  235.194767][   T38] audit: type=1326 audit(1776167257.304:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8199 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  235.195272][   T38] audit: type=1326 audit(1776167257.314:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8199 comm="syz.0.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45180c819 code=0x7ffc0000
[  235.699391][ T8166] BTRFS info (device loop4): enabling ssd optimizations
[  235.699424][ T8166] BTRFS info (device loop4): turning on flush-on-commit
[  235.699442][ T8166] BTRFS info (device loop4): enabling free space tree
[  235.699470][ T8166] BTRFS info (device loop4): enabling auto defrag
[  235.699491][ T8166] BTRFS info (device loop4): use lzo compression, level 1
[  235.699514][ T8166] BTRFS info (device loop4): max_inline set to 4096
[  235.851264][  T126] ==================================================================
[  235.851282][  T126] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0x6d7/0xa10
[  235.851319][  T126] Read of s[  235.851319][  T126] Read of size 4 at addr ffff888037ce1a94 by task jfsCommit/126
[  235.851338][  T126] 
[  235.851351][  T126] CPU: 1 UID: 0 PID: 126 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  235.851376][  T126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  235.851389][  T126] Call Trace:
[  235.851397][  T126]  <TASK>
[  235.851406][  T126]  dump_stack_lvl+0xe8/0x150
[  235.851430][  T126]  print_address_description+0x55/0x1e0
[  235.851452][  T126]  ? jfs_lazycommit+0x6d7/0xa10
[  235.851471][  T126]  print_report+0x58/0x70
[  235.851488][  T126]  kasan_report+0x117/0x150
[  235.851519][  T126]  ? jfs_lazycommit+0x6d7/0xa10
[  235.851541][  T126]  jfs_lazycommit+0x6d7/0xa10
[  235.851564][  T126]  ? __pfx_jfs_lazycommit+0x10/0x10
[  235.851583][  T126]  ? __pfx_default_wake_function+0x10/0x10
[  235.851617][  T126]  ? __kthread_parkme+0x7a/0x1f0
[  235.851644][  T126]  kthread+0x388/0x470
[  235.851670][  T126]  ? __pfx_jfs_lazycommit+0x10/0x10
[  235.851689][  T126]  ? __pfx_kthread+0x10/0x10
[  235.851717][  T126]  ret_from_fork+0x514/0xb70
[  235.851751][  T126]  ? __pfx_ret_from_fork+0x10/0x10
[  235.851772][  T126]  ? __switch_to+0xc79/0x1410
[  235.851803][  T126]  ? __pfx_kthread+0x10/0x10
[  235.851830][  T126]  ret_from_fork_asm+0x1a/0x30
[  235.851863][  T126]  </TASK>
[  235.851870][  T126] 
[  235.851875][  T126] Allocated by task 8154:
[  235.851886][  T126]  kasan_save_track+0x3e/0x80
[  235.851911][  T126]  __kasan_kmalloc+0x93/0xb0
[  235.851937][  T126]  __kmalloc_cache_noprof+0x3a6/0x690
[  235.851965][  T126]  jfs_fill_super+0xc2/0xd80
[  235.851985][  T126]  get_tree_bdev_flags+0x431/0x4f0
[  235.852011][  T126]  vfs_get_tree+0x92/0x2a0
[  235.852036][  T126]  do_new_mount+0x341/0xd30
[  235.852055][  T126]  __se_sys_mount+0x31d/0x420
[  235.852076][  T126]  do_syscall_64+0x15f/0xf80
[  235.852100][  T126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.852118][  T126] 
[  235.852122][  T126] Freed by task 5834:
[  235.852131][  T126]  kasan_save_track+0x3e/0x80
[  235.852154][  T126]  kasan_save_free_info+0x46/0x50
[  235.852174][  T126]  __kasan_slab_free+0x5c/0x80
[  235.852199][  T126]  kfree+0x1c5/0x6c0
[  235.852222][  T126]  generic_shutdown_super+0x13d/0x2d0
[  235.852247][  T126]  kill_block_super+0x44/0x90
[  235.852275][  T126]  deactivate_locked_super+0xbc/0x130
[  235.852298][  T126]  cleanup_mnt+0x437/0x4d0
[  235.852324][  T126]  task_work_run+0x1d9/0x270
[  235.852349][  T126]  exit_to_user_mode_loop+0xed/0x480
[  235.852373][  T126]  do_syscall_64+0x33e/0xf80
[  235.852399][  T126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.852417][  T126] 
[  235.852422][  T126] The buggy address belongs to the object at ffff888037ce1a00
[  235.852422][  T126]  which belongs to the cache kmalloc-256 of size 256
[  235.852441][  T126] The buggy address is located 148 bytes inside of
[  235.852441][  T126]  freed 256-byte region [ffff888037ce1a00, ffff888037ce1b00)
[  235.852464][  T126] 
[  235.852469][  T126] The buggy address belongs to the physical page:
[  235.852480][  T126] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x37ce0
[  235.852500][  T126] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  235.852515][  T126] flags: 0x80000000000040(head|node=0|zone=1)
[  235.852532][  T126] page_type: f5(slab)
[  235.852550][  T126] raw: 0080000000000040 ffff88801a02cb40 dead000000000100 dead000000000122
[  235.852568][  T126] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  235.852588][  T126] head: 0080000000000040 ffff88801a02cb40 dead000000000100 dead000000000122
[  235.852606][  T126] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  235.852625][  T126] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[  235.852640][  T126] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[  235.852650][  T126] page dumped because: kasan: bad access detected
[  235.852660][  T126] page_owner tracks the page as allocated
[  235.852667][  T126] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5834, tgid 5834 (syz-executor), ts 96704099363, free_ts 96605130127
[  235.852703][  T126]  post_alloc_hook+0x231/0x280
[  235.852729][  T126]  get_page_from_freelist+0x27d6/0x2850
[  235.852769][  T126]  __alloc_frozen_pages_noprof+0x18d/0x380
[  235.852799][  T126]  allocate_slab+0x77/0x660
[  235.852819][  T126]  refill_objects+0x33c/0x3d0
[  235.852836][  T126]  __pcs_replace_empty_main+0x373/0x720
[  235.852858][  T126]  __kmalloc_noprof+0x530/0x7b0
[  235.852885][  T126]  fib_create_info+0x1723/0x31f0
[  235.852907][  T126]  fib_table_insert+0xc8/0x1b50
[  235.852932][  T126]  fib_magic+0x434/0x510
[  235.852948][  T126]  fib_add_ifaddr+0x144/0x5f0
[  235.852967][  T126]  fib_netdev_event+0x382/0x490
[  235.852986][  T126]  notifier_call_chain+0x1ad/0x3d0
[  235.853010][  T126]  __dev_notify_flags+0x1a9/0x310
[  235.853028][  T126]  netif_change_flags+0xe8/0x1a0
[  235.853046][  T126]  do_setlink+0xf82/0x4590
[  235.853062][  T126] page last free pid 21 tgid 21 stack trace:
[  235.853074][  T126]  __free_frozen_pages+0xf9b/0x10f0
[  235.853099][  T126]  rcu_cpu_kthread+0x99e/0x1470
[  235.853124][  T126]  smpboot_thread_fn+0x541/0xa50
[  235.853144][  T126]  kthread+0x388/0x470
[  235.853167][  T126]  ret_from_fork+0x514/0xb70
[  235.853187][  T126]  ret_from_fork_asm+0x1a/0x30
[  235.853210][  T126] 
[  235.853215][  T126] Memory state around the buggy address:
[  235.853226][  T126]  ffff888037ce1980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  235.853240][  T126]  ffff888037ce1a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.853254][  T126] >ffff888037ce1a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.853265][  T126]                          ^
[  235.853276][  T126]  ffff888037ce1b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  235.853289][  T126]  ffff888037ce1b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  235.853299][  T126] ==================================================================
[  235.871870][  T126] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  235.871892][  T126] CPU: 1 UID: 0 PID: 126 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  235.871916][  T126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  235.871927][  T126] Call Trace:
[  235.871935][  T126]  <TASK>
[  235.871943][  T126]  vpanic+0x56c/0xa60
[  235.871970][  T126]  ? __pfx_vpanic+0x10/0x10
[  235.871996][  T126]  panic+0xc5/0xd0
[  235.872015][  T126]  ? __pfx_panic+0x10/0x10
[  235.872036][  T126]  ? preempt_schedule_thunk+0x16/0x30
[  235.872065][  T126]  ? jfs_lazycommit+0x6d7/0xa10
[  235.872084][  T126]  ? preempt_schedule_thunk+0x16/0x30
[  235.872110][  T126]  ? jfs_lazycommit+0x6d7/0xa10
[  235.872127][  T126]  check_panic_on_warn+0x89/0xb0
[  235.872153][  T126]  ? jfs_lazycommit+0x6d7/0xa10
[  235.872170][  T126]  end_report+0x73/0x170
[  235.872195][  T126]  ? jfs_lazycommit+0x6d7/0xa10
[  235.872212][  T126]  kasan_report+0x128/0x150
[  235.872239][  T126]  ? jfs_lazycommit+0x6d7/0xa10
[  235.872260][  T126]  jfs_lazycommit+0x6d7/0xa10
[  235.872280][  T126]  ? __pfx_jfs_lazycommit+0x10/0x10
[  235.872298][  T126]  ? __pfx_default_wake_function+0x10/0x10
[  235.872329][  T126]  ? __kthread_parkme+0x7a/0x1f0
[  235.872354][  T126]  kthread+0x388/0x470
[  235.872378][  T126]  ? __pfx_jfs_lazycommit+0x10/0x10
[  235.872395][  T126]  ? __pfx_kthread+0x10/0x10
[  235.872419][  T126]  ret_from_fork+0x514/0xb70
[  235.872440][  T126]  ? __pfx_ret_from_fork+0x10/0x10
[  235.872461][  T126]  ? __switch_to+0xc79/0x1410
[  235.872491][  T126]  ? __pfx_kthread+0x10/0x10
[  235.872514][  T126]  ret_from_fork_asm+0x1a/0x30
[  235.872543][  T126]  </TASK>
[  235.872946][  T126] Kernel Offset: disabled