last executing test programs:

1m42.690753849s ago: executing program 3 (id=214):
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f0000000280)={[{@mb_optimize_scan}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x1, 0x4fa, &(0x7f0000000dc0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')

1m41.907448932s ago: executing program 3 (id=220):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)

1m40.231135351s ago: executing program 3 (id=233):
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x5, 0x801, 0x0, &(0x7f0000000000)=0x2, 0x1)

1m39.908535576s ago: executing program 3 (id=238):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d08030700000004000000000000000600142603600e120800110000810401110016000a00104005000000036010fab94dcf5c0461c1d67f6f94007134cf6e", 0x50}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0x18000000000002a0, 0xf, 0x3a, &(0x7f0000000040)="b90108001f", 0x0, 0x80100, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m38.825319355s ago: executing program 3 (id=247):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
statx(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0xffff4a9c0080ffff, 0x0)

1m38.610474118s ago: executing program 3 (id=251):
r0 = socket(0xa, 0x5, 0x0)
listen(r0, 0x100)
sendmsg$inet_sctp(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@authinfo={0x12, 0x84, 0x6, {0xffff}}], 0x18, 0x4855}, 0x4008850)

1m23.437191776s ago: executing program 32 (id=251):
r0 = socket(0xa, 0x5, 0x0)
listen(r0, 0x100)
sendmsg$inet_sctp(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@authinfo={0x12, 0x84, 0x6, {0xffff}}], 0x18, 0x4855}, 0x4008850)

7.248257127s ago: executing program 0 (id=991):
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f0000000140)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@errors_remount}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f00000009c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000002e40)=@generic={&(0x7f0000002640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r0}, 0x18)

6.688809727s ago: executing program 0 (id=995):
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f00000009c0)='./bus\x00', 0x2000002, &(0x7f0000000000)=ANY=[], 0x2, 0x6024, &(0x7f0000006b00)="$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")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x167842, 0x19)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x1400, 0x0, 0x0)

4.962823627s ago: executing program 2 (id=1005):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000280)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x44d, &(0x7f0000000900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x107042, 0x1d1)
write$binfmt_format(r0, &(0x7f0000000180)='-1\x00', 0xb040)

4.882837048s ago: executing program 0 (id=1006):
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})

4.233464179s ago: executing program 2 (id=1009):
r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a00030100000009040000000101"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x407}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000480)={0x0, 0x3, 0x36, @string={0x36, 0x3, "a886506a6bee0d09f501c8b56591517742d83fc5565b30674fb2ad15179054f13a9824e6f2d7fed72fe50c800b9520e6d7b89a52"}}}, 0x0)

4.187880709s ago: executing program 0 (id=1011):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x172f, 0x501, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x39, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x5, 0x33, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x8, 0xb, 0x6}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)={0x0, 0x4, 0x5, {0x5, 0x1, "a7ea31"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

3.076200028s ago: executing program 4 (id=1025):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r0, 0x0)
ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000000100)={0x4a, 0x800000, 0x8, 0x6, 0xfffffdfd})

2.930336771s ago: executing program 4 (id=1027):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000080)=0x2)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0xffffffff, 0xbde, 0x400, 0x10000}})

2.806920473s ago: executing program 4 (id=1028):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f00000004c0)={0xffffffff, 0xc9a, 0x80080000, 0x6, 0xe, '\t\x00'})
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000040)={0xe6c, 0x2, 0xffff1980, 0xa, 0x6, "d8ad0e98c775e49ce1c41b6500a138b8ccdb17"})

2.688634165s ago: executing program 4 (id=1029):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r0, &(0x7f00000004c0)={0x1f, 0x0, @fixed, 0x4, 0x2}, 0xe)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, &(0x7f0000000100))

2.597621887s ago: executing program 4 (id=1030):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)={0x44, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_PKT_RATE_LOW={0x8}, @ETHTOOL_A_COALESCE_USE_ADAPTIVE_RX={0x5}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8}]}, 0x44}}, 0x0)

2.491407708s ago: executing program 4 (id=1031):
r0 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x6b, 0x52, 0x7a, 0x20, 0xbaf, 0xf6, 0xa84a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x8, [{{0x9, 0x4, 0x32, 0x4, 0x0, 0x60, 0x5a, 0xb8, 0x0, [@generic={0x9, 0x4, "a47c6e072694ef"}]}}]}}]}}, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)

2.102148515s ago: executing program 2 (id=1033):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x20, &(0x7f00000003c0)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2c}}, @in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000100)=0x10)

1.766547161s ago: executing program 2 (id=1036):
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902900902000000000904"], 0x0)
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000002580)={&(0x7f00000002c0)=[{0x50, 0x1801, 0x0, 0x0}, {0x7, 0x8201, 0x0, 0x0}, {0x794, 0xd201, 0x0, 0x0}], 0x3})

1.172061301s ago: executing program 1 (id=1041):
r0 = socket$inet6(0xa, 0x3, 0x1)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000180)={{{@in=@local, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e22, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2}, {0x1, 0x0, 0x6, 0x3, 0x1, 0x0, 0x0, 0x400000000000}, {0x0, 0x0, 0x0, 0x20000000000000}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3}, {{@in=@dev={0xac, 0x14, 0x14, 0x24}, 0x4d4, 0x6c}, 0x2, @in=@broadcast, 0x10000000, 0x3, 0x0, 0x3, 0x0, 0x0, 0x200000}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)

946.566554ms ago: executing program 0 (id=1042):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_BYTEORDER_DREG={0x8}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x38}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x0)

939.815154ms ago: executing program 1 (id=1043):
r0 = add_key$fscrypt_v1(&(0x7f00000004c0), &(0x7f00000006c0)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x4, r0, 0x0, r0, 0x0)
keyctl$KEYCTL_MOVE(0x4, r0, r0, 0x0, 0x0)

886.426226ms ago: executing program 0 (id=1044):
r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a00030100000009040000000101"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x407}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000480)={0x0, 0x3, 0x36, @string={0x36, 0x3, "a886506a6bee0d09f501c8b56591517742d83fc5565b30674fb2ad15179054f13a9824e6f2d7fed72fe50c800b9520e6d7b89a52"}}}, 0x0)

769.657787ms ago: executing program 1 (id=1045):
r0 = socket$inet6(0xa, 0x3, 0x2f)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@local, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x32}, {0x1, 0x0, 0x8, 0x0, 0x9, 0x7ca, 0x10000000000000}, {0x0, 0xfffffffffffffffc, 0x0, 0x9}, 0x0, 0x0, 0x1, 0x0, 0x4, 0x2}, {{@in=@empty, 0x0, 0x3c}, 0x0, @in=@empty, 0x0, 0x0, 0x3, 0x42}}, 0xe8)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)

703.842098ms ago: executing program 1 (id=1046):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001980)={0x9, {"a2e3ad214fc752f91b2930094bf70e0dd038e7ff7fc6e5539b324c078b089b34383b6d1a0890e0878f0e1ac6e7049b076d959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31310d076d0936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b4bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00303000000000000007fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006)

636.29465ms ago: executing program 5 (id=1047):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x8, 0x10, 0x0, {0x0, 0x0, 0x0, 0x0, {0x4}, {0xe, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_DQ_RATE_ESTIMATOR={0x8}, @TCA_FQ_PIE_MEMORY_LIMIT={0x8, 0x8, 0x3}]}}]}, 0x44}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)

549.244981ms ago: executing program 5 (id=1048):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000002c0)={0x4800, 0x3}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000003900)={0x24, 0x16, 0xa01, 0x0, 0x0, {0xa}, [@typed={0x4}, @typed={0xc, 0xa, 0x0, 0x0, @u64}]}, 0x24}}, 0x0)

443.494703ms ago: executing program 5 (id=1049):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400000027000103"], 0x14}}, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r0)

361.575585ms ago: executing program 5 (id=1050):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x6004, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x125d, &(0x7f0000001080))

308.354026ms ago: executing program 1 (id=1051):
syz_open_dev$ttys(0xc, 0x2, 0x0)
r0 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000100)={0x0, 0xb, 0x2b69e818, 0x9, 0x0, "6bdf03b62700", 0x8})

245.681507ms ago: executing program 2 (id=1052):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x70)
sendmsg$rds(r0, &(0x7f00000029c0)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000400)=[@rdma_dest={0x18, 0x10c}, @zcopy_cookie={0x11}], 0x30}, 0x0)

181.448867ms ago: executing program 2 (id=1053):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000240)='./file0\x00', 0x8c0, &(0x7f0000000100)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c696e74722c6e6f61636c2c001967b9b8a6cdd636d75428f2c5e8054d01858eef552755576e749526b36860cf2511040d1ce5a743ffd83d29d1ba3a54a59d8c7aa249f08d3c8c6d04ac105d67934db6190d59f2323b55a5a4"], 0x1, 0x4447, &(0x7f000000cd00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x40305829, &(0x7f0000000240)={@desc={0x1, 0x0, @desc2}})

162.607728ms ago: executing program 5 (id=1054):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a70000000060a0b0400000000000000000200000044000480400001800a0001006d6174636800000030000280080002400000000118000300d660671f3e121710e8537c4c3060c6a405106c720a0001006f776e65720000000900010073797a30000000000900020073797a32"], 0x98}}, 0x4048010)

123.685209ms ago: executing program 1 (id=1055):
r0 = shmget$private(0x0, 0x9000, 0x0, &(0x7f0000ff7000/0x9000)=nil)
shmat(r0, &(0x7f0000ffa000/0x3000)=nil, 0x6000)
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x9)

0s ago: executing program 5 (id=1056):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010700000000000000006700000008003d"], 0x1c}}, 0x0)

kernel console output (not intermixed with test programs):

341][ T4352] Registered IR keymap rc-empty
[  107.849751][ T4352] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  107.868195][ T4352] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input5
[  108.325503][ T5029] netlink: 'syz.1.250': attribute type 1 has an invalid length.
[  108.342986][ T4570] usb 3-1: USB disconnect, device number 3
[  109.001391][ T5043] loop2: detected capacity change from 0 to 1024
[  109.089568][ T5043] EXT4-fs: Ignoring removed nomblk_io_submit option
[  109.147994][ T5043] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a803c019, mo2=0002]
[  109.166581][ T5043] System zones: 0-1, 3-12
[  109.186897][ T5043] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  109.311092][ T5051] EXT4-fs error (device loop2): ext4_xattr_ibody_get:603: inode #13: comm syz.2.258: corrupted in-inode xattr
[  109.317640][ T5041] loop0: detected capacity change from 0 to 32768
[  109.352579][ T5051] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2748: inode #13: comm syz.2.258: corrupted in-inode xattr
[  109.370439][ T5041] 
[  109.370439][ T5041]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  109.370439][ T5041] 
[  109.387227][ T5035] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  109.400856][ T5051] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2818: Unable to expand inode 13. Delete some EAs or run e2fsck.
[  109.418053][ T5035] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  109.429395][ T5035] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  109.440397][ T5035] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  109.460384][ T5041] ERROR: (device loop0): diWrite: ixpxd invalid
[  109.460384][ T5041] 
[  109.470216][ T5035] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  109.485287][ T5035] Bluetooth: hci2: Suspend notifier action (1) failed: -4
[  109.501489][ T5041] ERROR: (device loop0): txCommit: 
[  109.501489][ T5041] 
[  109.510008][ T5035] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  109.526300][ T5035] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  109.535027][ T5035] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  109.545310][ T5041] 
[  109.545310][ T5041]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  109.545310][ T5041] 
[  109.561203][ T5035] Bluetooth: hci0: Suspend notifier action (1) failed: -4
[  109.571825][ T5035] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  109.585154][ T5035] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  109.604195][ T5041] 
[  109.604195][ T5041]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  109.604195][ T5041] 
[  109.625618][ T5035] Bluetooth: hci1: Suspend notifier action (1) failed: -4
[  109.641466][ T5035] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  109.646613][ T4268] EXT4-fs (loop2): unmounting filesystem.
[  109.675867][ T5035] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  109.691349][ T5035] Bluetooth: hci4: Suspend notifier action (1) failed: -4
[  109.925546][ T5056] loop4: detected capacity change from 0 to 2048
[  110.628285][ T5075] loop1: detected capacity change from 0 to 512
[  110.634920][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  110.679616][ T5074] IPVS: Error connecting to the multicast addr
[  110.714268][ T4284] Bluetooth: hci3: command 0x0c1a tx timeout
[  110.775674][ T5075] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  110.818545][ T5075] ext4 filesystem being mounted at /65/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  110.892651][ T5063] loop2: detected capacity change from 0 to 32768
[  110.930053][ T5075] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.270: corrupted inode contents
[  110.979683][ T5063] find_entry called with index = 0
[  111.003509][ T5063] read_mapping_page failed!
[  111.033993][ T5075] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.270: mark_inode_dirty error
[  111.046576][ T5063] ERROR: (device loop2): txCommit: 
[  111.046576][ T5063] 
[  111.068942][ T5075] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.270: corrupted inode contents
[  111.097287][ T5063] ERROR: (device loop2): remounting filesystem as read-only
[  111.129472][ T5081] loop0: detected capacity change from 0 to 1024
[  111.211168][ T5078] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.270: corrupted inode contents
[  111.314949][ T5078] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.270: mark_inode_dirty error
[  111.406778][   T33] hfsplus: b-tree write err: -5, ino 4
[  111.422507][ T5078] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.270: corrupted inode contents
[  111.484384][ T4568] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  111.508122][ T5078] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.270: mark_inode_dirty error
[  111.519475][ T4284] Bluetooth: hci0: command 0x0c1a tx timeout
[  111.519543][ T4284] Bluetooth: hci2: command 0x0c1a tx timeout
[  111.586302][ T4568] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  111.596021][ T4281] Bluetooth: hci1: command 0x0c1a tx timeout
[  111.620346][ T5078] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.270: corrupted inode contents
[  111.638619][ T5078] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.270: mark_inode_dirty error
[  111.662189][ T5069] loop4: detected capacity change from 0 to 32768
[  111.672212][ T4284] Bluetooth: hci4: command 0x0c1a tx timeout
[  111.784667][ T5069] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  111.890821][ T5087] fido_id[5087]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  111.898083][ T4263] EXT4-fs (loop1): unmounting filesystem.
[  111.960517][ T5069] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  112.170811][ T4264] ocfs2: Unmounting device (7,4) on (node local)
[  112.183767][ T5095] netlink: 32 bytes leftover after parsing attributes in process `syz.1.277'.
[  112.572051][ T4568] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  112.692084][  T128] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  112.773820][ T4568] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.792101][ T4568] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  112.792198][ T4284] Bluetooth: hci3: command 0x0406 tx timeout
[  112.836561][ T4568] usb 1-1: New USB device found, idVendor=056a, idProduct=0307, bcdDevice= 0.00
[  112.856520][ T4568] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.891608][  T128] usb 3-1: config index 0 descriptor too short (expected 3133, got 61)
[  112.910433][  T128] usb 3-1: config 0 has an invalid interface number: 156 but max is 1
[  112.946188][ T4568] usb 1-1: config 0 descriptor??
[  112.951710][  T128] usb 3-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  112.987071][  T128] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  113.012031][  T128] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2
[  113.039769][  T128] usb 3-1: config 0 has no interface number 0
[  113.050916][  T128] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  113.075434][  T128] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  113.107748][  T128] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  113.141653][  T128] usb 3-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  113.179425][ T5111] loop1: detected capacity change from 0 to 256
[  113.186984][  T128] usb 3-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  113.204016][  T128] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.224853][  T128] usb 3-1: config 0 descriptor??
[  113.245084][ T5111] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  113.246844][  T128] gspca_main: spca561-2.14.0 probing abcd:cdee
[  113.420161][ T4568] wacom 0003:056A:0307.0006: hidraw0: USB HID v0.00 Device [HID 056a:0307] on usb-dummy_hcd.0-1/input0
[  113.451866][  T128] spca561: probe of 3-1:0.156 failed with error -22
[  113.461614][  T128] usb 3-1: MIDIStreaming interface descriptor not found
[  113.592408][ T4284] Bluetooth: hci2: command 0x0406 tx timeout
[  113.598539][ T4284] Bluetooth: hci0: command 0x0406 tx timeout
[  113.617551][  T128] usb 3-1: USB disconnect, device number 4
[  113.625777][ T4352] usb 1-1: USB disconnect, device number 3
[  113.672120][ T4284] Bluetooth: hci1: command 0x0406 tx timeout
[  113.752663][ T4284] Bluetooth: hci4: command 0x0406 tx timeout
[  113.902360][ T5113] fido_id[5113]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  114.077702][ T5118] udevd[5118]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  115.009699][ T5128] loop4: detected capacity change from 0 to 32768
[  115.135737][ T5134] loop0: detected capacity change from 0 to 32768
[  115.180620][ T5130] loop1: detected capacity change from 0 to 32768
[  115.208855][ T5128] XFS (loop4): Mounting V5 Filesystem
[  115.230233][ T5130] XFS: ikeep mount option is deprecated.
[  115.372644][ T5130] XFS (loop1): Mounting V5 Filesystem
[  115.529681][ T5128] XFS (loop4): Ending clean mount
[  115.605636][ T5128] XFS (loop4): Quotacheck needed: Please wait.
[  115.635108][ T5130] XFS (loop1): Ending clean mount
[  115.672201][ T4284] Bluetooth: hci0: command 0x0c1a tx timeout
[  115.686041][ T5162] loop2: detected capacity change from 0 to 512
[  115.693749][ T5130] XFS (loop1): Quotacheck needed: Please wait.
[  115.725680][ T5162] EXT4-fs: Ignoring removed i_version option
[  115.759556][ T5128] XFS (loop4): Quotacheck: Done.
[  115.797364][ T5162] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  115.872720][ T5130] XFS (loop1): Quotacheck: Done.
[  115.902350][ T5162] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  115.930007][ T5130] XFS (loop1): syz.1.290 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported
[  116.108838][ T5166] loop0: detected capacity change from 0 to 16
[  116.115051][ T4264] XFS (loop4): Unmounting Filesystem
[  116.127977][ T4263] XFS (loop1): Unmounting Filesystem
[  116.200435][ T5166] erofs: (device loop0): mounted with root inode @ nid 36.
[  116.262321][ T4268] EXT4-fs (loop2): unmounting filesystem.
[  116.551822][ T5169] loop2: detected capacity change from 0 to 2048
[  116.637236][ T5169] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  116.776009][ T5169] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  117.199491][ T5177] loop2: detected capacity change from 0 to 64
[  117.607710][ T4284] Bluetooth: hci3: unexpected event for opcode 0x2003
[  117.752119][  T128] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  117.792579][ T5186] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  117.802375][ T5186] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  117.808435][ T5186] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  117.838242][ T5186] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  117.858461][ T5186] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  117.864935][ T5186] Bluetooth: hci2: Suspend notifier action (1) failed: -4
[  117.882979][ T5186] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  117.905515][ T5186] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  117.925288][ T5186] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  117.945478][ T5186] Bluetooth: hci0: Suspend notifier action (1) failed: -4
[  117.965325][ T5186] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  117.972072][  T128] usb 5-1: Using ep0 maxpacket: 32
[  117.979479][  T128] usb 5-1: config 0 interface 0 altsetting 253 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  117.981766][ T5186] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  118.017579][  T128] usb 5-1: config 0 interface 0 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  118.022910][ T5186] Bluetooth: hci1: Suspend notifier action (1) failed: -4
[  118.048428][ T5186] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  118.068633][ T5186] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  118.071961][  T128] usb 5-1: config 0 interface 0 has no altsetting 0
[  118.088965][ T5186] Bluetooth: hci4: Suspend notifier action (1) failed: -4
[  118.110631][  T128] usb 5-1: New USB device found, idVendor=048d, idProduct=ce50, bcdDevice= 0.00
[  118.130178][  T128] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.155422][  T128] usb 5-1: config 0 descriptor??
[  118.575667][  T128] asus 0003:048D:CE50.0007: item fetching failed at offset 0/2
[  118.607755][  T128] asus 0003:048D:CE50.0007: Asus hid parse failed: -22
[  118.628042][  T128] asus: probe of 0003:048D:CE50.0007 failed with error -22
[  118.661606][ T5191] loop2: detected capacity change from 0 to 40427
[  118.729013][ T5191] F2FS-fs (loop2): Found nat_bits in checkpoint
[  118.796014][    T7] usb 5-1: USB disconnect, device number 3
[  118.872071][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  118.883226][ T5191] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  119.086663][ T4268] syz-executor: attempt to access beyond end of device
[  119.086663][ T4268] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  119.706580][   T26] audit: type=1326 audit(1753345016.501:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5227 comm="syz.0.325" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f682518e9a9 code=0x0
[  119.752067][ T4284] Bluetooth: hci3: command 0x0c1a tx timeout
[  119.902168][ T4570] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  119.912323][ T4284] Bluetooth: hci0: command 0x0c1a tx timeout
[  119.918412][ T4284] Bluetooth: hci2: command 0x0c1a tx timeout
[  119.990308][ T5235] netlink: 'syz.4.328': attribute type 1 has an invalid length.
[  119.998846][ T4284] Bluetooth: hci1: command 0x0c1a tx timeout
[  120.005337][ T5235] netlink: 12 bytes leftover after parsing attributes in process `syz.4.328'.
[  120.072111][ T4284] Bluetooth: hci4: command 0x0c1a tx timeout
[  120.132230][ T4570] usb 3-1: Using ep0 maxpacket: 16
[  120.142590][ T4570] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  120.163095][ T5240] netlink: 28 bytes leftover after parsing attributes in process `syz.1.330'.
[  120.171743][ T4570] usb 3-1: config 0 has no interface number 0
[  120.172414][ T5240] netlink: 28 bytes leftover after parsing attributes in process `syz.1.330'.
[  120.205612][ T4570] usb 3-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  120.236318][ T4570] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.264330][ T4570] usb 3-1: Product: syz
[  120.277516][ T4570] usb 3-1: Manufacturer: syz
[  120.293590][ T4570] usb 3-1: SerialNumber: syz
[  120.313964][ T4570] usb 3-1: config 0 descriptor??
[  120.341023][ T4570] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  120.790515][ T5248] loop0: detected capacity change from 0 to 4096
[  120.821019][ T5248] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  120.889568][ T5248] ntfs: volume version 3.1.
[  120.942319][ T4570] gspca_spca1528: reg_w err -71
[  120.972087][ T4570] spca1528: probe of 3-1:0.1 failed with error -71
[  120.992347][ T4570] usb 3-1: USB disconnect, device number 5
[  120.994564][ T4352] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  121.133953][ T4356] ntfs: (device loop0): ntfs_write_block(): Writing beyond initialized size is not supported yet. Sorry.
[  121.171559][ T5244] loop1: detected capacity change from 0 to 32768
[  121.214755][ T4352] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  121.242609][ T4352] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  121.286266][ T4352] usb 5-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  121.321193][ T4352] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.367423][ T4352] usb 5-1: config 0 descriptor??
[  121.691089][ T5257] netlink: 4 bytes leftover after parsing attributes in process `syz.2.338'.
[  121.804622][ T4352] logitech 0003:046D:C29C.0008: unknown main item tag 0x0
[  121.811838][ T4352] logitech 0003:046D:C29C.0008: unknown main item tag 0x0
[  121.832008][ T4284] Bluetooth: hci3: command 0x0406 tx timeout
[  121.848544][ T4352] logitech 0003:046D:C29C.0008: hidraw0: USB HID v10.00 Device [HID 046d:c29c] on usb-dummy_hcd.4-1/input0
[  121.992287][ T4284] Bluetooth: hci2: command 0x0406 tx timeout
[  121.998408][ T4284] Bluetooth: hci0: command 0x0406 tx timeout
[  122.006037][ T4352] logitech 0003:046D:C29C.0008: no inputs found
[  122.027759][ T4352] usb 5-1: USB disconnect, device number 4
[  122.072194][ T4284] Bluetooth: hci1: command 0x0406 tx timeout
[  122.152064][ T4284] Bluetooth: hci4: command 0x0406 tx timeout
[  122.220691][ T5268] fido_id[5268]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  123.254566][ T5290] loop1: detected capacity change from 0 to 256
[  123.284103][ T5272] loop0: detected capacity change from 0 to 32768
[  123.383133][ T5272] JBD2: Ignoring recovery information on journal
[  123.386589][ T5290] FAT-fs (loop1): Directory bread(block 64) failed
[  123.456319][ T5276] loop2: detected capacity change from 0 to 32768
[  123.478575][ T5272] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  123.483278][ T5290] FAT-fs (loop1): Directory bread(block 65) failed
[  123.567972][ T5290] FAT-fs (loop1): Directory bread(block 66) failed
[  123.578472][ T5290] FAT-fs (loop1): Directory bread(block 67) failed
[  123.596003][ T5290] FAT-fs (loop1): Directory bread(block 68) failed
[  123.619588][ T5290] FAT-fs (loop1): Directory bread(block 69) failed
[  123.634257][ T5276] ERROR: (device loop2): dbAlloc: the hint is outside the map
[  123.634257][ T5276] 
[  123.652771][ T5290] FAT-fs (loop1): Directory bread(block 70) failed
[  123.667325][ T5290] FAT-fs (loop1): Directory bread(block 71) failed
[  123.694861][ T5272] OCFS2: ERROR (device loop0): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #32 has bit count of 1024
[  123.721601][ T5290] FAT-fs (loop1): Directory bread(block 72) failed
[  123.732680][ T5272] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  123.747840][ T5290] FAT-fs (loop1): Directory bread(block 73) failed
[  123.761287][ T5272] (syz.0.343,5272,0):ocfs2_trim_mainbm:7611 ERROR: status = -30
[  123.763471][ T5276] read_mapping_page failed!
[  123.802739][ T5276] ERROR: (device loop2): txCommit: 
[  123.802739][ T5276] 
[  123.968571][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  124.072070][ T4284] Bluetooth: hci0: command 0x0c1a tx timeout
[  124.506333][ T4281] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  124.516959][ T4281] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  124.525523][ T4281] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  124.557205][ T4281] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  124.565077][ T4281] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  124.577330][ T4281] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  124.723042][ T5309] netlink: 'syz.0.361': attribute type 298 has an invalid length.
[  124.955118][ T5320] loop0: detected capacity change from 0 to 64
[  125.026320][    T9] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.053973][ T5317] loop2: detected capacity change from 0 to 4096
[  125.095098][ T5317] ntfs: (device loop2): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  125.141844][ T5317] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing.
[  125.169839][ T5317] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  125.222424][ T5317] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  125.251297][    T9] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.283466][ T5317] ntfs: volume version 3.1.
[  125.376152][ T5317] ntfs: (device loop2): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set cp737.  You might want to try to use the mount option nls=utf8.
[  125.423508][ T5317] ntfs: (device loop2): ntfs_filldir(): Skipping unrepresentable inode 0x4.
[  125.437258][ T5317] ntfs: (device loop2): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set cp737.  You might want to try to use the mount option nls=utf8.
[  125.464297][    T9] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.477371][ T5317] ntfs: (device loop2): ntfs_filldir(): Skipping unrepresentable inode 0x45.
[  125.614893][    T9] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.000934][ T5304] chnl_net:caif_netlink_parms(): no params data found
[  126.632056][ T4284] Bluetooth: hci0: command 0x0409 tx timeout
[  126.843714][ T5369] loop2: detected capacity change from 0 to 256
[  126.905244][ T5304] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.913897][ T5369] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x76936814, utbl_chksum : 0xe619d30d)
[  126.932348][ T5304] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.940647][ T5304] device bridge_slave_0 entered promiscuous mode
[  127.008562][ T5377] netlink: 24 bytes leftover after parsing attributes in process `syz.4.387'.
[  127.045960][ T5369] syz.2.385: attempt to access beyond end of device
[  127.045960][ T5369] loop2: rw=524288, sector=280, nr_sectors = 128 limit=256
[  127.088503][ T5304] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.107838][ T5304] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.145173][ T5304] device bridge_slave_1 entered promiscuous mode
[  127.200070][ T5369] syz.2.385: attempt to access beyond end of device
[  127.200070][ T5369] loop2: rw=524288, sector=408, nr_sectors = 256 limit=256
[  127.248289][   T26] audit: type=1326 audit(1753345024.041:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5382 comm="syz.1.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  127.287835][ T5369] syz.2.385: attempt to access beyond end of device
[  127.287835][ T5369] loop2: rw=0, sector=280, nr_sectors = 8 limit=256
[  127.320978][   T26] audit: type=1326 audit(1753345024.071:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5382 comm="syz.1.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  127.339651][ T5385] loop4: detected capacity change from 0 to 512
[  127.515570][ T5304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  127.564839][ T5304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  127.580483][ T5385] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  127.627236][ T5385] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.784995][ T5385] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  127.802137][   T22] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  127.856437][ T5385] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[  127.893186][ T5304] team0: Port device team_slave_0 added
[  127.920070][ T5304] team0: Port device team_slave_1 added
[  127.957047][ T4264] EXT4-fs (loop4): unmounting filesystem.
[  128.001585][   T22] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.022464][   T22] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.038565][   T22] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  128.060011][   T22] usb 1-1: New USB device found, idVendor=056a, idProduct=0027, bcdDevice= 0.00
[  128.069240][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.097886][   T22] usb 1-1: config 0 descriptor??
[  128.122000][ T4569] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  128.198896][ T5411] loop4: detected capacity change from 0 to 256
[  128.266672][ T5304] batman_adv: batadv0: Adding interface: batadv_slave_0
[  128.276640][ T5411] FAT-fs (loop4): Directory bread(block 64) failed
[  128.278943][ T5304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  128.291833][ T5411] FAT-fs (loop4): Directory bread(block 65) failed
[  128.339527][ T5411] FAT-fs (loop4): Directory bread(block 66) failed
[  128.349625][ T5411] FAT-fs (loop4): Directory bread(block 67) failed
[  128.365633][ T5414] loop1: detected capacity change from 0 to 256
[  128.372550][ T4569] usb 3-1: Using ep0 maxpacket: 16
[  128.380830][ T5304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  128.384397][ T4569] usb 3-1: config 0 has an invalid interface number: 251 but max is 0
[  128.407208][ T5411] FAT-fs (loop4): Directory bread(block 68) failed
[  128.416931][ T5411] FAT-fs (loop4): Directory bread(block 69) failed
[  128.433203][ T5414] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  128.434067][ T4569] usb 3-1: config 0 has no interface number 0
[  128.462913][ T5411] FAT-fs (loop4): Directory bread(block 70) failed
[  128.482463][ T4569] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  128.494766][ T5411] FAT-fs (loop4): Directory bread(block 71) failed
[  128.510405][ T5411] FAT-fs (loop4): Directory bread(block 72) failed
[  128.514586][ T5304] batman_adv: batadv0: Adding interface: batadv_slave_1
[  128.536325][   T22] wacom 0003:056A:0027.0009: item 0 1 0 9 parsing failed
[  128.543567][ T5304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  128.543620][ T5304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  128.582241][ T4569] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  128.592707][ T5411] FAT-fs (loop4): Directory bread(block 73) failed
[  128.604832][ T4569] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  128.619795][ T4569] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.628202][ T4569] usb 3-1: Product: syz
[  128.658826][ T4569] usb 3-1: Manufacturer: syz
[  128.672121][ T4569] usb 3-1: SerialNumber: syz
[  128.677451][   T22] wacom 0003:056A:0027.0009: parse failed
[  128.687723][ T4569] usb 3-1: config 0 descriptor??
[  128.697219][   T22] wacom: probe of 0003:056A:0027.0009 failed with error -22
[  128.712072][ T4284] Bluetooth: hci0: command 0x041b tx timeout
[  128.718786][ T5403] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  128.728692][ T5403] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  128.753183][   T22] usb 1-1: USB disconnect, device number 4
[  128.978211][ T5403] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  129.009979][ T5403] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  129.070493][ T5420] loop1: detected capacity change from 0 to 512
[  129.099627][ T5420] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  129.131128][ T5304] device hsr_slave_0 entered promiscuous mode
[  129.152736][ T5304] device hsr_slave_1 entered promiscuous mode
[  129.161294][ T5304] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  129.176391][ T5304] Cannot create hsr debugfs directory
[  129.210446][ T5420] EXT4-fs (loop1): 1 truncate cleaned up
[  129.231749][ T5420] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  129.450209][ T4569] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  129.468489][ T4569] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71
[  129.491038][ T4569] asix: probe of 3-1:0.251 failed with error -71
[  129.493710][ T4263] EXT4-fs (loop1): unmounting filesystem.
[  129.502586][ T4569] usb 3-1: USB disconnect, device number 6
[  129.753178][    T9] device hsr_slave_0 left promiscuous mode
[  129.770673][ T5434] loop4: detected capacity change from 0 to 256
[  129.781350][    T9] device hsr_slave_1 left promiscuous mode
[  129.793934][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.815814][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  129.861248][ T5434] FAT-fs (loop4): Directory bread(block 64) failed
[  129.871678][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  129.879576][ T5434] FAT-fs (loop4): Directory bread(block 65) failed
[  129.886483][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  129.900283][ T5434] FAT-fs (loop4): Directory bread(block 66) failed
[  129.925652][    T9] device bridge_slave_1 left promiscuous mode
[  129.935315][ T5434] FAT-fs (loop4): Directory bread(block 67) failed
[  129.947632][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.964968][ T5434] FAT-fs (loop4): Directory bread(block 68) failed
[  129.986132][ T5434] FAT-fs (loop4): Directory bread(block 69) failed
[  129.999300][    T9] device bridge_slave_0 left promiscuous mode
[  130.014336][ T5434] FAT-fs (loop4): Directory bread(block 70) failed
[  130.036252][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.067103][ T5434] FAT-fs (loop4): Directory bread(block 71) failed
[  130.087997][ T5434] FAT-fs (loop4): Directory bread(block 72) failed
[  130.118345][ T5434] FAT-fs (loop4): Directory bread(block 73) failed
[  130.270570][ T5447] loop2: detected capacity change from 0 to 256
[  130.334159][    T9] device veth1_macvtap left promiscuous mode
[  130.343434][ T5449] IPVS: ip_vs_edit_dest(): server weight less than zero
[  130.352335][    T9] device veth0_macvtap left promiscuous mode
[  130.358521][    T9] device veth1_vlan left promiscuous mode
[  130.415375][    T9] device veth0_vlan left promiscuous mode
[  130.793076][ T4281] Bluetooth: hci0: command 0x040f tx timeout
[  130.949976][ T5463] loop4: detected capacity change from 0 to 2048
[  131.102035][ T5465] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  131.120431][ T5441] loop0: detected capacity change from 0 to 32768
[  131.143808][ T5467] netlink: 8 bytes leftover after parsing attributes in process `syz.2.417'.
[  131.195377][ T5441] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.408 (5441)
[  131.293755][ T5441] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  131.355145][ T5441] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  131.415388][ T5441] BTRFS info (device loop0): force clearing of disk cache
[  131.468419][ T5441] BTRFS info (device loop0): enabling auto defrag
[  131.508469][ T5441] BTRFS info (device loop0): max_inline at 0
[  131.528601][ T5441] BTRFS info (device loop0): enabling disk space caching
[  131.566934][ T5441] BTRFS info (device loop0): disk space caching is enabled
[  131.954985][ T5458] loop1: detected capacity change from 0 to 40427
[  131.967230][ T5441] BTRFS info (device loop0): enabling ssd optimizations
[  132.009631][ T5441] BTRFS info (device loop0): rebuilding free space tree
[  132.040257][ T5458] F2FS-fs (loop1): Found nat_bits in checkpoint
[  132.092859][    T7] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  132.150353][ T5441] BTRFS info (device loop0): disabling free space tree
[  132.173806][ T5441] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  132.212863][ T5458] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  132.221715][ T5441] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  132.292189][    T7] usb 5-1: Using ep0 maxpacket: 8
[  132.299293][    T7] usb 5-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  132.324291][    T7] usb 5-1: config 0 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 33252, setting to 1024
[  132.340391][    T7] usb 5-1: config 0 interface 0 has no altsetting 0
[  132.349697][    T7] usb 5-1: New USB device found, idVendor=17ef, idProduct=60ee, bcdDevice= 0.00
[  132.366552][   T26] kauditd_printk_skb: 6 callbacks suppressed
[  132.366568][   T26] audit: type=1800 audit(1753345029.161:20): pid=5458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.414" name="file1" dev="loop1" ino=10 res=0 errno=0
[  132.371022][    T7] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.412212][    T7] usb 5-1: config 0 descriptor??
[  132.540289][ T4263] syz-executor: attempt to access beyond end of device
[  132.540289][ T4263] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  132.862299][    T7] lenovo 0003:17EF:60EE.000A: unknown main item tag 0x0
[  132.869491][    T7] lenovo 0003:17EF:60EE.000A: unknown main item tag 0x0
[  132.883385][ T4281] Bluetooth: hci0: command 0x0419 tx timeout
[  132.889673][   T46] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  132.900696][    T7] lenovo 0003:17EF:60EE.000A: unknown main item tag 0x0
[  132.930630][    T7] lenovo 0003:17EF:60EE.000A: unknown main item tag 0x0
[  132.952643][ T5513] loop2: detected capacity change from 0 to 512
[  132.959552][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  132.972216][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  132.983556][    T7] lenovo 0003:17EF:60EE.000A: unknown main item tag 0x0
[  132.990667][    T7] lenovo 0003:17EF:60EE.000A: unknown main item tag 0x0
[  133.000483][    T7] lenovo 0003:17EF:60EE.000A: unknown main item tag 0x0
[  133.010523][ T5513] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e02c, mo2=0002]
[  133.055134][    T7] lenovo 0003:17EF:60EE.000A: unknown main item tag 0x0
[  133.066559][ T5513] System zones: 1-12
[  133.097108][ T5513] EXT4-fs error (device loop2): dx_probe:823: inode #2: comm syz.2.428: Directory hole found for htree index block 0
[  133.149869][ T5513] EXT4-fs (loop2): Remounting filesystem read-only
[  133.160008][ T5513] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -117
[  133.168376][ T5513] EXT4-fs error (device loop2): dx_probe:823: inode #2: comm syz.2.428: Directory hole found for htree index block 0
[  133.184641][ T5513] EXT4-fs (loop2): Remounting filesystem read-only
[  133.191252][ T5513] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  133.200076][ T5513] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  133.204486][    T7] lenovo 0003:17EF:60EE.000A: hidraw0: USB HID v0.00 Device [HID 17ef:60ee] on usb-dummy_hcd.4-1/input0
[  133.301134][    T7] usb 5-1: USB disconnect, device number 5
[  133.309757][ T4266] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  133.320490][ T5513] EXT4-fs: Ignoring sb option on remount
[  133.345843][ T5513] EXT4-fs: Ignoring removed orlov option
[  133.462273][ T5513] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[  133.505969][ T5513] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[  133.544365][ T5516] fido_id[5516]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  133.592146][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  133.765470][ T5529] loop1: detected capacity change from 0 to 64
[  133.826578][   T26] audit: type=1800 audit(1753345030.621:21): pid=5529 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.426" name="file1" dev="loop1" ino=18 res=0 errno=0
[  133.834850][ T5529] syz.1.426: attempt to access beyond end of device
[  133.834850][ T5529] loop1: rw=34817, sector=4, nr_sectors = 76 limit=64
[  133.900074][ T4268] EXT4-fs (loop2): unmounting filesystem.
[  133.914187][    T9] team0 (unregistering): Port device team_slave_1 removed
[  134.007875][ T5533] loop4: detected capacity change from 0 to 512
[  134.180211][ T5533] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2195: inode #15: comm syz.4.432: corrupted in-inode xattr
[  134.256734][    T9] team0 (unregistering): Port device team_slave_0 removed
[  134.264900][ T5533] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.432: couldn't read orphan inode 15 (err -117)
[  134.293824][ T5533] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  134.402705][ T5533] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #2: comm syz.4.432: directory missing '.'
[  134.419259][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  134.516523][ T4264] EXT4-fs (loop4): unmounting filesystem.
[  134.602551][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  134.622893][ T5550] loop0: detected capacity change from 0 to 2048
[  134.659813][ T5550] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  134.689093][ T5552] loop4: detected capacity change from 0 to 2048
[  134.794434][ T5552] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  135.082350][ T4264] EXT4-fs (loop4): unmounting filesystem.
[  135.580525][    T9] bond0 (unregistering): Released all slaves
[  135.688830][ T5543] netlink: 'syz.1.433': attribute type 10 has an invalid length.
[  135.700680][ T5543] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.709867][ T5543] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.746626][ T5543] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.755019][ T5543] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.764861][ T5543] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.772058][ T5543] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.796985][ T5543] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  135.806381][ T5544] device bridge_slave_1 left promiscuous mode
[  135.813385][ T5544] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.823870][ T5544] device bridge_slave_0 left promiscuous mode
[  135.830207][ T5544] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.859458][ T5544] bond0: (slave bridge0): Releasing backup interface
[  135.942193][ T5564] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_hsr, syncid = 4, id = 0
[  136.151256][ T5567] loop2: detected capacity change from 0 to 8
[  136.193146][ T5567] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  136.214004][ T5574] netlink: 60 bytes leftover after parsing attributes in process `syz.1.444'.
[  136.216791][ T5571] binder: 5570:5571 ioctl c0306201 200000000100 returned -14
[  136.256812][ T5574] netlink: 60 bytes leftover after parsing attributes in process `syz.1.444'.
[  136.278245][ T5569] netlink: 60 bytes leftover after parsing attributes in process `syz.1.444'.
[  136.299791][ T5567] cramfs: Error -5 while decompressing!
[  136.349453][ T5567] cramfs: ffffffff96d71138(16)->ffff88805259a000(4096)
[  136.382318][ T5567] cramfs: Error -5 while decompressing!
[  136.397808][ T5304] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  136.416431][ T5567] cramfs: ffffffff96d71138(16)->ffff88805259a000(4096)
[  136.442601][   T26] audit: type=1800 audit(1753345033.241:22): pid=5567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.443" name="file0" dev="loop2" ino=244 res=0 errno=0
[  136.493156][ T5304] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  136.553733][ T5304] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  136.635881][ T5304] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  136.693554][ T4772] udevd[4772]: incorrect cramfs checksum on /dev/loop2
[  136.866667][ T5594] loop1: detected capacity change from 0 to 256
[  136.934125][ T5594] MINIX-fs: mounting file system with errors, running fsck is recommended
[  137.005930][ T5594] MINIX-fs warning: remounting fs with errors, running fsck is recommended
[  137.100429][ T5304] 8021q: adding VLAN 0 to HW filter on device bond0
[  137.226761][ T5304] 8021q: adding VLAN 0 to HW filter on device team0
[  137.262726][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  137.279066][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  137.335241][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  137.353123][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  137.369679][ T5421] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.376910][ T5421] bridge0: port 1(bridge_slave_0) entered forwarding state
[  137.406032][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.436181][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.473327][ T5421] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.480534][ T5421] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.512991][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  137.565621][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  137.579892][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  137.609356][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  137.651165][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  137.690695][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  137.721738][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  137.775392][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  137.808566][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  137.832232][ T5520] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  137.847859][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  137.883075][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  137.917275][ T5421] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  137.946331][ T5304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  138.032214][ T5520] usb 1-1: Using ep0 maxpacket: 16
[  138.056993][ T5520] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  138.089580][ T5520] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  138.110973][ T5520] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  138.143653][ T5520] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  138.152769][ T5630] program syz.2.464 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  138.197922][ T5520] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  138.237332][ T5520] usb 1-1: Manufacturer: syz
[  138.284088][ T5520] usb 1-1: config 0 descriptor??
[  138.596455][ T5641] loop2: detected capacity change from 0 to 4096
[  138.671179][ T5641] ntfs: volume version 3.1.
[  138.890740][ T5650] loop1: detected capacity change from 0 to 1024
[  138.944085][ T5650] hfsplus: bad catalog entry type
[  139.026545][ T5304] 8021q: adding VLAN 0 to HW filter on device batadv0
[  139.057557][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  139.072470][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  139.156331][ T4569] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  139.364019][ T4569] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  139.397349][ T4569] usb 5-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice= 9.99
[  139.432437][ T4569] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.460904][ T4569] usb 5-1: Product: syz
[  139.484485][ T4569] usb 5-1: Manufacturer: syz
[  139.504405][ T4569] usb 5-1: SerialNumber: syz
[  139.523543][ T4569] usb 5-1: config 0 descriptor??
[  139.603548][ T5674] loop2: detected capacity change from 0 to 256
[  139.632956][ T5674] exfat: Deprecated parameter 'utf8'
[  139.659547][ T5674] exfat: Deprecated parameter 'utf8'
[  139.722698][ T5674] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  139.953772][  T128] usb 5-1: USB disconnect, device number 6
[  139.967940][  T128] f81534a_ctrl 5-1:0.0: failed to set register 0x116: -19
[  140.009075][  T128] f81534a_ctrl 5-1:0.0: failed to enable ports: -19
[  140.112269][ T5686] loop2: detected capacity change from 0 to 2048
[  140.151160][ T5686] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  140.192477][ T4569] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  140.220794][ T5686] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  140.277084][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  140.300106][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  140.361069][ T4268] EXT4-fs (loop2): unmounting filesystem.
[  140.371515][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  140.387526][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  140.404670][ T4569] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  140.422423][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  140.432327][ T4569] usb 2-1: New USB device found, idVendor=050d, idProduct=3201, bcdDevice= 0.00
[  140.450155][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  140.463578][ T4569] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.465761][ T5304] device veth0_vlan entered promiscuous mode
[  140.517988][ T5304] device veth1_vlan entered promiscuous mode
[  140.526222][ T4569] usb 2-1: config 0 descriptor??
[  140.532900][ T5682] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  140.622277][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  140.641475][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  140.668911][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  140.670375][ T4340] usb 1-1: USB disconnect, device number 5
[  140.719968][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  140.751852][ T5304] device veth0_macvtap entered promiscuous mode
[  140.777383][ T5697] loop0: detected capacity change from 0 to 1024
[  140.813475][ T5693] netlink: 'syz.2.480': attribute type 21 has an invalid length.
[  140.832469][ T5693] netlink: 36 bytes leftover after parsing attributes in process `syz.2.480'.
[  140.876811][ T5304] device veth1_macvtap entered promiscuous mode
[  140.970237][ T5304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.970762][ T4569] belkin 0003:050D:3201.000B: unbalanced collection at end of report description
[  141.028401][ T5304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.054925][ T5304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.066268][ T4569] belkin 0003:050D:3201.000B: parse failed
[  141.069871][ T5304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.092039][ T4569] belkin: probe of 0003:050D:3201.000B failed with error -22
[  141.101327][ T5304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.134890][ T5304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.158067][ T5304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.169958][ T5304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.186316][ T5703] loop2: detected capacity change from 0 to 2048
[  141.186649][ T4356] hfsplus: b-tree write err: -5, ino 4
[  141.198753][ T4569] usb 2-1: USB disconnect, device number 3
[  141.202168][ T5304] batman_adv: batadv0: Interface activated: batadv_slave_0
[  141.229350][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  141.260616][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  141.268905][ T5703] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  141.291667][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  141.317087][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  141.344870][ T5703] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  141.347199][ T5304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.376670][ T5304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.386826][ T5304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.403062][ T5304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.424726][ T5304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.437747][ T5304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.450492][ T5304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.467581][ T5304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.490270][ T5304] batman_adv: batadv0: Interface activated: batadv_slave_1
[  141.512564][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  141.525201][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  141.558620][ T5304] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.579188][ T5304] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.610068][ T5304] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.640464][ T5304] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.877373][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.920000][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.989723][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  142.017673][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.041649][ T5718] loop4: detected capacity change from 0 to 512
[  142.042353][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.117916][ T5718] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  142.130934][ T4364] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  142.333038][ T4264] EXT4-fs (loop4): unmounting filesystem.
[  143.091669][ T5709] loop2: detected capacity change from 0 to 32768
[  143.211405][ T5756] netlink: 'syz.4.504': attribute type 2 has an invalid length.
[  143.324685][ T5709] XFS (loop2): Mounting V5 Filesystem
[  143.495770][ T5709] XFS (loop2): Ending clean mount
[  143.543677][ T5709] XFS (loop2): Quotacheck needed: Please wait.
[  143.584395][ T5767] loop1: detected capacity change from 0 to 8192
[  143.654978][ T5709] XFS (loop2): Quotacheck: Done.
[  144.016276][ T4268] XFS (loop2): Unmounting Filesystem
[  144.041950][ T5786] netlink: 209848 bytes leftover after parsing attributes in process `syz.1.513'.
[  144.123964][ T5786] netlink: zone id is out of range
[  144.129314][ T5786] netlink: zone id is out of range
[  144.175295][ T5786] netlink: zone id is out of range
[  144.205730][ T5786] netlink: zone id is out of range
[  144.251421][ T5786] netlink: zone id is out of range
[  144.301982][ T5786] netlink: zone id is out of range
[  144.307186][ T5786] netlink: zone id is out of range
[  144.372601][ T5786] netlink: zone id is out of range
[  144.377805][ T5786] netlink: zone id is out of range
[  144.422617][ T5786] netlink: zone id is out of range
[  144.888830][ T5807] loop0: detected capacity change from 0 to 256
[  144.948123][ T5807] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  145.032366][ T5807] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  145.103279][ T5807] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  145.195618][ T5818] UHID_CREATE from different security context by process 251 (syz.4.527), this is not allowed.
[  145.215675][ T5807] exFAT-fs (loop0): hint_cluster is invalid (17)
[  145.255366][ T5817] sp0: Synchronizing with TNC
[  145.444694][ T5827] loop1: detected capacity change from 0 to 512
[  145.451870][ T5827] EXT4-fs: Ignoring removed i_version option
[  145.574202][ T5827] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  145.645401][ T5827] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e12c, mo2=0002]
[  145.668138][ T5827] System zones: 1-12
[  145.705497][ T5827] EXT4-fs (loop1): orphan cleanup on readonly fs
[  145.705524][ T5836] loop5: detected capacity change from 0 to 256
[  145.726676][ T5836] exfat: Deprecated parameter 'namecase'
[  145.750231][ T5827] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.529: invalid indirect mapped block 12 (level 1)
[  145.781732][ T5836] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d)
[  145.831140][ T5827] EXT4-fs (loop1): Remounting filesystem read-only
[  145.883280][ T5827] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.529: invalid indirect mapped block 2 (level 2)
[  145.973662][ T5827] EXT4-fs (loop1): Remounting filesystem read-only
[  145.981072][ T5827] EXT4-fs (loop1): 1 truncate cleaned up
[  146.028002][ T5827] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  146.226709][ T5849] loop5: detected capacity change from 0 to 64
[  146.391627][ T4263] EXT4-fs (loop1): unmounting filesystem.
[  146.590002][ T5856] loop4: detected capacity change from 0 to 2048
[  146.722234][ T5867] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  146.957247][ T5856] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  147.023018][ T5856] Remounting filesystem read-only
[  147.028595][ T5856] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  147.053622][ T5876] device ip6_vti0 entered promiscuous mode
[  147.245194][ T4264] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[  147.286994][ T5883] tipc: Started in network mode
[  147.312093][ T5883] tipc: Node identity fe80000000000000000000000000002a, cluster identity 4711
[  147.347894][ T5883] tipc: Enabled bearer <udp:syz1>, priority 10
[  147.462257][ T5887] netlink: 32 bytes leftover after parsing attributes in process `syz.4.552'.
[  147.521988][ T5520] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  147.691168][ T5896] loop0: detected capacity change from 0 to 128
[  147.712004][ T5520] usb 2-1: Using ep0 maxpacket: 16
[  147.729305][ T5520] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  147.747052][ T5898] loop4: detected capacity change from 0 to 256
[  147.752057][ T5520] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.777792][ T5520] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.798411][ T5520] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  147.812580][ T5896] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  147.821392][ T5896] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.839689][ T5520] usb 2-1: New USB device found, idVendor=056a, idProduct=0317, bcdDevice= 0.00
[  147.858689][ T5520] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.861333][ T5896] ./file0: Can't open blockdev
[  147.889380][ T5520] usb 2-1: config 0 descriptor??
[  147.994981][ T5898] FAT-fs (loop4): Directory bread(block 64) failed
[  148.022147][ T5898] FAT-fs (loop4): Directory bread(block 65) failed
[  148.042883][ T5898] FAT-fs (loop4): Directory bread(block 66) failed
[  148.064176][ T5898] FAT-fs (loop4): Directory bread(block 67) failed
[  148.091625][ T5898] FAT-fs (loop4): Directory bread(block 68) failed
[  148.108807][ T5898] FAT-fs (loop4): Directory bread(block 69) failed
[  148.110163][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  148.125900][ T5898] FAT-fs (loop4): Directory bread(block 70) failed
[  148.141738][ T5898] FAT-fs (loop4): Directory bread(block 71) failed
[  148.202162][ T5898] FAT-fs (loop4): Directory bread(block 72) failed
[  148.229182][ T5898] FAT-fs (loop4): Directory bread(block 73) failed
[  148.315341][ T5520] wacom 0003:056A:0317.000C: unbalanced delimiter at end of report description
[  148.352552][ T5520] wacom 0003:056A:0317.000C: parse failed
[  148.378750][ T5520] wacom: probe of 0003:056A:0317.000C failed with error -22
[  148.474132][ T5531] tipc: Node number set to 4269801514
[  148.568914][ T5531] usb 2-1: USB disconnect, device number 4
[  148.793042][ T5917] netlink: 8 bytes leftover after parsing attributes in process `syz.5.563'.
[  148.858294][ T5917] device dummy0 entered promiscuous mode
[  148.925249][ T5917] device dummy0 left promiscuous mode
[  149.317530][ T5934] loop5: detected capacity change from 0 to 16
[  149.343386][ T5934] erofs: (device loop5): erofs_superblock_csum_verify: invalid checksum 0xe62de0bb, 0xc6d5fae7 expected
[  149.395326][ T4772] udevd[4772]: incorrect erofs checksum on /dev/loop5
[  149.419937][ T5934] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  149.430559][ T5902] loop2: detected capacity change from 0 to 32768
[  149.508985][ T5934] CIFS mount error: No usable UNC path provided in device string!
[  149.508985][ T5934] 
[  149.544154][ T5934] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  149.676118][ T4570] kernel write not supported for file /snd/seq (pid: 4570 comm: kworker/1:13)
[  149.830237][ T5902] XFS (loop2): Mounting V5 Filesystem
[  149.909292][ T5902] XFS (loop2): Ending clean mount
[  150.044413][   T22] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  150.254248][   T22] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.259077][ T4268] XFS (loop2): Unmounting Filesystem
[  150.285866][   T22] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  150.326559][   T22] usb 6-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00
[  150.344139][ T5959] loop4: detected capacity change from 0 to 4096
[  150.366902][   T22] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.382290][ T5959] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512)
[  150.419361][   T22] usb 6-1: config 0 descriptor??
[  150.562565][ T4340] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  150.638566][ T5968] IPVS: Error connecting to the multicast addr
[  150.752299][ T4340] usb 2-1: Using ep0 maxpacket: 8
[  150.767837][ T4340] usb 2-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  150.811499][ T4340] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.854411][ T4340] usb 2-1: Product: syz
[  150.859644][ T4340] usb 2-1: Manufacturer: syz
[  150.869327][   T22] petalynx 0003:18B1:0037.000D: hidraw0: USB HID v0.00 Device [HID 18b1:0037] on usb-dummy_hcd.5-1/input0
[  150.915033][ T4340] usb 2-1: SerialNumber: syz
[  150.943931][ T4340] usb 2-1: config 0 descriptor??
[  150.978402][ T4340] gspca_main: sonixj-2.14.0 probing 0c45:613a
[  151.081302][   T22] usb 6-1: USB disconnect, device number 2
[  151.162067][ T5520] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  151.310527][ T5973] fido_id[5973]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  151.352158][ T5520] usb 1-1: Using ep0 maxpacket: 8
[  151.381480][ T5520] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.416764][ T5520] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.442029][ T5520] usb 1-1: New USB device found, idVendor=0eef, idProduct=72c4, bcdDevice= 0.00
[  151.463891][ T5520] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.504774][ T5520] usb 1-1: config 0 descriptor??
[  151.593580][ T4340] gspca_sonixj: reg_w1 err -71
[  151.604064][ T4340] sonixj: probe of 2-1:0.0 failed with error -71
[  151.642927][ T4340] usb 2-1: USB disconnect, device number 5
[  151.659712][ T5983] IPVS: persistence engine module ip_vs_pe_six not found
[  151.809423][ T5992] loop2: detected capacity change from 0 to 64
[  151.979149][ T5520] hid-multitouch 0003:0EEF:72C4.000E: item fetching failed at offset 0/5
[  152.009095][ T5520] hid-multitouch: probe of 0003:0EEF:72C4.000E failed with error -22
[  152.172041][ T4340] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  152.199582][ T6003] loop5: detected capacity change from 0 to 1024
[  152.214133][ T5520] usb 1-1: USB disconnect, device number 6
[  152.319139][ T6007] loop1: detected capacity change from 0 to 128
[  152.363998][ T4340] usb 5-1: config 0 has an invalid interface number: 117 but max is 0
[  152.383067][ T4340] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  152.406691][   T26] audit: type=1800 audit(1753345049.201:23): pid=6007 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.589" name="file1" dev="loop1" ino=1048675 res=0 errno=0
[  152.448094][ T4340] usb 5-1: config 0 has no interface number 0
[  152.468447][ T4340] usb 5-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  152.508591][ T4340] usb 5-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  152.595617][ T4340] usb 5-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  152.646840][ T4340] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.682112][ T4340] usb 5-1: Product: syz
[  152.686442][ T4340] usb 5-1: Manufacturer: syz
[  152.703249][ T6013] loop1: detected capacity change from 0 to 16
[  152.712334][ T4340] usb 5-1: SerialNumber: syz
[  152.761651][ T4340] usb 5-1: config 0 descriptor??
[  152.765408][ T6013] erofs: (device loop1): mounted with root inode @ nid 36.
[  153.271787][ T6029] loop2: detected capacity change from 0 to 2048
[  153.376671][ T6036] loop1: detected capacity change from 0 to 8
[  153.396718][ T6029] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  153.438608][ T4340] usb 5-1: USB disconnect, device number 7
[  153.561812][ T6029] cifs: Unknown parameter 'c936'
[  153.739361][ T4268] EXT4-fs (loop2): unmounting filesystem.
[  154.197225][ T6060] loop1: detected capacity change from 0 to 2048
[  154.303867][ T6064] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  154.691993][ T5522] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  154.904853][ T5522] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  154.945949][ T5522] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.979620][ T5522] usb 6-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00
[  155.004070][ T5522] usb 6-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  155.026000][ T5522] usb 6-1: Manufacturer: syz
[  155.054520][ T5522] usb 6-1: config 0 descriptor??
[  155.105378][ T6088] loop0: detected capacity change from 0 to 1764
[  155.142865][ T6067] loop2: detected capacity change from 0 to 32768
[  155.262890][ T6067] XFS (loop2): Mounting V5 Filesystem
[  155.460506][ T6067] XFS (loop2): Ending clean mount
[  155.476388][ T5522] cougar 0003:060B:700A.000F: unknown main item tag 0x0
[  155.502208][ T5522] cougar 0003:060B:700A.000F: unknown main item tag 0x0
[  155.512373][ T5522] cougar 0003:060B:700A.000F: unknown main item tag 0x0
[  155.549895][ T5522] cougar 0003:060B:700A.000F: unknown main item tag 0x0
[  155.570137][ T5522] cougar 0003:060B:700A.000F: unknown main item tag 0x0
[  155.595415][ T4268] XFS (loop2): Unmounting Filesystem
[  155.601387][ T5522] cougar 0003:060B:700A.000F: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  155.685598][ T5522] usb 6-1: USB disconnect, device number 3
[  155.762026][ T4340] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  155.937963][ T6106] fido_id[6106]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  155.955579][ T4340] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.971996][ T4340] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.992508][ T4340] usb 1-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  156.022150][ T4340] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.049940][ T4340] usb 1-1: config 0 descriptor??
[  156.114855][ T6084] loop4: detected capacity change from 0 to 40427
[  156.158210][ T6084] F2FS-fs (loop4): invalid crc value
[  156.166865][ T6084] F2FS-fs (loop4): Found nat_bits in checkpoint
[  156.260217][ T6084] F2FS-fs (loop4): Start checkpoint disabled!
[  156.283736][ T6084] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  156.488812][ T4340] uclogic 0003:5543:0042.0010: No inputs registered, leaving
[  156.528031][ T4340] uclogic 0003:5543:0042.0010: hidraw0: USB HID v0.00 Device [HID 5543:0042] on usb-dummy_hcd.0-1/input0
[  156.701293][ T4340] usb 1-1: USB disconnect, device number 7
[  156.752698][ T4356] kworker/u4:6: attempt to access beyond end of device
[  156.752698][ T4356] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  156.860076][ T6118] loop5: detected capacity change from 0 to 4096
[  156.881649][ T6121] fido_id[6121]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  157.101199][ T6118] ntfs3: loop5: failed to convert "0080" to cp860
[  157.158493][ T6118] ntfs3: loop5: failed to convert name for inode 1e.
[  157.698567][ T6114] loop1: detected capacity change from 0 to 32768
[  157.882090][ T6114] XFS (loop1): Mounting V5 Filesystem
[  158.173838][ T6114] XFS (loop1): Ending clean mount
[  158.229910][ T6114] XFS (loop1): Quotacheck needed: Please wait.
[  158.469548][ T6114] XFS (loop1): Quotacheck: Done.
[  158.726253][ T6166] loop2: detected capacity change from 0 to 64
[  158.791893][    C1] sched: RT throttling activated
[  158.846157][ T6149] loop5: detected capacity change from 0 to 131072
[  158.929713][ T6149] XFS (loop5): Mounting V5 Filesystem
[  158.961159][ T4263] XFS (loop1): Unmounting Filesystem
[  159.101390][ T6149] XFS (loop5): Starting recovery (logdev: internal)
[  159.163416][ T6149] XFS (loop5): Ending recovery (logdev: internal)
[  159.231964][ T4340] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  159.345648][ T5304] XFS (loop5): Unmounting Filesystem
[  159.442279][ T4340] usb 1-1: Using ep0 maxpacket: 32
[  159.490504][ T4340] usb 1-1: config 0 has an invalid interface number: 85 but max is 0
[  159.499126][   T26] audit: type=1800 audit(1753345056.291:24): pid=6177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.641" name="file1" dev="loop2" ino=5 res=0 errno=0
[  159.543488][ T4340] usb 1-1: config 0 has no interface number 0
[  159.549854][ T4340] usb 1-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  159.582859][ T4340] usb 1-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0
[  159.622065][ T4340] usb 1-1: config 0 interface 85 has no altsetting 0
[  159.654760][ T4340] usb 1-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  159.682326][ T4340] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.697850][ T4340] usb 1-1: Product: syz
[  159.733614][ T4340] usb 1-1: Manufacturer: syz
[  159.738322][ T4340] usb 1-1: SerialNumber: syz
[  159.790400][ T4340] usb 1-1: config 0 descriptor??
[  160.159027][ T6203] loop4: detected capacity change from 0 to 2048
[  160.207491][ T6203] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  160.220571][ T4340] appletouch 1-1:0.85: Failed to request geyser raw mode
[  160.232553][ T4340] appletouch: probe of 1-1:0.85 failed with error -5
[  160.269102][ T6201] loop5: detected capacity change from 0 to 4096
[  160.271029][ T4340] usb 1-1: USB disconnect, device number 8
[  160.326396][ T6201] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[  160.589971][ T6213] loop4: detected capacity change from 0 to 64
[  161.857675][ T6249] loop2: detected capacity change from 0 to 256
[  161.989382][ T6249] FAT-fs (loop2): Directory bread(block 64) failed
[  162.009035][   T26] audit: type=1326 audit(1753345058.801:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.5.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  162.038192][ T6249] FAT-fs (loop2): Directory bread(block 65) failed
[  162.097261][   T26] audit: type=1326 audit(1753345058.801:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.5.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  162.099014][ T6249] FAT-fs (loop2): Directory bread(block 66) failed
[  162.140609][ T6217] loop1: detected capacity change from 0 to 32768
[  162.144481][ T6254] loop4: detected capacity change from 0 to 64
[  162.187136][ T6217] XFS: attr2 mount option is deprecated.
[  162.207486][   T26] audit: type=1326 audit(1753345058.801:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.5.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  162.251994][ T6249] FAT-fs (loop2): Directory bread(block 67) failed
[  162.258673][ T6249] FAT-fs (loop2): Directory bread(block 68) failed
[  162.292003][ T6249] FAT-fs (loop2): Directory bread(block 69) failed
[  162.322112][ T6249] FAT-fs (loop2): Directory bread(block 70) failed
[  162.334356][   T26] audit: type=1326 audit(1753345058.811:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.5.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  162.373360][ T6249] FAT-fs (loop2): Directory bread(block 71) failed
[  162.380086][ T6249] FAT-fs (loop2): Directory bread(block 72) failed
[  162.387180][ T6249] FAT-fs (loop2): Directory bread(block 73) failed
[  162.392212][ T6261] mmap: syz.5.675 (6261) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  162.411556][ T6217] XFS (loop1): Mounting V5 Filesystem
[  162.441071][   T26] audit: type=1326 audit(1753345058.811:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.5.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  162.464246][   T26] audit: type=1800 audit(1753345059.041:30): pid=6254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.673" name="file1" dev="loop4" ino=18 res=0 errno=0
[  162.599142][ T6217] XFS (loop1): Ending clean mount
[  162.653525][ T6217] XFS (loop1): Quotacheck needed: Please wait.
[  162.735124][ T6217] XFS (loop1): Quotacheck: Done.
[  162.957380][ T4263] XFS (loop1): Unmounting Filesystem
[  163.032061][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  163.486928][ T6293] program syz.0.687 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  163.738339][ T6302] loop5: detected capacity change from 0 to 256
[  163.754181][ T6299] loop2: detected capacity change from 0 to 4096
[  163.827993][ T6305] loop1: detected capacity change from 0 to 2048
[  164.024739][ T6309] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  165.077756][ T6340] netlink: 8 bytes leftover after parsing attributes in process `syz.5.702'.
[  165.078908][ T6341] loop4: detected capacity change from 0 to 256
[  165.127635][ T6340] netlink: 4 bytes leftover after parsing attributes in process `syz.5.702'.
[  165.212305][ T6340] netlink: 'syz.5.702': attribute type 3 has an invalid length.
[  165.446249][ T6351] loop4: detected capacity change from 0 to 512
[  165.586987][ T6351] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  165.588946][ T6359] netlink: 'syz.1.708': attribute type 1 has an invalid length.
[  165.642330][ T6351] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.664595][ T6327] loop2: detected capacity change from 0 to 32768
[  165.852294][ T6367] netlink: 'syz.1.710': attribute type 5 has an invalid length.
[  165.866390][ T4264] EXT4-fs (loop4): unmounting filesystem.
[  165.915965][ T6327] XFS (loop2): Mounting V5 Filesystem
[  165.931205][ T6371] loop5: detected capacity change from 0 to 1024
[  166.107597][ T6371] hfsplus: bad catalog entry type
[  166.233302][ T6327] XFS (loop2): Ending clean mount
[  166.271552][ T6327] XFS (loop2): Quotacheck needed: Please wait.
[  166.310462][ T5421] hfsplus: b-tree write err: -5, ino 4
[  166.414350][ T6327] XFS (loop2): Quotacheck: Done.
[  166.513689][ T6391] loop5: detected capacity change from 0 to 512
[  166.601786][ T6391] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  166.619040][ T4268] XFS (loop2): Unmounting Filesystem
[  166.627974][ T6391] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.892003][ T5304] EXT4-fs (loop5): unmounting filesystem.
[  167.152068][  T125] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  167.261791][ T6406] loop5: detected capacity change from 0 to 4096
[  167.312197][ T6406] ntfs3: loop5: Different NTFS' sector size (2048) and media sector size (512)
[  167.352214][  T125] usb 1-1: Using ep0 maxpacket: 16
[  167.359539][  T125] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  167.420915][  T125] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  167.476743][  T125] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  167.506516][ T6413] loop4: detected capacity change from 0 to 47
[  167.524459][  T125] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  167.561333][  T125] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  167.629108][  T125] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  167.659740][  T125] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  167.694825][ T6394] loop1: detected capacity change from 0 to 32768
[  167.699745][  T125] usb 1-1: Manufacturer: syz
[  167.742282][ T4569] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  167.745548][  T125] usb 1-1: config 0 descriptor??
[  167.896983][ T6394] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  167.959500][ T4569] usb 3-1: config 220 has an invalid interface number: 76 but max is 2
[  167.997554][ T4569] usb 3-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  168.052137][ T4569] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  168.098289][ T4569] usb 3-1: config 220 has no interface number 2
[  168.116760][ T4569] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  168.173085][ T4263] ocfs2: Unmounting device (7,1) on (node local)
[  168.207259][ T4569] usb 3-1: config 220 interface 0 has no altsetting 0
[  168.252204][ T4569] usb 3-1: config 220 interface 76 has no altsetting 0
[  168.289639][ T4569] usb 3-1: config 220 interface 1 has no altsetting 0
[  168.312115][  T125] rc_core: IR keymap rc-hauppauge not found
[  168.318154][  T125] Registered IR keymap rc-empty
[  168.343281][ T4569] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  168.344377][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  168.388137][ T4569] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.430051][ T4569] usb 3-1: Product: syz
[  168.432227][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  168.450779][ T4569] usb 3-1: Manufacturer: syz
[  168.482751][  T125] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  168.501059][ T4569] usb 3-1: SerialNumber: syz
[  168.532651][  T125] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input12
[  168.618889][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  168.692346][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  168.761389][ T4569] usb 3-1: Found UVC 7.01 device syz (8086:0b07)
[  168.762222][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  168.804968][ T4569] usb 3-1: No valid video chain found.
[  168.831029][ T4569] usb 3-1: selecting invalid altsetting 0
[  168.832478][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  168.902234][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  168.917234][ T4569] usb 3-1: selecting invalid altsetting 0
[  168.942243][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  168.943263][ T4569] usbtest: probe of 3-1:220.1 failed with error -22
[  168.978883][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  169.015192][ T4569] usb 3-1: USB disconnect, device number 7
[  169.042228][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  169.072172][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  169.104830][  T125] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  169.173660][  T125] mceusb 1-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  169.193427][  T125] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  169.226828][  T125] usb 1-1: USB disconnect, device number 9
[  169.377263][ T6451] loop5: detected capacity change from 0 to 4096
[  169.411204][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffc0c00
[  169.462213][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffc0c00
[  169.474581][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffc0c00
[  169.521144][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffc0c00
[  169.521232][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffc1c00
[  169.521269][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffc2c00
[  169.521309][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffc4c00
[  169.521345][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffc8c00
[  169.521380][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffd0c00
[  169.521418][ T6451] ntfs3: loop5: try to read out of volume at offset 0x3fffffe0c00
[  169.592239][ T5520] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  169.779746][ T5520] usb 2-1: too many configurations: 228, using maximum allowed: 8
[  169.796583][ T5520] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  169.796615][ T5520] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.796636][ T5520] usb 2-1: Product: syz
[  169.796652][ T5520] usb 2-1: Manufacturer: syz
[  169.796668][ T5520] usb 2-1: SerialNumber: syz
[  169.804004][ T5520] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  169.938476][ T5520] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  169.977084][ T6465] netlink: 8 bytes leftover after parsing attributes in process `syz.5.741'.
[  169.996208][ T6463] loop0: detected capacity change from 0 to 4096
[  170.007043][ T6463] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  170.121239][ T6463] ntfs3: loop0: Failed to load $Extend.
[  170.179106][ T6454] loop4: detected capacity change from 0 to 32768
[  170.261540][   T26] audit: type=1804 audit(1753345067.051:31): pid=6463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.740" name="/newroot/155/file0/file0" dev="loop0" ino=0 res=1 errno=0
[  170.612912][ T6472] netlink: 116 bytes leftover after parsing attributes in process `syz.4.743'.
[  170.612941][ T6472] net_ratelimit: 83 callbacks suppressed
[  170.612951][ T6472] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  170.614917][  T125] usb 2-1: USB disconnect, device number 6
[  170.735111][ T6478] loop0: detected capacity change from 0 to 256
[  170.789220][ T6478] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[  171.028891][ T6483] device bridge0 entered promiscuous mode
[  171.063021][ T6483] bridge0: port 3(macvlan2) entered blocking state
[  171.069755][ T6483] bridge0: port 3(macvlan2) entered disabled state
[  171.112682][ T6483] device bridge0 left promiscuous mode
[  171.177773][ T6487] loop0: detected capacity change from 0 to 512
[  171.192099][ T5520] usb 2-1: Service connection timeout for: 256
[  171.209672][ T5520] ath9k_htc 2-1:1.0: ath9k_htc: Unable to initialize HTC services
[  171.254200][ T6487] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.748: inode #1: comm syz.0.748: iget: illegal inode #
[  171.256778][ T5520] ath9k_htc: Failed to initialize the device
[  171.310477][ T6491] loop2: detected capacity change from 0 to 128
[  171.329077][ T6487] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.748: error while reading EA inode 1 err=-117
[  171.331278][  T125] usb 2-1: ath9k_htc: USB layer deinitialized
[  171.426521][ T6487] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.748: inode #1: comm syz.0.748: iget: illegal inode #
[  171.460685][ T6487] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.748: error while reading EA inode 1 err=-117
[  171.556892][ T6487] EXT4-fs (loop0): 1 orphan inode deleted
[  171.584400][ T6487] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  171.874592][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  172.021094][ T6506] loop5: detected capacity change from 0 to 4096
[  172.076663][ T6504] loop2: detected capacity change from 0 to 4096
[  172.092626][ T6506] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  172.134464][ T6504] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512)
[  172.540049][ T5304] ntfs3: loop5: ntfs_evict_inode r=5 failed, -22.
[  172.619431][   T26] audit: type=1326 audit(1753345069.411:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6522 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  172.712704][   T26] audit: type=1326 audit(1753345069.441:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6522 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  172.842180][   T26] audit: type=1326 audit(1753345069.451:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6522 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  172.976726][   T26] audit: type=1326 audit(1753345069.451:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6522 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  173.092018][   T26] audit: type=1326 audit(1753345069.451:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6522 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  173.165491][   T26] audit: type=1326 audit(1753345069.451:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6522 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  173.273258][   T26] audit: type=1326 audit(1753345069.451:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6522 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  173.374727][   T26] audit: type=1326 audit(1753345069.451:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6522 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  173.430494][ T6549] netlink: 'syz.5.769': attribute type 1 has an invalid length.
[  173.759201][ T6560] loop2: detected capacity change from 0 to 64
[  174.111626][ T6536] loop1: detected capacity change from 0 to 32768
[  174.139447][  T125] kernel write not supported for file /snd/midiC2D0 (pid: 125 comm: kworker/0:2)
[  174.216053][ T6536] ERROR: (device loop1): dbAllocAG: allocation request is larger than the allocation group size
[  174.216053][ T6536] 
[  174.297040][ T6574] loop5: detected capacity change from 0 to 256
[  174.313941][ T6536] ERROR: (device loop1): remounting filesystem as read-only
[  174.359900][ T6536] ERROR: (device loop1): dbDiscardAG: -EIO
[  174.359900][ T6536] 
[  174.389590][ T6574] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  174.578333][ T6582] netlink: 72 bytes leftover after parsing attributes in process `syz.4.782'.
[  174.692071][ T6581] loop0: detected capacity change from 0 to 1764
[  175.035213][ T6593] loop1: detected capacity change from 0 to 16
[  175.079584][ T6593] erofs: (device loop1): mounted with root inode @ nid 36.
[  175.158504][ T6598] netlink: 20 bytes leftover after parsing attributes in process `syz.2.788'.
[  175.447954][ T6601] loop5: detected capacity change from 0 to 16
[  175.504719][ T6601] erofs: (device loop5): mounted with root inode @ nid 36.
[  176.295599][ T6591] loop4: detected capacity change from 0 to 32768
[  176.326734][ T6629] loop1: detected capacity change from 0 to 1024
[  176.396256][ T6591] JBD2: Ignoring recovery information on journal
[  176.453427][ T6629] hfsplus: bad catalog entry type
[  176.611822][ T6591] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  176.625369][   T75] hfsplus: b-tree write err: -5, ino 4
[  176.798688][ T6591] (syz.4.786,6591,1):ocfs2_reflink_ioctl:4426 ERROR: status = -14
[  177.030216][ T4264] ocfs2: Unmounting device (7,4) on (node local)
[  177.418309][ T6656] loop1: detected capacity change from 0 to 2048
[  177.463864][ T6656] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  177.577046][ T6658] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  177.622558][   T26] audit: type=1326 audit(1753345074.421:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.5.813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  177.717866][   T26] audit: type=1326 audit(1753345074.421:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.5.813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  177.845636][   T26] audit: type=1326 audit(1753345074.421:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.5.813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  177.975583][ T6636] loop2: detected capacity change from 0 to 32768
[  177.983242][   T26] audit: type=1326 audit(1753345074.421:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.5.813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  178.138197][   T26] audit: type=1326 audit(1753345074.421:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.5.813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  178.294907][   T26] audit: type=1326 audit(1753345074.421:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.5.813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  178.373184][   T26] audit: type=1326 audit(1753345074.421:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.5.813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f805758e9a9 code=0x7ffc0000
[  178.630790][ T6689] loop4: detected capacity change from 0 to 1024
[  178.868312][ T5421] hfsplus: b-tree write err: -5, ino 4
[  178.947229][ T4340] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  179.142203][ T4340] usb 2-1: Using ep0 maxpacket: 8
[  179.148075][ T4340] usb 2-1: too many configurations: 120, using maximum allowed: 8
[  179.181396][ T4340] usb 2-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  179.212078][ T4340] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=24
[  179.225827][ T4340] usb 2-1: Product: syz
[  179.230051][ T4340] usb 2-1: Manufacturer: syz
[  179.241932][ T4340] usb 2-1: SerialNumber: syz
[  179.254672][ T4340] usb 2-1: config 0 descriptor??
[  179.271649][ T4340] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  179.299271][ T4340] usb 2-1: setting power ON
[  179.305023][ T4340] dvb-usb: bulk message failed: -22 (2/0)
[  179.327278][ T4340] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  179.347895][ T4340] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  179.362173][ T6671] loop5: detected capacity change from 0 to 40427
[  179.381560][ T4340] usb 2-1: media controller created
[  179.417204][ T4340] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  179.449738][ T6671] F2FS-fs (loop5): Found nat_bits in checkpoint
[  179.475206][ T6693] dvb-usb: bulk message failed: -22 (3/0)
[  179.511988][ T6693] cxusb: i2c wr: len=80 is too big!
[  179.511988][ T6693] 
[  179.533765][ T4340] usb 2-1: selecting invalid altsetting 6
[  179.539887][ T4340] usb 2-1: digital interface selection failed (-22)
[  179.582097][ T4340] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  179.612193][ T4340] usb 2-1: setting power OFF
[  179.618653][ T4340] dvb-usb: bulk message failed: -22 (2/0)
[  179.628449][ T6671] F2FS-fs (loop5): Cannot turn on quotas: -2 on 2
[  179.635031][ T4340] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  179.635052][ T4340] (NULL device *): no alternate interface
[  179.708337][ T6671] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  179.735235][ T4340] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  179.797831][ T4340] usb 2-1: USB disconnect, device number 7
[  179.850586][ T6665] loop0: detected capacity change from 0 to 32768
[  179.939354][   T26] audit: type=1800 audit(1753345076.731:47): pid=6665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.812" name="file1" dev="loop0" ino=4 res=0 errno=0
[  180.005421][ T5304] syz-executor: attempt to access beyond end of device
[  180.005421][ T5304] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  180.440699][ T6702] loop4: detected capacity change from 0 to 32768
[  180.477195][ T6715] netlink: 36 bytes leftover after parsing attributes in process `syz.1.828'.
[  180.556639][ T6715] netlink: 36 bytes leftover after parsing attributes in process `syz.1.828'.
[  180.610212][ T6702] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  180.823726][ T4264] ocfs2: Unmounting device (7,4) on (node local)
[  180.935329][ T6726] loop1: detected capacity change from 0 to 64
[  181.132190][ T6731] loop2: detected capacity change from 0 to 256
[  181.192923][ T6731] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  181.270091][ T6731] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  181.366030][ T6731] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  181.589419][ T6731] exFAT-fs (loop2): hint_cluster is invalid (17)
[  181.619370][ T6731] exFAT-fs (loop2): error, invalid access to FAT (entry 0xffffffff)
[  181.689129][ T6731] exFAT-fs (loop2): Filesystem has been set read-only
[  181.733072][ T6731] exFAT-fs (loop2): error, invalid access to FAT (entry 0xffffffff)
[  182.122090][ T4569] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  182.333986][ T4569] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  182.362312][ T4569] usb 2-1: New USB device found, idVendor=060b, idProduct=0001, bcdDevice= 0.00
[  182.383502][ T4569] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.421067][ T4569] usb 2-1: config 0 descriptor??
[  182.546429][ T6768] loop4: detected capacity change from 0 to 256
[  182.574365][ T6768] FAT-fs (loop4): Directory bread(block 1285) failed
[  182.848790][ T4569] macally 0003:060B:0001.0011: unknown main item tag 0x0
[  182.861976][ T4569] macally 0003:060B:0001.0011: item fetching failed at offset 3/5
[  182.892496][ T4569] macally: probe of 0003:060B:0001.0011 failed with error -22
[  183.059454][ T4340] usb 2-1: USB disconnect, device number 8
[  183.212777][ T6783] loop4: detected capacity change from 0 to 256
[  183.247647][ T6759] loop2: detected capacity change from 0 to 32768
[  183.256376][ T6783] exfat: Deprecated parameter 'namecase'
[  183.275850][ T6759] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.844 (6759)
[  183.291590][ T6783] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  183.344778][ T6759] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  183.379824][ T6759] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  183.406962][ T6759] BTRFS info (device loop2): using free space tree
[  183.693111][ T6804] Bluetooth: MGMT ver 1.22
[  183.700506][ T6759] BTRFS info (device loop2): enabling ssd optimizations
[  183.721386][ T6812] loop4: detected capacity change from 0 to 1024
[  183.817736][ T4268] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  184.035970][ T6816] Bluetooth: MGMT ver 1.22
[  184.146534][ T6818] netlink: 8 bytes leftover after parsing attributes in process `syz.0.864'.
[  184.295868][ T4406] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 9 /dev/loop2 scanned by udevd (4406)
[  184.412180][ T6824] loop5: detected capacity change from 0 to 4096
[  184.477402][ T6824] NILFS (loop5): invalid segment: Checksum error in segment payload
[  184.517394][ T6836] usb usb9: usbfs: process 6836 (syz.1.869) did not claim interface 0 before use
[  184.523241][ T6824] NILFS (loop5): trying rollback from an earlier position
[  184.651634][ T6824] NILFS (loop5): recovery complete
[  184.692339][ T6837] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  184.805177][ T6843] loop1: detected capacity change from 0 to 256
[  184.829130][ T6842] loop0: detected capacity change from 0 to 128
[  184.900483][ T6842] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  184.973499][ T6842] FAT-fs (loop0): Filesystem has been set read-only
[  185.541150][ T6835] loop4: detected capacity change from 0 to 32768
[  186.129238][ T6871] loop5: detected capacity change from 0 to 16
[  186.177807][ T6871] erofs: (device loop5): mounted with root inode @ nid 36.
[  186.799422][ T6865] loop4: detected capacity change from 0 to 32768
[  186.888667][   T26] audit: type=1800 audit(1753345083.681:48): pid=6865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.882" name="file1" dev="loop4" ino=4 res=0 errno=0
[  187.077367][ T6859] loop1: detected capacity change from 0 to 40427
[  187.136461][ T6859] F2FS-fs (loop1): invalid crc value
[  187.170599][ T6859] F2FS-fs (loop1): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[  187.216065][ T6859] F2FS-fs (loop1): Found nat_bits in checkpoint
[  187.362372][ T6884] loop4: detected capacity change from 0 to 64
[  187.365202][ T6868] loop2: detected capacity change from 0 to 32768
[  187.398905][ T6859] F2FS-fs (loop1): recover fsync data on readonly fs
[  187.429151][ T6868] XFS: ikeep mount option is deprecated.
[  187.460536][ T6859] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[  187.473263][ T6869] loop0: detected capacity change from 0 to 32768
[  187.489764][ T6859] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[  187.507960][ T6859] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  187.666122][ T6868] XFS (loop2): Mounting V5 Filesystem
[  187.809481][ T6898] loop5: detected capacity change from 0 to 512
[  187.817224][ T6898] EXT4-fs: Ignoring removed mblk_io_submit option
[  187.830307][ T6898] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  187.907077][ T6868] XFS (loop2): Ending clean mount
[  187.963914][ T6898] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  188.027797][ T6898] EXT4-fs (loop5): orphan cleanup on readonly fs
[  188.041559][ T6868] XFS (loop2): Quotacheck needed: Please wait.
[  188.066563][ T6898] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:477: comm syz.5.895: Invalid block bitmap block 0 in block_group 0
[  188.178921][ T6898] EXT4-fs (loop5): Remounting filesystem read-only
[  188.191085][ T6868] XFS (loop2): Quotacheck: Done.
[  188.199186][ T6898] Quota error (device loop5): write_blk: dquota write failed
[  188.255890][ T6898] Quota error (device loop5): write_blk: dquota write failed
[  188.312776][ T6898] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  188.335966][ T6898] EXT4-fs error (device loop5): ext4_acquire_dquot:6814: comm syz.5.895: Failed to acquire dquot type 1
[  188.372413][ T6898] EXT4-fs (loop5): Remounting filesystem read-only
[  188.379180][ T6898] Quota error (device loop5): write_blk: dquota write failed
[  188.428399][ T6898] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  188.429812][ T6903] netlink: 8 bytes leftover after parsing attributes in process `syz.4.898'.
[  188.448969][ T4268] XFS (loop2): Unmounting Filesystem
[  188.459423][ T6898] EXT4-fs error (device loop5): ext4_acquire_dquot:6814: comm syz.5.895: Failed to acquire dquot type 1
[  188.508718][ T6898] EXT4-fs (loop5): Remounting filesystem read-only
[  188.540235][ T6898] Quota error (device loop5): write_blk: dquota write failed
[  188.568544][ T6898] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  188.629342][ T6898] EXT4-fs error (device loop5): ext4_acquire_dquot:6814: comm syz.5.895: Failed to acquire dquot type 1
[  188.684522][ T6898] EXT4-fs (loop5): Remounting filesystem read-only
[  188.729210][ T6898] EXT4-fs (loop5): 1 orphan inode deleted
[  188.751615][ T6898] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  188.987465][ T5304] EXT4-fs (loop5): unmounting filesystem.
[  189.168576][ T6917] loop2: detected capacity change from 0 to 128
[  189.198305][ T6917] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  189.238799][ T6917] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  189.531974][  T125] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  189.582127][ T6826] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  189.712513][   T33] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  189.769519][  T125] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  189.795481][ T6826] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  189.811979][ T6826] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.813536][  T125] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  189.837521][ T6826] usb 6-1: config 0 descriptor??
[  189.852877][  T125] usb 2-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[  189.865352][  T125] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.901516][  T125] usb 2-1: config 0 descriptor??
[  190.271818][ T6826] ath6kl: Unsupported hardware version: 0x0
[  190.290279][ T6826] ath6kl: Failed to init ath6kl core: -22
[  190.304926][ T6928] loop4: detected capacity change from 0 to 32768
[  190.328457][ T6928] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.908 (6928)
[  190.368252][  T125] hkems 0003:2006:0118.0012: unknown main item tag 0x0
[  190.380150][  T125] hkems 0003:2006:0118.0012: unknown main item tag 0x0
[  190.387405][ T6826] ath6kl_usb: probe of 6-1:0.0 failed with error -22
[  190.406171][ T6934] netlink: 20 bytes leftover after parsing attributes in process `syz.2.911'.
[  190.419018][  T125] hkems 0003:2006:0118.0012: unknown main item tag 0x0
[  190.421950][ T6934] netlink: 152 bytes leftover after parsing attributes in process `syz.2.911'.
[  190.433816][  T125] hkems 0003:2006:0118.0012: unknown main item tag 0x0
[  190.437731][ T6928] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  190.442090][  T125] hkems 0003:2006:0118.0012: unknown main item tag 0x0
[  190.459499][  T125] hkems 0003:2006:0118.0012: unknown main item tag 0x0
[  190.459915][ T6928] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  190.467626][  T125] hkems 0003:2006:0118.0012: unknown main item tag 0x0
[  190.495368][ T6928] BTRFS info (device loop4): setting nodatacow, compression disabled
[  190.509671][ T6928] BTRFS info (device loop4): enabling ssd optimizations
[  190.513311][  T125] hkems 0003:2006:0118.0012: hidraw0: USB HID v0.00 Device [HID 2006:0118] on usb-dummy_hcd.1-1/input0
[  190.539554][  T125] hkems 0003:2006:0118.0012: no inputs found
[  190.540809][ T6928] BTRFS info (device loop4): setting datacow
[  190.549764][  T125] hkems 0003:2006:0118.0012: force feedback init failed
[  190.565535][ T5520] usb 6-1: USB disconnect, device number 4
[  190.581519][ T6928] BTRFS info (device loop4): doing ref verification
[  190.592142][ T6928] BTRFS info (device loop4): force clearing of disk cache
[  190.599339][ T6928] BTRFS info (device loop4): turning off barriers
[  190.614915][  T125] usb 2-1: USB disconnect, device number 9
[  190.632316][ T6928] BTRFS info (device loop4): using spread ssd allocation scheme
[  190.668342][ T6928] BTRFS info (device loop4): using free space tree
[  190.731793][ T6935] fido_id[6935]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  190.806701][ T6928] BTRFS info (device loop4): rebuilding free space tree
[  190.989206][ T4264] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  191.401824][   T26] audit: type=1326 audit(1753345088.191:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6964 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  191.454660][   T26] audit: type=1326 audit(1753345088.251:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6964 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f2aa778e9a9 code=0x7ffc0000
[  191.751006][ T6969] loop4: detected capacity change from 0 to 4096
[  191.788606][ T6969] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  191.938166][ T6975] loop2: detected capacity change from 0 to 512
[  191.945592][ T6959] loop5: detected capacity change from 0 to 32768
[  192.005654][ T6975] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -13
[  192.026128][ T4264] ntfs3: loop4: ntfs_sync_fs r=1a failed, -22.
[  192.108661][ T6975] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #13: comm syz.2.921: iget: bad i_size value: 12154757448730
[  192.134218][ T6959] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  192.152604][ T4264] ntfs3: loop4: ntfs_evict_inode r=1a failed, -22.
[  192.159199][ T4264] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  192.229587][ T6959] OCFS2: ERROR (device loop5): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  192.261419][ T6975] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.921: couldn't read orphan inode 13 (err -117)
[  192.332442][ T6959] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  192.343903][ T6975] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  192.386190][ T6959] OCFS2: File system is now read-only.
[  192.403897][ T6959] (syz.5.914,6959,1):ocfs2_find_leaf:1941 ERROR: status = -30
[  192.436123][ T6975] fscrypt (loop2, inode 2): Error -61 getting encryption context
[  192.444139][ T6959] (syz.5.914,6959,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  192.511843][ T6959] (syz.5.914,6959,1):ocfs2_fiemap:776 ERROR: status = -30
[  192.603946][ T6992] loop4: detected capacity change from 0 to 512
[  192.613373][ T4268] EXT4-fs (loop2): unmounting filesystem.
[  192.735706][ T5304] ocfs2: Unmounting device (7,5) on (node local)
[  192.754299][ T6992] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.927: casefold flag without casefold feature
[  192.914751][ T6992] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.927: couldn't read orphan inode 15 (err -117)
[  192.960206][ T6992] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  193.238655][ T4264] EXT4-fs (loop4): unmounting filesystem.
[  193.929431][ T7031] loop0: detected capacity change from 0 to 64
[  194.150922][ T7034] loop4: detected capacity change from 0 to 512
[  194.178540][ T7034] EXT4-fs: Ignoring removed i_version option
[  194.194935][ T7005] loop1: detected capacity change from 0 to 32768
[  194.236211][ T7034] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  194.297066][ T7005] ialloc: diAlloc returned -17!
[  194.311079][ T7034] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e12c, mo2=0002]
[  194.358110][ T7005] ea_get: invalid extended attribute
[  194.396247][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.401792][ T7009] loop2: detected capacity change from 0 to 40427
[  194.402835][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  194.417550][ T7034] System zones: 1-12
[  194.424580][ T7034] EXT4-fs (loop4): orphan cleanup on readonly fs
[  194.432334][ T7005] ffff888055a18330: 04 00 00 00                                      ....
[  194.434094][ T7009] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  194.453156][ T7009] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  194.466114][ T7034] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.946: invalid indirect mapped block 12 (level 1)
[  194.484934][ T7034] EXT4-fs (loop4): Remounting filesystem read-only
[  194.501046][ T7009] F2FS-fs (loop2): invalid crc value
[  194.508827][ T7034] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.946: invalid indirect mapped block 2 (level 2)
[  194.530145][ T7034] EXT4-fs (loop4): Remounting filesystem read-only
[  194.538658][ T7009] F2FS-fs (loop2): Found nat_bits in checkpoint
[  194.557987][ T7034] EXT4-fs (loop4): 1 truncate cleaned up
[  194.563809][ T7034] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  194.679910][ T7009] F2FS-fs (loop2): Cannot turn on quotas: -2 on 2
[  194.705341][ T7009] F2FS-fs (loop2): Start checkpoint disabled!
[  194.767591][ T4264] EXT4-fs (loop4): unmounting filesystem.
[  194.776833][ T7009] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  194.789695][ T7045] process 'syz.0.948' launched './file1' with NULL argv: empty string added
[  194.822109][ T7009] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  195.171990][ T5520] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  195.216836][ T7051] netlink: 4 bytes leftover after parsing attributes in process `syz.5.952'.
[  195.238386][   T33] kworker/u4:2: attempt to access beyond end of device
[  195.238386][   T33] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  195.362143][ T5520] usb 2-1: Using ep0 maxpacket: 32
[  195.369735][ T5520] usb 2-1: config 0 has an invalid interface number: 50 but max is 0
[  195.411996][ T5520] usb 2-1: config 0 has an invalid interface number: 164 but max is 0
[  195.420290][ T5520] usb 2-1: config 0 has 2 interfaces, different from the descriptor's value: 1
[  195.452153][ T5520] usb 2-1: config 0 has no interface number 0
[  195.458331][ T5520] usb 2-1: config 0 has no interface number 1
[  195.486058][ T5520] usb 2-1: too many endpoints for config 0 interface 164 altsetting 124: 110, using maximum allowed: 30
[  195.532270][ T5520] usb 2-1: config 0 interface 164 altsetting 124 has 0 endpoint descriptors, different from the interface descriptor's value: 110
[  195.577018][ T5520] usb 2-1: config 0 interface 50 has no altsetting 0
[  195.593385][ T5520] usb 2-1: config 0 interface 164 has no altsetting 0
[  195.618946][ T5520] usb 2-1: New USB device found, idVendor=0baf, idProduct=00f6, bcdDevice=a8.4a
[  195.649005][ T5520] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.694979][ T5520] usb 2-1: Product: syz
[  195.699236][ T5520] usb 2-1: Manufacturer: syz
[  195.723006][ T5520] usb 2-1: SerialNumber: syz
[  195.747451][ T5520] usb 2-1: config 0 descriptor??
[  195.764714][ T5520] usb 2-1: [ueagle-atm] ADSL device founded vid (0XBAF) pid (0XF6) Rev (0XA84A): Eagle I
[  195.965711][ T5520] usb 2-1: reset high-speed USB device number 10 using dummy_hcd
[  196.005401][ T7069] loop4: detected capacity change from 0 to 256
[  196.037697][ T7069] exfat: Deprecated parameter 'utf8'
[  196.055245][ T7069] exfat: Deprecated parameter 'utf8'
[  196.092178][ T7069] exfat: Deprecated parameter 'namecase'
[  196.101044][ T7071] netlink: 277 bytes leftover after parsing attributes in process `syz.2.961'.
[  196.133610][ T7069] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  196.671980][ T5520] usb 2-1: device descriptor read/64, error -71
[  196.738577][ T7084] netlink: 24 bytes leftover after parsing attributes in process `syz.0.967'.
[  196.913906][ T7068] loop5: detected capacity change from 0 to 40427
[  196.943759][ T5520] usb 2-1: reset high-speed USB device number 10 using dummy_hcd
[  196.976473][ T7068] F2FS-fs (loop5): build fault injection attr: rate: 771, type: 0x3ffff
[  197.004322][ T7090] loop0: detected capacity change from 0 to 8
[  197.014906][ T7068] F2FS-fs (loop5): invalid crc value
[  197.071434][ T7068] F2FS-fs (loop5): Found nat_bits in checkpoint
[  197.245181][ T7077] loop4: detected capacity change from 0 to 32768
[  197.280719][ T7077] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.964 (7077)
[  197.329296][ T7068] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  197.357525][ T5520] usb 2-1: failed to restore interface 50 altsetting 4 (error=-71)
[  197.376709][ T5520] usb 2-1: [ueagle-atm] pre-firmware device, uploading firmware
[  197.414758][ T5520] usb 2-1: [ueagle-atm] loading firmware ueagle-atm/eagleI.fw
[  197.461406][ T5520] usb 2-1: [ueagle-atm] ADSL device founded vid (0XBAF) pid (0XF6) Rev (0XA84A): Eagle I
[  197.502118][ T5520] usb 2-1: [ueagle-atm] pre-firmware device, uploading firmware
[  197.545749][ T5520] usb 2-1: [ueagle-atm] loading firmware ueagle-atm/eagleI.fw
[  197.595211][ T5520] usb 2-1: USB disconnect, device number 10
[  197.615406][ T5304] syz-executor: attempt to access beyond end of device
[  197.615406][ T5304] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  197.640063][ T7077] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  197.690895][ T7077] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  197.721219][ T4352] usb 2-1: Direct firmware load for ueagle-atm/eagleI.fw failed with error -2
[  197.737333][ T7077] BTRFS info (device loop4): using free space tree
[  197.745763][ T4352] usb 2-1: Falling back to sysfs fallback for: ueagle-atm/eagleI.fw
[  197.792096][ T4352] kobject_add_internal failed for firmware (error: -2 parent: 2-1)
[  197.833879][ T4352] firmware ueagle-atm!eagleI.fw: fw_load_sysfs_fallback: device_register failed
[  197.844039][ T4352] usb 2-1: [UEAGLE-ATM] firmware is not available
[  197.850870][ T4352] usb 2-1: Direct firmware load for ueagle-atm/eagleI.fw failed with error -2
[  197.861423][ T4352] usb 2-1: Falling back to sysfs fallback for: ueagle-atm/eagleI.fw
[  197.870134][ T4352] kobject_add_internal failed for firmware (error: -2 parent: 2-1)
[  197.879109][ T4352] firmware ueagle-atm!eagleI.fw: fw_load_sysfs_fallback: device_register failed
[  197.888497][ T4352] usb 2-1: [UEAGLE-ATM] firmware is not available
[  198.050587][ T7077] BTRFS info (device loop4): enabling ssd optimizations
[  198.174337][ T7128] loop2: detected capacity change from 0 to 8
[  198.222857][ T7128] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  198.239312][ T4772] udevd[4772]: incorrect cramfs checksum on /dev/loop2
[  198.397034][ T7133] loop0: detected capacity change from 0 to 1024
[  198.543471][ T4264] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  198.629005][   T75] hfsplus: b-tree write err: -5, ino 4
[  198.706393][ T7137] netlink: 8 bytes leftover after parsing attributes in process `syz.1.981'.
[  198.758631][ T7137] nbd: socks must be embedded in a SOCK_ITEM attr
[  199.155245][ T7145] loop0: detected capacity change from 0 to 128
[  199.209303][ T7124] loop5: detected capacity change from 0 to 32768
[  199.218126][ T7145] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  199.242188][ T7124] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop5 scanned by syz.5.974 (7124)
[  199.258794][ T7124] BTRFS info (device loop5): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  199.270156][ T7124] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[  199.279279][ T7124] BTRFS info (device loop5): using free space tree
[  199.375068][ T7145] ext4 filesystem being mounted at /199/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  199.575091][ T7170] loop2: detected capacity change from 0 to 16
[  199.583882][ T7172] mkiss: ax0: crc mode is auto.
[  199.597315][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  199.626097][ T7170] erofs: (device loop2): mounted with root inode @ nid 36.
[  199.707502][ T7124] BTRFS info (device loop5): enabling ssd optimizations
[  199.857178][ T7178] loop0: detected capacity change from 0 to 512
[  199.886334][ T5304] BTRFS info (device loop5): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  199.923335][ T7178] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  200.031052][ T7178] EXT4-fs (loop0): 1 truncate cleaned up
[  200.036917][ T7178] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  200.285698][ T7162] loop1: detected capacity change from 0 to 32768
[  200.549754][ T7162] XFS (loop1): Mounting V5 Filesystem
[  200.577080][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  200.849070][ T7162] XFS (loop1): Ending clean mount
[  200.889022][ T7162] XFS (loop1): Quotacheck needed: Please wait.
[  201.051528][ T7162] XFS (loop1): Quotacheck: Done.
[  201.335465][ T4263] XFS (loop1): Unmounting Filesystem
[  201.593589][   T48] Bluetooth: hci1: command 0x0406 tx timeout
[  201.602047][   T48] Bluetooth: hci2: command 0x0406 tx timeout
[  201.608151][   T48] Bluetooth: hci4: command 0x0406 tx timeout
[  201.614295][ T4284] Bluetooth: hci3: command 0x0406 tx timeout
[  201.759620][ T7208] loop0: detected capacity change from 0 to 32768
[  201.838949][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  201.838964][   T26] audit: type=1800 audit(1753345098.631:55): pid=7208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.995" name="bus" dev="loop0" ino=7 res=0 errno=0
[  202.010480][ T7203] loop4: detected capacity change from 0 to 40427
[  202.051455][ T7219] loop2: detected capacity change from 0 to 512
[  202.064095][ T7203] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  202.088090][ T7203] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  202.115010][ T7219] EXT4-fs: Ignoring removed bh option
[  202.148285][ T7221] loop1: detected capacity change from 0 to 512
[  202.158904][ T7203] F2FS-fs (loop4): invalid crc value
[  202.165489][ T7219] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  202.179809][ T7221] EXT4-fs: Ignoring removed i_version option
[  202.225284][ T7221] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  202.248348][ T7203] F2FS-fs (loop4): Found nat_bits in checkpoint
[  202.304132][ T7219] EXT4-fs (loop2): 1 truncate cleaned up
[  202.338837][ T7219] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  202.404733][ T7221] EXT4-fs (loop1): 1 truncate cleaned up
[  202.429658][   T26] audit: type=1800 audit(1753345099.221:56): pid=7219 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1005" name="file0" dev="loop2" ino=13 res=0 errno=0
[  202.441143][ T7221] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  202.541194][ T7203] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  202.574432][ T7203] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  202.673344][ T4268] EXT4-fs (loop2): unmounting filesystem.
[  202.695044][ T4263] EXT4-fs (loop1): unmounting filesystem.
[  203.136464][   T22] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  203.357724][   T22] usb 3-1: Using ep0 maxpacket: 16
[  203.375576][ T7254] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1017'.
[  203.388353][   T22] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  203.412013][   T22] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  203.446681][ T7256] vivid-000: disconnect
[  203.449718][   T22] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  203.457864][ T7255] vivid-000: reconnect
[  203.470926][   T22] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.490709][   T22] usb 3-1: Product: syz
[  203.506364][   T22] usb 3-1: Manufacturer: syz
[  203.516001][   T22] usb 3-1: SerialNumber: syz
[  203.767982][ T7266] [U] ¦
[  203.952744][   T22] usb 3-1: cannot find UAC_HEADER
[  203.985094][   T22] snd-usb-audio: probe of 3-1:1.0 failed with error -22
[  204.035623][ T4772] udevd[4772]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  204.178533][ T5520] usb 3-1: USB disconnect, device number 8
[  204.345524][ T7274] loop1: detected capacity change from 0 to 32768
[  204.372235][ T7274] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1024 (7274)
[  204.434760][ T7274] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  204.456937][ T7274] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  204.474040][ T7274] BTRFS info (device loop1): using free space tree
[  204.532203][ T7274] BTRFS info (device loop1): enabling ssd optimizations
[  204.625733][ T4263] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  204.722015][ T5520] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  204.891819][ T7307] loop5: detected capacity change from 0 to 128
[  204.936548][ T5520] usb 5-1: Using ep0 maxpacket: 32
[  204.950197][ T5520] usb 5-1: config 0 has an invalid interface number: 50 but max is 0
[  204.972701][ T5520] usb 5-1: config 0 has an invalid interface number: 164 but max is 0
[  204.982280][ T5520] usb 5-1: config 0 has 2 interfaces, different from the descriptor's value: 1
[  204.991297][ T5520] usb 5-1: config 0 has no interface number 0
[  205.007884][ T5520] usb 5-1: config 0 has no interface number 1
[  205.014636][ T5520] usb 5-1: too many endpoints for config 0 interface 164 altsetting 124: 110, using maximum allowed: 30
[  205.038418][ T5520] usb 5-1: config 0 interface 164 altsetting 124 has 0 endpoint descriptors, different from the interface descriptor's value: 110
[  205.052235][ T5520] usb 5-1: config 0 interface 50 has no altsetting 0
[  205.058985][ T5520] usb 5-1: config 0 interface 164 has no altsetting 0
[  205.133748][ T5520] usb 5-1: New USB device found, idVendor=0baf, idProduct=00f6, bcdDevice=a8.4a
[  205.143237][ T5520] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.151300][ T5520] usb 5-1: Product: syz
[  205.156560][ T5520] usb 5-1: Manufacturer: syz
[  205.161222][ T5520] usb 5-1: SerialNumber: syz
[  205.180467][ T5520] usb 5-1: config 0 descriptor??
[  205.203794][ T5520] usb 5-1: [ueagle-atm] ADSL device founded vid (0XBAF) pid (0XF6) Rev (0XA84A): Eagle I
[  205.362226][ T5520] usb 5-1: reset high-speed USB device number 8 using dummy_hcd
[  205.492175][    T7] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  205.566022][ T7321] loop1: detected capacity change from 0 to 512
[  205.605856][ T7321] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  205.619910][ T7321] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.684318][    T7] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  205.699488][    T7] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2
[  205.709926][    T7] usb 3-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  205.710695][ T4263] EXT4-fs (loop1): unmounting filesystem.
[  205.719951][    T7] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.762870][    T7] usb 3-1: config 0 descriptor??
[  205.786795][    T7] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  205.798064][    T7] dvb-usb: bulk message failed: -22 (3/0)
[  205.820003][    T7] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  205.832118][    T7] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  205.842103][    T7] usb 3-1: media controller created
[  205.849292][    T7] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  205.878849][    T7] dvb-usb: bulk message failed: -22 (6/0)
[  205.902111][    T7] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  205.923532][    T7] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input14
[  205.969157][    T7] dvb-usb: schedule remote query interval to 150 msecs.
[  205.981374][ T7309] dvb-usb: bulk message failed: -22 (2/0)
[  206.017109][    T7] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  206.066985][    T7] usb 3-1: USB disconnect, device number 9
[  206.073128][ T5520] usb 5-1: device descriptor read/64, error -71
[  206.101951][    T7] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  206.244322][ T7336] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1047'.
[  206.255817][ T7336] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1047'.
[  206.265142][ T7336] netlink: 'syz.5.1047': attribute type 12 has an invalid length.
[  206.341984][ T5520] usb 5-1: reset high-speed USB device number 8 using dummy_hcd
[  206.402195][ T7340] netlink: 'syz.5.1048': attribute type 10 has an invalid length.
[  206.729711][ T5520] usb 5-1: failed to restore interface 50 altsetting 4 (error=-71)
[  206.746399][ T5520] usb 5-1: [ueagle-atm] pre-firmware device, uploading firmware
[  206.774991][ T5520] usb 5-1: [ueagle-atm] loading firmware ueagle-atm/eagleI.fw
[  206.803922][ T5520] usb 5-1: [ueagle-atm] ADSL device founded vid (0XBAF) pid (0XF6) Rev (0XA84A): Eagle I
[  206.844465][ T5520] usb 5-1: [ueagle-atm] pre-firmware device, uploading firmware
[  206.862845][ T5520] usb 5-1: [ueagle-atm] loading firmware ueagle-atm/eagleI.fw
[  206.886804][ T5520] usb 5-1: USB disconnect, device number 8
[  206.893479][    T7] usb 5-1: Direct firmware load for ueagle-atm/eagleI.fw failed with error -2
[  206.943605][    T7] usb 5-1: Falling back to sysfs fallback for: ueagle-atm/eagleI.fw
[  206.974019][    T7] ==================================================================
[  206.982151][    T7] BUG: KASAN: use-after-free in kernfs_new_node+0x166/0x250
[  206.989484][    T7] Read of size 4 at addr ffff8880592359f8 by task kworker/0:0/7
[  206.997157][    T7] 
[  206.999539][    T7] CPU: 0 PID: 7 Comm: kworker/0:0 Not tainted 6.1.147-syzkaller #0
[  207.007470][    T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  207.017573][    T7] Workqueue: events request_firmware_work_func
[  207.023789][    T7] Call Trace:
[  207.027099][    T7]  <TASK>
[  207.030092][    T7]  dump_stack_lvl+0x168/0x22e
[  207.034807][    T7]  ? __lock_acquire+0x7c50/0x7c50
[  207.039874][    T7]  ? show_regs_print_info+0x12/0x12
[  207.045111][    T7]  ? load_image+0x3b0/0x3b0
[  207.049664][    T7]  ? __virt_addr_valid+0x465/0x540
[  207.054816][    T7]  ? kernfs_new_node+0x166/0x250
[  207.059785][    T7]  print_report+0xa8/0x200
[  207.064258][    T7]  kasan_report+0x10b/0x140
[  207.068805][    T7]  ? kernfs_new_node+0x166/0x250
[  207.073784][    T7]  kasan_check_range+0x27b/0x290
[  207.078765][    T7]  kernfs_new_node+0x166/0x250
[  207.083562][    T7]  kernfs_create_dir_ns+0x40/0x120
[  207.088724][    T7]  sysfs_create_dir_ns+0x120/0x280
[  207.093896][    T7]  ? kthread+0x29d/0x330
[  207.098191][    T7]  ? sysfs_warn_dup+0xa0/0xa0
[  207.102912][    T7]  ? do_raw_spin_unlock+0x11d/0x230
[  207.108163][    T7]  kobject_add_internal+0x6b8/0xc80
[  207.113412][    T7]  kobject_add+0x152/0x210
[  207.117870][    T7]  ? kobject_init+0x1d0/0x1d0
[  207.122594][    T7]  ? kobject_init+0x7f/0x1d0
[  207.127226][    T7]  get_device_parent+0x380/0x3f0
[  207.132201][    T7]  device_add+0x335/0xfb0
[  207.136565][    T7]  ? device_initialize+0x247/0x450
[  207.141714][    T7]  firmware_fallback_sysfs+0x2e5/0x930
[  207.147218][    T7]  ? _request_firmware+0xbe4/0x1290
[  207.152458][    T7]  _request_firmware+0xcad/0x1290
[  207.157529][    T7]  ? request_firmware+0x50/0x50
[  207.162416][    T7]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  207.168440][    T7]  ? read_lock_is_recursive+0x10/0x10
[  207.173851][    T7]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  207.179791][    T7]  request_firmware_work_func+0xac/0x1b0
[  207.185475][    T7]  ? process_one_work+0x7a1/0x1160
[  207.190621][    T7]  process_one_work+0x898/0x1160
[  207.195621][    T7]  ? worker_detach_from_pool+0x240/0x240
[  207.201311][    T7]  ? _raw_spin_lock_irq+0xab/0xe0
[  207.206392][    T7]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  207.211808][    T7]  ? kthread_data+0x4b/0xc0
[  207.216366][    T7]  worker_thread+0xaa2/0x1250
[  207.221103][    T7]  kthread+0x29d/0x330
[  207.225228][    T7]  ? worker_clr_flags+0x1a0/0x1a0
[  207.230295][    T7]  ? kthread_blkcg+0xd0/0xd0
[  207.234940][    T7]  ret_from_fork+0x1f/0x30
[  207.239422][    T7]  </TASK>
[  207.242509][    T7] 
[  207.244856][    T7] Allocated by task 5520:
[  207.249202][    T7]  kasan_set_track+0x4b/0x70
[  207.253831][    T7]  __kasan_slab_alloc+0x6b/0x80
[  207.258727][    T7]  slab_post_alloc_hook+0x4b/0x480
[  207.263878][    T7]  kmem_cache_alloc+0x123/0x2f0
[  207.268780][    T7]  __kernfs_new_node+0xd4/0x7d0
[  207.273675][    T7]  kernfs_new_node+0x148/0x250
[  207.278482][    T7]  kernfs_create_dir_ns+0x40/0x120
[  207.283637][    T7]  sysfs_create_dir_ns+0x120/0x280
[  207.288796][    T7]  kobject_add_internal+0x6b8/0xc80
[  207.294051][    T7]  kobject_add+0x152/0x210
[  207.298517][    T7]  device_add+0x483/0xfb0
[  207.302889][    T7]  usb_new_device+0xd4d/0x1620
[  207.307703][    T7]  hub_event+0x2d5e/0x54e0
[  207.312171][    T7]  process_one_work+0x898/0x1160
[  207.317239][    T7]  worker_thread+0xaa2/0x1250
[  207.321989][    T7]  kthread+0x29d/0x330
[  207.324715][ T7351] loop2: detected capacity change from 0 to 32768
[  207.326133][    T7]  ret_from_fork+0x1f/0x30
[  207.326164][    T7] 
[  207.326169][    T7] Freed by task 4772:
[  207.343390][    T7]  kasan_set_track+0x4b/0x70
[  207.348041][    T7]  kasan_save_free_info+0x2d/0x50
[  207.353121][    T7]  ____kasan_slab_free+0x126/0x1e0
[  207.358256][    T7]  slab_free_freelist_hook+0x131/0x1a0
[  207.363741][    T7]  kmem_cache_free+0xf7/0x290
[  207.368435][    T7]  kernfs_put+0x319/0x490
[  207.372780][    T7]  evict+0x485/0x870
[  207.376685][    T7]  __dentry_kill+0x431/0x650
[  207.381294][    T7]  dentry_kill+0xb8/0x290
[  207.385644][    T7]  dput+0xfa/0x1d0
[  207.389386][    T7]  lookup_fast+0x318/0x4d0
[  207.393815][    T7]  link_path_walk+0x5f2/0xe50
[  207.398503][    T7]  path_openat+0x276/0x2e70
[  207.403011][    T7]  do_filp_open+0x1c1/0x3c0
[  207.407534][    T7]  do_sys_openat2+0x142/0x490
[  207.412268][    T7]  __x64_sys_openat+0x135/0x160
[  207.417138][    T7]  do_syscall_64+0x4c/0xa0
[  207.421567][    T7]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  207.427476][    T7] 
[  207.429804][    T7] The buggy address belongs to the object at ffff8880592359f8
[  207.429804][    T7]  which belongs to the cache kernfs_node_cache of size 168
[  207.444385][    T7] The buggy address is located 0 bytes inside of
[  207.444385][    T7]  168-byte region [ffff8880592359f8, ffff888059235aa0)
[  207.457591][    T7] 
[  207.459923][    T7] The buggy address belongs to the physical page:
[  207.466346][    T7] page:ffffea0001648d40 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x59235
[  207.476520][    T7] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[  207.484102][    T7] raw: 00fff00000000200 ffffea0001655380 dead000000000006 ffff888140009c80
[  207.492725][    T7] raw: 0000000000000000 0000000000110011 00000001ffffffff 0000000000000000
[  207.501313][    T7] page dumped because: kasan: bad access detected
[  207.507739][    T7] page_owner tracks the page as allocated
[  207.513458][    T7] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 4268, tgid 4268 (syz-executor), ts 75912031801, free_ts 23214293270
[  207.531789][    T7]  post_alloc_hook+0x173/0x1a0
[  207.536600][    T7]  get_page_from_freelist+0x1a26/0x1ac0
[  207.542181][    T7]  __alloc_pages+0x1df/0x4e0
[  207.546787][    T7]  alloc_slab_page+0x5d/0x160
[  207.551481][    T7]  new_slab+0x87/0x2c0
[  207.555562][    T7]  ___slab_alloc+0xbc6/0x1220
[  207.560252][    T7]  kmem_cache_alloc+0x1b7/0x2f0
[  207.565110][    T7]  __kernfs_new_node+0xd4/0x7d0
[  207.569975][    T7]  kernfs_new_node+0x148/0x250
[  207.574745][    T7]  kernfs_create_link+0xa3/0x200
[  207.579695][    T7]  sysfs_do_create_link_sd+0x83/0x110
[  207.585080][    T7]  br_sysfs_addif+0x75/0x220
[  207.589691][    T7]  br_add_if+0x3a6/0xec0
[  207.593946][    T7]  do_setlink+0xdc0/0x3c40
[  207.598376][    T7]  rtnl_newlink+0x17d6/0x1ff0
[  207.603068][    T7]  rtnetlink_rcv_msg+0x79b/0xed0
[  207.608026][    T7] page last free stack trace:
[  207.612780][    T7]  free_unref_page_prepare+0x8b4/0x9a0
[  207.618257][    T7]  free_unref_page+0x2e/0x3f0
[  207.622957][    T7]  free_contig_range+0x9d/0x150
[  207.627829][    T7]  destroy_args+0xef/0x8bf
[  207.632356][    T7]  debug_vm_pgtable+0x32a/0x37e
[  207.637307][    T7]  do_one_initcall+0x214/0x7a0
[  207.642104][    T7]  do_initcall_level+0x137/0x1e4
[  207.647067][    T7]  do_initcalls+0x4b/0x8a
[  207.651455][    T7]  kernel_init_freeable+0x3fa/0x5ac
[  207.656665][    T7]  kernel_init+0x19/0x1b0
[  207.661031][    T7]  ret_from_fork+0x1f/0x30
[  207.665485][    T7] 
[  207.667827][    T7] Memory state around the buggy address:
[  207.673471][    T7]  ffff888059235880: fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc fc
[  207.681543][    T7]  ffff888059235900: fc fc fa fb fb fb fb fb fb fb fb fb fb fb fb fb
[  207.689613][    T7] >ffff888059235980: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fa
[  207.697677][    T7]                                                                 ^
[  207.705661][    T7]  ffff888059235a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  207.713732][    T7]  ffff888059235a80: fb fb fb fb fc fc fc fc fc fc fc fc fa fb fb fb
[  207.721796][    T7] ==================================================================
[  207.751849][    T7] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  207.759105][    T7] CPU: 0 PID: 7 Comm: kworker/0:0 Not tainted 6.1.147-syzkaller #0
[  207.767039][    T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  207.777127][    T7] Workqueue: events request_firmware_work_func
[  207.783335][    T7] Call Trace:
[  207.786643][    T7]  <TASK>
[  207.789599][    T7]  dump_stack_lvl+0x168/0x22e
[  207.794316][    T7]  ? memcpy+0x3c/0x60
[  207.798346][    T7]  ? show_regs_print_info+0x12/0x12
[  207.803581][    T7]  ? load_image+0x3b0/0x3b0
[  207.808124][    T7]  panic+0x2c9/0x710
[  207.812065][    T7]  ? bpf_jit_dump+0xd0/0xd0
[  207.816608][    T7]  ? _raw_spin_unlock_irqrestore+0xf6/0x100
[  207.822546][    T7]  ? _raw_spin_unlock+0x40/0x40
[  207.825312][ T7351] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  207.835434][    T7]  ? print_memory_metadata+0x314/0x400
[  207.840951][    T7]  check_panic_on_warn+0x80/0xa0
[  207.845932][    T7]  ? kernfs_new_node+0x166/0x250
[  207.850912][    T7]  end_report+0x66/0x110
[  207.855195][    T7]  kasan_report+0x118/0x140
[  207.859722][    T7]  ? kernfs_new_node+0x166/0x250
[  207.864676][    T7]  kasan_check_range+0x27b/0x290
[  207.869634][    T7]  kernfs_new_node+0x166/0x250
[  207.874415][    T7]  kernfs_create_dir_ns+0x40/0x120
[  207.879536][    T7]  sysfs_create_dir_ns+0x120/0x280
[  207.884659][    T7]  ? kthread+0x29d/0x330
[  207.888922][    T7]  ? sysfs_warn_dup+0xa0/0xa0
[  207.893617][    T7]  ? do_raw_spin_unlock+0x11d/0x230
[  207.898845][    T7]  kobject_add_internal+0x6b8/0xc80
[  207.904070][    T7]  kobject_add+0x152/0x210
[  207.908507][    T7]  ? kobject_init+0x1d0/0x1d0
[  207.913205][    T7]  ? kobject_init+0x7f/0x1d0
[  207.917809][    T7]  get_device_parent+0x380/0x3f0
[  207.922758][    T7]  device_add+0x335/0xfb0
[  207.927104][    T7]  ? device_initialize+0x247/0x450
[  207.932234][    T7]  firmware_fallback_sysfs+0x2e5/0x930
[  207.937719][    T7]  ? _request_firmware+0xbe4/0x1290
[  207.942967][    T7]  _request_firmware+0xcad/0x1290
[  207.948019][    T7]  ? request_firmware+0x50/0x50
[  207.952883][    T7]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  207.958878][    T7]  ? read_lock_is_recursive+0x10/0x10
[  207.964274][    T7]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  207.970188][    T7]  request_firmware_work_func+0xac/0x1b0
[  207.975840][    T7]  ? process_one_work+0x7a1/0x1160
[  207.980961][    T7]  process_one_work+0x898/0x1160
[  207.985917][    T7]  ? worker_detach_from_pool+0x240/0x240
[  207.991564][    T7]  ? _raw_spin_lock_irq+0xab/0xe0
[  207.996604][    T7]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  208.001996][    T7]  ? kthread_data+0x4b/0xc0
[  208.006515][    T7]  worker_thread+0xaa2/0x1250
[  208.011244][    T7]  kthread+0x29d/0x330
[  208.015331][    T7]  ? worker_clr_flags+0x1a0/0x1a0
[  208.020364][    T7]  ? kthread_blkcg+0xd0/0xd0
[  208.024973][    T7]  ret_from_fork+0x1f/0x30
[  208.029424][    T7]  </TASK>
[  208.032787][    T7] Kernel Offset: disabled
[  208.037117][    T7] Rebooting in 86400 seconds..