last executing test programs:

2m17.940196057s ago: executing program 2 (id=619):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x18, 0x1405, 0x5, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x4}]}, 0x18}}, 0x0)

2m17.522297005s ago: executing program 2 (id=622):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002ec0000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000000000008500000008000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

2m17.348008189s ago: executing program 2 (id=626):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001180)=@ipv4_newroute={0x30, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc8, 0x9}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0xc, 0x16, 0x0, 0x1, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x20}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20004000}, 0x4000000)

2m17.063423369s ago: executing program 2 (id=629):
syz_mount_image$hfsplus(&(0x7f0000007340), &(0x7f0000000000)='./file0\x00', 0x400044, &(0x7f0000000040)={[{@creator={'creator', 0x3d, "e8b6d9ad"}}, {}, {@nobarrier}, {@part={'part', 0x3d, 0x1000}}, {@gid}, {@nodecompose}, {@nls={'nls', 0x3d, 'cp865'}}]}, 0x1, 0x632, &(0x7f0000000140)="$eJzs3UtsG2kdAPD/OI4TB9TN7qa7Ba1EtJUWRESbh7IQLpSHUA4rtFoOnKPWbay6aZW4KK0QCi9x4MKh4lwOuXFC6j1SOcMF9ZpjJVAvPaDcjGY8dpy386qd7e8Xjb/v8zfzzX/+9jzsyJoA3lrzE1HciCTmJz5bTdub6zO1zfWZoby7FhFpvRBRbBaRLEUkz5vdN9KHr6VP5vMnB63nSXXuixevN182W8XWwkkprQ0fvNxRmguu5VOMR8RAXu412O2oO8a7eeB4+/nvn/YPshlous1XW4mDXmvssXacxU+83wL9I2meN/cYjRjJztDN64DIjw6FNxvd2TvWUQ4AAAAuqHe2Ymut0Wj0Og4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4SPL7/yf5VGjVxyNp3f+/1DF7qYehnomNXgcAAAAAAAAAACfSGOhsfWMrtmI1LrV7k+x//h9njbHs8SvxMFaiEstxLVZjIepRj+WYiojRjoFKqwv1+vJUF0tO77vk9LluNAAAAAAAAAB82f025rf//w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP0giRhoFtk01qqPRqEYEcMRUUrnW4v4V6t+kW30OgAAAAB4A97Ziq1YjUutdiPJPvN/kH3uH46HsRT1qEY9alGJW9l3Ac1P/YXN9Zna5vrMvXTaO+5f/tfIdBlGNmI0v3vYf81XsjnKcTuq2TPX4mbcj1q5c5QrrXj2j+s3r9Kxf5DrMrJbeZlu+Z/zsj+MZhkZbGdkMo8tzeO7h2fih69OtaapKLS/+Rk7h5yP5GWyq+y93ZmYjkKW79QHh2ci4pvP/vaLxdrS3cXbKxP9s0kn1MxEo9HMxFDWamXiw7cqE5PZtl9ut+fjp/HzmIjx+DyWoxq/jIWoRyXG4ydZbSF/P6ePo7syVdg59I0drc+PiqSUvy7No+jxYvo4W/ZSVONncT9uRSU+zf6mYyq+G7MxG3Mdr/DlLvb6wvH2+qvfyivpIf2Pedkf0ry+25HXzmPuaNbX+cx2lt47+2Nj8et5JV3H7yLix2e4naezOxPpWeLZV5t97x+eib9m1wkrtaW7y4sLD7pc3yd5me5Hf+irs0T6fnkvfbGy1s53R9r3/r59U1nfWLuvsKfvcrvvqD21lF/D7R1pOuv7cN++mazvSkffnuut9vUQAH1s5NsjpfJ/yv8sPy3/vrxY/mz4R0PfG/qoFIP/GPx+cXLgk8JHyd/jafx6+/M/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwciuPHt9dqNUqy0dWkuzm/xFdzdxRad3O6fCZk/xGPscZWaVWqwxHX4RxrErt3xEdzyS9jqcfKkP99ubv7XEJOH/X6/ceXF959Pg71XsLdyp3KkuDs7Nzk3Ozn85cv12tDUT6WJnsdZTAedg+6fc6EgAAAAAAAAAAAKBbh/8MYDCf63Q/J+jxJgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAX3PxEFDciianJa5Npe3N9ppZOrfr2nMWIKERE8quI5HnEjWhOMdoxXHLQep5U57548Xrz5fZYxdb8hcOW685aPsV4RAzk5VmNd/PU4yXtLUwTdrV0uuDgzPw/AAD//4oVCL4=")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

2m16.382983591s ago: executing program 2 (id=635):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x25, 0x301, 0x270bd27, 0x25dfdbfd, {0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x40001}, 0x0)

2m15.308256061s ago: executing program 2 (id=650):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000240)={0x2, 0x4, 0x0, 0x3, 0xc, 0x0, 0x700, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4e23, 0x3, @loopback, 0x2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x3, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x60}, 0x1, 0x7}, 0x0)

2m14.731796148s ago: executing program 32 (id=650):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000240)={0x2, 0x4, 0x0, 0x3, 0xc, 0x0, 0x700, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4e23, 0x3, @loopback, 0x2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x3, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x60}, 0x1, 0x7}, 0x0)

13.991371275s ago: executing program 3 (id=2082):
r0 = socket$netlink(0x10, 0x3, 0xf)
sendmsg$netlink(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000066c0)={0x7f4, 0x1e, 0x1, 0x70bd27, 0x25dfdbfd, "", [@nested={0x7e1, 0x99, 0x0, 0x1, [@generic="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"]}]}, 0x7f4}], 0x1}, 0x200048c0)

13.49709943s ago: executing program 3 (id=2088):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="3400000068000100030000000000008000000000000000001c00020000d9"], 0x34}}, 0x40000)

13.251038571s ago: executing program 3 (id=2091):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
connect$802154_dgram(r0, 0x0, 0x0)

13.195117792s ago: executing program 3 (id=2093):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x1000806, &(0x7f00000024c0)={[{@iocharset={'iocharset', 0x3d, 'cp1255'}}, {}, {@gid={'gid', 0x3d, 0xee01}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {}, {@errors_continue}, {}, {@sys_tz}, {@keep_last_dots}, {@uid={'uid', 0x3d, 0xee01}}, {@gid}], [{@appraise}]}, 0x9, 0x1505, &(0x7f0000000180)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

12.605434382s ago: executing program 3 (id=2101):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="d80000001c0081044e81f782db44b9040a1d080214000000020009a118000c000300000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

12.122602107s ago: executing program 3 (id=2108):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0xc0, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x74, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0x43, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x3, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x14, 0x4, @local}}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_HELP={0xc, 0x5, 0x0, 0x1, {0x8, 0x1, 'RAS\x00'}}]}, 0xc0}}, 0x0)

11.939476327s ago: executing program 33 (id=2108):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0xc0, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x74, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0x43, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x3, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x14, 0x4, @local}}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_HELP={0xc, 0x5, 0x0, 0x1, {0x8, 0x1, 'RAS\x00'}}]}, 0xc0}}, 0x0)

7.257101327s ago: executing program 5 (id=2162):
syz_clone(0xc4000000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x10002000, 0x0, 0x0, 0x0, 0x0, 0x0)

6.206091772s ago: executing program 1 (id=2172):
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0x0, 0x0)

5.973710239s ago: executing program 1 (id=2175):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newlink={0x3c, 0x10, 0x1, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2102, 0x4a21}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x7f395}]}, 0x3c}}, 0x0)

5.752172326s ago: executing program 6 (id=2179):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@mpls_delroute={0x30, 0x18, 0x9, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_VIA={0x14, 0x5, {0x0, "f1b9a81697008d68a0328c49d2ee"}}]}, 0x30}}, 0x0)

5.563213288s ago: executing program 0 (id=2180):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1104200, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

5.562737901s ago: executing program 6 (id=2181):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014000100626f6e64300000000000000000000000140001006970766c616e"], 0x4b0}}, 0x0)

5.456360468s ago: executing program 1 (id=2182):
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYRES64=0x0, @ANYRES16=0x0, @ANYRESHEX, @ANYRES64=0x0, @ANYRES32, @ANYRESOCT=0x0], 0x21, 0x1f9, &(0x7f0000000b80)="$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")
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

5.340241803s ago: executing program 6 (id=2183):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @empty}]}, &(0x7f0000000340)=0x10)

5.223462939s ago: executing program 0 (id=2184):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_COPY(r0, 0x3b83, &(0x7f0000000480)={0x28, 0x2, 0x0, 0x0, 0x8, 0x9, 0xffffffffffffffff})

5.223250509s ago: executing program 4 (id=2185):
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev}, 0x18)

5.027340535s ago: executing program 6 (id=2186):
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x2714, 0x0, &(0x7f0000000040))

4.792347608s ago: executing program 0 (id=2187):
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0x0, 0x0)

4.792242107s ago: executing program 1 (id=2188):
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x2800, 0x0)
fcntl$setstatus(r0, 0x4, 0x0)

4.79170733s ago: executing program 4 (id=2198):
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYRES64=0x0, @ANYRES16=0x0, @ANYRESHEX, @ANYRES64=0x0, @ANYRES32, @ANYRESOCT=0x0], 0x21, 0x1f9, &(0x7f0000000b80)="$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")
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

1.028451964s ago: executing program 7 (id=2109):
r0 = syz_open_dev$swradio(&(0x7f0000000380), 0x0, 0x2)
ioctl$VIDIOC_G_CTRL(r0, 0xc008561b, &(0x7f0000000000)={0xf0f040, 0x8})

1.027571842s ago: executing program 0 (id=2201):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000fc0)=ANY=[@ANYBLOB="66696c046572000000000000000000000000000000000000000000000000000002"], 0x48)

1.025882961s ago: executing program 1 (id=2202):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=ANY=[@ANYBLOB="380000001800010000000000000000000200000000000006000000000c00090008000000", @ANYRES32=r0, @ANYBLOB="08000400", @ANYRESOCT=r0], 0x38}}, 0x0)

1.023706979s ago: executing program 6 (id=2203):
syz_mount_image$exfat(&(0x7f0000006c00), &(0x7f0000001b40)='./file0\x00', 0x208008de, &(0x7f0000001b80)=ANY=[@ANYBLOB='umask=00000000000000000000011,namecase=1,errors=continue,allow_utime=00000000000000000000002,gid=', @ANYRESHEX=0x0, @ANYBLOB=',discard,umask=00000000000000000005676,keep_last_dots,gid=', @ANYRESHEX=0xee00, @ANYBLOB=',iocharset=cp865,dmask=00000000000000000000001,discard,uid=', @ANYRESHEX=0xee00, @ANYBLOB="969043c7ff1774ebb8582e00"], 0x80, 0x1500, &(0x7f0000000580)="$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")
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)

1.014335899s ago: executing program 4 (id=2204):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_opts(r0, 0x29, 0x4d, 0x0, 0x8)

1.013534931s ago: executing program 5 (id=2205):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x57, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405668, &(0x7f0000000000)={0x31, 0x1, 0x1, "3ad38e0000000000000e1f60b82726d20fb29634b50b865066c27891ca55e21f"})

792.359179ms ago: executing program 7 (id=2189):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000001c0)={[{@quota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4c1, &(0x7f0000000680)="$eJzs3d9rW9cdAPDvle3ESZzZ2faQBZaFLcMJWyQ7XhKzh8yDsT0FlmXvnmfLxli2jCUnsQnDYX9AofQX7VOf+lLocymU/AmlEGjfSyktoU3Shz60VZF81SSubMvEshLr84Hje8+9V/5+j4SOdO656AbQsU5FxFhEdEXE2YjoT7dn0hJr66V63IP7tyarJYlK5dqXSSTptvr/StLlkfRhvRHxr39E/Df5adzSyurcRKGQX0rrufL8Yq60snpudn5iJj+TXxgbGb44emn0wujQrrX18t8+e+WFt/5++f0/3vhk/Isz/6um1Zfue7wdzVhr8rj1pvfUnou67ohY2kmwZ1hX2p6edicCAEBTqt/xfx4Rv42Ih6+3OxsAAACgFSp/6Ytvk4gKAAAAsG9latfAJplsei1AX2Qy2ez6Nby/jMOZQrFU/sN0cXlhav1a2YHoyUzPFvJD6bXCA9GTVOvDtfVH9fMb6iMRcSwiXuo/VKtnJ4uFqXaf/AAAAIAOcWTD+P/r/vXxPwAAALDPDLQ7AQAAAKDljP8BAABg/9t0/J90720iAAAAQCv888qVaqnU7389dX1lea54/dxUvjSXnV+ezE4WlxazM8XiTO03++a3+3+FYnHxT7GwfDNXzpfKudLK6vh8cXmhPF67r/d43n2iAQAAYO8d+82dj5OIWPvzoVqpOpDua2KsPtba7IBWyuzs8KRVeQB7r6vdCQBt4wJf6Fzm44FtBvYvb6jv8LQBAADwLBj81VPN/5sPhOeYgTx0LvP/0LnM/0PnMv8PHe7g9of0brbjg13OBQAAaJm+Wkky2XQusC8ymWw24mjttgA9yfRsIT8UET+LiI/6ew5W68PtThoAAAAAAAAAAAAAAAAAAAAAAAAAnjOVShIVAAAAYF+LyHyepDfyH+w/3bfx/MCB5Jv+2jIibrxx7dWbE+Xy0nB1+1c/bi+/lm4/344zGAAAAMBG9XF6fRwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALvpwf1bk/Wyl3Hv/TUiBhrF747e2rL33f6IOPwwie7HHpdERNcuxF+7HRHHG8VPqmnFQJrFxviZiDjU5vhHdiE+dLI71f5nrNH7LxOnasvG77/utDyte6c26/8y9f6v1s816v+ONhnjxN13cpvGvx1xortx/1OPnzxl//uff6+ubrav8mbEYMPPn+SJWLny/GKutLJ6bnZ+YiY/k18YGRm+OHpp9MLoUG56tpBP/zaM8eKv3/t+q/Yf3iT+wDbtP91k+7+7e/P+L7aIf+Z3jV//41vErz73v08/B6r7B+vra+vrjzv59ocnt2r/1Cbt3+71P9Nk+89e/f+nTR4KAOyB0srq3EShkF+yYsXK/lu5mr7Rd/zwNndMAADArnv0pb/dmQAAAAAAAAAAAAAAAAAAAEDnavmPkB188pcFetvXVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACALf0QAAD//9sy0wA=")
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x2)

792.052649ms ago: executing program 4 (id=2190):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a00)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_KEY_END={0x4}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc4}}, 0x0)

679.676452ms ago: executing program 5 (id=2191):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(r0, 0x104, 0x2, 0x0, &(0x7f0000000080)=0xffffffffffffff6b)

575.225967ms ago: executing program 5 (id=2192):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0xcd)
accept4(r0, 0x0, 0x0, 0x0)

456.371567ms ago: executing program 0 (id=2193):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_T4(r0, 0x103, 0x6, &(0x7f0000000080)=0x7, &(0x7f00000000c0)=0x4)

456.124515ms ago: executing program 1 (id=2194):
syz_usb_connect(0x2, 0x24, &(0x7f0000000a40)={{0x12, 0x1, 0x0, 0xd4, 0x14, 0xfb, 0x40, 0x582, 0x4, 0x6b64, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x5, 0x6, 0x1d0, 0xa, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x18, 0xeb, 0x4e, 0x1}}]}}]}}, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)

456.027891ms ago: executing program 5 (id=2195):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x30, 0x3, 0x8, 0x801, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}]}, 0x30}}, 0x0)

343.789508ms ago: executing program 4 (id=2196):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x66, 0x2, 0x8, 0x42, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000140), &(0x7f0000000200)=""/137, 0x2}, 0x20)

322.989117ms ago: executing program 5 (id=2197):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000180)={0x2, {{0x2, 0x4e22, @private=0xa010102}}, 0x1, 0x4}, 0x2e8)

385.223µs ago: executing program 6 (id=2199):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x2c, 0x3d, 0x9, 0x80000, 0x0, {0x1}, [@typed={0x4}, @nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x10, 0x0, 0x1, [@typed={0x4, 0x6}]}]}, @typed={0x8, 0x2, 0x0, 0x0, @pid=0xffffffffffffffff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000000)

170.818µs ago: executing program 0 (id=2200):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"]}, 0x298)

0s ago: executing program 4 (id=2206):
r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x40002)
ioctl$NBD_SET_TIMEOUT(r0, 0xab09, 0x0)

kernel console output (not intermixed with test programs):

VLAN 0 to HW filter on device bond0
[  165.879736][ T7480] 8021q: adding VLAN 0 to HW filter on device team0
[  165.893939][ T1157] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.894493][ T5913] cdc_ether 2-1:129.32: skipping garbage
[  165.901134][ T1157] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.906781][ T5913] cdc_ether 2-1:129.32: skipping garbage
[  165.906813][ T5913] usb 2-1: bad CDC descriptors
[  166.063966][ T5913] usb 2-1: USB disconnect, device number 3
[  166.099798][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.107043][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.284135][ T7756] loop0: detected capacity change from 0 to 128
[  166.350681][ T7756] VFS: Found a Xenix FS (block size = 1024) on device loop0
[  166.401528][ T7756] syz.0.756: attempt to access beyond end of device
[  166.401528][ T7756] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128
[  166.467695][ T7756] Buffer I/O error on dev loop0, logical block 3245768, async page read
[  166.508089][ T7762] loop3: detected capacity change from 0 to 256
[  166.522736][ T7762] exfat: Deprecated parameter 'utf8'
[  166.538735][ T7762] exfat: Deprecated parameter 'utf8'
[  166.554968][ T7762] exfat: Deprecated parameter 'utf8'
[  166.606416][ T5837] sysv_free_block: flc_count > flc_size
[  166.618667][ T5837] sysv_free_block: flc_count > flc_size
[  166.636802][ T5837] sysv_free_block: flc_count > flc_size
[  166.646655][ T5837] sysv_free_block: flc_count > flc_size
[  166.673077][ T5837] sysv_free_block: flc_count > flc_size
[  166.679930][ T5837] sysv_free_block: flc_count > flc_size
[  166.696226][ T5837] sysv_free_block: flc_count > flc_size
[  166.704897][ T5837] sysv_free_block: flc_count > flc_size
[  166.781134][ T5837] sysv_free_block: flc_count > flc_size
[  166.786753][ T5837] sysv_free_block: flc_count > flc_size
[  166.801749][ T7762] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x0f9af3fb, utbl_chksum : 0xe619d30d)
[  166.815979][ T5837] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  166.894589][ T7770] vivid-000: =================  START STATUS  =================
[  166.910819][ T7770] vivid-000: Generate PTS: true
[  166.927312][ T7770] vivid-000: Generate SCR: true
[  166.933059][ T7770] tpg source WxH: 640x360 (Y'CbCr)
[  166.949089][ T7770] tpg field: 1
[  166.952822][ T7770] tpg crop: 640x360@0x0
[  166.957023][ T7770] tpg compose: 640x360@0x0
[  166.970703][ T7770] tpg colorspace: 8
[  167.057781][ T7770] tpg transfer function: 0/0
[  167.062615][ T7770] tpg Y'CbCr encoding: 0/0
[  167.067305][ T7770] tpg quantization: 0/0
[  167.071593][ T7770] tpg RGB range: 0/2
[  167.075574][ T7770] vivid-000: ==================  END STATUS  ==================
[  167.257638][ T7480] 8021q: adding VLAN 0 to HW filter on device batadv0
[  168.492522][ T7480] veth0_vlan: entered promiscuous mode
[  168.563071][ T7480] veth1_vlan: entered promiscuous mode
[  168.637559][ T7828] netlink: 4 bytes leftover after parsing attributes in process `syz.1.781'.
[  168.657065][ T7829] netlink: 4 bytes leftover after parsing attributes in process `syz.4.782'.
[  168.705729][ T7480] veth0_macvtap: entered promiscuous mode
[  168.751985][ T7480] veth1_macvtap: entered promiscuous mode
[  168.820061][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.880898][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.939336][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.009202][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.017664][ T7837] loop3: detected capacity change from 0 to 512
[  169.019382][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.047804][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.066158][ T7840] loop0: detected capacity change from 0 to 1024
[  169.073130][ T7837] EXT4-fs: Ignoring removed i_version option
[  169.079266][ T7837] EXT4-fs: Ignoring removed mblk_io_submit option
[  169.088903][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.115643][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.143915][ T7837] EXT4-fs error (device loop3): ext4_orphan_get:1389: comm syz.3.784: inode #13: comm syz.3.784: iget: illegal inode #
[  169.144537][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.167601][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.183341][ T7480] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.245602][    T8] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  169.286697][ T7837] EXT4-fs error (device loop3): ext4_orphan_get:1392: comm syz.3.784: couldn't read orphan inode 13 (err -117)
[  169.328570][ T7837] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.352896][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.432620][    T8] usb 6-1: config 0 has an invalid interface number: 64 but max is 0
[  169.450648][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.460700][    T8] usb 6-1: config 0 has no interface number 0
[  169.498639][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.512004][    T8] usb 6-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[  169.530646][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.560766][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.571479][    T8] usb 6-1: Product: syz
[  169.575689][    T8] usb 6-1: Manufacturer: syz
[  169.580321][    T8] usb 6-1: SerialNumber: syz
[  169.605550][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.622898][    T8] usb 6-1: config 0 descriptor??
[  169.635008][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.679759][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.710549][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.711124][ T5913] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  169.748986][ T7480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.807236][ T7480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.840024][ T7480] batman_adv: batadv0: Interface activated: batadv_slave_1
[  169.875734][ T5838] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.919028][    T8] usb 6-1: Found UVC 0.08 device syz (046d:0823)
[  169.925485][ T5913] usb 5-1: Using ep0 maxpacket: 32
[  169.932944][    T8] uvcvideo 6-1:0.64: Entity type for entity Output 3 was not initialized!
[  169.943049][ T7480] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.949448][ T5913] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  169.962678][    T8] usb 6-1: Failed to create links for entity 3
[  169.968890][    T8] usb 6-1: Failed to register entities (-22).
[  169.982302][ T7480] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.005594][ T5913] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  170.010798][ T7480] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.056070][ T7480] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.060575][ T5913] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  170.119938][ T5913] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 59391, setting to 1024
[  170.120864][    T8] usb 6-1: USB disconnect, device number 2
[  170.160574][ T5913] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  170.190579][ T5913] usb 5-1: config 0 interface 0 has no altsetting 0
[  170.379355][ T5913] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  170.389018][ T5913] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  170.397808][ T5913] usb 5-1: Product: syz
[  170.402336][ T5913] usb 5-1: Manufacturer: syz
[  170.406967][ T5913] usb 5-1: SerialNumber: syz
[  170.420014][ T5913] usb 5-1: config 0 descriptor??
[  170.434869][ T7849] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  170.444879][ T5913] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  170.461394][ T5913] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  170.476689][ T7866] loop1: detected capacity change from 0 to 256
[  170.554326][ T7866] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d16cac, utbl_chksum : 0xe619d30d)
[  170.588846][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.609484][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.653442][ T7866] exFAT-fs (loop1): error, invalid access to FAT free cluster (entry 0x00000008)
[  170.733026][ T7866] exFAT-fs (loop1): Filesystem has been set read-only
[  170.777696][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.812473][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.835479][ T5830] usb 5-1: USB disconnect, device number 4
[  170.855101][ T5830] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  171.411185][ T5830] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  171.581374][ T5830] usb 4-1: Using ep0 maxpacket: 8
[  171.590433][ T5830] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  171.644365][ T5830] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  171.676432][ T5830] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  171.686636][ T5830] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  171.698276][ T5830] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  171.708417][ T5830] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  171.717715][ T5830] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.737579][ T5830] usb 4-1: config 0 descriptor??
[  171.761425][ T7880] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  172.372891][ T7914] loop4: detected capacity change from 0 to 8
[  172.506817][ T7914] SQUASHFS error: zlib decompression failed, data probably corrupt
[  172.534196][ T7916] usb usb7: usbfs: process 7916 (syz.6.815) did not claim interface 0 before use
[  172.543902][ T7914] SQUASHFS error: Failed to read block 0x13e: -5
[  172.550277][ T7914] SQUASHFS error: Unable to read metadata cache entry [13c]
[  172.603468][ T7914] SQUASHFS error: Unable to read directory block [13c:26]
[  172.814090][ T5895] usb 4-1: USB disconnect, device number 5
[  172.816148][ T5853] Bluetooth: hci6: Opcode 0x0c03 failed: -19
[  173.260707][    T8] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  173.433239][    T8] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  173.450403][    T8] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  173.495333][    T8] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  173.515192][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  173.533691][    T8] usb 7-1: SerialNumber: syz
[  173.606782][    T8] usb 7-1: 0:2 : does not exist
[  174.145141][ T5898] usb 7-1: USB disconnect, device number 2
[  174.307131][ T7964] loop4: detected capacity change from 0 to 512
[  174.370875][ T7969] syz.1.833[7969] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  174.370989][ T7969] syz.1.833[7969] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  174.387719][ T7964] EXT4-fs (loop4): orphan cleanup on readonly fs
[  174.398668][ T7969] syz.1.833[7969] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  174.413175][ T7964] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.832: casefold flag without casefold feature
[  174.475682][ T7964] EXT4-fs error (device loop4): ext4_orphan_get:1392: comm syz.4.832: couldn't read orphan inode 15 (err -117)
[  174.539994][ T7964] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  174.783381][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.921180][ T5895] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  175.160806][   T29] audit: type=1326 audit(1735950610.393:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db3985d29 code=0x7ffc0000
[  175.182928][    C1] vkms_vblank_simulate: vblank timer overrun
[  175.189648][   T29] audit: type=1326 audit(1735950610.403:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db3985d29 code=0x7ffc0000
[  175.211752][    C1] vkms_vblank_simulate: vblank timer overrun
[  175.218781][   T29] audit: type=1326 audit(1735950610.403:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f1db3985d29 code=0x7ffc0000
[  175.241179][   T29] audit: type=1326 audit(1735950610.403:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db3985d29 code=0x7ffc0000
[  175.260300][ T7985] loop5: detected capacity change from 0 to 32768
[  175.263271][    C1] vkms_vblank_simulate: vblank timer overrun
[  175.263815][   T29] audit: type=1326 audit(1735950610.403:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db3985d29 code=0x7ffc0000
[  175.298346][    C1] vkms_vblank_simulate: vblank timer overrun
[  175.405964][ T7992] loop6: detected capacity change from 0 to 512
[  175.429687][ T7985] (syz.5.840,7985,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  175.451544][ T7985] (syz.5.840,7985,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  175.483806][ T7992] journal_path: Non-blockdev passed as './file0'
[  175.490246][ T7992] EXT4-fs: error: could not find journal device path
[  175.863701][ T8007] netlink: 8 bytes leftover after parsing attributes in process `syz.6.847'.
[  175.872687][ T8007] netlink: 12 bytes leftover after parsing attributes in process `syz.6.847'.
[  175.895398][    T8] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  175.908411][ T7985] JBD2: Ignoring recovery information on journal
[  175.941672][ T5895] usb 1-1: Using ep0 maxpacket: 8
[  175.960327][ T5895] usb 1-1: config 0 has an invalid interface number: 150 but max is 0
[  175.969355][ T5895] usb 1-1: config 0 has an invalid interface number: 112 but max is 0
[  175.977976][ T5895] usb 1-1: config 0 has an invalid interface number: 3 but max is 0
[  175.986113][ T5895] usb 1-1: config 0 has 3 interfaces, different from the descriptor's value: 1
[  175.995677][ T5895] usb 1-1: config 0 has no interface number 0
[  176.002263][ T5895] usb 1-1: config 0 has no interface number 1
[  176.008379][ T5895] usb 1-1: config 0 has no interface number 2
[  176.014606][ T5895] usb 1-1: config 0 interface 150 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  176.027671][ T5895] usb 1-1: too many endpoints for config 0 interface 112 altsetting 233: 104, using maximum allowed: 30
[  176.038924][ T5895] usb 1-1: config 0 interface 112 altsetting 233 has 1 endpoint descriptor, different from the interface descriptor's value: 104
[  176.052487][ T5895] usb 1-1: config 0 interface 150 has no altsetting 0
[  176.059317][ T5895] usb 1-1: config 0 interface 112 has no altsetting 0
[  176.066258][ T5895] usb 1-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75
[  176.075391][ T5895] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.092701][ T5895] usb 1-1: config 0 descriptor??
[  176.121251][ T8010] loop6: detected capacity change from 0 to 256
[  176.134206][    T8] usb 4-1: config 0 has an invalid interface number: 64 but max is 0
[  176.150748][    T8] usb 4-1: config 0 has no interface number 0
[  176.247788][    T8] usb 4-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[  176.259768][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.267891][    T8] usb 4-1: Product: syz
[  176.272338][    T8] usb 4-1: Manufacturer: syz
[  176.277058][    T8] usb 4-1: SerialNumber: syz
[  176.288315][    T8] usb 4-1: config 0 descriptor??
[  176.326928][ T7985] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  176.640611][ T5895] usb 1-1: string descriptor 0 read error: -71
[  176.812014][    T8] usb 4-1: Found UVC 0.08 device syz (046d:0823)
[  176.818667][    T8] uvcvideo 4-1:0.64: Entity type for entity Output 3 was not initialized!
[  176.845495][ T5895] usb 1-1: USB disconnect, device number 3
[  176.847860][    T8] usb 4-1: Failed to create links for entity 3
[  176.857786][    T8] usb 4-1: Failed to register entities (-22).
[  177.069962][    T8] usb 4-1: USB disconnect, device number 6
[  177.085259][ T8039] loop4: detected capacity change from 0 to 2048
[  177.095905][ T5833] ocfs2: Unmounting device (7,5) on (node local)
[  177.143936][ T8039] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  177.260246][ T6172] udevd[6172]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.150/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  177.275078][ T8039] UDF-fs: Scanning with blocksize 512 failed
[  177.629843][ T8047] loop1: detected capacity change from 0 to 4096
[  177.634644][ T8049] loop0: detected capacity change from 0 to 512
[  177.794773][ T8049] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.860856][ T8049] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.889007][   T29] audit: type=1800 audit(1735950613.243:37): pid=8047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.861" name="file1" dev="loop1" ino=30 res=0 errno=0
[  177.891154][ T8039] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  177.948273][ T8049] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz.0.863: corrupted xattr block 32: e_value out of bounds
[  178.244393][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.721320][ T8079] C: renamed from team_slave_0 (while UP)
[  178.791328][ T8079] netlink: 'syz.1.872': attribute type 1 has an invalid length.
[  178.857209][ T8079] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  178.876455][ T8068] loop3: detected capacity change from 0 to 32768
[  179.322176][ T8096] libceph: resolve '0' (ret=-3): failed
[  179.574042][ T8106] netlink: 'syz.0.883': attribute type 7 has an invalid length.
[  179.594238][ T8106] netlink: 244 bytes leftover after parsing attributes in process `syz.0.883'.
[  180.530679][ T8135] loop1: detected capacity change from 0 to 64
[  180.953653][ T8149] netlink: 12 bytes leftover after parsing attributes in process `syz.1.901'.
[  181.755873][ T8167] loop5: detected capacity change from 0 to 1764
[  182.528935][ T8155] loop3: detected capacity change from 0 to 32768
[  182.785877][ T8155] ERROR: (device loop3): diAllocBit: iag inconsistent
[  182.785877][ T8155] 
[  182.795434][ T8155] ialloc: diAlloc returned -5!
[  182.815657][ T8200] loop5: detected capacity change from 0 to 4096
[  182.966821][ T8205] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  183.057895][ T8208] netlink: 24 bytes leftover after parsing attributes in process `syz.1.924'.
[  183.161779][   T29] audit: type=1800 audit(1870168346.467:38): pid=8200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.921" name="file3" dev="loop5" ino=16 res=0 errno=0
[  183.530628][ T5898] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  183.692601][ T5898] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  183.738707][ T5898] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  183.800658][ T5898] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 13155, setting to 64
[  183.850588][ T5898] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  184.221291][ T8231] netlink: 132 bytes leftover after parsing attributes in process `syz.4.937'.
[  184.290838][ T5898] usb 7-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  184.299975][ T5898] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.308272][ T5898] usb 7-1: Product: syz
[  184.312917][ T5898] usb 7-1: Manufacturer: syz
[  184.317948][ T5898] usb 7-1: SerialNumber: syz
[  184.326010][ T5898] usb 7-1: config 0 descriptor??
[  184.331890][ T8211] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  184.358780][ T5898] input: KB Gear Tablet as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input10
[  184.505090][ T8236] xt_CT: You must specify a L4 protocol and not use inversions on it
[  184.679314][    C0] kbtab 7-1:0.0: kbtab_irq - usb_submit_urb failed with result -1
[  184.740268][  T968] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  184.841972][ T8246] loop3: detected capacity change from 0 to 16
[  184.869070][ T8246] erofs (device loop3): mounted with root inode @ nid 36.
[  184.909255][ T8246] erofs (device loop3): bogus lookback distance 1388 @ lcn 42 of nid 36
[  184.941878][    T8] usb 7-1: USB disconnect, device number 3
[  184.947887][    C0] kbtab 7-1:0.0: kbtab_irq - usb_submit_urb failed with result -19
[  185.029294][ T8246] erofs (device loop3): read error -117 @ 43 of nid 36
[  185.101355][  T968] usb 5-1: Using ep0 maxpacket: 32
[  185.112417][  T968] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  185.127302][  T968] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  185.169419][  T968] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  185.232647][  T968] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  185.270526][  T968] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.313550][  T968] usb 5-1: config 0 descriptor??
[  185.319572][ T8233] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  185.333698][  T968] hub 5-1:0.0: USB hub found
[  185.413343][ T8258] loop3: detected capacity change from 0 to 256
[  185.470804][ T8258] exfat: Deprecated parameter 'utf8'
[  185.480644][ T8258] exfat: Deprecated parameter 'namecase'
[  185.486568][ T8258] exfat: Deprecated parameter 'utf8'
[  185.556932][ T8258] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  185.610684][  T968] hub 5-1:0.0: 2 ports detected
[  185.655008][ T8258] exFAT-fs (loop3): start_clu is invalid cluster(0x0)
[  185.725054][ T8265] netlink: 'syz.6.949': attribute type 2 has an invalid length.
[  185.770704][  T968] hub 5-1:0.0: hub_hub_status failed (err = -71)
[  185.777621][  T968] hub 5-1:0.0: config failed, can't get hub status (err -71)
[  185.832134][  T968] usbhid 5-1:0.0: can't add hid device: -71
[  185.838235][  T968] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  186.042291][ T8243] loop5: detected capacity change from 0 to 32768
[  186.064220][  T968] usb 5-1: USB disconnect, device number 5
[  186.196305][ T8243] JBD2: Ignoring recovery information on journal
[  186.485901][ T8285] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  186.498539][ T8283] netlink: 'syz.0.957': attribute type 1 has an invalid length.
[  186.530654][ T8283] netlink: 224 bytes leftover after parsing attributes in process `syz.0.957'.
[  186.549826][    T8] usb 4-1: new low-speed USB device number 7 using dummy_hcd
[  186.725331][ T8243] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  186.756786][    T8] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  186.771361][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  186.786942][ T8243] OCFS2: ERROR (device loop5): ocfs2_claim_suballoc_bits: Chain allocator dinode 73 has 4294901761 used bits but only 0 total
[  186.801593][ T8243] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  186.812128][ T8243] OCFS2: File system is now read-only.
[  186.817897][ T8243] (syz.5.928,8243,1):ocfs2_claim_suballoc_bits:2038 ERROR: status = -30
[  186.826667][ T8243] (syz.5.928,8243,1):ocfs2_claim_metadata:2063 ERROR: status = -30
[  186.835269][ T8243] (syz.5.928,8243,1):ocfs2_claim_metadata:2076 ERROR: status = -30
[  186.840140][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  186.844254][ T8243] (syz.5.928,8243,1):ocfs2_dx_dir_attach_index:2311 ERROR: status = -30
[  186.863828][ T8243] (syz.5.928,8243,1):ocfs2_expand_inline_dir:3004 ERROR: status = -30
[  186.873241][ T8294] netlink: 68 bytes leftover after parsing attributes in process `syz.6.962'.
[  186.917872][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  186.959394][ T8243] (syz.5.928,8243,1):ocfs2_extend_dir:3186 ERROR: status = -30
[  186.967416][ T8243] (syz.5.928,8243,1):ocfs2_prepare_dir_for_insert:4291 ERROR: status = -30
[  186.978045][ T8295] netlink: 'syz.1.963': attribute type 2 has an invalid length.
[  186.994649][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  187.028613][ T8243] (syz.5.928,8243,1):ocfs2_mknod:298 ERROR: status = -30
[  187.035949][ T8295] netlink: 'syz.1.963': attribute type 1 has an invalid length.
[  187.042144][    T8] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  187.047061][ T8243] (syz.5.928,8243,1):ocfs2_mknod:502 ERROR: status = -30
[  187.067861][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  187.078801][ T8243] (syz.5.928,8243,1):ocfs2_create:676 ERROR: status = -30
[  187.143891][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  187.162287][ T8301] CIFS: iocharset name too long
[  187.184052][ T8243] syz.5.928 (8243) used greatest stack depth: 21456 bytes left
[  187.203891][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  187.222009][ T5833] __find_get_block_slow() failed. block=9295429630892703776, b_blocknr=32, b_state=0x00310019, b_size=512, device loop5 blocksize: 512
[  187.284785][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  187.311214][ T5833] grow_buffers: requested out-of-range block 9295429630892703776 for device loop5
[  187.330657][ T5833] (syz-executor,5833,1):ocfs2_read_blocks:239 ERROR: status = -12
[  187.348748][ T5833] (syz-executor,5833,1):_ocfs2_free_suballoc_bits:2553 ERROR: status = -12
[  187.368923][ T5833] (syz-executor,5833,1):_ocfs2_free_clusters:2650 ERROR: status = -12
[  187.387413][ T5833] (syz-executor,5833,1):ocfs2_sync_local_to_main:996 ERROR: status = -12
[  187.396488][ T5833] (syz-executor,5833,1):ocfs2_sync_local_to_main:1009 ERROR: status = -12
[  187.405109][ T5833] (syz-executor,5833,1):ocfs2_shutdown_local_alloc:450 ERROR: status = -12
[  187.488516][    T8] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  187.505211][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  187.538772][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  187.562524][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  187.588672][    T8] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  187.638339][ T5833] ocfs2: Unmounting device (7,5) on (node local)
[  187.646754][ T8315] loop1: detected capacity change from 0 to 256
[  187.668515][    T8] usb 4-1: string descriptor 0 read error: -22
[  187.676871][    T8] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  187.725740][ T8315] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  187.750535][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.771031][ T8315] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  187.825682][    T8] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  187.851987][ T8315] exFAT-fs (loop1): valid_size(150994954) is greater than size(10)
[  188.240969][ T5899] usb 4-1: USB disconnect, device number 7
[  188.313157][ T8330] syz.5.969 uses old SIOCAX25GETINFO
[  188.421021][ T5913] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  188.450934][ T5830] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  188.624079][ T5913] usb 1-1: Using ep0 maxpacket: 16
[  188.644873][ T5913] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  188.659548][ T5830] usb 7-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  188.679439][ T5830] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.700755][ T5830] usb 7-1: Product: syz
[  188.705031][ T5830] usb 7-1: Manufacturer: syz
[  188.709702][ T5830] usb 7-1: SerialNumber: syz
[  188.744776][ T5830] usb 7-1: config 0 descriptor??
[  188.751808][ T5913] usb 1-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[  188.764096][ T5830] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  188.771379][ T5913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.779455][ T5913] usb 1-1: Product: syz
[  188.788170][ T5913] usb 1-1: Manufacturer: syz
[  188.792952][ T5913] usb 1-1: SerialNumber: syz
[  188.801034][ T5913] usb 1-1: config 0 descriptor??
[  189.098237][ T8353] loop3: detected capacity change from 0 to 64
[  189.105427][ T5913] usb 1-1: Unknown endpoint type found, address 0x06
[  189.112399][ T5913] usb 1-1: Not enough endpoints found in device, aborting!
[  189.113600][ T8354] loop4: detected capacity change from 0 to 256
[  189.264197][ T5830] gspca_sunplus: reg_w_riv err -71
[  189.275322][ T5830] sunplus 7-1:0.0: probe with driver sunplus failed with error -71
[  189.289492][ T5830] usb 7-1: USB disconnect, device number 4
[  189.399554][ T5913] usb 1-1: USB disconnect, device number 4
[  189.715514][ T8369] loop1: detected capacity change from 0 to 256
[  189.850722][   T29] audit: type=1800 audit(1870168353.177:39): pid=8369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.995" name="file1" dev="loop1" ino=1048635 res=0 errno=0
[  190.241058][ T8387] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1002'.
[  192.355339][ T8465] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  192.605856][ T8473] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1034'.
[  192.920746][ T5899] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  193.003914][ T8487] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1038'.
[  193.034495][ T8488] netlink: 666 bytes leftover after parsing attributes in process `syz.6.1036'.
[  193.090661][ T5899] usb 5-1: Using ep0 maxpacket: 8
[  193.201011][ T8455] loop1: detected capacity change from 0 to 32768
[  193.219508][ T5899] usb 5-1: config 0 has no interfaces?
[  193.314936][ T8446] loop5: detected capacity change from 0 to 32768
[  193.344951][ T5899] usb 5-1: New USB device found, idVendor=05ac, idProduct=1202, bcdDevice=32.f0
[  193.354857][ T5899] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.363139][ T5899] usb 5-1: Product: syz
[  193.367348][ T5899] usb 5-1: Manufacturer: syz
[  193.372254][ T5899] usb 5-1: SerialNumber: syz
[  193.383246][ T5899] apple-mfi-fastcharge 5-1: config 0 descriptor??
[  193.491028][ T8455] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  193.536766][ T8455] JBD2: Ignoring recovery information on journal
[  193.571065][ T8446] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  193.679598][    T8] apple-mfi-fastcharge 5-1: USB disconnect, device number 6
[  193.760015][ T8455] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  194.061452][ T8455] OCFS2: ERROR (device loop1): ocfs2_claim_suballoc_bits: Chain allocator dinode 73 has 4294901761 used bits but only 0 total
[  194.075182][ T5833] ocfs2: Unmounting device (7,5) on (node local)
[  194.105116][ T8455] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  194.141984][ T8455] OCFS2: File system is now read-only.
[  194.147796][ T8455] (syz.1.1026,8455,0):ocfs2_claim_suballoc_bits:2038 ERROR: status = -30
[  194.167623][ T8455] (syz.1.1026,8455,0):ocfs2_claim_metadata:2063 ERROR: status = -30
[  194.232888][ T8455] (syz.1.1026,8455,0):ocfs2_claim_metadata:2076 ERROR: status = -30
[  194.314716][ T8455] (syz.1.1026,8455,1):ocfs2_dx_dir_attach_index:2311 ERROR: status = -30
[  194.324226][ T8455] (syz.1.1026,8455,1):ocfs2_expand_inline_dir:3004 ERROR: status = -30
[  194.332748][ T8455] (syz.1.1026,8455,1):ocfs2_extend_dir:3186 ERROR: status = -30
[  194.340440][ T8455] (syz.1.1026,8455,1):ocfs2_prepare_dir_for_insert:4291 ERROR: status = -30
[  194.349310][ T8455] (syz.1.1026,8455,1):ocfs2_mknod:298 ERROR: status = -30
[  194.490862][ T8455] (syz.1.1026,8455,1):ocfs2_mknod:502 ERROR: status = -30
[  194.498237][ T8455] (syz.1.1026,8455,1):ocfs2_create:676 ERROR: status = -30
[  194.793472][ T5839] __find_get_block_slow() failed. block=9295429630892703776, b_blocknr=32, b_state=0x00310019, b_size=512, device loop1 blocksize: 512
[  194.807512][ T5839] grow_buffers: requested out-of-range block 9295429630892703776 for device loop1
[  194.816926][ T5839] (syz-executor,5839,1):ocfs2_read_blocks:239 ERROR: status = -12
[  194.824895][ T5839] (syz-executor,5839,1):_ocfs2_free_suballoc_bits:2553 ERROR: status = -12
[  194.834079][ T5839] (syz-executor,5839,1):_ocfs2_free_clusters:2650 ERROR: status = -12
[  194.842977][ T5839] (syz-executor,5839,1):ocfs2_sync_local_to_main:996 ERROR: status = -12
[  194.851725][ T5839] (syz-executor,5839,1):ocfs2_sync_local_to_main:1009 ERROR: status = -12
[  194.860316][ T5839] (syz-executor,5839,1):ocfs2_shutdown_local_alloc:450 ERROR: status = -12
[  195.346555][ T8556] lo speed is unknown, defaulting to 1000
[  195.360747][ T5839] ocfs2: Unmounting device (7,1) on (node local)
[  196.130275][ T8582] loop6: detected capacity change from 0 to 64
[  196.244315][ T8587] loop4: detected capacity change from 0 to 8192
[  197.129350][ T8620] syz.0.1085: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  197.145498][ T8620] CPU: 1 UID: 0 PID: 8620 Comm: syz.0.1085 Not tainted 6.13.0-rc5-syzkaller-00161-g63676eefb7a0 #0
[  197.156236][ T8620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  197.166323][ T8620] Call Trace:
[  197.169649][ T8620]  <TASK>
[  197.172604][ T8620]  dump_stack_lvl+0x16c/0x1f0
[  197.177339][ T8620]  warn_alloc+0x24d/0x3a0
[  197.181720][ T8620]  ? __pfx_warn_alloc+0x10/0x10
[  197.186611][ T8620]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  197.192472][ T8620]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.198154][ T8620]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.203826][ T8620]  ? kasan_save_stack+0x42/0x60
[  197.208804][ T8620]  ? kasan_save_stack+0x33/0x60
[  197.213689][ T8620]  ? kasan_save_track+0x14/0x30
[  197.218657][ T8620]  ? __kasan_kmalloc+0xaa/0xb0
[  197.223454][ T8620]  ? xskq_create+0x52/0x1d0
[  197.227994][ T8620]  ? do_sock_setsockopt+0x225/0x480
[  197.233236][ T8620]  ? __sys_setsockopt+0x1a0/0x230
[  197.238293][ T8620]  ? __x64_sys_setsockopt+0xbd/0x160
[  197.243621][ T8620]  __vmalloc_node_range_noprof+0x10df/0x1530
[  197.249682][ T8620]  ? xskq_create+0xfb/0x1d0
[  197.254234][ T8620]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  197.260637][ T8620]  ? xskq_create+0xfb/0x1d0
[  197.265178][ T8620]  vmalloc_user_noprof+0x6b/0x90
[  197.270436][ T8620]  ? xskq_create+0xfb/0x1d0
[  197.275035][ T8620]  xskq_create+0xfb/0x1d0
[  197.279413][ T8620]  xsk_setsockopt+0x7b7/0xa10
[  197.284128][ T8620]  ? __pfx_xsk_setsockopt+0x10/0x10
[  197.289378][ T8620]  ? __pfx_futex_wake+0x10/0x10
[  197.294283][ T8620]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.299950][ T8620]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.305790][ T8620]  ? find_held_lock+0x2d/0x110
[  197.310619][ T8620]  ? __pfx_xsk_setsockopt+0x10/0x10
[  197.315858][ T8620]  do_sock_setsockopt+0x225/0x480
[  197.320932][ T8620]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  197.326526][ T8620]  ? lock_acquire+0x2f/0xb0
[  197.331093][ T8620]  __sys_setsockopt+0x1a0/0x230
[  197.335990][ T8620]  __x64_sys_setsockopt+0xbd/0x160
[  197.341134][ T8620]  ? do_syscall_64+0x91/0x250
[  197.345866][ T8620]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.351539][ T8620]  ? lockdep_hardirqs_on+0x7c/0x110
[  197.356793][ T8620]  do_syscall_64+0xcd/0x250
[  197.361359][ T8620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.367316][ T8620] RIP: 0033:0x7ff7f8585d29
[  197.371760][ T8620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.391504][ T8620] RSP: 002b:00007ff7f9341038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  197.399962][ T8620] RAX: ffffffffffffffda RBX: 00007ff7f8775fa0 RCX: 00007ff7f8585d29
[  197.407967][ T8620] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  197.415977][ T8620] RBP: 00007ff7f8601b08 R08: 0000000000000004 R09: 0000000000000000
[  197.423982][ T8620] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[  197.431983][ T8620] R13: 0000000000000000 R14: 00007ff7f8775fa0 R15: 00007ffc5c91dc48
[  197.440024][ T8620]  </TASK>
[  197.443471][ T8620] Mem-Info:
[  197.448001][ T8620] active_anon:6739 inactive_anon:0 isolated_anon:0
[  197.448001][ T8620]  active_file:1855 inactive_file:38310 isolated_file:0
[  197.448001][ T8620]  unevictable:768 dirty:512 writeback:0
[  197.448001][ T8620]  slab_reclaimable:10458 slab_unreclaimable:105741
[  197.448001][ T8620]  mapped:34760 shmem:1929 pagetables:914
[  197.448001][ T8620]  sec_pagetables:0 bounce:0
[  197.448001][ T8620]  kernel_misc_reclaimable:0
[  197.448001][ T8620]  free:1317087 free_pcp:3544 free_cma:0
[  197.494621][ T8620] Node 0 active_anon:26908kB inactive_anon:0kB active_file:7420kB inactive_file:153152kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:139004kB dirty:2040kB writeback:0kB shmem:6176kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11704kB pagetables:3668kB sec_pagetables:0kB all_unreclaimable? no
[  197.527657][ T8620] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  197.558193][ T8620] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  197.585628][ T8620] lowmem_reserve[]: 0 2461 2461 0 0
[  197.591057][ T8620] Node 0 DMA32 free:1352816kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:26764kB inactive_anon:0kB active_file:7420kB inactive_file:152852kB unevictable:1536kB writepending:2040kB present:3129332kB managed:2549212kB mlocked:0kB bounce:0kB free_pcp:1952kB local_pcp:580kB free_cma:0kB
[  197.622280][ T8620] lowmem_reserve[]: 0 0 0 0 0
[  197.627629][ T8620] Node 0 Normal free:4kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:300kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  197.655523][ T8620] lowmem_reserve[]: 0 0 0 0 0
[  197.660904][ T8620] Node 1 Normal free:3900068kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:12252kB local_pcp:12252kB free_cma:0kB
[  197.690602][ T8620] lowmem_reserve[]: 0 0 0 0 0
[  197.695491][ T8620] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  197.709556][ T8620] Node 0 DMA32: 18*4kB (UME) 98*8kB (ME) 173*16kB (UME) 215*32kB (UME) 138*64kB (UME) 50*128kB (UME) 30*256kB (UME) 22*512kB (UM) 8*1024kB (UME) 5*2048kB (ME) 315*4096kB (UM) = 1353352kB
[  197.728613][ T8620] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  197.740849][ T8620] Node 1 Normal: 7*4kB (UME) 7*8kB (UME) 11*16kB (UME) 11*32kB (UME) 11*64kB (UME) 7*128kB (UME) 12*256kB (UM) 7*512kB (UM) 4*1024kB (UM) 4*2048kB (UME) 947*4096kB (UM) = 3900068kB
[  197.759444][ T8620] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  197.769242][ T8620] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  197.778739][ T8620] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  197.788454][ T8620] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  197.797926][ T8620] 42079 total pagecache pages
[  197.803712][ T8620] 0 pages in swap cache
[  197.807955][ T8620] Free swap  = 124996kB
[  197.812342][ T8620] Total swap = 124996kB
[  197.816596][ T8620] 2097051 pages RAM
[  197.820603][ T8620] 0 pages HighMem/MovableOnly
[  197.825383][ T8620] 428026 pages reserved
[  197.829783][ T8620] 0 pages cma reserved
[  198.668100][ T8653] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1094'.
[  198.813894][ T8659] autofs4:pid:8659:validate_dev_ioctl: path string terminator missing for cmd(0xc018937d)
[  198.934935][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  198.947264][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  199.345867][ T8671] loop5: detected capacity change from 0 to 4096
[  199.368716][ T8671] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  199.568259][ T8679] netlink: 'syz.4.1105': attribute type 10 has an invalid length.
[  199.705786][ T8679] macvlan0: entered promiscuous mode
[  199.715933][ T8679] macvlan0: entered allmulticast mode
[  199.752588][ T8679] veth1_vlan: entered allmulticast mode
[  199.761762][ T8679] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  200.051743][ T8694] loop5: detected capacity change from 0 to 256
[  200.133358][ T8694] MINIX-fs: mounting file system with errors, running fsck is recommended
[  200.967490][ T8724] loop4: detected capacity change from 0 to 256
[  201.167668][ T8724] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  201.229601][   T29] audit: type=1326 audit(1870168364.587:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  201.359104][   T29] audit: type=1326 audit(1870168364.607:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  201.497127][   T29] audit: type=1326 audit(1870168364.607:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  201.564433][ T8742] netlink: 'syz.3.1128': attribute type 2 has an invalid length.
[  201.572881][ T8742] netlink: 'syz.3.1128': attribute type 1 has an invalid length.
[  201.600896][   T29] audit: type=1326 audit(1870168364.607:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  201.700629][   T29] audit: type=1326 audit(1870168364.607:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  201.708030][ T8746] x_tables: ip_tables: .0 target: invalid size 8 (kernel) != (user) 0
[  202.102254][ T5830] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  202.323679][ T5830] usb 5-1: too many configurations: 63, using maximum allowed: 8
[  202.394934][ T5830] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  202.419817][ T5830] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.421580][ T8774] netlink: 'syz.0.1140': attribute type 8 has an invalid length.
[  202.459449][ T5830] usb 5-1: Product: syz
[  202.479880][ T5830] usb 5-1: Manufacturer: syz
[  202.515851][ T5830] usb 5-1: SerialNumber: syz
[  202.588036][ T5830] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  202.690742][ T5913] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  203.065512][ T8789] loop1: detected capacity change from 0 to 164
[  203.202615][    T8] usb 5-1: USB disconnect, device number 7
[  203.460309][ T8801] loop0: detected capacity change from 0 to 512
[  203.482034][ T8801] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  203.652726][ T8806] loop5: detected capacity change from 0 to 4096
[  203.656719][ T8801] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2862: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  203.741356][ T8801] EXT4-fs (loop0): 1 truncate cleaned up
[  203.748127][ T8801] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.003336][ T8798] loop6: detected capacity change from 0 to 32768
[  204.132187][ T5913] usb 5-1: Service connection timeout for: 256
[  204.138418][ T5913] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services
[  204.161410][ T8815] bond1: entered promiscuous mode
[  204.167388][ T8815] bond1: entered allmulticast mode
[  204.177676][ T5913] ath9k_htc: Failed to initialize the device
[  204.185641][ T8815] 8021q: adding VLAN 0 to HW filter on device bond1
[  204.193998][    T8] usb 5-1: ath9k_htc: USB layer deinitialized
[  204.217089][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.407656][ T8826] loop1: detected capacity change from 0 to 512
[  204.438527][ T8798] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  204.512997][ T8826] EXT4-fs: Ignoring removed nomblk_io_submit option
[  204.519701][ T8826] EXT4-fs: Ignoring removed mblk_io_submit option
[  204.671991][ T8826] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  204.698225][ T8826] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[  204.711737][ T8833] loop4: detected capacity change from 0 to 16
[  204.784193][ T8833] erofs (device loop4): mounted with root inode @ nid 36.
[  204.880118][ T8826] EXT4-fs (loop1): 1 truncate cleaned up
[  204.897196][ T8826] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.941070][ T7480] ocfs2: Unmounting device (7,6) on (node local)
[  205.127813][ T8826] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  205.210626][ T5913] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  205.329627][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.410891][ T5913] usb 4-1: Using ep0 maxpacket: 8
[  205.422969][ T5913] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  205.451352][ T5913] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.508631][ T5913] usb 4-1: config 0 descriptor??
[  205.574604][ T8856] netlink: 39 bytes leftover after parsing attributes in process `syz.5.1173'.
[  205.600274][ T8857] lo speed is unknown, defaulting to 1000
[  205.606368][ T8856] netlink: 39 bytes leftover after parsing attributes in process `syz.5.1173'.
[  205.751774][ T5913] asix 4-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  205.963608][ T5913] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  206.009358][ T5913] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  206.051043][ T5913] asix 4-1:0.0: probe with driver asix failed with error -71
[  206.121278][ T5913] usb 4-1: USB disconnect, device number 8
[  206.880061][   T29] audit: type=1326 audit(1870168370.237:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.4.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  206.932974][   T29] audit: type=1326 audit(1870168370.237:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.4.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  207.030535][   T29] audit: type=1326 audit(1870168370.297:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.4.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  207.170935][   T29] audit: type=1326 audit(1870168370.297:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.4.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  207.230564][   T29] audit: type=1326 audit(1870168370.297:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.4.1190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  207.308239][ T8901] dccp_invalid_packet: P.Data Offset(4) too small
[  207.604895][ T8895] loop6: detected capacity change from 0 to 32768
[  207.943308][ T8895] JBD2: Ignoring recovery information on journal
[  208.070745][ T8895] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  208.443247][ T8895] OCFS2: ERROR (device loop6): ocfs2_claim_suballoc_bits: Chain allocator dinode 73 has 4294901761 used bits but only 0 total
[  208.486527][ T8932] netlink: 64985 bytes leftover after parsing attributes in process `syz.5.1209'.
[  208.530968][ T8895] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  208.575328][ T8934] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1208'.
[  208.637258][ T8895] OCFS2: File system is now read-only.
[  208.662807][ T8895] (syz.6.1189,8895,0):ocfs2_claim_suballoc_bits:2038 ERROR: status = -30
[  208.720876][ T8895] (syz.6.1189,8895,1):ocfs2_claim_metadata:2063 ERROR: status = -30
[  208.729621][ T8895] (syz.6.1189,8895,1):ocfs2_claim_metadata:2076 ERROR: status = -30
[  208.737804][ T8895] (syz.6.1189,8895,1):ocfs2_dx_dir_attach_index:2311 ERROR: status = -30
[  208.748377][ T8938] loop0: detected capacity change from 0 to 256
[  208.773405][ T8895] (syz.6.1189,8895,1):ocfs2_expand_inline_dir:3004 ERROR: status = -30
[  208.790593][ T8895] (syz.6.1189,8895,1):ocfs2_extend_dir:3186 ERROR: status = -30
[  208.792944][ T8938] exfat: Deprecated parameter 'utf8'
[  208.840586][ T8895] (syz.6.1189,8895,1):ocfs2_prepare_dir_for_insert:4291 ERROR: status = -30
[  208.849568][ T8895] (syz.6.1189,8895,1):ocfs2_mknod:298 ERROR: status = -30
[  208.887593][ T8895] (syz.6.1189,8895,1):ocfs2_mknod:502 ERROR: status = -30
[  208.928057][ T8895] (syz.6.1189,8895,1):ocfs2_create:676 ERROR: status = -30
[  208.935471][   T29] audit: type=1326 audit(1870168372.247:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  208.960448][   T29] audit: type=1326 audit(1870168372.287:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  208.982676][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.990719][   T29] audit: type=1326 audit(1870168372.307:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  209.013335][    C1] vkms_vblank_simulate: vblank timer overrun
[  209.020611][   T29] audit: type=1326 audit(1870168372.307:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  209.042968][   T29] audit: type=1326 audit(1870168372.307:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  209.065150][    C1] vkms_vblank_simulate: vblank timer overrun
[  209.108767][ T8944] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1214'.
[  209.142292][ T7480] __find_get_block_slow() failed. block=9295429630892703776, b_blocknr=32, b_state=0x00310019, b_size=512, device loop6 blocksize: 512
[  209.218657][ T8944] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1214'.
[  209.228544][ T7480] grow_buffers: requested out-of-range block 9295429630892703776 for device loop6
[  209.238063][ T7480] (syz-executor,7480,1):ocfs2_read_blocks:239 ERROR: status = -12
[  209.266460][ T7480] (syz-executor,7480,1):_ocfs2_free_suballoc_bits:2553 ERROR: status = -12
[  209.299055][ T7480] (syz-executor,7480,1):_ocfs2_free_clusters:2650 ERROR: status = -12
[  209.310644][ T8944] netlink: 'syz.3.1214': attribute type 3 has an invalid length.
[  209.338852][ T7480] (syz-executor,7480,1):ocfs2_sync_local_to_main:996 ERROR: status = -12
[  209.370162][ T8944] netlink: 11 bytes leftover after parsing attributes in process `syz.3.1214'.
[  209.384759][ T8946] loop5: detected capacity change from 0 to 1764
[  209.403713][ T7480] (syz-executor,7480,1):ocfs2_sync_local_to_main:1009 ERROR: status = -12
[  209.426558][ T7480] (syz-executor,7480,0):ocfs2_shutdown_local_alloc:450 ERROR: status = -12
[  209.483999][ T8930] loop1: detected capacity change from 0 to 32768
[  209.618339][ T8954] bridge0: port 3(erspan0) entered blocking state
[  209.647033][ T8954] bridge0: port 3(erspan0) entered disabled state
[  209.655923][ T7480] ocfs2: Unmounting device (7,6) on (node local)
[  209.679546][ T8954] erspan0: entered allmulticast mode
[  209.734487][ T8954] erspan0: entered promiscuous mode
[  209.751765][ T8954] bridge0: port 3(erspan0) entered blocking state
[  209.758477][ T8954] bridge0: port 3(erspan0) entered forwarding state
[  209.902412][ T8959] loop5: detected capacity change from 0 to 512
[  210.083071][ T8959] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1222: corrupted in-inode xattr: invalid ea_ino
[  210.270615][ T8959] EXT4-fs error (device loop5): ext4_orphan_get:1392: comm syz.5.1222: couldn't read orphan inode 15 (err -117)
[  210.410621][ T8959] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.497908][ T8959] /dev/loop5: Can't open blockdev
[  210.619562][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.378058][ T9005] loop4: detected capacity change from 0 to 512
[  211.458464][ T9005] EXT4-fs warning (device loop4): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[  211.676322][ T9014] netlink: 'syz.6.1246': attribute type 2 has an invalid length.
[  211.758877][ T9014] netlink: 'syz.6.1246': attribute type 1 has an invalid length.
[  212.769953][ T9042] netlink: 'syz.5.1260': attribute type 3 has an invalid length.
[  212.805056][ T9042] netlink: 666 bytes leftover after parsing attributes in process `syz.5.1260'.
[  213.151589][ T9050] loop4: detected capacity change from 0 to 64
[  213.664798][ T9038] loop1: detected capacity change from 0 to 32768
[  213.866638][ T9058] delete_channel: no stack
[  214.066645][ T9063] loop6: detected capacity change from 0 to 32768
[  214.098435][ T9063] jfs_strtoUCS: char2uni returned -22.
[  214.104238][ T9063] charset = euc-jp, char = 0xd4
[  215.010739][ T9078] loop4: detected capacity change from 0 to 16
[  215.121845][ T9078] erofs (device loop4): mounted with root inode @ nid 36.
[  215.280855][ T9086] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1276'.
[  215.320268][ T9092] loop1: detected capacity change from 0 to 512
[  215.359401][ T9092] EXT4-fs: Ignoring removed nobh option
[  215.372907][ T9089] loop5: detected capacity change from 0 to 512
[  215.495728][ T9089] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.1283: iget: bad i_size value: -67835469387268086
[  215.601551][ T9089] EXT4-fs (loop5): Remounting filesystem read-only
[  215.609167][ T9089] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.621854][ T9089] ext4 filesystem being mounted at /235/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  215.633932][ T9089] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.643947][ T9092] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.670851][ T9092] ext4 filesystem being mounted at /237/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.768561][ T9092] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  215.794551][ T9092] EXT4-fs (loop1): Remounting filesystem read-only
[  216.023650][ T9110] bond2: entered promiscuous mode
[  216.029737][ T9110] bond2: entered allmulticast mode
[  216.035421][ T9110] 8021q: adding VLAN 0 to HW filter on device bond2
[  216.043632][ T9113] (unnamed net_device) (uninitialized): down delay (2147483647) is not a multiple of miimon (100), value rounded to 2147483600 ms
[  216.144991][ T9113] 8021q: adding VLAN 0 to HW filter on device bond1
[  216.211325][ T5839] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  216.308701][   T12] __quota_error: 1 callbacks suppressed
[  216.308727][   T12] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  216.331216][   T12] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  216.398723][ T5852] Bluetooth: hci4: command 0x0406 tx timeout
[  216.407245][ T5852] Bluetooth: hci0: command 0x0406 tx timeout
[  216.413484][ T5852] Bluetooth: hci5: command 0x0406 tx timeout
[  216.419663][ T5852] Bluetooth: hci3: command 0x0406 tx timeout
[  216.580705][ T5913] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  216.759474][ T5913] usb 1-1: config 0 has an invalid interface number: 69 but max is 0
[  216.778062][ T5913] usb 1-1: config 0 has no interface number 0
[  216.798360][ T5913] usb 1-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[  216.849507][ T5913] usb 1-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  216.921911][ T5913] usb 1-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  216.938073][ T5913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.966674][ T5913] usb 1-1: Product: syz
[  216.978784][ T5913] usb 1-1: Manufacturer: syz
[  217.000130][ T5913] usb 1-1: SerialNumber: syz
[  217.025251][ T5913] usb 1-1: config 0 descriptor??
[  217.033240][ T9126] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  217.092910][ T5913] cyberjack 1-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  217.171292][ T5913] usb 1-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  217.550386][ T9159] loop6: detected capacity change from 0 to 128
[  217.572095][ T5830] usb 1-1: USB disconnect, device number 5
[  217.612976][ T9162] netlink: 'syz.5.1313': attribute type 2 has an invalid length.
[  217.883547][ T5830] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  217.884086][ T5830] cyberjack 1-1:0.69: device disconnected
[  217.973427][ T9176] netlink: 'syz.1.1319': attribute type 1 has an invalid length.
[  218.045697][ T9159] EXT4-fs (loop6): Test dummy encryption mode enabled
[  218.095354][ T9159] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  218.152041][ T9159] ext4 filesystem being mounted at /73/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  218.482480][ T9159] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  218.568792][ T9159] EXT4-fs error (device loop6): ext4_validate_block_bitmap:423: comm syz.6.1312: bg 0: bad block bitmap checksum
[  218.852200][ T7480] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  218.879623][ T9206] loop3: detected capacity change from 0 to 256
[  218.983525][ T9206] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 196)
[  219.032195][ T9206] FAT-fs (loop3): Filesystem has been set read-only
[  219.243991][ T5838] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 196)
[  219.260618][ T5830] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  219.441404][ T5830] usb 1-1: Using ep0 maxpacket: 16
[  219.492389][ T5830] usb 1-1: config index 0 descriptor too short (expected 16456, got 72)
[  219.539430][ T5830] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[  219.599994][ T5830] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[  219.628843][ T5830] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[  219.679203][ T5830] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  219.725887][ T5830] usb 1-1: config 0 has no interface number 0
[  219.745414][ T5830] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  219.800522][ T5830] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  219.864842][ T5830] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  219.925658][ T5830] usb 1-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  219.998003][ T9200] loop4: detected capacity change from 0 to 32768
[  220.000122][ T5830] usb 1-1: config 0 interface 125 has no altsetting 2
[  220.028820][ T9200] JBD2: Ignoring recovery information on journal
[  220.077900][ T5830] usb 1-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  220.095336][ T9237] loop5: detected capacity change from 0 to 256
[  220.111325][ T5830] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.133298][ T9200] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  220.174288][ T9200] (syz.4.1328,9200,1):ocfs2_check_dir_entry:321 ERROR: bad entry in directory #17: directory entry too close to end - offset=32, inode=16945, rec_len=280, name_len=10
[  220.215012][ T5830] usb 1-1: Product: syz
[  220.219261][ T5830] usb 1-1: Manufacturer: syz
[  220.230607][ T9200] (syz.4.1328,9200,0):ocfs2_prepare_dir_for_insert:4277 ERROR: status = -2
[  220.249836][ T9200] (syz.4.1328,9200,0):ocfs2_mknod:298 ERROR: status = -2
[  220.250573][ T5830] usb 1-1: SerialNumber: syz
[  220.300602][ T9200] (syz.4.1328,9200,0):ocfs2_mknod:502 ERROR: status = -2
[  220.382396][ T9200] (syz.4.1328,9200,0):ocfs2_create:676 ERROR: status = -2
[  220.578320][ T5830] usb 1-1: config 0 descriptor??
[  220.597795][ T5830] usb 1-1: selecting invalid altsetting 2
[  221.044482][ T5831] ocfs2: Unmounting device (7,4) on (node local)
[  222.051462][   T29] audit: type=1326 audit(1870168385.407:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9300 comm="syz.1.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  222.077449][ T9295] wireguard0: entered promiscuous mode
[  222.101072][ T9295] wireguard0: entered allmulticast mode
[  222.180794][   T29] audit: type=1326 audit(1870168385.407:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9300 comm="syz.1.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  222.230591][  T968] usb 1-1: USB disconnect, device number 6
[  222.297695][   T29] audit: type=1326 audit(1870168385.467:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9300 comm="syz.1.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  222.357739][   T29] audit: type=1326 audit(1870168385.467:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9300 comm="syz.1.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  222.410773][   T29] audit: type=1326 audit(1870168385.467:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9300 comm="syz.1.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  222.597395][ T9313] (unnamed net_device) (uninitialized): up delay (5) is not a multiple of miimon (4), value rounded to 4 ms
[  222.975997][ T9327] loop0: detected capacity change from 0 to 64
[  223.361136][ T9343] loop3: detected capacity change from 0 to 16
[  223.545415][ T9343] erofs (device loop3): mounted with root inode @ nid 36.
[  223.960098][ T9362] loop6: detected capacity change from 0 to 256
[  224.367026][ T9378] netlink: 'syz.3.1414': attribute type 5 has an invalid length.
[  224.426439][ T9378] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1414'.
[  224.724525][ T9386] usb usb8: check_ctrlrecip: process 9386 (syz.1.1419) requesting ep 01 but needs 81
[  224.797730][ T9386] usb usb8: usbfs: process 9386 (syz.1.1419) did not claim interface 0 before use
[  226.055160][ T9422] loop0: detected capacity change from 0 to 32768
[  226.063355][ T9422] XFS: attr2 mount option is deprecated.
[  226.322585][ T9422] XFS (loop0): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  226.362761][ T9422] XFS (loop0): Quotacheck needed: Please wait.
[  226.562093][ T9422] XFS (loop0): Quotacheck: Done.
[  226.789452][ T9461] loop3: detected capacity change from 0 to 8
[  226.837107][ T5837] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  226.840443][ T9461] unable to read id index table
[  226.890258][   T29] audit: type=1326 audit(1870168390.247:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9462 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  226.899924][ T9464] loop4: detected capacity change from 0 to 256
[  226.973512][   T29] audit: type=1326 audit(1870168390.337:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9462 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  226.996819][   T29] audit: type=1326 audit(1870168390.337:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9462 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  227.020405][   T29] audit: type=1326 audit(1870168390.337:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9462 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  227.390851][ T5898] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  227.550566][ T5898] usb 7-1: Using ep0 maxpacket: 16
[  227.569004][ T5898] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  227.588678][ T9482] loop4: detected capacity change from 0 to 16
[  227.609361][ T5898] usb 7-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice= 1.00
[  227.618934][ T9482] erofs (device loop4): mounted with root inode @ nid 36.
[  227.666805][ T5898] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.706194][ T5898] usb 7-1: config 0 descriptor??
[  227.860622][ T5898] rc_core: IR keymap rc-xbox-dvd not found
[  227.876767][ T5898] Registered IR keymap rc-empty
[  227.919429][ T5898] rc rc0: Xbox DVD USB Remote Control(045e,0284) as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0
[  227.949768][ T9493] loop0: detected capacity change from 0 to 128
[  228.003190][ T5898] input: Xbox DVD USB Remote Control(045e,0284) as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0/input12
[  228.051417][ T5898] xbox_remote 7-1:0.0: xbox_remote_rc_open: usb_submit_urb failed!
[  228.142236][ T5898] input: failed to attach handler kbd to device input12, error: -5
[  228.165117][ T5186] xbox_remote 7-1:0.0: xbox_remote_rc_open: usb_submit_urb failed!
[  228.183055][ T9495] loop4: detected capacity change from 0 to 512
[  228.275382][ T5186] xbox_remote 7-1:0.0: xbox_remote_rc_open: usb_submit_urb failed!
[  228.288245][ T9495] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.336992][ T9495] ext4 filesystem being mounted at /245/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  228.355507][ T5898] usb 7-1: USB disconnect, device number 5
[  228.713754][ T9509] openvswitch: netlink: Unexpected mask (mask=c0, allowed=10048)
[  228.735237][ T9511] netlink: 'syz.1.1471': attribute type 8 has an invalid length.
[  228.788279][ T9489] loop5: detected capacity change from 0 to 32768
[  228.879713][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.907598][ T9489] ERROR: (device loop5): dbAllocAny: unable to allocate blocks
[  228.907598][ T9489] 
[  229.980870][ T9546] loop4: detected capacity change from 0 to 2048
[  230.021210][ T9546] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  230.082839][ T9546] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  230.662097][ T9567] delete_channel: no stack
[  230.982156][ T9579] process 'syz.1.1504' launched '/dev/fd/3' with NULL argv: empty string added
[  231.254702][ T9592] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  231.473243][ T9596] qrtr: Invalid version 0
[  231.568859][ T9600] loop1: detected capacity change from 0 to 256
[  231.576783][ T9600] exfat: Deprecated parameter 'utf8'
[  231.651323][ T9600] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  231.668554][ T9603] loop3: detected capacity change from 0 to 512
[  231.816612][ T9603] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.910703][ T9603] ext4 filesystem being mounted at /243/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  232.237091][ T5838] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.630940][ T9640] loop5: detected capacity change from 0 to 512
[  232.730926][ T9640] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.766767][ T9640] ext4 filesystem being mounted at /278/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  232.918104][ T9651] tmpfs: Bad value for 'mpol'
[  232.930796][  T968] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  233.090338][ T9656] loop3: detected capacity change from 0 to 512
[  233.094338][  T968] usb 5-1: Using ep0 maxpacket: 32
[  233.123974][  T968] usb 5-1: config 0 has an invalid interface number: 113 but max is 0
[  233.149856][  T968] usb 5-1: config 0 has no interface number 0
[  233.178213][  T968] usb 5-1: config 0 interface 113 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 1023
[  233.193996][ T9658] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1541'.
[  233.242960][  T968] usb 5-1: New USB device found, idVendor=0525, idProduct=1080, bcdDevice=58.5f
[  233.263785][ T9656] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.297364][  T968] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.321785][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.334945][ T9656] ext4 filesystem being mounted at /245/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  233.355459][  T968] usb 5-1: Product: syz
[  233.359676][  T968] usb 5-1: Manufacturer: syz
[  233.410936][  T968] usb 5-1: SerialNumber: syz
[  233.443339][  T968] usb 5-1: config 0 descriptor??
[  233.449133][ T9644] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  233.679775][ T9644] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  233.695276][ T5838] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.169731][  T968] net1080 5-1:0.113 usb0: register 'net1080' at usb-dummy_hcd.4-1, NetChip TurboCONNECT, ce:ef:9b:4d:b3:3a
[  234.212747][  T968] usb 5-1: USB disconnect, device number 8
[  234.240118][ T9690] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  234.257119][  T968] net1080 5-1:0.113 usb0: unregister 'net1080' usb-dummy_hcd.4-1, NetChip TurboCONNECT
[  234.386142][ T9692] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  234.397311][ T9696] netlink: 'syz.1.1559': attribute type 8 has an invalid length.
[  234.463926][ T9694] loop3: detected capacity change from 0 to 2048
[  234.517195][ T9697] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  234.670097][ T9694] NILFS error (device loop3): nilfs_lookup: deleted inode referenced: 12
[  234.815955][ T9694] Remounting filesystem read-only
[  235.227495][ T9716] xt_hashlimit: Unknown mode mask 10C, kernel too old?
[  235.567504][ T9729] 
@ÿ: renamed from bond_slave_0 (while UP)
[  235.595358][ T9728] netlink: 'syz.0.1574': attribute type 2 has an invalid length.
[  235.615018][ T9728] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1574'.
[  235.641939][ T9733] netdevsim netdevsim5 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  235.700763][ T9733] netdevsim netdevsim5 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  235.760620][ T9733] netdevsim netdevsim5 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  235.796286][ T9733] netdevsim netdevsim5 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  236.141411][ T9747] loop3: detected capacity change from 0 to 22
[  236.181681][ T9747] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  236.510755][ T9747] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  236.847556][ T9775] kAFS: unable to lookup cell '\/'
[  237.266812][ T9789] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1601'.
[  237.674874][ T9802] mmap: syz.4.1610 (9802) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  238.063424][ T9817] loop1: detected capacity change from 0 to 64
[  238.401024][ T9827] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1624'.
[  239.165010][   T29] audit: type=1400 audit(1870168402.527:65): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=9849 comm="syz.6.1632"
[  239.294342][   T29] audit: type=1326 audit(1870168402.657:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  239.398657][   T29] audit: type=1326 audit(1870168402.697:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  239.489158][   T29] audit: type=1326 audit(1870168402.697:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  239.511406][    C1] vkms_vblank_simulate: vblank timer overrun
[  239.607869][   T29] audit: type=1326 audit(1870168402.697:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  239.701440][   T29] audit: type=1326 audit(1870168402.697:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d2985d29 code=0x7ffc0000
[  240.635566][ T9899] loop3: detected capacity change from 0 to 2048
[  240.748359][ T9899] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.1656: bad orphan inode 8192
[  240.812839][ T9907] loop0: detected capacity change from 0 to 8
[  240.862678][ T9899] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.953852][ T9907] SQUASHFS error: Failed to read block 0x2fc: -5
[  240.980716][ T9907] SQUASHFS error: Unable to read metadata cache entry [2fa]
[  241.020899][ T9907] SQUASHFS error: Unable to read directory block [247:26]
[  241.137666][ T5838] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.169280][ T9916] tmpfs: Bad value for 'mpol'
[  241.201111][ T9921] loop1: detected capacity change from 0 to 256
[  241.874474][ T9939] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.1673'.
[  241.932281][ T9939] openvswitch: netlink: Missing key (keys=40, expected=80)
[  241.996761][ T9947] loop4: detected capacity change from 0 to 128
[  242.022402][ T5913] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  242.026690][ T9947] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  242.160928][ T9947] FAT-fs (loop4): error, invalid access to FAT (entry 0x0affffff)
[  242.169506][ T9947] FAT-fs (loop4): Filesystem has been set read-only
[  242.187203][ T5913] usb 1-1: New USB device found, idVendor=0582, idProduct=0004, bcdDevice=6b.64
[  242.217455][ T5913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.267870][ T5913] usb 1-1: Product: syz
[  242.287687][ T5913] usb 1-1: Manufacturer: syz
[  242.305365][ T5913] usb 1-1: SerialNumber: syz
[  242.328150][ T9953] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1681'.
[  242.420877][   T29] audit: type=1326 audit(1870168405.777:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  242.505897][   T29] audit: type=1326 audit(1870168405.787:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  242.528282][    C1] vkms_vblank_simulate: vblank timer overrun
[  242.627567][ T5913] usb 1-1: USB disconnect, device number 7
[  242.660822][   T29] audit: type=1326 audit(1870168405.787:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  242.747088][   T29] audit: type=1326 audit(1870168405.787:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9956 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d9785d29 code=0x7ffc0000
[  242.939612][ T6172] udevd[6172]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:5.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  243.021877][ T9977] loop6: detected capacity change from 0 to 256
[  243.062298][ T9979] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1693'.
[  243.255767][ T9976] loop5: detected capacity change from 0 to 256
[  243.834633][ T9998] loop1: detected capacity change from 0 to 512
[  243.868871][ T9998] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  243.962366][ T9998] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.034872][T10008] loop3: detected capacity change from 0 to 128
[  244.037172][ T9998] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.056704][T10005] xt_l2tp: invalid flags combination: c
[  244.084954][T10008] VFS: Found a Xenix FS (block size = 1024) on device loop3
[  244.168338][T10008] syz.3.1705: attempt to access beyond end of device
[  244.168338][T10008] loop3: rw=0, sector=6491536, nr_sectors = 2 limit=128
[  244.219639][T10008] Buffer I/O error on dev loop3, logical block 3245768, async page read
[  244.230919][    T8] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  244.269324][T10008] syz.3.1705: attempt to access beyond end of device
[  244.269324][T10008] loop3: rw=0, sector=6491536, nr_sectors = 2 limit=128
[  244.297290][T10008] Buffer I/O error on dev loop3, logical block 3245768, async page read
[  244.320654][ T5899] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  244.339575][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.403313][    T8] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  244.425733][    T8] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  244.470663][    T8] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  244.490725][ T5899] usb 1-1: Using ep0 maxpacket: 16
[  244.501710][ T5838] sysv_free_block: flc_count > flc_size
[  244.507296][ T5838] sysv_free_block: flc_count > flc_size
[  244.520550][ T5838] sysv_free_block: flc_count > flc_size
[  244.523962][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.540747][ T5838] sysv_free_block: flc_count > flc_size
[  244.546358][ T5838] sysv_free_block: flc_count > flc_size
[  244.550154][ T5899] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  244.566705][ T5838] sysv_free_block: flc_count > flc_size
[  244.590191][ T5838] sysv_free_block: flc_count > flc_size
[  244.591740][T10003] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  244.604713][ T5899] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.610499][ T5838] sysv_free_block: flc_count > flc_size
[  244.627491][    T8] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  244.629039][T10015] tmpfs: Bad value for 'mpol'
[  244.639554][ T5838] sysv_free_block: flc_count > flc_size
[  244.645246][ T5899] usb 1-1: Product: syz
[  244.649673][ T5838] sysv_free_block: flc_count > flc_size
[  244.655907][ T5899] usb 1-1: Manufacturer: syz
[  244.666908][ T5899] usb 1-1: SerialNumber: syz
[  244.682732][ T5838] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  244.709456][ T9995] loop5: detected capacity change from 0 to 32768
[  244.715127][ T5899] r8152-cfgselector 1-1: Unknown version 0x0000
[  244.722845][ T5899] r8152-cfgselector 1-1: config 0 descriptor??
[  244.763903][ T9995] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1700 (9995)
[  244.899284][ T9995] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  244.985793][ T9995] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  245.021771][ T9995] BTRFS info (device loop5): using free-space-tree
[  245.264781][  T968] usb 5-1: USB disconnect, device number 9
[  245.597250][  T968] r8152-cfgselector 1-1: USB disconnect, device number 8
[  245.709469][ T5833] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  246.077262][T10057] loop4: detected capacity change from 0 to 512
[  246.111212][T10057] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  246.202845][T10057] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  246.291047][T10057] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.533439][ T9904] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  246.636311][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.706529][T10073] IPv6: NLM_F_CREATE should be specified when creating new route
[  246.715383][T10073] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1727'.
[  246.929195][T10077] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1730'.
[  248.812726][T10144] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1759'.
[  248.915270][T10148] netlink: 'syz.1.1762': attribute type 6 has an invalid length.
[  248.923292][T10148] netlink: 140 bytes leftover after parsing attributes in process `syz.1.1762'.
[  249.055574][T10151] loop1: detected capacity change from 0 to 8
[  249.066377][T10121] loop0: detected capacity change from 0 to 32768
[  249.190158][T10151] SQUASHFS error: Failed to read block 0x71: -5
[  249.309855][T10157] loop3: detected capacity change from 0 to 64
[  249.380625][ T5913] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  249.420313][T10157] syz.3.1765: attempt to access beyond end of device
[  249.420313][T10157] loop3: rw=2049, sector=268435468, nr_sectors = 2 limit=64
[  249.551267][ T5913] usb 7-1: Using ep0 maxpacket: 32
[  249.568253][ T5913] usb 7-1: config 0 has an invalid interface number: 23 but max is 0
[  249.600277][ T5913] usb 7-1: config 0 has no interface number 0
[  249.608760][T10163] capability: warning: `syz.4.1769' uses 32-bit capabilities (legacy support in use)
[  249.628584][ T5913] usb 7-1: New USB device found, idVendor=052b, idProduct=1803, bcdDevice= c.62
[  249.641406][T10159] loop5: detected capacity change from 0 to 4096
[  249.670510][ T5913] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.699942][ T5913] usb 7-1: config 0 descriptor??
[  249.717139][ T5913] gspca_main: sunplus-2.14.0 probing 052b:1803
[  249.850940][  T968] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  250.050654][  T968] usb 2-1: Using ep0 maxpacket: 16
[  250.081848][  T968] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[  250.122477][  T968] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.154063][  T968] usb 2-1: config 0 descriptor??
[  250.170800][  T968] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[  250.294603][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  250.294630][   T29] audit: type=1326 audit(1870168413.657:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10174 comm="syz.0.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  250.346754][   T29] audit: type=1326 audit(1870168413.707:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10174 comm="syz.0.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  250.386762][T10178] loop3: detected capacity change from 0 to 256
[  250.397089][    T8] usb 7-1: USB disconnect, device number 6
[  250.409561][T10178] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  250.430419][  T968] usb 2-1: Detected FT232A
[  250.430745][   T29] audit: type=1326 audit(1870168413.757:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10174 comm="syz.0.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  250.455436][  T968] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  250.474536][   T29] audit: type=1326 audit(1870168413.757:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10174 comm="syz.0.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  250.558006][   T29] audit: type=1326 audit(1870168413.757:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10174 comm="syz.0.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  250.640602][ T5899] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  250.660169][    T8] usb 2-1: USB disconnect, device number 4
[  250.693928][    T8] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  250.712682][    T8] ftdi_sio 2-1:0.0: device disconnected
[  250.820569][ T5899] usb 6-1: Using ep0 maxpacket: 16
[  250.832831][ T5899] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  250.846071][ T5899] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  250.893241][ T5899] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 152, changing to 11
[  250.933286][ T5899] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024
[  250.976085][ T5899] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  251.022337][ T5899] usb 6-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  251.040909][ T5899] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.070587][ T5899] usb 6-1: Product: syz
[  251.081146][ T5899] usb 6-1: Manufacturer: syz
[  251.085881][ T5899] usb 6-1: SerialNumber: syz
[  251.127178][ T5899] usb 6-1: config 0 descriptor??
[  251.422082][ T5899] appledisplay: Apple Cinema Display connected
[  251.670598][ T5898] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  251.792971][    C0] usb 6-1: appledisplay_complete - usb_submit_urb failed with result -19
[  251.792979][  T968] usb 6-1: USB disconnect, device number 3
[  251.823410][  T968] appledisplay: Apple Cinema Display disconnected
[  251.860678][ T5898] usb 1-1: Using ep0 maxpacket: 8
[  251.875754][ T5898] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  251.899081][ T5898] usb 1-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  251.918621][ T5898] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.961677][ T5898] usb 1-1: Product: syz
[  251.965905][ T5898] usb 1-1: Manufacturer: syz
[  251.980679][ T5898] usb 1-1: SerialNumber: syz
[  252.001630][ T5898] usb 1-1: config 0 descriptor??
[  252.020685][ T5898] gspca_main: stk014-2.14.0 probing 05e1:0893
[  252.058934][ T5898] usb 1-1: selecting invalid altsetting 1
[  252.238566][ T5898] gspca_stk014: init reg: 0x00
[  252.258011][ T5898] stk014 1-1:0.0: probe with driver stk014 failed with error -5
[  252.448673][  T968] usb 1-1: USB disconnect, device number 9
[  252.564198][T10225] loop5: detected capacity change from 0 to 1764
[  252.689263][T10231] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1801'.
[  252.804807][T10233] netlink: 'syz.3.1802': attribute type 2 has an invalid length.
[  253.185102][T10247] loop5: detected capacity change from 0 to 128
[  253.374233][T10247] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  253.459821][T10247] ext4 filesystem being mounted at /319/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  253.476351][T10247] EXT4-fs warning (device loop5): verify_group_input:136: Cannot add at group 49 (only 1 groups)
[  253.636670][T10262] loop1: detected capacity change from 0 to 256
[  253.675406][T10235] loop6: detected capacity change from 0 to 32768
[  253.809521][T10265] netlink: 'syz.0.1817': attribute type 21 has an invalid length.
[  253.822217][ T5833] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  253.850594][T10265] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1817'.
[  253.880921][T10265] netlink: 'syz.0.1817': attribute type 5 has an invalid length.
[  253.888754][T10265] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1817'.
[  254.490675][  T968] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  254.690930][  T968] usb 5-1: Using ep0 maxpacket: 16
[  254.711957][T10264] loop3: detected capacity change from 0 to 32768
[  254.718655][  T968] usb 5-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  254.740495][  T968] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  254.761517][  T968] usb 5-1: Product: syz
[  254.775969][  T968] usb 5-1: Manufacturer: syz
[  254.796348][  T968] usb 5-1: SerialNumber: syz
[  254.826306][  T968] usb 5-1: config 0 descriptor??
[  254.848829][  T968] ssu100 5-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  255.170062][T10290] lo speed is unknown, defaulting to 1000
[  255.281617][  T968] ssu100 5-1:0.0: probe with driver ssu100 failed with error -71
[  255.295584][  T968] usb 5-1: USB disconnect, device number 10
[  255.403001][T10299] loop0: detected capacity change from 0 to 64
[  255.493226][   T29] audit: type=1800 audit(1870168418.847:81): pid=10299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1833" name="file2" dev="loop0" ino=21 res=0 errno=0
[  255.706135][T10303] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1831'.
[  256.218666][T10320] loop3: detected capacity change from 0 to 1024
[  256.381691][T10326] loop0: detected capacity change from 0 to 8192
[  256.537043][T10333] loop4: detected capacity change from 0 to 256
[  256.694192][T10338] loop5: detected capacity change from 0 to 764
[  256.762650][   T11] hfsplus: b-tree write err: -5, ino 4
[  256.779217][T10326] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  256.790245][T10338] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  257.054995][T10346] loop3: detected capacity change from 0 to 8
[  257.061995][T10346] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  257.090318][T10346] cramfs: Error -5 while decompressing!
[  257.091878][T10342] loop1: detected capacity change from 0 to 1764
[  257.096395][T10346] cramfs: ffffffff9a917b88(26)->ffff888057b5f000(4096)
[  257.109541][T10346] cramfs: Error -3 while decompressing!
[  257.115589][T10346] cramfs: ffffffff9a917ba2(26)->ffff888057b5e000(4096)
[  257.122666][T10346] cramfs: Error -3 while decompressing!
[  257.128429][T10346] cramfs: ffffffff9a917bbc(16)->ffff8880584fb000(4096)
[  257.135520][T10346] cramfs: Error -5 while decompressing!
[  257.141214][T10346] cramfs: ffffffff9a917b88(26)->ffff888057b5f000(4096)
[  257.149746][   T29] audit: type=1800 audit(1870168420.507:82): pid=10346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1858" name="file2" dev="loop3" ino=348 res=0 errno=0
[  257.164045][T10333] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  257.481720][T10356] loop5: detected capacity change from 0 to 512
[  257.508664][T10342] iso9660: Corrupted directory entry in block 2 of inode 1920
[  257.735562][T10356] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  257.751450][T10356] EXT4-fs (loop5): orphan cleanup on readonly fs
[  257.777878][T10356] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  257.893754][T10356] EXT4-fs warning (device loop5): ext4_enable_quotas:7152: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  257.930152][T10356] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  258.075481][T10356] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.1862: bg 0: block 40: padding at end of block bitmap is not set
[  258.120549][T10356] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  258.174297][T10356] EXT4-fs (loop5): 1 truncate cleaned up
[  258.221810][T10356] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  258.372475][T10356] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.1862: bad symlink.
[  258.667947][T10381] loop0: detected capacity change from 0 to 4096
[  258.703326][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.808024][T10395] netlink: 'syz.4.1878': attribute type 5 has an invalid length.
[  258.842761][T10381] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  259.321043][   T29] audit: type=1400 audit(1870168422.607:83): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=10404 comm="syz.1.1882"
[  259.455433][T10392] loop6: detected capacity change from 0 to 32768
[  259.696951][T10419] loop1: detected capacity change from 0 to 4096
[  259.730906][T10419] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  259.872672][T10419] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  260.130079][ T3527] read_mapping_page failed!
[  260.135430][ T3527] ERROR: (device loop6): txAbort: 
[  260.135430][ T3527] 
[  260.216138][ T3527] ERROR: (device loop6): remounting filesystem as read-only
[  260.250556][ T3527] jfs_write_inode: jfs_commit_inode failed!
[  260.374212][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  260.380800][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  260.590587][   T29] audit: type=1326 audit(1870168423.937:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10441 comm="syz.5.1904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  260.732913][   T29] audit: type=1326 audit(1870168423.947:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10441 comm="syz.5.1904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  260.910418][   T29] audit: type=1326 audit(1870168423.947:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10441 comm="syz.5.1904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  260.975372][   T29] audit: type=1326 audit(1870168423.947:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10441 comm="syz.5.1904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  261.049211][   T29] audit: type=1326 audit(1870168423.947:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10441 comm="syz.5.1904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  261.167777][T10461] loop1: detected capacity change from 0 to 512
[  261.371373][T10467] trusted_key: encrypted_key: master key parameter is missing
[  261.440746][T10461] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.453534][T10461] ext4 filesystem being mounted at /358/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  261.815853][T10483] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1924'.
[  261.830362][T10483] unsupported nla_type 65024
[  261.830415][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.907981][T10485] loop4: detected capacity change from 0 to 64
[  262.500822][T10501] xt_TCPMSS: Only works on TCP SYN packets
[  262.692192][T10511] loop6: detected capacity change from 0 to 512
[  262.751338][T10516] loop1: detected capacity change from 0 to 64
[  262.910271][T10511] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  262.980604][T10511] ext4 filesystem being mounted at /184/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  263.100218][T10491] loop3: detected capacity change from 0 to 32768
[  263.402704][T10532] netlink: 'syz.4.1942': attribute type 13 has an invalid length.
[  263.424479][T10532] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1942'.
[  263.529628][ T7480] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.437928][T10562] loop5: detected capacity change from 0 to 1024
[  265.051369][T10586] xt_ecn: cannot match TCP bits for non-tcp packets
[  265.751655][T10605] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1977'.
[  265.761244][  T968] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  265.926601][T10614] loop0: detected capacity change from 0 to 1024
[  265.972037][T10614] EXT4-fs: Ignoring removed oldalloc option
[  265.975029][  T968] usb 2-1: unable to get BOS descriptor or descriptor too short
[  265.998865][  T968] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  266.010864][T10614] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  266.028106][  T968] usb 2-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  266.095882][  T968] usb 2-1: config 1 interface 0 has no altsetting 1
[  266.146335][  T968] usb 2-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75
[  266.154479][T10621] loop4: detected capacity change from 0 to 64
[  266.185853][T10614] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  266.225533][  T968] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.296382][T10614] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  266.333267][  T968] usb 2-1: Product: syz
[  266.339130][  T968] usb 2-1: Manufacturer: syz
[  266.352416][T10614] fscrypt (loop0, inode 15): Error -61 getting encryption context
[  266.355072][  T968] usb 2-1: SerialNumber: syz
[  266.424350][  T968] smsusb:smsusb_probe: board id=8, interface number 0
[  266.543411][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.679962][  T968] smsusb:smsusb_probe: Device initialized with return code -19
[  266.990042][T10641] kAFS: unparsable volume name
[  267.061317][ T5899] usb 2-1: USB disconnect, device number 5
[  267.276914][T10654] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1998'.
[  268.158318][T10678] loop1: detected capacity change from 0 to 1024
[  268.203731][T10682] loop4: detected capacity change from 0 to 64
[  268.256273][T10678] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  268.342163][T10678] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  268.350391][T10678] EXT4-fs (loop1): orphan cleanup on readonly fs
[  268.422826][T10678] EXT4-fs error (device loop1): ext4_free_blocks:6588: comm syz.1.2011: Freeing blocks not in datazone - block = 0, count = 4096
[  268.531394][T10678] EXT4-fs (loop1): 1 orphan inode deleted
[  268.538195][T10678] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  268.681570][T10696] loop6: detected capacity change from 0 to 8
[  268.689032][T10696] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  268.736093][T10696] cramfs: Error -3 while decompressing!
[  268.749040][T10696] cramfs: ffffffff9a91bb88(26)->ffff888057e9f000(4096)
[  268.756127][T10696] cramfs: Error -3 while decompressing!
[  268.762993][T10696] cramfs: ffffffff9a91bba2(26)->ffff88805901c000(4096)
[  268.770092][T10696] cramfs: Error -3 while decompressing!
[  268.776848][T10696] cramfs: ffffffff9a91bbbc(16)->ffff88805901d000(4096)
[  268.783870][T10696] cramfs: Error -3 while decompressing!
[  268.790091][T10696] cramfs: ffffffff9a91bb88(26)->ffff888057e9f000(4096)
[  268.797488][   T29] audit: type=1800 audit(1870168432.157:89): pid=10696 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2022" name="file2" dev="loop6" ino=348 res=0 errno=0
[  269.000393][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.078320][T10705] loop4: detected capacity change from 0 to 256
[  269.131505][T10705] exfat: Deprecated parameter 'namecase'
[  269.158890][T10705] exfat: Deprecated parameter 'utf8'
[  269.224337][T10705] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d)
[  269.595195][T10723] loop3: detected capacity change from 0 to 16
[  269.656465][T10723] erofs (device loop3): mounted with root inode @ nid 36.
[  269.870105][T10735] loop1: detected capacity change from 0 to 736
[  270.063629][T10743] loop3: detected capacity change from 0 to 512
[  270.158804][T10743] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  270.180996][T10743] ext4 filesystem being mounted at /339/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  270.638445][T10745] loop0: detected capacity change from 0 to 32768
[  270.646509][   T29] audit: type=1400 audit(1870168433.957:90): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=10751 comm="syz.5.2045"
[  270.686718][ T5838] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.960832][T10745] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  271.116077][T10737] loop6: detected capacity change from 0 to 32768
[  271.142957][T10773] loop4: detected capacity change from 0 to 1024
[  271.147699][T10745] XFS (loop0): Ending clean mount
[  271.421624][T10773] hfsplus: keylen 65060 too large
[  271.437809][ T5837] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  271.458771][T10737] ERROR: (device loop6): diWrite: ixpxd invalid
[  271.458771][T10737] 
[  271.473385][T10737] ERROR: (device loop6): remounting filesystem as read-only
[  271.485220][T10737] ERROR: (device loop6): txAbort: 
[  271.485220][T10737] 
[  271.523820][T10737] ea_get: invalid extended attribute
[  271.540834][T10737] ffff88807af1ccf0: 04 00 00 00                                      ....
[  273.105985][T10825] loop4: detected capacity change from 0 to 256
[  273.392968][T10832] x_tables: (null)_tables: cgroup match: used from hooks PREROUTING, but only valid from INPUT/OUTPUT/POSTROUTING
[  273.563402][T10841] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2085'.
[  273.689767][T10797] loop1: detected capacity change from 0 to 32768
[  273.737105][   T29] audit: type=1326 audit(1870168437.097:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10845 comm="syz.5.2087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  273.837678][   T29] audit: type=1326 audit(1870168437.097:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10845 comm="syz.5.2087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  273.903575][   T29] audit: type=1326 audit(1870168437.097:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10845 comm="syz.5.2087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  273.918140][T10797] jfs_strtoUCS: char2uni returned -22.
[  273.950537][   T29] audit: type=1326 audit(1870168437.097:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10845 comm="syz.5.2087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff057b85d29 code=0x7ffc0000
[  274.058907][T10797] charset = cp869, char = 0x81
[  274.270373][T10862] netlink: 'syz.0.2092': attribute type 10 has an invalid length.
[  274.281017][T10861] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2096'.
[  274.300371][T10859] loop3: detected capacity change from 0 to 256
[  274.317536][T10862] hsr0: entered promiscuous mode
[  274.333010][T10862] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  274.343646][T10862] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  274.376225][T10862] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  274.507090][T10859] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  274.547203][T10868] loop6: detected capacity change from 0 to 512
[  274.631011][T10868] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  274.886949][T10879] Unsupported ieee802154 address type: 0
[  274.996140][T10868] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  275.025287][T10868] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.230614][ T5830] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[  275.374463][ T7480] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.396758][ T5830] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  275.418221][ T5830] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  275.647994][ T5830] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  275.690637][ T5830] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  275.698704][ T5830] usb 5-1: SerialNumber: syz
[  275.711279][ T5836] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  275.726622][ T5830] usb 5-1: 0:2 : does not exist
[  275.744387][ T5836] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  275.783722][ T5836] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  275.808689][ T5836] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  275.811268][T10899] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2114'.
[  275.877656][T10901] loop5: detected capacity change from 0 to 64
[  275.928791][ T5836] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  275.937403][ T5836] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  276.226215][ T3014] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.634757][ T5830] usb 5-1: USB disconnect, device number 11
[  276.697610][T10894] lo speed is unknown, defaulting to 1000
[  276.949235][ T3014] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.980959][T10916] sctp: [Deprecated]: syz.1.2121 (pid 10916) Use of int in maxseg socket option.
[  276.980959][T10916] Use struct sctp_assoc_value instead
[  277.021210][ T6172] udevd[6172]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  277.220598][T10923] loop5: detected capacity change from 0 to 512
[  277.267697][T10923] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  277.436584][T10923] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  277.472540][T10923] ext4 filesystem being mounted at /381/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.512317][ T3014] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.899114][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.979360][ T5842] Bluetooth: hci3: command tx timeout
[  278.093052][ T3014] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.161127][T10950] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2137'.
[  278.638695][T10967] loop0: detected capacity change from 0 to 1024
[  278.695764][T10974] loop5: detected capacity change from 0 to 512
[  278.748073][T10974] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  278.766075][T10969] loop4: detected capacity change from 0 to 512
[  278.783825][T10969] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  278.814857][   T12] hfsplus: b-tree write err: -5, ino 4
[  278.872461][T10974] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.2146: iget: bad extended attribute block 19
[  278.945634][T10974] EXT4-fs error (device loop5): ext4_orphan_get:1392: comm syz.5.2146: couldn't read orphan inode 15 (err -117)
[  278.974610][T10974] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  279.069764][ T3014] bridge_slave_1: left allmulticast mode
[  279.118897][ T3014] bridge_slave_1: left promiscuous mode
[  279.129192][T10987] loop0: detected capacity change from 0 to 1024
[  279.130701][ T3014] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.176021][T10969] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  279.224445][T10969] ext4 filesystem being mounted at /348/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  279.248270][ T3014] bridge_slave_0: left allmulticast mode
[  279.254436][ T3014] bridge_slave_0: left promiscuous mode
[  279.260244][ T3014] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.282318][T10992] xt_SECMARK: invalid mode: 2
[  279.340597][T10987] hfsplus: invalid xattr key length: 0
[  279.512693][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.530959][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.698136][T11000] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2157'.
[  279.995609][T11008] loop0: detected capacity change from 0 to 1024
[  280.050833][ T5842] Bluetooth: hci3: command tx timeout
[  280.469864][   T29] audit: type=1326 audit(1870168443.817:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11020 comm="syz.0.2167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  280.493307][   T29] audit: type=1326 audit(1870168443.827:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11020 comm="syz.0.2167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  280.516174][   T29] audit: type=1326 audit(1870168443.827:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11020 comm="syz.0.2167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  280.538707][   T29] audit: type=1326 audit(1870168443.827:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11020 comm="syz.0.2167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7f8585d29 code=0x7ffc0000
[  280.617120][T11023] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2168'.
[  280.639365][T11023] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2168'.
[  280.664087][T11025] x_tables: duplicate entry at hook 2
[  280.665958][ T3014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  280.692677][ T3014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  280.716517][ T3014] bond0 (unregistering): Released all slaves
[  280.855009][T11029] loop0: detected capacity change from 0 to 512
[  280.907504][T11029] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  280.926250][ T3014] bond1 (unregistering): Released all slaves
[  280.991507][T10894] chnl_net:caif_netlink_parms(): no params data found
[  281.010406][T11029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.047165][T11029] ext4 filesystem being mounted at /348/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.363439][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.910939][T11059] loop1: detected capacity change from 0 to 8
[  282.063480][T11059] SQUASHFS error: Failed to read block 0x2fc: -5
[  282.110551][T11059] SQUASHFS error: Unable to read metadata cache entry [2fa]
[  282.132966][ T5842] Bluetooth: hci3: command tx timeout
[  282.141204][T11059] SQUASHFS error: Unable to read directory block [247:26]
[  282.155676][T10894] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.198766][T10894] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.207189][T10894] bridge_slave_0: entered allmulticast mode
[  282.218070][T10894] bridge_slave_0: entered promiscuous mode
[  282.282171][T10894] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.318600][T10894] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.333912][T10894] bridge_slave_1: entered allmulticast mode
[  282.434282][T10894] bridge_slave_1: entered promiscuous mode
[  282.604146][T11080] loop4: detected capacity change from 0 to 8
[  282.679552][T11080] SQUASHFS error: Failed to read block 0x2fc: -5
[  282.686101][T11080] SQUASHFS error: Unable to read metadata cache entry [2fa]
[  282.694128][T11080] SQUASHFS error: Unable to read directory block [247:26]
[  282.982975][ T3014] hsr_slave_0: left promiscuous mode
[  282.989224][ T3014] hsr_slave_1: left promiscuous mode
[  283.012387][ T3014] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  283.019845][ T3014] batman_adv: batadv0: Removing interface: batadv_slave_0
[  283.036451][ T3014] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  283.047602][ T3014] batman_adv: batadv0: Removing interface: batadv_slave_1
[  283.079932][ T3014] veth1_macvtap: left promiscuous mode
[  283.086648][ T3014] veth0_macvtap: left promiscuous mode
[  283.099707][ T3014] veth1_vlan: left promiscuous mode
[  283.106693][ T3014] veth0_vlan: left promiscuous mode
[  283.470011][ T3014] team_slave_1 (unregistering): left allmulticast mode
[  283.483088][ T3014] team0 (unregistering): Port device team_slave_1 removed
[  283.516838][ T3014] team_slave_0 (unregistering): left allmulticast mode
[  283.526513][ T3014] team0 (unregistering): Port device team_slave_0 removed
[  283.836933][T10894] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  283.855489][T10894] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  283.905664][T10894] team0: Port device team_slave_0 added
[  283.935858][T10894] team0: Port device team_slave_1 added
[  284.011224][T10894] batman_adv: batadv0: Adding interface: batadv_slave_0
[  284.018210][T10894] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.044153][    C1] vkms_vblank_simulate: vblank timer overrun
[  284.064832][T10894] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  284.089258][T10894] batman_adv: batadv0: Adding interface: batadv_slave_1
[  284.100843][T10894] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.126763][    C1] vkms_vblank_simulate: vblank timer overrun
[  284.145306][T10894] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  284.211074][ T5842] Bluetooth: hci3: command tx timeout
[  284.249870][T10894] hsr_slave_0: entered promiscuous mode
[  284.259538][T10894] hsr_slave_1: entered promiscuous mode
[  284.266504][T10894] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  284.276761][T10894] Cannot create hsr debugfs directory
[  284.555741][T10894] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  284.576205][T10894] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  284.594278][T10894] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  284.606811][T10894] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  284.737058][T10894] 8021q: adding VLAN 0 to HW filter on device bond0
[  284.783686][T10894] 8021q: adding VLAN 0 to HW filter on device team0
[  284.808949][ T3014] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.816099][ T3014] bridge0: port 1(bridge_slave_0) entered forwarding state
[  284.837433][ T3527] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.844588][ T3527] bridge0: port 2(bridge_slave_1) entered forwarding state
[  285.149606][T10894] 8021q: adding VLAN 0 to HW filter on device batadv0
[  285.501936][T10894] veth0_vlan: entered promiscuous mode
[  285.526388][T10894] veth1_vlan: entered promiscuous mode
[  285.579328][T10894] veth0_macvtap: entered promiscuous mode
[  285.597622][T10894] veth1_macvtap: entered promiscuous mode
[  285.619409][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.639201][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.650099][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.662981][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.673375][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.683974][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.700531][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.718946][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.740017][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.763387][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.780342][T10894] batman_adv: batadv0: Interface activated: batadv_slave_0
[  285.799456][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  285.812589][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.823879][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  285.834457][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.845224][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  285.855741][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.872047][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  285.887832][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.902015][T10894] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  285.917812][T10894] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.931383][T10894] batman_adv: batadv0: Interface activated: batadv_slave_1
[  285.963738][T10894] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  285.976698][T10894] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  285.998458][T10894] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  286.007555][T10894] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  286.122910][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  286.141411][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  286.176178][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  286.184686][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  286.421377][T11156] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2202'.
[  286.456242][T11153] loop6: detected capacity change from 0 to 256
[  286.491679][T11153] exfat: Deprecated parameter 'namecase'
[  286.608531][T11161] loop7: detected capacity change from 0 to 512
[  286.777031][T11161] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  286.853621][T11153] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x1cbb3694, utbl_chksum : 0xe619d30d)
[  286.969310][T11161] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.024606][T11153] exFAT-fs (loop6): error, in sector 160, dentry 5 should be unused, but 0xc1
[  287.031081][T11161] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.176925][    T8] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  287.293655][    C1] ------------[ cut here ]------------
[  287.299183][    C1] VFS: brelse: Trying to free free buffer
[  287.305225][    C1] WARNING: CPU: 1 PID: 5831 at fs/buffer.c:1229 __brelse+0x6d/0xb0
[  287.313173][    C1] Modules linked in:
[  287.317090][    C1] CPU: 1 UID: 0 PID: 5831 Comm: syz-executor Not tainted 6.13.0-rc5-syzkaller-00161-g63676eefb7a0 #0
[  287.327963][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  287.338034][    C1] RIP: 0010:__brelse+0x6d/0xb0
[  287.342839][    C1] Code: 84 d2 75 52 44 8b 63 60 31 ff 44 89 e6 e8 fb d5 79 ff 45 85 e4 75 20 e8 b1 d3 79 ff 90 48 c7 c7 e0 24 7f 8b e8 c4 0d 3a ff 90 <0f> 0b 90 90 5b 5d 41 5c e9 96 d3 79 ff e8 91 d3 79 ff be 04 00 00
[  287.362561][    C1] RSP: 0018:ffffc90000a18f40 EFLAGS: 00010082
[  287.368653][    C1] RAX: 0000000000000000 RBX: ffff88805b56bbc8 RCX: ffffffff815a5139
[  287.376645][    C1] RDX: ffff88802c2c1e00 RSI: ffffffff815a5146 RDI: 0000000000000001
[  287.384640][    C1] RBP: ffff88805b56bc28 R08: 0000000000000001 R09: 0000000000000000
[  287.392634][    C1] R10: 0000000000000000 R11: 0000000000000008 R12: 0000000000000000
[  287.400627][    C1] R13: ffff88805b56bbc8 R14: dffffc0000000000 R15: ffffffff82204230
[  287.408621][    C1] FS:  0000555560340500(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  287.417579][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.424186][    C1] CR2: 00007ff7f8748178 CR3: 0000000061946000 CR4: 0000000000350ef0
[  287.432202][    C1] Call Trace:
[  287.435501][    C1]  <IRQ>
[  287.438360][    C1]  ? __warn+0xea/0x3c0
[  287.442460][    C1]  ? __pfx_lock_release+0x10/0x10
[  287.447523][    C1]  ? __brelse+0x6d/0xb0
[  287.451720][    C1]  ? report_bug+0x3c0/0x580
[  287.456272][    C1]  ? handle_bug+0x54/0xa0
[  287.460645][    C1]  ? exc_invalid_op+0x17/0x50
[  287.465372][    C1]  ? asm_exc_invalid_op+0x1a/0x20
[  287.470448][    C1]  ? __pfx_invalidate_bh_lru+0x10/0x10
[  287.475959][    C1]  ? __warn_printk+0x199/0x350
[  287.480804][    C1]  ? __warn_printk+0x1a6/0x350
[  287.485614][    C1]  ? __brelse+0x6d/0xb0
[  287.489924][    C1]  invalidate_bh_lru+0xa2/0x190
[  287.494818][    C1]  __flush_smp_call_function_queue+0x27d/0x8c0
[  287.501027][    C1]  __sysvec_call_function_single+0x8c/0x410
[  287.506984][    C1]  sysvec_call_function_single+0x9f/0xc0
[  287.512745][    C1]  </IRQ>
[  287.515713][    C1]  <TASK>
[  287.518661][    C1]  asm_sysvec_call_function_single+0x1a/0x20
[  287.524687][    C1] RIP: 0010:lock_release+0xa9/0x6f0
[  287.529920][    C1] Code: 03 00 65 8b 6d 00 83 fd 07 0f 87 22 05 00 00 89 ed be 08 00 00 00 48 89 e8 48 c1 e8 06 48 8d 3c c5 50 5f 5f 90 e8 07 36 85 00 <48> 0f a3 2d 6f a5 e8 0e 0f 82 26 04 00 00 48 c7 c5 54 92 5f 90 48
[  287.549556][    C1] RSP: 0018:ffffc90002e67610 EFLAGS: 00000246
[  287.555652][    C1] RAX: 0000000000000001 RBX: 1ffff920005ccec4 RCX: ffffffff8176b9d9
[  287.563645][    C1] RDX: fffffbfff20bebeb RSI: 0000000000000008 RDI: ffffffff905f5f50
[  287.571639][    C1] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20bebea
[  287.579627][    C1] R10: ffffffff905f5f57 R11: 0000000000000007 R12: ffffffff8e1bb840
[  287.587619][    C1] R13: 0000000000000008 R14: 0000000000000001 R15: 1ffff920005ccee7
[  287.595625][    C1]  ? lock_release+0xa9/0x6f0
[  287.600256][    C1]  ? page_table_check_set+0x228/0x9c0
[  287.605659][    C1]  ? __pfx_lock_release+0x10/0x10
[  287.610718][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.616394][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  287.621657][    C1]  ? page_table_check_set+0x114/0x9c0
[  287.627062][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.632722][    C1]  ? lock_acquire+0x2f/0xb0
[  287.637253][    C1]  ? page_table_check_set+0x114/0x9c0
[  287.642658][    C1]  page_table_check_set+0x22d/0x9c0
[  287.647890][    C1]  __page_table_check_ptes_set+0x2d0/0x3e0
[  287.653730][    C1]  ? vm_normal_page+0x13c/0x2b0
[  287.658627][    C1]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[  287.664983][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  287.670394][    C1]  ? copy_page_range+0xd0b/0x5790
[  287.675484][    C1]  copy_page_range+0x209a/0x5790
[  287.680512][    C1]  ? __pfx_copy_page_range+0x10/0x10
[  287.685846][    C1]  ? __entry_text_end+0x1020c5/0x1020c9
[  287.691422][    C1]  ? find_held_lock+0x2d/0x110
[  287.696238][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.701904][    C1]  ? __pfx_lock_release+0x10/0x10
[  287.706973][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.712639][    C1]  ? lock_acquire+0x2f/0xb0
[  287.717172][    C1]  ? copy_process+0x7e41/0x8e50
[  287.722069][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.727726][    C1]  ? down_write+0x14e/0x200
[  287.732277][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.737933][    C1]  ? up_write+0x1b2/0x520
[  287.742296][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.747961][    C1]  copy_process+0x7ef3/0x8e50
[  287.753200][    C1]  ? hlock_class+0x4e/0x130
[  287.757770][    C1]  ? __pfx_copy_process+0x10/0x10
[  287.762868][    C1]  kernel_clone+0xfd/0x960
[  287.767422][    C1]  ? __pfx_kernel_clone+0x10/0x10
[  287.772502][    C1]  ? find_held_lock+0x59/0x110
[  287.777306][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.782964][    C1]  ? find_held_lock+0x2d/0x110
[  287.787780][    C1]  __do_sys_clone+0xba/0x100
[  287.792414][    C1]  ? __pfx___do_sys_clone+0x10/0x10
[  287.797652][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.803326][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  287.808991][    C1]  ? do_user_addr_fault+0x83d/0x13f0
[  287.814331][    C1]  do_syscall_64+0xcd/0x250
[  287.818883][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.824819][    C1] RIP: 0033:0x7ff9d297c593
[  287.829254][    C1] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[  287.848891][    C1] RSP: 002b:00007ffe8c54cdf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  287.857371][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff9d297c593
[  287.865363][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  287.873447][    C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001
[  287.881441][    C1] R10: 00005555603407d0 R11: 0000000000000246 R12: 0000000000000000
[  287.889459][    C1] R13: 0000000000046191 R14: 00007ffe8c54cf80 R15: 000000000000016c
[  287.897473][    C1]  </TASK>
[  287.900510][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  287.907801][    C1] CPU: 1 UID: 0 PID: 5831 Comm: syz-executor Not tainted 6.13.0-rc5-syzkaller-00161-g63676eefb7a0 #0
[  287.918677][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  287.929099][    C1] Call Trace:
[  287.932388][    C1]  <IRQ>
[  287.935264][    C1]  dump_stack_lvl+0x3d/0x1f0
[  287.939896][    C1]  panic+0x71d/0x800
[  287.943835][    C1]  ? __pfx_panic+0x10/0x10
[  287.948314][    C1]  ? show_trace_log_lvl+0x29d/0x3d0
[  287.953556][    C1]  ? check_panic_on_warn+0x1f/0xb0
[  287.958977][    C1]  ? __brelse+0x6d/0xb0
[  287.963165][    C1]  check_panic_on_warn+0xab/0xb0
[  287.968149][    C1]  __warn+0xf6/0x3c0
[  287.972064][    C1]  ? __pfx_lock_release+0x10/0x10
[  287.977115][    C1]  ? __brelse+0x6d/0xb0
[  287.981308][    C1]  report_bug+0x3c0/0x580
[  287.985677][    C1]  handle_bug+0x54/0xa0
[  287.989871][    C1]  exc_invalid_op+0x17/0x50
[  287.994422][    C1]  asm_exc_invalid_op+0x1a/0x20
[  287.999335][    C1] RIP: 0010:__brelse+0x6d/0xb0
[  288.004134][    C1] Code: 84 d2 75 52 44 8b 63 60 31 ff 44 89 e6 e8 fb d5 79 ff 45 85 e4 75 20 e8 b1 d3 79 ff 90 48 c7 c7 e0 24 7f 8b e8 c4 0d 3a ff 90 <0f> 0b 90 90 5b 5d 41 5c e9 96 d3 79 ff e8 91 d3 79 ff be 04 00 00
[  288.023769][    C1] RSP: 0018:ffffc90000a18f40 EFLAGS: 00010082
[  288.029863][    C1] RAX: 0000000000000000 RBX: ffff88805b56bbc8 RCX: ffffffff815a5139
[  288.037851][    C1] RDX: ffff88802c2c1e00 RSI: ffffffff815a5146 RDI: 0000000000000001
[  288.045841][    C1] RBP: ffff88805b56bc28 R08: 0000000000000001 R09: 0000000000000000
[  288.053831][    C1] R10: 0000000000000000 R11: 0000000000000008 R12: 0000000000000000
[  288.061819][    C1] R13: ffff88805b56bbc8 R14: dffffc0000000000 R15: ffffffff82204230
[  288.069807][    C1]  ? __pfx_invalidate_bh_lru+0x10/0x10
[  288.075314][    C1]  ? __warn_printk+0x199/0x350
[  288.080121][    C1]  ? __warn_printk+0x1a6/0x350
[  288.084933][    C1]  invalidate_bh_lru+0xa2/0x190
[  288.089824][    C1]  __flush_smp_call_function_queue+0x27d/0x8c0
[  288.096026][    C1]  __sysvec_call_function_single+0x8c/0x410
[  288.102051][    C1]  sysvec_call_function_single+0x9f/0xc0
[  288.107717][    C1]  </IRQ>
[  288.110658][    C1]  <TASK>
[  288.113600][    C1]  asm_sysvec_call_function_single+0x1a/0x20
[  288.119625][    C1] RIP: 0010:lock_release+0xa9/0x6f0
[  288.124859][    C1] Code: 03 00 65 8b 6d 00 83 fd 07 0f 87 22 05 00 00 89 ed be 08 00 00 00 48 89 e8 48 c1 e8 06 48 8d 3c c5 50 5f 5f 90 e8 07 36 85 00 <48> 0f a3 2d 6f a5 e8 0e 0f 82 26 04 00 00 48 c7 c5 54 92 5f 90 48
[  288.144515][    C1] RSP: 0018:ffffc90002e67610 EFLAGS: 00000246
[  288.150609][    C1] RAX: 0000000000000001 RBX: 1ffff920005ccec4 RCX: ffffffff8176b9d9
[  288.158599][    C1] RDX: fffffbfff20bebeb RSI: 0000000000000008 RDI: ffffffff905f5f50
[  288.166586][    C1] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20bebea
[  288.174574][    C1] R10: ffffffff905f5f57 R11: 0000000000000007 R12: ffffffff8e1bb840
[  288.182564][    C1] R13: 0000000000000008 R14: 0000000000000001 R15: 1ffff920005ccee7
[  288.190585][    C1]  ? lock_release+0xa9/0x6f0
[  288.195212][    C1]  ? page_table_check_set+0x228/0x9c0
[  288.200611][    C1]  ? __pfx_lock_release+0x10/0x10
[  288.205662][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.211319][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  288.216593][    C1]  ? page_table_check_set+0x114/0x9c0
[  288.222010][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.227669][    C1]  ? lock_acquire+0x2f/0xb0
[  288.232202][    C1]  ? page_table_check_set+0x114/0x9c0
[  288.237609][    C1]  page_table_check_set+0x22d/0x9c0
[  288.242838][    C1]  __page_table_check_ptes_set+0x2d0/0x3e0
[  288.248673][    C1]  ? vm_normal_page+0x13c/0x2b0
[  288.253564][    C1]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[  288.259918][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  288.265327][    C1]  ? copy_page_range+0xd0b/0x5790
[  288.270403][    C1]  copy_page_range+0x209a/0x5790
[  288.275431][    C1]  ? __pfx_copy_page_range+0x10/0x10
[  288.280758][    C1]  ? __entry_text_end+0x1020c5/0x1020c9
[  288.286324][    C1]  ? find_held_lock+0x2d/0x110
[  288.291129][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.296790][    C1]  ? __pfx_lock_release+0x10/0x10
[  288.301842][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.307496][    C1]  ? lock_acquire+0x2f/0xb0
[  288.312023][    C1]  ? copy_process+0x7e41/0x8e50
[  288.316915][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.322659][    C1]  ? down_write+0x14e/0x200
[  288.327212][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.332867][    C1]  ? up_write+0x1b2/0x520
[  288.337231][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.342895][    C1]  copy_process+0x7ef3/0x8e50
[  288.347606][    C1]  ? hlock_class+0x4e/0x130
[  288.352171][    C1]  ? __pfx_copy_process+0x10/0x10
[  288.357273][    C1]  kernel_clone+0xfd/0x960
[  288.361732][    C1]  ? __pfx_kernel_clone+0x10/0x10
[  288.366807][    C1]  ? find_held_lock+0x59/0x110
[  288.371608][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.377260][    C1]  ? find_held_lock+0x2d/0x110
[  288.382066][    C1]  __do_sys_clone+0xba/0x100
[  288.386727][    C1]  ? __pfx___do_sys_clone+0x10/0x10
[  288.392066][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.397739][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.403395][    C1]  ? do_user_addr_fault+0x83d/0x13f0
[  288.408721][    C1]  do_syscall_64+0xcd/0x250
[  288.413268][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.419203][    C1] RIP: 0033:0x7ff9d297c593
[  288.423641][    C1] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[  288.443278][    C1] RSP: 002b:00007ffe8c54cdf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  288.451725][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff9d297c593
[  288.459714][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  288.467703][    C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001
[  288.475690][    C1] R10: 00005555603407d0 R11: 0000000000000246 R12: 0000000000000000
[  288.483680][    C1] R13: 0000000000046191 R14: 00007ffe8c54cf80 R15: 000000000000016c
[  288.491694][    C1]  </TASK>
[  288.495011][    C1] Kernel Offset: disabled
[  288.499338][    C1] Rebooting in 86400 seconds..