last executing test programs:

1m2.004227097s ago: executing program 3 (id=9807):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000000306050000000000000000000000000005000100"], 0x1c}}, 0x0)

1m1.856342779s ago: executing program 3 (id=9809):
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000079102800000000007b0a00ff000000009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x21)

1m1.693145772s ago: executing program 3 (id=9813):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r0}, 0xc)

1m1.519572765s ago: executing program 3 (id=9816):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000019c0)=ANY=[@ANYBLOB='allow_utime=00000000000000000000304,namecase=1,errors=remount-ro,umask=00000000000000000000020,fmask=00000000000000000000005,iocharset=cp1251,gid=', @ANYRESHEX=0x0, @ANYBLOB=',umask=00000000000000000000003,errors=continue,fmask=00000000000000000000005,allow_utime=0000000000000002\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x1, 0x152a, &(0x7f0000000340)="$eJzs3AuYjtXaOPD7Xms9Y0h6m+QwrLXuhzc5LJMkOSTJIUmSJMkpIWmSLQmJIaekIQnJYUgOQ0gOE5PG+ZDzKSFJmiQJySlZ/2vC327X/vbe3+7Lvvbcv+t6r1n3u557Pet57/ewnuedmW+7DK3ZuFa1hkQE/xa88CMJAGIBYCAAXAMAAQCUiysXl9WfU2LSv7cT9sd6KPVKz4BdSVz/7I3rn71x/bM3rn/2xvXP3rj+2RvXP3vj+jOWnW2aXvBavmXfG1//z8748/+/SGbpsV+uLX19V4CYfzaF65+9cf3/awX/zEZc/+yN659dxV7pCbD/APz6zw5y/N0ern/2xvVnLDv7c683y/+47xsg8uc+Bgqu/DH/6vgZY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjLE/wWl/mQKAS+0rPS/GGGOMMcYYY4z9cXyOKz0DxhhjjDHGGGOM/d9DECBBQQAxkANiISfkAgEAV0MeuAYicC3EwXWQF66HfJAfCkBBiIdCUBg0GLBAEEIRKApRuAGKwY1QHEpASSgFDkpDAtwEZeBmKAu3QDm4FcrDbVABKkIlqAy3QxW4A6rCnVAN7oLqUANqQi24G2rDPVAH7oW6cB/Ug/uhPjwADeBBaAgPQSN4GBrDI9AEHoWm0AyaQwto+b/KfwF6wIvQE3pBEvSGPvAS9IV+0B8GwEB4GQbBKzAYXoVkGAJD4TUYBq/DcHgDRsBIGAVvwmh4C8bAWBgH4yEFJsBEeBsmwTswGabAVJgGqTAdZsC7MBNmwWx4D+bA+zAX5sF8WABp8AEshEWQDh/CYvgIMmAJLIVlsBxWwEpYBathDayFj2EdrIcNsBE2wWbYAlthG2yHHfAJ7IRPYRfshj3wGeyFz//F/FN/k98VAQEFClSoMAZjMBZjMRfmwtyYG/NgHoxgBOMwDvNiXsyH+bAAFsB4jMfCWBgNGiQkLIJFMIpRLIbFsDgWx5JYEh06TMAELIM3Y1ksi+WwHJbH8lgBK2JFrIyVsQpWwapYFathNayO1bEm1sS78W7sjXWwDtbFulgP6126PIUNsSE2wkbYGBtjE2yCTbEpNsfm2BJbYitsha2xNbbFttgO22F7bI+JmIgdsAN2xI7YCTthZ+yMXbALdsVu2C3zhRyAL+KL2Auri97YB/tgX0zO0R8H4AB8GQfhK/gKvorJOASH4mv4Gr6Ow/EkjsCROApHYRXxFo7BsUhiPKZgCk7EiTgJJ+FknIJTcBqm4nScgTNwJs7CWfgezsH38X2ch/NwAaZhGi7ERZiO6bgYT2EGLsGluAyX4wpcjqtwNa7CtfgxrsX1uB434kbcjJtxK27F7bgdP0EFgJ/ibtyNybgX9+I+3If7cT8ewAOYiZl4EA/iITyEh/EwHsEjeBSP4XE8hifwBJ7EU3gaT+NZPIvn8Ln4rxt9UmJNMogsSigRI2JErIgVuUQukVvkFnlEHhEREREn4kRekVfkE/lEAVFAxIt4UVgUFkYYQSKMAQARFVFRTBQTxUVxUVKUFE44kSASRBlRRpQVZUU5casoL24TFURF0cZJUVlUEW1dVXGnqCaqieqihqgpaolaoraoLeqIOqKuqCvqiXqivnhANBC9sT8+JLIq01gMwSZiKDYVzYS8+A7WSgzH1qKNaCueECNxBLYXrVyieFp0EGOwo/iLGIvPis5iPHYRz4uuopvoLl4QPURr11P0EpOxt+gjpmFf0U/0FwPETKwh3sM5OWuKV0WyGCKGitfEAnxdDBdviBFipBgl3hSjxVtijBgrxonxIkVMEBPF22KSeEdMFlPEVDFNpIrpYoZ4V8wUs8Rs8Z6YI94Xc8U8MV8sEGniA7FQLBLp4kOxWHwkMsQSsVQsE8vFCrFSrBKrxRqxVnws1on1YoPYKDaJzWKL2Cq2ie1ih/hE7BSfil1it9gjPhN7xedin/hC7BdfigPiK5EpvhYHxTfikPhWHBbfiSPie3FUHBPHxQ/ihPhRnBSnxGlxRpwVP4lz4mdxXngBEqWQUioZyBiZQ8bKnDKXvErmlsHFR/daGSevk3nl9TKfzC8LyIIyXhaShaWWRlpJMpRFZFEZlTfIYvJGWVyWkCVlKelkaZkgb5Jl5M2yrLxFlpO3yvLyNllBVpSVZGV5u6wi75AQubCP6rKGrClrybtlEtwj68h7ZV15n6wn75f15QOygXxQNpQPyUbyYdlYPiKbyEdlU9lMNpctZEv5mGwlH5etZRvZVj4h28knZXv5lEyUT8sO0l98ijwrO8vnZBf5vOwqu8nu8md5XnrZU/aS0BtkH/mS7Cv7yf5ygBwoX5aD5CtysHxVJsshcqh8TQ6Tr8vh8g05Qo6Uo+SbcrR8S46RY+U4OV6myAlyonxbTpLvyMlyipwqp8lUOV32vzjSbCn/Yf7bv5M/+Je9b5Sb5Ga5RW6V2+R2uUN+InfKnXKX3CX3yD1yr9wr98l9cr/cLw/IAzJTZsqD8qA8JA/Jw/KwPCKPyKPymDwjf5An5I/ypDwlT8kz8qw8K89dfAxAoRJKKqUCFaNyqFiVU+VSV6nc6mqVR12jIupaFaeuU3nV9Sqfyq8KqIIqXhVShZVWRllFKlRFVFEVVTfgxSeMKqlKKadKqwR107+Sr4qpG1VxVeJX+Zfml/R35tdStVStVCvVWrVWbVVb1U61U+1Ve5WoElUH1UF1VB1VJ9VJdVadVRfVRXVVXVV31V31UD1UT9VTJakk1Ue9pPqqfqq/GqAGqpfVIDVIDVaDVbJKVkPVUDVMDVPD1XA1Qo1Qo9QoNVqNVmPUGDVOjVMpKkVNVBPVJDVJTVaT1VQ1VaWqVDVDzVAz1Uw1W81Wc9QcNVfNVfPVfJWm0tRCtVClq3S1WC1WGWqJWqKWqWVqhVqhVqlVao1ao7LWX+vVepWhNqlNaovaorapbWqH2qF2qp1ql9ql9qg9aq/aq/apfWq/2q8OqAMqU2Wqg+qgOqQOqcPqsDqijqij6qg6ro6rE+qEOqlOqtPqtDqrzqpz6pw6r85nLfsCEYhABSqICWKC2CA2yBXkCnIHuYM8QZ4gEkSCuCAuyBtcH+QL8gcFgoJBfFAoKBzowAQ2EBeLHg1uCIoFNwbFgxJByaBU4ILSQUJwU1AmuDkoG9wSlAtuDcoHtwUVgopBpaBycHtQJbgjqBrcGVQL7gqqBzWCmkGt4O6gdnBPUCe4N6gb3BfUC+4P6gcPBA2CB4OGwUNBo+DhoHHwSNAkeDRoGjQLmgctgpZ/6Pjen8z/uOupe+kk3Vv30S/pvrqf7q8H6IH6ZT1Iv6IH61d1sh6ih+rX9DD9uh6u39Aj9Eg9Sr+pR+u39Bg9Vo/T43WKnqAn6rf1JP2Onqyn6Kl6mk7V0/UM/a6eqWfp2fo9PUe/r+fqeXq+XqDT9Ad6oV6k0/WHerH+SGfoJXqpXqaX6xV6pV6lV+s1eq3+WK/T6/UGvVFv0pv1Fr1Vb9Pb9Q79id6pP9W79G69R3+m9+rP9T79hd6vv9QH9Fc6U3+tD+pv9CH9rT6sv9NH9Pf6qD6mj+sf9An9oz6pT+nT+ow+q3/S5/TP+rz2WYv7rI93o4wyMSbGxJpYk8vkMrlNbpPH5DEREzFxJs7kNXlNPpPPFDAFTLyJN4VNYZOFDJkipoiJmqgpZoqZ4qa4KWlKGmecSTAJpowpY8qasqacKWfKm/KmgqlgKplK5nZzu7nD3GHuNHeau8xdpoapYWqZWqa2qW3qmDqmrqlr6pl6pr6pbxqYBqahaWgamUamsWlsmpgmpqlpapqb5qalaWlamVamtWlt2pq2pp1pZ9qb9ibRJJoOpoPpaDqaTqaT6Ww6my6mi+lqupruprvpYXqYnqanSTJJpo/pY/qavqa/6W8GmoFmkBlkBpvBJtkkm6FmqBlmhpnhZrgZYUaaUVkLVfOWGWPGmnFmvEkxKWaimWgmmUlmsplsppqpJtWkmhlmhplpZprZZraZY+aYuWaumW/mmzSTZhaahSbdpJvFZrHJMBlmqVlqlpvlZqVZaVab1WatWWvWwTqzwWwwm8wms8VsMdvMNrPD7DA7zU6zy+wye8wes9fsNfvMPrPf7DcHzAGTaTLNQXPQHDKHzGFz2BwxR8xRc9QcN8fNCXPCnDQnzWlz2pw1+S9+XnoTa3PaXPYqm9tebfPYa+zfxgVsQRtvC9nCVtt8Nv+vYmOtLW5L2JK2lHW2tE2wN/0mrmAr2kq2sr3dVrF32Kq/iWvbe2wde6+ta++ztezdv4rr2fttffuIbYAIYJvZRraFbWwfsU3so7apbWab2xa2nX3StrdP2UT7tO1gn/lNvNAusqvtGrvWfmx32d32tD1jD9lv7Vn7k+1pe9mB9mU7yL5iB9tXbbId8pt4lH3TjrZv2TF2rB1nx/8mnmqn2VQ73c6w79qZdtZv4jT7gZ1j0+1cO8/Otwt+ibPmlG4/tIvtRzbDBrDULrPL7Qq70q76/3NdZtfbDXaj3Wk/tVvsVrvNbrc7Li2E7W67x35m99rP7UH7jd1vv7QH7GGbab/+Jc46vsP2O3vEfm+P2mP2uP3BnrA/qkvZWcf+g/3ZnrfeAiEBSVIUUAzloFjKSbnoKspNV1MeuoYidC3F0XWUl66nfJSfClBBiqdCVJg0GbJEFFIRKkpRuoEuTa8klSJHpSmBbqIydDOVpVuoHN1K5ek2qkAVqRJVptupCt1BVelOqkZ3UXWqQTWpFt1NtekeqkP3Ul26j+rR/VSfHqAG9CA1pIeoET1MjekRakKPUlNqRs2pBbWkx6gVPU6tqQ21pSeoHT1J7ekpSqSnqQM9Qx3pL9SJnqXO9Bx1oeepK3Wj7vQC9aAXqSf1oiTqTX3oJepL/ag/DaCB9DINoldoML1KyTSEhtJrNIxep+H0Bo2gkTSK3qTR9BaNobE0jsZTCk2gifQ2TaJ3aDJNoak0jVJpOs2gd2kmzaLZ9B7NofdpLs2j+bSA0ugDWkiLKJ0+pMX0EWXQElpKy2g5raCVtIpW0xpaSx/TOlpPG2gjbaLNtIW20jbaTjvoE9pJn9Iu2k176DPaS5/TPvqC9tOXdIC+okz6mg7SN3SIvqXD9J3vRd/TUTpGx+kHOkE/0kk6RafpDJ2ln+gc/UznyROEGIpQhioMwpgwRxgb5gxzhVeFucOrwzzhNWEkvDaMC68L84bXh/nC/GGBsGAYHxYKC4c6NKENKQzDImHRMBreEBYLbwyLhyXCkmGp0IWlw4TwprBMeHNYNrwlLBfeGpYPbwsrhBXDR+6rHN4eVgnvCKuGd4bVwrvC6mGNsGZYK7w7rB3eE9YJ7w3rhveFZcP7w/rhA2GD8MGwYfhQ2Ch8OGwcPhI2CR8Nm4bNwuZhi7Bl+FjYKnw8bB22CduGT4TtwifD9uFTYWL4dNghfOaX/vsX/f3+pLB32Cd8KXwp9P5eOT+6IJoW/SC6MLoomh79MLo4+lE0I7okujS6LLo8uiK6Mroqujq6Jro2+nF0XXR9dEN0Y9T7WjnAoRNOOuUCF+NyuFiX0+VyV7nc7mqXx13jIu5aF+euc3nd9S6fy+8KuIIu3hVyhZ12xllHLnRFXFEXdTe4Yu5GV9yVcCVdKedcaZfgWriWrqVr5R53rV0b19Y94Z5wT7on3VPuKfe06+CecR3dX1wn96zr7J5zz7nnXVfXzXV3L7gebkKeC6/JJNfH9XF9XV/X3/V3A91AN8gNcoPdYJfskt1QN9QNc8PccDfcjXAj3Cg3yo12o90YN8aNc+NciktxE91EN8lNcpPdZDfVTXWpLtXNcDPcTDfTVZl1YS9z3Vw33813aS7NLXRZa8Z0t9gtdhkuwy11S91yt9ytdCvdarfarXVr3Tq3zm1wG9wmt8ltcVvcNrfN7XA73E630+3y11wY1O11+9w+t9/tdwfcVy7Tfe0Oum/cIfetO+y+c0fc9+6oO+aOux/cCfejO+lOudPujDvrfnLn3M/uvPMuJTIhMjHydmRS5J3I5MiUyNTItEhqZHpkRuTdyMzIrMjsyHuROZH3I3Mj8yLzIwsiaZEPIgsjiyLpkQ8jiyMfRTIiSyJLI8siyyMrIt4X2hL6Ir6oj/obfDF/oy/uS/iSvpR3vrRP8Df5Mv5mX9bf4sv5W315f5uv4Cv6Sv5R39Q38819C9/SP+Zb+cd9a9/Gt/VP+Hb+Sd/eP+UT/dO+g3/Gd/R/8Z38s76zf8538c/7rr6b7+5f8D38i76n7+WTfG/fx7/k+/p+vr8f4Af6l/0g/4of7F/1yX6IH+pf88P86364f8OP8CP9qJg3/ehLp8gw3qf4CX6if9tP8u/4yX6Kn+qn+VQ/3c/w7/qZfpaf7d/zc/z7fq6f5+f7BT7Nf+AX+kU+3X/oF/uPfIZfcumisl/pV/nVfo1f6z/26/x6v8Fv9Jv8Zr/Fb/Xb/Ha/w3/id/pP/S6/2+/xn/m9/nO/z3/h9/sv/QH/lc/0X/uD/ht/yH/rD/vv/BH/vT/qj/nj/gd/wv/oT/pT/rQ/48/6n/w5/7M/z3+zxhhjjDH2T5lwuSl+3XPhcn7v38kRf7VxHwC4emvBzL/uz1pRrst3od1PxLeLAMDTvbo8dOlWvXpSUtLFbTMkBEXnAVz6JihLDFyOl0BbeBISoQ2U+d359xPdztI/GD96K0Cuv8qJhcvx5fG/AMCk3xn/sSdGLSwfno77H8afB1C86OWcnHA5XgJtf7m+0gbK/p3552/1D+af88sUgNZ/lZMbLseX558Aj8MzkPirLRljjDHGGGOMsQv6iUqdLp1/XvqNz987P49Xl3NywOX4H52fM8YYY4wxxhhj7Mp7tlv3px5LTGzT6V9vVP1fZf3TjSbwfzUyN3634T3ApXsUAPybAwJkNeSfeRSb/5R9JV986fxt1/IzPoD/jFL+EY0r/MbEGGOMMcYY+8NdXvT/+n51pSbEGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xlQ3/GvxO70sfIGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMXWn/LwAA//9+qv+4")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

1m1.19632518s ago: executing program 3 (id=9820):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3c0, 0x0, 0xe8, 0xe8, 0x2d8, 0x2d8, 0x2d8, 0x7fffffe, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x20, '\x00', 0x0, 0x2d8}}, {{@uncond, 0xc0, 0x100, 0x0, {0x0, 0x1e03}}, @unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "2c3bb27d9d5b379b853c7744b526e29755ec721db80fdb00f95f8a608b8d"}}, {{@arp={@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@broadcast}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pim6reg0\x00', 'netpci0\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x410)

1m0.399879072s ago: executing program 3 (id=9835):
syz_mount_image$hfsplus(&(0x7f0000003100), &(0x7f0000002300)='./file1\x00', 0x1000000, &(0x7f00000000c0)=ANY=[], 0x5, 0x6a3, &(0x7f0000003bc0)="$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")
truncate(&(0x7f0000000140)='./file2\x00', 0x5c00)

1m0.047900418s ago: executing program 32 (id=9835):
syz_mount_image$hfsplus(&(0x7f0000003100), &(0x7f0000002300)='./file1\x00', 0x1000000, &(0x7f00000000c0)=ANY=[], 0x5, 0x6a3, &(0x7f0000003bc0)="$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")
truncate(&(0x7f0000000140)='./file2\x00', 0x5c00)

4.710410197s ago: executing program 1 (id=10645):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/if_inet6\x00')
preadv(r0, &(0x7f0000000a00)=[{&(0x7f0000000680)=""/161, 0xa1}], 0x1, 0x8000, 0x1ff)

4.395684802s ago: executing program 1 (id=10650):
syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac0109029c000100000400090400bf900b64ea00090587", @ANYRES16], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

2.999486103s ago: executing program 2 (id=10674):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="20000000111401001c00000000000000080022"], 0x20}, 0x1, 0xf00, 0x0, 0x80}, 0x4008014)

2.791958677s ago: executing program 2 (id=10678):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000029000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_int(r0, 0x1, 0xb, 0x0, &(0x7f0000000200))

2.56022633s ago: executing program 2 (id=10682):
r0 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000), 0x10)

2.55998943s ago: executing program 0 (id=10683):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
getpeername(r0, 0x0, 0x0)

2.54396053s ago: executing program 5 (id=10684):
r0 = socket(0x10, 0x80003, 0x0)
write(r0, &(0x7f0000000000)="240000001a005f0414f9f4070009040081fffffffe0000000000000008000f02fd000000", 0x85)

2.461828602s ago: executing program 1 (id=10685):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, 0x0)

2.383474063s ago: executing program 5 (id=10687):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000680)={'sit0\x00', &(0x7f0000000600)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x29, 0x0, @private, @rand_addr, {[@noop]}}}}})

2.363262053s ago: executing program 2 (id=10688):
r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$FUSE(r0, &(0x7f00000040c0)={0x2020}, 0x2020)

2.273805964s ago: executing program 0 (id=10689):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x0, 0x2000, 0xd80, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xc4, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5af40bb6f4c526", 0x0, 0x8000}, 0x24)

2.252654015s ago: executing program 5 (id=10691):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x8001, 0x0, 0x81, 0xffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000080000000000000000850000003600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2.135721927s ago: executing program 1 (id=10692):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x58, 0x2, 0x6, 0x101, 0x0, 0xa00, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xfffffffc}]}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}]}, 0x58}}, 0x0)

2.135069897s ago: executing program 2 (id=10693):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xaf0b, 0x2)
ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000040)={0x2, @vbi={0x0, 0x2, 0x3, 0x384c4150, [0x4, 0x1], [0x1ff, 0x9], 0x108}})

2.071954278s ago: executing program 0 (id=10694):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="09000000180000000800000040"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x1000, r0, 0x1000000}, 0x38)

2.068288478s ago: executing program 5 (id=10695):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWSET={0x54, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_SET_DATA_LEN={0x8}, @NFTA_SET_DATA_TYPE={0x8}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x7c}}, 0x0)

1.976571099s ago: executing program 1 (id=10696):
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)

1.88395725s ago: executing program 0 (id=10698):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f00000004c0)='fuseblk\x00', 0x0, 0x0)

1.88377799s ago: executing program 2 (id=10699):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$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")
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)=ANY=[@ANYBLOB="12010000020000402505a1a440000102030109025c000201000000090400000102060000052406000105240000000d240f0100000000000000000006241a000000090581030002000000090401"], 0x0)

1.883469581s ago: executing program 5 (id=10700):
r0 = syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1204408, &(0x7f0000000080)={[{@compress_force}, {@clear_cache}, {@nodatasum}, {@ref_verify}, {}, {@skip_balance}]}, 0x0, 0x51ab, &(0x7f000000a440)="$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")
ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000040)={0x105, 0xfffffffffffffcaf, [0xde, 0x6, 0x20000000000005, 0x1006], 0x0})

1.631522814s ago: executing program 4 (id=10702):
r0 = eventfd(0x0)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000001100)="02965d1f5ec3de3d", 0x8}, {&(0x7f0000002180)='\'', 0x1}], 0x2)

1.537132446s ago: executing program 4 (id=10703):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TCFLSH(r0, 0x540b, 0x1)

1.399994068s ago: executing program 4 (id=10704):
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000001400))
timer_settime(0x0, 0x0, &(0x7f0000000240), &(0x7f0000000280))

1.353549779s ago: executing program 4 (id=10705):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0xd6, &(0x7f0000000080), &(0x7f00000000c0)=0x4)

1.2565526s ago: executing program 0 (id=10706):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8c0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES8], 0x1, 0x4446, &(0x7f000000cd40)="$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")
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)

1.144775062s ago: executing program 1 (id=10707):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f0000000080)={[{@heartbeat_none}, {@heartbeat_none}, {@coherency_full}, {@inode64}, {@nouser_xattr}, {@barrier={'barrier', 0x3d, 0x5}}]}, 0x0, 0x4703, &(0x7f0000004800)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000900, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

1.084036313s ago: executing program 4 (id=10708):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmmsg(r0, &(0x7f0000000380)=[{{&(0x7f0000000580)=@nl=@proc, 0x80, &(0x7f0000001900)=[{&(0x7f0000000600)='B', 0x1}], 0x1}}, {{&(0x7f0000000200)=@nl=@proc, 0x80, &(0x7f0000000340)=[{&(0x7f0000000280)='6', 0x1}], 0x1, &(0x7f0000000640)=ANY=[], 0x28}}], 0x2, 0x0)

998.223254ms ago: executing program 4 (id=10709):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="120100006325a640402000498b4d000000010902240001000000000904000002214c6a0009050702000000da000905890e"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000c40)={0x84, &(0x7f0000000780)=ANY=[@ANYBLOB="00002e0000003212"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

449.273063ms ago: executing program 5 (id=10710):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000040), 0x1, 0x80000)
ioctl$SNDRV_PCM_IOCTL_TTSTAMP(r0, 0x40044103, 0x0)

0s ago: executing program 0 (id=10711):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ae8000000000a01010000000000000000050000000900010073797a3000000000ba000600e9eec003775c64e64f439fc0b5fb34bcd039590bba579a25436e11f718b64e3e01796b9e930a3d8eefa0bccf8429a311f3ce5ec5a0a7bb9e08c60e03cbcdd726725fb9b1bd1000cf2a77ab6ab91f2294634073ea59b8de2361cdd8045c5fdb81611e843cb814e4cfe672542287ebd3b2ed48dca1a08690b05bb9bbbcc05551bd05e4c6e0625fcae04323e0f29dbad3c57456d2ca020462188e1236ebe6da1442c71ab0a8ebfaacef2710111417370a0f8cd19c5f9e1a00000900010073797a3000000000b0000000030a01030000000000000000050000000900010073797a300000000008000540000000004c0008800c000240000000000000ffff0c00024000000000000000000c00024000000000000016cc0c00014000000000000100010c00024000000000000000140c00014000000000000000090900030073797a32000000000b00070066696c746553000024000480080002406b10a621080001"], 0x1d4}}, 0x0)

kernel console output (not intermixed with test programs):

92][T24771] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1018.855987][T24779] loop0: detected capacity change from 0 to 1024
[ 1018.857142][T24777] loop3: detected capacity change from 0 to 64
[ 1018.870140][T24771] ext4 filesystem being mounted at /1626/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1018.917850][ T4977] usb 5-1: USB disconnect, device number 14
[ 1019.000296][ T5004] EXT4-fs (loop1): unmounting filesystem.
[ 1019.117883][   T46] hfsplus: b-tree write err: -5, ino 4
[ 1019.614851][ T4924] usb 2-1: new high-speed USB device number 125 using dummy_hcd
[ 1019.757112][T24813] netlink: 'syz.0.9091': attribute type 3 has an invalid length.
[ 1019.807197][T24813] netlink: 'syz.0.9091': attribute type 1 has an invalid length.
[ 1019.818181][ T4924] usb 2-1: Using ep0 maxpacket: 32
[ 1019.831667][ T4924] usb 2-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[ 1019.859673][ T4924] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1019.883957][ T4924] usb 2-1: Product: syz
[ 1019.893576][ T4924] usb 2-1: Manufacturer: syz
[ 1019.902213][ T4924] usb 2-1: SerialNumber: syz
[ 1019.930859][ T4924] usb 2-1: config 0 descriptor??
[ 1020.167915][ T4924] RobotFuzz Open Source InterFace, OSIF 2-1:0.0: version d4.15 found at bus 002 address 125
[ 1020.209197][T24829] No such timeout policy "syz0"
[ 1020.388483][ T4876] usb 2-1: USB disconnect, device number 125
[ 1020.410927][T24837] IPv6: ADDRCONF(NETDEV_CHANGE): wireguard0: link becomes ready
[ 1020.617816][T24849] netlink: 'syz.2.9110': attribute type 10 has an invalid length.
[ 1020.652040][T24849] device netdevsim0 entered promiscuous mode
[ 1020.927962][T24856] loop4: detected capacity change from 0 to 4096
[ 1020.937674][T24860] loop2: detected capacity change from 0 to 256
[ 1021.185457][T24841] loop3: detected capacity change from 0 to 32768
[ 1021.241920][T24841] (syz.3.9105,24841,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1021.256953][T24868] loop0: detected capacity change from 0 to 16
[ 1021.304607][T24841] (syz.3.9105,24841,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1021.348682][T24868] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1021.430544][T24841] JBD2: Ignoring recovery information on journal
[ 1021.499211][T24875] netlink: 88 bytes leftover after parsing attributes in process `syz.1.9120'.
[ 1021.636577][T24841] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1021.957142][ T5008] ocfs2: Unmounting device (7,3) on (node local)
[ 1021.994518][T24891] netlink: 'syz.4.9129': attribute type 6 has an invalid length.
[ 1022.661638][T24920] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[ 1022.887859][T17401] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[ 1022.919609][T24929] loop0: detected capacity change from 0 to 512
[ 1022.962640][T24929] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2768: inode #11: comm syz.0.9146: corrupted xattr block 95
[ 1023.101019][T24929] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.9146: bg 0: block 7: invalid block bitmap
[ 1023.103617][T17401] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1023.153317][T17401] usb 3-1: New USB device found, idVendor=05ac, idProduct=025b, bcdDevice= 0.40
[ 1023.184280][T17401] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1023.209222][T24929] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 1023.218036][T17401] usb 3-1: Product: syz
[ 1023.225090][T17401] usb 3-1: Manufacturer: syz
[ 1023.229754][T17401] usb 3-1: SerialNumber: syz
[ 1023.233172][T24916] loop4: detected capacity change from 0 to 32768
[ 1023.266518][T17401] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input108
[ 1023.281286][T24929] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2934: inode #11: comm syz.0.9146: corrupted xattr block 95
[ 1023.330134][T24929] EXT4-fs warning (device loop0): ext4_evict_inode:299: xattr delete (err -117)
[ 1023.360136][T24929] EXT4-fs (loop0): 1 orphan inode deleted
[ 1023.365957][T24929] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1023.426729][T24916] XFS (loop4): Mounting V5 Filesystem
[ 1023.537492][ T5014] EXT4-fs (loop0): unmounting filesystem.
[ 1023.589389][T24916] XFS (loop4): Ending clean mount
[ 1023.709219][T24918] loop2: detected capacity change from 0 to 4096
[ 1023.739829][ T5006] XFS (loop4): Unmounting Filesystem
[ 1023.779666][T24918] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512)
[ 1023.891581][ T3609] bcm5974 3-1:1.0: could not read from device
[ 1023.900262][ T4924] usb 3-1: USB disconnect, device number 4
[ 1023.926173][ T5212] bcm5974 3-1:1.0: could not read from device
[ 1024.154696][ T5212] udevd[5212]: Error opening device "/dev/input/event4": No such file or directory
[ 1024.177711][ T5212] udevd[5212]: Unable to EVIOCGABS device "/dev/input/event4"
[ 1024.213009][ T5212] udevd[5212]: Unable to EVIOCGABS device "/dev/input/event4"
[ 1024.246336][ T5212] udevd[5212]: Unable to EVIOCGABS device "/dev/input/event4"
[ 1024.280673][ T5212] udevd[5212]: Unable to EVIOCGABS device "/dev/input/event4"
[ 1024.288279][ T5212] udevd[5212]: Assertion 'close_nointr(fd) != -EBADF' failed at util.c:228, function safe_close(). Aborting.
[ 1024.388957][ T3624] udevd[3624]: worker [5212] terminated by signal 6 (Aborted)
[ 1024.397046][T24970] netlink: 'syz.4.9156': attribute type 21 has an invalid length.
[ 1024.405032][ T3624] udevd[3624]: worker [5212] failed while handling '/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input108/event4'
[ 1024.423192][T24968] loop3: detected capacity change from 0 to 4096
[ 1025.050750][T24990] loop3: detected capacity change from 0 to 16
[ 1025.113628][T24990] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1025.693159][T25014] No such timeout policy "syz0"
[ 1025.708948][T24986] loop0: detected capacity change from 0 to 32768
[ 1025.787499][T24986] ERROR: (device loop0): dbAlloc: the hint is outside the map
[ 1025.787499][T24986] 
[ 1025.823882][T24986] ERROR: (device loop0): remounting filesystem as read-only
[ 1026.107576][T25028] netlink: 'syz.0.9190': attribute type 1 has an invalid length.
[ 1026.133016][T25030] netlink: 'syz.1.9192': attribute type 10 has an invalid length.
[ 1026.182327][T25030] netlink: 40 bytes leftover after parsing attributes in process `syz.1.9192'.
[ 1026.266558][T25030] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[ 1026.650119][T25016] loop3: detected capacity change from 0 to 32768
[ 1026.687016][T25044] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1026.749983][T25044] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1026.871611][ T4928] usb 2-1: new low-speed USB device number 126 using dummy_hcd
[ 1026.897998][T25048] netlink: 24 bytes leftover after parsing attributes in process `syz.4.9201'.
[ 1026.925322][T25024] loop2: detected capacity change from 0 to 32768
[ 1027.010038][T25024] ERROR: (device loop2): xtTruncate: XT_GETPAGE: xtree page corrupt
[ 1027.010038][T25024] 
[ 1027.052814][T25024] ERROR: (device loop2): remounting filesystem as read-only
[ 1027.082893][ T4928] usb 2-1: config index 0 descriptor too short (expected 6427, got 27)
[ 1027.102120][ T4928] usb 2-1: config 0 has an invalid interface number: 21 but max is 0
[ 1027.143131][ T4928] usb 2-1: config 0 has no interface number 0
[ 1027.153928][ T4928] usb 2-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt
[ 1027.176367][ T4928] usb 2-1: config 0 interface 21 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1027.201156][ T4928] usb 2-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[ 1027.230848][ T4928] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1027.252548][T25052] loop0: detected capacity change from 0 to 8192
[ 1027.280373][ T4928] usb 2-1: config 0 descriptor??
[ 1027.317343][T25052] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1027.392174][T25052] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 1027.401750][T25052] REISERFS (device loop0): using ordered data mode
[ 1027.408331][T25052] reiserfs: using flush barriers
[ 1027.424492][T25052] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 7143454, max trans age 30
[ 1027.509230][T25052] REISERFS (device loop0): checking transaction log (loop0)
[ 1027.527493][T25052] REISERFS (device loop0): Using rupasov hash to sort names
[ 1027.554841][T25052] REISERFS (device loop0): using 3.5.x disk format
[ 1027.561578][T25052] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1027.655709][T25052] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[ 1027.685237][T25052] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4106497 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 1027.751133][T25052] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 1027.769294][ T4928] usb 2-1: USB disconnect, device number 126
[ 1027.789952][T25052] REISERFS (device loop0): Remounting filesystem read-only
[ 1027.805028][T25052] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4106497 0x0 SD] stat data
[ 1027.840293][T25052] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4106497 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 1027.890121][T25052] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 1027.908875][T25052] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error
[ 1027.917797][T25052] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4106497 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 1027.940943][T25052] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 1027.952517][T25052] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4106497 0x0 SD] stat data
[ 1027.967496][T25052] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[ 1027.996714][T17401] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[ 1028.128896][T25075] loop2: detected capacity change from 0 to 4096
[ 1028.169029][T25075] ntfs3: loop2: ino=3, Correct links count -> 2.
[ 1028.193453][T17401] usb 5-1: Using ep0 maxpacket: 8
[ 1028.202719][T17401] usb 5-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[ 1028.230983][T17401] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1028.243705][T17401] usb 5-1: Product: syz
[ 1028.248947][T17401] usb 5-1: Manufacturer: syz
[ 1028.257996][T17401] usb 5-1: SerialNumber: syz
[ 1028.272801][T17401] usb 5-1: config 0 descriptor??
[ 1028.283110][T17401] gspca_main: sq905-2.14.0 probing 2770:9120
[ 1028.463844][T25084] loop0: detected capacity change from 0 to 512
[ 1028.596975][T25084] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1028.637752][T25084] ext4 filesystem being mounted at /1767/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1028.715111][T17401] gspca_sq905: sq905_command: usb_control_msg failed 2 (-71)
[ 1028.722601][ T5014] EXT4-fs (loop0): unmounting filesystem.
[ 1028.755657][T17401] sq905: probe of 5-1:0.0 failed with error -71
[ 1028.800031][T17401] usb 5-1: USB disconnect, device number 15
[ 1028.941105][T25102] loop0: detected capacity change from 0 to 4096
[ 1029.067629][T25107] xt_limit: Overflow, try lower: 65536/2147483648
[ 1029.077070][T25102] ntfs3: loop0: Failed to load $Extend.
[ 1029.857974][T25137] loop0: detected capacity change from 0 to 4096
[ 1029.865661][T25145] dlm: no locking on control device
[ 1030.411110][T25163] netlink: 64 bytes leftover after parsing attributes in process `syz.4.9257'.
[ 1030.501781][T25168] loop1: detected capacity change from 0 to 164
[ 1030.619361][T25168] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[ 1030.674454][T25168] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[ 1030.677090][T25141] loop2: detected capacity change from 0 to 32768
[ 1030.700439][T25173] loop3: detected capacity change from 0 to 1764
[ 1030.758022][T25168] Symlink component flag not implemented
[ 1030.771147][T25168] Symlink component flag not implemented
[ 1030.794426][T25168] Symlink component flag not implemented (7)
[ 1030.811349][T25168] Symlink component flag not implemented (116)
[ 1031.473074][T25202] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1031.552098][T25202] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1031.642515][T25203] loop4: detected capacity change from 0 to 4096
[ 1031.660934][T25203] __ntfs_error: 6 callbacks suppressed
[ 1031.660947][T25203] ntfs: (device loop4): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[ 1031.771994][T25203] ntfs: volume version 3.1.
[ 1031.990474][ T4977] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[ 1032.199473][ T4977] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1032.243283][ T4977] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[ 1032.291230][ T4977] usb 3-1: New USB device found, idVendor=0499, idProduct=103e, bcdDevice=4e.18
[ 1032.328513][ T4977] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1032.359241][ T4977] usb 3-1: Product: syz
[ 1032.363446][ T4977] usb 3-1: Manufacturer: syz
[ 1032.396937][ T4977] usb 3-1: SerialNumber: syz
[ 1032.429700][ T4977] usb 3-1: config 0 descriptor??
[ 1032.905276][T25258] loop4: detected capacity change from 0 to 64
[ 1032.913638][T23362] usb 3-1: USB disconnect, device number 5
[ 1033.027762][T25258] hfs: keylen 94 too large
[ 1033.042431][T25258] hfs: request for non-existent node 1818584064 in B*Tree
[ 1033.051248][T25258] hfs: request for non-existent node 1818584064 in B*Tree
[ 1033.081729][T25266] loop0: detected capacity change from 0 to 164
[ 1033.104479][T25264] Process accounting paused
[ 1033.122396][T25266] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[ 1033.170644][T25260] loop3: detected capacity change from 0 to 4096
[ 1033.192936][T25266] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[ 1033.227882][T25266] Symlink component flag not implemented
[ 1033.241505][T25260] ntfs3: loop3: Failed to load $Extend.
[ 1033.250515][T25266] Symlink component flag not implemented
[ 1033.270768][T25266] Symlink component flag not implemented (7)
[ 1033.301818][T25266] Symlink component flag not implemented (116)
[ 1033.311342][T25270] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1033.352903][T25270] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1033.406520][T25272] loop1: detected capacity change from 0 to 256
[ 1033.625675][T25278] Unsupported ieee802154 address type: 0
[ 1033.648929][T25276] loop2: detected capacity change from 0 to 1024
[ 1033.705557][T25276] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1033.731623][T25276] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1033.811542][T25276] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1033.942659][T25285] loop4: detected capacity change from 0 to 4096
[ 1033.948124][T25276] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1033.963637][T25285] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[ 1034.096709][T25285] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[ 1034.126811][ T5011] EXT4-fs (loop2): unmounting filesystem.
[ 1034.134795][T25285] ntfs3: loop4: ino=1b, "file0" attr_set_size
[ 1034.307316][ T5006] ntfs3: loop4: ntfs_sync_fs r=1a failed, -22.
[ 1034.351358][ T5006] ntfs3: loop4: ntfs_evict_inode r=1a failed, -22.
[ 1034.970872][T25334] loop2: detected capacity change from 0 to 512
[ 1035.002166][ T4977] usb 4-1: new low-speed USB device number 23 using dummy_hcd
[ 1035.069847][T25334] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1035.111906][T25334] ext4 filesystem being mounted at /1803/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1035.154063][ T5011] EXT4-fs (loop2): unmounting filesystem.
[ 1035.232939][ T4977] usb 4-1: config index 0 descriptor too short (expected 6427, got 27)
[ 1035.241246][ T4977] usb 4-1: config 0 has an invalid interface number: 21 but max is 0
[ 1035.266173][ T4977] usb 4-1: config 0 has no interface number 0
[ 1035.283178][ T4977] usb 4-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt
[ 1035.304209][ T4977] usb 4-1: config 0 interface 21 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1035.335893][ T4977] usb 4-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[ 1035.361692][ T4977] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1035.387692][ T4977] usb 4-1: config 0 descriptor??
[ 1035.682206][T25361] loop2: detected capacity change from 0 to 1024
[ 1035.700244][T25361] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[ 1035.722551][T25361] EXT4-fs (loop2): group descriptors corrupted!
[ 1035.771881][T25361] tmpfs: Bad value for 'mpol'
[ 1035.856908][ T4977] usb 4-1: USB disconnect, device number 23
[ 1035.896283][T25366] netlink: 32 bytes leftover after parsing attributes in process `syz.0.9353'.
[ 1035.937581][T25366] netlink: 32 bytes leftover after parsing attributes in process `syz.0.9353'.
[ 1036.256791][T25378] netlink: 132 bytes leftover after parsing attributes in process `syz.2.9358'.
[ 1036.663593][T25384] loop4: detected capacity change from 0 to 4096
[ 1036.673100][   T26] audit: type=1326 audit(1749885372.634:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25389 comm="syz.0.9365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1036.700975][T25384] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[ 1036.726733][T25368] loop1: detected capacity change from 0 to 32768
[ 1036.731539][   T26] audit: type=1326 audit(1749885372.634:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25389 comm="syz.0.9365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1036.756354][T25368] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 scanned by syz.1.9354 (25368)
[ 1036.823933][T25368] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1036.837056][T25384] ntfs3: loop4: ino=5, "/" directory corrupted
[ 1036.843831][T25384] ntfs3: loop4: ino=5, "/" directory corrupted
[ 1036.889824][   T26] audit: type=1326 audit(1749885372.681:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25389 comm="syz.0.9365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1036.916936][T25368] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1036.983018][T25368] BTRFS info (device loop1): force zlib compression, level 3
[ 1037.013531][   T26] audit: type=1326 audit(1749885372.681:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25389 comm="syz.0.9365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1037.041736][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[ 1037.048215][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[ 1037.057063][T25368] BTRFS info (device loop1): force clearing of disk cache
[ 1037.088155][T25368] BTRFS info (device loop1): setting nodatasum
[ 1037.135530][T25368] BTRFS info (device loop1): doing ref verification
[ 1037.142266][   T26] audit: type=1326 audit(1749885372.681:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25389 comm="syz.0.9365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1037.175870][T25368] BTRFS info (device loop1): allowing degraded mounts
[ 1037.193100][T25368] BTRFS info (device loop1): using free space tree
[ 1037.416587][T25424] loop4: detected capacity change from 0 to 512
[ 1037.495251][T25424] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[ 1037.510080][T25424] System zones: 0-2, 18-18, 34-34
[ 1037.575433][T25424] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1037.584493][T25368] BTRFS info (device loop1): enabling ssd optimizations
[ 1037.592731][T25424] ext4 filesystem being mounted at /1778/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1037.605128][T25368] BTRFS info (device loop1): rebuilding free space tree
[ 1037.753760][ T5004] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1037.832869][ T5006] EXT4-fs (loop4): unmounting filesystem.
[ 1037.971263][T25443] netlink: 'syz.2.9382': attribute type 3 has an invalid length.
[ 1038.006042][ T5320] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 10 /dev/loop1 scanned by udevd (5320)
[ 1038.273782][T25457] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9386'.
[ 1038.308893][T25458] device vlan0 entered promiscuous mode
[ 1039.006359][T25476] loop1: detected capacity change from 0 to 4096
[ 1039.046243][T25476] ntfs: (device loop1): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[ 1039.185903][T25455] loop2: detected capacity change from 0 to 32768
[ 1039.209669][T25488] loop4: detected capacity change from 0 to 512
[ 1039.221267][T25476] ntfs: volume version 3.1.
[ 1039.254515][T25488] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=884ec01c, mo2=0002]
[ 1039.288789][T25488] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1039.311684][T25488] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 1039.319736][T25491] netlink: 'syz.0.9404': attribute type 13 has an invalid length.
[ 1039.334422][T25488] EXT4-fs (loop4): Cannot turn on quotas: error -22
[ 1039.386287][T25488] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #13: comm syz.4.9403: iget: bogus i_mode (177755)
[ 1039.394254][T25491] netlink: 152 bytes leftover after parsing attributes in process `syz.0.9404'.
[ 1039.411297][T25491] syz_tun: refused to change device tx_queue_len
[ 1039.418341][T25491] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[ 1039.503408][T25488] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.9403: couldn't read orphan inode 13 (err -117)
[ 1039.574643][T25488] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1039.619394][T25488] EXT4-fs error (device loop4): ext4_lookup:1858: comm syz.4.9403: inode #15: comm syz.4.9403: iget: illegal inode #
[ 1039.812961][ T5006] EXT4-fs (loop4): unmounting filesystem.
[ 1039.814337][T25503] 9pnet_fd: p9_fd_create_tcp (25503): problem connecting socket to 127.0.0.1
[ 1040.135492][T25517] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[ 1040.654611][T17401] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[ 1040.859735][T17401] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1040.880643][T17401] usb 3-1: not running at top speed; connect to a high speed hub
[ 1040.910775][T17401] usb 3-1: config 219 has 1 interface, different from the descriptor's value: 2
[ 1040.933969][T17401] usb 3-1: config 219 interface 0 has no altsetting 0
[ 1040.940822][T17401] usb 3-1: config 219 interface 0 has no altsetting 1
[ 1040.962785][T25551] loop3: detected capacity change from 0 to 4096
[ 1040.988158][T17401] usb 3-1: New USB device found, idVendor=2b73, idProduct=0017, bcdDevice=a2.0e
[ 1040.999374][T25551] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[ 1041.027117][T17401] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1041.044867][T17401] usb 3-1: Product: syz
[ 1041.049207][T17401] usb 3-1: Manufacturer: syz
[ 1041.060058][T17401] usb 3-1: SerialNumber: syz
[ 1041.118262][T25551] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1041.131186][   T26] audit: type=1326 audit(1749885376.813:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25562 comm="syz.0.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1041.141042][T25561] loop1: detected capacity change from 0 to 256
[ 1041.191978][   T26] audit: type=1326 audit(1749885376.841:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25562 comm="syz.0.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1041.297081][   T26] audit: type=1326 audit(1749885376.851:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25562 comm="syz.0.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1041.315859][T17401] usb 3-1: selecting invalid altsetting 0
[ 1041.426542][T17401] snd-usb-audio: probe of 3-1:219.0 failed with error -22
[ 1041.455542][   T26] audit: type=1326 audit(1749885376.851:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25562 comm="syz.0.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1041.470406][T17401] usb 3-1: USB disconnect, device number 6
[ 1041.504624][ T5005] udevd[5005]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:219.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1041.547216][T25568] loop3: detected capacity change from 0 to 64
[ 1041.557495][   T26] audit: type=1326 audit(1749885376.851:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25562 comm="syz.0.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1042.094991][T25585] netlink: 252 bytes leftover after parsing attributes in process `syz.3.9450'.
[ 1042.414512][T25602] netlink: 'syz.4.9457': attribute type 3 has an invalid length.
[ 1042.525231][T25604] --map-set only usable from mangle table
[ 1042.874095][T25612] loop2: detected capacity change from 0 to 4096
[ 1042.922308][T25612] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[ 1043.068788][T25612] ntfs3: loop2: ino=5, "/" directory corrupted
[ 1043.110799][T25612] ntfs3: loop2: ino=5, "/" directory corrupted
[ 1043.648681][T25645] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[ 1043.655248][T25645] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1043.672600][T25650] device vlan0 entered promiscuous mode
[ 1043.689189][T25645] vhci_hcd vhci_hcd.0: Device attached
[ 1043.727553][T25646] vhci_hcd: connection closed
[ 1043.728942][    T9] vhci_hcd: stop threads
[ 1043.759007][    T9] vhci_hcd: release socket
[ 1043.785100][    T9] vhci_hcd: disconnect device
[ 1043.803505][T25654] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9482'.
[ 1044.128456][T25661] loop0: detected capacity change from 0 to 4096
[ 1044.163363][T25661] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[ 1044.253130][T25673] loop3: detected capacity change from 0 to 1024
[ 1044.260854][T25674] 9pnet_fd: p9_fd_create_tcp (25674): problem connecting socket to 127.0.0.1
[ 1044.284840][T25661] ntfs3: loop0: ino=5, "/" directory corrupted
[ 1044.291090][T25661] ntfs3: loop0: ino=5, "/" directory corrupted
[ 1044.365460][T25676] loop4: detected capacity change from 0 to 256
[ 1044.453125][T25676] FAT-fs (loop4): Directory bread(block 64) failed
[ 1044.473370][T25676] FAT-fs (loop4): Directory bread(block 65) failed
[ 1044.501396][T25676] FAT-fs (loop4): Directory bread(block 66) failed
[ 1044.538450][T25676] FAT-fs (loop4): Directory bread(block 67) failed
[ 1044.545179][T25676] FAT-fs (loop4): Directory bread(block 68) failed
[ 1044.574899][T25676] FAT-fs (loop4): Directory bread(block 69) failed
[ 1044.610611][T25676] FAT-fs (loop4): Directory bread(block 70) failed
[ 1044.676464][T25676] FAT-fs (loop4): Directory bread(block 71) failed
[ 1044.683089][T25676] FAT-fs (loop4): Directory bread(block 72) failed
[ 1044.708522][T25676] FAT-fs (loop4): Directory bread(block 73) failed
[ 1044.787952][T25688] loop2: detected capacity change from 0 to 256
[ 1044.856682][T25688] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[ 1045.174910][T25704] loop3: detected capacity change from 0 to 8
[ 1045.242365][T25704] SQUASHFS error: Failed to read block 0x4de: -5
[ 1045.266812][T25704] SQUASHFS error: Failed to read block 0x4de: -5
[ 1045.273417][T25704] SQUASHFS error: Failed to read block 0x4de: -5
[ 1045.308710][T25704] SQUASHFS error: Failed to read block 0x4de: -5
[ 1045.347575][T25704] SQUASHFS error: Failed to read block 0x4de: -5
[ 1045.355806][T25710] loop4: detected capacity change from 0 to 256
[ 1045.381902][   T26] audit: type=1800 audit(1749885380.777:72): pid=25704 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.9507" name="file1" dev="loop3" ino=5 res=0 errno=0
[ 1045.448742][T25714] loop1: detected capacity change from 0 to 256
[ 1045.456099][T25710] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 196)
[ 1045.500973][T25710] FAT-fs (loop4): Filesystem has been set read-only
[ 1045.715009][ T5006] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 196)
[ 1045.719433][T25722] loop1: detected capacity change from 0 to 512
[ 1045.830204][T25722] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1045.865245][T25722] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1045.885580][T25726] overlayfs: failed to resolve './file0': -2
[ 1045.901027][T25722] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a85ec028, mo2=0002]
[ 1045.911331][T25722] System zones: 0-2, 18-18, 34-34
[ 1045.938788][T25722] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1045.969167][T25722] EXT4-fs (loop1): 1 truncate cleaned up
[ 1045.997254][T25722] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1046.076090][T25722] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 3: comm syz.1.9515: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[ 1046.095410][T17401] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[ 1046.187153][T25722] EXT4-fs (loop1): Remounting filesystem read-only
[ 1046.251081][T25742] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9524'.
[ 1046.288861][ T5004] EXT4-fs (loop1): unmounting filesystem.
[ 1046.325319][T17401] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1046.355616][T17401] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 1046.370122][T17401] usb 3-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[ 1046.402661][T17401] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1046.422579][T25748] loop1: detected capacity change from 0 to 128
[ 1046.458226][T17401] usb 3-1: config 0 descriptor??
[ 1046.472191][T25750] vim2m vim2m.0: Fourcc format (0x47524247) invalid.
[ 1046.748230][T25757] loop0: detected capacity change from 0 to 8192
[ 1046.821181][T25757] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1046.851561][T25758] loop4: detected capacity change from 0 to 4096
[ 1046.860207][T25757] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 1046.870613][T25757] REISERFS (device loop0): using ordered data mode
[ 1046.876072][T25758] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512)
[ 1046.877199][T25757] reiserfs: using flush barriers
[ 1046.898831][T25757] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1046.915710][T17401] Bluetooth: Can't get state to change to load configuration err
[ 1046.935407][T17401] Bluetooth: Loading sysconfig file failed
[ 1046.943687][T17401] ath3k: probe of 3-1:0.0 failed with error -16
[ 1046.959194][T17401] usb 3-1: USB disconnect, device number 7
[ 1046.973266][T25757] REISERFS (device loop0): checking transaction log (loop0)
[ 1047.051039][ T4981] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[ 1047.059664][T25757] REISERFS (device loop0): Using r5 hash to sort names
[ 1047.082532][T25757] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[ 1047.084328][   T26] audit: type=1800 audit(1749885382.366:73): pid=25758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.9531" name="file1" dev="loop4" ino=30 res=0 errno=0
[ 1047.097296][T25757] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 1047.264934][ T4981] usb 4-1: Using ep0 maxpacket: 16
[ 1047.279819][ T4981] usb 4-1: config 1 interface 0 altsetting 235 endpoint 0x81 has an invalid bInterval 167, changing to 11
[ 1047.334678][ T4981] usb 4-1: config 1 interface 0 altsetting 235 bulk endpoint 0x82 has invalid maxpacket 1023
[ 1047.373815][ T4981] usb 4-1: config 1 interface 0 altsetting 235 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1047.404995][ T4981] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1047.440404][ T4981] usb 4-1: New USB device found, idVendor=0525, idProduct=0800, bcdDevice= 0.00
[ 1047.460561][ T4981] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1047.492931][ T4981] usb 4-1: Product: syz
[ 1047.497146][ T4981] usb 4-1: Manufacturer: syz
[ 1047.534626][T25774] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.9540'.
[ 1047.549347][ T4981] usb 4-1: SerialNumber: syz
[ 1047.561200][T25762] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1047.572737][ T4981] cdc_ether: probe of 4-1:1.0 failed with error -22
[ 1047.575710][T25777] overlayfs: conflicting options: nfs_export=on,index=off
[ 1047.810485][ T4981] usb 4-1: USB disconnect, device number 24
[ 1048.041455][T25798] device netdevsim0 entered promiscuous mode
[ 1048.076575][T25798] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1048.211617][T25804] loop0: detected capacity change from 0 to 16
[ 1048.225789][T25806] xt_AUDIT: Audit type out of range (valid range: 0..2)
[ 1048.261971][T25804] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1048.305422][T25804] erofs: (device loop0): erofs_fill_dentries: bogus dirent @ nid 36
[ 1048.708036][T25818] loop0: detected capacity change from 0 to 4096
[ 1048.731741][T25818] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[ 1048.889067][T25826] loop4: detected capacity change from 0 to 1024
[ 1048.906012][T25818] ntfs3: loop0: failed to convert "c46c" to cp864
[ 1049.080387][ T5100] hfsplus: b-tree write err: -5, ino 4
[ 1049.426272][T25848] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1050.370084][T25861] loop1: detected capacity change from 0 to 32768
[ 1050.396649][T25861] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.9582 (25861)
[ 1050.431161][T17401] usb 1-1: new full-speed USB device number 25 using dummy_hcd
[ 1050.461662][T25861] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1050.482965][T25861] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[ 1050.502581][T25861] BTRFS info (device loop1): using free space tree
[ 1050.521474][T23362] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[ 1050.646800][T17401] usb 1-1: config 0 has an invalid interface number: 52 but max is 0
[ 1050.656462][T17401] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1050.667529][T17401] usb 1-1: config 0 has no interface number 0
[ 1050.674454][T17401] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[ 1050.685703][T17401] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1050.695656][T17401] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1050.695738][T25861] BTRFS info (device loop1): enabling ssd optimizations
[ 1050.709434][T17401] usb 1-1: config 0 interface 52 has no altsetting 0
[ 1050.731586][T17401] usb 1-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[ 1050.742746][T23362] usb 3-1: Using ep0 maxpacket: 8
[ 1050.754844][T23362] usb 3-1: config 32 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1050.762325][T17401] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[ 1050.772970][T17401] usb 1-1: SerialNumber: syz
[ 1050.801486][T17401] usb 1-1: config 0 descriptor??
[ 1050.821907][T23362] usb 3-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[ 1050.852282][T23362] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1051.044991][T17401] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[ 1051.074205][T17401] synaptics_usb: probe of 1-1:0.52 failed with error -5
[ 1051.087944][ T5004] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1051.107993][T25926] netlink: 'syz.4.9605': attribute type 13 has an invalid length.
[ 1051.122017][T23362] usb 3-1: string descriptor 0 read error: -71
[ 1051.134397][T23362] hub 3-1:32.0: bad descriptor, ignoring hub
[ 1051.147730][T23362] hub: probe of 3-1:32.0 failed with error -5
[ 1051.164812][T25926] netlink: 152 bytes leftover after parsing attributes in process `syz.4.9605'.
[ 1051.232703][T25926] syz_tun: refused to change device tx_queue_len
[ 1051.244480][T23362] usb 3-1: USB disconnect, device number 8
[ 1051.281323][T25926] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[ 1051.333538][ T4876] usb 1-1: USB disconnect, device number 25
[ 1051.561061][ T5320] udevd[5320]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:32.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1051.573502][T25932] loop1: detected capacity change from 0 to 8
[ 1051.632297][T25932] SQUASHFS error: Failed to read block 0x4de: -5
[ 1051.660407][T25932] SQUASHFS error: Failed to read block 0x4de: -5
[ 1051.673651][T25932] SQUASHFS error: Failed to read block 0x4de: -5
[ 1051.712690][T25932] SQUASHFS error: Failed to read block 0x4de: -5
[ 1051.720216][T25932] SQUASHFS error: Failed to read block 0x4de: -5
[ 1051.732675][   T26] audit: type=1800 audit(1749885386.714:74): pid=25932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.9609" name="file1" dev="loop1" ino=5 res=0 errno=0
[ 1052.204836][T25958] Cannot find del_set index 136 as target
[ 1052.398254][T25967] loop1: detected capacity change from 0 to 512
[ 1052.453182][T25971] netlink: 6 bytes leftover after parsing attributes in process `syz.4.9624'.
[ 1052.471948][T25971] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1052.513055][T25971] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1052.577707][T25967] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1052.660542][T25967] ext4 filesystem being mounted at /1731/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1052.952365][ T5004] EXT4-fs (loop1): unmounting filesystem.
[ 1053.149936][T25996] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1053.311402][T25981] loop3: detected capacity change from 0 to 32768
[ 1053.564533][T25986] loop0: detected capacity change from 0 to 32768
[ 1053.616953][T25986] 
[ 1053.616953][T25986]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1053.616953][T25986] 
[ 1053.734283][T25986] 
[ 1053.734283][T25986]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1053.734283][T25986] 
[ 1053.804890][T25986] 
[ 1053.804890][T25986]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1053.804890][T25986] 
[ 1053.848058][T25986] 
[ 1053.848058][T25986]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1053.848058][T25986] 
[ 1053.897419][T25986] 
[ 1053.897419][T25986]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1053.897419][T25986] 
[ 1053.942296][T25986] 
[ 1053.942296][T25986]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1053.942296][T25986] 
[ 1054.003777][T25986] 
[ 1054.003777][T25986]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1054.003777][T25986] 
[ 1054.047693][  T107] 
[ 1054.047693][  T107]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1054.047693][  T107] 
[ 1054.210876][T26017] loop2: detected capacity change from 0 to 4096
[ 1054.241312][T26017] ntfs: (device loop2): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[ 1054.259291][ T5014] 
[ 1054.259291][ T5014]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1054.259291][ T5014] 
[ 1054.320189][ T5014] 
[ 1054.320189][ T5014]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1054.320189][ T5014] 
[ 1054.332257][T26017] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing.
[ 1054.368269][T26017] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[ 1054.451169][T26017] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1054.558987][T26017] ntfs: volume version 3.1.
[ 1054.577880][T26017] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[ 1054.635764][T26017] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 1054.701201][T26017] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[ 1054.800475][T26017] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[ 1054.866614][T26017] ntfs: (device loop2): ntfs_lookup(): ntfs_lookup_ino_by_name() failed with error code 5.
[ 1054.926575][T26043] loop3: detected capacity change from 0 to 512
[ 1054.998973][T26043] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1055.028401][T26041] loop0: detected capacity change from 0 to 4096
[ 1055.046473][T26043] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1055.078542][T26043] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a85ec028, mo2=0002]
[ 1055.080398][T26047] loop1: detected capacity change from 0 to 256
[ 1055.091952][T26041] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[ 1055.105648][T26043] System zones: 0-2, 18-18, 34-34
[ 1055.145561][T26043] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1055.258654][T26043] EXT4-fs (loop3): 1 truncate cleaned up
[ 1055.303838][T26047] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[ 1055.313549][T26043] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1055.475307][T26043] EXT4-fs error (device loop3): ext4_find_dest_de:2115: inode #2: block 3: comm syz.3.9660: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[ 1055.554642][T26043] EXT4-fs (loop3): Remounting filesystem read-only
[ 1055.688156][ T5008] EXT4-fs (loop3): unmounting filesystem.
[ 1055.919695][T26065] loop0: detected capacity change from 0 to 4096
[ 1055.949149][T26065] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[ 1056.041236][T26065] ntfs3: loop0: failed to convert "c46c" to cp737
[ 1056.097042][T26078] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9678'.
[ 1056.153805][T26078] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9678'.
[ 1056.185608][ T4985] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 1056.399542][ T4985] usb 3-1: Using ep0 maxpacket: 16
[ 1056.406471][ T4985] usb 3-1: config 0 has an invalid interface number: 49 but max is 0
[ 1056.427561][ T4985] usb 3-1: config 0 has no interface number 0
[ 1056.444500][ T4985] usb 3-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 16
[ 1056.487912][ T4985] usb 3-1: config 0 interface 49 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1056.518156][T26089] loop4: detected capacity change from 0 to 512
[ 1056.526904][ T4985] usb 3-1: config 0 interface 49 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 0
[ 1056.552144][T26089] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1056.577698][ T4985] usb 3-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7
[ 1056.609314][ T4985] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1056.621670][T26089] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1056.628743][T26069] loop3: detected capacity change from 0 to 32768
[ 1056.631031][ T4985] usb 3-1: Product: syz
[ 1056.649110][ T4985] usb 3-1: Manufacturer: syz
[ 1056.674570][T26069] jfs_strtoUCS: char2uni returned -22.
[ 1056.692451][T26089] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a85ec028, mo2=0002]
[ 1056.700672][ T4985] usb 3-1: SerialNumber: syz
[ 1056.706917][T26069] charset = cp936, char = 0xd4
[ 1056.707943][T26089] System zones: 
[ 1056.718518][ T4985] usb 3-1: config 0 descriptor??
[ 1056.728727][T26089] 0-2, 18-18, 34-34
[ 1056.755744][T26072] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1056.796843][T26089] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1056.837338][T26089] EXT4-fs (loop4): 1 truncate cleaned up
[ 1056.868845][T26089] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1056.985595][T26089] EXT4-fs error (device loop4): ext4_find_dest_de:2115: inode #2: block 3: comm syz.4.9683: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[ 1057.021548][ T4985] usb 3-1: USB disconnect, device number 9
[ 1057.117833][T26089] EXT4-fs (loop4): Remounting filesystem read-only
[ 1057.174133][T26105] sctp: [Deprecated]: syz.0.9691 (pid 26105) Use of int in maxseg socket option.
[ 1057.174133][T26105] Use struct sctp_assoc_value instead
[ 1057.228381][ T5006] EXT4-fs (loop4): unmounting filesystem.
[ 1057.252923][T26108] loop1: detected capacity change from 0 to 256
[ 1057.349350][T26108] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d)
[ 1057.493989][T26114] loop0: detected capacity change from 0 to 512
[ 1057.583512][T26114] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1057.613737][T26114] ext4 filesystem being mounted at /1868/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1057.831938][ T5014] EXT4-fs (loop0): unmounting filesystem.
[ 1058.050622][T26138] xt_cluster: you have exceeded the maximum number of cluster nodes (4095 > 32)
[ 1058.337206][T26150] netlink: 'syz.1.9712': attribute type 30 has an invalid length.
[ 1058.432469][T26156] fuse: blksize only supported for fuseblk
[ 1058.923854][T23362] usb 4-1: new full-speed USB device number 25 using dummy_hcd
[ 1059.005567][T26181] loop2: detected capacity change from 0 to 64
[ 1059.144866][T23362] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[ 1059.169814][T23362] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1059.201576][T23362] usb 4-1: config 0 has no interface number 0
[ 1059.223314][T23362] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[ 1059.250353][T23362] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1059.271320][T23362] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1059.305991][T23362] usb 4-1: config 0 interface 52 has no altsetting 0
[ 1059.328059][T23362] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[ 1059.358897][T23362] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[ 1059.383731][T23362] usb 4-1: SerialNumber: syz
[ 1059.406036][T23362] usb 4-1: config 0 descriptor??
[ 1059.420671][T26166] loop0: detected capacity change from 0 to 32768
[ 1059.565264][T26179] loop4: detected capacity change from 0 to 32768
[ 1059.630284][T23362] synaptics_usb 4-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[ 1059.662200][T23362] synaptics_usb: probe of 4-1:0.52 failed with error -5
[ 1059.748532][T26179] XFS (loop4): Mounting V5 Filesystem
[ 1059.834716][T26179] XFS (loop4): Ending clean mount
[ 1059.863975][T23362] usb 4-1: USB disconnect, device number 25
[ 1059.927870][T26179] XFS (loop4): Quotacheck needed: Please wait.
[ 1060.057883][T26179] XFS (loop4): Quotacheck: Done.
[ 1060.166221][T26217] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9741'.
[ 1060.215960][ T5006] XFS (loop4): Unmounting Filesystem
[ 1060.278941][T26221] loop0: detected capacity change from 0 to 128
[ 1060.322396][T26221] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 550)
[ 1060.330880][T26221] FAT-fs (loop0): Filesystem has been set read-only
[ 1060.407220][ T5014] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 550)
[ 1060.432231][T26225] netlink: 996 bytes leftover after parsing attributes in process `syz.2.9746'.
[ 1060.746540][T26238] loop1: detected capacity change from 0 to 256
[ 1060.769647][T26238] exfat: Deprecated parameter 'utf8'
[ 1060.786031][T26238] exfat: Deprecated parameter 'namecase'
[ 1060.802633][T26238] exfat: Deprecated parameter 'namecase'
[ 1060.827779][T26238] exfat: Deprecated parameter 'utf8'
[ 1060.857475][T26238] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0xcb8ffc1e, utbl_chksum : 0xe619d30d)
[ 1061.125772][T26250] netlink: 1010 bytes leftover after parsing attributes in process `syz.4.9757'.
[ 1061.142854][T26250] bridge: RTM_NEWNEIGH with invalid state 0x1
[ 1061.230579][T26255] netlink: 'syz.3.9759': attribute type 10 has an invalid length.
[ 1061.581550][T26271] netlink: 'syz.0.9765': attribute type 5 has an invalid length.
[ 1062.096363][T26299] loop1: detected capacity change from 0 to 16
[ 1062.191936][T26299] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1062.243798][T26299] erofs: (device loop1): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[ 1062.290522][T26299] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -35 in[64, 4032] out[1851]
[ 1062.346363][T26299] erofs: (device loop1): z_erofs_read_folio: failed to read, err [-117]
[ 1062.657022][T26325] Non-string source
[ 1062.855088][T26332] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9790'.
[ 1062.866282][T26335] loop2: detected capacity change from 0 to 1024
[ 1063.028187][T26339] netlink: get zone limit has 4 unknown bytes
[ 1063.116886][ T4876] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1063.322562][ T4876] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1063.331696][ T4876] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1063.341801][ T4876] usb 5-1: config 0 descriptor??
[ 1063.348255][ T4876] cp210x 5-1:0.0: cp210x converter detected
[ 1063.782476][ T4876] usb 5-1: cp210x converter now attached to ttyUSB0
[ 1063.790934][ T4876] usb 5-1: USB disconnect, device number 16
[ 1063.802805][ T4876] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1063.811505][ T4876] cp210x 5-1:0.0: device disconnected
[ 1064.408560][T26343] loop0: detected capacity change from 0 to 256
[ 1064.414085][T26348] loop3: detected capacity change from 0 to 512
[ 1064.427434][T26348] EXT4-fs: Ignoring removed bh option
[ 1064.433280][T26348] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1064.440901][T26348] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1064.532302][T26348] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1064.571607][T26348] ext4 filesystem being mounted at /1734/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1064.695514][T26348] EXT4-fs error (device loop3): ext4_empty_dir:3145: inode #12: block 32: comm syz.3.9798: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0
[ 1064.817558][T26348] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #12: comm syz.3.9798: directory missing '.'
[ 1064.990543][ T5008] EXT4-fs (loop3): unmounting filesystem.
[ 1065.425861][T26380] ieee802154 phy0 wpan0: encryption failed: -90
[ 1065.520305][T26384] loop3: detected capacity change from 0 to 256
[ 1065.588282][T26384] exfat: Deprecated parameter 'namecase'
[ 1065.629573][T26384] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[ 1065.746048][T26358] Process accounting resumed
[ 1066.020357][T26399] netlink: 10 bytes leftover after parsing attributes in process `syz.1.9825'.
[ 1066.036435][T26398] loop2: detected capacity change from 0 to 2048
[ 1066.073375][T26398] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1066.235245][T26404] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9827'.
[ 1066.251191][T26404] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9827'.
[ 1066.614860][T26418] loop2: detected capacity change from 0 to 256
[ 1066.621829][T26418] exfat: Deprecated parameter 'utf8'
[ 1066.637894][T26418] exfat: Deprecated parameter 'namecase'
[ 1066.643680][T26418] exfat: Deprecated parameter 'utf8'
[ 1066.662868][T26418] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb2b571bb, utbl_chksum : 0xe619d30d)
[ 1066.694617][    T9] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1066.750596][T26418] exFAT-fs (loop2): error, tried to truncate zeroed cluster.
[ 1066.855782][    T9] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1066.980022][    T9] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1067.003755][T26431] loop1: detected capacity change from 0 to 64
[ 1067.054853][T26431] hfs: unable to locate alternate MDB
[ 1067.060265][T26431] hfs: continuing without an alternate MDB
[ 1067.165156][T26428] loop2: detected capacity change from 0 to 4096
[ 1067.165177][    T9] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1067.214445][T26428] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512)
[ 1067.303061][T26428] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[ 1067.532802][T26441] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9846'.
[ 1067.598544][T26441] netlink: 56 bytes leftover after parsing attributes in process `syz.4.9846'.
[ 1068.043207][T26458] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1068.053517][T26458] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1068.065578][T26458] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1068.074040][T26458] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1068.085244][T26458] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1068.097017][T26458] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1068.945254][T26454] chnl_net:caif_netlink_parms(): no params data found
[ 1069.162190][   T26] kauditd_printk_skb: 1 callbacks suppressed
[ 1069.162205][   T26] audit: type=1326 audit(1749885403.018:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26512 comm="syz.0.9873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1069.294658][   T26] audit: type=1326 audit(1749885403.018:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26512 comm="syz.0.9873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=75 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1069.362115][   T26] audit: type=1326 audit(1749885403.018:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26512 comm="syz.0.9873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1069.715665][T26454] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1069.734041][T26454] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1069.751813][T26454] device bridge_slave_0 entered promiscuous mode
[ 1069.783482][T26454] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1069.790605][T26454] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1069.853730][T26454] device bridge_slave_1 entered promiscuous mode
[ 1069.864177][T26534] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[ 1069.948667][T26501] loop1: detected capacity change from 0 to 32768
[ 1070.140551][T26454] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1070.164773][    T9] device hsr_slave_0 left promiscuous mode
[ 1070.187626][    T9] device hsr_slave_1 left promiscuous mode
[ 1070.229443][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1070.237906][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1070.261624][    T9] device bridge_slave_1 left promiscuous mode
[ 1070.285771][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1070.305030][T17598] Bluetooth: hci2: command 0x0409 tx timeout
[ 1070.354144][    T9] device bridge_slave_0 left promiscuous mode
[ 1070.381974][T26542] loop2: detected capacity change from 0 to 4096
[ 1070.410721][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1070.527855][    T9] device veth1_macvtap left promiscuous mode
[ 1070.529515][T26542] ntfs: volume version 3.1.
[ 1070.539518][    T9] device veth0_macvtap left promiscuous mode
[ 1070.558568][    T9] device veth1_vlan left promiscuous mode
[ 1070.668403][ T4985] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[ 1070.876066][ T4985] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[ 1070.895569][ T4985] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1070.908991][ T4985] usb 1-1: config 220 has no interface number 2
[ 1070.918222][ T4985] usb 1-1: config 220 interface 1 altsetting 5 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1070.929908][ T4985] usb 1-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[ 1070.955336][ T4985] usb 1-1: config 220 interface 0 has no altsetting 0
[ 1070.977208][ T4985] usb 1-1: config 220 interface 76 has no altsetting 0
[ 1070.999991][ T4985] usb 1-1: config 220 interface 1 has no altsetting 0
[ 1071.023612][ T4985] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1071.028843][T26564] loop4: detected capacity change from 0 to 256
[ 1071.035230][ T4985] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1071.053657][ T4985] usb 1-1: Product: syz
[ 1071.060195][ T4985] usb 1-1: Manufacturer: syz
[ 1071.067112][T26564] exfat: Deprecated parameter 'utf8'
[ 1071.068438][ T4985] usb 1-1: SerialNumber: syz
[ 1071.073579][T26564] exfat: Deprecated parameter 'namecase'
[ 1071.106992][T26564] exfat: Deprecated parameter 'utf8'
[ 1071.153546][T26564] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb2b571bb, utbl_chksum : 0xe619d30d)
[ 1071.237614][T26564] exFAT-fs (loop4): error, tried to truncate zeroed cluster.
[ 1071.322130][ T4985] usb 1-1: selecting invalid altsetting 0
[ 1071.333828][ T4985] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[ 1071.341677][ T4985] usb 1-1: No valid video chain found.
[ 1071.367398][ T4985] usb 1-1: selecting invalid altsetting 0
[ 1071.393630][ T4985] usbtest: probe of 1-1:220.1 failed with error -22
[ 1071.410096][ T4985] usb 1-1: USB disconnect, device number 26
[ 1071.625637][T26562] loop2: detected capacity change from 0 to 40427
[ 1071.649141][T26562] F2FS-fs (loop2): invalid crc value
[ 1071.677884][T26562] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[ 1071.790123][T26562] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1071.829497][    T9] team0 (unregistering): Port device team_slave_1 removed
[ 1071.931881][    T9] team0 (unregistering): Port device team_slave_0 removed
[ 1072.034699][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1072.151646][T26577] loop0: detected capacity change from 0 to 64
[ 1072.152141][T26578] loop2: detected capacity change from 0 to 64
[ 1072.214150][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1072.529848][T17598] Bluetooth: hci2: command 0x041b tx timeout
[ 1072.536779][T26584] loop2: detected capacity change from 0 to 1024
[ 1072.846416][T26582] loop0: detected capacity change from 0 to 32768
[ 1072.929113][T26582] XFS (loop0): Mounting V5 Filesystem
[ 1073.029654][T26582] XFS (loop0): Ending clean mount
[ 1073.074386][T26582] XFS (loop0): Quotacheck needed: Please wait.
[ 1073.159137][T26582] XFS (loop0): Quotacheck: Done.
[ 1073.243544][ T5014] XFS (loop0): Unmounting Filesystem
[ 1073.355575][    T9] bond0 (unregistering): Released all slaves
[ 1073.477148][T26454] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1073.610554][T26568] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9898'.
[ 1073.647932][T26596] netlink: 'syz.2.9908': attribute type 4 has an invalid length.
[ 1073.847079][T26454] team0: Port device team_slave_0 added
[ 1073.897776][T26454] team0: Port device team_slave_1 added
[ 1073.930920][T26613] tipc: Can't bind to reserved service type 1
[ 1073.999622][T26615] netlink: 168 bytes leftover after parsing attributes in process `syz.2.9913'.
[ 1074.082409][T26454] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1074.089422][T26454] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1074.215974][T26454] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1074.276939][T26454] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1074.297944][T26454] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1074.372507][T26454] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1074.563461][T26454] device hsr_slave_0 entered promiscuous mode
[ 1074.629697][T26454] device hsr_slave_1 entered promiscuous mode
[ 1074.754461][T17598] Bluetooth: hci2: command 0x040f tx timeout
[ 1074.759341][T26645] loop0: detected capacity change from 0 to 64
[ 1074.989822][ T4924] usb 5-1: new full-speed USB device number 17 using dummy_hcd
[ 1075.159069][T26454] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1075.189673][T26454] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1075.253285][ T4924] usb 5-1: config index 0 descriptor too short (expected 69, got 36)
[ 1075.266205][ T4924] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1075.291333][T26454] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1075.297932][ T4924] usb 5-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b7.89
[ 1075.321427][ T4924] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1075.344711][T26454] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1075.361887][ T4924] usb 5-1: Product: syz
[ 1075.377612][ T4924] usb 5-1: Manufacturer: syz
[ 1075.382264][ T4924] usb 5-1: SerialNumber: syz
[ 1075.403195][ T4924] usb 5-1: config 0 descriptor??
[ 1075.429948][T26666] vivid-000: disconnect
[ 1075.431177][ T4924] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622
[ 1075.456950][T26665] vivid-000: reconnect
[ 1075.691054][T26454] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1075.736241][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1075.769188][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1075.838803][T26454] 8021q: adding VLAN 0 to HW filter on device team0
[ 1075.866595][ T4924] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71
[ 1075.875279][ T5034] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1075.877491][ T4924] gspca_pac7302: probe of 5-1:0.0 failed with error -71
[ 1075.905415][ T5034] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1075.931933][ T4924] usb 5-1: USB disconnect, device number 17
[ 1075.942765][ T5034] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1075.949934][ T5034] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1076.032706][ T5034] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1076.060423][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1076.082995][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1076.102961][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1076.110078][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1076.133482][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1076.148664][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1076.164162][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1076.217864][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1076.284589][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1076.293560][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1076.319193][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1076.335205][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1076.364213][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1076.413935][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1076.442997][T26695] Cannot find del_set index 65534 as target
[ 1076.479898][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1076.512551][T26454] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1076.906615][T26712] CIFS mount error: No usable UNC path provided in device string!
[ 1076.906615][T26712] 
[ 1076.946587][T26712] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1076.979827][T17598] Bluetooth: hci2: command 0x0419 tx timeout
[ 1077.401314][T26735] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9961'.
[ 1077.454954][T26735] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9961'.
[ 1077.573033][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1077.594150][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1077.624266][T26454] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1077.688431][T26749] loop2: detected capacity change from 0 to 256
[ 1078.080344][T26761] loop0: detected capacity change from 0 to 1024
[ 1078.686559][T26778] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9976'.
[ 1078.736221][T26744] loop1: detected capacity change from 0 to 32768
[ 1078.929396][T20726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1078.957613][T20726] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1079.022896][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1079.036153][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1079.066974][T26454] device veth0_vlan entered promiscuous mode
[ 1079.077241][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1079.122260][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1079.148758][T26454] device veth1_vlan entered promiscuous mode
[ 1079.240017][ T2893] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1079.269399][ T2893] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1079.311521][ T2893] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1079.357403][ T2893] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1079.408999][T26454] device veth0_macvtap entered promiscuous mode
[ 1079.428227][T26454] device veth1_macvtap entered promiscuous mode
[ 1079.520688][T26454] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1079.574724][T26454] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1079.620636][T26454] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1079.659005][T26454] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1079.704509][T26454] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1079.731367][T20726] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1079.748071][T20726] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1079.783332][T20726] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1079.809018][T20726] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1079.857889][T26454] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1079.894686][T26454] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1079.917378][T26819] loop1: detected capacity change from 0 to 190
[ 1079.924787][T26454] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1079.969987][T26819] ntfs: (device loop1): is_boot_sector_ntfs(): Invalid boot sector checksum.
[ 1079.975613][T26825] loop2: detected capacity change from 0 to 256
[ 1079.994472][T26454] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1080.037332][T26819] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[ 1080.043364][T26825] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 198)
[ 1080.047866][T26454] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1080.088485][T26819] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[ 1080.108427][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1080.112803][T26825] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 198)
[ 1080.139328][T26454] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1080.165123][T26454] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1080.177801][T26825] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 198)
[ 1080.186189][T26819] ntfs: (device loop1): check_mft_mirror(): Failed to read $MFTMirr.
[ 1080.200839][T26454] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1080.221744][T26819] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[ 1080.249699][T26454] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1080.268148][ T2893] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1080.280124][ T2893] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1080.298160][T26819] ntfs: (device loop1): ntfs_attr_find(): Inode is corrupt.  Run chkdsk.
[ 1080.321591][T26454] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1080.336955][T26454] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1080.359224][T26819] ntfs: (device loop1): ntfs_read_locked_inode(): Failed to lookup attribute list attribute.
[ 1080.391477][T26454] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1080.391528][T26819] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1080.400184][T26454] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1080.432873][T26819] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1080.533268][T26819] ntfs: volume version 3.1.
[ 1080.548769][T26819] ntfs: (device loop1): ntfs_read_locked_inode(): Inode is not in use!
[ 1080.604536][T26819] syz.1.9992: attempt to access beyond end of device
[ 1080.604536][T26819] loop1: rw=0, sector=552, nr_sectors = 8 limit=190
[ 1080.628786][ T5034] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1080.659624][ T5034] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1080.715122][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1080.734179][T20726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1080.763682][T20726] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1080.771926][T26819] syz.1.9992: attempt to access beyond end of device
[ 1080.771926][T26819] loop1: rw=0, sector=552, nr_sectors = 8 limit=190
[ 1080.790322][T26838] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10000'.
[ 1080.836776][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1081.072531][T26846] xt_hashlimit: size too large, truncated to 1048576
[ 1081.096597][T26846] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[ 1081.530311][T26869] i2c i2c-0: Invalid block write size 34
[ 1081.672159][T26874] loop0: detected capacity change from 0 to 512
[ 1081.758513][T26874] EXT4-fs error (device loop0): ext4_acquire_dquot:6814: comm syz.0.10013: Failed to acquire dquot type 1
[ 1081.882272][T26874] EXT4-fs (loop0): 1 truncate cleaned up
[ 1081.887998][T26874] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1081.915294][T26887] loop4: detected capacity change from 0 to 2048
[ 1081.956883][T26874] ext4 filesystem being mounted at /1945/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1081.975452][T26887] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1082.175435][ T5014] EXT4-fs (loop0): unmounting filesystem.
[ 1082.851486][ T4988] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[ 1083.056867][ T4988] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1083.091729][ T4988] usb 3-1: New USB device found, idVendor=0421, idProduct=026c, bcdDevice=1f.2f
[ 1083.108726][ T4988] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1083.141815][ T4988] usb 3-1: config 0 descriptor??
[ 1083.166154][ T4988] usb 3-1: bad CDC descriptors
[ 1083.172674][ T4988] usb 3-1: bad CDC descriptors
[ 1083.215203][T23278] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[ 1083.280741][T26945] loop5: detected capacity change from 0 to 256
[ 1083.364510][ T4988] usb 3-1: USB disconnect, device number 10
[ 1083.418403][T23278] usb 5-1: Using ep0 maxpacket: 8
[ 1083.425027][T23278] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1083.463218][T23278] usb 5-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1083.497412][T23278] usb 5-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1083.533955][T23278] usb 5-1: Product: syz
[ 1083.545444][T23278] usb 5-1: Manufacturer: syz
[ 1083.572038][T23278] usb 5-1: SerialNumber: syz
[ 1083.809429][T23278] usb 5-1: Handspring Visor / Palm OS: No valid connect info available
[ 1083.831320][T23278] usb 5-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1083.859337][T23278] usb 5-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1083.888926][T23278] usb 5-1: Handspring Visor / Palm OS: Number of ports: 2
[ 1084.033144][T23278] usb 5-1: palm_os_3_probe - error -71 getting bytes available request
[ 1084.048742][T23278] visor 5-1:1.0: Handspring Visor / Palm OS converter detected
[ 1084.082635][T23278] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1084.122557][T23278] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1084.169560][T23278] usb 5-1: USB disconnect, device number 18
[ 1084.207739][T23278] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1084.287743][T23278] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1084.313865][T23278] visor 5-1:1.0: device disconnected
[ 1084.478373][T26982] loop5: detected capacity change from 0 to 4096
[ 1084.501154][T26982] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[ 1084.550941][T26991] x_tables: duplicate underflow at hook 3
[ 1084.625284][T26982] ntfs3: loop5: failed to convert "c46c" to cp857
[ 1084.828719][T26998] overlayfs: missing 'lowerdir'
[ 1084.896302][T27005] syz_tun: mtu greater than device maximum
[ 1085.264429][T27018] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10069'.
[ 1085.288837][T27018] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10069'.
[ 1085.389155][T27020] device bridge1 entered promiscuous mode
[ 1085.531673][T26994] orangefs_mount: mount request failed with -4
[ 1085.777212][T27039] netlink: 340 bytes leftover after parsing attributes in process `syz.1.10076'.
[ 1085.804335][T27039] netlink: 140 bytes leftover after parsing attributes in process `syz.1.10076'.
[ 1085.846577][T23362] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[ 1086.078131][T23362] usb 3-1: New USB device found, idVendor=0733, idProduct=0430, bcdDevice=35.fb
[ 1086.098952][T23362] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1086.126160][T23362] usb 3-1: config 0 descriptor??
[ 1086.155788][T23362] gspca_main: spca505-2.14.0 probing 0733:0430
[ 1086.617220][T23362] gspca_spca505: reg write: error -71
[ 1086.622682][T23362] spca505: probe of 3-1:0.0 failed with error -5
[ 1086.652211][T23362] usb 3-1: USB disconnect, device number 11
[ 1086.913512][T27079] loop5: detected capacity change from 0 to 4096
[ 1086.936670][T27087] netlink: 'syz.1.10097': attribute type 17 has an invalid length.
[ 1086.954689][T27091] loop4: detected capacity change from 0 to 64
[ 1086.975450][T27087] netlink: 5 bytes leftover after parsing attributes in process `syz.1.10097'.
[ 1087.054951][T27087] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check.
[ 1087.099855][T27079] ntfs3: loop5: ino=5, "/" directory corrupted
[ 1087.128645][T27079] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[ 1087.173747][T27094] netlink: 'syz.0.10100': attribute type 2 has an invalid length.
[ 1087.506254][T27106] loop5: detected capacity change from 0 to 64
[ 1087.808074][T27119] loop4: detected capacity change from 0 to 164
[ 1087.877462][T27119] rock: directory entry would overflow storage
[ 1087.911614][T27119] rock: sig=0x66, size=4, remaining=3
[ 1087.951760][T27119] rock: directory entry would overflow storage
[ 1087.958062][ T4876] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[ 1087.978444][T27119] rock: sig=0x66, size=4, remaining=3
[ 1088.021251][T27128] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10112'.
[ 1088.055125][T27128] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10112'.
[ 1088.206251][ T4876] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1088.218036][T27136] kernel read not supported for file /� lhOb��~�
�h����3��J��y�x����v�L�=Q�R�n��$h���f�ǹ���W�FGr���q�ςû~QV7��"qH���dNn9���D0�)g
[ 1088.218036][T27136] .j``~��N@�ۀ� �W�ct��\x�|�b�E�VyS$��PAXg�8mRC�l�Et�T�TS_�m)ל- (pid: 27136 comm: syz.0.10117)
[ 1088.221991][ T4876] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1088.305227][ T4876] usb 3-1: Product: syz
[ 1088.320473][ T4876] usb 3-1: Manufacturer: syz
[ 1088.325107][ T4876] usb 3-1: SerialNumber: syz
[ 1088.329953][   T26] kauditd_printk_skb: 12 callbacks suppressed
[ 1088.329966][   T26] audit: type=1800 audit(1749885420.940:79): pid=27136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.10117" name=BD16206C684F62EDF17EE501D168FEB51D9093339E8F064AC7C879FB78D0EEC3FC76F74CAA3D51E452FA6EC1B72468AECCDC668015C7B9949DF357A346477282A5F28F71F0CF82C3BB7E517F567F37B6B7227148E21197C9644E6E39B503831CDD4430AA29670A2E6A60601F7EE9E44E40BBDB80CF1E209E571302E26374E9F65C78957CEA62CE45EF5679532492B550415867A6386D5243936C864574F954ED9054535FF86D0729D79C2D dev="mqueue" ino=97982 res=0 errno=0
[ 1088.449748][ T4876] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1088.496275][ T4876] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1088.793295][T27153] kAFS: unable to lookup cell '/'
[ 1088.857579][T27152] loop5: detected capacity change from 0 to 2048
[ 1088.883005][T27152] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1088.932524][T23277] usb 3-1: USB disconnect, device number 12
[ 1089.333931][ T4985] usb 2-1: new full-speed USB device number 127 using dummy_hcd
[ 1089.422000][T27177] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[ 1089.527696][ T4985] usb 2-1: config 1 has an invalid interface number: 128 but max is 1
[ 1089.539439][ T4985] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1089.584229][ T4985] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1089.604141][ T4985] usb 2-1: config 1 has no interface number 0
[ 1089.616994][ T4985] usb 2-1: config 1 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1089.638085][T27183] netlink: 40 bytes leftover after parsing attributes in process `syz.0.10137'.
[ 1089.638956][ T4985] usb 2-1: config 1 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1089.654383][ T4876] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[ 1089.681333][ T4985] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1089.681397][ T4876] ath9k_htc: Failed to initialize the device
[ 1089.724194][ T4985] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1089.732868][T23277] usb 3-1: ath9k_htc: USB layer deinitialized
[ 1089.773068][ T4985] usb 2-1: Product: syz
[ 1089.798284][ T4985] usb 2-1: Manufacturer: syz
[ 1089.802923][ T4985] usb 2-1: SerialNumber: syz
[ 1089.851542][ T4985] cdc_wdm 2-1:1.128: skipping garbage
[ 1089.915652][ T4985] cdc_wdm 2-1:1.128: cdc-wdm0: USB WDM device
[ 1089.937413][ T4985] cdc_wdm 2-1:1.128: Unknown control protocol
[ 1090.068961][ T4985] usb 2-1: USB disconnect, device number 127
[ 1090.285493][ T4990] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1090.490588][ T4990] usb 6-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1090.507757][ T4990] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1090.543903][ T4990] usb 6-1: config 0 descriptor??
[ 1090.996932][ T4990] [drm:udl_init] *ERROR* Selecting channel failed
[ 1091.063764][ T4990] [drm] Initialized udl 0.0.1 20120220 for 6-1:0.0 on minor 2
[ 1091.093350][ T4990] [drm] Initialized udl on minor 2
[ 1091.132767][ T4990] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1091.153658][ T4990] udl 6-1:0.0: [drm] Cannot find any crtc or sizes
[ 1091.178589][ T4990] usb 6-1: USB disconnect, device number 2
[ 1091.192550][T27245] loop4: detected capacity change from 0 to 128
[ 1091.250677][T27245] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1091.342888][T27245] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1091.403128][T27255] tmpfs: Bad value for 'mpol'
[ 1091.627158][T27260] loop2: detected capacity change from 0 to 2048
[ 1091.668340][T27260] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[ 1091.721244][T27260] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1092.099678][T27282] loop5: detected capacity change from 0 to 256
[ 1092.159406][T27282] exfat: Deprecated parameter 'utf8'
[ 1092.200793][T27282] exfat: Deprecated parameter 'utf8'
[ 1092.207395][T27286] loop1: detected capacity change from 0 to 64
[ 1092.214121][T27282] exfat: Deprecated parameter 'utf8'
[ 1092.239587][T27282] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[ 1092.325617][T27282] exFAT-fs (loop5): error, exfat_zeroed_cluster: out of range(sect:224 len:8)
[ 1092.379926][T27282] exFAT-fs (loop5): Filesystem has been set read-only
[ 1092.640168][T27297] netlink: 168 bytes leftover after parsing attributes in process `syz.1.10185'.
[ 1092.730292][T27301] kAFS: unable to lookup cell '/'
[ 1092.788649][T27303] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10190'.
[ 1093.183876][T27319] loop0: detected capacity change from 0 to 512
[ 1093.211278][T27319] EXT4-fs: Ignoring removed nobh option
[ 1093.236096][T27319] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.10198: invalid indirect mapped block 256 (level 2)
[ 1093.288928][T27319] EXT4-fs (loop0): 2 truncates cleaned up
[ 1093.299410][T27319] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1093.374807][T27327] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10200'.
[ 1093.462226][T27327] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10200'.
[ 1093.498348][T27331] loop1: detected capacity change from 0 to 512
[ 1093.528739][T27331] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1093.633883][T27331] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1093.684858][T27331] ext4 filesystem being mounted at /1860/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1093.960512][ T5004] EXT4-fs (loop1): unmounting filesystem.
[ 1094.088860][   T26] audit: type=1800 audit(1749885426.316:80): pid=27319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.10198" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 1094.160716][T27340] loop4: detected capacity change from 0 to 4096
[ 1094.226885][ T5014] EXT4-fs (loop0): unmounting filesystem.
[ 1094.249815][T27340] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[ 1094.275354][T23277] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[ 1094.313741][T27345] loop5: detected capacity change from 0 to 256
[ 1094.353857][T27345] exfat: Deprecated parameter 'namecase'
[ 1094.409998][T27345] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[ 1094.478488][T23277] usb 3-1: Using ep0 maxpacket: 16
[ 1094.478984][T27345] UBIFS error (pid: 27345): cannot open "./file0", error -22
[ 1094.485880][T23277] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 1094.550235][T27351] netlink: 12 bytes leftover after parsing attributes in process `syz.4.10212'.
[ 1094.566521][T23277] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1094.576844][T27353] netlink: 'syz.1.10213': attribute type 39 has an invalid length.
[ 1094.579627][T23277] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1094.626453][T23277] usb 3-1: Product: syz
[ 1094.634497][ T4985] usb 1-1: new full-speed USB device number 27 using dummy_hcd
[ 1094.644449][T23277] usb 3-1: Manufacturer: syz
[ 1094.649094][T23277] usb 3-1: SerialNumber: syz
[ 1094.665090][T27353] device veth0_macvtap left promiscuous mode
[ 1094.687798][T23277] cdc_ether: probe of 3-1:1.0 failed with error -22
[ 1094.834986][T27361] loop5: detected capacity change from 0 to 164
[ 1094.845561][ T4985] usb 1-1: config 0 has no interfaces?
[ 1094.853143][ T4985] usb 1-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1094.892453][T27361] iso9660: Corrupted directory entry in block 0 of inode 1792
[ 1094.911219][ T4985] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1094.934923][ T4985] usb 1-1: Product: syz
[ 1094.963920][ T4985] usb 1-1: Manufacturer: syz
[ 1094.968545][ T4985] usb 1-1: SerialNumber: syz
[ 1095.009164][T23277] usb 3-1: USB disconnect, device number 13
[ 1095.016049][ T4985] usb 1-1: config 0 descriptor??
[ 1095.224394][T27376] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744071562330114)
[ 1095.245282][T27376] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[ 1095.264222][T23277] usb 1-1: USB disconnect, device number 27
[ 1096.028481][T27370] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1096.083027][T27416] kAFS: unable to lookup cell 'sy@0'
[ 1096.181975][T27423] loop5: detected capacity change from 0 to 128
[ 1096.223483][T27423] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[ 1096.270722][T27423] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1096.411252][T27432] x_tables: duplicate entry at hook 2
[ 1096.423356][T27427] loop4: detected capacity change from 0 to 4096
[ 1096.552010][T27427] ntfs: volume version 3.1.
[ 1096.750357][T27445] loop5: detected capacity change from 0 to 64
[ 1097.046167][T27453] loop0: detected capacity change from 0 to 1024
[ 1097.524027][T27474] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[ 1097.671107][T27471] loop0: detected capacity change from 0 to 4096
[ 1097.714543][T27471] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512)
[ 1097.835223][T27481] loop1: detected capacity change from 0 to 4096
[ 1097.861006][T27471] ntfs3: loop0: ntfs_sync_inode r=1e failed, -22.
[ 1097.883022][T27481] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[ 1097.896285][T27471] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[ 1098.016849][T27481] ntfs3: loop1: ino=1e, "file1" encrypted i/o not supported
[ 1098.057037][   T26] audit: type=1800 audit(1749885430.028:81): pid=27481 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.10271" name="file1" dev="loop1" ino=30 res=0 errno=0
[ 1098.078570][T27481] Process accounting paused
[ 1098.099986][ T5100] ntfs3: loop0: ntfs3_write_inode r=1e failed, -22.
[ 1098.132336][ T5014] ntfs3: loop0: ntfs_evict_inode r=1e failed, -22.
[ 1098.311147][T27499] autofs4:pid:27499:validate_dev_ioctl: path string terminator missing for cmd(0xc018937e)
[ 1098.460550][T27505] syz.5.10282 uses old SIOCAX25GETINFO
[ 1099.586293][T27552] loop4: detected capacity change from 0 to 512
[ 1099.620337][T27554] loop2: detected capacity change from 0 to 8
[ 1099.628226][T27552] EXT4-fs: inline encryption not supported
[ 1099.801713][T27563] xt_TCPMSS: Only works on TCP SYN packets
[ 1099.813181][T27562] ieee802154 phy0 wpan0: encryption failed: -22
[ 1099.819692][T27552] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1099.838749][T27552] ext4 filesystem being mounted at /1996/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1100.092108][ T5006] EXT4-fs (loop4): unmounting filesystem.
[ 1100.211874][T27522] loop5: detected capacity change from 0 to 32768
[ 1100.251174][T27575] loop2: detected capacity change from 0 to 1024
[ 1100.259228][T27522] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1100.274900][T27522] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1100.304383][T27522] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[ 1100.326235][ T4924] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 1100.336779][ T4924] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 1100.521953][ T5320] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1100.548592][ T4924] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 198ms
[ 1100.590843][ T4924] gfs2: fsid=syz:syz.0: jid=0: Done
[ 1100.607523][T27522] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 1101.770659][T27626] loop0: detected capacity change from 0 to 2048
[ 1101.808465][T27624] loop2: detected capacity change from 0 to 4096
[ 1101.822841][T27626] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1101.856440][T27624] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[ 1102.014156][T27624] ntfs3: loop2: ino=1e, "file1" encrypted i/o not supported
[ 1102.062507][   T26] audit: type=1800 audit(1749885433.777:82): pid=27624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.10335" name="file1" dev="loop2" ino=30 res=0 errno=0
[ 1102.155609][T27600] loop5: detected capacity change from 0 to 32768
[ 1102.368477][T27638] netlink: 'syz.4.10341': attribute type 7 has an invalid length.
[ 1102.420357][T27638] netlink: 'syz.4.10341': attribute type 8 has an invalid length.
[ 1102.652787][T27648] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10344'.
[ 1102.738541][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[ 1102.744879][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[ 1102.913124][T27657] netlink: 14 bytes leftover after parsing attributes in process `syz.5.10349'.
[ 1103.159163][T27665] loop4: detected capacity change from 0 to 4096
[ 1103.190078][T27665] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[ 1103.206649][ T4924] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[ 1103.341232][T27665] ntfs3: loop4: ino=1e, "file1" encrypted i/o not supported
[ 1103.371305][   T26] audit: type=1800 audit(1749885435.001:83): pid=27665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.10351" name="file1" dev="loop4" ino=30 res=0 errno=0
[ 1103.396440][T27675] loop1: detected capacity change from 0 to 512
[ 1103.424490][ T4924] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1103.435951][T27675] EXT4-fs: Ignoring removed nobh option
[ 1103.446047][ T4924] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 1103.494983][T27675] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.10355: invalid indirect mapped block 256 (level 2)
[ 1103.536057][ T4924] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1103.575152][ T4924] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[ 1103.605713][T27675] EXT4-fs (loop1): 2 truncates cleaned up
[ 1103.611511][T27675] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1103.638057][ T4924] usb 1-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[ 1103.671556][ T4924] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1103.704546][   T26] audit: type=1326 audit(1749885435.310:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27686 comm="syz.4.10358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b7e78e929 code=0x7ffc0000
[ 1103.740846][ T4924] usb 1-1: config 0 descriptor??
[ 1103.783888][   T26] audit: type=1326 audit(1749885435.338:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27686 comm="syz.4.10358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f1b7e78e929 code=0x7ffc0000
[ 1103.895663][   T26] audit: type=1326 audit(1749885435.357:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27686 comm="syz.4.10358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b7e78e929 code=0x7ffc0000
[ 1103.976469][   T26] audit: type=1326 audit(1749885435.357:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27686 comm="syz.4.10358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b7e78e929 code=0x7ffc0000
[ 1103.990310][ T4924] hdpvr 1-1:0.0: firmware version 0x0 dated 
[ 1104.029094][ T4924] hdpvr 1-1:0.0: untested firmware, the driver might not work.
[ 1104.227695][ T4924] hdpvr 1-1:0.0: device init failed
[ 1104.247107][ T4924] hdpvr: probe of 1-1:0.0 failed with error -12
[ 1104.265865][ T4924] usb 1-1: USB disconnect, device number 28
[ 1104.559989][   T26] audit: type=1800 audit(1749885436.104:88): pid=27675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.10355" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1104.685297][ T5004] EXT4-fs (loop1): unmounting filesystem.
[ 1104.711467][T27714] loop2: detected capacity change from 0 to 4096
[ 1104.736029][T27714] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[ 1104.808805][T27714] ntfs3: loop2: ntfs_evict_inode r=3 failed, -22.
[ 1104.847445][T27722] loop4: detected capacity change from 0 to 512
[ 1104.861034][T27714] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[ 1104.895443][T27722] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1104.896766][T27714] ntfs3: loop2: ntfs_set_state r=3 failed, -22.
[ 1105.007185][T27722] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1105.066057][T27722] ext4 filesystem being mounted at /2009/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1105.321481][T27739] netlink: 404 bytes leftover after parsing attributes in process `syz.0.10377'.
[ 1105.343941][ T5006] EXT4-fs (loop4): unmounting filesystem.
[ 1105.392156][T27742] SET target dimension over the limit!
[ 1105.430299][T27739] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10377'.
[ 1105.472171][T27739] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10377'.
[ 1105.510932][T27739] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10377'.
[ 1106.101962][T27774] loop4: detected capacity change from 0 to 16
[ 1106.108175][T27775] netlink: 16 bytes leftover after parsing attributes in process `syz.1.10394'.
[ 1106.793110][T27804] netlink: 'syz.5.10407': attribute type 39 has an invalid length.
[ 1106.844082][T27806] loop2: detected capacity change from 0 to 1024
[ 1106.857605][T27806] EXT4-fs: inline encryption not supported
[ 1106.874936][T27806] EXT4-fs: Ignoring removed i_version option
[ 1106.896508][T27804] device veth0_macvtap left promiscuous mode
[ 1106.968579][T27806] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 2: comm syz.2.10408: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1106.995979][T27811] loop0: detected capacity change from 0 to 2048
[ 1107.001040][T27806] Quota error (device loop2): qtree_write_dquot: dquota write failed
[ 1107.014844][T27806] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 48: comm syz.2.10408: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1107.096950][T27811] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1107.106788][T27806] Quota error (device loop2): v2_write_file_info: Can't write info structure
[ 1107.123404][T27806] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.10408: Failed to acquire dquot type 0
[ 1107.160004][T27818] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1107.182875][T27806] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5914: Corrupt filesystem
[ 1107.239612][T27811] NILFS (loop0): DAT doesn't have a block to manage vblocknr = 147
[ 1107.282220][T27806] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #11: comm syz.2.10408: mark_inode_dirty error
[ 1107.295108][T27811] NILFS error (device loop0): nilfs_bmap_truncate: broken bmap (inode number=15)
[ 1107.341615][T27806] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[ 1107.358743][T27811] Remounting filesystem read-only
[ 1107.367485][T27811] NILFS (loop0): error -5 truncating bmap (ino=15)
[ 1107.400450][T27806] EXT4-fs (loop2): 1 orphan inode deleted
[ 1107.406523][T27806] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1107.417515][T27811] syz.0.10409: attempt to access beyond end of device
[ 1107.417515][T27811] loop0: rw=0, sector=262216, nr_sectors = 2 limit=2048
[ 1107.431504][ T2893] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1107.478509][T27811] NILFS (loop0): I/O error reading meta-data file (ino=6, block-offset=1)
[ 1107.489028][ T2893] Quota error (device loop2): remove_tree: Can't read quota data block 1
[ 1107.544860][ T2893] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:5: Failed to release dquot type 0
[ 1107.614149][T27806] EXT4-fs (loop2): unmounting filesystem.
[ 1107.630689][T27806] EXT4-fs error (device loop2): __ext4_get_inode_loc:4507: comm syz.2.10408: Invalid inode table block 1 in block_group 0
[ 1107.653501][ T5014] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer
[ 1107.681096][T27806] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5914: Corrupt filesystem
[ 1107.741032][T27806] EXT4-fs error (device loop2): ext4_quota_off:7120: inode #3: comm syz.2.10408: mark_inode_dirty error
[ 1107.948967][T27842] loop5: detected capacity change from 0 to 512
[ 1107.989018][T27842] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1108.072428][T27848] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10423'.
[ 1108.133530][T27842] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1108.181184][T27842] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1108.255035][T27856] netlink: 'syz.0.10424': attribute type 39 has an invalid length.
[ 1108.283592][T26454] EXT4-fs (loop5): unmounting filesystem.
[ 1108.353097][T27856] device veth0_macvtap left promiscuous mode
[ 1108.971546][T27878] loop4: detected capacity change from 0 to 16
[ 1108.994223][T27878] MTD: Attempt to mount non-MTD device "/dev/loop4"
[ 1109.110960][ T4924] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[ 1109.335209][ T4924] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[ 1109.366080][ T4924] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1109.399326][ T4924] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[ 1109.401437][T27892] netlink: 'syz.2.10442': attribute type 12 has an invalid length.
[ 1109.442527][ T4924] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[ 1109.458387][T27892] netlink: 120 bytes leftover after parsing attributes in process `syz.2.10442'.
[ 1109.475317][ T4924] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1109.532670][ T4924] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1109.557217][ T4924] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1109.599363][ T4924] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1109.637935][ T4924] usb 6-1: Product: syz
[ 1109.662777][ T4924] usb 6-1: Manufacturer: syz
[ 1109.673236][ T4924] usb 6-1: SerialNumber: syz
[ 1109.697763][ T4924] usb 6-1: config 0 descriptor??
[ 1109.725787][T27907] netlink: 'syz.2.10446': attribute type 39 has an invalid length.
[ 1109.735581][T27869] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1109.746288][ T4924] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1109.769390][ T4924] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1109.803341][T27907] device veth0_macvtap left promiscuous mode
[ 1109.905511][ T4876] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[ 1110.005411][ T4924] usb 6-1: USB disconnect, device number 3
[ 1110.022296][ T4924] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1110.085532][T27918] netlink: 32 bytes leftover after parsing attributes in process `syz.1.10451'.
[ 1110.116408][ T4876] usb 5-1: Using ep0 maxpacket: 16
[ 1110.120670][T27918] netlink: 7 bytes leftover after parsing attributes in process `syz.1.10451'.
[ 1110.123347][ T4876] usb 5-1: config 0 has an invalid interface number: 41 but max is 0
[ 1110.183477][ T4876] usb 5-1: config 0 has no interface number 0
[ 1110.189621][ T4876] usb 5-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[ 1110.207268][ T4876] usb 5-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[ 1110.231607][ T4876] usb 5-1: config 0 interface 41 has no altsetting 0
[ 1110.278684][ T4876] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1110.308639][ T4876] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1110.331435][ T4876] usb 5-1: Product: syz
[ 1110.335626][ T4876] usb 5-1: Manufacturer: syz
[ 1110.358594][ T4876] usb 5-1: SerialNumber: syz
[ 1110.377157][ T4876] usb 5-1: config 0 descriptor??
[ 1110.393640][T27893] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1110.418380][T27893] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1110.685726][T27893] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1110.713759][T27942] netlink: 64 bytes leftover after parsing attributes in process `syz.2.10461'.
[ 1110.716280][T27893] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1110.779891][ T4985] usb 2-1: new low-speed USB device number 2 using dummy_hcd
[ 1110.801062][ T4990] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[ 1110.925785][T27948] netlink: 16 bytes leftover after parsing attributes in process `syz.2.10463'.
[ 1110.992136][ T4985] usb 2-1: string descriptor 0 read error: -22
[ 1111.010590][ T4990] usb 1-1: New USB device found, idVendor=093a, idProduct=050f, bcdDevice=c2.b7
[ 1111.011335][ T4876] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71
[ 1111.030830][ T4985] usb 2-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f
[ 1111.046357][ T4990] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1111.068231][ T4876] CoreChips: probe of 5-1:0.41 failed with error -71
[ 1111.070780][ T4985] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1111.097525][ T4990] usb 1-1: config 0 descriptor??
[ 1111.108896][ T4876] usb 5-1: USB disconnect, device number 19
[ 1111.120950][ T4990] gspca_main: mars-2.14.0 probing 093a:050f
[ 1111.145845][ T4985] usb 2-1: config 0 descriptor??
[ 1111.181597][ T4985] usbtest 2-1:0.0: FX2 device
[ 1111.187040][ T4985] usbtest 2-1:0.0: low-speed {control intr-in intr-out} tests (+alt)
[ 1111.346010][ T4985] usb 1-1: USB disconnect, device number 29
[ 1111.376295][ T4928] usb 2-1: USB disconnect, device number 2
[ 1111.740284][T27945] syz.5.10462 (27945): drop_caches: 2
[ 1112.872611][T28017] loop5: detected capacity change from 0 to 64
[ 1112.935199][T28004] loop4: detected capacity change from 0 to 4096
[ 1112.980834][T28004] ntfs: (device loop4): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[ 1112.988693][T28017] syz.5.10487: attempt to access beyond end of device
[ 1112.988693][T28017] loop5: rw=0, sector=2590, nr_sectors = 2 limit=64
[ 1113.023381][T28004] ntfs: (device loop4): ntfs_read_locked_inode(): $DATA attribute is missing.
[ 1113.033066][T28017] Buffer I/O error on dev loop5, logical block 1295, async page read
[ 1113.091800][T28004] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[ 1113.105485][T28017] syz.5.10487: attempt to access beyond end of device
[ 1113.105485][T28017] loop5: rw=0, sector=2590, nr_sectors = 2 limit=64
[ 1113.186281][T28004] ntfs: (device loop4): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1113.218525][T28017] Buffer I/O error on dev loop5, logical block 1295, async page read
[ 1113.247424][   T26] audit: type=1800 audit(1749885444.229:89): pid=28017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.10487" name="file2" dev="loop5" ino=6 res=0 errno=0
[ 1113.249154][T28017] Trying to free block not in datazone
[ 1113.290165][T28004] ntfs: volume version 3.1.
[ 1113.393107][T28017] minix_free_block (loop5:21): bit already cleared
[ 1113.536067][T28026] netlink: 12 bytes leftover after parsing attributes in process `syz.4.10488'.
[ 1113.691502][T28010] loop1: detected capacity change from 0 to 32768
[ 1113.804086][T28010] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1114.070691][ T5004] ocfs2: Unmounting device (7,1) on (node local)
[ 1114.664032][ T4985] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[ 1114.867430][ T4985] usb 6-1: config 220 has an invalid interface number: 76 but max is 2
[ 1114.877926][ T4985] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1114.909974][ T4985] usb 6-1: config 220 has no interface number 2
[ 1114.941257][ T4985] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1114.965573][ T4985] usb 6-1: config 220 interface 0 has no altsetting 0
[ 1114.972386][ T4985] usb 6-1: config 220 interface 76 has no altsetting 0
[ 1114.992995][T28089] overlayfs: bad mount option "redirect_dir=nofollow::"
[ 1114.996945][ T4985] usb 6-1: config 220 interface 1 has no altsetting 0
[ 1115.038051][ T4985] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1115.055234][ T4876] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[ 1115.058515][ T4985] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1115.113439][ T4985] usb 6-1: Product: syz
[ 1115.122642][ T4985] usb 6-1: Manufacturer: syz
[ 1115.131903][ T4985] usb 6-1: SerialNumber: syz
[ 1115.186560][ T4990] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[ 1115.266072][ T4876] usb 3-1: Using ep0 maxpacket: 16
[ 1115.273611][ T4876] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[ 1115.281820][ T4876] usb 3-1: config 0 descriptor has 1 excess byte, ignoring
[ 1115.325543][ T4876] usb 3-1: config 0 has no interface number 0
[ 1115.346732][ T4876] usb 3-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[ 1115.377581][ T4876] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1115.382943][ T4985] usb 6-1: selecting invalid altsetting 0
[ 1115.400614][ T4990] usb 1-1: Using ep0 maxpacket: 32
[ 1115.408541][ T4876] usb 3-1: Product: syz
[ 1115.418646][ T4876] usb 3-1: Manufacturer: syz
[ 1115.418725][ T4990] usb 1-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[ 1115.434718][ T4876] usb 3-1: SerialNumber: syz
[ 1115.442046][ T4876] usb 3-1: config 0 descriptor??
[ 1115.446005][ T4985] usb 6-1: Found UVC 7.01 device syz (8086:0b07)
[ 1115.453371][ T4985] usb 6-1: No valid video chain found.
[ 1115.464126][ T4990] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1115.513750][ T4990] usb 1-1: config 0 descriptor??
[ 1115.525964][ T4985] usb 6-1: selecting invalid altsetting 0
[ 1115.532367][ T4990] as10x_usb: device has been detected
[ 1115.538149][ T4990] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[ 1115.552000][ T4985] usbtest: probe of 6-1:220.1 failed with error -22
[ 1115.582417][ T4985] usb 6-1: USB disconnect, device number 4
[ 1115.623259][ T4990] usb 1-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[ 1115.666284][ T4990] as10x_usb: error during firmware upload part1
[ 1115.674273][ T4990] Registered device nBox DVB-T Dongle
[ 1115.684690][ T4876] usb 3-1: Found UVC 0.00 device syz (046d:08f3)
[ 1115.710617][ T4876] usb 3-1: No valid video chain found.
[ 1115.725640][ T4876] usb 3-1: USB disconnect, device number 14
[ 1115.817588][T23278] usb 1-1: USB disconnect, device number 30
[ 1115.889812][T23278] Unregistered device nBox DVB-T Dongle
[ 1115.899433][T23278] as10x_usb: device has been disconnected
[ 1116.251287][T28135] netlink: 20 bytes leftover after parsing attributes in process `syz.1.10530'.
[ 1116.747398][T28157] netlink: 'syz.0.10541': attribute type 3 has an invalid length.
[ 1116.823433][T28157] netlink: 132 bytes leftover after parsing attributes in process `syz.0.10541'.
[ 1116.872974][T28163] netlink: 132 bytes leftover after parsing attributes in process `syz.5.10545'.
[ 1116.963478][T28167] netlink: 44 bytes leftover after parsing attributes in process `syz.1.10547'.
[ 1116.988573][T28165] loop2: detected capacity change from 0 to 4096
[ 1116.997151][T28171] loop0: detected capacity change from 0 to 256
[ 1117.041997][T28165] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1117.147966][T28177] netlink: 'syz.1.10550': attribute type 1 has an invalid length.
[ 1117.157365][T28177] netlink: 228 bytes leftover after parsing attributes in process `syz.1.10550'.
[ 1117.289581][ T5011] EXT4-fs (loop2): unmounting filesystem.
[ 1117.518422][T28187] netlink: 8 bytes leftover after parsing attributes in process `syz.5.10555'.
[ 1117.527617][T28187] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[ 1117.578718][T28190] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10557'.
[ 1117.590323][T28190] netlink: zone id is out of range
[ 1117.602649][T28190] netlink: zone id is out of range
[ 1117.612984][T28190] netlink: zone id is out of range
[ 1117.618427][T28190] netlink: zone id is out of range
[ 1117.623639][T28190] netlink: zone id is out of range
[ 1117.640250][T28191] device bond1 entered promiscuous mode
[ 1117.647555][T28191] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1117.668030][T28190] netlink: zone id is out of range
[ 1117.673235][T28190] netlink: zone id is out of range
[ 1117.678478][T28190] netlink: zone id is out of range
[ 1117.684075][T28190] netlink: zone id is out of range
[ 1117.689665][T28190] netlink: zone id is out of range
[ 1117.860927][T28203] netlink: 'syz.4.10558': attribute type 39 has an invalid length.
[ 1117.915205][T28203] device veth0_macvtap left promiscuous mode
[ 1118.010724][T28207] loop1: detected capacity change from 0 to 64
[ 1118.919690][ T4876] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[ 1118.947378][   T26] audit: type=1326 audit(1749885449.558:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.0.10584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1119.015791][   T26] audit: type=1326 audit(1749885449.567:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.0.10584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1119.096676][   T26] audit: type=1326 audit(1749885449.567:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.0.10584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1119.143070][T28254] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10587'.
[ 1119.154888][ T4876] usb 6-1: Using ep0 maxpacket: 32
[ 1119.171425][ T4876] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1119.188364][T28254] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10587'.
[ 1119.197874][ T4876] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1119.213694][   T26] audit: type=1326 audit(1749885449.567:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.0.10584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5707d8e929 code=0x7ffc0000
[ 1119.249695][ T4876] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1119.308732][ T4876] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1119.329513][T28260] loop0: detected capacity change from 0 to 1024
[ 1119.348097][ T4876] usb 6-1: config 0 descriptor??
[ 1119.369169][T28232] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1119.380312][ T4876] hub 6-1:0.0: USB hub found
[ 1119.401405][T28262] netlink: 212 bytes leftover after parsing attributes in process `syz.2.10590'.
[ 1119.514617][T28266] netlink: 132 bytes leftover after parsing attributes in process `syz.4.10593'.
[ 1119.603635][ T4876] hub 6-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1119.624445][ T4876] usbhid 6-1:0.0: can't add hid device: -71
[ 1119.646995][ T4876] usbhid: probe of 6-1:0.0 failed with error -71
[ 1119.690522][ T4876] usb 6-1: USB disconnect, device number 5
[ 1120.578166][T28316] netlink: 'syz.2.10618': attribute type 39 has an invalid length.
[ 1120.614209][T28308] loop1: detected capacity change from 0 to 4096
[ 1120.745254][T28308] ntfs: volume version 3.1.
[ 1121.181592][T28334] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10627'.
[ 1121.365040][T28342] loop1: detected capacity change from 0 to 256
[ 1121.365276][T28341] loop2: detected capacity change from 0 to 64
[ 1121.415108][T28342] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[ 1121.513141][T28318] loop5: detected capacity change from 0 to 32768
[ 1121.736641][T28348] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10633'.
[ 1121.865933][T28320] loop4: detected capacity change from 0 to 32768
[ 1121.877063][T28352] netlink: 'syz.0.10635': attribute type 49 has an invalid length.
[ 1122.042053][T28358] usb usb8: usbfs: process 28358 (syz.5.10639) did not claim interface 0 before use
[ 1122.190851][T28364] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10643'.
[ 1122.227649][T28366] usb usb8: usbfs: process 28366 (syz.4.10642) did not claim interface 0 before use
[ 1122.343046][T28368] netlink: 2 bytes leftover after parsing attributes in process `syz.5.10644'.
[ 1122.758618][T28386] loop2: detected capacity change from 0 to 256
[ 1122.811254][T28386] FAT-fs (loop2): Directory bread(block 64) failed
[ 1122.830789][T28386] FAT-fs (loop2): Directory bread(block 65) failed
[ 1122.852452][T28386] FAT-fs (loop2): Directory bread(block 66) failed
[ 1122.868253][T28386] FAT-fs (loop2): Directory bread(block 67) failed
[ 1122.876664][T28386] FAT-fs (loop2): Directory bread(block 68) failed
[ 1122.900707][T28386] FAT-fs (loop2): Directory bread(block 69) failed
[ 1122.930871][ T4988] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[ 1122.939170][T28386] FAT-fs (loop2): Directory bread(block 70) failed
[ 1122.955466][T28386] FAT-fs (loop2): Directory bread(block 71) failed
[ 1122.994634][T28386] FAT-fs (loop2): Directory bread(block 72) failed
[ 1123.016086][T28386] FAT-fs (loop2): Directory bread(block 73) failed
[ 1123.035526][T28392] loop4: detected capacity change from 0 to 256
[ 1123.066143][T28392] exfat: Deprecated parameter 'utf8'
[ 1123.103600][T28392] exfat: Deprecated parameter 'utf8'
[ 1123.131938][T28392] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[ 1123.135803][ T4988] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[ 1123.201524][ T4988] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1123.241764][ T4988] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[ 1123.291589][ T4988] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[ 1123.305126][T28400] netlink: 28 bytes leftover after parsing attributes in process `syz.5.10659'.
[ 1123.314199][T28400] netlink: 148 bytes leftover after parsing attributes in process `syz.5.10659'.
[ 1123.315224][ T4988] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1123.340881][ T4988] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1123.377893][ T4988] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1123.405819][ T4988] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1123.434634][ T4988] usb 2-1: Product: syz
[ 1123.448637][ T4988] usb 2-1: Manufacturer: syz
[ 1123.464962][ T4988] usb 2-1: SerialNumber: syz
[ 1123.498640][ T4988] usb 2-1: config 0 descriptor??
[ 1123.505647][T28381] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1123.536711][ T4988] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1123.578781][ T4988] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1123.769051][T28416] loop0: detected capacity change from 0 to 64
[ 1123.862858][ T4924] usb 2-1: USB disconnect, device number 3
[ 1123.877150][ T4924] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[ 1124.169614][T28434] sctp: [Deprecated]: syz.4.10676 (pid 28434) Use of int in max_burst socket option deprecated.
[ 1124.169614][T28434] Use struct sctp_assoc_value instead
[ 1124.222642][T28436] loop0: detected capacity change from 0 to 1024
[ 1124.372800][   T75] hfsplus: b-tree write err: -5, ino 4
[ 1124.383442][T28442] ax25_connect(): syz.4.10681 uses autobind, please contact jreuter@yaina.de
[ 1124.612943][T28450] program syz.1.10685 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1124.870744][T28462] kernel profiling enabled (shift: 8)
[ 1125.147900][T28478] loop2: detected capacity change from 0 to 256
[ 1125.605272][T28473] syz.1.10696 (28473): drop_caches: 2
[ 1125.622796][T28478] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1125.768879][T28480] loop5: detected capacity change from 0 to 32768
[ 1125.794168][T28480] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.10700 (28480)
[ 1125.861996][T28480] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1125.905130][T28480] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1125.926147][T28480] BTRFS info (device loop5): force zlib compression, level 3
[ 1125.941211][T28480] BTRFS info (device loop5): force clearing of disk cache
[ 1125.962820][ T4924] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1125.981425][T28480] BTRFS info (device loop5): setting nodatasum
[ 1125.988143][T28480] BTRFS info (device loop5): doing ref verification
[ 1126.018280][T28480] BTRFS info (device loop5): allowing degraded mounts
[ 1126.068592][T28480] BTRFS info (device loop5): using free space tree
[ 1126.184359][ T4924] usb 3-1: config 1 has an invalid descriptor of length 212, skipping remainder of the config
[ 1126.203682][ T4924] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1126.223326][ T4924] usb 3-1: too many endpoints for config 1 interface 1 altsetting 78: 168, using maximum allowed: 30
[ 1126.245021][ T4924] usb 3-1: config 1 interface 1 altsetting 78 has 0 endpoint descriptors, different from the interface descriptor's value: 168
[ 1126.276880][ T4924] usb 3-1: config 1 interface 1 has no altsetting 0
[ 1126.288479][ T4924] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1126.298432][T28480] BTRFS info (device loop5): enabling ssd optimizations
[ 1126.308585][ T4924] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1126.317656][T28480] BTRFS info (device loop5): rebuilding free space tree
[ 1126.324921][ T4988] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[ 1126.330206][ T4924] usb 3-1: Product: syz
[ 1126.336714][ T4924] usb 3-1: Manufacturer: syz
[ 1126.341389][ T4924] usb 3-1: SerialNumber: syz
[ 1126.364298][ T4924] usb 3-1: selecting invalid altsetting 0
[ 1126.370169][ T4924] cdc_ether: probe of 3-1:1.0 failed with error -22
[ 1126.451323][T28492] loop0: detected capacity change from 0 to 32768
[ 1126.508858][T26454] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1126.521189][T28495] loop1: detected capacity change from 0 to 32768
[ 1126.542957][T28492] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1126.556361][ T4988] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1126.569695][T28495] (syz.1.10707,28495,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1126.576269][ T4924] usb 3-1: selecting invalid altsetting 0
[ 1126.589578][ T4924] usbtest: probe of 3-1:1.1 failed with error -22
[ 1126.598332][ T4924] usb 3-1: USB disconnect, device number 15
[ 1126.622695][T28495] (syz.1.10707,28495,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1126.636308][ T4988] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 1126.636335][ T4988] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1126.636355][ T4988] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[ 1126.636389][ T4988] usb 5-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[ 1126.636412][ T4988] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1126.687339][ T4988] usb 5-1: config 0 descriptor??
[ 1126.691780][T28492] OCFS2: ERROR (device loop0): int ocfs2_reserve_suballoc_bits(struct ocfs2_super *, struct ocfs2_alloc_context *, int, u32, u64 *, int): Invalid chain allocator 74
[ 1126.712488][T28492] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1126.722543][T28492] OCFS2: Returning error to the calling process.
[ 1126.730316][T28492] (syz.0.10706,28492,0):ocfs2_reserve_suballoc_bits:850 ERROR: status = -5
[ 1126.739456][T28492] (syz.0.10706,28492,0):ocfs2_reserve_new_inode:1091 ERROR: status = -5
[ 1126.748415][T28492] (syz.0.10706,28492,0):ocfs2_reserve_new_inode:1114 ERROR: status = -5
[ 1126.763045][T28495] JBD2: Ignoring recovery information on journal
[ 1126.797298][T28492] (syz.0.10706,28492,0):ocfs2_mknod:306 ERROR: status = -5
[ 1126.823797][T28492] (syz.0.10706,28492,0):ocfs2_mknod:502 ERROR: status = -5
[ 1126.841637][T28495] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1126.851362][T28492] (syz.0.10706,28492,0):ocfs2_mkdir:659 ERROR: status = -5
[ 1126.927268][ T4988] hdpvr 5-1:0.0: firmware version 0x12 dated 
[ 1127.006422][T28495] 
[ 1127.008796][T28495] ======================================================
[ 1127.015825][T28495] WARNING: possible circular locking dependency detected
[ 1127.022873][T28495] 6.1.141-syzkaller #0 Not tainted
[ 1127.028000][T28495] ------------------------------------------------------
[ 1127.035023][T28495] syz.1.10707/28495 is trying to acquire lock:
[ 1127.041187][T28495] ffff8880666f5108 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_lock_global_qf+0x1c7/0x270
[ 1127.053749][T28495] 
[ 1127.053749][T28495] but task is already holding lock:
[ 1127.061117][T28495] ffff8880728f40a8 (&dquot->dq_lock){+.+.}-{3:3}, at: ocfs2_acquire_dquot+0x293/0xb10
[ 1127.070710][T28495] 
[ 1127.070710][T28495] which lock already depends on the new lock.
[ 1127.070710][T28495] 
[ 1127.081126][T28495] 
[ 1127.081126][T28495] the existing dependency chain (in reverse order) is:
[ 1127.090161][T28495] 
[ 1127.090161][T28495] -> #6 (&dquot->dq_lock){+.+.}-{3:3}:
[ 1127.097839][T28495]        __mutex_lock+0x120/0xaf0
[ 1127.102886][T28495]        dquot_commit+0x5a/0x410
[ 1127.107845][T28495]        ext4_write_dquot+0x1f0/0x360
[ 1127.113217][T28495]        mark_all_dquot_dirty+0xf9/0x400
[ 1127.118884][T28495]        dquot_alloc_inode+0x765/0xa20
[ 1127.124375][T28495]        ext4_xattr_inode_lookup_create+0xc0/0x1d10
[ 1127.130990][T28495]        ext4_xattr_block_set+0x23a/0x32a0
[ 1127.136822][T28495]        ext4_xattr_set_handle+0x10c1/0x12b0
[ 1127.142832][T28495]        ext4_xattr_set+0x22a/0x320
[ 1127.148048][T28495]        __vfs_setxattr+0x3e0/0x420
[ 1127.153252][T28495]        __vfs_setxattr_noperm+0x129/0x5e0
[ 1127.159068][T28495]        vfs_setxattr+0x168/0x2f0
[ 1127.164103][T28495]        setxattr+0x2b2/0x2d0
[ 1127.168775][T28495]        path_setxattr+0x142/0x280
[ 1127.173895][T28495]        __x64_sys_setxattr+0xb7/0xd0
[ 1127.179269][T28495]        do_syscall_64+0x4c/0xa0
[ 1127.184210][T28495]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.190628][T28495] 
[ 1127.190628][T28495] -> #5 (&ei->xattr_sem){++++}-{3:3}:
[ 1127.198179][T28495]        down_read+0x42/0x2d0
[ 1127.202860][T28495]        ext4_setattr+0x92a/0x19f0
[ 1127.207976][T28495]        notify_change+0xc74/0xf40
[ 1127.213107][T28495]        chown_common+0x486/0x620
[ 1127.218161][T28495]        do_fchownat+0x164/0x270
[ 1127.223109][T28495]        __x64_sys_chown+0x7e/0x90
[ 1127.228240][T28495]        do_syscall_64+0x4c/0xa0
[ 1127.233187][T28495]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.239629][T28495] 
[ 1127.239629][T28495] -> #4 (jbd2_handle){++++}-{0:0}:
[ 1127.246927][T28495]        start_this_handle+0x1f49/0x2150
[ 1127.252561][T28495]        jbd2__journal_start+0x2b7/0x5a0
[ 1127.258200][T28495]        jbd2_journal_start+0x26/0x30
[ 1127.263573][T28495]        ocfs2_start_trans+0x372/0x6c0
[ 1127.269026][T28495]        ocfs2_modify_bh+0xe5/0x460
[ 1127.274240][T28495]        ocfs2_local_read_info+0x13b1/0x16e0
[ 1127.280222][T28495]        dquot_load_quota_sb+0x756/0xac0
[ 1127.285864][T28495]        dquot_load_quota_inode+0x2d8/0x5d0
[ 1127.291777][T28495]        ocfs2_enable_quotas+0x1c3/0x440
[ 1127.297421][T28495]        ocfs2_fill_super+0x409f/0x4d00
[ 1127.302963][T28495]        mount_bdev+0x287/0x3c0
[ 1127.307812][T28495]        legacy_get_tree+0xe6/0x180
[ 1127.313011][T28495]        vfs_get_tree+0x88/0x270
[ 1127.317960][T28495]        do_new_mount+0x24a/0xa40
[ 1127.322978][T28495]        __se_sys_mount+0x2d6/0x3c0
[ 1127.328181][T28495]        do_syscall_64+0x4c/0xa0
[ 1127.333121][T28495]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.339545][T28495] 
[ 1127.339545][T28495] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}:
[ 1127.348060][T28495]        down_read+0x42/0x2d0
[ 1127.352745][T28495]        ocfs2_start_trans+0x366/0x6c0
[ 1127.358208][T28495]        ocfs2_modify_bh+0xe5/0x460
[ 1127.363403][T28495]        ocfs2_local_read_info+0x13b1/0x16e0
[ 1127.369379][T28495]        dquot_load_quota_sb+0x756/0xac0
[ 1127.375009][T28495]        dquot_load_quota_inode+0x2d8/0x5d0
[ 1127.380902][T28495]        ocfs2_enable_quotas+0x1c3/0x440
[ 1127.386530][T28495]        ocfs2_fill_super+0x409f/0x4d00
[ 1127.392071][T28495]        mount_bdev+0x287/0x3c0
[ 1127.396938][T28495]        legacy_get_tree+0xe6/0x180
[ 1127.402131][T28495]        vfs_get_tree+0x88/0x270
[ 1127.407145][T28495]        do_new_mount+0x24a/0xa40
[ 1127.412160][T28495]        __se_sys_mount+0x2d6/0x3c0
[ 1127.417351][T28495]        do_syscall_64+0x4c/0xa0
[ 1127.422280][T28495]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.428689][T28495] 
[ 1127.428689][T28495] -> #2 (sb_internal#3){.+.+}-{0:0}:
[ 1127.436152][T28495]        ocfs2_start_trans+0x267/0x6c0
[ 1127.441604][T28495]        ocfs2_write_info+0x117/0x350
[ 1127.446978][T28495]        dquot_set_dqinfo+0x459/0x6c0
[ 1127.452361][T28495]        quota_setinfo+0x2a4/0x2b0
[ 1127.457467][T28495]        __se_sys_quotactl+0x295/0x6b0
[ 1127.462916][T28495]        do_syscall_64+0x4c/0xa0
[ 1127.467849][T28495]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.474355][T28495] 
[ 1127.474355][T28495] -> #1 (&ocfs2_quota_ip_alloc_sem_key){++++}-{3:3}:
[ 1127.483220][T28495]        down_write+0x36/0x60
[ 1127.487896][T28495]        ocfs2_lock_global_qf+0x1e5/0x270
[ 1127.493610][T28495]        ocfs2_write_info+0xd0/0x350
[ 1127.498932][T28495]        dquot_set_dqinfo+0x459/0x6c0
[ 1127.504320][T28495]        quota_setinfo+0x2a4/0x2b0
[ 1127.509429][T28495]        __se_sys_quotactl+0x295/0x6b0
[ 1127.514888][T28495]        do_syscall_64+0x4c/0xa0
[ 1127.519829][T28495]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.526259][T28495] 
[ 1127.526259][T28495] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}:
[ 1127.536775][T28495]        __lock_acquire+0x2cf8/0x7c50
[ 1127.542239][T28495]        lock_acquire+0x1b4/0x490
[ 1127.547263][T28495]        down_write+0x36/0x60
[ 1127.551952][T28495]        ocfs2_lock_global_qf+0x1c7/0x270
[ 1127.557703][T28495]        ocfs2_acquire_dquot+0x2a0/0xb10
[ 1127.563331][T28495]        dqget+0x778/0xeb0
[ 1127.567747][T28495]        dquot_get_next_dqblk+0xb0/0x380
[ 1127.573373][T28495]        quota_getnextquota+0x283/0x450
[ 1127.578919][T28495]        __se_sys_quotactl+0x295/0x6b0
[ 1127.584384][T28495]        do_syscall_64+0x4c/0xa0
[ 1127.589325][T28495]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.595747][T28495] 
[ 1127.595747][T28495] other info that might help us debug this:
[ 1127.595747][T28495] 
[ 1127.605980][T28495] Chain exists of:
[ 1127.605980][T28495]   &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5 --> &ei->xattr_sem --> &dquot->dq_lock
[ 1127.605980][T28495] 
[ 1127.621813][T28495]  Possible unsafe locking scenario:
[ 1127.621813][T28495] 
[ 1127.629252][T28495]        CPU0                    CPU1
[ 1127.634608][T28495]        ----                    ----
[ 1127.639970][T28495]   lock(&dquot->dq_lock);
[ 1127.644387][T28495]                                lock(&ei->xattr_sem);
[ 1127.651222][T28495]                                lock(&dquot->dq_lock);
[ 1127.658149][T28495]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5);
[ 1127.665520][T28495] 
[ 1127.665520][T28495]  *** DEADLOCK ***
[ 1127.665520][T28495] 
[ 1127.673655][T28495] 2 locks held by syz.1.10707/28495:
[ 1127.678952][T28495]  #0: ffff888079a1e0e0 (&type->s_umount_key#101){++++}-{3:3}, at: user_get_super+0x118/0x240
[ 1127.689278][T28495]  #1: ffff8880728f40a8 (&dquot->dq_lock){+.+.}-{3:3}, at: ocfs2_acquire_dquot+0x293/0xb10
[ 1127.699338][T28495] 
[ 1127.699338][T28495] stack backtrace:
[ 1127.705239][T28495] CPU: 1 PID: 28495 Comm: syz.1.10707 Not tainted 6.1.141-syzkaller #0
[ 1127.713489][T28495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1127.723547][T28495] Call Trace:
[ 1127.726821][T28495]  <TASK>
[ 1127.729763][T28495]  dump_stack_lvl+0x168/0x22e
[ 1127.734448][T28495]  ? load_image+0x3b0/0x3b0
[ 1127.738953][T28495]  ? show_regs_print_info+0x12/0x12
[ 1127.744158][T28495]  ? print_circular_bug+0x12b/0x1a0
[ 1127.749360][T28495]  check_noncircular+0x274/0x310
[ 1127.754304][T28495]  ? add_chain_block+0x940/0x940
[ 1127.759241][T28495]  ? lockdep_lock+0xdc/0x1e0
[ 1127.763829][T28495]  ? lockdep_unlock+0x133/0x2d0
[ 1127.768674][T28495]  ? lockdep_lock+0x1e0/0x1e0
[ 1127.773353][T28495]  ? _find_first_zero_bit+0xcf/0x100
[ 1127.778645][T28495]  __lock_acquire+0x2cf8/0x7c50
[ 1127.783506][T28495]  ? verify_lock_unused+0x140/0x140
[ 1127.788702][T28495]  ? ocfs2_inode_lock_full_nested+0xcb3/0x1b20
[ 1127.794858][T28495]  lock_acquire+0x1b4/0x490
[ 1127.799366][T28495]  ? ocfs2_lock_global_qf+0x1c7/0x270
[ 1127.804740][T28495]  ? __might_sleep+0xd0/0xd0
[ 1127.809329][T28495]  ? read_lock_is_recursive+0x10/0x10
[ 1127.814702][T28495]  ? do_raw_spin_lock+0x11d/0x280
[ 1127.819739][T28495]  ? __rwlock_init+0x140/0x140
[ 1127.824536][T28495]  down_write+0x36/0x60
[ 1127.828691][T28495]  ? ocfs2_lock_global_qf+0x1c7/0x270
[ 1127.834074][T28495]  ocfs2_lock_global_qf+0x1c7/0x270
[ 1127.839276][T28495]  ? lock_buffer+0x80/0x80
[ 1127.843714][T28495]  ocfs2_acquire_dquot+0x2a0/0xb10
[ 1127.848822][T28495]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[ 1127.854472][T28495]  ? from_kuid+0x155/0x670
[ 1127.858897][T28495]  ? ocfs2_destroy_dquot+0x40/0x40
[ 1127.864007][T28495]  ? percpu_counter_add_batch+0x13b/0x160
[ 1127.869721][T28495]  dqget+0x778/0xeb0
[ 1127.873632][T28495]  dquot_get_next_dqblk+0xb0/0x380
[ 1127.878758][T28495]  quota_getnextquota+0x283/0x450
[ 1127.883808][T28495]  ? quota_getquota+0x4c0/0x4c0
[ 1127.888681][T28495]  ? end_current_label_crit_section+0x170/0x170
[ 1127.894924][T28495]  ? bpf_lsm_capable+0x5/0x10
[ 1127.899601][T28495]  ? security_capable+0x85/0xb0
[ 1127.904455][T28495]  ? bpf_lsm_quotactl+0x5/0x10
[ 1127.909218][T28495]  ? security_quotactl+0x85/0xb0
[ 1127.914155][T28495]  ? do_quotactl+0x615/0x710
[ 1127.918771][T28495]  __se_sys_quotactl+0x295/0x6b0
[ 1127.923721][T28495]  ? __x64_sys_quotactl+0xa0/0xa0
[ 1127.928757][T28495]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1127.934771][T28495]  ? lock_chain_count+0x20/0x20
[ 1127.939633][T28495]  ? lockdep_hardirqs_on+0x94/0x140
[ 1127.944831][T28495]  do_syscall_64+0x4c/0xa0
[ 1127.949254][T28495]  ? clear_bhb_loop+0x60/0xb0
[ 1127.953945][T28495]  ? clear_bhb_loop+0x60/0xb0
[ 1127.958630][T28495]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.964527][T28495] RIP: 0033:0x7fbcceb8e929
[ 1127.968958][T28495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1127.988674][T28495] RSP: 002b:00007fbccfaa7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[ 1127.997086][T28495] RAX: ffffffffffffffda RBX: 00007fbccedb5fa0 RCX: 00007fbcceb8e929
[ 1128.005083][T28495] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffff80000900
[ 1128.013048][T28495] RBP: 00007fbccec10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1128.021016][T28495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1128.028990][T28495] R13: 0000000000000000 R14: 00007fbccedb5fa0 R15: 00007ffc7d1cff68
[ 1128.036978][T28495]  </TASK>
[ 1128.040026][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1128.048653][ T4988] hdpvr 5-1:0.0: device init failed
[ 1128.053915][ T4988] hdpvr: probe of 5-1:0.0 failed with error -12
[ 1128.062817][ T4988] usb 5-1: USB disconnect, device number 20
[ 1128.088661][ T5014] ocfs2: Unmounting device (7,0) on (node local)
[ 1128.191187][ T5004] ocfs2: Unmounting device (7,1) on (node local)
[ 1128.291157][T28524] __nla_validate_parse: 2 callbacks suppressed
[ 1128.291173][T28524] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10711'.
[ 1128.340950][T28524] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10711'.