last executing test programs:

2m41.187083206s ago: executing program 3 (id=5359):
r0 = syz_open_dev$sndctrl(&(0x7f0000001bc0), 0xb5, 0x80200)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000001c40)=""/128)

2m40.901019872s ago: executing program 3 (id=5362):
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000280)=ANY=[@ANYRESOCT], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000240), 0x6f)

2m40.710986389s ago: executing program 3 (id=5366):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'tunl0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x0, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x64, 0x20, 0x0, 0x4, 0x0, @empty, @broadcast}}}})

2m40.346726165s ago: executing program 3 (id=5370):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="2c000000190001000100000000000a0080201400000400050000081e0e0009"], 0x2c}, 0x1, 0x0, 0x0, 0x40000080}, 0x4000000)

2m40.049874262s ago: executing program 3 (id=5374):
syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0x1, 0x200, &(0x7f0000006140)="$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")
open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0)

2m38.928581549s ago: executing program 3 (id=5393):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_DROP_PRIVILEGES(r0, 0x4004551e, 0x0)

2m22.812608122s ago: executing program 32 (id=5393):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_DROP_PRIVILEGES(r0, 0x4004551e, 0x0)

4.829913577s ago: executing program 1 (id=7584):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_tid_address(0x0)

4.576665671s ago: executing program 1 (id=7588):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="1400000023000b6c8cfffdfccabb00f90429fc60", 0x14}], 0x1}, 0x2400c000)

4.20460347s ago: executing program 1 (id=7591):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a40)={r0, 0x27, 0x22, 0x0, &(0x7f0000000040)="f8ad48cc02cb29dcc8007f5b080038d69f8c018a11e060905e900a41a355104010af", 0x0, 0x4000, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)

3.787464642s ago: executing program 1 (id=7599):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x33, 0x1, 0x70bd2b, 0x25dbdbfe, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x4000000)

3.517728234s ago: executing program 1 (id=7605):
r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
write$nbd(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000000fa"], 0x40)

3.28787081s ago: executing program 1 (id=7609):
r0 = syz_mount_image$bcachefs(&(0x7f00000058c0), &(0x7f0000005900)='./file0\x00', 0x101080c, &(0x7f0000000240)=ANY=[@ANYBLOB='fsck,inline_data,nocow,degraded,str_hash=siphash,norecovery,discard,reconstruct_alloc,erasure_code,acl,no_splitbrain_check,hash,uid=', @ANYRESDEC=0x0, @ANYRESOCT], 0x0, 0x58b4, &(0x7f0000005980)="$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")
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x4018bc0f, &(0x7f0000000000)={0x10, 0x8001, 0x1, 0x4, 0x868, 0x6})

2.995655374s ago: executing program 0 (id=7615):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=', @ANYBLOB='?'])

2.945074816s ago: executing program 2 (id=7616):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000001980)={0x0, 0x0, &(0x7f0000001940)={&(0x7f0000004880)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4080)

2.721804645s ago: executing program 2 (id=7619):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x3, 0x17, &(0x7f0000000880)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x76}}, {{0x6, 0x0, 0x2, 0x9, 0x0, 0x6, 0xe7030000}, {0x4, 0x0, 0x0, 0x6}}, [@printk={@llu, {0x5, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x14}}], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3, 0x0, 0x2}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2.626560674s ago: executing program 5 (id=7621):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x15}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0xfffffffb}]}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}]}], {0x14, 0x10}}, 0x98}}, 0x0)

2.62579513s ago: executing program 6 (id=7622):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x2, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x10, 0x1, 0x1, "a90037e7f30f000080df4832c305f70000000000004840080000000000008300", 0x50313459})

2.508254547s ago: executing program 0 (id=7623):
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x22000, 0x0)
read$FUSE(r0, 0x0, 0x0)

2.373003442s ago: executing program 6 (id=7624):
r0 = syz_open_dev$video4linux(&(0x7f0000002900), 0xbfbc, 0x80180)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r0, 0xc040564b, &(0x7f0000002940)={0x2, 0x0, 0x3012, 0x0, 0x8, {0x10000, 0xfffff001}, 0x1})

2.246523239s ago: executing program 0 (id=7626):
r0 = socket(0x2, 0x400000000002, 0x0)
bind$unix(r0, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e)

2.207937514s ago: executing program 5 (id=7627):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x114, 0x2d, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x104, 0xf2, 0x0, 0x1, [@typed={0xc, 0x16, 0x0, 0x0, @u64=0xfac0a}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x16}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

2.116089621s ago: executing program 6 (id=7628):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000140)={0x60, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x20}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x60}}, 0x0)

2.088293921s ago: executing program 4 (id=7629):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000440)="2e0000002e00810804fb7fec598f866b0a9a5972130000005e140608000000007a0000a71802dd", 0x27}, {&(0x7f0000001440)="f6e14ee68a9418", 0x7}], 0x2}, 0x0)

1.813444806s ago: executing program 0 (id=7630):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="8000000000010104000000000000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001800800010000000000080002007f0000010c00028005000100000000000800074000000000080003400000100e14000580050001"], 0x80}}, 0x0)

1.812558803s ago: executing program 6 (id=7631):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x200000, &(0x7f0000000140)={[{@noinit_itable}, {@nobh}, {@i_version}]}, 0x1, 0xb96, &(0x7f00000014c0)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

1.5121413s ago: executing program 4 (id=7632):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000000)=""/112)

1.295971821s ago: executing program 5 (id=7633):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0xb}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x23}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xcc}}, 0x0)

1.261871651s ago: executing program 2 (id=7634):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x9, 0x40, 0xfa02, {{0x6000000, 0xfffd, 0x2000000, @private2={0xfc, 0x2, '\x00', 0x1}}, {0xa, 0x0, 0x0, @mcast1}}}, 0x48)

1.152406305s ago: executing program 4 (id=7635):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
recvmmsg(r0, &(0x7f000000c680)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x2001, 0x0)

1.124933268s ago: executing program 6 (id=7636):
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c0000001200010003950000000000000a0900004001000000000000000000000000ffff"], 0x4c}}, 0x0)

1.073164106s ago: executing program 0 (id=7637):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000000)={[{@errors_remount}, {@nobh}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

947.93295ms ago: executing program 5 (id=7638):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2000000076000d0b0040000000008bb766f300000000000008000a"], 0x20}, 0x1, 0x0, 0x0, 0x90}, 0x0)

914.680448ms ago: executing program 2 (id=7639):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x891a, 0x0)

753.177836ms ago: executing program 4 (id=7640):
r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000002c0)={0x9, 0x2, 0x0, "d52b3d000000fa44966262631e8ac11e0000000000000000000000000100"})

562.702223ms ago: executing program 5 (id=7641):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1b, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x77)

562.401649ms ago: executing program 2 (id=7642):
r0 = socket(0x11, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8918, &(0x7f0000000480)={'veth1_macvtap\x00', {0x2, 0x0, @empty=0xcf050000}})

561.942631ms ago: executing program 4 (id=7643):
r0 = socket(0x1e, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x10f, 0x1d, 0x0, &(0x7f00000012c0))

191.017385ms ago: executing program 4 (id=7644):
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c00)
ioctl$CEC_DQEVENT(r0, 0xc0506107, 0x0)

181.040397ms ago: executing program 5 (id=7645):
r0 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x2711, 0x0, &(0x7f0000000040))

175.602409ms ago: executing program 2 (id=7646):
syz_mount_image$cramfs(&(0x7f00000001c0), &(0x7f0000000240)='./file1\x00', 0x10080, &(0x7f00000006c0)=ANY=[@ANYRES16=0x0], 0x1, 0x15c, &(0x7f00000002c0)="$eJzs0L1rGmEcwPHvvah90SrUgu3QFjr0qFjPE7sV0VKp0OtBi0uHUtArLdhaFIpjW3Dr0D/ghiRCJnEIGTNEk8VEISRr/oWDDIGMCQ+n5GXM/HyW477Pjx88z+uXM4MEaARetb7/bLudjtt4/N6xKx/W1jfuiB4BbgA9oC2GG8H8Zgm+iq8OvhnkrRh8+dZ0n9dbTfHvl8AAyrdFDxWjov2BW6Ilg9ncvBlP0Mb3gmadNxYtP28PdCjHg2YCp8s3eQqoLPapHANdLz0c7LybTqqZZ6ufNHrV9KO7yuX+0P1nVe73oymNmru9Iq5J1zvITjJ72eFgfza13zq2M8tb1ou8mTPNQsTZnVYLv/+jv4n+go9X9oXDQA3+KuApHAb7/JESC81fOR5JAkc/EqB0dX+k2MB46QTUiyde/XMq1C8mEyqagYIkSZIkSZIkSZIkXdNZAAAA//9vVGPD")
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)

157.859248ms ago: executing program 6 (id=7647):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1000801, &(0x7f0000000280)=ANY=[], 0x2, 0x1fc, &(0x7f00000007c0)="$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")
statfs(&(0x7f0000000000)='./file0\x00', 0x0)

0s ago: executing program 0 (id=7648):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002840)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r0, 0x18000000000002a0, 0x10, 0x0, &(0x7f00000006c0)="5aee41dea43a63a3f7fb7f11c72b922c", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

kernel console output (not intermixed with test programs):

 invalid descriptor of length 0, skipping remainder of the config
[  673.328521][T19055] loop5: detected capacity change from 0 to 164
[  673.347538][ T5973] usb 7-1: config 0 interface 0 has no altsetting 0
[  673.357291][T19056] netlink: 92 bytes leftover after parsing attributes in process `syz.1.5845'.
[  673.376832][ T5973] usb 7-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce
[  673.411011][T19055] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  673.428729][ T5973] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  673.469414][ T5973] usb 7-1: Product: syz
[  673.473641][ T5973] usb 7-1: Manufacturer: syz
[  673.519072][ T5973] usb 7-1: SerialNumber: syz
[  673.554150][ T5973] usb 7-1: config 0 descriptor??
[  673.580215][T19062] loop4: detected capacity change from 0 to 128
[  673.585611][ T5973] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state.
[  673.625270][ T5973] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  673.639675][T19064] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5849'.
[  673.694886][ T5973] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0)
[  673.743167][ T5973] usb 7-1: media controller created
[  673.847254][ T5973] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  674.140931][ T5973] DVB: Unable to find symbol tda10046_attach()
[  674.147139][ T5973] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0'
[  674.190632][T19082] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[  674.219609][ T5973] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected.
[  674.492320][ T5973] dvb_usb_m920x 7-1:0.0: probe with driver dvb_usb_m920x failed with error -71
[  674.544128][ T5973] usb 7-1: USB disconnect, device number 2
[  674.806794][T19105] netlink: 'syz.5.5867': attribute type 1 has an invalid length.
[  675.091878][T19118] loop2: detected capacity change from 0 to 64
[  675.440934][T19129] tmpfs: Bad value for 'mpol'
[  675.510746][T19132] ip6t_rpfilter: unknown options
[  675.661373][ T5965] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  675.673976][ T5965] CPU: 1 UID: 0 PID: 5965 Comm: kworker/u9:2 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  675.674006][ T5965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  675.674023][ T5965] Workqueue: hci3 hci_rx_work
[  675.674063][ T5965] Call Trace:
[  675.674073][ T5965]  <TASK>
[  675.674084][ T5965]  dump_stack_lvl+0x189/0x250
[  675.674127][ T5965]  ? __pfx_dump_stack_lvl+0x10/0x10
[  675.674164][ T5965]  ? __pfx__printk+0x10/0x10
[  675.674190][ T5965]  ? kernfs_path_from_node+0x2b/0x260
[  675.674228][ T5965]  ? kernfs_path_from_node+0x2b/0x260
[  675.674262][ T5965]  ? kernfs_path_from_node+0x2b/0x260
[  675.674298][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.674328][ T5965]  ? kernfs_path_from_node+0x216/0x260
[  675.674368][ T5965]  sysfs_create_dir_ns+0x259/0x280
[  675.674407][ T5965]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  675.674445][ T5965]  ? do_raw_spin_unlock+0x122/0x240
[  675.674483][ T5965]  kobject_add_internal+0x59f/0xb40
[  675.674531][ T5965]  kobject_add+0x155/0x220
[  675.674564][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.674599][ T5965]  ? __pfx_kobject_add+0x10/0x10
[  675.674635][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.674664][ T5965]  ? _raw_spin_unlock+0x28/0x50
[  675.674690][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.674722][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.674750][ T5965]  ? get_device_parent+0x366/0x3a0
[  675.674788][ T5965]  device_add+0x408/0xb50
[  675.674824][ T5965]  hci_conn_add_sysfs+0xd5/0x1e0
[  675.674866][ T5965]  le_conn_complete_evt+0xc3a/0x1220
[  675.674910][ T5965]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  675.674937][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.674965][ T5965]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  675.674997][ T5965]  ? __asan_memcpy+0x40/0x70
[  675.675026][ T5965]  ? __pfx___mutex_lock+0x10/0x10
[  675.675060][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.675088][ T5965]  ? skb_pull_data+0xfb/0x200
[  675.675120][ T5965]  hci_le_enh_conn_complete_evt+0x189/0x470
[  675.675149][ T5965]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  675.675181][ T5965]  hci_event_packet+0x7a5/0x1270
[  675.675223][ T5965]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  675.675250][ T5965]  ? __pfx_hci_event_packet+0x10/0x10
[  675.675287][ T5965]  ? kcov_remote_start+0x4d3/0x7f0
[  675.675318][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.675345][ T5965]  ? lockdep_hardirqs_on+0x20/0x150
[  675.675379][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.675407][ T5965]  ? hci_send_to_monitor+0xd7/0x4f0
[  675.675439][ T5965]  hci_rx_work+0x46a/0xe80
[  675.675484][ T5965]  ? process_scheduled_works+0x9ec/0x17a0
[  675.675512][ T5965]  process_scheduled_works+0xade/0x17a0
[  675.675572][ T5965]  ? __pfx_process_scheduled_works+0x10/0x10
[  675.675621][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.675660][ T5965]  worker_thread+0x8a0/0xda0
[  675.675688][ T5965]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  675.675743][ T5965]  ? __kthread_parkme+0x7b/0x200
[  675.675783][ T5965]  kthread+0x711/0x8a0
[  675.675818][ T5965]  ? __pfx_worker_thread+0x10/0x10
[  675.675843][ T5965]  ? __pfx_kthread+0x10/0x10
[  675.675878][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.675909][ T5965]  ? __pfx_kthread+0x10/0x10
[  675.675938][ T5965]  ? _raw_spin_unlock_irq+0x23/0x50
[  675.675966][ T5965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  675.675994][ T5965]  ? lockdep_hardirqs_on+0x9c/0x150
[  675.676026][ T5965]  ? __pfx_kthread+0x10/0x10
[  675.676055][ T5965]  ret_from_fork+0x4e/0x80
[  675.676081][ T5965]  ? __pfx_kthread+0x10/0x10
[  675.676111][ T5965]  ret_from_fork_asm+0x1a/0x30
[  675.676155][ T5965]  </TASK>
[  675.676186][ T5965] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  676.054740][ T5965] Bluetooth: hci3: failed to register connection device
[  676.070728][T19146] loop2: detected capacity change from 0 to 256
[  676.260687][T19146] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  676.287608][T19148] 9pnet_fd: Insufficient options for proto=fd
[  676.332374][T19150] loop1: detected capacity change from 0 to 512
[  676.471645][T19150] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  676.500961][T19150] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  676.543734][T19150] System zones: 0-1, 15-15, 18-18, 34-34
[  676.549823][T19150] EXT4-fs (loop1): orphan cleanup on readonly fs
[  676.643617][T19150] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0
[  676.693672][T19150] EXT4-fs warning (device loop1): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  676.702122][T19166] loop2: detected capacity change from 0 to 8
[  676.804757][T19150] EXT4-fs (loop1): Cannot turn on quotas: error -22
[  676.854352][T19166] SQUASHFS error: Failed to read block 0x738: -5
[  676.860698][T19166] SQUASHFS error: Unable to read metadata cache entry [736]
[  676.868728][T19150] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.5891: bad orphan inode 16
[  676.868963][T19150] ext4_test_bit(bit=15, block=18) = 1
[  676.868981][T19150] is_bad_inode(inode)=0
[  676.918604][T19150] NEXT_ORPHAN(inode)=0
[  676.936000][T19150] max_ino=32
[  676.971287][T19150] i_nlink=2
[  676.980323][T19150] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  677.018439][T19169] loop6: detected capacity change from 0 to 4096
[  677.055344][T19169] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  677.100560][T19150] fscrypt (loop1, inode 16): Error -61 getting encryption context
[  677.169702][T19175] netlink: 'syz.5.5902': attribute type 32 has an invalid length.
[  677.190895][T19175] __nla_validate_parse: 1 callbacks suppressed
[  677.190911][T19175] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5902'.
[  677.276012][T19169] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  677.326330][ T5992] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  677.581871][T19189] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5908'.
[  677.807554][T19195] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5912'.
[  677.976184][   T30] audit: type=1326 audit(1748807101.263:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19200 comm="syz.2.5917" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdbe738e969 code=0x0
[  678.020013][T19202] ieee802154 phy0 wpan0: encryption failed: -90
[  678.059594][T19209] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  678.171977][T19211] mac80211_hwsim hwsim5 
: renamed from wlan1
[  678.276456][ T5965] Bluetooth: hci3: command 0x0406 tx timeout
[  678.716779][T19231] loop5: detected capacity change from 0 to 1024
[  678.747194][T19231] EXT4-fs: Ignoring removed nomblk_io_submit option
[  678.816061][T19231] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  678.885212][T19214] bridge0: port 2(bridge_slave_1) entered disabled state
[  678.892593][T19214] bridge0: port 1(bridge_slave_0) entered disabled state
[  679.162043][T19240] xt_CT: No such helper "snmp"
[  679.208177][ T6000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  679.533414][T19254] loop4: detected capacity change from 0 to 64
[  679.999876][T19214] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  680.103003][T19266] RDS: rds_bind could not find a transport for fc00::, load rds_tcp or rds_rdma?
[  680.159489][T19214] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  680.690297][T19214] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  680.712621][T19214] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  680.721624][T19214] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  680.736547][T19214] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  680.758224][T19214] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  680.876192][T19221] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5926'.
[  680.925185][T19268] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  680.932694][T19268] IPv6: NLM_F_CREATE should be set when creating new route
[  680.940016][T19268] IPv6: NLM_F_CREATE should be set when creating new route
[  681.332517][T19285] loop5: detected capacity change from 0 to 64
[  682.264242][T19326] netlink: 'syz.1.5973': attribute type 23 has an invalid length.
[  683.223743][T19355] loop0: detected capacity change from 0 to 4096
[  683.322209][T19366] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  683.361236][T19355] NILFS error (device loop0): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  683.446799][T19355] Remounting filesystem read-only
[  683.829284][T19380] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6001'.
[  683.879663][T19380] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6001'.
[  683.942018][T19380] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6001'.
[  684.234507][T19395] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[  684.567217][T19404] loop0: detected capacity change from 0 to 2048
[  684.634679][T19349] loop6: detected capacity change from 0 to 40427
[  684.657382][T19410] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  684.709531][T19349] F2FS-fs (loop6): heap/no_heap options were deprecated
[  684.789633][T19349] F2FS-fs (loop6): invalid crc value
[  684.794970][T19349] F2FS-fs (loop6): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[  685.266443][T19349] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  685.363297][T19433] xt_hashlimit: max too large, truncated to 1048576
[  685.404271][T19433] Cannot find del_set index 65532 as target
[  685.495402][   T30] audit: type=1326 audit(1748807108.307:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19436 comm="syz.5.6028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  685.651041][   T30] audit: type=1326 audit(1748807108.354:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19436 comm="syz.5.6028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  685.768725][   T30] audit: type=1326 audit(1748807108.354:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19436 comm="syz.5.6028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  685.879652][   T30] audit: type=1326 audit(1748807108.354:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19436 comm="syz.5.6028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  685.894450][T19446] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6033'.
[  686.175862][T19452] xt_NFQUEUE: number of total queues is 0
[  686.266277][T19454] netlink: 'syz.1.6037': attribute type 1 has an invalid length.
[  686.289535][T19419] loop2: detected capacity change from 0 to 32768
[  686.325981][T19454] netlink: 'syz.1.6037': attribute type 1 has an invalid length.
[  686.358697][T19419] btrfs: Deprecated parameter 'usebackuproot'
[  686.364783][T19419] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  686.410841][T19458] loop0: detected capacity change from 0 to 1024
[  686.463388][T19419] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6018 (19419)
[  686.549392][T19419] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  686.583800][T19419] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[  686.618500][T19419] BTRFS info (device loop2): disk space caching is enabled
[  686.627122][T19419] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  687.055007][T19473] loop4: detected capacity change from 0 to 4096
[  687.068033][T19419] btrfs: Deprecated parameter 'usebackuproot'
[  687.094027][T19419] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  687.126739][T19419] BTRFS warning (device loop2 state M): remount supports changing free space tree only from RO to RW
[  687.201489][T19419] BTRFS info (device loop2 state M): enabling free space tree
[  687.208975][T19419] BTRFS info (device loop2 state M): force clearing of disk cache
[  687.298854][T19419] BTRFS info (device loop2 state M): trying to use backup root at mount time
[  687.353867][T19419] BTRFS info (device loop2 state M): disabling disk space caching
[  687.653066][ T6004] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  687.859443][T19514] netlink: 4768 bytes leftover after parsing attributes in process `syz.6.6058'.
[  688.076252][T19518] loop4: detected capacity change from 0 to 1764
[  689.107494][T19556] loop6: detected capacity change from 0 to 256
[  689.119655][T19557] loop0: detected capacity change from 0 to 128
[  689.404216][T19561] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6080'.
[  689.447547][T19561] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6080'.
[  689.478445][T19563] loop4: detected capacity change from 0 to 2048
[  689.532554][T19565] No such timeout policy "syz0"
[  689.627347][T19563] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  689.717805][T19522] loop5: detected capacity change from 0 to 32768
[  689.810664][T19576] loop1: detected capacity change from 0 to 8
[  689.821036][T19576] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  689.858192][ T6005] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  689.861376][T19522] ERROR: (device loop5): dbAlloc: the hint is outside the map
[  689.861376][T19522] 
[  689.906812][T19576] cramfs: Error -5 while decompressing!
[  689.912681][T19576] cramfs: ffffffff99943448(26)->ffff888047f06000(4096)
[  689.938565][T19576] cramfs: Error -3 while decompressing!
[  689.944147][T19576] cramfs: ffffffff99943462(26)->ffff88806c2dd000(4096)
[  689.990977][T19576] cramfs: Error -3 while decompressing!
[  690.004673][ T5985] udevd[5985]: incorrect cramfs checksum on /dev/loop1
[  690.015521][T19576] cramfs: ffffffff9994347c(16)->ffff88806deba000(4096)
[  690.054507][T19576] cramfs: Error -5 while decompressing!
[  690.097717][T19576] cramfs: ffffffff99943448(26)->ffff888047f06000(4096)
[  690.106477][ T5985] udevd[5985]: incorrect cramfs checksum on /dev/loop1
[  690.199104][T19578] loop0: detected capacity change from 0 to 4096
[  690.223905][ T5985] udevd[5985]: incorrect cramfs checksum on /dev/loop1
[  690.260286][ T1026] read_mapping_page failed!
[  690.275515][ T1026] ERROR: (device loop5): txCommit: 
[  690.275515][ T1026] 
[  690.316865][T19586] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6091'.
[  690.326056][ T1026] jfs_write_inode: jfs_commit_inode failed!
[  690.860775][T19602] xt_TCPMSS: Only works on TCP SYN packets
[  691.145409][T19611] netlink: 'syz.5.6104': attribute type 1 has an invalid length.
[  691.274052][T19616] netlink: 'syz.4.6105': attribute type 1 has an invalid length.
[  691.311222][T19615] netlink: 'syz.6.6106': attribute type 21 has an invalid length.
[  691.331621][T19615] IPv6: NLM_F_CREATE should be specified when creating new route
[  691.745461][T19631] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6113'.
[  691.781143][T19632] loop0: detected capacity change from 0 to 1024
[  692.079158][   T36] hfsplus: b-tree write err: -5, ino 4
[  692.120593][T19589] loop2: detected capacity change from 0 to 32768
[  692.209547][T19589] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  692.449818][T19589] XFS (loop2): Starting recovery (logdev: internal)
[  692.592173][T19589] XFS (loop2): Ending recovery (logdev: internal)
[  692.743845][T19668] ufs: You didn't specify the type of your ufs filesystem
[  692.743845][T19668] 
[  692.743845][T19668] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  692.743845][T19668] 
[  692.743845][T19668] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  692.780135][T19638] loop1: detected capacity change from 0 to 32768
[  692.839984][T19638] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6117 (19638)
[  692.891833][T19668] ufs: ufstype=old is supported read-only
[  692.903753][T19638] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  692.914520][ T6004] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  692.941172][T19668] syz.4.6128: attempt to access beyond end of device
[  692.941172][T19668] nbd4: rw=0, sector=16, nr_sectors = 2 limit=0
[  692.987078][T19638] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  693.026499][T19638] BTRFS info (device loop1): using free-space-tree
[  693.078305][T19673] loop0: detected capacity change from 0 to 16
[  693.124839][T19673] erofs (device loop0): mounted with root inode @ nid 36.
[  693.652263][ T5992] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  694.037024][T19666] loop5: detected capacity change from 0 to 40427
[  694.115799][T19711] loop6: detected capacity change from 0 to 16
[  694.125263][T19666] F2FS-fs (loop5): invalid crc value
[  694.138278][    T9] usb 5-1: new high-speed USB device number 99 using dummy_hcd
[  694.175758][T19711] erofs (device loop6): mounted with root inode @ nid 36.
[  694.237590][T19711] erofs (device loop6): readahead error at folio 2 @ nid 89
[  694.270278][ T5965] erofs (device loop6): failed to decompress -5 in[4096, 0] out[8192]
[  694.282386][T19711] erofs (device loop6): failed to decompress -5 in[4096, 0] out[8192]
[  694.338749][T19711] erofs (device loop6): read error -117 @ 0 of nid 89
[  694.352564][    T9] usb 5-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e
[  694.397696][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  694.427152][   T30] audit: type=1800 audit(1748807116.652:79): pid=19711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.6141" name="file2" dev="loop6" ino=89 res=0 errno=0
[  694.477901][    T9] pwc: Logitech/Cisco VT Camera webcam detected.
[  694.657343][T19725] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  694.715076][T19666] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  694.769421][T19729] x_tables: ip_tables: tcp match: only valid for protocol 6
[  694.859245][T19666] syz.5.6126: attempt to access beyond end of device
[  694.859245][T19666] loop5: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  694.916105][    T9] pwc: send_video_command error -71
[  694.927981][    T9] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  694.959400][    T9] Philips webcam 5-1:127.0: probe with driver Philips webcam failed with error -71
[  694.997589][    T9] usb 5-1: USB disconnect, device number 99
[  695.317607][T19742] delete_channel: no stack
[  695.965202][T19772] loop2: detected capacity change from 0 to 512
[  696.070476][T19772] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[  696.162032][T19778] loop4: detected capacity change from 0 to 164
[  696.404498][T18666] usb 3-1: new high-speed USB device number 103 using dummy_hcd
[  696.586667][T18666] usb 3-1: Using ep0 maxpacket: 32
[  696.589229][T18666] usb 3-1: config 0 has an invalid descriptor of length 118, skipping remainder of the config
[  696.591811][T18666] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  696.591843][T18666] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  696.591874][T18666] usb 3-1: Product: syz
[  696.591894][T18666] usb 3-1: Manufacturer: syz
[  696.591912][T18666] usb 3-1: SerialNumber: syz
[  696.595014][T18666] usb 3-1: config 0 descriptor??
[  696.597464][T18666] usb 3-1: bad CDC descriptors
[  696.598150][T18666] usb 3-1: unsupported MDLM descriptors
[  696.688782][T19796] netlink: 'syz.5.6179': attribute type 32 has an invalid length.
[  696.688808][T19796] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6179'.
[  696.858069][    T9] usb 3-1: USB disconnect, device number 103
[  696.970565][T19806] SET target dimension over the limit!
[  697.939253][T19839] loop2: detected capacity change from 0 to 1024
[  698.059425][T19839] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  698.132770][T19802] loop4: detected capacity change from 0 to 32768
[  698.244394][T19855] loop6: detected capacity change from 0 to 256
[  698.283378][T19802] 
[  698.283378][T19802]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  698.283378][T19802] 
[  698.468061][ T6004] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  698.600606][ T3114] 
[  698.600606][ T3114]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  698.600606][ T3114] 
[  698.640288][ T3114] 
[  698.640288][ T3114]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  698.640288][ T3114] 
[  698.702975][ T6005] 
[  698.702975][ T6005]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  698.702975][ T6005] 
[  698.756887][  T113] 
[  698.756887][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  698.756887][  T113] 
[  698.812348][ T6005] 
[  698.812348][ T6005]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  698.812348][ T6005] 
[  699.259153][T19883] geneve2: entered allmulticast mode
[  699.690704][T19893] bridge1: entered promiscuous mode
[  699.728826][T19893] bridge1: entered allmulticast mode
[  699.772886][   T30] audit: type=1326 audit(1748807121.666:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19897 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  699.846094][   T30] audit: type=1326 audit(1748807121.666:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19897 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  699.954730][   T30] audit: type=1326 audit(1748807121.666:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19897 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  700.071104][   T30] audit: type=1326 audit(1748807121.666:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19897 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  700.095274][T19861] loop5: detected capacity change from 0 to 32768
[  700.132907][T19861] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.6211 (19861)
[  700.170771][   T30] audit: type=1326 audit(1748807121.666:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19897 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  700.231953][T19861] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  700.284584][T19861] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  700.333177][T19861] BTRFS info (device loop5): using free-space-tree
[  700.340621][T19911] overlayfs: cannot append lower layer
[  700.529470][T19885] loop4: detected capacity change from 0 to 32768
[  700.561960][T19885] (syz.4.6223,19885,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  700.641880][T19885] (syz.4.6223,19885,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  700.821578][T19885] JBD2: Ignoring recovery information on journal
[  700.865042][ T6000] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  701.087076][T19885] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  701.320474][T19955] libceph: resolve '0.' (ret=-3): failed
[  701.664593][ T6005] ocfs2: Unmounting device (7,4) on (node local)
[  701.856776][T19965] loop6: detected capacity change from 0 to 4096
[  702.094310][T19979] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  702.841372][T20001] loop0: detected capacity change from 0 to 64
[  703.234548][T19973] loop2: detected capacity change from 0 to 32768
[  703.288269][T20013] usb usb8: usbfs: process 20013 (syz.0.6277) did not claim interface 0 before use
[  703.314411][T19973] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6259 (19973)
[  703.400946][T19973] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  703.482615][T19973] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  703.491087][T19973] BTRFS info (device loop2): using free-space-tree
[  703.667567][T19987] loop4: detected capacity change from 0 to 32768
[  703.931365][ T6004] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  704.085913][T19987] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  704.217110][T19987] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,str_hash=crc64,norecovery,nojournal_transaction_names,reconstruct_alloc
[  704.217110][T19987]   allowing incompatible features above 0.0: (unknown version)
[  704.349748][T19987] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  704.398047][T19987] bcachefs (loop4): Version upgrade required:
[  704.398047][T19987] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  704.398047][T19987] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  704.398047][T19987]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  704.664839][T20071] netlink: 292 bytes leftover after parsing attributes in process `syz.6.6295'.
[  704.675257][T20075] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6297'.
[  704.701559][T19987] bcachefs (loop4): dropping and reconstructing all alloc info
[  704.710346][T20075] openvswitch: netlink: Unknown VXLAN extension attribute 0
[  704.761815][T19987] bcachefs (loop4): accounting_read... done
[  704.827713][T19987] bcachefs (loop4): alloc_read... done
[  704.841491][T19987] bcachefs (loop4): snapshots_read... done
[  704.862105][T19987] bcachefs (loop4): done starting filesystem
[  705.219394][ T6005] bcachefs (loop4): shutting down
[  705.461153][ T6005] bcachefs (loop4): shutdown complete
[  705.467084][T20097] sctp: [Deprecated]: syz.5.6309 (pid 20097) Use of int in maxseg socket option.
[  705.467084][T20097] Use struct sctp_assoc_value instead
[  705.624738][T20095] loop1: detected capacity change from 0 to 4096
[  705.742243][T20102] loop0: detected capacity change from 0 to 2048
[  705.808610][T20102] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  705.829946][T20109] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  705.979877][T20095] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  706.009665][T20095] Remounting filesystem read-only
[  706.229584][ T5992] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  706.356233][T19269] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  706.537843][T19269] usb 7-1: Using ep0 maxpacket: 32
[  706.545873][T19269] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  706.548527][T20127] netlink: 'syz.0.6323': attribute type 21 has an invalid length.
[  706.579439][T19269] usb 7-1: New USB device found, idVendor=0525, idProduct=2888, bcdDevice=d0.43
[  706.624939][T19269] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  706.637239][T20131] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6326'.
[  706.671611][T19269] usb 7-1: config 0 descriptor??
[  706.957985][T19269] cdc_subset 7-1:0.0: probe with driver cdc_subset failed with error -22
[  707.233473][    T9] usb 7-1: USB disconnect, device number 3
[  707.379024][T20152] mmap: syz.0.6335 (20152): VmData 121331712 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  707.582773][T20160] loop2: detected capacity change from 0 to 512
[  707.629054][T20160] EXT4-fs: inline encryption not supported
[  707.882913][T20160] EXT4-fs (loop2): 1 orphan inode deleted
[  707.908296][ T3547] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  707.951023][T20160] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  707.961074][ T3547] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  708.039060][T20160] ext4 filesystem being mounted at /1043/file6 supports timestamps until 2038-01-19 (0x7fffffff)
[  708.070978][T20181] loop5: detected capacity change from 0 to 256
[  708.266202][T20181] FAT-fs (loop5): Directory bread(block 64) failed
[  708.308693][ T6004] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  708.324741][T20181] FAT-fs (loop5): Directory bread(block 65) failed
[  708.331359][T20181] FAT-fs (loop5): Directory bread(block 66) failed
[  708.390509][T20181] FAT-fs (loop5): Directory bread(block 67) failed
[  708.445544][T20181] FAT-fs (loop5): Directory bread(block 68) failed
[  708.505385][T20181] FAT-fs (loop5): Directory bread(block 69) failed
[  708.538820][T20181] FAT-fs (loop5): Directory bread(block 70) failed
[  708.545355][T20181] FAT-fs (loop5): Directory bread(block 71) failed
[  708.598202][T20181] FAT-fs (loop5): Directory bread(block 72) failed
[  708.610383][T20194] loop2: detected capacity change from 0 to 128
[  708.619692][T20193] 8021q: VLANs not supported on lo
[  708.681157][T20181] FAT-fs (loop5): Directory bread(block 73) failed
[  708.700819][T20194] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  708.738198][T20198] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6356'.
[  708.789241][T20198] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6356'.
[  708.806394][T20198] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  708.816974][T20198] ip6gretap1: entered allmulticast mode
[  708.860054][T20194] ext4 filesystem being mounted at /1044/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  709.075609][T20207] ÿÿÿÿÿÿ: renamed from vlan1
[  709.103770][ T6004] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  709.345122][T20215] netlink: 'syz.4.6364': attribute type 12 has an invalid length.
[  709.784447][T20234] usb usb8: usbfs: process 20234 (syz.1.6374) did not claim interface 2 before use
[  710.227063][T19269] usb 1-1: new full-speed USB device number 99 using dummy_hcd
[  710.455548][T19269] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  710.485983][T19269] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  710.506423][T20253] loop2: detected capacity change from 0 to 4096
[  710.531642][T19269] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[  710.564368][T19269] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  710.603577][T19269] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  710.643376][T19269] usb 1-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  710.660257][T19269] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  710.695831][T19269] usb 1-1: Product: syz
[  710.709677][T20253] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  710.728268][T19269] usb 1-1: Manufacturer: syz
[  710.746170][T19269] usb 1-1: SerialNumber: syz
[  710.771748][T19269] usb 1-1: config 0 descriptor??
[  711.005386][T20253] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  711.055211][T19269] radio-si470x 1-1:0.0: DeviceID=0x0000 ChipID=0x0000
[  711.099263][T19269] radio-si470x 1-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[  711.257524][T19269] radio-si470x 1-1:0.0: si470x_get_report: usb_control_msg returned -71
[  711.278352][T19269] radio-si470x 1-1:0.0: si470x_get_scratch: si470x_get_report returned -71
[  711.295720][T20266] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6387'.
[  711.323964][T19269] radio-si470x 1-1:0.0: probe with driver radio-si470x failed with error -5
[  711.411464][T19269] usb 1-1: USB disconnect, device number 99
[  711.605025][T20276] openvswitch: netlink: IP tunnel dst address not specified
[  711.808426][T20281] loop5: detected capacity change from 0 to 4096
[  711.839659][T20281] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[  711.967893][T20281] ntfs3(loop5): ino=19, mi_enum_attr
[  711.984680][T20281] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  712.403642][T20304] loop0: detected capacity change from 0 to 64
[  712.521956][T20311] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6410'.
[  712.621053][T20313] netlink: 'syz.4.6412': attribute type 24 has an invalid length.
[  712.670137][T19269] usb 6-1: new high-speed USB device number 105 using dummy_hcd
[  712.749370][   T30] audit: type=1326 audit(1748807133.809:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20318 comm="syz.1.6414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  712.850737][   T30] audit: type=1326 audit(1748807133.828:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20318 comm="syz.1.6414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  712.877931][T19269] usb 6-1: Using ep0 maxpacket: 32
[  712.944574][T19269] usb 6-1: config 0 has an invalid interface number: 239 but max is 0
[  712.962252][   T30] audit: type=1326 audit(1748807133.847:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20318 comm="syz.1.6414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  712.965140][T19269] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  713.014015][   T30] audit: type=1326 audit(1748807133.847:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20318 comm="syz.1.6414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  713.064327][T20329] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6418'.
[  713.159513][T19269] usb 6-1: config 0 has no interface number 0
[  713.205480][T19269] usb 6-1: config 0 interface 239 altsetting 4 bulk endpoint 0x2 has invalid maxpacket 8
[  713.252983][T19269] usb 6-1: config 0 interface 239 altsetting 4 has an endpoint descriptor with address 0xF1, changing to 0x81
[  713.304049][T19269] usb 6-1: config 0 interface 239 altsetting 4 has an endpoint descriptor with address 0xA9, changing to 0x89
[  713.350114][T19269] usb 6-1: config 0 interface 239 altsetting 4 endpoint 0x89 has invalid wMaxPacketSize 0
[  713.403967][T19269] usb 6-1: config 0 interface 239 altsetting 4 bulk endpoint 0x89 has invalid maxpacket 0
[  713.451156][T19269] usb 6-1: config 0 interface 239 altsetting 4 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[  713.522532][T19269] usb 6-1: config 0 interface 239 has no altsetting 0
[  713.553022][T19269] usb 6-1: New USB device found, idVendor=105b, idProduct=1799, bcdDevice=36.e9
[  713.561941][T20345] tmpfs: Bad value for 'mpol'
[  713.562525][T19269] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  713.609516][T19269] usb 6-1: Product: syz
[  713.616896][T20348] netlink: 68 bytes leftover after parsing attributes in process `syz.4.6428'.
[  713.635415][T19269] usb 6-1: Manufacturer: syz
[  713.670445][T19269] usb 6-1: SerialNumber: syz
[  713.678889][T19269] usb 6-1: config 0 descriptor??
[  713.711153][T20306] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  713.740847][ T5965] Bluetooth: hci7: urb ffff888027743700 submission failed (90)
[  714.185631][T18666] usb 6-1: USB disconnect, device number 105
[  714.238138][T20369] loop4: detected capacity change from 0 to 256
[  714.306518][T20369] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 196)
[  714.326067][T20369] FAT-fs (loop4): Filesystem has been set read-only
[  714.441695][ T6005] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 196)
[  714.512102][    T9] usb 3-1: new high-speed USB device number 104 using dummy_hcd
[  714.656033][T20386] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  714.694830][T20386] overlayfs: overlapping lowerdir path
[  714.720750][    T9] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  714.747683][    T9] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  714.789526][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  714.881388][T20391] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6450'.
[  714.923196][T20391] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6450'.
[  714.953306][    T9] gspca_main: stv0680-2.14.0 probing 041e:4007
[  715.025729][T20399] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6454'.
[  715.034839][T20399] netlink: 'syz.5.6454': attribute type 1 has an invalid length.
[  715.928975][T20434] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  715.953760][T20434] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  716.063340][    T9] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32
[  716.093134][    T9] stv0680 3-1:4.0: STV(e): camera ping failed!!
[  716.107299][    T9] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  716.130596][    T9] stv0680 3-1:4.0: last error: 0,  command = 0x0
[  716.178470][    T9] usb 3-1: USB disconnect, device number 104
[  717.383767][T20480] loop5: detected capacity change from 0 to 4096
[  717.434452][T20480] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  717.457614][T20489] loop0: detected capacity change from 0 to 512
[  717.510009][T20489] EXT4-fs: Ignoring removed nobh option
[  717.637190][T20496] loop4: detected capacity change from 0 to 16
[  717.675250][T20496] erofs (device loop4): mounted with root inode @ nid 36.
[  717.683183][T20489] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.6498: corrupted inode contents
[  717.693525][T20496] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36
[  717.725081][T20496] erofs (device loop4): read error -117 @ 43 of nid 36
[  717.784312][T20489] EXT4-fs (loop0): Remounting filesystem read-only
[  717.844081][T20489] EXT4-fs (loop0): 1 truncate cleaned up
[  717.893366][ T3547] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  717.905923][T20489] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  717.965289][ T3547] Quota error (device loop0): write_blk: dquota write failed
[  717.972691][ T3547] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries
[  717.996784][T20489] ext4 filesystem being mounted at /1070/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  718.029135][ T3547] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  718.047489][ T3547] Quota error (device loop0): write_blk: dquota write failed
[  718.092141][ T3547] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list
[  718.164019][ T3547] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  718.211479][ T3547] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  718.221855][T20450] loop1: detected capacity change from 0 to 40427
[  718.257690][T20450] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x3fffff
[  718.268094][ T3547] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  718.318585][T20450] F2FS-fs (loop1): Image doesn't support compression
[  718.371382][T20450] F2FS-fs (loop1): heap/no_heap options were deprecated
[  718.388817][   T30] audit: type=1800 audit(1748807139.067:89): pid=20489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.6498" name="file1" dev="loop0" ino=15 res=0 errno=0
[  718.455382][T20450] F2FS-fs (loop1): invalid crc value
[  718.578843][   T30] audit: type=1326 audit(1748807139.254:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20514 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b0d8e969 code=0x7ffc0000
[  718.664438][   T30] audit: type=1326 audit(1748807139.254:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20514 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b0d8e969 code=0x7ffc0000
[  718.725670][ T5998] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  718.763528][   T30] audit: type=1326 audit(1748807139.291:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20514 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7f86b0d8e969 code=0x7ffc0000
[  718.769563][T20519] netlink: 'syz.2.6511': attribute type 1 has an invalid length.
[  718.785762][    C0] vkms_vblank_simulate: vblank timer overrun
[  718.787911][T18658] usb 6-1: new high-speed USB device number 106 using dummy_hcd
[  718.887141][T20519] netlink: 224 bytes leftover after parsing attributes in process `syz.2.6511'.
[  718.910473][T20450] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  719.001778][T18658] usb 6-1: Using ep0 maxpacket: 32
[  719.033994][T18658] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  719.042087][T18658] usb 6-1: config 0 has no interface number 0
[  719.084186][T18658] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  719.104639][T18658] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  719.140257][T18658] usb 6-1: Product: syz
[  719.159371][T20529] netlink: 'syz.0.6514': attribute type 10 has an invalid length.
[  719.168630][T18658] usb 6-1: Manufacturer: syz
[  719.183628][T18658] usb 6-1: SerialNumber: syz
[  719.188366][T20529] macvlan1: entered allmulticast mode
[  719.194584][T20529] veth1_vlan: entered allmulticast mode
[  719.219872][T20529] team0: Port device macvlan1 added
[  719.231067][ T5992] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x521/0x1ed0
[  719.247611][T18658] usb 6-1: config 0 descriptor??
[  719.258226][T20530] loop6: detected capacity change from 0 to 2048
[  719.258513][T18658] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  719.298050][ T5992] F2FS-fs (loop1): invalid blkaddr: 1027, type: 10, run fsck to fix.
[  719.298522][T20530] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024)
[  719.435934][T20530] syz.6.6515: attempt to access beyond end of device
[  719.435934][T20530] loop6: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  719.452960][T20535] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  719.490140][T18658] usb 6-1: qt2_setup_urbs - submit read urb failed -8
[  719.531554][T18658] quatech2 6-1:0.51: probe with driver quatech2 failed with error -8
[  719.656011][T20530] NILFS error (device loop6): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  719.717830][T20530] Remounting filesystem read-only
[  719.728806][T20530] NILFS error (device loop6): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  719.754669][T20530] NILFS error (device loop6): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  719.767736][T18658] usb 6-1: USB disconnect, device number 106
[  720.293267][T20560] netlink: 'syz.2.6529': attribute type 1 has an invalid length.
[  720.398305][T18658] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  720.504545][T20565] netlink: 'syz.1.6531': attribute type 12 has an invalid length.
[  720.542398][T20565] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6531'.
[  720.612329][T18658] usb 7-1: Using ep0 maxpacket: 16
[  720.643319][T18658] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  720.693113][T18658] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  720.756384][T18658] usb 7-1: config 0 interface 0 has no altsetting 0
[  720.763714][T20574] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6536'.
[  720.782380][T18658] usb 7-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  720.814075][T18658] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  720.851511][T18658] usb 7-1: Product: syz
[  720.855683][T18658] usb 7-1: Manufacturer: syz
[  720.893436][T18658] usb 7-1: SerialNumber: syz
[  720.949265][T18658] usb 7-1: config 0 descriptor??
[  721.129675][T20588] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6543'.
[  721.181708][T20588] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6543'.
[  721.407065][T18658] usb 7-1: USB disconnect, device number 4
[  721.515842][T20596] wireguard0: entered allmulticast mode
[  721.802344][T20611] kAFS: unparsable volume name
[  722.552810][T20643] loop1: detected capacity change from 0 to 256
[  722.759859][T20649] xt_l2tp: v2 sid > 0xffff: 117440512
[  722.814892][T20643] FAT-fs (loop1): Directory bread(block 64) failed
[  722.840004][T20643] FAT-fs (loop1): Directory bread(block 65) failed
[  722.846729][T20653] loop0: detected capacity change from 0 to 1024
[  722.895104][T20653] EXT4-fs: Ignoring removed orlov option
[  722.900961][T20643] FAT-fs (loop1): Directory bread(block 66) failed
[  722.925361][T20653] EXT4-fs: Ignoring removed nomblk_io_submit option
[  722.943594][T20643] FAT-fs (loop1): Directory bread(block 67) failed
[  722.970457][T20643] FAT-fs (loop1): Directory bread(block 68) failed
[  722.978627][T20643] FAT-fs (loop1): Directory bread(block 69) failed
[  722.999397][T20643] FAT-fs (loop1): Directory bread(block 70) failed
[  723.006124][T20643] FAT-fs (loop1): Directory bread(block 71) failed
[  723.052123][T20643] FAT-fs (loop1): Directory bread(block 72) failed
[  723.055512][T20653] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  723.061005][T20643] FAT-fs (loop1): Directory bread(block 73) failed
[  723.264432][ T5998] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  723.493786][T20677] loop2: detected capacity change from 0 to 24
[  723.555650][T19269] usb 6-1: new high-speed USB device number 107 using dummy_hcd
[  723.768886][T19269] usb 6-1: Using ep0 maxpacket: 16
[  723.816665][T19269] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  723.843866][T19269] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  723.881742][T19269] usb 6-1: Product: syz
[  723.897117][T19269] usb 6-1: Manufacturer: syz
[  723.911567][T19269] usb 6-1: SerialNumber: syz
[  723.932935][T19269] r8152-cfgselector 6-1: Unknown version 0x0000
[  723.965109][T19269] r8152-cfgselector 6-1: config 0 descriptor??
[  723.982775][T18658] usb 1-1: new low-speed USB device number 100 using dummy_hcd
[  724.203387][T18658] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 64, setting to 8
[  724.219791][T18658] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 is Bulk; changing to Interrupt
[  724.255373][T18658] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 is Bulk; changing to Interrupt
[  724.303223][T18658] usb 1-1: string descriptor 0 read error: -22
[  724.310386][T18658] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  724.366245][T18658] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  724.377178][T20703] Unsupported ieee802154 address type: 0
[  724.406429][T20683] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  724.452687][T19269] r8152-cfgselector 6-1: USB disconnect, device number 107
[  724.567048][T20705] loop1: detected capacity change from 0 to 2048
[  724.619109][T20705] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  724.620910][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  724.668192][T18658] cdc_ncm 1-1:1.0: bind() failure
[  724.726591][T18658] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  724.758611][T18658] cdc_ncm 1-1:1.1: bind() failure
[  724.828208][T18658] usb 1-1: USB disconnect, device number 100
[  724.935454][T20714] loop2: detected capacity change from 0 to 256
[  724.971308][T20690] loop4: detected capacity change from 0 to 32768
[  725.019167][T20690] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  725.022039][T20714] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  725.080549][T20718] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6604'.
[  725.115581][T20690] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  725.127014][T20718] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6604'.
[  725.317371][T20725] loop2: detected capacity change from 0 to 256
[  725.379226][ T6005] ocfs2: Unmounting device (7,4) on (node local)
[  725.404773][T19269] usb 6-1: new full-speed USB device number 108 using dummy_hcd
[  725.607792][T19269] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  725.630596][T19269] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  725.699798][T20731] kAFS: unable to lookup cell '
[  725.699798][T20731] $)-.ÌײfÍY¹Ç�²a×ïÅ2sˆ
[  725.699798][T20731] '
[  725.700776][T19269] usb 6-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice= 1.00
[  725.790472][T19269] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  725.828359][T19269] usb 6-1: config 0 descriptor??
[  725.867657][T19269] xbox_remote_probe: endpoint_in message size==0?
[  725.996143][T20740] binder: 20739:20740 ioctl c0046209 100000000000000 returned -22
[  726.133525][T19269] usbhid 6-1:0.0: can't add hid device: -71
[  726.139659][T20746] netlink: 'syz.6.6616': attribute type 8 has an invalid length.
[  726.165233][T19269] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  726.235202][T19269] usb 6-1: USB disconnect, device number 108
[  726.401156][T20752] vim2m vim2m.0: Fourcc format (0x47524247) invalid.
[  726.568902][T20760] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  726.680297][ T6047] usb 3-1: new full-speed USB device number 105 using dummy_hcd
[  726.849585][ T6047] usb 3-1: config 0 has an invalid interface number: 52 but max is 0
[  726.868635][ T6047] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  726.896265][ T6047] usb 3-1: config 0 has no interface number 0
[  726.933589][ T6047] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  726.960345][ T6047] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  726.985376][ T6047] usb 3-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  727.022608][ T6047] usb 3-1: config 0 interface 52 has no altsetting 0
[  727.039954][T18658] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[  727.074131][ T6047] usb 3-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  727.094513][ T6047] usb 3-1: New USB device strings: Mfr=22, Product=149, SerialNumber=35
[  727.117186][ T6047] usb 3-1: Product: syz
[  727.121381][ T6047] usb 3-1: Manufacturer: syz
[  727.126272][ T6047] usb 3-1: SerialNumber: syz
[  727.139521][ T6047] usb 3-1: config 0 descriptor??
[  727.169143][T19269] usb 1-1: new high-speed USB device number 101 using dummy_hcd
[  727.191322][T20778] xt_TCPMSS: Only works on TCP SYN packets
[  727.224457][T18658] usb 7-1: unable to get BOS descriptor or descriptor too short
[  727.235035][T18658] usb 7-1: not running at top speed; connect to a high speed hub
[  727.257626][T18658] usb 7-1: config 8 has an invalid interface number: 96 but max is 0
[  727.288741][T18658] usb 7-1: config 8 has no interface number 0
[  727.295318][T18658] usb 7-1: config 8 interface 96 altsetting 6 endpoint 0x5 has invalid wMaxPacketSize 0
[  727.316021][T18658] usb 7-1: config 8 interface 96 has no altsetting 0
[  727.326677][T18658] usb 7-1: New USB device found, idVendor=04e8, idProduct=6889, bcdDevice=e2.e7
[  727.339376][T19269] usb 1-1: Using ep0 maxpacket: 8
[  727.345709][T18658] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  727.348562][T19269] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  727.384271][T18658] usb 7-1: Product: syz
[  727.388480][T18658] usb 7-1: Manufacturer: syz
[  727.390362][T19269] usb 1-1: config 179 has no interface number 0
[  727.408245][ T6047] synaptics_usb 3-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  727.421116][T19269] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  727.425460][T18658] usb 7-1: SerialNumber: syz
[  727.449039][ T6047] synaptics_usb 3-1:0.52: probe with driver synaptics_usb failed with error -5
[  727.464017][T19269] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  727.510112][T19269] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[  727.548500][T19269] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[  727.573204][T19269] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  727.595995][T19269] usb 1-1: config 179 interface 65 has no altsetting 0
[  727.613844][T19269] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  727.644097][T19269] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  727.649931][ T6047] usb 3-1: USB disconnect, device number 105
[  727.696761][T18658] kalmia 7-1:8.96: probe with driver kalmia failed with error -22
[  727.725162][T18658] option 7-1:8.96: GSM modem (1-port) converter detected
[  727.739115][T19269] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input63
[  727.790266][T18658] usb 7-1: USB disconnect, device number 5
[  727.822466][T18658] option 7-1:8.96: device disconnected
[  727.876476][ T5178] input input63: unable to receive magic message: -110
[  727.982068][ T5178] input input63: unable to receive magic message: -32
[  728.035868][ T6168] input input63: unable to receive magic message: -32
[  728.080443][ T5178] input input63: unable to receive magic message: -32
[  728.143705][T18658] usb 1-1: USB disconnect, device number 101
[  728.143700][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  728.158061][T18658] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  728.668449][T20812] xt_hashlimit: size too large, truncated to 1048576
[  728.696719][T20812] xt_hashlimit: overflow, try lower: 0/0
[  728.792305][T20815] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6651'.
[  728.867732][T20815] netlink: 40 bytes leftover after parsing attributes in process `syz.5.6651'.
[  728.928940][T20821] netlink: 196 bytes leftover after parsing attributes in process `syz.4.6654'.
[  729.048768][T20821] netlink: 196 bytes leftover after parsing attributes in process `syz.4.6654'.
[  729.080429][T20820] loop0: detected capacity change from 0 to 4096
[  729.095719][T20821] netlink: 19 bytes leftover after parsing attributes in process `syz.4.6654'.
[  729.128833][T20820] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  729.157631][T20825] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6656'.
[  729.214248][T20820] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[  729.486879][T20837] delete_channel: no stack
[  729.633272][T20839] netlink: 'syz.5.6663': attribute type 3 has an invalid length.
[  729.728189][T20839] netlink: 'syz.5.6663': attribute type 3 has an invalid length.
[  729.841642][T20839] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6663'.
[  730.232289][T20864] loop1: detected capacity change from 0 to 256
[  730.332759][T20864] exfat: Deprecated parameter 'namecase'
[  730.369988][T20864] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xd503957f, utbl_chksum : 0xe619d30d)
[  730.371050][T20869] ieee802154 phy0 wpan0: encryption failed: -22
[  730.521801][T18666] IPVS: starting estimator thread 0...
[  730.652856][T20876] IPVS: using max 27 ests per chain, 64800 per kthread
[  731.089694][T20898] QAT: failed to copy from user cfg_data.
[  731.310634][T20893] loop4: detected capacity change from 0 to 4096
[  731.544956][T20893] ntfs3(loop4): ino=1e, "file1" attr_set_size
[  731.589745][T20893] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  731.627063][T20917] futex_wake_op: syz.0.6701 tries to shift op by -1; fix this program
[  732.227179][T20935] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6709'.
[  732.532615][T20944] netlink: 164 bytes leftover after parsing attributes in process `syz.4.6714'.
[  732.574916][T20944] netlink: 164 bytes leftover after parsing attributes in process `syz.4.6714'.
[  732.684540][T20944] netlink: 60 bytes leftover after parsing attributes in process `syz.4.6714'.
[  732.711214][T20948] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  732.980099][T20954] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ûÌÌULÙvy¸ÚØR3âëp(@Ož>ÆÀ
[  733.547394][T20969] netlink: 'syz.2.6725': attribute type 4 has an invalid length.
[  733.603290][T20969] netlink: 'syz.2.6725': attribute type 3 has an invalid length.
[  733.614144][T20969] netlink: 132 bytes leftover after parsing attributes in process `syz.2.6725'.
[  733.993459][T20983] loop2: detected capacity change from 0 to 1024
[  734.049003][T20983] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[  734.130188][T20983] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  734.196118][T20983] EXT4-fs (loop2): invalid journal inode
[  734.238271][T20983] EXT4-fs (loop2): can't get journal size
[  734.300468][T20983] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  734.431372][T20983] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #12: comm syz.2.6731: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  734.639529][T21005] loop0: detected capacity change from 0 to 1024
[  734.711495][T21008] loop6: detected capacity change from 0 to 256
[  734.766464][ T6004] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  734.787422][T21005] hfsplus: trying to free free bnode 0(1)
[  734.856775][T21008] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  735.000010][ T3547] hfsplus: b-tree write err: -5, ino 4
[  735.224443][T21019] netlink: 'syz.1.6744': attribute type 21 has an invalid length.
[  735.732389][T21029] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6749'.
[  736.172394][T21051] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6756'.
[  736.334462][T21056] loop2: detected capacity change from 0 to 1764
[  736.356325][T21060] loop4: detected capacity change from 0 to 2048
[  736.370017][T21063] netlink: 'syz.6.6763': attribute type 21 has an invalid length.
[  736.403910][T21063] netlink: 'syz.6.6763': attribute type 1 has an invalid length.
[  736.439834][T21056] iso9660: Corrupted directory entry in block 2 of inode 1920
[  736.461669][T21063] netlink: 100 bytes leftover after parsing attributes in process `syz.6.6763'.
[  736.487965][T21066] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  736.553396][T18666] usb 1-1: new high-speed USB device number 102 using dummy_hcd
[  736.599404][T21068] gre1: entered allmulticast mode
[  736.661919][T21070] ./file0: Can't lookup blockdev
[  736.759329][T18666] usb 1-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c
[  736.791025][T18666] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  736.834700][T18666] usb 1-1: Product: syz
[  736.842188][T18666] usb 1-1: Manufacturer: syz
[  736.851549][T18666] usb 1-1: SerialNumber: syz
[  736.904159][T18666] usb 1-1: config 0 descriptor??
[  737.384078][T18666] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  737.442265][T18666] asix 1-1:0.0: probe with driver asix failed with error -71
[  737.486188][T18666] usb 1-1: USB disconnect, device number 102
[  738.236494][T21122] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6786'.
[  738.245918][T21120] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6785'.
[  738.461024][T21127] loop4: detected capacity change from 0 to 256
[  738.565482][T21127] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x19066d23, utbl_chksum : 0xe619d30d)
[  738.634199][T21133] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6792'.
[  738.691678][T21133] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6792'.
[  740.255990][T21192] loop4: detected capacity change from 0 to 1024
[  740.386368][T21192] EXT4-fs (loop4): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  740.521436][T21207] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  740.568065][T21197] loop1: detected capacity change from 0 to 4096
[  740.582551][ T6005] EXT4-fs (loop4): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  740.626152][T21207] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  740.650385][T21209] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  741.041543][T21221] netlink: 'syz.1.6829': attribute type 10 has an invalid length.
[  741.059696][T21223] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  741.368005][T21232] loop2: detected capacity change from 0 to 256
[  741.409458][T21235] syz.1.6837 uses obsolete (PF_INET,SOCK_PACKET)
[  741.421930][T21232] exfat: Deprecated parameter 'namecase'
[  741.486098][T21232] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  741.978609][T21252] syz.5.6842 uses old SIOCAX25GETINFO
[  742.383411][T21271] loop6: detected capacity change from 0 to 256
[  742.444065][T21271] exfat: Deprecated parameter 'utf8'
[  742.458344][T21271] exfat: Deprecated parameter 'utf8'
[  742.537030][T21271] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001047b, chksum : 0x3ced02ab, utbl_chksum : 0xe619d30d)
[  742.938472][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  742.938493][   T30] audit: type=1326 audit(1748807162.043:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21286 comm="syz.1.6862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  743.030554][   T30] audit: type=1326 audit(1748807162.043:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21286 comm="syz.1.6862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  743.054235][   T30] audit: type=1326 audit(1748807162.043:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21286 comm="syz.1.6862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  743.084230][   T30] audit: type=1326 audit(1748807162.043:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21286 comm="syz.1.6862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  743.114337][   T30] audit: type=1326 audit(1748807162.043:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21286 comm="syz.1.6862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  743.240543][T21299] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6868'.
[  743.327391][T21301] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  743.371960][T21304] vxcan1 speed is unknown, defaulting to 1000
[  743.414897][T21304] vxcan1 speed is unknown, defaulting to 1000
[  743.461244][T21304] vxcan1 speed is unknown, defaulting to 1000
[  743.566940][   T30] audit: type=1400 audit(1748807162.623:101): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=21309 comm="syz.1.6873"
[  743.958437][T21328] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6882'.
[  744.002650][T21328] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6882'.
[  744.062690][T21328] geneve2: entered promiscuous mode
[  744.086088][T21328] geneve2: entered allmulticast mode
[  744.155804][T21332] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  744.553337][T21304] infiniband syz1: set down
[  744.560682][T18658] vxcan1 speed is unknown, defaulting to 1000
[  744.566435][T21344] loop2: detected capacity change from 0 to 764
[  744.575950][T21304] infiniband syz1: added vxcan1
[  744.593208][T21304] syz1: rxe_create_cq: returned err = -12
[  744.599228][T21304] infiniband syz1: Couldn't create ib_mad CQ
[  744.610476][T21344] rock: directory entry would overflow storage
[  744.624678][T21344] rock: sig=0x4654, size=5, remaining=4
[  744.634996][T19269] usb 5-1: new high-speed USB device number 100 using dummy_hcd
[  744.635890][T21304] infiniband syz1: Couldn't open port 1
[  744.791106][T21304] RDS/IB: syz1: added
[  744.807484][T19269] usb 5-1: too many configurations: 38, using maximum allowed: 8
[  744.811231][T21304] smc: adding ib device syz1 with port count 1
[  744.843439][T21304] smc:    ib device syz1 port 1 has pnetid 
[  744.863062][T18658] vxcan1 speed is unknown, defaulting to 1000
[  744.870504][T19269] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  744.873083][T21304] vxcan1 speed is unknown, defaulting to 1000
[  744.901233][T19269] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  744.942624][T19269] usb 5-1: Product: syz
[  744.955177][T19269] usb 5-1: Manufacturer: syz
[  744.970692][T19269] usb 5-1: SerialNumber: syz
[  745.018022][T19269] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  745.041588][T18666] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  745.443505][T21336] loop6: detected capacity change from 0 to 40427
[  745.523857][T18663] usb 5-1: USB disconnect, device number 100
[  745.543647][T21336] F2FS-fs (loop6): invalid crc value
[  745.730963][T21304] vxcan1 speed is unknown, defaulting to 1000
[  745.743645][T21336] F2FS-fs (loop6): Start checkpoint disabled!
[  745.765277][T21336] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  745.978477][T21352] loop5: detected capacity change from 0 to 32768
[  746.020931][T21355] loop2: detected capacity change from 0 to 32768
[  746.044117][T21352] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  746.080070][T21355] (syz.2.6895,21355,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  746.163987][T18666] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  746.211700][T18666] ath9k_htc: Failed to initialize the device
[  746.233127][T21355] (syz.2.6895,21355,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  746.238322][T21304] vxcan1 speed is unknown, defaulting to 1000
[  746.288474][T18663] usb 5-1: ath9k_htc: USB layer deinitialized
[  746.333183][T21355] JBD2: Ignoring recovery information on journal
[  746.442973][T21368] IPVS: set_ctl: invalid protocol: 16608 0.0.0.0:20000
[  746.458068][T21355] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  746.625926][T21352] XFS (loop5): Ending clean mount
[  746.776821][ T6000] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  746.797599][ T6004] ocfs2: Unmounting device (7,2) on (node local)
[  747.111115][T21375] loop4: detected capacity change from 0 to 16
[  747.188753][T21375] erofs (device loop4): mounted with root inode @ nid 36.
[  747.317890][T21379] MPI: mpi too large (107144 bits)
[  747.391497][T21304] vxcan1 speed is unknown, defaulting to 1000
[  747.528494][T21383] loop4: detected capacity change from 0 to 2048
[  747.734771][T21392] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  747.771272][T21383] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #12: rec_len is smaller than minimal - offset=1024, inode=0, rec_len=0, name_len=0
[  747.821229][T21383] Remounting filesystem read-only
[  747.969534][T18666] usb 6-1: new high-speed USB device number 109 using dummy_hcd
[  748.151976][T18666] usb 6-1: Using ep0 maxpacket: 32
[  748.189872][T18666] usb 6-1: config 0 has an invalid interface number: 68 but max is 0
[  748.225991][T18666] usb 6-1: config 0 has no interface number 0
[  748.232105][T18666] usb 6-1: config 0 interface 68 altsetting 7 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  748.285444][T18666] usb 6-1: config 0 interface 68 has no altsetting 0
[  748.310368][T18666] usb 6-1: New USB device found, idVendor=0c72, idProduct=000c, bcdDevice=58.31
[  748.344585][T18666] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  748.374074][T18666] usb 6-1: Product: syz
[  748.386534][T18666] usb 6-1: Manufacturer: syz
[  748.391144][T18666] usb 6-1: SerialNumber: syz
[  748.450128][T18666] usb 6-1: config 0 descriptor??
[  748.638740][T21422] loop1: detected capacity change from 0 to 512
[  748.678519][T21422] EXT4-fs: Ignoring removed oldalloc option
[  748.694991][T21304] vxcan1 speed is unknown, defaulting to 1000
[  748.720922][T21422] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  748.843084][T21422] EXT4-fs (loop1): 1 orphan inode deleted
[  748.888834][T21422] EXT4-fs (loop1): 1 truncate cleaned up
[  748.942298][T21422] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  748.998148][T21422] EXT4-fs error (device loop1): ext4_search_dir:1476: inode #12: block 7: comm syz.1.6922: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[  749.073606][T21438] C: renamed from team_slave_0 (while UP)
[  749.074218][T21436] loop2: detected capacity change from 0 to 2048
[  749.104804][T21438] netlink: 'syz.6.6928': attribute type 3 has an invalid length.
[  749.130256][T21438] netlink: 152 bytes leftover after parsing attributes in process `syz.6.6928'.
[  749.163855][T21438] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  749.168399][T21436] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  749.205543][ T5992] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  749.223484][T21440] loop4: detected capacity change from 0 to 256
[  749.319612][T21441] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  749.386711][T21440] FAT-fs (loop4): Directory bread(block 64) failed
[  749.406313][T21440] FAT-fs (loop4): Directory bread(block 65) failed
[  749.422666][T21440] FAT-fs (loop4): Directory bread(block 66) failed
[  749.431377][T21440] FAT-fs (loop4): Directory bread(block 67) failed
[  749.477131][T21440] FAT-fs (loop4): Directory bread(block 68) failed
[  749.483665][T21440] FAT-fs (loop4): Directory bread(block 69) failed
[  749.535366][T21440] FAT-fs (loop4): Directory bread(block 70) failed
[  749.564436][T21440] FAT-fs (loop4): Directory bread(block 71) failed
[  749.599770][T21440] FAT-fs (loop4): Directory bread(block 72) failed
[  749.626565][T21440] FAT-fs (loop4): Directory bread(block 73) failed
[  749.816296][T21304] vxcan1 speed is unknown, defaulting to 1000
[  749.820580][T21451] loop1: detected capacity change from 0 to 1024
[  749.997590][ T3114] hfsplus: b-tree write err: -5, ino 4
[  750.176102][T21459] netlink: 'syz.1.6939': attribute type 4 has an invalid length.
[  750.236650][T21459] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.6939'.
[  750.248783][T21461] loop6: detected capacity change from 0 to 64
[  750.850721][T21473] loop1: detected capacity change from 0 to 4096
[  750.893071][ T6047] usb 6-1: USB disconnect, device number 109
[  750.954993][T21482] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  751.058727][T21476] loop4: detected capacity change from 0 to 4096
[  751.129921][T21476] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[  751.203105][T21490] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6952'.
[  751.247625][T21304] vxcan1 speed is unknown, defaulting to 1000
[  752.091289][T21518] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6962'.
[  752.144767][T21518] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6962'.
[  752.794402][T21539] loop4: detected capacity change from 0 to 2048
[  752.901055][T21549] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  752.930063][T21539] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0
[  753.057529][T21539] Remounting filesystem read-only
[  753.513765][T21573] loop4: detected capacity change from 0 to 2048
[  753.550386][T21573] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  753.581328][ T6047] usb 1-1: new full-speed USB device number 103 using dummy_hcd
[  753.659953][T21573] syz.4.6982: attempt to access beyond end of device
[  753.659953][T21573] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  753.664551][T21582] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  753.785430][ T6047] usb 1-1: config 0 has an invalid interface number: 41 but max is 0
[  753.815195][ T6047] usb 1-1: config 0 has no interface number 0
[  753.822060][T21573] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: disallowed inode number - offset=0, inode=1, rec_len=16, name_len=1
[  753.849223][ T6047] usb 1-1: config 0 interface 41 has no altsetting 0
[  753.908318][T21573] Remounting filesystem read-only
[  753.911427][ T6047] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  753.987497][ T6047] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  754.006493][ T6047] usb 1-1: Product: syz
[  754.030444][ T6047] usb 1-1: Manufacturer: syz
[  754.035380][ T6047] usb 1-1: SerialNumber: syz
[  754.097792][ T6047] usb 1-1: config 0 descriptor??
[  754.297768][T21598] netlink: 168 bytes leftover after parsing attributes in process `syz.4.6998'.
[  754.344918][T21598] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6998'.
[  754.545852][ T6047] CoreChips 1-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71
[  754.565026][ T6047] CoreChips 1-1:0.41: probe with driver CoreChips failed with error -71
[  754.578929][T21608] loop6: detected capacity change from 0 to 2048
[  754.600220][ T6047] usb 1-1: USB disconnect, device number 103
[  754.615413][T21608] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  755.337275][T21626] netlink: 'syz.6.7013': attribute type 1 has an invalid length.
[  755.368470][T21626] netlink: 224 bytes leftover after parsing attributes in process `syz.6.7013'.
[  755.384973][T21629] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[  755.932664][T21611] loop5: detected capacity change from 0 to 32768
[  756.201147][T18670] usb 1-1: new high-speed USB device number 104 using dummy_hcd
[  756.381968][T18670] usb 1-1: Using ep0 maxpacket: 16
[  756.408690][T21664] netlink: 'syz.4.7031': attribute type 13 has an invalid length.
[  756.417031][T18670] usb 1-1: config 0 has an invalid interface number: 8 but max is 0
[  756.441999][T21664] netlink: 'syz.4.7031': attribute type 27 has an invalid length.
[  756.442396][T18670] usb 1-1: config 0 has no interface number 0
[  756.485015][T18670] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 208, changing to 11
[  756.510109][T18670] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 25296, setting to 1024
[  756.562380][T18670] usb 1-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  756.593454][T18670] usb 1-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  756.634362][T18670] usb 1-1: Product: syz
[  756.646972][T18670] usb 1-1: SerialNumber: syz
[  756.675371][T18670] usb 1-1: config 0 descriptor??
[  756.709377][T18670] cm109 1-1:0.8: invalid payload size 1024, expected 4
[  756.734851][T19269] usb 6-1: new high-speed USB device number 110 using dummy_hcd
[  756.755484][T18670] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.8/input/input64
[  756.905868][T19269] usb 6-1: Using ep0 maxpacket: 16
[  756.928207][T19269] usb 6-1: config 4 has an invalid interface number: 9 but max is 0
[  756.936528][T19269] usb 6-1: config 4 has no interface number 0
[  756.952493][T19269] usb 6-1: config 4 interface 9 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  757.001403][T19269] usb 6-1: config 4 interface 9 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  757.034159][T19269] usb 6-1: config 4 interface 9 has no altsetting 0
[  757.067542][T19269] usb 6-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=76.fe
[  757.098201][T19269] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  757.140635][T19269] usb 6-1: Product: syz
[  757.150777][T19269] usb 6-1: Manufacturer: syz
[  757.163309][T19269] usb 6-1: SerialNumber: syz
[  757.179422][    C1] cm109 1-1:0.8: cm109_urb_irq_callback: urb status -71
[  757.186592][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.193742][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.201009][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.210747][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.217916][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.225089][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.232234][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.239412][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.246707][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.253897][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  757.262205][T18670] usb 1-1: USB disconnect, device number 104
[  757.268221][    C1] cm109 1-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  757.281333][T21669] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  757.289506][T21669] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  757.297833][T21681] loop4: detected capacity change from 0 to 4096
[  757.308284][T21681] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  757.322232][T18670] cm109 1-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  757.354175][T19269] usb 6-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  757.549394][T18658] usb 6-1: USB disconnect, device number 110
[  757.549864][ T3114] usb 6-1: Failed to submit usb control message: -71
[  757.577895][ T3114] usb 6-1: unable to send the bmi data to the device: -71
[  757.588236][ T3114] usb 6-1: unable to get target info from device
[  757.640893][ T3114] usb 6-1: could not get target info (-71)
[  757.655864][ T3114] usb 6-1: could not probe fw (-71)
[  758.509256][T21710] loop0: detected capacity change from 0 to 64
[  758.530625][T21713] netdevsim netdevsim2: Firmware load for './cgroup/../file0' refused, path contains '..' component
[  758.870583][T21723] netlink: 'syz.6.7059': attribute type 1 has an invalid length.
[  758.905590][T21723] netlink: 216 bytes leftover after parsing attributes in process `syz.6.7059'.
[  759.167847][   T30] audit: type=1326 audit(1748807177.227:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21734 comm="syz.6.7064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6a1b8e969 code=0x7ffc0000
[  759.214934][T21737] No such timeout policy "syz1"
[  759.274130][   T30] audit: type=1326 audit(1748807177.227:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21734 comm="syz.6.7064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6a1b8e969 code=0x7ffc0000
[  759.379497][   T30] audit: type=1326 audit(1748807177.264:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21734 comm="syz.6.7064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7fd6a1b8e969 code=0x7ffc0000
[  759.477962][   T30] audit: type=1326 audit(1748807177.264:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21734 comm="syz.6.7064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6a1b8e969 code=0x7ffc0000
[  759.792949][T18670] usb 6-1: new full-speed USB device number 111 using dummy_hcd
[  760.062419][T18670] usb 6-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  760.096390][T18670] usb 6-1: New USB device found, idVendor=3344, idProduct=22f0, bcdDevice=ef.4d
[  760.148680][T18670] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  760.175189][T18670] usb 6-1: Product: syz
[  760.219372][T18658] usb 5-1: new high-speed USB device number 101 using dummy_hcd
[  760.237643][T18670] usb 6-1: Manufacturer: syz
[  760.254151][T18670] usb 6-1: SerialNumber: syz
[  760.426418][T18658] usb 5-1: config 0 interface 0 altsetting 3 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  760.481317][T18658] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  760.505042][T18658] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x8F has invalid wMaxPacketSize 0
[  760.542880][T18658] usb 5-1: config 0 interface 0 has no altsetting 0
[  760.563599][T18670] usb 6-1: selecting invalid altsetting 1
[  760.585514][T18658] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice=1c.08
[  760.591841][T18670] LME2510(C): Firmware Status: 00 00 00 00 00 00
[  760.604127][T18658] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  760.604261][T18670] dvb_usb_lmedm04 6-1:2.0: probe with driver dvb_usb_lmedm04 failed with error -22
[  760.629267][T18658] usb 5-1: Product: syz
[  760.655509][T18658] usb 5-1: Manufacturer: syz
[  760.671305][T18658] usb 5-1: SerialNumber: syz
[  760.678313][T21787] loop6: detected capacity change from 0 to 128
[  760.697088][T18670] usb 6-1: USB disconnect, device number 111
[  760.725825][T18658] usb 5-1: config 0 descriptor??
[  760.951715][T18658] usbtest 5-1:0.0: Linux user mode ISO test driver
[  760.978628][T18658] usbtest 5-1:0.0: high-speed {control iso-in} tests (+alt)
[  761.168196][T18670] usb 5-1: USB disconnect, device number 101
[  761.598013][T21818] loop6: detected capacity change from 0 to 512
[  761.647759][T21818] EXT4-fs error (device loop6): ext4_orphan_get:1391: comm syz.6.7101: inode #15: comm syz.6.7101: iget: illegal inode #
[  761.708931][T21812] loop5: detected capacity change from 0 to 8192
[  761.748611][T21818] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.7101: couldn't read orphan inode 15 (err -117)
[  761.828470][T21818] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  761.922324][T21818] EXT4-fs error (device loop6): ext4_lookup:1789: comm syz.6.7101: inode #15: comm syz.6.7101: iget: illegal inode #
[  761.944527][T21826] loop1: detected capacity change from 0 to 256
[  762.178606][T21835] dummy0: entered promiscuous mode
[  762.184155][T21835] dummy0: entered allmulticast mode
[  762.243866][T18572] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  762.325733][ T5965] Bluetooth: hci6: command 0x0405 tx timeout
[  762.742848][T18663] usb 1-1: new high-speed USB device number 105 using dummy_hcd
[  762.929330][T21861] loop6: detected capacity change from 0 to 256
[  762.959557][T18663] usb 1-1: config index 0 descriptor too short (expected 103, got 72)
[  762.982273][T18663] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  762.998954][T18663] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  763.047115][T18663] usb 1-1: Product: syz
[  763.051382][T18663] usb 1-1: Manufacturer: syz
[  763.065061][T18663] usb 1-1: SerialNumber: syz
[  763.083641][T18663] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  763.127999][T21861] FAT-fs (loop6): Directory bread(block 64) failed
[  763.134279][T18658] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  763.143575][T21861] FAT-fs (loop6): Directory bread(block 65) failed
[  763.143835][T21861] FAT-fs (loop6): Directory bread(block 66) failed
[  763.212888][T21861] FAT-fs (loop6): Directory bread(block 67) failed
[  763.219507][T21861] FAT-fs (loop6): Directory bread(block 68) failed
[  763.234014][T21861] FAT-fs (loop6): Directory bread(block 69) failed
[  763.255567][T21861] FAT-fs (loop6): Directory bread(block 70) failed
[  763.262189][T21861] FAT-fs (loop6): Directory bread(block 71) failed
[  763.351953][T21872] veth1_virt_wifi: entered promiscuous mode
[  763.367834][T21861] FAT-fs (loop6): Directory bread(block 72) failed
[  763.375847][T21861] FAT-fs (loop6): Directory bread(block 73) failed
[  763.404956][T21872] netlink: 48 bytes leftover after parsing attributes in process `syz.2.7126'.
[  763.417980][T21875] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7128'.
[  763.697773][T21880] loop5: detected capacity change from 0 to 256
[  763.910731][T18663] usb 1-1: USB disconnect, device number 105
[  764.377550][T18658] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  764.414119][T18658] ath9k_htc: Failed to initialize the device
[  764.450000][T18663] usb 1-1: ath9k_htc: USB layer deinitialized
[  764.552008][T21910] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  765.649952][T21942] loop0: detected capacity change from 0 to 4096
[  765.681101][T21942] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  765.763515][T21942] ntfs3(loop0): ino=19, mi_enum_attr
[  765.797453][T21942] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  767.116379][   T30] audit: type=1326 audit(1748807184.664:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22002 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  767.275251][   T30] audit: type=1326 audit(1748807184.720:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22002 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  767.299860][   T30] audit: type=1326 audit(1748807184.720:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22002 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  767.325200][   T30] audit: type=1326 audit(1748807184.720:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22002 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  767.347511][    C1] vkms_vblank_simulate: vblank timer overrun
[  767.468462][T22015] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7193'.
[  768.046821][T22053] xt_TCPMSS: Only works on TCP SYN packets
[  768.152021][T22041] loop1: detected capacity change from 0 to 8192
[  768.243177][T22041] syz.1.7200: attempt to access beyond end of device
[  768.243177][T22041] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  768.265168][T22061] netlink: 'syz.2.7208': attribute type 21 has an invalid length.
[  768.282322][T22067] IPVS: set_ctl: invalid protocol: 5 0.0.0.0:20002
[  768.318642][T22061] netlink: 128 bytes leftover after parsing attributes in process `syz.2.7208'.
[  768.337423][T22041] Buffer I/O error on dev loop1, logical block 57847, async page read
[  768.372253][T22061] netlink: 'syz.2.7208': attribute type 5 has an invalid length.
[  768.386420][T22061] netlink: 'syz.2.7208': attribute type 6 has an invalid length.
[  768.396017][T22041] syz.1.7200: attempt to access beyond end of device
[  768.396017][T22041] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  768.453808][T22061] netlink: 3 bytes leftover after parsing attributes in process `syz.2.7208'.
[  768.501893][T22041] Buffer I/O error on dev loop1, logical block 57847, async page read
[  768.557805][   T30] audit: type=1800 audit(1748807186.011:110): pid=22041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7200" name="file2" dev="loop1" ino=1048670 res=0 errno=0
[  768.632836][T22079] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7214'.
[  768.694977][T22079] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7214'.
[  768.770764][T22079] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7214'.
[  769.058178][T22099] loop1: detected capacity change from 0 to 2048
[  769.096129][T22103] overlayfs: conflicting options: nfs_export=on,index=off
[  769.128891][T22099] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  769.392551][T18663] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  769.459803][T22122] loop2: detected capacity change from 0 to 1764
[  769.559668][T22122] iso9660: Corrupted directory entry in block 2 of inode 1920
[  769.562048][T18663] usb 7-1: Using ep0 maxpacket: 8
[  769.594880][T18663] usb 7-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  769.606617][T18663] usb 7-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  769.622924][T18663] usb 7-1: Product: syz
[  769.645852][T18663] usb 7-1: Manufacturer: syz
[  769.668901][T18663] usb 7-1: SerialNumber: syz
[  769.720456][T18663] usb 7-1: config 0 descriptor??
[  769.815231][T18663] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  770.195196][T22167] loop1: detected capacity change from 0 to 2048
[  770.234113][T18663] gspca_zc3xx: reg_r err -71
[  770.246197][T18663] gspca_zc3xx 7-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  770.305787][T22167] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  770.330718][T18663] usb 7-1: USB disconnect, device number 6
[  770.596886][   T30] audit: type=1800 audit(1748807187.920:111): pid=22175 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.0.7242" name="/newroot/1169/file0" dev="tmpfs" ino=6039 res=0 errno=0
[  770.687814][T22197] netlink: 'syz.1.7245': attribute type 1 has an invalid length.
[  771.368774][T18670] usb 1-1: new high-speed USB device number 106 using dummy_hcd
[  771.389933][ T5961] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  771.411401][T22239] 
@ÿ: renamed from bond_slave_0
[  771.467743][T22161] loop5: detected capacity change from 0 to 32768
[  771.488049][T22161] XFS: ikeep mount option is deprecated.
[  771.547567][T22161] XFS (loop5): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  771.579805][T18670] usb 1-1: Using ep0 maxpacket: 8
[  771.590653][ T5961] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  771.605489][T18670] usb 1-1: config 6 has an invalid interface number: 64 but max is 0
[  771.629046][ T5961] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  771.637393][T18670] usb 1-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  771.656650][ T5961] usb 7-1: Product: syz
[  771.662919][T18670] usb 1-1: config 6 has no interface number 0
[  771.672245][ T5961] usb 7-1: Manufacturer: syz
[  771.677525][T18670] usb 1-1: too many endpoints for config 6 interface 64 altsetting 21: 207, using maximum allowed: 30
[  771.688648][ T5961] usb 7-1: SerialNumber: syz
[  771.695697][T18670] usb 1-1: config 6 interface 64 altsetting 21 has 0 endpoint descriptors, different from the interface descriptor's value: 207
[  771.710981][T18670] usb 1-1: config 6 interface 64 has no altsetting 0
[  771.727007][T18670] usb 1-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  771.737083][T18670] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  771.746315][ T5961] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  771.768083][T22161] XFS (loop5): Ending clean mount
[  771.774929][T18670] usb 1-1: Product: syz
[  771.789327][T19269] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  771.798503][T18670] usb 1-1: Manufacturer: syz
[  771.803167][T18670] usb 1-1: SerialNumber: syz
[  771.805462][T22161] XFS (loop5): Quotacheck needed: Please wait.
[  772.036807][T22161] XFS (loop5): Quotacheck: Done.
[  772.149990][ T6047] usb 1-1: USB disconnect, device number 106
[  772.264043][T18663] usb 7-1: USB disconnect, device number 7
[  772.355044][ T6000] XFS (loop5): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  772.509817][T22303] loop4: detected capacity change from 0 to 8
[  772.579752][T22307] netlink: 6032 bytes leftover after parsing attributes in process `syz.1.7271'.
[  772.805748][T22312] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7272'.
[  772.936419][T19269] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  772.963779][T19269] ath9k_htc: Failed to initialize the device
[  773.026209][T18663] usb 7-1: ath9k_htc: USB layer deinitialized
[  773.563650][T22354] netlink: 'syz.6.7284': attribute type 5 has an invalid length.
[  773.576067][T22299] loop2: detected capacity change from 0 to 32768
[  773.619577][T22299] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7269 (22299)
[  773.739264][T22299] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  773.789990][T22299] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  773.837566][T22299] BTRFS info (device loop2): using free-space-tree
[  773.880783][T22374] IPv6: Can't replace route, no match found
[  774.351535][ T6004] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  774.537751][T22405] 8021q: adding VLAN 0 to HW filter on device bond1
[  775.322857][T22488] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7311'.
[  775.387479][T22488] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7311'.
[  775.395749][T22494] netlink: 'syz.1.7312': attribute type 1 has an invalid length.
[  775.606720][T22503] netlink: 108 bytes leftover after parsing attributes in process `syz.6.7316'.
[  775.691509][T22503] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7316'.
[  775.994835][T22529] netlink: 'syz.2.7323': attribute type 16 has an invalid length.
[  776.039710][T22529] netlink: 64138 bytes leftover after parsing attributes in process `syz.2.7323'.
[  776.135058][T22539] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7326'.
[  776.146812][T22539] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode broadcast(3)
[  776.193707][T22533] loop4: detected capacity change from 0 to 1024
[  776.285498][T22533] hfsplus: keylen 65060 too large
[  776.444600][T22553] loop0: detected capacity change from 0 to 1024
[  776.675690][T22566] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7333'.
[  776.977929][T22586] openvswitch: netlink: Flow actions attr not present in new flow.
[  777.167856][T22596] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  777.198377][T22596] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  777.256135][T22596] netdevsim netdevsim5: Falling back to sysfs fallback for: .
[  777.445657][T22615] SET target dimension over the limit!
[  778.154043][T22656] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7362'.
[  778.185400][T22656] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7362'.
[  778.231040][T22661] loop5: detected capacity change from 0 to 64
[  778.585868][T22681] tmpfs: Bad value for 'mpol'
[  778.772145][T22693] loop6: detected capacity change from 0 to 64
[  778.799658][T22694] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7374'.
[  779.192558][T22726] Cannot find del_set index 4 as target
[  779.235789][T22729] netlink: 'syz.1.7383': attribute type 9 has an invalid length.
[  779.658595][T22748] kernel profiling enabled (shift: 63)
[  779.694797][T22748] profiling shift: 63 too large
[  779.800643][T22758] netlink: 'syz.1.7393': attribute type 13 has an invalid length.
[  779.862711][T22758] macvtap0: entered promiscuous mode
[  779.926047][T22758] macvtap0: refused to change device tx_queue_len
[  780.014215][T22769] tmpfs: Bad value for 'mpol'
[  780.166212][T22776] loop6: detected capacity change from 0 to 1024
[  780.465352][T22795] sctp: [Deprecated]: syz.2.7405 (pid 22795) Use of int in maxseg socket option.
[  780.465352][T22795] Use struct sctp_assoc_value instead
[  780.540261][T22797] loop6: detected capacity change from 0 to 256
[  780.616440][T22797] FAT-fs (loop6): Directory bread(block 64) failed
[  780.643714][T22797] FAT-fs (loop6): Directory bread(block 65) failed
[  780.682531][T22797] FAT-fs (loop6): Directory bread(block 66) failed
[  780.723469][T22797] FAT-fs (loop6): Directory bread(block 67) failed
[  780.730074][T22797] FAT-fs (loop6): Directory bread(block 68) failed
[  780.785951][T22797] FAT-fs (loop6): Directory bread(block 69) failed
[  780.796823][T22805] loop5: detected capacity change from 0 to 4096
[  780.818243][T22797] FAT-fs (loop6): Directory bread(block 70) failed
[  780.835658][T22813] netlink: 'syz.1.7411': attribute type 8 has an invalid length.
[  780.840441][T22797] FAT-fs (loop6): Directory bread(block 71) failed
[  780.896811][T22797] FAT-fs (loop6): Directory bread(block 72) failed
[  780.918374][T22797] FAT-fs (loop6): Directory bread(block 73) failed
[  780.950232][T22821] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  780.992102][T22813] bridge1: entered allmulticast mode
[  780.998786][T22805] NILFS error (device loop5): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1
[  781.060732][T22815] loop0: detected capacity change from 0 to 4096
[  781.098768][T22815] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  781.107899][T22805] Remounting filesystem read-only
[  781.207795][T22773] loop4: detected capacity change from 0 to 32768
[  781.331450][T22815] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[  781.373529][T22773] JBD2: Ignoring recovery information on journal
[  781.513270][T22843] netlink: 'syz.5.7416': attribute type 10 has an invalid length.
[  781.518333][T22773] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  781.531950][T22843] netlink: 40 bytes leftover after parsing attributes in process `syz.5.7416'.
[  781.578882][T22843] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  781.641040][T22843] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  781.693732][T22843] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  781.694996][   T30] audit: type=1800 audit(1748807198.304:112): pid=22773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.7398" name="file1" dev="loop4" ino=17058 res=0 errno=0
[  781.733411][T22843] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  781.797966][T22843] geneve0: entered promiscuous mode
[  781.823057][T22843] geneve0: entered allmulticast mode
[  781.873996][T22843] team0: Port device geneve0 added
[  781.902632][ T6005] ocfs2: Unmounting device (7,4) on (node local)
[  782.058475][T22859] overlayfs: missing 'lowerdir'
[  782.104670][T22867] netlink: 64 bytes leftover after parsing attributes in process `syz.2.7423'.
[  782.242733][T22874] QAT: Device 7 not found
[  782.251549][T22875] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7426'.
[  782.521872][T22887] loop6: detected capacity change from 0 to 256
[  782.587073][T22887] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  782.748242][T22899] Timeout policy `syz1' can only be used by L3 protocol number 25944
[  782.774887][T22903] syz.5.7434(22903): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  782.882568][T22906] netlink: 40 bytes leftover after parsing attributes in process `syz.0.7435'.
[  783.168566][T22923] loop0: detected capacity change from 0 to 64
[  783.243497][T22923] syz.0.7440: attempt to access beyond end of device
[  783.243497][T22923] loop0: rw=2049, sector=268435468, nr_sectors = 2 limit=64
[  783.280762][T22933] loop5: detected capacity change from 0 to 64
[  783.731377][T22957] netlink: 'syz.5.7449': attribute type 3 has an invalid length.
[  783.838814][T22957] netlink: 'syz.5.7449': attribute type 1 has an invalid length.
[  783.871188][T22960] loop6: detected capacity change from 0 to 2048
[  783.890420][T22957] netlink: 216 bytes leftover after parsing attributes in process `syz.5.7449'.
[  783.924058][T22964] loop4: detected capacity change from 0 to 2048
[  783.977841][T22957] NCSI netlink: No device for ifindex 33022
[  783.984589][T22964] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=26504, location=26504
[  784.046233][T22964] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  784.219918][T22977] loop0: detected capacity change from 0 to 512
[  784.342272][T22991] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7458'.
[  784.359511][T22977] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  784.440170][T22977] ext4 filesystem being mounted at /1208/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  784.475631][T22981] loop1: detected capacity change from 0 to 4096
[  784.569587][T22981] NILFS (loop1): invalid segment: Checksum error in segment payload
[  784.580118][T22999] loop5: detected capacity change from 0 to 16
[  784.594135][T22981] NILFS (loop1): trying rollback from an earlier position
[  784.599544][T22917] loop2: detected capacity change from 0 to 32768
[  784.608287][T22999] erofs (device loop5): mounted with root inode @ nid 36.
[  784.692444][T22981] NILFS (loop1): recovery complete
[  784.704942][T22917] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  784.722727][ T5998] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  784.747054][T23017] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  784.933278][ T5961] usb 5-1: new full-speed USB device number 102 using dummy_hcd
[  785.030549][T23031] loop5: detected capacity change from 0 to 256
[  785.167449][ T5961] usb 5-1: config 0 has an invalid interface number: 138 but max is 0
[  785.208427][ T5961] usb 5-1: config 0 has no interface number 0
[  785.225173][T23031] FAT-fs (loop5): Directory bread(block 64) failed
[  785.232018][T23031] FAT-fs (loop5): Directory bread(block 65) failed
[  785.247872][ T5961] usb 5-1: config 0 interface 138 altsetting 0 has an endpoint descriptor with address 0x61, changing to 0x1
[  785.288579][T22917] XFS (loop2): Ending clean mount
[  785.307253][T23031] FAT-fs (loop5): Directory bread(block 66) failed
[  785.313786][T23031] FAT-fs (loop5): Directory bread(block 67) failed
[  785.318510][ T5961] usb 5-1: config 0 interface 138 altsetting 0 has an endpoint descriptor with address 0x97, changing to 0x87
[  785.352581][ T5961] usb 5-1: config 0 interface 138 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  785.367095][ T5961] usb 5-1: config 0 interface 138 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0
[  785.378313][ T5961] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice= f.66
[  785.403749][T23031] FAT-fs (loop5): Directory bread(block 68) failed
[  785.410291][T23031] FAT-fs (loop5): Directory bread(block 69) failed
[  785.435083][T23031] FAT-fs (loop5): Directory bread(block 70) failed
[  785.447371][ T5961] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  785.473555][T23031] FAT-fs (loop5): Directory bread(block 71) failed
[  785.499096][ T5961] usb 5-1: config 0 descriptor??
[  785.527672][T23031] FAT-fs (loop5): Directory bread(block 72) failed
[  785.538192][T23031] FAT-fs (loop5): Directory bread(block 73) failed
[  785.571300][ T6004] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  785.586704][T23051] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7468'.
[  785.765176][ T5961] usb 5-1: string descriptor 0 read error: -71
[  785.814971][ T5961] usbtest 5-1:0.138: Linux gadget zero
[  785.846291][ T5961] usbtest 5-1:0.138: full-speed {control in/out bulk-out int-in} tests (+alt)
[  785.909448][ T5961] usb 5-1: USB disconnect, device number 102
[  785.947878][T23071] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7473'.
[  786.001696][T23071] netlink: 60 bytes leftover after parsing attributes in process `syz.6.7473'.
[  786.400877][T23096] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  786.443216][T23096] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  786.537814][T23101] netlink: 'syz.4.7481': attribute type 1 has an invalid length.
[  786.632705][T23106] netlink: 'syz.6.7482': attribute type 1 has an invalid length.
[  786.640460][T23106] netlink: 224 bytes leftover after parsing attributes in process `syz.6.7482'.
[  787.042530][T23134] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7491'.
[  787.081719][T23134] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7491'.
[  787.168937][T23145] netlink: 766 bytes leftover after parsing attributes in process `syz.1.7494'.
[  787.387618][T23151] loop5: detected capacity change from 0 to 512
[  787.438155][T23151] EXT4-fs: Ignoring removed orlov option
[  787.464917][T23161] netlink: 176 bytes leftover after parsing attributes in process `syz.1.7501'.
[  787.527725][T23151] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  787.596089][T23151] EXT4-fs (loop5): orphan cleanup on readonly fs
[  787.664200][T23151] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.7497: bg 0: block 248: padding at end of block bitmap is not set
[  787.787763][T23151] Quota error (device loop5): write_blk: dquota write failed
[  787.819358][T23151] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  787.854454][T23151] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.7497: Failed to acquire dquot type 1
[  787.896992][T23151] EXT4-fs (loop5): 1 truncate cleaned up
[  787.938656][T23151] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  788.009068][T23151] EXT4-fs: Ignoring removed orlov option
[  788.025493][T23181] loop4: detected capacity change from 0 to 1024
[  788.037138][T23151] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  788.120471][T23151] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  788.126457][   T12] hfsplus: b-tree write err: -5, ino 4
[  788.193411][T23142] loop2: detected capacity change from 0 to 32768
[  788.232300][T23151] EXT4-fs error (device loop5): __ext4_remount:6738: comm syz.5.7497: Abort forced by user
[  788.285864][T23151] EXT4-fs (loop5): Remounting filesystem read-only
[  788.353754][T23151] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  788.362163][T23151] ext4 filesystem being remounted at /1221/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  788.411348][T23210] loop6: detected capacity change from 0 to 256
[  788.512553][T23142] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  788.581539][ T6000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  788.816432][T23142] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,str_hash=crc32c,noacl,usrquota,grpquota,nojournal_transaction_names,allocator_stuck_timeout=256
[  788.816432][T23142]   allowing incompatible features above 0.0: (unknown version)
[  788.909470][T23142] bcachefs (loop2): initializing new filesystem
[  788.931936][T23142] bcachefs (loop2): going read-write
[  789.017826][T23242] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7520'.
[  789.045657][T23242] netlink: 'syz.6.7520': attribute type 2 has an invalid length.
[  789.069602][T23142] bcachefs (loop2): marking superblocks
[  789.070130][T23246] bond0: entered promiscuous mode
[  789.102156][T23246] 
@ÿ: entered promiscuous mode
[  789.134056][T23246] bond_slave_1: entered promiscuous mode
[  789.149238][T23142] bcachefs (loop2): initializing freespace
[  789.185279][T23142] bcachefs (loop2): done initializing freespace
[  789.235373][T23142] bcachefs (loop2): reading snapshots table
[  789.256009][T23142] bcachefs (loop2): reading snapshots done
[  789.361866][T23142] bcachefs (loop2): done starting filesystem
[  789.709291][T23142] syz.2.7496 (23142) used greatest stack depth: 16520 bytes left
[  789.786107][ T6004] bcachefs (loop2): shutting down
[  789.791162][ T6004] bcachefs (loop2): going read-only
[  789.839813][ T6004] bcachefs (loop2): finished waiting for writes to stop
[  789.908410][ T6004] bcachefs (loop2): flushing journal and stopping allocators, journal seq 3
[  790.007916][ T6004] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 3
[  790.085579][ T6004] bcachefs (loop2): clean shutdown complete, journal seq 4
[  790.134178][T23291] loop5: detected capacity change from 0 to 1024
[  790.218008][ T6004] bcachefs (loop2): marking filesystem clean
[  790.225864][T23240] loop0: detected capacity change from 0 to 32768
[  790.294891][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  790.307419][T23240] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  790.338481][T23291] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  790.397849][T23291] EXT4-fs error (device loop5): __ext4_new_inode:1073: comm syz.5.7535: reserved inode found cleared - inode=18
[  790.410321][T23318] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  790.422293][ T6004] bcachefs (loop2): shutdown complete
[  790.435287][T23240] XFS (loop0): Ending clean mount
[  790.458126][ T6000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  790.510859][T23320] netlink: 56 bytes leftover after parsing attributes in process `syz.6.7542'.
[  790.512487][T23240] XFS (loop0): Quotacheck needed: Please wait.
[  790.633339][T23240] XFS (loop0): Quotacheck: Done.
[  790.743869][ T5998] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  790.843698][T23332] loop6: detected capacity change from 0 to 2048
[  790.926640][T23332] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  790.979006][T23332] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  791.008690][T23340] netlink: 'syz.4.7546': attribute type 1 has an invalid length.
[  791.043087][T23340] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7546'.
[  791.508515][ T6047] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  791.721536][ T6047] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  791.743768][ T6047] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  791.772861][ T6047] usb 7-1: config 0 descriptor??
[  792.224801][ T6047] ath6kl: Failed to submit usb control message: -71
[  792.231474][ T6047] ath6kl: unable to send the bmi data to the device: -71
[  792.256293][ T6047] ath6kl: Unable to send get target info: -71
[  792.263413][ T6047] ath6kl: Failed to init ath6kl core: -71
[  792.272653][ T6047] ath6kl_usb 7-1:0.0: probe with driver ath6kl_usb failed with error -71
[  792.302389][ T6047] usb 7-1: USB disconnect, device number 8
[  792.531108][ T5965] Bluetooth: hci6: command 0x0405 tx timeout
[  792.758219][   T30] audit: type=1326 audit(748.808:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23443 comm="syz.5.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  792.823010][   T30] audit: type=1326 audit(748.808:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23443 comm="syz.5.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  792.854137][ T6047] usb 1-1: new full-speed USB device number 107 using dummy_hcd
[  792.871242][   T30] audit: type=1326 audit(748.827:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23443 comm="syz.5.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=143 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  792.930703][   T30] audit: type=1326 audit(748.827:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23443 comm="syz.5.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  793.020897][   T30] audit: type=1326 audit(748.827:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23443 comm="syz.5.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce158e969 code=0x7ffc0000
[  793.066698][ T6047] usb 1-1: config 0 has an invalid interface number: 132 but max is 0
[  793.075130][ T6047] usb 1-1: config 0 has no interface number 0
[  793.115587][ T6047] usb 1-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  793.128669][ T6047] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  793.147640][ T6047] usb 1-1: Product: syz
[  793.151813][ T6047] usb 1-1: Manufacturer: syz
[  793.163951][ T6047] usb 1-1: SerialNumber: syz
[  793.172784][ T6047] usb 1-1: config 0 descriptor??
[  793.200424][ T6047] hub 1-1:0.132: bad descriptor, ignoring hub
[  793.201089][T23454] loop6: detected capacity change from 0 to 2048
[  793.218073][T23460] loop5: detected capacity change from 0 to 1024
[  793.226307][ T6047] hub 1-1:0.132: probe with driver hub failed with error -5
[  793.338242][ T6047] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.132/input/input65
[  793.381992][T23454] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  793.461441][T23454] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  793.515567][   T12] hfsplus: b-tree write err: -5, ino 4
[  793.528700][ T6047] usb 1-1: USB disconnect, device number 107
[  793.537248][T23454] EXT4-fs (loop6): Remounting filesystem read-only
[  793.655879][T23489] loop4: detected capacity change from 0 to 16
[  793.696422][T18572] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  793.738427][T23489] erofs (device loop4): mounted with root inode @ nid 36.
[  793.772032][   T30] audit: type=1326 audit(749.762:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23498 comm="syz.1.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  793.786593][T23489] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36
[  793.824617][   T30] audit: type=1326 audit(749.762:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23498 comm="syz.1.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  793.875079][T23489] erofs (device loop4): read error -117 @ 43 of nid 36
[  793.927385][   T30] audit: type=1326 audit(749.809:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23498 comm="syz.1.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  793.983503][T23507] loop2: detected capacity change from 0 to 1024
[  794.027857][   T30] audit: type=1326 audit(749.809:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23498 comm="syz.1.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  794.065610][T23507] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  794.103616][   T30] audit: type=1326 audit(749.809:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23498 comm="syz.1.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64538e969 code=0x7ffc0000
[  794.250200][T23525] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  794.297742][T23507] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  794.566928][ T6004] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  794.749983][T23551] xt_recent: hitcount (33554432) is larger than allowed maximum (65535)
[  795.093583][T23575] dlm: plock device version mismatch: kernel (1.2.0), user (1.16384000.0)
[  795.418601][T23596] loop5: detected capacity change from 0 to 512
[  795.625058][T23596] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  795.689900][T23596] EXT4-fs error (device loop5): ext4_empty_dir:3077: inode #12: comm syz.5.7613: invalid size
[  795.727827][T23610] 9p: Unknown access argument ?: -22
[  795.881351][ T6000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  796.402863][T23645] netlink: 'syz.5.7627': attribute type 11 has an invalid length.
[  796.435052][T23645] netlink: 'syz.5.7627': attribute type 11 has an invalid length.
[  796.467036][T23645] netlink: 224 bytes leftover after parsing attributes in process `syz.5.7627'.
[  796.668264][T23651] netlink: 10 bytes leftover after parsing attributes in process `syz.4.7629'.
[  796.687656][T23585] loop1: detected capacity change from 0 to 32768
[  796.847787][T23664] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7630'.
[  796.917679][T23669] loop6: detected capacity change from 0 to 4096
[  796.931606][T23669] EXT4-fs: Ignoring removed nobh option
[  796.944851][T23669] EXT4-fs: Ignoring removed i_version option
[  797.045483][T23669] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  797.103541][T23669] Quota error (device loop6): find_block_dqentry: Quota for id 0 referenced but not present
[  797.148679][T23669] Quota error (device loop6): qtree_read_dquot: Can't read quota structure for id 0
[  797.158308][T23669] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.7631: Failed to acquire dquot type 1
[  797.268079][T23585] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  797.489494][T23585] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  797.489494][T23585]   allowing incompatible features above 0.0: (unknown version)
[  797.500856][T18572] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  797.579314][T23693] loop0: detected capacity change from 0 to 512
[  797.587190][T23693] EXT4-fs: Ignoring removed nobh option
[  797.611467][T23585] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  797.619721][T23585] bcachefs (loop1): Version upgrade required:
[  797.619721][T23585] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  797.619721][T23585] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  797.619721][T23585]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  797.799822][T23693] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7637: corrupted inode contents
[  797.856264][T23585] bcachefs (loop1): dropping and reconstructing all alloc info
[  797.911661][T23693] EXT4-fs (loop0): Remounting filesystem read-only
[  797.918593][T23693] EXT4-fs (loop0): 1 truncate cleaned up
[  797.933722][T23693] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  797.943468][T18774] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  797.960690][T18774] Quota error (device loop0): write_blk: dquota write failed
[  797.968208][T18774] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries
[  797.978448][T18774] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  797.989658][T18774] Quota error (device loop0): write_blk: dquota write failed
[  797.997426][T18774] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  798.037628][T23693] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  798.112292][T23585] bcachefs (loop1): accounting_read... done
[  798.192929][T23585] bcachefs (loop1): alloc_read... done
[  798.198467][T23585] bcachefs (loop1): snapshots_read... done
[  798.242764][T23585] bcachefs (loop1): done starting filesystem
[  798.474857][T23738] loop2: detected capacity change from 0 to 8
[  798.491817][T23737] loop6: detected capacity change from 0 to 16
[  798.498655][   T31] INFO: task syz-executor:5994 blocked for more than 143 seconds.
[  798.525856][T23738] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  798.528825][   T31]       Not tainted 6.15.0-syzkaller #0
[  798.550364][T23737] erofs (device loop6): mounted with root inode @ nid 36.
[  798.581909][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  798.608888][T23737] erofs (device loop6): unknown HEAD1 format 15 for nid 36, please upgrade kernel
[  798.618434][   T31] task:syz-executor    state:D stack:21528 pid:5994  tgid:5994  ppid:1      task_flags:0x400140 flags:0x00004004
[  798.671201][   T31] Call Trace:
[  798.681016][T23737] erofs (device loop6): unknown HEAD1 format 15 for nid 36, please upgrade kernel
[  798.685268][   T31]  <TASK>
[  798.690220][T23737] erofs (device loop6): read error -95 @ 8200 of nid 36
[  798.720642][   T31]  __schedule+0x16e2/0x4cd0
[  798.730036][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  798.741778][   T31]  ? schedule+0x165/0x360
[  798.753424][   T31]  ? __lock_acquire+0xaac/0xd20
[  798.770333][   T31]  ? __pfx___schedule+0x10/0x10
[  798.781263][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  798.794424][   T31]  ? schedule+0x91/0x360
[  798.803567][   T31]  schedule+0x165/0x360
[  798.812744][   T31]  io_schedule+0x81/0xe0
[  798.821818][   T31]  folio_wait_bit_common+0x6b0/0xb90
[  798.853824][   T31]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  798.876667][ T6009] udevd[6009]: incorrect cramfs checksum on /dev/loop2
[  798.889750][   T31]  ? __pfx_wake_page_function+0x10/0x10
[  798.909946][   T31]  ? folios_put_refs+0x559/0x640
[  798.929836][   T31]  ? __pfx_find_lock_entries+0x10/0x10
[  798.935955][   T31]  __filemap_get_folio+0x139/0xaf0
[  798.948473][   T31]  truncate_inode_pages_range+0x3ed/0xda0
[  798.956704][ T6168] udevd[6168]: incorrect cramfs checksum on /dev/loop2
[  798.970139][   T31]  ? evict+0x847/0x9c0
[  798.991549][   T31]  ? evict_inodes+0x636/0x6c0
[  799.003594][   T31]  ? generic_shutdown_super+0x9a/0x2c0
[  799.015022][   T31]  ? kill_block_super+0x44/0x90
[  799.020005][   T31]  ? deactivate_locked_super+0xbc/0x130
[  799.026361][   T31]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  799.032702][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  799.039413][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.045620][   T31]  ? __lock_acquire+0xaac/0xd20
[  799.050635][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  799.056314][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  799.061627][   T31]  evict+0x517/0x9c0
[  799.066033][   T31]  ? __pfx_evict+0x10/0x10
[  799.070551][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.076690][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.082422][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  799.088037][   T31]  evict_inodes+0x636/0x6c0
[  799.092642][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.098892][   T31]  ? __pfx_evict_inodes+0x10/0x10
[  799.104046][   T31]  generic_shutdown_super+0x9a/0x2c0
[  799.109810][   T31]  kill_block_super+0x44/0x90
[  799.114705][   T31]  deactivate_locked_super+0xbc/0x130
[  799.120721][   T31]  cleanup_mnt+0x425/0x4c0
[  799.125237][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.131277][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  799.137091][   T31]  task_work_run+0x1d4/0x260
[  799.144643][   T31]  ? __pfx_task_work_run+0x10/0x10
[  799.149895][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.157627][   T31]  resume_user_mode_work+0x5e/0x80
[  799.163195][   T31]  syscall_exit_to_user_mode+0x9a/0x120
[  799.168851][   T31]  do_syscall_64+0x103/0x210
[  799.173896][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.179627][   T31]  ? exc_page_fault+0x91/0x110
[  799.185109][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  799.191098][   T31] RIP: 0033:0x7fa4a878fc97
[  799.196007][   T31] RSP: 002b:00007fffa1b30748 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  799.204728][   T31] RAX: 0000000000000000 RBX: 00007fa4a881089d RCX: 00007fa4a878fc97
[  799.212804][   T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffa1b30800
[  799.221247][   T31] RBP: 00007fffa1b30800 R08: 0000000000000000 R09: 0000000000000000
[  799.229545][   T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffa1b31890
[  799.237991][   T31] R13: 00007fa4a881089d R14: 0000000000093ce7 R15: 00007fffa1b318d0
[  799.246349][   T31]  </TASK>
[  799.249942][   T31] 
[  799.249942][   T31] Showing all locks held in the system:
[  799.251402][ T5992] bcachefs (loop1): shutting down
[  799.259257][   T31] 1 lock held by khungtaskd/31:
[  799.280502][   T31]  #0: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  799.296954][   T31] 2 locks held by dhcpcd/5488:
[  799.304821][   T31] 2 locks held by getty/5578:
[  799.319733][   T31]  #0: ffff8880308bd0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  799.330604][   T31]  #1: ffffc900030062f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  799.341065][   T31] 1 lock held by syz-executor/5994:
[  799.346416][   T31]  #0: ffff88807cb4a0e0 (&type->s_umount_key#67){+.+.}-{4:4}, at: deactivate_super+0xa9/0xe0
[  799.357158][   T31] 1 lock held by syz-executor/6004:
[  799.362359][   T31]  #0: ffffffff8df439b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b7/0x730
[  799.373433][   T31] 
[  799.402488][   T31] =============================================
[  799.402488][   T31] 
[  799.438581][   T31] NMI backtrace for cpu 0
[  799.438599][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  799.438626][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  799.438642][   T31] Call Trace:
[  799.438652][   T31]  <TASK>
[  799.438662][   T31]  dump_stack_lvl+0x189/0x250
[  799.438699][   T31]  ? __wake_up_klogd+0xd9/0x110
[  799.438727][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.438759][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  799.438804][   T31]  ? __pfx__printk+0x10/0x10
[  799.438844][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  799.438875][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  799.438898][   T31]  ? _printk+0xcf/0x120
[  799.438932][   T31]  ? __pfx__printk+0x10/0x10
[  799.438960][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  799.438989][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  799.439019][   T31]  watchdog+0xfee/0x1030
[  799.439054][   T31]  ? watchdog+0x1de/0x1030
[  799.439096][   T31]  kthread+0x711/0x8a0
[  799.439130][   T31]  ? __pfx_watchdog+0x10/0x10
[  799.439164][   T31]  ? __pfx_kthread+0x10/0x10
[  799.439193][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.439224][   T31]  ? __pfx_kthread+0x10/0x10
[  799.439252][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  799.439281][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.439308][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  799.439340][   T31]  ? __pfx_kthread+0x10/0x10
[  799.439369][   T31]  ret_from_fork+0x4e/0x80
[  799.439393][   T31]  ? __pfx_kthread+0x10/0x10
[  799.439424][   T31]  ret_from_fork_asm+0x1a/0x30
[  799.439465][   T31]  </TASK>
[  799.596280][   T31] Sending NMI from CPU 0 to CPUs 1:
[  799.601657][    C1] NMI backtrace for cpu 1
[  799.601673][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  799.601698][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  799.601711][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  799.601741][    C1] Code: ee ad b9 f5 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d 63 7f 11 00 f3 0f 1e fa fb f4 <e9> c3 ad b9 f5 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  799.601760][    C1] RSP: 0018:ffffc90000197de0 EFLAGS: 00000286
[  799.601780][    C1] RAX: 3419f20ea129e400 RBX: ffffffff81977108 RCX: 3419f20ea129e400
[  799.601798][    C1] RDX: 0000000000000001 RSI: ffffffff8d74e306 RDI: ffffffff8bc1f540
[  799.601813][    C1] RBP: ffffc90000197f20 R08: ffff8880b8932b5b R09: 1ffff1101712656b
[  799.601830][    C1] R10: dffffc0000000000 R11: ffffed101712656c R12: ffffffff8f7f3570
[  799.601847][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff11003958b40
[  799.601865][    C1] FS:  0000000000000000(0000) GS:ffff8881261c2000(0000) knlGS:0000000000000000
[  799.601883][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  799.601899][    C1] CR2: 000055cae5c54f58 CR3: 000000007ba6c000 CR4: 0000000000350ef0
[  799.601918][    C1] Call Trace:
[  799.601926][    C1]  <TASK>
[  799.601935][    C1]  default_idle+0x13/0x20
[  799.601965][    C1]  default_idle_call+0x74/0xb0
[  799.601997][    C1]  do_idle+0x1e8/0x510
[  799.602020][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.602048][    C1]  ? __pfx_do_idle+0x10/0x10
[  799.602068][    C1]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  799.602093][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.602118][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  799.602146][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  799.602178][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  799.602205][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.602235][    C1]  cpu_startup_entry+0x44/0x60
[  799.602256][    C1]  start_secondary+0x101/0x110
[  799.602278][    C1]  common_startup_64+0x13e/0x147
[  799.602321][    C1]  </TASK>
[  799.624256][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  799.624276][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  799.624304][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  799.624320][   T31] Call Trace:
[  799.624330][   T31]  <TASK>
[  799.624342][   T31]  dump_stack_lvl+0x99/0x250
[  799.624381][   T31]  ? __asan_memcpy+0x40/0x70
[  799.624410][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  799.624447][   T31]  ? __pfx__printk+0x10/0x10
[  799.624481][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.624515][   T31]  panic+0x2db/0x790
[  799.624551][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.624586][   T31]  ? __pfx_panic+0x10/0x10
[  799.624619][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.624648][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[  799.624685][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.624713][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  799.624743][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  799.624783][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.624817][   T31]  watchdog+0x102d/0x1030
[  799.624852][   T31]  ? watchdog+0x1de/0x1030
[  799.624895][   T31]  kthread+0x711/0x8a0
[  799.624941][   T31]  ? __pfx_watchdog+0x10/0x10
[  799.624972][   T31]  ? __pfx_kthread+0x10/0x10
[  799.625002][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.625032][   T31]  ? __pfx_kthread+0x10/0x10
[  799.625062][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  799.625091][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.625119][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  799.625151][   T31]  ? __pfx_kthread+0x10/0x10
[  799.625180][   T31]  ret_from_fork+0x4e/0x80
[  799.625207][   T31]  ? __pfx_kthread+0x10/0x10
[  799.625238][   T31]  ret_from_fork_asm+0x1a/0x30
[  799.625280][   T31]  </TASK>
[  799.982486][   T31] Kernel Offset: disabled
[  799.986810][   T31] Rebooting in 86400 seconds..