last executing test programs:

4m47.355156852s ago: executing program 0 (id=62):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/reserved_size', 0x169a82, 0x0)
sendfile(r0, r0, 0x0, 0x7)

4m47.088710937s ago: executing program 0 (id=67):
r0 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@mcast1, 0x8000000, 0x0, 0x0, 0x1}, 0x20)

4m46.830030122s ago: executing program 0 (id=72):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000340)={0x3, 0x0, 0x1, 0x0, 0x7fffffff})

4m46.529263219s ago: executing program 0 (id=77):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000180)='./file2\x00', 0x402, &(0x7f00000001c0)=ANY=[], 0x1, 0x242, &(0x7f0000000380)="$eJzsmL+LE0EUx7+zu5kkIqLNFTYKHhjRSy57KNeE8wTBysYTtdLgrceZvYskK5iA4mFjo52FYGPhP2BxxdV2/gOCFioIFqawEEQOVt7O7GbiJpdltfN9iuE7M2/m/ZjNKwKGYf5bPn/68fHJucWVUwD2YxZFvf7VBoRQ2jLsPzy/e/JZ4/yL1+9fvdk8cH/nz/voSBjuhuZCaQ//DoDKso0g8RTGZ3+RmNWTFRQTfRkWTmh9BQJVrW/AKsT3evgZKoDbELim19tkX63eWve96s22v0pinoY6DS4NI/lSfIMtgVU9pxuFsd/t9VtN3/c6hnD03pitXCJx1ppJ1a8AicGyhYaOluKj+K8+frRFK3Ft5mEl9avDQl0nsbCblAmLKMa1USUx8j/sDPO3i4l7etpW0x+brb4V05Is+b5nd3uN7/+kWKY4NJfveIXSOatXHgDQWweRJwwMTy3B6xQw3LLpSx0xPpr55jKADJ9OJBzjdTDeeEm/aI4EL6aymCCeZor570WuLGIxM9h5m976op9SMeZ4KKa7ECPfj9zLuJQ15jik/BUro9+yclZMTv51A++2Vf8IXwocB2TcPxyjf9WCjTu1bq8/t77RXPPWvE3XXTgjgIen3VrUiNSY6nvD/lyO+tM+oz8XJthKS+JeMwg6dTVKIVFGEHTcaO4aP5tL2+1v1/WxABcAHFMTapsyudFO+RBS2ViRLalK2ohhGIZhGIZhGIZhGIZhGCYrI394HoFAOB1XWf8OAAD//5X0aKk=")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

4m46.116056878s ago: executing program 0 (id=83):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_START(r0, 0x4142, 0x0)

4m45.034569807s ago: executing program 0 (id=93):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000ec0)=ANY=[@ANYBLOB="140000001000010000000000000001000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a300000000064000000060a010400000000000000000100000008000b4000000000340004803000018008000100636d7000240002801000038009000100000000fd80000000080001400000041008000240000000000900010073797a30"], 0xd8}}, 0x0)

4m44.51822512s ago: executing program 32 (id=93):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000ec0)=ANY=[@ANYBLOB="140000001000010000000000000001000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a300000000064000000060a010400000000000000000100000008000b4000000000340004803000018008000100636d7000240002801000038009000100000000fd80000000080001400000041008000240000000000900010073797a30"], 0xd8}}, 0x0)

3m8.02119035s ago: executing program 6 (id=1167):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000010c0)=@mangle={'mangle\x00', 0x64, 0x6, 0x510, 0x1b8, 0xd0, 0xd0, 0x1b8, 0x2b0, 0x528, 0x528, 0x528, 0x528, 0x528, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x5}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@multicast2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x570)

3m7.688859875s ago: executing program 6 (id=1172):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r0, &(0x7f0000000180)='.\x00', 0x100, &(0x7f0000001dc0)={0x0, 0x77, 0x100000}, 0x20)

3m7.307573875s ago: executing program 6 (id=1177):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
ioctl$TCSETSF(r0, 0x5404, 0x0)

3m6.84940175s ago: executing program 6 (id=1183):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x756, &(0x7f00000002c0)="$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")
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='ext4\x00', 0x1000040, 0x0)

3m6.17322017s ago: executing program 6 (id=1189):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8000}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x0)

3m3.595444535s ago: executing program 6 (id=1213):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(r0, 0x104, 0x3, 0x0, &(0x7f0000000180))

3m2.896247779s ago: executing program 33 (id=1213):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(r0, 0x104, 0x3, 0x0, &(0x7f0000000180))

1m39.816421476s ago: executing program 7 (id=2225):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x8, 0x3, 0x0, 0x0, {0x3}}, 0x14}}, 0x200040d0)

1m39.521865871s ago: executing program 7 (id=2229):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x4000010001ff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0xf, 0x1, 0x3, "3a8e07ca5de21f0077ab7a4d8601acc620004b5c000000000000002100", 0x3231564e})

1m39.346196199s ago: executing program 7 (id=2233):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000440)=@mangle={'mangle\x00', 0x44, 0x6, 0x3c0, 0x290, 0x0, 0x98, 0x98, 0x0, 0x328, 0x328, 0x328, 0x328, 0x328, 0x6, 0x0, {[{{@ip={@remote, @multicast2, 0x0, 0xffffff00, 'veth0_to_bridge\x00', 'ipvlan1\x00', {0xff}}, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@uncond, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@inet=@dscp={{0x28}, {0xff, 0x1}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x3, 0xbfce, @multicast1, 0x4e23}}}, {{@ip={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'pim6reg1\x00', 'macvtap0\x00'}, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0x2, 0x8}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x40}, @private, 0x0, 0xffff00, 'hsr0\x00', 'syzkaller1\x00'}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@local, @rand_addr, 0x0, 0x0, 'ip6erspan0\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x38}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x420)

1m39.085927355s ago: executing program 7 (id=2237):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000380)='./bus\x00', 0x2200804, &(0x7f0000000100)={[{@keep_last_dots}, {@namecase}, {@sys_tz}, {@time_offset={'time_offset', 0x3d, 0x3ff}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp949'}}, {@allow_utime={'allow_utime', 0x3d, 0x1}}]}, 0x3, 0x151f, &(0x7f0000001900)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

1m38.265432431s ago: executing program 7 (id=2248):
r0 = gettid()
rt_sigqueueinfo(r0, 0x5, &(0x7f00000012c0)={0xf, 0xffff, 0x6})

1m37.382707012s ago: executing program 7 (id=2261):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
getsockopt$llc_int(r0, 0x10c, 0x1, &(0x7f0000000040), &(0x7f0000000080)=0x4)

1m36.741228392s ago: executing program 34 (id=2261):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
getsockopt$llc_int(r0, 0x10c, 0x1, &(0x7f0000000040), &(0x7f0000000080)=0x4)

7.450391883s ago: executing program 8 (id=3275):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000140)=0x2, 0x4)

7.141912201s ago: executing program 8 (id=3280):
syz_mount_image$bcachefs(&(0x7f0000000080), &(0x7f0000000000)='./file1\x00', 0x800000, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x1, 0x5945, &(0x7f0000005cc0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file3\x00', 0x100100, 0x8)

4.438329644s ago: executing program 8 (id=3308):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x118, 0x2b, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x107, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac08}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x16}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8c", @typed={0x4, 0xe9}]}]}, 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)

3.204783318s ago: executing program 5 (id=3320):
r0 = socket(0x18, 0x3, 0x1)
ioctl$SIOCSIFMTU(r0, 0x8931, &(0x7f0000000000)={'bond0\x00'})

2.992356419s ago: executing program 1 (id=3322):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x2, 0x0, 0x7ffc1ffb}]})
mlock2(&(0x7f0000568000/0x4000)=nil, 0x4000, 0x0)

2.960875422s ago: executing program 4 (id=3323):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000029000b00ffffffff00000000050000001800018014"], 0x2c}}, 0x0)

2.810624626s ago: executing program 5 (id=3324):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0xfffffffc, 0x7, 0x1, {0xa, @pix_mp={0x9, 0x181, 0x0, 0x6, 0x2, [{0x5, 0xffffffff}, {0xffffffff, 0x7}, {0xa64a80ed, 0xfffffff2}, {0x200, 0x3ff}, {0x5, 0x1}, {0x4cc, 0x8}, {0x7ff, 0x9}, {0x30000006, 0x1}], 0x1, 0xfe, 0x0, 0x1, 0x5}}, 0x3})

2.542558201s ago: executing program 1 (id=3326):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x0, 0x4b0, 0xbbba, 0x8, 0x0, 0x0, {0x5}, {0x0, 0x0, 0x1}, {0xfffffffd}, {0x0, 0x0, 0x80000000}, 0x0, 0x3f0, 0x2, 0xd613, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff0001, 0x9, 0x0, 0x24})

2.472728744s ago: executing program 5 (id=3327):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a30000000005c000000030a01030000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000032800048008000240000000120800014000000004"], 0xa4}}, 0x0)

2.184905685s ago: executing program 1 (id=3329):
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440)={[{@metacopy_on}, {@redirect_dir_nofollow}]})

2.16845084s ago: executing program 5 (id=3330):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='uid_map\x00')
pread64(r0, &(0x7f0000000480)=""/177, 0xb1, 0x21)

1.909641252s ago: executing program 1 (id=3332):
r0 = socket(0x2a, 0x2, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, 0x0)

1.859698085s ago: executing program 5 (id=3333):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r0, 0x890b, &(0x7f00000007c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x5, @bcast, @bpq0, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})

1.807686955s ago: executing program 3 (id=3334):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, 0x0)

1.698544206s ago: executing program 4 (id=3335):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000040)=@generic={0x3, 0x40, 0x17f})

1.698426698s ago: executing program 2 (id=3336):
r0 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x0, 0x0, 0x2084, 0x6ae0})

1.606773236s ago: executing program 1 (id=3337):
r0 = memfd_create(&(0x7f0000000400)='9\x84\xdf\xa3{.XS|F\a\xa9N\xb8%\x00\n\xf0\x99\xb8\xbdp\xbb\x8bQ/\xaf\x89\x13\xe3V\x1a\xc7\xab\x97|\x9f}=\xa7\x03\x8d\x90\xe9\x10K\xd9L+\xf9\xbcO\b\xf3\xac\xdb\xbb\xbc\xfb3\xe1*\x14\xd3\xe8\xe3\x99\x8c>\xa8M\x96\xf6\xb0\xf8l\x1bn\xaf\xa8\xd0k\xbem\b~\x1bh\xf4-\xe4\x05V\x90\x85e\xf6\x10`\xf3(\xe8\xf4', 0x6)
preadv2(r0, 0x0, 0x0, 0x20, 0x0, 0x0)

1.539526159s ago: executing program 5 (id=3338):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d3e457201e040b40e73e000000010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

1.378132138s ago: executing program 2 (id=3339):
r0 = syz_open_dev$vim2m(&(0x7f0000000300), 0x80000000d37, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000004b40)={0x1, @vbi={0x0, 0x0, 0x33524742}})

1.334150641s ago: executing program 4 (id=3340):
r0 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, 0x0)

1.295449921s ago: executing program 1 (id=3341):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fe07124081173809499b0102030109022400010000000009040000028b8647000905e8ff000900000009050a", @ANYRES16], 0x0)
syz_usb_ep_read(r0, 0xa, 0x0, 0x0)

1.142332886s ago: executing program 3 (id=3342):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x24d, 0xa, 0x0, 0x0, 0x3e, 0x180, 0x8, 0x0, {}, {}, {}, {}, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})

1.109380106s ago: executing program 8 (id=3343):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x7, 0x0, 0x0, {0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x28, 0x3, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_USERDATA={0x7, 0x3, "91abc1"}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x9}], {0x14}}, 0x84}}, 0x0)

1.058141858s ago: executing program 2 (id=3344):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000001"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000b80)={r0, 0x0, 0x0}, 0x20)

970.481379ms ago: executing program 4 (id=3345):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
mount(&(0x7f00000001c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='adfs\x00', 0x0, 0x0)

870.922824ms ago: executing program 3 (id=3346):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x15, 0x2a, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xf, 0xfff1}, {0xfff3, 0x2}, {0xd, 0xffe0}}}, 0x24}, 0x1, 0x0, 0x0, 0x4040801}, 0x20000000)

862.279817ms ago: executing program 8 (id=3347):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x80000c, &(0x7f0000002440)=ANY=[@ANYBLOB="666f7263652c6e6c733d6575632d6a702c626172726965722c747970653d883b7f382c756d61736b3d30303030303030303030303030303030303030303030362c666f7263652c626172726965722c747970653d49d388242c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c005dc15e246d930a23b5f4093707c10226afb28f3e2838bb917886a27afece1cbcf9ae2d32c2c3f5bf4bb6fcd73d5c59e463cd173c188e1eefaba6fceaeb5840cbeb145a56ad674e7f2f8c49eaf5b1c65eb6d762300b8c5c2ff69671e6b209000000"], 0x2, 0x6e2, &(0x7f0000000c80)="$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")
setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="6f73782e260373cf285256f619e46fc5a25a6c6e12338ff3ad9d9ecbe4a85facd7abf66382fb7a95d8bead6f51b770eecdb9a08b9a2def86f676359ecddd6884914093cc22a167c8ca190c6e851fe21671dd823f9f994ffd14573a7a619699c2575a53225bb6ed0eb5cfe4870e9e7a22e20fa04c15d040476dc020356f0527a714ad6ca57d5f6be5e52dfc04ecb5b72f66"], 0x0, 0x0, 0x0)

750.150347ms ago: executing program 2 (id=3348):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0010000000000000240012800b000100697036746e6c000014000280050009002900000008000100", @ANYRES32, @ANYBLOB="0800040000ff0013"], 0x4c}}, 0x0)

578.325532ms ago: executing program 4 (id=3349):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f00000018c0)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0xa, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x21}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)

532.783204ms ago: executing program 3 (id=3350):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000380)={0x0, 0x3, 0xd221})

421.010966ms ago: executing program 8 (id=3351):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x200800, &(0x7f0000000400)={[{@utf8}, {@umask={'umask', 0x3d, 0x5}}, {@keep_last_dots}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp855'}}, {@errors_remount}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]}, 0x9, 0x1524, &(0x7f00000057c0)="$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")
newfstatat(0xffffffffffffff9c, &(0x7f0000004040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x1000)

256.39505ms ago: executing program 2 (id=3352):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, 0x0, 0x0)

255.761573ms ago: executing program 4 (id=3353):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x40000000, 0x1, 0x1f, 0xa, "28060000001ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7a9e07ef33f86bf01933bdb6fc4d5dd91b59ca8d541", "78042a8bde94000000008d030000004f07b84819ffdf4a0400", [0x7fffffff, 0x4ac7]})

204.157247ms ago: executing program 3 (id=3354):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5}, @IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x58}}, 0x0)

4.949609ms ago: executing program 3 (id=3355):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x44, 0x10, 0x421, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x0, 0x28079}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, 0x44}}, 0x0)

0s ago: executing program 2 (id=3356):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x3d, 0x4, 0x4, 0x0, 0x7, 0x0, 0x0, 0x0, 0xff}})

kernel console output (not intermixed with test programs):

r/w without journal. Quota mode: writeback.
[  264.666515][ T5902] usb 4-1: USB disconnect, device number 9
[  264.699105][   T30] audit: type=1326 audit(1749914045.309:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.5.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c51f8e929 code=0x7ffc0000
[  264.809539][   T30] audit: type=1326 audit(1749914045.359:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.5.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f9c51f8e929 code=0x7ffc0000
[  264.832509][ T5888] udevd[5888]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  264.960578][   T30] audit: type=1326 audit(1749914045.359:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.5.1954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c51f8e929 code=0x7ffc0000
[  265.026659][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.037181][T14997] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1955'.
[  265.114742][T14997] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1955'.
[  265.647058][T15024] netlink: 'syz.3.1963': attribute type 2 has an invalid length.
[  265.700159][T15024] netlink: 'syz.3.1963': attribute type 8 has an invalid length.
[  265.735978][T15024] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1963'.
[  266.019795][   T43] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  266.198198][T14961] loop2: detected capacity change from 0 to 40427
[  266.215514][   T43] usb 6-1: config 0 has an invalid interface number: 52 but max is 0
[  266.228341][T14961] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  266.244353][   T43] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  266.285113][   T43] usb 6-1: config 0 has no interface number 0
[  266.287081][T14961] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  266.329653][   T43] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  266.400601][   T43] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  266.458069][   T43] usb 6-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  266.507341][   T43] usb 6-1: config 0 interface 52 has no altsetting 0
[  266.573054][   T43] usb 6-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[  266.598822][   T43] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[  266.652087][T15074] loop7: detected capacity change from 0 to 64
[  266.661126][   T43] usb 6-1: SerialNumber: syz
[  266.724157][   T43] usb 6-1: config 0 descriptor??
[  266.842905][T14961] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  266.864471][T15086] loop1: detected capacity change from 0 to 256
[  266.877680][T14961] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  266.992352][   T43] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  267.015510][T15086] FAT-fs (loop1): Directory bread(block 64) failed
[  267.052037][T15086] FAT-fs (loop1): Directory bread(block 65) failed
[  267.061324][   T43] synaptics_usb 6-1:0.52: probe with driver synaptics_usb failed with error -5
[  267.096633][T14961] syz.2.1952: attempt to access beyond end of device
[  267.096633][T14961] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  267.115862][T15086] FAT-fs (loop1): Directory bread(block 66) failed
[  267.145280][T15086] FAT-fs (loop1): Directory bread(block 67) failed
[  267.220855][T15086] FAT-fs (loop1): Directory bread(block 68) failed
[  267.245867][T15086] FAT-fs (loop1): Directory bread(block 69) failed
[  267.252774][ T5903] usb 6-1: USB disconnect, device number 9
[  267.285387][T15086] FAT-fs (loop1): Directory bread(block 70) failed
[  267.389839][T15086] FAT-fs (loop1): Directory bread(block 71) failed
[  267.429852][T15086] FAT-fs (loop1): Directory bread(block 72) failed
[  267.436417][T15086] FAT-fs (loop1): Directory bread(block 73) failed
[  267.450783][T15114] loop3: detected capacity change from 0 to 128
[  267.802876][T15061] loop4: detected capacity change from 0 to 32768
[  267.854805][T15061] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1973 (15061)
[  267.943540][T15061] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  267.995320][T15061] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm
[  268.044753][T15061] BTRFS info (device loop4): using free-space-tree
[  268.124284][T15145] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1986'.
[  268.125896][T15144] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1988'.
[  268.492724][T15168] vxcan1 speed is unknown, defaulting to 1000
[  268.586364][T15168] vxcan1 speed is unknown, defaulting to 1000
[  268.640794][T15168] vxcan1 speed is unknown, defaulting to 1000
[  268.746630][ T5832] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  269.532664][T15212] geneve2: entered promiscuous mode
[  269.537957][T15212] geneve2: entered allmulticast mode
[  269.623664][T15216] loop2: detected capacity change from 0 to 64
[  269.650995][T15218] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2002'.
[  269.997171][T15225] loop5: detected capacity change from 0 to 1024
[  270.018278][T15173] loop1: detected capacity change from 0 to 32768
[  270.099648][T15241] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2006'.
[  270.170538][T15173] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1991 (15173)
[  270.191948][T15225] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.269089][T15173] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  270.298358][T15225] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: inode #11: comm syz.5.2003: missing EA_INODE flag
[  270.348066][T15173] BTRFS info (device loop1): using sha256 (sha256-x86_64) checksum algorithm
[  270.359267][T15225] EXT4-fs (loop5): Remounting filesystem read-only
[  270.401046][T15173] BTRFS info (device loop1): using free-space-tree
[  270.508695][T15168] infiniband syz2: set active
[  270.516280][ T5902] vxcan1 speed is unknown, defaulting to 1000
[  270.535369][T15168] infiniband syz2: added vxcan1
[  270.582251][T15168] syz2: rxe_create_cq: returned err = -12
[  270.593057][T15168] infiniband syz2: Couldn't create ib_mad CQ
[  270.630577][T15168] infiniband syz2: Couldn't open port 1
[  270.644016][ T5830] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.880196][T15168] RDS/IB: syz2: added
[  270.884865][T15168] smc: adding ib device syz2 with port count 1
[  270.909902][T15281] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2012'.
[  270.918811][T15281] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2012'.
[  270.949868][T15168] smc:    ib device syz2 port 1 has pnetid 
[  271.016285][ T5902] vxcan1 speed is unknown, defaulting to 1000
[  271.047174][T15168] vxcan1 speed is unknown, defaulting to 1000
[  271.238275][ T5837] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  271.290575][T15291] tmpfs: Bad value for 'nr_blocks'
[  271.624069][T15304] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2018'.
[  271.704212][T15304] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2018'.
[  271.769721][T15304] netlink: 'syz.3.2018': attribute type 4 has an invalid length.
[  272.622087][T15347] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2033'.
[  272.978451][T15361] netlink: 'syz.2.2038': attribute type 3 has an invalid length.
[  273.005295][T15168] vxcan1 speed is unknown, defaulting to 1000
[  273.019537][T15361] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2038'.
[  273.028450][T15361] netlink: 'syz.2.2038': attribute type 1 has an invalid length.
[  273.333001][T15373] IPv6: Can't replace route, no match found
[  273.411038][T15380] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  273.463865][T15380] overlayfs: missing 'lowerdir'
[  273.567996][T15329] loop5: detected capacity change from 0 to 32768
[  273.671000][T15329] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2027 (15329)
[  273.799065][T15329] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  273.871800][T15329] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[  273.919572][T15329] BTRFS info (device loop5): using free-space-tree
[  274.219975][T15329] BTRFS info (device loop5): rebuilding free space tree
[  274.262889][T15168] vxcan1 speed is unknown, defaulting to 1000
[  274.466726][ T5830] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  274.912854][T15460] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2061'.
[  275.238228][T15475] loop5: detected capacity change from 0 to 512
[  275.425117][T15475] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  275.465302][T15475] ext4 filesystem being mounted at /382/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.584800][T15168] vxcan1 speed is unknown, defaulting to 1000
[  275.616718][ T5830] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.409551][ T5831] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  276.442281][T15537] netlink: 'syz.2.2089': attribute type 23 has an invalid length.
[  276.579654][ T5831] usb 5-1: Using ep0 maxpacket: 32
[  276.590393][T15168] vxcan1 speed is unknown, defaulting to 1000
[  276.606870][ T5831] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  276.657205][ T5831] usb 5-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  276.691316][ T5831] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  276.708510][ T5831] usb 5-1: Product: syz
[  276.718850][ T5831] usb 5-1: Manufacturer: syz
[  276.733297][ T5831] usb 5-1: SerialNumber: syz
[  276.761648][ T5831] usb 5-1: config 0 descriptor??
[  276.959901][ T3074] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  276.993062][ T5831] usb 5-1: USB disconnect, device number 8
[  277.152297][ T3074] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  277.179584][ T3074] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  277.207134][ T3074] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  277.233747][ T3074] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.257447][ T3074] hub 3-1:4.0: USB hub found
[  277.443010][T15168] vxcan1 speed is unknown, defaulting to 1000
[  277.463422][ T3074] hub 3-1:4.0: config failed, hub has too many ports! (err -19)
[  277.735641][T15603] loop5: detected capacity change from 0 to 256
[  277.780608][   T43] usb 3-1: USB disconnect, device number 10
[  277.869811][T15603] FAT-fs (loop5): Directory bread(block 64) failed
[  277.910853][T15603] FAT-fs (loop5): Directory bread(block 65) failed
[  277.917513][T15603] FAT-fs (loop5): Directory bread(block 66) failed
[  277.955316][T15603] FAT-fs (loop5): Directory bread(block 67) failed
[  277.974668][T15603] FAT-fs (loop5): Directory bread(block 68) failed
[  277.994840][T15603] FAT-fs (loop5): Directory bread(block 69) failed
[  278.025310][T15603] FAT-fs (loop5): Directory bread(block 70) failed
[  278.056457][T15603] FAT-fs (loop5): Directory bread(block 71) failed
[  278.073529][T15603] FAT-fs (loop5): Directory bread(block 72) failed
[  278.091799][T15603] FAT-fs (loop5): Directory bread(block 73) failed
[  278.744817][T15652] loop2: detected capacity change from 0 to 256
[  278.861761][   T30] audit: type=1800 audit(1749914059.629:47): pid=15652 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2121" name="file1" dev="loop2" ino=1048630 res=0 errno=0
[  279.011823][T15665] (unnamed net_device) (uninitialized): option arp_validate: mode dependency failed, not supported in mode balance-tlb(5)
[  279.224877][T15666] loop5: detected capacity change from 0 to 4096
[  279.259733][T15666] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[  279.339782][T15683] netlink: 6 bytes leftover after parsing attributes in process `syz.7.2131'.
[  279.879970][T15702] snd_dummy snd_dummy.0: control 2:16:0:syz0:-3 is already present
[  279.892521][T15705] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2139'.
[  279.966993][T15705] batadv_slave_1: entered promiscuous mode
[  280.259327][T15721] QAT: Stopping all acceleration devices.
[  280.268319][T15726] loop1: detected capacity change from 0 to 1024
[  280.326686][T15731] tmpfs: Bad value for 'mpol'
[  280.428229][T15726] hfsplus: extend alloc file! (16384,256,150995124)
[  280.539625][ T3074] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  280.733578][ T3074] usb 3-1: config 0 has an invalid interface number: 225 but max is 0
[  280.742401][ T3074] usb 3-1: config 0 has no interface number 0
[  280.754386][ T3074] usb 3-1: New USB device found, idVendor=14ea, idProduct=ab11, bcdDevice=4a.d2
[  280.776720][ T3074] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  280.789094][ T3074] usb 3-1: Product: syz
[  280.793835][T15755] loop1: detected capacity change from 0 to 1024
[  280.809084][ T3074] usb 3-1: Manufacturer: syz
[  280.818575][ T3074] usb 3-1: SerialNumber: syz
[  280.867067][T15755] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  280.905401][ T3074] usb 3-1: config 0 descriptor??
[  280.981763][T15755] ext4 filesystem being mounted at /377/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.073508][T15755] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  281.181334][ T3074] asix 3-1:0.225 (unnamed net_device) (uninitialized): invalid hw address, using random
[  281.196331][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.409780][ T3074] asix 3-1:0.225 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  281.449706][ T3074] asix 3-1:0.225 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  281.490825][ T3074] asix 3-1:0.225: probe with driver asix failed with error -71
[  281.600235][ T3074] usb 3-1: USB disconnect, device number 11
[  281.685838][T15807] loop7: detected capacity change from 0 to 512
[  281.794849][T15807] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.2165: bg 0: block 248: padding at end of block bitmap is not set
[  281.910351][T15807] Quota error (device loop7): write_blk: dquota write failed
[  281.948412][T15807] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  281.989608][T15807] EXT4-fs error (device loop7): ext4_acquire_dquot:6933: comm syz.7.2165: Failed to acquire dquot type 1
[  282.074985][T15807] EXT4-fs (loop7): 1 truncate cleaned up
[  282.121784][T15807] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  282.248229][T15807] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  282.312378][T15839] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2174'.
[  282.501423][T11538] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.509746][   T36] Quota error (device loop7): do_check_range: Getting block 0 out of range 1-5
[  282.519418][   T36] EXT4-fs error (device loop7): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[  282.979554][ T3074] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  283.076813][T15887] loop7: detected capacity change from 0 to 256
[  283.116977][T15887] exfat: Deprecated parameter 'namecase'
[  283.167250][T15887] exfat: Deprecated parameter 'namecase'
[  283.181050][ T3074] usb 2-1: Using ep0 maxpacket: 8
[  283.197783][ T3074] usb 2-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f
[  283.225061][ T3074] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.239786][ T5882] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  283.261730][T15887] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  283.266441][ T3074] usb 2-1: Product: syz
[  283.324097][ T3074] usb 2-1: Manufacturer: syz
[  283.336561][ T3074] usb 2-1: SerialNumber: syz
[  283.421193][ T3074] usb 2-1: config 0 descriptor??
[  283.429660][ T5882] usb 4-1: Using ep0 maxpacket: 32
[  283.457323][ T3074] usbtest 2-1:0.0: FX2 device
[  283.482642][ T3074] usbtest 2-1:0.0: high-speed {control bulk-in bulk-out} tests (+alt)
[  283.489669][ T5882] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  283.539795][ T5882] usb 4-1: config 0 has no interface number 0
[  283.593056][ T5882] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  283.639596][ T5882] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.669892][ T5882] usb 4-1: Product: syz
[  283.674089][ T5882] usb 4-1: Manufacturer: syz
[  283.678694][ T5882] usb 4-1: SerialNumber: syz
[  283.756000][ T5882] usb 4-1: config 0 descriptor??
[  283.781607][ T5882] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  283.793617][ T5903] usb 2-1: USB disconnect, device number 11
[  284.007467][ T5882] usb 4-1: qt2_setup_urbs - submit read urb failed -8
[  284.033399][ T5882] quatech2 4-1:0.51: probe with driver quatech2 failed with error -8
[  284.057212][T15856] loop4: detected capacity change from 0 to 32768
[  284.246536][T15856] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  284.277411][T15856] OCFS2: ERROR (device loop4): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature 
[  284.295787][T15856] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  284.327371][T15856] OCFS2: File system is now read-only.
[  284.348492][ T5882] usb 4-1: USB disconnect, device number 10
[  284.388851][T15856] (syz.4.2181,15856,1):ocfs2_find_entry_dx:1029 ERROR: status = -30
[  284.470758][T15952] loop5: detected capacity change from 0 to 256
[  284.478059][T15952] exfat: Deprecated parameter 'utf8'
[  284.563737][T15952] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  284.576647][ T5832] ocfs2: Unmounting device (7,4) on (node local)
[  284.783575][T15968] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2203'.
[  285.363762][T15995] netlink: 'syz.4.2201': attribute type 2 has an invalid length.
[  285.488456][T15999] loop5: detected capacity change from 0 to 1764
[  285.863371][T16026] loop5: detected capacity change from 0 to 256
[  286.757634][T16074] loop3: detected capacity change from 0 to 256
[  286.827126][T16074] vfat: Deprecated parameter 'posix'
[  286.857781][T16074] FAT-fs: "posix" option is obsolete, not supported now
[  286.883091][T16080] loop7: detected capacity change from 0 to 256
[  286.904420][T16084] loop2: detected capacity change from 0 to 512
[  286.923558][T16080] exfat: Deprecated parameter 'namecase'
[  286.982332][T16084] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  286.983845][T16080] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xcd8273f8, utbl_chksum : 0xe619d30d)
[  287.076771][T16084] EXT4-fs (loop2): 1 truncate cleaned up
[  287.097217][T16084] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.118775][T16084] EXT4-fs error (device loop2): ext4_find_extent:903: inode #15: comm syz.2.2238: inode has invalid extent depth: 25964
[  287.143488][T16095] loop1: detected capacity change from 0 to 2048
[  287.158022][T16084] EXT4-fs (loop2): Remounting filesystem read-only
[  287.182499][T16095] EXT4-fs: Ignoring removed mblk_io_submit option
[  287.233857][T16084] fs-verity (loop2, inode 15): Error -117 getting verity descriptor size
[  287.345413][T16095] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.504552][T16095] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2241: bg 0: block 234: padding at end of block bitmap is not set
[  287.570688][ T5841] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.590134][T16095] EXT4-fs (loop1): Remounting filesystem read-only
[  287.824172][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.353994][T16158] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2257'.
[  288.539827][T16168] loop2: detected capacity change from 0 to 164
[  288.768839][   T36] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.023625][   T36] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.186919][T16190] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2266'.
[  289.271338][   T36] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.394866][T16195] netlink: 'syz.1.2270': attribute type 1 has an invalid length.
[  289.405844][T16189] loop4: detected capacity change from 0 to 4096
[  289.424745][T16195] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2270'.
[  289.452738][T16189] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  289.548567][T16189] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  289.571511][T16189] ntfs3(loop4): Failed to initialize $Extend/$Reparse.
[  289.781380][T16212] usb usb8: usbfs: process 16212 (syz.3.2273) did not claim interface 0 before use
[  289.818607][T11279] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22.
[  289.856806][ T5832] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  289.890180][ T5832] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  289.897585][ T5832] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  289.919868][ T3074] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  289.947570][ T5959] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22.
[  290.032474][   T36] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.116273][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  290.130580][ T3074] usb 6-1: Using ep0 maxpacket: 8
[  290.142618][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  290.151737][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  290.162870][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  290.175334][ T3074] usb 6-1: New USB device found, idVendor=0763, idProduct=2080, bcdDevice=d9.40
[  290.185398][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  290.199506][ T3074] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.215146][ T3074] usb 6-1: Product: syz
[  290.239763][ T3074] usb 6-1: Manufacturer: syz
[  290.262532][ T3074] usb 6-1: SerialNumber: syz
[  290.315003][ T3074] usb 6-1: config 0 descriptor??
[  290.406461][T16222] wg1 speed is unknown, defaulting to 1000
[  290.434054][T16222] vxcan1 speed is unknown, defaulting to 1000
[  290.671913][T16256] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2280'.
[  290.927918][   T36] bridge_slave_1: left allmulticast mode
[  290.949507][   T36] bridge_slave_1: left promiscuous mode
[  290.984631][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  291.080827][   T36] bridge_slave_0: left allmulticast mode
[  291.093983][ T3074] usb 6-1: USB disconnect, device number 10
[  291.131216][   T36] bridge_slave_0: left promiscuous mode
[  291.178636][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  291.406673][ T5888] udevd[5888]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  291.446980][T16297] loop3: detected capacity change from 0 to 4096
[  291.504080][T16297] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  291.522039][ T5902] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  291.709651][ T5902] usb 2-1: Using ep0 maxpacket: 16
[  291.746163][ T5902] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  291.769855][T16317] netlink: 'syz.5.2292': attribute type 30 has an invalid length.
[  291.777821][ T5902] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  291.800444][ T5902] usb 2-1: Product: syz
[  291.804647][ T5902] usb 2-1: Manufacturer: syz
[  291.821810][ T5902] usb 2-1: SerialNumber: syz
[  291.871221][ T5902] r8152-cfgselector 2-1: Unknown version 0x0000
[  291.883459][ T5902] r8152-cfgselector 2-1: config 0 descriptor??
[  292.150431][T16337] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2297'.
[  292.240353][ T5835] Bluetooth: hci0: command tx timeout
[  292.334759][ T5902] r8152-cfgselector 2-1: USB disconnect, device number 12
[  292.459266][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  292.473377][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  292.484693][   T36] bond0 (unregistering): Released all slaves
[  292.500086][ T5831] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[  292.523077][T16317] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[  292.545911][T16317] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[  292.692791][ T5831] usb 3-1: config 0 has an invalid interface number: 30 but max is 0
[  292.721225][ T5831] usb 3-1: config 0 has no interface number 0
[  292.743750][ T5831] usb 3-1: New USB device found, idVendor=06cd, idProduct=0109, bcdDevice=25.04
[  292.765699][ T5831] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.788414][ T5831] usb 3-1: Product: syz
[  292.816206][ T5831] usb 3-1: Manufacturer: syz
[  292.840277][ T5831] usb 3-1: SerialNumber: syz
[  292.864535][ T5831] usb 3-1: config 0 descriptor??
[  292.905303][ T5831] hub 3-1:0.30: bad descriptor, ignoring hub
[  292.929711][ T5831] hub 3-1:0.30: probe with driver hub failed with error -5
[  292.984604][ T5831] keyspan 3-1:0.30: Keyspan - (without firmware) converter detected
[  293.039829][T16377] netlink: 'syz.3.2303': attribute type 4 has an invalid length.
[  293.269890][ T3074] usb 3-1: USB disconnect, device number 12
[  293.288738][ T3074] keyspan 3-1:0.30: device disconnected
[  294.322859][ T5835] Bluetooth: hci0: command tx timeout
[  294.572643][T16493] loop5: detected capacity change from 0 to 256
[  294.819342][T16493] FAT-fs (loop5): Directory bread(block 64) failed
[  294.855982][T16554] loop3: detected capacity change from 0 to 1024
[  294.863930][T16493] FAT-fs (loop5): Directory bread(block 65) failed
[  294.898898][   T36] hsr_slave_0: left promiscuous mode
[  294.918032][T16493] FAT-fs (loop5): Directory bread(block 66) failed
[  294.955898][   T36] hsr_slave_1: left promiscuous mode
[  294.961199][T16493] FAT-fs (loop5): Directory bread(block 67) failed
[  294.989616][T16493] FAT-fs (loop5): Directory bread(block 68) failed
[  294.989709][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  294.996181][T16493] FAT-fs (loop5): Directory bread(block 69) failed
[  295.054935][T16493] FAT-fs (loop5): Directory bread(block 70) failed
[  295.083551][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  295.086361][T16493] FAT-fs (loop5): Directory bread(block 71) failed
[  295.122561][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  295.138959][T16493] FAT-fs (loop5): Directory bread(block 72) failed
[  295.140304][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  295.187220][T16493] FAT-fs (loop5): Directory bread(block 73) failed
[  295.224350][   T36] veth1_macvtap: left promiscuous mode
[  295.244424][   T36] veth0_macvtap: left promiscuous mode
[  295.253562][   T36] veth1_vlan: left promiscuous mode
[  295.266831][   T36] veth0_vlan: left promiscuous mode
[  295.563302][T16581] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2332'.
[  296.133956][T16597] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2338'.
[  296.233232][   T36] team0 (unregistering): Port device team_slave_1 removed
[  296.300903][   T36] team0 (unregistering): Port device team_slave_0 removed
[  296.321232][T16600] loop5: detected capacity change from 0 to 2048
[  296.360341][T16600] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  296.387582][T16602] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  296.387944][T16600] syz.5.2339: attempt to access beyond end of device
[  296.387944][T16600] loop5: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  296.413737][ T5835] Bluetooth: hci0: command tx timeout
[  296.768748][T11279] smc: removing ib device syz2
[  296.822134][T16615] No source specified
[  297.549965][T16625] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2345'.
[  297.555536][ T5902] vxcan1 speed is unknown, defaulting to 1000
[  297.612444][ T5902] syz2: Port: 1 Link DOWN
[  297.617759][T16222] chnl_net:caif_netlink_parms(): no params data found
[  297.977232][T16661] netlink: 'syz.2.2352': attribute type 3 has an invalid length.
[  298.018882][T16661] netlink: 'syz.2.2352': attribute type 1 has an invalid length.
[  298.479586][ T5835] Bluetooth: hci0: command tx timeout
[  298.744153][T16703] loop2: detected capacity change from 0 to 1764
[  298.871080][T16703] iso9660: Corrupted directory entry in block 2 of inode 1920
[  299.088732][T16715] loop5: detected capacity change from 0 to 8192
[  299.120731][T16222] bridge0: port 1(bridge_slave_0) entered blocking state
[  299.168505][T16222] bridge0: port 1(bridge_slave_0) entered disabled state
[  299.207181][T16222] bridge_slave_0: entered allmulticast mode
[  299.266545][T16222] bridge_slave_0: entered promiscuous mode
[  299.281913][T16760] PKCS7: Unknown OID: [4] 0.0
[  299.307557][T16761] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  299.321743][T16222] bridge0: port 2(bridge_slave_1) entered blocking state
[  299.325655][T16760] PKCS7: Only support pkcs7_signedData type
[  299.328882][T16222] bridge0: port 2(bridge_slave_1) entered disabled state
[  299.425392][T16222] bridge_slave_1: entered allmulticast mode
[  299.453200][T16222] bridge_slave_1: entered promiscuous mode
[  299.757763][T16790] autofs4:pid:16790:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a)
[  300.072927][T16813] syz.1.2376 uses obsolete (PF_INET,SOCK_PACKET)
[  300.206873][T16222] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  300.332559][T16222] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  300.741034][T16857] loop2: detected capacity change from 0 to 256
[  300.866866][T16871] netlink: 'syz.5.2385': attribute type 10 has an invalid length.
[  300.942221][T16222] team0: Port device team_slave_0 added
[  301.020408][T16222] team0: Port device team_slave_1 added
[  301.710170][T16222] batman_adv: batadv0: Adding interface: batadv_slave_0
[  301.717171][T16222] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.857524][T16222] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  301.932609][T16222] batman_adv: batadv0: Adding interface: batadv_slave_1
[  301.984312][T16222] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  302.084409][T16222] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  302.189893][T16951] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2400'.
[  302.223270][T16951] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2400'.
[  302.267871][T16951] netlink: 38 bytes leftover after parsing attributes in process `syz.2.2400'.
[  302.427045][T16963] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2402'.
[  302.501748][T16977] loop1: detected capacity change from 0 to 512
[  302.550501][T16977] fscrypt (loop1, inode 2): Error -61 getting encryption context
[  302.615242][T16977] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -61
[  302.645458][T16222] hsr_slave_0: entered promiscuous mode
[  302.703984][T16222] hsr_slave_1: entered promiscuous mode
[  302.727867][T16977] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #13: comm syz.1.2404: iget: bad i_size value: 12154757448730
[  302.752797][T17009] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  302.805863][T16977] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.2404: couldn't read orphan inode 13 (err -117)
[  302.881473][T16977] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.907445][T17018] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2407'.
[  303.033550][T16977] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  303.291281][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.048452][T16222] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  304.137876][T16222] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  304.217118][T16222] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  304.307491][T16222] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  304.772635][T17178] loop2: detected capacity change from 0 to 128
[  304.830651][T17178] ext4: Unknown parameter 'fsname'
[  304.886780][T16222] 8021q: adding VLAN 0 to HW filter on device bond0
[  304.906965][T17178] Invalid option length (1047378) for dns_resolver key
[  304.924469][T17179] loop1: detected capacity change from 0 to 2048
[  304.971680][T17189] loop4: detected capacity change from 0 to 128
[  304.997288][T16222] 8021q: adding VLAN 0 to HW filter on device team0
[  305.073922][T17084] loop5: detected capacity change from 0 to 32768
[  305.092290][ T2999] bridge0: port 1(bridge_slave_0) entered blocking state
[  305.099566][ T2999] bridge0: port 1(bridge_slave_0) entered forwarding state
[  305.146938][T17179] EXT4-fs error (device loop1): ext4_orphan_get:1419: comm syz.1.2435: bad orphan inode 8192
[  305.189286][T17084] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  305.234674][ T5959] bridge0: port 2(bridge_slave_1) entered blocking state
[  305.241916][ T5959] bridge0: port 2(bridge_slave_1) entered forwarding state
[  305.273683][T17179] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  305.475453][   T30] audit: type=1326 audit(1749914086.249:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17220 comm="syz.3.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392738e929 code=0x7ffc0000
[  305.486771][T17223] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2442'.
[  305.546449][   T30] audit: type=1326 audit(1749914086.289:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17220 comm="syz.3.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f392738e929 code=0x7ffc0000
[  305.569603][   T30] audit: type=1326 audit(1749914086.289:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17220 comm="syz.3.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392738e929 code=0x7ffc0000
[  305.622251][T17084] XFS (loop5): Ending clean mount
[  305.660889][T16222] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  305.749585][   T30] audit: type=1326 audit(1749914086.289:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17220 comm="syz.3.2440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392738e929 code=0x7ffc0000
[  305.773055][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.906495][ T5830] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  306.259653][T17244] loop1: detected capacity change from 0 to 1024
[  306.637438][ T3022] hfsplus: b-tree write err: -5, ino 4
[  306.747435][T16222] 8021q: adding VLAN 0 to HW filter on device batadv0
[  306.856373][T17278] xt_ecn: cannot match TCP bits for non-tcp packets
[  306.970847][   T30] audit: type=1326 audit(1749914087.749:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17287 comm="syz.2.2456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3838e929 code=0x7ffc0000
[  307.110052][   T30] audit: type=1326 audit(1749914087.749:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17287 comm="syz.2.2456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3838e929 code=0x7ffc0000
[  307.231180][   T30] audit: type=1326 audit(1749914087.789:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17287 comm="syz.2.2456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f4b3838e929 code=0x7ffc0000
[  307.374464][   T30] audit: type=1326 audit(1749914087.789:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17287 comm="syz.2.2456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4b3838e963 code=0x7ffc0000
[  307.501568][   T30] audit: type=1326 audit(1749914087.789:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17287 comm="syz.2.2456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4b3838e963 code=0x7ffc0000
[  307.528330][   T30] audit: type=1326 audit(1749914087.819:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17287 comm="syz.2.2456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3838e929 code=0x7ffc0000
[  307.814889][T17326] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (8)
[  308.004241][T17335] loop5: detected capacity change from 0 to 512
[  308.101846][T17335] EXT4-fs error (device loop5): ext4_iget_extra_inode:5035: inode #15: comm syz.5.2469: corrupted in-inode xattr: invalid ea_ino
[  308.167501][T17349] xt_CT: You must specify a L4 protocol and not use inversions on it
[  308.186777][T17335] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.2469: couldn't read orphan inode 15 (err -117)
[  308.319749][T17335] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  308.491496][T16222] veth0_vlan: entered promiscuous mode
[  308.551521][T16222] veth1_vlan: entered promiscuous mode
[  308.561899][ T5830] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.750597][T16222] veth0_macvtap: entered promiscuous mode
[  308.759081][T17363] xt_CT: No such helper "snmp_trap"
[  308.805211][T16222] veth1_macvtap: entered promiscuous mode
[  308.825109][T17357] loop2: detected capacity change from 0 to 4096
[  308.853294][T17377] openvswitch: netlink: Flow actions attr not present in new flow.
[  308.880671][T17357] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  308.890592][T17375] loop4: detected capacity change from 0 to 2048
[  308.907185][T16222] batman_adv: batadv0: Interface activated: batadv_slave_0
[  308.977894][T16222] batman_adv: batadv0: Interface activated: batadv_slave_1
[  308.992670][T17375] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  308.993409][T16222] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  309.018103][T16222] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  309.026852][T16222] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  309.036011][T16222] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  309.085221][T17375] ext4 filesystem being mounted at /424/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  309.136249][T17375] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2478: bg 0: block 345: padding at end of block bitmap is not set
[  309.216087][T17357] ntfs3(loop2): ino=19, mi_enum_attr
[  309.235887][T17357] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  309.450443][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.713442][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  309.759550][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  309.874750][ T3022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  309.959647][ T3022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.377972][T17444] loop5: detected capacity change from 0 to 2048
[  310.487121][T17444] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  310.611822][T17458] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  310.729902][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  310.729922][   T30] audit: type=1326 audit(1749914091.489:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.1.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  310.821396][T17390] loop3: detected capacity change from 0 to 32768
[  310.868340][   T30] audit: type=1326 audit(1749914091.499:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.1.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  310.931192][T17390] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2480 (17390)
[  310.939525][   T30] audit: type=1326 audit(1749914091.499:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.1.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  311.037723][   T30] audit: type=1326 audit(1749914091.499:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.1.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  311.148849][T17480] netlink: 'syz.5.2499': attribute type 12 has an invalid length.
[  311.197536][T17483] loop1: detected capacity change from 0 to 256
[  311.212752][T17483] exfat: Deprecated parameter 'namecase'
[  311.218481][T17483] exfat: Deprecated parameter 'utf8'
[  311.239358][T17390] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  311.299803][T17390] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm
[  311.348873][T17483] exfat: Deprecated parameter 'utf8'
[  311.369514][T17390] BTRFS info (device loop3): using free-space-tree
[  311.448092][T17483] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  311.679729][T17526] loop8: detected capacity change from 0 to 64
[  311.789516][ T5882] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  312.026345][ T5882] usb 5-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1
[  312.047473][ T5882] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.079966][ T5839] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  312.106997][ T5882] usb 5-1: Product: syz
[  312.140190][ T5882] usb 5-1: Manufacturer: syz
[  312.144855][ T5882] usb 5-1: SerialNumber: syz
[  312.175262][T17547] loop1: detected capacity change from 0 to 64
[  312.176237][T17550] netlink: 'syz.8.2512': attribute type 4 has an invalid length.
[  312.222391][ T5882] usb 5-1: config 0 descriptor??
[  312.240218][T17550] netlink: 'syz.8.2512': attribute type 3 has an invalid length.
[  312.294395][T17550] netlink: 132 bytes leftover after parsing attributes in process `syz.8.2512'.
[  312.475580][ T5882] int51x1 5-1:0.0: probe with driver int51x1 failed with error -22
[  312.701065][ T3074] usb 5-1: USB disconnect, device number 9
[  313.264173][T17593] loop2: detected capacity change from 0 to 4096
[  313.560755][T17620] netlink: 'syz.3.2528': attribute type 12 has an invalid length.
[  313.937304][T17638] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2532'.
[  313.948608][T17640] xt_HMARK: spi-set and port-set can't be combined
[  314.009789][T17637] loop3: detected capacity change from 0 to 2048
[  314.173873][T17637] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  314.289579][ T5882] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  314.338213][T17637] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:169: inode #12: comm syz.3.2533: inline data xattr refers to an external xattr inode
[  314.374893][T17628] "syz.1.2530" (17628) uses obsolete ecb(arc4) skcipher
[  314.444625][T17637] EXT4-fs (loop3): Remounting filesystem read-only
[  314.473463][ T5882] usb 3-1: Using ep0 maxpacket: 16
[  314.509710][ T5882] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  314.538162][ T5882] usb 3-1: config 0 has no interface number 0
[  314.573336][ T5882] usb 3-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d
[  314.593209][ T5882] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.606475][ T5882] usb 3-1: Product: syz
[  314.619611][ T5882] usb 3-1: Manufacturer: syz
[  314.638508][ T5882] usb 3-1: SerialNumber: syz
[  314.683549][ T5882] usb 3-1: config 0 descriptor??
[  314.715008][ T5839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.730267][ T5882] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  314.973399][ T5882] usb 3-1: USB disconnect, device number 13
[  315.332343][ T6009] udevd[6009]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  315.739816][T17761] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2556'.
[  315.748735][T17761] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2556'.
[  315.864745][T17769] libceph: resolve '4.' (ret=-3): failed
[  315.943985][T17773] netlink: 36 bytes leftover after parsing attributes in process `syz.8.2559'.
[  316.183428][T17786] netlink: 'syz.1.2562': attribute type 30 has an invalid length.
[  316.405494][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  316.831455][T17822] sock: sock_timestamping_bind_phc: sock not bind to device
[  317.674647][T17871] loop4: detected capacity change from 0 to 256
[  317.909895][T17871] FAT-fs (loop4): Directory bread(block 64) failed
[  317.964338][T17871] FAT-fs (loop4): Directory bread(block 65) failed
[  318.003335][T17871] FAT-fs (loop4): Directory bread(block 66) failed
[  318.053992][T17871] FAT-fs (loop4): Directory bread(block 67) failed
[  318.110079][T17871] FAT-fs (loop4): Directory bread(block 68) failed
[  318.161839][T17871] FAT-fs (loop4): Directory bread(block 69) failed
[  318.178147][T17871] FAT-fs (loop4): Directory bread(block 70) failed
[  318.219790][T17871] FAT-fs (loop4): Directory bread(block 71) failed
[  318.243277][T17871] FAT-fs (loop4): Directory bread(block 72) failed
[  318.279591][T17871] FAT-fs (loop4): Directory bread(block 73) failed
[  318.624841][T17851] loop3: detected capacity change from 0 to 32768
[  318.684460][T17851] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2582 (17851)
[  318.775069][T17839] loop5: detected capacity change from 0 to 32768
[  318.792258][T17851] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  318.830155][T17851] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm
[  318.864636][T17851] BTRFS info (device loop3): using free-space-tree
[  318.908290][T17839] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  319.091024][ T3074] usb 2-1: new full-speed USB device number 13 using dummy_hcd
[  319.121515][T17839] XFS (loop5): Ending clean mount
[  319.340055][ T3074] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  319.377927][ T3074] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.411099][ T3074] usb 2-1: Product: syz
[  319.415316][ T3074] usb 2-1: Manufacturer: syz
[  319.435985][ T5830] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  319.469763][ T3074] usb 2-1: SerialNumber: syz
[  319.470135][ T5839] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  319.516267][ T3074] r8152-cfgselector 2-1: Unknown version 0x0000
[  319.561757][ T3074] r8152-cfgselector 2-1: config 0 descriptor??
[  320.015906][T17989] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2607'.
[  320.072116][ T3074] r8152-cfgselector 2-1: USB disconnect, device number 13
[  320.106696][T17989] netlink: 40 bytes leftover after parsing attributes in process `syz.8.2607'.
[  320.664470][T17918] loop4: detected capacity change from 0 to 32768
[  320.677157][T18004] loop2: detected capacity change from 0 to 4096
[  320.829741][T18004] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  320.875131][T18004] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[  321.060199][T17918] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=4,compression=lz4,degraded=no,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow,no_data_io
[  321.060233][T17918]   allowing incompatible features above 0.0: (unknown version)
[  321.060249][T17918]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  321.329569][T17918] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  321.337898][T17918] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  321.375353][T18038] netlink: 'syz.5.2618': attribute type 2 has an invalid length.
[  321.447059][T18038] netlink: 'syz.5.2618': attribute type 2 has an invalid length.
[  321.455213][T17918] bcachefs (loop4): Version upgrade required:
[  321.455213][T17918] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  321.455213][T17918] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  321.455213][T17918]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  321.678081][T17918] bcachefs (loop4): dropping and reconstructing all alloc info
[  321.737037][T18052] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2621'.
[  321.772138][T17918] warn_alloc: 1 callbacks suppressed
[  321.772157][T17918] syz.4.2597: vmalloc error: size 8388608, failed to allocated page array size 16384, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  321.801858][T18052] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2621'.
[  321.887454][T17918] CPU: 1 UID: 0 PID: 17918 Comm: syz.4.2597 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[  321.887491][T17918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  321.887505][T17918] Call Trace:
[  321.887515][T17918]  <TASK>
[  321.887525][T17918]  dump_stack_lvl+0x189/0x250
[  321.887577][T17918]  ? __pfx_dump_stack_lvl+0x10/0x10
[  321.887618][T17918]  ? __pfx__printk+0x10/0x10
[  321.887646][T17918]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  321.887674][T17918]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  321.887703][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.887732][T17918]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  321.887763][T17918]  warn_alloc+0x214/0x310
[  321.887799][T17918]  ? __pfx_warn_alloc+0x10/0x10
[  321.887836][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.887865][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.887893][T17918]  ? __get_vm_area_node+0x28f/0x300
[  321.887919][T17918]  ? bch2_fs_journal_start+0x480/0x1510
[  321.887957][T17918]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  321.888020][T17918]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  321.888052][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.888079][T17918]  ? rcu_is_watching+0x15/0xb0
[  321.888121][T17918]  ? bch2_fs_journal_start+0x480/0x1510
[  321.888152][T17918]  ? bch2_fs_journal_start+0x480/0x1510
[  321.888182][T17918]  __kvmalloc_node_noprof+0x3b8/0x5f0
[  321.888208][T17918]  ? bch2_fs_journal_start+0x480/0x1510
[  321.888249][T17918]  bch2_fs_journal_start+0x480/0x1510
[  321.888307][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.888335][T17918]  ? bch2_journal_log_msg+0xd9/0x120
[  321.888376][T17918]  ? __pfx_bch2_fs_journal_start+0x10/0x10
[  321.888410][T17918]  ? __pfx_bch2_journal_log_msg+0x10/0x10
[  321.888448][T17918]  ? bch2_reconstruct_alloc+0x32b/0x360
[  321.888499][T17918]  bch2_fs_recovery+0x2237/0x3950
[  321.888559][T17918]  ? __pfx_bch2_fs_recovery+0x10/0x10
[  321.888595][T17918]  ? __console_unlock+0x14c/0x1a0
[  321.888623][T17918]  ? __pfx___console_unlock+0x10/0x10
[  321.888662][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.888698][T17918]  ? __lock_acquire+0xab9/0xd20
[  321.888748][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.888777][T17918]  ? __lock_acquire+0xab9/0xd20
[  321.888823][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.888852][T17918]  ? __lock_acquire+0xab9/0xd20
[  321.888912][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.888944][T17918]  ? bch2_fs_start+0x9fe/0xd90
[  321.888974][T17918]  ? up_write+0x1c4/0x420
[  321.888998][T17918]  ? bch2_fs_start+0x5c4/0xd90
[  321.889026][T17918]  bch2_fs_start+0xa99/0xd90
[  321.889053][T17918]  ? bch2_fs_start+0x5c4/0xd90
[  321.889083][T17918]  ? __pfx_bch2_fs_start+0x10/0x10
[  321.889133][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.889162][T17918]  ? sget+0x267/0x620
[  321.889205][T17918]  bch2_fs_get_tree+0xb02/0x14f0
[  321.889279][T17918]  ? __pfx_bch2_fs_get_tree+0x10/0x10
[  321.889347][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.889376][T17918]  ? aa_get_newest_label+0xf7/0x5d0
[  321.889409][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.889441][T17918]  ? vfs_parse_monolithic_sep+0x2df/0x310
[  321.889485][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.889513][T17918]  ? apparmor_capable+0x137/0x1b0
[  321.889538][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.889572][T17918]  vfs_get_tree+0x92/0x2b0
[  321.889599][T17918]  do_new_mount+0x24a/0xa40
[  321.889637][T17918]  __se_sys_mount+0x317/0x410
[  321.889672][T17918]  ? __pfx___se_sys_mount+0x10/0x10
[  321.889698][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.889735][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.889762][T17918]  ? __x64_sys_mount+0x20/0xc0
[  321.889795][T17918]  do_syscall_64+0xfa/0x3b0
[  321.889817][T17918]  ? lockdep_hardirqs_on+0x9c/0x150
[  321.889854][T17918]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.889878][T17918]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.889907][T17918]  ? exc_page_fault+0x9f/0xf0
[  321.889946][T17918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.889970][T17918] RIP: 0033:0x7f3311f900ca
[  321.889991][T17918] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.890012][T17918] RSP: 002b:00007f3312e36e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  321.890038][T17918] RAX: ffffffffffffffda RBX: 00007f3312e36ef0 RCX: 00007f3311f900ca
[  321.890057][T17918] RDX: 00002000000000c0 RSI: 0000200000000000 RDI: 00007f3312e36eb0
[  321.890075][T17918] RBP: 00002000000000c0 R08: 00007f3312e36ef0 R09: 0000000000010400
[  321.890092][T17918] R10: 0000000000010400 R11: 0000000000000246 R12: 0000200000000000
[  321.890109][T17918] R13: 00007f3312e36eb0 R14: 0000000000005930 R15: 00002000000002c0
[  321.890146][T17918]  </TASK>
[  322.454890][T18009] loop8: detected capacity change from 0 to 32768
[  322.491091][T17918] Mem-Info:
[  322.494715][T17918] active_anon:16555 inactive_anon:0 isolated_anon:0
[  322.494715][T17918]  active_file:11439 inactive_file:40334 isolated_file:0
[  322.494715][T17918]  unevictable:768 dirty:385 writeback:0
[  322.494715][T17918]  slab_reclaimable:11101 slab_unreclaimable:105755
[  322.494715][T17918]  mapped:35507 shmem:9878 pagetables:1688
[  322.494715][T17918]  sec_pagetables:0 bounce:0
[  322.494715][T17918]  kernel_misc_reclaimable:0
[  322.494715][T17918]  free:1283901 free_pcp:12993 free_cma:0
[  322.498585][T18009] ocfs2: Slot 0 on device (7,8) was already allocated to this node!
[  322.540861][T17918] Node 0 active_anon:66220kB inactive_anon:0kB active_file:45728kB inactive_file:161132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:142016kB dirty:1536kB writeback:0kB shmem:37976kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13204kB pagetables:6600kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  322.583377][T17918] Node 1 active_anon:0kB inactive_anon:0kB active_file:28kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:12kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  322.622277][T17918] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  322.652267][T17918] lowmem_reserve[]: 0 2501 2502 2502 2502
[  322.658090][T17918] Node 0 DMA32 free:1219564kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:66268kB inactive_anon:0kB active_file:45728kB inactive_file:159292kB unevictable:1536kB writepending:1536kB present:3129332kB managed:2561028kB mlocked:0kB bounce:0kB free_pcp:34976kB local_pcp:13824kB free_cma:0kB
[  322.695211][T17918] lowmem_reserve[]: 0 0 1 1 1
[  322.700025][T17918] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1840kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  322.729339][T17918] lowmem_reserve[]: 0 0 0 0 0
[  322.734155][T17918] Node 1 Normal free:3900680kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:28kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:17296kB local_pcp:8960kB free_cma:0kB
[  322.765889][T17918] lowmem_reserve[]: 0 0 0 0 0
[  322.770709][T17918] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  322.784670][T17918] Node 0 DMA32: 1359*4kB (UM) 396*8kB (UM) 81*16kB (UM) 116*32kB (UME) 192*64kB (UME) 72*128kB (UME) 60*256kB (UME) 20*512kB (UM) 12*1024kB (UME) 2*2048kB (ME) 279*4096kB (UM) = 1219884kB
[  322.805254][T17918] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  322.817081][T17918] Node 1 Normal: 186*4kB (UME) 40*8kB (UME) 40*16kB (UME) 147*32kB (UE) 44*64kB (UME) 6*128kB (UM) 6*256kB (UME) 2*512kB (M) 3*1024kB (UME) 1*2048kB (E) 948*4096kB (M) = 3900680kB
[  322.836800][T17918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  322.846715][T17918] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  322.857000][T17918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  322.912872][   T30] audit: type=1326 audit(1749914103.609:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.2.2626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3838e929 code=0x7ffc0000
[  323.020008][T18009] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  323.038009][T17918] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  323.059516][   T30] audit: type=1326 audit(1749914103.609:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.2.2626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3838e929 code=0x7ffc0000
[  323.109472][T17918] 61682 total pagecache pages
[  323.114212][T17918] 0 pages in swap cache
[  323.118376][T17918] Free swap  = 124996kB
[  323.122807][T18080] netlink: 'syz.3.2628': attribute type 10 has an invalid length.
[  323.134471][T18084] loop5: detected capacity change from 0 to 128
[  323.157146][T18080] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.166414][T18080] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.199548][T17918] Total swap = 124996kB
[  323.203763][T17918] 2097051 pages RAM
[  323.220231][T18009] (syz.8.2611,18009,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry overrun - offset=0, inode=65, rec_len=1296, name_len=0
[  323.237197][T17918] 0 pages HighMem/MovableOnly
[  323.246781][T17918] 424688 pages reserved
[  323.277114][T17918] 0 pages cma reserved
[  323.285017][T18080] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.292535][T18080] bridge0: port 2(bridge_slave_1) entered forwarding state
[  323.300470][T18080] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.307634][T18080] bridge0: port 1(bridge_slave_0) entered forwarding state
[  323.311420][T18009] (syz.8.2611,18009,0):ocfs2_prepare_dir_for_insert:4294 ERROR: status = -2
[  323.364359][T18009] (syz.8.2611,18009,0):ocfs2_symlink:1876 ERROR: status = -2
[  323.375414][T17918] bcachefs (loop4): error reallocating journal fifo (32768 open entries)
[  323.387860][T18009] (syz.8.2611,18009,0):ocfs2_symlink:2077 ERROR: status = -2
[  323.416323][T18080] team0: Port device bridge0 added
[  323.449251][T17918] bcachefs (loop4): error in recovery: ENOMEM_journal_pin_fifoemergency read only at seq 0
[  323.495541][T17918] bcachefs (loop4): bch2_fs_start(): error starting filesystem ENOMEM_journal_pin_fifo
[  323.559229][T17918] bcachefs (loop4): shutting down
[  323.646799][T16222] ocfs2: Unmounting device (7,8) on (node local)
[  323.689186][T17918] bcachefs (loop4): shutdown complete
[  323.846666][T18108] ieee802154 phy1 wpan1: encryption failed: -22
[  323.950985][T18114] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  324.297005][   T30] audit: type=1400 audit(1749914105.069:65): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AA009F5D15F47DB2D pid=18132 comm="syz.5.2641"
[  324.349829][T18138] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  324.444721][T18142] loop2: detected capacity change from 0 to 64
[  324.919823][ T5831] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  325.110181][ T5831] usb 2-1: Using ep0 maxpacket: 8
[  325.148235][ T5831] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  325.190054][ T5831] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  325.228708][ T5831] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  325.331137][ T5831] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  325.455834][ T5831] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  325.499765][ T5831] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  325.507814][ T5831] usb 2-1: SerialNumber: syz
[  325.557070][T18155] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  325.582031][ T5831] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[  325.654425][ T5831] usb-storage 2-1:1.0: USB Mass Storage device detected
[  325.674091][ T5831] usb-storage 2-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  325.691324][ T5831] scsi host1: usb-storage 2-1:1.0
[  326.369496][T18220] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2659'.
[  326.468184][T18153] syz.5.2645 (18153): drop_caches: 2
[  326.740224][T17918] bcachefs: bch2_fs_get_tree() error: ENOMEM_journal_pin_fifo
[  326.899523][T18192] usb 2-1: reset high-speed USB device number 14 using dummy_hcd
[  327.200036][T18213] loop8: detected capacity change from 0 to 32768
[  327.269756][T18213] ocfs2: Slot 0 on device (7,8) was already allocated to this node!
[  327.359192][T18213] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  327.418905][T18266] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  327.653676][T18213] syz.8.2656 (18213) used greatest stack depth: 19752 bytes left
[  327.738712][ T5903] usb 2-1: USB disconnect, device number 14
[  327.770211][T16222] ocfs2: Unmounting device (7,8) on (node local)
[  327.856399][T18277] loop4: detected capacity change from 0 to 2048
[  327.891693][T18280] gtp0: entered promiscuous mode
[  327.896693][T18280] gtp0: entered allmulticast mode
[  327.929327][T18277] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  328.024583][T18294] loop1: detected capacity change from 0 to 256
[  328.315044][T18294] FAT-fs (loop1): Directory bread(block 64) failed
[  328.331467][T18294] FAT-fs (loop1): Directory bread(block 65) failed
[  328.338105][T18294] FAT-fs (loop1): Directory bread(block 66) failed
[  328.439522][T18294] FAT-fs (loop1): Directory bread(block 67) failed
[  328.492481][T18294] FAT-fs (loop1): Directory bread(block 68) failed
[  328.518194][T18294] FAT-fs (loop1): Directory bread(block 69) failed
[  328.554392][T18294] FAT-fs (loop1): Directory bread(block 70) failed
[  328.602518][T18294] FAT-fs (loop1): Directory bread(block 71) failed
[  328.654961][T18294] FAT-fs (loop1): Directory bread(block 72) failed
[  328.708775][T18294] FAT-fs (loop1): Directory bread(block 73) failed
[  328.724493][   T30] audit: type=1326 audit(1749914109.499:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18334 comm="syz.3.2683" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f392738e929 code=0x0
[  329.208844][T18348] loop2: detected capacity change from 0 to 4096
[  329.246783][T18348] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  330.370138][ T5831] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  330.513396][T18427] loop4: detected capacity change from 0 to 1764
[  330.530648][T18434] loop8: detected capacity change from 0 to 256
[  330.579716][ T5831] usb 6-1: Using ep0 maxpacket: 16
[  330.596602][T18434] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  330.648377][T18427] iso9660: Corrupted directory entry in block 2 of inode 1920
[  330.648500][ T5831] usb 6-1: config 0 has an invalid interface number: 132 but max is 0
[  330.693867][T18434] exFAT-fs (loop8): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  330.698576][ T5831] usb 6-1: config 0 has no interface number 0
[  330.726576][ T5831] usb 6-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  330.747086][ T5831] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  330.791753][ T5831] usb 6-1: Product: syz
[  330.795977][ T5831] usb 6-1: Manufacturer: syz
[  330.845711][ T5831] usb 6-1: SerialNumber: syz
[  330.856578][T18434] exFAT-fs (loop8): valid_size(150994954) is greater than size(10)
[  330.897622][ T5831] usb 6-1: config 0 descriptor??
[  330.921981][ T5831] hub 6-1:0.132: bad descriptor, ignoring hub
[  330.968843][ T5831] hub 6-1:0.132: probe with driver hub failed with error -5
[  331.030994][T18462] mmap: syz.2.2719 (18462): VmData 37482496 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  331.046591][ T5831] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.132/input/input12
[  331.303506][ T5903] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  331.480227][ T5903] usb 4-1: Using ep0 maxpacket: 8
[  331.493418][ T5903] usb 4-1: config 5 has an invalid interface number: 22 but max is 0
[  331.505405][ T5903] usb 4-1: config 5 has no interface number 0
[  331.543280][ T3074] usb 6-1: USB disconnect, device number 11
[  331.549910][ T5903] usb 4-1: config 5 interface 22 altsetting 25 endpoint 0x6 has invalid wMaxPacketSize 0
[  331.609492][ T5903] usb 4-1: config 5 interface 22 has no altsetting 0
[  331.629383][ T5903] usb 4-1: New USB device found, idVendor=0bfd, idProduct=010d, bcdDevice=ba.fa
[  331.655532][ T5903] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.695709][ T5903] usb 4-1: Product: syz
[  331.704488][ T5903] usb 4-1: Manufacturer: syz
[  331.709121][ T5903] usb 4-1: SerialNumber: syz
[  331.992346][ T5903] kvaser_usb 4-1:5.22: error -ENODEV: Cannot get usb endpoint(s)
[  332.036008][ T5903] rndis_host 4-1:5.22: skipping garbage
[  332.075521][ T5903] usb 4-1: bad CDC descriptors
[  332.144185][ T5903] usb 4-1: USB disconnect, device number 11
[  332.205246][T18519] netlink: 'syz.1.2728': attribute type 2 has an invalid length.
[  332.426543][T18528] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  332.523939][T18463] loop4: detected capacity change from 0 to 32768
[  332.557220][T18480] loop8: detected capacity change from 0 to 32768
[  332.602267][T18463] XFS: ikeep mount option is deprecated.
[  332.718963][T18463] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  332.751046][T18480] diRead: diIAGRead returned -5
[  332.782726][T18480] jfs_lookup: iget failed on inum 196612
[  332.873753][ T5902] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  332.943857][T18463] XFS (loop4): Ending clean mount
[  332.996858][T18463] XFS (loop4): Quotacheck needed: Please wait.
[  333.066368][ T5902] usb 6-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  333.109513][ T5902] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.145990][ T5902] usb 6-1: Product: syz
[  333.177524][ T5902] usb 6-1: Manufacturer: syz
[  333.197332][T18463] XFS (loop4): Quotacheck: Done.
[  333.202721][ T5902] usb 6-1: SerialNumber: syz
[  333.294901][ T5902] usb 6-1: config 0 descriptor??
[  333.341287][ T5902] ch341 6-1:0.0: ch341-uart converter detected
[  333.580523][ T5832] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  333.799959][ T5902] usb 6-1: failed to send control message: -71
[  333.807758][ T5902] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  333.911977][ T5902] usb 6-1: USB disconnect, device number 12
[  333.938310][ T5902] ch341 6-1:0.0: device disconnected
[  334.816071][T18651] loop5: detected capacity change from 0 to 2048
[  334.914059][ T5902] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  335.065551][T18678] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2759'.
[  335.099957][ T5902] usb 3-1: Using ep0 maxpacket: 16
[  335.140814][ T5902] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  335.201195][ T5902] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  335.234213][ T5902] usb 3-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice=f4.95
[  335.281884][ T5902] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  335.339507][ T5902] usb 3-1: Product: syz
[  335.343740][ T5902] usb 3-1: Manufacturer: syz
[  335.348350][ T5902] usb 3-1: SerialNumber: syz
[  335.414211][ T5902] usb 3-1: config 0 descriptor??
[  335.461939][T18650] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  335.469248][T18650] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  335.761719][T18650] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  335.801873][T18650] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  335.945631][T18722] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.965691][T18722] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  336.047267][ T5902] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  336.100513][ T5902] asix 3-1:0.0: probe with driver asix failed with error -71
[  336.137348][ T5902] usb 3-1: USB disconnect, device number 14
[  336.534172][T18680] loop4: detected capacity change from 0 to 32768
[  336.600986][T18680] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  336.778068][T18680] XFS (loop4): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  336.811468][ T5831] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  336.820262][   T24] usb 9-1: new low-speed USB device number 2 using dummy_hcd
[  336.860533][T18680] XFS (loop4): Starting recovery (logdev: internal)
[  336.969633][T18680] XFS (loop4): Ending recovery (logdev: internal)
[  337.000847][ T5831] usb 2-1: Using ep0 maxpacket: 32
[  337.008850][   T24] usb 9-1: config 0 has an invalid interface number: 55 but max is 0
[  337.032381][ T5831] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  337.054366][   T24] usb 9-1: config 0 has no interface number 0
[  337.068785][   T24] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  337.086563][ T5831] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  337.119780][   T24] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  337.130940][ T5831] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  337.159613][   T24] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  337.185430][ T5831] usb 2-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  337.205455][   T24] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  337.218431][ T5831] usb 2-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  337.232292][ T5832] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  337.267426][ T5831] usb 2-1: Product: syz
[  337.272142][   T24] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  337.305884][ T5831] usb 2-1: Manufacturer: syz
[  337.322058][ T5831] usb 2-1: SerialNumber: syz
[  337.328654][   T24] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  337.375352][ T5831] input: appletouch as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input13
[  337.389498][   T24] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  337.449526][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.532322][   T24] usb 9-1: config 0 descriptor??
[  337.558285][T18758] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22
[  337.634686][   T24] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  337.737706][ T5902] usb 2-1: USB disconnect, device number 15
[  337.873760][T18758] ldusb 9-1:0.55: Couldn't submit interrupt_in_urb -90
[  337.906873][   T24] usb 9-1: USB disconnect, device number 2
[  337.932111][   T24] ldusb 9-1:0.55: LD USB Device #0 now disconnected
[  338.005972][ T5902] appletouch 2-1:1.0: input: appletouch disconnected
[  338.666505][T18801] loop2: detected capacity change from 0 to 32768
[  338.734886][T18801] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  338.805261][T18889] loop5: detected capacity change from 0 to 256
[  338.813991][T18801] XFS (loop2): Ending clean mount
[  338.830877][T18801] XFS (loop2): Quotacheck needed: Please wait.
[  338.838819][T18882] loop4: detected capacity change from 0 to 1764
[  338.851093][T18873] loop1: detected capacity change from 0 to 4096
[  338.910951][T18873] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  338.944782][T18882] iso9660: Corrupted directory entry in block 2 of inode 1920
[  338.982736][T18801] XFS (loop2): Quotacheck: Done.
[  339.116349][T18873] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  339.305099][ T5841] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  339.555914][T18917] loop5: detected capacity change from 0 to 2048
[  339.636089][T18925] netlink: 'syz.8.2812': attribute type 1 has an invalid length.
[  339.693364][T18917] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  339.797233][   T30] audit: type=1800 audit(1749914120.569:67): pid=18917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2808" name="bus" dev="loop5" ino=1367 res=0 errno=0
[  340.018140][T18944] loop1: detected capacity change from 0 to 256
[  340.061365][T18944] exfat: Deprecated parameter 'namecase'
[  340.231006][T18944] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  340.673697][T18972] loop3: detected capacity change from 0 to 2048
[  340.751417][T18972] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  340.764135][T18983] loop1: detected capacity change from 0 to 256
[  340.960489][T18983] FAT-fs (loop1): Directory bread(block 64) failed
[  340.967086][T18983] FAT-fs (loop1): Directory bread(block 65) failed
[  341.049842][T18983] FAT-fs (loop1): Directory bread(block 66) failed
[  341.099647][T18983] FAT-fs (loop1): Directory bread(block 67) failed
[  341.106604][T18983] FAT-fs (loop1): Directory bread(block 68) failed
[  341.142356][T19005] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2830'.
[  341.169728][T18983] FAT-fs (loop1): Directory bread(block 69) failed
[  341.190079][T19005] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2830'.
[  341.202350][T18983] FAT-fs (loop1): Directory bread(block 70) failed
[  341.208610][ T5839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.208885][T18983] FAT-fs (loop1): Directory bread(block 71) failed
[  341.233017][T19005] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2830'.
[  341.284196][T18983] FAT-fs (loop1): Directory bread(block 72) failed
[  341.324224][T18983] FAT-fs (loop1): Directory bread(block 73) failed
[  341.527735][T19020] netlink: 9 bytes leftover after parsing attributes in process `syz.3.2832'.
[  341.584830][T19020] gretap0: entered promiscuous mode
[  341.600137][ T5902] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  341.815287][ T5902] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  341.858064][T19033] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2837'.
[  341.872760][ T5902] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  341.922346][ T5902] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  341.976426][ T5902] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 0
[  342.024005][ T5902] usb 6-1: New USB device found, idVendor=04e6, idProduct=5591, bcdDevice=b5.39
[  342.054054][ T5902] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.079894][ T5902] usb 6-1: Product: syz
[  342.084108][ T5902] usb 6-1: Manufacturer: syz
[  342.109331][T18998] loop4: detected capacity change from 0 to 32768
[  342.129669][ T5902] usb 6-1: SerialNumber: syz
[  342.151861][T18998] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2828 (18998)
[  342.165820][ T5902] usb 6-1: config 0 descriptor??
[  342.246104][ T5902] usb 6-1: NFC: Unable to get FW version
[  342.256973][T18998] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  342.276962][ T5902] pn533_usb 6-1:0.0: probe with driver pn533_usb failed with error -90
[  342.306202][T18998] BTRFS info (device loop4): using sha256 (sha256-x86_64) checksum algorithm
[  342.425006][T18998] BTRFS info (device loop4): using free-space-tree
[  342.460520][ T5902] usb 6-1: USB disconnect, device number 13
[  342.588227][T19090] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2844'.
[  342.670426][T19090] A link change request failed with some changes committed already. Interface veth0_macvtap may have been left with an inconsistent configuration, please check.
[  342.980528][ T5832] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  343.038001][T19109] ieee802154 phy1 wpan1: encryption failed: -22
[  343.133171][T19115] netlink: 140 bytes leftover after parsing attributes in process `syz.8.2850'.
[  343.342886][T19121] netlink: 248 bytes leftover after parsing attributes in process `syz.1.2853'.
[  343.688886][T19150] loop4: detected capacity change from 0 to 16
[  343.721359][ T5902] usb 3-1: new low-speed USB device number 15 using dummy_hcd
[  343.764692][T19150] erofs (device loop4): mounted with root inode @ nid 36.
[  343.922249][ T5902] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  343.963366][ T5902] usb 3-1: config 0 has no interface number 0
[  343.995034][ T5902] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  344.047953][T19168] netlink: 'syz.5.2860': attribute type 1 has an invalid length.
[  344.057405][ T5902] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  344.089323][T19168] netlink: 228 bytes leftover after parsing attributes in process `syz.5.2860'.
[  344.129585][ T5902] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  344.159134][ T5902] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.183140][T19168] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2860'.
[  344.213704][ T5902] usb 3-1: config 0 descriptor??
[  344.216229][T19184] netlink: 'syz.4.2864': attribute type 1 has an invalid length.
[  344.264508][ T5902] iowarrior 3-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  344.438787][T19246] netlink: 'syz.1.2865': attribute type 24 has an invalid length.
[  344.491297][ T5831] usb 3-1: USB disconnect, device number 15
[  345.235491][T19404] loop1: detected capacity change from 0 to 512
[  345.279836][T19413] netlink: 'syz.3.2876': attribute type 21 has an invalid length.
[  345.312679][T19413] netlink: 'syz.3.2876': attribute type 15 has an invalid length.
[  345.321701][T19404] EXT4-fs: Ignoring removed nomblk_io_submit option
[  345.364938][T19413] IPv6: NLM_F_CREATE should be specified when creating new route
[  345.393847][T19413] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  345.401141][T19413] IPv6: NLM_F_CREATE should be set when creating new route
[  345.408418][T19413] IPv6: NLM_F_CREATE should be set when creating new route
[  345.415765][T19413] IPv6: NLM_F_CREATE should be set when creating new route
[  345.451583][T19404] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.1.2872: corrupted xattr block 95: invalid header
[  345.594851][T19404] EXT4-fs (loop1): Remounting filesystem read-only
[  345.611871][T19404] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  345.659576][T19404] EXT4-fs (loop1): 1 orphan inode deleted
[  345.680837][T19431] loop5: detected capacity change from 0 to 8
[  345.698993][T19404] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.782406][T19431] SQUASHFS error: Failed to read block 0xdfa: -5
[  345.847686][T19431] SQUASHFS error: Unable to read metadata cache entry [dfa]
[  345.885088][T19431] SQUASHFS error: Failed to read block 0x4e8: -5
[  345.930657][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  345.957575][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  345.989799][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.039700][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.048314][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.068061][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.090657][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.152682][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.161126][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.209893][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.241972][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.269697][T19431] SQUASHFS error: Failed to read block 0x4de: -5
[  346.289922][T19431] SQUASHFS error: Failed to read block 0x4e8: -5
[  346.321455][   T30] audit: type=1800 audit(1749914127.099:68): pid=19431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2879" name="file1" dev="loop5" ino=5 res=0 errno=0
[  346.352772][T19461] netlink: 'syz.1.2885': attribute type 13 has an invalid length.
[  346.763709][   T30] audit: type=1326 audit(1749914127.539:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19482 comm="syz.4.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  346.838190][T19491] __nla_validate_parse: 2 callbacks suppressed
[  346.838211][T19491] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2894'.
[  346.897925][   T30] audit: type=1326 audit(1749914127.539:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19482 comm="syz.4.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  347.014534][   T30] audit: type=1326 audit(1749914127.569:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19482 comm="syz.4.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  347.179603][   T30] audit: type=1326 audit(1749914127.569:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19482 comm="syz.4.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  347.274021][T19506] loop3: detected capacity change from 0 to 256
[  347.309542][   T30] audit: type=1326 audit(1749914127.569:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19482 comm="syz.4.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  347.354999][T19506] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00000001)
[  347.356897][T19443] loop2: detected capacity change from 0 to 32768
[  347.438561][T19443] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.2882 (19443)
[  347.569993][T19443] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  347.629702][T19443] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm
[  347.648232][T19443] BTRFS info (device loop2): using free-space-tree
[  347.899715][ T5902] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  347.972008][T19559] loop8: detected capacity change from 0 to 1764
[  348.117444][ T5902] usb 6-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  348.118393][T19559] iso9660: Corrupted directory entry in block 2 of inode 1920
[  348.149541][ T5902] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  348.181925][ T5902] usb 6-1: Product: syz
[  348.186133][ T5902] usb 6-1: Manufacturer: syz
[  348.221133][ T5902] usb 6-1: SerialNumber: syz
[  348.230021][ T5841] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  348.339953][ T5902] r8152-cfgselector 6-1: Unknown version 0x0000
[  348.359469][ T5902] r8152-cfgselector 6-1: config 0 descriptor??
[  348.849544][ T5903] r8152-cfgselector 6-1: USB disconnect, device number 14
[  350.016846][T19648] loop2: detected capacity change from 0 to 4096
[  350.082004][T19648] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  350.323358][T19648] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[  350.695864][T19703] loop8: detected capacity change from 0 to 512
[  350.774963][T19704] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2943'.
[  350.789756][T19700] loop5: detected capacity change from 0 to 1024
[  350.817378][T19703] EXT4-fs error (device loop8): ext4_read_inode_bitmap:139: comm syz.8.2942: Invalid inode bitmap blk 4 in block_group 0
[  350.847413][T19704] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2943'.
[  350.894484][T19703] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.030067][T19703] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters
[  351.129854][T19703] EXT4-fs error (device loop8): ext4_read_inode_bitmap:139: comm syz.8.2942: Invalid inode bitmap blk 4 in block_group 0
[  351.162441][   T49] hfsplus: b-tree write err: -5, ino 4
[  351.257323][T19703] EXT4-fs error (device loop8) in ext4_free_inode:361: Corrupt filesystem
[  351.377354][T19733] netlink: 'syz.5.2950': attribute type 2 has an invalid length.
[  351.486825][T16222] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.974585][T19760] netlink: 'syz.3.2958': attribute type 6 has an invalid length.
[  352.472240][T19716] loop1: detected capacity change from 0 to 32768
[  352.506224][T19716] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2946 (19716)
[  352.597351][T19716] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  352.599172][T19795] loop3: detected capacity change from 0 to 512
[  352.638583][T19786] loop4: detected capacity change from 0 to 4096
[  352.648775][T19716] BTRFS info (device loop1): using sha256 (sha256-x86_64) checksum algorithm
[  352.692657][T19786] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  352.729626][T19716] BTRFS info (device loop1): using free-space-tree
[  352.776591][T19795] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.910729][T19795] ext4 filesystem being mounted at /497/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  352.938973][T19786] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  353.239728][T19837] xt_l2tp: v2 sid > 0xffff: 262144
[  353.397120][ T5839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.526614][T19848] loop5: detected capacity change from 0 to 1024
[  353.532832][ T5837] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  353.624191][T19848] hfsplus: Filesystem is marked locked, mounting read-only.
[  353.721655][T19848] hfsplus: invalid catalog entry type in lookup
[  354.429777][T19890] 9pnet: Found fid 0 not clunked
[  355.362386][T19860] loop4: detected capacity change from 0 to 32768
[  355.385111][T19922] loop5: detected capacity change from 0 to 4096
[  355.457002][T19922] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  355.635747][T19949] loop3: detected capacity change from 0 to 256
[  355.692309][T19922] ntfs3(loop5): ino=19, mi_enum_attr
[  355.805801][T19922] ntfs3(loop5): failed to convert "c46c" to cp1250
[  355.811168][T19949] FAT-fs (loop3): Directory bread(block 64) failed
[  355.834765][T19922] ntfs3(loop5): ino=20, mi_enum_attr
[  355.859769][T19949] FAT-fs (loop3): Directory bread(block 65) failed
[  355.866390][T19949] FAT-fs (loop3): Directory bread(block 66) failed
[  355.919720][T19949] FAT-fs (loop3): Directory bread(block 67) failed
[  355.926757][T19949] FAT-fs (loop3): Directory bread(block 68) failed
[  355.977839][T19949] FAT-fs (loop3): Directory bread(block 69) failed
[  356.011760][T19949] FAT-fs (loop3): Directory bread(block 70) failed
[  356.031016][T19949] FAT-fs (loop3): Directory bread(block 71) failed
[  356.068423][T19949] FAT-fs (loop3): Directory bread(block 72) failed
[  356.090462][T19949] FAT-fs (loop3): Directory bread(block 73) failed
[  356.297324][T19973] netlink: 'syz.5.3009': attribute type 8 has an invalid length.
[  356.402804][T19983] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  356.408154][T19984] netlink: 'syz.1.3011': attribute type 1 has an invalid length.
[  357.033939][T20016] overlayfs: conflicting options: nfs_export=on,metacopy=on
[  357.931328][T20070] loop2: detected capacity change from 0 to 512
[  358.055147][T20075] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3035'.
[  358.056306][T20070] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  358.091207][T20059] loop4: detected capacity change from 0 to 8192
[  358.112213][T20070] ext4 filesystem being mounted at /528/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  358.142763][T20070] Quota error (device loop2): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  358.154739][T20070] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  358.165664][T20070] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.3034: Failed to acquire dquot type 0
[  358.278721][ T5841] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  358.574269][T20097] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  358.709977][T20097] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  358.775109][T20097] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  358.816036][T20097] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  358.850188][T20097] geneve3: entered promiscuous mode
[  358.858407][T20117] loop8: detected capacity change from 0 to 2048
[  358.871820][T20097] geneve3: entered allmulticast mode
[  358.941166][T20117] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  358.957231][T20097] netdevsim netdevsim1 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  359.000456][T20097] netdevsim netdevsim1 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  359.058305][T20097] netdevsim netdevsim1 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  359.073889][T20097] netdevsim netdevsim1 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  359.279819][T20127] netlink: 'syz.4.3048': attribute type 3 has an invalid length.
[  359.318603][T20127] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3048'.
[  359.955922][T20166] netlink: 9280 bytes leftover after parsing attributes in process `syz.5.3057'.
[  360.267013][T20123] loop2: detected capacity change from 0 to 32768
[  360.369015][T20123] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  360.767314][T20123] XFS (loop2): Ending clean mount
[  361.037876][ T5841] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  362.001455][ T5902] usb 6-1: new full-speed USB device number 15 using dummy_hcd
[  362.163493][T20207] loop3: detected capacity change from 0 to 32768
[  362.223192][T20207] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3066 (20207)
[  362.232419][ T5902] usb 6-1: unable to get BOS descriptor or descriptor too short
[  362.271468][ T5902] usb 6-1: not running at top speed; connect to a high speed hub
[  362.288117][T20282] loop4: detected capacity change from 0 to 764
[  362.334680][ T5902] usb 6-1: config 5 has an invalid interface number: 101 but max is 0
[  362.366310][T20207] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  362.369658][ T5902] usb 6-1: config 5 has no interface number 0
[  362.414067][T20207] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  362.429593][ T5902] usb 6-1: config 5 interface 101 has no altsetting 0
[  362.456581][T20207] BTRFS info (device loop3): using free-space-tree
[  362.499795][T20282] ISOFS: Logical zone size(768) < hardware blocksize(1024)
[  362.521130][ T5902] usb 6-1: New USB device found, idVendor=0403, idProduct=e0f7, bcdDevice=78.34
[  362.546050][ T5902] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  362.560183][ T5902] usb 6-1: Product: syz
[  362.564379][ T5902] usb 6-1: Manufacturer: syz
[  362.571698][T20282] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  362.579092][T20282] UDF-fs: Scanning with blocksize 512 failed
[  362.585821][ T5902] usb 6-1: SerialNumber: syz
[  362.607692][T20282] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  362.626078][T20282] UDF-fs: Scanning with blocksize 1024 failed
[  362.652748][T20282] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  362.667783][T20282] UDF-fs: Scanning with blocksize 2048 failed
[  362.710749][T20282] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  362.768588][T20282] UDF-fs: Scanning with blocksize 4096 failed
[  362.782205][T20207] BTRFS info (device loop3): rebuilding free space tree
[  362.821262][ T5902] ftdi_sio 6-1:5.101: FTDI USB Serial Device converter detected
[  362.837726][ T5902] ftdi_sio ttyUSB0: unknown device type: 0x7834
[  362.932924][ T5902] usb 6-1: USB disconnect, device number 15
[  362.974601][T20236] loop8: detected capacity change from 0 to 32768
[  363.019703][T20207] BTRFS info (device loop3): balance: start -f -susage=6,drange=33235..8,limit=64406,limit=64406..0
[  363.027126][T20236] (syz.8.3075,20236,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  363.097943][ T5902] ftdi_sio 6-1:5.101: device disconnected
[  363.121209][T20236] (syz.8.3075,20236,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  363.133074][T20207] BTRFS info (device loop3): balance: ended with status: 0
[  363.300788][T20236] JBD2: Ignoring recovery information on journal
[  363.455344][ T5839] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  363.520485][T20236] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  363.784508][T20348] netlink: 5120 bytes leftover after parsing attributes in process `syz.5.3094'.
[  363.820973][T20274] loop2: detected capacity change from 0 to 32768
[  363.889568][T20274] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.3084 (20274)
[  363.967040][T16222] ocfs2: Unmounting device (7,8) on (node local)
[  364.003260][T20274] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  364.071440][T20274] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  364.123371][T20274] BTRFS info (device loop2): using free-space-tree
[  364.521639][T20393] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  364.815245][ T5841] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  364.983555][T20412] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3108'.
[  365.356734][T20426] loop4: detected capacity change from 0 to 512
[  365.556247][T20426] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.680858][T20426] ext4 filesystem being mounted at /513/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  365.763638][T20426] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.3111: corrupted xattr block 32: bad e_name length
[  365.879119][T20451] netlink: 'syz.5.3117': attribute type 10 has an invalid length.
[  365.906762][T20451] netlink: 156 bytes leftover after parsing attributes in process `syz.5.3117'.
[  365.918893][T20426] EXT4-fs (loop4): Remounting filesystem read-only
[  366.031991][T20454] netlink: 400 bytes leftover after parsing attributes in process `syz.1.3119'.
[  366.096253][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.230256][T20455] loop8: detected capacity change from 0 to 4096
[  366.259636][T20455] ntfs3(loop8): Different NTFS sector size (2048) and media sector size (512).
[  366.296184][T20402] loop3: detected capacity change from 0 to 32768
[  366.383641][T20471] Invalid option length (0) for dns_resolver key
[  366.388974][T20455] ntfs3(loop8): Failed to initialize $Extend/$ObjId.
[  366.523476][T20402] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,read_only,reconstruct_alloc
[  366.523513][T20402]   allowing incompatible features above 0.0: (unknown version)
[  366.523528][T20402]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  366.696099][T20482] netlink: 'syz.4.3125': attribute type 5 has an invalid length.
[  366.706473][T20478] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3124'.
[  366.851622][T20402] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  366.916215][T20402] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  366.956924][T20402] bcachefs (loop3): Version upgrade required:
[  366.956924][T20402] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  366.956924][T20402] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  366.956924][T20402]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  367.030073][    C1] vkms_vblank_simulate: vblank timer overrun
[  367.237573][T20402] bcachefs (loop3): dropping and reconstructing all alloc info
[  367.314768][T20500] netlink: 45 bytes leftover after parsing attributes in process `syz.5.3131'.
[  367.334112][T20402] bcachefs (loop3): accounting_read... done
[  367.369784][T20402] bcachefs (loop3): alloc_read... done
[  367.512086][T20402] bcachefs (loop3): done starting filesystem
[  367.542685][T20508] loop1: detected capacity change from 0 to 512
[  367.574103][T20457] loop2: detected capacity change from 0 to 40427
[  367.631319][T20508] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  367.639964][T20457] F2FS-fs (loop2): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[  367.659987][T20508] ext4 filesystem being mounted at /550/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  367.687033][T20402] bcachefs (loop3): dirent to missing inode:
[  367.687101][T20402]   u64s 7 type dirent 4096:2695648408715017799:U32_MAX len 0 ver 0: file2 -> 536870913 type reg
[  367.837152][T20508] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 107 vs 96 free clusters
[  367.941573][ T5839] bcachefs (loop3): shutting down
[  367.955739][T20508] Quota error (device loop1): write_blk: dquota write failed
[  368.046070][T20508] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  368.109827][T20508] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.3134: Failed to acquire dquot type 0
[  368.152305][ T5839] bcachefs (loop3): shutdown complete
[  368.193287][T20457] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  368.338924][T20537] loop5: detected capacity change from 0 to 2048
[  368.341124][T20484] loop8: detected capacity change from 0 to 40427
[  368.381803][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  368.418540][T20537] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  368.428449][T20484] F2FS-fs (loop8): invalid crc value
[  368.859474][T20484] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  368.929118][T20484] F2FS-fs (loop8): Corrupted max_depth of 3: 1025
[  368.991542][T20484] F2FS-fs (loop8): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  369.239595][T20573] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  369.289668][ T5902] usb 2-1: new full-speed USB device number 16 using dummy_hcd
[  369.497244][ T5902] usb 2-1: config 0 has an invalid interface number: 151 but max is 0
[  369.539453][ T5902] usb 2-1: config 0 has no interface number 0
[  369.565241][ T5902] usb 2-1: New USB device found, idVendor=0499, idProduct=6bb7, bcdDevice=68.2f
[  369.600548][ T5902] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  369.608550][ T5902] usb 2-1: Product: syz
[  369.660328][T20588] loop5: detected capacity change from 0 to 1024
[  369.677783][ T5902] usb 2-1: Manufacturer: syz
[  369.689509][ T5902] usb 2-1: SerialNumber: syz
[  369.718820][ T5902] usb 2-1: config 0 descriptor??
[  370.088388][ T6008] udevd[6008]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.151/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  370.099993][ T5902] usb 2-1: USB disconnect, device number 16
[  370.219933][T20621] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3149'.
[  370.253425][T20623] netlink: 'syz.4.3160': attribute type 1 has an invalid length.
[  370.266716][T20623] netlink: 240 bytes leftover after parsing attributes in process `syz.4.3160'.
[  370.610380][T20636] loop4: detected capacity change from 0 to 1024
[  370.683808][T20582] loop2: detected capacity change from 0 to 32768
[  370.772935][T20582] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  370.868669][T20658] sit0: entered promiscuous mode
[  370.933835][T20658] netlink: 21 bytes leftover after parsing attributes in process `syz.1.3165'.
[  371.047865][T20582] XFS (loop2): Ending clean mount
[  371.104191][T20582] XFS (loop2): Quotacheck needed: Please wait.
[  371.228907][T20582] XFS (loop2): Quotacheck: Done.
[  371.353940][T20684] loop3: detected capacity change from 0 to 256
[  371.459109][T20684] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  371.488905][ T5841] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  371.996347][T20715] loop3: detected capacity change from 0 to 8
[  372.573647][T20750] (unnamed net_device) (uninitialized): option arp_all_targets: invalid value (65535)
[  372.861943][T20768] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3199'.
[  373.293475][T20793] loop8: detected capacity change from 0 to 256
[  373.410447][T20793] FAT-fs (loop8): Directory bread(block 64) failed
[  373.433614][T20801] loop5: detected capacity change from 0 to 256
[  373.458097][T20793] FAT-fs (loop8): Directory bread(block 65) failed
[  373.509776][T20793] FAT-fs (loop8): Directory bread(block 66) failed
[  373.516344][T20793] FAT-fs (loop8): Directory bread(block 67) failed
[  373.592815][T20793] FAT-fs (loop8): Directory bread(block 68) failed
[  373.599394][T20793] FAT-fs (loop8): Directory bread(block 69) failed
[  373.669559][T20793] FAT-fs (loop8): Directory bread(block 70) failed
[  373.701193][T20793] FAT-fs (loop8): Directory bread(block 71) failed
[  373.707872][T20793] FAT-fs (loop8): Directory bread(block 72) failed
[  373.761709][T20793] FAT-fs (loop8): Directory bread(block 73) failed
[  374.076310][T20841] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  374.189988][   T24] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  374.401528][   T24] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  374.424877][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  374.472498][   T24] usb 3-1: config 0 descriptor??
[  374.719727][ T5882] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  374.860374][T20886] loop4: detected capacity change from 0 to 16
[  374.899052][   T24] usb 3-1: Cannot set MAC address
[  374.907342][ T5882] usb 9-1: Using ep0 maxpacket: 32
[  374.924130][   T24] MOSCHIP usb-ethernet driver 3-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  374.936799][T20886] erofs (device loop4): mounted with root inode @ nid 36.
[  374.941260][ T5882] usb 9-1: config 0 interface 0 has no altsetting 0
[  374.999211][ T5882] usb 9-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  375.003129][   T24] usb 3-1: USB disconnect, device number 16
[  375.037983][ T5882] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  375.100989][ T5882] usb 9-1: Product: syz
[  375.111202][ T5882] usb 9-1: Manufacturer: syz
[  375.149773][ T5882] usb 9-1: SerialNumber: syz
[  375.182519][ T5882] usb 9-1: config 0 descriptor??
[  375.240627][ T5882] gs_usb 9-1:0.0: Required endpoints not found
[  375.277631][T20908] openvswitch: netlink: Flow key attr not present in new flow.
[  375.493435][   T24] usb 9-1: USB disconnect, device number 3
[  375.727640][T20865] loop5: detected capacity change from 0 to 32768
[  375.837276][T20939] ntfs3(nullb0): Primary boot signature is not NTFS.
[  375.869094][T20865] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[  375.878086][T20941] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3241'.
[  375.944217][T20939] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  375.951598][T20865] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  376.037168][T20865] ocfs2: Unmounting device (7,5) on (node local)
[  376.513032][   T24] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  376.677503][T20987] loop3: detected capacity change from 0 to 1024
[  376.709577][ T5882] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  376.713773][   T24] usb 9-1: Using ep0 maxpacket: 8
[  376.774939][   T24] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[  376.838541][   T24] usb 9-1: config 0 interface 0 has no altsetting 0
[  376.884901][   T24] usb 9-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  376.914781][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.915819][ T5882] usb 5-1: Using ep0 maxpacket: 8
[  376.953409][T20995] loop5: detected capacity change from 0 to 4096
[  376.954655][   T24] usb 9-1: Product: syz
[  376.977149][   T24] usb 9-1: Manufacturer: syz
[  376.982290][ T5882] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  376.989484][   T24] usb 9-1: SerialNumber: syz
[  377.011069][ T5882] usb 5-1: config 0 has no interface number 0
[  377.019718][   T24] usb 9-1: config 0 descriptor??
[  377.029699][ T5882] usb 5-1: config 0 interface 1 has no altsetting 0
[  377.047706][   T24] snd_usb_toneport 9-1:0.0: Line 6 TonePort UX2 found
[  377.069717][ T5882] usb 5-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.1d
[  377.090418][ T5882] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.098776][ T5882] usb 5-1: Product: syz
[  377.155697][ T5882] usb 5-1: Manufacturer: syz
[  377.186721][ T5882] usb 5-1: SerialNumber: syz
[  377.221599][ T5882] usb 5-1: config 0 descriptor??
[  377.269729][   T24] snd_usb_toneport 9-1:0.0: Line 6 TonePort UX2 now disconnected
[  377.315838][   T24] snd_usb_toneport 9-1:0.0: probe with driver snd_usb_toneport failed with error -22
[  377.412064][   T43] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  377.434884][ T5882] i2c-cp2615 5-1:0.1: probe with driver i2c-cp2615 failed with error -22
[  377.440729][T21028] xt_CT: You must specify a L4 protocol and not use inversions on it
[  377.481445][   T24] usb 9-1: USB disconnect, device number 4
[  377.595129][   T43] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  377.639537][   T43] usb 4-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  377.676549][   T43] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.687037][ T5882] usb 5-1: USB disconnect, device number 10
[  377.763047][   T43] gspca_main: stv0680-2.14.0 probing 041e:4007
[  377.794720][T21049] loop2: detected capacity change from 0 to 1764
[  377.846155][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  378.326922][T21086] cgroup: none used incorrectly
[  378.418876][   T30] audit: type=1326 audit(1749914159.189:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21090 comm="syz.4.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  378.480056][T21094] netlink: 'syz.5.3276': attribute type 303 has an invalid length.
[  378.525785][   T30] audit: type=1326 audit(1749914159.199:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21090 comm="syz.4.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  378.549501][ T5882] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  378.577719][   T30] audit: type=1326 audit(1749914159.209:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21090 comm="syz.4.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  378.600504][   T30] audit: type=1326 audit(1749914159.209:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21090 comm="syz.4.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  378.659021][T21100] netlink: 'syz.1.3277': attribute type 4 has an invalid length.
[  378.666896][T21100] netlink: 17 bytes leftover after parsing attributes in process `syz.1.3277'.
[  378.691034][   T30] audit: type=1326 audit(1749914159.209:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21090 comm="syz.4.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3311f8e929 code=0x7ffc0000
[  378.736774][ T5882] usb 3-1: config index 0 descriptor too short (expected 23569, got 27)
[  378.769603][T21106] netlink: 10 bytes leftover after parsing attributes in process `syz.5.3279'.
[  378.776012][ T5882] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  378.806891][   T43] stv0680 4-1:4.0: STV(e): camera ping failed!!
[  378.811133][ T5882] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  378.824319][ T5882] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  378.833952][ T5882] usb 3-1: Manufacturer: syz
[  378.852390][ T5882] usb 3-1: config 0 descriptor??
[  378.862830][ T5882] igorplugusb 3-1:0.0: endpoint incorrect
[  379.008359][   T43] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  379.049520][   T43] stv0680 4-1:4.0: last error: 0,  command = 0x0
[  379.076081][   T43] usb 4-1: USB disconnect, device number 12
[  379.150562][ T5882] usb 3-1: USB disconnect, device number 17
[  379.426263][T21141] loop4: detected capacity change from 0 to 4096
[  379.510369][T21141] ntfs3(loop4): ino=1a, mi_enum_attr
[  379.510405][T21141] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  379.552439][   T24] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  379.730180][   T24] usb 6-1: Using ep0 maxpacket: 16
[  379.742310][   T24] usb 6-1: New USB device found, idVendor=25c6, idProduct=9002, bcdDevice=62.ba
[  379.742347][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  379.742371][   T24] usb 6-1: Product: syz
[  379.742389][   T24] usb 6-1: Manufacturer: syz
[  379.742407][   T24] usb 6-1: SerialNumber: syz
[  379.745512][   T24] usb 6-1: config 0 descriptor??
[  379.929251][T21109] loop8: detected capacity change from 0 to 32768
[  379.968995][   T24] snd-usb-hiface 6-1:0.0: probe with driver snd-usb-hiface failed with error -22
[  380.170683][ T5882] usb 6-1: USB disconnect, device number 16
[  380.312156][T21109] bcachefs (loop8): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=no,norecovery,recovery_pass_last=check_extents,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  380.312190][T21109]   allowing incompatible features above 0.0: (unknown version)
[  380.312205][T21109]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  380.480255][T21109] bcachefs (loop8): Using encoding defined by superblock: utf8-12.1.0
[  380.529768][T21109] bcachefs (loop8): recovering from clean shutdown, journal seq 10
[  380.586290][T21109] bcachefs (loop8): Version upgrade required:
[  380.586290][T21109] Version upgrade from 0.8: (unknown version) to 1.7: mi_btree_bitmap incomplete
[  380.586290][T21109] Doing incompatible version upgrade from 0.8: (unknown version) to 1.28: inode_has_case_insensitive
[  380.586290][T21109]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  380.760136][T21109] bcachefs (loop8): dropping and reconstructing all alloc info
[  380.876297][T21109] bcachefs (loop8): accounting_read... done
[  380.934147][T21210] loop5: detected capacity change from 0 to 256
[  380.939549][T21109] bcachefs (loop8): alloc_read... done
[  380.946308][T21109] bcachefs (loop8): snapshots_read... done
[  380.976106][T21212] overlayfs: conflicting options: nfs_export=on,index=off
[  380.977984][T21109] bcachefs (loop8): done starting filesystem
[  380.990478][T21210] exfat: Deprecated parameter 'utf8'
[  380.995818][T21210] exfat: Deprecated parameter 'utf8'
[  381.012564][T21210] exfat: Deprecated parameter 'utf8'
[  381.057818][T21210] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[  381.209394][T21221] loop2: detected capacity change from 0 to 1024
[  381.304868][T21221] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[  381.365124][T16222] bcachefs (loop8): shutting down
[  381.510160][T16222] bcachefs (loop8): shutdown complete
[  381.626283][T21228] loop1: detected capacity change from 0 to 4096
[  381.678134][T21228] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  381.821626][T21228] ntfs3(loop1): ino=19, mi_enum_attr
[  381.829665][T21228] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  381.911015][T21228] ntfs3(loop1): failed to convert "c46c" to cp855
[  381.939729][T21228] ntfs3(loop1): ino=20, mi_enum_attr
[  382.296301][T21205] loop4: detected capacity change from 0 to 32768
[  382.384847][T21205] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  382.506528][T21205] XFS (loop4): Ending clean mount
[  382.538391][T21205] XFS (loop4): Quotacheck needed: Please wait.
[  382.717231][T21205] XFS (loop4): Quotacheck: Done.
[  382.858727][T21242] loop3: detected capacity change from 0 to 32768
[  382.887988][T21242] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3309 (21242)
[  382.900999][ T5832] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  382.940765][   T30] audit: type=1326 audit(1749914163.709:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21298 comm="syz.1.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  382.968478][T21242] BTRFS info (device loop3 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  383.001637][T21242] BTRFS info (device loop3 state S): using crc32c (crc32c-x86_64) checksum algorithm
[  383.004515][   T30] audit: type=1326 audit(1749914163.709:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21298 comm="syz.1.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  383.061962][   T30] audit: type=1326 audit(1749914163.759:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21298 comm="syz.1.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  383.084235][    C1] vkms_vblank_simulate: vblank timer overrun
[  383.153871][   T30] audit: type=1326 audit(1749914163.759:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21298 comm="syz.1.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  383.177875][   T30] audit: type=1326 audit(1749914163.759:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21298 comm="syz.1.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3f98e929 code=0x7ffc0000
[  383.200290][    C1] vkms_vblank_simulate: vblank timer overrun
[  383.267097][   T13] BTRFS warning (device loop3 state S): checksum verify failed on logical 1052672 mirror 1 wanted 0x37e030f7 found 0xf6479a7e level 0, ignored
[  383.299269][   T77] BTRFS warning (device loop3 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xbeadaddc level 0, ignored
[  383.436469][   T77] BTRFS warning (device loop3 state S): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x32c165c1 level 0, ignored
[  383.474740][T21330] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3327'.
[  383.528127][   T13] BTRFS warning (device loop3 state S): checksum verify failed on logical 5328896 mirror 1 wanted 0x51ec978b found 0x0bc7de37 level 0, ignored
[  383.644410][T21242] BTRFS error (device loop3 state S): logical 6881280 len 1638400 found bg but no related chunk
[  383.734623][T21337] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow
[  383.876829][T21345] netlink: 'syz.4.3323': attribute type 1 has an invalid length.
[  384.103779][ T5839] BTRFS info (device loop3 state S): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  384.428826][T21370] netlink: 'syz.8.3308': attribute type 1 has an invalid length.
[  384.469202][T21370] netlink: 228 bytes leftover after parsing attributes in process `syz.8.3308'.
[  384.681853][   T43] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  384.859580][   T43] usb 6-1: Using ep0 maxpacket: 32
[  384.879972][ T5903] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  384.905267][   T43] usb 6-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  384.939817][   T43] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  384.959398][T21400] syz.4.3345: attempt to access beyond end of device
[  384.959398][T21400] nbd4: rw=0, sector=6, nr_sectors = 2 limit=0
[  384.991688][   T43] usb 6-1: config 0 descriptor??
[  385.011150][T21400] ADFS-fs (nbd4): error: unable to read block 3, try 0
[  385.022904][   T43] gspca_main: sunplus-2.14.0 probing 041e:400b
[  385.073195][ T5903] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[  385.121179][ T5903] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  385.148349][T21408] loop8: detected capacity change from 0 to 1024
[  385.164265][ T5903] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[  385.243312][ T5903] usb 2-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  385.276898][ T5903] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.334035][ T5903] usb 2-1: Product: syz
[  385.359507][ T5903] usb 2-1: Manufacturer: syz
[  385.364139][ T5903] usb 2-1: SerialNumber: syz
[  385.388297][T21417] No such timeout policy "syz0"
[  385.395020][ T5959] hfsplus: b-tree write err: -5, ino 4
[  385.406781][   T43] gspca_sunplus: reg_w_riv err -71
[  385.410244][ T5903] usb 2-1: config 0 descriptor??
[  385.429549][   T43] sunplus 6-1:0.0: probe with driver sunplus failed with error -71
[  385.471716][   T43] usb 6-1: USB disconnect, device number 17
[  385.670292][T21437] loop8: detected capacity change from 0 to 256
[  385.722570][T21437] exfat: Deprecated parameter 'utf8'
[  385.800171][T21443] loop7: detected capacity change from 256 to 0
[  385.823950][T21437] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  385.832550][T21443] 
[  385.838273][T21443] ======================================================
[  385.845289][T21443] WARNING: possible circular locking dependency detected
[  385.852322][T21443] 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 Not tainted
[  385.859439][T21443] ------------------------------------------------------
[  385.866460][T21443] syz.4.3353/21443 is trying to acquire lock:
[  385.872522][T21443] ffffffff8f87a3e8 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_net_broadcast+0x27e/0x560
[  385.883070][T21443] 
[  385.883070][T21443] but task is already holding lock:
[  385.890423][T21443] ffff888142b26278 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: loop_set_status+0x227/0xaf0
[  385.900633][T21443] 
[  385.900633][T21443] which lock already depends on the new lock.
[  385.900633][T21443] 
[  385.911023][T21443] 
[  385.911023][T21443] the existing dependency chain (in reverse order) is:
[  385.920022][T21443] 
[  385.920022][T21443] -> #2 (&q->q_usage_counter(io)#24){++++}-{0:0}:
[  385.928638][T21443]        lock_acquire+0x120/0x360
[  385.933756][T21443]        blk_alloc_queue+0x538/0x620
[  385.939042][T21443]        __blk_mq_alloc_disk+0x162/0x340
[  385.944678][T21443]        loop_add+0x41b/0xad0
[  385.949356][T21443]        loop_init+0x173/0x230
[  385.954121][T21443]        do_one_initcall+0x236/0x820
[  385.959401][T21443]        do_initcall_level+0x137/0x1f0
[  385.964863][T21443]        do_initcalls+0x69/0xd0
[  385.969713][T21443]        kernel_init_freeable+0x3d9/0x570
[  385.975428][T21443]        kernel_init+0x1d/0x1d0
[  385.980275][T21443]        ret_from_fork+0x3fc/0x770
[  385.985396][T21443]        ret_from_fork_asm+0x1a/0x30
[  385.990683][T21443] 
[  385.990683][T21443] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  385.997903][T21443]        lock_acquire+0x120/0x360
[  386.002939][T21443]        fs_reclaim_acquire+0x72/0x100
[  386.008404][T21443]        kmem_cache_alloc_node_noprof+0x47/0x3c0
[  386.014726][T21443]        __alloc_skb+0x112/0x2d0
[  386.019671][T21443]        alloc_uevent_skb+0x7d/0x230
[  386.024952][T21443]        kobject_uevent_net_broadcast+0x2fa/0x560
[  386.031372][T21443]        kobject_uevent_env+0x55b/0x8c0
[  386.036915][T21443]        kobject_synth_uevent+0x527/0xb00
[  386.042631][T21443]        bus_uevent_store+0x115/0x170
[  386.047998][T21443]        kernfs_fop_write_iter+0x378/0x4f0
[  386.053811][T21443]        vfs_write+0x54b/0xa90
[  386.058589][T21443]        ksys_write+0x145/0x250
[  386.063438][T21443]        do_syscall_64+0xfa/0x3b0
[  386.068456][T21443]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.074892][T21443] 
[  386.074892][T21443] -> #0 (uevent_sock_mutex){+.+.}-{4:4}:
[  386.082724][T21443]        validate_chain+0xb9b/0x2140
[  386.088002][T21443]        __lock_acquire+0xab9/0xd20
[  386.093201][T21443]        lock_acquire+0x120/0x360
[  386.098225][T21443]        __mutex_lock+0x182/0xe80
[  386.103240][T21443]        kobject_uevent_net_broadcast+0x27e/0x560
[  386.109654][T21443]        kobject_uevent_env+0x55b/0x8c0
[  386.115197][T21443]        loop_set_status+0x4d3/0xaf0
[  386.120486][T21443]        lo_ioctl+0xa5e/0x2410
[  386.125248][T21443]        blkdev_ioctl+0x5a8/0x6d0
[  386.130282][T21443]        __se_sys_ioctl+0xfc/0x170
[  386.135401][T21443]        do_syscall_64+0xfa/0x3b0
[  386.140422][T21443]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.146837][T21443] 
[  386.146837][T21443] other info that might help us debug this:
[  386.146837][T21443] 
[  386.157057][T21443] Chain exists of:
[  386.157057][T21443]   uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#24
[  386.157057][T21443] 
[  386.170825][T21443]  Possible unsafe locking scenario:
[  386.170825][T21443] 
[  386.178267][T21443]        CPU0                    CPU1
[  386.183625][T21443]        ----                    ----
[  386.188984][T21443]   lock(&q->q_usage_counter(io)#24);
[  386.194373][T21443]                                lock(fs_reclaim);
[  386.200879][T21443]                                lock(&q->q_usage_counter(io)#24);
[  386.208783][T21443]   lock(uevent_sock_mutex);
[  386.213375][T21443] 
[  386.213375][T21443]  *** DEADLOCK ***
[  386.213375][T21443] 
[  386.221508][T21443] 3 locks held by syz.4.3353/21443:
[  386.226697][T21443]  #0: ffff888024c91400 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2c/0xaf0
[  386.236126][T21443]  #1: ffff888142b26278 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: loop_set_status+0x227/0xaf0
[  386.246781][T21443]  #2: ffff888142b262b0 (&q->q_usage_counter(queue)#21){+.+.}-{0:0}, at: loop_set_status+0x227/0xaf0
[  386.257696][T21443] 
[  386.257696][T21443] stack backtrace:
[  386.263574][T21443] CPU: 0 UID: 0 PID: 21443 Comm: syz.4.3353 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[  386.263601][T21443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  386.263614][T21443] Call Trace:
[  386.263622][T21443]  <TASK>
[  386.263631][T21443]  dump_stack_lvl+0x189/0x250
[  386.263670][T21443]  ? __pfx_dump_stack_lvl+0x10/0x10
[  386.263704][T21443]  ? __pfx__printk+0x10/0x10
[  386.263728][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.263756][T21443]  ? print_lock_name+0xde/0x100
[  386.263779][T21443]  print_circular_bug+0x2ee/0x310
[  386.263803][T21443]  check_noncircular+0x134/0x160
[  386.263828][T21443]  validate_chain+0xb9b/0x2140
[  386.263857][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.263884][T21443]  __lock_acquire+0xab9/0xd20
[  386.263918][T21443]  ? kobject_uevent_net_broadcast+0x27e/0x560
[  386.263944][T21443]  lock_acquire+0x120/0x360
[  386.263972][T21443]  ? kobject_uevent_net_broadcast+0x27e/0x560
[  386.264005][T21443]  __mutex_lock+0x182/0xe80
[  386.264024][T21443]  ? kobject_uevent_net_broadcast+0x27e/0x560
[  386.264049][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264074][T21443]  ? vsnprintf+0xe11/0xf00
[  386.264102][T21443]  ? kobject_uevent_net_broadcast+0x27e/0x560
[  386.264129][T21443]  ? __pfx___mutex_lock+0x10/0x10
[  386.264146][T21443]  ? add_uevent_var+0x278/0x450
[  386.264173][T21443]  ? kobject_uevent_env+0x50a/0x8c0
[  386.264197][T21443]  ? __pfx_add_uevent_var+0x10/0x10
[  386.264222][T21443]  kobject_uevent_net_broadcast+0x27e/0x560
[  386.264251][T21443]  kobject_uevent_env+0x55b/0x8c0
[  386.264279][T21443]  loop_set_status+0x4d3/0xaf0
[  386.264315][T21443]  lo_ioctl+0xa5e/0x2410
[  386.264348][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264373][T21443]  ? stack_trace_save+0x9c/0xe0
[  386.264398][T21443]  ? __pfx_lo_ioctl+0x10/0x10
[  386.264423][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264450][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264474][T21443]  ? __lock_acquire+0xab9/0xd20
[  386.264509][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264536][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264566][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264591][T21443]  ? __lock_acquire+0xab9/0xd20
[  386.264624][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264648][T21443]  ? __lock_acquire+0xab9/0xd20
[  386.264681][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264708][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264733][T21443]  ? __lock_acquire+0xab9/0xd20
[  386.264765][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264792][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264817][T21443]  ? __lock_acquire+0xab9/0xd20
[  386.264855][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264881][T21443]  ? is_bpf_text_address+0x26/0x2b0
[  386.264917][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.264941][T21443]  ? is_bpf_text_address+0x292/0x2b0
[  386.264974][T21443]  ? is_bpf_text_address+0x26/0x2b0
[  386.265009][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265033][T21443]  ? kernel_text_address+0xa5/0xe0
[  386.265061][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265089][T21443]  ? __kernel_text_address+0xd/0x40
[  386.265116][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265140][T21443]  ? unwind_get_return_address+0x4d/0x90
[  386.265175][T21443]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  386.265198][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265223][T21443]  ? arch_stack_walk+0xfc/0x150
[  386.265248][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265272][T21443]  ? stack_trace_save+0x9c/0xe0
[  386.265302][T21443]  ? kasan_save_track+0x4f/0x80
[  386.265334][T21443]  ? kasan_save_track+0x3e/0x80
[  386.265369][T21443]  ? kasan_save_free_info+0x46/0x50
[  386.265396][T21443]  ? __kasan_slab_free+0x62/0x70
[  386.265414][T21443]  ? kfree+0x18e/0x440
[  386.265445][T21443]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  386.265470][T21443]  ? security_file_ioctl+0xcb/0x2d0
[  386.265492][T21443]  ? __se_sys_ioctl+0x47/0x170
[  386.265523][T21443]  ? do_syscall_64+0xfa/0x3b0
[  386.265554][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265578][T21443]  ? do_vfs_ioctl+0xf37/0x1990
[  386.265612][T21443]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  386.265647][T21443]  ? kasan_quarantine_put+0xdd/0x220
[  386.265679][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265707][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265732][T21443]  ? blkdev_common_ioctl+0xfc3/0x2450
[  386.265764][T21443]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  386.265790][T21443]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  386.265815][T21443]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  386.265846][T21443]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[  386.265869][T21443]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  386.265895][T21443]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  386.265928][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.265954][T21443]  ? __lock_acquire+0xab9/0xd20
[  386.265992][T21443]  ? __pfx_lo_ioctl+0x10/0x10
[  386.266018][T21443]  blkdev_ioctl+0x5a8/0x6d0
[  386.266050][T21443]  ? __pfx_blkdev_ioctl+0x10/0x10
[  386.266080][T21443]  ? __fget_files+0x2a/0x420
[  386.266105][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.266129][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.266154][T21443]  ? __pfx_blkdev_ioctl+0x10/0x10
[  386.266185][T21443]  __se_sys_ioctl+0xfc/0x170
[  386.266218][T21443]  do_syscall_64+0xfa/0x3b0
[  386.266237][T21443]  ? lockdep_hardirqs_on+0x9c/0x150
[  386.266269][T21443]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.266289][T21443]  ? srso_alias_return_thunk+0x5/0xfbef5
[  386.266313][T21443]  ? exc_page_fault+0x9f/0xf0
[  386.266349][T21443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.266370][T21443] RIP: 0033:0x7f3311f8e929
[  386.266388][T21443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  386.266406][T21443] RSP: 002b:00007f3312e37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  386.266427][T21443] RAX: ffffffffffffffda RBX: 00007f33121b5fa0 RCX: 00007f3311f8e929
[  386.266443][T21443] RDX: 00002000000001c0 RSI: 0000000000004c02 RDI: 0000000000000003
[  386.266457][T21443] RBP: 00007f3312010b39 R08: 0000000000000000 R09: 0000000000000000
[  386.266471][T21443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  386.266484][T21443] R13: 0000000000000000 R14: 00007f33121b5fa0 R15: 00007fffc1057cc8
[  386.266507][T21443]  </TASK>
[  395.759587][ T5903] iguanair 2-1:0.0: failed to get version
[  395.765707][ T5903] iguanair 2-1:0.0: probe with driver iguanair failed with error -110
[  395.776348][ T5903] usb 2-1: USB disconnect, device number 17