last executing test programs:

2m33.792955405s ago: executing program 4 (id=2244):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x34, 0x16, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x8, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x4}]}]}], {0x14, 0x10}}, 0xbc}}, 0x0)

2m33.488903298s ago: executing program 4 (id=2247):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000240)={0x0, {0x2, 0x4e22, @private=0xa010101}, {0x2, 0x4e24, @broadcast}, {0x2, 0x4e23, @loopback}, 0x1b9, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x3, 0x7})

2m33.222748837s ago: executing program 4 (id=2251):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000001700)="f2"})

2m33.006128965s ago: executing program 4 (id=2255):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x19, 0xf, &(0x7f0000000080)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0xba}}}, &(0x7f0000001a00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2m32.62879454s ago: executing program 4 (id=2261):
syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="005901e3fd18fb9c322293c67dcde48bfeffd1843c336e09b34af65ad26aafded7da5cfeeda2b8d8d900c2195f00f646f699eeb47813177405a6a6baf786c0d14f2079a9efa9db8973bcca25eb2973856c6760a483c41d0980c78a4cb096a5affa6b980600000000000000a1eacd2c820176737d4eb55dca564820dd769d8742f6d9ab243775a67afcdf845f978e95365cdf6f30aa43423b381881433e00ccbe6353b21300d8f0ca972589398eef9487db78486fcf174990c488031f8b39cc01bb509f3ea4bcde33d4c9e305ecb4dd88204c5d7bb5e469cabfda0feca3ce70c0acbc34d13e5a5c796eab23abfe3b717834f8e9d7120e1e925c4e210b4152c75210b3e979fbe8ddf23eef2d53733209b22206e0a4afc354c33d7ca2a00116a14d686e4aa86b6ec6a4130178c3ad8c723c0d8506bd7bff780000000000000000004b2ec61cfde813cc124715aaaf5508b93d8cf0860042108b660b74f94b1e4851eeec09fdb7a617eabeeeff8ce8bb99f4b1f9c2896cf31e19c3c24155b0ea7dc3cae1b56acb1946830cad94af3f1caf43ea03b38fc08a7e19480e283a4c0d", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="eae535d4c5cd41b584d3bdb8d3fb3e37666220165c8aec9c235bc9af137d4058a50551a5b228bbbcf6cd1275ef3732adfeaebdf711988cbe9d1da671f8bbaac371392e227f548006163fc9aaf3d55e97410ccacb7df3444c03ac4170da3fbc69ae1c8a590318a7a33a774debbcc54bb6d6025bc65458b94791d5a8bcd898b75cce569e2c6fd55928c5084aab22c8196fb436916cff76302fd8c4b69ca674271f5db630ffad103ad9286287759d0d5470d0b54f701a713e8803665b87799065f31bb0cff21d9c109c1fbfffb640facdacd569f158f694c34ffb4c405b186aa90e8be7b47c56e6e439ae953605d89c131c711ff56f0adb96e5ee0d269b4cfc9d089794f60bdd06e845b5ffdccfefee032ecfd92f6cba5920130f685e807f88de4a2e595ea37f39a92dcbaeb2de15dab62a5a199d4666578eb1707e88ebb0b98140fdb62d60005fd6721f18a2054b2ba2ed308813164f8dbc7e1d26a11a707adc6978a25cca2fca5d62e51794447f656b92f8372ebf98934a0bc057b901080da81ef02ccfa18a29c9b82c90fd38eb554b83428948f3608cd8fd5845bed25a0d96b146f09bd4cce20efc1ecc7bf64bd88e7a460b372a298cb776eb1d78cc334da71dc6056b2d1119cdad3af9092a42c184e9d487076399f0be65a442fdc06901089e6b5178ecb57aa4b98ff1f538696e8510551dbb5cbd36b125efa2a3e719f22b96eeec80a178dae9c894a7dd170419c33817baedfc132cde868a1c55192b9c8a332772fc40fed9f6fee1aea0e2001752caeb58afb55ea7c421cd0eb5e6ea301f8e2f6b68484849f5d3e7bd1b4aa865d2cd049dfc773bb4281f5f8dd2a3f1563c8cd3655dd9e391424151dadf7415afb242cb99b9b9541b6780beafc6a8c2c0bd109749dde1e8535040d8d2cda8393abaa6cdae24e13917e867d6d301f6f39619bcbd70acc747e093ef3c22f0b1a8b8a4d8bd11bc19c7102e11a8603d563507423c96d1653a42d02ff1ee390934927f037d2022cbbf86cb605e82e2b6e2c2fa1d523f72b47738f318836defed1f898271bdd4fcbe7863e5aa7c7e468d9bad908de3c6851c696df710da87771840f46e63fc4c3d5d9b13b663ed2fef2e56a8690cdee9e6ac0a9824c9fe458ad29614f9485f9c18caf2d5c229f24a220ab84daa26ddb2a0d4059b43e073b703148d82fe4d91ae24db7224df2ee4e10d596846466d6a62faa9da7d24f9dd1e3b5cc291f4840b6603d1173204a452a9b05a5efcf4f9e09c2a3c38f2fd49322e718ddc8278ea182a359043387705c0be61be7e62ba7bb85dfa0f24400f89087f78d84d2296844944d186fb55045eb016dd3d602c85211d7b19dbebe3247313283da5bcbba09a3a74c590fdce8cdbef49a73b11413a9df4aaefc356e94f838cef801ba2380d7e5fdc8865140311f071c82bc1482c2033b8ad70d08a5a71e1c949f93cd8743b0bd4eefdaf45f5246efcf800444c8e9b8c2a01b76b6eb4e0639ee7381971172c53e165f14946fb56896e40424a3b981d97b4b01504806d797bb9e3405a7326d2ba7bfa6efc923c4c68d0165aea2d80ae953c7e2ec6534d0da7c28bbe255d81097e84254ff7bd065caa84fa7455885e1b28ab7d6243d0f02903860049935a764ebfe5384bdf9ae0b71f1641e457780da2071a84937dd88d2e4aec7ddaab66e335887f555a724ad9692ee996521ccaa35e2358aea1ab6a8c9845af8af552520fdec7ecb635d230074aa532c3efe6677c79b1328451a779501eccb4c11750744cfce16ba2ced0fc6dd2b75a5ff1770f3851c93bcf8850adf496012d94b8dd6a00d1f9f0c96989979b89838a29875072e0b678a2a55338f21625165c350134d7cb9119ac4dcc77f13a153fe6819d1bdc6b357e93531a68813913daf65d2e62d4bd09da6bb16e8d686518f6faff70dc0804b4b6810117d8698a4d27f0482f9adf9be3aae179dbcad90ab1fbd6b1ba15cdc78ee7686bd15a8fe1cf5af00fcc0a6981a77ac5c3485518921a1b4ea90b02e0059c2c71850d517bddc12bd61a5571da765a34b53e5f06a2b8bb122bf9d642f1ad50a0eb7afe34ef6fd2474d25f314adbf276a895b80b8de6e31eaee5fe4544f4709bf6416f26ec52d517dd3a350cb68df6791dc671495e0f056de8b158095b32ec8b43f65b1f3110cf7da37d2383e99a5bd9a0e0d5684a5b15246170bd11909ef22ee740aa5556dbc0f9dacc8ce440c137bf0ec673651067ef1146004701376116986c49b10226141bea12f679c3f53eaea945b1bb92e6c922a85a2221f768ff4f1c188dc82f9e8d947e140f43c4950430f88a47fb15dcd8ef8491ff08d7b287b280eab99e44a7fba6d4fe20fcb2c2cfa1a6f4d59b51755e66a3d9a325a08a286185c2bdac8c8c2910ed3ff8e047f28b2bf1827e0829f8ec8459241300583f1880c96b2e405b253af5f7e9ee91e34c3fa2cd5c53a71bc3b4b1a5741c17a7b73c8e7d3e8ec9e51a90772b8eb38f23fcb9e07eff8b0f68d4f7d4d68bfb8fbc8d90be681166fe5ed220e3a425c65c0e678e8b7470a99d7fccc7a3be07189ee02e1f8c81549b0b8c0113ef602d10d5d2429e8b60fa5aaddd55cb86141609bae35c185c5ad743d0fb0a1244ba6d67755e46073f3d428926c0d9033f8180120deab78a4b42664e36b6723039457195bff897760ede28bf2661a95715dd20bc744ae2a06bcb12ef8b7a373f3a5557f20256446ba95d45b7810d68494f954d1802aa8986279adc368c2365168c0619bc8952ec6ac60840d9968302edb8809d36f6b0c83dc6941193fb8eb2adcef36db70cbe51fd533ee108eaedebc05ab363058feecfb51e294419695019d0ba50a660ecbe3fd1b43ac973141b7e4c423c062f63ad24468ca79740502716b10a823821429d53f34409cc0757587a5de21663c33a8b194c988a3c209cec76b9fc18805649d9cc109635271c968972f4328e561b562ad6c32a71b269718a303ae3635e5b06717152817a11589d3efa0f803d7bb560c08132827333ada867d1a870e2feb3a5e7851363fc333bb681018764aab63eb740978994f62ec3147d4d6a40e099ada0c50c1a5f6a8196549be226508055aef349c76af40596f6c9b7217423628bb6dc07d9382f6d4c87c962ec97bee6384ba3e2522b76ee8619093500a75bcc8fd0fb9bb5093650ec0ca9c867a22260e2668ecf46047e3df87f5d82d992a558e45fb852be616c030edf6aeeae70848403dc1166e6a16776e8660f90449f297224f667563850480f259f6a59039b1a3ea5488971b5e4bcbf380c527c937055dbf4f5a676bacc09f4dde33c50a1286f6024980df1064a9dc4b3f101b129fa1fc141e54f52d4b7322a0cb1c2567205016f5ede0794122fcaa2d11fa77f5fddb3a5f3c7b3d85f0cb6f32cd11d752f755687fb8d93d40711a4c8873ec7c794f0f781bb9c10f9df22fa8f40cca06a48c37e66ea4480fcdd686526be62915ebe36e0bdf7dafd3940f698469ecdc792ca6105a37499a19382247a85bb734e4ba325dd307be8444b5860f99f9dbc7aa28c26747c89041bde3c10c459406786e10792078a52f4bcc32aff61b3f5798cb5dc2927f260f70a41d8e5fc38498b02d0053a86ae408d2efdc1aca9a8508ef9128dfd1fc6a92ba72f940ee469a3111e2cf6c28e77e5a206db6f09139db812fa4e4cfe33c8d184e4763bd8e54e0e473346215b8905d101463dd2ca855747c81c7ffd6c2625e0b59273a9516ec96a5cd8d9078c974980a16b6b87563986ba287821cd41f417792e42dd24e796e313b9cd943f1b9dd6ee35676ff4ad46dbd52db83abbc78f5dad11b6e7bd09a4ace8c246d0a52c36dcb1f0c6025f6ed2868f4b918b6e4e645c63689b7e7bc369dbe44725993b3b43f4572a7136b6e610adc161f45fc307c0937f2338ebc4fd571852b229b80ccd071e1a29c927f88b8b45efa503691758125d29463e742e2ef508babf30ae39ff8bb3a94cfee379f84348c002fdef77b410bee9f47f8119388b3fc159b409b9d9c9af97a4b75c38ca5fc0665cd975df293370de64714cefdd470c1d05a5d3e0f257182889d7a2d797ebf42d6935d1c6b5ef8cd1e2783cef3a316dbd4768510f26ee5b1c481bcac3e1608458d4b5ec6411cb3c921a131140440561931ca51b92231de91d1f950d992eec74c6500a6ecc9e8bc26eec367dba82720accd6dee234db88c132ec649baeef23a16ebb18c8e5b68b95aac984d8322a01b39636baf16911e458242730ea8b22c686bd01bc451e91c34f81fafe88485bbe97ec99299940ca897c3f802d080ecf8ca7e5032c728b8b33f162ab26a6805db239b88103c19ff8160a28268f8f7ac66593c67251fb0f3fa3004d5ad08107f48e0ecc1e4e910554f49ca72e3fd7e212d828fc3c0c40203e4642a3a372f36cfd13a037fd4dd107d6b386659b379c4c41813c8599cb71fd08e4b80f22dbb088d3d0257f30493b1c4d54201a00e049d998d291ecb659e65e2eed9776b367afc9b84b03957701bcbef289b0eea8e5722a63e1bd748d5af209c5ebff7df185d0d68e7ceabbf9a63bba55946cd3b52a09383fd9b9d2d956dc4e5af16986c5600dfd0db89e0e478420557d001c3716350c3e6ba0bbec1e5888435d296d8666f455d22205ea407a95eb60bc68a184e95ae3259f3783c594d3e550c018369df677ea11a37c757a3bd3c19eb257f5e228ad760562e431754a0c620004548962c3a4fb42d49259dafc1b9d365323fa2ace81876728a24f70b06e1198d5f863bfd00a04d5393b3adb15f4191d374c607c7ccb6b7ef84303454b6655392a23dccca41f55cb314a3bfbb637f57178cc9df4fe0645a8dc1ca0386d1fb0ff2cfc3e149991f97264d893fba0b013c027ce753c3e1f907a2988b1507eecd0e5e26368155ff5c55f616ffec31a613be450ee048955a46d68c272aa53f1db6ce199e2765f4be20933799d96f13b3a65f33cb60da1929023ff5d820172c423f83210a992264a37854033cd43c88129fabb5146367d2b748d84be96dc3a4ad95279ec7ed78dcb57056597a9f46a948708b0e9915b22f28216d94554db2082f4b9782a5802bf6700ef9017168a68304b6573f46c78a0a3be302e096b4f5b87313a2ef9a2b5f51956d9e315b08ee89a59aeec225227f3ece808c451e1103df7887f944138af1b93235bc93121fb84591d065d5f245c035c238a1c30d510be5db14725148919e8d57f1e3a36ead8be870e2505e3c9935c4461741c4a8dc4dff7e0e042167a7228bf218c9d8dd9c0be9e5ff4a79968d8f34cfc3206e0ade5889e9c5e44c918ed3755063d4148e7f1da9d2ce7aa45b9fc873f85cb92160b8a4d5b219884d0c43cc1194259ec4a6127887470d2fabbc1983b1bcc51e931f131d1238333c09740b43802fc5b1c01a942c5d08693b81e59429cb7d49f454f517cddc160d563a243182083008f2481e35312b4b35a2688468f18f4733f4b40d2f298c0b88ec2ad51e2efa509905233e3bbb9e172a1e697ab379f500c8c791aa97623bc8faa7f0468e02e6bc6f9bc40c75b4c01b92731fc371ad7c90928bead62a74580bb2d0aa1d8972fa857766ebe8aa00cd9eae79a591ea3e87a5ce636dc865b992c98a6fafe478973665936ad477558dac400fe179e86e6fef41aa074d0812f0c14f3992edb76358d02a2b763512ca9abc0940dd711670deb4d9abf196de9106efa5e1c14a673de86193908206ab9f72afd6ef1b05355f06ad0b9bc83750bb196654566b56e13e6e820d12bc34920b45c3"], 0x1, 0x200, &(0x7f0000006140)="$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")
open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0)

2m31.526842009s ago: executing program 4 (id=2280):
r0 = socket$inet(0x2b, 0x801, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, 0x0, 0x20)

2m16.366287047s ago: executing program 32 (id=2280):
r0 = socket$inet(0x2b, 0x801, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, 0x0, 0x20)

3.692093782s ago: executing program 2 (id=4363):
r0 = syz_open_dev$vim2m(&(0x7f0000000d00), 0x4, 0x2)
close(r0)

3.494188845s ago: executing program 3 (id=4365):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xb, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20008000}, {0x85, 0x0, 0x0, 0x72}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x38, 0x38, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

3.319004326s ago: executing program 2 (id=4367):
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f00000004c0)='./file0\x00', 0x80, &(0x7f00000007c0)=ANY=[@ANYBLOB="666c7573682c6e6f646f74732c646973636172642c646d61736b3d30303030303030303030303030303030303030303030322c646d61736b3d30303030303030303030303030303030303030303137372c646f74732c6e6f646f74732c71756965742c646f74732c0023c3cb4d2e3cbf18508098fe0de2af38db67d42d1bc4ab714d52f019082433fc9ca2d7174b2c4ece31c9f4c7a4d53914e100"/167, @ANYRES8], 0x1, 0x147, &(0x7f00000008c0)="$eJzs2zFrE2EYB/AnJmrUJbM4HLg4BfUTKBJBPFCUDDopRJdEAma5dmk+Sr9goWTK9pb2StKGZMhwudL7/Zb7w5+D9x3uHt6D+/Xi33g0nf2dfl1Et9WKzrvIYtmKXjyIdpTmAQDcJ8uU4jyllB7P48lppJTqXhEAUDXzHwCax/wHgOYx/wGgeb7/+Pn5fZ4PvmVZN+JsXgyLYXkt+4+f8sHr7EpvfdeiKIbtVf+m7LPb/cN4et2/3do/ilcvy/6y+/Al3+ifxaj67QMAAEAj9LOVref7fn9XX6Yb3wc2zu+deN452DYAgD3Mjo7HvyeTP/8FQdgjpJM7sYzKQt1vJqBq64e+7pUAAAAAAAAAAAAAAAC7HOJ3orr3CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJsuAgAA//9tQVLQ")
unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0)

3.318246282s ago: executing program 5 (id=4368):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x2, 0xd, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@broadcast}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private2}}, @sadb_lifetime={0x4, 0x3}, @sadb_x_sec_ctx={0x1}]}, 0xc8}}, 0x0)

3.111614288s ago: executing program 3 (id=4370):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000000000)={@none, 0x8})

2.992909649s ago: executing program 5 (id=4372):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_DELOBJ={0x28, 0x14, 0xa, 0x307, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x50}}, 0x0)

2.830396378s ago: executing program 3 (id=4374):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f00000001c0)={0x0, @bt={0x3, 0xcf48, 0x0, 0x2, 0x1, 0x6, 0x7fffffff, 0x242, 0x3, 0x6, 0x1, 0x3, 0x0, 0x0, 0x8, 0x0, {0x800, 0x7}, 0x7f}})

2.787251194s ago: executing program 2 (id=4376):
r0 = syz_open_dev$video4linux(&(0x7f0000000040), 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x12, r0, 0x20000)

2.651469632s ago: executing program 5 (id=4378):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848430000009bb9ef7f75c9f12c0e000a000f000000", 0x28}, {&(0x7f0000000900)="63f48eeb93bf", 0x6}], 0x2}, 0x40)

2.509522671s ago: executing program 3 (id=4380):
unshare(0x22020400)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map, 0xffffffffffffffff, 0x26, 0x0, 0x0, @void, @value}, 0x10)

2.471544187s ago: executing program 2 (id=4381):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="640000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="00000000042004003c002b8008000800", @ANYRES32, @ANYBLOB="080003001900000008000100", @ANYRES32, @ANYBLOB="0a000100", @ANYRES32, @ANYBLOB='\b\x00\b\x00', @ANYRES32, @ANYBLOB="080003000100000008000800", @ANYRES32, @ANYBLOB="08001b"], 0x64}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

2.394568411s ago: executing program 5 (id=4382):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f000000d380)=ANY=[@ANYBLOB="845d00003c0007010000000000000000017c00000400fc800c00018006000600800a0000585d02"], 0x5d84}, 0x1, 0x0, 0x0, 0xc000}, 0xc000)

2.347664101s ago: executing program 1 (id=4383):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000e80)={0x14, 0x1, 0x8, 0x301}, 0x14}}, 0x0)

2.207437213s ago: executing program 3 (id=4386):
r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x10, &(0x7f0000000000)=@ready={0x0, 0x0, 0x8, 'BBBB'})

1.659103463s ago: executing program 0 (id=4391):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x1)
ioctl$SIOCAX25OPTRT(r0, 0x89e7, &(0x7f0000000080)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, 0x2, 0x20})

1.635474295s ago: executing program 6 (id=4392):
r0 = socket$igmp6(0xa, 0x3, 0x2)
bind$inet6(r0, &(0x7f00000006c0)={0xa, 0x4e22, 0x0, @mcast1, 0x823}, 0x1c)

1.516845007s ago: executing program 1 (id=4393):
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="3800000002011d04000000000000000002000000240001"], 0x38}}, 0x0)

1.515920305s ago: executing program 5 (id=4394):
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000})
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)

1.401694486s ago: executing program 0 (id=4395):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="28000000210021012abd7000000000000a00000d00000000180000000c001400d3bd672a62baf6eeb16a"], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x80c4)

1.401341596s ago: executing program 6 (id=4396):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c00000010000305000000000000000000cf0000", @ANYRES32=0x0, @ANYBLOB="a14200000c0000003c0012800b00010069703667726500002c00028014000600fc000000000000000000000000000001140007000000000000000000000000000001"], 0x5c}}, 0x0)

1.309765755s ago: executing program 2 (id=4397):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2f}, @NFTA_SET_EXPRESSIONS={0x18, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa4}}, 0x20050800)

1.245638914s ago: executing program 5 (id=4398):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
syz_usb_connect(0x3, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0xa0, 0x30, 0xa2, 0x40, 0x1235, 0x4661, 0xae13, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x8, 0x0, 0x90, 0x5, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xff, 0xd6, 0x82, 0x40}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0})

1.209533208s ago: executing program 1 (id=4399):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000080)={0x0, 0x2, 0x10, 0xfc2d, 0x3ff, 0x4, 0x2, 0x1, {0x0, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}}, 0x2, 0x9f9c000, 0x13cd9f8b, 0x6}}, &(0x7f0000000140)=0xb0)

1.152962549s ago: executing program 0 (id=4400):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xb, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000d40)="f6020000bd5260ce0a5373aab7da", 0x0, 0xffffffff, 0x0, 0x2, 0x0, &(0x7f0000000740)="010a", 0x0}, 0x50)

1.108531285s ago: executing program 6 (id=4401):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='timerslack_ns\x00')
pread64(r0, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)

979.477283ms ago: executing program 1 (id=4402):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_DV_TIMINGS_CAP(r0, 0xc0905664, &(0x7f0000000100)={0x0, 0x0, '\x00', @bt={0x8, 0xfffff6d4, 0x1, 0x4, 0x5, 0x0, 0x12, 0xc}})

976.856327ms ago: executing program 2 (id=4403):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, 0x0)

902.452095ms ago: executing program 0 (id=4404):
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000c"])

721.414946ms ago: executing program 6 (id=4405):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x10, 0x7fff0000}]})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))

605.953447ms ago: executing program 1 (id=4406):
r0 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e068000000110000000000000000dbc790ad000000fc000000000000001400000000000000000000000100000004000000000000001c000000000000000000000008"], 0x68}, 0x0)

566.97809ms ago: executing program 0 (id=4407):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d0000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

412.189932ms ago: executing program 6 (id=4408):
timer_create(0xb, &(0x7f0000000200)={0x0, 0x0, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000380))
timer_gettime(0x0, &(0x7f0000000040))

307.910182ms ago: executing program 1 (id=4409):
syz_mount_image$romfs(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00d0867e65d443152ee691a70d225b73c01164645c70ff689f607da7a169dbbfebbeb349b043f54d088bcd11a44f2074aa41532279b5718bc4d89fe5010d6bf465008743337cddaefbc0f0293d06483bec82e15366358709c5d5c0049ff9dcb7ea7e855e3c24bc3b4173720476fb379ce25c0ea42027ba6a7d"], 0x1, 0x134, &(0x7f0000000940)="$eJzs2r9Kw1AUBvCjFoQ+glMhAauQ/1oHd0Fw8gkMbZJevPGWRJB2Kr6A4nAdHV3dRDcfIbNPoC9xJW1qbe5uC/1+yz30XL7eLGc6ViZSL84tor3xw/nXZibSVic46sZeHNLUKRG1yqJQ6tEmzcVvv1BjW7tgvFdnO5FnbzHjka9nAAAAAAAAAAAAAAAAAAAAAACsCeO7Kpp9KZ5jxiPvTzcfji5DzqMsn/1iUrWjQ/tP4ri8HyzktRtE5mR/h8mT27LvLvTNWdJuX4qN+v851+nAyYcji6VhEiXRle8HHffAdQ99Z5Ll1BPN++pNVKjXgb5PZL7M94k+XX2fiJrTo7HD5N1NPX3+/SjWrFBbK/EMFKtZ1OcH9bYD46OcH3ZX8N4/zg9togEsyU8AAAD//wxqOHo=")
mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000280)='./file0\x00', &(0x7f0000000040)='btrfs\x00', 0x0, 0x0)

222.808937ms ago: executing program 0 (id=4410):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='ns\x00')
getdents(r0, &(0x7f0000001080)=""/4096, 0x18)

188.284391ms ago: executing program 3 (id=4411):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$SIOCPNDELRESOURCE(r0, 0x541b, &(0x7f0000004880)=0x1)

0s ago: executing program 6 (id=4412):
r0 = syz_open_dev$vbi(&(0x7f0000000300), 0x2, 0x2)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000340)={0x7, @pix_mp={0x9, 0x0, 0x0, 0x0, 0x0, [{}, {}, {}, {}, {}, {0x4}]}})

kernel console output (not intermixed with test programs):

etlink: 'syz.5.2716': attribute type 3 has an invalid length.
[  322.602971][ T5939] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  322.692424][   T24] snd_usb_toneport 2-1:0.244: cannot get proper max packet size
[  322.726164][   T24] snd_usb_toneport 2-1:0.244: Line 6 GuitarPort now disconnected
[  322.757158][   T24] snd_usb_toneport 2-1:0.244: probe with driver snd_usb_toneport failed with error -22
[  322.789943][ T5939] usb 4-1: Using ep0 maxpacket: 8
[  322.800194][ T5939] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD9, changing to 0x89
[  322.849806][ T5939] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 99, changing to 10
[  322.885599][T12103] loop0: detected capacity change from 0 to 32768
[  322.909767][ T5939] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 34391, setting to 1024
[  322.924179][   T24] usb 2-1: USB disconnect, device number 23
[  322.936820][ T5939] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  322.946426][ T5939] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.969059][ T5939] usb 4-1: config 0 descriptor??
[  322.985372][T12118] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  323.203346][ T5939] iowarrior 4-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  323.227041][T12103] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  323.302859][ T5939] usb 4-1: USB disconnect, device number 25
[  323.386622][T12103] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  323.386622][T12103]   allowing incompatible features above 0.0: (unknown version)
[  323.459778][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  323.459798][   T30] audit: type=1800 audit(1746364781.852:80): pid=12140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.6.2721" name="/newroot/6/file0" dev="tmpfs" ino=49 res=0 errno=0
[  323.509969][T12103] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  323.570591][T12103] bcachefs (loop0): Version upgrade required:
[  323.570591][T12103] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  323.570591][T12103] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  323.570591][T12103]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  323.602201][T12154] binder: BC_ACQUIRE_RESULT not supported
[  323.675313][T12103] bcachefs (loop0): dropping and reconstructing all alloc info
[  323.713373][T12103] bcachefs (loop0): accounting_read...
[  323.718054][T12154] binder: 12153:12154 ioctl c0306201 2000000001c0 returned -22
[  323.801796][T12103]  done
[  323.804614][T12103] bcachefs (loop0): alloc_read... done
[  323.845435][T12103] bcachefs (loop0): snapshots_read... done
[  323.883976][T12103] bcachefs (loop0): done starting filesystem
[  323.969946][ T5893] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  323.993603][T12166] xt_policy: neither incoming nor outgoing policy selected
[  324.070167][ T5886] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  324.145554][ T5893] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  324.179831][ T5893] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[  324.179920][ T5823] bcachefs (loop0): shutting down
[  324.214858][ T5893] usb 3-1: New USB device found, idVendor=0499, idProduct=103e, bcdDevice=4e.18
[  324.224420][ T5893] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  324.250008][ T5893] usb 3-1: Product: syz
[  324.254199][ T5893] usb 3-1: Manufacturer: syz
[  324.268986][ T5893] usb 3-1: SerialNumber: syz
[  324.284698][ T5886] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF4, changing to 0x84
[  324.316787][ T5893] usb 3-1: config 0 descriptor??
[  324.317872][ T5886] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1023
[  324.352498][ T5886] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x66, changing to 0x6
[  324.361487][ T5823] bcachefs (loop0): shutdown complete
[  324.367036][T12172] loop5: detected capacity change from 0 to 256
[  324.404901][ T5886] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  324.435024][ T5886] usb 7-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  324.447670][ T5886] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  324.487878][ T5886] usb 7-1: Product: syz
[  324.493615][ T5886] usb 7-1: Manufacturer: syz
[  324.533719][ T5893] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  324.535086][ T5886] usb 7-1: SerialNumber: syz
[  324.557184][ T5886] usb 7-1: config 0 descriptor??
[  324.576762][   T30] audit: type=1326 audit(1746364782.962:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.1.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2cc78e969 code=0x7ffc0000
[  324.610714][T12160] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  324.621074][ T5886] usb 7-1: ucan: probing device on interface #0
[  324.627331][ T5886] usb 7-1: ucan: invalid endpoint configuration
[  324.659460][ T5886] usb 7-1: ucan: probe failed; try to update the device firmware
[  324.671952][   T30] audit: type=1326 audit(1746364782.962:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.1.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2cc78e969 code=0x7ffc0000
[  324.770164][   T30] audit: type=1326 audit(1746364783.002:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.1.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7fb2cc78e969 code=0x7ffc0000
[  324.797399][ T5893] usb 3-1: USB disconnect, device number 25
[  324.878919][   T30] audit: type=1326 audit(1746364783.002:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.1.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2cc78e969 code=0x7ffc0000
[  324.878992][   T30] audit: type=1326 audit(1746364783.002:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.1.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2cc78e969 code=0x7ffc0000
[  324.938925][ T5883] udevd[5883]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  324.943533][ T5886] usb 7-1: USB disconnect, device number 2
[  325.431446][T12196] loop2: detected capacity change from 0 to 64
[  325.504101][T12200] loop5: detected capacity change from 0 to 256
[  325.549083][T12200] exfat: Deprecated parameter 'utf8'
[  325.590062][T12200] exfat: Deprecated parameter 'utf8'
[  325.710727][T12200] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001047b, chksum : 0x3ced02ab, utbl_chksum : 0xe619d30d)
[  325.771534][ T5939] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  325.871699][T12212] xt_l2tp: invalid flags combination: 4
[  325.965663][ T5939] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  325.992203][ T5939] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  326.030566][ T5939] usb 2-1: config 1 has no interface number 0
[  326.079778][ T5939] usb 2-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  326.150746][ T5939] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.36
[  326.152013][T12220] loop2: detected capacity change from 0 to 16
[  326.170464][T12220] erofs (device loop2): mounted with root inode @ nid 36.
[  326.183007][ T5939] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.224227][ T5939] usb 2-1: Product: syz
[  326.231021][ T5939] usb 2-1: Manufacturer: syz
[  326.237251][ T5939] usb 2-1: SerialNumber: syz
[  326.291401][ T5939] cdc_ncm 2-1:1.1: skipping garbage
[  326.318429][ T5939] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  326.364582][ T5939] cdc_ncm 2-1:1.1: bind() failure
[  326.419233][T12224] netlink: 80 bytes leftover after parsing attributes in process `syz.5.2762'.
[  326.479861][T12224] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2762'.
[  326.515506][T12224] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2762'.
[  326.566265][ T5828] usb 2-1: USB disconnect, device number 24
[  326.699648][T12231] openvswitch: netlink: Missing key (keys=40, expected=80)
[  327.061037][T12240] openvswitch: netlink: Actions may not be safe on all matching packets
[  327.229242][T12217] loop3: detected capacity change from 0 to 32768
[  327.277041][T12217] (syz.3.2759,12217,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  327.338491][T12217] (syz.3.2759,12217,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  327.404731][T12217] JBD2: Ignoring recovery information on journal
[  327.612324][T12217] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  327.781559][T12261] loop5: detected capacity change from 0 to 8
[  327.912549][T12261] 9pnet_fd: p9_fd_create_unix (12261): problem connecting socket: ./file1: -111
[  328.021498][ T5834] ocfs2: Unmounting device (7,3) on (node local)
[  328.570055][T12285] netlink: 'syz.5.2791': attribute type 5 has an invalid length.
[  328.655517][T12287] loop1: detected capacity change from 0 to 256
[  328.662786][T12285] ip6erspan0: entered promiscuous mode
[  328.852821][T12287] FAT-fs (loop1): Directory bread(block 64) failed
[  328.859393][T12287] FAT-fs (loop1): Directory bread(block 65) failed
[  328.923545][T12287] FAT-fs (loop1): Directory bread(block 66) failed
[  328.953983][T12295] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  328.963891][T12287] FAT-fs (loop1): Directory bread(block 67) failed
[  329.031590][T12287] FAT-fs (loop1): Directory bread(block 68) failed
[  329.038225][T12287] FAT-fs (loop1): Directory bread(block 69) failed
[  329.081217][T12287] FAT-fs (loop1): Directory bread(block 70) failed
[  329.087789][T12287] FAT-fs (loop1): Directory bread(block 71) failed
[  329.114809][T12287] FAT-fs (loop1): Directory bread(block 72) failed
[  329.130722][T12287] FAT-fs (loop1): Directory bread(block 73) failed
[  329.240051][ T5828] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  329.436226][ T5828] usb 1-1: Using ep0 maxpacket: 32
[  329.454005][ T5828] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  329.491990][ T5828] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  329.529386][ T5828] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  329.561368][ T5828] usb 1-1: config 1 has no interface number 0
[  329.569110][ T5828] usb 1-1: config 1 interface 1 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  329.581824][T12317] netlink: 199836 bytes leftover after parsing attributes in process `syz.6.2806'.
[  329.617363][ T5828] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  329.663729][ T5828] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  329.712734][ T5828] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  329.772633][ T5828] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  329.836796][ T5828] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  329.923666][T12323] loop5: detected capacity change from 0 to 4096
[  329.988361][T12323] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  330.000201][T12329] loop3: detected capacity change from 0 to 8
[  330.011074][T12329] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  330.048018][ T5828] snd_usb_pod 1-1:1.1: endpoint not available, using fallback values
[  330.062105][T12329] cramfs: Error -3 while decompressing!
[  330.079773][T12329] cramfs: ffffffff9993a408(26)->ffff88804e99d000(4096)
[  330.086667][T12329] cramfs: Error -3 while decompressing!
[  330.095055][ T5828] snd_usb_pod 1-1:1.1: invalid control EP
[  330.121271][ T5828] snd_usb_pod 1-1:1.1: cannot start listening: -22
[  330.144876][T12329] cramfs: ffffffff9993a422(26)->ffff888053842000(4096)
[  330.157038][ T5828] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  330.174522][T12323] overlayfs: missing 'lowerdir'
[  330.180501][T12329] cramfs: Error -3 while decompressing!
[  330.200783][ T5828] snd_usb_pod 1-1:1.1: probe with driver snd_usb_pod failed with error -22
[  330.232375][T12329] cramfs: ffffffff9993a43c(16)->ffff888053c5b000(4096)
[  330.254876][ T5828] usb 1-1: USB disconnect, device number 31
[  330.259859][T12329] cramfs: Error -3 while decompressing!
[  330.307997][T12329] cramfs: ffffffff9993a408(26)->ffff88804e99d000(4096)
[  330.462515][T12343] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2820'.
[  330.590159][ T5939] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  330.662681][T12349] loop2: detected capacity change from 0 to 256
[  330.693323][T12349] exfat: Deprecated parameter 'utf8'
[  330.698651][T12349] exfat: Deprecated parameter 'utf8'
[  330.753780][T12349] exfat: Deprecated parameter 'utf8'
[  330.799788][ T5939] usb 7-1: Using ep0 maxpacket: 16
[  330.813152][ T5939] usb 7-1: config index 0 descriptor too short (expected 16456, got 72)
[  330.847868][ T5939] usb 7-1: config 0 has an invalid interface number: 125 but max is 1
[  330.858375][T12349] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  330.912203][ T5939] usb 7-1: config 0 has an invalid interface number: 125 but max is 1
[  330.949588][ T5939] usb 7-1: config 0 has an invalid interface number: 125 but max is 1
[  330.976959][ T5939] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[  330.987047][T12349] exFAT-fs (loop2): error, exfat_zeroed_cluster: out of range(sect:224 len:8)
[  331.018951][ T5939] usb 7-1: config 0 has no interface number 0
[  331.031612][T12349] exFAT-fs (loop2): Filesystem has been set read-only
[  331.037911][ T5939] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  331.060196][   T30] audit: type=1326 audit(1746364789.452:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12361 comm="syz.0.2828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  331.101873][ T5939] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  331.148427][ T5939] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  331.159360][   T30] audit: type=1326 audit(1746364789.452:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12361 comm="syz.0.2828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  331.202682][ T5939] usb 7-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  331.207586][T12364] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[  331.218348][ T5939] usb 7-1: config 0 interface 125 has no altsetting 0
[  331.230678][   T30] audit: type=1326 audit(1746364789.482:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12361 comm="syz.0.2828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  331.280392][ T5939] usb 7-1: config 0 interface 125 has no altsetting 2
[  331.308538][ T5939] usb 7-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  331.309223][T12364] mac80211_hwsim hwsim10 wlan0: entered allmulticast mode
[  331.319763][   T30] audit: type=1326 audit(1746364789.482:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12361 comm="syz.0.2828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  331.356183][ T5939] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.380240][ T5939] usb 7-1: Product: syz
[  331.388759][ T5939] usb 7-1: Manufacturer: syz
[  331.394045][ T5939] usb 7-1: SerialNumber: syz
[  331.427772][ T5939] usb 7-1: config 0 descriptor??
[  331.469386][   T30] audit: type=1326 audit(1746364789.482:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12361 comm="syz.0.2828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  331.505290][ T5939] usb 7-1: selecting invalid altsetting 2
[  331.611533][T12372] netlink: 169404 bytes leftover after parsing attributes in process `syz.5.2833'.
[  331.850240][T12381] loop2: detected capacity change from 0 to 736
[  331.918302][    C1] usb 7-1: async_complete: urb error -71
[  331.924108][    C1] usb 7-1: async_complete: urb error -71
[  331.929843][    C1] usb 7-1: async_complete: urb error -71
[  331.963736][ T5939] get_1284_register: usb error -71
[  331.976437][T12384] ieee802154 phy0 wpan0: encryption failed: -22
[  331.979885][ T5939] uss720 7-1:0.125: probe with driver uss720 failed with error -71
[  332.071185][ T5939] usb 7-1: USB disconnect, device number 3
[  332.430549][ T5886] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  332.619853][ T5886] usb 6-1: Using ep0 maxpacket: 32
[  332.639910][ T5886] usb 6-1: config 0 has an invalid interface number: 204 but max is 0
[  332.657824][ T5886] usb 6-1: config 0 has no interface number 0
[  332.698287][ T5886] usb 6-1: config 0 interface 204 has no altsetting 0
[  332.719765][ T5886] usb 6-1: New USB device found, idVendor=0572, idProduct=cb06, bcdDevice=df.f2
[  332.745575][ T5886] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.760455][T12402] loop1: detected capacity change from 0 to 1024
[  332.774382][ T5886] usb 6-1: Product: syz
[  332.791987][ T5886] usb 6-1: Manufacturer: syz
[  332.827191][ T5886] usb 6-1: SerialNumber: syz
[  332.890436][ T5886] usb 6-1: config 0 descriptor??
[  333.139183][ T5886] cxacru 6-1:0.204: usbatm_usb_probe: bind failed: -19!
[  333.221991][T12414] tipc: Can't bind to reserved service type 1
[  333.409846][ T5939] usb 6-1: USB disconnect, device number 29
[  334.975978][T12482] netlink: 'syz.0.2886': attribute type 10 has an invalid length.
[  335.060088][T12486] __vm_enough_memory: pid: 12486, comm: syz.1.2889, bytes: 21199667134464 not enough memory for the allocation
[  335.065874][T12482] veth0_macvtap: left promiscuous mode
[  335.153159][T12482] batman_adv: batadv0: Adding interface: macvtap0
[  335.204338][T12482] batman_adv: batadv0: The MTU of interface macvtap0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  335.298258][T12482] batman_adv: batadv0: Not using interface macvtap0 (retrying later): interface not active
[  335.727509][T12506] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2899'.
[  336.234062][T12527] xt_policy: too many policy elements
[  336.307006][T12521] loop5: detected capacity change from 0 to 4096
[  336.344917][T12521] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[  336.415897][T12530] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  336.437098][T12521] ntfs3(loop5): ino=19, mi_enum_attr
[  336.460195][T12521] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  336.899881][ T5893] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  337.089901][ T5886] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  337.113839][T12552] loop0: detected capacity change from 0 to 512
[  337.152046][T12552] EXT4-fs: Ignoring removed nobh option
[  337.174166][ T5893] usb 3-1: config 0 has an invalid interface number: 255 but max is 0
[  337.198995][ T5893] usb 3-1: config 0 has no interface number 0
[  337.227003][ T5893] usb 3-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  337.229459][T12552] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.2922: corrupted inode contents
[  337.238670][ T5893] usb 3-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  337.269967][ T5893] usb 3-1: config 0 interface 255 has no altsetting 0
[  337.276785][ T5893] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  337.296944][ T5893] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.310230][ T5893] usb 3-1: config 0 descriptor??
[  337.320985][ T5886] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  337.324545][ T5893] cp210x 3-1:0.255: cp210x converter detected
[  337.340321][T12552] EXT4-fs (loop0): Remounting filesystem read-only
[  337.354660][T12552] EXT4-fs (loop0): 1 truncate cleaned up
[  337.365613][T12552] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.378344][ T5886] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  337.379245][   T52] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  337.428903][T12552] ext4 filesystem being mounted at /463/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.445106][ T5886] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  337.455074][   T52] Quota error (device loop0): write_blk: dquota write failed
[  337.490172][ T5886] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  337.517834][   T52] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries
[  337.533020][ T5886] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  337.553202][ T5886] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  337.569847][   T52] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  337.597439][ T5886] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  337.620941][ T5886] usb 7-1: Product: syz
[  337.625143][ T5886] usb 7-1: Manufacturer: syz
[  337.635993][   T52] Quota error (device loop0): write_blk: dquota write failed
[  337.667027][ T5886] cdc_wdm 7-1:1.0: skipping garbage
[  337.681923][ T5886] cdc_wdm 7-1:1.0: skipping garbage
[  337.682624][   T52] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list
[  337.712733][ T5886] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  337.718676][ T5886] cdc_wdm 7-1:1.0: Unknown control protocol
[  337.760971][ T5823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.770284][   T52] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  337.807808][ T5893] cp210x 3-1:0.255: failed to get vendor val 0x000e size 3: -71
[  337.819750][   T52] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  337.863678][ T5893] usb 3-1: cp210x converter now attached to ttyUSB0
[  337.870740][   T52] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  337.891684][ T5893] usb 3-1: USB disconnect, device number 26
[  337.926440][T12544] cdc_wdm 7-1:1.0: Error submitting int urb - -90
[  337.994214][  T968] usb 7-1: USB disconnect, device number 4
[  338.001357][ T5893] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  338.052420][ T5893] cp210x 3-1:0.255: device disconnected
[  338.322546][T12577] loop5: detected capacity change from 0 to 1024
[  338.477751][T12577] fuse: Bad value for 'fd'
[  338.709677][   T30] audit: type=1326 audit(1746364797.102:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12588 comm="syz.6.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbc18e969 code=0x7ffc0000
[  338.795141][   T30] audit: type=1326 audit(1746364797.142:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12588 comm="syz.6.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbc18e969 code=0x7ffc0000
[  338.906067][   T30] audit: type=1326 audit(1746364797.142:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12588 comm="syz.6.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f0dbc18e969 code=0x7ffc0000
[  338.909896][ T5893] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  338.970477][T12594] program syz.3.2942 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  339.049844][   T30] audit: type=1326 audit(1746364797.142:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12588 comm="syz.6.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbc18e969 code=0x7ffc0000
[  339.091447][T12597] loop6: detected capacity change from 0 to 256
[  339.220847][ T5893] usb 2-1: config 0 interface 0 altsetting 3 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  339.265523][ T5893] usb 2-1: config 0 interface 0 altsetting 3 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  339.288427][ T5893] usb 2-1: config 0 interface 0 altsetting 3 endpoint 0x8F has invalid wMaxPacketSize 0
[  339.369768][ T5893] usb 2-1: config 0 interface 0 has no altsetting 0
[  339.414033][ T5893] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice=1c.08
[  339.459824][ T5893] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  339.467865][ T5893] usb 2-1: Product: syz
[  339.509752][ T5893] usb 2-1: Manufacturer: syz
[  339.514402][ T5893] usb 2-1: SerialNumber: syz
[  339.566137][ T5893] usb 2-1: config 0 descriptor??
[  339.736870][T12618] xt_TCPMSS: Only works on TCP SYN packets
[  339.820839][ T5893] usbtest 2-1:0.0: Linux user mode ISO test driver
[  339.827391][ T5893] usbtest 2-1:0.0: high-speed {control iso-in} tests (+alt)
[  340.154541][ T5886] usb 2-1: USB disconnect, device number 25
[  340.320745][T12636] loop2: detected capacity change from 0 to 64
[  340.326469][T12628] loop3: detected capacity change from 0 to 4096
[  340.361753][T12628] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  340.486800][T12640] netlink: 'syz.5.2964': attribute type 3 has an invalid length.
[  340.517035][T12640] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.2964'.
[  340.769307][T12646] xt_CT: You must specify a L4 protocol and not use inversions on it
[  341.176993][T12653] loop1: detected capacity change from 0 to 4096
[  341.241767][T12660] dvmrp0: entered allmulticast mode
[  341.307786][T12653] ntfs3(loop1): ino=b, Correct links count -> 1.
[  341.336350][T12653] ntfs3(loop1): ino=18, mi_enum_attr
[  341.353246][T12653] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  341.745788][T12678] QAT: failed to copy from user.
[  342.322274][T12694] loop1: detected capacity change from 0 to 64
[  342.662252][T12704] program syz.5.2996 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  342.812290][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  342.812310][   T30] audit: type=1326 audit(1746364801.212:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12708 comm="syz.0.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  342.928073][T12713] loop3: detected capacity change from 0 to 128
[  342.959511][T12713] EXT4-fs (loop3): Test dummy encryption mode enabled
[  342.971041][   T30] audit: type=1326 audit(1746364801.212:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12708 comm="syz.0.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  343.036210][T12713] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  343.096747][T12713] ext4 filesystem being mounted at /557/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  343.127316][   T30] audit: type=1326 audit(1746364801.272:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12708 comm="syz.0.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  343.264983][   T30] audit: type=1326 audit(1746364801.272:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12708 comm="syz.0.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  343.287288][    C1] vkms_vblank_simulate: vblank timer overrun
[  343.419557][   T30] audit: type=1326 audit(1746364801.272:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12708 comm="syz.0.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  343.467219][T12732] loop2: detected capacity change from 0 to 64
[  343.550970][ T5834] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  343.799600][T12732] Trying to free block not in datazone
[  343.994156][T12745] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  344.010223][T12745] bridge2: entered allmulticast mode
[  344.400623][ T5828] usb 4-1: new low-speed USB device number 26 using dummy_hcd
[  344.492223][T12754] loop6: detected capacity change from 0 to 4096
[  344.547883][T12754] ntfs3(loop6): It is recommened to use chkdsk.
[  344.555627][T12724] loop0: detected capacity change from 0 to 32768
[  344.584194][T12762] netlink: 'syz.1.3023': attribute type 6 has an invalid length.
[  344.585704][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffc0c00
[  344.606779][T12724] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.3004 (12724)
[  344.620058][ T5828] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  344.620111][ T5828] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  344.701694][T12724] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  344.718042][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffc0c00
[  344.768802][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffc0c00
[  344.779333][ T5828] usb 4-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[  344.806607][T12724] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  344.825562][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffc0c00
[  344.839976][ T5828] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.840666][T12724] BTRFS info (device loop0): using free-space-tree
[  344.877403][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffc1c00
[  344.886454][ T5828] usb 4-1: config 0 descriptor??
[  344.902097][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffc2c00
[  344.918582][ T5828] qmi_wwan 4-1:0.0: probe with driver qmi_wwan failed with error -22
[  344.938173][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffc4c00
[  344.989497][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffc8c00
[  345.031756][T12754] ntfs3(loop6): try to read out of volume at offset 0x3fffffd0c00
[  345.219528][ T5888] usb 4-1: USB disconnect, device number 26
[  345.582731][ T5823] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  345.964246][T12812] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x2
[  346.399792][ T5888] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  346.534007][T12831] loop6: detected capacity change from 0 to 64
[  346.605769][ T5888] usb 6-1: Using ep0 maxpacket: 8
[  346.622642][ T5888] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  346.656919][ T5888] usb 6-1: config 179 has no interface number 0
[  346.679946][ T5828] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  346.682127][ T5888] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  346.765819][ T5888] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  346.831990][ T5888] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  346.862285][ T5888] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  346.884037][ T5828] usb 2-1: Using ep0 maxpacket: 8
[  346.914649][ T5828] usb 2-1: too many configurations: 245, using maximum allowed: 8
[  346.921202][ T5888] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  346.973222][ T5828] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  346.992763][ T5888] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  347.010798][ T5828] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  347.046901][ T5888] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  347.075189][ T5828] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  347.124115][ T5828] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  347.156840][T12819] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  347.157482][ T5828] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  347.286559][ T5828] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  347.331840][ T5828] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  347.347139][ T5828] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  347.362218][ T5828] usb 2-1: New USB device found, idVendor=20a6, idProduct=1105, bcdDevice=c2.eb
[  347.371562][ T5828] usb 2-1: New USB device strings: Mfr=144, Product=230, SerialNumber=250
[  347.414973][ T5828] usb 2-1: Product: syz
[  347.419192][ T5828] usb 2-1: Manufacturer: syz
[  347.467056][ T5828] usb 2-1: SerialNumber: syz
[  347.494629][ T5828] usb 2-1: config 0 descriptor??
[  347.527018][T12819] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  347.533764][T12819] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  347.558435][ T5828] rndis_host 2-1:0.0: invalid descriptor buffer length
[  347.590060][ T5828] usb 2-1: bad CDC descriptors
[  347.609994][T12819] vhci_hcd vhci_hcd.0: Device attached
[  347.616138][ T5828] option 2-1:0.0: GSM modem (1-port) converter detected
[  347.648493][T12849] vhci_hcd: connection closed
[  347.665045][ T5828] usb 6-1: USB disconnect, device number 30
[  347.665094][    C1] xpad 6-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  347.672900][   T52] vhci_hcd: stop threads
[  347.676022][    C1] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  347.727140][   T52] vhci_hcd: release socket
[  347.795485][   T52] vhci_hcd: disconnect device
[  347.902063][ T5888] usb 2-1: USB disconnect, device number 26
[  347.909580][ T5888] option 2-1:0.0: device disconnected
[  348.167153][T12870] loop6: detected capacity change from 0 to 512
[  348.230343][T12870] EXT4-fs (loop6): Test dummy encryption mode enabled
[  348.354632][T12870] EXT4-fs error (device loop6): __ext4_iget:5025: inode #11: block 1: comm syz.6.3064: invalid block
[  348.418515][T12880] nvme_fabrics: unknown parameter or missing value '�' in ctrl creation request
[  348.436187][T12870] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.3064: couldn't read orphan inode 11 (err -117)
[  348.466119][T12877] loop0: detected capacity change from 0 to 256
[  348.488423][T12870] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  348.636542][T12884] SET target dimension over the limit!
[  348.823753][T11735] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.952379][   T30] audit: type=1326 audit(1746364807.342:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12894 comm="syz.1.3078" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb2cc78e969 code=0x0
[  349.029957][ T5893] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  349.107403][T12902] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3079'.
[  349.135258][T12900] loop6: detected capacity change from 0 to 2048
[  349.199889][ T5893] usb 4-1: Using ep0 maxpacket: 32
[  349.218956][T12900] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  349.221467][ T5893] usb 4-1: unable to get BOS descriptor or descriptor too short
[  349.279222][ T5893] usb 4-1: config 7 has an invalid interface number: 187 but max is 0
[  349.312967][ T5893] usb 4-1: config 7 has no interface number 0
[  349.337136][T12907] loop5: detected capacity change from 0 to 256
[  349.364972][ T5893] usb 4-1: config 7 interface 187 has no altsetting 0
[  349.377753][T12907] exfat: Deprecated parameter 'namecase'
[  349.379097][ T5893] usb 4-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[  349.411634][T12907] exfat: Deprecated parameter 'namecase'
[  349.432307][ T5893] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  349.433088][T12907] exfat: Deprecated parameter 'namecase'
[  349.468639][ T5893] usb 4-1: Product: syz
[  349.483119][ T5893] usb 4-1: Manufacturer: syz
[  349.487776][ T5893] usb 4-1: SerialNumber: syz
[  349.557427][T12907] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x079995a4, utbl_chksum : 0xe619d30d)
[  349.733401][ T5893] usb 4-1: Limiting number of CPorts to U8_MAX
[  349.800293][ T5893] usb 4-1: Not enough endpoints found in device, aborting!
[  350.007892][ T5886] usb 4-1: USB disconnect, device number 27
[  350.223395][T12935] netlink: 'syz.2.3095': attribute type 10 has an invalid length.
[  350.273522][T12935] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  350.380529][   T24] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  350.581268][   T24] usb 1-1: Using ep0 maxpacket: 8
[  350.606640][   T24] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  350.643126][   T24] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  350.701476][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  350.750199][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  350.795878][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  350.852545][   T24] usb 1-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[  350.889772][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  350.937090][   T24] usb 1-1: Product: syz
[  350.953311][   T24] usb 1-1: Manufacturer: syz
[  350.957939][   T24] usb 1-1: SerialNumber: syz
[  351.010832][   T24] usb 1-1: config 0 descriptor??
[  351.259870][   T24] rc_core: IR keymap rc-imon-rsc not found
[  351.265717][   T24] Registered IR keymap rc-empty
[  351.290678][   T24] rc rc0: iMON Station as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  351.407372][   T24] input: iMON Station as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input16
[  351.482813][   T24] imon_raw 1-1:0.0: probe with driver imon_raw failed with error -90
[  351.966325][   T24] usb 1-1: USB disconnect, device number 32
[  352.417832][T12974] loop5: detected capacity change from 0 to 32768
[  352.433295][ T5886] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  352.626630][T13015] loop2: detected capacity change from 0 to 64
[  352.663071][ T5886] usb 4-1: Using ep0 maxpacket: 8
[  352.681360][ T5886] usb 4-1: config 0 has an invalid interface number: 186 but max is 0
[  352.696252][ T5886] usb 4-1: config 0 has no interface number 0
[  352.702953][ T5886] usb 4-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  352.738064][ T5886] usb 4-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  352.786710][ T5886] usb 4-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  352.866735][ T5886] usb 4-1: config 0 interface 186 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  352.877228][ T5886] usb 4-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  352.946932][ T5886] usb 4-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  352.987879][ T5886] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.020524][ T5886] usb 4-1: Product: syz
[  353.024752][ T5886] usb 4-1: Manufacturer: syz
[  353.029349][ T5886] usb 4-1: SerialNumber: syz
[  353.077963][T13024] loop0: detected capacity change from 0 to 64
[  353.114725][T13029] mmap: syz.2.3140 (13029): VmData 37470208 exceed data ulimit 128. Update limits or use boot option ignore_rlimit_data.
[  353.154683][ T5886] usb 4-1: config 0 descriptor??
[  353.399361][ T5886] iowarrior 4-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0
[  353.643427][   T24] usb 4-1: USB disconnect, device number 28
[  353.682217][T13044] loop2: detected capacity change from 0 to 1024
[  353.781029][T13044] hfsplus: request for non-existent node 211 in B*Tree
[  353.840245][T13044] hfsplus: request for non-existent node 211 in B*Tree
[  354.439196][T13068] loop2: detected capacity change from 0 to 16
[  354.483500][T13068] erofs (device loop2): mounted with root inode @ nid 36.
[  354.585686][ T5838] erofs (device loop2): failed to decompress 6887 in[4096, 0] out[9000]
[  354.606516][T13068] erofs (device loop2): failed to decompress 6887 in[4096, 0] out[9000]
[  354.683920][T13068] erofs (device loop2): read error -117 @ 0 of nid 89
[  354.746697][   T30] audit: type=1800 audit(1746364813.142:102): pid=13068 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3160" name="file3" dev="loop2" ino=89 res=0 errno=0
[  354.870039][T13082] netlink: 'syz.3.3167': attribute type 8 has an invalid length.
[  354.933925][T13086] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard
[  354.982437][T13086] exFAT-fs (nullb0): invalid boot record signature
[  354.989915][T13086] exFAT-fs (nullb0): failed to read boot sector
[  354.996249][T13086] exFAT-fs (nullb0): failed to recognize exfat type
[  355.475505][T13108] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3179'.
[  355.813383][T13120] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3184'.
[  356.071764][T13128] netlink: 'syz.2.3187': attribute type 12 has an invalid length.
[  356.371218][T13142] netlink: 'syz.2.3194': attribute type 4 has an invalid length.
[  356.420022][T13142] netlink: 152 bytes leftover after parsing attributes in process `syz.2.3194'.
[  356.504327][T13142] : renamed from bond0 (while UP)
[  356.823489][T13105] loop1: detected capacity change from 0 to 32768
[  356.876642][T13105] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3178 (13105)
[  356.894738][T13163] netlink: 'syz.3.3201': attribute type 33 has an invalid length.
[  356.995937][T13105] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  357.065508][T13105] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  357.158590][T13105] BTRFS info (device loop1): using free-space-tree
[  357.522847][T13105] BTRFS info (device loop1): rebuilding free space tree
[  357.930205][ T5822] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  358.023657][   T30] audit: type=1326 audit(1746364816.422:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13218 comm="syz.6.3220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbc18e969 code=0x7ffc0000
[  358.030553][T13214] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3217'.
[  358.065666][T13214] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3217'.
[  358.137326][T13214] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3217'.
[  358.190048][   T30] audit: type=1326 audit(1746364816.462:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13218 comm="syz.6.3220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f0dbc18e969 code=0x7ffc0000
[  358.291899][   T30] audit: type=1326 audit(1746364816.462:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13218 comm="syz.6.3220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbc18e969 code=0x7ffc0000
[  358.395926][   T30] audit: type=1326 audit(1746364816.512:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13218 comm="syz.6.3220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbc18e969 code=0x7ffc0000
[  358.885880][T13240] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3226'.
[  359.095876][T13250] netlink: 'syz.5.3231': attribute type 32 has an invalid length.
[  359.708091][T13274] ieee802154 phy0 wpan0: encryption failed: -22
[  360.719820][ T5886] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  360.940645][ T5886] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  360.950728][ T5886] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  361.003065][ T5886] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  361.027658][ T5886] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  361.045108][ T5886] usb 7-1: Manufacturer: syz
[  361.073294][ T5886] usb 7-1: config 0 descriptor??
[  361.219830][ T5885] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  361.326521][ T5886] rc_core: IR keymap rc-hauppauge not found
[  361.354029][ T5886] Registered IR keymap rc-empty
[  361.379151][ T5886] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0
[  361.412120][ T5886] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0/input17
[  361.442000][ T5885] usb 6-1: Using ep0 maxpacket: 8
[  361.494646][ T5885] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  361.511927][ T5885] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  361.526517][    C1] igorplugusb 7-1:0.0: Error: urb status = -32
[  361.586013][ T5885] usb 6-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[  361.628291][ T5885] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  361.629611][ T5886] usb 7-1: USB disconnect, device number 5
[  361.644072][ T5885] usb 6-1: Product: syz
[  361.648307][ T5885] usb 6-1: Manufacturer: syz
[  361.703056][ T5885] usb 6-1: SerialNumber: syz
[  361.739946][ T5885] usb 6-1: config 0 descriptor??
[  361.876969][T13340] loop3: detected capacity change from 0 to 4096
[  361.916896][T13340] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  362.075891][T13299] loop1: detected capacity change from 0 to 40427
[  362.142970][T13299] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x3fffff
[  362.209902][T13299] F2FS-fs (loop1): Image doesn't support compression
[  362.216690][T13299] F2FS-fs (loop1): Image doesn't support compression
[  362.263025][ T5939] usb 6-1: USB disconnect, device number 31
[  362.283765][T13299] F2FS-fs (loop1): invalid crc value
[  362.775161][T13299] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  362.917442][T13299] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x3fffff
[  362.962182][T13299] F2FS-fs (loop1): Image doesn't support compression
[  362.969022][T13299] F2FS-fs (loop1): Image doesn't support compression
[  363.077145][T13381] netlink: 'syz.5.3278': attribute type 1 has an invalid length.
[  363.108400][T13381] netlink: 228 bytes leftover after parsing attributes in process `syz.5.3278'.
[  363.161406][T13381] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3278'.
[  363.594108][T13395] loop3: detected capacity change from 0 to 2048
[  363.654752][T13403] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3289'.
[  363.669859][T13395] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  363.700284][T13400] loop5: detected capacity change from 0 to 1764
[  363.743214][ T5982] udevd[5982]: incorrect nilfs2 checksum on /dev/loop3
[  363.759584][T13406] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  363.979557][T13409] loop0: detected capacity change from 0 to 512
[  364.070830][T13409] EXT4-fs: Ignoring removed oldalloc option
[  364.228047][T13409] EXT4-fs error (device loop0): ext4_orphan_get:1391: comm syz.0.3291: inode #13: comm syz.0.3291: iget: illegal inode #
[  364.316044][T13409] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3291: couldn't read orphan inode 13 (err -117)
[  364.424541][T13409] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  364.533868][T13426] xt_CT: You must specify a L4 protocol and not use inversions on it
[  364.559404][T13409] EXT4-fs error (device loop0): ext4_resize_begin:60: comm syz.0.3291: resize_inode disabled but reserved GDT blocks non-zero
[  364.783581][ T5823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.016379][T13442] netlink: 57 bytes leftover after parsing attributes in process `syz.2.3305'.
[  365.713016][T13468] wg1: entered promiscuous mode
[  365.718015][T13468] wg1: entered allmulticast mode
[  365.912913][T13422] loop6: detected capacity change from 0 to 32768
[  366.040951][T13422] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  366.250990][T13492] xt_CT: You must specify a L4 protocol and not use inversions on it
[  366.259555][T13422] XFS (loop6): Ending clean mount
[  366.297462][T13422] XFS (loop6): Quotacheck needed: Please wait.
[  366.322499][T13496] vivid-000: disconnect
[  366.402641][T13494] vivid-000: reconnect
[  366.481682][T13422] XFS (loop6): Quotacheck: Done.
[  366.694914][T11735] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  366.865478][T13516] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  367.280143][T13528] loop5: detected capacity change from 0 to 256
[  367.462021][T13534] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3347'.
[  367.465983][T13530] erspan1: entered promiscuous mode
[  368.274919][T13559] loop0: detected capacity change from 0 to 1024
[  368.678698][T13569] loop6: detected capacity change from 0 to 1024
[  368.724051][T13532] loop1: detected capacity change from 0 to 32768
[  368.756007][T13569] EXT4-fs: Ignoring removed bh option
[  368.767155][T13569] EXT4-fs: inline encryption not supported
[  368.770022][T13571] xt_cgroup: xt_cgroup: no path or classid specified
[  368.791096][T13532] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3346 (13532)
[  368.840232][T13569] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  368.870106][T13569] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  368.879760][T13532] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  368.881292][T13541] loop2: detected capacity change from 0 to 32768
[  368.946724][T13569] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 2: comm syz.6.3364: lblock 2 mapped to illegal pblock 2 (length 1)
[  368.953960][T13532] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  368.969913][T13532] BTRFS info (device loop1): using free-space-tree
[  369.079297][T13593] loop3: detected capacity change from 0 to 512
[  369.088247][T13569] Quota error (device loop6): qtree_write_dquot: dquota write failed
[  369.134929][T13569] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 48: comm syz.6.3364: lblock 0 mapped to illegal pblock 48 (length 1)
[  369.165948][T13588] loop5: detected capacity change from 0 to 2048
[  369.180470][T13593] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  369.202640][T13569] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  369.228224][T13569] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.3364: Failed to acquire dquot type 0
[  369.247568][T13593] EXT4-fs (loop3): 1 truncate cleaned up
[  369.290370][T13569] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  369.305445][T13593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.350244][ T5822] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  369.362803][T13569] EXT4-fs error (device loop6): ext4_evict_inode:259: inode #11: comm syz.6.3364: mark_inode_dirty error
[  369.380000][T13599] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  369.396788][T13569] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  369.432774][T13588] NILFS error (device loop5): nilfs_lookup: deleted inode referenced: 12
[  369.442078][T13569] EXT4-fs (loop6): 1 orphan inode deleted
[  369.474466][T13601] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3370'.
[  369.483406][T13569] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  369.503101][   T12] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  369.536790][T13601] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3370'.
[  369.575281][T13588] Remounting filesystem read-only
[  369.580612][   T12] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  369.589075][   T12] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 0
[  369.619872][T13601] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3370'.
[  369.680326][T13569] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 1: comm syz.6.3364: lblock 1 mapped to illegal pblock 1 (length 1)
[  369.759359][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.778159][T13569] Quota error (device loop6): find_next_id: Can't read quota tree block 1
[  370.101543][T11735] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.223276][T11735] EXT4-fs error (device loop6): __ext4_get_inode_loc:4450: comm syz-executor: Invalid inode table block 1 in block_group 0
[  370.301654][T11735] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  370.364817][T11735] EXT4-fs error (device loop6): ext4_quota_off:7219: inode #3: comm syz-executor: mark_inode_dirty error
[  370.402993][T13621] netlink: 'syz.0.3380': attribute type 12 has an invalid length.
[  370.638210][T13631] loop6: detected capacity change from 0 to 512
[  370.816912][T13631] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e02c, mo2=0002]
[  370.831821][T13631] System zones: 1-12
[  370.851704][T13639] vti0: entered promiscuous mode
[  370.915488][T13631] EXT4-fs error (device loop6): ext4_get_branch:178: inode #13: block 33619980: comm syz.6.3376: invalid block
[  371.013529][T13631] EXT4-fs (loop6): Remounting filesystem read-only
[  371.036265][T13631] EXT4-fs (loop6): 1 truncate cleaned up
[  371.049394][T13631] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  371.116120][T13644] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  371.261602][T13650] netlink: 'syz.2.3391': attribute type 3 has an invalid length.
[  371.269432][T13650] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.3391'.
[  371.342610][T11735] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.613097][T13666] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 33, id = 0
[  371.893881][T13680] syz.1.3404: attempt to access beyond end of device
[  371.893881][T13680] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  371.975301][T13680] exFAT-fs (loop1): unable to read boot sector
[  372.025815][T13680] exFAT-fs (loop1): failed to read boot sector
[  372.039849][T13680] exFAT-fs (loop1): failed to recognize exfat type
[  372.432954][T13699] loop2: detected capacity change from 0 to 64
[  373.783243][T13747] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3439'.
[  373.841829][T13747] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3439'.
[  373.883853][T13745] loop5: detected capacity change from 0 to 2048
[  374.140317][T13757] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  374.193557][T13758] Invalid source name
[  374.197610][T13758] UBIFS error (pid: 13758): cannot open "./file0", error -22
[  374.510904][T13774] netlink: 'syz.1.3451': attribute type 1 has an invalid length.
[  374.591576][T13774] netlink: 'syz.1.3451': attribute type 2 has an invalid length.
[  374.917802][T13789] ip_vti0: entered promiscuous mode
[  375.063004][T13798] loop0: detected capacity change from 0 to 64
[  376.127465][T13836] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  376.210092][T13836] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  376.304685][T13845] loop2: detected capacity change from 0 to 256
[  376.486504][T13845] FAT-fs (loop2): Directory bread(block 64) failed
[  376.512547][T13849] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3480'.
[  376.543061][T13845] FAT-fs (loop2): Directory bread(block 65) failed
[  376.580736][T13845] FAT-fs (loop2): Directory bread(block 66) failed
[  376.601277][T13845] FAT-fs (loop2): Directory bread(block 67) failed
[  376.647492][T13845] FAT-fs (loop2): Directory bread(block 68) failed
[  376.690104][T13845] FAT-fs (loop2): Directory bread(block 69) failed
[  376.720044][T13845] FAT-fs (loop2): Directory bread(block 70) failed
[  376.726655][T13845] FAT-fs (loop2): Directory bread(block 71) failed
[  376.820777][T13845] FAT-fs (loop2): Directory bread(block 72) failed
[  376.827415][T13845] FAT-fs (loop2): Directory bread(block 73) failed
[  376.914803][T13871] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  376.999133][T13871] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  377.065260][T13871] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  377.170625][T13871] overlayfs: missing 'lowerdir'
[  377.310778][T13875] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3490'.
[  377.852590][T13881] loop1: detected capacity change from 0 to 4096
[  377.893276][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  377.899762][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  377.998804][T13881] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  378.529124][T13911] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3509'.
[  378.599083][T13911] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3509'.
[  379.167030][T13926] sock: sock_timestamping_bind_phc: sock not bind to device
[  379.470196][T13934] loop3: detected capacity change from 0 to 164
[  379.515275][T13940] netlink: 'syz.2.3522': attribute type 2 has an invalid length.
[  379.615155][T13940] �: entered promiscuous mode
[  379.779866][ T5893] usb 4-1: new full-speed USB device number 29 using dummy_hcd
[  379.892616][T13946] netlink: 'syz.2.3526': attribute type 3 has an invalid length.
[  379.970429][ T5893] usb 4-1: config 5 has an invalid interface number: 123 but max is 0
[  379.978671][ T5893] usb 4-1: config 5 has no interface number 0
[  380.019966][ T5893] usb 4-1: config 5 interface 123 altsetting 7 has an endpoint descriptor with address 0xEB, changing to 0x8B
[  380.068132][ T5893] usb 4-1: config 5 interface 123 altsetting 7 has an endpoint descriptor with address 0xE6, changing to 0x86
[  380.139859][ T5893] usb 4-1: config 5 interface 123 altsetting 7 endpoint 0x86 has invalid maxpacket 28460, setting to 64
[  380.189833][ T5893] usb 4-1: config 5 interface 123 has no altsetting 0
[  380.245137][ T5893] usb 4-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[  380.264421][ T5893] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.280227][T13919] infiniband syz!: set active
[  380.309870][ T5893] usb 4-1: Product: syz
[  380.313478][T13919] infiniband syz!: added team_slave_0
[  380.329816][ T5893] usb 4-1: Manufacturer: syz
[  380.338220][T13956] cifs: Unknown parameter 'no'�a��N�[G�zob,er��;%j��
[  380.338220][T13956] ��z�,�@q�������J#�"��h/.�W1ȱ�nNC�"�C����<��+`#����k��'
[  380.349584][T13919] syz!: rxe_create_cq: returned err = -12
[  380.365111][ T5893] usb 4-1: SerialNumber: syz
[  380.380399][T13919] infiniband syz!: Couldn't create ib_mad CQ
[  380.393910][T13934] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  380.406590][T13919] infiniband syz!: Couldn't open port 1
[  380.611974][T13962] loop6: detected capacity change from 0 to 128
[  380.640742][T13919] RDS/IB: syz!: added
[  380.646303][T13919] smc: adding ib device syz! with port count 1
[  380.657327][   T30] audit: type=1326 audit(1746364839.052:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13963 comm="syz.0.3535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  380.692930][ T5893] ni6501 4-1:5.123: driver 'ni6501' failed to auto-configure device.
[  380.710872][T13919] smc:    ib device syz! port 1 has pnetid 
[  380.759545][   T30] audit: type=1326 audit(1746364839.052:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13963 comm="syz.0.3535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  380.771277][ T5893] usb 4-1: USB disconnect, device number 29
[  380.863082][   T30] audit: type=1326 audit(1746364839.062:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13963 comm="syz.0.3535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  380.886042][    C1] vkms_vblank_simulate: vblank timer overrun
[  380.976791][   T30] audit: type=1326 audit(1746364839.062:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13963 comm="syz.0.3535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc358e969 code=0x7ffc0000
[  380.990297][ T5885] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  381.155077][T13944] loop5: detected capacity change from 0 to 32768
[  381.219975][ T5885] usb 3-1: Using ep0 maxpacket: 16
[  381.230374][ T5885] usb 3-1: config 1 has an invalid descriptor of length 171, skipping remainder of the config
[  381.241833][T13944] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  381.272955][ T5885] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  381.308159][ T5885] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  381.348324][ T5885] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  381.403054][ T5885] usb 3-1: Product: syz
[  381.416978][ T5885] usb 3-1: Manufacturer: syz
[  381.441091][ T5885] usb 3-1: SerialNumber: syz
[  381.701435][T13991] loop0: detected capacity change from 0 to 8
[  381.761566][ T5838] Bluetooth: hci4: unexpected event for opcode 0x0c05
[  381.778279][ T5885] usb 3-1: 0:2 : does not exist
[  381.793970][ T5885] usb 3-1: unit 9 not found!
[  381.820404][T13991] SQUASHFS error: lzo decompression failed, data probably corrupt
[  381.824474][ T5885] usb 3-1: USB disconnect, device number 27
[  381.892171][T13991] SQUASHFS error: Failed to read block 0x91: -5
[  381.940897][T13991] SQUASHFS error: Unable to read metadata cache entry [8f]
[  381.948982][T13944] XFS (loop5): Ending clean mount
[  381.967214][T13991] SQUASHFS error: Unable to read inode 0x11f
[  381.993176][ T5982] udevd[5982]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  382.114411][ T5824] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  382.957347][T14016] netlink: 5 bytes leftover after parsing attributes in process `syz.6.3558'.
[  383.002978][T14016] 0�X��D: renamed from gretap0 (while UP)
[  383.057605][T14016] 0�X��D: entered allmulticast mode
[  383.066571][T14016] A link change request failed with some changes committed already. Interface 
30�X��D may have been left with an inconsistent configuration, please check.
[  383.102723][ T5893] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  383.289978][ T5893] usb 1-1: Using ep0 maxpacket: 8
[  383.316801][ T5893] usb 1-1: unable to get BOS descriptor or descriptor too short
[  383.333062][T14028] loop6: detected capacity change from 0 to 128
[  383.351860][ T5893] usb 1-1: config 1 interface 0 altsetting 14 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  383.386113][ T5893] usb 1-1: config 1 interface 0 has no altsetting 0
[  383.397489][T14028] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  383.428104][ T5893] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice= 0.40
[  383.459446][ T5893] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  383.499878][ T5893] usb 1-1: Product: syz
[  383.518092][ T5893] usb 1-1: Manufacturer: syz
[  383.531918][ T5893] usb 1-1: SerialNumber: syz
[  383.930037][T14039] loop6: detected capacity change from 0 to 2048
[  383.939146][ T5893] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input18
[  383.981768][ T5179] bcm5974 1-1:1.0: could not read from device
[  384.011214][T14039] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  384.063109][ T5179] bcm5974 1-1:1.0: could not read from device
[  384.072026][T14039] udf: Bad value for 'lastblock'
[  384.074074][ T5893] usb 1-1: USB disconnect, device number 33
[  384.150010][ T5886] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  384.320198][ T5886] usb 3-1: Using ep0 maxpacket: 8
[  384.332008][ T5886] usb 3-1: config 0 has too many interfaces: 65, using maximum allowed: 32
[  384.354408][ T5886] usb 3-1: config 0 has an invalid interface number: 150 but max is 64
[  384.400705][ T5886] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  384.465453][ T5886] usb 3-1: config 0 has 2 interfaces, different from the descriptor's value: 65
[  384.507894][ T5886] usb 3-1: config 0 has no interface number 0
[  384.524709][ T5886] usb 3-1: config 0 interface 150 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  384.576133][ T5886] usb 3-1: config 0 interface 150 has no altsetting 0
[  384.616783][ T5886] usb 3-1: config 0 interface 1 has no altsetting 0
[  384.644260][ T5886] usb 3-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75
[  384.683912][ T5886] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  384.745894][ T5886] usb 3-1: config 0 descriptor??
[  384.812156][ T5886] usb 3-1: selecting invalid altsetting 0
[  385.016654][ T5886] usb 3-1: USB disconnect, device number 28
[  385.133620][T14072] loop5: detected capacity change from 0 to 512
[  385.177235][T14072] EXT4-fs (loop5): orphan cleanup on readonly fs
[  385.219926][T14072] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13
[  385.247159][T14072] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  385.266402][T14072] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.3585: attempt to clear invalid blocks 2 len 1
[  385.283241][T14072] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.3585: invalid indirect mapped block 1819239214 (level 0)
[  385.304990][T14072] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.3585: invalid indirect mapped block 1819239214 (level 1)
[  385.325617][T14072] EXT4-fs (loop5): 1 truncate cleaned up
[  385.353389][T14072] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  385.405734][T14072] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.443864][T14081] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3589'.
[  385.445886][ T5982] udevd[5982]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.150/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  385.544080][ T5885] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  385.709848][ T5885] usb 7-1: Using ep0 maxpacket: 32
[  385.716697][T14086] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3592'.
[  385.744871][ T5885] usb 7-1: config 0 has an invalid descriptor of length 102, skipping remainder of the config
[  385.806809][ T5885] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  385.855858][ T5885] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  385.890601][ T5885] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.973969][ T5885] usb 7-1: config 0 descriptor??
[  386.028323][ T5885] hub 7-1:0.0: bad descriptor, ignoring hub
[  386.064307][ T5885] hub 7-1:0.0: probe with driver hub failed with error -5
[  386.299487][T14096] loop5: detected capacity change from 0 to 256
[  386.334997][ T5885] usb 7-1: USB disconnect, device number 6
[  386.385028][T14096] FAT-fs (loop5): Directory bread(block 64) failed
[  386.429661][T14096] FAT-fs (loop5): Directory bread(block 65) failed
[  386.476980][T14096] FAT-fs (loop5): Directory bread(block 66) failed
[  386.495968][T14096] FAT-fs (loop5): Directory bread(block 67) failed
[  386.526268][T14096] FAT-fs (loop5): Directory bread(block 68) failed
[  386.535862][T14096] FAT-fs (loop5): Directory bread(block 69) failed
[  386.568949][T14096] FAT-fs (loop5): Directory bread(block 70) failed
[  386.595043][T14096] FAT-fs (loop5): Directory bread(block 71) failed
[  386.614075][T14096] FAT-fs (loop5): Directory bread(block 72) failed
[  386.635695][T14096] FAT-fs (loop5): Directory bread(block 73) failed
[  386.748991][T14083] loop0: detected capacity change from 0 to 32768
[  386.818205][T14105] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3601'.
[  386.858885][T14083] read_mapping_page failed!
[  386.869806][T14083] ialloc: diAlloc returned -5!
[  386.890190][T14105] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3601'.
[  387.202113][T14113] loop3: detected capacity change from 0 to 8
[  387.273715][T14117] netlink: 9 bytes leftover after parsing attributes in process `syz.2.3608'.
[  387.299301][T14117] 0�: renamed from hsr0
[  387.351888][T14117] 0�: entered allmulticast mode
[  387.356864][T14117] hsr_slave_0: entered allmulticast mode
[  387.362771][T14117] hsr_slave_1: entered allmulticast mode
[  387.376065][T14117] A link change request failed with some changes committed already. Interface 
70� may have been left with an inconsistent configuration, please check.
[  387.918521][T14131] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  388.080321][T14137] netlink: 'syz.0.3616': attribute type 1 has an invalid length.
[  388.129903][T14137] netlink: 224 bytes leftover after parsing attributes in process `syz.0.3616'.
[  388.670199][T14160] loop5: detected capacity change from 0 to 764
[  388.739829][ T5828] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  388.770705][T14164] overlay: Unknown parameter 'obj_type'
[  388.918401][T14166] loop3: detected capacity change from 0 to 128
[  388.941161][ T5828] usb 3-1: Using ep0 maxpacket: 16
[  388.981138][ T5828] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  388.981943][T14166] FAT-fs (loop3): Directory bread(block 11554) failed
[  389.006855][ T5828] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  389.054109][T14166] FAT-fs (loop3): Directory bread(block 11555) failed
[  389.067752][ T5828] usb 3-1: config 0 interface 0 has no altsetting 0
[  389.076349][T14166] FAT-fs (loop3): Directory bread(block 11556) failed
[  389.112353][ T5828] usb 3-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  389.150192][ T5828] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.158215][ T5828] usb 3-1: Product: syz
[  389.180307][T14166] FAT-fs (loop3): Directory bread(block 11557) failed
[  389.187115][T14166] FAT-fs (loop3): Directory bread(block 11558) failed
[  389.200853][ T5828] usb 3-1: Manufacturer: syz
[  389.205462][ T5828] usb 3-1: SerialNumber: syz
[  389.240555][ T5828] usb 3-1: config 0 descriptor??
[  389.245751][T14166] FAT-fs (loop3): Directory bread(block 11559) failed
[  389.286567][T14166] FAT-fs (loop3): Directory bread(block 11560) failed
[  389.305642][T14166] FAT-fs (loop3): Directory bread(block 11561) failed
[  389.333132][T14166] FAT-fs (loop3): Directory bread(block 11562) failed
[  389.372315][T14166] FAT-fs (loop3): Directory bread(block 11563) failed
[  389.549978][ T5893] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  389.665842][ T5828] usb 3-1: USB disconnect, device number 29
[  389.728844][ T5893] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  389.765485][ T5893] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.780354][ T5893] usb 1-1: Product: syz
[  389.784577][ T5893] usb 1-1: Manufacturer: syz
[  389.789180][ T5893] usb 1-1: SerialNumber: syz
[  389.870780][ T5893] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  389.928370][ T5885] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  390.089857][ T5893] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  390.252284][ T5893] usb 2-1: Using ep0 maxpacket: 32
[  390.263463][ T5893] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  390.279993][ T5893] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  390.336265][T14177] loop5: detected capacity change from 0 to 32768
[  390.342155][ T5893] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  390.369289][ T5893] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.387929][ T5893] usb 2-1: Product: syz
[  390.395529][ T5893] usb 2-1: Manufacturer: syz
[  390.401510][ T5893] usb 2-1: SerialNumber: syz
[  390.403223][ T5939] usb 1-1: USB disconnect, device number 34
[  390.427579][ T5893] usb 2-1: config 0 descriptor??
[  390.506302][T14177] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  390.554022][T14182] loop6: detected capacity change from 0 to 32768
[  390.583251][T14182] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3639 (14182)
[  390.659644][T14188] loop3: detected capacity change from 0 to 32768
[  390.681105][T14182] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  390.764604][T14182] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm
[  390.796647][T14182] BTRFS info (device loop6): using free-space-tree
[  390.868333][T14177] XFS (loop5): Ending clean mount
[  390.944353][ T5886] usb 2-1: USB disconnect, device number 27
[  391.000143][ T5885] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  391.020087][ T5885] ath9k_htc: Failed to initialize the device
[  391.042627][ T5939] usb 1-1: ath9k_htc: USB layer deinitialized
[  391.081795][T14218] RDS: rds_bind could not find a transport for ::ffff:0.0.0.224, load rds_tcp or rds_rdma?
[  391.100251][ T5824] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  391.178211][T14222] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3659'.
[  391.288691][T11735] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  392.082280][T14244] loop1: detected capacity change from 0 to 256
[  392.089540][T14244] exfat: Deprecated parameter 'namecase'
[  392.231332][T14250] xt_socket: unknown flags 0x50
[  392.255879][T14244] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1cbb3694, utbl_chksum : 0xe619d30d)
[  392.332823][T14244] exFAT-fs (loop1): error, in sector 160, dentry 5 should be unused, but 0xc1
[  392.609812][ T5893] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  392.810123][   T30] audit: type=1400 audit(1746364851.192:111): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=14272 comm="syz.3.3673"
[  392.821908][ T5893] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  392.891787][ T5893] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  392.971613][ T5893] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  393.026301][ T5893] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  393.053632][T14285] program syz.3.3677 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  393.082001][ T5893] usb 1-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  393.101420][ T5893] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  393.111858][T14285] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  393.122486][ T5893] usb 1-1: Product: syz
[  393.126692][ T5893] usb 1-1: Manufacturer: syz
[  393.140029][T14286] netlink: 160 bytes leftover after parsing attributes in process `syz.1.3679'.
[  393.149240][ T5893] usb 1-1: SerialNumber: syz
[  393.154178][T14286] netlink: 'syz.1.3679': attribute type 1 has an invalid length.
[  393.166067][ T5893] usb 1-1: config 0 descriptor??
[  393.178064][T14286] netlink: 'syz.1.3679': attribute type 2 has an invalid length.
[  393.191582][ T5893] ums-isd200 1-1:0.0: USB Mass Storage device detected
[  393.216912][T14286] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3679'.
[  393.496446][ T5893] ums-isd200 1-1:0.0: probe with driver ums-isd200 failed with error -22
[  393.588322][T14297] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3684'.
[  393.644671][T14297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3684'.
[  393.730155][ T5893] usb 1-1: USB disconnect, device number 35
[  394.648016][T14336] loop3: detected capacity change from 0 to 256
[  394.761121][ T5939] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  394.949024][ T5939] usb 1-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  394.982345][ T5939] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  395.017402][ T5939] usb 1-1: Product: syz
[  395.038720][ T5939] usb 1-1: Manufacturer: syz
[  395.058027][ T5939] usb 1-1: SerialNumber: syz
[  395.107257][ T5939] usb 1-1: config 0 descriptor??
[  395.309878][T14357] hfs: unable to load iocharset "I�#h�Iars�8�Ύ	wѷ}+�[S���_. �,�s$n�F�Bl�b�SR,�.R]^k�R���L�/��J}&��o9b6��\w�m�$x������CdeO�jocڅ`1҆��m�#C�X^ݾO�;;��󣫭Xp�!��+��Ƈ�K=�A	���a2H��KA�� ��r��p��"
[  395.368599][ T5939] hso 1-1:0.0: Failed to find BULK IN ep
[  395.383977][T14359] loop3: detected capacity change from 0 to 16
[  395.396912][ T5939] usb-storage 1-1:0.0: USB Mass Storage device detected
[  395.400480][T14353] loop6: detected capacity change from 0 to 4096
[  395.430276][ T5888] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  395.434246][T14353] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  395.480679][T14359] erofs (device loop3): mounted with root inode @ nid 36.
[  395.610002][ T5939] usb 1-1: USB disconnect, device number 36
[  395.649205][ T5888] usb 2-1: Using ep0 maxpacket: 16
[  395.700672][ T5888] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  395.737519][ T5888] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  395.759969][ T5888] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  395.850083][ T5888] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  395.879544][ T5888] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  395.916633][ T5888] usb 2-1: Product: syz
[  395.937440][ T5888] usb 2-1: Manufacturer: syz
[  395.955180][ T5888] usb 2-1: SerialNumber: syz
[  396.050210][ T5939] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  396.202529][ T5888] usb 2-1: 2:1 : no or invalid class specific endpoint descriptor
[  396.234415][ T5939] usb 4-1: Using ep0 maxpacket: 32
[  396.239771][ T5888] usb 2-1: 2:1 : format type 0 is detected, processed as PCM
[  396.258150][ T5939] usb 4-1: config 6 has an invalid interface number: 225 but max is 1
[  396.282880][ T5939] usb 4-1: config 6 has an invalid interface number: 171 but max is 1
[  396.319879][ T5939] usb 4-1: config 6 has no interface number 0
[  396.349665][ T5939] usb 4-1: config 6 has no interface number 1
[  396.355961][ T5939] usb 4-1: config 6 interface 225 has no altsetting 0
[  396.402261][ T5939] usb 4-1: config 6 interface 171 has no altsetting 0
[  396.439054][ T5939] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0060, bcdDevice=65.ac
[  396.472343][ T5888] usb 2-1: USB disconnect, device number 28
[  396.489799][ T5939] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  396.532537][ T5939] usb 4-1: Product: syz
[  396.536793][ T5939] usb 4-1: Manufacturer: syz
[  396.594731][ T5977] udevd[5977]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  396.607424][ T5939] usb 4-1: SerialNumber: syz
[  396.884713][T14395] bond0: option ad_select: unable to set because the bond device is up
[  396.927150][T14397] libceph: resolve 'c' (ret=-3): failed
[  396.957267][ T5939] dvb-usb: found a 'Terratec Cinergy HT Express' in cold state, will try to load a firmware
[  397.012841][ T5939] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  397.042075][ T5939] dib0700: firmware download failed at 7 with -8
[  397.083973][ T5939] dvb-usb: found a 'Terratec Cinergy HT Express' in cold state, will try to load a firmware
[  397.144725][ T5939] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  397.153219][T14375] loop6: detected capacity change from 0 to 32768
[  397.179255][ T5939] dib0700: firmware download failed at 7 with -8
[  397.197132][T14403] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3735'.
[  397.230125][ T5939] usb 4-1: USB disconnect, device number 30
[  397.332384][T14375] JBD2: Ignoring recovery information on journal
[  397.544736][T14375] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  397.679963][T14375] (syz.6.3719,14375,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry too close to end - offset=32, inode=17057, rec_len=280, name_len=10
[  397.686035][T14421] loop1: detected capacity change from 0 to 256
[  397.761461][T14375] (syz.6.3719,14375,0):ocfs2_prepare_dir_for_insert:4294 ERROR: status = -2
[  397.815388][T14375] (syz.6.3719,14375,0):ocfs2_mknod:298 ERROR: status = -2
[  397.835791][T14375] (syz.6.3719,14375,0):ocfs2_mknod:502 ERROR: status = -2
[  397.850962][T14375] (syz.6.3719,14375,0):ocfs2_mkdir:658 ERROR: status = -2
[  397.884188][T14421] FAT-fs (loop1): Directory bread(block 64) failed
[  397.913126][T14421] FAT-fs (loop1): Directory bread(block 65) failed
[  397.981254][T14421] FAT-fs (loop1): Directory bread(block 66) failed
[  397.987835][T14421] FAT-fs (loop1): Directory bread(block 67) failed
[  398.012685][T14421] FAT-fs (loop1): Directory bread(block 68) failed
[  398.023882][T14421] FAT-fs (loop1): Directory bread(block 69) failed
[  398.030829][T14421] FAT-fs (loop1): Directory bread(block 70) failed
[  398.037467][T14421] FAT-fs (loop1): Directory bread(block 71) failed
[  398.038077][T11735] ocfs2: Unmounting device (7,6) on (node local)
[  398.062120][T14421] FAT-fs (loop1): Directory bread(block 72) failed
[  398.089154][T14421] FAT-fs (loop1): Directory bread(block 73) failed
[  398.440464][T14444] netlink: 'syz.0.3754': attribute type 1 has an invalid length.
[  398.462764][T14444] netlink: 'syz.0.3754': attribute type 2 has an invalid length.
[  398.612465][T14446] loop3: detected capacity change from 0 to 1024
[  398.721322][T14446] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  398.748947][T14454] loop0: detected capacity change from 0 to 1024
[  399.015288][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.206532][T14467] tmpfs: Bad value for 'grpquota_inode_hardlimit'
[  399.652015][T14488] loop1: detected capacity change from 0 to 256
[  399.704678][T14488] exfat: Deprecated parameter 'namecase'
[  399.729431][T14488] exfat: Deprecated parameter 'utf8'
[  399.734381][T14491] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3775'.
[  399.876237][T14488] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  399.998823][T14493] loop0: detected capacity change from 0 to 4096
[  400.079457][T14499] xt_l2tp: v2 doesn't support IP mode
[  400.100371][T14500] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  400.192714][T14493] NILFS error (device loop0): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1
[  400.277836][T14493] Remounting filesystem read-only
[  400.382488][T14506] loop1: detected capacity change from 0 to 2048
[  400.439435][T14506] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  401.886932][T14554] loop1: detected capacity change from 0 to 4096
[  402.150368][T14572] netlink: 766 bytes leftover after parsing attributes in process `syz.5.3813'.
[  402.266321][T14576] binder: 14573:14576 ioctl c018620c 200000000380 returned -22
[  403.037124][T14600] loop0: detected capacity change from 0 to 4096
[  403.081212][T14600] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  403.985424][T14636] loop0: detected capacity change from 0 to 1764
[  404.411781][T14650] loop3: detected capacity change from 0 to 128
[  404.462031][T14650] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  404.526883][T14650] ext4 filesystem being mounted at /707/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  404.550220][T14611] loop2: detected capacity change from 0 to 32768
[  404.624524][T14650] EXT4-fs warning (device loop3): verify_group_input:137: Cannot add at group 1029 (only 1 groups)
[  404.700214][ T5939] usb 6-1: new full-speed USB device number 32 using dummy_hcd
[  404.802499][T14611] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  404.828137][ T5834] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  404.871494][ T5939] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  404.911942][T14678] loop6: detected capacity change from 0 to 16
[  404.929318][ T5939] usb 6-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[  404.947862][ T5939] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  404.971879][T14678] erofs (device loop6): mounted with root inode @ nid 36.
[  404.980448][ T5939] usb 6-1: Product: syz
[  404.992499][T14611] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  404.992499][T14611]   allowing incompatible features above 0.0: (unknown version)
[  404.993599][ T5939] usb 6-1: Manufacturer: syz
[  405.050138][T14678] erofs (device loop6): corrupted dir block 0 @ nid 36
[  405.089984][T14611] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  405.138382][ T5939] usb 6-1: SerialNumber: syz
[  405.165769][T14611] bcachefs (loop2): Version upgrade required:
[  405.165769][T14611] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  405.165769][T14611] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  405.165769][T14611]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  405.254151][T14611] bcachefs (loop2): dropping and reconstructing all alloc info
[  405.325215][ T5939] usb 6-1: config 0 descriptor??
[  405.348180][T14611] bcachefs (loop2): accounting_read... done
[  405.389537][T14611] bcachefs (loop2): alloc_read... done
[  405.421519][T14690] xt_CT: You must specify a L4 protocol and not use inversions on it
[  405.444440][T14611] bcachefs (loop2): snapshots_read... done
[  405.473155][T14611] bcachefs (loop2): done starting filesystem
[  405.758931][T14699] loop1: detected capacity change from 0 to 128
[  405.813644][ T5893] usb 6-1: USB disconnect, device number 32
[  405.821872][T14699] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  405.882457][ T5839] bcachefs (loop2): shutting down
[  405.927957][T14699] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  406.046444][ T5839] bcachefs (loop2): shutdown complete
[  406.250697][T14693] loop3: detected capacity change from 0 to 32768
[  406.272958][T14710] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3879'.
[  406.303581][T14693] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3869 (14693)
[  406.394851][T14693] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  406.449020][T14693] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  406.499791][T14693] BTRFS info (device loop3): disk space caching is enabled
[  406.507015][T14693] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  406.785392][T14693] BTRFS info (device loop3): rebuilding free space tree
[  406.866646][T14693] BTRFS info (device loop3): disabling free space tree
[  406.909824][T14693] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  406.919496][T14693] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  407.248593][ T5834] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  407.859385][T14715] loop6: detected capacity change from 0 to 32768
[  408.018920][T14715] (syz.6.3881,14715,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  408.111571][T14715] (syz.6.3881,14715,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  408.323699][T14775] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3902'.
[  408.335425][T14715] JBD2: Ignoring recovery information on journal
[  408.593990][T14715] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  408.660877][T14784] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  408.711634][T14786] netlink: 'syz.3.3906': attribute type 2 has an invalid length.
[  408.846585][T11735] ocfs2: Unmounting device (7,6) on (node local)
[  409.242061][T14803] autofs4:pid:14803:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a)
[  409.576182][T14810] loop1: detected capacity change from 0 to 1024
[  409.599312][T14810] EXT4-fs: Ignoring removed nomblk_io_submit option
[  409.698243][T14810] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.947881][T14827] Unsupported ieee802154 address type: 0
[  410.045821][ T5822] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.286124][T14836] loop2: detected capacity change from 0 to 1024
[  410.660964][T14836] syz.2.3928: attempt to access beyond end of device
[  410.660964][T14836] loop2: rw=0, sector=201326592, nr_sectors = 2 limit=1024
[  410.805915][T14836] Buffer I/O error on dev loop2, logical block 100663296, async page read
[  410.900881][T14836] hfsplus: unable to mark blocks free: error -5
[  410.907204][T14836] hfsplus: can't free extent
[  411.015109][T14854] loop6: detected capacity change from 0 to 512
[  411.035793][T14854] EXT4-fs: Ignoring removed orlov option
[  411.086522][T14854] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  411.217116][T14854] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  411.269991][T14854] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  411.313025][T14861] xt_bpf: check failed: parse error
[  411.345117][T14865] netlink: 'syz.5.3940': attribute type 7 has an invalid length.
[  411.468737][T14867] loop1: detected capacity change from 0 to 1024
[  411.530650][T11735] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.054249][T14889] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3950'.
[  412.079963][T14889] bridge_slave_1: left allmulticast mode
[  412.086075][T14889] bridge_slave_1: left promiscuous mode
[  412.112587][T14889] bridge0: port 2(bridge_slave_1) entered disabled state
[  412.139468][T14894] tmpfs: Bad value for 'usrquota_block_hardlimit'
[  412.241244][T14889] bridge_slave_0: left allmulticast mode
[  412.281113][T14889] bridge_slave_0: left promiscuous mode
[  412.291477][T14889] bridge0: port 1(bridge_slave_0) entered disabled state
[  412.360303][T14902] netlink: 'syz.0.3959': attribute type 9 has an invalid length.
[  412.368537][T14902] netlink: 'syz.0.3959': attribute type 7 has an invalid length.
[  412.419216][T14902] netlink: 'syz.0.3959': attribute type 8 has an invalid length.
[  412.562075][T14899] netlink: 'syz.5.3957': attribute type 3 has an invalid length.
[  412.577822][T14899] netlink: 3 bytes leftover after parsing attributes in process `syz.5.3957'.
[  412.699800][ T5939] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  412.891177][ T5939] usb 4-1: Using ep0 maxpacket: 32
[  412.903371][ T5939] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  412.949283][ T5939] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  413.010107][ T5939] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  413.019211][ T5939] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  413.052639][ T5939] usb 4-1: config 0 descriptor??
[  413.082342][T14924] netlink: 'syz.5.3969': attribute type 1 has an invalid length.
[  413.139851][ T5939] hub 4-1:0.0: USB hub found
[  413.233548][T14885] loop2: detected capacity change from 0 to 32768
[  413.288893][ T5939] hub 4-1:0.0: 2 ports detected
[  413.492105][ T5939] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  413.499331][ T5939] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  413.518410][ T5939] usbhid 4-1:0.0: can't add hid device: -71
[  413.528062][ T5939] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  413.536473][T14885] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  413.550893][ T5939] usb 4-1: USB disconnect, device number 31
[  413.747349][T14885] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,str_hash=crc32c,noacl,nojournal_transaction_names
[  413.747349][T14885]   allowing incompatible features above 0.0: (unknown version)
[  413.868989][T14885] bcachefs (loop2): initializing new filesystem
[  413.892737][T14885] bcachefs (loop2): going read-write
[  413.943612][T14885] bcachefs (loop2): marking superblocks
[  414.037521][T14885] bcachefs (loop2): initializing freespace
[  414.084044][T14885] bcachefs (loop2): done initializing freespace
[  414.157561][T14885] bcachefs (loop2): reading snapshots table
[  414.210086][T14885] bcachefs (loop2): reading snapshots done
[  414.252266][T14971] veth1_macvtap: left promiscuous mode
[  414.278062][T14967] loop6: detected capacity change from 0 to 256
[  414.325081][T14885] bcachefs (loop2): done starting filesystem
[  414.340457][T14971] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3986'.
[  414.374756][T14967] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d)
[  414.458550][T14967] exFAT-fs (loop6): start_clu is invalid cluster(0xffffffff)
[  414.487950][   T30] audit: type=1800 audit(1746364872.882:112): pid=14885 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3952" name="file1" dev="loop2" ino=4098 res=0 errno=0
[  414.627678][ T5839] bcachefs (loop2): shutting down
[  414.720342][ T5839] bcachefs (loop2): going read-only
[  414.725601][ T5839] bcachefs (loop2): finished waiting for writes to stop
[  414.755873][T14982] netlink: 270 bytes leftover after parsing attributes in process `syz.3.3993'.
[  414.786221][ T5839] bcachefs (loop2): flushing journal and stopping allocators, journal seq 3
[  414.806187][T14980] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3992'.
[  414.931389][ T5839] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 3
[  415.010300][ T5839] bcachefs (loop2): clean shutdown complete, journal seq 4
[  415.151882][ T5839] bcachefs (loop2): marking filesystem clean
[  415.174131][T14993] xt_CT: You must specify a L4 protocol and not use inversions on it
[  415.392171][ T5839] bcachefs (loop2): shutdown complete
[  415.618936][T15003] loop1: detected capacity change from 0 to 4096
[  415.798485][T14970] loop0: detected capacity change from 0 to 40427
[  415.870176][T14970] F2FS-fs (loop0): heap/no_heap options were deprecated
[  415.910685][T14970] F2FS-fs (loop0): invalid crc value
[  415.929802][T14970] F2FS-fs (loop0): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[  416.034995][T15012] loop3: detected capacity change from 0 to 1024
[  416.088082][T15012] EXT4-fs: Ignoring removed bh option
[  416.129904][T15012] EXT4-fs: Ignoring removed orlov option
[  416.169880][T15012] EXT4-fs: Mount option(s) incompatible with ext3
[  416.342450][T14970] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  416.623787][T15026] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  416.672595][T14998] loop5: detected capacity change from 0 to 32768
[  417.120089][T15039] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4022'.
[  417.140035][ T5828] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  417.352822][ T5828] usb 7-1: config 0 interface 0 has no altsetting 0
[  417.359646][ T5828] usb 7-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[  417.398325][ T5828] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  417.454971][ T5828] usb 7-1: config 0 descriptor??
[  417.699309][ T5828]  (null): keene_cmd_main failed (-71)
[  417.752671][ T5828] video4linux radio48: keene_cmd_main failed (-71)
[  417.775966][ T5828] radio-keene 7-1:0.0: V4L2 device registered as radio48
[  417.836624][ T5828] usb 7-1: USB disconnect, device number 7
[  417.847135][T15056] lo: entered allmulticast mode
[  418.123034][T15063] netlink: 684 bytes leftover after parsing attributes in process `syz.3.4032'.
[  418.169687][T15063] netlink: 684 bytes leftover after parsing attributes in process `syz.3.4032'.
[  418.550551][T15072] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  418.590193][T15067] loop1: detected capacity change from 0 to 4096
[  418.865531][T15050] loop0: detected capacity change from 0 to 32768
[  418.875298][T15067] ntfs3(loop1): ino=1e, "file1" attr_set_size
[  418.958251][T15050] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  419.042057][T15050] XFS (loop0): Ending clean mount
[  419.065506][T15088] loop6: detected capacity change from 0 to 1764
[  419.089052][T15050] XFS (loop0): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair.
[  419.356458][ T5823] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  420.264593][T15128] loop0: detected capacity change from 0 to 1024
[  420.409480][T15128] hfsplus: invalid xattr key length: 0
[  420.477002][T15136] loop5: detected capacity change from 0 to 256
[  420.632440][T15136] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  420.669947][T15142] netlink: 'syz.3.4065': attribute type 10 has an invalid length.
[  420.676963][T15136] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  420.678035][T15142] bridge0: port 3(macsec0) entered blocking state
[  420.767864][T15142] bridge0: port 3(macsec0) entered disabled state
[  420.806019][T15136] exFAT-fs (loop5): valid_size(150994954) is greater than size(10)
[  420.855452][T15142] macsec0: entered allmulticast mode
[  420.910643][T15142] macsec0: entered promiscuous mode
[  421.374465][T15152] loop1: detected capacity change from 0 to 4096
[  421.385650][T15117] loop6: detected capacity change from 0 to 32768
[  421.431228][T15152] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  421.445538][T15117] 
[  421.445538][T15117]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  421.445538][T15117] 
[  421.493229][T15117] ERROR: (device loop6): diWrite: ixpxd invalid
[  421.493229][T15117] 
[  421.530411][T15117] ERROR: (device loop6): txCommit: 
[  421.530411][T15117] 
[  421.630920][T15152] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  421.699456][T11735] 
[  421.699456][T11735]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  421.699456][T11735] 
[  421.714377][T15152] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  421.748006][T11735] 
[  421.748006][T11735]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  421.748006][T11735] 
[  421.812786][T15168] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  422.211337][T15178] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4085'.
[  422.263005][T15150] loop0: detected capacity change from 0 to 32768
[  422.324353][T15150] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.4070 (15150)
[  422.380206][T15150] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  422.442613][T15150] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  422.499808][T15150] BTRFS info (device loop0): using free-space-tree
[  422.533344][T15189] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4089'.
[  422.845582][T15214] loop2: detected capacity change from 0 to 64
[  422.911464][T15217] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4091'.
[  422.966631][T15220] netlink: 256 bytes leftover after parsing attributes in process `syz.6.4095'.
[  423.130988][ T5823] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  423.278242][T15228] loop2: detected capacity change from 0 to 512
[  423.400219][T15232] netlink: 412 bytes leftover after parsing attributes in process `syz.1.4104'.
[  423.427117][T15228] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  423.601626][T15228] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  423.647449][T15246] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4106'.
[  423.700003][T15228] ext4 filesystem being mounted at /687/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  424.080031][ T5885] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  424.156672][T15254] loop3: detected capacity change from 0 to 4096
[  424.216686][T15254] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  424.231145][T15261] virtiofs: Unknown parameter 'always'
[  424.250595][T15262] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  424.282494][ T5885] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  424.351577][ T5885] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8D has invalid maxpacket 25715, setting to 1024
[  424.387504][ T5885] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 1024
[  424.479871][ T5885] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  424.506325][ T5885] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.607997][T15228] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  424.669205][ T5885] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  424.690625][ T5885] usb 3-1: invalid MIDI out EP 0
[  424.906105][T15276] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  424.925086][ T5885] snd-usb-audio 3-1:27.0: probe with driver snd-usb-audio failed with error -22
[  424.968585][ T5983] udevd[5983]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  425.011833][ T5885] usb 3-1: USB disconnect, device number 30
[  425.043152][T15279] loop5: detected capacity change from 0 to 64
[  425.131279][T15283] ip6gretap1: entered promiscuous mode
[  425.430393][T15291] loop1: detected capacity change from 0 to 16
[  425.468858][T15291] erofs (device loop1): mounted with root inode @ nid 36.
[  425.533177][T15291] erofs (device loop1): bogus lookback distance 1388 @ lcn 42 of nid 36
[  425.594208][T15291] erofs (device loop1): failed to decompress -59 in[63, 4033] out[1851]
[  425.603103][T15291] erofs (device loop1): read error -117 @ 43 of nid 36
[  425.666158][T15265] loop6: detected capacity change from 0 to 32768
[  425.671013][T15296] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  425.702372][ T5839] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.920039][T15300] netlink: 'syz.1.4135': attribute type 1 has an invalid length.
[  425.952921][T15300] netlink: 216 bytes leftover after parsing attributes in process `syz.1.4135'.
[  426.450118][T15312] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4141'.
[  426.463477][T15285] loop3: detected capacity change from 0 to 32768
[  426.495111][T15285] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4127 (15285)
[  426.510206][T15312] netlink: 84 bytes leftover after parsing attributes in process `syz.5.4141'.
[  426.569140][T15285] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  426.620044][T15285] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  426.629350][T15285] BTRFS info (device loop3): using free-space-tree
[  427.010613][T15285] BTRFS info (device loop3): rebuilding free space tree
[  427.392953][ T5834] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  427.536775][T15304] loop2: detected capacity change from 0 to 32768
[  427.580128][T15304] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.4134 (15304)
[  427.656257][T15357] loop5: detected capacity change from 0 to 512
[  427.689534][T15304] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  427.740353][T15304] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  427.748902][T15357] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  427.766246][T15304] BTRFS info (device loop2): using free-space-tree
[  427.859974][ T5893] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  427.873387][T15357] EXT4-fs (loop5): 1 truncate cleaned up
[  427.899432][T15357] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  427.907488][T15365] bpf: Bad value for 'uid'
[  427.934184][T15357] EXT4-fs error (device loop5): ext4_get_verity_descriptor_location:298: inode #15: comm syz.5.4154: verity file has no extents
[  428.039861][ T5893] usb 1-1: Using ep0 maxpacket: 16
[  428.057306][ T5893] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  428.089353][ T5893] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8 has invalid maxpacket 262, setting to 64
[  428.103556][T15357] fs-verity (loop5, inode 15): Error -117 getting verity descriptor size
[  428.146499][ T5893] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  428.234805][ T5893] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  428.266946][ T5893] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  428.307081][ T5893] usb 1-1: Manufacturer: syz
[  428.329131][ T5824] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.383145][ T5893] usb 1-1: config 0 descriptor??
[  428.388802][ T5839] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  428.468979][T15319] loop1: detected capacity change from 0 to 32768
[  428.629358][ T5828] usb 1-1: USB disconnect, device number 37
[  428.933651][T15403] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4165'.
[  428.967365][T15319] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  429.163436][T15319] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,noinodes_32bit,nocow
[  429.163436][T15319]   allowing incompatible features above 0.0: (unknown version)
[  429.212013][T15319] bcachefs (loop1): initializing new filesystem
[  429.251173][T15319] bcachefs (loop1): going read-write
[  429.372568][T15319] bcachefs (loop1): marking superblocks
[  429.483239][T15319] bcachefs (loop1): initializing freespace
[  429.580862][T15319] bcachefs (loop1): done initializing freespace
[  429.630478][T15319] bcachefs (loop1): reading snapshots table
[  429.636477][T15319] bcachefs (loop1): reading snapshots done
[  429.735088][T15319] bcachefs (loop1): done starting filesystem
[  429.914926][ T5822] bcachefs (loop1): shutting down
[  429.999831][ T5822] bcachefs (loop1): going read-only
[  430.005102][ T5822] bcachefs (loop1): finished waiting for writes to stop
[  430.062922][T15440] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4185'.
[  430.110075][ T5822] bcachefs (loop1): flushing journal and stopping allocators, journal seq 3
[  430.346667][ T5822] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 3
[  430.414601][ T5822] bcachefs (loop1): clean shutdown complete, journal seq 4
[  430.501822][ T5822] bcachefs (loop1): marking filesystem clean
[  430.693189][ T5822] bcachefs (loop1): shutdown complete
[  431.099794][ T5893] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[  431.301616][ T5893] usb 1-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[  431.315273][ T5893] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.352655][ T5893] usb 1-1: config 0 descriptor??
[  431.375462][ T5893] gspca_main: sunplus-2.14.0 probing 055f:c420
[  431.567177][T15456] loop3: detected capacity change from 0 to 32768
[  431.672552][T15456] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  431.779098][ T5893] gspca_sunplus: reg_w_riv err -71
[  431.791287][ T5893] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[  431.801514][ T5893] usb 1-1: USB disconnect, device number 38
[  431.838499][T15506] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4211'.
[  431.889823][T15456] XFS (loop3): Ending clean mount
[  431.973993][T15509] loop2: detected capacity change from 0 to 512
[  432.040761][ T5834] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  432.120839][T15509] EXT4-fs (loop2): 1 orphan inode deleted
[  432.133319][T15509] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.157566][T15509] ext4 filesystem being mounted at /703/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  432.190240][ T1151] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  432.229784][ T5893] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  432.239853][ T1151] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  432.322639][ T5839] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.410009][ T5893] usb 7-1: Using ep0 maxpacket: 8
[  432.441184][ T5893] usb 7-1: New USB device found, idVendor=0979, idProduct=0270, bcdDevice=a8.17
[  432.486879][ T5893] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  432.524736][ T5893] usb 7-1: Product: syz
[  432.532686][ T5893] usb 7-1: Manufacturer: syz
[  432.537295][ T5893] usb 7-1: SerialNumber: syz
[  432.566751][ T5893] usb 7-1: config 0 descriptor??
[  432.588179][ T5893] hub 7-1:0.0: bad descriptor, ignoring hub
[  432.616383][ T5893] hub 7-1:0.0: probe with driver hub failed with error -5
[  432.646467][ T5893] gspca_main: jeilinj-2.14.0 probing 0979:0270
[  432.661815][T15527] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  432.817485][ T5893] usb 7-1: USB disconnect, device number 8
[  432.900098][   T30] audit: type=1326 audit(1746364891.282:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15532 comm="syz.2.4223" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd18178e969 code=0x0
[  433.374420][T15549] loop5: detected capacity change from 0 to 1024
[  433.409820][T15549] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  433.450697][T15549] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (31873!=20869)
[  433.505759][T15549] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  433.597678][T15549] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  433.845053][T15559] netlink: 136 bytes leftover after parsing attributes in process `syz.3.4235'.
[  433.894197][ T5824] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.900513][T15559] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  434.100137][   T24] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  434.291432][   T24] usb 3-1: Using ep0 maxpacket: 16
[  434.329814][   T24] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  434.367124][   T24] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  434.396252][   T24] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  434.412528][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  434.441253][   T24] usb 3-1: Product: syz
[  434.445457][   T24] usb 3-1: Manufacturer: syz
[  434.476771][   T24] usb 3-1: SerialNumber: syz
[  434.548577][T15588] loop0: detected capacity change from 0 to 8
[  434.920034][   T24] usb 3-1: cannot find UAC_HEADER
[  434.934280][ T5888] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  434.985087][   T24] snd-usb-audio 3-1:1.0: probe with driver snd-usb-audio failed with error -22
[  435.030553][   T24] usb 3-1: USB disconnect, device number 31
[  435.066556][ T5982] udevd[5982]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  435.152885][ T5888] usb 2-1: Using ep0 maxpacket: 16
[  435.204249][ T5888] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  435.236036][ T5888] usb 2-1: config 0 has no interfaces?
[  435.259200][ T5888] usb 2-1: string descriptor 0 read error: -71
[  435.285858][ T5888] usb 2-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice=e2.32
[  435.318969][ T5888] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  435.398323][ T5888] usb 2-1: config 0 descriptor??
[  435.424919][ T5888] usb 2-1: can't set config #0, error -71
[  435.471117][ T5888] usb 2-1: USB disconnect, device number 29
[  435.543977][T15615] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4262'.
[  435.604043][T15619] netlink: 'syz.2.4265': attribute type 4 has an invalid length.
[  435.629532][T15622] overlayfs: empty lowerdir
[  435.812134][T15625] loop5: detected capacity change from 0 to 16
[  435.843757][T15625] erofs (device loop5): mounted with root inode @ nid 36.
[  435.896010][T15630] C: renamed from team_slave_0 (while UP)
[  435.986691][T15630] netlink: 160 bytes leftover after parsing attributes in process `syz.6.4270'.
[  436.040002][T15630] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  436.602630][T15659] xt_hashlimit: Unknown mode mask 7221DE3B, kernel too old?
[  436.651879][T15661] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4285'.
[  436.730295][T15661] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4285'.
[  437.750133][T15710] loop6: detected capacity change from 0 to 256
[  437.926921][T15710] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x19066d23, utbl_chksum : 0xe619d30d)
[  438.325045][T15734] loop3: detected capacity change from 0 to 64
[  438.340062][T15730] loop1: detected capacity change from 0 to 2048
[  438.425889][T15730] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  438.489772][ T5828] usb 6-1: new full-speed USB device number 33 using dummy_hcd
[  438.523923][T15741] loop6: detected capacity change from 0 to 64
[  438.676597][ T5828] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  438.697613][T15743] netlink: 'syz.2.4325': attribute type 3 has an invalid length.
[  438.728135][ T5828] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  438.741001][T15743] netlink: 'syz.2.4325': attribute type 1 has an invalid length.
[  438.767100][ T5828] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  438.782989][T15746] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  438.799857][T15743] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4325'.
[  438.817155][ T5828] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  438.837103][T15743] NCSI netlink: No device for ifindex 33022
[  438.869271][ T5828] usb 6-1: SerialNumber: syz
[  438.939918][ T5828] usb 6-1: 0:2 : does not exist
[  439.109092][T15753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4330'.
[  439.153398][ T5828] usb 6-1: USB disconnect, device number 33
[  439.326030][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  439.332459][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  439.613514][T15769] loop2: detected capacity change from 0 to 2048
[  439.653054][T15769] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  439.750669][T15738] loop0: detected capacity change from 0 to 32768
[  439.790140][T15738] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.4323 (15738)
[  439.880564][T15738] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  439.940020][T15738] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  439.948482][T15738] BTRFS info (device loop0): using free-space-tree
[  439.995520][   T30] audit: type=1326 audit(1746364898.392:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdde4b8e969 code=0x7ffc0000
[  440.139118][   T30] audit: type=1326 audit(1746364898.392:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdde4b8e969 code=0x7ffc0000
[  440.338278][   T30] audit: type=1326 audit(1746364898.392:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7fdde4b8e969 code=0x7ffc0000
[  440.468060][T15809] loop2: detected capacity change from 0 to 64
[  440.469328][   T30] audit: type=1326 audit(1746364898.392:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdde4b8e969 code=0x7ffc0000
[  440.558833][   T30] audit: type=1326 audit(1746364898.392:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdde4b8e969 code=0x7ffc0000
[  440.753408][ T5823] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  440.754791][T15816] loop6: detected capacity change from 0 to 8
[  440.967749][T15816] SQUASHFS error: Failed to read block 0x33c: -5
[  441.019938][T15816] SQUASHFS error: Unable to read metadata cache entry [33a]
[  441.028539][T15816] SQUASHFS error: Unable to read inode 0xa7
[  441.249013][T15829] loop3: detected capacity change from 0 to 128
[  441.498664][T15833] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4362'.
[  441.889101][T15848] loop2: detected capacity change from 0 to 128
[  442.033544][T15800] loop1: detected capacity change from 0 to 32768
[  442.172611][T15800] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  442.516921][T15873] netlink: 'syz.5.4378': attribute type 10 has an invalid length.
[  442.533948][T15800] XFS (loop1): Ending clean mount
[  442.550843][T15875] netlink: 48 bytes leftover after parsing attributes in process `syz.6.4377'.
[  442.709897][T15879] netlink: 'syz.2.4381': attribute type 1 has an invalid length.
[  442.743342][T15883] netlink: 'syz.5.4382': attribute type 2 has an invalid length.
[  442.760028][T15879] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4381'.
[  442.776680][ T5822] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  442.790125][T15883] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4382'.
[  442.839670][T15879] netlink: 'syz.2.4381': attribute type 1 has an invalid length.
[  442.904849][T15879] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4381'.
[  442.957165][T15879] netlink: 'syz.2.4381': attribute type 1 has an invalid length.
[  443.005139][T15879] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4381'.
[  443.072881][T15879] netlink: 'syz.2.4381': attribute type 1 has an invalid length.
[  443.088509][T15879] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4381'.
[  443.131078][T15879] netlink: 'syz.2.4381': attribute type 1 has an invalid length.
[  443.159242][T15879] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4381'.
[  443.182905][T15879] netlink: 'syz.2.4381': attribute type 1 has an invalid length.
[  443.204236][T15879] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4381'.
[  443.229980][ T5885] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  443.257238][T15879] netlink: 'syz.2.4381': attribute type 1 has an invalid length.
[  443.296894][T15879] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4381'.
[  443.321801][T15879] netlink: 'syz.2.4381': attribute type 1 has an invalid length.
[  443.397130][ T5885] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  443.406634][ T5885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  443.447100][ T5885] usb 4-1: Product: syz
[  443.476865][ T5885] usb 4-1: Manufacturer: syz
[  443.509874][ T5885] usb 4-1: SerialNumber: syz
[  443.575108][ T5885] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  443.625873][ T5893] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  444.937524][T15937] loop1: detected capacity change from 0 to 22
[  444.993258][T15937] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  445.079216][T15937] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  445.087456][   T31] INFO: task syz-executor:5833 blocked for more than 143 seconds.
[  445.131145][   T31]       Not tainted 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0
[  445.189658][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  445.254881][   T31] task:syz-executor    state:D stack:17608 pid:5833  tgid:5833  ppid:1      task_flags:0x400140 flags:0x00004004
[  445.330177][ T5893] usb 4-1: Service connection timeout for: 256
[  445.336369][ T5893] ath9k_htc 4-1:1.0: ath9k_htc: Unable to initialize HTC services
[  445.341854][   T31] Call Trace:
[  445.389813][   T31]  <TASK>
[  445.396053][   T31]  __schedule+0x16e2/0x4cd0
[  445.404890][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.440402][   T31]  ? schedule+0x165/0x360
[  445.460012][   T31]  ? __lock_acquire+0xaac/0xd20
[  445.492234][   T31]  ? __pfx___schedule+0x10/0x10
[  445.518387][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.549684][   T31]  ? schedule+0x91/0x360
[  445.558897][   T31]  schedule+0x165/0x360
[  445.575414][   T31]  io_schedule+0x81/0xe0
[  445.587844][   T31]  folio_wait_bit_common+0x6b0/0xb90
[  445.600013][   T31]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  445.619596][   T31]  ? __pfx_wake_page_function+0x10/0x10
[  445.658737][   T31]  ? folios_put_refs+0x559/0x640
[  445.667595][   T31]  ? __pfx_find_lock_entries+0x10/0x10
[  445.677023][   T31]  __filemap_get_folio+0x139/0xaf0
[  445.685962][   T31]  truncate_inode_pages_range+0x3ed/0xda0
[  445.695525][   T31]  ? evict+0x847/0x9c0
[  445.699682][   T31]  ? evict_inodes+0x636/0x6c0
[  445.704936][   T31]  ? generic_shutdown_super+0x9a/0x2c0
[  445.714654][   T31]  ? kill_block_super+0x44/0x90
[  445.721451][   T31]  ? deactivate_locked_super+0xbc/0x130
[  445.729195][   T31]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  445.744822][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.758068][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.784640][   T31]  ? __lock_acquire+0xaac/0xd20
[  445.797388][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  445.812473][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  445.817913][   T31]  evict+0x517/0x9c0
[  445.822751][   T31]  ? __pfx_evict+0x10/0x10
[  445.827266][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.851587][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.867300][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  445.894728][   T31]  evict_inodes+0x636/0x6c0
[  445.903777][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.938221][   T31]  ? __pfx_evict_inodes+0x10/0x10
[  445.962643][   T31]  generic_shutdown_super+0x9a/0x2c0
[  445.975888][   T31]  kill_block_super+0x44/0x90
[  445.993073][   T31]  deactivate_locked_super+0xbc/0x130
[  445.998562][   T31]  cleanup_mnt+0x425/0x4c0
[  446.009228][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.016963][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  446.028268][   T31]  task_work_run+0x1d4/0x260
[  446.035016][   T31]  ? __pfx_task_work_run+0x10/0x10
[  446.042208][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.049116][   T31]  resume_user_mode_work+0x5e/0x80
[  446.063361][   T31]  syscall_exit_to_user_mode+0x9a/0x120
[  446.069016][   T31]  do_syscall_64+0x103/0x210
[  446.088312][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.104241][   T31]  ? exc_page_fault+0x91/0x110
[  446.109407][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.123753][   T31] RIP: 0033:0x7fe69cf8fc97
[  446.128417][   T31] RSP: 002b:00007fff77ddc4f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  446.152819][   T31] RAX: 0000000000000000 RBX: 00007fe69d01089d RCX: 00007fe69cf8fc97
[  446.166102][   T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff77ddc5b0
[  446.176926][   T31] RBP: 00007fff77ddc5b0 R08: 0000000000000000 R09: 0000000000000000
[  446.190072][   T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff77ddd640
[  446.198288][   T31] R13: 00007fe69d01089d R14: 0000000000047a0d R15: 00007fff77ddd680
[  446.217553][   T31]  </TASK>
[  446.235520][   T31] 
[  446.235520][   T31] Showing all locks held in the system:
[  446.254330][   T31] 4 locks held by kworker/0:1/10:
[  446.261194][   T31] 2 locks held by kworker/u8:1/13:
[  446.266459][   T31]  #0: ffff88801a081148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[  446.284821][   T31]  #1: ffffc90000127c60 ((reaper_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[  446.299587][   T31] 2 locks held by rcu_tasks_trace/29:
[  446.309501][   T31]  #0: ffffffff8df3c590 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{4:4}, at: rcu_tasks_one_gp+0xaf9/0xdf0
[  446.326805][   T31]  #1: ffffffff8df41338 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b7/0x730
[  446.348919][   T31] 1 lock held by khungtaskd/31:
[  446.376111][   T31]  #0: ffffffff8df3b860 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  446.390415][   T31] 2 locks held by kworker/u8:6/1141:
[  446.395790][   T31]  #0: ffff88801a081148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[  446.415157][   T31]  #1: ffffc90003fb7c60 (connector_reaper_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[  446.429005][   T31] 2 locks held by getty/5576:
[  446.438537][   T31]  #0: ffff8880335ba0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  446.465225][   T31]  #1: ffffc900030062f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  446.480587][   T31] 4 locks held by kworker/0:3/5828:
[  446.485937][   T31] 1 lock held by syz-executor/5833:
[  446.510774][   T31]  #0: ffff88807affa0e0 (&type->s_umount_key#64){+.+.}-{4:4}, at: deactivate_super+0xa9/0xe0
[  446.526463][   T31] 2 locks held by kworker/0:6/5893:
[  446.536767][   T31] 4 locks held by kworker/0:2H/11490:
[  446.546898][   T31] 1 lock held by syz.3.4411/15940:
[  446.561386][   T31]  #0: ffff8880798a8e08 (&sb->s_type->i_mutex_key#11){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[  446.577369][   T31] 
[  446.584177][   T31] =============================================
[  446.584177][   T31] 
[  446.598201][   T31] NMI backtrace for cpu 1
[  446.598219][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 PREEMPT(full) 
[  446.598248][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  446.598263][   T31] Call Trace:
[  446.598273][   T31]  <TASK>
[  446.598284][   T31]  dump_stack_lvl+0x189/0x250
[  446.598321][   T31]  ? __wake_up_klogd+0xd9/0x110
[  446.598356][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.598387][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  446.598424][   T31]  ? __pfx__printk+0x10/0x10
[  446.598465][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  446.598509][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  446.598545][   T31]  ? _printk+0xcf/0x120
[  446.598574][   T31]  ? __pfx__printk+0x10/0x10
[  446.598602][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  446.598631][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  446.598674][   T31]  watchdog+0xfee/0x1030
[  446.598707][   T31]  ? watchdog+0x1de/0x1030
[  446.598747][   T31]  kthread+0x711/0x8a0
[  446.598781][   T31]  ? __pfx_watchdog+0x10/0x10
[  446.598811][   T31]  ? __pfx_kthread+0x10/0x10
[  446.598839][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.598869][   T31]  ? __pfx_kthread+0x10/0x10
[  446.598897][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  446.598922][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.598950][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  446.598983][   T31]  ? __pfx_kthread+0x10/0x10
[  446.599012][   T31]  ret_from_fork+0x4e/0x80
[  446.599036][   T31]  ? __pfx_kthread+0x10/0x10
[  446.599066][   T31]  ret_from_fork_asm+0x1a/0x30
[  446.599108][   T31]  </TASK>
[  446.599140][   T31] Sending NMI from CPU 1 to CPUs 0:
[  446.659841][ T5828] usb 4-1: USB disconnect, device number 32
[  446.663472][    C0] NMI backtrace for cpu 0
[  446.663488][    C0] CPU: 0 UID: 0 PID: 5828 Comm: kworker/0:3 Not tainted 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 PREEMPT(full) 
[  446.663515][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  446.663530][    C0] Workqueue: usb_hub_wq hub_event
[  446.663562][    C0] RIP: 0010:io_serial_in+0x77/0xc0
[  446.663590][    C0] Code: e8 de 15 82 fc 44 89 f9 d3 e3 49 83 c6 40 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 8f 0a e4 fc 41 03 1e 89 da ec <0f> b6 c0 5b 41 5c 41 5e 41 5f e9 65 96 d2 fb cc 44 89 f9 80 e1 07
[  446.663609][    C0] RSP: 0018:ffffc90002eeeef0 EFLAGS: 00000002
[  446.663627][    C0] RAX: 1ffffffff3369900 RBX: 00000000000003fd RCX: 0000000000000000
[  446.663643][    C0] RDX: 00000000000003fd RSI: 00000000000146d6 RDI: 00000000000146d7
[  446.663657][    C0] RBP: ffffffff99b4ce50 R08: ffff888023f68237 R09: 1ffff110047ed046
[  446.663674][    C0] R10: dffffc0000000000 R11: ffffffff853daa20 R12: dffffc0000000000
[  446.663691][    C0] R13: 0000000000000000 R14: ffffffff99b4cbc0 R15: 0000000000000000
[  446.663708][    C0] FS:  0000000000000000(0000) GS:ffff8881260cb000(0000) knlGS:0000000000000000
[  446.663727][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  446.663742][    C0] CR2: 00007f0dbc1b6700 CR3: 000000000dd36000 CR4: 0000000000350ef0
[  446.663759][    C0] Call Trace:
[  446.663768][    C0]  <TASK>
[  446.663779][    C0]  wait_for_lsr+0x1a1/0x2f0
[  446.663811][    C0]  serial8250_console_write+0x134c/0x1ba0
[  446.663846][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.663874][    C0]  ? __pfx_serial8250_console_write+0x10/0x10
[  446.663901][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.663928][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.663955][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.663983][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.664008][    C0]  ? do_raw_spin_unlock+0x122/0x240
[  446.664034][    C0]  ? console_flush_all+0x13a/0xc40
[  446.664056][    C0]  ? console_flush_all+0x13a/0xc40
[  446.664081][    C0]  console_flush_all+0x728/0xc40
[  446.664107][    C0]  ? console_flush_all+0x13a/0xc40
[  446.664135][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  446.664167][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.664192][    C0]  ? is_printk_cpu_sync_owner+0x32/0x40
[  446.664222][    C0]  console_unlock+0xc4/0x270
[  446.664245][    C0]  ? __pfx_console_unlock+0x10/0x10
[  446.664269][    C0]  ? vprintk_emit+0x444/0x7a0
[  446.664288][    C0]  ? vprintk_emit+0x444/0x7a0
[  446.664309][    C0]  vprintk_emit+0x5b7/0x7a0
[  446.664335][    C0]  ? vprintk_emit+0x444/0x7a0
[  446.664357][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  446.664380][    C0]  ? __pfx_snprintf+0x10/0x10
[  446.664417][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.664447][    C0]  dev_vprintk_emit+0x337/0x3f0
[  446.664484][    C0]  ? __pfx_dev_vprintk_emit+0x10/0x10
[  446.664530][    C0]  dev_printk_emit+0xe0/0x130
[  446.664569][    C0]  ? __pfx_dev_printk_emit+0x10/0x10
[  446.664604][    C0]  ? __queue_work+0x103/0xfe0
[  446.664628][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.664653][    C0]  ? __dev_printk+0x131/0x190
[  446.664683][    C0]  _dev_info+0x10a/0x160
[  446.664719][    C0]  ? __pfx__dev_info+0x10/0x10
[  446.664752][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.664777][    C0]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  446.664806][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.664831][    C0]  ? kernfs_notify+0x2ee/0x370
[  446.664856][    C0]  usb_disconnect+0xdd/0x910
[  446.664889][    C0]  hub_event+0x1cdb/0x4a00
[  446.664930][    C0]  ? __lock_acquire+0xaac/0xd20
[  446.664965][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.664990][    C0]  ? do_raw_spin_lock+0x121/0x290
[  446.665014][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.665041][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.665072][    C0]  ? __lock_acquire+0xaac/0xd20
[  446.665106][    C0]  ? __pfx_hub_event+0x10/0x10
[  446.665139][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.665166][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.665194][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  446.665215][    C0]  ? process_scheduled_works+0x9ec/0x17a0
[  446.665249][    C0]  ? process_scheduled_works+0x9ec/0x17a0
[  446.665284][    C0]  process_scheduled_works+0xade/0x17a0
[  446.665346][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  446.665386][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.665418][    C0]  worker_thread+0x8a0/0xda0
[  446.665440][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  446.665469][    C0]  ? __kthread_parkme+0x7b/0x200
[  446.665498][    C0]  kthread+0x711/0x8a0
[  446.665526][    C0]  ? __pfx_worker_thread+0x10/0x10
[  446.665549][    C0]  ? __pfx_kthread+0x10/0x10
[  446.665574][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.665603][    C0]  ? __pfx_kthread+0x10/0x10
[  446.665628][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  446.665649][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.665673][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  446.665698][    C0]  ? __pfx_kthread+0x10/0x10
[  446.665723][    C0]  ret_from_fork+0x4e/0x80
[  446.665744][    C0]  ? __pfx_kthread+0x10/0x10
[  446.665770][    C0]  ret_from_fork_asm+0x1a/0x30
[  446.665801][    C0]  </TASK>
[  446.725446][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  446.725474][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 PREEMPT(full) 
[  446.725504][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  446.725520][   T31] Call Trace:
[  446.725532][   T31]  <TASK>
[  446.725544][   T31]  dump_stack_lvl+0x99/0x250
[  446.725593][   T31]  ? __asan_memcpy+0x40/0x70
[  446.725621][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  446.725658][   T31]  ? __pfx__printk+0x10/0x10
[  446.725693][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.725728][   T31]  panic+0x2db/0x790
[  446.725763][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.725798][   T31]  ? __pfx_panic+0x10/0x10
[  446.725830][   T31]  ? tick_nohz_tick_stopped+0x86/0xb0
[  446.725862][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.725890][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  446.725922][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  446.725965][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.726000][   T31]  watchdog+0x102d/0x1030
[  446.726035][   T31]  ? watchdog+0x1de/0x1030
[  446.726076][   T31]  kthread+0x711/0x8a0
[  446.726111][   T31]  ? __pfx_watchdog+0x10/0x10
[  446.726142][   T31]  ? __pfx_kthread+0x10/0x10
[  446.726171][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.726201][   T31]  ? __pfx_kthread+0x10/0x10
[  446.726230][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  446.726256][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  446.726285][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  446.726315][   T31]  ? __pfx_kthread+0x10/0x10
[  446.726343][   T31]  ret_from_fork+0x4e/0x80
[  446.726370][   T31]  ? __pfx_kthread+0x10/0x10
[  446.726400][   T31]  ret_from_fork_asm+0x1a/0x30
[  446.726442][   T31]  </TASK>
[  446.729423][   T31] Kernel Offset: disabled