last executing test programs:

1m0.639823414s ago: executing program 4 (id=2229):
syz_usb_connect$uac1(0x2, 0x8a, &(0x7f0000000400)=ANY=[@ANYBLOB="12011001000000406b1d01014000010203010902780003010990060904000000010100000a24010800080201020524040109052405060509040100000102000009040101010102000009050109ff0310400d07250101030100090402000001020000090402010101022000072401080f01100824020100021e0909058209000204090907250183870c00c15d068ca8beffa10e5c6a878a9c8c25b0ab932d13d99925d00bd0b750a21eee72301eb663ce01175bc66b2edc9086b78b58d8304f2687b3ec09a29a0eb1312a48"], 0x0)

58.605942244s ago: executing program 4 (id=2244):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000004000000000000000100000d0a0000000c070000000000000000000002000006040000000200000000000200040018000300010000612e"], &(0x7f0000000f40)=""/4089, 0x4c, 0xff9, 0x1}, 0x28)

58.524070827s ago: executing program 4 (id=2247):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip6_flowlabel\x00')
preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000240)=""/29, 0x1d}], 0x1, 0x0, 0x0)

58.489844369s ago: executing program 4 (id=2249):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x80000c, &(0x7f0000000d80)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303030342c6e6c733d61736369692c73657373696f6e3d3078666666666666666666666666666637662c747970653d883b7f382c63726561746f723dd4a620e92c6e6f6465636f6d706f73652c747970653d5dbcce902c756d61736b3d30303030303030303030303030303030303030303030312c63726561746f723d40f194712c626172726965720063726561746f723d65fe04c22c6e6f6465636f6d706f73652c6465636f6d706f73652c63726561746f723d8a7222832c7569643d", @ANYRESDEC=0x0, @ANYRESOCT, @ANYRES32, @ANYRESHEX, @ANYBLOB="a520ad23321534a883fa116848e7295e8693132df1638d943e7dacc03c8d2d9fca2aeb72f72ed82af2ceb592a5eea7e56631ff9ac0d92bcc5e6859b316fd2ac8694577d071f3f31f92dfdbdd695e5edca5b90abb53107e708b90150fc9eee8418e9511b8a4ce6f69a31472378258a55e8aa64d4a9859bfb3d6d3e49cf0a4c8b0044d37812dd15af758d8177ad1d630193b27881a8a06b8221dbceefe3fbf199b81bc31338d35cf4cb9f7f28e7abc55afd41f3a8b4a1e3fc4cd2dece6d1659ab1fc8511c18f9bd3c80004efbd7cfda12866316c01cc4a69ca09f85189380f835231d8ae5332237152dc3ed45d7f88", @ANYRES64, @ANYRESDEC], 0x1, 0x703, &(0x7f0000001f80)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x1004020, 0x0)

57.623624417s ago: executing program 4 (id=2252):
syz_emit_ethernet(0x46, &(0x7f0000000440)={@random="61fe71b72b5f", @random="12d65acc8373", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "001958", 0x10, 0x3a, 0xff, @empty, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4}}}}}}, 0x0)

56.273960726s ago: executing program 4 (id=2263):
r0 = memfd_create(&(0x7f00000009c0)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea\x06\x14\x0e\xceA\xa3\xf3\xa4\x846\b\x84Ii\x83d\x9a\xaa\xcc\x05\xd5\xa5c\xb9\xe0E\xe2\x99\x12zEf\x84\x91', 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0)
fcntl$addseals(r0, 0x409, 0xf)

56.17895896s ago: executing program 32 (id=2263):
r0 = memfd_create(&(0x7f00000009c0)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea\x06\x14\x0e\xceA\xa3\xf3\xa4\x846\b\x84Ii\x83d\x9a\xaa\xcc\x05\xd5\xa5c\xb9\xe0E\xe2\x99\x12zEf\x84\x91', 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0)
fcntl$addseals(r0, 0x409, 0xf)

5.700942559s ago: executing program 2 (id=2912):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, 0x0, &(0x7f00000000c0))

5.591932794s ago: executing program 2 (id=2916):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x0)
r4 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x18, 0x0)
landlock_restrict_self(r4, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/diskstats\x00', 0x0, 0x0)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000ffe000/0x1000)=nil)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)

4.53821146s ago: executing program 2 (id=2923):
r0 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000280), 0x0)

4.439747834s ago: executing program 2 (id=2926):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000002240)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000000700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000015c0)=ANY=[@ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)=r3}, 0x20)
sendmsg$inet(r2, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

4.220399244s ago: executing program 0 (id=2931):
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000040), 0x7, 0x4d6, &(0x7f0000000740)="$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")

4.09347075s ago: executing program 2 (id=2934):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x50)
ioctl$sock_SIOCGIFBR(0xffffffffffffffff, 0x8940, &(0x7f0000000080)=@add_del={0x2, 0x0})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x10, 0x4, 0x4, 0x7, 0x0, r0}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r2, &(0x7f0000000080), 0x0}, 0x20)

3.765936624s ago: executing program 0 (id=2936):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000000)='./file1\x00', 0x200210, &(0x7f0000000200)=ANY=[], 0x3, 0x643, &(0x7f00000012c0)="$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")

3.650922559s ago: executing program 2 (id=2938):
r0 = socket$netlink(0x10, 0x3, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000000140)={0x24, 0x2e, 0x503, 0x0, 0x0, "", [@nested={0x14, 0x0, 0x0, 0x1, [@nested={0x10, 0xf3, 0x0, 0x1, [@typed={0x4, 0x7}, @typed={0x8, 0x9f, 0x0, 0x0, @uid}]}]}]}, 0x24}], 0x1, 0x0, 0x0, 0x4080}, 0x0)

3.533460844s ago: executing program 1 (id=2941):
keyctl$update(0x2, 0x0, 0x0, 0xfffffffffffffdfa)

3.40403397s ago: executing program 0 (id=2942):
r0 = socket(0x2, 0x3, 0xff)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000000400))
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000080), 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
r4 = dup(r2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r1, &(0x7f0000000240)={@val={0x0, 0x6005}, @void, @eth={@multicast, @remote, @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x26, 0x14, 0x68, 0x0, 0x9, 0x88, 0x0, @private=0xa010101, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}}}, 0x2a)

3.40371577s ago: executing program 1 (id=2943):
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f0000000140)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@errors_remount}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f0000000580)="$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")
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x0, 0x1000, 0x8, 0x1}, 0x20)
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x4)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r3, 0x4b47, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)={0x14, 0x3, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x24000010)

1.970309763s ago: executing program 1 (id=2950):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x91}, 0x24008000)
recvmmsg$unix(r1, &(0x7f0000004ac0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000340)=""/121, 0x79}, {&(0x7f00000003c0)=""/67, 0x43}], 0x2}}], 0x1, 0x2124, 0x0)

1.925169115s ago: executing program 0 (id=2951):
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfec8d000)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x0, 0x0, 0x1, 0x1, 0x4}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)

1.81225454s ago: executing program 5 (id=2953):
openat$tun(0xffffffffffffff9c, 0x0, 0x22000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x84000, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB, @ANYRES32=r3], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)

1.80839497s ago: executing program 0 (id=2954):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x4001}, 0xfea3)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, 0x12, 0x6b4e12c8a09f3155, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0x1, 0x0, 0x0, @ipv6=@mcast2}]}]}, 0x2c}}, 0x0)

1.728859764s ago: executing program 0 (id=2955):
syz_clone(0xb44040, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f0000000080)=0xb309)
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f0000000080)=ANY=[])
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/devices\x00', 0x0, 0x0)
preadv(r1, &(0x7f00000015c0)=[{&(0x7f0000001600)=""/4094, 0xffe}], 0x1, 0xf0, 0x3)

1.715202424s ago: executing program 3 (id=2956):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000680)=@file={0x1, '.\x00'}, 0x6e)

1.639501628s ago: executing program 3 (id=2957):
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000040)={{{@in=@private=0xa010100, @in=@local, 0xfffd, 0x1, 0x4e21, 0x0, 0xa}, {0x2, 0x2, 0x3, 0x0, 0x0, 0x4, 0x200}, {0x40000000020, 0x40000200, 0x54, 0xff}, 0x0, 0x0, 0x1, 0x1}, {{@in=@rand_addr=0x64010101, 0x0, 0x32}, 0x2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffffde, 0x0, 0x3, 0x0, 0x4d, 0x3, 0x8001}}, 0xe8)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000003c0)={0x0, <r0=>0x0}, 0x8)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300)=r0, 0x4)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000004940)={r1, 0x20, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0}}, 0x10)

1.307957902s ago: executing program 3 (id=2958):
capset(0x0, &(0x7f0000000340))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10)
recvmmsg$unix(r2, &(0x7f00000053c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0xa32, 0x60, 0x0)
ioctl$VT_RESIZE(r0, 0x5609, 0x0)

1.284526713s ago: executing program 3 (id=2959):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100009c323f08a5040330b2440102030109021200010002"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000000180)={0x14, 0x0, &(0x7f0000000140)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x443}}}, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)

1.095648471s ago: executing program 1 (id=2960):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = getpid()
ioprio_get$pid(0x3, r3)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000400), 0x12)
chdir(0x0)

653.588021ms ago: executing program 5 (id=2961):
open(&(0x7f0000000040)='./file0\x00', 0x101100, 0x140)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCOUTQ(r0, 0x4b4b, &(0x7f0000000000))

580.079354ms ago: executing program 3 (id=2962):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_tcp_int(r0, 0x6, 0xc, 0x0, &(0x7f0000000000))

579.852954ms ago: executing program 5 (id=2963):
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfec8d000)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x0, 0x0, 0x1, 0x1, 0x4}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)

560.082705ms ago: executing program 3 (id=2964):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000080), 0xfffffffffffffdbb, 0x0, 0xffffffffffffffff, 0xffb9}, 0x48)

483.685689ms ago: executing program 5 (id=2965):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000013c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x1338, 0x1128, 0x178, 0xc, 0x1128, 0x178, 0x1268, 0x258, 0x258, 0x1268, 0x258, 0x3, 0x0, {[{{@ipv6={@loopback={0x1f0}, @mcast2, [], [0x0, 0xff], 'pim6reg0\x00', 'netpci0\x00', {}, {}, 0x2e}, 0x0, 0x1100, 0x1128, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup.cpu/syz0\x00'}}, @common=@unspec=@addrtype1={{0x28}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x6, 0x200}}}, {{@ipv6={@private1, @mcast1, [0x0, 0xff], [], 'wg2\x00', 'hsr0\x00', {0xff}}, 0x0, 0xd0, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0xffff, 0x0, 0x59, 0x1, 0x0, "5b5e4637e2c868d14d9be48a2a79837d5499f42d086321ddfda71d6d982957c9efbee097d2c1e45c21510a84843e700c6ab764b15794236650ed3db73c2d916d"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1398)

412.001322ms ago: executing program 5 (id=2966):
syz_emit_ethernet(0x4e, &(0x7f0000000380)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x18, 0x3a, 0xff, @remote, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x65, '\x00', @local}}}}}}, 0x0)

107.810255ms ago: executing program 1 (id=2967):
add_key$fscrypt_v1(&(0x7f00000003c0), &(0x7f0000001e80)={'fscrypt:', @desc3}, &(0x7f0000001ec0)={0x0, "b3662275fe0e0c3ed955308df975b61985fefdb4ae1e625ecc4f21b39d3d43131b1a6cb864e9c4da9c5aebd353b36bcc493f97ce35c7f36b2ab6b2b078796159", 0x2d}, 0x3b, 0xfffffffffffffffb)

82.779016ms ago: executing program 5 (id=2968):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x8000000000000021, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$cdc_ncm(0x7, 0x6e, &(0x7f00000002c0)=ANY=[], 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$EVIOCRMFF(r0, 0xc0085508, &(0x7f0000000000)=0x1000000)

0s ago: executing program 1 (id=2969):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x91}, 0x24008000)
recvmmsg$unix(r1, &(0x7f0000004ac0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000340)=""/121, 0x79}, {&(0x7f00000003c0)=""/67, 0x43}], 0x2}}], 0x1, 0x2124, 0x0)

kernel console output (not intermixed with test programs):

 capacity change from 0 to 512
[  117.308888][ T6473] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000]
[  117.310389][ T6473] System zones: 0-2, 18-18, 34-34
[  118.143250][ T6473] EXT4-fs error (device loop3): ext4_do_update_inode:5268: inode #3: comm syz.3.725: corrupted inode contents
[  118.158161][ T6473] EXT4-fs error (device loop3): ext4_dirty_inode:6133: inode #3: comm syz.3.725: mark_inode_dirty error
[  118.163109][ T6473] EXT4-fs error (device loop3): ext4_do_update_inode:5268: inode #3: comm syz.3.725: corrupted inode contents
[  118.167376][ T6473] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #3: comm syz.3.725: mark_inode_dirty error
[  118.170761][ T6473] Quota error (device loop3): write_blk: dquota write failed
[  118.172231][ T6473] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  118.173746][ T6473] EXT4-fs error (device loop3): ext4_acquire_dquot:6809: comm syz.3.725: Failed to acquire dquot type 0
[  118.209587][ T6473] EXT4-fs (loop3): 1 orphan inode deleted
[  118.210477][ T6473] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  118.231532][ T4517] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  118.233062][ T4517] EXT4-fs error (device loop3): ext4_release_dquot:6845: comm kworker/u4:8: Failed to release dquot type 1
[  118.306304][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  118.313526][ T6505] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  118.313526][ T6505] The task syz.0.733 (6505) triggered the difference, watch for misbehavior.
[  118.343146][ T6511] loop3: detected capacity change from 0 to 512
[  118.344895][ T6511] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  118.351399][ T6511] EXT4-fs (loop3): 1 truncate cleaned up
[  118.352351][ T6511] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  118.429813][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  119.673189][ T6536] loop0: detected capacity change from 0 to 4096
[  119.689199][ T6536] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz.0.748: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  119.693934][ T6536] EXT4-fs (loop0): get root inode failed
[  119.694952][ T6536] EXT4-fs (loop0): mount failed
[  119.842437][ T6558] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  119.844178][ T6558] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  121.541174][ T6621] usb usb1: check_ctrlrecip: process 6621 (syz.0.783) requesting ep 01 but needs 81
[  121.542737][ T6621] usb usb1: usbfs: process 6621 (syz.0.783) did not claim interface 0 before use
[  121.601475][ T6622] loop4: detected capacity change from 0 to 1024
[  121.654938][ T6629] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  121.656513][ T6629] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  121.696141][ T6622] netlink: 12 bytes leftover after parsing attributes in process `syz.4.784'.
[  121.711752][ T6631] loop3: detected capacity change from 0 to 512
[  121.787671][ T6631] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  121.829657][ T6636] loop0: detected capacity change from 0 to 512
[  121.838394][ T6631] EXT4-fs (loop3): 1 truncate cleaned up
[  121.842766][ T6631] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  121.858837][ T6636] EXT4-fs error (device loop0): __ext4_fill_super:5397: inode #2: comm syz.0.788: inode has both inline data and extents flags
[  121.862413][ T6636] EXT4-fs (loop0): get root inode failed
[  121.863440][ T6636] EXT4-fs (loop0): mount failed
[  122.541790][ T6646] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.543299][ T6646] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  123.682290][ T6681] loop1: detected capacity change from 0 to 512
[  124.197064][ T6694] netlink: 24 bytes leftover after parsing attributes in process `syz.4.811'.
[  124.298693][ T6702] loop0: detected capacity change from 0 to 2048
[  124.359667][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  124.959166][ T6739] loop0: detected capacity change from 0 to 512
[  124.994067][ T6740] tap0: tun_chr_ioctl cmd 1077974060
[  125.287114][ T6753] loop1: detected capacity change from 0 to 1024
[  125.288764][ T6753] EXT4-fs: Ignoring removed orlov option
[  125.576611][ T6753] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  126.264163][ T6767] mmap: syz.4.840 (6767) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  126.321534][ T2061] ieee802154 phy0 wpan0: encryption failed: -22
[  126.322531][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  126.377446][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  126.461508][ T6781] loop4: detected capacity change from 0 to 1024
[  126.512950][ T6781] EXT4-fs (loop4): Number of reserved GDT blocks insanely large: 64256
[  126.543621][ T6787] loop1: detected capacity change from 0 to 256
[  126.547522][ T6787] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  126.592761][ T6789] loop4: detected capacity change from 0 to 512
[  126.602700][ T6789] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  126.610390][ T6789] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a856e01c, mo2=0002]
[  126.613613][ T6789] System zones: 0-2, 18-18, 34-34
[  126.616119][ T6789] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.850: iget: bad i_size value: 360287970189639680
[  126.621467][ T6789] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.850: couldn't read orphan inode 15 (err -117)
[  126.625490][ T6789] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  126.652811][ T6798] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  126.655984][ T6798] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.447970][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  127.494620][ T6822] xt_TCPMSS: Only works on TCP SYN packets
[  128.024747][ T6833] netlink: 'syz.4.868': attribute type 10 has an invalid length.
[  128.026105][ T6833] netlink: 32 bytes leftover after parsing attributes in process `syz.4.868'.
[  128.086056][ T6841] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.089682][ T6841] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.224857][ T6857] loop0: detected capacity change from 0 to 2048
[  128.230079][ T6857] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  128.232737][ T6857] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  128.234496][ T6857] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  128.235770][ T6857] UDF-fs: Scanning with blocksize 512 failed
[  128.239183][ T6857] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  128.264274][ T6859] loop1: detected capacity change from 0 to 128
[  128.890880][ T6893] loop1: detected capacity change from 0 to 164
[  128.895173][ T6894] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.897034][ T6894] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.973091][ T6902] netlink: 8 bytes leftover after parsing attributes in process `syz.1.899'.
[  130.500045][ T4380] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  130.705707][ T4380] usb 1-1: config index 0 descriptor too short (expected 65069, got 45)
[  130.707119][ T4380] usb 1-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 255
[  130.709073][ T4380] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  130.710623][ T4380] usb 1-1: config 0 has no interfaces?
[  130.711489][ T4380] usb 1-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.40
[  130.712880][ T4380] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.717859][ T4380] usb 1-1: config 0 descriptor??
[  130.934948][ T4380] usb 1-1: USB disconnect, device number 2
[  131.047848][ T6951] loop4: detected capacity change from 0 to 128
[  131.073945][ T6951] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  131.670425][ T6970] xt_TPROXY: Can be used only with -p tcp or -p udp
[  131.692329][ T6972] "syz.3.926" (6972) uses obsolete ecb(arc4) skcipher
[  131.710267][ T6974] loop1: detected capacity change from 0 to 8
[  131.731079][ T6974] Page size > filesystem block size (0).  This is currently not supported!
[  131.994408][ T6988] loop0: detected capacity change from 0 to 1024
[  132.206830][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  132.830048][ T7008] loop1: detected capacity change from 0 to 164
[  133.113985][ T7028] loop3: detected capacity change from 0 to 512
[  133.128231][ T7028] EXT4-fs: Ignoring removed nobh option
[  133.138175][ T7030] loop0: detected capacity change from 0 to 512
[  133.143209][ T7030] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  133.156108][ T7028] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2196: inode #15: comm syz.3.949: corrupted in-inode xattr
[  133.158557][ T7028] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.949: couldn't read orphan inode 15 (err -117)
[  133.162121][ T7030] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a856e01c, mo2=0002]
[  133.163739][ T7030] System zones: 0-2, 18-18, 34-34
[  133.168661][ T7030] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.950: iget: bad i_size value: 360287970189639680
[  133.173225][ T7030] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.950: couldn't read orphan inode 15 (err -117)
[  133.175751][ T7030] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  133.177687][ T7028] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  133.181115][ T7030] EXT4-fs error (device loop0): ext4_lookup:1858: inode #15: comm syz.0.950: iget: bad i_size value: 360287970189639680
[  133.181949][ T7028] netlink: 104 bytes leftover after parsing attributes in process `syz.3.949'.
[  133.205677][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  133.211370][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  133.237862][ T7040] binder: 7039:7040 tried to acquire reference to desc 0, got 1 instead
[  133.241822][ T7040] binder_alloc: 7039: pid 7039 spamming oneway? 2 buffers allocated for a total size of 5360
[  133.243728][ T7040] binder: 7039:7040 got transaction with invalid data ptr
[  133.245353][ T7040] binder: 7039:7040 transaction async to 7039:0 failed 11/29201/-14, size 240-0 line 3565
[  133.265920][ T4380] binder: undelivered TRANSACTION_COMPLETE
[  133.267234][ T4380] binder: undelivered TRANSACTION_ERROR: 29201
[  133.289213][ T4380] binder: undelivered transaction 10, process died.
[  133.334201][ T7047] loop1: detected capacity change from 0 to 2048
[  133.362208][ T7048] loop3: detected capacity change from 0 to 8192
[  134.859300][ T7066] loop1: detected capacity change from 0 to 2048
[  134.910535][ T7066] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  134.951987][ T7074] netlink: 1 bytes leftover after parsing attributes in process `syz.4.968'.
[  135.863885][ T7116] loop3: detected capacity change from 0 to 1024
[  135.883498][ T7116] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  135.885360][ T7116] EXT4-fs (loop3): orphan cleanup on readonly fs
[  135.888892][ T7116] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.982: Invalid inode table block 0 in block_group 0
[  135.894052][ T7116] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  135.895881][ T7116] EXT4-fs error (device loop3): ext4_quota_write:7221: inode #3: comm syz.3.982: mark_inode_dirty error
[  135.900760][ T7116] Quota error (device loop3): write_blk: dquota write failed
[  135.902140][ T7116] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  135.903975][ T7116] EXT4-fs error (device loop3): ext4_acquire_dquot:6809: comm syz.3.982: Failed to acquire dquot type 0
[  135.906030][ T7116] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.982: Invalid inode table block 0 in block_group 0
[  135.911434][ T7116] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  135.913121][ T7116] EXT4-fs error (device loop3): ext4_ext_truncate:4454: inode #15: comm syz.3.982: mark_inode_dirty error
[  135.915046][ T7116] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.982: Invalid inode table block 0 in block_group 0
[  135.921439][ T7116] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  135.923336][ T7116] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[  135.924950][ T7116] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.982: Invalid inode table block 0 in block_group 0
[  135.927278][ T7116] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  135.929400][ T7116] EXT4-fs error (device loop3): ext4_truncate:4318: inode #15: comm syz.3.982: mark_inode_dirty error
[  135.931574][ T7116] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[  135.933709][ T7116] EXT4-fs (loop3): 1 truncate cleaned up
[  135.934865][ T7116] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  135.974181][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  136.295406][ T7134] binder: 7133:7134 context manager tried to acquire desc 0
[  136.296659][ T7134] binder: 7133:7134 ioctl c0306201 200004c0 returned -22
[  136.331704][ T7137] loop3: detected capacity change from 0 to 512
[  136.363710][ T7137] EXT4-fs (loop3): ea_inode feature is not supported for Hurd
[  136.381952][ T7141] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  136.383342][ T7141] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  136.619600][ T7164] loop1: detected capacity change from 0 to 8
[  136.633825][ T7164] unable to read xattr id index table
[  136.636955][ T7168] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  136.638426][ T7168] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  136.686681][ T7170] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  136.688310][ T7170] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  137.296603][ T7203] loop4: detected capacity change from 0 to 512
[  137.316455][ T7207] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  137.317848][ T7207] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  137.686571][   T27] audit: type=1326 audit(524425.210:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.2.1026" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x0
[  137.819345][ T7231] loop1: detected capacity change from 0 to 2048
[  138.702307][   T27] audit: type=1107 audit(524426.226:37): pid=7263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='>'
[  138.814077][ T7276] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1050'.
[  138.913736][ T7288] fuse: Unknown parameter '00000000000000000000'
[  139.050578][ T7295] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1058'.
[  139.170566][ T7299] HTB: quantum of class 80040008 is small. Consider r2q change.
[  139.517562][ T7312] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.519586][ T7312] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.539941][ T7314] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  139.582049][ T7316] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1068'.
[  139.926839][ T7334] xt_CT: You must specify a L4 protocol and not use inversions on it
[  140.312555][ T7346] loop0: detected capacity change from 0 to 2048
[  140.321438][ T7346] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=3932051, location=3932051
[  140.335693][ T7346] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  140.405143][ T7349] device wlan0 entered promiscuous mode
[  140.407850][ T7349] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1084'.
[  140.409493][ T7349] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  140.503761][ T7356] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1085'.
[  140.663600][ T7369] loop0: detected capacity change from 0 to 512
[  140.667177][ T7369] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  140.692164][ T7369] EXT4-fs (loop0): 1 truncate cleaned up
[  140.693040][ T7369] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  140.786825][ T7379] loop4: detected capacity change from 0 to 128
[  141.026835][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  142.154181][ T7407] device veth1_to_bridge entered promiscuous mode
[  142.169247][ T4886] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.336306][ T7417] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1108'.
[  142.761933][ T7420] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  142.767202][ T7420] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.185893][ T7447] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1119'.
[  143.524614][ T7455] loop4: detected capacity change from 0 to 512
[  143.565227][ T7455] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.1124: iget: bad i_size value: 140737488355338
[  143.567347][ T7455] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1124: couldn't read orphan inode 15 (err -117)
[  143.569483][ T7455] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  143.592174][ T7465] loop3: detected capacity change from 0 to 512
[  143.598406][ T7465] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2769: inode #11: comm syz.3.1127: corrupted xattr block 95
[  143.606127][ T7465] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1127: bg 0: block 7: invalid block bitmap
[  143.608593][ T7465] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  143.610164][ T7465] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2935: inode #11: comm syz.3.1127: corrupted xattr block 95
[  143.612424][ T7465] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[  143.614030][ T7465] EXT4-fs (loop3): 1 orphan inode deleted
[  143.615191][ T7465] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  143.617084][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  143.708804][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  143.810847][ T7480] x_tables: ip6_tables: hashlimit.2 match: invalid size 304 (kernel) != (user) 352
[  143.873203][ T7484] loop1: detected capacity change from 0 to 128
[  143.897877][ T7484] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  143.998594][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  144.055556][ T4335] Bluetooth: hci3: ISO packet for unknown connection handle 15
[  144.444704][ T7553] trusted_key: encrypted_key: insufficient parameters specified
[  144.543096][ T7564] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1171'.
[  144.597499][ T7567] netlink: 9 bytes leftover after parsing attributes in process `syz.4.1173'.
[  144.604181][ T7567] device gretap0 entered promiscuous mode
[  144.669051][ T7575] loop1: detected capacity change from 0 to 256
[  145.215526][ T7595] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.218533][ T7595] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  145.229492][ T7592] netlink: 'syz.2.1183': attribute type 1 has an invalid length.
[  145.233089][ T7592] netlink: 'syz.2.1183': attribute type 2 has an invalid length.
[  145.235454][ T7592] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1183'.
[  145.416302][ T7603] loop4: detected capacity change from 0 to 512
[  145.430203][ T7603] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.1187: inode has both inline data and extents flags
[  145.432667][ T7603] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1187: couldn't read orphan inode 15 (err -117)
[  145.434828][ T7603] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  146.393546][ T7637] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1196'.
[  146.445749][ T7637] loop1: detected capacity change from 0 to 128
[  146.615112][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  147.036570][ T7661] device syzkaller0 entered promiscuous mode
[  147.112906][ T7666] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.114676][ T7666] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  147.508772][ T7682] loop4: detected capacity change from 0 to 164
[  147.528773][ T7682] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  147.605137][ T7684] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1217'.
[  147.710966][ T7690] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.719963][ T7690] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  147.855202][ T4335] Bluetooth: hci4: Malformed MSFT vendor event: 0x02
[  148.305436][ T7706] ipt_CLUSTERIP: Please specify destination IP
[  148.351573][ T7710] loop3: detected capacity change from 0 to 512
[  148.394812][ T7710] EXT4-fs error (device loop3): ext4_quota_enable:7017: inode #4: comm syz.3.1226: iget: bad i_size value: 5910974510929920
[  148.397187][ T7710] EXT4-fs error (device loop3): ext4_quota_enable:7020: comm syz.3.1226: Bad quota inode: 4, type: 1
[  148.398849][ T7710] EXT4-fs warning (device loop3): ext4_enable_quotas:7061: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  148.401823][ T7710] EXT4-fs (loop3): mount failed
[  148.491259][ T7722] loop1: detected capacity change from 0 to 1024
[  148.506677][ T7722] EXT4-fs (loop1): cluster size (1024) smaller than block size (4096)
[  149.269126][ T7762] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  149.270679][ T7762] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.708206][ T7772] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1253'.
[  151.121315][ T7818] loop0: detected capacity change from 0 to 256
[  151.133393][ T7818] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  151.145039][ T7818] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[  151.154795][ T7818] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  151.162659][ T7818] UDF-fs: Scanning with blocksize 512 failed
[  151.173426][ T7818] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  151.181769][ T7818] UDF-fs: warning (device loop0): udf_load_logicalvol: Damaged or missing LVID, forcing readonly mount
[  151.362597][ T7823] netlink: 'syz.0.1274': attribute type 29 has an invalid length.
[  151.487429][ T7833] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.542260][ T7833] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  152.957217][ T4394] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  153.077998][ T7884] loop3: detected capacity change from 0 to 164
[  153.374295][ T4394] usb 1-1: Using ep0 maxpacket: 16
[  153.376564][ T4394] usb 1-1: New USB device found, idVendor=2001, idProduct=4002, bcdDevice=df.bf
[  153.377863][ T4394] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.479792][ T7891] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  153.481886][ T7891] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  154.455959][ T7906] tmpfs: Unknown parameter 'nolazytime0000000000000,00000000000005400000000,00000000000000000000000'
[  154.515883][ T7913] loop1: detected capacity change from 0 to 764
[  154.901319][ T7928] loop3: detected capacity change from 0 to 512
[  154.912678][ T7928] EXT4-fs: Ignoring removed oldalloc option
[  154.917699][ T7928] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  154.945356][ T7928] EXT4-fs (loop3): orphan cleanup on readonly fs
[  154.954571][ T7928] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1314: inode has both inline data and extents flags
[  154.966425][ T7928] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1314: couldn't read orphan inode 15 (err -117)
[  154.969049][ T7928] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  154.982473][ T7928] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  154.989515][ T7928] EXT4-fs (loop3): re-mounted. Quota mode: none.
[  154.990975][ T7928] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.1314: inode has both inline data and extents flags
[  155.259315][ T4394] pegasus: probe of 1-1:2.0 failed with error -71
[  155.262960][ T4394] usb 1-1: USB disconnect, device number 3
[  155.285725][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  155.316338][ T7933] loop3: detected capacity change from 0 to 512
[  155.321883][ T7933] EXT4-fs: Ignoring removed oldalloc option
[  155.330523][ T7933] EXT4-fs (loop3): unable to read superblock
[  155.393851][ T7939] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1317'.
[  155.406334][ T7935] ipt_CLUSTERIP: Please specify destination IP
[  156.626618][ T7968] loop0: detected capacity change from 0 to 1024
[  156.679664][ T4313] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  157.300799][ T7995] loop0: detected capacity change from 0 to 16
[  157.326535][ T7995] erofs: (device loop0): erofs_read_inode: unsupported i_format 48900 of nid 36
[  157.393166][ T7999] loop0: detected capacity change from 0 to 512
[  157.397111][ T7999] EXT2-fs (loop0): warning: feature flags set on rev 0 fs, running e2fsck is recommended
[  157.401539][ T7999] EXT2-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  157.402853][ T7999] EXT2-fs (loop0): 0.5b, 95/08/09, bs=2048, gc=1, bpg=16384, ipg=32, mo=8021c]
[  159.308722][ T4328] Bluetooth: hci0: command 0x0406 tx timeout
[  159.309763][ T4328] Bluetooth: hci3: command 0x0406 tx timeout
[  159.310779][ T4328] Bluetooth: hci2: command 0x0406 tx timeout
[  159.311779][ T4328] Bluetooth: hci1: command 0x0406 tx timeout
[  160.226935][ T4503] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  160.439877][ T4503] usb 1-1: Using ep0 maxpacket: 8
[  160.442751][ T4503] usb 1-1: unable to get BOS descriptor or descriptor too short
[  160.445201][ T4503] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  160.446894][ T4503] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  160.448437][ T4503] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  160.452052][ T4503] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  160.457709][ T4503] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  160.460518][ T8094] loop1: detected capacity change from 0 to 512
[  160.464186][ T4503] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.468585][ T4503] usb 1-1: Product: syz
[  160.469263][ T4503] usb 1-1: Manufacturer: syz
[  160.472352][ T4503] usb 1-1: SerialNumber: syz
[  160.473535][ T8094] EXT4-fs (loop1): Test dummy encryption mode enabled
[  160.480215][ T8094] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  160.490836][ T8094] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[  160.492016][ T8094] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  160.527655][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  160.691893][ T4503] cdc_ether: probe of 1-1:1.0 failed with error -22
[  160.698677][ T4503] usb 1-1: USB disconnect, device number 4
[  160.772424][ T8124] loop3: detected capacity change from 0 to 512
[  160.809102][ T8124] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  160.812009][ T8124] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.1389: invalid indirect mapped block 8 (level 2)
[  160.816319][ T8124] EXT4-fs (loop3): Remounting filesystem read-only
[  160.817654][ T8124] EXT4-fs (loop3): 1 truncate cleaned up
[  160.818577][ T8124] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  160.842484][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  161.303783][ T8150] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.306364][ T8150] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.717660][ T8162] tc_dump_action: action bad kind
[  163.032999][    T7] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  163.754959][    T7] usb 1-1: unable to get BOS descriptor or descriptor too short
[  163.757107][    T7] usb 1-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  163.759361][    T7] usb 1-1: config 16 has 1 interface, different from the descriptor's value: 2
[  163.765888][    T7] usb 1-1: string descriptor 0 read error: -22
[  163.767062][    T7] usb 1-1: New USB device found, idVendor=04e6, idProduct=000a, bcdDevice= 2.00
[  163.769690][    T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.776169][    T7] usb-storage 1-1:16.0: USB Mass Storage device detected
[  163.999437][ T1514] usb 1-1: USB disconnect, device number 5
[  164.516984][ T8264] loop3: detected capacity change from 0 to 8192
[  164.565000][ T8264]  loop3: p1 p2 p4
[  164.565783][ T8264] loop3: p1 size 65536 extends beyond EOD, truncated
[  164.567971][ T8264] loop3: p2 start 861536256 is beyond EOD, truncated
[  164.570757][ T8264] loop3: p4 size 65536 extends beyond EOD, truncated
[  164.649598][ T4482] udevd[4482]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  164.656524][ T4313] udevd[4313]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  164.696762][ T8283] loop3: detected capacity change from 0 to 1024
[  164.713849][ T8283] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  164.716745][ T8283] EXT4-fs (loop3): orphan cleanup on readonly fs
[  164.719203][ T8283] EXT4-fs error (device loop3): ext4_free_blocks:6205: comm syz.3.1453: Freeing blocks not in datazone - block = 0, count = 4096
[  164.727852][ T8283] EXT4-fs (loop3): 1 orphan inode deleted
[  164.730071][ T8283] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  164.764600][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  164.917636][ T8295] loop4: detected capacity change from 0 to 512
[  164.933764][ T8295] EXT4-fs (loop4): Cannot use DAX on a filesystem that may contain inline data
[  165.308893][ T8301] loop4: detected capacity change from 0 to 1024
[  165.311674][ T8301] EXT4-fs (loop4): can't mount with journal_checksum, fs mounted w/o journal
[  165.423065][   T27] audit: type=1326 audit(524452.891:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.432042][   T27] audit: type=1326 audit(524452.891:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.441403][   T27] audit: type=1326 audit(524452.891:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.454058][   T27] audit: type=1326 audit(524452.891:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.467751][   T27] audit: type=1326 audit(524452.891:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.475951][   T27] audit: type=1326 audit(524452.891:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.482126][   T27] audit: type=1326 audit(524452.891:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.489094][   T27] audit: type=1326 audit(524452.891:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.495634][   T27] audit: type=1326 audit(524452.891:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.533442][   T27] audit: type=1326 audit(524452.891:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.2.1449" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7fc00000
[  165.547524][ T8313] loop1: detected capacity change from 0 to 1024
[  165.552890][ T8313] EXT4-fs: Ignoring removed nomblk_io_submit option
[  165.578412][ T8313] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  165.600892][ T8313] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  165.602221][ T8313] System zones: 0-1, 3-36
[  165.626405][ T8313] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  165.642269][ T8313] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2749: inode #2: comm syz.1.1464: corrupted in-inode xattr
[  165.666900][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  165.760089][ T8338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  165.768188][ T8338] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  166.106899][ T8368] loop4: detected capacity change from 0 to 512
[  166.171357][ T8368] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  166.852069][ T8368] EXT4-fs (loop4): 1 truncate cleaned up
[  166.853006][ T8368] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  167.253809][ T8398] loop0: detected capacity change from 0 to 512
[  167.256983][ T8400] syz.2.1500 uses obsolete (PF_INET,SOCK_PACKET)
[  167.285594][ T8398] EXT4-fs: Ignoring removed mblk_io_submit option
[  167.286626][ T8398] EXT4-fs: Ignoring removed bh option
[  167.289354][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  167.291213][ T8398] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  167.303804][ T8398] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  167.307561][ T8398] System zones: 0-2, 18-18, 34-35
[  167.308720][ T8398] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  167.355049][ T8405] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1502'.
[  167.356687][ T8405] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1502'.
[  167.358106][ T8405] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1502'.
[  167.389665][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  167.436328][ T8403] loop4: detected capacity change from 0 to 4096
[  167.439101][ T8403] EXT4-fs (loop4): Test dummy encryption mode enabled
[  167.467455][ T8403] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  167.468736][ T8403] System zones: 0-5
[  167.469987][ T8403] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  167.524946][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  167.925436][ T8425] loop1: detected capacity change from 0 to 1024
[  167.926937][ T8425] EXT4-fs: Ignoring removed oldalloc option
[  167.942206][ T8425] EXT4-fs: Ignoring removed bh option
[  167.945123][ T8425] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  167.975506][ T8425] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  168.103858][ T8428] loop3: detected capacity change from 0 to 512
[  168.105597][ T8428] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  168.137582][ T8428] EXT4-fs (loop3): 1 truncate cleaned up
[  168.138526][ T8428] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  168.651007][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  168.923237][ T8482] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125
[  169.148105][ T8487] xt_CT: You must specify a L4 protocol and not use inversions on it
[  169.580035][ T8525] loop1: detected capacity change from 0 to 1024
[  169.710648][ T8525] hfsplus: bad catalog file entry
[  169.711855][ T8525] hfsplus: failed to load root directory
[  170.054863][ T8595] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  170.057223][ T8595] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  170.848998][ T8619] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  170.860128][ T8619] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  170.881023][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  171.102572][ T8641] loop1: detected capacity change from 0 to 2048
[  171.232937][ T8641] EXT4-fs (loop1): failed to initialize system zone (-117)
[  171.234231][ T8641] EXT4-fs (loop1): mount failed
[  171.263411][ T8658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  171.264835][ T8658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  171.864970][ T8676] loop1: detected capacity change from 0 to 8
[  171.884506][ T8676] squashfs image failed sanity check
[  172.220042][ T8719] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  172.221928][ T8719] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  172.231116][ T8720] xt_addrtype: ipv6 does not support BROADCAST matching
[  172.279246][ T8724] loop0: detected capacity change from 0 to 128
[  172.281849][ T8724] EXT4-fs (loop0): Test dummy encryption mode enabled
[  172.283528][ T8724] EXT4-fs error (device loop0): __ext4_fill_super:5397: inode #2: comm syz.0.1608: iget: checksum invalid
[  172.285666][ T8724] EXT4-fs (loop0): get root inode failed
[  172.286573][ T8724] EXT4-fs (loop0): mount failed
[  172.338324][ T8729] loop0: detected capacity change from 0 to 256
[  172.446153][ T8741] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  172.455063][ T8741] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  172.611485][ T8753] ptrace attach of "./syz-executor exec"[4319] was attempted by ""[8753]
[  172.659164][ T8761] loop3: detected capacity change from 0 to 128
[  172.668709][ T8761] FAT-fs (loop3): bogus number of FAT sectors
[  172.669711][ T8761] FAT-fs (loop3): Can't find a valid FAT filesystem
[  172.760222][ T8768] loop3: detected capacity change from 0 to 4096
[  172.762191][ T8768] EXT4-fs (loop3): cluster size (1024) smaller than block size (4096)
[  173.007227][ T4313] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  173.131389][ T8794] loop3: detected capacity change from 0 to 128
[  173.189865][ T8800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.192952][ T8800] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.289819][ T8810] loop3: detected capacity change from 0 to 1024
[  173.339315][ T4313] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  173.823150][ T8820] loop3: detected capacity change from 0 to 2048
[  174.537415][ T8868] loop1: detected capacity change from 0 to 512
[  174.539521][ T8868] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  174.761183][ T8869] loop4: detected capacity change from 0 to 1024
[  174.817609][ T4482] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  175.083220][ T8910] loop0: detected capacity change from 0 to 128
[  175.091444][ T8910] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  175.095998][ T8914] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1691'.
[  175.096923][ T8910] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  175.326095][ T8920] xt_socket: unknown flags 0x50
[  175.583109][   T27] kauditd_printk_skb: 58 callbacks suppressed
[  175.583117][   T27] audit: type=1326 audit(524463.056:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.589378][   T27] audit: type=1326 audit(524463.066:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.593451][   T27] audit: type=1326 audit(524463.066:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.598118][   T27] audit: type=1326 audit(524463.066:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.604891][   T27] audit: type=1326 audit(524463.066:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.608583][   T27] audit: type=1326 audit(524463.066:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.620504][   T27] audit: type=1326 audit(524463.066:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.628376][   T27] audit: type=1326 audit(524463.066:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.639625][   T27] audit: type=1326 audit(524463.066:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89b5b9e8 code=0x7fc00000
[  175.656311][ T8925] loop3: detected capacity change from 0 to 512
[  175.657750][ T8925] EXT4-fs: Ignoring removed mblk_io_submit option
[  175.680168][ T8925] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  175.692861][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  175.728181][    T7] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  175.788268][ T8942] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  175.789768][ T8942] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  175.911661][    T7] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  175.913329][    T7] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  175.916982][    T7] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  175.919911][    T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.921476][    T7] usb 1-1: Product: syz
[  175.923077][    T7] usb 1-1: Manufacturer: syz
[  175.925482][    T7] usb 1-1: SerialNumber: syz
[  176.285559][    T7] usb 1-1: 0:2 : does not exist
[  176.290189][    T7] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  176.311971][    T7] usb 1-1: USB disconnect, device number 6
[  176.680026][ T4313] udevd[4313]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  176.894658][ T8988] netlink: 1060 bytes leftover after parsing attributes in process `syz.4.1722'.
[  177.358165][ T9018] netlink: 1060 bytes leftover after parsing attributes in process `syz.4.1734'.
[  177.375306][ T9020] trusted_key: encrypted_key: key trusted:syz not found
[  177.472228][ T9032] loop0: detected capacity change from 0 to 1024
[  177.490700][ T9032] hfsplus: invalid btree extent records (0 size)
[  177.491960][ T9032] hfsplus: failed to load catalog file
[  177.968720][ T9047] netlink: 1060 bytes leftover after parsing attributes in process `syz.2.1746'.
[  178.071181][ T9058] loop1: detected capacity change from 0 to 128
[  178.095607][ T9058] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  178.115150][ T9063] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1752'.
[  178.892677][ T9074] netlink: 164 bytes leftover after parsing attributes in process `syz.4.1755'.
[  178.952169][ T9078] loop4: detected capacity change from 0 to 2048
[  178.960268][ T9078] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1757'.
[  178.965038][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  178.985763][ T9082] netlink: 1060 bytes leftover after parsing attributes in process `syz.0.1758'.
[  179.069321][ T9091] binder: 9090:9091 got reply transaction with no transaction stack
[  179.070560][ T9091] binder: 9090:9091 transaction reply to 0:0 failed 13/29201/-71, size 0-0 line 2946
[  179.079709][ T1514] binder: undelivered TRANSACTION_ERROR: 29201
[  179.087814][ T9096] loop3: detected capacity change from 0 to 512
[  179.097810][ T9096] EXT4-fs: Ignoring removed mblk_io_submit option
[  179.147280][ T9096] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1765: invalid indirect mapped block 131072 (level 2)
[  179.151697][ T9096] EXT4-fs (loop3): Remounting filesystem read-only
[  179.152867][ T9096] EXT4-fs (loop3): 1 truncate cleaned up
[  179.153835][ T9096] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  179.268324][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  179.649720][ T9124] netlink: 1060 bytes leftover after parsing attributes in process `syz.3.1776'.
[  180.107750][ T9148] netlink: 1060 bytes leftover after parsing attributes in process `syz.1.1787'.
[  180.302039][ T9163] loop4: detected capacity change from 0 to 512
[  180.317038][ T9163] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  180.326239][ T9165] netlink: 'syz.1.1794': attribute type 3 has an invalid length.
[  180.328607][ T9165] netlink: 666 bytes leftover after parsing attributes in process `syz.1.1794'.
[  180.337917][ T9163] EXT4-fs (loop4): 1 orphan inode deleted
[  180.338922][ T9163] EXT4-fs (loop4): 1 truncate cleaned up
[  180.343353][ T9163] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  180.415912][ T9168] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1795'.
[  180.432514][ T9168] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1795'.
[  181.642886][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  182.591283][ T9206] loop3: detected capacity change from 0 to 16
[  182.593890][ T9206] erofs: Unknown parameter 'defcontext'
[  182.610165][ T9209] 9pnet: p9_errstr2errno: server reported unknown error ��n$Ž[
[  182.610165][ T9209] Q&|
[  182.643033][ T4313] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  182.658172][ T9216] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1812'.
[  182.747463][ T9224] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1816'.
[  182.749733][ T9224] netlink: 19 bytes leftover after parsing attributes in process `syz.4.1816'.
[  182.756607][ T9224] netlink: 'syz.4.1816': attribute type 6 has an invalid length.
[  182.763635][ T9224] netlink: 'syz.4.1816': attribute type 4 has an invalid length.
[  182.782604][ T9216] bond0: (slave bond_slave_1): Releasing backup interface
[  183.013017][ T9239] netlink: 'syz.0.1821': attribute type 1 has an invalid length.
[  183.061526][ T9239] 8021q: adding VLAN 0 to HW filter on device bond1
[  183.063786][ T9243] loop1: detected capacity change from 0 to 128
[  183.109909][ T9245] bond1: (slave gretap1): making interface the new active one
[  183.154568][ T9245] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  183.156018][ T4859] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  183.443180][ T9268] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  183.446914][ T9270] loop3: detected capacity change from 0 to 512
[  183.456695][ T9268] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  183.462097][ T9270] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[  183.480015][ T9270] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 not in group (block 1)!
[  183.488073][ T9270] EXT4-fs (loop3): group descriptors corrupted!
[  183.523509][ T4313] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  183.579144][ T9276] loop3: detected capacity change from 0 to 512
[  183.602626][ T9276] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  183.635775][ T9279] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1840'.
[  183.639249][ T9276] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  183.640229][ T9279] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1840'.
[  183.641451][ T9276] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  183.644036][ T9276] EXT4-fs error (device loop3): ext4_acquire_dquot:6809: comm syz.3.1839: Failed to acquire dquot type 0
[  183.654867][ T9276] EXT4-fs (loop3): Remounting filesystem read-only
[  183.656014][ T9276] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  183.657788][ T9276] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  183.659276][ T9276] EXT4-fs error (device loop3): ext4_acquire_dquot:6809: comm syz.3.1839: Failed to acquire dquot type 0
[  183.690178][ T9276] EXT4-fs (loop3): Remounting filesystem read-only
[  183.696645][ T9276] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  183.698243][ T9276] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  183.699564][ T9276] EXT4-fs error (device loop3): ext4_acquire_dquot:6809: comm syz.3.1839: Failed to acquire dquot type 0
[  183.710177][ T9276] EXT4-fs (loop3): Remounting filesystem read-only
[  183.712114][ T9276] EXT4-fs (loop3): 1 orphan inode deleted
[  183.713096][ T9276] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  185.637127][ T9349] binder: 9343:9349 ioctl 4018620d 0 returned -22
[  185.877065][ T9351] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.878442][ T9351] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  186.268207][ T9355] loop0: detected capacity change from 0 to 512
[  186.315284][ T9355] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  186.576804][ T9355] EXT4-fs (loop0): 1 truncate cleaned up
[  186.577779][ T9355] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  187.279366][ T9373] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  187.282252][ T9373] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  187.538482][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  187.569695][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  187.720326][ T9381] loop3: detected capacity change from 0 to 128
[  187.804973][ T9384] hub 2-0:1.0: USB hub found
[  187.807089][ T9384] hub 2-0:1.0: 8 ports detected
[  187.893615][ T2061] ieee802154 phy0 wpan0: encryption failed: -22
[  187.894887][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  188.033111][ T9381] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  188.068104][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  188.164023][ T9398] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  188.167907][ T9398] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  188.230770][ T9402] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1890'.
[  188.283599][ T9402] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1890'.
[  188.370994][ T9406] loop3: detected capacity change from 0 to 512
[  188.390919][ T9406] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  188.610494][ T9406] EXT4-fs (loop3): 1 truncate cleaned up
[  188.611573][ T9406] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  189.315823][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  189.593885][ T9426] tmpfs: Bad value for 'size'
[  190.238292][ T9464] loop0: detected capacity change from 0 to 512
[  190.319071][ T9464] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  190.526049][ T9464] EXT4-fs (loop0): 1 truncate cleaned up
[  190.527122][ T9464] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  191.136738][ T9485] loop4: detected capacity change from 0 to 2048
[  191.396745][ T9494] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.398201][ T9494] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  191.424977][ T9485] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  191.469090][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  191.742776][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  191.980018][ T9560] loop3: detected capacity change from 0 to 164
[  192.061602][ T9563] loop4: detected capacity change from 0 to 512
[  192.227662][ T9563] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  192.365264][ T9563] EXT4-fs (loop4): 1 truncate cleaned up
[  192.366323][ T9563] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  192.921789][ T9575] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  192.925544][ T9575] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  192.985567][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  193.028062][ T9571] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1947'.
[  193.160337][ T9591] input: syz0 as /devices/virtual/input/input4
[  193.247710][   T27] audit: type=1326 audit(524480.713:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.251156][   T27] audit: type=1326 audit(524480.713:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.258572][   T27] audit: type=1326 audit(524480.713:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.262596][ T9600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  193.263904][ T9600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  193.267777][   T27] audit: type=1326 audit(524480.713:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.285120][   T27] audit: type=1326 audit(524480.713:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.291598][   T27] audit: type=1326 audit(524480.713:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.294865][   T27] audit: type=1326 audit(524480.713:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.298113][   T27] audit: type=1326 audit(524480.713:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.310416][   T27] audit: type=1326 audit(524480.713:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  193.318382][   T27] audit: type=1326 audit(524480.713:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa815b9e8 code=0x7ffc0000
[  194.659561][ T9631] loop4: detected capacity change from 0 to 512
[  194.674506][ T9631] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  195.070893][ T9631] EXT4-fs (loop4): 1 truncate cleaned up
[  195.071852][ T9631] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  195.588833][ T9647] loop3: detected capacity change from 0 to 1024
[  195.646895][ T9647] EXT4-fs: Ignoring removed nomblk_io_submit option
[  195.910509][ T9647] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  195.916870][ T9647] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  195.919521][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  195.944486][ T9647] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (48731!=20869)
[  195.946215][ T9647] EXT4-fs (loop3): group descriptors corrupted!
[  196.600303][ T9684] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1976'.
[  196.607356][ T9684] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1976'.
[  196.614742][ T9684] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1976'.
[  196.621475][ T9685] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1975'.
[  197.640934][ T9704] netlink: 'syz.4.1981': attribute type 27 has an invalid length.
[  198.014354][ T9715] binder: 9713:9715 BC_INCREFS_DONE node 14 has no pending increfs request
[  198.037938][ T9719] netlink: 9 bytes leftover after parsing attributes in process `syz.4.1987'.
[  198.071565][ T9724] loop4: detected capacity change from 0 to 1024
[  198.076233][ T9724] EXT4-fs: Ignoring removed orlov option
[  198.108695][ T9730] loop1: detected capacity change from 0 to 512
[  198.125261][ T9724] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  198.146073][ T9730] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  198.148622][ T9730] EXT4-fs error (device loop1): __ext4_fill_super:5397: inode #2: comm syz.1.1992: inode has both inline data and extents flags
[  198.151037][ T9730] EXT4-fs (loop1): get root inode failed
[  198.152015][ T9730] EXT4-fs (loop1): mount failed
[  198.396096][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  198.431793][ T9757] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.437823][ T9757] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.473919][ T9760] loop3: detected capacity change from 0 to 256
[  198.477476][ T9760] exFAT-fs (loop3): invalid boot record signature
[  198.478494][ T9760] exFAT-fs (loop3): failed to read boot sector
[  198.479486][ T9760] exFAT-fs (loop3): failed to recognize exfat type
[  198.902936][ T9775] loop0: detected capacity change from 0 to 512
[  198.909318][ T9775] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  198.933642][ T9779] netlink: 'syz.2.2011': attribute type 2 has an invalid length.
[  198.937860][ T9779] netlink: 'syz.2.2011': attribute type 2 has an invalid length.
[  198.941269][ T9779] netlink: 'syz.2.2011': attribute type 1 has an invalid length.
[  198.943553][ T9775] EXT4-fs (loop0): 1 truncate cleaned up
[  198.944464][ T9775] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  198.945700][ T9779] netlink: 136 bytes leftover after parsing attributes in process `syz.2.2011'.
[  199.985585][ T9823] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2029'.
[  199.986947][ T9823] tc_dump_action: action bad kind
[  200.027239][ T9828] netlink: 'syz.2.2033': attribute type 12 has an invalid length.
[  200.174531][ T9842] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  200.178165][ T9842] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  200.525778][ T9844] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  200.533730][ T9844] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.172003][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  202.497562][ T9900] xt_policy: output policy not valid in PREROUTING and INPUT
[  203.548551][ T9925] binder: 9924:9925 tried to acquire reference to desc 0, got 1 instead
[  203.556318][ T9925] binder: 9924:9925 got transaction with out-of-order buffer fixup
[  203.557606][ T9925] binder: 9925:9924 failed to fixup parent
[  203.558567][ T9925] binder: 9924:9925 transaction call to 9924:0 failed 19/29201/-22, size 120-24 line 3540
[  203.560394][    T7] binder: undelivered TRANSACTION_ERROR: 29201
[  203.692864][ T9929] xt_NFQUEUE: number of total queues is 0
[  204.538468][ T9941] loop0: detected capacity change from 0 to 128
[  204.649069][ T9941] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  205.077369][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  205.395056][ T9979] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  205.396417][ T9979] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  205.526580][ T9990] loop3: detected capacity change from 0 to 8192
[  205.934353][T10040] loop1: detected capacity change from 0 to 1024
[  205.937087][T10040] EXT4-fs: Ignoring removed orlov option
[  206.185801][T10040] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  206.887969][T10050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  206.891981][T10050] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  207.463017][T10053] loop0: detected capacity change from 0 to 1024
[  207.475707][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  207.771187][T10067] loop1: detected capacity change from 0 to 128
[  207.898695][T10079] loop0: detected capacity change from 0 to 2048
[  207.912683][T10067] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  207.936878][T10083] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  207.945989][T10083] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  207.970426][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  208.046270][T10086] xt_NFQUEUE: number of total queues is 0
[  208.310421][T10079] EXT4-fs (loop0): failed to initialize system zone (-117)
[  208.311640][T10079] EXT4-fs (loop0): mount failed
[  209.124689][T10104] loop4: detected capacity change from 0 to 2048
[  209.136736][T10106] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  209.143621][T10106] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  209.146250][T10104] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  209.242626][T10114] loop4: detected capacity change from 0 to 512
[  209.304226][T10114] EXT4-fs (loop4): Test dummy encryption mode enabled
[  209.305497][T10114] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  209.311770][T10118] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2126'.
[  209.313825][T10118] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2126'.
[  209.315365][T10118] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2126'.
[  209.331893][T10114] EXT4-fs (loop4): 1 truncate cleaned up
[  209.334606][T10114] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  209.410289][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  210.838068][T10181] loop4: detected capacity change from 0 to 512
[  210.842304][T10181] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  210.891125][T10181] EXT4-fs (loop4): 1 truncate cleaned up
[  210.892250][T10181] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  211.765371][T10188] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  211.767498][T10188] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  211.837895][T10197] loop0: detected capacity change from 0 to 1024
[  211.839921][T10197] hfsplus: invalid extent btree flag
[  211.840811][T10197] hfsplus: failed to load extents file
[  211.875718][ T4313] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  211.997650][T10209] loop0: detected capacity change from 0 to 1024
[  212.047934][T10209] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  212.089057][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  212.165036][T10223] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.167313][T10223] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  213.720943][T10239] loop0: detected capacity change from 0 to 2048
[  214.704266][T10262] loop3: detected capacity change from 0 to 512
[  214.756848][T10262] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  214.859550][T10272] sch_tbf: burst 1023 is lower than device lo mtu (65550) !
[  215.258859][T10277] vhci_hcd: invalid port number 96
[  215.259784][T10277] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  215.632717][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  217.074560][T10313] loop0: detected capacity change from 0 to 512
[  217.108271][T10313] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  217.571274][ T4329] EXT4-fs (loop4): unmounting filesystem.
[  217.990668][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  218.551910][T10352] loop0: detected capacity change from 0 to 512
[  218.558117][T10352] EXT4-fs: Ignoring removed i_version option
[  218.965651][T10352] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  219.010008][T10352] EXT4-fs (loop0): 1 truncate cleaned up
[  219.011135][T10352] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  219.308972][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  219.356975][   T27] kauditd_printk_skb: 3 callbacks suppressed
[  219.356984][   T27] audit: type=1326 audit(524506.827:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10366 comm="syz.2.2210" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x0
[  220.741533][T10422] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  220.745986][T10422] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  220.857025][T10430] loop0: detected capacity change from 0 to 16
[  220.861708][T10430] erofs: (device loop0): mounted with root inode @ nid 36.
[  220.904730][T10434] loop1: detected capacity change from 0 to 128
[  220.909529][T10434] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  220.937793][T10434] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  221.057132][T10436] erofs: (device loop0): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  221.209680][T10436] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -44 in[46, 4050] out[1851]
[  221.214235][T10436] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-117]
[  221.224416][T10435] erofs: (device loop0): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  221.226452][T10435] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -44 in[46, 4050] out[1851]
[  221.228227][T10435] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-117]
[  221.487777][ T4414] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  221.604940][T10446] loop3: detected capacity change from 0 to 128
[  221.620751][T10448] loop1: detected capacity change from 0 to 256
[  221.626800][T10446] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  221.633258][T10452] xt_CT: You must specify a L4 protocol and not use inversions on it
[  221.639999][T10448] exFAT-fs (loop1): invalid boot record signature
[  221.649444][T10448] exFAT-fs (loop1): failed to read boot sector
[  221.650334][T10448] exFAT-fs (loop1): failed to recognize exfat type
[  222.825072][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  222.940524][T10479] loop4: detected capacity change from 0 to 1024
[  222.942332][T10479] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  223.742114][T10479] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  leaving read-only.
[  223.766914][ T4329] hfsplus: bad catalog entry type
[  223.788584][ T4329] hfsplus: bad catalog entry type
[  224.010824][T10495] loop0: detected capacity change from 0 to 256
[  224.025256][T10495] exFAT-fs (loop0): invalid boot record signature
[  224.026517][T10495] exFAT-fs (loop0): failed to read boot sector
[  224.027456][T10495] exFAT-fs (loop0): failed to recognize exfat type
[  225.536246][ T4328] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  225.550052][ T4328] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  225.552407][ T4328] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  225.554402][ T4328] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  225.555784][ T4328] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  225.557158][ T4328] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  225.572889][ T4335] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  225.579844][ T4335] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  225.581624][ T4335] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  225.585582][ T4335] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  225.593562][ T4335] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  225.595054][ T4335] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  225.647836][T10533] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2271'.
[  225.740799][ T4983] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.033372][ T4983] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.592535][ T4983] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.809600][T10564] loop3: detected capacity change from 0 to 512
[  226.819376][T10564] EXT4-fs: Ignoring removed mblk_io_submit option
[  226.820481][T10564] ext4: Unknown parameter 'seclabel'
[  226.843967][ T4983] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.984897][T10573] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  226.987593][T10573] 8021q: adding VLAN 0 to HW filter on device bond0
[  226.989686][T10573] 8021q: adding VLAN 0 to HW filter on device team0
[  227.052547][T10573] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  227.089015][T10521] chnl_net:caif_netlink_parms(): no params data found
[  227.447706][T10598] syz.3.2296 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  227.581253][T10521] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.582469][T10521] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.583913][T10521] device bridge_slave_0 entered promiscuous mode
[  227.586058][T10521] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.587450][T10521] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.589002][T10521] device bridge_slave_1 entered promiscuous mode
[  227.673129][ T4335] Bluetooth: hci3: command 0x0409 tx timeout
[  227.896408][T10521] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  227.899168][T10521] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  227.991510][T10624] vhci_hcd: invalid port number 96
[  227.992426][T10624] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  228.152394][ T4365] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  228.284219][T10521] team0: Port device team_slave_0 added
[  228.457653][T10521] team0: Port device team_slave_1 added
[  228.913866][ T4365] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  228.919713][T10643] loop1: detected capacity change from 0 to 512
[  228.923009][T10643] ext3: Unknown parameter 'rootcontext'
[  229.100683][ T4365] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  229.105295][ T4365] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.108768][ T4365] usb 1-1: Product: syz
[  229.110983][ T4365] usb 1-1: Manufacturer: syz
[  229.113162][ T4365] usb 1-1: SerialNumber: syz
[  229.722134][ T4335] Bluetooth: hci3: command 0x041b tx timeout
[  229.858485][T10521] batman_adv: batadv0: Adding interface: batadv_slave_0
[  229.859731][T10521] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  229.865961][T10521] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  229.877572][T10521] batman_adv: batadv0: Adding interface: batadv_slave_1
[  229.879472][T10521] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  229.896666][T10521] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  230.046867][T10666] loop1: detected capacity change from 0 to 1024
[  230.050020][T10666] EXT4-fs: Ignoring removed mblk_io_submit option
[  230.053806][T10666] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  231.067068][ T4365] cdc_ncm 1-1:1.0: bind() failure
[  231.069411][ T4365] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  231.070432][ T4365] cdc_ncm 1-1:1.1: bind() failure
[  231.081361][ T4365] usb 1-1: USB disconnect, device number 7
[  231.091409][T10666] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  231.315180][T10685] loop3: detected capacity change from 0 to 512
[  231.694095][T10685] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  231.802238][ T4328] Bluetooth: hci3: command 0x040f tx timeout
[  232.331389][T10676] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2315'.
[  232.341692][T10676] netlink: 'syz.2.2315': attribute type 2 has an invalid length.
[  232.353459][T10685] EXT4-fs (loop3): 1 truncate cleaned up
[  232.354350][T10685] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  232.383163][T10521] device hsr_slave_0 entered promiscuous mode
[  232.446495][T10521] device hsr_slave_1 entered promiscuous mode
[  232.472824][T10521] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  232.474079][T10521] Cannot create hsr debugfs directory
[  232.518785][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  232.548128][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  232.567868][   T27] audit: type=1326 audit(524520.037:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x7ffc0000
[  232.600152][   T27] audit: type=1326 audit(524520.067:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffbb75b9e8 code=0x7ffc0000
[  232.603624][   T27] audit: type=1326 audit(524520.067:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffbb75ba1c code=0x7ffc0000
[  232.606910][   T27] audit: type=1326 audit(524520.067:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffbb75a0d0 code=0x7ffc0000
[  232.610505][   T27] audit: type=1326 audit(524520.067:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffffbb75ba8c code=0x7ffc0000
[  232.624709][   T27] audit: type=1326 audit(524520.067:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffbb759dd4 code=0x7ffc0000
[  232.635770][   T27] audit: type=1326 audit(524520.067:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffbb75b510 code=0x7ffc0000
[  232.642515][   T27] audit: type=1326 audit(524520.067:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffbb75b510 code=0x7ffc0000
[  232.645739][   T27] audit: type=1326 audit(524520.077:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=115 compat=0 ip=0xffffbb786108 code=0x7ffc0000
[  232.648935][   T27] audit: type=1326 audit(524520.077:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.2.2325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffbb75b510 code=0x7ffc0000
[  232.680172][T10710] loop0: detected capacity change from 0 to 764
[  232.706976][T10710] rock: directory entry would overflow storage
[  232.708062][T10710] rock: sig=0x5245, size=8, remaining=5
[  232.889816][T10734] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2332'.
[  234.732140][ T4328] Bluetooth: hci3: command 0x0419 tx timeout
[  234.844080][T10767] loop0: detected capacity change from 0 to 512
[  234.850741][T10773] loop3: detected capacity change from 0 to 256
[  234.906297][T10521] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  234.909947][T10773] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  234.911635][T10773] FAT-fs (loop3): Filesystem has been set read-only
[  234.915799][T10767] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  234.917071][T10773] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  234.920364][T10773] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  234.984358][T10521] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  234.990290][T10787] loop1: detected capacity change from 0 to 512
[  235.008699][T10787] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 2: comm syz.1.2346: invalid block
[  235.015229][T10787] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2346: invalid indirect mapped block 10 (level 1)
[  235.017442][T10787] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2346: invalid indirect mapped block 8 (level 1)
[  235.020497][T10787] EXT4-fs (loop1): 1 truncate cleaned up
[  235.021356][T10787] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  235.027281][T10521] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  235.070037][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  235.088406][T10521] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  235.123731][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  236.009135][T10822] loop3: detected capacity change from 0 to 128
[  236.052849][T10822] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  236.061300][T10822] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  236.151983][ T8562] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  236.666114][T10862] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  236.686987][ T4983] device hsr_slave_0 left promiscuous mode
[  236.773005][ T4983] device hsr_slave_1 left promiscuous mode
[  236.882694][ T4983] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  236.884359][ T4983] batman_adv: batadv0: Removing interface: batadv_slave_0
[  236.905264][ T4983] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  236.906981][ T4983] batman_adv: batadv0: Removing interface: batadv_slave_1
[  236.918633][ T4983] device bridge_slave_1 left promiscuous mode
[  236.940891][ T4983] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.963805][ T4380] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  237.046651][ T4983] device bridge_slave_0 left promiscuous mode
[  237.047840][ T4983] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.227425][T10876] loop3: detected capacity change from 0 to 2048
[  237.247728][ T4380] usb 1-1: config 0 interface 0 altsetting 32 endpoint 0x8D has invalid maxpacket 200, setting to 64
[  237.249565][ T4380] usb 1-1: config 0 interface 0 altsetting 32 endpoint 0x5 has invalid wMaxPacketSize 0
[  237.251257][ T4380] usb 1-1: config 0 interface 0 altsetting 32 endpoint 0x8B has invalid maxpacket 7772, setting to 64
[  237.253449][ T4380] usb 1-1: config 0 interface 0 has no altsetting 0
[  237.254573][ T4380] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  237.258212][ T4380] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.265162][ T4380] usb 1-1: config 0 descriptor??
[  237.266725][T10876] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  237.283539][ T4983] device veth1_macvtap left promiscuous mode
[  237.286591][ T4983] device veth0_macvtap left promiscuous mode
[  237.287880][ T4983] device veth1_vlan left promiscuous mode
[  237.289150][ T4983] device veth0_vlan left promiscuous mode
[  237.325186][T10876] fs-verity: sha512 using implementation "sha512-ce"
[  237.427992][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  237.479391][ T4335] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  237.481928][    T7] usb 1-1: USB disconnect, device number 8
[  238.120875][   T27] kauditd_printk_skb: 62 callbacks suppressed
[  238.120887][   T27] audit: type=1326 audit(524525.317:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10906 comm="syz.1.2379" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa815b9e8 code=0x0
[  238.760392][T10936] loop0: detected capacity change from 0 to 256
[  238.769607][T10936] FAT-fs (loop0): Directory bread(block 64) failed
[  238.770767][T10936] FAT-fs (loop0): Directory bread(block 65) failed
[  238.771773][T10936] FAT-fs (loop0): Directory bread(block 66) failed
[  238.773096][T10936] FAT-fs (loop0): Directory bread(block 67) failed
[  238.774235][T10936] FAT-fs (loop0): Directory bread(block 68) failed
[  238.775320][T10936] FAT-fs (loop0): Directory bread(block 69) failed
[  238.776286][T10936] FAT-fs (loop0): Directory bread(block 70) failed
[  238.777455][T10936] FAT-fs (loop0): Directory bread(block 71) failed
[  238.778630][T10936] FAT-fs (loop0): Directory bread(block 72) failed
[  238.779573][T10936] FAT-fs (loop0): Directory bread(block 73) failed
[  240.145400][ T4983] team0 (unregistering): Port device team_slave_1 removed
[  240.312712][ T4983] team0 (unregistering): Port device team_slave_0 removed
[  240.472677][ T4983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  240.663247][T10952] loop0: detected capacity change from 0 to 16
[  240.665799][T10952] erofs: (device loop0): mounted with root inode @ nid 36.
[  240.684536][ T4983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  243.273999][ T4983] bond0 (unregistering): Released all slaves
[  243.513004][T10521] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.519022][T10921] device veth1_to_team entered promiscuous mode
[  243.560769][T10521] 8021q: adding VLAN 0 to HW filter on device team0
[  243.563678][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  243.565189][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  243.574027][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  243.575580][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  243.577000][ T4414] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.578037][ T4414] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.579364][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  243.580943][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  243.596256][ T4414] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.597369][ T4414] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.598848][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  243.600472][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  243.603289][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  243.605073][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  243.609840][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  243.611437][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  243.628016][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  243.629690][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  243.631997][ T4723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  243.634515][ T4723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  243.639316][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  243.640943][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  243.646612][T10521] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  243.736226][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  243.737526][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  243.813843][T10521] 8021q: adding VLAN 0 to HW filter on device batadv0
[  244.100947][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  244.103094][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  244.163131][T10521] device veth0_vlan entered promiscuous mode
[  244.180691][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  244.182322][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  244.186901][T10521] device veth1_vlan entered promiscuous mode
[  244.191702][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  244.197947][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  244.200656][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  244.242735][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  244.244395][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  244.246002][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  244.258573][T10521] device veth0_macvtap entered promiscuous mode
[  244.281683][T10521] device veth1_macvtap entered promiscuous mode
[  244.334905][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  244.337737][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.341392][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  244.345368][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.349702][T10521] batman_adv: batadv0: Interface activated: batadv_slave_0
[  244.355502][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  244.357071][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  244.358412][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  244.359888][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  244.377125][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  244.388446][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.399671][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  244.406003][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.409072][T10521] batman_adv: batadv0: Interface activated: batadv_slave_1
[  244.413513][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  244.417507][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  244.440553][T10521] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.444028][T10521] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.445819][T10521] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.447345][T10521] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.540860][ T4414] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  244.543259][ T4414] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  244.547096][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  244.560016][ T4414] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  244.561377][ T4414] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  244.594183][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  244.815500][T11049] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  244.817010][T11049] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  245.251689][T11060] device sit0 entered promiscuous mode
[  245.270385][T11060] netlink: 'syz.0.2416': attribute type 1 has an invalid length.
[  245.280472][T11060] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2416'.
[  246.025974][T11080] 9pnet: p9_errstr2errno: server reported unknown error 
[  246.314253][T11091] loop5: detected capacity change from 0 to 512
[  246.356046][T11091] EXT4-fs (loop5): external journal device major/minor numbers have changed
[  247.374469][T11091] block device autoloading is deprecated and will be removed.
[  247.375924][T11091] EXT4-fs (loop5): external journal has bad superblock
[  247.975560][T11102] loop0: detected capacity change from 0 to 1024
[  247.996438][ T4313] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  248.028263][T11102] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  248.065597][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  248.177821][T11114] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2434'.
[  249.322814][ T2061] ieee802154 phy0 wpan0: encryption failed: -22
[  249.323828][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  249.404335][T11136] loop3: detected capacity change from 0 to 2048
[  249.422893][T11136] EXT4-fs: Ignoring removed nomblk_io_submit option
[  249.508795][T11136] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  249.593722][T11155] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2449'.
[  249.638102][   T27] audit: type=1326 audit(524537.107:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11159 comm="syz.3.2453" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fb5b9e8 code=0x0
[  250.135512][T11189] loop3: detected capacity change from 0 to 1024
[  250.173381][    T9] hfsplus: b-tree write err: -5, ino 8
[  250.211401][T11200] loop5: detected capacity change from 0 to 1024
[  250.250446][T11206] binder: 11206:11204 cannot find target node
[  250.251458][T11206] binder: 11204:11206 transaction call to 0:0 failed 20/29189/-22, size 0-0 line 3045
[  250.470896][T11218] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  250.472302][T11218] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  250.476645][T11218] vhci_hcd vhci_hcd.0: Device attached
[  250.481167][T11219] vhci_hcd: connection closed
[  250.486017][   T39] vhci_hcd: stop threads
[  250.488143][   T39] vhci_hcd: release socket
[  250.488984][   T39] vhci_hcd: disconnect device
[  250.534656][T11228] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  250.536147][T11228] device syzkaller0 entered promiscuous mode
[  250.720229][T11255] IPv6: addrconf: prefix option has invalid lifetime
[  251.281155][T11278] netlink: 165 bytes leftover after parsing attributes in process `syz.5.2500'.
[  251.439572][T11292] loop0: detected capacity change from 0 to 512
[  251.441458][T11292] EXT4-fs (loop0): external journal device major/minor numbers have changed
[  251.443022][T11292] EXT4-fs (loop0): external journal has bad superblock
[  251.483066][ T4313] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  252.238317][T11353] netlink: 'syz.0.2535': attribute type 29 has an invalid length.
[  252.519469][T11395] netlink: 'syz.0.2555': attribute type 3 has an invalid length.
[  252.854607][T11397] netlink: 'syz.5.2556': attribute type 1 has an invalid length.
[  252.999209][T11426] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2568'.
[  253.001117][T11426] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2568'.
[  253.020920][T11429] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  253.027423][T11429] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  253.040202][   T27] audit: type=1326 audit(524540.507:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.043664][   T27] audit: type=1326 audit(524540.507:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.046853][   T27] audit: type=1326 audit(524540.507:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.089981][   T27] audit: type=1326 audit(524540.507:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.194107][   T27] audit: type=1326 audit(524540.507:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.248770][   T27] audit: type=1326 audit(524540.507:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.313957][   T27] audit: type=1326 audit(524540.507:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.352419][   T27] audit: type=1326 audit(524540.507:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.367524][   T27] audit: type=1326 audit(524540.507:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11430 comm="syz.3.2571" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8fb5b9e8 code=0x7ffc0000
[  253.401364][T11439] loop5: detected capacity change from 0 to 1024
[  253.443218][T11439] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  253.476573][T10521] EXT4-fs (loop5): unmounting filesystem.
[  253.502462][ T4372] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  253.706346][ T4372] usb 1-1: Using ep0 maxpacket: 8
[  253.984309][ T4372] usb 1-1: unable to get BOS descriptor or descriptor too short
[  253.986156][ T4372] usb 1-1: config 5 has an invalid interface number: 238 but max is 0
[  253.987347][ T4372] usb 1-1: config 5 has no interface number 0
[  253.988296][ T4372] usb 1-1: config 5 interface 238 altsetting 6 bulk endpoint 0xF has invalid maxpacket 32
[  253.989788][ T4372] usb 1-1: config 5 interface 238 has no altsetting 0
[  253.992797][ T4372] usb 1-1: New USB device found, idVendor=10f5, idProduct=c545, bcdDevice=25.3f
[  253.994033][ T4372] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  253.995133][ T4372] usb 1-1: Product: syz
[  253.995732][ T4372] usb 1-1: Manufacturer: syz
[  253.996479][ T4372] usb 1-1: SerialNumber: syz
[  253.998944][T11427] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  254.053489][T11471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  254.061982][T11471] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  254.457937][ T4372] usb 1-1: USB disconnect, device number 9
[  255.280202][T11528] xt_CT: You must specify a L4 protocol and not use inversions on it
[  257.005240][T11576] loop1: detected capacity change from 0 to 512
[  257.023765][T11576] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  257.025372][T11576] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  257.026794][T11576] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  257.042530][T11576] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  257.043791][T11576] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  257.045356][T11576] EXT4-fs (loop1): orphan cleanup on readonly fs
[  257.057270][T11576] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2614: bg 0: block 34: padding at end of block bitmap is not set
[  257.080484][T11580] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2613'.
[  257.201879][T11576] __quota_error: 26 callbacks suppressed
[  257.201895][T11576] Quota error (device loop1): write_blk: dquota write failed
[  257.217251][T11576] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  257.218847][T11576] EXT4-fs error (device loop1): ext4_acquire_dquot:6809: comm syz.1.2614: Failed to acquire dquot type 1
[  257.255963][T11576] EXT4-fs (loop1): 1 truncate cleaned up
[  257.257906][T11576] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  257.314811][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  258.462021][T11637] loop1: detected capacity change from 0 to 512
[  258.468915][T11637] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  258.793368][T11637] EXT4-fs (loop1): 1 truncate cleaned up
[  258.794305][T11637] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  258.822632][T11650] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  258.885622][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  258.998507][T11663] loop5: detected capacity change from 0 to 512
[  259.020849][T11663] EXT4-fs: Ignoring removed nobh option
[  259.028319][T11663] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  259.048745][T10521] EXT4-fs (loop5): unmounting filesystem.
[  259.420899][T11680] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2643'.
[  259.700414][T11719] loop0: detected capacity change from 0 to 512
[  259.707975][T11719] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  259.727798][T11719] EXT4-fs (loop0): 1 truncate cleaned up
[  259.728819][T11719] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  260.544398][T11718] device syzkaller0 entered promiscuous mode
[  260.590198][T11737] loop5: detected capacity change from 0 to 1024
[  260.591655][T11737] EXT4-fs: Ignoring removed nomblk_io_submit option
[  260.608103][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  260.623530][T11737] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  260.656745][T10521] EXT4-fs (loop5): unmounting filesystem.
[  260.668415][T11745] loop0: detected capacity change from 0 to 256
[  260.687098][T11745] FAT-fs (loop0): Directory bread(block 64) failed
[  260.688114][T11745] FAT-fs (loop0): Directory bread(block 65) failed
[  260.689101][T11745] FAT-fs (loop0): Directory bread(block 66) failed
[  260.690060][T11745] FAT-fs (loop0): Directory bread(block 67) failed
[  260.691104][T11745] FAT-fs (loop0): Directory bread(block 68) failed
[  260.703039][T11745] FAT-fs (loop0): Directory bread(block 69) failed
[  260.704099][T11745] FAT-fs (loop0): Directory bread(block 70) failed
[  260.705354][T11745] FAT-fs (loop0): Directory bread(block 71) failed
[  260.706415][T11745] FAT-fs (loop0): Directory bread(block 72) failed
[  260.714730][T11745] FAT-fs (loop0): Directory bread(block 73) failed
[  261.670815][T11773] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2679'.
[  261.737942][T11785] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2683'.
[  261.739401][T11785] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2683'.
[  263.605623][T11856] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  263.607520][T11856] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  264.257152][T11889] loop5: detected capacity change from 0 to 512
[  264.309058][T11889] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.2710: error while reading EA inode 32 err=-116
[  264.315459][T11889] EXT4-fs (loop5): Remounting filesystem read-only
[  264.318408][T11889] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.2710: error while reading EA inode 32 err=-116
[  264.320693][T11889] EXT4-fs (loop5): Remounting filesystem read-only
[  264.330348][T11889] EXT4-fs (loop5): 1 orphan inode deleted
[  264.331500][T11889] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  264.380418][T10521] EXT4-fs (loop5): unmounting filesystem.
[  264.634374][ T4380] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  264.638059][T11908] loop5: detected capacity change from 0 to 512
[  264.647346][   T27] audit: type=1326 audit(524552.117:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11905 comm="syz.2.2717" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb75b9e8 code=0x0
[  264.684458][T11908] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  264.812234][ T4380] usb 1-1: Using ep0 maxpacket: 8
[  264.814617][ T4380] usb 1-1: New USB device found, idVendor=0644, idProduct=0000, bcdDevice= 0.f3
[  264.816221][ T4380] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.205275][ T4380] usb 1-1: config 0 descriptor??
[  266.308862][T11939] loop1: detected capacity change from 0 to 512
[  266.312359][ T4380] usb 1-1: USB disconnect, device number 10
[  266.326993][T11939] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  266.348297][T10521] EXT4-fs (loop5): unmounting filesystem.
[  266.361488][T11939] EXT4-fs (loop1): 1 truncate cleaned up
[  266.362523][T11939] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  266.577299][T11951] loop5: detected capacity change from 0 to 1024
[  266.583572][T11951] EXT4-fs: Ignoring removed oldalloc option
[  266.734767][T11951] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  266.769311][T10521] EXT4-fs (loop5): unmounting filesystem.
[  266.987139][ T4332] EXT4-fs (loop1): unmounting filesystem.
[  267.096770][T11987] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2748'.
[  267.601940][T12004] loop5: detected capacity change from 0 to 512
[  267.604369][T12004] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  267.612869][T12004] EXT4-fs (loop5): 1 truncate cleaned up
[  267.613832][T12004] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  268.065463][T12016] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  268.066934][T12016] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  268.103827][T12022] loop0: detected capacity change from 0 to 512
[  268.111947][T12022] ext3: Unknown parameter 'pcr'
[  268.166970][T12028] loop0: detected capacity change from 0 to 1024
[  268.172596][T12028] EXT4-fs: Ignoring removed nobh option
[  268.173601][T12028] EXT4-fs: Ignoring removed bh option
[  268.199226][T12028] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.2765: bad orphan inode 32767
[  268.201197][T12028] EXT4-fs (loop0): Remounting filesystem read-only
[  268.202504][T12028] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  268.215687][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  268.598225][T10521] EXT4-fs (loop5): unmounting filesystem.
[  268.748215][T12048] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  268.750142][T12048] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  269.960778][T12095] loop5: detected capacity change from 0 to 164
[  269.967315][T12095] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  270.419081][T12112] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  270.421616][T12112] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  270.519486][T12125] netlink: 'syz.3.2805': attribute type 12 has an invalid length.
[  271.037836][T12140] loop0: detected capacity change from 0 to 512
[  271.057553][T12140] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000001)
[  271.097141][T12148] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2816'.
[  271.105587][T12148] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2816'.
[  271.219707][T12160] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  271.221102][T12160] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  271.292419][ T4328] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  271.294922][ T4328] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  271.296512][ T4328] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  271.298449][ T4328] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  271.300126][ T4328] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  271.301528][ T4328] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  271.705028][T12180] loop5: detected capacity change from 0 to 1764
[  271.793510][T12165] chnl_net:caif_netlink_parms(): no params data found
[  271.811665][T12193] netlink: 160 bytes leftover after parsing attributes in process `syz.5.2835'.
[  271.835059][T12165] bridge0: port 1(bridge_slave_0) entered blocking state
[  271.836415][T12165] bridge0: port 1(bridge_slave_0) entered disabled state
[  271.838064][T12165] device bridge_slave_0 entered promiscuous mode
[  271.841481][T12165] bridge0: port 2(bridge_slave_1) entered blocking state
[  271.845078][T12165] bridge0: port 2(bridge_slave_1) entered disabled state
[  271.846775][T12165] device bridge_slave_1 entered promiscuous mode
[  271.865364][T12165] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  271.868005][T12165] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  271.877247][T12165] team0: Port device team_slave_0 added
[  271.880271][T12165] team0: Port device team_slave_1 added
[  271.887787][T12165] batman_adv: batadv0: Adding interface: batadv_slave_0
[  271.888876][T12165] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  271.892952][T12165] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  271.895793][T12165] batman_adv: batadv0: Adding interface: batadv_slave_1
[  271.896949][T12165] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  271.900942][T12165] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  271.968786][T12165] device hsr_slave_0 entered promiscuous mode
[  272.028195][T12165] device hsr_slave_1 entered promiscuous mode
[  272.079409][T12165] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  272.083083][T12165] Cannot create hsr debugfs directory
[  272.096317][T12210] bond0: (slave bond_slave_0): Slave does not support ipsec offload
[  272.126171][T12218] loop5: detected capacity change from 0 to 2048
[  272.128040][T12218] EXT4-fs (loop5): bad geometry: first data block 0 is beyond end of filesystem (0)
[  272.258131][T12165] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  272.327165][T12241] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2854'.
[  272.355169][T12165] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  272.403255][T12249] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  272.411773][T12249] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  272.488564][T12165] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  272.607572][T12165] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  272.790252][T12165] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  273.113004][T12165] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  273.153241][T12165] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  273.194353][T12165] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  273.329945][T12165] 8021q: adding VLAN 0 to HW filter on device bond0
[  273.335855][ T4517] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  273.337905][ T4517] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  273.345954][T12165] 8021q: adding VLAN 0 to HW filter on device team0
[  273.353035][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  273.354714][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  273.356177][ T4604] bridge0: port 1(bridge_slave_0) entered blocking state
[  273.357278][ T4604] bridge0: port 1(bridge_slave_0) entered forwarding state
[  273.359603][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  273.364132][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  273.365764][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  273.367180][ T4604] bridge0: port 2(bridge_slave_1) entered blocking state
[  273.368339][ T4604] bridge0: port 2(bridge_slave_1) entered forwarding state
[  273.376731][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  273.378442][ T4335] Bluetooth: hci4: command 0x0409 tx timeout
[  273.386354][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  273.395732][T12292] device wg1 entered promiscuous mode
[  273.397450][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  273.399850][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  273.401696][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  273.406441][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  273.408277][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  273.416969][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  273.418552][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  273.423761][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  273.425567][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  273.458170][T12165] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  273.474551][T12300] loop0: detected capacity change from 0 to 128
[  273.479256][T12300] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  273.567235][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  273.568541][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  273.612742][T12165] 8021q: adding VLAN 0 to HW filter on device batadv0
[  273.626829][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  273.628520][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  273.634307][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  273.635966][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  273.637910][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  273.639127][ T4604] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  273.647615][T12165] device veth0_vlan entered promiscuous mode
[  273.653310][T12165] device veth1_vlan entered promiscuous mode
[  273.705720][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  273.707302][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  273.712029][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  273.713467][ T4455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  273.717548][T12165] device veth0_macvtap entered promiscuous mode
[  273.721551][T12165] device veth1_macvtap entered promiscuous mode
[  273.780971][T12165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  273.782603][T12165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  273.784176][T12165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  273.786464][T12165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  273.787953][T12165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  273.789524][T12165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  273.792348][T12165] batman_adv: batadv0: Interface activated: batadv_slave_0
[  273.794463][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  273.796107][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  273.797599][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  273.799161][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  273.864704][T12165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  273.866271][T12165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  273.867696][T12165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  273.869175][T12165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  273.876422][T12165] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  273.878072][T12165] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  273.880489][T12165] batman_adv: batadv0: Interface activated: batadv_slave_1
[  273.910154][T12333] loop5: detected capacity change from 0 to 512
[  273.913415][T12333] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  273.935444][T12333] EXT4-fs (loop5): 1 truncate cleaned up
[  273.936360][T12333] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  274.029478][ T4983] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  274.033341][ T4983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  274.039462][T12165] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  274.041035][T12165] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  274.042492][T12165] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  274.043944][T12165] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  274.117576][ T4414] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  274.124547][ T4414] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  274.414543][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  274.430003][ T4414] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  274.432244][ T4414] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  274.434795][ T8564] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  274.473543][T12352] netlink: 'syz.3.2898': attribute type 12 has an invalid length.
[  274.486954][T12352] netlink: 'syz.3.2898': attribute type 29 has an invalid length.
[  274.491507][T12352] netlink: 148 bytes leftover after parsing attributes in process `syz.3.2898'.
[  274.494099][T12352] netlink: 43 bytes leftover after parsing attributes in process `syz.3.2898'.
[  275.078028][T10521] EXT4-fs (loop5): unmounting filesystem.
[  275.546730][ T4335] Bluetooth: hci4: command 0x041b tx timeout
[  275.588966][T12380] device vlan0 entered promiscuous mode
[  275.934498][T12406] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  277.061624][T12432] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2928'.
[  277.090667][T12435] loop0: detected capacity change from 0 to 512
[  277.104762][T12435] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000]
[  277.106226][T12435] System zones: 0-2, 18-18, 34-34
[  277.108230][T12435] EXT4-fs error (device loop0): ext4_do_update_inode:5268: inode #3: comm syz.0.2929: corrupted inode contents
[  277.110751][T12435] EXT4-fs error (device loop0): ext4_dirty_inode:6133: inode #3: comm syz.0.2929: mark_inode_dirty error
[  277.113079][T12435] EXT4-fs error (device loop0): ext4_do_update_inode:5268: inode #3: comm syz.0.2929: corrupted inode contents
[  277.118724][T12435] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #3: comm syz.0.2929: mark_inode_dirty error
[  277.121629][T12435] Quota error (device loop0): write_blk: dquota write failed
[  277.123490][T12435] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  277.125651][T12435] EXT4-fs error (device loop0): ext4_acquire_dquot:6809: comm syz.0.2929: Failed to acquire dquot type 0
[  277.129995][T12435] EXT4-fs (loop0): 1 orphan inode deleted
[  277.131076][T12435] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  277.145903][ T8564] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  277.147445][ T8564] EXT4-fs error (device loop0): ext4_release_dquot:6845: comm kworker/u4:24: Failed to release dquot type 1
[  277.179907][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  277.226651][T12442] loop0: detected capacity change from 0 to 512
[  277.311224][T12442] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.2931: bg 0: block 5: invalid block bitmap
[  277.313333][T12442] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  277.314749][T12442] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.2931: invalid indirect mapped block 3 (level 2)
[  277.320692][T12442] EXT4-fs (loop0): 1 orphan inode deleted
[  277.321579][T12442] EXT4-fs (loop0): 1 truncate cleaned up
[  277.331543][T12442] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  277.631911][ T4319] EXT4-fs (loop0): unmounting filesystem.
[  277.648208][ T4328] Bluetooth: hci4: command 0x040f tx timeout
[  277.781939][T12462] loop0: detected capacity change from 0 to 1024
[  277.806617][T12462] hfsplus: failed to load extents file
[  278.519036][T12479] loop1: detected capacity change from 0 to 512
[  278.527662][T12479] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  278.698854][T12479] EXT4-fs (loop1): 1 truncate cleaned up
[  278.699876][T12479] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  279.057598][T12476] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2944'.
[  279.119496][ T4335] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  279.122252][ T4335] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  279.123944][ T4335] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  279.125590][ T4335] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  279.130172][ T4335] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  279.131400][ T4335] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  279.239694][T12492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2949'.
[  279.423629][T12165] EXT4-fs (loop1): unmounting filesystem.
[  279.605488][T12501] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2954'.
[  279.692391][T12477] chnl_net:caif_netlink_parms(): no params data found
[  279.790986][T12516] I/O error, dev loop11, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  279.792724][T12516] FAT-fs (loop11): unable to read boot sector
[  279.851396][ T4328] Bluetooth: hci4: command 0x0419 tx timeout
[  280.044090][T12477] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.045636][T12477] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.047224][T12477] device bridge_slave_0 entered promiscuous mode
[  280.049183][T12477] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.050382][T12477] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.051826][T12477] device bridge_slave_1 entered promiscuous mode
[  280.072255][T12477] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  280.079365][T12477] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  280.092139][T12477] team0: Port device team_slave_0 added
[  280.094152][T12477] team0: Port device team_slave_1 added
[  280.103644][T12477] batman_adv: batadv0: Adding interface: batadv_slave_0
[  280.104969][T12477] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.109934][T12477] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  280.112672][T12477] batman_adv: batadv0: Adding interface: batadv_slave_1
[  280.113895][T12477] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.118582][T12477] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.168291][T12477] device hsr_slave_0 entered promiscuous mode
[  280.218662][T12477] device hsr_slave_1 entered promiscuous mode
[  280.259443][T12477] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  280.260776][T12477] Cannot create hsr debugfs directory
[  280.309861][ T4551] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  280.758134][ T4551] usb 1-1: Using ep0 maxpacket: 8
[  280.760165][ T4551] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  280.761412][ T4551] usb 1-1: config 179 has no interface number 0
[  280.762426][ T4551] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  280.764227][ T4551] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  280.766004][ T4551] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  280.767723][ T4551] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  280.770434][ T4551] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  280.772283][ T4551] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  280.773641][ T4551] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.784703][T12508] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  280.952206][T12538] ICMPv6: NA: aa:aa:aa:aa:aa:bb advertised our address fe80::aa on syz_tun!
[  281.280234][ T4335] Bluetooth: hci5: command 0x0409 tx timeout
[  281.314959][ T4365] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input6
[  281.518412][ T4365] usb 1-1: USB disconnect, device number 11
[  281.518439][    C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  281.518457][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  281.522622][ T4365] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  281.569771][T12477] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  281.595475][T12543] ------------[ cut here ]------------
[  281.596313][T12543] WARNING: CPU: 0 PID: 12543 at mm/page_alloc.c:5590 __alloc_pages+0xd0/0x53c
[  281.597760][T12543] Modules linked in:
[  281.598311][T12543] CPU: 0 PID: 12543 Comm: syz.5.2968 Not tainted syzkaller #0
[  281.599389][T12543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[  281.600878][T12543] pstate: 22400005 (nzCv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--)
[  281.602095][T12543] pc : __alloc_pages+0xd0/0x53c
[  281.602884][T12543] lr : __alloc_pages+0xac/0x53c
[  281.603564][T12543] sp : ffff800021ce7820
[  281.604146][T12543] x29: ffff800021ce78e0 x28: dfff800000000000 x27: ffff800021ce7840
[  281.605369][T12543] x26: 1fffe0001e85f378 x25: dfff800000000000 x24: ffff70000439cf08
[  281.606636][T12543] x23: dfff800000000000 x22: 0000000000000000 x21: 0000000000040cc0
[  281.607857][T12543] x20: 0000000000000000 x19: 0000000000000013 x18: 0000000000000000
[  281.609027][T12543] x17: 0000000000000000 x16: ffff8000082d10fc x15: 0000000020000000
[  281.610240][T12543] x14: 00000000c0085508 x13: 1ffff00002a180b1 x12: 0000000000000005
[  281.611419][T12543] x11: 1ffff0000439cf0c x10: 0000000000000000 x9 : 0000000000000001
[  281.612646][T12543] x8 : ffff800017a8a000 x7 : 0000000000000000 x6 : ffff800021ce7aa8
[  281.613808][T12543] x5 : ffff800021ce7aa8 x4 : 0000000000000000 x3 : 0000000000000020
[  281.614977][T12543] x2 : 0000000000000008 x1 : 0000000000000000 x0 : 0000000000000000
[  281.616163][T12543] Call trace:
[  281.616691][T12543]  __alloc_pages+0xd0/0x53c
[  281.617395][T12543]  __kmalloc_large_node+0xa8/0x1e0
[  281.618135][T12543]  __kmalloc+0x140/0x178
[  281.618801][T12543]  raw_alloc_io_data+0x1cc/0x298
[  281.619544][T12543]  raw_ioctl+0x6ac/0x31f4
[  281.620225][T12543]  __arm64_sys_ioctl+0x14c/0x1c8
[  281.620911][T12543]  invoke_syscall+0x98/0x2bc
[  281.621621][T12543]  el0_svc_common+0x1fc/0x258
[  281.622377][T12543]  do_el0_svc+0x58/0x13c
[  281.623033][T12543]  el0_svc+0x58/0x138
[  281.623703][T12543]  el0t_64_sync_handler+0x84/0xf0
[  281.624493][T12543]  el0t_64_sync+0x18c/0x190
[  281.625138][T12543] irq event stamp: 1684
[  281.625786][T12543] hardirqs last  enabled at (1683): [<ffff8000088d82a8>] kasan_quarantine_put+0xc4/0x204
[  281.627244][T12543] hardirqs last disabled at (1684): [<ffff80001195cc30>] el1_dbg+0x24/0x80
[  281.628508][T12543] softirqs last  enabled at (1666): [<ffff8000080309e0>] local_bh_enable+0x10/0x34
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  281.629917][T12543] softirqs last disabled at (1664): [<ffff8000080309ac>] local_bh_disable+0x10/0x34
[  281.631345][T12543] ---[ end trace 0000000000000000 ]---
[  281.664359][T12477] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  282.691258][ T4517] tipc: Disabling bearer <eth:vlan0>
[  282.692483][ T4517] tipc: Left network mode
[  284.509782][ T4517] device hsr_slave_0 left promiscuous mode
[  284.549188][ T4517] device hsr_slave_1 left promiscuous mode
[  284.640180][ T4517] batman_adv: batadv0: Removing interface: batadv_slave_0
[  284.641640][ T4517] batman_adv: batadv0: Removing interface: batadv_slave_1
[  284.643099][ T4517] device bridge_slave_1 left promiscuous mode
[  284.644237][ T4517] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.681197][ T4517] device bridge_slave_0 left promiscuous mode
[  284.682177][ T4517] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.548894][ T4517] team0 (unregistering): Port device team_slave_1 removed
[  286.740858][ T4517] team0 (unregistering): Port device team_slave_0 removed
[  286.913669][ T4517] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  287.112843][ T4517] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  289.451399][ T4517] bond0 (unregistering): Released all slaves