last executing test programs:

2m50.511513663s ago: executing program 1 (id=1843):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b70500000800000085000000aa00000095"], &(0x7f0000000300)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1c}, 0x94)

2m50.212534267s ago: executing program 1 (id=1849):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c00000002060104db406e3e0004000200000000100003006269746d61703a706f72740005000400000000000900020073797a32000000000500050000006c00050001000600000024000780080008400000137906000440fffff000060005400000000008000640"], 0x6c}}, 0x0)

2m50.02536422s ago: executing program 1 (id=1853):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0x8}})

2m49.813343474s ago: executing program 1 (id=1856):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x2000004, &(0x7f0000000900)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$eJzs281vG8Ufx/HPbGJnk/b3w31yC6qEJSSKiiix05I+gRRa0iL1gbYJAqEWhcYJVhMnitOqraCtxKFHoEggJA7l0AtCVZHgAgcOcOM/4MKtBy6YEycQms2sd+26JK0fEjfvl5R4vPv17uzM7OysdywAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACC9/MpQf9Ysdy4AAEA7HTt1sj/H9R8AgFVlhPt/AACA1cTI0ycy+uHTsjkavF/gHykUz18cPThc/2O9JvhkVxBv//xsbmDnrhcGd4ev//35Zntcx0+NDGUOzEzPzuVLpfx4ZrRYODsznl/yFhr9fK3tQQFkps+dH5+YKGVyOwaqVl9M3e1Zk07tG0zvfzqMHT04PHwqFtOdeOi93+N+I/ykPF2XUfnj2+aYJE+Nl8UibafVeoOD2B4cxOjB4eBApgpjxXm70oQF4VWXSTIsozbURUM2SjZfJtmce7aEPJVktCldNscldYXl8GzwxfDiG/Cako0HZvN5WlJGHVBnK1iPPO2S0Y09Kb1myyys/27p/eXOHFquW55uy2jbS2VzIugP7Plku80jr2deLU7MxGKNcWdUp18f2mmF902+PB0LzviyObncmUHb2cHSaRntHLkQjCsUjEsf2zd46PBIfISxeZHt2NgdLr2Ua3IiNnQwyzSGAAAAAAAAAB51vvGC7+I+/8YP3mfcMyCsEsbT8zL683A5eDQen5fQFZvfUdHpz35am/9e/8DM7KW5wuS783XX9/lD75Tm58bO1l+tXnvyVX0dvtg8hgYljKfdMrr6z51ovylj064biHZ0a3+UN9/UrA3azf8X5rOEzxD2Dm+Op+tm+QGej6XcfumfgOYwxtOQjCa+3+LmfvTpnj7IxX0roz9ubnVxXtIGhadpKvjvTxSm8v029icZffl3GBtMM9MaF7shis3aWE9GHx2tjl3rYjdGsTkbe0hGP5+pH7spih2wsR/IaPb3TBjbZ2OfdLHpKHbH2Zmp8ZYV8Apn+/8rMlr/YsaEdenKy3WzXZXYW+9F/f212g3dp89vtP9PxZZdc+3wrm2vZ7YEbS9or1799npdRl9/t9XFLbSVpFu/Lvgftdc3ZDT5S3Vsn4tdH8Vml1ywHcLW/9syyhXvVMrG1b+rgdj1P1b/T9S2jhbV/7rYspTbb09zDh2SSpcunxubmsrPkSBBYgmJHq2IbCySCPvlh9/OMndMaAt7/f9MRm+e+LUy3nHXfzesjsZ/f12Jrv97azfUouv/+tiyvW40kuiW/Pnp2URa8kuXLj9XmB6bzE/miwO57J7+PTsHs4lkOLaLUg0X1SMp4e7VLnz4VeX+rHr8V3/831e7oRbV/waXzXCfUSfVlMNf9Wz9/yajt368U7mPtvV/sxJRPf4P77OeeWrhtXJ+tqj+N8aWpdx+/9eE4wYAAAAAAAAAAAAAAACATpcwnm7IyD/dbcLfRi1l/t89P5hq0fyvdGzZeJt+r9BwoQJAB/Dk6QsZbVPZXLUL1kpH4694pP0bAAD//3VdHM0=")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})

2m49.33859749s ago: executing program 1 (id=1862):
prlimit64(0x0, 0x7, &(0x7f00000001c0), 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x7fffffffffffffff]}, 0x8, 0x0)

2m48.73224284s ago: executing program 1 (id=1870):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x200000, &(0x7f0000000440)={[{@userxattr}, {@redirect_dir_off}]})

2m48.290177596s ago: executing program 32 (id=1870):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x200000, &(0x7f0000000440)={[{@userxattr}, {@redirect_dir_off}]})

1m12.438950846s ago: executing program 0 (id=2981):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f00000004c0)={[{@nobarrier}, {@gid}, {}, {@force}, {}, {@nodecompose}, {@nls={'nls', 0x3d, 'default'}}]}, 0x44, 0x6fc, &(0x7f0000003180)="$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")
lgetxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'osx.', 'security.capability\x00'}, 0x0, 0x0)

1m12.260953069s ago: executing program 0 (id=2984):
r0 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000240)=0x1, 0x4)

1m11.952517854s ago: executing program 0 (id=2989):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x24, 0x2, 0x3, 0x801, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1f}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20004800)

1m11.714129498s ago: executing program 0 (id=2993):
syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000100)='./file1\x00', 0x800800, &(0x7f0000000040)={[{@utf8}, {@iocharset={'iocharset', 0x3d, 'cp950'}}, {@umask={'umask', 0x3d, 0x8}}, {@keep_last_dots}, {@umask={'umask', 0x3d, 0x5}}, {@gid}, {@iocharset={'iocharset', 0x3d, 'cp775'}}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@errors_continue}, {@sys_tz}]}, 0x1, 0x152b, &(0x7f0000000a00)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)

1m11.121408236s ago: executing program 0 (id=2999):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001280)='/proc/schedstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000001100)=""/216, 0xd8, 0x401)

1m10.489356046s ago: executing program 0 (id=3008):
r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205649, &(0x7f0000000580)={0x980000, 0x0, 0x5, 0xffffffffffffffff, 0x0, 0x0})

1m10.054675762s ago: executing program 33 (id=3008):
r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205649, &(0x7f0000000580)={0x980000, 0x0, 0x5, 0xffffffffffffffff, 0x0, 0x0})

4.417257855s ago: executing program 5 (id=3674):
r0 = openat$rdma_cm(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f0000002400)={0x16, 0x98, 0xfa00, {0x0, 0x0, 0xffffffffffffffff, 0x10, 0x0, @ib={0x1b, 0xb1c, 0x0, {"fc2887cd5d9ff3586b1e23d047b16cdb"}, 0x200, 0xb6b, 0x7ff}}}, 0xa0)

4.239154678s ago: executing program 5 (id=3675):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x97}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x58}}, 0x4004010)

4.10048625s ago: executing program 5 (id=3676):
syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0)={[{}]}, 0x1, 0x232, &(0x7f0000000000)="$eJzKKC4sZmdgYPj7sSaZgUGAAQRYGEQYLjAwMrAwMDDIM4KFGD4yQeipUPomlGaDyl+B0r5Q8XYo/de8KiKKgYExU+meGdMB8RRFRgEGHpGvpx4wJDPwxzJYzvNecykoc8pVobdL94PUe4VWbmJgVE/hXzRnwwSnmbxgYxkjo5DNYT4gM4sDZBADA8PkPxH3HrBIMoggmSXK8U/sVMvyVWad9xlmdExLY2A0mMXBwMCgd0R3pp0BbzcT1MziyqrsxJyc1KLiAwyo5k9m3M+kyAhSd+bv1eAHjHYM3bEMjAxyG/zVFn/7I1W5cVN95PSqiJqp3U03l66PY9im//eKidT7iRlh/x8cEtSyyMv/ME9G6fvmhjkfauqemDh2NirP5W+9/Pfd+5ja4gQ1psfiXYVs/AluWjWfnJ3cLB/PTa9u31KsuCArzWXisakX/yYcX8vAMPnCE1t9BgaGDSDnulXOjbnrFi/ItUz9fN2bFwwHoz5PZGBkZGBgYmCYGbZzD7K/yhugkcHAzMDAoMIAUsTCkJaZk2rgwcDIwMzAws6ADGCqmRg4wKr0kvNzUtoZGMFJAKxtOQML3AzDxwys/CDlII7RYwZWuIyxRQPMyHYorQKlPaD0cij9GErLoyUbFrAJ/VCeRgMDAxtDReJ//iJDNgYGhorEkpIiQ4hYSUmREVzMSABuMxPU1rlMqJ47zsQwCkbBKBgFo2AUjIJRMApGwSgYBSMZAAIAAP//kpC1eQ==")
syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120100006325a640402000207265970000010902240001000000000904000002214c6a0009050702000000da000905"], 0x0)

4.07515052s ago: executing program 4 (id=3678):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x83, &(0x7f0000000140)={0x0, 0x300}, 0x8)

3.738763015s ago: executing program 4 (id=3681):
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000000)='./file1\x00', 0xa18c14, &(0x7f0000000340)=ANY=[@ANYBLOB="756e695f786c6174653d312c696f636861727365743d69736f383835392d392c73686f72746e616d653d77696e6e742c636f6465706167653d3836312c757466383d302c756e695f786c6174653d302c726f6469722c6e6f6e756d7461696c3d302c73686f72746e616d653d6c6f7765722c757466383d312c756e695f786c6174653d312c726f6469722c757466383d302c00531b17042f7ca50e22895c2b5d4e569f5eaf155190d8f66862a6e25caf6e3347919a6ebd4864113ab7083ee0c1019f"], 0x81, 0x2ab, &(0x7f0000000840)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)

3.475417419s ago: executing program 4 (id=3683):
r0 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x4, 0x2ffffffff}, 0x2e)

3.301079592s ago: executing program 4 (id=3685):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x100, 0xac}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x2}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40001}, 0x20004090)

3.179739114s ago: executing program 3 (id=3687):
syz_mount_image$udf(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5e2, &(0x7f0000000880)="$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")
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000001300)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3.104658204s ago: executing program 4 (id=3688):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0xa4, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xa, 0x1, 'Q.931\x00'}}]}, 0xa4}}, 0x0)

2.950220837s ago: executing program 2 (id=3689):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c81, 0x7000000)

2.789816339s ago: executing program 2 (id=3690):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="8000000000020104000000000000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001800800010000000000080002007f0000010c0002800500010000000000080007400000000008000340"], 0x80}}, 0x0)

2.487320213s ago: executing program 4 (id=3691):
syz_mount_image$jfs(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x8800, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodiscard,quota,iocharset=cp950,grpquota,quota,noquota,nointegrity\x00uid=', @ANYRESHEX, @ANYRES64=0x0, @ANYRESDEC, @ANYBLOB="bf6a8bfcf00ce3cc70200921", @ANYRESHEX=0x0, @ANYRES16, @ANYRESOCT, @ANYBLOB="f303e42912de99b7ea1135f2f9d5b1a74117c5c998fb6fd985561a5cd1ce", @ANYRES64], 0x1, 0x617a, &(0x7f0000000580)="$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")
open(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x70)

2.302524896s ago: executing program 3 (id=3692):
r0 = syz_open_dev$ndb(&(0x7f0000000380), 0x0, 0x0)
ioctl$BLKPG(r0, 0x1269, 0x0)

1.857324013s ago: executing program 3 (id=3693):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x437, 0x70bd2d, 0x25dfdbfd, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_OFLAGS={0x6, 0x3, 0x81}, @IFLA_GRE_IFLAGS={0x6, 0x2, 0x7}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000015}, 0x0)

1.664808766s ago: executing program 2 (id=3694):
r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205649, &(0x7f0000000580)={0x0, 0x201, 0x3, 0xffffffffffffffff, 0x0, &(0x7f0000000600)={0x98f90a, 0x8000, '\x00', @p_u8=0x0}})

1.560463567s ago: executing program 5 (id=3695):
r0 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x8, 0x0, &(0x7f00000001c0))

1.264254102s ago: executing program 3 (id=3696):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000200)={0x0, 0x44, &(0x7f0000000580)=[{&(0x7f0000000480)="d80000001c0081064e81f782db44b9040a1d08041000000000000aa1180015000600142603600e1208000f0000810401a8001600200001400300000007391bd06b3c70c3", 0x44}, {&(0x7f0000000840)="5c4875c6cad162c8a030dbf75c317dad4320e1bb556d3b3e131b77de8bd885166fc0c25d69226ae9915eccf9551f804eae36cf2327896a817179f04f35d9a7deed88adf4ca13a5a0c36a7496d22b9adf2c0fa13e1572ad237e2677a2797d5dd9307bff0bc01e4fd69c546e17a7118272ace242bc6025d0b60a12b3788fa6a7649045e4af16ba69df4bd43527a3d09bb308ac7073", 0x94}], 0x2, 0x0, 0x0, 0x7400}, 0x0)

1.107694204s ago: executing program 5 (id=3697):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r0, 0x29, 0x38, 0x0, 0x0)

1.107118754s ago: executing program 2 (id=3698):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000980)={{{@in=@loopback, @in=@remote, 0x4e21, 0x0, 0x4e20, 0x0, 0xa, 0xa0, 0x20, 0x3a}, {0xd, 0x4, 0x9, 0x5, 0xfff, 0x7ff, 0x8, 0x4}, {0x3, 0x7, 0x6, 0x1ff}, 0xfffffff9, 0x6e6bbe, 0x2, 0x0, 0x3, 0x2}, {{@in=@empty, 0x4d2, 0x2b}, 0x2, @in6=@dev={0xfe, 0x80, '\x00', 0x11}, 0x34ff, 0x4, 0x9dd0a50f9d3661b9, 0x3, 0x1, 0x4, 0x3}}, 0x3f8)

584.802512ms ago: executing program 3 (id=3699):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x43, &(0x7f0000000340)={{{@in=@broadcast, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0xff}, {0xc8e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x200000000000000, 0x3}, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x0, @in=@private=0xa010100, 0x1, 0x0, 0x3}}, 0xe8)

551.958532ms ago: executing program 2 (id=3700):
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$netlink(r0, 0x10e, 0xa, 0x0, &(0x7f0000000480))

462.469674ms ago: executing program 5 (id=3701):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x3, 0x5, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000850000007d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

106.198709ms ago: executing program 3 (id=3702):
unshare(0x2c020400)
syz_io_uring_setup(0xf04, &(0x7f0000000180)={0x0, 0xd96d, 0x3f, 0xfffffffe, 0x24000, 0x0, 0x0}, 0x0, 0x0)

0s ago: executing program 2 (id=3703):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x4, 0x4)

kernel console output (not intermixed with test programs):

2695': attribute type 1 has an invalid length.
[  326.626619][T12159] netlink: 'syz.3.2695': attribute type 1 has an invalid length.
[  326.776480][T12163] loop0: detected capacity change from 0 to 256
[  326.795657][T12163] exfat: Deprecated parameter 'utf8'
[  326.855104][T12163] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  326.883534][T12166] loop4: detected capacity change from 0 to 2048
[  326.931156][T12166] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  327.011297][T12169] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  327.236968][T12175] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2702'.
[  327.754153][T12193] netlink: 'syz.3.2711': attribute type 10 has an invalid length.
[  327.761802][T12195] set match dimension is over the limit!
[  327.783467][T12193] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2711'.
[  327.804218][T12193] ipvlan1: entered promiscuous mode
[  327.814458][T12193] ipvlan1: entered allmulticast mode
[  327.830240][T12193] veth0_vlan: entered allmulticast mode
[  327.842687][T12193] bridge0: port 3(ipvlan1) entered blocking state
[  327.870888][T12193] bridge0: port 3(ipvlan1) entered disabled state
[  328.165684][T12209] loop2: detected capacity change from 0 to 1024
[  328.369903][ T1077] hfsplus: b-tree write err: -5, ino 4
[  329.051957][T12235] loop3: detected capacity change from 0 to 4096
[  329.089014][T12235] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  329.100559][  T786] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  329.315235][  T786] usb 5-1: Using ep0 maxpacket: 16
[  329.342728][  T786] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  329.360325][  T786] usb 5-1: config 0 has no interface number 0
[  329.387433][  T786] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  329.427822][  T786] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  329.457860][T12249] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check.
[  329.469879][  T786] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  329.499740][  T786] usb 5-1: Product: syz
[  329.510080][  T786] usb 5-1: SerialNumber: syz
[  329.535237][  T786] usb 5-1: config 0 descriptor??
[  329.569173][  T786] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input17
[  329.606799][T12251] loop0: detected capacity change from 0 to 4096
[  329.653164][T12251] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.820296][T12251] EXT4-fs error (device loop0): ext4_get_first_dir_block:3604: inode #12: block 80: comm syz.0.2740: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  329.864973][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  329.865012][ T5884] usb 5-1: USB disconnect, device number 5
[  329.872403][    C0] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  329.925196][ T5884] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  329.943277][T12251] EXT4-fs error (device loop0): ext4_get_first_dir_block:3606: inode #12: comm syz.0.2740: directory missing '..'
[  330.057656][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.445750][   T28] audit: type=1326 audit(1752512011.170:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12268 comm="syz.2.2748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee2698e929 code=0x7ffc0000
[  330.500364][   T28] audit: type=1326 audit(1752512011.170:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12268 comm="syz.2.2748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee2698e929 code=0x7ffc0000
[  331.349249][T12299] loop3: detected capacity change from 0 to 16
[  331.374298][T12299] erofs: (device loop3): mounted with root inode @ nid 36.
[  331.686478][T12307] xt_TCPMSS: Only works on TCP SYN packets
[  331.760360][T12310] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2767'.
[  331.771569][T12284] loop2: detected capacity change from 0 to 32768
[  332.099892][T12319] loop3: detected capacity change from 0 to 256
[  332.217118][T12319] FAT-fs (loop3): Directory bread(block 64) failed
[  332.242977][T12319] FAT-fs (loop3): Directory bread(block 65) failed
[  332.249795][T12319] FAT-fs (loop3): Directory bread(block 66) failed
[  332.330563][T12319] FAT-fs (loop3): Directory bread(block 67) failed
[  332.337279][T12319] FAT-fs (loop3): Directory bread(block 68) failed
[  332.386601][T12319] FAT-fs (loop3): Directory bread(block 69) failed
[  332.417831][T12319] FAT-fs (loop3): Directory bread(block 70) failed
[  332.444092][T12319] FAT-fs (loop3): Directory bread(block 71) failed
[  332.453352][T12331] loop0: detected capacity change from 0 to 512
[  332.480880][T12319] FAT-fs (loop3): Directory bread(block 72) failed
[  332.487493][T12319] FAT-fs (loop3): Directory bread(block 73) failed
[  332.495146][T12331] EXT4-fs: Ignoring removed nomblk_io_submit option
[  332.520407][T12331] EXT4-fs: Ignoring removed i_version option
[  332.611182][T12331] EXT4-fs (loop0): 1 orphan inode deleted
[  332.625162][T12331] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.816728][T12338] Cannot find add_set index 3 as target
[  332.986455][T12340] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2781'.
[  332.996947][ T5861] usb 1-1: new full-speed USB device number 16 using dummy_hcd
[  333.010954][T12340] netlink: 136 bytes leftover after parsing attributes in process `syz.2.2781'.
[  333.034027][T12344] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2782'.
[  333.209153][ T5861] usb 1-1: config 0 has an invalid interface number: 120 but max is 0
[  333.227741][ T5861] usb 1-1: config 0 has no interface number 0
[  333.234293][ T5861] usb 1-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid maxpacket 12349, setting to 64
[  333.255984][ T5861] usb 1-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  333.275441][ T5861] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.301484][ T5861] usb 1-1: config 0 descriptor??
[  333.317569][T12331] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  333.355278][ T5861] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.120/input/input18
[  333.748431][    T8] usb 1-1: USB disconnect, device number 16
[  334.025756][T12357] loop3: detected capacity change from 0 to 2048
[  334.081862][T12360] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  334.189756][T12362] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2790'.
[  334.208009][T12357] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  334.240523][T12357] Remounting filesystem read-only
[  334.265934][T12347] loop2: detected capacity change from 0 to 32768
[  334.267324][T12357] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  334.289504][T12347] XFS: ikeep mount option is deprecated.
[  334.375148][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.399071][T12347] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  334.788131][T12347] XFS (loop2): Ending clean mount
[  334.814490][T12347] XFS (loop2): Quotacheck needed: Please wait.
[  334.907663][T12347] XFS (loop2): Quotacheck: Done.
[  334.908271][T12384] loop0: detected capacity change from 0 to 64
[  335.171773][T12390] syz.3.2800: attempt to access beyond end of device
[  335.171773][T12390] loop7: rw=0, sector=0, nr_sectors = 8 limit=0
[  335.201593][ T5791] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  335.211121][T12390] F2FS-fs (loop7): Unable to read 1th superblock
[  335.217759][T12390] syz.3.2800: attempt to access beyond end of device
[  335.217759][T12390] loop7: rw=0, sector=8, nr_sectors = 8 limit=0
[  335.238942][T12390] F2FS-fs (loop7): Unable to read 2th superblock
[  336.230103][T12423] loop3: detected capacity change from 0 to 64
[  336.283842][T12423] syz.3.2816: attempt to access beyond end of device
[  336.283842][T12423] loop3: rw=0, sector=234881062, nr_sectors = 2 limit=64
[  336.313491][T12424] loop0: detected capacity change from 0 to 2048
[  336.320046][T12423] Buffer I/O error on dev loop3, logical block 117440531, async page read
[  336.348352][T12423] syz.3.2816: attempt to access beyond end of device
[  336.348352][T12423] loop3: rw=0, sector=8548515840, nr_sectors = 2 limit=64
[  336.376880][T12423] Buffer I/O error on dev loop3, logical block 4274257920, async page read
[  336.436698][T12427] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  336.455849][T12423] syz.3.2816: attempt to access beyond end of device
[  336.455849][T12423] loop3: rw=0, sector=301989888, nr_sectors = 2 limit=64
[  336.489293][T12424] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  336.517627][T12423] Buffer I/O error on dev loop3, logical block 150994944, async page read
[  336.526535][T12424] Remounting filesystem read-only
[  336.540638][T12424] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  336.558571][T12423] syz.3.2816: attempt to access beyond end of device
[  336.558571][T12423] loop3: rw=0, sector=234881062, nr_sectors = 2 limit=64
[  336.630274][T12423] Buffer I/O error on dev loop3, logical block 117440531, async page read
[  336.639180][   T28] audit: type=1800 audit(1752512017.360:91): pid=12423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2816" name="file2" dev="loop3" ino=6 res=0 errno=0
[  336.835326][T12431] vlan0: entered promiscuous mode
[  336.939499][T12412] loop2: detected capacity change from 0 to 32768
[  337.068710][T12412] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  337.219182][T12412] (syz.2.2802,12412,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is smaller than minimal - offset=288, inode=0, rec_len=0, name_len=0
[  337.270584][T12412] (syz.2.2802,12412,0):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2
[  337.316318][T12412] (syz.2.2802,12412,0):ocfs2_mknod:298 ERROR: status = -2
[  337.350522][T12412] (syz.2.2802,12412,1):ocfs2_mknod:502 ERROR: status = -2
[  337.357795][T12412] (syz.2.2802,12412,1):ocfs2_create:676 ERROR: status = -2
[  337.512022][T12454] loop4: detected capacity change from 0 to 2048
[  337.575540][T12458] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  337.588111][ T5791] ocfs2: Unmounting device (7,2) on (node local)
[  337.711983][T12454] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  337.746883][T12454] Remounting filesystem read-only
[  337.768530][T12454] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  338.185570][T12473] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.2838'.
[  338.265472][T12475] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  338.310358][T12475] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  338.338421][T12475] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  338.397283][T12481] loop4: detected capacity change from 0 to 16
[  338.414273][T12481] erofs: (device loop4): mounted with root inode @ nid 36.
[  338.638444][T12485] loop2: detected capacity change from 0 to 4096
[  338.649715][T12485] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  338.693283][T12489] vivid-000: =================  START STATUS  =================
[  338.730729][T12489] vivid-000: Test Pattern: 75% Colorbar
[  338.773678][T12489] vivid-000: Fill Percentage of Frame: 100
[  338.778105][T12485] ntfs: volume version 3.1.
[  338.787212][T12489] vivid-000: Horizontal Movement: No Movement
[  338.805795][T12489] vivid-000: Vertical Movement: Move Down Fast
[  338.813266][T12489] vivid-000: OSD Text Mode: All
[  338.830307][T12489] vivid-000: Show Border: false
[  338.845488][T12489] vivid-000: Show Square: false
[  338.855615][T12489] vivid-000: Sensor Flipped Horizontally: false
[  338.870343][T12489] vivid-000: Sensor Flipped Vertically: false
[  338.886825][T12489] vivid-000: Insert SAV Code in Image: false
[  338.895522][T12485] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  338.897276][T12489] vivid-000: Insert EAV Code in Image: false
[  338.927387][T12489] vivid-000: Insert Video Guard Band: false
[  338.950463][T12485] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  338.957832][T12489] vivid-000: Reduced Framerate: false
[  338.985634][T12489] vivid-000: Enable Capture Cropping: true
[  338.987030][T12485] ntfs: (device loop2): ntfs_cluster_alloc(): Failed to map page.
[  338.999996][T12485] ntfs: (device loop2): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -5).
[  339.003170][T12489] vivid-000: Enable Capture Composing: 
[  339.015271][T12485] ntfs: (device loop2): ntfs_attr_extend_allocation(): Cannot extend allocation of inode 0x44, attribute type 0x80, because the allocation of clusters failed with error code -5.
[  339.016770][T12489] true
[  339.046799][T12489] vivid-000: Enable Capture Scaler: true
[  339.052949][T12489] vivid-000: Timestamp Source: End of Frame
[  339.059036][T12489] vivid-000: Colorspace: sRGB
[  339.065196][T12489] vivid-000: Transfer Function: Default
[  339.074123][T12489] vivid-000: Y'CbCr Encoding: Default
[  339.101306][T12489] vivid-000: HSV Encoding: Hue 0-179
[  339.110246][T12489] vivid-000: Quantization: Default
[  339.120321][T12489] vivid-000: Apply Alpha To Red Only: false
[  339.127973][T12489] vivid-000: Standard Aspect Ratio: 4x3
[  339.142089][T12489] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  339.186985][T12489] vivid-000: DV Timings: 4096x2160p60 inactive
[  339.209198][T12489] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  339.233686][T12489] vivid-000: Maximum EDID Blocks: 2
[  339.257353][T12489] vivid-000: Limited RGB Range (16-235): false
[  339.281734][T12489] vivid-000: Rx RGB Quantization Range: Automatic
[  339.298568][T12489] vivid-000: Power Present: 0x00000001
[  339.320323][T12489] tpg source WxH: 320x180 (Y'CbCr)
[  339.330645][T12489] tpg field: 1
[  339.350333][T12489] tpg crop: 320x180@0x0
[  339.357223][T12489] tpg compose: 320x180@0x0
[  339.375148][T12489] tpg colorspace: 12
[  339.384959][T12489] tpg transfer function: 4/2
[  339.405055][T12489] tpg Y'CbCr encoding: 3/1
[  339.421161][T12489] tpg quantization: 2/1
[  339.429229][T12489] tpg RGB range: 0/2
[  339.445146][T12489] vivid-000: ==================  END STATUS  ==================
[  339.496839][T12507] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2854'.
[  339.506960][T12507] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2854'.
[  339.700732][T12511] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2856'.
[  339.974195][   T28] audit: type=1800 audit(1752512020.690:92): pid=12513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.2857" name="/newroot/761/file0" dev="tmpfs" ino=3922 res=0 errno=0
[  340.180101][T12531] loop3: detected capacity change from 0 to 16
[  340.201272][T12531] erofs: (device loop3): mounted with root inode @ nid 36.
[  341.072097][T12528] loop2: detected capacity change from 0 to 32768
[  341.344657][T12566] loop4: detected capacity change from 0 to 4096
[  341.364491][T12566] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  341.377509][T12563] 8021q: adding VLAN 0 to HW filter on device bond2
[  341.467738][T12566] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.502410][T12566] EXT4-fs: Cannot change journaled quota options when quota turned on
[  341.547093][T10123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.048053][T12582] loop4: detected capacity change from 0 to 2048
[  342.448385][T12595] loop2: detected capacity change from 0 to 16
[  342.460911][T12592] loop0: detected capacity change from 0 to 2048
[  342.481337][T12595] erofs: (device loop2): mounted with root inode @ nid 36.
[  342.500325][T12592] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  342.502960][T12595] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  342.585533][T12595] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -43 in[46, 4050] out[1851]
[  342.619269][T12595] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  343.316142][T12622] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2907'.
[  343.876406][   T28] audit: type=1326 audit(1752512024.600:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.2.2917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee2698e929 code=0x7ffc0000
[  343.940669][   T28] audit: type=1326 audit(1752512024.620:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.2.2917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee2698e929 code=0x7ffc0000
[  343.965806][   T28] audit: type=1326 audit(1752512024.640:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.2.2917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7fee2698e929 code=0x7ffc0000
[  343.989308][   T28] audit: type=1326 audit(1752512024.640:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.2.2917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee2698e929 code=0x7ffc0000
[  344.011580][    C1] vkms_vblank_simulate: vblank timer overrun
[  344.015134][T12647] loop4: detected capacity change from 0 to 1024
[  344.035972][   T28] audit: type=1326 audit(1752512024.640:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.2.2917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee2698e929 code=0x7ffc0000
[  344.058287][    C1] vkms_vblank_simulate: vblank timer overrun
[  344.086418][T12647] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  344.203805][T12647] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:478: comm syz.4.2918: Invalid block bitmap block 0 in block_group 0
[  344.248736][T12647] Quota error (device loop4): write_blk: dquota write failed
[  344.284682][T12647] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  344.312827][T12647] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2918: Failed to acquire dquot type 0
[  344.350443][T12647] EXT4-fs error (device loop4): ext4_free_blocks:6681: comm syz.4.2918: Freeing blocks not in datazone - block = 0, count = 4096
[  344.413360][T12647] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.2918: Invalid inode bitmap blk 0 in block_group 0
[  344.440699][ T1147] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-8
[  344.467016][T12647] EXT4-fs error (device loop4) in ext4_free_inode:363: Corrupt filesystem
[  344.469682][ T1147] EXT4-fs error (device loop4): ext4_release_dquot:6974: comm kworker/u4:11: Failed to release dquot type 0
[  344.498613][T12647] EXT4-fs (loop4): 1 orphan inode deleted
[  344.508182][T12647] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.659971][T10123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.710456][ T5861] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  344.910343][ T5861] usb 1-1: Using ep0 maxpacket: 8
[  344.925711][ T5861] usb 1-1: config 0 has an invalid interface number: 31 but max is 0
[  344.953624][ T5861] usb 1-1: config 0 has no interface number 0
[  344.964555][T12675] loop4: detected capacity change from 0 to 256
[  344.980794][ T5861] usb 1-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  344.983407][T12675] exfat: Deprecated parameter 'utf8'
[  344.995874][ T5861] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  345.019946][ T5861] usb 1-1: Product: syz
[  345.033740][ T5861] usb 1-1: Manufacturer: syz
[  345.041476][T12675] exfat: Deprecated parameter 'utf8'
[  345.043827][ T5861] usb 1-1: SerialNumber: syz
[  345.077748][ T5861] usb 1-1: config 0 descriptor??
[  345.120784][T12675] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011ded, chksum : 0x9858084d, utbl_chksum : 0xe619d30d)
[  345.308793][ T5861] usb 1-1: Found UVC 0.04 device syz (046d:08c3)
[  345.330315][ T5861] usb 1-1: No valid video chain found.
[  345.361655][ T5861] usb 1-1: USB disconnect, device number 17
[  345.484137][T12668] loop2: detected capacity change from 0 to 32768
[  345.565569][T12668] add_index: next_index = 0.  Resetting!
[  345.590511][T12668] find_entry called with index >= next_index
[  345.606853][T12668] find_entry called with index >= next_index
[  345.623343][T12668] find_entry called with index >= next_index
[  345.639763][T12668] find_entry called with index >= next_index
[  345.820611][  T966] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  345.930363][T12695] dlm: no locking on control device
[  346.004511][T12697] loop0: detected capacity change from 0 to 512
[  346.054408][  T966] usb 5-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  346.080380][  T966] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  346.105585][T12697] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.120667][  T966] usb 5-1: config 0 descriptor??
[  346.121289][T12697] ext4 filesystem being mounted at /723/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  346.145693][T12703] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2943'.
[  346.355625][  T966] [drm] vendor descriptor length:6 data:06 5f 01 ff 00 00 00 00 00 00 00
[  346.376867][  T966] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  346.494022][T12711] loop3: detected capacity change from 0 to 256
[  346.542963][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.554300][  T966] [drm:udl_init] *ERROR* Selecting channel failed
[  346.605450][  T966] [drm] Initialized udl 0.0.1 20120220 for 5-1:0.0 on minor 2
[  346.615277][  T966] [drm] Initialized udl on minor 2
[  346.645793][  T966] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  346.669114][  T966] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  346.689156][ T5861] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  346.721186][ T5861] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  346.727967][  T966] usb 5-1: USB disconnect, device number 6
[  346.843055][T12715] lo: entered promiscuous mode
[  346.855674][T12715] lo: entered allmulticast mode
[  346.889526][T12715] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  347.206061][T12727] loop0: detected capacity change from 0 to 512
[  347.234933][T12727] EXT4-fs error (device loop0): ext4_get_journal_inode:5805: comm syz.0.2957: inode #1792: comm syz.0.2957: iget: illegal inode #
[  347.270020][T12727] EXT4-fs (loop0): Remounting filesystem read-only
[  347.284141][T12727] EXT4-fs (loop0): no journal found
[  347.289429][T12727] EXT4-fs (loop0): can't get journal size
[  347.321605][T12727] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  347.386788][T12727] EXT4-fs (loop0): Errors on filesystem, clearing orphan list.
[  347.451839][T12727] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.610748][T12742] loop2: detected capacity change from 0 to 64
[  347.653635][T12744] netlink: 'syz.3.2964': attribute type 10 has an invalid length.
[  347.691955][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.710476][T12744] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2964'.
[  347.765270][T12744] team0: entered promiscuous mode
[  347.806142][T12744] team_slave_0: entered promiscuous mode
[  347.838231][T12744] team_slave_1: entered promiscuous mode
[  347.851882][T12744] bridge0: port 3(team0) entered blocking state
[  347.859065][T12744] bridge0: port 3(team0) entered disabled state
[  347.867161][T12744] team0: entered allmulticast mode
[  347.873298][T12744] team_slave_0: entered allmulticast mode
[  347.880921][T12744] team_slave_1: entered allmulticast mode
[  347.895502][T12744] bridge0: port 3(team0) entered blocking state
[  347.902064][T12744] bridge0: port 3(team0) entered forwarding state
[  347.939238][T12748] geneve2: entered promiscuous mode
[  347.956983][T12748] geneve2: entered allmulticast mode
[  348.097548][T12751] ALSA: mixer_oss: invalid OSS volume '—ˆ†'
[  348.312711][T12762] loop4: detected capacity change from 0 to 64
[  348.380058][T12762] Trying to free block not in datazone
[  348.668325][T12772] loop2: detected capacity change from 0 to 512
[  348.719378][T12772] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  348.828284][T12772] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.834062][T12783] loop0: detected capacity change from 0 to 1024
[  348.894025][T12772] ext4 filesystem being mounted at /770/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  348.924962][ T1070] hfsplus: b-tree write err: -5, ino 4
[  349.046268][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.472461][   T28] audit: type=1326 audit(1752512030.190:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12800 comm="syz.4.2991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  349.573384][   T28] audit: type=1326 audit(1752512030.190:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12800 comm="syz.4.2991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  349.584677][T12806] loop0: detected capacity change from 0 to 256
[  349.621763][   T28] audit: type=1326 audit(1752512030.200:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12800 comm="syz.4.2991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  349.651388][T12806] exfat: Deprecated parameter 'utf8'
[  349.728550][   T28] audit: type=1326 audit(1752512030.200:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12800 comm="syz.4.2991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  349.730040][T12806] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  349.797929][   T28] audit: type=1326 audit(1752512030.200:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12800 comm="syz.4.2991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  349.858795][T12812] netlink: 'syz.4.2996': attribute type 2 has an invalid length.
[  349.881279][T12812] netlink: 5356 bytes leftover after parsing attributes in process `syz.4.2996'.
[  350.085376][T12817] netlink: 'syz.2.2998': attribute type 10 has an invalid length.
[  350.094645][   T28] audit: type=1326 audit(1752512030.820:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12818 comm="syz.4.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  350.098863][T12817] netlink: 2 bytes leftover after parsing attributes in process `syz.2.2998'.
[  350.127578][T12817] team0: entered promiscuous mode
[  350.149713][   T28] audit: type=1326 audit(1752512030.860:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12818 comm="syz.4.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  350.172917][T12817] C: entered promiscuous mode
[  350.183296][T12817] team_slave_1: entered promiscuous mode
[  350.200591][T12817] dummy0: entered promiscuous mode
[  350.212768][T12817] bridge0: port 4(team0) entered blocking state
[  350.224195][   T28] audit: type=1326 audit(1752512030.870:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12818 comm="syz.4.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  350.245532][T12817] bridge0: port 4(team0) entered disabled state
[  350.290214][   T28] audit: type=1326 audit(1752512030.870:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12818 comm="syz.4.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  350.310432][T12817] team0: entered allmulticast mode
[  350.319153][T12817] C: entered allmulticast mode
[  350.331277][T12817] team_slave_1: entered allmulticast mode
[  350.337157][T12817] dummy0: entered allmulticast mode
[  350.350862][   T28] audit: type=1326 audit(1752512030.870:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12818 comm="syz.4.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  350.584331][T12828] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[  350.836096][ T1147] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  350.994916][ T1147] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  351.112640][ T1147] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  351.292989][ T1147] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  351.367054][T12833] loop2: detected capacity change from 0 to 32768
[  351.488245][T12833] JFS: metapage_get_blocks failed
[  351.502210][T12833] ERROR: (device loop2): release_metapage: metapage_write_one() failed
[  351.502210][T12833] 
[  351.557031][T12833] ERROR: (device loop2): remounting filesystem as read-only
[  351.684685][T12840] loop4: detected capacity change from 0 to 4096
[  351.796922][  T112] blkno = 8ed2c, nblocks = 1
[  351.806093][  T112] ERROR: (device loop2): dbUpdatePMap: blocks are outside the map
[  351.806093][  T112] 
[  352.151241][   T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  352.163277][   T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  352.180328][   T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  352.194580][   T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  352.222230][   T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  352.229776][   T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  352.315868][T12847] netlink: 'syz.3.3016': attribute type 3 has an invalid length.
[  353.421729][T12894] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 10802, id = 0
[  353.747580][T12905] loop4: detected capacity change from 0 to 1024
[  353.830827][T12907] syz.3.3037 (12907): /proc/12906/oom_adj is deprecated, please use /proc/12906/oom_score_adj instead.
[  353.903231][   T48] hfsplus: b-tree write err: -5, ino 4
[  354.281867][ T5801] Bluetooth: hci0: command tx timeout
[  354.295524][T12851] chnl_net:caif_netlink_parms(): no params data found
[  354.699902][T12851] bridge0: port 1(bridge_slave_0) entered blocking state
[  354.708662][T12851] bridge0: port 1(bridge_slave_0) entered disabled state
[  354.717281][T12851] bridge_slave_0: entered allmulticast mode
[  354.725299][T12851] bridge_slave_0: entered promiscuous mode
[  354.751933][ T1147] hsr_slave_0: left promiscuous mode
[  354.759220][ T1147] hsr_slave_1: left promiscuous mode
[  354.766569][ T1147] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  354.777134][T12914] loop4: detected capacity change from 0 to 32768
[  354.789755][ T1147] batman_adv: batadv0: Removing interface: batadv_slave_0
[  354.818841][T12914] ERROR: (device loop4): diAllocAG: error reading iag
[  354.818841][T12914] 
[  354.831998][ T1147] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  354.839737][ T1147] batman_adv: batadv0: Removing interface: batadv_slave_1
[  354.842795][T12914] ialloc: diAlloc returned -5!
[  354.868265][ T1147] bridge_slave_1: left allmulticast mode
[  354.877707][ T1147] bridge_slave_1: left promiscuous mode
[  354.884783][ T1147] bridge0: port 2(bridge_slave_1) entered disabled state
[  354.900915][ T1147] bridge_slave_0: left allmulticast mode
[  354.907305][ T1147] bridge_slave_0: left promiscuous mode
[  354.916259][ T1147] bridge0: port 1(bridge_slave_0) entered disabled state
[  355.151160][ T1147] veth1_macvtap: left promiscuous mode
[  355.157406][ T1147] veth0_macvtap: left promiscuous mode
[  355.166698][ T1147] veth1_vlan: left promiscuous mode
[  355.189616][ T1147] veth0_vlan: left promiscuous mode
[  355.904256][T12936] loop2: detected capacity change from 0 to 32768
[  356.265862][T12956] xt_TPROXY: Can be used only with -p tcp or -p udp
[  356.360386][ T5801] Bluetooth: hci0: command tx timeout
[  356.364005][T12958] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3052'.
[  356.618038][ T1147] bond2 (unregistering): Released all slaves
[  356.836312][T12960] loop3: detected capacity change from 0 to 32768
[  356.876243][T12960] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9
[  356.969641][ T1147] bond1 (unregistering): Released all slaves
[  356.977797][ T5796] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9
[  357.685109][ T1147] team0 (unregistering): Port device team_slave_1 removed
[  357.748975][ T1147] team0 (unregistering): Port device C removed
[  357.805011][ T1147] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  357.861799][ T1147] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  358.428940][ T1147] bond0 (unregistering): Released all slaves
[  358.440396][ T5801] Bluetooth: hci0: command tx timeout
[  358.543916][T12851] bridge0: port 2(bridge_slave_1) entered blocking state
[  358.553067][T12851] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.560663][T12851] bridge_slave_1: entered allmulticast mode
[  358.568911][T12851] bridge_slave_1: entered promiscuous mode
[  358.615003][T12938] netlink: 'syz.4.3041': attribute type 10 has an invalid length.
[  358.626094][T12938] netlink: 2 bytes leftover after parsing attributes in process `syz.4.3041'.
[  358.635341][T12938] team0: entered promiscuous mode
[  358.640506][T12938] team_slave_0: entered promiscuous mode
[  358.646330][T12938] team_slave_1: entered promiscuous mode
[  358.652904][T12938] bridge0: port 3(team0) entered blocking state
[  358.659280][T12938] bridge0: port 3(team0) entered disabled state
[  358.665928][T12938] team0: entered allmulticast mode
[  358.671635][T12938] team_slave_0: entered allmulticast mode
[  358.677388][T12938] team_slave_1: entered allmulticast mode
[  358.686192][T12938] bridge0: port 3(team0) entered blocking state
[  358.692686][T12938] bridge0: port 3(team0) entered forwarding state
[  358.760051][T12964] geneve2: entered promiscuous mode
[  358.768314][T12964] geneve2: entered allmulticast mode
[  358.795741][T12970] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3058'.
[  358.949618][T12851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  358.970501][T12976] program syz.2.3061 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  359.000751][T12976] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  359.013865][T12851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  359.022898][T12978] loop3: detected capacity change from 0 to 8
[  359.208043][T12851] team0: Port device team_slave_0 added
[  359.246488][T12851] team0: Port device team_slave_1 added
[  359.445574][T12851] batman_adv: batadv0: Adding interface: batadv_slave_0
[  359.472344][T12851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  359.610315][T12851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  359.721880][T12851] batman_adv: batadv0: Adding interface: batadv_slave_1
[  359.728895][T12851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  359.834008][T12851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  360.042631][T12851] hsr_slave_0: entered promiscuous mode
[  360.060618][T12851] hsr_slave_1: entered promiscuous mode
[  360.090235][T12851] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  360.123815][T12851] Cannot create hsr debugfs directory
[  360.123981][T13003] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3070'.
[  360.179940][T12975] loop4: detected capacity change from 0 to 32768
[  360.310637][T12975] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  360.357075][T13009] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3072'.
[  360.374955][T12975] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  360.444598][   T28] audit: type=1326 audit(1752512041.170:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.3073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5de18e929 code=0x7ffc0000
[  360.514219][T12975] (syz.4.3060,12975,0):ocfs2_read_blocks:239 ERROR: status = -12
[  360.520362][ T5801] Bluetooth: hci0: command tx timeout
[  360.591030][   T28] audit: type=1326 audit(1752512041.210:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.3073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5de18e929 code=0x7ffc0000
[  360.614821][T13018] program syz.3.3075 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  360.630276][T12975] (syz.4.3060,12975,1):ocfs2_xattr_block_find:2831 ERROR: status = -12
[  360.694656][   T28] audit: type=1326 audit(1752512041.220:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.3073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fb5de18e929 code=0x7ffc0000
[  360.737647][   T28] audit: type=1326 audit(1752512041.220:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.3073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5de18e929 code=0x7ffc0000
[  360.854136][   T28] audit: type=1326 audit(1752512041.220:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.3073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5de18e929 code=0x7ffc0000
[  360.879985][T10123] ocfs2: Unmounting device (7,4) on (node local)
[  361.095657][T12851] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  361.195293][T12851] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  361.286351][T12851] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  361.348544][T12851] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  361.777454][T12851] 8021q: adding VLAN 0 to HW filter on device bond0
[  361.815178][T12851] 8021q: adding VLAN 0 to HW filter on device team0
[  361.854506][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.861779][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.923854][T13052] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3086'.
[  361.924198][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.940177][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  361.950279][T13052] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3086'.
[  362.228080][T13062] comedi: No check for data length of config insn id 4 is implemented
[  362.261011][T13062] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  362.308494][T13062] comedi: Assuming n=15 is correct
[  362.419695][T13073] netlink: 'syz.3.3093': attribute type 1 has an invalid length.
[  362.866237][T12851] 8021q: adding VLAN 0 to HW filter on device batadv0
[  363.245054][T13104] loop3: detected capacity change from 0 to 764
[  363.293067][T13104] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  363.342380][T13104] Symlink component flag not implemented
[  363.348113][T13104] Symlink component flag not implemented
[  363.421144][T13104] Symlink component flag not implemented (128)
[  363.468611][T13104] Symlink component flag not implemented (122)
[  363.479355][T13113] loop4: detected capacity change from 0 to 256
[  363.480438][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  363.611668][T13113] FAT-fs (loop4): Directory bread(block 64) failed
[  363.619819][T13113] FAT-fs (loop4): Directory bread(block 65) failed
[  363.659495][T13113] FAT-fs (loop4): Directory bread(block 66) failed
[  363.689920][T13113] FAT-fs (loop4): Directory bread(block 67) failed
[  363.731418][T13113] FAT-fs (loop4): Directory bread(block 68) failed
[  363.738020][T13113] FAT-fs (loop4): Directory bread(block 69) failed
[  363.795673][T13113] FAT-fs (loop4): Directory bread(block 70) failed
[  363.832177][T13113] FAT-fs (loop4): Directory bread(block 71) failed
[  363.838878][T13113] FAT-fs (loop4): Directory bread(block 72) failed
[  363.884393][T13113] FAT-fs (loop4): Directory bread(block 73) failed
[  364.006007][T12851] veth0_vlan: entered promiscuous mode
[  364.051166][T13113] syz.4.3106: attempt to access beyond end of device
[  364.051166][T13113] loop4: rw=0, sector=1256, nr_sectors = 4 limit=256
[  364.089832][T12851] veth1_vlan: entered promiscuous mode
[  364.101716][T13113] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 328)
[  364.109897][T13113] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 328)
[  364.235304][T12851] veth0_macvtap: entered promiscuous mode
[  364.284263][T12851] veth1_macvtap: entered promiscuous mode
[  364.368970][T12851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.400705][T12851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.420257][T12851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.439302][T12851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.460222][T12851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.475613][T12851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.489325][T12851] batman_adv: batadv0: Interface activated: batadv_slave_0
[  364.507697][T12851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.527562][T12851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.538441][T12851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.555535][T12851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.566228][T12851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.577945][T12851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.591932][T12851] batman_adv: batadv0: Interface activated: batadv_slave_1
[  364.614657][T13135] netlink: 'syz.4.3111': attribute type 30 has an invalid length.
[  364.631214][T13135] (unnamed net_device) (uninitialized): option arp_missed_max: mode dependency failed, not supported in mode balance-alb(6)
[  364.721250][T12851] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  364.747623][T12851] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  364.770963][T12851] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  364.779776][T12851] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  365.110924][ T1077] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  365.118856][ T1077] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  365.260093][ T1077] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  365.300362][ T1077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  365.885627][T13179] netlink: 52 bytes leftover after parsing attributes in process `syz.5.3125'.
[  365.923046][T13177] loop2: detected capacity change from 0 to 2048
[  365.957546][T13177] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  366.013211][T13182] usb usb1: usbfs: process 13182 (syz.3.3126) did not claim interface 0 before use
[  366.039798][T13184] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  366.156707][T13177] syz.2.3123: attempt to access beyond end of device
[  366.156707][T13177] loop2: rw=0, sector=262216, nr_sectors = 2 limit=2048
[  366.225294][T13177] NILFS (loop2): I/O error reading meta-data file (ino=6, block-offset=1)
[  366.796718][T13208] loop3: detected capacity change from 0 to 256
[  367.092929][T13218] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3139'.
[  367.488070][T13230] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  367.586092][T13238] loop3: detected capacity change from 0 to 64
[  367.710310][T13241] xt_TCPMSS: Only works on TCP SYN packets
[  368.138053][T13256] loop2: detected capacity change from 0 to 256
[  368.208007][T13256] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  368.340386][ T5881] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  368.554619][T13269] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3159'.
[  368.576600][ T5881] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  368.600249][ T5881] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  368.637303][T13269] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  368.646625][ T5881] usb 6-1: config 0 descriptor??
[  369.086127][T13287] loop4: detected capacity change from 0 to 256
[  369.104406][ T5881] ath6kl: Failed to submit usb control message: -71
[  369.120496][ T5881] ath6kl: unable to send the bmi data to the device: -71
[  369.138838][ T5881] ath6kl: Unable to send get target info: -71
[  369.159857][ T5881] ath6kl: Failed to init ath6kl core: -71
[  369.177966][ T5881] ath6kl_usb: probe of 6-1:0.0 failed with error -71
[  369.251200][ T5881] usb 6-1: USB disconnect, device number 2
[  369.311961][T13287] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  370.187745][T13316] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3176'.
[  370.230280][T13316] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3176'.
[  370.881586][T13295] loop3: detected capacity change from 0 to 32768
[  370.975549][T13307] loop5: detected capacity change from 0 to 32768
[  371.004269][T13307] XFS: noikeep mount option is deprecated.
[  371.013973][T13307] XFS: ikeep mount option is deprecated.
[  371.024280][T13295] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  371.076598][T13295] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  371.142323][T13307] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  371.156115][T13295] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  371.207485][ T5881] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  371.243437][ T5881] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  371.398034][ T5881] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 154ms
[  371.418817][ T5881] gfs2: fsid=syz:syz.0: jid=0: Done
[  371.450822][ T5861] usb 3-1: new full-speed USB device number 13 using dummy_hcd
[  371.472813][T13295] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  371.487063][T13307] XFS (loop5): Ending clean mount
[  371.610960][T13307] XFS: noikeep mount option is deprecated.
[  371.663944][ T5861] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  371.715157][ T5861] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  371.749140][T12851] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  371.770273][ T5861] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 30768, setting to 64
[  371.817643][ T5861] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  371.864897][ T5861] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 1.40
[  371.880977][ T5861] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  371.889040][ T5861] usb 3-1: SerialNumber: syz
[  371.913821][T13346] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  371.930473][T13346] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  371.941996][ T5861] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  371.990362][T13357] loop4: detected capacity change from 0 to 4096
[  372.022911][T13357] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  372.191030][ T5861] cdc_acm 3-1:1.0: ttyACM0: USB ACM device
[  372.227941][ T5861] usb 3-1: USB disconnect, device number 13
[  372.255663][T13357] ntfs3: loop4: ino=0, attr_set_size
[  373.305201][T13389] IPv6: Can't replace route, no match found
[  373.544452][T13398] netlink: 'syz.4.3202': attribute type 11 has an invalid length.
[  373.806380][T13375] loop5: detected capacity change from 0 to 32768
[  373.934521][T13409] loop4: detected capacity change from 0 to 1024
[  373.952599][T13375] ERROR: (device loop5): diAllocBit: iag inconsistent
[  373.952599][T13375] 
[  373.992852][T13375] ERROR: (device loop5): remounting filesystem as read-only
[  374.035736][T13375] ialloc: diAlloc returned -5!
[  374.351116][T13413] loop3: detected capacity change from 0 to 1764
[  374.671690][T13397] loop2: detected capacity change from 0 to 32768
[  374.730456][T13397] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.3201 (13397)
[  374.796623][T13397] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  374.831030][T13397] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  374.862080][T13397] BTRFS info (device loop2): enabling disk space caching
[  374.869215][T13397] BTRFS info (device loop2): doing ref verification
[  374.920746][T13397] BTRFS info (device loop2): use zlib compression, level 3
[  374.928142][T13397] BTRFS info (device loop2): force clearing of disk cache
[  374.989258][T13397] BTRFS info (device loop2): doing ref verification
[  375.004301][T13397] BTRFS info (device loop2): disk space caching is enabled
[  375.250793][T13451] loop5: detected capacity change from 0 to 256
[  375.257253][T13397] BTRFS info (device loop2): auto enabling async discard
[  375.283737][T13397] BTRFS info (device loop2): rebuilding free space tree
[  375.348016][T13397] BTRFS info (device loop2): disabling free space tree
[  375.367119][T13397] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  375.396615][T13455] loop3: detected capacity change from 0 to 1764
[  375.404199][T13397] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  375.481384][T13455] iso9660: Corrupted directory entry in block 0 of inode 1792
[  375.801353][   T50] Bluetooth: hci1: command 0x0406 tx timeout
[  376.147203][T13475] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3229'.
[  376.149800][ T5791] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  376.200517][T13475] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3229'.
[  377.423783][T13520] netlink: 160 bytes leftover after parsing attributes in process `syz.4.3249'.
[  377.517634][T13524] usb usb1: usbfs: process 13524 (syz.5.3250) did not claim interface 0 before use
[  377.727739][T13534] loop5: detected capacity change from 0 to 128
[  377.748771][T13534] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  377.806199][T13534] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  377.933762][T13539] netlink: 'syz.2.3257': attribute type 3 has an invalid length.
[  378.083240][T13543] xt_hashlimit: max too large, truncated to 1048576
[  378.135389][T13542] mac80211_hwsim hwsim12 wlan0: entered promiscuous mode
[  378.186794][T13542] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  378.718816][T13530] loop3: detected capacity change from 0 to 32768
[  378.726486][T13530] XFS: attr2 mount option is deprecated.
[  378.768991][T13530] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  378.849977][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  378.856790][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  378.971991][T13530] XFS (loop3): Ending clean mount
[  378.989464][T13580] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3269'.
[  379.016300][T13530] XFS (loop3): Quotacheck needed: Please wait.
[  379.041637][T13580] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  379.149573][T13530] XFS (loop3): Quotacheck: Done.
[  379.290267][T13587] loop2: detected capacity change from 0 to 64
[  379.314648][T13589] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3273'.
[  379.390221][T13587] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[  379.412731][ T5786] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  379.640765][ T5884] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  379.850770][ T5884] usb 6-1: Using ep0 maxpacket: 32
[  379.858887][ T5884] usb 6-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  379.871582][ T5884] usb 6-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  379.892480][ T5884] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  379.908302][ T5884] usb 6-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  379.920238][ T5884] usb 6-1: Product: syz
[  379.924531][ T5884] usb 6-1: Manufacturer: syz
[  379.938182][T13606] loop2: detected capacity change from 0 to 1764
[  379.951370][ T5884] hub 6-1:4.0: USB hub found
[  379.986831][T13606] iso9660: Corrupted directory entry in block 2 of inode 1920
[  380.168581][ T5884] hub 6-1:4.0: 9 ports detected
[  380.179413][ T5884] hub 6-1:4.0: insufficient power available to use all downstream ports
[  380.369725][ T5884] hub 6-1:4.0: hub_hub_status failed (err = -71)
[  380.378349][ T5884] hub 6-1:4.0: config failed, can't get hub status (err -71)
[  380.406284][T13613] ipip0: entered promiscuous mode
[  380.421580][ T5884] usb 6-1: USB disconnect, device number 3
[  380.443116][ T5859] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  380.660451][ T5859] usb 3-1: Using ep0 maxpacket: 16
[  380.701539][ T5859] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[  380.720589][ T5859] usb 3-1: config 0 has no interface number 0
[  380.726788][ T5859] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  380.742105][ T5859] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  380.761540][ T5859] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  380.776622][ T5859] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  380.794842][ T5859] usb 3-1: Product: syz
[  380.809379][ T5859] usb 3-1: SerialNumber: syz
[  380.832796][ T5859] usb 3-1: config 0 descriptor??
[  380.847373][ T5859] cm109 3-1:0.8: invalid payload size 0, expected 4
[  380.872393][ T5859] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input20
[  381.176194][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  381.384376][ T5859] usb 3-1: USB disconnect, device number 14
[  381.399587][ T5859] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  381.491203][  T786] usb 4-1: new low-speed USB device number 18 using dummy_hcd
[  381.614588][T13642] loop4: detected capacity change from 0 to 64
[  381.693537][  T786] usb 4-1: config 1 has an invalid interface descriptor of length 6, skipping
[  381.712804][  T786] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  381.741023][  T786] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  381.770224][  T786] usb 4-1: config 1 has no interface number 1
[  381.780999][  T786] usb 4-1: too many endpoints for config 1 interface 2 altsetting 116: 104, using maximum allowed: 30
[  381.810272][  T786] usb 4-1: config 1 interface 2 altsetting 116 has 0 endpoint descriptors, different from the interface descriptor's value: 104
[  381.847011][  T786] usb 4-1: config 1 interface 2 has no altsetting 1
[  381.864398][  T786] usb 4-1: string descriptor 0 read error: -22
[  381.871969][  T786] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  381.901233][  T786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  381.954205][  T786] usb 4-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  381.992933][  T786] usb 4-1: MIDIStreaming interface descriptor not found
[  382.170534][ T5884] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  382.288971][    T8] usb 4-1: USB disconnect, device number 18
[  382.401253][ T5884] usb 6-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  382.430172][ T5884] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  382.458912][ T5884] usb 6-1: Product: syz
[  382.478560][ T5884] usb 6-1: Manufacturer: syz
[  382.493974][ T5884] usb 6-1: SerialNumber: syz
[  382.507572][ T5884] r8152-cfgselector 6-1: config 0 descriptor??
[  382.679958][T13671] loop4: detected capacity change from 0 to 512
[  382.727819][T13671] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  382.808591][T13671] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.880682][T13671] ext4 filesystem being mounted at /346/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  382.972760][ T5884] r8152-cfgselector 6-1: Unknown version 0x0000
[  383.001685][ T5884] r8152-cfgselector 6-1: USB disconnect, device number 4
[  383.027528][ T5796] udevd[5796]: setting owner of /dev/bus/usb/006/004 to uid=0, gid=0 failed: No such file or directory
[  383.110216][T13671] EXT4-fs error (device loop4): ext4_get_verity_descriptor_location:335: inode #15: comm syz.4.3309: verity file corrupted; can't find descriptor
[  383.162917][T13671] EXT4-fs (loop4): Remounting filesystem read-only
[  383.173616][T13678] loop2: detected capacity change from 0 to 4096
[  383.185135][T13671] fs-verity (loop4, inode 15): Error -117 getting verity descriptor size
[  383.224553][T13685] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  383.276315][T13678] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  383.307109][T10123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.318060][T13678] Remounting filesystem read-only
[  383.825575][T13703] loop5: detected capacity change from 0 to 64
[  383.918697][T13703] syz.5.3318: attempt to access beyond end of device
[  383.918697][T13703] loop5: rw=0, sector=268435468, nr_sectors = 2 limit=64
[  383.970258][T13703] Buffer I/O error on dev loop5, logical block 134217734, async page read
[  384.128886][T13703] syz.5.3318: attempt to access beyond end of device
[  384.128886][T13703] loop5: rw=0, sector=268435468, nr_sectors = 2 limit=64
[  384.198465][T13703] Buffer I/O error on dev loop5, logical block 134217734, async page read
[  384.675946][T13734] loop3: detected capacity change from 0 to 256
[  384.881329][T13739] loop2: detected capacity change from 0 to 256
[  385.773939][T13731] loop5: detected capacity change from 0 to 32768
[  385.812696][T13731] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop5 scanned by syz.5.3328 (13731)
[  385.869646][T13768] loop2: detected capacity change from 0 to 256
[  385.921556][T13731] BTRFS info (device loop5): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  385.947012][T13731] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  385.978699][T13731] BTRFS info (device loop5): use zlib compression, level 3
[  385.999426][T13731] BTRFS info (device loop5): using free space tree
[  386.287070][T13731] BTRFS info (device loop5): enabling ssd optimizations
[  386.316208][T13731] BTRFS info (device loop5): auto enabling async discard
[  386.353652][T13797] loop2: detected capacity change from 0 to 128
[  386.637191][T13796] Process accounting resumed
[  386.649869][T13796] FAT-fs (loop2): error, corrupted file size (i_pos 548, 512)
[  386.691588][T12851] BTRFS info (device loop5): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  386.711454][T13796] FAT-fs (loop2): Filesystem has been set read-only
[  386.722774][ T5861] FAT-fs (loop2): error, corrupted file size (i_pos 548, 512)
[  386.741309][ T5884] usb 5-1: new low-speed USB device number 7 using dummy_hcd
[  386.960515][ T5884] usb 5-1: config 1 has an invalid interface descriptor of length 6, skipping
[  386.976336][ T5884] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  387.018392][ T5884] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  387.046927][ T5884] usb 5-1: config 1 has no interface number 1
[  387.100299][ T5884] usb 5-1: too many endpoints for config 1 interface 2 altsetting 116: 104, using maximum allowed: 30
[  387.130277][ T5884] usb 5-1: config 1 interface 2 altsetting 116 has 0 endpoint descriptors, different from the interface descriptor's value: 104
[  387.174144][T13819] loop2: detected capacity change from 0 to 128
[  387.200295][ T5884] usb 5-1: config 1 interface 2 has no altsetting 1
[  387.221758][ T5884] usb 5-1: string descriptor 0 read error: -22
[  387.228148][ T5884] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  387.281255][ T5884] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  387.405143][ T5884] usb 5-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  387.416161][ T5884] usb 5-1: MIDIStreaming interface descriptor not found
[  387.560489][  T786] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  387.597478][ T5884] usb 5-1: USB disconnect, device number 7
[  387.704588][ T5797] udevd[5797]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  387.810690][  T786] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  387.842926][  T786] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  387.875062][  T786] usb 6-1: Product: syz
[  387.879468][  T786] usb 6-1: Manufacturer: syz
[  387.903389][  T786] usb 6-1: SerialNumber: syz
[  387.922695][  T786] usb 6-1: config 0 descriptor??
[  387.955617][T13834] (unnamed net_device) (uninitialized): option xmit_hash_policy: invalid value (13)
[  388.131733][T13836] loop2: detected capacity change from 0 to 4096
[  388.154233][  T786] hso 6-1:0.0: Failed to find INT IN ep
[  388.162378][T13836] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  388.178232][  T786] usb-storage 6-1:0.0: USB Mass Storage device detected
[  388.223814][T13836] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  388.359290][  T786] usb 6-1: USB disconnect, device number 5
[  388.522038][T13849] loop3: detected capacity change from 0 to 1024
[  388.688792][   T11] hfsplus: b-tree write err: -5, ino 4
[  389.574753][T13884] loop3: detected capacity change from 0 to 256
[  389.954691][T13898] bridge2: entered promiscuous mode
[  390.183445][T13906] loop4: detected capacity change from 0 to 512
[  390.261294][T13906] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  390.269498][T13906] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  390.323152][T13906] EXT4-fs (loop4): 1 truncate cleaned up
[  390.352056][T13906] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.483659][T13906] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.3384: Logical block already allocated
[  390.623651][T10123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.624545][T13925] loop3: detected capacity change from 0 to 32768
[  391.665298][T13925] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11
[  391.687693][T13919] loop2: detected capacity change from 0 to 32768
[  391.739754][T13919] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  391.839600][T13919] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  392.018883][ T5796] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11
[  392.067511][T13962] netlink: 'syz.5.3400': attribute type 10 has an invalid length.
[  392.172797][T13962] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  392.332817][ T5791] ocfs2: Unmounting device (7,2) on (node local)
[  392.482042][T13946] loop4: detected capacity change from 0 to 40427
[  392.531711][T13946] F2FS-fs (loop4): Invalid log sectorsize (131081)
[  392.538302][T13946] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  392.622514][T13946] F2FS-fs (loop4): invalid crc value
[  392.810388][T13977] netlink: 'syz.2.3405': attribute type 3 has an invalid length.
[  392.964270][T13982] netlink: 'syz.5.3407': attribute type 29 has an invalid length.
[  393.000408][T13982] netlink: 'syz.5.3407': attribute type 29 has an invalid length.
[  393.073166][T13946] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  393.093972][T13946] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  393.470629][  T786] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  393.680386][  T786] usb 4-1: Using ep0 maxpacket: 32
[  393.693198][  T786] usb 4-1: config 0 has an invalid interface number: 236 but max is 0
[  393.722651][  T786] usb 4-1: config 0 has no interface number 0
[  393.747544][  T786] usb 4-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=1e.0e
[  393.760851][  T786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  393.788436][  T786] usb 4-1: Product: syz
[  393.800430][  T786] usb 4-1: Manufacturer: syz
[  393.805112][  T786] usb 4-1: SerialNumber: syz
[  393.852039][  T786] usb 4-1: config 0 descriptor??
[  394.339883][  T786] usb 4-1: USB disconnect, device number 19
[  394.374472][  T786] f81534a_ctrl 4-1:0.236: failed to set register 0x116: -19
[  394.401946][  T786] f81534a_ctrl 4-1:0.236: failed to enable ports: -19
[  395.327362][T14054] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3433'.
[  395.353491][T14054] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3433'.
[  395.634484][    T8] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  395.864908][    T8] usb 4-1: New USB device found, idVendor=0df6, idProduct=0056, bcdDevice=a0.b5
[  395.889763][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  395.906123][    T8] usb 4-1: config 0 descriptor??
[  396.365024][    T8] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  396.403687][    T8] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  396.443733][    T8] asix: probe of 4-1:0.0 failed with error -71
[  396.487571][    T8] usb 4-1: USB disconnect, device number 20
[  396.885617][T14106] comedi comedi0: multiq3: I/O port conflict (0x4,16)
[  397.209268][T14116] loop3: detected capacity change from 0 to 1764
[  397.210743][T14114] loop2: detected capacity change from 0 to 1024
[  397.471608][ T1077] hfsplus: b-tree write err: -5, ino 4
[  397.693812][T14100] loop4: detected capacity change from 0 to 40427
[  397.733105][T14100] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  397.767348][T14100] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  397.804741][T14100] F2FS-fs (loop4): invalid crc value
[  397.819905][T14124] loop2: detected capacity change from 0 to 1024
[  397.845978][T14100] F2FS-fs (loop4): Found nat_bits in checkpoint
[  397.899081][T14129] netlink: 128 bytes leftover after parsing attributes in process `syz.3.3464'.
[  397.958612][T14129] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3464'.
[  398.050331][T14112] loop5: detected capacity change from 0 to 32768
[  398.087953][T14100] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  398.119281][T14100] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  398.461767][T14138] netlink: 'syz.2.3469': attribute type 4 has an invalid length.
[  398.688761][T14144] loop5: detected capacity change from 0 to 256
[  398.741250][T14146] netlink: zone id is out of range
[  398.746453][T14146] netlink: zone id is out of range
[  398.775018][T14146] netlink: zone id is out of range
[  398.787536][T14146] netlink: zone id is out of range
[  398.834085][T14146] netlink: zone id is out of range
[  398.839738][T14146] netlink: zone id is out of range
[  398.865642][T14146] netlink: zone id is out of range
[  398.897678][T14146] netlink: zone id is out of range
[  398.914907][T14144] FAT-fs (loop5): Directory bread(block 64) failed
[  398.918003][T14146] netlink: zone id is out of range
[  398.931950][T14144] FAT-fs (loop5): Directory bread(block 65) failed
[  398.940466][T14146] netlink: zone id is out of range
[  398.955464][T14144] FAT-fs (loop5): Directory bread(block 66) failed
[  398.980538][T14144] FAT-fs (loop5): Directory bread(block 67) failed
[  398.987242][T14144] FAT-fs (loop5): Directory bread(block 68) failed
[  399.040234][T14144] FAT-fs (loop5): Directory bread(block 69) failed
[  399.057490][T14144] FAT-fs (loop5): Directory bread(block 70) failed
[  399.076868][T14144] FAT-fs (loop5): Directory bread(block 71) failed
[  399.110387][T14144] FAT-fs (loop5): Directory bread(block 72) failed
[  399.143907][T14144] FAT-fs (loop5): Directory bread(block 73) failed
[  399.469545][T14160] loop2: detected capacity change from 0 to 64
[  399.719094][T14166] loop3: detected capacity change from 0 to 1024
[  399.872898][   T58] hfsplus: b-tree write err: -5, ino 4
[  400.375398][T14189] loop5: detected capacity change from 0 to 256
[  400.497112][T14189] FAT-fs (loop5): Directory bread(block 64) failed
[  400.526715][T14189] FAT-fs (loop5): Directory bread(block 65) failed
[  400.549061][T14189] FAT-fs (loop5): Directory bread(block 66) failed
[  400.566820][T14189] FAT-fs (loop5): Directory bread(block 67) failed
[  400.583977][T14189] FAT-fs (loop5): Directory bread(block 68) failed
[  400.592292][T14194] loop2: detected capacity change from 0 to 64
[  400.604796][T14189] FAT-fs (loop5): Directory bread(block 69) failed
[  400.649427][T14189] FAT-fs (loop5): Directory bread(block 70) failed
[  400.664520][T14189] FAT-fs (loop5): Directory bread(block 71) failed
[  400.695570][T14189] FAT-fs (loop5): Directory bread(block 72) failed
[  400.723498][T14189] FAT-fs (loop5): Directory bread(block 73) failed
[  400.937073][T14198] loop2: detected capacity change from 0 to 2048
[  400.979467][T14198] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  401.036608][T14201] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  401.149435][T14203] ieee802154 phy0 wpan0: encryption failed: -22
[  401.320485][T14176] loop4: detected capacity change from 0 to 40427
[  401.401478][T14176] F2FS-fs (loop4): Found nat_bits in checkpoint
[  401.592548][T14176] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  401.825422][T10123] syz-executor: attempt to access beyond end of device
[  401.825422][T10123] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  401.876179][T10123] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  401.883678][    T8] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  402.100244][    T8] usb 4-1: Using ep0 maxpacket: 8
[  402.107328][    T8] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  402.128745][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  402.158582][    T8] usb 4-1: config 0 descriptor??
[  402.270607][T14219] loop5: detected capacity change from 0 to 32768
[  402.382855][T14219] jfs_strtoUCS: char2uni returned -22.
[  402.389009][T14219] charset = cp936, char = 0xc5
[  402.407454][    T8] asix 4-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  402.560846][T14223] loop2: detected capacity change from 0 to 32768
[  402.591496][T14223] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 9
[  402.621598][    T8] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  402.653108][    T8] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  402.684116][    T8] asix: probe of 4-1:0.0 failed with error -71
[  402.735252][    T8] usb 4-1: USB disconnect, device number 21
[  402.851556][T13833] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 9
[  403.305923][T14240] loop2: detected capacity change from 0 to 512
[  403.411383][T14240] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  403.460644][T14243] loop3: detected capacity change from 0 to 4096
[  403.487809][T14243] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[  403.518484][T14240] ext4 filesystem being mounted at /921/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  403.570783][T14240] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.3515: corrupted inode contents
[  403.609342][T14240] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.3515: mark_inode_dirty error
[  403.651951][T14240] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.3515: corrupted inode contents
[  403.709189][T14240] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.3515: mark_inode_dirty error
[  403.878068][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.265973][T14238] loop5: detected capacity change from 0 to 32768
[  404.336936][T14238] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  404.445185][T14269] loop4: detected capacity change from 0 to 256
[  404.454528][T14269] exfat: Deprecated parameter 'utf8'
[  404.467700][T14238] OCFS2: ERROR (device loop5): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 74 has 8388607 used bits but only 2048 total
[  404.544049][T14238] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  404.588147][T14269] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xd9b3646f, utbl_chksum : 0xe619d30d)
[  404.608462][T14238] OCFS2: File system is now read-only.
[  404.615131][T14238] (syz.5.3514,14238,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  404.655657][T14238] (syz.5.3514,14238,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  404.702462][T14238] (syz.5.3514,14238,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  404.730537][T14238] (syz.5.3514,14238,1):ocfs2_mknod_locked:639 ERROR: status = -30
[  404.742799][T14238] (syz.5.3514,14238,1):ocfs2_mknod:385 ERROR: status = -30
[  404.743565][T14274] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3529'.
[  404.771005][T14238] (syz.5.3514,14238,1):ocfs2_mknod:502 ERROR: status = -30
[  404.778752][T14238] (syz.5.3514,14238,1):ocfs2_create:676 ERROR: status = -30
[  404.991236][T12851] (syz-executor,12851,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  405.017516][T14281] loop3: detected capacity change from 0 to 256
[  405.028821][T12851] ocfs2: Unmounting device (7,5) on (node local)
[  405.089074][T14281] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  405.536519][T14294] loop5: detected capacity change from 0 to 512
[  405.551783][T14294] EXT4-fs: Ignoring removed bh option
[  405.579894][T14294] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  405.621933][T14294] EXT4-fs (loop5): 1 truncate cleaned up
[  405.630972][  T786] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  405.662183][T14294] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  405.673430][T14297] loop4: detected capacity change from 0 to 4096
[  405.695976][T14297] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  405.812196][T12851] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.854998][  T786] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  405.872908][  T786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.920018][  T786] usb 4-1: Product: syz
[  405.940261][  T786] usb 4-1: Manufacturer: syz
[  405.944974][  T786] usb 4-1: SerialNumber: syz
[  406.020834][  T786] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  406.096241][    T8] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  406.631983][  T786] usb 4-1: USB disconnect, device number 22
[  406.665293][   T28] audit: type=1326 audit(1752512087.390:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14318 comm="syz.4.3551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  406.688501][T14320] trusted_key: encrypted_key: hex blob is missing
[  406.726165][   T28] audit: type=1326 audit(1752512087.390:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14318 comm="syz.4.3551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  406.754371][   T28] audit: type=1326 audit(1752512087.440:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14318 comm="syz.4.3551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  406.840467][   T28] audit: type=1326 audit(1752512087.440:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14318 comm="syz.4.3551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb38e929 code=0x7ffc0000
[  406.895522][T14325] loop4: detected capacity change from 0 to 16
[  406.916031][T14325] erofs: (device loop4): mounted with root inode @ nid 36.
[  406.933860][T14325] erofs: (device loop4): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 65535
[  406.944151][T14325] erofs: (device loop4): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 65535
[  406.961288][T14325] erofs: (device loop4): z_erofs_read_folio: read error -117 @ 134215752 of nid 36
[  406.985491][T14323] loop2: detected capacity change from 0 to 4096
[  407.019424][T14323] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  407.168092][    T8] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  407.192735][    T8] ath9k_htc: Failed to initialize the device
[  407.225411][T14332] netlink: 48 bytes leftover after parsing attributes in process `syz.5.3555'.
[  407.234351][  T786] usb 4-1: ath9k_htc: USB layer deinitialized
[  407.391229][T14335] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  407.452207][T14335] batadv_slave_0: entered promiscuous mode
[  407.458161][T14335] batadv_slave_0: entered allmulticast mode
[  407.600310][T14340] 9pnet: Found fid 0 not clunked
[  407.694598][T14342] x_tables: duplicate underflow at hook 3
[  408.333524][T14368] netlink: 'syz.2.3574': attribute type 32 has an invalid length.
[  408.359741][T14367] net_ratelimit: 335 callbacks suppressed
[  408.359761][T14367] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  408.412507][T14372] Cannot find del_set index 4 as target
[  408.795268][T14383] loop3: detected capacity change from 0 to 2048
[  408.837860][T14383] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  408.930670][T14383] UDF-fs: error (device loop3): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376)
[  409.602517][T14414] loop5: detected capacity change from 0 to 8
[  409.609732][T14414] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  409.656329][ T5796] udevd[5796]: incorrect cramfs checksum on /dev/loop5
[  409.746716][ T5796] udevd[5796]: incorrect cramfs checksum on /dev/loop5
[  409.761669][T14418] loop3: detected capacity change from 0 to 8
[  410.051364][T14424] 9pnet_virtio: no channels available for device 
[  410.226494][T14428] loop5: detected capacity change from 0 to 256
[  410.244123][T14430] bond0: (slave syz_tun): Releasing backup interface
[  410.298255][T14430] team0: left allmulticast mode
[  410.320285][T14430] team_slave_0: left allmulticast mode
[  410.339199][T14408] loop4: detected capacity change from 0 to 32768
[  410.354113][T14430] team_slave_1: left allmulticast mode
[  410.392118][T14408] JBD2: Ignoring recovery information on journal
[  410.402860][T14430] bridge0: port 3(team0) entered disabled state
[  410.469515][T14430] bridge_slave_0: left allmulticast mode
[  410.501730][T14430] bridge_slave_0: left promiscuous mode
[  410.521185][T14408] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  410.530580][T14430] bridge0: port 1(bridge_slave_0) entered disabled state
[  410.571072][T14430] bridge_slave_1: left allmulticast mode
[  410.581351][T14436] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3607'.
[  410.603402][T14430] bridge_slave_1: left promiscuous mode
[  410.628273][T14430] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.656641][T14430] bond0: (slave bond_slave_0): Releasing backup interface
[  410.670374][ T5861] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  410.747734][T14430] bond0: (slave bond_slave_1): Releasing backup interface
[  410.776959][T10123] ocfs2: Unmounting device (7,4) on (node local)
[  410.810412][T14430] team_slave_0: left promiscuous mode
[  410.857906][T14438] loop5: detected capacity change from 0 to 2048
[  410.883728][ T5861] usb 3-1: Using ep0 maxpacket: 8
[  410.923837][ T5861] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  410.937856][T14430] team0: Port device team_slave_0 removed
[  410.938460][T14438] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.943739][ T5861] usb 3-1: config 0 has no interface number 0
[  410.943780][ T5861] usb 3-1: config 0 interface 1 has no altsetting 0
[  410.972069][T14430] team_slave_1: left promiscuous mode
[  410.990508][T14438] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  411.003343][ T5861] usb 3-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f
[  411.023519][ T5861] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.059284][ T5861] usb 3-1: Product: syz
[  411.062765][T14430] team0: Port device team_slave_1 removed
[  411.081910][ T5861] usb 3-1: Manufacturer: syz
[  411.107049][ T5861] usb 3-1: SerialNumber: syz
[  411.112895][T14438] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #15: comm syz.5.3608: corrupted xattr block 128: bad e_name length
[  411.141544][T14430] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  411.150779][ T5861] usb 3-1: config 0 descriptor??
[  411.195062][T14430] batman_adv: batadv0: Removing interface: batadv_slave_0
[  411.263424][T14430] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  411.310299][T14430] batman_adv: batadv0: Removing interface: batadv_slave_1
[  411.326063][T14430] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  411.338681][T12851] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.348974][T14430] batman_adv: batadv0: Removing interface: virt_wifi0
[  411.370054][ T5861] i2c-cp2615: probe of 3-1:0.1 failed with error -22
[  411.466020][  T786] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  411.578906][T14451] loop4: detected capacity change from 0 to 64
[  411.610800][  T966] usb 3-1: USB disconnect, device number 15
[  411.702999][T14451] Trying to free block not in datazone
[  411.709079][T14455] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3615'.
[  411.774921][T14453] loop3: detected capacity change from 0 to 4096
[  411.809478][T14453] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  411.903560][T14459] dlm: no locking on control device
[  412.086843][T14463] vlan1: entered allmulticast mode
[  412.095507][T14463] veth0_vlan: entered allmulticast mode
[  412.284076][T14466] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  412.473546][T14473] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3624'.
[  412.502863][T14473] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3624'.
[  412.535706][  T786] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  413.015470][T14495] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  413.077942][T14495] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  413.146264][T14497] netlink: 68 bytes leftover after parsing attributes in process `syz.3.3636'.
[  413.349467][T14506] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3640'.
[  413.667454][T14512] loop4: detected capacity change from 0 to 512
[  413.781074][T14512] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  413.837673][T14512] ext4 filesystem being mounted at /423/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  413.897388][T14500] loop2: detected capacity change from 0 to 32768
[  413.907414][T14500] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.3638 (14500)
[  413.929987][T14520] loop5: detected capacity change from 0 to 512
[  413.952122][T14500] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  413.971159][T14520] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  414.002500][T14500] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  414.043087][T14520] EXT4-fs (loop5): 1 truncate cleaned up
[  414.050294][T14500] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8)
[  414.092703][T14523] loop3: detected capacity change from 0 to 256
[  414.101115][T14520] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  414.114699][T14500] BTRFS info (device loop2): use lzo compression, level 0
[  414.130597][T14500] BTRFS info (device loop2): using free space tree
[  414.167924][T10123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.425661][T12851] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.450660][T14500] BTRFS info (device loop2): enabling ssd optimizations
[  414.457753][T14500] BTRFS info (device loop2): auto enabling async discard
[  414.986997][ T5791] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  415.049238][T14555] loop5: detected capacity change from 0 to 2048
[  415.132650][T14555] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.181502][T14555] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  415.293513][T14555] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.3655: bg 0: block 345: padding at end of block bitmap is not set
[  415.320327][ T5861] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  415.338501][T14563] netlink: 'syz.3.3659': attribute type 5 has an invalid length.
[  415.368284][T14555] EXT4-fs (loop5): Remounting filesystem read-only
[  415.388654][T14555] EXT4-fs warning (device loop5): ext4_xattr_inode_lookup_create:1614: inode #18: comm syz.5.3655: cleanup dec ref error -117
[  415.517980][T12851] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.538892][T14566] netlink: 'syz.3.3660': attribute type 2 has an invalid length.
[  415.549993][T14566] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  415.550400][ T5861] usb 5-1: Using ep0 maxpacket: 16
[  415.587638][ T5861] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 112, changing to 10
[  415.609431][ T5861] usb 5-1: New USB device found, idVendor=05ac, idProduct=0224, bcdDevice= 0.00
[  415.647286][ T5861] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.672525][ T5861] usb 5-1: config 0 descriptor??
[  415.906679][ T5861] usb 5-1: string descriptor 0 read error: -71
[  415.929844][ T5861] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input21
[  415.989440][ T5144] bcm5974 5-1:0.0: could not read from device
[  416.022695][ T5861] usb 5-1: USB disconnect, device number 8
[  416.030601][ T5144] bcm5974 5-1:0.0: could not read from device
[  416.165065][T14582] loop5: detected capacity change from 0 to 256
[  416.448919][T14588] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  416.490396][T14590] netlink: 'syz.5.3671': attribute type 21 has an invalid length.
[  416.508545][T14590] netlink: 128 bytes leftover after parsing attributes in process `syz.5.3671'.
[  416.530461][T14590] netlink: 'syz.5.3671': attribute type 5 has an invalid length.
[  416.538265][T14590] netlink: 'syz.5.3671': attribute type 6 has an invalid length.
[  416.621574][T14590] netlink: 3 bytes leftover after parsing attributes in process `syz.5.3671'.
[  416.735756][T14592] loop2: detected capacity change from 0 to 4096
[  416.752024][T14594] loop4: detected capacity change from 0 to 2048
[  416.764978][T14592] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  416.840368][T14594] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  416.863230][T14592] ntfs3: loop2: Failed to initialize $Extend/$ObjId.
[  417.179022][T14584] loop3: detected capacity change from 0 to 32768
[  417.213443][T14601] loop5: detected capacity change from 0 to 8
[  417.309386][T14601] SQUASHFS error: xz decompression failed, data probably corrupt
[  417.317443][T14601] SQUASHFS error: Failed to read block 0x108: -5
[  417.327677][T14601] SQUASHFS error: Unable to read metadata cache entry [106]
[  417.340351][T14601] SQUASHFS error: Unable to read inode 0x11f
[  417.520647][T14608] loop4: detected capacity change from 0 to 256
[  417.830635][    T8] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  418.034395][T14620] loop3: detected capacity change from 0 to 512
[  418.057530][T14622] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3686'.
[  418.057631][T14620] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[  418.081222][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  418.096346][    T8] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  418.106821][T14620] UDF-fs: Scanning with blocksize 512 failed
[  418.114551][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33119, setting to 1024
[  418.132155][T14620] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[  418.139712][    T8] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  418.151456][T14620] UDF-fs: Scanning with blocksize 1024 failed
[  418.163931][T14620] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[  418.178518][T14620] UDF-fs: Scanning with blocksize 2048 failed
[  418.187993][    T8] usb 6-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72
[  418.204726][    T8] usb 6-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0
[  418.223411][T14620] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  418.233391][    T8] usb 6-1: Manufacturer: syz
[  418.251717][    T8] usb 6-1: config 0 descriptor??
[  418.259644][T14620] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  418.289535][T14601] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  418.303395][    T8] smsusb:smsusb_probe: board id=9, interface number 0
[  418.329928][    T8] smsusb:siano_media_device_register: media controller created
[  418.374400][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.381804][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.389171][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.396624][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.403979][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.414689][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.422260][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.429619][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.436925][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.444286][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.451560][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.460740][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.468103][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.475425][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.482741][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.490058][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.490865][T14620] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 30) has entry where CRC length (792) does not match entry length (24)
[  418.500415][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.518947][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.526311][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.533654][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.540993][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.550045][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.557384][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.564660][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.572480][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.579863][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.588300][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.595641][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.600756][T14629] netlink: 'syz.2.3690': attribute type 7 has an invalid length.
[  418.602923][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.618066][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.625388][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.633172][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.640501][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.647812][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.655125][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.662435][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.670784][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.678164][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.685523][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.692854][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.700177][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.708104][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.715751][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.723080][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.730435][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.737775][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.745650][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.753490][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.760819][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.768124][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.775447][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.782727][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.790392][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.797742][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.805071][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.812397][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.819731][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.827533][    T8] smsmdtv:smscore_sendrequest_and_wait: sendrequest returned error -22
[  418.836375][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.836493][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.836585][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.836678][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.836775][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.836869][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.836962][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.837055][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.837145][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.837228][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.852745][T14629] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3690'.
[  418.852867][T14629] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3690'.
[  418.861186][    T8] smsmdtv:smscore_set_device_mode: mode detect failed -22
[  418.875235][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.875358][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.875459][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.875551][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.875642][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.875731][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.875821][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.875911][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.876001][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  418.876089][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.011547][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.018868][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.026160][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.033445][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.040705][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.047959][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.055226][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.062486][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.070730][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.078063][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.085671][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.093003][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.100325][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.107598][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.114864][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.122128][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.129468][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.136754][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.144571][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.151894][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.159220][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.166659][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.173969][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.181291][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.190031][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.197392][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.204723][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.212050][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.219370][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.226696][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.234016][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.241877][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.249210][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.256844][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.264155][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.271469][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.278773][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.286080][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.293412][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.300691][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.307944][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.316150][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.323492][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.330796][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.338101][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.345394][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.352697][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.360032][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.367375][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.374699][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.382516][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.389971][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.397302][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.404670][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.412013][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.419348][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.430413][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.437777][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.445110][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.452451][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.460381][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.467730][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.475067][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.483013][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.491021][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.498371][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.506553][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.514073][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.521543][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.528815][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.536781][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.544143][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.551548][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.558941][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.566260][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.573586][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.587166][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.594515][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.601828][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.609146][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.616465][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.623790][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.631110][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.639098][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.646783][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.654120][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.661441][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.668740][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.676050][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.683356][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.690664][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.697958][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.705619][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.712951][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.720262][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.727552][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.734812][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.742079][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.749335][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.757067][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.764392][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.771684][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.778967][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.786282][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.793584][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.800867][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.808164][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.815547][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.824029][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.831357][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.838684][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.846081][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.853397][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.860708][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.868000][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.875306][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.883609][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.890924][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.898235][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.905541][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.912844][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.920130][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.927419][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.934711][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.942002][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.949298][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.956888][    T8] smsmdtv:smscore_start_device: set device mode failed , rc -22
[  419.965696][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.965800][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.965888][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.965974][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.966059][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.966146][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.966231][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.966315][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.966407][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  419.966492][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.041587][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.048950][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.056300][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.063623][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.070936][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.078239][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.086178][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.093510][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.100826][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.108114][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.115690][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.123007][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.130338][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.137649][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.144983][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.152287][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.160085][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.167419][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.174717][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.182025][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.189366][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.196273][T14641] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3696'.
[  420.196931][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.213764][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.221141][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.228460][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.235775][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.243111][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.250920][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.258355][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.265687][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.272986][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.280252][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.287990][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.295336][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.302686][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.310130][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.317469][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.325073][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.332391][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.339717][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.347039][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.354340][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.362348][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.369676][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.376991][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.384315][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.391641][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.398963][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.406371][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.413646][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.421201][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.428525][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.436207][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.443530][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.450998][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.458326][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.465654][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.473028][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.480346][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.488253][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.495578][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.502904][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.510219][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.517541][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.524855][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.532175][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.539492][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.546814][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.554138][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.565716][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.573062][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.580393][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.587717][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.595775][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.603118][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.610441][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.617761][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.625083][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.632394][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.640513][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.647926][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.655273][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.662595][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.669913][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.677264][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.685349][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.692759][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.700030][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.707306][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.723080][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.730439][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.737770][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.745103][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.752444][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.759778][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.767107][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.775144][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.782477][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.789790][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.797097][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.804414][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.811821][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.819130][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.826438][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.834180][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.841519][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.848807][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.856105][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.863373][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.870623][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.877861][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.885796][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.893128][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.900422][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.907744][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.915061][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.922369][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.929678][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.936988][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.944313][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.951619][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.960018][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.967386][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.974698][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.982015][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.989319][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  420.996965][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.004300][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.011625][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.018945][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.026268][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.033586][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.041504][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.048858][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.056178][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.063499][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.071070][    T8] smsusb:smsusb_init_device: smscore_start_device(...) failed
[  421.079572][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.086907][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.094222][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.101539][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.108867][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.116184][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.123461][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.130718][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.137976][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.148335][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.155778][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.163103][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.170445][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.178390][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.185735][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.193059][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.200361][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.207665][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.215002][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.222322][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.229640][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.236945][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.244863][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.252207][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.259534][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.266836][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.274145][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.281435][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.288691][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.295942][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.303998][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.311310][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.318620][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.325936][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.333259][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.340583][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.348733][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.356091][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.363409][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.370729][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.378135][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.385455][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.393446][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.400769][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.408103][    C0] smsusb:smsusb_onresponse: error, urb status -2, 0 bytes
[  421.415351][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.422662][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.429967][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.437287][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.444594][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.451912][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.459231][    C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[  421.473868][    T8] ------------[ cut here ]------------
[  421.479416][    T8] ODEBUG: free active (active state 0) object: ffff88807d0d60e8 object type: work_struct hint: do_submit_urb+0x0/0x360
[  421.492047][ T5859] ==================================================================
[  421.500154][ T5859] BUG: KASAN: slab-use-after-free in __lock_acquire+0xff/0x7c80
[  421.507831][ T5859] Read of size 8 at addr ffff888026510098 by task kworker/0:5/5859
[  421.515754][ T5859] 
[  421.518132][ T5859] CPU: 0 PID: 5859 Comm: kworker/0:5 Not tainted 6.6.98-syzkaller #0
[  421.526228][ T5859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  421.536299][ T5859] Workqueue: events do_submit_urb
[  421.541367][ T5859] Call Trace:
[  421.544654][ T5859]  <TASK>
[  421.547597][ T5859]  dump_stack_lvl+0x16c/0x230
[  421.552301][ T5859]  ? __lock_acquire+0x7c80/0x7c80
[  421.557336][ T5859]  ? show_regs_print_info+0x20/0x20
[  421.562551][ T5859]  ? load_image+0x3b0/0x3b0
[  421.567071][ T5859]  ? __virt_addr_valid+0x469/0x540
[  421.572215][ T5859]  print_report+0xac/0x230
[  421.576658][ T5859]  ? __lock_acquire+0xff/0x7c80
[  421.581533][ T5859]  kasan_report+0x117/0x150
[  421.586069][ T5859]  ? __lock_acquire+0xff/0x7c80
[  421.591041][ T5859]  __lock_acquire+0xff/0x7c80
[  421.595745][ T5859]  ? mark_lock+0x94/0x320
[  421.600187][ T5859]  ? __lock_acquire+0x1334/0x7c80
[  421.605243][ T5859]  ? mark_lock+0x94/0x320
[  421.609587][ T5859]  ? look_up_lock_class+0x75/0x140
[  421.614716][ T5859]  ? verify_lock_unused+0x140/0x140
[  421.619928][ T5859]  ? register_lock_class+0xb5/0x890
[  421.625141][ T5859]  ? is_dynamic_key+0x260/0x260
[  421.630014][ T5859]  ? mark_lock+0x94/0x320
[  421.634365][ T5859]  ? __lock_acquire+0x1334/0x7c80
[  421.639403][ T5859]  lock_acquire+0x197/0x410
[  421.643922][ T5859]  ? smscore_getbuffer+0xa9/0x440
[  421.648973][ T5859]  ? read_lock_is_recursive+0x20/0x20
[  421.654364][ T5859]  _raw_spin_lock_irqsave+0xa8/0xf0
[  421.659575][ T5859]  ? smscore_getbuffer+0xa9/0x440
[  421.664615][ T5859]  ? _raw_spin_lock+0x40/0x40
[  421.669314][ T5859]  smscore_getbuffer+0xa9/0x440
[  421.674187][ T5859]  ? smscore_onresponse+0xf10/0xf10
[  421.679403][ T5859]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  421.685398][ T5859]  ? read_lock_is_recursive+0x20/0x20
[  421.690784][ T5859]  do_submit_urb+0x98/0x360
[  421.695396][ T5859]  ? process_scheduled_works+0x957/0x15b0
[  421.701130][ T5859]  ? process_scheduled_works+0x957/0x15b0
[  421.706870][ T5859]  process_scheduled_works+0xa45/0x15b0
[  421.712446][ T5859]  ? assign_work+0x400/0x400
[  421.717052][ T5859]  ? assign_work+0x39e/0x400
[  421.721691][ T5859]  worker_thread+0xa55/0xfc0
[  421.726390][ T5859]  kthread+0x2fa/0x390
[  421.730486][ T5859]  ? pr_cont_work+0x560/0x560
[  421.735176][ T5859]  ? kthread_blkcg+0xd0/0xd0
[  421.739775][ T5859]  ret_from_fork+0x48/0x80
[  421.744229][ T5859]  ? kthread_blkcg+0xd0/0xd0
[  421.748828][ T5859]  ret_from_fork_asm+0x11/0x20
[  421.753616][ T5859]  </TASK>
[  421.756645][ T5859] 
[  421.758971][ T5859] Allocated by task 8:
[  421.763050][ T5859]  kasan_set_track+0x4e/0x70
[  421.767656][ T5859]  __kasan_kmalloc+0x8f/0xa0
[  421.772263][ T5859]  smscore_register_device+0x63/0x10f0
[  421.777735][ T5859]  smsusb_probe+0x1362/0x1da0
[  421.782425][ T5859]  usb_probe_interface+0x5a4/0xb00
[  421.787541][ T5859]  really_probe+0x25b/0xb40
[  421.792059][ T5859]  __driver_probe_device+0x18c/0x330
[  421.797358][ T5859]  driver_probe_device+0x4f/0x420
[  421.802394][ T5859]  __device_attach_driver+0x2ca/0x520
[  421.807797][ T5859]  bus_for_each_drv+0x24b/0x2d0
[  421.812678][ T5859]  __device_attach+0x2b5/0x400
[  421.817468][ T5859]  bus_probe_device+0x180/0x260
[  421.822332][ T5859]  device_add+0x85b/0xc20
[  421.826670][ T5859]  usb_set_configuration+0x1a79/0x20c0
[  421.832149][ T5859]  usb_generic_driver_probe+0x8d/0x150
[  421.837655][ T5859]  usb_probe_device+0x13d/0x280
[  421.842514][ T5859]  really_probe+0x25b/0xb40
[  421.847030][ T5859]  __driver_probe_device+0x18c/0x330
[  421.852327][ T5859]  driver_probe_device+0x4f/0x420
[  421.857450][ T5859]  __device_attach_driver+0x2ca/0x520
[  421.862850][ T5859]  bus_for_each_drv+0x24b/0x2d0
[  421.867742][ T5859]  __device_attach+0x2b5/0x400
[  421.872541][ T5859]  bus_probe_device+0x180/0x260
[  421.877422][ T5859]  device_add+0x85b/0xc20
[  421.881771][ T5859]  usb_new_device+0xa31/0x1630
[  421.886542][ T5859]  hub_event+0x2957/0x49c0
[  421.890965][ T5859]  process_scheduled_works+0xa45/0x15b0
[  421.896527][ T5859]  worker_thread+0xa55/0xfc0
[  421.901138][ T5859]  kthread+0x2fa/0x390
[  421.905270][ T5859]  ret_from_fork+0x48/0x80
[  421.909698][ T5859]  ret_from_fork_asm+0x11/0x20
[  421.914478][ T5859] 
[  421.916826][ T5859] Freed by task 8:
[  421.920547][ T5859]  kasan_set_track+0x4e/0x70
[  421.925146][ T5859]  kasan_save_free_info+0x2e/0x50
[  421.930199][ T5859]  ____kasan_slab_free+0x126/0x1e0
[  421.935321][ T5859]  slab_free_freelist_hook+0x130/0x1b0
[  421.940791][ T5859]  __kmem_cache_free+0xba/0x1f0
[  421.945650][ T5859]  smscore_unregister_device+0x603/0x6e0
[  421.951297][ T5859]  smsusb_term_device+0x18f/0x220
[  421.956336][ T5859]  smsusb_probe+0x1708/0x1da0
[  421.961029][ T5859]  usb_probe_interface+0x5a4/0xb00
[  421.966151][ T5859]  really_probe+0x25b/0xb40
[  421.970671][ T5859]  __driver_probe_device+0x18c/0x330
[  421.976059][ T5859]  driver_probe_device+0x4f/0x420
[  421.981115][ T5859]  __device_attach_driver+0x2ca/0x520
[  421.986544][ T5859]  bus_for_each_drv+0x24b/0x2d0
[  421.991402][ T5859]  __device_attach+0x2b5/0x400
[  421.996182][ T5859]  bus_probe_device+0x180/0x260
[  422.001045][ T5859]  device_add+0x85b/0xc20
[  422.005378][ T5859]  usb_set_configuration+0x1a79/0x20c0
[  422.010851][ T5859]  usb_generic_driver_probe+0x8d/0x150
[  422.016323][ T5859]  usb_probe_device+0x13d/0x280
[  422.021184][ T5859]  really_probe+0x25b/0xb40
[  422.025699][ T5859]  __driver_probe_device+0x18c/0x330
[  422.030997][ T5859]  driver_probe_device+0x4f/0x420
[  422.036041][ T5859]  __device_attach_driver+0x2ca/0x520
[  422.041426][ T5859]  bus_for_each_drv+0x24b/0x2d0
[  422.046314][ T5859]  __device_attach+0x2b5/0x400
[  422.051089][ T5859]  bus_probe_device+0x180/0x260
[  422.055958][ T5859]  device_add+0x85b/0xc20
[  422.060304][ T5859]  usb_new_device+0xa31/0x1630
[  422.065076][ T5859]  hub_event+0x2957/0x49c0
[  422.069502][ T5859]  process_scheduled_works+0xa45/0x15b0
[  422.075056][ T5859]  worker_thread+0xa55/0xfc0
[  422.079655][ T5859]  kthread+0x2fa/0x390
[  422.083730][ T5859]  ret_from_fork+0x48/0x80
[  422.088154][ T5859]  ret_from_fork_asm+0x11/0x20
[  422.092944][ T5859] 
[  422.095270][ T5859] The buggy address belongs to the object at ffff888026510000
[  422.095270][ T5859]  which belongs to the cache kmalloc-2k of size 2048
[  422.109332][ T5859] The buggy address is located 152 bytes inside of
[  422.109332][ T5859]  freed 2048-byte region [ffff888026510000, ffff888026510800)
[  422.123224][ T5859] 
[  422.125554][ T5859] The buggy address belongs to the physical page:
[  422.131980][ T5859] page:ffffea0000994400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x26510
[  422.142136][ T5859] head:ffffea0000994400 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  422.151084][ T5859] anon flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  422.159592][ T5859] page_type: 0xffffffff()
[  422.163931][ T5859] raw: 00fff00000000840 ffff888017842000 0000000000000000 dead000000000001
[  422.172522][ T5859] raw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000
[  422.181128][ T5859] page dumped because: kasan: bad access detected
[  422.187558][ T5859] page_owner tracks the page as allocated
[  422.193276][ T5859] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 15096187990, free_ts 0
[  422.213001][ T5859]  post_alloc_hook+0x1cd/0x210
[  422.217788][ T5859]  get_page_from_freelist+0x195c/0x19f0
[  422.223342][ T5859]  __alloc_pages+0x1e3/0x460
[  422.227940][ T5859]  alloc_page_interleave+0x24/0x1e0
[  422.233153][ T5859]  alloc_slab_page+0x5d/0x170
[  422.237849][ T5859]  new_slab+0x87/0x2e0
[  422.242041][ T5859]  ___slab_alloc+0xc6d/0x12f0
[  422.246739][ T5859]  __kmem_cache_alloc_node+0x1a2/0x260
[  422.252213][ T5859]  kmalloc_trace+0x2a/0xe0
[  422.256636][ T5859]  usb_create_ep_devs+0x59/0x220
[  422.261591][ T5859]  usb_new_device+0xb4e/0x1630
[  422.266368][ T5859]  register_root_hub+0x275/0x580
[  422.271328][ T5859]  usb_add_hcd+0xb73/0x1000
[  422.275843][ T5859]  vhci_hcd_probe+0x144/0x380
[  422.280536][ T5859]  platform_probe+0x13b/0x1c0
[  422.285223][ T5859]  really_probe+0x25b/0xb40
[  422.289740][ T5859] page_owner free stack trace missing
[  422.295634][ T5859] 
[  422.297963][ T5859] Memory state around the buggy address:
[  422.303598][ T5859]  ffff88802650ff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  422.311670][ T5859]  ffff888026510000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  422.319733][ T5859] >ffff888026510080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  422.327817][ T5859]                             ^
[  422.333367][ T5859]  ffff888026510100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  422.341459][ T5859]  ffff888026510180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  422.349524][ T5859] ==================================================================
[  422.357602][ T5859] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  422.364810][ T5859] CPU: 0 PID: 5859 Comm: kworker/0:5 Not tainted 6.6.98-syzkaller #0
[  422.372907][ T5859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  422.383083][ T5859] Workqueue: events do_submit_urb
[  422.388149][ T5859] Call Trace:
[  422.391452][ T5859]  <TASK>
[  422.394392][ T5859]  dump_stack_lvl+0x16c/0x230
[  422.399092][ T5859]  ? show_regs_print_info+0x20/0x20
[  422.404310][ T5859]  ? load_image+0x3b0/0x3b0
[  422.408833][ T5859]  panic+0x2c0/0x710
[  422.412747][ T5859]  ? bpf_jit_dump+0xd0/0xd0
[  422.417260][ T5859]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  422.423161][ T5859]  ? _raw_spin_unlock+0x40/0x40
[  422.428015][ T5859]  ? print_memory_metadata+0x314/0x400
[  422.433489][ T5859]  ? __lock_acquire+0xff/0x7c80
[  422.438345][ T5859]  check_panic_on_warn+0x84/0xa0
[  422.443296][ T5859]  ? __lock_acquire+0xff/0x7c80
[  422.448157][ T5859]  end_report+0x6f/0x140
[  422.452416][ T5859]  kasan_report+0x128/0x150
[  422.456996][ T5859]  ? __lock_acquire+0xff/0x7c80
[  422.461873][ T5859]  __lock_acquire+0xff/0x7c80
[  422.466643][ T5859]  ? mark_lock+0x94/0x320
[  422.470993][ T5859]  ? __lock_acquire+0x1334/0x7c80
[  422.476031][ T5859]  ? mark_lock+0x94/0x320
[  422.480382][ T5859]  ? look_up_lock_class+0x75/0x140
[  422.485602][ T5859]  ? verify_lock_unused+0x140/0x140
[  422.490838][ T5859]  ? register_lock_class+0xb5/0x890
[  422.496085][ T5859]  ? is_dynamic_key+0x260/0x260
[  422.500958][ T5859]  ? mark_lock+0x94/0x320
[  422.505329][ T5859]  ? __lock_acquire+0x1334/0x7c80
[  422.510372][ T5859]  lock_acquire+0x197/0x410
[  422.514894][ T5859]  ? smscore_getbuffer+0xa9/0x440
[  422.519941][ T5859]  ? read_lock_is_recursive+0x20/0x20
[  422.525328][ T5859]  _raw_spin_lock_irqsave+0xa8/0xf0
[  422.530540][ T5859]  ? smscore_getbuffer+0xa9/0x440
[  422.535585][ T5859]  ? _raw_spin_lock+0x40/0x40
[  422.540298][ T5859]  smscore_getbuffer+0xa9/0x440
[  422.545174][ T5859]  ? smscore_onresponse+0xf10/0xf10
[  422.550385][ T5859]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  422.556378][ T5859]  ? read_lock_is_recursive+0x20/0x20
[  422.561762][ T5859]  do_submit_urb+0x98/0x360
[  422.566282][ T5859]  ? process_scheduled_works+0x957/0x15b0
[  422.572012][ T5859]  ? process_scheduled_works+0x957/0x15b0
[  422.577833][ T5859]  process_scheduled_works+0xa45/0x15b0
[  422.583406][ T5859]  ? assign_work+0x400/0x400
[  422.588008][ T5859]  ? assign_work+0x39e/0x400
[  422.592617][ T5859]  worker_thread+0xa55/0xfc0
[  422.597231][ T5859]  kthread+0x2fa/0x390
[  422.601304][ T5859]  ? pr_cont_work+0x560/0x560
[  422.605992][ T5859]  ? kthread_blkcg+0xd0/0xd0
[  422.610588][ T5859]  ret_from_fork+0x48/0x80
[  422.615009][ T5859]  ? kthread_blkcg+0xd0/0xd0
[  422.619604][ T5859]  ret_from_fork_asm+0x11/0x20
[  422.624388][ T5859]  </TASK>
[  422.627721][ T5859] Kernel Offset: disabled
[  422.632044][ T5859] Rebooting in 86400 seconds..