last executing test programs:

3m6.937238745s ago: executing program 2 (id=7322):
r0 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x7d, &(0x7f0000000000), 0x20000010)

3m6.673531184s ago: executing program 2 (id=7314):
syz_mount_image$hfsplus(&(0x7f0000000500), &(0x7f0000000280)='./file0\x00', 0x800010, &(0x7f0000000040)=ANY=[], 0xc, 0x68c, &(0x7f0000002480)="$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")
creat(&(0x7f0000000080)='./file0\x00', 0xac)

3m5.937380771s ago: executing program 2 (id=7316):
r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x156, 0x78cd, 0x35315241, 0x0, 0x0, 0x0, 0x0, 0x7}})

3m5.557711415s ago: executing program 2 (id=7320):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000004400)={[{@nodecompose}, {@uid}, {@force}, {@gid}, {@nls={'nls', 0x3d, 'cp874'}}, {@part={'part', 0x3d, 0x200006}}]}, 0x1, 0x6fc, &(0x7f0000000b40)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

3m5.233511247s ago: executing program 2 (id=7328):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009e173610ef171e7206de010203010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000006840)={0x44, &(0x7f0000000080)=ANY=[@ANYBLOB="201320000000195c04dc"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3m4.526122872s ago: executing program 2 (id=7339):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
syz_clone(0x40000, 0x0, 0xfffffe66, 0x0, 0x0, 0x0)

3m4.155071566s ago: executing program 32 (id=7339):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
syz_clone(0x40000, 0x0, 0xfffffe66, 0x0, 0x0, 0x0)

33.747197427s ago: executing program 1 (id=9542):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000001f40)=@raw={'raw\x00', 0x8, 0x3, 0x1258, 0x10f0, 0x11, 0x148, 0x10f0, 0x10, 0x11c0, 0x2a8, 0x2a8, 0x11c0, 0x2a8, 0x7fffffe, 0x0, {[{{@uncond, 0x10, 0x10d0, 0x10f0, 0x1c, {0x6}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}, @common=@unspec=@mark={{0x30}, {0x863, 0x7fff}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, 0x9, 0x8, [0x3b, 0x29, 0x1f, 0x2, 0x29, 0x25, 0x38, 0x25, 0xa, 0x33, 0x28, 0x21, 0x25, 0x11, 0x16, 0x1b], 0x2, 0x3ff, 0x9}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x12b8)

33.562339593s ago: executing program 1 (id=9546):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000026c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {&(0x7f0000002780)="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", 0x930}], 0x5)

32.667180166s ago: executing program 1 (id=9557):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x7, 0x0, 0x0, 0x24000840}, 0x8081)

32.379019296s ago: executing program 1 (id=9563):
syz_mount_image$iso9660(&(0x7f00000002c0), &(0x7f00000000c0)='./file0\x00', 0x10, &(0x7f00000001c0)=ANY=[@ANYBLOB="6d61703d6f66662c73686f776173736f632c73657373696f6e3d3078303030303030303030303030303030382c00908809640140af5da36f3337170356d2bd3f14df23c00d84"], 0x1, 0x584, &(0x7f0000000300)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})

31.935421432s ago: executing program 1 (id=9570):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x42a1, 0x20}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @gre={{0x8}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_TYPE={0x6}, @IFLA_GRE_REMOTE={0x8, 0x7, @local}]}}}]}, 0x44}}, 0x0)

31.466764769s ago: executing program 1 (id=9577):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000140))

30.913604269s ago: executing program 33 (id=9577):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000140))

3.533840742s ago: executing program 4 (id=9919):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003800), 0x2080, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000003840)={0x13, 0x0, [{0x2, 0x25, 0x1, 0x1, 0xe9, 0x1, 0x5}]})

3.157428185s ago: executing program 5 (id=9924):
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000000)='./file0\x00', 0x180c850, &(0x7f0000001080)={[{@fat=@check_strict}, {@shortname_winnt}, {@numtail}, {@uni_xlate}, {@utf8}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@shortname_win95}, {@fat=@discard}, {@fat=@codepage={'codepage', 0x3d, '863'}}, {@rodir}, {@utf8no}, {@uni_xlateno}]}, 0x1, 0x371, &(0x7f0000002980)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)

2.970730862s ago: executing program 4 (id=9927):
r0 = syz_open_dev$ndb(&(0x7f00000020c0), 0x0, 0x80000)
ioctl$NBD_SET_SIZE_BLOCKS(r0, 0xab07, 0xffffffffffffffff)

2.838841637s ago: executing program 0 (id=9928):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000005700)=ANY=[@ANYBLOB="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"], 0x1, 0x5517, &(0x7f0000005840)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a5a438, &(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES8, @ANYBLOB="4ea4164323d0136eb525e4df0380654dda5ebcf2de4311b52a2281c85ff08dbd024f787cd68755278fc572e23916a8c3d6696a0bf0670d64b4f5a0a0e534317a2966e83ce615c95af5aecc2e04a42b3bb6c722a5849ba823ebc75abf6d4b6e5fffc844d9d095cbd2eb8a982eb3140257", @ANYRESHEX, @ANYRESHEX=0x0, @ANYRES16, @ANYBLOB="37b57cfa7d0121345c29b6064f49a0f95b88671b8e9149556e5ff3c7012f7856b6557be6b51d61efea623114a0b4b52f68387d2040dd08c5aa753b596ede3f3d637f96752310a389efcd8cf335ca9dbbbc10bda7a16342968c9ab4fd1ac65da604cd9b42d6d0dc0e895e0b2f42822f1b342f88a8d607008d20b22b776a70a07a2c53fc32be094c857279c58542b176bfbcc6c7e9808da687b44a8b21d23cc2f80050f8fd457f5a5595226d2008bcded226ab2e75d00ab5592daa23e809e04c2b370af460ae93b7efc32bf174830779058ad75290b9abb59be5f8859001e651c1d4", @ANYRES16, @ANYRESDEC, @ANYRES32, @ANYRESDEC, @ANYRES16, @ANYRES8], 0xb, 0x0, &(0x7f0000000000))

2.691152112s ago: executing program 4 (id=9930):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='ns\x00')
openat$cgroup(r0, &(0x7f0000000180)='syz0\x00', 0x200002, 0x0)

2.422912172s ago: executing program 4 (id=9932):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$ITER_CREATE(0x21, &(0x7f0000000600), 0x8)

2.375888134s ago: executing program 5 (id=9933):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x10004, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000001c0)={0x2, @raw_data="3ba64ef20e50eaf74e56343228a35f692073376e6e8bc64df6b2fdf24368fa0b5ca5da9b3b40ce034e4d726edecb8038508002d6dc31050bf092312cecc3e766a24bf3714949327f8e0379dacebe19e48c604788bd8b1bdc89e8c3c7fd5e68c8b32f43aa3b108968b10015c2ea5e42412355eaae0f5755b65af797317dfe3808f93c22105dc99e4043654b348631be6e3d7ceb3fc86c1244f4208a3eeee6adc5bffef7581d0b6f2e6a5332b9fe290bf91504ee974b1aa05e138386e55f5b1232d202642f573eb60e"})

2.19731277s ago: executing program 4 (id=9935):
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000240)='./file1\x00', 0x0, &(0x7f00000000c0)=ANY=[], 0x1, 0x56f, &(0x7f00000002c0)="$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")
faccessat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x3, 0x1000)

2.131815122s ago: executing program 5 (id=9936):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000002100)={0x2, 0x18, 0x0, 0x0, 0x17, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x0, 0x0, 0xffffffff, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@loopback, @in6=@private1}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x2, @broadcast}}, @sadb_x_kmaddress={0x7, 0x19, 0x0, @in6={0xa, 0x4e23, 0xb, @mcast1}, @in={0x2, 0x0, @multicast2}}]}, 0xb8}}, 0x0)

1.852427732s ago: executing program 5 (id=9939):
r0 = syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000000)='./file1\x00', 0x8c0, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0, 0x441f, &(0x7f0000008940)="$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")
ioctl$FS_IOC_RESVSP(r0, 0x40186f04, &(0x7f0000000200)={0x0, 0x0, 0x39, 0x2})

1.843816073s ago: executing program 4 (id=9940):
r0 = syz_usb_connect(0x3, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x9e, 0x17, 0x36, 0x10, 0x17ef, 0x721e, 0xde06, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x2c, &(0x7f00000002c0)={0x40, 0x14, 0x4, "2b300be5"}, 0x0, 0x0, 0x0, 0x0})

1.496354245s ago: executing program 6 (id=9944):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000900)=@updpolicy={0x17c, 0x19, 0x1, 0x70bd29, 0x25dfdbfb, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffd}, {0x0, 0x5, 0x200000000000}, 0x0, 0x0, 0x1, 0x0, 0x2, 0x2}, [@tmpl={0xc4, 0x5, [{{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4d6, 0x3c}, 0x2, @in6=@ipv4={'\x00', '\xff\xff', @empty}, 0x3507, 0x0, 0x3, 0x10, 0x9, 0x0, 0x10001}, {{@in=@remote, 0x4d6, 0x33}, 0x2, @in=@empty, 0x3505, 0x0, 0x1, 0xae, 0x4, 0x40, 0x200}, {{@in6=@mcast1, 0x4d4, 0x2b}, 0x2, @in6=@empty, 0x0, 0x2, 0x1, 0x6a, 0x7ff, 0x8, 0x5}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)

1.331761311s ago: executing program 3 (id=9945):
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x2c}}, @info_reply={0xd, 0x0, 0x0, 0xfffe}}}}}, 0x0)

1.297443683s ago: executing program 6 (id=9946):
r0 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000100)={0x2, 0xb, 0x1, "a8a0e8d297e9d6014b66296899b2130c2ba530a6eb71a42fce8ef8994793ef7c", 0xd7573a56})

1.172900037s ago: executing program 0 (id=9947):
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000140)='./bus\x00', 0x808808, &(0x7f00000000c0)=ANY=[@ANYBLOB="636f6465706167653d757466382c66696c655f756d61736b3d30303030303030303030303030303030303030303030332c696f636861727365743d63703737352c71756965742c008f7881d185c35a6a28ef06c5b85628f12a02248de249c2a338d049166371583781680d171f47"], 0x1, 0x2f2, &(0x7f0000000400)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x183243, 0x0)

1.09659069s ago: executing program 3 (id=9948):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x70, 0x30, 0xb, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_skbedit={0x58, 0x1, 0x0, 0x0, {{0xc}, {0x48, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8, 0x3}, @TCA_SKBEDIT_PTYPE={0x6, 0x4}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc, 0xa, {0xe4ffffff}}, {0xc, 0x9, {0xf5}}}}]}]}, 0x70}}, 0x0)

1.084515991s ago: executing program 6 (id=9949):
r0 = openat$rfkill(0xffffff9c, &(0x7f0000000040), 0x8402, 0x0)
poll(&(0x7f0000000280)=[{r0, 0x480}], 0x1, 0xf0)

906.922127ms ago: executing program 3 (id=9950):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x5, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x61}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000040)="b9ff033168440372b89e14f00800a25e414debf30a4d5613fdbe33d2889a062eb05f", 0x0, 0x9, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

767.286962ms ago: executing program 0 (id=9951):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_FWMARK={0x8, 0x14, 0x876}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x28001}, 0x8048082)

665.695556ms ago: executing program 3 (id=9952):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
mmap$snddsp(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000001, 0x13, r0, 0x0)

643.005116ms ago: executing program 6 (id=9953):
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0x0)
mount(&(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='romfs\x00', 0x0, 0x0)

516.180491ms ago: executing program 3 (id=9954):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x800, &(0x7f00000002c0)=ANY=[@ANYBLOB='keep_last_dots,sys_tz,keep_last_dots,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uid=', @ANYRESHEX=0xee01, @ANYBLOB=',dmask=00000000000000000000400,iocharset=cp437,time_offset=0x0000000000000006,umask=00000000000000000000017,sys_tz,time_offset=0x0000000000000001,fsuuid=e1c7fa9e-9\f04-330\v-b43d-c1_80c2d,uid=', @ANYRESDEC, @ANYBLOB="2c736d61636b6673726f6f743d7d2d9d272d5c2c6f626a5f757365723d232b2c73696c656e742c666f776e65723d", @ANYRESDEC, @ANYBLOB="2c82c320"], 0x1, 0x152a, &(0x7f0000001f80)="$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")
mount$nfs(&(0x7f0000000300)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\xdd\x98\xb8\rQh#\xfacl\x01\x8cC\x1f|\xa5\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15A\xb5\xbbG\xa0\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f0000000040)='./file0\x00', 0x0, 0x201008, 0x0)

473.469242ms ago: executing program 0 (id=9955):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000002800)={0x1f, 'vlan0\x00'})

362.026897ms ago: executing program 5 (id=9956):
r0 = socket$netlink(0x10, 0x3, 0xc)
sync_file_range(r0, 0x2, 0x2, 0x7)

333.442617ms ago: executing program 6 (id=9957):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x30, 0x10, 0x801, 0x4000000, 0xfffffffc, {0x0, 0x0, 0x4c, 0x0, 0x204e9, 0x500}, [@IFLA_GROUP={0x8}, @IFLA_OPERSTATE={0x5, 0x10, 0x5}]}, 0x30}, 0x1, 0xffffa888}, 0x20000880)

203.975582ms ago: executing program 0 (id=9958):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b6a, &(0x7f0000000000)={0xfeff, 0x200c, 0x2000a, 0x1a, 0x200b, 0x0})

81.855137ms ago: executing program 6 (id=9959):
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x2c}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000000)='Gb', 0x5dc}], 0x1}, 0x480c0)

56.494558ms ago: executing program 3 (id=9960):
r0 = memfd_create(&(0x7f0000000300)='\x00\xc2\xea\x99\xbb\x1c\xdfjw\x97\x05\xa3\xa2\'\xdd\xe4q\xbf\t\x8c\xe0\x19`\x8e\x00\x00\x00\x00\x00\x00\x00\x00\x00\b \xff\x13\x96\xe3?\xdfH\x8c\xe4V\xe2\xfe\v8\x04\xa5\xf6y_w\xd8\xcf\x90k\x05\x00\xf9\x1e\xe8m\x0e\x12\xa015\xc2\xb3u|K\x111\xd4\f8\xeb\x18\xad\xbb!1\x85\x96P\x1b\xa1\x9a\x81\xf8\xb1\xecB)\xe5\xaa7\xfe\xdd,_\x95\x00\x00\x00j^\xaec}\x1a\xb4\x17\xafP\x85I\xd5\xa0I\xb0\xaf\xb5\x8b\\\x05\xd7g\xcbV\x8e\xd0\xac\x87I7\xbd\xc6\x9bI\x92\xb2\x87.\xb3\x1fs\xe7-\xdd+\r\xb4\x117\xa7ei~\xb8\x16\xd1P\xf2\x84\x89K\x16\xd0F|\xa3\x89\xc9~9\x00'/204, 0x6)
fchown(r0, 0x0, 0x0)

7.299919ms ago: executing program 5 (id=9961):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFCONF(r0, 0x8912, 0x0)

0s ago: executing program 0 (id=9962):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x2, 0xa, 0x8, 0x3, 0x2, 0x0, 0x70bd2c, 0x25dfdbfe}, 0x10}}, 0x4)

kernel console output (not intermixed with test programs):

terface 148 altsetting 5 has a duplicate endpoint with address 0x8, skipping
[  898.433490][ T5857] usb 4-1: config 7 interface 148 altsetting 5 has a duplicate endpoint with address 0xD, skipping
[  898.464571][ T5857] usb 4-1: config 7 interface 148 altsetting 5 has a duplicate endpoint with address 0xD, skipping
[  898.496678][ T5857] usb 4-1: config 7 interface 148 altsetting 5 has a duplicate endpoint with address 0x7, skipping
[  898.511409][ T5857] usb 4-1: config 7 interface 148 altsetting 5 has 7 endpoint descriptors, different from the interface descriptor's value: 12
[  898.538807][T23488] netlink: 'syz.4.8208': attribute type 6 has an invalid length.
[  898.547011][ T5857] usb 4-1: config 7 interface 106 has no altsetting 0
[  898.554148][ T5857] usb 4-1: config 7 interface 182 has no altsetting 0
[  898.561841][T23488] netlink: 127868 bytes leftover after parsing attributes in process `syz.4.8208'.
[  898.571342][ T5857] usb 4-1: config 7 interface 148 has no altsetting 0
[  898.602241][ T5857] usb 4-1: New USB device found, idVendor=0424, idProduct=cf30, bcdDevice=c7.5a
[  898.622355][ T5857] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  898.635269][ T5857] usb 4-1: Product: syz
[  898.643982][ T5857] usb 4-1: Manufacturer: syz
[  898.654800][ T5857] usb 4-1: SerialNumber: syz
[  898.727351][T23493] loop0: detected capacity change from 0 to 512
[  898.812945][T23493] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  898.945899][ T5857] usb 4-1: USB disconnect, device number 71
[  899.001176][T23493] EXT4-fs error (device loop0): ext4_get_first_dir_block:3583: inode #12: comm syz.0.8210: Directory hole found for htree leaf block 0
[  899.162286][ T4269] EXT4-fs (loop0): unmounting filesystem.
[  900.052551][T23514] loop1: detected capacity change from 0 to 32768
[  900.193795][T23514] XFS (loop1): Mounting V5 Filesystem
[  900.206641][T23518] loop0: detected capacity change from 0 to 32768
[  900.351903][   T26] kauditd_printk_skb: 7 callbacks suppressed
[  900.351918][   T26] audit: type=1326 audit(51107844.170:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23554 comm="syz.4.8235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f243479c819 code=0x7ffc0000
[  900.358384][T23518] jfs_strtoUCS: char2uni returned -22.
[  900.380128][    C1] vkms_vblank_simulate: vblank timer overrun
[  900.412221][T23514] XFS (loop1): Ending clean mount
[  900.442577][T23518] charset = cp932, char = 0xfc
[  900.491073][   T26] audit: type=1326 audit(51107844.198:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23554 comm="syz.4.8235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f243479c819 code=0x7ffc0000
[  900.623604][ T4280] XFS (loop1): Unmounting Filesystem
[  900.638133][   T26] audit: type=1326 audit(51107844.198:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23554 comm="syz.4.8235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f243479c819 code=0x7ffc0000
[  900.752488][   T26] audit: type=1326 audit(51107844.198:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23554 comm="syz.4.8235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f243479c819 code=0x7ffc0000
[  900.912849][T23566] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8243'.
[  900.963845][T23570] netlink: 'syz.4.8245': attribute type 1 has an invalid length.
[  901.176351][T23574] tmpfs: Bad value for 'mpol'
[  901.205671][T23576] QAT: Stopping all acceleration devices.
[  901.227802][ T8909] usb 4-1: new high-speed USB device number 72 using dummy_hcd
[  901.426034][ T8909] usb 4-1: Using ep0 maxpacket: 32
[  901.438249][ T8909] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16
[  901.486499][ T8909] usb 4-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=3f.5a
[  901.511516][ T8909] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  901.519568][ T8909] usb 4-1: Product: syz
[  901.555288][ T8909] usb 4-1: Manufacturer: syz
[  901.560066][ T8909] usb 4-1: SerialNumber: syz
[  901.573812][T23591] program syz.0.8254 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  901.597374][ T8909] usb 4-1: config 0 descriptor??
[  901.603111][T23569] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  901.764282][T23597] loop4: detected capacity change from 0 to 8
[  901.839157][T23597] SQUASHFS error: Failed to read block 0x6fc: -5
[  901.850806][T23597] SQUASHFS error: Unable to read metadata cache entry [6fa]
[  901.864805][T23569] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  901.914993][ T8909] net1080 4-1:0.0 usb0: register 'net1080' at usb-dummy_hcd.3-1, NetChip TurboCONNECT, de:12:45:34:66:b7
[  902.133694][ T4378] usb 4-1: USB disconnect, device number 72
[  902.140532][ T4378] net1080 4-1:0.0 usb0: unregister 'net1080' usb-dummy_hcd.3-1, NetChip TurboCONNECT
[  902.818401][   T26] audit: type=1326 audit(51107846.471:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23638 comm="syz.5.8276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  902.894736][   T26] audit: type=1326 audit(51107846.471:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23638 comm="syz.5.8276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  902.997962][   T26] audit: type=1326 audit(51107846.471:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23638 comm="syz.5.8276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  903.045913][T23647] loop4: detected capacity change from 0 to 256
[  903.082974][   T26] audit: type=1326 audit(51107846.471:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23638 comm="syz.5.8276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  903.197168][   T26] audit: type=1326 audit(51107846.471:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23638 comm="syz.5.8276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  903.295108][   T26] audit: type=1326 audit(51107846.471:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23638 comm="syz.5.8276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  903.423259][T23660] loop0: detected capacity change from 0 to 64
[  903.425124][ T8909] usb 4-1: new full-speed USB device number 73 using dummy_hcd
[  903.662180][ T8909] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  903.692228][ T8909] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  903.725254][ T8909] usb 4-1: config 0 descriptor??
[  903.747430][ T8909] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  904.035223][T23677] netlink: 56 bytes leftover after parsing attributes in process `syz.0.8290'.
[  904.176335][ T8909] gp8psk: usb in 128 operation failed.
[  904.182692][ T8909] gp8psk: usb in 137 operation failed.
[  904.192588][T23682] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8292'.
[  904.207982][ T8909] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  904.240865][T23679] loop4: detected capacity change from 0 to 4096
[  904.249444][ T8909] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  904.299415][ T8909] usb 4-1: USB disconnect, device number 73
[  904.374500][T23679] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  904.900800][T23702] loop5: detected capacity change from 0 to 512
[  904.956651][T23704] device veth3 entered promiscuous mode
[  905.030987][T23702] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.8299: inode has both inline data and extents flags
[  905.083524][T23702] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.8299: couldn't read orphan inode 15 (err -117)
[  905.153176][T23716] program syz.4.8304 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  905.163205][T23702] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  905.339932][T21244] EXT4-fs (loop5): unmounting filesystem.
[  906.151264][   T34] usb 2-1: new high-speed USB device number 68 using dummy_hcd
[  906.184851][T23760] loop0: detected capacity change from 0 to 256
[  906.238667][T23764] Scaler: =================  START STATUS  =================
[  906.246095][T23764] Scaler: ==================  END STATUS  ==================
[  906.312416][T23760] FAT-fs (loop0): Directory bread(block 64) failed
[  906.333034][T23760] FAT-fs (loop0): Directory bread(block 65) failed
[  906.349217][T23760] FAT-fs (loop0): Directory bread(block 66) failed
[  906.357549][T23760] FAT-fs (loop0): Directory bread(block 67) failed
[  906.365577][T23760] FAT-fs (loop0): Directory bread(block 68) failed
[  906.379820][   T34] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  906.397682][T23760] FAT-fs (loop0): Directory bread(block 69) failed
[  906.404381][   T34] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  906.415291][T23760] FAT-fs (loop0): Directory bread(block 70) failed
[  906.426008][   T34] usb 2-1: Product: syz
[  906.447566][   T34] usb 2-1: Manufacturer: syz
[  906.454584][T23768] loop5: detected capacity change from 0 to 4096
[  906.466404][T23760] FAT-fs (loop0): Directory bread(block 71) failed
[  906.473348][   T34] usb 2-1: SerialNumber: syz
[  906.481932][   T34] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  906.501842][T23760] FAT-fs (loop0): Directory bread(block 72) failed
[  906.529702][T23760] FAT-fs (loop0): Directory bread(block 73) failed
[  906.541925][   T34] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  906.556598][T23768] __ntfs_error: 3 callbacks suppressed
[  906.556616][T23768] ntfs: (device loop5): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  906.696500][T23768] ntfs: (device loop5): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  906.769608][T23768] ntfs: (device loop5): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  906.808118][T23768] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  906.890660][T23768] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  906.994975][T23768] ntfs: volume version 3.1.
[  907.015013][T23768] ntfs: (device loop5): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  907.059656][ T4346] usb 2-1: USB disconnect, device number 68
[  907.062992][T23768] ntfs: (device loop5): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  907.097460][T23768] ntfs: (device loop5): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  907.119577][T23768] ntfs: (device loop5): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  907.131923][T23768] ntfs: (device loop5): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  907.413676][T23791] Process accounting resumed
[  907.529899][T23797] netlink: 'syz.3.8342': attribute type 27 has an invalid length.
[  907.567417][T23797] netlink: 'syz.3.8342': attribute type 3 has an invalid length.
[  907.601725][T23797] netlink: 132 bytes leftover after parsing attributes in process `syz.3.8342'.
[  907.632786][T23799] loop0: detected capacity change from 0 to 4096
[  907.667124][T23801] loop4: detected capacity change from 0 to 256
[  907.675223][T23799] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512)
[  907.684541][   T34] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  907.705854][   T34] ath9k_htc: Failed to initialize the device
[  907.724304][ T4346] usb 2-1: ath9k_htc: USB layer deinitialized
[  907.778045][T23805] loop1: detected capacity change from 0 to 64
[  907.811442][T23801] FAT-fs (loop4): Directory bread(block 64) failed
[  907.855735][T23801] FAT-fs (loop4): Directory bread(block 65) failed
[  907.915211][T23801] FAT-fs (loop4): Directory bread(block 66) failed
[  907.943634][T23801] FAT-fs (loop4): Directory bread(block 67) failed
[  907.965348][T23801] FAT-fs (loop4): Directory bread(block 68) failed
[  907.965386][T23801] FAT-fs (loop4): Directory bread(block 69) failed
[  907.965461][T23801] FAT-fs (loop4): Directory bread(block 70) failed
[  907.965489][T23801] FAT-fs (loop4): Directory bread(block 71) failed
[  907.965557][T23801] FAT-fs (loop4): Directory bread(block 72) failed
[  907.965584][T23801] FAT-fs (loop4): Directory bread(block 73) failed
[  908.000468][T23801] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  908.108514][T23813] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  908.166922][T23813] overlayfs: missing 'lowerdir'
[  908.664363][T23833] netlink: 68 bytes leftover after parsing attributes in process `syz.4.8359'.
[  908.694957][T23833] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8359'.
[  908.748996][T23833] netlink: 40 bytes leftover after parsing attributes in process `syz.4.8359'.
[  908.758287][T23833] netlink: 40 bytes leftover after parsing attributes in process `syz.4.8359'.
[  909.024042][T23847] netlink: 212 bytes leftover after parsing attributes in process `syz.5.8365'.
[  910.111047][T23888] loop5: detected capacity change from 0 to 512
[  910.182117][T23888] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  910.313575][T23888] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  910.399587][T23905] loop4: detected capacity change from 0 to 64
[  910.442300][T21244] EXT4-fs (loop5): unmounting filesystem.
[  910.696836][T23913] sock: sock_timestamping_bind_phc: sock not bind to device
[  910.893636][T23921] loop5: detected capacity change from 0 to 512
[  910.940689][T23921] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  911.060684][T23921] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  911.177394][T23921] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.8399: bg 0: block 248: padding at end of block bitmap is not set
[  911.201361][T23939] netlink: 'syz.4.8409': attribute type 21 has an invalid length.
[  911.224791][T23939] netlink: 'syz.4.8409': attribute type 6 has an invalid length.
[  911.282891][T23921] EXT4-fs error (device loop5): ext4_acquire_dquot:6835: comm syz.5.8399: Failed to acquire dquot type 1
[  911.349939][T23921] EXT4-fs (loop5): 1 truncate cleaned up
[  911.355750][T23921] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  911.455004][T23949] netlink: 'syz.3.8411': attribute type 1 has an invalid length.
[  911.555335][T21244] EXT4-fs (loop5): unmounting filesystem.
[  911.570111][T23951] loop0: detected capacity change from 0 to 1024
[  911.602158][T23953] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8414'.
[  911.622077][T23951] EXT4-fs: Ignoring removed oldalloc option
[  911.745433][T23951] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  911.813521][T23951] EXT4-fs error (device loop0): ext4_generic_delete_entry:2729: inode #2: block 16: comm syz.0.8413: bad entry in directory: inode out of bounds - offset=12, inode=1282, rec_len=12, size=1024 fake=1
[  911.886641][T23951] EXT4-fs error (device loop0) in ext4_delete_entry:2800: Corrupt filesystem
[  911.896972][T23951] EXT4-fs warning (device loop0): ext4_rename_delete:3778: inode #2: comm syz.0.8413: Deleting old file: nlink 4, error=-117
[  911.908828][T23959] loop5: detected capacity change from 0 to 4096
[  912.019324][T23963] netlink: 'syz.3.8418': attribute type 8 has an invalid length.
[  912.020832][T23961] loop1: detected capacity change from 0 to 4096
[  912.066570][T23961] ntfs3: loop1: Different NTFS' sector size (1024) and media sector size (512)
[  912.167430][ T4269] EXT4-fs (loop0): unmounting filesystem.
[  912.474855][T23948] loop4: detected capacity change from 0 to 40427
[  912.544621][T23948] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  912.595899][T23948] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  912.659459][T23948] F2FS-fs (loop4): build fault injection attr: rate: 2, type: 0x3ffff
[  912.723953][T23948] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x1f8
[  912.811317][T23948] F2FS-fs (loop4): invalid crc value
[  912.860915][T23948] F2FS-fs (loop4): Found nat_bits in checkpoint
[  912.977853][T23989] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8428'.
[  913.063993][T23948] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  913.118957][T23948] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  913.160096][T23948] F2FS-fs (loop4) : inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xd6/0x1c0
[  913.164998][T23994] netlink: 'syz.5.8431': attribute type 1 has an invalid length.
[  913.234807][T23994] netlink: 'syz.5.8431': attribute type 1 has an invalid length.
[  913.269998][T23994] netlink: 180 bytes leftover after parsing attributes in process `syz.5.8431'.
[  913.313480][T23994] NCSI netlink: No device for ifindex 2151022881
[  913.478626][T24002] Cannot find del_set index 43 as target
[  913.499003][T24004] xt_hashlimit: size too large, truncated to 1048576
[  913.545490][T24004] xt_hashlimit: invalid rate
[  914.091076][T24022] ip6t_rpfilter: unknown options
[  914.168182][T24019] set_capacity_and_notify: 1 callbacks suppressed
[  914.168199][T24019] loop4: detected capacity change from 0 to 4096
[  914.219775][T24019] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  914.317731][T24019] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[  914.458005][   T46] ntfs3: loop4: ntfs3_write_inode r=3 failed, -22.
[  914.464677][ T4270] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[  914.479075][ T4270] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  914.489834][ T4270] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[  914.515135][   T46] ntfs3: loop4: ntfs3_write_inode r=3 failed, -22.
[  914.536983][ T4270] ntfs3: loop4: ntfs_evict_inode r=3 failed, -22.
[  914.557397][T24036] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8452'.
[  914.573003][T24036] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8452'.
[  914.595142][T24036] netlink: 48 bytes leftover after parsing attributes in process `syz.3.8452'.
[  914.894302][T24051] loop1: detected capacity change from 0 to 512
[  914.938548][T24043] loop4: detected capacity change from 0 to 8192
[  915.065845][T24059] netlink: 'syz.0.8462': attribute type 21 has an invalid length.
[  915.080181][T24051] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  915.098986][T24059] netlink: 128 bytes leftover after parsing attributes in process `syz.0.8462'.
[  915.137997][T24059] netlink: 3 bytes leftover after parsing attributes in process `syz.0.8462'.
[  915.248013][T24067] netlink: 'syz.4.8466': attribute type 2 has an invalid length.
[  915.467342][ T4280] EXT4-fs (loop1): unmounting filesystem.
[  916.574650][    T7] usb 1-1: new high-speed USB device number 73 using dummy_hcd
[  916.686909][T24126] loop4: detected capacity change from 0 to 1024
[  916.726978][T24126] EXT4-fs: Ignoring removed orlov option
[  916.799304][    T7] usb 1-1: Using ep0 maxpacket: 8
[  916.814109][    T7] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  916.846732][T24126] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  916.879997][    T7] usb 1-1: New USB device found, idVendor=0421, idProduct=798f, bcdDevice=86.54
[  916.915654][T24126] EXT4-fs error (device loop4): __ext4_iget:5091: inode #15: block 1803188595: comm syz.4.8495: invalid block
[  916.959464][    T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  916.976422][    T7] usb 1-1: Product: syz
[  916.976443][    T7] usb 1-1: Manufacturer: syz
[  916.976458][    T7] usb 1-1: SerialNumber: syz
[  916.978218][    T7] usb 1-1: config 0 descriptor??
[  916.979831][    T7] cdc_phonet 1-1:0.0: skipping garbage
[  917.034546][ T4270] EXT4-fs (loop4): unmounting filesystem.
[  917.059798][    T7] cdc_phonet: probe of 1-1:0.0 failed with error -22
[  917.199732][ T4378] usb 1-1: USB disconnect, device number 73
[  917.415640][T24156] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8509'.
[  917.734390][T24171] netlink: 36 bytes leftover after parsing attributes in process `syz.3.8516'.
[  918.000624][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  918.000640][   T26] audit: type=1326 audit(51107860.680:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.043875][   T26] audit: type=1326 audit(51107860.717:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.131174][   T26] audit: type=1326 audit(51107860.717:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.180007][   T26] audit: type=1326 audit(51107860.717:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.208650][   T26] audit: type=1326 audit(51107860.717:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.240452][ T4346] usb 5-1: new high-speed USB device number 75 using dummy_hcd
[  918.241758][   T26] audit: type=1326 audit(51107860.717:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.355707][   T26] audit: type=1326 audit(51107860.717:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.438176][   T26] audit: type=1326 audit(51107860.745:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.457645][ T4346] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  918.495726][   T26] audit: type=1326 audit(51107860.745:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24185 comm="syz.0.8525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  918.514663][ T4346] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  918.541550][ T4346] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  918.591409][ T4346] usb 5-1: config 0 descriptor??
[  918.680702][T24209] netlink: 60 bytes leftover after parsing attributes in process `syz.0.8535'.
[  918.690051][T24209] unsupported nlmsg_type 40
[  919.034007][ T4346] ath6kl: Failed to read usb control message: -71
[  919.044021][ T4346] ath6kl: Unable to read the bmi data from the device: -71
[  919.053541][ T4346] ath6kl: Unable to recv target info: -71
[  919.087355][ T4346] ath6kl: Failed to init ath6kl core: -71
[  919.098125][T24206] loop5: detected capacity change from 0 to 32768
[  919.151260][ T4346] ath6kl_usb: probe of 5-1:0.0 failed with error -71
[  919.215474][ T4346] usb 5-1: USB disconnect, device number 75
[  919.228013][T24206] XFS (loop5): Mounting V5 Filesystem
[  919.373484][T24206] XFS (loop5): Ending clean mount
[  919.388914][T24204] loop1: detected capacity change from 0 to 32768
[  919.423899][T24206] XFS (loop5): Quotacheck needed: Please wait.
[  919.431973][T24204] XFS (loop1): Mounting V5 Filesystem
[  919.529887][T24204] XFS (loop1): Ending clean mount
[  919.538101][T24241] netlink: 'syz.3.8543': attribute type 29 has an invalid length.
[  919.563529][    T7] XFS (loop1): Corruption warning: Metadata has LSN (2:16) ahead of current LSN (1:112). Please unmount and run xfs_repair (>= v4.3) to resolve.
[  919.591417][T24241] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8543'.
[  919.606961][    T7] XFS (loop1): Metadata CRC error detected at xfs_inobt_read_verify+0x3a/0xd0, xfs_finobt block 0x20 
[  919.610993][T24241] netlink: 'syz.3.8543': attribute type 29 has an invalid length.
[  919.620581][    T7] XFS (loop1): Unmount and run xfs_repair
[  919.634933][    T7] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  919.643048][    T7] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  919.674482][    T7] 00000010: 00 00 00 00 00 00 00 20 00 00 00 02 00 00 00 10  ....... ........
[  919.695198][    T7] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  919.713768][    T7] 00000030: 00 00 00 00 ca b4 20 ce 00 00 11 40 00 00 40 37  ...... ....@..@7
[  919.733459][    T7] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  919.752942][    T7] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  919.760284][T24241] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8543'.
[  919.772184][    T7] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  919.788936][    T7] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  919.803900][T24204] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1db/0x2d0" at daddr 0x20 len 8 error 74
[  919.817471][T24206] XFS (loop5): Quotacheck: Done.
[  919.869816][T24204] XFS (loop1): Failed to initialize disk quotas.
[  919.968733][T21244] XFS (loop5): Unmounting Filesystem
[  920.134870][ T4280] XFS (loop1): Unmounting Filesystem
[  920.213440][T24256] overlayfs: missing 'lowerdir'
[  920.521773][T24266] program syz.4.8556 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  920.930228][T24284] netlink: 'syz.1.8564': attribute type 24 has an invalid length.
[  921.027370][T24288] loop0: detected capacity change from 0 to 512
[  921.066730][T24288] EXT4-fs: Ignoring removed bh option
[  921.145811][T24288] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  921.198669][T24294] netlink: 'syz.4.8570': attribute type 21 has an invalid length.
[  921.220565][T24294] IPv6: NLM_F_CREATE should be specified when creating new route
[  921.240116][T24294] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  921.247425][T24294] IPv6: NLM_F_CREATE should be set when creating new route
[  921.254771][T24294] IPv6: NLM_F_CREATE should be set when creating new route
[  921.262136][T24294] IPv6: NLM_F_CREATE should be set when creating new route
[  921.271939][T24291] loop3: detected capacity change from 0 to 4096
[  921.305671][T24291] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[  921.325837][T24288] EXT4-fs error (device loop0): ext4_iget_extra_inode:4752: inode #15: comm syz.0.8567: corrupted in-inode xattr
[  921.359096][T24288] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.8567: couldn't read orphan inode 15 (err -117)
[  921.400428][T24288] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  921.434282][T24291] ntfs3: loop3: ntfs_set_state r=3 failed, -22.
[  921.635166][ T4269] EXT4-fs (loop0): unmounting filesystem.
[  921.743709][ T4319] ntfs3: loop3: ntfs3_write_inode r=3 failed, -22.
[  921.765782][ T4268] ntfs3: loop3: ntfs_set_state r=3 failed, -22.
[  921.774046][ T4268] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  921.807909][ T4268] ntfs3: loop3: ntfs_set_state r=3 failed, -22.
[  921.841402][   T30] ntfs3: loop3: ntfs3_write_inode r=3 failed, -22.
[  921.877733][ T4268] ntfs3: loop3: ntfs_evict_inode r=3 failed, -22.
[  921.946234][T24313] loop1: detected capacity change from 0 to 64
[  922.229857][T24324] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0)
[  922.240224][T24316] loop3: detected capacity change from 0 to 8192
[  922.260504][T24324] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[  922.349442][T24316] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  922.366336][T24316] FAT-fs (loop3): Filesystem has been set read-only
[  922.380565][T24316] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  922.389673][T24316] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  922.399747][T24316] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  922.419729][T24316] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  922.475066][T24316] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  922.502626][T24316] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  922.539906][ T5857] usb 5-1: new high-speed USB device number 76 using dummy_hcd
[  922.559855][   T26] audit: type=1800 audit(51107864.936:180): pid=24316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.8576" name="file2" dev="loop3" ino=1048623 res=0 errno=0
[  922.559985][T24333] netlink: 76 bytes leftover after parsing attributes in process `syz.0.8587'.
[  922.592371][T24316] syz.3.8576 (24316) used greatest stack depth: 19280 bytes left
[  922.623688][T24337] mmap: syz.5.8588 (24337): VmData 175874048 exceed data ulimit 9. Update limits or use boot option ignore_rlimit_data.
[  922.753609][ T5857] usb 5-1: Using ep0 maxpacket: 16
[  922.760441][ T5857] usb 5-1: config 252 has an invalid interface number: 15 but max is 0
[  922.807104][ T5857] usb 5-1: config 252 has no interface number 0
[  922.837462][ T5857] usb 5-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=2b.29
[  922.859459][ T5857] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  922.876721][T24345] openvswitch: netlink: Missing key (keys=40, expected=80)
[  922.886120][ T5857] usb 5-1: Product: syz
[  922.890300][ T5857] usb 5-1: Manufacturer: syz
[  922.911212][ T5857] usb 5-1: SerialNumber: syz
[  923.003878][T24343] loop1: detected capacity change from 0 to 4096
[  923.042965][ T5857] usb 5-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  923.081516][T24343] ntfs3: loop1: Different NTFS' sector size (2048) and media sector size (512)
[  923.182472][ T4319] usb 5-1: Failed to submit usb control message: -71
[  923.182603][ T4346] usb 5-1: USB disconnect, device number 76
[  923.189883][ T4319] usb 5-1: unable to send the bmi data to the device: -71
[  923.284113][ T4319] usb 5-1: unable to get target info from device
[  923.305034][ T4319] usb 5-1: could not get target info (-71)
[  923.325977][ T4319] usb 5-1: could not probe fw (-71)
[  923.729900][T24373] can: request_module (can-proto-3) failed.
[  923.772183][T24385] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  923.788555][T24385] comedi comedi3: 8255: I/O port conflict (0x7,4)
[  923.833134][T24385] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[  923.869704][T24385] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  923.908579][T24385] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  923.915150][T24385] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  923.946040][T24385] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  924.290514][T24402] loop4: detected capacity change from 0 to 4096
[  924.392725][T24408] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8618'.
[  924.432205][T24408] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8618'.
[  926.024368][T24486] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  926.563112][T24509] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8668'.
[  926.920237][T24520] loop4: detected capacity change from 0 to 4096
[  926.928173][T24484] loop0: detected capacity change from 0 to 40427
[  926.958772][T24484] F2FS-fs (loop0): invalid crc value
[  926.980612][T24520] EXT4-fs: Ignoring removed mblk_io_submit option
[  927.011390][ T1275] ieee802154 phy0 wpan0: encryption failed: -22
[  927.017760][ T1275] ieee802154 phy1 wpan1: encryption failed: -22
[  927.043090][T24484] F2FS-fs (loop0): Found nat_bits in checkpoint
[  927.062223][T24520] EXT4-fs (loop4): Test dummy encryption mode enabled
[  927.115244][T24527] loop5: detected capacity change from 0 to 4096
[  927.124941][T24527] ntfs3: loop5: Different NTFS' sector size (2048) and media sector size (512)
[  927.143444][T24520] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  927.263471][T24484] F2FS-fs (loop0): Start checkpoint disabled!
[  927.308098][ T4346] usb 2-1: new full-speed USB device number 69 using dummy_hcd
[  927.382910][T24484] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  927.417241][ T4270] EXT4-fs (loop4): unmounting filesystem.
[  927.497323][T24484] F2FS-fs (loop0): disabling checkpoint not compatible with read-only
[  927.512730][ T4346] usb 2-1: config 0 has an invalid interface number: 3 but max is 2
[  927.520849][ T4346] usb 2-1: config 0 has an invalid interface number: 176 but max is 2
[  927.588085][ T4346] usb 2-1: config 0 has no interface number 1
[  927.617577][ T4346] usb 2-1: config 0 has no interface number 2
[  927.643469][ T4346] usb 2-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  927.684349][ T4346] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  927.730238][ T4346] usb 2-1: config 0 descriptor??
[  927.815977][T24550] netlink: set zone limit has 4 unknown bytes
[  927.979293][ T4346] usb 2-1: Could not set interface, error -71
[  928.019236][ T4346] usb 2-1: USB disconnect, device number 69
[  928.077815][T24560] netlink: 132 bytes leftover after parsing attributes in process `syz.4.8692'.
[  928.291193][T24568] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8695'.
[  928.328589][T24570] netlink: 'syz.5.8696': attribute type 1 has an invalid length.
[  928.608881][T24582] exfat: Deprecated parameter 'debug'
[  928.630563][T24582] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  928.693882][T24582] exFAT-fs (loop4): unable to read boot sector
[  928.705480][T24582] exFAT-fs (loop4): failed to read boot sector
[  928.736020][T24582] exFAT-fs (loop4): failed to recognize exfat type
[  929.015864][T24600] loop4: detected capacity change from 0 to 1024
[  929.066926][T24600] EXT4-fs error (device loop4): ext4_map_blocks:745: inode #3: block 5: comm syz.4.8709: lblock 5 mapped to illegal pblock 5 (length 1)
[  929.153826][T24600] Quota error (device loop4): write_blk: dquota write failed
[  929.167743][T24600] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  929.178044][T24600] EXT4-fs error (device loop4): ext4_acquire_dquot:6835: comm syz.4.8709: Failed to acquire dquot type 0
[  929.196179][T24600] EXT4-fs error (device loop4): ext4_free_blocks:6220: comm syz.4.8709: Freeing blocks not in datazone - block = 0, count = 4096
[  929.213497][T24600] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.8709: Invalid inode bitmap blk 0 in block_group 0
[  929.237171][T24600] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem
[  929.265615][   T30] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 5: comm kworker/u4:2: lblock 5 mapped to illegal pblock 5 (length 1)
[  929.286158][T24600] EXT4-fs (loop4): 1 orphan inode deleted
[  929.291999][T24600] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  929.327651][   T30] Quota error (device loop4): remove_tree: Can't read quota data block 5
[  929.342263][   T30] EXT4-fs error (device loop4): ext4_release_dquot:6871: comm kworker/u4:2: Failed to release dquot type 0
[  929.384594][T24600] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[  929.529294][ T4270] EXT4-fs (loop4): unmounting filesystem.
[  929.668048][T24625] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8721'.
[  929.713099][T24625] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8721'.
[  929.763940][T24629] loop1: detected capacity change from 0 to 1764
[  929.770466][T24631] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8724'.
[  929.880501][T24629] CIFS mount error: No usable UNC path provided in device string!
[  929.880501][T24629] 
[  929.916335][T24629] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  930.097026][T24642] netlink: 'syz.3.8729': attribute type 17 has an invalid length.
[  930.141300][T24642] netlink: 148 bytes leftover after parsing attributes in process `syz.3.8729'.
[  930.292572][T24651] tmpfs: Bad value for 'mpol'
[  931.243193][   T26] audit: type=1400 audit(51107873.067:181): apparmor="DENIED" operation="stack_onexec" info="label not found" error=-2 profile="unconfined" name=":(%#{//(@\)//&@},['%%&\#*" pid=24692 comm="syz.4.8751"
[  931.339730][T24698] loop5: detected capacity change from 0 to 1024
[  931.380361][T24702] xt_policy: output policy not valid in PREROUTING and INPUT
[  931.620256][T24707] loop4: detected capacity change from 0 to 1024
[  931.657740][T24711] futex_wake_op: syz.5.8760 tries to shift op by -1; fix this program
[  931.772034][T24707] hfsplus: trying to free free bnode 0(1)
[  931.950259][   T75] hfsplus: b-tree write err: -5, ino 25
[  931.999164][   T75] hfsplus: b-tree write err: -5, ino 4
[  932.030836][   T75] hfsplus: b-tree write err: -5, ino 2
[  932.038204][T24723] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8766'.
[  932.049097][T24723] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8766'.
[  932.106607][T24723] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8766'.
[  932.137170][T24725] netlink: 132 bytes leftover after parsing attributes in process `syz.3.8765'.
[  932.249371][T24731] netlink: 220 bytes leftover after parsing attributes in process `syz.5.8770'.
[  932.527522][T24741] loop1: detected capacity change from 0 to 8
[  932.620246][T24741] SQUASHFS error: Failed to read block 0x2d7: -5
[  932.641802][T24741] SQUASHFS error: Unable to read metadata cache entry [2d5]
[  932.683975][T24741] SQUASHFS error: Failed to read block 0x85: -5
[  932.727427][T24741] SQUASHFS error: Failed to read block 0x85: -5
[  932.748410][   T26] audit: type=1800 audit(51107874.461:182): pid=24741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.8775" name="file1" dev="loop1" ino=5 res=0 errno=0
[  933.398270][T24766] loop3: detected capacity change from 0 to 256
[  933.446770][T24763] loop5: detected capacity change from 0 to 4096
[  933.477684][T24766] FAT-fs (loop3): Directory bread(block 64) failed
[  933.493553][T24763] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[  933.503671][T24766] FAT-fs (loop3): Directory bread(block 65) failed
[  933.532401][T24727] loop4: detected capacity change from 0 to 40427
[  933.535710][T24766] FAT-fs (loop3): Directory bread(block 66) failed
[  933.591136][T24727] F2FS-fs (loop4): invalid crc value
[  933.599263][T24766] FAT-fs (loop3): Directory bread(block 67) failed
[  933.641162][T24763] ntfs3: loop5: failed to convert "c46c" to macromanian
[  933.658185][T24766] FAT-fs (loop3): Directory bread(block 68) failed
[  933.661448][T24727] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  933.683363][T24766] FAT-fs (loop3): Directory bread(block 69) failed
[  933.719829][T24766] FAT-fs (loop3): Directory bread(block 70) failed
[  933.760943][T24766] FAT-fs (loop3): Directory bread(block 71) failed
[  933.808083][T24766] FAT-fs (loop3): Directory bread(block 72) failed
[  933.814706][T24766] FAT-fs (loop3): Directory bread(block 73) failed
[  933.971114][T24727] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[  933.987215][T24779] netlink: 'syz.0.8792': attribute type 26 has an invalid length.
[  934.006650][T24727] F2FS-fs (loop4): Start checkpoint disabled!
[  934.050035][T24727] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  934.174723][ T5857] usb 2-1: new full-speed USB device number 70 using dummy_hcd
[  934.221349][T24784] loop3: detected capacity change from 0 to 64
[  934.344046][T24786] loop0: detected capacity change from 0 to 4096
[  934.392471][T24786] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  934.405625][ T5857] usb 2-1: New USB device found, idVendor=0a2c, idProduct=0008, bcdDevice=c7.b3
[  934.430669][ T5857] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  934.460065][ T5857] usb 2-1: Product: syz
[  934.479373][ T5857] usb 2-1: Manufacturer: syz
[  934.492827][ T5857] usb 2-1: SerialNumber: syz
[  934.545700][ T5857] usb 2-1: config 0 descriptor??
[  934.557592][T24786] ntfs3: loop0: failed to convert "c46c" to macgreek
[  934.566541][ T5857] cypress_cy7c63 2-1:0.0: Cypress CY7C63xxx device now attached
[  934.596472][T24792] loop5: detected capacity change from 0 to 128
[  934.668925][T24792] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  934.720663][T24792] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  934.774540][   T14] usb 2-1: USB disconnect, device number 70
[  934.783606][   T14] cypress_cy7c63 2-1:0.0: Cypress CY7C63xxx device now disconnected
[  934.875795][T24794] loop4: detected capacity change from 0 to 1024
[  935.514197][   T46] hfsplus: b-tree write err: -5, ino 25
[  935.550679][   T46] hfsplus: b-tree write err: -5, ino 4
[  935.556292][   T46] hfsplus: b-tree write err: -5, ino 2
[  935.682931][T24802] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8800'.
[  935.731489][T24804] QAT: Invalid ioctl 1075883590
[  935.761515][T24804] QAT: Invalid ioctl 1075883590
[  935.785919][T24804] QAT: Invalid ioctl 1075883590
[  935.807466][T24804] QAT: Invalid ioctl 1075883590
[  935.815718][T24809] sctp: [Deprecated]: syz.1.8807 (pid 24809) Use of int in maxseg socket option.
[  935.815718][T24809] Use struct sctp_assoc_value instead
[  935.839171][T24804] QAT: Invalid ioctl 1075883590
[  935.845551][T24804] QAT: Invalid ioctl 1075883590
[  935.866266][T24804] QAT: Invalid ioctl 1075883590
[  935.889137][T24804] QAT: Invalid ioctl 1075883590
[  935.924064][T24804] QAT: Invalid ioctl 1075883590
[  935.931798][T24804] QAT: Invalid ioctl 1075883590
[  936.576701][T24842] netlink: 'syz.5.8824': attribute type 32 has an invalid length.
[  936.832968][T24851] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  936.847931][   T26] audit: type=1326 audit(51107878.305:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24855 comm="syz.3.8830" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9afd99c819 code=0x0
[  936.967099][T24860] IPv6: sit2: Disabled Multicast RS
[  937.123919][T24862] loop4: detected capacity change from 0 to 4096
[  937.134928][T24862] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  937.231284][T24862] ntfs3: loop4: failed to convert "c46c" to cp1251
[  937.352285][T24872] netlink: 'syz.1.8839': attribute type 1 has an invalid length.
[  937.401375][T24872] netlink: 224 bytes leftover after parsing attributes in process `syz.1.8839'.
[  937.966544][T24902] xt_socket: unknown flags 0x50
[  937.973369][T24900] loop4: detected capacity change from 0 to 1024
[  938.129721][T24908] IPv6: NLM_F_CREATE should be specified when creating new route
[  938.166995][T24910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8857'.
[  938.220823][T24910] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8857'.
[  938.852046][T24941] loop4: detected capacity change from 0 to 256
[  938.890654][T24941] exfat: Deprecated parameter 'utf8'
[  938.905620][T24941] exfat: Deprecated parameter 'utf8'
[  938.937336][T24941] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  938.999131][T24944] netlink: 272 bytes leftover after parsing attributes in process `syz.5.8874'.
[  939.280686][T24958] netlink: 830 bytes leftover after parsing attributes in process `syz.4.8878'.
[  939.534011][T24962] Process accounting paused
[  939.707944][T24978] loop1: detected capacity change from 0 to 8
[  939.718381][T24976] netlink: 'syz.0.8890': attribute type 6 has an invalid length.
[  939.773452][T24978] SQUASHFS error: Failed to read block 0x71: -5
[  939.816195][   T26] audit: type=1800 audit(51107881.074:184): pid=24978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.8891" name="file0" dev="loop1" ino=1 res=0 errno=0
[  940.176336][T24991] Cannot find del_set index 4 as target
[  940.259987][T24996] loop3: detected capacity change from 0 to 512
[  940.301658][T24996] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  940.345208][T24996] EXT4-fs (loop3): orphan cleanup on readonly fs
[  940.377244][T24996] Quota error (device loop3): dq_insert_tree: Quota tree root isn't allocated!
[  940.467729][T24996] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota
[  940.510769][T24996] EXT4-fs error (device loop3): ext4_acquire_dquot:6835: comm syz.3.8900: Failed to acquire dquot type 1
[  940.569453][T24996] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.8900: bg 0: block 40: padding at end of block bitmap is not set
[  940.625140][T24973] loop4: detected capacity change from 0 to 40427
[  940.638736][T24996] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6180: Corrupt filesystem
[  940.677641][T24996] EXT4-fs (loop3): 1 truncate cleaned up
[  940.706800][T24996] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  940.708376][T24973] F2FS-fs (loop4): invalid crc value
[  940.769301][T24973] F2FS-fs (loop4): Found nat_bits in checkpoint
[  940.812147][T24996] EXT4-fs error (device loop3): ext4_get_link:104: inode #16: comm syz.3.8900: bad symlink.
[  940.941392][T24973] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1
[  940.969958][T24973] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  941.037525][T24973] F2FS-fs (loop4): switch extent_cache option is not allowed
[  941.096123][ T4268] EXT4-fs (loop3): unmounting filesystem.
[  941.970247][T25039] loop5: detected capacity change from 0 to 2048
[  942.037477][T25039] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  942.101956][T25039] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  942.148002][T25039] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  942.359728][T25021] loop4: detected capacity change from 0 to 32768
[  942.453844][T25021] jfs_lookup: dtSearch returned -5
[  942.546131][T25060] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  942.685874][T25063] netlink: 2 bytes leftover after parsing attributes in process `syz.5.8930'.
[  943.096354][T25081] netlink: 'syz.4.8940': attribute type 11 has an invalid length.
[  943.291312][   T14] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  943.536183][   T14] usb 6-1: Using ep0 maxpacket: 16
[  943.542959][   T14] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  943.578891][   T14] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  943.624308][   T14] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  943.664637][   T14] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  943.672670][   T14] usb 6-1: Product: syz
[  943.701707][T25104] CIFS mount error: No usable UNC path provided in device string!
[  943.701707][T25104] 
[  943.722649][   T14] usb 6-1: Manufacturer: syz
[  943.729921][   T14] usb 6-1: SerialNumber: syz
[  943.739325][T25104] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  943.745825][   T14] r8152-cfgselector 6-1: config 0 descriptor??
[  943.918305][T25112] netlink: 56 bytes leftover after parsing attributes in process `syz.1.8955'.
[  943.993449][   T14] usbip-host 6-1: 6-1 is not in match_busid table... skip!
[  944.067524][T25093] loop3: detected capacity change from 0 to 32768
[  944.102072][T25093] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.8945 (25093)
[  944.143219][T25093] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  944.188443][T25093] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  944.217122][T25093] BTRFS info (device loop3): using free space tree
[  944.221736][   T14] usb 6-1: USB disconnect, device number 4
[  944.289926][T25120] netlink: 'syz.1.8958': attribute type 3 has an invalid length.
[  944.522349][T25093] BTRFS info (device loop3): enabling ssd optimizations
[  944.586395][ T4268] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  944.826768][T25149] loop1: detected capacity change from 0 to 256
[  944.831494][T25151] loop0: detected capacity change from 0 to 64
[  944.969130][T25155] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8967'.
[  945.161343][T13070] usb 2-1: new high-speed USB device number 71 using dummy_hcd
[  945.177665][T25158] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.8968'.
[  945.189711][T25159] loop3: detected capacity change from 0 to 128
[  945.262736][T25159] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  945.375021][T13070] usb 2-1: Using ep0 maxpacket: 32
[  945.381842][T13070] usb 2-1: config 4 has an invalid interface number: 228 but max is 0
[  945.431907][T13070] usb 2-1: config 4 has no interface number 0
[  945.470484][T13070] usb 2-1: config 4 interface 228 altsetting 68 endpoint 0x7 has an invalid bInterval 147, changing to 11
[  945.522887][T13070] usb 2-1: config 4 interface 228 altsetting 68 endpoint 0x7 has invalid maxpacket 41529, setting to 1024
[  945.550109][T13070] usb 2-1: config 4 interface 228 has no altsetting 0
[  945.570478][T25170] xt_connbytes: Forcing CT accounting to be enabled
[  945.577426][T25170] set match dimension is over the limit!
[  945.585699][T13070] usb 2-1: New USB device found, idVendor=0499, idProduct=a9a2, bcdDevice=c4.e8
[  945.600566][T13070] usb 2-1: New USB device strings: Mfr=1, Product=25, SerialNumber=3
[  945.631504][T13070] usb 2-1: Product: syz
[  945.635702][T13070] usb 2-1: Manufacturer: syz
[  945.640314][T13070] usb 2-1: SerialNumber: syz
[  945.716222][ T4268] EXT4-fs (loop3): unmounting filesystem.
[  945.843330][T25177] netlink: 10 bytes leftover after parsing attributes in process `syz.5.8975'.
[  945.898578][T13070] usb 2-1: invalid MIDI in EP 0
[  945.967040][T13070] snd-usb-audio: probe of 2-1:4.228 failed with error -22
[  946.016595][T13070] usb 2-1: USB disconnect, device number 71
[  946.135371][T25185] netlink: 'syz.4.8979': attribute type 5 has an invalid length.
[  946.143489][T25185] netlink: 'syz.4.8979': attribute type 11 has an invalid length.
[  946.253240][ T6212] udevd[6212]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:4.228/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  946.891622][T25220] dlm: no locking on control device
[  946.942819][   T26] audit: type=1326 audit(51107887.743:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25221 comm="syz.1.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27d99c819 code=0x7ffc0000
[  947.009928][   T26] audit: type=1326 audit(51107887.771:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25221 comm="syz.1.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27d99c819 code=0x7ffc0000
[  947.064944][   T26] audit: type=1326 audit(51107887.771:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25221 comm="syz.1.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27d99c819 code=0x7ffc0000
[  947.126359][T25229] netlink: 40 bytes leftover after parsing attributes in process `syz.1.9003'.
[  947.156772][   T26] audit: type=1326 audit(51107887.771:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25221 comm="syz.1.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7fe27d99c819 code=0x7ffc0000
[  947.158585][T25233] netlink: 392 bytes leftover after parsing attributes in process `syz.0.9002'.
[  947.279151][   T26] audit: type=1326 audit(51107887.771:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25221 comm="syz.1.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27d99c819 code=0x7ffc0000
[  947.383001][   T26] audit: type=1326 audit(51107887.771:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25221 comm="syz.1.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27d99c819 code=0x7ffc0000
[  947.452449][T25240] loop1: detected capacity change from 0 to 64
[  947.488515][   T26] audit: type=1326 audit(51107887.771:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25221 comm="syz.1.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe27d99c819 code=0x7ffc0000
[  947.602707][   T26] audit: type=1326 audit(51107887.771:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25221 comm="syz.1.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe27d99c819 code=0x7ffc0000
[  947.650515][T25246] netlink: 'syz.0.9009': attribute type 1 has an invalid length.
[  947.967007][T25262] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9017'.
[  948.122437][T13070] usb 4-1: new high-speed USB device number 74 using dummy_hcd
[  948.345501][T13070] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  948.379927][T13070] usb 4-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[  948.389409][T13070] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  948.433930][T13070] usb 4-1: config 0 descriptor??
[  948.615102][    C1] sd 0:0:1:0: [sda] tag#869 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  948.625478][    C1] sd 0:0:1:0: [sda] tag#869 CDB: Read(6) 08 00 00 00 03 44
[  948.663032][T25290] loop0: detected capacity change from 0 to 128
[  948.896616][ T5857] usb 4-1: USB disconnect, device number 74
[  949.640543][ T5857] usb 1-1: new low-speed USB device number 74 using dummy_hcd
[  949.705860][T25304] loop4: detected capacity change from 0 to 32768
[  949.743572][T25304] (syz.4.9038,25304,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  949.809996][T25304] (syz.4.9038,25304,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  949.853389][T25304] JBD2: Ignoring recovery information on journal
[  949.876316][ T5857] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[  949.884628][ T5857] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[  949.948298][ T5857] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[  949.967077][T25304] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  950.026582][ T5857] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  950.121118][ T5857] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  950.121700][T13070] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  950.155472][ T5857] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  950.182769][ T5857] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  950.197661][T25337] libceph: resolve '0' (ret=-3): failed
[  950.225191][T25338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9053'.
[  950.227292][ T5857] usb 1-1: string descriptor 0 read error: -22
[  950.249078][ T5857] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  950.258477][ T5857] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  950.292623][ T5857] usb 1-1: config 0 descriptor??
[  950.299190][ T5857] hub 1-1:0.0: bad descriptor, ignoring hub
[  950.312594][ T5857] hub: probe of 1-1:0.0 failed with error -5
[  950.323899][ T4270] ocfs2: Unmounting device (7,4) on (node local)
[  950.324569][ T5857] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input56
[  950.369071][T13070] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  950.391065][T13070] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  950.436642][T13070] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  950.474617][T13070] usb 6-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db
[  950.506508][T13070] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  950.537630][T13070] usb 6-1: config 0 descriptor??
[  950.586385][   T14] usb 1-1: USB disconnect, device number 74
[  950.783027][   T34] usb 6-1: USB disconnect, device number 5
[  951.124095][T25369] loop4: detected capacity change from 0 to 8
[  951.163294][T25369] SQUASHFS error: Failed to read block 0x26067d: -5
[  951.171781][T25369] SQUASHFS error: Unable to read metadata cache entry [26067d]
[  951.179387][T25369] SQUASHFS error: Unable to read directory block [26067d:ffff]
[  951.572373][T25384] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9075'.
[  951.629184][T25384] tc_dump_action: action bad kind
[  951.755555][T25392] loop4: detected capacity change from 0 to 128
[  951.792502][T25393] loop5: detected capacity change from 0 to 64
[  951.800475][T25392] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[  951.828996][T25393] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  952.032493][T25400] x_tables: duplicate underflow at hook 1
[  952.319838][T25414] netlink: 'syz.1.9091': attribute type 3 has an invalid length.
[  952.345398][T25414] netlink: 132 bytes leftover after parsing attributes in process `syz.1.9091'.
[  952.453021][   T26] audit: type=1326 audit(51107892.907:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25417 comm="syz.0.9093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  952.516436][   T26] audit: type=1326 audit(51107892.907:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25417 comm="syz.0.9093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  952.565440][   T26] audit: type=1326 audit(51107892.907:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25417 comm="syz.0.9093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  952.617689][T25420] loop4: detected capacity change from 0 to 4096
[  952.644436][   T26] audit: type=1326 audit(51107892.907:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25417 comm="syz.0.9093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  952.682566][T25420] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  952.838225][T25420] ntfs3: loop4: failed to convert "c46c" to euc-jp
[  952.908666][T25434] netlink: 'syz.0.9101': attribute type 2 has an invalid length.
[  952.947078][T25436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9102'.
[  952.951736][T25434] netlink: 'syz.0.9101': attribute type 1 has an invalid length.
[  952.988901][T25434] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9101'.
[  953.025828][T25436] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  953.374684][T25449] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  953.882058][T25430] loop3: detected capacity change from 0 to 32768
[  953.926131][T25430] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  953.957581][T25430] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  953.996279][T25430] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  954.037620][ T5857] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  954.065011][ T5857] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  954.182494][ T5857] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 109ms
[  954.226994][ T5857] gfs2: fsid=syz:syz.0: jid=0: Done
[  954.243136][T25430] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  954.293229][T25430] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  954.360593][T25430] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  954.360593][T25430]   inode = 12 2341
[  954.360593][T25430]   function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602
[  954.387192][T25430] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  954.406988][T25480] loop1: detected capacity change from 0 to 256
[  954.413669][T25430] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:25430 [syz.3.9099] __gfs2_lookup+0xa9/0x290
[  954.447165][T25480] FAT-fs (loop1): Directory bread(block 1285) failed
[  954.465953][T25430] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  954.473019][T25480] FAT-fs (loop1): Directory bread(block 1286) failed
[  954.503408][T25480] FAT-fs (loop1): Directory bread(block 1287) failed
[  954.515371][T25430] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  954.522659][T25430] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  954.548483][T25480] FAT-fs (loop1): Directory bread(block 1288) failed
[  954.585421][T25480] FAT-fs (loop1): Directory bread(block 1285) failed
[  954.597719][T25480] FAT-fs (loop1): Directory bread(block 1286) failed
[  954.604707][T25480] FAT-fs (loop1): Directory bread(block 1287) failed
[  954.611507][T25480] FAT-fs (loop1): Directory bread(block 1288) failed
[  954.622829][T25430] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  954.633384][T25480] FAT-fs (loop1): Directory bread(block 1285) failed
[  954.644065][T25480] FAT-fs (loop1): Directory bread(block 1286) failed
[  954.732314][T25430] gfs2: fsid=syz:syz.0: File system withdrawn
[  954.771404][T25430] CPU: 0 PID: 25430 Comm: syz.3.9099 Not tainted syzkaller #0
[  954.778919][T25430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  954.789087][T25430] Call Trace:
[  954.792469][T25430]  <TASK>
[  954.795422][T25430]  dump_stack_lvl+0x188/0x24e
[  954.800139][T25430]  ? show_regs_print_info+0x12/0x12
[  954.805365][T25430]  ? load_image+0x400/0x400
[  954.809891][T25430]  ? kobject_uevent_env+0x35f/0x8a0
[  954.815112][T25430]  gfs2_withdraw+0xde6/0x15d0
[  954.819804][T25430]  ? gfs2_lm+0x240/0x240
[  954.824044][T25430]  ? load_image+0x400/0x400
[  954.828558][T25430]  ? gfs2_consist_inode_i+0xf1/0x110
[  954.833840][T25430]  gfs2_dirent_scan+0x525/0x650
[  954.838703][T25430]  ? gfs2_dirent_search+0x7f0/0x7f0
[  954.843918][T25430]  gfs2_dirent_search+0x2e9/0x7f0
[  954.848951][T25430]  ? gfs2_dirent_search+0x7f0/0x7f0
[  954.854149][T25430]  ? gfs2_permission+0x40e/0x4e0
[  954.859082][T25430]  ? gfs2_dir_search+0x220/0x220
[  954.864018][T25430]  ? gfs2_lookupi+0x680/0x680
[  954.868700][T25430]  gfs2_dir_search+0x49/0x220
[  954.873382][T25430]  gfs2_lookupi+0x487/0x680
[  954.877883][T25430]  ? __lock_acquire+0x7d10/0x7d10
[  954.883003][T25430]  ? gfs2_lookup_simple+0x100/0x100
[  954.888199][T25430]  ? __gfs2_lookup+0xa9/0x290
[  954.892870][T25430]  ? d_alloc_parallel+0x13f2/0x1530
[  954.898067][T25430]  ? __d_lookup+0x8b/0x7c0
[  954.902484][T25430]  __gfs2_lookup+0xa9/0x290
[  954.906984][T25430]  ? d_alloc_parallel+0x33a/0x1530
[  954.912092][T25430]  ? gfs2_atomic_open+0x210/0x210
[  954.917111][T25430]  ? __d_lookup+0x8b/0x7c0
[  954.921531][T25430]  ? d_hash_and_lookup+0x1b0/0x1b0
[  954.926636][T25430]  ? rwsem_write_trylock+0x135/0x1c0
[  954.931928][T25430]  gfs2_atomic_open+0x8e/0x210
[  954.936721][T25430]  ? gfs2_rename2+0x1f50/0x1f50
[  954.941575][T25430]  path_openat+0xe3f/0x2ee0
[  954.946094][T25430]  ? do_syscall_64+0x4c/0xa0
[  954.950691][T25430]  ? do_filp_open+0x430/0x430
[  954.955377][T25430]  do_filp_open+0x1f1/0x430
[  954.959887][T25430]  ? vfs_tmpfile+0x480/0x480
[  954.964493][T25430]  ? _raw_spin_unlock+0x24/0x40
[  954.969340][T25430]  ? alloc_fd+0x58f/0x630
[  954.973678][T25430]  do_sys_openat2+0x150/0x4b0
[  954.978360][T25430]  ? do_sys_open+0xe0/0xe0
[  954.982786][T25430]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  954.988777][T25430]  ? lock_chain_count+0x20/0x20
[  954.993632][T25430]  __x64_sys_openat+0x135/0x160
[  954.998487][T25430]  do_syscall_64+0x4c/0xa0
[  955.002905][T25430]  ? clear_bhb_loop+0x60/0xb0
[  955.007581][T25430]  ? clear_bhb_loop+0x60/0xb0
[  955.012262][T25430]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  955.018152][T25430] RIP: 0033:0x7f9afd99c819
[  955.022560][T25430] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  955.042163][T25430] RSP: 002b:00007f9afbbf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  955.050573][T25430] RAX: ffffffffffffffda RBX: 00007f9afdc15fa0 RCX: 00007f9afd99c819
[  955.058537][T25430] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c
[  955.066503][T25430] RBP: 00007f9afda32c91 R08: 0000000000000000 R09: 0000000000000000
[  955.074468][T25430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  955.082434][T25430] R13: 00007f9afdc16038 R14: 00007f9afdc15fa0 R15: 00007ffe6aa23608
[  955.090497][T25430]  </TASK>
[  955.159506][T25488] netlink: 28 bytes leftover after parsing attributes in process `syz.5.9124'.
[  955.465399][T25499] xt_l2tp: invalid flags combination: 4
[  956.164245][T25490] loop1: detected capacity change from 0 to 32768
[  956.236242][T25490] XFS (loop1): Mounting V5 Filesystem
[  956.409443][T25490] XFS (loop1): Ending clean mount
[  956.483256][T25490] XFS (loop1): Quotacheck needed: Please wait.
[  956.624810][T25490] XFS (loop1): Quotacheck: Done.
[  956.641630][T25548] loop3: detected capacity change from 0 to 512
[  956.752909][ T4280] XFS (loop1): Unmounting Filesystem
[  956.859406][T25548] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  956.968944][T25561] loop4: detected capacity change from 0 to 512
[  956.997118][T25548] Quota error (device loop3): find_block_dqentry: Quota for id 0 referenced but not present
[  957.019130][T25548] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  957.049796][T25561] EXT4-fs: Ignoring removed mblk_io_submit option
[  957.096906][T25548] EXT4-fs error (device loop3): ext4_acquire_dquot:6835: comm syz.3.9146: Failed to acquire dquot type 0
[  957.169246][T25561] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13
[  957.259058][T25561] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.9155: attempt to clear invalid blocks 2 len 1
[  957.311461][ T4268] EXT4-fs (loop3): unmounting filesystem.
[  957.354673][T25571] Zero length message leads to an empty skb
[  957.371073][T25561] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  957.432123][T25561] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.9155: invalid indirect mapped block 1819239214 (level 0)
[  957.486047][T25561] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.9155: invalid indirect mapped block 1819239214 (level 1)
[  957.563567][T25561] EXT4-fs (loop4): 1 truncate cleaned up
[  957.569290][T25561] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  957.767735][ T4270] EXT4-fs (loop4): unmounting filesystem.
[  957.782279][T25579] loop5: detected capacity change from 0 to 4096
[  957.833029][T25579] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[  957.861290][T25579] ntfs3: loop5: ntfs_evict_inode r=6 failed, -22.
[  957.906605][T25579] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  958.075989][ T5857] usb 2-1: new full-speed USB device number 72 using dummy_hcd
[  958.145113][T25596] qrtr: Invalid version 0
[  958.313848][ T5857] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  958.339630][ T5857] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  958.376122][ T5857] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  958.398129][T25604] netlink: 'syz.0.9175': attribute type 1 has an invalid length.
[  958.408620][ T5857] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  958.416643][ T5857] usb 2-1: SerialNumber: syz
[  958.484096][ T5857] usb 2-1: 0:2 : does not exist
[  958.558796][T25612] loop4: detected capacity change from 0 to 64
[  958.886833][T25626] loop5: detected capacity change from 0 to 256
[  958.896002][ T5857] usb 2-1: USB disconnect, device number 72
[  959.101838][   T34] usb 4-1: new high-speed USB device number 75 using dummy_hcd
[  959.263923][T25638] loop5: detected capacity change from 0 to 1764
[  959.322238][   T34] usb 4-1: Using ep0 maxpacket: 8
[  959.335326][   T34] usb 4-1: unable to get BOS descriptor set
[  959.366720][   T34] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  959.413624][   T34] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  959.430137][   T34] usb 4-1: New USB device found, idVendor=17dc, idProduct=0202, bcdDevice=8a.dd
[  959.453200][   T34] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  959.474387][   T34] usb 4-1: Product: syz
[  959.495238][   T34] usb 4-1: Manufacturer: syz
[  959.517428][   T34] usb 4-1: SerialNumber: syz
[  959.531735][   T34] usb 4-1: config 0 descriptor??
[  959.769220][ T8911] usb 4-1: USB disconnect, device number 75
[  959.810812][T25661] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9204'.
[  959.858233][T25658] loop1: detected capacity change from 0 to 4096
[  959.977292][T25658] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  960.199036][ T4280] EXT4-fs (loop1): unmounting filesystem.
[  960.730716][T25701] loop5: detected capacity change from 0 to 512
[  960.749240][    T7] usb 5-1: new high-speed USB device number 77 using dummy_hcd
[  960.835138][T25701] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  960.929780][ T8911] usb 4-1: new high-speed USB device number 76 using dummy_hcd
[  960.940546][    T7] usb 5-1: Using ep0 maxpacket: 32
[  960.953838][    T7] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  960.992037][    T7] usb 5-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  961.013619][    T7] usb 5-1: config 0 interface 0 has no altsetting 0
[  961.034020][    T7] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  961.048431][T21244] EXT4-fs (loop5): unmounting filesystem.
[  961.052018][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  961.085558][    T7] usb 5-1: Product: syz
[  961.091486][    T7] usb 5-1: Manufacturer: syz
[  961.096227][    T7] usb 5-1: SerialNumber: syz
[  961.132931][ T8911] usb 4-1: Using ep0 maxpacket: 16
[  961.140180][ T8911] usb 4-1: config 0 has an invalid interface number: 105 but max is 0
[  961.143793][    T7] usb 5-1: config 0 descriptor??
[  961.181443][ T8911] usb 4-1: config 0 descriptor has 1 excess byte, ignoring
[  961.203002][ T8911] usb 4-1: config 0 has no interface number 0
[  961.226885][ T8911] usb 4-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  961.249220][ T8911] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  961.305031][ T8911] usb 4-1: Product: syz
[  961.309239][ T8911] usb 4-1: Manufacturer: syz
[  961.313842][ T8911] usb 4-1: SerialNumber: syz
[  961.363258][ T8911] usb 4-1: config 0 descriptor??
[  961.564065][T25725] loop5: detected capacity change from 0 to 256
[  961.601590][    T7] gs_usb 5-1:0.0: Couldn't get device config: (err=-71)
[  961.608536][ T8911] usb 4-1: Found UVC 0.00 device syz (046d:08f3)
[  961.608570][ T8911] usb 4-1: No valid video chain found.
[  961.609997][ T8911] usb 4-1: USB disconnect, device number 76
[  961.642432][    T7] gs_usb: probe of 5-1:0.0 failed with error -71
[  961.702466][    T7] usb 5-1: USB disconnect, device number 77
[  962.073696][T14957] Bluetooth: hci1: command 0x0406 tx timeout
[  962.765015][T25771] netlink: 'syz.1.9254': attribute type 4 has an invalid length.
[  963.390358][T25801] netlink: 'syz.4.9270': attribute type 3 has an invalid length.
[  963.398232][T25801] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9270'.
[  963.728635][T25815] netlink: 48 bytes leftover after parsing attributes in process `syz.1.9278'.
[  963.875923][T25820] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9279'.
[  964.201190][   T34] usb 5-1: new high-speed USB device number 78 using dummy_hcd
[  964.405956][   T34] usb 5-1: config 0 has an invalid interface number: 120 but max is 0
[  964.414188][   T34] usb 5-1: config 0 has no interface number 0
[  964.442459][   T34] usb 5-1: config 0 interface 120 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  964.475480][   T34] usb 5-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  964.522354][   T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  964.554797][   T34] usb 5-1: config 0 descriptor??
[  964.577827][   T34] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.120/input/input57
[  964.712618][T25829] loop3: detected capacity change from 0 to 32768
[  964.882249][T25829] ERROR: (device loop3): dbAllocNext: Corrupt dmap page
[  964.882249][T25829] 
[  964.895794][    T7] usb 5-1: USB disconnect, device number 78
[  964.924174][T25829] ERROR: (device loop3): remounting filesystem as read-only
[  964.965193][T25829] ialloc: diAlloc returned -5!
[  965.195329][ T4378] usb 2-1: new high-speed USB device number 73 using dummy_hcd
[  965.398486][ T4378] usb 2-1: Using ep0 maxpacket: 32
[  965.410049][ T4378] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  965.440089][ T4378] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  965.472465][ T4378] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  965.485898][   T26] audit: type=1326 audit(51107905.095:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25866 comm="syz.5.9303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  965.531346][ T4378] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  965.564917][   T26] audit: type=1326 audit(51107905.095:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25866 comm="syz.5.9303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  965.569686][ T4378] usb 2-1: config 1 has no interface number 0
[  965.646072][ T4378] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  965.665812][   T26] audit: type=1326 audit(51107905.123:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25866 comm="syz.5.9303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  965.687070][ T4378] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  965.688054][    C1] vkms_vblank_simulate: vblank timer overrun
[  965.732195][ T4378] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  965.738391][   T26] audit: type=1326 audit(51107905.123:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25866 comm="syz.5.9303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  965.754084][T25875] loop3: detected capacity change from 0 to 64
[  965.760729][    C1] vkms_vblank_simulate: vblank timer overrun
[  965.812594][   T26] audit: type=1326 audit(51107905.123:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25866 comm="syz.5.9303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  965.937911][   T26] audit: type=1326 audit(51107905.123:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25866 comm="syz.5.9303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  965.944536][ T4378] snd_usb_pod 2-1:1.1: set_interface failed
[  965.961216][   T26] audit: type=1326 audit(51107905.123:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25866 comm="syz.5.9303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  965.987144][ T4378] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  965.996220][ T4378] snd_usb_pod: probe of 2-1:1.1 failed with error -71
[  966.039381][ T4378] usb 2-1: USB disconnect, device number 73
[  966.326799][T25893] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  966.735059][T25910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9322'.
[  967.173167][ T4378] usb 4-1: new full-speed USB device number 77 using dummy_hcd
[  967.398694][ T4378] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[  967.406844][ T4378] usb 4-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[  967.433206][ T4378] usb 4-1: config 0 has no interface number 0
[  967.450255][ T4378] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 30768, setting to 64
[  967.494006][ T4378] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  967.541946][ T4378] usb 4-1: config 0 interface 52 has no altsetting 0
[  967.580454][ T4378] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  967.593636][T25944] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9339'.
[  967.600401][ T4378] usb 4-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0
[  967.610958][ T4378] usb 4-1: Manufacturer: syz
[  967.621047][   T26] audit: type=1326 audit(51107907.087:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25945 comm="syz.4.9340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f243479c819 code=0x7ffc0000
[  967.654914][ T4378] usb 4-1: config 0 descriptor??
[  967.667784][ T4378] hub 4-1:0.52: bad descriptor, ignoring hub
[  967.684716][ T4378] hub: probe of 4-1:0.52 failed with error -5
[  967.690944][   T26] audit: type=1326 audit(51107907.125:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25945 comm="syz.4.9340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f243479c819 code=0x7ffc0000
[  967.793728][   T26] audit: type=1326 audit(51107907.125:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25945 comm="syz.4.9340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f243479c819 code=0x7ffc0000
[  967.894643][ T4378] input: syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.52/input/input58
[  967.912920][T25953] netlink: 'syz.5.9344': attribute type 3 has an invalid length.
[  967.985718][T25953] netlink: 46 bytes leftover after parsing attributes in process `syz.5.9344'.
[  968.263752][ T4378] usb 4-1: USB disconnect, device number 77
[  968.284461][T25965] loop1: detected capacity change from 0 to 64
[  968.587165][T25977] netlink: 'syz.5.9355': attribute type 1 has an invalid length.
[  968.616897][T25977] netlink: 'syz.5.9355': attribute type 2 has an invalid length.
[  968.746201][T25983] loop4: detected capacity change from 0 to 512
[  968.785228][T25985] loop5: detected capacity change from 0 to 256
[  968.845474][T25985] FAT-fs (loop5): Directory bread(block 64) failed
[  968.884711][T25985] FAT-fs (loop5): Directory bread(block 65) failed
[  968.891364][T25985] FAT-fs (loop5): Directory bread(block 66) failed
[  968.947798][T25985] FAT-fs (loop5): Directory bread(block 67) failed
[  968.954466][T25985] FAT-fs (loop5): Directory bread(block 68) failed
[  968.994007][T25985] FAT-fs (loop5): Directory bread(block 69) failed
[  969.027783][T25985] FAT-fs (loop5): Directory bread(block 70) failed
[  969.054742][T25985] FAT-fs (loop5): Directory bread(block 71) failed
[  969.061426][T25985] FAT-fs (loop5): Directory bread(block 72) failed
[  969.077505][T25987] loop0: detected capacity change from 0 to 4096
[  969.095709][T25985] FAT-fs (loop5): Directory bread(block 73) failed
[  969.114213][T25987] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512)
[  969.179105][T25987] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  969.301634][T25985] FAT-fs (loop5): error, invalid access to FAT (entry 0x00006a61)
[  969.542678][T25981] loop1: detected capacity change from 0 to 32768
[  969.553678][T26000] loop4: detected capacity change from 0 to 4096
[  969.617401][T26000] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  969.644649][T25981] JBD2: Ignoring recovery information on journal
[  969.735053][T26000] ntfs3: loop4: Failed to load $MFT.
[  969.740668][T13070] usb 1-1: new high-speed USB device number 75 using dummy_hcd
[  969.837890][T25981] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  969.937530][T25981] OCFS2: ERROR (device loop1): int ocfs2_xattr_find_entry(struct inode *, int, const char *, struct ocfs2_xattr_search *): corrupted xattr entries
[  969.937661][T25981] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  969.942498][T13070] usb 1-1: Using ep0 maxpacket: 16
[  969.955253][T25981] OCFS2: File system is now read-only.
[  969.974536][T25981] (syz.1.9357,25981,0):ocfs2_calc_xattr_init:642 ERROR: status = -117
[  969.983514][T25981] (syz.1.9357,25981,0):ocfs2_mknod:334 ERROR: status = -117
[  969.994574][T25981] (syz.1.9357,25981,0):ocfs2_mknod:502 ERROR: status = -117
[  970.002161][T25981] (syz.1.9357,25981,0):ocfs2_mkdir:659 ERROR: status = -117
[  970.106574][T13070] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  970.147485][T13070] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  970.176187][T13070] usb 1-1: Product: syz
[  970.202325][T13070] usb 1-1: Manufacturer: syz
[  970.206965][T13070] usb 1-1: SerialNumber: syz
[  970.225263][T13070] r8152-cfgselector 1-1: config 0 descriptor??
[  970.260471][ T4280] ocfs2: Unmounting device (7,1) on (node local)
[  970.679376][T13070] r8152-cfgselector 1-1: Unknown version 0x0000
[  970.699875][T13070] r8152-cfgselector 1-1: USB disconnect, device number 75
[  970.853879][T26026] loop3: detected capacity change from 0 to 32768
[  970.923205][T26026] ERROR: (device loop3): dbAllocAG: unable to allocate blocks
[  970.923205][T26026] 
[  971.689584][T26061] Process accounting resumed
[  971.913776][T26040] loop4: detected capacity change from 0 to 40427
[  971.939261][T26040] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  971.962664][T26040] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  972.014584][T26040] F2FS-fs (loop4): invalid crc value
[  972.072593][T26040] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  972.285756][T26040] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  972.298921][T26040] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  972.401528][ T4378] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[  972.619950][T26103] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9413'.
[  972.636114][ T4378] usb 4-1: Using ep0 maxpacket: 16
[  972.643105][ T4378] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  972.700395][ T4378] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  972.710195][ T4378] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  972.775736][ T4378] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice=4f.14
[  972.795657][ T4378] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  972.803907][T26107] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  972.811940][ T4378] usb 4-1: Product: syz
[  972.827040][ T4378] usb 4-1: Manufacturer: syz
[  972.838054][ T4378] usb 4-1: SerialNumber: syz
[  972.858577][ T4378] usb 4-1: config 0 descriptor??
[  972.871869][T26078] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  972.886319][ T4378] mceusb 4-1:0.0: mceusb_dev_probe: device setup failed!
[  972.924669][ T4378] mceusb: probe of 4-1:0.0 failed with error -12
[  973.181695][ T8911] usb 4-1: USB disconnect, device number 78
[  973.247596][T26122] loop1: detected capacity change from 0 to 1024
[  973.424303][T26129] block nbd0: NBD_DISCONNECT
[  973.474747][T26131] netlink: 'syz.4.9426': attribute type 1 has an invalid length.
[  973.505832][T26131] netlink: 224 bytes leftover after parsing attributes in process `syz.4.9426'.
[  973.704169][T26141] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  973.711488][T26141] IPv6: NLM_F_CREATE should be set when creating new route
[  973.718813][T26141] IPv6: NLM_F_CREATE should be set when creating new route
[  974.386250][T26172] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9446'.
[  974.485726][ T4378] usb 2-1: new high-speed USB device number 74 using dummy_hcd
[  974.566802][T26180] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9450'.
[  974.699390][ T4378] usb 2-1: Using ep0 maxpacket: 8
[  974.706135][ T4378] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  974.743993][ T4378] usb 2-1: New USB device found, idVendor=2801, idProduct=0201, bcdDevice=2a.d5
[  974.785878][ T4378] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  974.816474][ T4378] usb 2-1: config 0 descriptor??
[  974.866408][T26193] xt_bpf: check failed: parse error
[  974.867260][ T4378] usb 2-1: Found UVC 0.00 device <unnamed> (2801:0201)
[  974.889616][ T4378] usb 2-1: No valid video chain found.
[  975.152365][ T8911] usb 2-1: USB disconnect, device number 74
[  975.210818][T26205] loop3: detected capacity change from 0 to 2048
[  975.340898][T26212] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  975.358131][T26205] NILFS error (device loop3): nilfs_lookup: deleted inode referenced: 12
[  975.432129][T26205] Remounting filesystem read-only
[  975.444060][T26216] netlink: 'syz.4.9468': attribute type 21 has an invalid length.
[  975.484740][T26216] netlink: 132 bytes leftover after parsing attributes in process `syz.4.9468'.
[  975.706717][T26226] ipt_REJECT: TCP_RESET invalid for non-tcp
[  976.129633][   T26] kauditd_printk_skb: 5 callbacks suppressed
[  976.129647][   T26] audit: type=1326 audit(51107915.048:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  976.264094][   T26] audit: type=1326 audit(51107915.048:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  976.392227][   T26] audit: type=1326 audit(51107915.085:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  976.407274][T26257] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  976.484640][   T26] audit: type=1326 audit(51107915.085:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=143 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  976.530720][   T26] audit: type=1326 audit(51107915.085:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  976.653286][   T26] audit: type=1326 audit(51107915.085:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  976.719955][   T26] audit: type=1326 audit(51107915.085:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  976.748866][   T26] audit: type=1326 audit(51107915.085:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  976.815666][   T26] audit: type=1326 audit(51107915.085:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26243 comm="syz.0.9481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb4ab19c819 code=0x7ffc0000
[  977.341790][T26296] delete_channel: no stack
[  977.371011][T26300] loop5: detected capacity change from 0 to 256
[  977.425764][    T7] usb 2-1: new high-speed USB device number 75 using dummy_hcd
[  977.649915][    T7] usb 2-1: Using ep0 maxpacket: 32
[  977.656810][    T7] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  977.705356][    T7] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  977.746439][    T7] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  977.759763][    T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  977.788639][T26314] tipc: Can't bind to reserved service type 2
[  977.801424][    T7] usb 2-1: config 0 descriptor??
[  977.832693][    T7] hub 2-1:0.0: USB hub found
[  978.030998][    T7] hub 2-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  978.263190][    T7] usbhid 2-1:0.0: can't add hid device: -71
[  978.264223][T26312] infiniband syz2: set active
[  978.271614][    T7] usbhid: probe of 2-1:0.0 failed with error -71
[  978.325065][T26312] infiniband syz2: added team0
[  978.338657][    T7] usb 2-1: USB disconnect, device number 75
[  978.500393][T26312] RDS/IB: syz2: added
[  978.548781][T26312] smc: adding ib device syz2 with port count 1
[  978.588296][T26312] smc:    ib device syz2 port 1 has pnetid 
[  978.717529][T26345] loop3: detected capacity change from 0 to 2048
[  978.764800][T26345] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  978.804161][T26347] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  979.069902][T26353] overlayfs: missing 'lowerdir'
[  979.316826][T26364] loop0: detected capacity change from 0 to 64
[  979.358615][T26364] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  979.465598][T26369] ipt_CLUSTERIP: Please specify destination IP
[  979.515877][T26371] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  979.809763][T26381] tmpfs: Bad value for 'mpol'
[  979.934949][T26379] loop3: detected capacity change from 0 to 4096
[  979.972270][T26379] ntfs: volume version 3.1.
[  979.981021][T26379] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  980.111023][T26385] loop4: detected capacity change from 0 to 4096
[  980.191822][T26385] ntfs: volume version 3.1.
[  980.893931][T26412] loop1: detected capacity change from 0 to 736
[  981.815876][   T46] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  981.922676][T26414] loop4: detected capacity change from 0 to 32768
[  982.005848][T26414] blkno = 8ed2c, nblocks = 1
[  982.011461][   T46] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.033075][T26414] ERROR: (device loop4): dbFree: block to be freed is outside the map
[  982.033075][T26414] 
[  982.060837][T26414] ERROR: (device loop4): remounting filesystem as read-only
[  982.071738][T26414] ialloc: diAlloc returned -17!
[  982.132821][   T46] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.344776][   T46] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.382762][T26435] loop5: detected capacity change from 0 to 32768
[  983.206011][   T14] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[  983.396672][ T4284] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  983.423750][T26474] loop5: detected capacity change from 0 to 1024
[  983.430292][ T4284] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  983.433517][   T14] usb 4-1: Using ep0 maxpacket: 8
[  983.442531][   T48] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  983.458915][   T48] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  983.461366][   T14] usb 4-1: config 0 has an invalid interface number: 31 but max is 0
[  983.481957][   T48] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  983.498947][   T48] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  983.529617][   T14] usb 4-1: config 0 has no interface number 0
[  983.541321][   T14] usb 4-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  983.571876][   T14] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  983.598786][   T14] usb 4-1: Product: syz
[  983.607663][   T14] usb 4-1: Manufacturer: syz
[  983.627569][   T14] usb 4-1: SerialNumber: syz
[  983.634444][   T14] usb 4-1: config 0 descriptor??
[  983.659801][    T9] hfsplus: b-tree write err: -5, ino 25
[  983.665551][    T9] hfsplus: b-tree write err: -5, ino 4
[  983.676575][    T9] hfsplus: b-tree write err: -5, ino 2
[  983.903034][   T14] usb 4-1: Found UVC 0.04 device syz (046d:08c3)
[  983.914393][   T14] usb 4-1: Failed to initialize entity for entity 6
[  983.921341][   T14] usb 4-1: Failed to register entities (-22).
[  984.127739][    T7] usb 4-1: USB disconnect, device number 79
[  984.644541][T26480] netlink: 40 bytes leftover after parsing attributes in process `syz.5.9593'.
[  984.892288][T26492] loop5: detected capacity change from 0 to 256
[  985.683831][   T48] Bluetooth: hci4: command 0x0409 tx timeout
[  985.718389][T26519] loop4: detected capacity change from 0 to 128
[  985.761638][T26519] FAT-fs (loop4): Directory bread(block 524322) failed
[  985.778800][T26519] FAT-fs (loop4): Directory bread(block 524323) failed
[  985.786005][T26519] FAT-fs (loop4): Directory bread(block 524324) failed
[  985.792971][T26519] FAT-fs (loop4): Directory bread(block 524325) failed
[  985.803212][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  985.803226][   T26] audit: type=1326 audit(51107924.102:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26524 comm="syz.5.9612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  985.857225][T26519] FAT-fs (loop4): Directory bread(block 524326) failed
[  985.880338][T26519] FAT-fs (loop4): Directory bread(block 524327) failed
[  985.918938][T26519] FAT-fs (loop4): Directory bread(block 524328) failed
[  985.929595][   T26] audit: type=1326 audit(51107924.102:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26524 comm="syz.5.9612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  985.980588][T26519] FAT-fs (loop4): Directory bread(block 524329) failed
[  986.019439][   T26] audit: type=1326 audit(51107924.130:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26524 comm="syz.5.9612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  986.102281][   T26] audit: type=1326 audit(51107924.130:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26524 comm="syz.5.9612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  986.149868][T26519] FAT-fs (loop4): Directory bread(block 524322) failed
[  986.158297][T26519] FAT-fs (loop4): Directory bread(block 524323) failed
[  986.188609][   T26] audit: type=1326 audit(51107924.130:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26524 comm="syz.5.9612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22d019c819 code=0x7ffc0000
[  986.717848][T26470] chnl_net:caif_netlink_parms(): no params data found
[  986.770795][T26556] netlink: 'syz.0.9622': attribute type 1 has an invalid length.
[  986.778562][T26556] netlink: 228 bytes leftover after parsing attributes in process `syz.0.9622'.
[  987.160435][T26470] bridge0: port 1(bridge_slave_0) entered blocking state
[  987.196822][T26470] bridge0: port 1(bridge_slave_0) entered disabled state
[  987.230041][T26470] device bridge_slave_0 entered promiscuous mode
[  987.268373][T26470] bridge0: port 2(bridge_slave_1) entered blocking state
[  987.306600][T26470] bridge0: port 2(bridge_slave_1) entered disabled state
[  987.333729][T26470] device bridge_slave_1 entered promiscuous mode
[  987.525093][T26574] netlink: 798 bytes leftover after parsing attributes in process `syz.4.9628'.
[  987.546315][T26582] loop5: detected capacity change from 0 to 736
[  987.649818][T26470] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  987.718304][T26564] loop3: detected capacity change from 0 to 40427
[  987.757966][T26564] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  987.788728][T26564] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  987.849556][T26564] F2FS-fs (loop3): invalid crc value
[  987.881489][T26470] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  987.902397][   T48] Bluetooth: hci4: command 0x041b tx timeout
[  987.929644][T26564] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  988.017995][T26470] team0: Port device team_slave_0 added
[  988.181378][T26470] team0: Port device team_slave_1 added
[  988.256337][T26564] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  988.263425][T26564] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  988.290395][T26470] batman_adv: batadv0: Adding interface: batadv_slave_0
[  988.367894][T26470] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  988.473772][T26470] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  988.601860][   T46] device hsr_slave_0 left promiscuous mode
[  988.609567][T26610] loop0: detected capacity change from 0 to 164
[  988.687001][   T46] device hsr_slave_1 left promiscuous mode
[  988.688590][T26610] iso9660: Corrupted directory entry in block 2 of inode 1792
[  988.700053][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  988.700104][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  988.700789][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  988.700813][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  988.701371][   T46] device bridge_slave_1 left promiscuous mode
[  988.701501][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  988.709600][   T46] device bridge_slave_0 left promiscuous mode
[  988.709733][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  988.860278][   T46] device veth1_macvtap left promiscuous mode
[  988.862375][   T46] device veth0_macvtap left promiscuous mode
[  988.862708][   T46] device veth1_vlan left promiscuous mode
[  988.862873][   T46] device veth0_vlan left promiscuous mode
[  988.952505][T26621] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9647'.
[  989.429156][   T46] bond2 (unregistering): Released all slaves
[  990.018611][   T46] bond1 (unregistering): Released all slaves
[  990.079906][   T46] team0 (unregistering): Port device geneve0 removed
[  990.125977][   T48] Bluetooth: hci4: command 0x040f tx timeout
[  990.288957][   T46] team0 (unregistering): Port device vlan0 removed
[  990.595584][   T46] team0 (unregistering): Port device team_slave_1 removed
[  990.653672][   T46] team0 (unregistering): Port device team_slave_0 removed
[  990.710217][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  990.761468][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  991.112676][   T46] bond0 (unregistering): Released all slaves
[  991.200499][T26470] batman_adv: batadv0: Adding interface: batadv_slave_1
[  991.208516][T26470] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  991.234794][T26470] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  991.265474][T26647] netlink: 'syz.0.9655': attribute type 11 has an invalid length.
[  991.280513][T26647] netlink: 132 bytes leftover after parsing attributes in process `syz.0.9655'.
[  991.300605][T26649] netlink: 755 bytes leftover after parsing attributes in process `syz.4.9656'.
[  991.477003][T26470] device hsr_slave_0 entered promiscuous mode
[  991.526867][T26470] device hsr_slave_1 entered promiscuous mode
[  992.200807][T26470] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  992.240478][T26470] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  992.316278][T26470] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  992.349577][   T48] Bluetooth: hci4: command 0x0419 tx timeout
[  992.364777][T26679] loop4: detected capacity change from 0 to 2048
[  992.378776][T26470] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  992.461785][T26679]  loop4: p1 < > p4 < >
[  992.694867][ T1275] ieee802154 phy0 wpan0: encryption failed: -22
[  992.701228][ T1275] ieee802154 phy1 wpan1: encryption failed: -22
[  992.722556][T26470] 8021q: adding VLAN 0 to HW filter on device bond0
[  992.750026][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  992.752044][T26694] loop3: detected capacity change from 0 to 128
[  992.768331][ T4651] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  992.768408][ T4270] __loop_clr_fd: partition scan of loop4 failed (rc=-16)
[  992.779726][ T4384] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  992.796045][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  992.828901][T26470] 8021q: adding VLAN 0 to HW filter on device team0
[  992.830676][ T4651] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  992.836364][ T4384] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  992.874051][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  992.893324][ T4651] Buffer I/O error on dev loop4p4, logical block 0, async page read
[  992.893697][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  992.932155][ T4384] Buffer I/O error on dev loop4p1, logical block 0, async page read
[  992.955216][ T4326] bridge0: port 1(bridge_slave_0) entered blocking state
[  992.962398][ T4326] bridge0: port 1(bridge_slave_0) entered forwarding state
[  992.972227][ T4651] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  992.998904][ T4384] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  993.015301][ T4651] Buffer I/O error on dev loop4p4, logical block 0, async page read
[  993.044380][ T4384] Buffer I/O error on dev loop4p1, logical block 0, async page read
[  993.063600][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  993.082962][ T4384] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  993.088195][ T4651] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  993.119418][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  993.158029][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  993.178794][ T4384] Buffer I/O error on dev loop4p1, logical block 0, async page read
[  993.179227][ T4651] Buffer I/O error on dev loop4p4, logical block 0, async page read
[  993.228925][ T4326] bridge0: port 2(bridge_slave_1) entered blocking state
[  993.236096][ T4326] bridge0: port 2(bridge_slave_1) entered forwarding state
[  993.244946][ T4384] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  993.266096][ T4651] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  993.278480][ T4384] Buffer I/O error on dev loop4p1, logical block 0, async page read
[  993.289933][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  993.315191][ T4651] Buffer I/O error on dev loop4p4, logical block 0, async page read
[  993.318605][ T4384] Buffer I/O error on dev loop4p1, logical block 0, async page read
[  993.346924][T26711] xt_TPROXY: Can be used only with -p tcp or -p udp
[  993.361754][   T30] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  993.390174][ T4651] Buffer I/O error on dev loop4p4, logical block 0, async page read
[  993.399310][   T30] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  993.422959][T26713] loop5: detected capacity change from 0 to 256
[  993.446396][   T30] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  993.486062][   T30] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  993.545404][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  993.582355][ T4347] udevd[4347]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  993.600030][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  993.625699][ T4384] udevd[4384]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  993.657020][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  993.716228][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  993.727651][ T4347] udevd[4347]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  993.731095][ T4384] udevd[4384]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  993.759559][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  993.776507][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  993.841065][T26470] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  993.880245][ T4651] udevd[4651]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  993.913804][ T4384] udevd[4384]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  994.113540][T26731] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9689'.
[  994.794089][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  994.794241][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  994.829290][T26470] 8021q: adding VLAN 0 to HW filter on device batadv0
[  995.200975][T26738] loop0: detected capacity change from 0 to 32768
[  995.344148][T26738] XFS (loop0): Mounting V5 Filesystem
[  995.425011][T26738] XFS (loop0): Ending clean mount
[  995.617280][ T4269] XFS (loop0): Unmounting Filesystem
[  996.265198][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  996.305554][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  996.362842][T26804] loop5: detected capacity change from 0 to 4096
[  996.367675][T21313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  996.392823][T26804] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[  996.402119][T21313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  996.434259][T26470] device veth0_vlan entered promiscuous mode
[  996.457065][T21313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  996.476549][T21313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  996.511367][T26470] device veth1_vlan entered promiscuous mode
[  996.566982][T26804] ntfs3: loop5: failed to convert "c46c" to cp861
[  996.611392][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  996.641668][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  996.687020][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  996.722673][ T4326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  996.753417][T26470] device veth0_macvtap entered promiscuous mode
[  996.818604][T26470] device veth1_macvtap entered promiscuous mode
[  996.850783][T26825] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[  996.911663][T26470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  996.931411][T26470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.943580][T26470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  996.962738][T26470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.986412][T26470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  996.997427][T26470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.036245][T26470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  997.065079][T26470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.129266][T26470] batman_adv: batadv0: Interface activated: batadv_slave_0
[  997.137741][T21313] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  997.154469][T21313] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  997.184861][T21313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  997.194372][T26832] loop4: detected capacity change from 0 to 2048
[  997.210139][T21313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  997.228425][T26836] loop3: detected capacity change from 0 to 2048
[  997.250323][T26470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  997.255769][T26832] Invalid option length (0) for dns_resolver key
[  997.274199][T26836] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  997.296084][T26470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.350613][T26470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  997.395984][T26470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.420544][T26470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  997.448976][T26470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.458851][T26470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  997.481326][T26470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.513447][T26470] batman_adv: batadv0: Interface activated: batadv_slave_1
[  997.531540][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.562731][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.615538][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.635397][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.659024][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.680836][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.709524][T26849] binder: 26848:26849 ioctl 40046210 0 returned -14
[  997.717318][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.747810][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.770388][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.779641][T26851] program syz.3.9729 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  997.793443][T26838] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9724'.
[  997.832720][T26838] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  997.859218][T26838] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  997.881957][T26838] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  997.905607][T26838] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  997.921760][T26838] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  997.943590][T26838] IPv6: ADDRCONF(NETDEV_CHANGE): geneve2: link becomes ready
[  997.961668][T26838] IPv6: ADDRCONF(NETDEV_CHANGE): geneve2: link becomes ready
[  997.994747][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  998.007175][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  998.037835][T26470] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  998.046570][T26470] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  998.112143][T26470] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  998.120901][T26470] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  998.340595][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  998.361632][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  998.463642][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  998.565208][ T4326] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  998.585228][ T4326] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  998.629387][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  999.023689][T26890] netlink: 'syz.3.9742': attribute type 1 has an invalid length.
[  999.344339][T26899] loop0: detected capacity change from 0 to 2048
[  999.395010][T26899] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  999.491654][T26909] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  999.553566][T26899] NILFS (loop0): error -2 truncating bmap (ino=16)
[ 1001.502363][T26990] rdma_rxe: rxe_register_device failed with error -23
[ 1001.510332][T26990] rdma_rxe: failed to add team0
[ 1001.983122][T26964] loop3: detected capacity change from 0 to 32768
[ 1002.065921][T26964] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[ 1002.068399][T26964] JBD2: Ignoring recovery information on journal
[ 1002.269666][T26964] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1002.590690][ T4268] ocfs2: Unmounting device (7,3) on (node local)
[ 1003.054184][T27052] __nla_validate_parse: 83 callbacks suppressed
[ 1003.054201][T27052] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9803'.
[ 1003.082922][T27052] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9803'.
[ 1003.254697][ T9045] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[ 1003.346014][T27064] xt_nat: multiple ranges no longer supported
[ 1003.467043][T27068] loop5: detected capacity change from 0 to 2048
[ 1003.474215][ T9045] usb 7-1: Using ep0 maxpacket: 32
[ 1003.486783][ T9045] usb 7-1: New USB device found, idVendor=13d8, idProduct=0020, bcdDevice=f7.31
[ 1003.505926][T27068] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1003.519163][ T9045] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1003.593246][ T9045] usb 7-1: selecting invalid altsetting 3
[ 1003.599939][ T9045] comedi comedi5: could not set alternate setting 3 in high speed
[ 1003.615963][T27072] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1003.624458][T27076] loop4: detected capacity change from 0 to 64
[ 1003.664790][ T9045] usbduxsigma 7-1:128.0: driver 'usbduxsigma' failed to auto-configure device.
[ 1003.667764][T27078] netlink: 256 bytes leftover after parsing attributes in process `syz.3.9817'.
[ 1003.690731][T27068] NILFS (loop5): error -2 truncating bmap (ino=16)
[ 1003.710931][ T9045] usbduxsigma: probe of 7-1:128.0 failed with error -22
[ 1003.796138][ T9045] usb 7-1: USB disconnect, device number 2
[ 1003.968688][T27080] Process accounting paused
[ 1004.189479][T27087] loop3: detected capacity change from 0 to 4096
[ 1004.222976][T27087] ntfs: (device loop3): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[ 1004.307174][T27087] ntfs: (device loop3): ntfs_read_locked_inode(): $DATA attribute is missing.
[ 1004.355147][T27087] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1004.413154][T27087] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1004.491884][T27087] ntfs: volume version 3.1.
[ 1004.513544][T27087] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[ 1004.534485][T27102] netlink: 'syz.5.9828': attribute type 1 has an invalid length.
[ 1004.569278][T27087] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 1004.590561][T27102] netlink: 'syz.5.9828': attribute type 2 has an invalid length.
[ 1004.620527][T27087] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[ 1004.626513][T27102] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9828'.
[ 1004.709511][T27087] ntfs: (device loop3): ntfs_read_locked_index_inode(): $INDEX_ROOT attribute is missing.
[ 1004.754663][T27108] loop4: detected capacity change from 0 to 2048
[ 1004.761369][T27087] ntfs: (device loop3): ntfs_read_locked_index_inode(): Failed with error code -2 while reading index inode (mft_no 0x0, name_len 2.
[ 1004.793457][T27087] ntfs: (device loop3): load_and_init_quota(): Failed to load $Quota/$Q index.
[ 1004.874326][T27113] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1004.917883][T27108] NILFS error (device loop4): nilfs_check_page: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=203
[ 1005.071087][T27108] Remounting filesystem read-only
[ 1005.314810][T27129] netlink: 'syz.5.9840': attribute type 8 has an invalid length.
[ 1006.142634][T27170] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9857'.
[ 1006.144106][T27169] loop6: detected capacity change from 0 to 8
[ 1006.205783][T27169] MTD: Attempt to mount non-MTD device "/dev/loop6"
[ 1006.246469][ T4384] udevd[4384]: incorrect cramfs checksum on /dev/loop6
[ 1006.385025][ T4384] udevd[4384]: incorrect cramfs checksum on /dev/loop6
[ 1006.824680][ T5693] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[ 1006.982137][T27208] loop6: detected capacity change from 0 to 64
[ 1007.027701][ T5693] usb 6-1: Using ep0 maxpacket: 32
[ 1007.041786][ T5693] usb 6-1: config 1 has an invalid interface number: 108 but max is 0
[ 1007.077376][ T5693] usb 6-1: config 1 has no interface number 0
[ 1007.109646][ T5693] usb 6-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=81.9b
[ 1007.145434][ T5693] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1007.166763][ T5693] usb 6-1: Product: syz
[ 1007.195160][ T5693] usb 6-1: Manufacturer: syz
[ 1007.200464][ T5693] usb 6-1: SerialNumber: syz
[ 1007.225030][ T5693] hub 6-1:1.108: bad descriptor, ignoring hub
[ 1007.243278][ T5693] hub: probe of 6-1:1.108 failed with error -5
[ 1007.370933][T27221] netlink: 1033 bytes leftover after parsing attributes in process `syz.6.9879'.
[ 1007.373215][T27219] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9880'.
[ 1007.443186][ T5693] usb 6-1: palm_os_4_probe - error -71 getting connection info
[ 1007.464489][ T5693] visor 6-1:1.108: Handspring Visor / Palm OS converter detected
[ 1007.507512][ T5693] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1007.550631][ T5693] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1007.605901][ T5693] usb 6-1: USB disconnect, device number 6
[ 1007.644908][ T5693] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1007.679466][ T5693] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1007.718684][T27231] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9884'.
[ 1007.722075][ T5693] visor 6-1:1.108: device disconnected
[ 1007.819166][T27239] loop4: detected capacity change from 0 to 64
[ 1007.964127][T27243] ieee802154 phy0 wpan0: encryption failed: -22
[ 1008.020301][T27245] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (32)
[ 1008.147597][T27250] netlink: 'syz.0.9894': attribute type 1 has an invalid length.
[ 1008.255100][T27254] xt_recent: hitcount (134217728) is larger than allowed maximum (255)
[ 1008.493732][T27265] loop5: detected capacity change from 0 to 8
[ 1008.938806][T27279] loop6: detected capacity change from 0 to 128
[ 1009.028321][T27279] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[ 1009.046815][T27247] loop4: detected capacity change from 0 to 32768
[ 1009.082561][T27279] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1009.169368][T27291] loop0: detected capacity change from 0 to 64
[ 1009.239940][T27247] XFS (loop4): Mounting V5 Filesystem
[ 1009.374540][T27302] loop6: detected capacity change from 0 to 512
[ 1009.379225][T27247] XFS (loop4): Ending clean mount
[ 1009.381935][T27302] EXT4-fs: Ignoring removed nobh option
[ 1009.539531][T27302] EXT4-fs error (device loop6): ext4_iget_extra_inode:4752: inode #15: comm syz.6.9915: corrupted in-inode xattr
[ 1009.562516][T27302] EXT4-fs error (device loop6): ext4_orphan_get:1404: comm syz.6.9915: couldn't read orphan inode 15 (err -117)
[ 1009.600302][ T4270] XFS (loop4): Unmounting Filesystem
[ 1009.606454][T27302] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1009.932883][T26470] EXT4-fs (loop6): unmounting filesystem.
[ 1010.113011][T27322] loop5: detected capacity change from 0 to 256
[ 1010.210475][T27322] FAT-fs (loop5): Directory bread(block 64) failed
[ 1010.244548][T27322] FAT-fs (loop5): Directory bread(block 65) failed
[ 1010.320830][T27322] FAT-fs (loop5): Directory bread(block 66) failed
[ 1010.327416][T27322] FAT-fs (loop5): Directory bread(block 67) failed
[ 1010.375101][T27322] FAT-fs (loop5): Directory bread(block 68) failed
[ 1010.417095][T27322] FAT-fs (loop5): Directory bread(block 69) failed
[ 1010.447409][T27322] FAT-fs (loop5): Directory bread(block 70) failed
[ 1010.478661][T27322] FAT-fs (loop5): Directory bread(block 71) failed
[ 1010.517253][T27322] FAT-fs (loop5): Directory bread(block 72) failed
[ 1010.545265][T27322] FAT-fs (loop5): Directory bread(block 73) failed
[ 1010.916653][T27347] netlink: 'syz.3.9934': attribute type 3 has an invalid length.
[ 1011.050286][T27349] loop4: detected capacity change from 0 to 164
[ 1011.142158][T27349] Unsupported NM flag settings (240)
[ 1011.442127][T27332] loop0: detected capacity change from 0 to 40427
[ 1011.503719][T27332] F2FS-fs (loop0): invalid crc value
[ 1011.541488][T27332] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1011.694688][T27332] F2FS-fs (loop0): Cannot turn on quotas: -2 on 1
[ 1011.713574][T27332] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1011.721058][ T5693] usb 5-1: new high-speed USB device number 79 using dummy_hcd
[ 1011.811052][T27332] F2FS-fs (loop0): switch extent_cache option is not allowed
[ 1011.913288][ T5693] usb 5-1: Using ep0 maxpacket: 16
[ 1011.920521][ T5693] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1011.963743][ T5693] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1011.989717][ T5693] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1012.020229][ T5693] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1012.064454][ T5693] usb 5-1: Product: syz
[ 1012.090365][ T5693] usb 5-1: Manufacturer: syz
[ 1012.106217][ T5693] usb 5-1: SerialNumber: syz
[ 1012.124825][ T5693] r8152-cfgselector 5-1: config 0 descriptor??
[ 1012.140738][T27386] loop0: detected capacity change from 0 to 64
[ 1012.360713][T27362] loop5: detected capacity change from 0 to 32768
[ 1012.386293][ T5693] usbip-host 5-1: 5-1 is not in match_busid table... skip!
[ 1012.494126][T27362] JBD2: Ignoring recovery information on journal
[ 1012.578167][T27362] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1012.619942][   T14] usb 5-1: USB disconnect, device number 79
[ 1012.655710][T27362] (syz.5.9939,27362,1):ocfs2_reflink_ioctl:4426 ERROR: status = -14
[ 1012.692831][T27400] MTD: Attempt to mount non-MTD device "/dev/nbd6"
[ 1012.698094][T27401] loop3: detected capacity change from 0 to 256
[ 1012.727468][   T52] block nbd6: Attempted send on invalid socket
[ 1012.733686][   T52] blk_print_req_error: 2 callbacks suppressed
[ 1012.733700][   T52] I/O error, dev nbd6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1012.769572][T27401] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[ 1012.829740][T21244] ocfs2: Unmounting device (7,5) on (node local)
[ 1012.841079][T27405] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1012.852517][T27405] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1013.159007][T27411] ------------[ cut here ]------------
[ 1013.165244][T27411] WARNING: CPU: 0 PID: 27411 at net/ipv4/route.c:1283 ip_rt_bug+0x25/0xf0
[ 1013.173852][T27411] Modules linked in:
[ 1013.177824][T27411] CPU: 0 PID: 27411 Comm: syz.6.9959 Not tainted syzkaller #0
[ 1013.185333][T27411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1013.195452][T27411] RIP: 0010:ip_rt_bug+0x25/0xf0
[ 1013.200364][T27411] Code: 41 ff ff ff 90 41 57 41 56 41 55 41 54 53 48 89 d3 e8 7f 5c d4 f8 66 90 e8 78 5c d4 f8 48 89 df be 01 00 00 00 e8 fb c3 7c ff <0f> 0b 31 c0 5b 41 5c 41 5d 41 5e 41 5f c3 49 bd 00 00 00 00 00 fc
[ 1013.220073][T27411] RSP: 0018:ffffc900049aee78 EFLAGS: 00010296
[ 1013.226200][T27411] RAX: 13483aff08acf400 RBX: ffff8880487c43c0 RCX: 13483aff08acf400
[ 1013.234257][T27411] RDX: dffffc0000000000 RSI: ffffffff8a8c10a0 RDI: ffffffff8adf0d20
[ 1013.242392][T27411] RBP: ffff888023d99700 R08: ffffffff90af72d7 R09: 1ffffffff215ee5a
[ 1013.250423][T27411] R10: dffffc0000000000 R11: fffffbfff215ee5b R12: ffff888023d99730
[ 1013.258424][T27411] R13: ffff8880487c4418 R14: ffff8880487c43c0 R15: ffff8880202a0d00
[ 1013.266473][T27411] FS:  00007ff2439e46c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1013.275461][T27411] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1013.282121][T27411] CR2: 0000200000001340 CR3: 00000000689bf000 CR4: 00000000003506f0
[ 1013.290119][T27411] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1013.298152][T27411] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1013.306175][T27411] Call Trace:
[ 1013.309470][T27411]  <TASK>
[ 1013.312430][T27411]  ip_send_skb+0x129/0x1c0
[ 1013.317101][T27411]  ? __icmp_send+0x212/0x1410
[ 1013.321812][T27411]  __icmp_send+0x10af/0x1410
[ 1013.326466][T27411]  ? xfrm_policy_lookup_bytype+0x130/0x1040
[ 1013.332436][T27411]  ? __icmp_send+0x212/0x1410
[ 1013.337182][T27411]  ? icmp_out_count+0x90/0x90
[ 1013.341918][T27411]  ? ipv4_link_failure+0x390/0xa20
[ 1013.347188][T27411]  ? ip_options_fragment+0x290/0x290
[ 1013.352555][T27411]  ? xfrm_expand_policies+0xc7/0x690
[ 1013.357957][T27411]  ? ipv4_link_failure+0x390/0xa20
[ 1013.363105][T27411]  ipv4_link_failure+0x667/0xa20
[ 1013.368139][T27411]  ? ipv4_negative_advice+0x1a0/0x1a0
[ 1013.373538][T27411]  ? skb_crc32c_csum_help+0x520/0x520
[ 1013.378974][T27411]  ? bpf_lsm_xfrm_decode_session+0x5/0x10
[ 1013.384756][T27411]  ? ipv4_negative_advice+0x1a0/0x1a0
[ 1013.390204][T27411]  xfrmi_xmit+0xb85/0x15e0
[ 1013.394656][T27411]  ? xfrmi_dev_uninit+0x1f0/0x1f0
[ 1013.399765][T27411]  dev_hard_start_xmit+0x262/0x870
[ 1013.404920][T27411]  __dev_queue_xmit+0x1aa3/0x37c0
[ 1013.410103][T27411]  ? __dev_queue_xmit+0x26b/0x37c0
[ 1013.415235][T27411]  ? netdev_core_pick_tx+0x340/0x340
[ 1013.420668][T27411]  ? packet_parse_headers+0x7b8/0xab0
[ 1013.426057][T27411]  ? packet_parse_headers+0x7c9/0xab0
[ 1013.431464][T27411]  ? __virt_addr_valid+0x188/0x540
[ 1013.436603][T27411]  ? __check_object_size+0x500/0xa40
[ 1013.441905][T27411]  ? skb_setup_tx_timestamp+0x1f0/0x1f0
[ 1013.447498][T27411]  ? skb_copy_datagram_from_iter+0x5a8/0x690
[ 1013.453543][T27411]  ? skb_put+0x117/0x210
[ 1013.457813][T27411]  packet_sendmsg+0x3bc3/0x4e60
[ 1013.462669][T27411]  ? __schedule+0x119d/0x40e0
[ 1013.467399][T27411]  ? __might_sleep+0xd0/0xd0
[ 1013.472000][T27411]  ? verify_lock_unused+0x140/0x140
[ 1013.477277][T27411]  ? aa_sk_perm+0x81f/0x950
[ 1013.481806][T27411]  ? packet_getsockopt+0x9a0/0x9a0
[ 1013.486963][T27411]  ? aa_sock_msg_perm+0x94/0x150
[ 1013.491932][T27411]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1013.497263][T27411]  ? security_socket_sendmsg+0x7c/0xa0
[ 1013.502744][T27411]  ? packet_getsockopt+0x9a0/0x9a0
[ 1013.507913][T27411]  ____sys_sendmsg+0x5be/0x970
[ 1013.512724][T27411]  ? __sys_sendmsg_sock+0x30/0x30
[ 1013.517784][T27411]  ? __import_iovec+0x315/0x500
[ 1013.522650][T27411]  ? import_iovec+0x6f/0xa0
[ 1013.527203][T27411]  ___sys_sendmsg+0x2a2/0x360
[ 1013.531927][T27411]  ? try_to_wake_up+0x6ae/0x1080
[ 1013.536885][T27411]  ? __sys_sendmsg+0x290/0x290
[ 1013.541911][T27411]  __se_sys_sendmsg+0x1bb/0x2a0
[ 1013.546804][T27411]  ? __x64_sys_sendmsg+0x80/0x80
[ 1013.551790][T27411]  ? lockdep_hardirqs_on+0x94/0x140
[ 1013.557004][T27411]  do_syscall_64+0x4c/0xa0
[ 1013.561466][T27411]  ? clear_bhb_loop+0x60/0xb0
[ 1013.566178][T27411]  ? clear_bhb_loop+0x60/0xb0
[ 1013.570907][T27411]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1013.576900][T27411] RIP: 0033:0x7ff242b9c819
[ 1013.581363][T27411] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1013.601007][T27411] RSP: 002b:00007ff2439e4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1013.609453][T27411] RAX: ffffffffffffffda RBX: 00007ff242e15fa0 RCX: 00007ff242b9c819
[ 1013.617462][T27411] RDX: 00000000000480c0 RSI: 0000200000000200 RDI: 0000000000000003
[ 1013.625465][T27411] RBP: 00007ff242c32c91 R08: 0000000000000000 R09: 0000000000000000
[ 1013.633456][T27411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1013.641454][T27411] R13: 00007ff242e16038 R14: 00007ff242e15fa0 R15: 00007fff993b9828
[ 1013.649459][T27411]  </TASK>
[ 1013.652486][T27411] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1013.659744][T27411] CPU: 0 PID: 27411 Comm: syz.6.9959 Not tainted syzkaller #0
[ 1013.667531][T27411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1013.677571][T27411] Call Trace:
[ 1013.680836][T27411]  <TASK>
[ 1013.683754][T27411]  dump_stack_lvl+0x188/0x24e
[ 1013.688423][T27411]  ? memcpy+0x3c/0x60
[ 1013.692399][T27411]  ? show_regs_print_info+0x12/0x12
[ 1013.697599][T27411]  ? load_image+0x400/0x400
[ 1013.702114][T27411]  panic+0x2e5/0x730
[ 1013.705998][T27411]  ? bpf_jit_dump+0xd0/0xd0
[ 1013.710500][T27411]  __warn+0x2f8/0x4f0
[ 1013.714503][T27411]  ? ip_rt_bug+0x25/0xf0
[ 1013.718730][T27411]  ? ip_rt_bug+0x25/0xf0
[ 1013.722958][T27411]  report_bug+0x2ba/0x4f0
[ 1013.727279][T27411]  ? ip_rt_bug+0x25/0xf0
[ 1013.731539][T27411]  handle_bug+0x3a/0x70
[ 1013.735685][T27411]  exc_invalid_op+0x16/0x40
[ 1013.740195][T27411]  asm_exc_invalid_op+0x16/0x20
[ 1013.745029][T27411] RIP: 0010:ip_rt_bug+0x25/0xf0
[ 1013.749876][T27411] Code: 41 ff ff ff 90 41 57 41 56 41 55 41 54 53 48 89 d3 e8 7f 5c d4 f8 66 90 e8 78 5c d4 f8 48 89 df be 01 00 00 00 e8 fb c3 7c ff <0f> 0b 31 c0 5b 41 5c 41 5d 41 5e 41 5f c3 49 bd 00 00 00 00 00 fc
[ 1013.769466][T27411] RSP: 0018:ffffc900049aee78 EFLAGS: 00010296
[ 1013.775534][T27411] RAX: 13483aff08acf400 RBX: ffff8880487c43c0 RCX: 13483aff08acf400
[ 1013.783496][T27411] RDX: dffffc0000000000 RSI: ffffffff8a8c10a0 RDI: ffffffff8adf0d20
[ 1013.791453][T27411] RBP: ffff888023d99700 R08: ffffffff90af72d7 R09: 1ffffffff215ee5a
[ 1013.799409][T27411] R10: dffffc0000000000 R11: fffffbfff215ee5b R12: ffff888023d99730
[ 1013.807364][T27411] R13: ffff8880487c4418 R14: ffff8880487c43c0 R15: ffff8880202a0d00
[ 1013.815333][T27411]  ? ip_rt_bug+0x25/0xf0
[ 1013.819585][T27411]  ip_send_skb+0x129/0x1c0
[ 1013.823998][T27411]  ? __icmp_send+0x212/0x1410
[ 1013.828667][T27411]  __icmp_send+0x10af/0x1410
[ 1013.833244][T27411]  ? xfrm_policy_lookup_bytype+0x130/0x1040
[ 1013.839130][T27411]  ? __icmp_send+0x212/0x1410
[ 1013.843807][T27411]  ? icmp_out_count+0x90/0x90
[ 1013.848510][T27411]  ? ipv4_link_failure+0x390/0xa20
[ 1013.853614][T27411]  ? ip_options_fragment+0x290/0x290
[ 1013.858899][T27411]  ? xfrm_expand_policies+0xc7/0x690
[ 1013.864195][T27411]  ? ipv4_link_failure+0x390/0xa20
[ 1013.869384][T27411]  ipv4_link_failure+0x667/0xa20
[ 1013.874311][T27411]  ? ipv4_negative_advice+0x1a0/0x1a0
[ 1013.879669][T27411]  ? skb_crc32c_csum_help+0x520/0x520
[ 1013.885041][T27411]  ? bpf_lsm_xfrm_decode_session+0x5/0x10
[ 1013.890754][T27411]  ? ipv4_negative_advice+0x1a0/0x1a0
[ 1013.896134][T27411]  xfrmi_xmit+0xb85/0x15e0
[ 1013.900547][T27411]  ? xfrmi_dev_uninit+0x1f0/0x1f0
[ 1013.905566][T27411]  dev_hard_start_xmit+0x262/0x870
[ 1013.910672][T27411]  __dev_queue_xmit+0x1aa3/0x37c0
[ 1013.915686][T27411]  ? __dev_queue_xmit+0x26b/0x37c0
[ 1013.920794][T27411]  ? netdev_core_pick_tx+0x340/0x340
[ 1013.926077][T27411]  ? packet_parse_headers+0x7b8/0xab0
[ 1013.931434][T27411]  ? packet_parse_headers+0x7c9/0xab0
[ 1013.936789][T27411]  ? __virt_addr_valid+0x188/0x540
[ 1013.941977][T27411]  ? __check_object_size+0x500/0xa40
[ 1013.947258][T27411]  ? skb_setup_tx_timestamp+0x1f0/0x1f0
[ 1013.952797][T27411]  ? skb_copy_datagram_from_iter+0x5a8/0x690
[ 1013.958780][T27411]  ? skb_put+0x117/0x210
[ 1013.963028][T27411]  packet_sendmsg+0x3bc3/0x4e60
[ 1013.967903][T27411]  ? __schedule+0x119d/0x40e0
[ 1013.972665][T27411]  ? __might_sleep+0xd0/0xd0
[ 1013.977253][T27411]  ? verify_lock_unused+0x140/0x140
[ 1013.982639][T27411]  ? aa_sk_perm+0x81f/0x950
[ 1013.987139][T27411]  ? packet_getsockopt+0x9a0/0x9a0
[ 1013.992252][T27411]  ? aa_sock_msg_perm+0x94/0x150
[ 1013.997180][T27411]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1014.002454][T27411]  ? security_socket_sendmsg+0x7c/0xa0
[ 1014.007917][T27411]  ? packet_getsockopt+0x9a0/0x9a0
[ 1014.013037][T27411]  ____sys_sendmsg+0x5be/0x970
[ 1014.017829][T27411]  ? __sys_sendmsg_sock+0x30/0x30
[ 1014.022876][T27411]  ? __import_iovec+0x315/0x500
[ 1014.027753][T27411]  ? import_iovec+0x6f/0xa0
[ 1014.032283][T27411]  ___sys_sendmsg+0x2a2/0x360
[ 1014.037006][T27411]  ? try_to_wake_up+0x6ae/0x1080
[ 1014.041970][T27411]  ? __sys_sendmsg+0x290/0x290
[ 1014.046783][T27411]  __se_sys_sendmsg+0x1bb/0x2a0
[ 1014.051627][T27411]  ? __x64_sys_sendmsg+0x80/0x80
[ 1014.056561][T27411]  ? lockdep_hardirqs_on+0x94/0x140
[ 1014.061757][T27411]  do_syscall_64+0x4c/0xa0
[ 1014.066167][T27411]  ? clear_bhb_loop+0x60/0xb0
[ 1014.070842][T27411]  ? clear_bhb_loop+0x60/0xb0
[ 1014.075514][T27411]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1014.081417][T27411] RIP: 0033:0x7ff242b9c819
[ 1014.085817][T27411] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1014.105426][T27411] RSP: 002b:00007ff2439e4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1014.113830][T27411] RAX: ffffffffffffffda RBX: 00007ff242e15fa0 RCX: 00007ff242b9c819
[ 1014.121788][T27411] RDX: 00000000000480c0 RSI: 0000200000000200 RDI: 0000000000000003
[ 1014.129760][T27411] RBP: 00007ff242c32c91 R08: 0000000000000000 R09: 0000000000000000
[ 1014.137723][T27411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1014.145680][T27411] R13: 00007ff242e16038 R14: 00007ff242e15fa0 R15: 00007fff993b9828
[ 1014.153650][T27411]  </TASK>
[ 1014.157083][T27411] Kernel Offset: disabled
[ 1014.161532][T27411] Rebooting in 86400 seconds..