last executing test programs:

8.806482393s ago: executing program 0 (id=509):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000280)={[{@nodiscard}, {@resgid={'resgid', 0x3d, 0xee00}}, {@init_itable}, {@noload}, {@minixdf}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
chdir(&(0x7f0000004340)='./file0\x00')
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

8.387537429s ago: executing program 0 (id=514):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x3a107c4, &(0x7f00000003c0)={[{@noauto_da_alloc}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x8}}, {@resuid}, {@stripe={'stripe', 0x3d, 0x4}}, {@data_err_ignore}, {@user_xattr}, {@min_batch_time={'min_batch_time', 0x3d, 0xa9f}}, {@nodiscard}, {@jqfmt_vfsold}, {@nobarrier}]}, 0xfd, 0x451, &(0x7f0000000d00)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
read$FUSE(r0, &(0x7f0000004380)={0x2020}, 0x2020)

7.920935509s ago: executing program 0 (id=523):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000), 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000080), 0x4)

7.769890117s ago: executing program 0 (id=526):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x200800, &(0x7f0000000180)=ANY=[@ANYBLOB="757466382c756d61736b3d30303030303030303030303030303030303030303030352c696f636861727365743d69736f383835392d312c6572726f72733d636f6e74696e75652c696f636861727365743d6d616363656e746575726f2c6572726f72733d636f6e74696e75652c696f636861727365743d63703835352c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c6572726f72733d636f6e74696e75652c007402c6772e44944a5e8a276a119edf8d677d9d136287dcec74cc86254db5e919b1891cc58c041420ef"], 0x9, 0x1524, &(0x7f0000002280)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000180)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc51, 0x0)

7.427308979s ago: executing program 0 (id=529):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
syz_clone3(&(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

6.832608042s ago: executing program 0 (id=532):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000180), 0x4)

6.414966051s ago: executing program 32 (id=532):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000180), 0x4)

5.295851177s ago: executing program 2 (id=548):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x8100, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @value, @void, @void, @value}, 0x50)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x89f1, &(0x7f0000000900)={'ip6tnl0\x00', @random="0600002000"})

4.721041366s ago: executing program 3 (id=554):
r0 = mq_open(&(0x7f00000000c0)=',):\x00', 0x40, 0xf4, &(0x7f0000000100)={0xda, 0x4, 0x100, 0xfffffffffffffff2})
mq_timedreceive(r0, 0x0, 0x0, 0xb, 0x0)
lseek(r0, 0x0, 0x1)

4.556603343s ago: executing program 3 (id=557):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_NG_OFFSET={0x8}, @NFTA_NG_DREG={0x8}, @NFTA_NG_MODULUS={0x8}, @NFTA_NG_TYPE={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0)

4.439536625s ago: executing program 3 (id=559):
syz_mount_image$btrfs(&(0x7f0000000100), &(0x7f0000005140)='./file0\x00', 0x0, &(0x7f0000000200)={[{@compress}]}, 0x1, 0x50ed, &(0x7f0000005180)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0x40789440, &(0x7f00000001c0)={"0019de9537eb902b39b36eedeed6a200", 0x0, 0x0, {}, {0x8003}, 0x0, [0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0xfffffffffffffffd]})

4.352914472s ago: executing program 1 (id=560):
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_PEC(r0, 0x708, 0x40)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000500)={0x1, 0x0, 0x2, &(0x7f0000000540)={0x0, "05000000434fd7f5e7d85c8bbfe6931aa54bce5d926e7908d52773897f00"}})

4.295840876s ago: executing program 1 (id=562):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fchown(r0, 0x0, 0xee01)

4.167283896s ago: executing program 1 (id=563):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000104355810000000000000109022400010000000009042000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@global=@item_4={0x3, 0x1, 0x0, 'bH\x00V'}]}}, 0x0}, 0x0)

3.496561197s ago: executing program 4 (id=566):
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0xf0, 0xfed3, 0x2, &(0x7f0000000080)="85d77444c5a569f1e21b08c0f264", 0x0, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x31000000}, 0x48)

3.402703488s ago: executing program 4 (id=567):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffe}]})
prlimit64(0x0, 0xd, &(0x7f0000002300)={0x45, 0xffffff7fffffffff}, 0x0)
setpriority(0x0, 0x0, 0xffffffffffff0000)

3.377765836s ago: executing program 3 (id=568):
r0 = memfd_create(&(0x7f0000000100)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'e\xe5\x8f\xf8\xd2\x1c\xc0\xfb\x1c\xa6\xab\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94k\xcd\t\x00\x90k\xd6\x05\xb6&\xd0\x9daA\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\x03gB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\xfe@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\xbd#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x92!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xf2\xde\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\x91\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7yn\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xefCGa\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xca', 0x2)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x940a, 0x1000007})
fcntl$addseals(r0, 0x409, 0xb)

3.2886192s ago: executing program 2 (id=569):
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000500)='./file0\x00', 0x18008, &(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRESDEC], 0xfe, 0x4b1, &(0x7f0000001d00)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000140)='.\x02\x00', 0x1a40cc4, &(0x7f0000000700)=ANY=[@ANYRES32, @ANYRESDEC, @ANYRESHEX, @ANYRES8, @ANYRESOCT=0x0, @ANYRES16, @ANYRESHEX, @ANYRESHEX, @ANYRES8], 0xdf, 0x0, &(0x7f0000000480))
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='.\x02\x00')

3.07865612s ago: executing program 4 (id=570):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0x8, 0x1, 'udp\x00'}, @NFTA_MATCH_INFO={0xe, 0x3, "7acc6338a90000b03bd9"}, @NFTA_MATCH_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_COMPAT={0xc, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x88}]}]}], {0x14}}, 0x98}}, 0x0)

2.950597597s ago: executing program 2 (id=571):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f00000000c0), r0)
sendmsg$NFC_CMD_LLC_SDREQ(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="e525000000000000000013"], 0x1c}}, 0x0)

2.875184256s ago: executing program 4 (id=572):
r0 = syz_usb_connect$hid(0x2, 0x3f, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x20a0, 0x4287, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x0, 0x0, 0x80, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0xfe, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0xfffd, 0x0, 0x1, {0x22, 0x5}}, {{}, [{{0x9, 0x5, 0x2, 0x3, 0x2e9ec8a825f915c, 0x7, 0x80, 0x7c}}]}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x0, "a5247d20"}]}}, 0x0}, 0x0)

2.743483906s ago: executing program 2 (id=573):
syz_mount_image$ocfs2(&(0x7f0000004480), &(0x7f00000044c0)='./file1\x00', 0x2800400, &(0x7f00000000c0)=ANY=[@ANYBLOB="6c6f63616c616c6c6f633d31383434363734343037333730393535313630382c726573765f6c6576656c3d30303030303030303030303030303030303030322c6865617274626561743d6e6f6e652c636f686572656e63793d62756666657265642c6572726f72733d636f6e74696e75652c6e6f696e74722c636f686572656e63793d66756c6c2c6e6f61636c2c636f686572656e63793d66756c6c2c646174613d6f7264657265642c00a6bbbf4f1c4504306b696ca03fb375edc4c5f0f579bf2195c3cc88165b8c279abaa84a848971253cb6e898fee96fa6"], 0x28, 0x4470, &(0x7f0000008c00)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file6\x00', 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file6\x00', 0x200)

2.258640934s ago: executing program 3 (id=574):
r0 = syz_usb_connect$hid(0x0, 0x3b, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000404355220500000000000109022400010000000009040100010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000440)={0x24, &(0x7f0000000040)={0x0, 0x0, 0x5, {0x5, 0x0, "b53a25"}}, 0x0, 0x0, 0x0}, 0x0)

2.108131271s ago: executing program 1 (id=575):
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@remote, 0x200000, 0x0, 0xff, 0x1}, 0x20)
r0 = io_uring_setup(0x1de0, &(0x7f0000000440))
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0x1d, 0x20000002, 0x0)

1.898907057s ago: executing program 2 (id=576):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r1], 0x1})

1.834347177s ago: executing program 1 (id=577):
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000005c0)={[{@noauto_da_alloc}, {@errors_remount}, {@dioread_nolock}]}, 0x1, 0x4c4, &(0x7f00000000c0)="$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")
r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @adiantum, 0x0, @desc3})

1.274153935s ago: executing program 1 (id=578):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
write$ppp(r0, 0x0, 0x0)

1.188624008s ago: executing program 2 (id=579):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff001201000006000043be4354", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e00000004000280080004"], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

622.244507ms ago: executing program 4 (id=580):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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", @ANYBLOB="3db1bd3c9388ce300f92cc8091d7ddbdcfffeed8bb90e543382e29209562d6483c6fcfdf79d0b465e6bc8ea70762049054a683ca4394e098765d85fa3b798fc191119debc7d45cce724609d275eabc974abf88d2270db005808488efc289084aff3069b2b0a78cdfa1f780c10f6c51d7c9ced7ab3e8a7aa716d5ebe1e8cb6255366a32ca4bfad14e3b1315ec", @ANYRESHEX, @ANYRES64, @ANYRES16, @ANYRES64], 0x1, 0x624c, &(0x7f0000001f80)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

420.306196ms ago: executing program 3 (id=581):
r0 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000740)={0x14, &(0x7f0000000680)={0x20, 0x10, 0x9f, {0x9f, 0x1, "c0b0fdb239a2839ec55d43a5f252a1f8834d3f4988a076cf1b63a3ca15e8710ad130ca61d6fa8d438ed9886ada8aea367d434dbdd70a91d1e09db2af45aba74aa8c7014e9d26f458b03e33c410483e1db4133984b33b2ee7804efd46295ff554b451fa63663d8430e781394b8bd0fa12aecb4b68ef10c5def36b93e050dec087cde1abdff6417da22ab269faf869052b5ba915df55e2caa06bc1ae621f"}}, &(0x7f00000003c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xc38, &(0x7f0000000080)=ANY=[])

0s ago: executing program 4 (id=582):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x34, r1, 0x701, 0x0, 0x0, {0x2a}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.225' (ED25519) to the list of known hosts.
[   59.503006][ T5813] cgroup: Unknown subsys name 'net'
[   59.661875][ T5813] cgroup: Unknown subsys name 'cpuset'
[   59.670555][ T5813] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   60.967215][ T5813] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   64.907585][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   64.916086][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   64.925035][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   64.933466][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   64.943771][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   64.949327][ T5844] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   64.962500][ T5842] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   64.972600][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   64.980997][ T5842] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   64.982081][ T5843] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   64.989367][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   64.996493][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   65.002493][ T5842] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   65.011197][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   65.018319][ T5841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   65.024764][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   65.030960][ T5841] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   65.040623][ T5845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   65.044901][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   65.051253][ T5843] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   65.059004][ T5842] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   65.067692][ T5845] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   65.072288][ T5841] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   65.079595][ T5845] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   65.093267][ T5843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   65.095835][ T5140] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   65.101791][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   65.108365][ T5140] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   65.115334][ T5843] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   65.132343][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   65.513787][ T5826] chnl_net:caif_netlink_parms(): no params data found
[   65.575119][ T5824] chnl_net:caif_netlink_parms(): no params data found
[   65.646991][ T5825] chnl_net:caif_netlink_parms(): no params data found
[   65.721559][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.728883][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.736277][ T5826] bridge_slave_0: entered allmulticast mode
[   65.743814][ T5826] bridge_slave_0: entered promiscuous mode
[   65.755100][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.762287][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.769571][ T5826] bridge_slave_1: entered allmulticast mode
[   65.776075][ T5826] bridge_slave_1: entered promiscuous mode
[   65.794237][ T5823] chnl_net:caif_netlink_parms(): no params data found
[   65.803496][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   65.876519][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.896687][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.903857][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.911188][ T5824] bridge_slave_0: entered allmulticast mode
[   65.917764][ T5824] bridge_slave_0: entered promiscuous mode
[   65.940026][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.955625][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.966398][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.973902][ T5824] bridge_slave_1: entered allmulticast mode
[   65.981026][ T5824] bridge_slave_1: entered promiscuous mode
[   66.002898][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.010078][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.017259][ T5825] bridge_slave_0: entered allmulticast mode
[   66.024241][ T5825] bridge_slave_0: entered promiscuous mode
[   66.073235][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.083641][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.090894][ T5825] bridge_slave_1: entered allmulticast mode
[   66.097462][ T5825] bridge_slave_1: entered promiscuous mode
[   66.113715][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.141558][ T5826] team0: Port device team_slave_0 added
[   66.149481][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.176306][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.188203][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.195301][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.202696][ T5828] bridge_slave_0: entered allmulticast mode
[   66.209683][ T5828] bridge_slave_0: entered promiscuous mode
[   66.217026][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.224353][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.231718][ T5823] bridge_slave_0: entered allmulticast mode
[   66.238470][ T5823] bridge_slave_0: entered promiscuous mode
[   66.246483][ T5826] team0: Port device team_slave_1 added
[   66.271824][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.290138][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.297269][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.304805][ T5828] bridge_slave_1: entered allmulticast mode
[   66.311539][ T5828] bridge_slave_1: entered promiscuous mode
[   66.326225][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.333348][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.340701][ T5823] bridge_slave_1: entered allmulticast mode
[   66.347237][ T5823] bridge_slave_1: entered promiscuous mode
[   66.364490][ T5824] team0: Port device team_slave_0 added
[   66.372124][ T5824] team0: Port device team_slave_1 added
[   66.394873][ T5825] team0: Port device team_slave_0 added
[   66.416747][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.424004][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.450515][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.470878][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.477852][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.504261][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.518906][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.529978][ T5825] team0: Port device team_slave_1 added
[   66.554069][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.561304][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.588624][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.600543][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.607500][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.633824][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.651264][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.668473][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.716581][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.738715][ T5826] hsr_slave_0: entered promiscuous mode
[   66.744982][ T5826] hsr_slave_1: entered promiscuous mode
[   66.753274][ T5828] team0: Port device team_slave_0 added
[   66.762562][ T5828] team0: Port device team_slave_1 added
[   66.769076][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.776026][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.802127][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.840950][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.847918][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.874063][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.887506][ T5823] team0: Port device team_slave_0 added
[   66.896655][ T5823] team0: Port device team_slave_1 added
[   66.936183][ T5824] hsr_slave_0: entered promiscuous mode
[   66.942731][ T5824] hsr_slave_1: entered promiscuous mode
[   66.949183][ T5824] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   66.957016][ T5824] Cannot create hsr debugfs directory
[   66.967342][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.974749][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.000713][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.021923][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.029075][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.055556][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.075925][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.083240][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.109643][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.134171][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.141353][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.168803][ T5837] Bluetooth: hci0: command tx timeout
[   67.168809][ T5845] Bluetooth: hci3: command tx timeout
[   67.169191][ T5845] Bluetooth: hci2: command tx timeout
[   67.174742][ T5837] Bluetooth: hci4: command tx timeout
[   67.180420][ T5845] Bluetooth: hci1: command tx timeout
[   67.186630][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.269301][ T5823] hsr_slave_0: entered promiscuous mode
[   67.275512][ T5823] hsr_slave_1: entered promiscuous mode
[   67.282035][ T5823] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.289650][ T5823] Cannot create hsr debugfs directory
[   67.315650][ T5825] hsr_slave_0: entered promiscuous mode
[   67.324836][ T5825] hsr_slave_1: entered promiscuous mode
[   67.331664][ T5825] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.340173][ T5825] Cannot create hsr debugfs directory
[   67.366757][ T5828] hsr_slave_0: entered promiscuous mode
[   67.373799][ T5828] hsr_slave_1: entered promiscuous mode
[   67.380794][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.388400][ T5828] Cannot create hsr debugfs directory
[   67.682168][ T5826] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   67.694128][ T5826] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   67.712325][ T5826] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   67.743666][ T5826] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   67.757498][ T5824] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   67.776912][ T5824] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   67.786086][ T5824] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   67.805003][ T5824] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   67.851440][ T5823] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   67.861973][ T5823] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   67.871553][ T5823] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   67.884259][ T5823] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   67.936537][ T5825] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   67.947839][ T5825] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   67.971647][ T5825] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   67.983205][ T5825] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   68.048283][ T5828] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   68.065922][ T5828] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   68.089316][ T5828] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   68.101781][ T5828] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   68.202103][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.212725][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.262753][ T5823] 8021q: adding VLAN 0 to HW filter on device team0
[   68.280718][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   68.309616][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.316902][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.326750][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.333845][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.343374][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.350567][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.361982][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.391505][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.398657][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.417925][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[   68.466682][ T3539] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.473828][ T3539] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.493318][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.505846][ T3539] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.512972][ T3539] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.563367][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.609912][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   68.642203][ T1330] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.649400][ T1330] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.675779][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   68.704372][  T794] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.712090][  T794] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.734283][ T5824] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   68.763197][ T5824] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   68.784328][  T794] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.791515][  T794] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.823482][ T1330] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.830688][ T1330] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.930953][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.086877][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.129647][ T5826] veth0_vlan: entered promiscuous mode
[   69.165940][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.191989][ T5826] veth1_vlan: entered promiscuous mode
[   69.241507][ T5838] Bluetooth: hci2: command tx timeout
[   69.241534][ T5832] Bluetooth: hci3: command tx timeout
[   69.246983][ T5845] Bluetooth: hci4: command tx timeout
[   69.252917][ T5832] Bluetooth: hci1: command tx timeout
[   69.264539][ T5837] Bluetooth: hci0: command tx timeout
[   69.326171][ T5826] veth0_macvtap: entered promiscuous mode
[   69.342520][ T5823] veth0_vlan: entered promiscuous mode
[   69.355387][ T5824] veth0_vlan: entered promiscuous mode
[   69.368196][ T5826] veth1_macvtap: entered promiscuous mode
[   69.394771][ T5823] veth1_vlan: entered promiscuous mode
[   69.402981][ T5824] veth1_vlan: entered promiscuous mode
[   69.417413][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.427801][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.438863][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.467609][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.504603][ T5826] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.514668][ T5826] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.524242][ T5826] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.533584][ T5826] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.585566][ T5823] veth0_macvtap: entered promiscuous mode
[   69.641240][ T5824] veth0_macvtap: entered promiscuous mode
[   69.663390][ T5823] veth1_macvtap: entered promiscuous mode
[   69.721144][ T5824] veth1_macvtap: entered promiscuous mode
[   69.756510][ T5825] veth0_vlan: entered promiscuous mode
[   69.780692][ T5823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.792325][ T5823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.810388][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.826610][ T1330] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.843430][ T5823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.855276][ T5823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.856032][ T1330] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.867043][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.905105][ T5825] veth1_vlan: entered promiscuous mode
[   69.914120][ T5823] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.923451][ T5823] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.932409][ T5823] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.941565][ T5823] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.959530][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.973327][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.983356][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.994009][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.005259][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.026273][ T3539] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.037590][ T3539] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.047624][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.059688][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.070750][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.081468][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.092845][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.116431][ T5825] veth0_macvtap: entered promiscuous mode
[   70.141638][ T5828] veth0_vlan: entered promiscuous mode
[   70.157563][ T5825] veth1_macvtap: entered promiscuous mode
[   70.160397][ T5826] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   70.166740][ T5824] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.191209][ T5824] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.200640][ T5824] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.209724][ T5824] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.267929][ T5828] veth1_vlan: entered promiscuous mode
[   70.329986][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.343347][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.363542][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.377932][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.392193][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.410694][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.422772][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.442679][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.461041][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.473242][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.487205][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.499555][ T5825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.516811][ T5825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.533810][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.592839][ T5828] veth0_macvtap: entered promiscuous mode
[   70.598580][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.598603][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.626126][ T5825] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.635267][ T5825] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.644397][ T5825] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.653557][ T5825] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.676072][ T5828] veth1_macvtap: entered promiscuous mode
[   70.706827][  T794] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.715615][  T794] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.734087][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.748880][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.760858][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.771494][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.781710][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.792247][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.802138][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.812671][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.823781][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.865284][ T3539] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.881329][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.884294][ T3539] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.902155][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.913854][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.925164][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.935155][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.945639][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.955713][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.966302][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.977390][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.996027][ T5828] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.012656][ T5828] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.021481][ T5828] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.030471][ T5828] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.047521][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.058076][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.106996][ T1330] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.140890][ T1330] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.189413][   T29] audit: type=1326 audit(1730881759.172:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5919 comm="syz.1.2" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f7dd7e719 code=0x0
[   71.227867][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.237823][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.317577][  T794] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.334203][ T5837] Bluetooth: hci0: command tx timeout
[   71.337236][  T794] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.341962][ T5837] Bluetooth: hci1: command tx timeout
[   71.353316][ T5832] Bluetooth: hci4: command tx timeout
[   71.353368][ T5838] Bluetooth: hci2: command tx timeout
[   71.367006][ T5845] Bluetooth: hci3: command tx timeout
[   71.513270][ T1330] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.539816][ T1330] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.599815][ T5932] loop0: detected capacity change from 0 to 256
[   71.641255][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[   71.652603][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[   71.775514][ T5932] FAT-fs (loop0): Directory bread(block 64) failed
[   71.800190][ T5932] FAT-fs (loop0): Directory bread(block 65) failed
[   71.815025][ T5932] FAT-fs (loop0): Directory bread(block 66) failed
[   71.825428][ T5932] FAT-fs (loop0): Directory bread(block 67) failed
[   71.841443][ T5932] FAT-fs (loop0): Directory bread(block 68) failed
[   71.866224][ T5932] FAT-fs (loop0): Directory bread(block 69) failed
[   71.874215][ T5932] FAT-fs (loop0): Directory bread(block 70) failed
[   71.904590][ T5932] FAT-fs (loop0): Directory bread(block 71) failed
[   71.918805][ T5932] FAT-fs (loop0): Directory bread(block 72) failed
[   71.946432][ T5932] FAT-fs (loop0): Directory bread(block 73) failed
[   72.332629][ T5950] loop0: detected capacity change from 0 to 512
[   72.387410][ T5950] EXT4-fs: Ignoring removed mblk_io_submit option
[   72.441058][ T5950] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   72.487869][ T5934] loop2: detected capacity change from 0 to 32768
[   72.562529][ T5950] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   72.605335][ T5950] System zones: 1-12
[   72.608228][ T5959] =======================================================
[   72.608228][ T5959] WARNING: The mand mount option has been deprecated and
[   72.608228][ T5959]          and is ignored by this kernel. Remove the mand
[   72.608228][ T5959]          option from the mount to silence this warning.
[   72.608228][ T5959] =======================================================
[   72.644233][    C0] vkms_vblank_simulate: vblank timer overrun
[   72.652938][ T5950] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.17: corrupted in-inode xattr: e_value size too large
[   72.672139][ T5830] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   72.715599][ T5950] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.17: couldn't read orphan inode 15 (err -117)
[   72.742975][ T5934] ERROR: (device loop2): dbAlloc: the hint is outside the map
[   72.742975][ T5934] 
[   72.780226][ T5934] ERROR: (device loop2): remounting filesystem as read-only
[   72.792386][ T5950] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.804833][ T5934] ialloc: diAlloc returned -5!
[   72.848613][ T5830] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[   72.856978][ T5830] usb 5-1: config 0 has no interface number 0
[   72.863150][ T5830] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   72.908145][ T5830] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   72.967333][ T5830] usb 5-1: New USB device found, idVendor=048d, idProduct=ce50, bcdDevice= 0.00
[   72.983652][ T5830] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.001653][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.020707][ T5830] usb 5-1: config 0 descriptor??
[   73.141922][ T5973] loop3: detected capacity change from 0 to 512
[   73.170145][ T5971] loop0: detected capacity change from 0 to 2048
[   73.237487][ T5973] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.251600][ T5971] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.398839][ T5845] Bluetooth: hci3: command tx timeout
[   73.404374][ T5845] Bluetooth: hci2: command tx timeout
[   73.409974][ T5838] Bluetooth: hci1: command tx timeout
[   73.415429][ T5838] Bluetooth: hci4: command tx timeout
[   73.420957][ T5843] Bluetooth: hci0: command tx timeout
[   73.473172][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.499634][ T5830] asus 0003:048D:CE50.0001: unknown main item tag 0xd
[   73.520919][ T5826] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.532097][ T5830] asus 0003:048D:CE50.0001: hidraw0: USB HID v0.00 Device [HID 048d:ce50] on usb-dummy_hcd.4-1/input1
[   73.576795][ T5830] asus 0003:048D:CE50.0001: Asus input not registered
[   73.704250][ T5965] loop1: detected capacity change from 0 to 32768
[   73.740254][ T5982] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   73.744845][ T5987] netlink: 4 bytes leftover after parsing attributes in process `syz.3.31'.
[   73.748423][ T5830] asus 0003:048D:CE50.0001: probe with driver asus failed with error -12
[   73.867243][ T5830] usb 5-1: USB disconnect, device number 2
[   74.378165][   T29] audit: type=1800 audit(1730881762.332:3): pid=6009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.37" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   74.498134][    T8] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   74.508101][ T6017] loop1: detected capacity change from 0 to 2048
[   74.585408][ T6017] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c098, mo2=0002]
[   74.636199][ T6017] System zones: 0-4
[   74.644095][ T6017] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.657692][ T6017] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.689540][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   74.700616][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   74.707416][ T6017] EXT4-fs (loop1): resizing filesystem from 256 to 0 blocks
[   74.710871][    T8] usb 4-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[   74.725084][ T6017] EXT4-fs warning (device loop1): ext4_resize_fs:2042: can't shrink FS - resize aborted
[   74.727999][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.756549][    T8] usb 4-1: config 0 descriptor??
[   74.992239][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.176473][    T8] logitech-djreceiver 0003:046D:C71B.0002: item fetching failed at offset 0/7
[   75.187842][    T8] logitech-djreceiver 0003:046D:C71B.0002: logi_dj_probe: parse failed
[   75.227644][    T8] logitech-djreceiver 0003:046D:C71B.0002: probe with driver logitech-djreceiver failed with error -22
[   75.371913][ T6052] program syz.4.63 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.461415][    T8] usb 4-1: USB disconnect, device number 2
[   75.568304][ T6058] capability: warning: `syz.4.67' uses 32-bit capabilities (legacy support in use)
[   75.856392][ T6068] netlink: 'syz.1.71': attribute type 16 has an invalid length.
[   75.857864][ T6060] loop2: detected capacity change from 0 to 4096
[   75.885116][ T6060] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   75.889600][ T6068] netlink: 8 bytes leftover after parsing attributes in process `syz.1.71'.
[   75.970841][ T6060] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   75.974008][ T6050] loop0: detected capacity change from 0 to 32768
[   75.981358][ T6060] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[   76.048937][    T8] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   76.097426][ T6050] XFS (loop0): Mounting V5 Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[   76.150614][ T6081] loop3: detected capacity change from 0 to 256
[   76.157611][ T6081] exfat: Deprecated parameter 'utf8'
[   76.168802][ T6081] exfat: Deprecated parameter 'utf8'
[   76.290313][    T8] usb 5-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[   76.299704][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.299979][ T6085] loop2: detected capacity change from 0 to 512
[   76.307748][    T8] usb 5-1: Product: syz
[   76.307772][    T8] usb 5-1: Manufacturer: syz
[   76.307788][    T8] usb 5-1: SerialNumber: syz
[   76.357357][ T6081] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[   76.364003][    T8] usb 5-1: config 0 descriptor??
[   76.372141][ T6085] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   76.389637][ T6050] XFS (loop0): Ending clean mount
[   76.452973][ T6085] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.75: Unimplemented hash flags: 0x0001
[   76.465171][ T6085] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.75: Corrupt directory, running e2fsck is recommended
[   76.478597][ T6085] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 3: comm syz.2.75: path /15/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[   76.641262][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.680332][ T5825] XFS (loop0): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[   77.017363][    T8] usb 5-1: f81604_read: reg: 105 failed: -EPROTO
[   77.024403][    T8] f81604 5-1:0.0: Setting termination of CH#1 failed: -EPROTO
[   77.042483][    T8] f81604 5-1:0.0: probe with driver f81604 failed with error -71
[   77.090012][    T8] usb 5-1: USB disconnect, device number 3
[   77.467835][ T6104] /dev/nullb0: Can't open blockdev
[   77.656884][ T6092] loop3: detected capacity change from 0 to 32768
[   77.678404][ T6092] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.77 (6092)
[   77.803531][ T6111] capability: warning: `syz.4.85' uses deprecated v2 capabilities in a way that may be insecure
[   77.892063][   T29] audit: type=1326 audit(1730881765.882:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.1.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f7dd7e719 code=0x7ffc0000
[   78.008289][   T29] audit: type=1326 audit(1730881765.932:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.1.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f7dd7e719 code=0x7ffc0000
[   78.010935][ T6109] loop0: detected capacity change from 0 to 32768
[   78.066246][ T6109] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.86 (6109)
[   78.082833][   T29] audit: type=1326 audit(1730881766.032:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.1.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f7f7dd7e719 code=0x7ffc0000
[   78.101550][ T6092] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   78.136558][   T29] audit: type=1326 audit(1730881766.032:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.1.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f7dd7e719 code=0x7ffc0000
[   78.142090][ T6092] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[   78.188173][   T29] audit: type=1326 audit(1730881766.032:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.1.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f7dd7e719 code=0x7ffc0000
[   78.208139][ T6092] BTRFS info (device loop3): using free-space-tree
[   78.228104][   T29] audit: type=1326 audit(1730881766.042:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.1.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=225 compat=0 ip=0x7f7f7dd7e719 code=0x7ffc0000
[   78.267807][   T29] audit: type=1326 audit(1730881766.042:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.1.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f7dd7e719 code=0x7ffc0000
[   78.290251][   T29] audit: type=1326 audit(1730881766.042:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.1.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f7dd7e719 code=0x7ffc0000
[   78.449963][ T6109] BTRFS info (device loop0): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   78.460488][ T6109] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[   78.484642][ T6109] BTRFS info (device loop0): using free-space-tree
[   78.606787][ T6101] loop2: detected capacity change from 0 to 40427
[   78.628823][ T6101] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[   78.636348][ T6101] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   78.674524][ T6101] F2FS-fs (loop2): invalid crc value
[   78.723191][ T6101] F2FS-fs (loop2): Found nat_bits in checkpoint
[   78.768083][   T25] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   78.796325][ T5826] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   78.877478][ T6109] syz.0.86 (6109) used greatest stack depth: 18680 bytes left
[   79.022866][ T6162] loop4: detected capacity change from 0 to 2048
[   79.107133][ T6101] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   79.117526][ T6101] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   79.162434][ T5825] BTRFS info (device loop0): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   79.174149][   T25] usb 2-1: Using ep0 maxpacket: 16
[   79.188562][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   79.190364][ T5824] syz-executor: attempt to access beyond end of device
[   79.190364][ T5824] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   79.199627][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   79.215012][ T5824] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   79.224101][   T25] usb 2-1: New USB device found, idVendor=22d4, idProduct=1503, bcdDevice= 0.00
[   79.240633][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.241978][ T6162] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   79.272520][   T25] usb 2-1: config 0 descriptor??
[   79.490790][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.731319][   T25] glorious 0003:22D4:1503.0003: hidraw0: USB HID v0.00 Device [Glorious Model I] on usb-dummy_hcd.1-1/input0
[   79.997014][ T5879] usb 2-1: USB disconnect, device number 2
[   80.178089][   T25] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   80.244430][ T6191] loop4: detected capacity change from 0 to 2048
[   80.296884][ T6191] EXT4-fs error (device loop4): ext4_orphan_get:1414: comm syz.4.106: bad orphan inode 8192
[   80.314972][ T6191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.329193][   T25] usb 3-1: Using ep0 maxpacket: 16
[   80.336015][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   80.364580][   T29] audit: type=1800 audit(1730881768.352:12): pid=6191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.106" name="file1" dev="loop4" ino=15 res=0 errno=0
[   80.388312][ T5882] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   80.404741][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.433190][   T25] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   80.455960][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.457015][   T25] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   80.474397][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.490391][   T25] usb 3-1: config 0 descriptor??
[   80.669805][ T5882] usb 4-1: config 0 has no interfaces?
[   80.675402][ T5882] usb 4-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[   80.685704][ T5882] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.696199][ T5882] usb 4-1: config 0 descriptor??
[   80.731876][ T6206] netlink: 'syz.4.110': attribute type 10 has an invalid length.
[   80.917515][ T5882] usb 4-1: USB disconnect, device number 3
[   80.930825][ T6203] loop1: detected capacity change from 0 to 32768
[   80.953105][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   80.959695][ T6206] 8021q: adding VLAN 0 to HW filter on device team0
[   80.961400][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   80.969899][ T6206] bond0: (slave team0): Enslaving as an active interface with an up link
[   80.997663][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   81.006056][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   81.013481][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   81.020779][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   81.028103][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   81.035367][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   81.041658][ T6203] ERROR: (device loop1): duplicateIXtree: 
[   81.041658][ T6203] 
[   81.042656][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   81.058286][   T25] microsoft 0003:045E:07DA.0004: unknown main item tag 0x0
[   81.065782][ T6203] ERROR: (device loop1): remounting filesystem as read-only
[   81.070014][ T6209] netlink: 'syz.4.110': attribute type 10 has an invalid length.
[   81.076472][   T25] microsoft 0003:045E:07DA.0004: No inputs registered, leaving
[   81.093043][   T25] microsoft 0003:045E:07DA.0004: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[   81.104730][   T25] microsoft 0003:045E:07DA.0004: no inputs found
[   81.111468][   T25] microsoft 0003:045E:07DA.0004: could not initialize ff, continuing anyway
[   81.137703][ T6209] bond0: (slave team0): Releasing backup interface
[   81.202341][  T972] usb 3-1: USB disconnect, device number 2
[   81.451599][ T6221] loop4: detected capacity change from 0 to 2048
[   81.496160][ T6221] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.528229][ T6221] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.620546][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.819468][ T5882] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   81.886760][ T6232] loop4: detected capacity change from 0 to 4096
[   81.888288][  T974] cfg80211: failed to load regulatory.db
[   81.907929][ T6232] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[   82.025714][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   82.056791][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   82.077026][ T5882] usb 1-1: New USB device found, idVendor=056a, idProduct=00bb, bcdDevice= 0.00
[   82.089182][ T5882] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.107018][ T5882] usb 1-1: config 0 descriptor??
[   82.248172][  T972] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   82.280863][ T6247] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   82.399983][  T972] usb 3-1: too many configurations: 9, using maximum allowed: 8
[   82.437690][ T6250] loop1: detected capacity change from 0 to 164
[   82.446485][  T972] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[   82.462737][  T972] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   82.485538][  T972] usb 3-1: config 0 interface 0 has no altsetting 0
[   82.495736][  T972] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[   82.507026][  T972] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   82.526233][  T972] usb 3-1: config 0 interface 0 has no altsetting 0
[   82.535146][  T972] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[   82.558337][  T972] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   82.569717][  T972] usb 3-1: config 0 interface 0 has no altsetting 0
[   82.587597][ T5882] wacom 0003:056A:00BB.0005: Unknown device_type for 'HID 056a:00bb'. Assuming pen.
[   82.616678][ T5882] wacom 0003:056A:00BB.0005: hidraw0: USB HID v0.00 Device [HID 056a:00bb] on usb-dummy_hcd.0-1/input0
[   82.630713][ T5882] input: Wacom Intuos4 12x19 Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:056A:00BB.0005/input/input6
[   82.673411][  T972] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[   82.684501][  T972] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   82.696709][  T972] usb 3-1: config 0 interface 0 has no altsetting 0
[   82.728207][  T972] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[   82.737157][  T972] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   82.739093][ T6255] netlink: 'syz.4.133': attribute type 27 has an invalid length.
[   82.748254][  T972] usb 3-1: config 0 interface 0 has no altsetting 0
[   82.791264][ T5830] usb 1-1: USB disconnect, device number 2
[   82.807862][  T972] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[   82.822153][  T972] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   82.858067][  T972] usb 3-1: config 0 interface 0 has no altsetting 0
[   82.894079][  T972] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[   82.918288][  T972] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   82.963807][  T972] usb 3-1: config 0 interface 0 has no altsetting 0
[   82.980289][ T6244] loop3: detected capacity change from 0 to 32768
[   83.023139][  T972] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[   83.054984][ T6244] (syz.3.127,6244,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   83.058579][  T972] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   83.100063][ T6244] (syz.3.127,6244,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   83.115319][  T972] usb 3-1: config 0 interface 0 has no altsetting 0
[   83.176013][  T972] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   83.207763][ T6244] JBD2: Ignoring recovery information on journal
[   83.213935][  T972] usb 3-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   83.297386][  T972] usb 3-1: Product: syz
[   83.305359][  T972] usb 3-1: Manufacturer: syz
[   83.358894][ T6244] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[   83.368455][  T972] usb 3-1: SerialNumber: syz
[   83.391274][  T972] usb 3-1: config 0 descriptor??
[   83.429428][  T972] yurex 3-1:0.0: USB YUREX device now attached to Yurex #0
[   83.708877][ T5826] ocfs2: Unmounting device (7,3) on (node local)
[   83.787553][  T974] usb 3-1: USB disconnect, device number 3
[   83.802161][  T974] yurex 3-1:0.0: USB YUREX #0 now disconnected
[   84.003013][ T6261] loop4: detected capacity change from 0 to 32768
[   84.133487][ T6261] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   84.401639][ T6261] XFS (loop4): Ending clean mount
[   84.406262][ T6268] loop1: detected capacity change from 0 to 40427
[   84.473569][ T6261] XFS (loop4): Quotacheck needed: Please wait.
[   84.493910][ T6268] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[   84.501226][ T6268] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   84.528809][ T6268] F2FS-fs (loop1): build fault injection attr: rate: 17008, type: 0x1fffff
[   84.537487][ T6268] F2FS-fs (loop1): Image doesn't support compression
[   84.566012][ T6268] F2FS-fs (loop1): invalid crc value
[   84.582479][ T6268] F2FS-fs (loop1): Found nat_bits in checkpoint
[   84.676052][ T6261] XFS (loop4): Quotacheck: Done.
[   84.683691][ T6288] loop3: detected capacity change from 0 to 32768
[   84.696054][ T6288] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.144 (6288)
[   84.750765][ T6268] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   84.758035][ T6288] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   84.768789][ T6288] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[   84.777487][ T6288] BTRFS info (device loop3): using free-space-tree
[   84.784272][ T6268] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   84.814576][ T5828] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   84.825254][ T6303] loop2: detected capacity change from 0 to 128
[   85.183839][ T6317] loop4: detected capacity change from 0 to 1764
[   85.200909][ T5823] syz-executor: attempt to access beyond end of device
[   85.200909][ T5823] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   85.236307][ T5823] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   85.491948][ T6328] netlink: 'syz.2.154': attribute type 2 has an invalid length.
[   85.683526][ T6336] loop2: detected capacity change from 0 to 512
[   85.706928][ T6336] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   85.721070][ T6336] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   85.893686][ T5826] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   85.912397][ T6336] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   85.939712][ T6336] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   86.022851][ T6336] EXT4-fs (loop2): 1 truncate cleaned up
[   86.029573][ T6336] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.229238][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.355176][ T6341] loop0: detected capacity change from 0 to 32768
[   86.641818][ T6350] loop4: detected capacity change from 0 to 32768
[   86.680109][ T6350] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.163 (6350)
[   86.723012][ T6341] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   86.852557][ T6350] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   86.901871][ T6350] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[   86.926876][ T6350] BTRFS info (device loop4): using free-space-tree
[   87.007602][ T5825] ocfs2: Unmounting device (7,0) on (node local)
[   87.034110][ T6365] loop1: detected capacity change from 0 to 4096
[   87.152086][ T6390] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   87.358332][  T974] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   87.430768][ T6395] loop1: detected capacity change from 0 to 1024
[   87.437936][ T5828] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   87.473736][ T6397] loop2: detected capacity change from 0 to 64
[   87.552349][ T6395] hfsplus: bad catalog entry type
[   87.565308][  T974] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   87.606430][  T974] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   87.649837][  T974] usb 4-1: New USB device found, idVendor=11ff, idProduct=3331, bcdDevice= 0.00
[   87.674012][  T974] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.694351][  T974] usb 4-1: config 0 descriptor??
[   87.911580][ T6407] loop1: detected capacity change from 0 to 2048
[   87.976006][ T6407] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[   88.056641][ T6407] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   88.135515][ T6415] loop4: detected capacity change from 0 to 256
[   88.136906][  T974] gembird 0003:11FF:3331.0006: unknown main item tag 0x0
[   88.143049][ T6407] netlink: 16 bytes leftover after parsing attributes in process `syz.1.177'.
[   88.188098][  T974] gembird 0003:11FF:3331.0006: unknown main item tag 0x0
[   88.213370][  T974] gembird 0003:11FF:3331.0006: unknown main item tag 0x0
[   88.228239][  T974] gembird 0003:11FF:3331.0006: unknown main item tag 0x0
[   88.245726][  T974] gembird 0003:11FF:3331.0006: unknown main item tag 0x0
[   88.273871][ T6415] FAT-fs (loop4): Directory bread(block 64) failed
[   88.291100][  T974] gembird 0003:11FF:3331.0006: unknown main item tag 0x0
[   88.302725][ T6415] FAT-fs (loop4): Directory bread(block 65) failed
[   88.313038][ T6415] FAT-fs (loop4): Directory bread(block 66) failed
[   88.320098][ T6419] tipc: Started in network mode
[   88.325587][ T6419] tipc: Node identity , cluster identity 4711
[   88.330703][ T6415] FAT-fs (loop4): Directory bread(block 67) failed
[   88.332499][ T6419] tipc: Failed to set node id, please configure manually
[   88.346044][ T6419] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   88.349379][ T6415] FAT-fs (loop4): Directory bread(block 68) failed
[   88.376909][ T6415] FAT-fs (loop4): Directory bread(block 69) failed
[   88.406194][  T974] gembird 0003:11FF:3331.0006: hidraw0: USB HID v0.00 Device [HID 11ff:3331] on usb-dummy_hcd.3-1/input0
[   88.408221][ T6415] FAT-fs (loop4): Directory bread(block 70) failed
[   88.427867][  T974] usb 4-1: USB disconnect, device number 4
[   88.455973][ T6421] loop0: detected capacity change from 0 to 256
[   88.483360][ T6415] FAT-fs (loop4): Directory bread(block 71) failed
[   88.586342][ T6415] FAT-fs (loop4): Directory bread(block 72) failed
[   88.586381][ T6415] FAT-fs (loop4): Directory bread(block 73) failed
[   89.110222][ T6413] loop2: detected capacity change from 0 to 40427
[   89.117656][ T6431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.189'.
[   89.200243][ T6413] F2FS-fs (loop2): invalid crc value
[   89.328818][ T6413] F2FS-fs (loop2): Found nat_bits in checkpoint
[   89.424715][ T6425] loop0: detected capacity change from 0 to 32768
[   89.435451][ T6444] loop1: detected capacity change from 0 to 512
[   89.454596][ T6425] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.186 (6425)
[   89.478324][ T6413] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   89.528088][ T6425] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[   89.540139][ T6425] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[   89.552648][ T6425] BTRFS error (device loop0): superblock checksum mismatch
[   89.568146][ T6425] BTRFS error (device loop0): open_ctree failed
[   89.595839][ T6444] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.625352][ T6444] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.637043][ T5847] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by udevd (5847)
[   89.693805][ T6425] loop0: detected capacity change from 0 to 128
[   89.747925][ T6425] befs: (loop0): No write support. Marking filesystem read-only
[   89.807934][ T6425] befs: (loop0): invalid magic header
[   90.127735][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.518668][ T6452] loop3: detected capacity change from 0 to 32768
[   90.562076][ T6452] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[   90.621035][ T6452] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[   90.706027][ T6473] Invalid ELF header magic: != ELF
[   90.862042][ T6452] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[   90.877786][ T6460] loop0: detected capacity change from 0 to 32768
[   90.892504][ T6480] netlink: 80 bytes leftover after parsing attributes in process `syz.2.207'.
[   90.947361][ T6460] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.201 (6460)
[   91.058093][ T6460] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   91.079332][ T6452] gfs2: fsid=syz:syz.s: first mount done, others may mount
[   91.098610][ T6460] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[   91.128134][ T6460] BTRFS info (device loop0): using free-space-tree
[   91.278141][ T5830] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   91.488184][ T5830] usb 3-1: Using ep0 maxpacket: 16
[   91.520953][ T5830] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   91.552530][ T5830] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   91.588027][ T5830] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   91.612763][ T6513] loop1: detected capacity change from 0 to 1024
[   91.634712][ T5830] usb 3-1: New USB device found, idVendor=28bd, idProduct=0078, bcdDevice= 0.00
[   91.702068][ T5830] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.719910][ T5825] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   91.749051][ T5830] usb 3-1: config 0 descriptor??
[   91.965552][ T6520] netlink: 8 bytes leftover after parsing attributes in process `syz.3.219'.
[   92.181742][ T5830] uclogic 0003:28BD:0078.0007: interface is invalid, ignoring
[   92.254044][ T6492] loop4: detected capacity change from 0 to 32768
[   92.405271][  T972] usb 3-1: USB disconnect, device number 4
[   92.415899][ T6492] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=ro,metadata_checksum=none,data_checksum=none,compression=lz4,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,noexcl,read_only
[   92.443779][ T6492] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[   92.454815][ T6492] bcachefs (loop4): Version upgrade required:
[   92.454815][ T6492] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   92.454815][ T6492] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   92.454815][ T6492]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   92.538761][ T6492] bcachefs (loop4): insufficient writeable journal devices available: have 0, need 1
[   92.538761][ T6492] rw journal devs: loop4
[   92.597601][ T6492] invalid bkey u64s 9 type backpointer 0:8921088:0 len 0 ver 0: bucket=0:34:0 btree=extents level=0 offset=8:160 len=8 pos=536870913:24:U32_MAX
[   92.597638][ T6492]   backpointer bucket_offset wrong: delete?, fixing
[   92.639393][ T6492] bcachefs (loop4): accounting_read... done
[   92.659371][ T6492] bcachefs (loop4): alloc_read... done
[   92.665130][ T6492] bcachefs (loop4): stripes_read... done
[   92.678818][ T6492] bcachefs (loop4): Fixed errors, running fsck a second time to verify fs is clean
[   92.702846][ T6492] bcachefs (loop4): done starting filesystem
[   92.778777][ T6519] loop0: detected capacity change from 0 to 32768
[   92.895951][ T6492] syz.4.212 (6492) used greatest stack depth: 17792 bytes left
[   92.926701][ T5828] bcachefs (loop4): shutting down
[   93.021306][ T5828] bcachefs (loop4): shutdown complete
[   93.027420][ T6537] loop2: detected capacity change from 0 to 512
[   93.047758][ T6523] loop3: detected capacity change from 0 to 32768
[   93.097273][ T6523] XFS: attr2 mount option is deprecated.
[   93.127092][ T6537] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.144310][ T6537] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.154187][ T6545] loop1: detected capacity change from 0 to 512
[   93.165298][ T6523] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   93.169596][ T6537] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.224: corrupted inode contents
[   93.191420][ T6537] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.224: mark_inode_dirty error
[   93.206814][ T6537] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.224: corrupted inode contents
[   93.229280][ T6548] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.224: corrupted inode contents
[   93.264613][ T6545] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   93.265517][ T6548] EXT4-fs error (device loop2): ext4_setattr:5379: inode #2: comm syz.2.224: mark_inode_dirty error
[   93.305979][ T6545] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it
[   93.328128][ T6545] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.226: Corrupt directory, running e2fsck is recommended
[   93.389993][ T6545] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[   93.406100][ T6545] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.226: corrupted in-inode xattr: invalid ea_ino
[   93.431693][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[   93.439423][ T6545] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.453448][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.483390][ T6545] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   93.495213][ T6545] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it
[   93.510233][ T6545] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.226: Corrupt directory, running e2fsck is recommended
[   93.530655][ T6523] XFS (loop3): Ending clean mount
[   93.544794][ T6523] XFS (loop3): Quotacheck needed: Please wait.
[   93.596629][ T6523] XFS (loop3): Quotacheck: Done.
[   93.622696][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.672929][ T5826] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   93.698074][   T25] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[   93.853551][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   93.871869][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   93.883986][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 10
[   93.900342][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0
[   93.912764][   T25] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[   93.932646][   T25] usb 1-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[   93.943304][   T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.964981][   T25] usb 1-1: config 0 descriptor??
[   94.260467][ T6562] loop3: detected capacity change from 0 to 32768
[   94.399724][   T25] ntrig 0003:1B96:000A.0008: unknown main item tag 0x0
[   94.427943][   T25] ntrig 0003:1B96:000A.0008: unknown main item tag 0x0
[   94.447625][   T25] ntrig 0003:1B96:000A.0008: unknown main item tag 0x0
[   94.467625][   T25] ntrig 0003:1B96:000A.0008: unknown main item tag 0x0
[   94.486091][   T25] ntrig 0003:1B96:000A.0008: unknown main item tag 0x0
[   94.504087][   T25] ntrig 0003:1B96:000A.0008: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.0-1/input0
[   94.606944][   T25] usb 1-1: USB disconnect, device number 3
[   94.754400][ T6572] loop1: detected capacity change from 0 to 256
[   94.877603][ T6572] FAT-fs (loop1): Directory bread(block 64) failed
[   94.918068][ T6572] FAT-fs (loop1): Directory bread(block 65) failed
[   94.924756][ T6572] FAT-fs (loop1): Directory bread(block 66) failed
[   94.942281][ T6574] loop3: detected capacity change from 0 to 256
[   94.958084][ T6572] FAT-fs (loop1): Directory bread(block 67) failed
[   94.962466][ T6574] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[   94.988386][ T6572] FAT-fs (loop1): Directory bread(block 68) failed
[   94.994986][ T6572] FAT-fs (loop1): Directory bread(block 69) failed
[   95.023377][ T6574] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512
[   95.028180][ T6572] FAT-fs (loop1): Directory bread(block 70) failed
[   95.037245][ T6574] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[   95.054083][ T6574] UDF-fs: Scanning with blocksize 512 failed
[   95.062163][ T6572] FAT-fs (loop1): Directory bread(block 71) failed
[   95.063293][ T6574] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[   95.093796][ T6574] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   95.096053][ T6572] FAT-fs (loop1): Directory bread(block 72) failed
[   95.128192][ T6572] FAT-fs (loop1): Directory bread(block 73) failed
[   95.226588][   T29] audit: type=1800 audit(1730881783.202:13): pid=6578 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.231" name="file1" dev="loop3" ino=65 res=0 errno=0
[   95.272881][ T6572] syz.1.235: attempt to access beyond end of device
[   95.272881][ T6572] loop1: rw=524288, sector=1768, nr_sectors = 4 limit=256
[   95.371658][ T6572] syz.1.235: attempt to access beyond end of device
[   95.371658][ T6572] loop1: rw=0, sector=1768, nr_sectors = 4 limit=256
[   95.421014][   T29] audit: type=1800 audit(1730881783.412:14): pid=6572 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.235" name="file1" dev="loop1" ino=1048622 res=0 errno=0
[   95.679605][ T6591] loop0: detected capacity change from 0 to 1024
[   95.763475][ T6569] loop2: detected capacity change from 0 to 32768
[   95.837070][   T62] hfsplus: b-tree write err: -5, ino 4
[   95.987637][ T6569] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=ro,metadata_checksum=none,data_checksum=none,compression=lz4,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,noexcl,read_only
[   96.067737][ T6569] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[   96.075986][ T6569] bcachefs (loop2): Version upgrade required:
[   96.075986][ T6569] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   96.075986][ T6569] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[   96.075986][ T6569]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[   96.167825][ T6569] bcachefs (loop2): insufficient writeable journal devices available: have 0, need 1
[   96.167825][ T6569] rw journal devs: loop2
[   96.286149][ T6569] invalid bkey u64s 9 type backpointer 0:8921088:0 len 0 ver 0: bucket=0:34:0 btree=extents level=0 offset=8:160 len=8 pos=536870913:24:U32_MAX
[   96.286171][ T6569]   backpointer bucket_offset wrong: delete?, fixing
[   96.340979][ T6569] bcachefs (loop2): accounting_read... done
[   96.404357][ T6569] bcachefs (loop2): alloc_read... done
[   96.421782][ T6569] bcachefs (loop2): stripes_read... done
[   96.444493][ T6569] bcachefs (loop2): Fixed errors, running fsck a second time to verify fs is clean
[   96.466345][ T6569] bcachefs (loop2): done starting filesystem
[   96.557072][ T5830] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[   96.636966][ T5824] bcachefs (loop2): shutting down
[   96.693831][  T974] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   96.706023][ T5824] bcachefs (loop2): shutdown complete
[   96.736356][ T5830] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   96.752241][ T5830] usb 4-1: New USB device found, idVendor=0582, idProduct=007d, bcdDevice=3f.99
[   96.763500][ T5830] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.803282][ T5830] usb 4-1: config 0 descriptor??
[   96.846237][ T5830] usb 4-1: interface 1 not found
[   96.878189][  T974] usb 1-1: Using ep0 maxpacket: 16
[   96.885259][  T974] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   96.897570][  T974] usb 1-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc
[   96.912210][  T974] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.922924][  T974] usb 1-1: Product: syz
[   96.927150][  T974] usb 1-1: Manufacturer: syz
[   96.936663][  T974] usb 1-1: SerialNumber: syz
[   96.936867][ T6621] loop4: detected capacity change from 0 to 32768
[   96.954619][  T974] usb 1-1: config 0 descriptor??
[   96.998546][ T6621] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.252 (6621)
[   97.000345][  T974] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[   97.072728][ T6621] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   97.076227][  T974] usb 4-1: USB disconnect, device number 5
[   97.103799][ T6621] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[   97.114118][ T6621] BTRFS info (device loop4): using free-space-tree
[   97.216469][ T5830] usb 1-1: USB disconnect, device number 4
[   97.398835][ T5828] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   97.552537][ T6645] loop1: detected capacity change from 0 to 1024
[   97.874155][ T6654] loop3: detected capacity change from 0 to 1024
[   97.962480][ T6658] loop0: detected capacity change from 0 to 8
[   97.963704][ T6654] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[   97.983767][ T6657] loop4: detected capacity change from 0 to 1024
[   98.159362][ T6654] hfsplus: filesystem is marked journaled, leaving read-only.
[   98.471261][ T6673] loop3: detected capacity change from 0 to 2048
[   98.565409][ T6673] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   98.733630][ T6666] loop4: detected capacity change from 0 to 32768
[   98.974645][ T6685] loop0: detected capacity change from 0 to 512
[   99.135441][ T6685] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   99.213691][ T6685] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.416261][ T6696] loop4: detected capacity change from 0 to 4096
[   99.440486][ T6672] loop1: detected capacity change from 0 to 32768
[   99.450362][ T6672] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.268 (6672)
[   99.480020][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   99.501349][ T6672] BTRFS info (device loop1): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[   99.536221][ T6672] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[   99.566094][ T6680] loop2: detected capacity change from 0 to 32768
[   99.593972][ T6672] BTRFS info (device loop1): using free-space-tree
[   99.649750][ T6704] netlink: 16 bytes leftover after parsing attributes in process `syz.0.286'.
[   99.677108][ T6680] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   99.914569][ T6729] loop3: detected capacity change from 0 to 256
[  100.269825][ T5823] BTRFS info (device loop1): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  100.327694][ T6680] XFS (loop2): Ending clean mount
[  100.461489][ T5824] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  100.517390][ T6750] loop3: detected capacity change from 0 to 512
[  100.520387][ T6747] loop0: detected capacity change from 0 to 2048
[  100.755984][ T6750] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.291: corrupted in-inode xattr: invalid ea_ino
[  100.774628][ T6750] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.291: couldn't read orphan inode 15 (err -117)
[  100.837209][ T6750] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.862058][ T6747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.944931][ T6764] loop1: detected capacity change from 0 to 512
[  100.983103][ T5826] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.996136][ T6764] EXT4-fs error (device loop1): ext4_orphan_get:1388: inode #15: comm syz.1.294: casefold flag without casefold feature
[  101.076967][ T6764] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.294: couldn't read orphan inode 15 (err -117)
[  101.106878][ T6764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.117178][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.305840][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.647250][ T6780] loop1: detected capacity change from 0 to 32768
[  101.803868][ T6780] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  102.018450][ T5823] ocfs2: Unmounting device (7,1) on (node local)
[  102.200217][ T6803] loop1: detected capacity change from 0 to 4096
[  102.208999][ T6801] loop2: detected capacity change from 0 to 4096
[  102.220079][ T6803] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  102.245056][ T6801] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  102.497334][ T6783] loop0: detected capacity change from 0 to 40427
[  102.517285][ T6783] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  102.525472][ T6783] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  102.555695][ T6803] ntfs3(loop1): failed to replay log file. Can't mount rw!
[  102.597392][ T6783] F2FS-fs (loop0): invalid crc value
[  102.636103][ T6783] F2FS-fs (loop0): Found nat_bits in checkpoint
[  102.648816][ T6801] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  102.713540][ T6801] ntfs3(loop2): ino=1b, "file0" failed to parse mft record
[  102.736895][ T6783] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  102.738275][ T6801] ntfs3(loop2): ino=1b, "file0" attr_set_size
[  102.754351][ T6783] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  102.818593][  T974] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  102.964819][ T6823] loop2: detected capacity change from 0 to 128
[  102.980258][  T974] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.998498][  T974] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  103.018225][  T974] usb 4-1: New USB device found, idVendor=0c12, idProduct=0030, bcdDevice= 0.00
[  103.037742][  T974] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.055130][ T6823] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  103.058676][  T974] usb 4-1: config 0 descriptor??
[  103.169039][ T6823] ext4 filesystem being mounted at /48/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  103.308628][   T29] audit: type=1800 audit(1730881791.302:15): pid=6823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.318" name="file1" dev="loop2" ino=12 res=0 errno=0
[  103.328797][ T6816] loop1: detected capacity change from 0 to 32768
[  103.433846][ T6816] JBD2: Ignoring recovery information on journal
[  103.436446][ T5824] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.487918][ T6816] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  103.551382][  T974] zeroplus 0003:0C12:0030.0009: unknown main item tag 0x0
[  103.601883][  T974] zeroplus 0003:0C12:0030.0009: hidraw0: USB HID v0.00 Device [HID 0c12:0030] on usb-dummy_hcd.3-1/input0
[  103.673134][  T974] zeroplus 0003:0C12:0030.0009: no inputs found
[  103.723753][ T5823] ocfs2: Unmounting device (7,1) on (node local)
[  103.844773][  T974] usb 4-1: USB disconnect, device number 6
[  104.107674][ T6845] loop4: detected capacity change from 0 to 4096
[  104.228172][ T6855] netlink: 'syz.1.331': attribute type 1 has an invalid length.
[  104.364352][ T6862] netlink: 4 bytes leftover after parsing attributes in process `syz.1.334'.
[  104.458133][    T9] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  104.516023][ T6864] loop1: detected capacity change from 0 to 256
[  104.543370][ T6864] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4f8593fa, utbl_chksum : 0xe619d30d)
[  104.619840][    T9] usb 1-1: Using ep0 maxpacket: 8
[  104.663645][    T9] usb 1-1: config 0 has an invalid interface number: 55 but max is 0
[  104.678138][    T9] usb 1-1: config 0 has no interface number 0
[  104.684295][    T9] usb 1-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  104.724648][    T9] usb 1-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  104.748540][    T9] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  104.778046][    T9] usb 1-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  104.859559][    T9] usb 1-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  104.920572][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.956216][    T9] usb 1-1: config 0 descriptor??
[  104.980823][    T9] ldusb 1-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  105.358188][   T25] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  105.423414][ T6874] loop4: detected capacity change from 0 to 32768
[  105.437604][ T6874] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.341 (6874)
[  105.507770][ T6874] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  105.518133][   T25] usb 3-1: Using ep0 maxpacket: 16
[  105.520488][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  105.529982][ T6874] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  105.554597][ T6874] BTRFS info (device loop4): using free-space-tree
[  105.560139][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  105.572627][   T25] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  105.587651][   T25] usb 3-1: New USB device found, idVendor=056a, idProduct=030c, bcdDevice= 0.00
[  105.628075][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.708648][   T25] usb 3-1: config 0 descriptor??
[  106.109926][ T5828] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  106.163198][   T25] wacom 0003:056A:030C.000A: hidraw0: USB HID v0.00 Device [HID 056a:030c] on usb-dummy_hcd.2-1/input0
[  106.481697][    T9] usb 3-1: USB disconnect, device number 5
[  106.718668][ T6933] loop1: detected capacity change from 0 to 512
[  106.781650][ T6933] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.851888][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.194501][ T6954] loop2: detected capacity change from 0 to 256
[  107.218245][   T25] usb 1-1: USB disconnect, device number 5
[  107.234281][ T6954] exfat: Deprecated parameter 'utf8'
[  107.249267][   T25] ldusb 1-1:0.55: LD USB Device #0 now disconnected
[  107.272979][   T29] audit: type=1326 audit(1730881795.262:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.4.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ae17e719 code=0x7ffc0000
[  107.273025][ T6954] exfat: Deprecated parameter 'namecase'
[  107.318968][   T29] audit: type=1326 audit(1730881795.312:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.4.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ae17e719 code=0x7ffc0000
[  107.355345][ T6954] exfat: Deprecated parameter 'namecase'
[  107.369406][ T6954] exfat: Deprecated parameter 'utf8'
[  107.404123][ T6954] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0x822ffc2e, utbl_chksum : 0xe619d30d)
[  107.416587][   T29] audit: type=1326 audit(1730881795.312:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.4.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f90ae17e719 code=0x7ffc0000
[  107.490719][   T29] audit: type=1326 audit(1730881795.312:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.4.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ae17e719 code=0x7ffc0000
[  107.564131][   T29] audit: type=1326 audit(1730881795.312:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.4.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ae17e719 code=0x7ffc0000
[  107.649103][   T29] audit: type=1326 audit(1730881795.342:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.4.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f90ae17e719 code=0x7ffc0000
[  107.748205][   T29] audit: type=1326 audit(1730881795.342:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.4.365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90ae17e719 code=0x7ffc0000
[  107.938206][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  108.057269][ T6936] loop3: detected capacity change from 0 to 32768
[  108.128226][    T9] usb 1-1: Using ep0 maxpacket: 16
[  108.150146][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  108.198109][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  108.226886][ T6936] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  108.238098][    T9] usb 1-1: New USB device found, idVendor=1b1c, idProduct=1c07, bcdDevice= 0.00
[  108.247176][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.294684][ T6955] loop1: detected capacity change from 0 to 32768
[  108.349346][ T6955] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.364 (6955)
[  108.398380][    T9] usb 1-1: config 0 descriptor??
[  108.462450][ T6955] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  108.499451][ T6955] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  108.511468][ T5826] ocfs2: Unmounting device (7,3) on (node local)
[  108.551606][ T6955] BTRFS info (device loop1): using free-space-tree
[  108.616379][ T6967] loop4: detected capacity change from 0 to 32768
[  108.663601][ T6967] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.367 (6967)
[  108.756139][ T6967] BTRFS info (device loop4): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  108.766920][ T6967] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  108.776804][ T6967] BTRFS info (device loop4): disk space caching is enabled
[  108.784765][ T6967] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  108.829458][    T9] corsair-psu 0003:1B1C:1C07.000B: hidraw0: USB HID v0.00 Device [HID 1b1c:1c07] on usb-dummy_hcd.0-1/input0
[  108.837658][ T6970] loop2: detected capacity change from 0 to 32768
[  108.908155][    T9] corsair-psu 0003:1B1C:1C07.000B: unable to initialize device (-38)
[  108.980587][    T9] corsair-psu 0003:1B1C:1C07.000B: probe with driver corsair-psu failed with error -38
[  108.981706][ T7015] loop3: detected capacity change from 0 to 2048
[  109.047198][ T7015] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  109.055865][ T6967] BTRFS info (device loop4): rebuilding free space tree
[  109.068345][    T9] usb 1-1: USB disconnect, device number 6
[  109.088230][ T5845] Bluetooth: hci4: command tx timeout
[  109.134723][ T7015] UDF-fs: Scanning with blocksize 512 failed
[  109.170915][ T6967] BTRFS info (device loop4): disabling free space tree
[  109.185429][ T6967] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  109.193808][ T6955] BTRFS warning (device loop1): failed to trim 3 block group(s), last error -512
[  109.203225][ T7015] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  109.213744][ T6967] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  109.251488][ T6955] BTRFS warning (device loop1): failed to trim 1 device(s), last error -512
[  109.311517][ T5823] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  109.456653][ T5828] BTRFS info (device loop4): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  110.092209][ T7035] loop0: detected capacity change from 0 to 32768
[  110.144325][ T7035] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.379 (7035)
[  110.185505][ T7035] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  110.195917][ T7035] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  110.208513][ T7035] BTRFS info (device loop0): using free-space-tree
[  110.366905][ T7061] netlink: 8 bytes leftover after parsing attributes in process `syz.2.383'.
[  110.424949][ T7056] loop1: detected capacity change from 0 to 256
[  110.664552][ T5825] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  110.688129][ T7056] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x12727065, utbl_chksum : 0xe619d30d)
[  110.718152][    T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  110.877576][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  110.893806][    T9] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 8
[  110.935015][    T9] usb 4-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice= 0.00
[  110.958525][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  111.018080][    T9] usb 4-1: SerialNumber: syz
[  111.044053][    T9] usb 4-1: config 0 descriptor??
[  111.080043][    T9] port100 4-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  111.300537][   T25] usb 4-1: USB disconnect, device number 7
[  111.538091][ T5845] Bluetooth: hci4: unknown advertising packet type: 0xed
[  111.538147][ T5845] Bluetooth: hci4: unknown advertising packet type: 0xc0
[  111.589727][ T7110] random: crng reseeded on system resumption
[  111.604613][ T7109] loop2: detected capacity change from 0 to 1024
[  111.612019][ T7109] EXT4-fs: Ignoring removed orlov option
[  111.617703][ T7109] EXT4-fs: Ignoring removed nomblk_io_submit option
[  111.649746][ T7109] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8843c118, mo2=0002]
[  111.666972][ T7109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.794118][ T7109] System zones: 0-1, 3-12
[  111.802955][ T7109] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  111.855015][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.095433][ T7121] loop1: detected capacity change from 0 to 2048
[  112.134751][ T7121] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.236773][ T7121] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.407: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  112.288974][ T7134] loop3: detected capacity change from 0 to 4096
[  112.315479][ T7134] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  112.420642][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.443926][ T7138] netlink: 12 bytes leftover after parsing attributes in process `syz.0.415'.
[  113.333488][ T7130] loop2: detected capacity change from 0 to 40427
[  113.371512][ T7140] loop1: detected capacity change from 0 to 32768
[  113.375706][ T7136] loop4: detected capacity change from 0 to 32768
[  113.390751][ T7130] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  113.399189][ T7130] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  113.430198][ T7130] F2FS-fs (loop2): invalid crc value
[  113.452538][ T7130] F2FS-fs (loop2): Found nat_bits in checkpoint
[  113.508131][  T972] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  113.602710][ T7130] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  113.620299][ T7130] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  113.672967][  T972] usb 4-1: Using ep0 maxpacket: 16
[  113.696036][  T972] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  113.725792][  T972] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  113.756209][  T972] usb 4-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00
[  113.776492][  T972] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.818849][  T972] usb 4-1: config 0 descriptor??
[  113.829888][  T974] kernel write not supported for file /snd/seq (pid: 974 comm: kworker/0:2)
[  113.856726][ T3539] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  113.889874][ T3539] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  113.897061][ T7147] loop0: detected capacity change from 0 to 32768
[  114.016117][ T7165] netlink: 8 bytes leftover after parsing attributes in process `syz.4.426'.
[  114.034035][ T7165] tipc: MTU too low for tipc bearer
[  114.282224][  T972] mcp2200 0003:04D8:00DF.000C: item fetching failed at offset 0/2
[  114.310999][  T972] mcp2200 0003:04D8:00DF.000C: can't parse reports
[  114.330834][  T972] mcp2200 0003:04D8:00DF.000C: probe with driver mcp2200 failed with error -22
[  114.401968][ T7170] loop1: detected capacity change from 0 to 4096
[  114.474333][ T7176] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  114.510858][    T9] usb 4-1: USB disconnect, device number 8
[  114.736149][ T7185] netlink: 20 bytes leftover after parsing attributes in process `syz.0.435'.
[  114.762754][ T7187] loop2: detected capacity change from 0 to 256
[  114.776640][ T7185] erspan0: entered promiscuous mode
[  114.816463][ T7185] erspan0: left promiscuous mode
[  115.434841][ T7208] loop3: detected capacity change from 0 to 4096
[  115.493909][ T7210] pimreg: entered allmulticast mode
[  115.517309][ T7182] loop4: detected capacity change from 0 to 32768
[  115.533560][ T7213] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  115.821881][ T7222] loop1: detected capacity change from 0 to 64
[  115.914857][ T7222] hfs: request for non-existent node 16777216 in B*Tree
[  115.957443][ T7222] hfs: request for non-existent node 16777216 in B*Tree
[  116.318380][    T9] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  116.371881][ T7246] loop1: detected capacity change from 0 to 128
[  116.416396][ T7246] VFS: Found a Xenix FS (block size = 512) on device loop1
[  116.467444][ T7246] syz.1.463: attempt to access beyond end of device
[  116.467444][ T7246] loop1: rw=0, sector=13269809, nr_sectors = 1 limit=128
[  116.492269][    T9] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  116.510549][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.527497][ T7246] sysv_free_block: trying to free block not in datazone
[  116.556580][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.572270][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  116.616446][    T9] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  116.628066][    T9] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  116.658000][    T9] usb 5-1: Manufacturer: syz
[  116.673457][    T9] usb 5-1: config 0 descriptor??
[  116.704673][ T5823] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  116.716519][ T7258] netlink: 'syz.2.469': attribute type 2 has an invalid length.
[  116.797655][ T7261] x_tables: ip_tables: udp match: only valid for protocol 17
[  117.087648][ T7273] loop3: detected capacity change from 0 to 1024
[  117.106956][    T9] appleir 0003:05AC:8243.000D: item fetching failed at offset 0/1
[  117.145973][    T9] appleir 0003:05AC:8243.000D: parse failed
[  117.178659][    T9] appleir 0003:05AC:8243.000D: probe with driver appleir failed with error -22
[  117.330092][    T9] usb 5-1: USB disconnect, device number 4
[  117.341103][   T62] hfsplus: b-tree write err: -5, ino 4
[  117.651500][ T7297] loop0: detected capacity change from 0 to 1024
[  117.738164][  T974] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  117.752917][ T7297] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  117.761446][ T7297] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  117.928441][  T974] usb 2-1: Using ep0 maxpacket: 16
[  117.936736][  T974] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  117.959038][    T9] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  117.966897][  T974] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  117.987479][  T974] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  118.001586][  T974] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  118.011011][  T974] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.021671][  T974] usb 2-1: config 0 descriptor??
[  118.068163][ T5830] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  118.106952][ T7315] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  118.124646][ T5882] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  118.142009][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.158684][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.174908][    T9] usb 4-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[  118.185381][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.213871][    T9] usb 4-1: config 0 descriptor??
[  118.219165][ T5830] usb 3-1: Using ep0 maxpacket: 32
[  118.239404][ T5830] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.257513][ T5830] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.271147][ T5830] usb 3-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[  118.278202][ T5882] usb 1-1: Using ep0 maxpacket: 8
[  118.284734][ T5830] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.295564][ T5882] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7
[  118.300554][ T5830] usb 3-1: config 0 descriptor??
[  118.307107][ T5882] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  118.328054][ T5882] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  118.347432][ T5882] usb 1-1: Product: syz
[  118.351855][ T5882] usb 1-1: Manufacturer: syz
[  118.356480][ T5882] usb 1-1: SerialNumber: syz
[  118.461966][  T974] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.000E/input/input14
[  118.585311][ T5882] usb 1-1: Handspring Visor / Palm OS: No valid connect info available
[  118.599797][ T5882] usb 1-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  118.607815][ T5882] usb 1-1: Handspring Visor / Palm OS: port 20, is for Debugger use
[  118.622574][ T5882] usb 1-1: Handspring Visor / Palm OS: Number of ports: 2
[  118.627731][  T974] microsoft 0003:045E:07DA.000E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  118.662623][  T974] usb 2-1: USB disconnect, device number 3
[  118.712831][    T9] pantherlord 0003:0F30:0111.000F: hidraw1: USB HID v0.00 Device [HID 0f30:0111] on usb-dummy_hcd.3-1/input0
[  118.743739][ T5830] kye 0003:0458:4018.0010: hidraw2: USB HID v0.00 Device [HID 0458:4018] on usb-dummy_hcd.2-1/input0
[  118.754771][    T9] pantherlord 0003:0F30:0111.000F: no output reports found
[  118.808936][ T5882] visor 1-1:1.0: Handspring Visor / Palm OS converter detected
[  118.840112][ T7317] loop4: detected capacity change from 0 to 40427
[  118.861671][ T5882] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  118.874131][ T7317] F2FS-fs (loop4): invalid crc value
[  118.891174][ T5882] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  118.903541][  T972] usb 4-1: USB disconnect, device number 9
[  118.943866][ T7317] F2FS-fs (loop4): Found nat_bits in checkpoint
[  118.966034][ T5882] usb 3-1: USB disconnect, device number 6
[  119.044946][ T5879] usb 1-1: USB disconnect, device number 7
[  119.057105][ T7317] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  119.066403][ T5879] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  119.097621][ T5879] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  119.124914][ T5879] visor 1-1:1.0: device disconnected
[  119.213327][ T5828] syz-executor: attempt to access beyond end of device
[  119.213327][ T5828] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  119.230275][ T5828] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  119.683979][ T7340] loop2: detected capacity change from 0 to 512
[  119.710940][ T7334] loop1: detected capacity change from 0 to 4096
[  119.736451][ T7340] ext3: Unknown parameter 'nouser_xattr'
[  119.743513][ T7334] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  119.784106][ T7334] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  119.798123][ T5882] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  119.824784][ T7340] netlink: 40 bytes leftover after parsing attributes in process `syz.2.505'.
[  119.928985][ T7348] loop0: detected capacity change from 0 to 512
[  119.992412][ T7348] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  120.030202][ T5882] usb 4-1: Using ep0 maxpacket: 16
[  120.036809][ T5882] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.056598][ T5882] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.066778][ T5882] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  120.076627][ T7348] EXT4-fs (loop0): 1 truncate cleaned up
[  120.080673][ T5882] usb 4-1: New USB device found, idVendor=045e, idProduct=9994, bcdDevice=fc.3c
[  120.095018][ T5882] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.117487][ T5882] usb 4-1: config 0 descriptor??
[  120.148659][ T7358] loop4: detected capacity change from 0 to 256
[  120.159236][ T7358] exfat: Deprecated parameter 'utf8'
[  120.168911][ T7348] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.177185][ T7358] exfat: Deprecated parameter 'utf8'
[  120.215135][ T7358] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  120.302946][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.489041][ T7362] loop0: detected capacity change from 0 to 512
[  120.573727][ T7362] EXT4-fs (loop0): 1 orphan inode deleted
[  120.580471][ T5882] hid-generic 0003:045E:9994.0011: unknown main item tag 0x2
[  120.599877][ T7362] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.608301][ T5882] hid-generic 0003:045E:9994.0011: unknown main item tag 0x0
[  120.638185][ T5882] hid-generic 0003:045E:9994.0011: unknown main item tag 0x0
[  120.645927][ T5882] hid-generic 0003:045E:9994.0011: unknown main item tag 0x0
[  120.663048][ T5882] hid-generic 0003:045E:9994.0011: unbalanced collection at end of report description
[  120.673739][ T5882] hid-generic 0003:045E:9994.0011: probe with driver hid-generic failed with error -22
[  120.707735][ T7375] loop2: detected capacity change from 0 to 64
[  120.777534][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.936174][ T5882] usb 4-1: USB disconnect, device number 10
[  120.942720][ T7383] loop0: detected capacity change from 0 to 256
[  120.957585][ T7377] loop4: detected capacity change from 0 to 2048
[  120.999367][ T7383] exfat: Deprecated parameter 'utf8'
[  121.036024][ T7377] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  121.070477][ T7377] UDF-fs: error (device loop4): udf_read_inode: (ino 1317) failed !bh
[  121.074724][ T7383] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  121.168167][ T5879] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  121.327899][ T5879] usb 3-1: Using ep0 maxpacket: 16
[  121.344550][ T5879] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  121.378099][ T5879] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  121.408191][ T5879] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 152, changing to 11
[  121.428033][ T5879] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024
[  121.465345][ T5879] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  121.512038][ T5879] usb 3-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  121.528019][ T5879] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.548507][ T5879] usb 3-1: Product: syz
[  121.552733][ T5879] usb 3-1: Manufacturer: syz
[  121.588162][ T5879] usb 3-1: SerialNumber: syz
[  121.617608][ T5879] usb 3-1: config 0 descriptor??
[  121.656443][ T7381] loop1: detected capacity change from 0 to 32768
[  121.757396][ T7389] loop4: detected capacity change from 0 to 32768
[  121.830593][ T7381] syz.1.525: attempt to access beyond end of device
[  121.830593][ T7381] loop14: rw=0, sector=8, nr_sectors = 8 limit=0
[  121.885894][ T7389] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  121.904112][ T5879] appledisplay 3-1:0.0: Error while getting initial brightness: -110
[  121.905357][ T5879] appledisplay 3-1:0.0: probe with driver appledisplay failed with error -110
[  121.930569][ T7381] lbmIODone: I/O error in JFS log
[  121.934341][ T7381] *** Log Format Error ! ***
[  121.934730][ T7381] lmLogInit: exit(-22)
[  121.934773][ T7381] lmLogOpen: exit(-22)
[  122.025728][ T5828] ocfs2: Unmounting device (7,4) on (node local)
[  122.067099][ T3539] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.153235][ T5830] usb 3-1: USB disconnect, device number 7
[  122.395816][ T3539] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.576806][ T3539] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.667413][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  122.676810][ T5838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  122.686767][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  122.696750][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  122.720324][ T5838] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  122.728266][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  122.950082][ T3539] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.057052][ T7423] loop3: detected capacity change from 0 to 256
[  123.186099][ T7407] loop4: detected capacity change from 0 to 32768
[  123.223167][ T7407] JBD2: Ignoring recovery information on journal
[  123.266256][ T7407] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  123.301757][ T7423] FAT-fs (loop3): Directory bread(block 64) failed
[  123.337218][ T7423] FAT-fs (loop3): Directory bread(block 65) failed
[  123.366448][ T3539] bridge_slave_1: left allmulticast mode
[  123.394698][ T3539] bridge_slave_1: left promiscuous mode
[  123.400023][ T7423] FAT-fs (loop3): Directory bread(block 66) failed
[  123.406842][ T7423] FAT-fs (loop3): Directory bread(block 67) failed
[  123.431350][ T7423] FAT-fs (loop3): Directory bread(block 68) failed
[  123.433992][ T3539] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.443852][ T7423] FAT-fs (loop3): Directory bread(block 69) failed
[  123.473880][ T7423] FAT-fs (loop3): Directory bread(block 70) failed
[  123.481239][ T7423] FAT-fs (loop3): Directory bread(block 71) failed
[  123.496736][ T3539] bridge_slave_0: left allmulticast mode
[  123.500273][ T7423] FAT-fs (loop3): Directory bread(block 72) failed
[  123.502924][ T3539] bridge_slave_0: left promiscuous mode
[  123.514828][ T7423] FAT-fs (loop3): Directory bread(block 73) failed
[  123.545573][ T3539] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.562031][ T5828] ocfs2: Unmounting device (7,4) on (node local)
[  124.175230][ T7458] loop4: detected capacity change from 0 to 2048
[  124.237670][ T7461] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  124.524670][ T7471] loop4: detected capacity change from 0 to 512
[  124.547005][ T7471] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  124.559359][ T7471] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  124.624801][ T7471] EXT4-fs (loop4): 1 truncate cleaned up
[  124.647263][ T7471] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.708228][  T974] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  124.708235][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.781045][ T7463] loop3: detected capacity change from 0 to 32768
[  124.805948][ T7463] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.559 (7463)
[  124.839841][ T7463] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  124.843547][ T5838] Bluetooth: hci2: command tx timeout
[  124.864146][ T7463] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  124.873315][  T974] usb 2-1: Using ep0 maxpacket: 16
[  124.883720][ T7463] BTRFS info (device loop3): using free-space-tree
[  124.883846][  T974] usb 2-1: config 0 has an invalid interface number: 32 but max is 0
[  124.899682][  T974] usb 2-1: config 0 has no interface number 0
[  124.905832][  T974] usb 2-1: config 0 interface 32 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  124.917744][  T974] usb 2-1: config 0 interface 32 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.930112][  T974] usb 2-1: New USB device found, idVendor=5543, idProduct=0081, bcdDevice= 0.00
[  124.939275][  T974] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.949489][  T974] usb 2-1: config 0 descriptor??
[  125.128622][ T3539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  125.168834][ T3539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  125.192207][ T3539] bond0 (unregistering): Released all slaves
[  125.415213][ T5826] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  125.463833][  T974] uclogic 0003:5543:0081.0012: interface is invalid, ignoring
[  125.514908][ T7502] loop2: detected capacity change from 0 to 128
[  125.612067][ T7502] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  125.706980][  T972] usb 2-1: USB disconnect, device number 4
[  125.767056][ T7514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.571'.
[  126.247197][ T7519] loop2: detected capacity change from 0 to 32768
[  126.266058][ T7519] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  126.288225][ T7519] JBD2: Ignoring recovery information on journal
[  126.374232][   T25] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  126.473885][ T7519] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  126.618325][ T7410] chnl_net:caif_netlink_parms(): no params data found
[  126.628587][   T25] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30
[  126.643728][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  126.661490][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  126.707720][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 37212, setting to 64
[  126.720237][  T972] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  126.746587][   T25] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 254
[  126.761709][   T25] usb 5-1: New USB device found, idVendor=20a0, idProduct=4287, bcdDevice= 0.00
[  126.771276][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.783238][   T25] usb 5-1: config 0 descriptor??
[  126.823783][ T7516] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  126.879165][ T7540] loop1: detected capacity change from 0 to 512
[  126.890735][ T5824] ocfs2: Unmounting device (7,2) on (node local)
[  126.928414][ T5838] Bluetooth: hci2: command tx timeout
[  126.929189][  T972] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  126.976364][  T972] usb 4-1: config 0 has no interface number 0
[  126.986302][ T7410] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.992905][  T972] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  126.993763][ T7410] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.005350][  T972] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  127.025023][ T7540] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.577: invalid block
[  127.029915][  T972] usb 4-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[  127.049592][  T972] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.062501][  T972] usb 4-1: config 0 descriptor??
[  127.088368][ T7410] bridge_slave_0: entered allmulticast mode
[  127.098067][ T7410] bridge_slave_0: entered promiscuous mode
[  127.107046][ T7540] EXT4-fs (loop1): Remounting filesystem read-only
[  127.123746][ T7410] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.131523][ T7410] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.139854][ T7410] bridge_slave_1: entered allmulticast mode
[  127.147351][ T7410] bridge_slave_1: entered promiscuous mode
[  127.183175][ T7540] EXT4-fs (loop1): 2 truncates cleaned up
[  127.204705][ T7540] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.234270][ T3539] hsr_slave_0: left promiscuous mode
[  127.264064][ T3539] hsr_slave_1: left promiscuous mode
[  127.280304][   T25] hid-u2fzero 0003:20A0:4287.0013: unknown main item tag 0x0
[  127.290107][ T7540] EXT4-fs warning (device loop1): empty_inline_dir:1857: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60
[  127.312599][   T25] hid-u2fzero 0003:20A0:4287.0013: hidraw0: USB HID vff.fd Device [HID 20a0:4287] on usb-dummy_hcd.4-1/input0
[  127.329492][ T3539] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  127.340620][ T3539] batman_adv: batadv0: Removing interface: batadv_slave_0
[  127.364499][   T25] hid-u2fzero 0003:20A0:4287.0013: NitroKey U2F LED initialised
[  127.375096][ T3539] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  127.388295][   T25] hid-u2fzero 0003:20A0:4287.0013: NitroKey U2F RNG initialised
[  127.394936][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.406265][ T3539] batman_adv: batadv0: Removing interface: batadv_slave_1
[  127.488800][  T972] hid (null): global environment stack underflow
[  127.509908][ T3539] veth1_macvtap: left promiscuous mode
[  127.520181][  T972] uclogic 0003:5543:0522.0014: global environment stack underflow
[  127.526459][ T5830] usb 5-1: USB disconnect, device number 5
[  127.530450][ T3539] veth0_macvtap: left promiscuous mode
[  127.542540][  T972] uclogic 0003:5543:0522.0014: item 0 1 1 11 parsing failed
[  127.560883][ T3539] veth1_vlan: left promiscuous mode
[  127.569019][  T972] uclogic 0003:5543:0522.0014: parse failed
[  127.575064][  T972] uclogic 0003:5543:0522.0014: probe with driver uclogic failed with error -22
[  127.594792][ T3539] veth0_vlan: left promiscuous mode
[  127.702492][  T974] usb 4-1: USB disconnect, device number 11
[  128.528948][ T3539] team0 (unregistering): Port device team_slave_1 removed
[  128.535101][ T7565] loop4: detected capacity change from 0 to 32768
[  128.548919][ T5882] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  128.585506][ T7565] 
[  128.585506][ T7565]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  128.585506][ T7565] 
[  128.615663][ T7565] ERROR: (device loop4): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[  128.615663][ T7565] 
[  128.644879][ T3539] team0 (unregistering): Port device team_slave_0 removed
[  128.660862][ T3590] 
[  128.660862][ T3590]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  128.660862][ T3590] 
[  128.678685][    C0] vkms_vblank_simulate: vblank timer overrun
[  128.697386][ T3590] 
[  128.697386][ T3590]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  128.697386][ T3590] 
[  128.708511][ T5828] 
[  128.708511][ T5828]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  128.708511][ T5828] 
[  128.727321][  T112] 
[  128.727321][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  128.727321][  T112] 
[  128.742361][ T5882] usb 4-1: Using ep0 maxpacket: 16
[  128.747701][ T5828] 
[  128.747701][ T5828]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  128.747701][ T5828] 
[  128.773770][ T5882] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  128.784468][  T112] ==================================================================
[  128.792591][  T112] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0x7e0/0xb80
[  128.795343][ T5882] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  128.800236][  T112] Read of size 4 at addr ffff88803241a894 by task jfsCommit/112
[  128.800256][  T112] 
[  128.800285][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Not tainted 6.12.0-rc6-next-20241106-syzkaller #0
[  128.800304][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  128.800314][  T112] Call Trace:
[  128.800322][  T112]  <TASK>
[  128.800330][  T112]  dump_stack_lvl+0x241/0x360
[  128.800358][  T112]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.800379][  T112]  ? __pfx__printk+0x10/0x10
[  128.800402][  T112]  ? _printk+0xd5/0x120
[  128.800422][  T112]  ? __virt_addr_valid+0x183/0x530
[  128.800441][  T112]  ? __virt_addr_valid+0x183/0x530
[  128.813141][ T5882] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  128.818908][  T112]  print_report+0x169/0x550
[  128.818935][  T112]  ? __virt_addr_valid+0x183/0x530
[  128.818952][  T112]  ? __virt_addr_valid+0x183/0x530
[  128.818967][  T112]  ? __virt_addr_valid+0x45f/0x530
[  128.818983][  T112]  ? __phys_addr+0xba/0x170
[  128.818999][  T112]  ? jfs_lazycommit+0x7e0/0xb80
[  128.822325][ T5882] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  128.831280][  T112]  kasan_report+0x143/0x180
[  128.831311][  T112]  ? _raw_spin_lock_irqsave+0xe1/0x120
[  128.831330][  T112]  ? jfs_lazycommit+0x7e0/0xb80
[  128.831351][  T112]  jfs_lazycommit+0x7e0/0xb80
[  128.831368][  T112]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  128.831386][  T112]  ? lockdep_hardirqs_on+0x99/0x150
[  128.831409][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  128.831429][  T112]  ? __pfx_default_wake_function+0x10/0x10
[  128.842552][ T5882] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  128.844737][  T112]  ? __kthread_parkme+0x169/0x1d0
[  128.849417][ T5882] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  128.852323][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  128.852351][  T112]  kthread+0x2f0/0x390
[  128.857630][ T5882] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  128.862112][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  128.862144][  T112]  ? __pfx_kthread+0x10/0x10
[  128.862161][  T112]  ret_from_fork+0x4b/0x80
[  128.862183][  T112]  ? __pfx_kthread+0x10/0x10
[  128.862199][  T112]  ret_from_fork_asm+0x1a/0x30
[  128.862225][  T112]  </TASK>
[  128.862232][  T112] 
[  128.862237][  T112] Allocated by task 7565:
[  128.867699][ T5882] usb 4-1: Manufacturer: syz
[  128.871462][  T112]  kasan_save_track+0x3f/0x80
[  128.871489][  T112]  __kasan_kmalloc+0x98/0xb0
[  128.871504][  T112]  __kmalloc_cache_noprof+0x243/0x390
[  128.871521][  T112]  jfs_fill_super+0xc2/0xd90
[  128.871541][  T112]  get_tree_bdev_flags+0x48c/0x5c0
[  128.871561][  T112]  vfs_get_tree+0x90/0x2b0
[  128.871575][  T112]  do_new_mount+0x2be/0xb40
[  129.081678][  T112]  __se_sys_mount+0x2d6/0x3c0
[  129.086358][  T112]  do_syscall_64+0xf3/0x230
[  129.090862][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.096751][  T112] 
[  129.099062][  T112] Freed by task 5828:
[  129.103029][  T112]  kasan_save_track+0x3f/0x80
[  129.107702][  T112]  kasan_save_free_info+0x40/0x50
[  129.112719][  T112]  __kasan_slab_free+0x59/0x70
[  129.117567][  T112]  kfree+0x196/0x420
[  129.121454][  T112]  generic_shutdown_super+0x139/0x2d0
[  129.126819][  T112]  kill_block_super+0x44/0x90
[  129.131488][  T112]  deactivate_locked_super+0xc4/0x130
[  129.136855][  T112]  cleanup_mnt+0x41f/0x4b0
[  129.141264][  T112]  task_work_run+0x24f/0x310
[  129.145846][  T112]  syscall_exit_to_user_mode+0x168/0x370
[  129.151475][  T112]  do_syscall_64+0x100/0x230
[  129.156060][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.161952][  T112] 
[  129.164266][  T112] The buggy address belongs to the object at ffff88803241a800
[  129.164266][  T112]  which belongs to the cache kmalloc-256 of size 256
[  129.178310][  T112] The buggy address is located 148 bytes inside of
[  129.178310][  T112]  freed 256-byte region [ffff88803241a800, ffff88803241a900)
[  129.192113][  T112] 
[  129.194434][  T112] The buggy address belongs to the physical page:
[  129.200852][  T112] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3241a
[  129.209712][  T112] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  129.218205][  T112] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  129.225746][  T112] page_type: f5(slab)
[  129.229730][  T112] raw: 00fff00000000040 ffff88801ac41b40 ffffea0000d10800 dead000000000002
[  129.238312][  T112] raw: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  129.247168][  T112] head: 00fff00000000040 ffff88801ac41b40 ffffea0000d10800 dead000000000002
[  129.255840][  T112] head: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  129.264508][  T112] head: 00fff00000000001 ffffea0000c90681 ffffffffffffffff 0000000000000000
[  129.273192][  T112] head: ffff888000000002 0000000000000000 00000000ffffffff 0000000000000000
[  129.281848][  T112] page dumped because: kasan: bad access detected
[  129.288259][  T112] page_owner tracks the page as allocated
[  129.293967][  T112] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5824, tgid 5824 (syz-executor), ts 69228826462, free_ts 69202867707
[  129.315419][  T112]  post_alloc_hook+0x1f3/0x230
[  129.320183][  T112]  get_page_from_freelist+0x3725/0x3870
[  129.325725][  T112]  __alloc_pages_noprof+0x292/0x710
[  129.330929][  T112]  alloc_pages_mpol_noprof+0x3e8/0x680
[  129.336375][  T112]  alloc_slab_page+0x6a/0x140
[  129.341047][  T112]  allocate_slab+0x5a/0x2f0
[  129.345541][  T112]  ___slab_alloc+0xcd1/0x14b0
[  129.350208][  T112]  __slab_alloc+0x58/0xa0
[  129.354531][  T112]  __kmalloc_noprof+0x2e6/0x4c0
[  129.359371][  T112]  fib_create_info+0xc14/0x25b0
[  129.364221][  T112]  fib_table_insert+0x1f6/0x1f20
[  129.369155][  T112]  fib_magic+0x3d8/0x620
[  129.373389][  T112]  fib_add_ifaddr+0x14c/0x5e0
[  129.378058][  T112]  fib_inetaddr_event+0x167/0x1f0
[  129.383075][  T112]  notifier_call_chain+0x19f/0x3e0
[  129.388180][  T112]  blocking_notifier_call_chain+0x69/0x90
[  129.393905][  T112] page last free pid 5900 tgid 5900 stack trace:
[  129.400226][  T112]  free_unref_page+0xcfb/0xf20
[  129.404994][  T112]  __slab_free+0x31b/0x3d0
[  129.409405][  T112]  qlist_free_all+0x9a/0x140
[  129.413989][  T112]  kasan_quarantine_reduce+0x14f/0x170
[  129.419457][  T112]  __kasan_slab_alloc+0x23/0x80
[  129.424295][  T112]  kmem_cache_alloc_noprof+0x1d9/0x380
[  129.429756][  T112]  __anon_vma_prepare+0xc4/0x4a0
[  129.434685][  T112]  handle_pte_fault+0x5492/0x66b0
[  129.439701][  T112]  handle_mm_fault+0x1106/0x1bb0
[  129.444627][  T112]  exc_page_fault+0x459/0x8c0
[  129.449296][  T112]  asm_exc_page_fault+0x26/0x30
[  129.454138][  T112] 
[  129.456446][  T112] Memory state around the buggy address:
[  129.462061][  T112]  ffff88803241a780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  129.470107][  T112]  ffff88803241a800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  129.478157][  T112] >ffff88803241a880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  129.486200][  T112]                          ^
[  129.490771][  T112]  ffff88803241a900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  129.498826][  T112]  ffff88803241a980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  129.506878][  T112] ==================================================================
[  129.514925][  T112] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  129.522109][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Not tainted 6.12.0-rc6-next-20241106-syzkaller #0
[  129.532078][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  129.542124][  T112] Call Trace:
[  129.545394][  T112]  <TASK>
[  129.548316][  T112]  dump_stack_lvl+0x241/0x360
[  129.552995][  T112]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.558186][  T112]  ? __pfx__printk+0x10/0x10
[  129.562768][  T112]  ? rcu_is_watching+0x15/0xb0
[  129.567521][  T112]  ? lock_release+0xbf/0xa30
[  129.572105][  T112]  ? vscnprintf+0x5d/0x90
[  129.576434][  T112]  panic+0x349/0x880
[  129.580328][  T112]  ? check_panic_on_warn+0x21/0xb0
[  129.585432][  T112]  ? __pfx_panic+0x10/0x10
[  129.589843][  T112]  ? do_raw_spin_unlock+0x13c/0x8b0
[  129.595043][  T112]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  129.600937][  T112]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  129.607262][  T112]  ? print_report+0x502/0x550
[  129.611944][  T112]  check_panic_on_warn+0x86/0xb0
[  129.616880][  T112]  ? jfs_lazycommit+0x7e0/0xb80
[  129.621728][  T112]  end_report+0x77/0x160
[  129.625964][  T112]  kasan_report+0x154/0x180
[  129.630460][  T112]  ? _raw_spin_lock_irqsave+0xe1/0x120
[  129.635939][  T112]  ? jfs_lazycommit+0x7e0/0xb80
[  129.640788][  T112]  jfs_lazycommit+0x7e0/0xb80
[  129.645459][  T112]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  129.651347][  T112]  ? lockdep_hardirqs_on+0x99/0x150
[  129.656542][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  129.661735][  T112]  ? __pfx_default_wake_function+0x10/0x10
[  129.667538][  T112]  ? __kthread_parkme+0x169/0x1d0
[  129.672560][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  129.677750][  T112]  kthread+0x2f0/0x390
[  129.681815][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[  129.687011][  T112]  ? __pfx_kthread+0x10/0x10
[  129.691601][  T112]  ret_from_fork+0x4b/0x80
[  129.696016][  T112]  ? __pfx_kthread+0x10/0x10
[  129.700604][  T112]  ret_from_fork_asm+0x1a/0x30
[  129.705395][  T112]  </TASK>
[  129.708699][  T112] Kernel Offset: disabled
[  129.713190][  T112] Rebooting in 86400 seconds..