last executing test programs:

4.206338306s ago: executing program 3 (id=2997):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x16, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1ab92b}, {0x85, 0x0, 0x0, 0x88}, {0x4}}, {{0x5, 0x0, 0x4, 0x9, 0x0, 0x1, 0x2000}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x9}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

3.54601458s ago: executing program 5 (id=3005):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000500), 0x1010c0, 0x0)

3.230158878s ago: executing program 5 (id=3010):
r0 = syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f0000005640), 0x0, 0x55a3, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f0000000180)=ANY=[])

3.020104356s ago: executing program 0 (id=3013):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0xffffffff)

2.875335388s ago: executing program 3 (id=3014):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f0000000280)={0x0, 0x4, 0x20})

2.709235408s ago: executing program 0 (id=3017):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="640000000206010800000000000000000000000014000780080012400003000008001140000000000500010006000000050005000200000005000400000000000900020073797a310000000015000300686173683a6970"], 0x64}}, 0x0)

2.598196892s ago: executing program 3 (id=3018):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000004c0)={{0x12, 0x1, 0x141, 0x30, 0xf5, 0x69, 0x20, 0x5ac, 0x219, 0xf072, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x55, 0x7, 0x1, 0x3, 0x49, 0x2, 0x0, [], [{{0x9, 0x5, 0x82, 0x3, 0x400, 0x0, 0x33, 0x81}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000580)={0x84, &(0x7f0000000540)={0x0, 0x14, 0x30, "d4a911bb11e39d2e"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.512060461s ago: executing program 0 (id=3021):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x7fffffffffe, &(0x7f0000006680))
lsm_set_self_attr(0x66, 0x0, 0x20, 0x0)

2.274634621s ago: executing program 0 (id=3025):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, 0x0, 0x0)

2.041997205s ago: executing program 0 (id=3028):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000180)="9000000018001f2fb9409b52ffff65580200be04020c060560020b0243000f00ffffff9e00c8388827a685a168d0bf47d32345653602648dcaaf6c26c291214549935ade4a460c20b6ec0cff3959547f500f58ba86c902000f1d012e02000280160012000a000000000000000000000000080000000eceb6b362bb944cf2e70100aba4183b003e5fa424ac4d31c4f7a1", 0x90, 0x0, 0x0, 0xf)

1.870076863s ago: executing program 1 (id=3031):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)

1.737899427s ago: executing program 0 (id=3032):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x5014806, &(0x7f00000002c0)={[{@quota}, {@nodiscard}, {@nodiscard}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@errors_continue}, {@discard_size={'discard', 0x3d, 0x5}}, {@noquota}, {@nointegrity}]}, 0x24, 0x61eb, &(0x7f0000000480)="$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")
setxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)=@known='user.syz\x00', 0x0, 0x0, 0x1)

1.733851941s ago: executing program 4 (id=3033):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000100)={0x0, 0x0, 0x2, 0x2, 0xfffffffd}, &(0x7f0000000240), &(0x7f0000000200))
io_uring_enter(r0, 0x6e2, 0x0, 0xb, 0x0, 0x18)

1.569228109s ago: executing program 1 (id=3035):
r0 = openat$random(0xffffffffffffff9c, &(0x7f00000020c0), 0x0, 0x0)
preadv2(r0, &(0x7f0000000580)=[{&(0x7f0000002100)=""/4096, 0x1000}, {&(0x7f0000000080)=""/120, 0x78}, {&(0x7f0000000100)=""/8, 0x8}, {&(0x7f00000001c0)=""/178, 0xb2}], 0x4, 0x0, 0x0, 0x0)

1.52713318s ago: executing program 4 (id=3036):
r0 = syz_open_dev$loop(&(0x7f0000001580), 0x7, 0x82480)
ioctl$LOOP_GET_STATUS64(r0, 0x1265, &(0x7f0000000400))

1.304035895s ago: executing program 2 (id=3039):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x40200, 0x0)
ioctl$SNDCTL_SYNTH_ID(r0, 0xc08c5114, &(0x7f0000000080)={"e6c84662a998f98cf23373754d798885434e059fc1fed4928905ce15ca98", 0x3, 0x0, 0x1, 0xfffffffd, 0x8, 0x4000, 0x9, 0x2, [0x4, 0x200, 0x0, 0x800, 0xe, 0x59, 0x500, 0xa794, 0x6, 0x6365f91, 0x1155, 0x5, 0x10001, 0x400, 0x5, 0x2c75b4c8, 0x3, 0xe42, 0x7fffffff]})

1.187531941s ago: executing program 1 (id=3040):
r0 = socket$inet6(0xa, 0x3, 0x5)
sendmmsg(r0, &(0x7f0000001a00)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x6}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000580)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x6, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000040)=[{0x10, 0x1, 0x7}], 0x10}}], 0x2, 0x0)

1.157095609s ago: executing program 5 (id=3041):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x5, [@struct={0x1, 0x1, 0x0, 0x4, 0x1, 0x4, [{0x0, 0x4, 0x9}]}]}, {0x0, [0x61, 0x2e, 0x5f]}}, &(0x7f0000000f40)=""/4089, 0x35, 0xff9, 0x1, 0x0, 0x0, @void, @value}, 0x28)

1.131454307s ago: executing program 2 (id=3042):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f0000000140)={'sit0\x00', 0x0})

1.131286708s ago: executing program 4 (id=3043):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x7040, 0x0)

894.935095ms ago: executing program 2 (id=3044):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x1000)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40505330, &(0x7f0000000300)={0xfffffff7, 0x818000, 0x1, 0x4, 0xfd, 0xe})

894.277551ms ago: executing program 1 (id=3045):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="8000000000010104000000000000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001800800010000000000080002007f0000010c00028005000100000000000800074000000000080003400000100e14000580050001"], 0x80}}, 0x0)

873.674574ms ago: executing program 4 (id=3046):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)="e900a915d728f20a6fe20e93f24e4e14ed1e97d272563b455165937c375010167548c11ccc1f04456c58cd47fe5b972dcab1bf7cbbd0749990b333497270cbfb37adca22511c54a09eaf61c28f2a8b117046b422529b663c324a07550a232be9951964cca0312b1a3197bfa1da902ed094f11dcb1450d9fe6e6d", 0x7a}, 0x1, 0x0, 0x0, 0x408c0}, 0x20040814)

707.427424ms ago: executing program 5 (id=3047):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x38, 0x3e, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x14, 0x2, 0x0, 0x1, [@nested={0x10, 0x14, 0x0, 0x1, [@nested={0xc, 0x19, 0x0, 0x1, [@typed={0x8, 0x34, 0x0, 0x0, @pid}]}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)

566.141105ms ago: executing program 3 (id=3048):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="68000000020605000000000000100000000000000e0003006269746d61703a697000000005000400000000000900020073797a3000000000200007800c00018004000140000000000800084000000000080006400000000005000500020000000500010006"], 0x68}}, 0x0)

520.461365ms ago: executing program 4 (id=3049):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x450, 0x0, 0x1acc02, 0x148, 0x0, 0x10, 0x3b8, 0x2a8, 0x2a8, 0x3b8, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x40000, 0x2f8, 0x320, 0x0, {0x0, 0x5803}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x9, 0x1, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x10, './file0\x00'}}]}, @common=@inet=@SET1={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4b0)

497.41443ms ago: executing program 2 (id=3050):
r0 = fanotify_init(0x0, 0x0)
fanotify_mark(r0, 0x90, 0x40100000, 0xffffffffffffffff, 0x0)

322.13056ms ago: executing program 1 (id=3051):
r0 = syz_open_dev$video(&(0x7f00000000c0), 0x7, 0x80040)
ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f0000000800)={0x9, {}, {0x0, 0x0, 0x0, 0x4f3}})

315.315515ms ago: executing program 3 (id=3052):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x3fe, 0x2)
ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000680)={0x1, @pix={0x983e, 0x3, 0x33424752, 0x0, 0x9, 0x8, 0x8, 0x483, 0x0, 0x4, 0x0, 0x5}})

314.824945ms ago: executing program 5 (id=3053):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001a00010029bd7000feffffff0200000000000003003100000800100009000000080019"], 0x2c}}, 0x0)

244.859433ms ago: executing program 2 (id=3054):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000000)={{0x2, 0x4e24, @empty}, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x44}}, 0x0, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'lo\x00'})

94.216661ms ago: executing program 4 (id=3055):
r0 = syz_open_procfs(0x0, &(0x7f0000000500)='fdinfo\x00')
linkat(r0, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000)

94.006085ms ago: executing program 3 (id=3056):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, 0x0)

78.174024ms ago: executing program 1 (id=3057):
syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x2, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0xb, 0x2b2, &(0x7f0000000700)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x42, 0x0)

55.299701ms ago: executing program 5 (id=3058):
mbind(&(0x7f0000bdc000/0x3000)=nil, 0x3000, 0x1, &(0x7f0000000140)=0x3ff, 0x3, 0x0)
mbind(&(0x7f0000bdb000/0x3000)=nil, 0x3000, 0x1, &(0x7f0000000080)=0x103e, 0x5, 0x0)

0s ago: executing program 2 (id=3059):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0xfffd, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x2}}, 0x0, 0xfffd, 0x3, 0x400, 0x36}, 0x9c)

kernel console output (not intermixed with test programs):

ver after parsing attributes in process `syz.0.1321'.
[  186.489669][ T8947] (syz.3.1312,8947,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  186.592540][ T8947] (syz.3.1312,8947,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  186.806802][ T8947] JBD2: Ignoring recovery information on journal
[  186.914088][ T9024] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1326'.
[  187.019067][ T8947] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  187.640507][ T5820] ocfs2: Unmounting device (7,3) on (node local)
[  188.255912][ T9072] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  188.303978][ T9079] tipc: Can't bind to reserved service type 0
[  188.331917][ T9072] batadv_slave_0: entered promiscuous mode
[  188.337760][ T9072] batadv_slave_0: entered allmulticast mode
[  188.530959][ T9086] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1354'.
[  188.749273][ T9094] netlink: 'syz.1.1357': attribute type 1 has an invalid length.
[  188.787476][ T9094] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1357'.
[  189.147929][ T9116] loop5: detected capacity change from 0 to 64
[  189.381378][ T9128] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1373'.
[  189.524860][ T9134] x_tables: duplicate underflow at hook 2
[  189.764575][ T9147] netlink: 'syz.2.1381': attribute type 10 has an invalid length.
[  189.800667][ T9149] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1382'.
[  189.810659][ T9147] bridge0: port 4(macvlan1) entered blocking state
[  189.835170][ T9147] bridge0: port 4(macvlan1) entered disabled state
[  189.871571][ T9147] macvlan1: entered allmulticast mode
[  189.891355][ T9147] veth1_vlan: entered allmulticast mode
[  189.913373][ T9147] macvlan1: entered promiscuous mode
[  189.942493][ T9147] bridge0: port 4(macvlan1) entered blocking state
[  189.949188][ T9147] bridge0: port 4(macvlan1) entered forwarding state
[  190.298390][ T9168] netlink: 'syz.0.1391': attribute type 10 has an invalid length.
[  190.370818][ T9168] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  190.441871][ T9168] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  190.484001][ T9168] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  190.517752][ T9178] loop2: detected capacity change from 0 to 256
[  190.616191][ T9178] FAT-fs (loop2): Directory bread(block 64) failed
[  190.655330][ T9178] FAT-fs (loop2): Directory bread(block 65) failed
[  190.683018][ T9178] FAT-fs (loop2): Directory bread(block 66) failed
[  190.707566][ T9178] FAT-fs (loop2): Directory bread(block 67) failed
[  190.738011][ T9178] FAT-fs (loop2): Directory bread(block 68) failed
[  190.757089][ T9183] loop4: detected capacity change from 0 to 2048
[  190.758614][ T9180] loop3: detected capacity change from 0 to 4096
[  190.773960][ T9178] FAT-fs (loop2): Directory bread(block 69) failed
[  190.780578][ T9178] FAT-fs (loop2): Directory bread(block 70) failed
[  190.797339][ T9183] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  190.807023][ T9178] FAT-fs (loop2): Directory bread(block 71) failed
[  190.814393][ T9178] FAT-fs (loop2): Directory bread(block 72) failed
[  190.821013][ T9178] FAT-fs (loop2): Directory bread(block 73) failed
[  190.841236][ T9180] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  190.889712][ T9189] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  190.963723][ T9180] ntfs3(loop3): ino=19, mi_enum_attr
[  190.970099][ T9180] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  191.025053][ T9180] ntfs3(loop3): failed to convert "c46c" to iso8859-3
[  191.104816][ T9180] ntfs3(loop3): ino=20, mi_enum_attr
[  191.459302][ T9205] usb usb8: usbfs: process 9205 (syz.5.1411) did not claim interface 0 before use
[  191.585308][ T5850] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  191.781555][ T5850] usb 1-1: Using ep0 maxpacket: 16
[  191.799311][ T9214] loop1: detected capacity change from 0 to 64
[  191.800986][ T9215] netlink: 'syz.3.1416': attribute type 10 has an invalid length.
[  191.825156][ T5850] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  191.847052][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.869903][ T9215] team0: Device veth1_macvtap failed to register rx_handler
[  191.897726][ T5850] usb 1-1: Product: syz
[  191.904104][ T5850] usb 1-1: Manufacturer: syz
[  191.908870][ T5850] usb 1-1: SerialNumber: syz
[  191.959836][ T5850] r8152-cfgselector 1-1: Unknown version 0x0000
[  191.989753][ T5850] r8152-cfgselector 1-1: config 0 descriptor??
[  192.168269][ T9226] __nla_validate_parse: 1 callbacks suppressed
[  192.168290][ T9226] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1422'.
[  192.190841][ T9228] i2c i2c-0: Invalid block write size 33
[  192.194961][ T9226] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1422'.
[  192.386084][ T9225] bond1: entered promiscuous mode
[  192.432729][ T9225] bond1: entered allmulticast mode
[  192.465425][ T9225] 8021q: adding VLAN 0 to HW filter on device bond1
[  192.520725][   T24] r8152-cfgselector 1-1: USB disconnect, device number 8
[  192.629719][ T9241] loop5: detected capacity change from 0 to 1024
[  192.718506][ T9225] bond1 (unregistering): Released all slaves
[  192.742960][   T54] hfsplus: b-tree write err: -5, ino 4
[  193.251743][  T916] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  193.281662][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  193.440090][  T916] usb 4-1: config 0 has an invalid interface number: 138 but max is 0
[  193.457265][   T24] usb 2-1: Using ep0 maxpacket: 32
[  193.457718][  T916] usb 4-1: config 0 has no interface number 0
[  193.478462][  T916] usb 4-1: config 0 interface 138 altsetting 0 has an endpoint descriptor with address 0x61, changing to 0x1
[  193.495840][ T5850] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  193.503992][  T916] usb 4-1: config 0 interface 138 altsetting 0 has an endpoint descriptor with address 0x97, changing to 0x87
[  193.520041][  T916] usb 4-1: config 0 interface 138 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 4
[  193.531490][   T24] usb 2-1: config 0 has an invalid interface number: 59 but max is 0
[  193.531519][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  193.531542][   T24] usb 2-1: config 0 has no interface number 0
[  193.531584][   T24] usb 2-1: config 0 interface 59 altsetting 7 has an endpoint descriptor with address 0xFA, changing to 0x8A
[  193.531615][   T24] usb 2-1: config 0 interface 59 altsetting 7 bulk endpoint 0x8A has invalid maxpacket 22
[  193.531643][   T24] usb 2-1: config 0 interface 59 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  193.531676][   T24] usb 2-1: config 0 interface 59 has no altsetting 0
[  193.545575][   T24] usb 2-1: New USB device found, idVendor=0499, idProduct=5006, bcdDevice=47.18
[  193.609137][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  193.615675][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  193.626465][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.636406][   T24] usb 2-1: Product: syz
[  193.640645][   T24] usb 2-1: Manufacturer: syz
[  193.645552][   T24] usb 2-1: SerialNumber: syz
[  193.649706][  T916] usb 4-1: config 0 interface 138 altsetting 0 endpoint 0x87 has invalid maxpacket 1152, setting to 1023
[  193.653641][   T24] usb 2-1: config 0 descriptor??
[  193.676284][ T9252] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  193.683803][ T5850] usb 6-1: Using ep0 maxpacket: 32
[  193.692310][ T5850] usb 6-1: config 0 has an invalid interface number: 225 but max is 0
[  193.704291][   T24] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  193.712014][ T5850] usb 6-1: config 0 has no interface number 0
[  193.718120][ T5850] usb 6-1: config 0 interface 225 altsetting 130 endpoint 0xD has invalid maxpacket 512, setting to 64
[  193.740095][  T916] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice= f.66
[  193.756512][ T5850] usb 6-1: config 0 interface 225 altsetting 130 endpoint 0x4 has invalid maxpacket 5950, setting to 1024
[  193.778931][  T916] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.811638][ T5850] usb 6-1: config 0 interface 225 altsetting 130 bulk endpoint 0x4 has invalid maxpacket 1024
[  193.844882][ T5850] usb 6-1: config 0 interface 225 altsetting 130 endpoint 0xF has an invalid bInterval 0, changing to 7
[  193.852336][  T916] usb 4-1: config 0 descriptor??
[  193.873740][ T5850] usb 6-1: config 0 interface 225 has no altsetting 0
[  193.916289][ T5850] usb 6-1: New USB device found, idVendor=0bfd, idProduct=0105, bcdDevice=dc.79
[  193.960233][ T5850] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.991743][ T5850] usb 6-1: Product: syz
[  193.995948][ T5850] usb 6-1: Manufacturer: syz
[  194.008677][   T24] usb 2-1: USB disconnect, device number 8
[  194.022722][ T9276] loop0: detected capacity change from 0 to 1024
[  194.029272][ T5850] usb 6-1: SerialNumber: syz
[  194.128019][  T916] usb 4-1: string descriptor 0 read error: -71
[  194.128932][ T5850] usb 6-1: config 0 descriptor??
[  194.166540][ T9262] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  194.186042][  T916] usbtest 4-1:0.138: Linux gadget zero
[  194.194630][  T916] usbtest 4-1:0.138: full-speed {control in/out bulk-out iso-in} tests (+alt)
[  194.214987][ T5850] kvaser_usb 6-1:0.225: error -ENODEV: Cannot get usb endpoint(s)
[  194.227133][  T916] usb 4-1: USB disconnect, device number 6
[  194.323891][ T6029] udevd[6029]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.59/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  194.414914][ T9289] netlink: zone id is out of range
[  194.424675][ T9289] netlink: zone id is out of range
[  194.429807][ T9289] netlink: zone id is out of range
[  194.480425][ T9289] netlink: zone id is out of range
[  194.495472][ T9289] netlink: zone id is out of range
[  194.512867][ T9289] netlink: zone id is out of range
[  194.532008][ T9289] netlink: zone id is out of range
[  194.537242][ T9289] netlink: zone id is out of range
[  194.547380][ T9289] netlink: zone id is out of range
[  194.557495][ T9289] netlink: zone id is out of range
[  194.591273][ T5850] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[  194.763041][ T9296] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1454'.
[  194.791595][ T5850] usb 1-1: config 0 has an invalid interface number: 83 but max is 0
[  194.810195][ T5850] usb 1-1: config 0 has no interface number 0
[  194.836461][ T5850] usb 1-1: config 0 interface 83 altsetting 6 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  194.869686][ T5850] usb 1-1: config 0 interface 83 altsetting 6 has a duplicate endpoint with address 0x83, skipping
[  194.901204][ T5850] usb 1-1: config 0 interface 83 has no altsetting 0
[  194.910530][ T5850] usb 1-1: New USB device found, idVendor=0557, idProduct=2001, bcdDevice=6d.a7
[  194.936265][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.953265][ T5850] usb 1-1: Product: syz
[  194.957544][ T5850] usb 1-1: Manufacturer: syz
[  194.968015][ T5850] usb 1-1: SerialNumber: syz
[  194.996318][ T5850] usb 1-1: config 0 descriptor??
[  195.093560][ T5886] usb 6-1: USB disconnect, device number 5
[  195.255258][ T5850] usb 1-1: USB disconnect, device number 9
[  195.540441][ T9327] netlink: 'syz.4.1468': attribute type 21 has an invalid length.
[  195.574479][ T9327] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1468'.
[  195.611272][ T9327] netlink: 'syz.4.1468': attribute type 5 has an invalid length.
[  195.631280][ T9327] netlink: 'syz.4.1468': attribute type 6 has an invalid length.
[  195.676237][ T9322] loop5: detected capacity change from 0 to 2048
[  195.684356][ T9327] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1468'.
[  195.706927][ T9330] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1471'.
[  195.756036][ T9322] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.024612][ T9345] tmpfs: Bad value for 'mpol'
[  196.043241][ T5821] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.214446][ T9393] program syz.3.1501 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  197.233871][ T9391] loop4: detected capacity change from 0 to 2048
[  197.265287][ T9391] EXT4-fs: Ignoring removed mblk_io_submit option
[  197.353727][ T9391] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.404314][ T9401] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1504'.
[  197.595490][ T9377] loop0: detected capacity change from 0 to 32768
[  197.643045][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.765933][ T9377] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  197.774703][ T9414] netlink: 'syz.1.1508': attribute type 29 has an invalid length.
[  197.808357][ T9377] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,read_only,reconstruct_alloc
[  197.808357][ T9377]   allowing incompatible features above 0.0: (unknown version)
[  197.851462][ T9419] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1511'.
[  197.898363][ T9377] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  197.902431][ T9406] loop5: detected capacity change from 0 to 4096
[  197.923082][ T9377] bcachefs (loop0): Version upgrade required:
[  197.923082][ T9377] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  197.923082][ T9377] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  197.923082][ T9377]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  197.964423][ T9406] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[  197.992827][    C0] vkms_vblank_simulate: vblank timer overrun
[  198.074794][ T9377] bcachefs (loop0): dropping and reconstructing all alloc info
[  198.149912][ T9377] bcachefs (loop0): accounting_read... done
[  198.166656][ T9377] bcachefs (loop0): alloc_read... done
[  198.199335][ T9377] bcachefs (loop0): done starting filesystem
[  198.550848][ T5825] bcachefs (loop0): shutting down
[  198.742578][ T5825] bcachefs (loop0): shutdown complete
[  199.142783][ T9422] loop4: detected capacity change from 0 to 32768
[  199.191357][ T5850] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  199.234835][ T9426] loop1: detected capacity change from 0 to 32768
[  199.277352][ T9426] 
[  199.277352][ T9426]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.277352][ T9426] 
[  199.321710][  T916] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  199.352379][ T5850] usb 6-1: too many configurations: 89, using maximum allowed: 8
[  199.361860][ T9426] ERROR: (device loop1): diWrite: ixpxd invalid
[  199.361860][ T9426] 
[  199.418767][ T5850] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  199.432625][ T9426] ERROR: (device loop1): txCommit: 
[  199.432625][ T9426] 
[  199.444340][ T5850] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.453225][ T9450] binder: 9449:9450 ioctl c0306201 200000000100 returned -14
[  199.469423][ T5850] usb 6-1: Product: syz
[  199.475189][ T9426] imap: ffff888033948000: ffffffff 00000000 00000000 00000000
[  199.484728][ T5850] usb 6-1: Manufacturer: syz
[  199.495140][ T5850] usb 6-1: SerialNumber: syz
[  199.508638][  T916] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  199.515133][ T9426] imap: ffff888033948010: 00000004 00000002 00000000 00000000
[  199.532305][  T916] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  199.548808][ T5850] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  199.576652][  T916] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  199.594661][   T24] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  199.611024][  T916] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  199.630444][  T916] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.630635][ T9426] ERROR: (device loop1): diFree: inum = 64, iagno = 0, nextiag = 0
[  199.630635][ T9426] 
[  199.692665][  T916] usb 3-1: config 0 descriptor??
[  199.719525][  T916] hub 3-1:0.0: USB hub found
[  199.733055][ T5828] 
[  199.733055][ T5828]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.733055][ T5828] 
[  199.771594][ T5828] 
[  199.771594][ T5828]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.771594][ T5828] 
[  199.932462][  T916] hub 3-1:0.0: 9 ports detected
[  199.957801][  T916] hub 3-1:0.0: insufficient power available to use all downstream ports
[  200.137760][  T916] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  200.193617][  T916] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  200.309238][  T916] usb 3-1: USB disconnect, device number 9
[  201.589801][ T9480] net_ratelimit: 394 callbacks suppressed
[  201.589822][ T9480] netlink: zone id is out of range
[  201.685757][   T24] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  201.921172][ T5850] usb 6-1: USB disconnect, device number 6
[  201.941808][   T24] ath9k_htc: Failed to initialize the device
[  201.950542][ T5850] usb 6-1: ath9k_htc: USB layer deinitialized
[  202.129933][ T9489] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  202.323589][   T48] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  202.520307][   T48] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[  202.541556][   T48] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  202.621876][   T48] usb 4-1: config 220 has no interface number 2
[  202.640201][   T48] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  202.676504][   T48] usb 4-1: config 220 interface 0 has no altsetting 0
[  202.693656][   T48] usb 4-1: config 220 interface 76 has no altsetting 0
[  202.723999][   T48] usb 4-1: config 220 interface 1 has no altsetting 0
[  202.744578][   T48] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  202.771360][   T48] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.794091][   T48] usb 4-1: Product: syz
[  202.798267][   T48] usb 4-1: Manufacturer: syz
[  202.845082][   T48] usb 4-1: SerialNumber: syz
[  203.137115][ T9522] netlink: 'syz.2.1561': attribute type 12 has an invalid length.
[  203.179451][ T9522] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1561'.
[  203.181694][   T48] usb 4-1: selecting invalid altsetting 0
[  203.220008][   T48] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[  203.251184][   T48] usb 4-1: No valid video chain found.
[  203.345752][   T48] usb 4-1: selecting invalid altsetting 0
[  203.351390][ T9526] loop4: detected capacity change from 0 to 1024
[  203.364423][   T48] usbtest 4-1:220.1: probe with driver usbtest failed with error -22
[  203.460837][ T9526] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.489592][ T9528] loop1: detected capacity change from 0 to 512
[  203.510271][   T48] usb 4-1: USB disconnect, device number 7
[  203.560216][ T9526] EXT4-fs error (device loop4): __ext4_new_inode:1073: comm syz.4.1564: reserved inode found cleared - inode=1
[  203.611975][ T9528] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.660730][ T9528] ext4 filesystem being mounted at /253/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  203.702756][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.764704][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.086590][ T9550] loop5: detected capacity change from 0 to 512
[  204.198426][ T9550] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.272872][ T9550] ext4 filesystem being mounted at /269/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.480567][ T5821] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.620918][ T9534] loop0: detected capacity change from 0 to 32768
[  204.711753][ T9534] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  204.731157][  T916] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  204.876871][ T9546] loop4: detected capacity change from 0 to 32768
[  204.891981][ T9546] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1569 (9546)
[  204.912710][  T916] usb 4-1: Using ep0 maxpacket: 16
[  204.927101][  T916] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  204.941166][  T916] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  204.959938][ T9546] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  204.981710][ T9546] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  205.007886][  T916] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  205.039064][ T9546] BTRFS info (device loop4): disk space caching is enabled
[  205.046310][  T916] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  205.049483][  T916] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  205.085104][ T9546] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  205.105138][  T916] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.137633][ T9581] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1583'.
[  205.144752][  T916] usb 4-1: Product: syz
[  205.156632][  T916] usb 4-1: Manufacturer: syz
[  205.186546][ T9534] XFS (loop0): Ending clean mount
[  205.200515][  T916] usb 4-1: SerialNumber: syz
[  205.276935][ T9578] loop5: detected capacity change from 0 to 8192
[  205.292115][ T9578] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  205.389358][ T5825] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  205.419040][ T9596] netlink: 'syz.2.1584': attribute type 10 has an invalid length.
[  205.430426][ T9546] BTRFS info (device loop4): rebuilding free space tree
[  205.476734][ T9596] netlink: 392 bytes leftover after parsing attributes in process `syz.2.1584'.
[  205.526338][  T916] usb 4-1: USB disconnect, device number 8
[  205.536709][ T9546] BTRFS info (device loop4): disabling free space tree
[  205.593167][ T9562] loop1: detected capacity change from 0 to 32768
[  205.613564][ T9600] loop5: detected capacity change from 0 to 256
[  205.618848][ T9546] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  205.664318][ T9546] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  205.693758][ T6066] udevd[6066]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  205.812931][ T9562] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  205.976513][ T9562] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  206.217127][ T5831] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  206.260219][ T9613] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1585'.
[  206.274534][ T9613] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1585'.
[  206.301667][ T5828] ocfs2: Unmounting device (7,1) on (node local)
[  206.741241][ T9625] warning: `syz.2.1598' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  206.850912][ T9630] 
@ÿ: renamed from bond_slave_0 (while UP)
[  207.125305][ T9636] (unnamed net_device) (uninitialized): (slave gre0): Device is not bonding slave
[  207.157304][ T9636] (unnamed net_device) (uninitialized): option active_slave: invalid value (gre0)
[  207.683160][ T9654] netlink: 'syz.2.1610': attribute type 13 has an invalid length.
[  207.691029][ T9654] macvtap0: entered promiscuous mode
[  207.756967][ T9659] openvswitch: netlink: Flow key attr not present in new flow.
[  207.759085][ T9654] macvtap0: refused to change device tx_queue_len
[  208.020490][ T9623] loop0: detected capacity change from 0 to 32768
[  208.627175][ T9647] infiniband syz1: set down
[  208.675644][ T9647] infiniband syz1: added ipvlan0
[  208.707994][ T9647] syz1: rxe_create_cq: returned err = -12
[  208.747853][ T9647] infiniband syz1: Couldn't create ib_mad CQ
[  208.771504][ T9647] infiniband syz1: Couldn't open port 1
[  208.915139][ T9647] RDS/IB: syz1: added
[  208.919676][ T9647] smc: adding ib device syz1 with port count 1
[  208.971193][   T48] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  208.984385][ T9647] smc:    ib device syz1 port 1 has pnetid 
[  209.131177][   T48] usb 2-1: Using ep0 maxpacket: 8
[  209.138385][   T48] usb 2-1: unable to get BOS descriptor or descriptor too short
[  209.147554][   T48] usb 2-1: config 0 has an invalid interface number: 125 but max is 0
[  209.165669][   T48] usb 2-1: config 0 has no interface number 0
[  209.176416][   T48] usb 2-1: config 0 interface 125 has no altsetting 0
[  209.230790][   T48] usb 2-1: string descriptor 0 read error: -22
[  209.246888][   T48] usb 2-1: New USB device found, idVendor=17dc, idProduct=0202, bcdDevice=8a.dd
[  209.281449][   T48] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.345541][   T48] usb 2-1: config 0 descriptor??
[  209.396789][   T48] hub 2-1:0.125: bad descriptor, ignoring hub
[  209.434091][   T48] hub 2-1:0.125: probe with driver hub failed with error -5
[  209.473259][   T48] usb 2-1: Found UVC 0.00 device <unnamed> (17dc:0202)
[  209.480178][   T48] usb 2-1: No valid video chain found.
[  209.679606][ T9713] loop2: detected capacity change from 0 to 1024
[  209.742855][ T9715] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  209.787928][ T9715] batadv_slave_0: entered promiscuous mode
[  209.817041][   T10] usb 2-1: USB disconnect, device number 9
[  209.824466][ T9715] batadv_slave_0: entered allmulticast mode
[  210.448011][ T9737] netlink: 'syz.2.1650': attribute type 1 has an invalid length.
[  210.459579][ T9737] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1650'.
[  210.545291][ T9733] bond1: entered promiscuous mode
[  210.550375][ T9733] bond1: entered allmulticast mode
[  210.611688][ T9733] 8021q: adding VLAN 0 to HW filter on device bond1
[  210.653509][ T9740] ptrace attach of "./syz-executor exec"[9741] was attempted by "./syz-executor exec"[9740]
[  210.983208][ T9733] bond1 (unregistering): Released all slaves
[  211.004527][ T5830] Bluetooth: hci3: command 0x0406 tx timeout
[  211.004889][ T5843] Bluetooth: hci2: command 0x0406 tx timeout
[  211.010919][   T56] Bluetooth: hci1: command 0x0406 tx timeout
[  211.017431][ T5843] Bluetooth: hci0: command 0x0406 tx timeout
[  211.023012][ T5830] Bluetooth: hci5: command 0x0406 tx timeout
[  211.031145][ T5829] Bluetooth: hci4: command 0x0406 tx timeout
[  211.297236][ T9738] loop1: detected capacity change from 0 to 32768
[  211.316642][ T9738] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1651 (9738)
[  211.372255][ T9738] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  211.416048][ T9738] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  211.437538][ T9738] BTRFS info (device loop1): using free-space-tree
[  211.598652][ T9774] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1664'.
[  211.723928][ T9738] BTRFS info (device loop1): rebuilding free space tree
[  211.886906][ T9789] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1668'.
[  211.941263][ T9789] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1668'.
[  211.949558][ T9785] loop3: detected capacity change from 0 to 1024
[  212.003412][ T5828] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  212.563127][ T9799] bond1: entered promiscuous mode
[  212.574564][ T9799] bond1: entered allmulticast mode
[  212.621524][ T9799] 8021q: adding VLAN 0 to HW filter on device bond1
[  212.811578][ T9816] loop1: detected capacity change from 0 to 65
[  212.855203][ T9816] BFS-fs: bfs_fill_super(): NOTE: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
[  212.888142][ T9817] loop0: detected capacity change from 0 to 1024
[  213.054412][   T36] hfsplus: b-tree write err: -5, ino 4
[  213.358656][ T9799] bond1 (unregistering): Released all slaves
[  213.483829][ T9829] loop2: detected capacity change from 0 to 64
[  213.566778][ T9829] bio_check_eod: 8 callbacks suppressed
[  213.566797][ T9829] syz.2.1687: attempt to access beyond end of device
[  213.566797][ T9829] loop2: rw=0, sector=2590, nr_sectors = 2 limit=64
[  213.575057][ T9831] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1688'.
[  213.641050][ T9829] buffer_io_error: 6 callbacks suppressed
[  213.681185][ T9829] Buffer I/O error on dev loop2, logical block 1295, async page read
[  213.694341][ T9811] loop3: detected capacity change from 0 to 32768
[  213.719572][ T9829] syz.2.1687: attempt to access beyond end of device
[  213.719572][ T9829] loop2: rw=0, sector=2590, nr_sectors = 2 limit=64
[  213.754197][ T9829] Buffer I/O error on dev loop2, logical block 1295, async page read
[  213.760663][ T9835] loop1: detected capacity change from 0 to 128
[  213.781167][ T9835] befs: (loop1): invalid magic header
[  213.792341][ T9811] JBD2: Ignoring recovery information on journal
[  213.831559][   T30] audit: type=1800 audit(1746365302.273:70): pid=9829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1687" name="file2" dev="loop2" ino=6 res=0 errno=0
[  213.978090][ T9811] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  214.157447][ T9847] loop1: detected capacity change from 0 to 128
[  214.227050][ T9847] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  214.260166][ T9846] loop0: detected capacity change from 0 to 2048
[  214.295399][ T9847] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  214.324713][ T9846] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.340681][ T5820] ocfs2: Unmounting device (7,3) on (node local)
[  214.371192][   T10] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  214.402855][ T9846] ext4 filesystem being mounted at /249/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.551444][   T10] usb 3-1: Using ep0 maxpacket: 8
[  214.598538][   T10] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 7
[  214.635769][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.646876][   T10] usb 3-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  214.671607][   T10] usb 3-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  214.679733][   T10] usb 3-1: Product: syz
[  214.697391][   T10] usb 3-1: Manufacturer: syz
[  214.711149][   T10] usb 3-1: SerialNumber: syz
[  214.967757][   T10] usb 3-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  214.992389][   T10] usb 3-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  215.040818][   T10] usb 3-1: Handspring Visor / Palm OS: Number of ports: 2
[  215.114169][ T9866] dlm: no locking on control device
[  215.115657][ T9864] loop3: detected capacity change from 0 to 764
[  215.163039][   T10] usb 3-1: palm_os_3_probe - error -71 getting bytes available request
[  215.197669][ T9864] Symlink component flag not implemented
[  215.202798][   T10] visor 3-1:1.0: Handspring Visor / Palm OS converter detected
[  215.214810][ T9864] Symlink component flag not implemented
[  215.247894][ T9864] Symlink component flag not implemented (129)
[  215.251353][   T10] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  215.272679][ T9864] Symlink component flag not implemented (6)
[  215.305427][   T10] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  215.361389][   T10] usb 3-1: USB disconnect, device number 10
[  215.441933][   T10] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  215.553885][   T10] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  215.591806][   T10] visor 3-1:1.0: device disconnected
[  215.821430][ T9884] xt_HMARK: proto mask must be zero with L3 mode
[  216.271168][ T5850] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  216.463087][ T5850] usb 4-1: Using ep0 maxpacket: 16
[  216.491789][ T5850] usb 4-1: config 0 has an invalid interface number: 79 but max is 0
[  216.523517][ T5850] usb 4-1: config 0 has no interface number 0
[  216.562744][ T5850] usb 4-1: New USB device found, idVendor=0402, idProduct=5632, bcdDevice=c3.6f
[  216.596289][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.633149][ T5850] usb 4-1: Product: syz
[  216.647520][ T5850] usb 4-1: Manufacturer: syz
[  216.659780][ T9915] qrtr: Invalid version 0
[  216.672634][ T5850] usb 4-1: SerialNumber: syz
[  216.695537][ T5850] usb 4-1: config 0 descriptor??
[  217.001826][ T5850] cdc_subset 4-1:0.79 usb0: register 'cdc_subset' at usb-dummy_hcd.3-1, ALi M5632, d2:cc:3d:09:bb:1e
[  217.091226][ T9927] autofs4:pid:9927:validate_dev_ioctl: path string terminator missing for cmd(0xc018937e)
[  217.203039][ T5890] usb 4-1: USB disconnect, device number 9
[  217.233635][ T9933] netlink: 'syz.0.1736': attribute type 4 has an invalid length.
[  217.241962][ T5890] cdc_subset 4-1:0.79 usb0: unregister 'cdc_subset' usb-dummy_hcd.3-1, ALi M5632
[  217.257826][ T9933] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.1736'.
[  217.623391][ T9942] dummy0: mtu less than device minimum
[  218.316328][ T9971] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1754'.
[  218.325531][ T9970] loop0: detected capacity change from 0 to 8
[  218.351552][ T9971] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1754'.
[  218.368454][ T9970] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  218.433005][ T9970] cramfs: bad data blocksize 4291821208
[  218.438742][ T9970] cramfs: bad data blocksize 4291821208
[  218.447757][ T9965] loop4: detected capacity change from 0 to 4096
[  218.516421][ T9965] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.749667][ T9983] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1760'.
[  218.793191][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.051295][ T5890] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  219.244098][ T5890] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  219.253517][ T5890] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.301203][ T5890] usb 2-1: Product: syz
[  219.305391][ T5890] usb 2-1: Manufacturer: syz
[  219.309990][ T5890] usb 2-1: SerialNumber: syz
[  219.318298][T10004] netlink: 'syz.5.1770': attribute type 21 has an invalid length.
[  219.372819][T10004] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1770'.
[  219.391447][ T5890] r8152-cfgselector 2-1: Unknown version 0x0000
[  219.397714][ T5890] r8152-cfgselector 2-1: config 0 descriptor??
[  219.437893][T10010] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1774'.
[  219.900437][ T5834] r8152-cfgselector 2-1: USB disconnect, device number 10
[  220.299456][T10038] loop2: detected capacity change from 0 to 2048
[  220.397802][ T6066]  loop2: p3 < > p4 < >
[  220.423929][ T6066] loop2: partition table partially beyond EOD, truncated
[  220.473204][ T6066] loop2: p3 start 4284289 is beyond EOD, truncated
[  220.503111][ T5841] Bluetooth: hci3: Malformed LE Event: 0x1b
[  220.571232][T10038]  loop2: p3 < > p4 < >
[  220.575454][T10038] loop2: partition table partially beyond EOD, truncated
[  220.601621][T10038] loop2: p3 start 4284289 is beyond EOD, truncated
[  220.862471][T10058] loop4: detected capacity change from 0 to 64
[  220.960099][ T8194] udevd[8194]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  221.070345][T10016] loop0: detected capacity change from 0 to 40427
[  221.151441][T10016] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x3fffff
[  221.205378][T10016] F2FS-fs (loop0): Image doesn't support compression
[  221.259675][T10016] F2FS-fs (loop0): Image doesn't support compression
[  221.289363][T10072] loop4: detected capacity change from 0 to 16
[  221.350416][T10016] F2FS-fs (loop0): invalid crc value
[  221.401474][T10072] erofs (device loop4): mounted with root inode @ nid 36.
[  221.761415][T10016] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  221.852629][T10094] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  221.873985][T10016] syz.0.1776: attempt to access beyond end of device
[  221.873985][T10016] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  222.283266][ T5825] syz-executor: attempt to access beyond end of device
[  222.283266][ T5825] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  222.342845][ T5825] CPU: 0 UID: 0 PID: 5825 Comm: syz-executor Not tainted 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 PREEMPT(full) 
[  222.342879][ T5825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  222.342894][ T5825] Call Trace:
[  222.342904][ T5825]  <TASK>
[  222.342913][ T5825]  dump_stack_lvl+0x189/0x250
[  222.342960][ T5825]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.342997][ T5825]  ? __pfx_queue_work_on+0x10/0x10
[  222.343027][ T5825]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  222.343055][ T5825]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  222.343083][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.343124][ T5825]  f2fs_handle_critical_error+0x37c/0x540
[  222.343161][ T5825]  f2fs_write_end_io+0x4e2/0x6d0
[  222.343214][ T5825]  __submit_merged_bio+0x27a/0x6a0
[  222.343250][ T5825]  __submit_merged_write_cond+0x255/0x530
[  222.343303][ T5825]  f2fs_write_data_pages+0x2854/0x31f0
[  222.343332][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.343408][ T5825]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  222.343505][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.343532][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.343559][ T5825]  ? __kasan_check_byte+0x12/0x40
[  222.343591][ T5825]  ? unwind_next_frame+0xa5/0x2390
[  222.343640][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.343667][ T5825]  ? check_path+0x21/0x40
[  222.343687][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.343715][ T5825]  ? check_noncircular+0xe0/0x160
[  222.343747][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.343775][ T5825]  ? lockdep_unlock+0x89/0x120
[  222.343804][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.343832][ T5825]  ? validate_chain+0x897/0x2140
[  222.343877][ T5825]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  222.343917][ T5825]  do_writepages+0x3b1/0x7b0
[  222.343974][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.344000][ T5825]  ? do_raw_spin_lock+0x121/0x290
[  222.344033][ T5825]  ? __pfx_do_writepages+0x10/0x10
[  222.344071][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.344104][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.344132][ T5825]  ? do_raw_spin_unlock+0x122/0x240
[  222.344167][ T5825]  filemap_fdatawrite+0x191/0x230
[  222.344202][ T5825]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  222.344296][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.344331][ T5825]  ? do_raw_spin_unlock+0x122/0x240
[  222.344366][ T5825]  f2fs_sync_dirty_inodes+0x31f/0x830
[  222.344420][ T5825]  f2fs_write_checkpoint+0x94a/0x1de0
[  222.344487][ T5825]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  222.344586][ T5825]  ? kill_f2fs_super+0x298/0x6c0
[  222.344627][ T5825]  kill_f2fs_super+0x2c3/0x6c0
[  222.344668][ T5825]  ? __pfx_kill_f2fs_super+0x10/0x10
[  222.344700][ T5825]  ? radix_tree_delete_item+0x2b6/0x400
[  222.344738][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.344765][ T5825]  ? shrinker_free+0x2ce/0x3e0
[  222.344795][ T5825]  deactivate_locked_super+0xbc/0x130
[  222.344839][ T5825]  cleanup_mnt+0x425/0x4c0
[  222.344877][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.344904][ T5825]  ? lockdep_hardirqs_on+0x9c/0x150
[  222.344937][ T5825]  task_work_run+0x1d4/0x260
[  222.344975][ T5825]  ? __pfx_task_work_run+0x10/0x10
[  222.345007][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.345057][ T5825]  resume_user_mode_work+0x5e/0x80
[  222.345093][ T5825]  syscall_exit_to_user_mode+0x9a/0x120
[  222.345125][ T5825]  do_syscall_64+0x103/0x210
[  222.345156][ T5825]  ? srso_alias_return_thunk+0x5/0xfbef5
[  222.345182][ T5825]  ? exc_page_fault+0x91/0x110
[  222.345211][ T5825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.345234][ T5825] RIP: 0033:0x7f719d58fc97
[  222.345256][ T5825] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  222.345276][ T5825] RSP: 002b:00007fffede4df38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  222.345301][ T5825] RAX: 0000000000000000 RBX: 00007f719d61089d RCX: 00007f719d58fc97
[  222.345317][ T5825] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffede4dff0
[  222.345331][ T5825] RBP: 00007fffede4dff0 R08: 0000000000000000 R09: 0000000000000000
[  222.345346][ T5825] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffede4f080
[  222.345361][ T5825] R13: 00007f719d61089d R14: 000000000003630b R15: 00007fffede4f0c0
[  222.345403][ T5825]  </TASK>
[  222.345412][ T5825] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  222.561211][T10117] netlink: 'syz.4.1826': attribute type 1 has an invalid length.
[  223.140029][T10130] netlink: 'syz.3.1832': attribute type 10 has an invalid length.
[  223.169365][T10130] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1832'.
[  223.212627][T10130] bridge0: port 3(dummy0) entered blocking state
[  223.233038][T10130] bridge0: port 3(dummy0) entered disabled state
[  223.239556][T10130] dummy0: entered allmulticast mode
[  223.311499][T10130] dummy0: entered promiscuous mode
[  223.330765][T10130] bridge0: port 3(dummy0) entered blocking state
[  223.337923][T10130] bridge0: port 3(dummy0) entered forwarding state
[  223.661034][T10144] loop1: detected capacity change from 0 to 512
[  223.680591][T10146] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[  223.719169][T10144] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  223.759518][T10144] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  223.819878][T10144] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  223.871212][T10144] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  223.879316][T10144] System zones: 0-2, 18-18, 34-35
[  223.934861][T10144] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.194871][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.235125][T10132] loop4: detected capacity change from 0 to 32768
[  224.255678][T10132] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1831 (10132)
[  224.381202][T10132] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  224.430692][T10132] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm
[  224.502950][T10132] BTRFS info (device loop4): using free-space-tree
[  224.676415][T10179] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  225.011707][T10201] loop0: detected capacity change from 0 to 16
[  225.038457][T10201] erofs (device loop0): mounted with root inode @ nid 36.
[  225.078842][T10201] erofs (device loop0): read error -95 @ 8200 of nid 36
[  225.290251][ T5831] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  225.338809][T10211] (unnamed net_device) (uninitialized): up delay (7) is not a multiple of miimon (3), value rounded to 6 ms
[  225.381043][T10211] (unnamed net_device) (uninitialized): down delay (7) is not a multiple of miimon (3), value rounded to 6 ms
[  225.516537][T10211] 8021q: adding VLAN 0 to HW filter on device bond1
[  225.530393][T10219] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1864'.
[  225.724435][T10224] tc_dump_action: action bad kind
[  225.991161][   T48] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  226.201952][   T48] usb 3-1: config 220 has an invalid interface number: 76 but max is 2
[  226.232694][   T48] usb 3-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  226.277436][   T48] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  226.331245][   T48] usb 3-1: config 220 has no interface number 2
[  226.352632][   T48] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  226.391541][ T5890] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  226.407194][   T48] usb 3-1: config 220 interface 0 has no altsetting 0
[  226.442569][   T48] usb 3-1: config 220 interface 76 has no altsetting 0
[  226.449494][   T48] usb 3-1: config 220 interface 1 has no altsetting 0
[  226.516899][   T48] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  226.554333][T10252] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  226.561125][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.590079][ T5890] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[  226.591307][   T48] usb 3-1: Product: syz
[  226.618327][ T5890] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  226.648952][ T5890] usb 2-1: config 220 has no interface number 2
[  226.651265][   T48] usb 3-1: Manufacturer: syz
[  226.670288][ T5890] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  226.670573][   T48] usb 3-1: SerialNumber: syz
[  226.721162][ T5890] usb 2-1: config 220 interface 0 has no altsetting 0
[  226.747935][T10254] loop3: detected capacity change from 0 to 1764
[  226.750305][ T5890] usb 2-1: config 220 interface 76 has no altsetting 0
[  226.812294][ T5890] usb 2-1: config 220 interface 1 has no altsetting 0
[  226.814902][ T5890] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  226.850664][ T5890] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.865319][ T5890] usb 2-1: Product: syz
[  226.877654][ T5890] usb 2-1: Manufacturer: syz
[  226.887766][ T5890] usb 2-1: SerialNumber: syz
[  227.034922][   T48] usb 3-1: selecting invalid altsetting 0
[  227.048604][   T48] usb 3-1: Found UVC 7.01 device syz (8086:0b07)
[  227.096328][   T48] usb 3-1: No valid video chain found.
[  227.146379][ T5890] usb 2-1: selecting invalid altsetting 0
[  227.147462][   T48] usb 3-1: selecting invalid altsetting 0
[  227.174644][ T5890] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  227.181022][ T5890] usb 2-1: No valid video chain found.
[  227.202040][   T48] usbtest 3-1:220.1: probe with driver usbtest failed with error -22
[  227.246261][   T48] usb 3-1: USB disconnect, device number 11
[  227.255123][ T5890] usb 2-1: selecting invalid altsetting 0
[  227.260870][ T5890] usbtest 2-1:220.1: probe with driver usbtest failed with error -22
[  227.343100][ T5890] usb 2-1: USB disconnect, device number 11
[  227.441335][T10268] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1888'.
[  227.640826][T10250] loop5: detected capacity change from 0 to 32768
[  227.664655][T10250] (syz.5.1879,10250,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  227.694204][T10275] No such timeout policy "syz1"
[  227.742094][T10250] (syz.5.1879,10250,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  227.785444][T10250] JBD2: Ignoring recovery information on journal
[  227.976349][T10281] loop1: detected capacity change from 0 to 256
[  228.001904][T10250] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  228.010812][T10289] netlink: 'syz.4.1897': attribute type 13 has an invalid length.
[  228.050757][T10281] exfat: Deprecated parameter 'namecase'
[  228.067299][T10281] exfat: Deprecated parameter 'namecase'
[  228.111739][T10283] loop2: detected capacity change from 0 to 4096
[  228.166561][T10281] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xc2dc8e67, utbl_chksum : 0xe619d30d)
[  228.228881][T10283] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  228.262993][T10283] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[  228.269829][T10289] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  228.371623][T10283] ntfs3(loop2): ino=1e, "file1" attr_set_size
[  228.389575][ T5821] ocfs2: Unmounting device (7,5) on (node local)
[  228.586961][T10302] loop4: detected capacity change from 0 to 512
[  228.723467][T10302] Quota error (device loop4): write_blk: dquota write failed
[  228.768886][T10309] loop2: detected capacity change from 0 to 764
[  228.781878][T10302] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  228.805509][T10309] rock: directory entry would overflow storage
[  228.821293][T10309] rock: sig=0x4654, size=5, remaining=4
[  228.856345][T10302] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1905: Failed to acquire dquot type 1
[  228.935286][T10302] EXT4-fs (loop4): 1 truncate cleaned up
[  229.045250][T10302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.109188][T10302] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  229.159363][   T30] audit: type=1326 audit(1746365317.593:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.1.1911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  229.288647][   T30] audit: type=1326 audit(1746365317.643:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.1.1911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  229.397887][   T30] audit: type=1326 audit(1746365317.643:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.1.1911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=269 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  229.461261][   T30] audit: type=1326 audit(1746365317.643:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.1.1911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  229.484825][   T30] audit: type=1326 audit(1746365317.643:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.1.1911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  229.509243][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.523979][ T1141] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-5
[  229.579825][ T1141] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  229.851484][T10343] netlink: 348 bytes leftover after parsing attributes in process `syz.4.1918'.
[  230.035644][T10351] affs: No valid root block on device nbd1
[  230.360049][T10366] loop1: detected capacity change from 0 to 64
[  230.703552][T10376] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1939'.
[  230.761298][T10380] netlink: 'syz.5.1940': attribute type 11 has an invalid length.
[  231.002642][T10392] xt_l2tp: v2 doesn't support IP mode
[  231.149895][T10398] netlink: 'syz.1.1950': attribute type 12 has an invalid length.
[  231.349921][T10406] netlink: 'syz.4.1954': attribute type 21 has an invalid length.
[  231.395607][T10406] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1954'.
[  231.421268][T10406] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1954'.
[  231.581541][T10416] tmpfs: Bad value for 'mpol'
[  231.762146][T10422] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1962'.
[  232.164467][T10440] IPv6: NLM_F_CREATE should be specified when creating new route
[  232.407055][T10449] unsupported nla_type 52263
[  232.792425][T10469] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1985'.
[  232.803498][T10471] loop3: detected capacity change from 0 to 512
[  232.820566][T10471] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  232.855655][T10467] loop2: detected capacity change from 0 to 2048
[  232.887802][T10471] EXT4-fs error (device loop3): xattr_find_entry:333: inode #15: comm syz.3.1986: corrupted xattr entries
[  232.930791][T10467] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  232.939753][ T5890] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  232.975074][T10471] EXT4-fs (loop3): 1 truncate cleaned up
[  233.005234][T10471] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.078267][T10471] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.1986: corrupted in-inode xattr: e_name out of bounds
[  233.148128][ T5890] usb 5-1: Using ep0 maxpacket: 32
[  233.203299][ T5890] usb 5-1: config 0 has an invalid interface number: 68 but max is 0
[  233.236093][ T5890] usb 5-1: config 0 has no interface number 0
[  233.264606][ T5890] usb 5-1: config 0 interface 68 altsetting 7 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  233.285410][   T30] audit: type=1400 audit(1746365321.743:76): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=10484 comm="syz.1.1991"
[  233.309927][ T5890] usb 5-1: config 0 interface 68 has no altsetting 0
[  233.386623][ T5890] usb 5-1: New USB device found, idVendor=0c72, idProduct=000c, bcdDevice=58.31
[  233.410135][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.439795][ T5890] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.476790][ T5890] usb 5-1: Product: syz
[  233.501251][ T5890] usb 5-1: Manufacturer: syz
[  233.505863][ T5890] usb 5-1: SerialNumber: syz
[  233.544821][ T5890] usb 5-1: config 0 descriptor??
[  234.302233][T10524] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2011'.
[  234.329412][T10524] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2011'.
[  234.350115][T10524] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2011'.
[  234.818373][T10543] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2021'.
[  235.071462][T10552] mmap: syz.1.2025 (10552): VmData 175878144 exceed data ulimit 6. Update limits or use boot option ignore_rlimit_data.
[  235.120743][T10555] __nla_validate_parse: 1 callbacks suppressed
[  235.120761][T10555] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2027'.
[  235.604258][T10573] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2036'.
[  235.735578][   T24] usb 5-1: USB disconnect, device number 5
[  236.099577][T10594] netlink: 'syz.4.2046': attribute type 10 has an invalid length.
[  236.123887][T10594] bridge0: port 3(batadv0) entered disabled state
[  236.130858][T10594] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.138965][T10594] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.161291][   T48] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[  236.169150][ T5841] Bluetooth: hci4: unexpected event for opcode 0x203d
[  236.194707][T10594] bridge0: port 3(batadv0) entered blocking state
[  236.201345][T10594] bridge0: port 3(batadv0) entered forwarding state
[  236.208294][T10594] bridge0: port 2(bridge_slave_1) entered blocking state
[  236.215505][T10594] bridge0: port 2(bridge_slave_1) entered forwarding state
[  236.223024][T10594] bridge0: port 1(bridge_slave_0) entered blocking state
[  236.230199][T10594] bridge0: port 1(bridge_slave_0) entered forwarding state
[  236.242706][T10594] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  236.336256][   T48] usb 4-1: config index 0 descriptor too short (expected 1051, got 27)
[  236.356571][   T48] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10
[  236.400039][T10602] loop2: detected capacity change from 0 to 4096
[  236.411028][   T48] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  236.429509][T10602] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  236.481481][   T48] usb 4-1: New USB device found, idVendor=06f8, idProduct=b000, bcdDevice=7d.f9
[  236.490565][   T48] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  236.498834][   T48] usb 4-1: Product: syz
[  236.503970][   T48] usb 4-1: Manufacturer: syz
[  236.508584][   T48] usb 4-1: SerialNumber: syz
[  236.516561][   T48] usb 4-1: config 0 descriptor??
[  236.778619][   T48] usb 4-1: USB disconnect, device number 10
[  237.012109][ T5890] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  237.102089][   T30] audit: type=1326 audit(1746365325.563:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.0.2062" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f719d58e969 code=0x0
[  237.203044][ T5890] usb 5-1: Using ep0 maxpacket: 16
[  237.222153][ T5890] usb 5-1: config 0 has an invalid interface number: 105 but max is 0
[  237.240721][ T5890] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.278185][ T5890] usb 5-1: config 0 has no interface number 0
[  237.304964][ T5890] usb 5-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  237.335084][ T5890] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.365458][ T5890] usb 5-1: Product: syz
[  237.381265][ T5890] usb 5-1: Manufacturer: syz
[  237.391531][ T5890] usb 5-1: SerialNumber: syz
[  237.417565][ T5890] usb 5-1: config 0 descriptor??
[  237.521307][ T5890] usb 5-1: Found UVC 0.00 device syz (046d:08f3)
[  237.548021][ T5890] usb 5-1: No valid video chain found.
[  237.680473][ T5890] usb 5-1: USB disconnect, device number 6
[  237.958600][T10655] loop3: detected capacity change from 0 to 64
[  238.030268][T10658] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2077'.
[  238.068071][T10658] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2077'.
[  238.077448][   T30] audit: type=1800 audit(1746365326.533:78): pid=10655 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2075" name="file1" dev="loop3" ino=18 res=0 errno=0
[  238.377229][T10671] loop2: detected capacity change from 0 to 256
[  238.415041][ T5841] Bluetooth: hci4: unexpected event for opcode 0x203b
[  238.434173][T10671] exfat: Deprecated parameter 'namecase'
[  238.509629][T10671] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  238.661534][T10679] loop3: detected capacity change from 0 to 512
[  238.710197][T10679] Quota error (device loop3): write_blk: dquota write failed
[  238.764360][T10679] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  238.774546][T10679] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.2087: Failed to acquire dquot type 1
[  238.832163][T10679] EXT4-fs (loop3): 1 truncate cleaned up
[  238.879025][T10679] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.960902][T10679] ext4 filesystem being mounted at /358/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.262810][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.284917][   T82] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-5
[  239.325255][   T82] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[  239.595108][T10718] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  239.785471][T10728] sctp: [Deprecated]: syz.4.2108 (pid 10728) Use of int in max_burst socket option deprecated.
[  239.785471][T10728] Use struct sctp_assoc_value instead
[  239.993140][T10736] loop2: detected capacity change from 0 to 512
[  240.107660][T10736] Quota error (device loop2): write_blk: dquota write failed
[  240.181212][T10736] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  240.251208][T10736] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.2112: Failed to acquire dquot type 1
[  240.338974][T10736] EXT4-fs (loop2): 1 truncate cleaned up
[  240.353083][T10736] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.426343][T10736] ext4 filesystem being mounted at /365/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.753282][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.785047][   T54] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5
[  240.836424][T10775] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  240.845359][   T54] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  241.178895][T10785] loop2: detected capacity change from 0 to 256
[  241.365341][T10785] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 198)
[  241.389056][T10785] FAT-fs (loop2): Filesystem has been set read-only
[  241.661437][T10797] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2141'.
[  241.670540][T10797] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2141'.
[  241.806060][T10759] loop0: detected capacity change from 0 to 32768
[  241.833067][T10805] netlink: 292 bytes leftover after parsing attributes in process `syz.5.2144'.
[  241.839354][T10759] (syz.0.2122,10759,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  241.878385][T10759] (syz.0.2122,10759,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  241.894530][T10807] syz.2.2146: attempt to access beyond end of device
[  241.894530][T10807] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  241.946286][T10807] (syz.2.2146,10807,0):ocfs2_get_sector:1714 ERROR: status = -5
[  241.986994][T10807] (syz.2.2146,10807,0):ocfs2_sb_probe:753 ERROR: status = -5
[  242.026580][T10759] JBD2: Ignoring recovery information on journal
[  242.037821][T10807] (syz.2.2146,10807,1):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  242.093397][T10807] (syz.2.2146,10807,0):ocfs2_fill_super:1177 ERROR: status = -5
[  242.172493][T10759] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  242.222246][T10816] kAFS: No cell specified
[  242.229972][T10759] (syz.0.2122,10759,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  242.370600][T10759] (syz.0.2122,10759,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  242.399436][T10825] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2152'.
[  242.423944][T10825] unsupported nlmsg_type 40
[  242.453204][T10759] (syz.0.2122,10759,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xdf8356d3, computed 0xb8c23ae4. Applying ECC.
[  242.471201][ T5834] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  242.511216][T10759] (syz.0.2122,10759,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xdf8356d3, computed 0x2acb7e3c
[  242.559322][T10759] (syz.0.2122,10759,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  242.599422][   T48] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[  242.628865][T10759] (syz.0.2122,10759,1):ocfs2_quota_read:201 ERROR: status = -5
[  242.651293][T10759] Quota error (device loop0): find_block_dqentry: Can't read quota tree block 6
[  242.665821][ T5834] usb 5-1: Using ep0 maxpacket: 8
[  242.688432][T10759] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  242.702195][T10831] netlink: 'syz.1.2157': attribute type 1 has an invalid length.
[  242.722525][ T5834] usb 5-1: config 0 has an invalid interface number: 52 but max is 0
[  242.730782][ T5834] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  242.741253][T10759] (syz.0.2122,10759,0):ocfs2_acquire_dquot:890 ERROR: status = -5
[  242.750600][T10759] (syz.0.2122,10759,0):ocfs2_mknod:314 ERROR: status = -5
[  242.761230][T10831] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.2157'.
[  242.777191][ T5834] usb 5-1: config 0 has no interface number 0
[  242.794968][ T5834] usb 5-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  242.795569][   T48] usb 3-1: config 0 has an invalid interface number: 120 but max is 0
[  242.809359][T10759] (syz.0.2122,10759,0):ocfs2_mknod:502 ERROR: status = -5
[  242.835738][ T5834] usb 5-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  242.865742][   T48] usb 3-1: config 0 has no interface number 0
[  242.867248][T10759] (syz.0.2122,10759,0):ocfs2_mkdir:658 ERROR: status = -5
[  242.879327][ T5834] usb 5-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  242.901580][   T48] usb 3-1: config 0 interface 120 altsetting 0 endpoint 0x2 has invalid maxpacket 6400, setting to 64
[  242.941244][   T48] usb 3-1: config 0 interface 120 altsetting 0 endpoint 0xC has invalid maxpacket 65535, setting to 64
[  242.945371][ T5834] usb 5-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  242.965698][   T48] usb 3-1: New USB device found, idVendor=e828, idProduct=cea8, bcdDevice=50.03
[  242.965731][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.965755][   T48] usb 3-1: Product: syz
[  242.965773][   T48] usb 3-1: Manufacturer: syz
[  243.061256][ T5834] usb 5-1: config 0 interface 52 has no altsetting 0
[  243.066640][   T48] usb 3-1: SerialNumber: syz
[  243.099078][ T5834] usb 5-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[  243.104670][   T48] usb 3-1: config 0 descriptor??
[  243.134824][ T5834] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.159816][T10821] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  243.167047][T10845] netlink: 'syz.3.2163': attribute type 1 has an invalid length.
[  243.174184][T10821] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  243.185772][ T5834] usb 5-1: config 0 descriptor??
[  243.208815][ T5825] ocfs2: Unmounting device (7,0) on (node local)
[  243.216005][T10845] netlink: 'syz.3.2163': attribute type 2 has an invalid length.
[  243.260947][T10845] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2163'.
[  243.452977][ T5834] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.52/input/input11
[  243.470244][   T48] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  243.495839][   T48] usb 3-1: MIDIStreaming interface descriptor not found
[  243.630812][ T5834] usb 5-1: USB disconnect, device number 7
[  243.630986][    C1] synaptics_usb 5-1:0.52: synusb_irq - usb_submit_urb failed with result: -19
[  243.672451][   T48] usb 3-1: USB disconnect, device number 12
[  243.888530][ T6029] udevd[6029]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.120/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  243.898598][T10858] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2171'.
[  244.208338][T10866] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  244.252103][T10866] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  244.358027][   T30] audit: type=1326 audit(1746365332.813:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10870 comm="syz.2.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7463f8e969 code=0x7ffc0000
[  244.480795][   T30] audit: type=1326 audit(1746365332.843:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10870 comm="syz.2.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7463f8e969 code=0x7ffc0000
[  244.549066][T10878] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2180'.
[  244.580699][   T30] audit: type=1326 audit(1746365332.863:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10870 comm="syz.2.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7f7463f8e969 code=0x7ffc0000
[  244.603640][T10876] loop4: detected capacity change from 0 to 1764
[  244.664540][T10876] iso9660: Corrupted directory entry in block 2 of inode 1920
[  244.683158][   T30] audit: type=1326 audit(1746365332.863:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10870 comm="syz.2.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7463f8e969 code=0x7ffc0000
[  244.967671][T10894] xt_TPROXY: Can be used only with -p tcp or -p udp
[  245.103742][T10902] sctp: [Deprecated]: syz.3.2190 (pid 10902) Use of int in max_burst socket option.
[  245.103742][T10902] Use struct sctp_assoc_value instead
[  245.167722][T10905] loop2: detected capacity change from 0 to 256
[  245.187421][T10907] x_tables: unsorted underflow at hook 2
[  245.255593][T10905] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x45383d15, utbl_chksum : 0xe619d30d)
[  245.300766][T10905] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  245.406644][T10905] exFAT-fs (loop2): error, in sector 160, dentry 7 should be unused, but 0xc0
[  245.476212][T10905] exFAT-fs (loop2): Filesystem has been set read-only
[  245.875617][T10931] netlink: 'syz.1.2202': attribute type 12 has an invalid length.
[  245.883929][ T5834] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  246.076932][ T5834] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  246.101712][ T5834] usb 1-1: config 0 interface 0 has no altsetting 0
[  246.120021][ T5834] usb 1-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce
[  246.155018][ T5834] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.193193][ T5834] usb 1-1: Product: syz
[  246.197507][ T5834] usb 1-1: Manufacturer: syz
[  246.225269][ T5834] usb 1-1: SerialNumber: syz
[  246.249169][ T5834] usb 1-1: config 0 descriptor??
[  246.268980][ T5834] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state.
[  246.293091][ T5834] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  246.317155][ T5834] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0)
[  246.346820][ T5834] usb 1-1: media controller created
[  246.359861][T10943] veth0_to_bridge: entered allmulticast mode
[  246.405568][   T54] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.460731][ T5834] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  246.698868][ T5834] DVB: Unable to find symbol tda10046_attach()
[  246.718540][ T5834] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0'
[  246.745859][ T5834] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected.
[  246.764127][T10917] loop5: detected capacity change from 0 to 32768
[  246.807174][T10917] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2196 (10917)
[  246.912706][T10917] BTRFS info (device loop5): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  246.940357][T10917] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  246.993718][T10917] BTRFS info (device loop5): using free-space-tree
[  247.045351][ T5834] dvb_usb_m920x 1-1:0.0: probe with driver dvb_usb_m920x failed with error -71
[  247.064944][ T5834] usb 1-1: USB disconnect, device number 10
[  247.455019][T10937] loop3: detected capacity change from 0 to 32768
[  247.521672][T10937] (syz.3.2205,10937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  247.576169][T10937] (syz.3.2205,10937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  247.652366][ T5821] BTRFS info (device loop5): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  247.748744][T10937] JBD2: Ignoring recovery information on journal
[  247.992772][T10937] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  248.291425][T11011] IPv6: NLM_F_REPLACE set, but no existing node found!
[  248.426855][ T5820] ocfs2: Unmounting device (7,3) on (node local)
[  248.490852][T11018] loop0: detected capacity change from 0 to 64
[  248.527828][T11019] loop5: detected capacity change from 0 to 512
[  248.585810][T11019] fscrypt (loop5, inode 2): Error -61 getting encryption context
[  248.670919][T11026] loop4: detected capacity change from 0 to 256
[  248.704442][T11019] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -61
[  248.770829][T11019] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  248.837763][T11019] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  248.849430][T11026] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18bdb, utbl_chksum : 0xe619d30d)
[  248.911923][T11019] EXT4-fs (loop5): 1 truncate cleaned up
[  248.946800][T11019] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.103327][T11019] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  249.418787][ T5821] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.582368][   T30] audit: type=1400 audit(1746365338.033:83): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AA009F5D15F47DB2D pid=11053 comm="syz.0.2253"
[  250.411399][T11091] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  251.395798][T11128] loop0: detected capacity change from 0 to 256
[  251.437677][T11128] exfat: Deprecated parameter 'namecase'
[  251.471266][T11128] exfat: Deprecated parameter 'utf8'
[  251.476679][T11128] exfat: Deprecated parameter 'namecase'
[  251.538291][T11128] exfat: Deprecated parameter 'utf8'
[  251.700942][T11128] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d)
[  251.727255][T11093] loop3: detected capacity change from 0 to 32768
[  251.750724][T11093] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2271 (11093)
[  251.770554][T11128] exFAT-fs (loop0): start_clu is invalid cluster(0x400)
[  251.865687][T11093] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  251.916571][T11093] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  251.951634][T11093] BTRFS info (device loop3): using free-space-tree
[  252.485242][ T5820] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  253.418578][T11158] loop4: detected capacity change from 0 to 32768
[  253.761745][T11217] netlink: 'syz.3.2321': attribute type 2 has an invalid length.
[  253.779753][T11217] netlink: 'syz.3.2321': attribute type 8 has an invalid length.
[  253.860719][T11217] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2321'.
[  254.351708][T11235] netlink: 'syz.0.2332': attribute type 4 has an invalid length.
[  255.005103][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  255.011539][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  255.440847][T11285] loop3: detected capacity change from 0 to 512
[  255.472943][T11285] EXT4-fs: Ignoring removed bh option
[  255.502314][T11285] EXT4-fs: Ignoring removed nomblk_io_submit option
[  255.605601][T11285] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  255.622217][T11285] ext4 filesystem being mounted at /396/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  255.657140][T11293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2357'.
[  255.691430][T11293] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2357'.
[  255.729224][T11294] netlink: 'syz.5.2356': attribute type 10 has an invalid length.
[  255.744970][T11293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2357'.
[  255.745437][T11294] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2356'.
[  255.779671][T11285] Quota error (device loop3): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-6
[  255.828997][T11294] batman_adv: batadv0: Adding interface: vlan1
[  255.841692][T11285] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  255.857081][T11294] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  255.907837][T11294] batman_adv: batadv0: Interface activated: vlan1
[  255.919110][T11285] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.2354: Failed to acquire dquot type 0
[  256.062180][T11300] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2360'.
[  256.076586][T11299] xt_time: invalid argument - start or stop time greater than 23:59:59
[  256.170428][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  256.337255][T11311] openvswitch: netlink: Message has -1 unknown bytes.
[  256.424722][   T30] audit: type=1326 audit(1746365344.883:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11314 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  256.551440][   T30] audit: type=1326 audit(1746365344.883:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11314 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  256.649663][   T30] audit: type=1326 audit(1746365344.903:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11314 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  256.707939][T11327] loop3: detected capacity change from 0 to 256
[  256.771330][   T30] audit: type=1326 audit(1746365344.903:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11314 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  256.787967][T11327] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18bdb, utbl_chksum : 0xe619d30d)
[  256.871749][   T30] audit: type=1326 audit(1746365344.903:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11314 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  256.994637][   T30] audit: type=1326 audit(1746365345.363:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.4.2377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb55d8e969 code=0x7ffc0000
[  257.130925][   T30] audit: type=1326 audit(1746365345.363:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.4.2377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb55d8e969 code=0x7ffc0000
[  257.188130][T11342] 9pnet_fd: Insufficient options for proto=fd
[  257.235941][   T30] audit: type=1326 audit(1746365345.373:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.4.2377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fbb55d8e969 code=0x7ffc0000
[  257.450169][T11353] loop2: detected capacity change from 0 to 16
[  257.500771][T11353] erofs (device loop2): mounted with root inode @ nid 36.
[  257.881266][T11372] loop2: detected capacity change from 0 to 512
[  257.960029][T11372] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.2396: bad orphan inode 15
[  258.033893][T11372] ext4_test_bit(bit=14, block=5) = 0
[  258.046586][T11372] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.061237][ T5834] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  258.087765][T11372] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7987 vs 220 free clusters
[  258.124486][T11372] EXT4-fs error (device loop2): ext4_free_inode:354: comm syz.2.2396: bit already cleared for inode 13
[  258.211163][ T5834] usb 4-1: Using ep0 maxpacket: 8
[  258.233321][ T5834] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[  258.255180][ T5834] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  258.278559][ T5834] usb 4-1: config 0 has no interface number 0
[  258.309621][ T5834] usb 4-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  258.312250][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.371758][ T5834] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  258.397626][ T5834] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  258.433323][ T5834] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  258.460635][ T5834] usb 4-1: config 0 interface 52 has no altsetting 0
[  258.506095][ T5834] usb 4-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[  258.551463][ T5834] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.602736][ T5834] usb 4-1: config 0 descriptor??
[  258.819458][ T5834] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.52/input/input14
[  259.064653][ T5834] usb 4-1: USB disconnect, device number 11
[  259.220564][T11417] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2418'.
[  259.327724][T11423] loop2: detected capacity change from 0 to 512
[  259.450811][T11423] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  259.461390][T11423] System zones: 0-2, 18-18, 34-34
[  259.489915][T11423] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2420: bg 0: block 248: padding at end of block bitmap is not set
[  259.518622][T11431] netlink: 'syz.0.2424': attribute type 10 has an invalid length.
[  259.564050][T11423] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.2420: Failed to acquire dquot type 1
[  259.569402][T11431] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.583867][T11431] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.594445][T11423] EXT4-fs (loop2): 1 truncate cleaned up
[  259.636811][T11431] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.637823][T11423] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.644008][T11431] bridge0: port 2(bridge_slave_1) entered forwarding state
[  259.644318][T11431] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.671018][T11431] bridge0: port 1(bridge_slave_0) entered forwarding state
[  259.676561][T11423] ext4 filesystem being mounted at /418/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  259.697352][T11431] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  259.751389][   T48] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  259.914066][   T48] usb 2-1: Using ep0 maxpacket: 16
[  259.942010][   T48] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  259.969678][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  259.998686][   T48] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  260.040143][   T48] usb 2-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  260.058654][   T48] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.078889][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.101221][   T48] usb 2-1: Product: syz
[  260.105828][   T48] usb 2-1: Manufacturer: syz
[  260.110607][   T48] usb 2-1: SerialNumber: syz
[  260.198659][T11452] openvswitch: netlink: Duplicate or invalid key (type 0).
[  260.209778][   T48] usb 2-1: config 0 descriptor??
[  260.217418][T11452] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  260.374626][ T5834] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  260.485264][   T48] appledisplay: Apple Cinema Display connected
[  260.574882][ T5834] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  260.591314][ T5834] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  260.657355][ T5834] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  260.681173][ T5834] usb 1-1: config 1 has no interface number 0
[  260.740118][ T5834] usb 1-1: too many endpoints for config 1 interface 1 altsetting 1: 32, using maximum allowed: 30
[  260.743872][   T48] usb 2-1: USB disconnect, device number 12
[  260.750853][    C1] usb 2-1: appledisplay_complete - usb_submit_urb failed with result -19
[  260.786794][ T5834] usb 1-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 32
[  260.794211][T11470] netlink: 'syz.4.2443': attribute type 2 has an invalid length.
[  260.832473][ T5834] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  260.852127][   T48] appledisplay: Apple Cinema Display disconnected
[  260.858765][ T5834] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.869791][T11465] Process accounting resumed
[  260.887442][ T5834] usb 1-1: Product: syz
[  260.904489][ T5834] usb 1-1: Manufacturer: syz
[  260.935975][ T5834] usb 1-1: SerialNumber: syz
[  261.102552][T11478] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  261.180064][ T5834] cdc_mbim 1-1:1.1: probe with driver cdc_mbim failed with error -71
[  261.196750][T11482] ieee802154 phy0 wpan0: encryption failed: -90
[  261.227601][ T5834] usb 1-1: USB disconnect, device number 11
[  261.344502][T11485] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  261.389458][T11485] overlayfs: conflicting options: userxattr,redirect_dir=on
[  261.422795][T11488] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2452'.
[  262.386611][T11524] loop5: detected capacity change from 0 to 4096
[  262.478895][T11524] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[  262.577518][T11537] netlink: 'syz.3.2476': attribute type 1 has an invalid length.
[  262.861008][T11546] loop4: detected capacity change from 0 to 256
[  263.130696][T11559] loop3: detected capacity change from 0 to 8
[  263.172344][T11558] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2487'.
[  263.903141][T11583] netlink: 'syz.5.2499': attribute type 11 has an invalid length.
[  263.910997][T11583] netlink: 140 bytes leftover after parsing attributes in process `syz.5.2499'.
[  264.663390][T11597] veth3: entered allmulticast mode
[  265.023604][T11623] cgroup: name respecified
[  265.886566][T11662] rdma_rxe: rxe_newlink: failed to add ipvlan0
[  265.891275][T11661] ieee802154 phy0 wpan0: encryption failed: -22
[  266.069113][T11667] netlink: 5120 bytes leftover after parsing attributes in process `syz.0.2541'.
[  266.137391][T11669] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2542'.
[  266.408250][T11684] /dev/nbd2: Can't open blockdev
[  266.436511][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  266.436528][   T30] audit: type=1326 audit(1746365354.893:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11683 comm="syz.3.2549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  266.471195][ T5834] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  266.513740][T11689] loop1: detected capacity change from 0 to 16
[  266.517037][T11688] loop5: detected capacity change from 0 to 512
[  266.531247][   T30] audit: type=1326 audit(1746365354.893:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11683 comm="syz.3.2549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  266.549103][T11689] erofs (device loop1): mounted with root inode @ nid 36.
[  266.582360][T11688] EXT4-fs: Ignoring removed orlov option
[  266.632274][T11688] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  266.653930][ T5834] usb 5-1: Using ep0 maxpacket: 8
[  266.667824][T11688] EXT4-fs (loop5): orphan cleanup on readonly fs
[  266.693049][ T5834] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  266.718906][T11688] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2551: bg 0: block 248: padding at end of block bitmap is not set
[  266.743739][ T5834] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  266.761643][T11688] Quota error (device loop5): write_blk: dquota write failed
[  266.776834][T11688] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  266.805514][ T5834] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  266.805570][T11688] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.2551: Failed to acquire dquot type 1
[  266.851306][ T5834] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  266.889238][T11688] EXT4-fs (loop5): 1 truncate cleaned up
[  266.896985][ T5834] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  266.933573][T11688] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  266.969611][ T5834] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  267.012364][ T5834] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  267.057706][T11701] loop2: detected capacity change from 0 to 2048
[  267.141831][T11688] EXT4-fs: Ignoring removed orlov option
[  267.147635][T11688] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  267.184117][T11701] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  267.215734][T11709] netlink: 'syz.1.2562': attribute type 2 has an invalid length.
[  267.237753][T11688] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  267.300350][T11688] EXT4-fs warning (device loop5): read_mmp_block:115: Error -117 while reading MMP block 0
[  267.512029][ T5821] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.529979][ T5834] usb 5-1: USB disconnect, device number 8
[  267.675649][   T30] audit: type=1326 audit(1746365356.133:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11722 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  267.694392][T11724] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2570'.
[  267.740343][   T30] audit: type=1326 audit(1746365356.133:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11722 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  267.868172][   T30] audit: type=1326 audit(1746365356.133:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11722 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  267.890495][    C0] vkms_vblank_simulate: vblank timer overrun
[  267.948653][   T30] audit: type=1326 audit(1746365356.133:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11722 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6a98e969 code=0x7ffc0000
[  267.987784][T11733] cgroup: name respecified
[  268.570562][T11757] netlink: 'syz.0.2585': attribute type 11 has an invalid length.
[  268.624487][T11754] loop4: detected capacity change from 0 to 4096
[  268.676372][T11754] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  268.734722][T11754] NILFS (loop4): invalid segment: Checksum error in segment payload
[  268.801297][T11754] NILFS (loop4): unable to fall back to spare super block
[  268.808912][T11754] NILFS (loop4): error -22 while searching super root
[  269.291792][   T48] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  269.338830][T11781] loop3: detected capacity change from 0 to 764
[  269.374938][T11787] netlink: 'syz.0.2600': attribute type 13 has an invalid length.
[  269.398890][T11781] rock: directory entry would overflow storage
[  269.419307][T11781] rock: sig=0x4654, size=5, remaining=4
[  269.461217][   T48] usb 5-1: Using ep0 maxpacket: 8
[  269.473289][   T48] usb 5-1: config 1 has an invalid descriptor of length 93, skipping remainder of the config
[  269.518317][   T48] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  269.558769][   T48] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  269.603826][   T48] usb 5-1: Product: syz
[  269.608038][   T48] usb 5-1: Manufacturer: syz
[  269.658762][   T48] usb 5-1: SerialNumber: syz
[  269.718518][T11797] xt_hashlimit: size too large, truncated to 1048576
[  269.750052][   T48] cdc_ether 5-1:1.0: skipping garbage
[  269.791189][   T48] usb 5-1: bad CDC descriptors
[  269.796327][T11797] xt_hashlimit: max too large, truncated to 1048576
[  269.945054][T11797] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  269.980489][   T24] usb 5-1: USB disconnect, device number 9
[  270.825222][T11831] TCP: TCP_TX_DELAY enabled
[  271.361642][   T24] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  271.406807][T11851] loop4: detected capacity change from 0 to 8
[  271.444131][T11851] squashfs image failed sanity check
[  271.458547][T11846] veth3: entered allmulticast mode
[  271.551961][   T24] usb 1-1: Using ep0 maxpacket: 16
[  271.604679][   T24] usb 1-1: config 1 has an invalid descriptor of length 78, skipping remainder of the config
[  271.639177][T11813] loop2: detected capacity change from 0 to 32768
[  271.664191][   T24] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  271.702731][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  271.747558][   T24] usb 1-1: SerialNumber: syz
[  271.766332][T11813] jfs_strtoUCS: char2uni returned -22.
[  271.805815][   T24] cdc_acm 1-1:1.0: invalid descriptor buffer length
[  271.819812][T11813] charset = cp949, char = 0xd4
[  271.836289][   T24] cdc_acm 1-1:1.0: Control and data interfaces are not separated!
[  271.871827][   T24] cdc_acm 1-1:1.0: This needs exactly 3 endpoints
[  271.913313][   T24] cdc_acm 1-1:1.0: probe with driver cdc_acm failed with error -22
[  272.047967][   T10] usb 1-1: USB disconnect, device number 12
[  272.278195][T11863] loop3: detected capacity change from 0 to 4096
[  272.330658][T11863] EXT4-fs: Ignoring removed orlov option
[  272.376693][T11863] EXT4-fs: Ignoring removed nomblk_io_submit option
[  272.424769][T11873] loop4: detected capacity change from 0 to 64
[  272.430394][T11863] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  272.518937][T11863] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  272.563557][T11863] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  272.641440][T11863] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.2637: Failed to acquire dquot type 1
[  272.805299][T11883] veth5: entered allmulticast mode
[  272.818146][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.635810][T11923] loop5: detected capacity change from 0 to 128
[  273.937337][T11929] veth3: entered allmulticast mode
[  273.944490][   T10] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  274.032688][T11935] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2670'.
[  274.154063][   T10] usb 6-1: config 49 has too many interfaces: 48, using maximum allowed: 32
[  274.185203][   T10] usb 6-1: config 49 descriptor has 1 excess byte, ignoring
[  274.224397][   T10] usb 6-1: config 49 has 0 interfaces, different from the descriptor's value: 48
[  274.241266][   T10] usb 6-1: New USB device found, idVendor=04d9, idProduct=a072, bcdDevice= 0.00
[  274.270661][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.513848][T11904] loop3: detected capacity change from 0 to 32768
[  274.547334][   T10] usb 6-1: string descriptor 0 read error: -71
[  274.572828][   T10] usb 6-1: USB disconnect, device number 7
[  274.583972][T11904] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2651 (11904)
[  274.686371][T11904] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  274.742443][T11956] loop0: detected capacity change from 0 to 64
[  274.750263][T11904] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  274.790434][T11904] BTRFS info (device loop3): disk space caching is enabled
[  274.826039][T11904] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  274.898032][T11954] loop1: detected capacity change from 0 to 4096
[  274.954652][T11954] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  275.035890][T11904] BTRFS info (device loop3): rebuilding free space tree
[  275.119221][T11904] BTRFS info (device loop3): disabling free space tree
[  275.151512][T11904] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  275.221466][T11954] ntfs3(loop1): ino=19, mi_enum_attr
[  275.226824][T11954] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  275.234276][T11904] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  275.283675][T11980] kAFS: No cell specified
[  275.344731][T11954] 9pnet_fd: p9_fd_create_unix (11954): problem connecting socket: ./file0: -1
[  275.445140][T11904] BTRFS info (device loop3): balance: start -susage=34359738372,drange=7..526336,limit=4294967295..2147483647
[  275.532089][T11904] BTRFS info (device loop3): balance: ended with status: 0
[  275.765457][ T5820] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  275.805614][T11997] tmpfs: Bad value for 'mpol'
[  275.872411][T11995] loop2: detected capacity change from 0 to 1764
[  275.893884][T12001] netlink: 'syz.0.2694': attribute type 11 has an invalid length.
[  275.996591][T11995] iso9660: Corrupted directory entry in block 2 of inode 1920
[  276.515575][T12007] loop1: detected capacity change from 0 to 4096
[  277.141197][ T5834] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  277.382998][ T5834] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  277.405842][ T5834] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  277.448410][ T5834] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 27763, setting to 64
[  277.492347][ T5834] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  277.534209][ T5834] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.571643][T12029] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  277.591684][ T5834] hub 1-1:1.0: bad descriptor, ignoring hub
[  277.597605][ T5834] hub 1-1:1.0: probe with driver hub failed with error -5
[  277.671803][ T5834] cdc_wdm 1-1:1.0: skipping garbage
[  277.677101][ T5834] cdc_wdm 1-1:1.0: skipping garbage
[  277.712725][ T5834] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  277.718643][ T5834] cdc_wdm 1-1:1.0: Unknown control protocol
[  277.991577][   T24] usb 1-1: USB disconnect, device number 13
[  278.291300][T12084] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2736'.
[  278.341822][T12088] loop4: detected capacity change from 0 to 128
[  278.405974][T12088] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  278.451263][T12088] FAT-fs (loop4): Filesystem has been set read-only
[  278.487450][T12088] syz.4.2737: attempt to access beyond end of device
[  278.487450][T12088] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  278.541499][T12088] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  278.567304][T12088] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  278.610347][T12088] syz.4.2737: attempt to access beyond end of device
[  278.610347][T12088] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  278.638541][T12098] Invalid source name
[  278.710725][   T30] audit: type=1800 audit(1746365367.163:101): pid=12088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2737" name="file2" dev="loop4" ino=1048633 res=0 errno=0
[  278.779192][T12099] nvme_fabrics: missing parameter 'transport=%s'
[  278.811307][T12099] nvme_fabrics: missing parameter 'nqn=%s'
[  278.846318][T12104] loop1: detected capacity change from 0 to 1764
[  278.929398][T12104] iso9660: Corrupted directory entry in block 2 of inode 1920
[  279.591223][T12132] netlink: 124 bytes leftover after parsing attributes in process `syz.3.2758'.
[  279.680833][T12136] loop4: detected capacity change from 0 to 256
[  279.824417][T12136] FAT-fs (loop4): Directory bread(block 64) failed
[  279.824463][T12136] FAT-fs (loop4): Directory bread(block 65) failed
[  279.824556][T12136] FAT-fs (loop4): Directory bread(block 66) failed
[  279.824589][T12136] FAT-fs (loop4): Directory bread(block 67) failed
[  279.824680][T12136] FAT-fs (loop4): Directory bread(block 68) failed
[  279.824712][T12136] FAT-fs (loop4): Directory bread(block 69) failed
[  279.824810][T12136] FAT-fs (loop4): Directory bread(block 70) failed
[  279.824842][T12136] FAT-fs (loop4): Directory bread(block 71) failed
[  279.824932][T12136] FAT-fs (loop4): Directory bread(block 72) failed
[  279.824965][T12136] FAT-fs (loop4): Directory bread(block 73) failed
[  279.910179][   T30] audit: type=1326 audit(1746365368.363:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12141 comm="syz.3.2763" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x0
[  280.035289][T12148] vlan0: entered promiscuous mode
[  280.335569][T12156] loop5: detected capacity change from 0 to 16
[  280.398075][ T5850] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  280.406989][T12156] erofs (device loop5): mounted with root inode @ nid 36.
[  280.568035][ T5850] usb 4-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  280.568076][ T5850] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  280.568107][ T5850] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  280.568154][ T5850] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  280.568181][ T5850] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.580727][T12150] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  280.873161][T12169] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2775'.
[  280.873199][T12169] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2775'.
[  280.873221][T12169] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2775'.
[  280.998577][ T5850] aiptek 4-1:17.0: Aiptek using 400 ms programming speed
[  281.001021][ T5850] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input16
[  281.151484][ T5850] usb 4-1: USB disconnect, device number 12
[  281.151608][    C1] aiptek 4-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  281.224615][T12177] netlink: 'syz.2.2781': attribute type 10 has an invalid length.
[  281.252960][T12177] macvlan0: entered promiscuous mode
[  281.252984][T12177] macvlan0: entered allmulticast mode
[  281.283327][T12177] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  281.482533][T12185] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2784'.
[  281.665317][   T30] audit: type=1326 audit(1746365370.103:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.1.2787" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faa6a98e969 code=0x0
[  282.099432][T12212] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2796'.
[  282.132128][T12213] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2798'.
[  282.251207][ T5850] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  282.319131][   T30] audit: type=1326 audit(1746365370.773:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.3.2801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  282.401443][T12222] loop4: detected capacity change from 0 to 1024
[  282.413518][   T30] audit: type=1326 audit(1746365370.773:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.3.2801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  282.451184][ T5850] usb 1-1: Using ep0 maxpacket: 32
[  282.472156][ T5850] usb 1-1: config 2 has an invalid interface number: 16 but max is 0
[  282.485364][ T5850] usb 1-1: config 2 has no interface number 0
[  282.514157][ T5850] usb 1-1: config 2 interface 16 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  282.531437][   T30] audit: type=1326 audit(1746365370.783:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.3.2801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  282.553275][ T5850] usb 1-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d
[  282.563084][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.572268][ T5850] usb 1-1: Product: syz
[  282.576542][ T5850] usb 1-1: Manufacturer: syz
[  282.586348][T12222] hfsplus: extend alloc file! (16384,256,150995124)
[  282.621162][ T5850] usb 1-1: SerialNumber: syz
[  282.652636][T12207] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  282.675789][   T30] audit: type=1326 audit(1746365370.783:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.3.2801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2558e969 code=0x7ffc0000
[  282.678670][ T5850] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  282.860889][T12237] loop5: detected capacity change from 0 to 128
[  283.006006][ T5850] usb 1-1: USB disconnect, device number 14
[  283.081988][T12245] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  283.300308][ T7337] udevd[7337]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:2.16/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  283.330658][T12253] bridge2: the hash_elasticity option has been deprecated and is always 16
[  283.589803][T12252] loop1: detected capacity change from 0 to 4096
[  283.660737][T12261] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2822'.
[  283.693336][T12252] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  283.861988][T12252] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  284.006823][T12273] loop4: detected capacity change from 0 to 128
[  284.103218][T12273] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  284.146820][T12277] loop3: detected capacity change from 0 to 1024
[  284.231342][T12273] ext4 filesystem being mounted at /496/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  284.447512][ T5831] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  284.523790][T12289] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  284.659978][T12295] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  284.681312][T12295] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  284.761168][   T10] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  284.959864][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  285.000333][   T10] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  285.030593][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  285.058725][   T10] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  285.109500][T12308] tmpfs: Bad value for 'mpol'
[  285.111397][   T10] usb 3-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  285.160365][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.196344][T12271] loop5: detected capacity change from 0 to 32768
[  285.212439][   T10] usb 3-1: config 0 descriptor??
[  285.236996][T12271] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2827 (12271)
[  285.319351][T12271] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  285.355402][T12271] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  285.412194][T12271] BTRFS info (device loop5): disk space caching is enabled
[  285.425173][   T10] hdpvr 3-1:0.0: firmware version 0x0 dated 
[  285.440938][   T10] hdpvr 3-1:0.0: untested firmware, the driver might not work.
[  285.448628][T12271] BTRFS warning (device loop5): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  285.543882][T12325] IPv6: Can't replace route, no match found
[  285.633505][   T10] hdpvr 3-1:0.0: device init failed
[  285.638951][   T10] hdpvr 3-1:0.0: probe with driver hdpvr failed with error -12
[  285.728947][   T10] usb 3-1: USB disconnect, device number 13
[  285.807005][T12271] BTRFS info (device loop5): rebuilding free space tree
[  285.873953][T12271] BTRFS info (device loop5): disabling free space tree
[  285.880168][T12343] loop1: detected capacity change from 0 to 16
[  285.920023][T12271] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  285.920059][T12271] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  285.941486][T12343] erofs (device loop1): mounted with root inode @ nid 36.
[  286.068568][ T5821] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  286.351556][T12356] cgroup: No subsys list or none specified
[  286.501397][T12362] net veth1_virt_wifi »»»»»»: renamed from virt_wifi0
[  286.966783][T12377] loop0: detected capacity change from 0 to 1024
[  287.033174][T12381] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2871'.
[  287.043277][T12377] EXT4-fs: Ignoring removed bh option
[  287.120922][T12377] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.217356][T12377] ext4 filesystem being mounted at /423/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.297598][T12377] EXT4-fs: Ignoring removed bh option
[  287.305934][T12392] cgroup: Unexpected value for 'cpuset_v2_mode'
[  287.372115][T12377] EXT4-fs error (device loop0): __ext4_remount:6738: comm syz.0.2869: Abort forced by user
[  287.426717][T12377] EXT4-fs (loop0): Remounting filesystem read-only
[  287.466454][T12377] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  287.507922][T12396] loop4: detected capacity change from 0 to 2048
[  287.540117][T12396] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  287.640967][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.911928][T12414] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2885'.
[  288.200103][T12424] loop0: detected capacity change from 0 to 512
[  288.267706][T12424] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters
[  288.378601][T12424] EXT4-fs (loop0): Remounting filesystem read-only
[  288.397938][T12431] lo speed is unknown, defaulting to 1000
[  288.418874][T12424] EXT4-fs (loop0): 1 truncate cleaned up
[  288.460283][T12424] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.463524][T12431] lo speed is unknown, defaulting to 1000
[  288.529023][T12431] lo speed is unknown, defaulting to 1000
[  288.767863][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.822959][T12442] netlink: 'syz.1.2901': attribute type 10 has an invalid length.
[  289.721478][T12474] loop2: detected capacity change from 0 to 764
[  289.742087][  T916] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  289.745338][T12431] infiniband syz0: set active
[  289.754764][   T24] lo speed is unknown, defaulting to 1000
[  289.803177][T12431] infiniband syz0: added lo
[  289.808306][T12431] syz0: rxe_create_cq: returned err = -12
[  289.846481][T12431] infiniband syz0: Couldn't create ib_mad CQ
[  289.869844][T12431] infiniband syz0: Couldn't open port 1
[  289.943521][  T916] usb 2-1: config 0 has an invalid interface number: 58 but max is 0
[  289.974170][  T916] usb 2-1: config 0 has no interface number 0
[  289.980283][  T916] usb 2-1: config 0 interface 58 altsetting 0 endpoint 0xE has invalid maxpacket 1023, setting to 64
[  290.078392][  T916] usb 2-1: New USB device found, idVendor=085a, idProduct=0008, bcdDevice=7f.81
[  290.132804][T12431] RDS/IB: syz0: added
[  290.137022][  T916] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.149391][T12431] smc: adding ib device syz0 with port count 1
[  290.155996][  T916] usb 2-1: Product: syz
[  290.160492][T12431] smc:    ib device syz0 port 1 has pnetid 
[  290.168824][  T916] usb 2-1: Manufacturer: syz
[  290.173478][T12486] mmap: syz.0.2923 (12486) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  290.209753][   T10] lo speed is unknown, defaulting to 1000
[  290.225733][T12431] lo speed is unknown, defaulting to 1000
[  290.241148][  T916] usb 2-1: SerialNumber: syz
[  290.248920][  T916] usb 2-1: config 0 descriptor??
[  290.498248][  T916] kaweth 2-1:0.58: Firmware present in device.
[  290.630090][T12501] loop3: detected capacity change from 0 to 1024
[  290.670192][  T916] kaweth 2-1:0.58: Error reading configuration (-71), no net device created
[  290.728850][  T916] kaweth 2-1:0.58: probe with driver kaweth failed with error -5
[  290.764009][  T916] usb 2-1: USB disconnect, device number 13
[  290.772155][T12501] overlay: filesystem on ./file0 not supported
[  290.916515][   T82] hfsplus: b-tree write err: -5, ino 4
[  291.236669][T12520] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  291.630249][T12431] lo speed is unknown, defaulting to 1000
[  291.733125][T12534] loop0: detected capacity change from 0 to 4096
[  291.740354][T12539] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2947'.
[  291.773707][T12534] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  291.956769][T12534] ntfs3(loop0): ino=19, mi_enum_attr
[  291.978038][T12534] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  291.991219][  T916] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  292.009138][T12547] netlink: 'syz.2.2951': attribute type 2 has an invalid length.
[  292.091554][T12534] ntfs3(loop0): failed to convert "c46c" to cp932
[  292.120080][T12534] ntfs3(loop0): ino=20, mi_enum_attr
[  292.173061][  T916] usb 6-1: Using ep0 maxpacket: 16
[  292.196461][  T916] usb 6-1: unable to get BOS descriptor or descriptor too short
[  292.226423][  T916] usb 6-1: config 2 has an invalid interface number: 22 but max is 0
[  292.249906][  T916] usb 6-1: config 2 has no interface number 0
[  292.270091][  T916] usb 6-1: config 2 interface 22 has no altsetting 0
[  292.317310][  T916] usb 6-1: New USB device found, idVendor=0451, idProduct=5416, bcdDevice= 1.00
[  292.342760][  T916] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.381401][  T916] usb 6-1: Product: syz
[  292.385609][  T916] usb 6-1: Manufacturer: syz
[  292.406135][  T916] usb 6-1: SerialNumber: syz
[  292.558078][T12431] lo speed is unknown, defaulting to 1000
[  292.635802][T12564] loop1: detected capacity change from 0 to 256
[  292.698274][  T916] usb-storage 6-1:2.22: USB Mass Storage device detected
[  292.725948][T12564] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  292.746931][T12564] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  292.797773][  T916] usb-storage 6-1:2.22: Quirks match for vid 0451 pid 5416: 2
[  292.813479][T12571] netlink: 148 bytes leftover after parsing attributes in process `syz.0.2963'.
[  292.816451][T12564] loop1: Can't mount, would change RO state
[  292.945142][  T916] usb 6-1: USB disconnect, device number 8
[  293.009028][T12575] loop2: detected capacity change from 0 to 1024
[  293.070698][T12575] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.123703][T12583] netlink: 268 bytes leftover after parsing attributes in process `syz.1.2966'.
[  293.408267][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.851521][T12431] lo speed is unknown, defaulting to 1000
[  293.879796][T12601] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2976'.
[  294.174416][T12609] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  294.181117][T12609] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  294.233626][T12609] vhci_hcd vhci_hcd.0: Device attached
[  294.315626][T12614] netlink: 'syz.5.2981': attribute type 11 has an invalid length.
[  294.481363][  T916] usb 37-1: new high-speed USB device number 2 using vhci_hcd
[  294.521181][ T5850] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  294.711174][ T5850] usb 3-1: Using ep0 maxpacket: 8
[  294.728923][T12587] loop3: detected capacity change from 0 to 40427
[  294.743594][ T5850] usb 3-1: unable to get BOS descriptor or descriptor too short
[  294.762573][T12587] F2FS-fs (loop3): Fix alignment : internally, start(4096) end(16896) block(12288)
[  294.781241][ T5850] usb 3-1: config 4 interface 0 has no altsetting 0
[  294.814431][ T5850] usb 3-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  294.839017][T12587] F2FS-fs (loop3): invalid crc value
[  294.851408][ T5850] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.859409][ T5850] usb 3-1: Product: syz
[  294.879050][T12431] lo speed is unknown, defaulting to 1000
[  294.895035][ T5850] usb 3-1: Manufacturer: syz
[  294.915382][ T5850] usb 3-1: SerialNumber: syz
[  295.073604][T12633] loop5: detected capacity change from 0 to 16
[  295.102149][T12633] erofs (device loop5): mounted with root inode @ nid 36.
[  295.166406][T12610] vhci_hcd: connection reset by peer
[  295.175216][ T5907] vhci_hcd: stop threads
[  295.179819][ T5907] vhci_hcd: release socket
[  295.180537][T12633] erofs (device loop5): failed to decompress -20 in[62, 4034] out[1849]
[  295.204994][ T5850] usb 3-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  295.207577][T12587] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  295.230109][ T5907] vhci_hcd: disconnect device
[  295.246793][ T5850] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  295.252020][T12633] erofs (device loop5): read error -117 @ 43 of nid 36
[  295.289630][ T5850] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  295.338673][ T5850] usb 3-1: media controller created
[  295.433356][ T5850] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  295.554040][ T5850] zl10353_read_register: readreg error (reg=127, ret==0)
[  295.768725][ T5850] usb 3-1: USB disconnect, device number 14
[  296.168006][T12431] lo speed is unknown, defaulting to 1000
[  296.483599][T12667] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3008'.
[  296.777662][T12679] program syz.0.3013 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  297.461201][ T5834] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  297.635881][ T5834] usb 4-1: Using ep0 maxpacket: 32
[  297.683834][ T5834] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[  297.707763][ T5834] usb 4-1: config 0 has no interface number 0
[  297.731212][ T5834] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  297.781352][T12710] netlink: 'syz.0.3028': attribute type 15 has an invalid length.
[  297.789195][T12710] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3028'.
[  297.800169][ T5834] usb 4-1: config 0 interface 85 has no altsetting 0
[  297.819291][T12670] loop5: detected capacity change from 0 to 32768
[  297.828096][ T5834] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  297.839203][T12670] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.3010 (12670)
[  297.853211][ T5834] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.899169][ T5834] usb 4-1: Product: syz
[  297.911896][ T5834] usb 4-1: Manufacturer: syz
[  297.923751][ T5834] usb 4-1: SerialNumber: syz
[  297.948743][ T5834] usb 4-1: config 0 descriptor??
[  297.976507][T12670] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  298.051203][T12670] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  298.087210][T12670] BTRFS info (device loop5): using free-space-tree
[  298.395969][ T5834] appletouch 4-1:0.85: Failed to request geyser raw mode
[  298.411447][ T5834] appletouch 4-1:0.85: probe with driver appletouch failed with error -5
[  298.448557][ T5834] usb 4-1: USB disconnect, device number 13
[  298.541872][ T5821] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  298.962214][T12759] ieee802154 phy0 wpan0: encryption failed: -90
[  299.031282][T12762] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3045'.
[  299.143481][T12765] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  299.245710][T12767] netlink: 'syz.3.3048': attribute type 1 has an invalid length.
[  299.354562][T12770] xt_bpf: check failed: parse error
[  299.657643][  T916] vhci_hcd: vhci_device speed not set
[  299.724597][T12785] loop1: detected capacity change from 0 to 64
[  299.769755][T12721] loop0: detected capacity change from 0 to 32768
[  299.806878][T12785] 
[  299.809224][T12785] ======================================================
[  299.816241][T12785] WARNING: possible circular locking dependency detected
[  299.823271][T12785] 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 Not tainted
[  299.830373][T12785] ------------------------------------------------------
[  299.834163][T12721] ERROR: (device loop0): dbAlloc: the hint is outside the map
[  299.834163][T12721] 
[  299.837366][T12785] syz.1.3057/12785 is trying to acquire lock:
[  299.837382][T12785] ffff88805531e0b0 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x165/0x1e0
[  299.862569][T12785] 
[  299.862569][T12785] but task is already holding lock:
[  299.869931][T12785] ffff8880324e75f8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xda/0x1230
[  299.880746][T12785] 
[  299.880746][T12785] which lock already depends on the new lock.
[  299.880746][T12785] 
[  299.891144][T12785] 
[  299.891144][T12785] the existing dependency chain (in reverse order) is:
[  299.900150][T12785] 
[  299.900150][T12785] -> #1 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}:
[  299.909366][T12785]        lock_acquire+0x120/0x360
[  299.914394][T12785]        __mutex_lock+0x182/0xe80
[  299.919417][T12785]        hfs_extend_file+0xda/0x1230
[  299.924694][T12785]        hfs_bmap_reserve+0x107/0x430
[  299.930069][T12785]        __hfs_ext_write_extent+0x1fa/0x470
[  299.935955][T12785]        __hfs_ext_cache_extent+0x6b/0x9b0
[  299.941753][T12785]        hfs_extend_file+0x316/0x1230
[  299.947113][T12785]        hfs_get_block+0x3d7/0xbd0
[  299.952214][T12785]        __block_write_begin_int+0x6b5/0x1900
[  299.958283][T12785]        cont_write_begin+0x789/0xb50
[  299.963657][T12785]        hfs_write_begin+0x66/0xb0
[  299.968761][T12785]        cont_write_begin+0x2fd/0xb50
[  299.974140][T12785]        hfs_write_begin+0x66/0xb0
[  299.979243][T12785]        hfs_file_truncate+0x190/0x9c0
[  299.984694][T12785]        hfs_inode_setattr+0x4a9/0x670
[  299.990144][T12785]        notify_change+0xb36/0xe40
[  299.995244][T12785]        do_truncate+0x19a/0x220
[  300.000177][T12785]        vfs_truncate+0x493/0x520
[  300.005194][T12785]        do_sys_truncate+0xdb/0x190
[  300.010382][T12785]        __x64_sys_truncate+0x5b/0x70
[  300.015744][T12785]        do_syscall_64+0xf6/0x210
[  300.020764][T12785]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.027198][T12785] 
[  300.027198][T12785] -> #0 (&tree->tree_lock#2/1){+.+.}-{4:4}:
[  300.035318][T12785]        validate_chain+0xb9b/0x2140
[  300.040593][T12785]        __lock_acquire+0xaac/0xd20
[  300.045787][T12785]        lock_acquire+0x120/0x360
[  300.050806][T12785]        __mutex_lock+0x182/0xe80
[  300.055825][T12785]        hfs_find_init+0x165/0x1e0
[  300.060935][T12785]        hfs_extend_file+0x2ee/0x1230
[  300.066302][T12785]        hfs_bmap_reserve+0x107/0x430
[  300.071679][T12785]        hfs_cat_create+0x1b3/0x640
[  300.076877][T12785]        hfs_create+0x66/0xe0
[  300.081545][T12785]        path_openat+0x14f4/0x3830
[  300.086646][T12785]        do_filp_open+0x1fa/0x410
[  300.091660][T12785]        do_sys_openat2+0x121/0x1c0
[  300.096861][T12785]        __x64_sys_openat+0x138/0x170
[  300.102233][T12785]        do_syscall_64+0xf6/0x210
[  300.107262][T12785]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.113669][T12785] 
[  300.113669][T12785] other info that might help us debug this:
[  300.113669][T12785] 
[  300.123880][T12785]  Possible unsafe locking scenario:
[  300.123880][T12785] 
[  300.131317][T12785]        CPU0                    CPU1
[  300.136681][T12785]        ----                    ----
[  300.142035][T12785]   lock(&HFS_I(tree->inode)->extents_lock);
[  300.148018][T12785]                                lock(&tree->tree_lock#2/1);
[  300.155416][T12785]                                lock(&HFS_I(tree->inode)->extents_lock);
[  300.163913][T12785]   lock(&tree->tree_lock#2/1);
[  300.168781][T12785] 
[  300.168781][T12785]  *** DEADLOCK ***
[  300.168781][T12785] 
[  300.176935][T12785] 4 locks held by syz.1.3057/12785:
[  300.182120][T12785]  #0: ffff888057ee8420 (sb_writers#23){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  300.191411][T12785]  #1: ffff8880324e5da0 (&type->i_mutex_dir_key#17){++++}-{4:4}, at: path_openat+0x8da/0x3830
[  300.201703][T12785]  #2: ffff888011b020b0 (&tree->tree_lock#2){+.+.}-{4:4}, at: hfs_find_init+0x165/0x1e0
[  300.211494][T12785]  #3: ffff8880324e75f8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xda/0x1230
[  300.222734][T12785] 
[  300.222734][T12785] stack backtrace:
[  300.228612][T12785] CPU: 0 UID: 0 PID: 12785 Comm: syz.1.3057 Not tainted 6.15.0-rc4-syzkaller-00296-ge8ab83e34bdc #0 PREEMPT(full) 
[  300.228638][T12785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  300.228651][T12785] Call Trace:
[  300.228661][T12785]  <TASK>
[  300.228670][T12785]  dump_stack_lvl+0x189/0x250
[  300.228706][T12785]  ? __pfx_dump_stack_lvl+0x10/0x10
[  300.228736][T12785]  ? __pfx__printk+0x10/0x10
[  300.228759][T12785]  ? print_lock_name+0xde/0x100
[  300.228795][T12785]  print_circular_bug+0x2ee/0x310
[  300.228819][T12785]  check_noncircular+0x134/0x160
[  300.228843][T12785]  validate_chain+0xb9b/0x2140
[  300.228862][T12785]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  300.228888][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.228913][T12785]  ? look_up_lock_class+0x74/0x170
[  300.228938][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.228962][T12785]  ? register_lock_class+0x51/0x320
[  300.228989][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.229016][T12785]  __lock_acquire+0xaac/0xd20
[  300.229047][T12785]  ? hfs_find_init+0x165/0x1e0
[  300.229074][T12785]  lock_acquire+0x120/0x360
[  300.229105][T12785]  ? hfs_find_init+0x165/0x1e0
[  300.229138][T12785]  __mutex_lock+0x182/0xe80
[  300.229165][T12785]  ? hfs_find_init+0x165/0x1e0
[  300.229196][T12785]  ? hfs_find_init+0x165/0x1e0
[  300.229224][T12785]  ? __pfx___mutex_lock+0x10/0x10
[  300.229252][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.229281][T12785]  ? rcu_is_watching+0x15/0xb0
[  300.229313][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.229337][T12785]  ? __kmalloc_noprof+0x29b/0x4f0
[  300.229363][T12785]  ? hfs_find_init+0x8b/0x1e0
[  300.229391][T12785]  hfs_find_init+0x165/0x1e0
[  300.229420][T12785]  hfs_extend_file+0x2ee/0x1230
[  300.229440][T12785]  ? __pfx___mutex_trylock_common+0x10/0x10
[  300.229466][T12785]  ? __pfx_hfs_extend_file+0x10/0x10
[  300.229485][T12785]  ? trace_contention_end+0x39/0x120
[  300.229505][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.229529][T12785]  ? __mutex_lock+0x330/0xe80
[  300.229558][T12785]  ? hfs_find_init+0x165/0x1e0
[  300.229586][T12785]  ? __pfx___mutex_lock+0x10/0x10
[  300.229614][T12785]  hfs_bmap_reserve+0x107/0x430
[  300.229662][T12785]  hfs_cat_create+0x1b3/0x640
[  300.229700][T12785]  ? do_raw_spin_lock+0x121/0x290
[  300.229732][T12785]  ? __pfx_hfs_cat_create+0x10/0x10
[  300.229777][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.229805][T12785]  ? _raw_spin_unlock+0x28/0x50
[  300.229830][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.229857][T12785]  ? hfs_new_inode+0x7c9/0xba0
[  300.229886][T12785]  hfs_create+0x66/0xe0
[  300.229907][T12785]  ? __pfx_hfs_create+0x10/0x10
[  300.229927][T12785]  path_openat+0x14f4/0x3830
[  300.229949][T12785]  ? arch_stack_walk+0xfc/0x150
[  300.229997][T12785]  ? __pfx_path_openat+0x10/0x10
[  300.230018][T12785]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.230053][T12785]  do_filp_open+0x1fa/0x410
[  300.230077][T12785]  ? __pfx_do_filp_open+0x10/0x10
[  300.230112][T12785]  ? _raw_spin_unlock+0x28/0x50
[  300.230133][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.230160][T12785]  ? alloc_fd+0x64c/0x6c0
[  300.230195][T12785]  do_sys_openat2+0x121/0x1c0
[  300.230230][T12785]  ? __pfx_do_sys_openat2+0x10/0x10
[  300.230270][T12785]  ? rcu_is_watching+0x15/0xb0
[  300.230305][T12785]  __x64_sys_openat+0x138/0x170
[  300.230343][T12785]  do_syscall_64+0xf6/0x210
[  300.230369][T12785]  ? srso_alias_return_thunk+0x5/0xfbef5
[  300.230392][T12785]  ? exc_page_fault+0x91/0x110
[  300.230416][T12785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.230435][T12785] RIP: 0033:0x7faa6a98e969
[  300.230454][T12785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.230475][T12785] RSP: 002b:00007faa6b8de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  300.230499][T12785] RAX: ffffffffffffffda RBX: 00007faa6abb5fa0 RCX: 00007faa6a98e969
[  300.230516][T12785] RDX: 0000000000000042 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  300.230531][T12785] RBP: 00007faa6aa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  300.230544][T12785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  300.230556][T12785] R13: 0000000000000000 R14: 00007faa6abb5fa0 R15: 00007fffd5d0f5d8
[  300.230579][T12785]  </TASK>
[  300.655640][T12785] hfs: request for non-existent node 16777216 in B*Tree
[  300.662673][T12785] hfs: request for non-existent node 16777216 in B*Tree
[  300.740525][   T13] read_mapping_page failed!
[  300.746976][   T13] ERROR: (device loop0): txCommit: 
[  300.746976][   T13] 
[  300.754726][   T13] jfs_write_inode: jfs_commit_inode failed!