last executing test programs:

1.537876599s ago: executing program 1 (id=5318):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x26, 0x0, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

1.514119251s ago: executing program 1 (id=5319):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/consoles\x00', 0x0, 0x0)
preadv(r0, &(0x7f0000000980)=[{&(0x7f00000006c0)=""/123, 0x7b}], 0x1, 0xff5a, 0x1)

1.445595556s ago: executing program 3 (id=5320):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newrule={0x30, 0x1e, 0x1, 0x0, 0x0, {}, [@FRA_DST={0x14, 0x1, @dev}]}, 0x30}}, 0x0)

1.361620604s ago: executing program 0 (id=5323):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x17, 0x18, &(0x7f0000000240)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@printk={@p, {}, {0x5}, {0x7, 0x0, 0x9}, {}, {}, {0x15}}, @ldst={0x1, 0x0, 0x3}], {{}, {0x5}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1.311350198s ago: executing program 1 (id=5324):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0x31, &(0x7f0000000400)=0x4, 0x4)

1.248544333s ago: executing program 4 (id=5325):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x28, 0x3, 0x8, 0x101, 0x0, 0x0, {0xa}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x1}, @CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @fccp}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x884c}]}, 0x28}}, 0x20040800)

1.147930972s ago: executing program 3 (id=5326):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='cifs\x00', 0x0, &(0x7f0000000180)='no\'\x91\x03a\x8f\xa3N\xf0[\x1dG\xb6zob,,er\xe8\xe8\xb5;%j\xb8\xbc\n\x87\xfc\x03z\xe6,,\x80@q\xac\x14\xda\xf7\x1d\b\xf4\x0f\xd0\x13\xe5\xe9J#\xb3\"\x8e\xda\x04h/\x15.\x9dW1\x15\xc8\xb1\xa8n\aNC\xba\x12\"\x86C\xd9\xd7\x88\xa1E)\xd08+\x80\xee\xb6\xe1\xf7\x00\xbf1\xae\xf0\xda<\x93\x99+`#\xa0\xf7\x8e\xa2k\xb2\x96=ed\x1f\xca\xa3\xa3\xa28\xee\xc3\n\xbc\x92,H;\xdd\x1b\xb2y\\\xe5\x12\xa9\x9a$\xef\x89\xdb\r\xc8G;<y\xadS\xbe\x92\x9e]\xa5\x84}f\x02\xc9q\xb7\xc2\x01\xaf\xbb\xa4\x94\x96su\x99n 01\xce\x94\xc1\xef \x9c\xb1\xaa\x9a\xfd\xeaAx\x84E\x8bk\xff\x98+\x97G\n\x11\xf3\x02\x19\xdb#\xa6\njh*pe\x96+F.\xa1\x91\xb6t\x93\vs\xb4\xf4\x99\xea\b|\x01#\xe3\x97\xa3L\xf6\xacK\x15L^\xde-\xee\x16\x10{\xe0\v\xf4\xc1\x0e%\xccr\xa9z\xcb\xb4v\x00\x00\x00\x00\x00\x00\x00\xa1\xf8\x05P\xdd\xf9R\xebS\v\xd9\x99\x00\x19\xa8\xc0\xa6\xe4\x02\xbf;z%\xec\x1fR\xa6\x0ftpJ`\xfe\xe2@_\x00\x00\x00\x00\x00\x00\x00\x00\x00')

1.073343918s ago: executing program 4 (id=5327):
r0 = syz_open_dev$swradio(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000180)={0x3, @pix_mp={0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0x0, 0x1}})

1.070434099s ago: executing program 1 (id=5328):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_DOWNDELAY={0x8, 0xc, 0xff}]}}}]}, 0x3c}}, 0x0)

1.036645541s ago: executing program 2 (id=5329):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)
write$sequencer(r0, &(0x7f0000000040)=[@l={0x92, 0x7, 0xd0}], 0x8)

980.012176ms ago: executing program 0 (id=5330):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000037c0)=[{&(0x7f0000001c80)={0x14, 0x26, 0x1, 0x0, 0x0, "", [@nested={0x102, 0x0, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@private2}, @typed={0x4}, @generic="2884c85d3fc3524377bafd1f615e3353dc8db8ad51ea63944b28efabbb46cd00faaa5a790a2905a1b5a626aa2840faf764467a0daefc183fb9aa8e65d559cb9a1e34b16050de492fb9472e9f19dd7a9e114328b99c8afb752fff438d5117b319d3dec133b20cf21e771739bda674ddba3d32a656c54fe43a76658104f89214cdd7aaf3fa78e64b5c7f88eb473e945ffb9467eb47f249076dddf81e8067d6977fb90d274ab73f6621c4fc49af7ab416b8ad55a93055777450bbc0d3a9294ef4d7eac438db1aa0457b6b74b147204cf69981dc145673", @typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@local}]}]}, 0x114}], 0x1}, 0x0)

879.529815ms ago: executing program 4 (id=5331):
unshare(0x400)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x1)

857.408787ms ago: executing program 3 (id=5332):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x1c42}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x2}, @IFLA_XFRM_LINK={0x8, 0x1, 0x4}]}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x58}}, 0x0)

811.83045ms ago: executing program 2 (id=5333):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=@newsa={0x184, 0x10, 0x713, 0x0, 0x0, {{@in6=@remote, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@in=@remote, 0x0, 0x33}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x4, {{'ecb(cipher_null)\x00'}}}, @algo_auth_trunc={0x4c, 0x14, {{'sha1\x00'}}}]}, 0x184}}, 0x0)

811.5143ms ago: executing program 0 (id=5334):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000180100002fee702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007b00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

775.597073ms ago: executing program 1 (id=5335):
syz_mount_image$minix(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000400)=ANY=[], 0xfe, 0x228, &(0x7f00000004c0)="$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")
creat(&(0x7f0000000000)='./file2\x00', 0x27)

695.1258ms ago: executing program 2 (id=5336):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r0, &(0x7f00000000c0)={0x2, @long={0x2}}, 0x14)

656.872123ms ago: executing program 0 (id=5337):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)

572.156351ms ago: executing program 4 (id=5338):
r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f00000001c0)={0x7})

504.030607ms ago: executing program 3 (id=5339):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x208, 0xd0, 0x3f1, 0x148, 0x0, 0x5, 0x170, 0x2a8, 0x2a8, 0x170, 0x2a8, 0x3, 0x0, {[{{@uncond, 0xffffe000, 0x70, 0xd0, 0x0, {0x0, 0x1c030000}}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x5, 0x2, 0x3]}, {0xffffffffffffffff}}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x268)

483.695998ms ago: executing program 2 (id=5340):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x68, 0x2, 0x6, 0x1, 0x6000000, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @local}}, @IPSET_ATTR_NETMASK={0x5}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x68}}, 0x0)

419.826444ms ago: executing program 4 (id=5341):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000200), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f00000000c0)=0x40)

419.434884ms ago: executing program 0 (id=5342):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x50, 0x1, 0x1, 0x301, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x269}]}, @CTA_TUPLE_ORIG={0x30, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @mcast2}}}]}]}, 0x50}}, 0x0)

315.968713ms ago: executing program 3 (id=5343):
r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/wireless\x00')
preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000280)=""/254, 0xfe}], 0x1, 0x1fc, 0x0)

278.210876ms ago: executing program 2 (id=5344):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x7)
sendto$ax25(r0, 0x0, 0x0, 0x20008001, 0x0, 0x0)

257.795178ms ago: executing program 1 (id=5345):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYRES16=0x0, @ANYRES64, @ANYBLOB="5333c923ead7d62a1aa7e1ad6926618430329b0ea6e6e24d7310d2249d89707d2a2ee55d187812e2a0109f36ed3b24151208962f1353f76d5dc207c8b61a67695d2e4632e520"], 0x1, 0x182, &(0x7f0000000200)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)

139.910888ms ago: executing program 0 (id=5346):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c00028005001d00000000000500010004"], 0x4c}}, 0x0)

113.42256ms ago: executing program 4 (id=5347):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=@newlink={0x3c, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0x16}, {0x8}]}}]}]}, 0x3c}}, 0x0)

77.253323ms ago: executing program 2 (id=5348):
r0 = socket(0x2b, 0x1, 0x0)
getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x11e, 0x1, 0x0, 0x20000000)

0s ago: executing program 3 (id=5349):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0xfc, &(0x7f0000000000), &(0x7f0000000080)=0x4)

kernel console output (not intermixed with test programs):

IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  300.310053][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  300.331398][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  300.340824][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  300.375457][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  300.428209][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  300.478481][T11172] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  300.980514][T11532] loop2: detected capacity change from 0 to 2048
[  301.045907][T11532] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  301.163448][T11532] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  301.297883][T10726] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  301.305515][T10726] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  301.371419][T11172] 8021q: adding VLAN 0 to HW filter on device batadv0
[  301.698673][T11560] loop1: detected capacity change from 0 to 256
[  301.806790][T11560] FAT-fs (loop1): Directory bread(block 64) failed
[  301.827170][T11560] FAT-fs (loop1): Directory bread(block 65) failed
[  301.833909][T11560] FAT-fs (loop1): Directory bread(block 66) failed
[  301.895104][T11560] FAT-fs (loop1): Directory bread(block 67) failed
[  301.932599][T11560] FAT-fs (loop1): Directory bread(block 68) failed
[  301.951504][T11560] FAT-fs (loop1): Directory bread(block 69) failed
[  301.988048][T11560] FAT-fs (loop1): Directory bread(block 70) failed
[  301.999720][T11560] FAT-fs (loop1): Directory bread(block 71) failed
[  302.029444][T11560] FAT-fs (loop1): Directory bread(block 72) failed
[  302.036066][T11560] FAT-fs (loop1): Directory bread(block 73) failed
[  302.124894][T11522] loop0: detected capacity change from 0 to 32768
[  302.223913][T11522] XFS (loop0): Mounting V5 Filesystem
[  302.382125][T11590] netlink: 'syz.2.3366': attribute type 10 has an invalid length.
[  302.390675][T11590] team0: Device ipvlan1 is up. Set it down before adding it as a team port
[  302.419535][T11522] XFS (loop0): Ending clean mount
[  302.506296][T11522] XFS (loop0): Quotacheck needed: Please wait.
[  302.598546][T11522] XFS (loop0): Quotacheck: Done.
[  302.770152][ T3639] XFS (loop0): Unmounting Filesystem
[  302.894273][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  302.917974][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  303.017790][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  303.032922][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  303.064926][T11172] device veth0_vlan entered promiscuous mode
[  303.096572][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  303.120471][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  303.175102][T11172] device veth1_vlan entered promiscuous mode
[  303.297507][ T4539] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  303.330845][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  303.350863][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  303.392631][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  303.428308][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  303.462285][T11172] device veth0_macvtap entered promiscuous mode
[  303.518674][T11172] device veth1_macvtap entered promiscuous mode
[  303.547328][ T4539] usb 2-1: Using ep0 maxpacket: 16
[  303.580781][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.634189][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.663606][T11629] loop0: detected capacity change from 0 to 1024
[  303.667222][ T4539] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  303.670129][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.699464][ T4539] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  303.710766][T11629] EXT4-fs: Ignoring removed orlov option
[  303.716471][T11629] EXT4-fs: Ignoring removed nomblk_io_submit option
[  303.744975][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.764917][ T4539] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  303.765751][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.828961][T11629] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8803c118, mo2=0002]
[  303.847269][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.857471][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.868451][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.878514][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.889415][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.903048][T11172] batman_adv: batadv0: Interface activated: batadv_slave_0
[  303.913554][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  303.928138][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  303.940497][T11629] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  303.947559][ T4539] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  303.958986][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  303.968258][ T4539] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.986527][ T4539] usb 2-1: Product: syz
[  303.996722][ T4539] usb 2-1: Manufacturer: syz
[  304.002035][ T4539] usb 2-1: SerialNumber: syz
[  304.005094][T11641] xt_l2tp: v2 sid > 0xffff: 4278190080
[  304.047620][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  304.058433][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.089130][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.118475][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.165899][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.206800][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.247175][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.267084][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.289890][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.310169][T11172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.341251][T11172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.367521][T11172] batman_adv: batadv0: Interface activated: batadv_slave_1
[  304.376237][ T3639] EXT4-fs (loop0): unmounting filesystem.
[  304.389722][T11172] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  304.417247][T11172] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  304.473862][T11172] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  304.510794][T11172] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  304.537459][ T4539] usb 2-1: 0:2 : does not exist
[  304.561204][ T4539] usb 2-1: USB disconnect, device number 23
[  304.579151][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  304.618295][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  304.649857][ T3747] udevd[3747]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  304.881582][  T102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.908381][  T102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  304.962104][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  304.993882][  T102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  305.033375][  T102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  305.104665][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  305.194008][T11632] loop2: detected capacity change from 0 to 32768
[  305.412981][T11632] XFS (loop2): Mounting V5 Filesystem
[  305.465080][T11682] loop4: detected capacity change from 0 to 128
[  305.567107][   T14] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  305.673608][T11632] XFS (loop2): Ending clean mount
[  305.732250][T11632] XFS (loop2): Quotacheck needed: Please wait.
[  305.855689][T11632] XFS (loop2): Quotacheck: Done.
[  305.997552][ T3646] XFS (loop2): Unmounting Filesystem
[  306.056325][T11710] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3400'.
[  306.097588][   T14] usb 2-1: New USB device found, idVendor=03fd, idProduct=ebbe, bcdDevice=d2.0d
[  306.106690][   T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  306.154440][   T14] usb 2-1: Product: syz
[  306.161410][   T14] usb 2-1: Manufacturer: syz
[  306.166062][   T14] usb 2-1: SerialNumber: syz
[  306.219517][   T14] usb 2-1: config 0 descriptor??
[  306.299722][T11717] netlink: 'syz.0.3403': attribute type 10 has an invalid length.
[  306.347309][ T3689] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  306.442119][T11717] device vlan0 entered promiscuous mode
[  306.464727][T11717] team0: Port device vlan0 added
[  306.536072][ T4539] usb 2-1: USB disconnect, device number 24
[  306.649452][T11726] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3406'.
[  306.687413][T11726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3406'.
[  306.727423][ T3689] usb 4-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[  306.762367][ T3689] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.784430][ T3689] usb 4-1: config 0 descriptor??
[  306.943406][T11734] loop2: detected capacity change from 0 to 256
[  307.033062][T11734] FAT-fs (loop2): Directory bread(block 64) failed
[  307.055747][T11734] FAT-fs (loop2): Directory bread(block 65) failed
[  307.093295][T11734] FAT-fs (loop2): Directory bread(block 66) failed
[  307.115593][T11734] FAT-fs (loop2): Directory bread(block 67) failed
[  307.125369][T11734] FAT-fs (loop2): Directory bread(block 68) failed
[  307.139826][T11734] FAT-fs (loop2): Directory bread(block 69) failed
[  307.154119][T11734] FAT-fs (loop2): Directory bread(block 70) failed
[  307.163167][T11734] FAT-fs (loop2): Directory bread(block 71) failed
[  307.186173][T11734] FAT-fs (loop2): Directory bread(block 72) failed
[  307.200457][T11734] FAT-fs (loop2): Directory bread(block 73) failed
[  307.257481][ T3689] hackrf 4-1:0.0: usb_control_msg() failed -71 request 0f
[  307.265124][ T3689] hackrf 4-1:0.0: Could not detect board
[  307.316835][ T3689] hackrf: probe of 4-1:0.0 failed with error -71
[  307.347656][ T3689] usb 4-1: USB disconnect, device number 16
[  307.632286][T11755] loop2: detected capacity change from 0 to 512
[  307.678190][T11755] EXT4-fs: Ignoring removed mblk_io_submit option
[  307.724160][T11755] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  307.756420][T11755] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[  307.770580][T11755] System zones: 1-12
[  307.815193][T11755] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2186: inode #15: comm syz.2.3413: corrupted in-inode xattr
[  307.867517][T11755] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.3413: couldn't read orphan inode 15 (err -117)
[  307.938790][T11755] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  307.997978][T11768] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3418'.
[  308.021225][T11768] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3418'.
[  308.148533][ T3646] EXT4-fs (loop2): unmounting filesystem.
[  308.370421][T11731] loop4: detected capacity change from 0 to 40427
[  308.455515][T11731] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  308.470464][T11731] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  308.549490][T11731] F2FS-fs (loop4): Found nat_bits in checkpoint
[  308.777746][T11731] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  308.795060][T11731] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  308.923156][T11731] fscrypt (loop4, inode 3): Error -61 getting encryption context
[  309.398850][T11821] AppArmor: change_hat: Invalid input '0'
[  309.517041][T11825] ieee802154 phy0 wpan0: encryption failed: -22
[  309.601640][T11827] loop1: detected capacity change from 0 to 256
[  309.690801][T11827] FAT-fs (loop1): Directory bread(block 64) failed
[  309.741366][T11827] FAT-fs (loop1): Directory bread(block 65) failed
[  309.775628][T11827] FAT-fs (loop1): Directory bread(block 66) failed
[  309.793842][T11827] FAT-fs (loop1): Directory bread(block 67) failed
[  309.831615][T11827] FAT-fs (loop1): Directory bread(block 68) failed
[  309.877148][T11827] FAT-fs (loop1): Directory bread(block 69) failed
[  309.883885][T11827] FAT-fs (loop1): Directory bread(block 70) failed
[  309.941101][T11827] FAT-fs (loop1): Directory bread(block 71) failed
[  309.962107][T11827] FAT-fs (loop1): Directory bread(block 72) failed
[  309.991175][T11827] FAT-fs (loop1): Directory bread(block 73) failed
[  310.145488][T11845] loop2: detected capacity change from 0 to 2048
[  310.177526][   T26] audit: type=1800 audit(1729029892.948:5550): pid=11827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3446" name="file1" dev="loop1" ino=1048650 res=0 errno=0
[  310.229285][T11845] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  310.252586][T11845] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  310.927673][T11877] netdevsim netdevsim0 netdevsim1: Unsupported IPsec algorithm
[  310.935380][T11877] netdevsim netdevsim0 netdevsim1: Failed to get key data for SA table
[  311.327202][ T3969] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  311.340579][T11895] loop4: detected capacity change from 0 to 512
[  311.358323][T11895] EXT4-fs: Ignoring removed mblk_io_submit option
[  311.375099][T11895] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  311.438023][T11895] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[  311.461249][T11895] System zones: 1-12
[  311.481101][T11895] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.3479: corrupted in-inode xattr
[  311.544591][T11895] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.3479: couldn't read orphan inode 15 (err -117)
[  311.587082][ T3969] usb 4-1: Using ep0 maxpacket: 8
[  311.594746][T11895] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  311.717452][ T3969] usb 4-1: config 1 has an invalid interface number: 128 but max is 1
[  311.725685][ T3969] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  311.755798][ T3969] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  311.776558][T11172] EXT4-fs (loop4): unmounting filesystem.
[  311.794060][ T3969] usb 4-1: config 1 has no interface number 0
[  311.803078][T11890] loop1: detected capacity change from 0 to 32768
[  311.837128][ T3969] usb 4-1: config 1 interface 128 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  311.878070][T11890] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.3475 (11890)
[  311.929267][T11890] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  311.957181][T11890] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  311.982422][T11890] BTRFS info (device loop1): using free space tree
[  312.057405][ T3969] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  312.075705][ T3969] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.095062][ T3969] usb 4-1: Product: syz
[  312.099635][ T3969] usb 4-1: Manufacturer: syz
[  312.104262][ T3969] usb 4-1: SerialNumber: syz
[  312.198261][ T3969] cdc_wdm 4-1:1.128: skipping garbage
[  312.203704][ T3969] cdc_wdm 4-1:1.128: invalid descriptor buffer length
[  312.237154][ T3969] cdc_wdm: probe of 4-1:1.128 failed with error -22
[  312.309210][T11890] BTRFS info (device loop1): enabling ssd optimizations
[  312.419337][ T3652] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  312.435201][ T3969] usb 4-1: USB disconnect, device number 17
[  312.570039][T11943] loop2: detected capacity change from 0 to 64
[  314.288155][T12004] loop4: detected capacity change from 0 to 64
[  314.837630][T12027] loop4: detected capacity change from 0 to 47
[  315.038396][T12035] netlink: 'syz.2.3538': attribute type 1 has an invalid length.
[  315.067195][T12035] netlink: 244 bytes leftover after parsing attributes in process `syz.2.3538'.
[  315.107167][T12035] NCSI netlink: No device for ifindex 0
[  315.166369][T12041] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3541'.
[  315.387295][ T3689] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  315.627359][ T3689] usb 5-1: Using ep0 maxpacket: 8
[  315.758281][ T3689] usb 5-1: config 0 has no interfaces?
[  315.793775][T12067] syz.1.3553 uses obsolete (PF_INET,SOCK_PACKET)
[  315.840238][T12071] loop2: detected capacity change from 0 to 256
[  315.937544][ T3689] usb 5-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=97.58
[  315.946639][ T3689] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  315.994947][ T3689] usb 5-1: Product: syz
[  316.021164][ T3689] usb 5-1: Manufacturer: syz
[  316.025847][ T3689] usb 5-1: SerialNumber: syz
[  316.058172][ T3689] usb 5-1: config 0 descriptor??
[  316.307156][   T22] usb 5-1: USB disconnect, device number 19
[  316.365504][T12087] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3564'.
[  316.677261][ T4560] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  316.937481][ T4560] usb 3-1: Using ep0 maxpacket: 32
[  316.990035][T12117] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3576'.
[  317.027161][T12117] netlink: 'syz.1.3576': attribute type 2 has an invalid length.
[  317.036227][T12117] netlink: 'syz.1.3576': attribute type 1 has an invalid length.
[  317.051231][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[  317.057601][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  317.068419][ T4560] usb 3-1: config 0 has an invalid interface number: 35 but max is 0
[  317.076557][ T4560] usb 3-1: config 0 has no interface number 0
[  317.217199][ T3689] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  317.257092][   T22] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  317.275359][ T4560] usb 3-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[  317.284765][ T4560] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  317.297351][ T4560] usb 3-1: Product: syz
[  317.301700][ T4560] usb 3-1: Manufacturer: syz
[  317.306330][ T4560] usb 3-1: SerialNumber: syz
[  317.333809][ T4560] usb 3-1: config 0 descriptor??
[  317.477460][ T3689] usb 5-1: Using ep0 maxpacket: 16
[  317.482782][ T3969] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  317.597512][ T4560] radio-si470x 3-1:0.35: this is not a si470x device.
[  317.629736][   T22] usb 1-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[  317.639325][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.649830][   T22] usb 1-1: config 0 descriptor??
[  317.787646][ T3689] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  317.796913][ T3689] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  317.813045][ T4560] radio-raremono 3-1:0.35: this is not Thanko's Raremono.
[  317.821285][ T3689] usb 5-1: Product: syz
[  317.829047][ T3689] usb 5-1: Manufacturer: syz
[  317.837972][ T3689] usb 5-1: SerialNumber: syz
[  317.845734][T12131] netlink: 'syz.3.3586': attribute type 1 has an invalid length.
[  317.846537][ T3689] r8152-cfgselector 5-1: config 0 descriptor??
[  317.860366][T12131] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3586'.
[  317.872393][ T4560] usb 3-1: USB disconnect, device number 24
[  318.033144][ T3969] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  318.045812][ T3969] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  318.067077][ T3969] usb 2-1: Product: syz
[  318.073638][ T3969] usb 2-1: Manufacturer: syz
[  318.078950][ T3969] usb 2-1: SerialNumber: syz
[  318.090311][ T3969] r8152-cfgselector 2-1: config 0 descriptor??
[  318.128306][   T22] hackrf 1-1:0.0: usb_control_msg() failed -71 request 0f
[  318.136118][   T22] hackrf 1-1:0.0: Could not detect board
[  318.151741][   T22] hackrf: probe of 1-1:0.0 failed with error -71
[  318.174412][   T22] usb 1-1: USB disconnect, device number 19
[  318.357330][ T3689] r8152-cfgselector 5-1: Unknown version 0x0000
[  318.363840][ T3689] r8152-cfgselector 5-1: bad CDC descriptors
[  318.397330][ T3689] r8152-cfgselector 5-1: Unknown version 0x0000
[  318.405431][ T3689] r8152-cfgselector 5-1: USB disconnect, device number 20
[  318.587289][ T3969] r8152-cfgselector 2-1: Unknown version 0x0000
[  318.603048][ T3969] r8152-cfgselector 2-1: USB disconnect, device number 25
[  318.765361][T12149] netlink: 'syz.3.3593': attribute type 1 has an invalid length.
[  318.867548][T12153] kAFS: unable to lookup cell '׭��6W���6߾����%�$ɆJJ��=1��U���x��'
[  319.927268][T12201] loop2: detected capacity change from 0 to 22
[  319.958398][T12201] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  319.967375][T12201] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  320.200317][T12209] netlink: 'syz.1.3623': attribute type 10 has an invalid length.
[  320.297106][T12209] team0: Device hsr_slave_1 failed to register rx_handler
[  321.057282][T12244] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3640'.
[  321.066459][T12244] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3640'.
[  321.088440][T12244] netlink: 5 bytes leftover after parsing attributes in process `syz.1.3640'.
[  321.409890][T12259] loop0: detected capacity change from 0 to 64
[  321.612315][T12267] xt_TCPMSS: Only works on TCP SYN packets
[  321.768945][   T26] audit: type=1326 audit(1729029904.538:5551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12273 comm="syz.2.3657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1337dff9 code=0x7ffc0000
[  321.831377][T12277] loop1: detected capacity change from 0 to 256
[  321.852636][   T26] audit: type=1326 audit(1729029904.538:5552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12273 comm="syz.2.3657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7fac1337dff9 code=0x7ffc0000
[  321.964706][   T26] audit: type=1326 audit(1729029904.538:5553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12273 comm="syz.2.3657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1337dff9 code=0x7ffc0000
[  322.067218][   T26] audit: type=1326 audit(1729029904.538:5554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12273 comm="syz.2.3657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1337dff9 code=0x7ffc0000
[  322.326419][T12291] loop2: detected capacity change from 0 to 2048
[  322.423914][T12291] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  323.047371][ T3720] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  323.297404][ T3720] usb 3-1: Using ep0 maxpacket: 16
[  323.417316][ T3720] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  323.445552][ T3720] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  323.487146][ T3720] usb 3-1: config 0 interface 0 has no altsetting 0
[  323.677417][ T3720] usb 3-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  323.696956][ T3720] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.705496][ T3720] usb 3-1: Product: syz
[  323.710244][ T3720] usb 3-1: Manufacturer: syz
[  323.714959][ T3720] usb 3-1: SerialNumber: syz
[  323.739519][ T3720] usb 3-1: config 0 descriptor??
[  324.009622][ T3720] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input11
[  324.250569][   T14] usb 3-1: USB disconnect, device number 25
[  324.487854][T12355] loop1: detected capacity change from 0 to 512
[  324.510710][T12357] kernel read not supported for file /!selinuxwk1�m�9ɞ*T����#j����Y��mV�vm(p�-QZ#�{�� (pid: 12357 comm: syz.4.3696)
[  324.575001][T12355] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  324.635675][T12355] ext4 filesystem being mounted at /801/bus supports timestamps until 2038 (0x7fffffff)
[  324.719992][T12369] ax25_connect(): syz.3.3701 uses autobind, please contact jreuter@yaina.de
[  324.898875][ T3652] EXT4-fs (loop1): unmounting filesystem.
[  324.955365][T12379] loop2: detected capacity change from 0 to 512
[  325.030607][T12379] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  325.056476][T12379] ext4 filesystem being mounted at /719/bus supports timestamps until 2038 (0x7fffffff)
[  325.187285][   T14] usb 1-1: new full-speed USB device number 20 using dummy_hcd
[  325.290913][ T3646] EXT4-fs (loop2): unmounting filesystem.
[  325.547284][   T14] usb 1-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32
[  325.576578][   T14] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  325.630152][   T14] usb 1-1: config 0 descriptor??
[  325.699118][   T14] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  325.789231][T12412] netlink: 'syz.2.3722': attribute type 10 has an invalid length.
[  325.906683][T12412] team0: Device hsr_slave_1 failed to register rx_handler
[  326.072453][T12422] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3727'.
[  326.097353][T12422] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3727'.
[  326.127210][   T14] gp8psk: usb out operation failed.
[  326.132601][   T14] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  326.173910][   T14] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  326.220996][   T14] usb 1-1: USB disconnect, device number 20
[  326.678665][T12444] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3736'.
[  326.936023][T12455] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3742'.
[  327.043569][T12460] dlm: no locking on control device
[  327.215605][T12466] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3746'.
[  327.247655][T12466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3746'.
[  327.258582][T12468] netlink: 'syz.0.3749': attribute type 95 has an invalid length.
[  327.358184][T12463] loop4: detected capacity change from 0 to 4096
[  327.505620][T12463] ntfs: volume version 3.1.
[  327.976391][T12486] tmpfs: Bad value for 'mpol'
[  328.007513][T12456] loop2: detected capacity change from 0 to 32768
[  328.031636][T12456] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.3743 (12456)
[  328.115932][T12456] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  328.162093][T12456] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  328.208251][T12456] BTRFS info (device loop2): using free space tree
[  328.471990][T12456] BTRFS info (device loop2): enabling ssd optimizations
[  328.605099][ T3646] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  328.652618][T12524] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[  328.914408][T12530] xt_ecn: cannot match TCP bits for non-tcp packets
[  329.103287][   T26] audit: type=1326 audit(1729029911.868:5555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12533 comm="syz.4.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  329.198555][   T26] audit: type=1326 audit(1729029911.898:5556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12533 comm="syz.4.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  329.267810][   T26] audit: type=1326 audit(1729029911.908:5557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12533 comm="syz.4.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  329.363026][T12540] loop4: detected capacity change from 0 to 8
[  329.393598][   T26] audit: type=1326 audit(1729029911.908:5558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12533 comm="syz.4.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  329.416410][    C0] vkms_vblank_simulate: vblank timer overrun
[  329.458209][T12540] SQUASHFS error: Failed to read block 0x730: -5
[  329.464605][T12540] SQUASHFS error: Unable to read metadata cache entry [72e]
[  329.497093][   T26] audit: type=1326 audit(1729029911.908:5559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12533 comm="syz.4.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  329.622444][T12545] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3765'.
[  329.633669][T12545] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3765'.
[  329.701560][T12517] loop1: detected capacity change from 0 to 32768
[  329.753330][   T52] block nbd4: Attempted send on invalid socket
[  329.759929][   T52] I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  329.771468][T12549] hfs: can't find a HFS filesystem on dev nbd4
[  329.842949][T12517] XFS (loop1): Mounting V5 Filesystem
[  330.017975][T12517] XFS (loop1): Ending clean mount
[  330.050410][T12517] XFS (loop1): Quotacheck needed: Please wait.
[  330.063869][T12566] loop4: detected capacity change from 0 to 512
[  330.205393][T12517] XFS (loop1): Quotacheck: Done.
[  330.259708][T12566] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  330.269283][T12566] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038 (0x7fffffff)
[  330.326343][T11172] EXT4-fs (loop4): unmounting filesystem.
[  330.440723][ T3652] XFS (loop1): Unmounting Filesystem
[  330.751666][ T3969] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  331.037377][ T3969] usb 4-1: Using ep0 maxpacket: 16
[  331.066866][T12603] netlink: 'syz.2.3801': attribute type 1 has an invalid length.
[  331.167377][ T3969] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  331.192973][ T3969] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  331.246130][ T3969] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  331.300423][ T3969] usb 4-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  331.342473][ T3969] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.356044][ T3969] usb 4-1: config 0 descriptor??
[  331.398818][T12617] program syz.1.3807 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  331.440444][ T3969] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input13
[  331.479508][ T3078] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  331.519436][ T3078] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  331.554433][ T3078] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  331.579051][ T3078] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  331.639806][T12625] loop4: detected capacity change from 0 to 512
[  331.665633][ T3744] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  331.747085][T12625] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  331.762778][ T3078] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  331.788930][T12583] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  331.801634][T12632] loop2: detected capacity change from 0 to 128
[  331.812315][T12625] ext4 filesystem being mounted at /79/bus supports timestamps until 2038 (0x7fffffff)
[  331.850094][ T3078] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  331.863553][ T3720] usb 4-1: USB disconnect, device number 18
[  332.009274][T11172] EXT4-fs (loop4): unmounting filesystem.
[  332.115441][   T14] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  332.516033][T12649] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3818'.
[  332.575377][T12649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3818'.
[  332.667450][   T14] usb 2-1: New USB device found, idVendor=2040, idProduct=7300, bcdDevice=75.53
[  332.683796][   T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.699487][   T14] usb 2-1: Product: syz
[  332.703798][   T14] usb 2-1: Manufacturer: syz
[  332.732158][   T14] usb 2-1: SerialNumber: syz
[  332.764130][   T14] usb 2-1: config 0 descriptor??
[  332.832922][T12657] netlink: 'syz.2.3824': attribute type 10 has an invalid length.
[  332.849940][   T14] pvrusb2: Hardware description: WinTV HVR-1900 Model 73xxx
[  332.873131][T12657] bridge0: port 2(bridge_slave_1) entered disabled state
[  332.880503][T12657] bridge0: port 1(bridge_slave_0) entered disabled state
[  332.883140][T12661] loop4: detected capacity change from 0 to 512
[  332.935450][T12661] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  332.945020][T12661] ext4 filesystem being mounted at /82/bus supports timestamps until 2038 (0x7fffffff)
[  332.984226][T12657] bridge0: port 2(bridge_slave_1) entered blocking state
[  332.991500][T12657] bridge0: port 2(bridge_slave_1) entered forwarding state
[  332.999473][T12657] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.006637][T12657] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.063323][T12657] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  333.086155][ T2040] usb 2-1: Direct firmware load for v4l-pvrusb2-73xxx-01.fw failed with error -2
[  333.097745][   T14] usb 2-1: USB disconnect, device number 26
[  333.112719][ T2040] usb 2-1: Falling back to sysfs fallback for: v4l-pvrusb2-73xxx-01.fw
[  333.146462][T11172] EXT4-fs (loop4): unmounting filesystem.
[  333.516932][T12681] loop2: detected capacity change from 0 to 1024
[  333.577402][T12681] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  333.596837][T12685] netlink: 'syz.0.3838': attribute type 1 has an invalid length.
[  333.835055][T12693] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3841'.
[  333.866309][T12693] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3841'.
[  334.143719][T12707] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3848'.
[  334.207174][T12707] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3848'.
[  334.297788][T12711] netlink: 'syz.3.3851': attribute type 2 has an invalid length.
[  334.429984][T12719] loop2: detected capacity change from 0 to 256
[  334.481091][T12719] exfat: Deprecated parameter 'namecase'
[  334.585064][T12719] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  334.787212][T12731] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  334.839487][T12731] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  335.197312][T12746] IPv6: sit2: Disabled Multicast RS
[  335.208745][T12751] loop1: detected capacity change from 0 to 16
[  335.251921][T12751] erofs: (device loop1): mounted with root inode @ nid 36.
[  335.749983][T12771] netlink: 'syz.4.3877': attribute type 21 has an invalid length.
[  335.792344][T12771] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3877'.
[  335.798931][T12774] loop1: detected capacity change from 0 to 256
[  336.170136][T12787] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3886'.
[  336.207319][T12787] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3886'.
[  336.245436][   T26] audit: type=1800 audit(1729029918.988:5560): pid=12792 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3888" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  336.443855][T12788] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3887'.
[  336.472151][T12788] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  336.490718][T12788] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  336.508387][T12788] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  336.535076][T12788] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  336.741853][T12809] netlink: 'syz.1.3899': attribute type 10 has an invalid length.
[  336.807917][T12809] bridge0: port 3(hsr_slave_1) entered blocking state
[  336.814812][T12809] bridge0: port 3(hsr_slave_1) entered disabled state
[  336.902179][T12809] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  336.951493][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  337.670073][T12840] loop4: detected capacity change from 0 to 4096
[  337.698023][T12840] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  337.755723][T12851] netlink: 'syz.0.3918': attribute type 21 has an invalid length.
[  337.783184][T12851] __nla_validate_parse: 4 callbacks suppressed
[  337.783478][T12851] netlink: 128 bytes leftover after parsing attributes in process `syz.0.3918'.
[  337.839977][T12840] ntfs3: loop4: failed to convert "c46c" to cp874
[  337.854660][T12851] netlink: 'syz.0.3918': attribute type 5 has an invalid length.
[  337.899765][T12851] netlink: 'syz.0.3918': attribute type 6 has an invalid length.
[  337.924195][T12851] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3918'.
[  338.758674][ T3689] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  339.022139][ T3689] usb 5-1: Using ep0 maxpacket: 32
[  339.167439][ T3689] usb 5-1: config 0 has an invalid interface number: 113 but max is 0
[  339.187135][ T3689] usb 5-1: config 0 has no interface number 0
[  339.194171][ T3689] usb 5-1: config 0 interface 113 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 1023
[  339.259314][T12902] loop0: detected capacity change from 0 to 4096
[  339.300850][T12902] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  339.327841][T12902] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  339.341859][T12902] ntfs: (device loop0): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  339.355196][T12902] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  339.392195][T12902] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  339.417591][ T3689] usb 5-1: New USB device found, idVendor=0525, idProduct=1080, bcdDevice=58.5f
[  339.426719][ T3689] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  339.436958][T12902] ntfs: volume version 3.1.
[  339.446129][ T3689] usb 5-1: Product: syz
[  339.455951][ T3689] usb 5-1: Manufacturer: syz
[  339.461312][T12902] ntfs: (device loop0): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  339.473149][ T3689] usb 5-1: SerialNumber: syz
[  339.487410][T12902] ntfs: (device loop0): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  339.519010][ T3689] usb 5-1: config 0 descriptor??
[  339.537476][T12878] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  339.547610][T12902] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  339.569573][T12902] ntfs: (device loop0): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  339.763121][T12878] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  339.822000][ T3689] net1080 5-1:0.113 usb0: register 'net1080' at usb-dummy_hcd.4-1, NetChip TurboCONNECT, be:31:39:94:f3:a0
[  340.003854][ T5951] usb 5-1: USB disconnect, device number 21
[  340.021660][ T5951] net1080 5-1:0.113 usb0: unregister 'net1080' usb-dummy_hcd.4-1, NetChip TurboCONNECT
[  340.675359][T12947] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3961'.
[  340.708605][T12947] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3961'.
[  340.735767][T12947] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3961'.
[  341.001032][T12964] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3977'.
[  341.139490][T12963] block device autoloading is deprecated and will be removed.
[  341.178844][T12967] netlink: 'syz.4.3968': attribute type 10 has an invalid length.
[  341.232265][T12967] bridge0: port 2(bridge_slave_1) entered disabled state
[  341.241421][T12967] bridge0: port 1(bridge_slave_0) entered disabled state
[  341.282063][T12971] loop1: detected capacity change from 0 to 764
[  341.330530][T12967] bridge0: port 2(bridge_slave_1) entered blocking state
[  341.337730][T12967] bridge0: port 2(bridge_slave_1) entered forwarding state
[  341.345237][T12967] bridge0: port 1(bridge_slave_0) entered blocking state
[  341.352448][T12967] bridge0: port 1(bridge_slave_0) entered forwarding state
[  341.411009][T12967] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  341.452177][T12975] loop0: detected capacity change from 0 to 512
[  341.497938][T12975] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  341.533968][T12975] UDF-fs: Scanning with blocksize 512 failed
[  341.624021][T12975] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  341.668033][T12975] UDF-fs: Scanning with blocksize 1024 failed
[  341.686117][T12983] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3975'.
[  341.727059][T12975] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  341.737126][T12975] UDF-fs: Scanning with blocksize 2048 failed
[  341.777725][T12975] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  341.792945][T12989] program syz.2.3978 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  341.806358][T12990] cgroup: Need name or subsystem set
[  341.816033][T12975] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  341.991327][T12995] random: crng reseeded on system resumption
[  342.111055][T13002] loop1: detected capacity change from 0 to 8
[  342.187990][T13002] SQUASHFS error: Unable to read directory block [629:26]
[  342.653149][T13011] loop2: detected capacity change from 0 to 4096
[  342.729079][T13011] __ntfs_error: 7 callbacks suppressed
[  342.729176][T13011] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  342.808924][T13011] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  342.882682][T13025] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3992'.
[  342.897565][T13011] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  342.937341][T13011] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  343.007482][T13011] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  343.068697][T13011] ntfs: volume version 3.1.
[  343.100384][T13011] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  343.147485][T13031] x_tables: duplicate entry at hook 2
[  343.162358][T13011] ntfs: (device loop2): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  343.238170][T13011] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  343.297141][T13011] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  343.347203][T13011] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  343.462067][T13040] netlink: 'syz.3.4008': attribute type 30 has an invalid length.
[  343.478898][T13035] loop4: detected capacity change from 0 to 4096
[  343.774106][T13008] loop0: detected capacity change from 0 to 32768
[  343.882527][T13008] read_mapping_page failed!
[  343.904874][T13008] ialloc: diAlloc returned -5!
[  343.938291][T13049] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  343.977611][T13049] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  344.169881][T13057] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4005'.
[  344.198106][T13057] netlink: 21 bytes leftover after parsing attributes in process `syz.3.4005'.
[  344.250577][T13057] netlink: 21 bytes leftover after parsing attributes in process `syz.3.4005'.
[  344.487241][T13065] netlink: 'syz.3.4010': attribute type 10 has an invalid length.
[  344.505469][T13065] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4010'.
[  344.507191][T13063] loop2: detected capacity change from 0 to 2048
[  344.525754][T13065] bridge0: port 3(hsr_slave_1) entered blocking state
[  344.533632][T13065] bridge0: port 3(hsr_slave_1) entered disabled state
[  344.542818][T13065] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  344.567576][ T3689] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  344.844072][T13072] device bridge2 entered promiscuous mode
[  344.847335][ T3689] usb 5-1: Using ep0 maxpacket: 16
[  344.998904][ T3689] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 8
[  345.187457][ T3689] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  345.226219][T13079] tmpfs: Bad value for 'mpol'
[  345.231323][ T3689] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  345.243248][T13053] loop1: detected capacity change from 0 to 40427
[  345.257793][ T3689] usb 5-1: Product: syz
[  345.262013][ T3689] usb 5-1: Manufacturer: syz
[  345.277432][T13053] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  345.307223][ T3689] usb 5-1: SerialNumber: syz
[  345.316020][T13053] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  345.348300][ T3689] usb 5-1: config 0 descriptor??
[  345.356117][T13053] F2FS-fs (loop1): invalid crc value
[  345.381774][T13085] xt_TCPMSS: Only works on TCP SYN packets
[  345.398860][ T3689] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  345.417864][ T3689] usb 5-1: Detected FT232R
[  345.423508][T13053] F2FS-fs (loop1): Found nat_bits in checkpoint
[  345.586848][T13053] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  345.597336][T13053] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  345.757595][ T5951] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  345.837999][ T3689] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  345.867320][ T3689] ftdi_sio 5-1:0.0: GPIO initialisation failed: -71
[  345.877906][ T3689] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  345.917640][ T3689] usb 5-1: USB disconnect, device number 22
[  345.940231][ T3689] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  345.968320][ T3689] ftdi_sio 5-1:0.0: device disconnected
[  345.997337][ T5951] usb 4-1: Using ep0 maxpacket: 16
[  346.086289][T13103] netlink: 'syz.1.4025': attribute type 2 has an invalid length.
[  346.122940][ T5951] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  346.315455][ T5951] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55
[  346.334862][ T5951] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  346.350346][T13096] loop0: detected capacity change from 0 to 32768
[  346.363345][ T5951] usb 4-1: Product: syz
[  346.380781][ T5951] usb 4-1: Manufacturer: syz
[  346.392894][ T5951] usb 4-1: SerialNumber: syz
[  346.403654][ T5951] usb 4-1: config 0 descriptor??
[  346.491254][T13096] XFS (loop0): Mounting V5 Filesystem
[  346.528965][ T5951] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  346.545991][T13123] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  346.566201][T13123] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  346.625944][T13096] XFS (loop0): Ending clean mount
[  346.642527][T13096] XFS (loop0): Quotacheck needed: Please wait.
[  346.703727][ T3688] usb 4-1: USB disconnect, device number 19
[  346.717610][T10726] usb 4-1: Failed to submit usb control message: -71
[  346.741989][T13096] XFS (loop0): Quotacheck: Done.
[  346.787511][T10726] usb 4-1: unable to send the bmi data to the device: -71
[  346.838760][T10726] usb 4-1: unable to get target info from device
[  346.845154][T10726] usb 4-1: could not get target info (-71)
[  346.895946][T10726] usb 4-1: could not probe fw (-71)
[  346.920188][ T3639] XFS (loop0): Unmounting Filesystem
[  348.024163][T13174] loop0: detected capacity change from 0 to 256
[  348.055115][T13177] xt_l2tp: wrong L2TP version: 0
[  348.140378][ T3744] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  348.245188][T13184] netlink: 'syz.3.4062': attribute type 10 has an invalid length.
[  348.307987][T13184] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.316374][T13184] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.363396][T13184] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.370615][T13184] bridge0: port 2(bridge_slave_1) entered forwarding state
[  348.378138][T13184] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.385298][T13184] bridge0: port 1(bridge_slave_0) entered forwarding state
[  348.515256][T13184] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  348.763059][T13206] netlink: 'syz.1.4073': attribute type 11 has an invalid length.
[  348.855782][ T4558] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  348.902961][   T26] kauditd_printk_skb: 25 callbacks suppressed
[  348.902978][   T26] audit: type=1326 audit(1729029931.668:5580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13209 comm="syz.3.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5617dff9 code=0x7ffc0000
[  348.926033][T13214] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (33026)
[  348.953783][   T26] audit: type=1326 audit(1729029931.708:5581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13209 comm="syz.3.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f0d5617dff9 code=0x7ffc0000
[  348.954720][T13214] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023
[  348.987084][ T3688] usb 3-1: new full-speed USB device number 26 using dummy_hcd
[  349.000487][T13213] libceph: resolve '40.' (ret=-3): failed
[  349.005488][   T26] audit: type=1326 audit(1729029931.708:5582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13209 comm="syz.3.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5617dff9 code=0x7ffc0000
[  349.052733][   T26] audit: type=1326 audit(1729029931.708:5583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13209 comm="syz.3.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5617dff9 code=0x7ffc0000
[  349.251824][T13225] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  349.367372][ T3688] usb 3-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32
[  349.385773][ T3688] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.397380][ T4558] usb 1-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64
[  349.416831][ T4558] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  349.445592][ T3688] usb 3-1: config 0 descriptor??
[  349.450962][ T4558] usb 1-1: Product: syz
[  349.455160][ T4558] usb 1-1: Manufacturer: syz
[  349.481466][ T4558] usb 1-1: SerialNumber: syz
[  349.499166][ T3688] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  349.509910][ T4558] usb 1-1: config 0 descriptor??
[  349.555075][ T4558] hub 1-1:0.0: bad descriptor, ignoring hub
[  349.559675][T13230] loop1: detected capacity change from 0 to 4096
[  349.567693][ T4558] hub: probe of 1-1:0.0 failed with error -5
[  349.568448][ T4558] f81232 1-1:0.0: f81534a converter detected
[  349.580770][T13233] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4085'.
[  349.614862][T13230] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  349.637235][T13230] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  349.690773][T13230] ntfs: (device loop1): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  349.716280][T13230] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  349.730721][T13230] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  349.745053][T13230] ntfs: volume version 3.1.
[  349.751943][T13230] ntfs: (device loop1): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  349.778474][ T4558] usb 1-1: f81534a converter now attached to ttyUSB0
[  349.930939][ T3688] gp8psk: usb out operation failed.
[  349.936232][ T3688] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  349.981112][ T3688] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  350.012620][ T3688] usb 3-1: USB disconnect, device number 26
[  350.167364][ T4558] usb 1-1: USB disconnect, device number 21
[  350.184941][ T4558] f81534a ttyUSB0: f81534a converter now disconnected from ttyUSB0
[  350.209040][ T4558] f81232 1-1:0.0: device disconnected
[  350.354821][T13258] futex_wake_op: syz.4.4098 tries to shift op by 32; fix this program
[  350.775829][T13274] cgroup: Name too long
[  351.417373][   T22] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  351.638122][T13309] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  351.675981][T13309] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  351.707449][   T22] usb 5-1: Using ep0 maxpacket: 32
[  351.908530][T13318] netlink: 'syz.2.4128': attribute type 1 has an invalid length.
[  352.007583][   T22] usb 5-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=ba.e3
[  352.016681][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.057102][   T22] usb 5-1: Product: syz
[  352.068415][   T22] usb 5-1: Manufacturer: syz
[  352.073151][   T22] usb 5-1: SerialNumber: syz
[  352.106851][   T22] usb 5-1: config 0 descriptor??
[  352.112430][T13324] netlink: 'syz.0.4129': attribute type 10 has an invalid length.
[  352.138644][T13324] bridge0: port 3(team0) entered disabled state
[  352.145297][T13324] bridge0: port 2(bridge_slave_1) entered disabled state
[  352.146127][T13289] loop1: detected capacity change from 0 to 32768
[  352.152600][T13324] bridge0: port 1(bridge_slave_0) entered disabled state
[  352.281043][T13289] XFS (loop1): Mounting V5 Filesystem
[  352.298157][T13324] bridge0: port 3(team0) entered blocking state
[  352.304726][T13324] bridge0: port 3(team0) entered forwarding state
[  352.311455][T13324] bridge0: port 2(bridge_slave_1) entered blocking state
[  352.318666][T13324] bridge0: port 2(bridge_slave_1) entered forwarding state
[  352.326190][T13324] bridge0: port 1(bridge_slave_0) entered blocking state
[  352.333406][T13324] bridge0: port 1(bridge_slave_0) entered forwarding state
[  352.412041][T13324] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  352.462823][T13289] XFS (loop1): Ending clean mount
[  352.491849][T13289] XFS (loop1): Quotacheck needed: Please wait.
[  352.606420][ T3689] usb 5-1: USB disconnect, device number 23
[  352.624724][T13289] XFS (loop1): Quotacheck: Done.
[  352.640733][ T3689] f81534a_ctrl 5-1:0.0: failed to set register 0x116: -19
[  352.677371][ T3689] f81534a_ctrl 5-1:0.0: failed to enable ports: -19
[  352.834074][ T3652] XFS (loop1): Unmounting Filesystem
[  352.849067][T13354] ieee802154 phy0 wpan0: encryption failed: -22
[  353.519480][T13376] loop1: detected capacity change from 0 to 64
[  353.887309][ T3969] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  354.003855][T13396] random: crng reseeded on system resumption
[  354.133908][T13402] loop4: detected capacity change from 0 to 64
[  354.147249][ T3969] usb 1-1: Using ep0 maxpacket: 16
[  354.278906][ T3969] usb 1-1: config 0 has no interfaces?
[  354.332903][T13404] loop2: detected capacity change from 0 to 2048
[  354.392818][T13404] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  354.466362][T13409] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  354.497220][ T3969] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  354.506325][ T3969] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.562173][T13404] NILFS (loop2): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157
[  354.577083][ T3969] usb 1-1: Product: syz
[  354.581301][ T3969] usb 1-1: Manufacturer: syz
[  354.589490][ T3969] usb 1-1: SerialNumber: syz
[  354.597475][T13404] NILFS error (device loop2): nilfs_bmap_last_key: broken bmap (inode number=16)
[  354.627443][ T3969] r8152-cfgselector 1-1: config 0 descriptor??
[  354.636646][T13404] Remounting filesystem read-only
[  354.667374][T13404] NILFS (loop2): error -5 truncating bmap (ino=16)
[  354.757754][ T3646] NILFS (loop2): discard dirty page: offset=4096, ino=6
[  354.764843][ T3646] NILFS (loop2): discard dirty block: blocknr=39, size=1024
[  354.784175][ T3646] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  354.803657][ T3646] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  354.813973][ T3646] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  354.824245][ T3646] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[  354.877590][ T3969] r8152-cfgselector 1-1: Unknown version 0x0000
[  354.932879][T13421] loop2: detected capacity change from 0 to 47
[  355.044651][T13425] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4176'.
[  355.044904][T13424] loop1: detected capacity change from 0 to 164
[  355.060477][ T3688] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  355.107601][ T3969] r8152-cfgselector 1-1: USB disconnect, device number 22
[  355.427561][ T3688] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  355.462826][ T3688] usb 4-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  355.502794][ T3688] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.590838][ T3688] gspca_main: stv0680-2.14.0 probing 041e:4007
[  355.676257][T13447] loop4: detected capacity change from 0 to 128
[  355.813530][T13453] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4190'.
[  356.371603][T13462] loop0: detected capacity change from 0 to 4096
[  356.403765][T13462] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  356.496220][T13462] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  356.677394][ T3688] stv0680 4-1:4.0: STV(e): camera ping failed!!
[  356.887354][ T3688] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  356.895701][ T3688] stv0680 4-1:4.0: last error: 0,  command = 0x0
[  356.939264][ T3688] usb 4-1: USB disconnect, device number 20
[  357.310626][T13502] loop0: detected capacity change from 0 to 4096
[  357.335778][T13502] EXT4-fs: Ignoring removed nobh option
[  357.346721][T13507] loop2: detected capacity change from 0 to 512
[  357.406590][T13502] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  357.426488][T13507] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters
[  357.449241][T13512] netlink: 'syz.4.4217': attribute type 5 has an invalid length.
[  357.509345][T13507] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.4216: invalid indirect mapped block 4278190080 (level 0)
[  357.528519][T13507] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.4216: invalid indirect mapped block 1 (level 1)
[  357.542552][T13507] EXT4-fs (loop2): 1 truncate cleaned up
[  357.563914][T13507] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  357.577495][T13502] __quota_error: 10 callbacks suppressed
[  357.577514][T13502] Quota error (device loop0): find_block_dqentry: Quota for id 0 referenced but not present
[  357.595558][T13507] EXT4-fs error (device loop2): __ext4_remount:6448: comm syz.2.4216: Abort forced by user
[  357.627518][T13482] loop1: detected capacity change from 0 to 32768
[  357.634680][T13482] XFS: noikeep mount option is deprecated.
[  357.641095][T13502] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  357.654821][T13507] EXT4-fs (loop2): Remounting filesystem read-only
[  357.677232][T13482] XFS: attr2 mount option is deprecated.
[  357.693180][T13502] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.4213: Failed to acquire dquot type 1
[  357.795138][T13482] XFS (loop1): Mounting V5 Filesystem
[  357.814858][ T3646] EXT4-fs (loop2): unmounting filesystem.
[  357.875788][ T3639] EXT4-fs (loop0): unmounting filesystem.
[  357.941260][T13482] XFS (loop1): Ending clean mount
[  357.949127][T13482] XFS (loop1): Quotacheck needed: Please wait.
[  358.085941][T13482] XFS (loop1): Quotacheck: Done.
[  358.285781][ T3652] XFS (loop1): Unmounting Filesystem
[  358.356631][T13545] loop2: detected capacity change from 0 to 128
[  358.422365][T13545] VFS: Found a Xenix FS (block size = 1024) on device loop2
[  358.530859][ T3646] sysv_free_block: flc_count > flc_size
[  358.536479][ T3646] sysv_free_block: flc_count > flc_size
[  358.566850][ T3646] sysv_free_block: flc_count > flc_size
[  358.577786][ T3646] sysv_free_block: flc_count > flc_size
[  358.583374][ T3646] sysv_free_block: flc_count > flc_size
[  358.609436][T13551] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4233'.
[  358.618831][ T3646] sysv_free_block: flc_count > flc_size
[  358.624408][ T3646] sysv_free_block: flc_count > flc_size
[  358.630652][ T3646] sysv_free_block: flc_count > flc_size
[  358.636747][ T3646] sysv_free_block: flc_count > flc_size
[  358.697063][ T3646] sysv_free_block: flc_count > flc_size
[  358.705531][ T3646] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  359.054323][T13567] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  359.727481][T13593] netlink: 'syz.3.4252': attribute type 21 has an invalid length.
[  359.772369][T13593] netlink: 160 bytes leftover after parsing attributes in process `syz.3.4252'.
[  360.050933][T13608] loop0: detected capacity change from 0 to 64
[  360.694150][T13577] loop4: detected capacity change from 0 to 32768
[  360.748965][T13577] 
[  360.748965][T13577]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  360.748965][T13577] 
[  360.903464][T11172] 
[  360.903464][T11172]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  360.903464][T11172] 
[  360.978872][T11172] 
[  360.978872][T11172]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  360.978872][T11172] 
[  361.107415][T13646] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (31)
[  361.793721][T13673] IPv6: NLM_F_CREATE should be specified when creating new route
[  362.016667][T13681] loop1: detected capacity change from 0 to 47
[  362.279028][T13696] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4303'.
[  362.457124][ T4558] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  362.697179][ T4558] usb 1-1: Using ep0 maxpacket: 16
[  362.817379][ T4558] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  363.007334][ T4558] usb 1-1: New USB device found, idVendor=0979, idProduct=0227, bcdDevice=36.cd
[  363.031073][ T4558] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  363.067136][ T4558] usb 1-1: Product: syz
[  363.081598][ T4558] usb 1-1: Manufacturer: syz
[  363.086449][ T4558] usb 1-1: SerialNumber: syz
[  363.115697][ T4558] usb 1-1: config 0 descriptor??
[  363.179306][ T4558] gspca_main: jl2005bcd-2.14.0 probing 0979:0227
[  363.185954][ T4558] command write [95] error -22
[  363.390846][ T4558] usb 1-1: USB disconnect, device number 23
[  363.844085][T13706] loop2: detected capacity change from 0 to 40427
[  363.856569][T13706] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  363.884628][T13706] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  363.904165][T13743] loop1: detected capacity change from 0 to 4096
[  363.936396][T13706] F2FS-fs (loop2): invalid crc value
[  363.947146][T13743] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  364.000280][T13706] F2FS-fs (loop2): Found nat_bits in checkpoint
[  364.033448][T13743] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  364.051869][T13743] ntfs3: loop1: mft corrupted
[  364.056692][T13743] ntfs3: loop1: Failed to load $Extend.
[  364.191979][T13706] F2FS-fs (loop2): Start checkpoint disabled!
[  364.251725][T13706] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  364.261410][T13706] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  364.321906][T13729] loop4: detected capacity change from 0 to 32768
[  364.329099][T13706] F2FS-fs (loop2): switch discard_unit option is not allowed
[  364.413309][T13729] 
[  364.413309][T13729]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  364.413309][T13729] 
[  364.485014][T13729] ialloc: diAlloc returned -5!
[  364.649746][T11172] 
[  364.649746][T11172]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  364.649746][T11172] 
[  364.706301][T11172] 
[  364.706301][T11172]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  364.706301][T11172] 
[  365.205389][T13787] loop2: detected capacity change from 0 to 64
[  365.289969][T13787] syz.2.4345: attempt to access beyond end of device
[  365.289969][T13787] loop2: rw=0, sector=2590, nr_sectors = 2 limit=64
[  365.332777][T13787] Buffer I/O error on dev loop2, logical block 1295, async page read
[  365.387424][T13787] syz.2.4345: attempt to access beyond end of device
[  365.387424][T13787] loop2: rw=0, sector=2590, nr_sectors = 2 limit=64
[  365.444986][T13787] Buffer I/O error on dev loop2, logical block 1295, async page read
[  365.487167][   T26] audit: type=1800 audit(1729029948.248:5584): pid=13787 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4345" name="file2" dev="loop2" ino=6 res=0 errno=0
[  365.629020][T13798] loop4: detected capacity change from 0 to 2048
[  365.666220][T13802] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (31)
[  365.717668][T13798] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  365.912250][T13812] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4358'.
[  366.012476][T13816] 9pnet_virtio: no channels available for device syz
[  366.078343][T13818] loop2: detected capacity change from 0 to 512
[  366.170470][T13825] cgroup: No subsys list or none specified
[  366.484485][T13818] EXT4-fs (loop2): Test dummy encryption mode enabled
[  366.523899][T13836] loop1: detected capacity change from 0 to 4096
[  366.562458][T13818] EXT4-fs error (device loop2): __ext4_iget:5055: inode #11: block 1: comm syz.2.4363: invalid block
[  366.575118][T13836] EXT4-fs: Ignoring removed nobh option
[  366.585057][T13818] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.4363: couldn't read orphan inode 11 (err -117)
[  366.658084][T13836] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  366.675280][T13818] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  366.684342][T13849] device bridge1 entered promiscuous mode
[  366.747179][T13836] Quota error (device loop1): find_block_dqentry: Quota for id 0 referenced but not present
[  366.788596][T13836] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  366.843815][T13836] EXT4-fs error (device loop1): ext4_acquire_dquot:6800: comm syz.1.4368: Failed to acquire dquot type 1
[  366.954294][ T3646] EXT4-fs (loop2): unmounting filesystem.
[  367.068786][ T3652] EXT4-fs (loop1): unmounting filesystem.
[  367.249214][T13861] loop0: detected capacity change from 0 to 1764
[  368.154257][T13900] loop4: detected capacity change from 0 to 4096
[  368.198761][T13900] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512)
[  368.298597][T13900] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  368.579838][T11172] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22.
[  368.703919][T13926] netlink: 224 bytes leftover after parsing attributes in process `syz.0.4407'.
[  369.031389][T13941] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  369.043064][T13943] netlink: 'syz.0.4415': attribute type 10 has an invalid length.
[  369.077245][T13943] device ipvlan1 entered promiscuous mode
[  369.107803][T13943] batman_adv: batadv0: Adding interface: ipvlan1
[  369.164118][T13943] batman_adv: batadv0: The MTU of interface ipvlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  369.219305][T13936] loop2: detected capacity change from 0 to 4096
[  369.239207][T13943] batman_adv: batadv0: Interface activated: ipvlan1
[  369.258655][T13936] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[  369.277686][T13950] netlink: 'syz.4.4421': attribute type 21 has an invalid length.
[  369.299598][T13950] netlink: 100 bytes leftover after parsing attributes in process `syz.4.4421'.
[  369.339474][T13936] ntfs3: loop2: ntfs_sync_fs r=1a failed, -22.
[  369.345935][T13936] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  369.366311][T13936] ntfs3: loop2: ntfs_evict_inode r=1a failed, -22.
[  369.831203][T13974] loop0: detected capacity change from 0 to 256
[  369.986403][T13974] FAT-fs (loop0): Directory bread(block 64) failed
[  369.997387][   T22] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  370.013698][T13974] FAT-fs (loop0): Directory bread(block 65) failed
[  370.044225][T13974] FAT-fs (loop0): Directory bread(block 66) failed
[  370.074539][T13974] FAT-fs (loop0): Directory bread(block 67) failed
[  370.115166][T13974] FAT-fs (loop0): Directory bread(block 68) failed
[  370.122376][T13974] FAT-fs (loop0): Directory bread(block 69) failed
[  370.148980][T13974] FAT-fs (loop0): Directory bread(block 70) failed
[  370.164634][T13974] FAT-fs (loop0): Directory bread(block 71) failed
[  370.174774][T13986] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4439'.
[  370.187385][T13974] FAT-fs (loop0): Directory bread(block 72) failed
[  370.204291][T13974] FAT-fs (loop0): Directory bread(block 73) failed
[  370.392583][   T22] usb 3-1: config 0 interface 0 has no altsetting 0
[  370.399536][   T22] usb 3-1: New USB device found, idVendor=0e41, idProduct=4150, bcdDevice=1f.c8
[  370.409435][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.446778][   T22] usb 3-1: config 0 descriptor??
[  370.510137][   T22] snd_usb_toneport 3-1:0.0: Line 6 POD Studio UX1 found
[  370.562950][T13996] netlink: 7 bytes leftover after parsing attributes in process `syz.3.4445'.
[  370.718535][   T22] snd_usb_toneport 3-1:0.0: cannot get proper max packet size
[  370.726215][   T22] snd_usb_toneport 3-1:0.0: Line 6 POD Studio UX1 now disconnected
[  370.798808][   T22] snd_usb_toneport: probe of 3-1:0.0 failed with error -22
[  370.921350][ T3688] usb 3-1: USB disconnect, device number 27
[  371.246846][   T26] audit: type=1326 audit(1729029954.008:5585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14027 comm="syz.0.4459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  371.327068][   T26] audit: type=1326 audit(1729029954.038:5586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14027 comm="syz.0.4459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  371.392063][   T26] audit: type=1326 audit(1729029954.048:5587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14027 comm="syz.0.4459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  371.457224][   T26] audit: type=1326 audit(1729029954.048:5588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14027 comm="syz.0.4459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  371.588203][   T26] audit: type=1326 audit(1729029954.048:5589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14027 comm="syz.0.4459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  371.981656][T14049] loop0: detected capacity change from 0 to 2048
[  372.054735][T14049] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  372.109491][   T26] audit: type=1800 audit(1729029954.878:5590): pid=14049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.4468" name="bus" dev="loop0" ino=1367 res=0 errno=0
[  372.144851][T14059] delete_channel: no stack
[  372.580900][T14074] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  373.148221][T14096] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4503'.
[  373.194250][T14096] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  373.229854][T14096] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  373.557304][T14110] ebt_limit: overflow, try lower: 570423552/2483027968
[  373.883209][T14070] loop0: detected capacity change from 0 to 40427
[  373.981724][T14070] F2FS-fs (loop0): Found nat_bits in checkpoint
[  374.053916][T14129] loop2: detected capacity change from 0 to 256
[  374.100705][T14070] F2FS-fs (loop0): Cannot turn on quotas: -2 on 2
[  374.135524][T14070] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  374.871993][T14114] loop1: detected capacity change from 0 to 32768
[  374.968630][T14114] Dev loop1 Sun disklabel: Csum bad, label corrupted
[  375.109745][ T3093] Dev loop1 Sun disklabel: Csum bad, label corrupted
[  375.294739][T14168] netlink: 399 bytes leftover after parsing attributes in process `syz.2.4525'.
[  375.331106][T14168] openvswitch: netlink: ufid size 36 bytes exceeds the range (1, 16)
[  375.370117][T14168] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  375.817100][ T4558] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  375.834430][T14154] loop4: detected capacity change from 0 to 32768
[  375.929113][T14154] __jfs_setxattr: xattr_size = 1857, new_size = 2089
[  376.077294][ T4558] usb 4-1: Using ep0 maxpacket: 32
[  376.175098][T14190] MTD: Couldn't look up '': -22
[  376.197290][ T4558] usb 4-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  376.217404][ T4558] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.257389][ T4558] usb 4-1: config 0 descriptor??
[  376.299569][ T4558] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  376.510688][T14199] kAFS: unparsable volume name
[  376.517194][ T4558] gspca_vc032x: reg_r err -71
[  376.521984][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.538381][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.543721][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.561800][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.577408][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.584046][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.584860][T14196] loop4: detected capacity change from 0 to 4096
[  376.607099][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.617482][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.631195][T14196] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  376.654500][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.682408][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.711805][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.727198][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.741406][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.780091][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.785457][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.807428][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.822752][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.847103][ T4558] gspca_vc032x: I2c Bus Busy Wait 00
[  376.852680][ T4558] gspca_vc032x: Unknown sensor...
[  376.867349][T14196] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  376.870136][ T4558] vc032x: probe of 4-1:0.0 failed with error -22
[  376.894791][T14208] loop2: detected capacity change from 0 to 256
[  376.907752][ T4558] usb 4-1: USB disconnect, device number 21
[  376.916386][T14196] ntfs3: loop4: mft corrupted
[  376.922139][T14196] ntfs3: loop4: Failed to load $Extend.
[  377.000546][T14208] FAT-fs (loop2): Directory bread(block 64) failed
[  377.014854][T14210] loop0: detected capacity change from 0 to 2048
[  377.021892][T14208] FAT-fs (loop2): Directory bread(block 65) failed
[  377.039830][T14210] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  377.053736][T14208] FAT-fs (loop2): Directory bread(block 66) failed
[  377.074567][T14208] FAT-fs (loop2): Directory bread(block 67) failed
[  377.085072][T14210] syz.0.4547: attempt to access beyond end of device
[  377.085072][T14210] loop0: rw=0, sector=1125899906842706, nr_sectors = 2 limit=2048
[  377.127842][T14208] FAT-fs (loop2): Directory bread(block 68) failed
[  377.134571][T14208] FAT-fs (loop2): Directory bread(block 69) failed
[  377.134850][ T6091] udevd[6091]: incorrect nilfs2 checksum on /dev/loop0
[  377.152246][T14208] FAT-fs (loop2): Directory bread(block 70) failed
[  377.162025][T14210] NILFS (loop0): I/O error reading meta-data file (ino=5, block-offset=0)
[  377.181920][T14208] FAT-fs (loop2): Directory bread(block 71) failed
[  377.190740][T14210] NILFS (loop0): error -5 while loading super root
[  377.214448][T14208] FAT-fs (loop2): Directory bread(block 72) failed
[  377.230575][T14208] FAT-fs (loop2): Directory bread(block 73) failed
[  377.318710][T14214] loop1: detected capacity change from 0 to 1024
[  377.373300][T14214] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  377.433839][T14214] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  leaving read-only.
[  377.461098][T14210] loop0: detected capacity change from 0 to 2048
[  377.569668][T14210] NILFS (loop0): corrupt root inode
[  378.490069][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[  378.496416][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  379.701639][T14309] netlink: 'syz.2.4607': attribute type 8 has an invalid length.
[  379.906931][T14316] loop4: detected capacity change from 0 to 2048
[  379.925027][T14316] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  379.997021][   T26] audit: type=1800 audit(1729029962.758:5591): pid=14316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4599" name="bus" dev="loop4" ino=1367 res=0 errno=0
[  380.107865][T14322] ieee802154 phy0 wpan0: encryption failed: -90
[  381.036304][T14358] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4621'.
[  381.065949][T14324] loop2: detected capacity change from 0 to 32768
[  381.093366][T14324] XFS: attr2 mount option is deprecated.
[  381.107189][T14324] XFS: attr2 mount option is deprecated.
[  381.123794][T14324] XFS: ikeep mount option is deprecated.
[  381.133181][T14324] XFS: noikeep mount option is deprecated.
[  381.147237][ T5951] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  381.231458][T14324] XFS (loop2): Mounting V5 Filesystem
[  381.299375][T14374] netlink: 'syz.4.4626': attribute type 21 has an invalid length.
[  381.310673][T14374] netlink: 128 bytes leftover after parsing attributes in process `syz.4.4626'.
[  381.321961][T14374] netlink: 'syz.4.4626': attribute type 4 has an invalid length.
[  381.329898][T14374] netlink: 'syz.4.4626': attribute type 5 has an invalid length.
[  381.337805][T14374] netlink: 3 bytes leftover after parsing attributes in process `syz.4.4626'.
[  381.401271][T14324] XFS (loop2): Ending clean mount
[  381.439886][T14324] XFS (loop2): Quotacheck needed: Please wait.
[  381.527318][ T5951] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  381.564366][ T5951] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  381.591553][T14324] XFS (loop2): Quotacheck: Done.
[  381.657314][ T5951] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  381.676864][ T5951] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  381.696517][ T5951] usb 4-1: SerialNumber: syz
[  381.729518][ T3646] XFS (loop2): Unmounting Filesystem
[  381.847577][T14386] netlink: 256 bytes leftover after parsing attributes in process `syz.0.4633'.
[  382.016008][ T5951] usb 4-1: 0:2 : does not exist
[  382.124243][ T5951] usb 4-1: USB disconnect, device number 22
[  382.163903][ T3744] udevd[3744]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  382.211674][T14380] loop4: detected capacity change from 0 to 32768
[  382.331948][T14380] XFS (loop4): Mounting V5 Filesystem
[  382.487382][T14380] XFS (loop4): Ending clean mount
[  382.618519][T11172] XFS (loop4): Unmounting Filesystem
[  383.228634][T14436] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4654'.
[  383.264584][T14437] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4653'.
[  383.274117][T14436] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4654'.
[  383.513587][T14449] netlink: 48 bytes leftover after parsing attributes in process `syz.2.4658'.
[  383.714094][T14456] loop1: detected capacity change from 0 to 256
[  383.955588][T14460] netlink: 68 bytes leftover after parsing attributes in process `syz.2.4665'.
[  384.431430][T14477] tmpfs: Bad value for 'mpol'
[  384.592427][T14481] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes
[  385.030903][T14451] loop4: detected capacity change from 0 to 32768
[  385.076385][T14451] ea_get: invalid extended attribute
[  385.087105][T14451] ffff888052c19ef0: 30 00 00 00 00 0b 06 00 75 73 65 72 2e 78 61 74  0.......user.xat
[  385.123720][T14451] ffff888052c19f00: 74 72 31 00 78 61 74 74 72 31 00 0b 06 00 75 73  tr1.xattr1....us
[  385.149653][T14451] ffff888052c19f10: 65 72 2e 78 61 74 74 72 32 00 78 61 74 74 72 32  er.xattr2.xattr2
[  385.370895][T14498] netlink: 'syz.2.4681': attribute type 7 has an invalid length.
[  385.399394][T14498] netlink: 'syz.2.4681': attribute type 8 has an invalid length.
[  385.785942][T14465] loop1: detected capacity change from 0 to 32768
[  385.844808][T14465] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  385.870896][T14512] loop0: detected capacity change from 0 to 128
[  385.871041][T14465] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  385.965457][T14465] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  386.035397][ T5951] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  386.044354][ T5951] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  386.228958][ T5951] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 184ms
[  386.236814][ T5951] gfs2: fsid=syz:syz.0: jid=0: Done
[  386.260494][T14465] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  386.493425][T14521] loop2: detected capacity change from 0 to 4096
[  386.509835][T14521] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  386.522267][T14521] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  386.536494][T14521] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  386.549723][T14521] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  386.563575][T14521] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  386.604354][T14521] ntfs: volume version 3.1.
[  386.633073][T14521] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  386.676184][T14521] ntfs: (device loop2): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  386.755772][T14521] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  386.787248][T14521] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  386.817357][T14521] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  386.951113][T14531] loop4: detected capacity change from 0 to 128
[  386.952735][T14532] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  387.462841][T14549] loop0: detected capacity change from 0 to 512
[  387.538403][T14549] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  387.553760][T14549] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01c, mo2=0002]
[  387.565283][T14549] EXT4-fs (loop0): orphan cleanup on readonly fs
[  387.595459][T14549] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279949761 > max in inode 13
[  387.610915][T14549] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279949762 > max in inode 13
[  387.622665][T14549] EXT4-fs (loop0): 1 truncate cleaned up
[  387.628750][T14549] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  387.650226][T14549] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.4708: dx entry: limit 65535 != root limit 120
[  387.654545][T14553] loop2: detected capacity change from 0 to 2048
[  387.694042][T14549] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.4708: Corrupt directory, running e2fsck is recommended
[  387.738220][T14555] loop1: detected capacity change from 0 to 64
[  387.771748][T14553] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  387.840073][T14553] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  387.877393][ T3639] EXT4-fs (loop0): unmounting filesystem.
[  388.084152][T14568] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4716'.
[  388.087880][T14569] loop4: detected capacity change from 0 to 256
[  388.165236][T14569] FAT-fs (loop4): Directory bread(block 64) failed
[  388.203114][T14569] FAT-fs (loop4): Directory bread(block 65) failed
[  388.227265][T14569] FAT-fs (loop4): Directory bread(block 66) failed
[  388.233863][T14569] FAT-fs (loop4): Directory bread(block 67) failed
[  388.277229][T14569] FAT-fs (loop4): Directory bread(block 68) failed
[  388.283847][T14569] FAT-fs (loop4): Directory bread(block 69) failed
[  388.343100][T14569] FAT-fs (loop4): Directory bread(block 70) failed
[  388.387203][T14569] FAT-fs (loop4): Directory bread(block 71) failed
[  388.393938][T14569] FAT-fs (loop4): Directory bread(block 72) failed
[  388.437145][T14569] FAT-fs (loop4): Directory bread(block 73) failed
[  388.948848][T14601] netlink: 'syz.4.4732': attribute type 29 has an invalid length.
[  389.213844][T14614] NILFS (loop0): device size too small
[  389.884683][T14645] loop4: detected capacity change from 0 to 512
[  389.960934][T14645] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  389.997427][T14645] ext4 filesystem being mounted at /264/file0 supports timestamps until 2038 (0x7fffffff)
[  390.120600][T11172] EXT4-fs (loop4): unmounting filesystem.
[  390.495311][T14667] netlink: 'syz.2.4763': attribute type 10 has an invalid length.
[  390.550633][T14667] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  390.675561][T14661] loop0: detected capacity change from 0 to 8192
[  390.705662][T14661] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  390.783365][T14661] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 1046)
[  390.844002][T14661] FAT-fs (loop0): Filesystem has been set read-only
[  390.974504][T14679] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  391.000360][T14638] loop1: detected capacity change from 0 to 32768
[  391.015227][ T3639] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 1046)
[  391.070448][T14638] ERROR: (device loop1): dbAlloc: the hint is outside the map
[  391.070448][T14638] 
[  391.120561][T14683] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4774'.
[  391.192311][T14683] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4774'.
[  391.227588][T14685] netlink: 'syz.2.4775': attribute type 10 has an invalid length.
[  391.251628][   T11] read_mapping_page failed!
[  391.266535][   T11] ERROR: (device loop1): txCommit: 
[  391.266535][   T11] 
[  391.288474][   T11] jfs_write_inode: jfs_commit_inode failed!
[  391.382915][T14685] 8021q: adding VLAN 0 to HW filter on device batadv0
[  391.438167][T14685] team0: Port device batadv0 added
[  391.470147][T14693] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4779'.
[  391.555605][T14695] QAT: Stopping all acceleration devices.
[  392.444240][T14692] loop4: detected capacity change from 0 to 32768
[  392.462799][T14692] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.4778 (14692)
[  392.518615][T14692] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  392.571786][T14729] loop0: detected capacity change from 0 to 512
[  392.589971][T14692] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  392.627212][T14692] BTRFS info (device loop4): using free space tree
[  392.653990][T14729] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  392.696687][T14729] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #15: comm syz.0.4796: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  392.788605][T14729] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.4796: couldn't read orphan inode 15 (err -117)
[  392.819570][T14729] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  392.838031][T14729] ext2 filesystem being mounted at /991/file2 supports timestamps until 2038 (0x7fffffff)
[  392.914810][T14692] BTRFS info (device loop4): enabling ssd optimizations
[  392.966933][T14729] EXT4-fs error (device loop0): ext4_add_entry:2484: inode #2: comm syz.0.4796: Directory hole found for htree leaf block 0
[  393.078417][T11172] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  393.166044][ T3639] EXT4-fs (loop0): unmounting filesystem.
[  393.490366][T14764] loop0: detected capacity change from 0 to 512
[  393.637308][T14764] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  393.684364][T14764] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a00ee01c, mo2=0006]
[  393.767654][T14764] System zones: 0-2, 18-18, 34-35
[  393.773948][T14764] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  393.838964][ T2040] pvrusb2: request_firmware fatal error with code=-110
[  393.845888][ T2040] pvrusb2: Failure uploading firmware1
[  393.868692][T14777] netlink: 'syz.1.4810': attribute type 10 has an invalid length.
[  393.897473][ T2040] pvrusb2: Device initialization was not successful.
[  393.918694][ T2040] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  393.943583][ T2040] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  393.972275][T14777] bond0: (slave bond_slave_0): Releasing backup interface
[  393.987836][   T14] pvrusb2: Device being rendered inoperable
[  394.025698][ T3639] EXT4-fs (loop0): unmounting filesystem.
[  395.217243][   T22] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  395.503249][T14837] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4840'.
[  395.554765][T14839] netlink: 'syz.3.4841': attribute type 3 has an invalid length.
[  395.563023][T14837] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4840'.
[  395.597436][   T22] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  395.600652][T14839] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4841'.
[  395.615964][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  395.616121][T14837] netlink: 5 bytes leftover after parsing attributes in process `syz.0.4840'.
[  395.655379][   T22] usb 3-1: config 0 descriptor??
[  395.687369][T14843] (unnamed net_device) (uninitialized): option arp_interval: invalid value (18446744073709551614)
[  395.712449][T14843] (unnamed net_device) (uninitialized): option arp_interval: allowed values 0 - 2147483647
[  395.797733][T14846] loop1: detected capacity change from 0 to 256
[  395.928905][T14846] FAT-fs (loop1): Directory bread(block 64) failed
[  395.935802][T14846] FAT-fs (loop1): Directory bread(block 65) failed
[  395.987393][T14846] FAT-fs (loop1): Directory bread(block 66) failed
[  395.994006][T14846] FAT-fs (loop1): Directory bread(block 67) failed
[  396.044943][T14846] FAT-fs (loop1): Directory bread(block 68) failed
[  396.074681][T14846] FAT-fs (loop1): Directory bread(block 69) failed
[  396.102190][T14846] FAT-fs (loop1): Directory bread(block 70) failed
[  396.135868][T14846] FAT-fs (loop1): Directory bread(block 71) failed
[  396.149340][   T22] ath6kl: Failed to submit usb control message: -71
[  396.156026][T14846] FAT-fs (loop1): Directory bread(block 72) failed
[  396.156676][   T22] ath6kl: unable to send the bmi data to the device: -71
[  396.166242][T14846] FAT-fs (loop1): Directory bread(block 73) failed
[  396.211607][   T22] ath6kl: Unable to send get target info: -71
[  396.237822][   T22] ath6kl: Failed to init ath6kl core: -71
[  396.395785][   T22] ath6kl_usb: probe of 3-1:0.0 failed with error -71
[  396.437567][   T22] usb 3-1: USB disconnect, device number 28
[  396.568615][T14876] netlink: 404 bytes leftover after parsing attributes in process `syz.3.4859'.
[  396.578677][T14876] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4859'.
[  396.613356][T14876] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4859'.
[  396.632240][T14876] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4859'.
[  396.752745][T14882] netlink: 'syz.0.4862': attribute type 24 has an invalid length.
[  396.897668][T14888] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4864'.
[  397.472611][T14908] loop1: detected capacity change from 0 to 64
[  397.799450][T14920] bridge6: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  397.833225][T14878] loop4: detected capacity change from 0 to 32768
[  397.880586][T14922] IPv6: NLM_F_CREATE should be specified when creating new route
[  397.899359][T14878] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.4860 (14878)
[  397.932412][T14922] netlink: 1 bytes leftover after parsing attributes in process `syz.3.4882'.
[  398.001440][T14878] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  398.033111][T14878] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  398.087465][T14878] BTRFS info (device loop4): using free space tree
[  398.174906][T14940] loop2: detected capacity change from 0 to 256
[  398.206817][T14940] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  398.303136][T14878] BTRFS info (device loop4): enabling ssd optimizations
[  398.427275][T11172] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  398.787484][T14968] xt_TCPMSS: Only works on TCP SYN packets
[  399.585360][   T26] kauditd_printk_skb: 11 callbacks suppressed
[  399.585378][   T26] audit: type=1326 audit(1729029982.348:5597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14997 comm="syz.4.4911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  399.674025][   T26] audit: type=1326 audit(1729029982.408:5598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14997 comm="syz.4.4911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  399.697211][   T27] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  399.756347][   T26] audit: type=1326 audit(1729029982.408:5599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14997 comm="syz.4.4911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  399.855983][   T26] audit: type=1326 audit(1729029982.408:5600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14997 comm="syz.4.4911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4fdb7dff9 code=0x7ffc0000
[  399.947340][   T27] usb 1-1: Using ep0 maxpacket: 32
[  399.984097][T15013] netlink: 'syz.1.4918': attribute type 9 has an invalid length.
[  400.087361][   T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  400.118630][   T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  400.130235][T15018] netlink: 'syz.2.4921': attribute type 10 has an invalid length.
[  400.157422][   T27] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  400.166606][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  400.167856][T15018] bond0: (slave bond_slave_0): Releasing backup interface
[  400.199785][   T27] usb 1-1: config 0 descriptor??
[  400.256527][   T27] hub 1-1:0.0: USB hub found
[  400.467338][   T27] hub 1-1:0.0: 1 port detected
[  400.677286][   T27] hub 1-1:0.0: hub_hub_status failed (err = -71)
[  400.683755][   T27] hub 1-1:0.0: config failed, can't get hub status (err -71)
[  400.766214][T15042] netlink: 'syz.4.4933': attribute type 30 has an invalid length.
[  400.837249][   T27] usbhid 1-1:0.0: can't add hid device: -71
[  400.843830][   T27] usbhid: probe of 1-1:0.0 failed with error -71
[  400.855602][T15046] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  400.887776][   T27] usb 1-1: USB disconnect, device number 24
[  401.376431][T15061] loop4: detected capacity change from 0 to 512
[  401.434635][T15061] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  401.449193][T15056] loop1: detected capacity change from 0 to 4096
[  401.514706][T15061] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a00ee01c, mo2=0006]
[  401.536087][T15056] ntfs3: loop1: Failed to load $Extend.
[  401.573583][T15061] System zones: 0-2, 18-18, 34-35
[  401.602365][T15061] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  401.718677][T15066] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  401.849888][T11172] EXT4-fs (loop4): unmounting filesystem.
[  401.892938][T15072] libceph: resolve '0..' (ret=-3): failed
[  401.919715][T15077] loop0: detected capacity change from 0 to 8
[  402.212581][T15085] loop2: detected capacity change from 0 to 1024
[  402.306726][   T26] audit: type=1326 audit(1729029985.068:5601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15090 comm="syz.0.4956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  402.340511][T15085] hfsplus: xattr searching failed
[  402.376721][   T26] audit: type=1326 audit(1729029985.068:5602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15090 comm="syz.0.4956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  402.494852][   T26] audit: type=1326 audit(1729029985.118:5603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15090 comm="syz.0.4956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  402.598605][   T26] audit: type=1326 audit(1729029985.118:5604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15090 comm="syz.0.4956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  402.681643][T15106] loop2: detected capacity change from 0 to 64
[  402.693674][   T26] audit: type=1326 audit(1729029985.118:5605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15090 comm="syz.0.4956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff025b7dff9 code=0x7ffc0000
[  402.779875][T15106] syz.2.4962: attempt to access beyond end of device
[  402.779875][T15106] loop2: rw=0, sector=8192, nr_sectors = 2 limit=64
[  402.927250][ T3976] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  403.177204][ T3976] usb 5-1: Using ep0 maxpacket: 16
[  403.297223][ T3976] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  403.319733][ T3976] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  403.508712][ T3976] usb 5-1: New USB device found, idVendor=1870, idProduct=0001, bcdDevice=94.47
[  403.535056][ T3976] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  403.555303][ T3976] usb 5-1: Product: syz
[  403.565446][ T3976] usb 5-1: Manufacturer: syz
[  403.585735][ T3976] usb 5-1: SerialNumber: syz
[  403.611602][ T3976] usb 5-1: config 0 descriptor??
[  403.882280][   T27] usb 5-1: USB disconnect, device number 24
[  403.899794][T15139] loop0: detected capacity change from 0 to 4096
[  403.966180][T15139] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  403.989205][T15139] ntfs: volume version 3.1.
[  404.026909][T15145] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  404.853975][T15177] loop4: detected capacity change from 0 to 256
[  405.012034][T15177] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  405.993801][T15229] xt_CT: You must specify a L4 protocol and not use inversions on it
[  406.188523][T15239] xt_recent: hitcount (16777216) is larger than allowed maximum (255)
[  406.607060][ T3688] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  406.802282][T15221] loop4: detected capacity change from 0 to 32768
[  406.825465][T15221] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.5020 (15221)
[  406.867310][T15221] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  406.906709][T15221] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  406.945212][T15221] BTRFS info (device loop4): using free space tree
[  407.105434][T15240] loop0: detected capacity change from 0 to 32768
[  407.147431][ T3688] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  407.150067][T15240] ERROR: (device loop0): diNewExt: no free extents
[  407.150067][T15240] 
[  407.165662][ T3688] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.213347][T15240] ialloc: diAlloc returned -5!
[  407.216027][ T3688] usb 2-1: Product: syz
[  407.237161][ T3688] usb 2-1: Manufacturer: syz
[  407.241818][ T3688] usb 2-1: SerialNumber: syz
[  407.320367][T15221] BTRFS info (device loop4): enabling ssd optimizations
[  407.329017][ T3688] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  407.373458][T15244] loop2: detected capacity change from 0 to 32768
[  407.447346][T11172] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  407.493321][T15244] __jfs_setxattr: xattr_size = 74, new_size = 12820
[  407.947440][ T3688] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  408.147318][ T3976] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  408.357554][ T3965] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  408.385194][   T14] usb 2-1: USB disconnect, device number 27
[  408.417243][ T3976] usb 1-1: Using ep0 maxpacket: 16
[  408.537547][ T3976] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[  408.558688][ T3976] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.581364][ T3976] usb 1-1: config 0 descriptor??
[  408.628816][ T3976] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  408.757352][ T3965] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  408.787054][ T3965] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  408.847332][ T3976] usb 1-1: Detected FT232B
[  408.871576][T15313] __nla_validate_parse: 4 callbacks suppressed
[  408.871595][T15313] netlink: 1041 bytes leftover after parsing attributes in process `syz.3.5057'.
[  408.887550][ T3965] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  408.896805][ T3965] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  408.915251][ T3965] usb 5-1: SerialNumber: syz
[  409.009409][T15311] loop2: detected capacity change from 0 to 8192
[  409.037314][ T3688] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  409.044400][ T3688] ath9k_htc: Failed to initialize the device
[  409.051900][T15311] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  409.067157][ T3976] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  409.073638][T15311] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  409.083945][T15311] REISERFS (device loop2): using ordered data mode
[  409.087293][ T3976] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  409.090586][T15311] reiserfs: using flush barriers
[  409.102689][   T14] usb 2-1: ath9k_htc: USB layer deinitialized
[  409.109418][T15311] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  409.137768][T15311] REISERFS (device loop2): checking transaction log (loop2)
[  409.150728][ T3976] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  409.159921][T15311] REISERFS (device loop2): Using rupasov hash to sort names
[  409.194448][T15311] REISERFS (device loop2): using 3.5.x disk format
[  409.216947][ T3965] usb 5-1: 0:2 : does not exist
[  409.221568][ T3976] usb 1-1: USB disconnect, device number 25
[  409.249759][T15311] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  409.277287][T15311] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  409.296066][ T3976] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  409.317723][ T3965] usb 5-1: USB disconnect, device number 25
[  409.327777][ T3976] ftdi_sio 1-1:0.0: device disconnected
[  409.330668][ T3747] udevd[3747]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  409.380431][T15311] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  409.417590][T15311] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  409.613027][T15328] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5064'.
[  409.645083][T15328] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5064'.
[  409.719862][T15330] loop1: detected capacity change from 0 to 512
[  409.787960][T15330] EXT4-fs: Ignoring removed orlov option
[  409.889204][T15330] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  409.947208][T15330] ext4 filesystem being mounted at /1053/bus supports timestamps until 2038 (0x7fffffff)
[  410.119442][ T3652] EXT4-fs (loop1): unmounting filesystem.
[  410.234886][T15341] loop4: detected capacity change from 0 to 4096
[  410.362236][T15359] x_tables: unsorted entry at hook 3
[  410.560767][T15367] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5083'.
[  410.597082][T15369] vivid-000: disconnect
[  410.612933][T15368] vivid-000: reconnect
[  411.029545][ T3976] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  411.277089][ T3655] Bluetooth: hci2: command 0x0406 tx timeout
[  411.287514][ T3976] usb 4-1: Using ep0 maxpacket: 16
[  411.407140][ T3976] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  411.448383][T15408] binder: 15405:15408 ioctl c018620c 20000700 returned -22
[  411.587294][ T3976] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  411.603126][ T3976] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.617063][ T3976] usb 4-1: Product: syz
[  411.627398][ T3976] usb 4-1: Manufacturer: syz
[  411.657192][ T3976] usb 4-1: SerialNumber: syz
[  411.718133][ T3976] cdc_ether 4-1:1.0: skipping garbage
[  411.723784][ T3976] usb 4-1: bad CDC descriptors
[  411.758794][T15418] IPv6: Can't replace route, no match found
[  411.867355][ T3962] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  411.934452][ T3976] usb 4-1: USB disconnect, device number 23
[  412.019095][T15422] loop2: detected capacity change from 0 to 4096
[  412.099627][T15422] ntfs3: loop2: Failed to load $Extend.
[  412.151392][T15432] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  412.227331][ T3962] usb 2-1: config 0 has no interfaces?
[  412.387452][ T3962] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  412.406864][ T3962] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  412.432849][ T3962] usb 2-1: Product: syz
[  412.454873][ T3962] usb 2-1: Manufacturer: syz
[  412.460032][ T3962] usb 2-1: SerialNumber: syz
[  412.466618][ T3962] r8152-cfgselector 2-1: config 0 descriptor??
[  412.542703][T15444] overlayfs: bad mount option "redirect_dir=off:/"
[  412.627761][   T27] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  412.738661][ T3962] usbip-host 2-1: 2-1 is not in match_busid table... skip!
[  412.759674][ T3713] usb 2-1: config 0 descriptor??
[  412.897186][   T27] usb 3-1: Using ep0 maxpacket: 16
[  412.940179][ T3962] usb 2-1: USB disconnect, device number 28
[  412.947207][   T22] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  412.957431][ T3713] usb 2-1: can't set config #0, error -71
[  413.057357][   T27] usb 3-1: unable to get BOS descriptor or descriptor too short
[  413.163318][   T27] usb 3-1: config 4 has an invalid interface number: 38 but max is 0
[  413.181929][   T27] usb 3-1: config 4 has no interface number 0
[  413.188668][   T27] usb 3-1: config 4 interface 38 has no altsetting 0
[  413.197150][   T22] usb 5-1: Using ep0 maxpacket: 32
[  413.334394][   T22] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36
[  413.387777][   T27] usb 3-1: New USB device found, idVendor=19ab, idProduct=1000, bcdDevice= 1.18
[  413.387814][   T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  413.387837][   T27] usb 3-1: Product: syz
[  413.387856][   T27] usb 3-1: Manufacturer: syz
[  413.387874][   T27] usb 3-1: SerialNumber: syz
[  413.530592][   T22] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  413.547145][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  413.569412][T15483] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5140'.
[  413.580237][   T22] usb 5-1: Product: syz
[  413.584451][   T22] usb 5-1: Manufacturer: syz
[  413.595188][   T22] usb 5-1: SerialNumber: syz
[  413.605553][   T22] usb 5-1: config 0 descriptor??
[  413.627347][T15450] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  413.652016][   T22] hub 5-1:0.0: bad descriptor, ignoring hub
[  413.665528][   T22] hub: probe of 5-1:0.0 failed with error -5
[  413.701979][   T22] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input17
[  413.747258][ T3688] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  413.773415][   T27] usb 3-1: Found UVC 0.00 device syz (19ab:1000)
[  413.783452][   T27] usb 3-1: No valid video chain found.
[  413.813965][   T27] usb 3-1: USB disconnect, device number 29
[  413.867402][ T3976] usb 5-1: USB disconnect, device number 26
[  414.287167][ T3688] usb 1-1: New USB device found, idVendor=066b, idProduct=20f9, bcdDevice=ff.94
[  414.312306][ T3688] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.342960][ T3688] usb 1-1: Product: syz
[  414.353548][ T3688] usb 1-1: Manufacturer: syz
[  414.365120][ T3688] usb 1-1: SerialNumber: syz
[  414.386646][ T3688] usb 1-1: config 0 descriptor??
[  414.463371][T15511] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5152'.
[  414.512344][T15511] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5152'.
[  414.522052][T15511] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5152'.
[  414.532060][T15511] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5152'.
[  414.536654][T15515] netlink: 'syz.4.5153': attribute type 3 has an invalid length.
[  414.891816][ T3688] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  414.910161][ T3688] asix: probe of 1-1:0.0 failed with error -71
[  414.948013][ T3688] usb 1-1: USB disconnect, device number 26
[  415.003967][   T22] kernel write not supported for file /654/net/sockstat (pid: 22 comm: kworker/1:0)
[  415.791307][T15567] netlink: 'syz.2.5180': attribute type 8 has an invalid length.
[  416.183298][T15583] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5189'.
[  416.196394][T15586] overlayfs: missing 'lowerdir'
[  416.363013][T15594] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  416.380743][T15594] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  416.965616][T15621] tc_dump_action: action bad kind
[  416.986352][T15624] loop0: detected capacity change from 0 to 64
[  417.139779][T15627] loop2: detected capacity change from 0 to 64
[  417.669572][   T22] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  417.884394][T15661] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5226'.
[  418.012154][ T3976] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  418.047383][ T3969] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  418.065498][T15665] loop1: detected capacity change from 0 to 256
[  418.097662][   T22] usb 5-1: config 0 has an invalid interface number: 117 but max is 0
[  418.116321][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  418.137241][   T22] usb 5-1: config 0 has no interface number 0
[  418.143480][   T22] usb 5-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  418.167893][   T22] usb 5-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  418.257206][ T3976] usb 1-1: Using ep0 maxpacket: 16
[  418.377309][ T3976] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  418.387612][   T22] usb 5-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  418.396696][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.403593][ T3976] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  418.426292][   T22] usb 5-1: Product: syz
[  418.431225][   T22] usb 5-1: Manufacturer: syz
[  418.443342][   T22] usb 5-1: SerialNumber: syz
[  418.453046][   T22] usb 5-1: config 0 descriptor??
[  418.491266][T15660] loop2: detected capacity change from 0 to 40427
[  418.524026][T15660] F2FS-fs (loop2): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[  418.571662][T15660] F2FS-fs (loop2): Found nat_bits in checkpoint
[  418.581558][ T3976] usb 1-1: New USB device found, idVendor=1870, idProduct=0001, bcdDevice=94.47
[  418.597242][ T3976] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.597440][ T3969] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  418.605261][ T3976] usb 1-1: Product: syz
[  418.605282][ T3976] usb 1-1: Manufacturer: syz
[  418.605299][ T3976] usb 1-1: SerialNumber: syz
[  418.616760][ T3976] usb 1-1: config 0 descriptor??
[  418.647092][ T3969] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.656526][ T3969] usb 4-1: Product: syz
[  418.666201][ T3969] usb 4-1: Manufacturer: syz
[  418.673624][T15660] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[  418.680785][ T3969] usb 4-1: SerialNumber: syz
[  418.689515][T15660] F2FS-fs (loop2): Cannot turn on quotas: -2 on 1
[  418.711728][T15660] F2FS-fs (loop2): Cannot turn on quotas: -2 on 2
[  418.731002][T15660] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  418.757913][ T3969] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  418.933040][   T22] usbtouchscreen: probe of 5-1:0.117 failed with error -71
[  418.938328][   T14] usb 1-1: USB disconnect, device number 27
[  418.966902][   T22] usb 5-1: USB disconnect, device number 27
[  419.178564][T15675] loop1: detected capacity change from 0 to 32768
[  419.185870][T15675] XFS: noikeep mount option is deprecated.
[  419.235709][T15675] XFS (loop1): Mounting V5 Filesystem
[  419.278112][T15675] XFS (loop1): Ending clean mount
[  419.285723][T15675] XFS (loop1): Quotacheck needed: Please wait.
[  419.355775][T15675] XFS (loop1): Quotacheck: Done.
[  419.387198][ T3969] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  419.433598][T15693] loop2: detected capacity change from 0 to 1024
[  419.480547][ T3652] XFS (loop1): Unmounting Filesystem
[  419.507317][T15693] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  419.563145][T15693] EXT4-fs error (device loop2): ext4_get_first_dir_block:3603: inode #11: comm syz.2.5236: directory missing '..'
[  419.726143][ T3646] EXT4-fs (loop2): unmounting filesystem.
[  419.802501][T15700] loop4: detected capacity change from 0 to 8192
[  419.882437][T15700] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  419.888899][   T27] usb 4-1: USB disconnect, device number 24
[  419.908682][T15707] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  419.950652][T15707] overlayfs: missing 'lowerdir'
[  419.955706][T15700] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[  420.022287][T15700] REISERFS (device loop4): using ordered data mode
[  420.056237][T15700] reiserfs: using flush barriers
[  420.092835][T15700] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  420.131587][T15714] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  420.174324][T15700] REISERFS (device loop4): checking transaction log (loop4)
[  420.213137][T15700] REISERFS (device loop4): Using rupasov hash to sort names
[  420.243084][T15700] REISERFS (device loop4): using 3.5.x disk format
[  420.267467][T15700] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  420.316314][T15700] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  420.336138][T15700] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  420.375800][T15700] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  420.477149][ T3969] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  420.489352][ T3969] ath9k_htc: Failed to initialize the device
[  420.516658][   T27] usb 4-1: ath9k_htc: USB layer deinitialized
[  421.077189][   T14] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  421.201948][T15758] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5267'.
[  421.361318][T15763] 8021q: adding VLAN 0 to HW filter on device bond3
[  421.607366][   T14] usb 1-1: New USB device found, idVendor=0586, idProduct=330b, bcdDevice=ad.1a
[  421.616470][   T14] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.654982][   T14] usb 1-1: Product: syz
[  421.668734][   T14] usb 1-1: Manufacturer: syz
[  421.673394][   T14] usb 1-1: SerialNumber: syz
[  421.700398][T15775] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5274'.
[  421.711690][   T14] usb 1-1: config 0 descriptor??
[  421.915569][T15769] loop1: detected capacity change from 0 to 32768
[  421.967336][   T14] cxacru 1-1:0.0: usbatm_usb_probe: bind failed: -19!
[  422.170307][ T3688] usb 1-1: USB disconnect, device number 28
[  422.525214][T15799] vivid-002: disconnect
[  422.534621][T15797] vivid-002: reconnect
[  422.949458][T15785] loop2: detected capacity change from 0 to 32768
[  423.002878][T15785] (syz.2.5277,15785,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  423.053144][T15785] (syz.2.5277,15785,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  423.146823][T15785] JBD2: Ignoring recovery information on journal
[  423.267980][T15827] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5301'.
[  423.277305][T15827] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5301'.
[  423.286533][T15827] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5301'.
[  423.378912][T15785] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  423.639429][ T3646] ocfs2: Unmounting device (7,2) on (node local)
[  423.946568][T15851] loop4: detected capacity change from 0 to 2048
[  423.965749][T15854] loop0: detected capacity change from 0 to 512
[  424.007538][T15851] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  424.075962][T15857] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  424.185674][T15854] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  424.202645][T15864] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5307'.
[  424.223743][T15866] netlink: 'syz.1.5316': attribute type 1 has an invalid length.
[  424.225475][T15854] ext4 filesystem being mounted at /1086/file0 supports timestamps until 2038 (0x7fffffff)
[  424.235673][T15866] netlink: 116376 bytes leftover after parsing attributes in process `syz.1.5316'.
[  424.252095][T15866] netlink: 1 bytes leftover after parsing attributes in process `syz.1.5316'.
[  424.513472][ T3639] EXT4-fs (loop0): unmounting filesystem.
[  424.732597][T15878] netlink: 'syz.2.5321': attribute type 5 has an invalid length.
[  424.814866][T15887] cifs: Unknown parameter 'no'�a��N�[G�zob,er��;%j��
[  424.814866][T15887] ��z�,�@q�������J#�"��h/.�W1ȱ�nNC�"�C�׈�E)�8+����'
[  424.967267][T15892] netlink: 'syz.1.5328': attribute type 12 has an invalid length.
[  424.975355][T15892] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (255)
[  425.183642][T15904] loop1: detected capacity change from 0 to 256
[  425.239118][T15904] MINIX-fs: mounting file system with errors, running fsck is recommended
[  425.280697][T15904] Trying to free block not in datazone
[  425.286221][T15904] Trying to free block not in datazone
[  425.326806][T15904] Trying to free block not in datazone
[  425.344949][T15904] Trying to free block not in datazone
[  425.372494][T15904] Trying to free block not in datazone
[  425.388494][T15904] Trying to free block not in datazone
[  425.407225][T15904] Trying to free block not in datazone
[  425.427357][T15904] Trying to free block not in datazone
[  425.447742][T15904] Trying to free block not in datazone
[  425.486924][T15904] Trying to free block not in datazone
[  425.744024][T15926] loop1: detected capacity change from 0 to 16
[  425.793422][T15927] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5346'.
[  425.816432][T15926] erofs: (device loop1): mounted with root inode @ nid 36.
[  425.837308][   T28] INFO: task syz.3.2950:10533 blocked for more than 143 seconds.
[  425.857143][   T28]       Not tainted 6.1.112-syzkaller #0
[  425.862832][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  425.887940][   T28] task:syz.3.2950      state:D stack:24360 pid:10533 ppid:3641   flags:0x00004004
[  425.921039][   T28] Call Trace:
[  425.925201][ T3651] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[9000]
[  425.939892][   T28]  <TASK>
[  425.941316][T15926] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192]
[  425.942933][   T28]  __schedule+0x143f/0x4570
[  425.959021][   T28]  ? xlog_grant_head_wait+0x1ee/0xa00
[  425.964653][   T28]  ? release_firmware_map_entry+0x186/0x186
[  425.970674][   T28]  ? xlog_space_left+0xa9/0x2b0
[  425.975597][   T28]  ? do_raw_spin_unlock+0x137/0x8a0
[  425.980960][   T28]  ? xlog_grant_push_threshold+0x1a3/0x1f0
[  425.986822][   T28]  schedule+0xbf/0x180
[  425.990991][   T28]  xlog_grant_head_wait+0x3b6/0xa00
[  425.996257][   T28]  xlog_grant_head_check+0x295/0x480
[  426.001845][   T28]  ? xlog_grant_push_ail+0xd0/0xd0
[  426.007084][   T28]  ? xlog_grant_push_threshold+0x1a3/0x1f0
[  426.013100][   T28]  xfs_log_reserve+0x3e1/0xc30
[  426.018067][   T28]  ? xlog_grant_head_check+0x480/0x480
[  426.023573][   T28]  ? xfs_mod_freecounter+0x1e2/0x490
[  426.038313][   T28]  xfs_trans_reserve+0x239/0x6a0
[  426.043330][   T28]  xfs_trans_alloc+0x41b/0x870
[  426.053513][   T26] kauditd_printk_skb: 15 callbacks suppressed
[  426.053529][   T26] audit: type=1800 audit(1729030008.818:5606): pid=15926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5345" name="file3" dev="loop1" ino=89 res=0 errno=0
[  426.087069][   T28]  xfs_trans_alloc_inode+0x129/0x450
[  426.092492][   T28]  ? xfs_trans_dup+0x6a0/0x6a0
[  426.098984][   T28]  ? xfs_da_hashname+0x23f/0x370
[  426.103981][   T28]  ? xfs_attr_leaf_newentsize+0xd5/0x1d0
[  426.110156][   T28]  xfs_attr_set+0xa4e/0x1660
[  426.114821][   T28]  ? xfs_attr_leaf_shrink+0x410/0x410
[  426.120697][   T28]  ? lockdep_unlock+0x165/0x300
[  426.125636][   T28]  xfs_xattr_set+0x227/0x3a0
[  426.130711][   T28]  ? xfs_xattr_get+0x2f0/0x2f0
[  426.142058][   T28]  ? evm_protect_xattr+0x366/0xb10
[  426.157352][   T28]  ? xfs_xattr_get+0x2f0/0x2f0
[  426.173540][   T28]  __vfs_setxattr+0x3e7/0x420
[  426.178717][   T28]  __vfs_setxattr_noperm+0x12a/0x5e0
[  426.184141][   T28]  vfs_setxattr+0x21d/0x420
[  426.188988][   T28]  ? xattr_permission+0x4f0/0x4f0
[  426.194132][   T28]  ? _copy_from_user+0xa1/0x170
[  426.199192][   T28]  ? copy_user_enhanced_fast_string+0xa/0x40
[  426.205228][   T28]  ? _copy_from_user+0x109/0x170
[  426.210263][   T28]  setxattr+0x250/0x2b0
[  426.214503][   T28]  ? path_setxattr+0x2a0/0x2a0
[  426.219438][   T28]  ? __mnt_want_write+0x222/0x2a0
[  426.224608][   T28]  path_setxattr+0x1bc/0x2a0
[  426.231166][   T28]  ? simple_xattr_list_add+0xf0/0xf0
[  426.236486][   T28]  ? syscall_enter_from_user_mode+0x2e/0x230
[  426.243056][   T28]  __x64_sys_setxattr+0xb7/0xd0
[  426.248061][   T28]  do_syscall_64+0x3b/0xb0
[  426.252544][   T28]  ? clear_bhb_loop+0x45/0xa0
[  426.257418][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  426.263860][   T28] RIP: 0033:0x7f9b4e37dff9
[  426.268392][   T28] RSP: 002b:00007f9b4e1ff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  426.276842][   T28] RAX: ffffffffffffffda RBX: 00007f9b4e535f80 RCX: 00007f9b4e37dff9
[  426.285008][   T28] RDX: 0000000020000880 RSI: 0000000020000240 RDI: 0000000020000300
[  426.293084][   T28] RBP: 00007f9b4e3f0296 R08: 0000000000000000 R09: 0000000000000000
[  426.301220][   T28] R10: 000000000000ff27 R11: 0000000000000246 R12: 0000000000000000
[  426.309345][   T28] R13: 0000000000000000 R14: 00007f9b4e535f80 R15: 00007ffd61536ef8
[  426.317522][   T28]  </TASK>
[  426.327158][   T28] 
[  426.327158][   T28] Showing all locks held in the system:
[  426.341554][   T28] 3 locks held by kworker/u4:0/9:
[  426.346621][   T28]  #0: ffff8880b8e3a9d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140
[  426.366839][   T28]  #1: ffff8880b8e27788 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x43d/0x770
[  426.378600][   T28]  #2: ffffffff8d1c83b0 (cpu_hotplug_lock){++++}-{0:0}, at: static_key_enable+0xe/0x20
[  426.388389][   T28] 1 lock held by rcu_tasks_kthre/12:
[  426.393715][   T28]  #0: ffffffff8d32b1d0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  426.404454][   T28] 1 lock held by rcu_tasks_trace/13:
[  426.409803][   T28]  #0: ffffffff8d32b9d0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  426.421021][   T28] 1 lock held by khungtaskd/28:
[  426.425910][   T28]  #0: ffffffff8d32b000 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[  426.435919][   T28] 2 locks held by getty/3400:
[  426.440785][   T28]  #0: ffff88802ea5d098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[  426.452210][   T28]  #1: ffffc900031262f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0
[  426.462535][   T28] 3 locks held by syz.3.2950/10533:
[  426.467814][   T28]  #0: ffff8880731b2460 (sb_writers#40){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80
[  426.477822][   T28]  #1: ffff88805930b978 (&inode->i_sb->s_type->i_mutex_dir_key){++++}-{3:3}, at: vfs_setxattr+0x1dd/0x420
[  426.489299][   T28]  #2: ffff8880731b2650 (sb_internal#5){.+.+}-{0:0}, at: xfs_trans_alloc_inode+0x129/0x450
[  426.499661][   T28] 
[  426.502008][   T28] =============================================
[  426.502008][   T28] 
[  426.510578][   T28] NMI backtrace for cpu 1
[  426.514919][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.112-syzkaller #0
[  426.522816][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  426.532872][   T28] Call Trace:
[  426.536159][   T28]  <TASK>
[  426.539092][   T28]  dump_stack_lvl+0x1e3/0x2cb
[  426.543791][   T28]  ? nf_tcp_handle_invalid+0x642/0x642
[  426.549263][   T28]  ? panic+0x764/0x764
[  426.553335][   T28]  ? vprintk_emit+0x622/0x740
[  426.558167][   T28]  ? printk_sprint+0x490/0x490
[  426.562956][   T28]  ? nmi_cpu_backtrace+0x252/0x560
[  426.568081][   T28]  nmi_cpu_backtrace+0x4e1/0x560
[  426.573038][   T28]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  426.579207][   T28]  ? _printk+0xd1/0x111
[  426.583374][   T28]  ? panic+0x764/0x764
[  426.587453][   T28]  ? __wake_up_klogd+0xcc/0x100
[  426.592310][   T28]  ? panic+0x764/0x764
[  426.596384][   T28]  ? nmi_trigger_cpumask_backtrace+0xe0/0x3f0
[  426.602463][   T28]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  426.608548][   T28]  nmi_trigger_cpumask_backtrace+0x1ae/0x3f0
[  426.614535][   T28]  watchdog+0xf88/0xfd0
[  426.618711][   T28]  ? watchdog+0x1f8/0xfd0
[  426.623073][   T28]  kthread+0x28d/0x320
[  426.627145][   T28]  ? hungtask_pm_notify+0x50/0x50
[  426.632179][   T28]  ? kthread_blkcg+0xd0/0xd0
[  426.636774][   T28]  ret_from_fork+0x1f/0x30
[  426.641213][   T28]  </TASK>
[  426.645252][   T28] Sending NMI from CPU 1 to CPUs 0:
[  426.650923][    C0] NMI backtrace for cpu 0
[  426.650936][    C0] CPU: 0 PID: 3713 Comm: kworker/u4:6 Not tainted 6.1.112-syzkaller #0
[  426.650953][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  426.650963][    C0] Workqueue: phy24 ieee80211_iface_work
[  426.650990][    C0] RIP: 0010:unwind_next_frame+0x4b7/0x2220
[  426.651012][    C0] Code: 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 75 27 48 63 03 48 01 d8 48 8d 4b 04 4c 39 e8 4c 0f 46 f9 <48> 8d 43 fc 48 0f 47 e8 4c 0f 46 e3 49 39 ef 76 a9 e9 a7 fd ff ff
[  426.651026][    C0] RSP: 0018:ffffc90004706d60 EFLAGS: 00000283
[  426.651039][    C0] RAX: ffffffff81786a94 RBX: ffffffff8eabb2e0 RCX: ffffffff8eabb2e4
[  426.651053][    C0] RDX: ffffffff8f19083a RSI: ffffffff81786ba3 RDI: dffffc0000000000
[  426.651070][    C0] RBP: ffffffff8eabb2e0 R08: 0000000000000003 R09: ffffc90004706f30
[  426.651082][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffffff8eabb2e0
[  426.651094][    C0] R13: ffffffff81786ba2 R14: ffffffff8eabb2e0 R15: ffffffff8eabb2e4
[  426.651107][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  426.651122][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  426.651134][    C0] CR2: 000055555c599808 CR3: 000000007e720000 CR4: 00000000003506f0
[  426.651148][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  426.651159][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  426.651169][    C0] Call Trace:
[  426.651174][    C0]  <NMI>
[  426.651180][    C0]  ? nmi_cpu_backtrace+0x3de/0x560
[  426.651198][    C0]  ? read_lock_is_recursive+0x10/0x10
[  426.651226][    C0]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  426.651244][    C0]  ? nmi_handle+0x25/0x440
[  426.651278][    C0]  ? nmi_cpu_backtrace_handler+0x8/0x10
[  426.651305][    C0]  ? nmi_handle+0x12e/0x440
[  426.651330][    C0]  ? nmi_handle+0x25/0x440
[  426.651356][    C0]  ? unwind_next_frame+0x4b7/0x2220
[  426.651374][    C0]  ? default_do_nmi+0x62/0x150
[  426.651392][    C0]  ? exc_nmi+0xa8/0x100
[  426.651409][    C0]  ? end_repeat_nmi+0x16/0x31
[  426.651441][    C0]  ? stack_trace_save+0x112/0x1c0
[  426.651467][    C0]  ? stack_trace_save+0x4/0x1c0
[  426.651489][    C0]  ? stack_trace_save+0x113/0x1c0
[  426.651512][    C0]  ? unwind_next_frame+0x4b7/0x2220
[  426.651531][    C0]  ? unwind_next_frame+0x4b7/0x2220
[  426.651551][    C0]  ? unwind_next_frame+0x4b7/0x2220
[  426.651569][    C0]  </NMI>
[  426.651574][    C0]  <TASK>
[  426.651585][    C0]  ? __unwind_start+0x59d/0x720
[  426.651601][    C0]  ? stack_trace_save+0x113/0x1c0
[  426.651626][    C0]  ? stack_trace_save+0x1c0/0x1c0
[  426.651649][    C0]  arch_stack_walk+0x10d/0x140
[  426.651672][    C0]  ? stack_trace_save+0x113/0x1c0
[  426.651697][    C0]  stack_trace_save+0x113/0x1c0
[  426.651722][    C0]  ? stack_trace_snprint+0xe0/0xe0
[  426.651746][    C0]  ? __lock_acquire+0x125b/0x1f80
[  426.651774][    C0]  kasan_save_stack+0x3b/0x60
[  426.651827][    C0]  ? __phys_addr+0xb6/0x170
[  426.651849][    C0]  __kasan_record_aux_stack+0xb0/0xc0
[  426.651869][    C0]  kvfree_call_rcu+0x116/0x8c0
[  426.651886][    C0]  ? read_lock_is_recursive+0x10/0x10
[  426.651912][    C0]  ? rcu_leak_callback+0x10/0x10
[  426.651928][    C0]  ? do_raw_spin_lock+0x14a/0x370
[  426.651945][    C0]  ? cmp_bss+0x2cb/0xde0
[  426.651966][    C0]  cfg80211_update_known_bss+0x16b/0x9e0
[  426.651987][    C0]  cfg80211_bss_update+0x187/0x2280
[  426.652008][    C0]  ? __kmem_cache_alloc_node+0x137/0x260
[  426.652030][    C0]  ? cfg80211_inform_bss_frame_data+0x5e3/0x1680
[  426.652054][    C0]  ? rcu_is_watching+0x11/0xb0
[  426.652069][    C0]  ? cfg80211_inform_bss_frame_data+0x5e3/0x1680
[  426.652087][    C0]  ? cfg80211_inform_bss_frame_data+0x7c8/0x1680
[  426.652107][    C0]  cfg80211_inform_bss_frame_data+0xae4/0x1680
[  426.652134][    C0]  ? cfg80211_parse_mbssid_data+0x3410/0x3410
[  426.652162][    C0]  ? __lock_acquire+0x1f80/0x1f80
[  426.652195][    C0]  ieee80211_bss_info_update+0x847/0xf00
[  426.652226][    C0]  ? __lock_acquire+0x1f80/0x1f80
[  426.652251][    C0]  ? ieee80211_rx_bss_put+0x60/0x60
[  426.652283][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xeba/0x2dd0
[  426.652303][    C0]  ? ieee80211_vif_get_shift+0x225/0x280
[  426.652331][    C0]  ? __lock_acquire+0x1f80/0x1f80
[  426.652354][    C0]  ? ieee80211_sta_get_rates+0x65c/0x720
[  426.652381][    C0]  ieee80211_ibss_rx_queued_mgmt+0x1962/0x2dd0
[  426.652420][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xeba/0x2dd0
[  426.652442][    C0]  ? ieee80211_ibss_rx_no_sta+0x740/0x740
[  426.652468][    C0]  ? mark_lock+0x9a/0x340
[  426.652494][    C0]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  426.652521][    C0]  ? print_irqtrace_events+0x210/0x210
[  426.652546][    C0]  ? do_raw_spin_unlock+0x137/0x8a0
[  426.652566][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  426.652588][    C0]  ? skb_dequeue+0x10f/0x140
[  426.652608][    C0]  ieee80211_iface_work+0x7aa/0xce0
[  426.652633][    C0]  ? process_one_work+0x7a9/0x11d0
[  426.652653][    C0]  process_one_work+0x8a9/0x11d0
[  426.652681][    C0]  ? worker_detach_from_pool+0x260/0x260
[  426.652704][    C0]  ? _raw_spin_lock_irqsave+0x120/0x120
[  426.652725][    C0]  ? kthread_data+0x4e/0xc0
[  426.652752][    C0]  ? wq_worker_running+0x97/0x190
[  426.652770][    C0]  worker_thread+0xa47/0x1200
[  426.652795][    C0]  ? _raw_spin_unlock+0x40/0x40
[  426.652822][    C0]  kthread+0x28d/0x320
[  426.652836][    C0]  ? worker_clr_flags+0x190/0x190
[  426.652855][    C0]  ? kthread_blkcg+0xd0/0xd0
[  426.652871][    C0]  ret_from_fork+0x1f/0x30
[  426.652902][    C0]  </TASK>
[  426.677067][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[  426.677085][   T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.112-syzkaller #0
[  426.677111][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  426.677125][   T28] Call Trace:
[  426.677133][   T28]  <TASK>
[  426.677143][   T28]  dump_stack_lvl+0x1e3/0x2cb
[  426.677188][   T28]  ? nf_tcp_handle_invalid+0x642/0x642
[  426.677225][   T28]  ? panic+0x764/0x764
[  426.677259][   T28]  ? vscnprintf+0x59/0x80
[  426.677289][   T28]  panic+0x318/0x764
[  426.677316][   T28]  ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0
[  426.677342][   T28]  ? memcpy_page_flushcache+0xfc/0xfc
[  426.677374][   T28]  ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0
[  426.677397][   T28]  ? nmi_trigger_cpumask_backtrace+0x338/0x3f0
[  426.677429][   T28]  ? nmi_trigger_cpumask_backtrace+0x33d/0x3f0
[  426.677457][   T28]  watchdog+0xfc7/0xfd0
[  426.677494][   T28]  ? watchdog+0x1f8/0xfd0
[  426.677528][   T28]  kthread+0x28d/0x320
[  426.677548][   T28]  ? hungtask_pm_notify+0x50/0x50
[  426.677580][   T28]  ? kthread_blkcg+0xd0/0xd0
[  426.677603][   T28]  ret_from_fork+0x1f/0x30
[  426.677650][   T28]  </TASK>
[  426.679960][   T28] Kernel Offset: disabled
[  427.298164][   T28] Rebooting in 86400 seconds..