last executing test programs:
5m53.595084115s ago: executing program 3 (id=10089):
ioperm(0x376, 0x5, 0x10)
arch_prctl$ARCH_SHSTK_DISABLE(0x5002, 0x2)
5m53.297904721s ago: executing program 3 (id=10094):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000940)=@raw={'raw\x00', 0x3c1, 0x3, 0x428, 0x0, 0xc8, 0x8, 0x278, 0x5803, 0x358, 0x2e8, 0x2e8, 0x358, 0x2e8, 0x3, 0x0, {[{{@ipv6={@private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [0x0, 0xffffffff], [], 'batadv0\x00', 'wlan0\x00', {0xff}, {}, 0x11, 0x1, 0x2}, 0x0, 0x230, 0x278, 0x0, {0x0, 0x2000000000000}, [@common=@inet=@hashlimit3={{0x158}, {'\x00', {0x1, 0x1, 0x0, 0x5, 0x7ff, 0x7, 0x6, 0xfffffffd, 0x40, 0x20}, {0x100000000}}}, @common=@inet=@udp={{0x30}, {[0x4e24, 0x4e23], [0x4e23, 0x4e24]}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x2, 0x8001, 0x7, 0x2, 'syz1\x00', {0x4}}}}, {{@uncond, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0x3, 0x0, 0x1}, {0x1, 0x6, 0x3}, {0xffffffffffffffff, 0x3, 0x6}, 0x7, 0x9}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x488)
5m52.965682707s ago: executing program 3 (id=10102):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d0001000000000004086aa42d"], 0x30}}, 0x0)
5m52.69737019s ago: executing program 3 (id=10106):
syz_mount_image$erofs(&(0x7f0000000140), &(0x7f0000000000)='./file2\x00', 0x300000c, &(0x7f0000000080)=ANY=[], 0xfe, 0x26e, &(0x7f0000000640)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
5m52.195074243s ago: executing program 3 (id=10115):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x6, &(0x7f0000006680))
time(0x0)
5m51.568444679s ago: executing program 3 (id=10119):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x4, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c0000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000000212000000", &(0x7f0000000300)=""/8, 0xd00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
5m51.013165094s ago: executing program 32 (id=10119):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x4, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c0000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000000212000000", &(0x7f0000000300)=""/8, 0xd00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
5.321409233s ago: executing program 4 (id=14182):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x10000, &(0x7f0000000080)={[{@subsystem='perf_event'}]})
4.98492926s ago: executing program 4 (id=14187):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)={0x5c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x1}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x5c}}, 0x0)
4.593625769s ago: executing program 4 (id=14192):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000004200)=ANY=[@ANYBLOB="12010000e2793f10d10501200002000000010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000018c0)={0x1c, &(0x7f0000000740)=ANY=[@ANYBLOB="4014cb"], 0x0, 0x0})
3.87922664s ago: executing program 0 (id=14205):
syz_usb_connect(0x5, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000124d5240e316e9f958000000000109021b00010000000009047800018fa68d000905", @ANYRES16, @ANYRES16], 0x0)
openat$mice(0xffffff9c, &(0x7f0000000040), 0x167342)
3.610079789s ago: executing program 2 (id=14208):
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105042, 0x0)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x2, &(0x7f0000000300)=ANY=[@ANYBLOB='nouser_xattr,heartbeat=none,dir_resv_level=00000000000000000250,barrier=00000000000000000004,dir_resv_level=00000000000000000002,localflocks,localalloc=00000000000000000004,coherency=buffered,nointr,acl,localalloc=00000000000022251008,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c7375626a5e726f6c653d275e9b148af1147134daaeaad1251d12de0c417d242a2a252c2e2cb2a74084d068fa9b9038bf597c6fdafa6fadbea47b"], 0x1, 0x4431, &(0x7f0000008940)="$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")
2.543875026s ago: executing program 4 (id=14220):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3400000040000701fcffffff00000100017c0000040042800c0001800600060086dd0000100002"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
2.478440842s ago: executing program 5 (id=14221):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)={0x20, 0x1e, 0x301, 0x20000002, 0x0, {0x1}, [@nested={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x81}, 0x4004000)
2.15771131s ago: executing program 5 (id=14224):
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x66)
2.118269295s ago: executing program 4 (id=14225):
r0 = syz_open_procfs(0x0, &(0x7f0000000bc0)='environ\x00')
preadv(r0, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000040)=""/99, 0x63}], 0x2, 0x40, 0x0)
1.967311217s ago: executing program 5 (id=14227):
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000004600), 0x42, 0x0)
sendfile(r0, r0, 0x0, 0x3)
1.813866456s ago: executing program 1 (id=14229):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000002680)={0x14, 0x0, 0x7, 0x101, 0x0, 0x0, {0xc56a10d56cdbf9c0, 0x0, 0x8}}, 0x14}}, 0x0)
1.772478107s ago: executing program 4 (id=14230):
r0 = syz_usb_connect(0x0, 0x81, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000a7420040ab0501030001010203010902240001000000000904000002aad45c0009058e02000000000009050a06"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000380)={0x44, &(0x7f0000000100)=ANY=[@ANYBLOB="20153c000000ef16ff3695c34cb6761ff61fcea356f3af405d68e2b9307283161e26cf08"], 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000300)={0x20, 0x87, 0x2}, &(0x7f0000000340)={0x20, 0x89, 0x2, 0x1}})
1.729139028s ago: executing program 5 (id=14231):
r0 = socket(0x2000000000000021, 0x2, 0x2)
setsockopt$RXRPC_SECURITY_KEYRING(r0, 0x110, 0x2, 0x0, 0x0)
1.579119834s ago: executing program 6 (id=14232):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@ipv6_newaddrlabel={0x38, 0x48, 0x181, 0x70bd2c, 0x25dfdbfc, {0xa, 0x0, 0x0, 0x0, 0x0, 0x1}, [@IFAL_ADDRESS={0x14, 0x1, @mcast1}, @IFAL_LABEL={0x8, 0x2, 0x7}]}, 0x38}, 0x1, 0x8100, 0x0, 0x40041}, 0x8840)
1.523273567s ago: executing program 0 (id=14233):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_MD_CHECK_REFS(r0, 0x3ba0, &(0x7f0000000d40)={0x48, 0x4, 0x0, 0x0, 0x1, &(0x7f0000000000)='k', 0x1})
1.423981939s ago: executing program 6 (id=14234):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="180000000210"], 0x18}, 0x1, 0x0, 0x0, 0x4048811}, 0x0)
1.423095107s ago: executing program 5 (id=14235):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x38}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xc, 0xa, 0x201, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd0}}, 0x0)
1.402434501s ago: executing program 1 (id=14236):
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2000004, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f00000002c0), 0x8c, 0x1, 0x0, &(0x7f00000000c0), 0x0)
1.288819199s ago: executing program 2 (id=14237):
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x40046109, &(0x7f0000000040)={0xd0, 0xfffffffffffffffe, 0x1000004, 0x7})
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x23, &(0x7f0000000040), 0x0)
1.138367091s ago: executing program 6 (id=14238):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)={0x4c, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_MASK={0x4}, @CTA_EXPECT_TUPLE={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0xd4}, 0x0)
1.13694754s ago: executing program 0 (id=14239):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r0, &(0x7f0000000140)=0x4bf, 0x12)
1.131379488s ago: executing program 1 (id=14240):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="600000000206010300000000000000000100000005000100070000000900020073797a310000000014000780050015000500000008001240000000070500050002000000050004000000000011000300686173683a69702c6d61726b"], 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
1.052727177s ago: executing program 5 (id=14241):
openat$mice(0xffffffffffffff9c, &(0x7f0000019080), 0x2000)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000019140)=ANY=[@ANYBLOB="1201000000000040ac0538024000010203010902240601010000000904000000030102"], 0x0)
1.004546138s ago: executing program 2 (id=14242):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001a80)={0x14, 0x1e, 0x301, 0x20000002, 0x0, {0x1c}}, 0x14}, 0x1, 0x0, 0x0, 0x81}, 0x4004000)
865.677502ms ago: executing program 6 (id=14243):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000640)=ANY=[@ANYBLOB="340000002000010026bd7000fbdbdf250283ac17db7edc66e7100100080002"], 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x4004804)
773.717187ms ago: executing program 1 (id=14244):
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0)
utimes(0x0, &(0x7f0000000080)={{0xa, 0xc}, {0xfffffffffffffff9, 0xfffffffffffffffd}})
698.010389ms ago: executing program 0 (id=14245):
r0 = syz_open_dev$video4linux(&(0x7f0000000040), 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f00000002c0)={0x0, 0x9, 0x0, 0x1})
682.028792ms ago: executing program 2 (id=14246):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_INPUT(r0, &(0x7f0000002340)={0x8, {"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", 0x1000}}, 0x1006)
545.451872ms ago: executing program 1 (id=14247):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_debug_messages', 0x40901, 0x88)
write$FUSE_DIRENT(r0, &(0x7f0000000580)=ANY=[], 0x200001d0)
499.240613ms ago: executing program 1 (id=14248):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
384.274516ms ago: executing program 6 (id=14249):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)={0x20, 0x24, 0x107, 0x70bd2e, 0x25dfdbfb, {0x2, 0x7c}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @u32=0xffffffff}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)
317.882687ms ago: executing program 0 (id=14250):
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
317.650642ms ago: executing program 2 (id=14251):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/mdstat\x00', 0x0, 0x0)
ppoll(&(0x7f0000001280)=[{r0, 0x400}], 0x1, &(0x7f0000000040)={0x0, 0x3938700}, 0x0, 0x0)
108.101121ms ago: executing program 6 (id=14252):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x5, 0x8000)
ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f0000000040)={0x40000000, 0x1, "529472501939c14e7f1eacbe5ab948c9b3dae9b8751d5abff87e78a295b04521", 0x691, 0x240, 0x6, 0x8, 0x7, 0x5, 0x3, 0x0, [0x1, 0x1, 0x0, 0x82d]})
103.291601ms ago: executing program 0 (id=14253):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000900)={[{@noinit_itable}, {@jqfmt_vfsv1}]}, 0xc1, 0x7eb, &(0x7f0000001fc0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x100)
0s ago: executing program 2 (id=14254):
r0 = syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0xb, @pix={0x38305543, 0x7, 0x38414261, 0x4, 0x5, 0x2, 0x8, 0x3, 0x0, 0x3, 0x1, 0x4}})
kernel console output (not intermixed with test programs):
unconfined pid=3225 comm="syz.2.12833" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1522.754337][ T30] audit: type=1326 audit(1688.437:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3225 comm="syz.2.12833" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1523.481453][ T3265] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12855'.
[ 1523.518330][ T3265] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12855'.
[ 1523.928173][ T3284] dlm: no locking on control device
[ 1524.212854][ T3292] loop5: detected capacity change from 0 to 256
[ 1524.311562][ T3292] FAT-fs (loop5): Directory bread(block 64) failed
[ 1524.344825][ T3292] FAT-fs (loop5): Directory bread(block 65) failed
[ 1524.367780][ T3292] FAT-fs (loop5): Directory bread(block 66) failed
[ 1524.385799][ T3292] FAT-fs (loop5): Directory bread(block 67) failed
[ 1524.410240][ T3292] FAT-fs (loop5): Directory bread(block 68) failed
[ 1524.427857][ T3292] FAT-fs (loop5): Directory bread(block 69) failed
[ 1524.441958][ T3292] FAT-fs (loop5): Directory bread(block 70) failed
[ 1524.459866][ T3292] FAT-fs (loop5): Directory bread(block 71) failed
[ 1524.479390][ T3292] FAT-fs (loop5): Directory bread(block 72) failed
[ 1524.512116][ T3292] FAT-fs (loop5): Directory bread(block 73) failed
[ 1524.914680][ T3312] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12876'.
[ 1524.942275][ T3312] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12876'.
[ 1525.070153][ T3281] loop4: detected capacity change from 0 to 32768
[ 1525.402289][ T3281] read_mapping_page failed!
[ 1525.444455][ T3324] netlink: 'syz.1.12882': attribute type 39 has an invalid length.
[ 1525.452650][ T3281] ERROR: (device loop4): txAbort:
[ 1525.452650][ T3281]
[ 1525.531155][ T3327] --map-set only usable from mangle table
[ 1525.647974][ T3324] hsr_slave_0 (unregistering): left promiscuous mode
[ 1526.332311][ T3353] loop2: detected capacity change from 0 to 8
[ 1526.448293][ T3357] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12898'.
[ 1527.121876][ T3377] ksmbd: Unknown IPC event: 1, ignore.
[ 1527.161833][ T3374] loop5: detected capacity change from 0 to 4096
[ 1527.202682][ T3374] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[ 1527.292788][ T3374] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1527.364485][ T3378] loop2: detected capacity change from 0 to 4096
[ 1527.404100][ T3378] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[ 1527.520255][ T3378] ntfs3(loop2): ino=19, mi_enum_attr
[ 1527.543743][ T3378] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[ 1527.707554][ T3378] ntfs3(loop2): failed to convert "c46c" to iso8859-9
[ 1527.753490][ T3378] ntfs3(loop2): ino=20, mi_enum_attr
[ 1528.163144][T20804] usb 7-1: new full-speed USB device number 12 using dummy_hcd
[ 1528.175615][ T30] audit: type=1326 audit(1693.877:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3400 comm="syz.4.12920" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c8d39ce59 code=0x7ffc0000
[ 1528.279016][ T30] audit: type=1326 audit(1693.877:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3400 comm="syz.4.12920" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c8d39ce59 code=0x7ffc0000
[ 1528.402912][T20804] usb 7-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[ 1528.420020][ T30] audit: type=1326 audit(1693.886:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3400 comm="syz.4.12920" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f7c8d39ce59 code=0x7ffc0000
[ 1528.463911][T20804] usb 7-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3
[ 1528.483315][T20804] usb 7-1: Product: syz
[ 1528.489001][T20804] usb 7-1: Manufacturer: syz
[ 1528.504198][T20804] usb 7-1: SerialNumber: syz
[ 1528.520714][ T30] audit: type=1326 audit(1693.886:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3400 comm="syz.4.12920" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c8d39ce59 code=0x7ffc0000
[ 1528.609182][T20804] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
[ 1529.000532][ T3413] loop5: detected capacity change from 0 to 4096
[ 1529.012716][ T3413] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1529.012761][ T3413] NILFS (loop5): mounting unchecked fs
[ 1529.012904][ T3413] NILFS (loop5): recovery required for readonly filesystem
[ 1529.012933][ T3413] NILFS (loop5): write access will be enabled during recovery
[ 1529.019023][T20804] vp7045: USB control message 'in' went wrong.
[ 1529.019049][T20804] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[ 1529.019096][T20804] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19)
[ 1529.028931][T20804] usb 7-1: USB disconnect, device number 12
[ 1529.111531][ T3413] NILFS (loop5): norecovery option specified, skipping roll-forward recovery
[ 1529.208747][ T3413] NILFS (loop5): couldn't remount because the filesystem is in an incomplete recovery state
[ 1529.243786][ T5833] udevd[5833]: incorrect nilfs2 checksum on /dev/loop5
[ 1529.287080][ T3421] bridge4: entered promiscuous mode
[ 1529.348321][ T3423] netlink: 'syz.0.12930': attribute type 1 has an invalid length.
[ 1529.430491][ T5833] udevd[5833]: incorrect nilfs2 checksum on /dev/loop5
[ 1530.482490][ T3450] binder: 3448:3450 ioctl c0046209 0 returned -22
[ 1530.822825][ T3453] loop6: detected capacity change from 0 to 4096
[ 1530.857223][ T3453] ntfs3(loop6): Primary boot: invalid bytes per MFT record 0 (0).
[ 1530.889197][ T3453] ntfs3(loop6): try to read out of volume at offset 0x1ffe00
[ 1530.936054][ T3453] tmpfs: Bad value for 'grpquota_inode_hardlimit'
[ 1531.020854][ T3427] loop4: detected capacity change from 0 to 32768
[ 1531.037186][ T3463] xfrm1: entered allmulticast mode
[ 1531.107697][ T3427] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1531.472200][ T3427] XFS (loop4): Ending clean mount
[ 1531.812841][ T3493] xt_AUDIT: Audit type out of range (valid range: 0..2)
[ 1531.823670][ T3492] netlink: 'syz.6.12961': attribute type 9 has an invalid length.
[ 1531.885656][ T3427] XFS (loop4): Metadata CRC error detected at xfs_rmapbt_read_verify+0x26/0xe0, xfs_rmapbt block 0x14
[ 1531.948280][ T3427] XFS (loop4): Unmount and run xfs_repair
[ 1531.969873][ T3427] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[ 1532.001431][ T3427] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff RMB3............
[ 1532.041497][ T3427] 00000010: 00 a7 50 00 00 00 00 14 00 00 00 01 00 00 00 80 ..P.............
[ 1532.080701][ T3427] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1...
[ 1532.116464][ T3427] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01 ....[.;.........
[ 1532.149091][ T3427] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00 ................
[ 1532.175474][ T3505] loop1: detected capacity change from 0 to 512
[ 1532.194086][ T3427] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb ................
[ 1532.222393][ T3505] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 1532.226712][ T3427] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02 ................
[ 1532.281278][ T3427] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00 ................
[ 1532.311757][ T3427] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x24e/0x520" at daddr 0x14 len 4 error 74
[ 1532.377134][ T3427] XFS (loop4): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x3fc/0x990 (fs/xfs/xfs_trans_buf.c:311). Shutting down filesystem.
[ 1532.442793][ T3427] XFS (loop4): Please unmount the filesystem and rectify the problem(s)
[ 1532.645380][ T5859] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1533.646737][ T3544] netlink: 92 bytes leftover after parsing attributes in process `syz.5.12987'.
[ 1533.799679][ T3549] CIFS: VFS: UNC: missing delimiter between hostname and share name
[ 1533.839304][ T3549] CIFS: VFS: Malformed UNC in devname
[ 1534.333820][ T3565] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1535.189780][ T3557] loop5: detected capacity change from 0 to 32768
[ 1535.213216][ T3585] openvswitch: netlink: IP tunnel dst address not specified
[ 1535.273818][ T3557] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1535.583415][ T3557] XFS (loop5): Starting recovery (logdev: internal)
[ 1535.763697][ T3557] XFS (loop5): Ending recovery (logdev: internal)
[ 1535.805847][ T3568] loop4: detected capacity change from 0 to 32768
[ 1536.103386][ T5849] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1536.321508][ T3611] loop1: detected capacity change from 0 to 736
[ 1536.527625][ T3617] loop6: detected capacity change from 0 to 2048
[ 1536.590142][ T3617] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[ 1536.718489][ T3617] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1536.729218][ T3622] netlink: 20 bytes leftover after parsing attributes in process `syz.4.13022'.
[ 1536.816522][ T3623] ip6gre1: entered promiscuous mode
[ 1537.257876][ T3630] loop1: detected capacity change from 0 to 512
[ 1537.300502][ T3630] EXT4-fs (loop1): revision level too high, forcing read-only mode
[ 1537.329379][ T3630] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[ 1537.378856][ T3638] netlink: 40 bytes leftover after parsing attributes in process `syz.2.13029'.
[ 1537.434053][ T3630] System zones: 0-1, 15-15, 18-18, 34-34
[ 1537.476325][ T3630] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1537.506341][ T3630] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0
[ 1537.567431][ T3630] EXT4-fs warning (device loop1): ext4_enable_quotas:7265: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1537.640578][ T3630] EXT4-fs (loop1): Cannot turn on quotas: error -22
[ 1537.687158][ T3630] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.13025: bad orphan inode 16
[ 1537.731916][ T3630] loop1: lost filesystem error report for type 5 error -117
[ 1537.732162][ C1] EXT4-fs (loop1): error count since last fsck: 1
[ 1537.746147][ C1] EXT4-fs (loop1): initial error at time 1702: ext4_orphan_get:1423
[ 1537.754298][ C1] EXT4-fs (loop1): last error at time 1702: ext4_orphan_get:1423
[ 1537.774331][ T3630] ext4_test_bit(bit=15, block=18) = 1
[ 1537.787336][ T3630] is_bad_inode(inode)=0
[ 1537.792483][ T3647] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13045'.
[ 1537.794928][ T3630] NEXT_ORPHAN(inode)=0
[ 1537.813293][ T3630] max_ino=32
[ 1537.824099][ T3630] i_nlink=2
[ 1537.850322][ T3630] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1537.904310][ T3644] loop5: detected capacity change from 0 to 4096
[ 1537.942655][ T3644] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[ 1538.051812][ T3630] fscrypt (loop1, inode 16): Error -61 getting encryption context
[ 1538.108556][ T3644] ntfs3(loop5): ino=19, mi_enum_attr
[ 1538.137915][ T3644] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1538.187620][ T3655] dlm: no locking on control device
[ 1538.231785][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1538.264191][ T3644] ntfs3(loop5): ino=20, mi_enum_attr
[ 1538.378238][ T3658] netlink: 9 bytes leftover after parsing attributes in process `syz.6.13038'.
[ 1538.432372][ T3658] netlink: 9 bytes leftover after parsing attributes in process `syz.6.13038'.
[ 1538.530019][ T3660] bridge4: entered promiscuous mode
[ 1538.530660][ T30] audit: type=1326 audit(1703.577:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3662 comm="syz.2.13041" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1538.653637][ T30] audit: type=1326 audit(1703.577:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3662 comm="syz.2.13041" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1538.765023][ T30] audit: type=1326 audit(1703.633:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3662 comm="syz.2.13041" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1538.835918][ T3629] loop4: detected capacity change from 0 to 32768
[ 1538.883460][ T30] audit: type=1326 audit(1703.633:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3662 comm="syz.2.13041" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1538.922875][ T30] audit: type=1326 audit(1703.633:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3662 comm="syz.2.13041" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1538.923983][ T3629] JBD2: Ignoring recovery information on journal
[ 1538.991241][ T3629] jbd2_journal_bmap: journal block not found at offset 32 on loop4-75
[ 1539.000331][ T3629] JBD2: bad block at offset 32
[ 1539.019915][ T3674] loop2: detected capacity change from 0 to 1764
[ 1539.047917][ T3629] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1539.576482][ T3692] netlink: 180 bytes leftover after parsing attributes in process `syz.6.13055'.
[ 1539.757306][ T5859] ocfs2: Unmounting device (7,4) on (node local)
[ 1540.185426][ T3710] program syz.1.13064 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1540.650634][ T3729] loop6: detected capacity change from 0 to 512
[ 1540.659494][ T3730] ceph: No source
[ 1540.722052][ T3729] EXT4-fs error (device loop6): ext4_orphan_get:1423: comm syz.6.13073: bad orphan inode 13
[ 1540.804148][ T3729] loop6: lost filesystem error report for type 5 error -117
[ 1540.805156][ T3729] ext4_test_bit(bit=12, block=4) = 1
[ 1540.812580][ C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1540.812620][ C1] EXT4-fs (loop6): initial error at time 1705: ext4_orphan_get:1423
[ 1540.812663][ C1] EXT4-fs (loop6): last error at time 1705: ext4_orphan_get:1423
[ 1540.844170][ T3734] loop5: detected capacity change from 0 to 512
[ 1540.892320][ T3734] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1540.947574][ T3729] is_bad_inode(inode)=0
[ 1540.958360][ T3741] netlink: 'syz.4.13079': attribute type 2 has an invalid length.
[ 1540.967994][ T3729] NEXT_ORPHAN(inode)=0
[ 1540.976491][ T3734] EXT4-fs error (device loop5): ext4_orphan_get:1423: comm syz.5.13075: bad orphan inode 131083
[ 1541.012814][ T3729] max_ino=32
[ 1541.031066][ T3729] i_nlink=1
[ 1541.041114][ T3734] loop5: lost filesystem error report for type 5 error -117
[ 1541.061644][ T3734] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1541.063622][ T3729] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1541.132861][ T3734] EXT4-fs error (device loop5): ext4_find_dest_de:2049: inode #2: block 13: comm syz.5.13075: bad entry in directory: '.' directory cannot be the last in data block - offset=0, inode=2, rec_len=1024, size=1024 fake=1
[ 1541.179487][ T3729] EXT4-fs warning (device loop6): dx_probe:812: inode #2: comm syz.6.13073: Hash code is SIPHASH, but hash not in dirent
[ 1541.231633][ T3729] EXT4-fs warning (device loop6): dx_probe:933: inode #2: comm syz.6.13073: Corrupt directory, running e2fsck is recommended
[ 1541.322023][ T3753] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13082'.
[ 1541.332956][ T3729] EXT4-fs warning (device loop6): dx_probe:812: inode #2: comm syz.6.13073: Hash code is SIPHASH, but hash not in dirent
[ 1541.377842][ T3729] EXT4-fs warning (device loop6): dx_probe:933: inode #2: comm syz.6.13073: Corrupt directory, running e2fsck is recommended
[ 1541.423512][ T5849] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1541.449585][ T3729] EXT4-fs error (device loop6): ext4_find_dest_de:2049: inode #2: block 13: comm syz.6.13073: bad entry in directory: directory entry overrun - offset=24, inode=0, rec_len=131076, size=1024 fake=0
[ 1541.794853][T29259] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1541.879000][ T3767] netlink: 88 bytes leftover after parsing attributes in process `syz.2.13092'.
[ 1542.481059][ T3789] netlink: 'syz.6.13102': attribute type 1 has an invalid length.
[ 1542.639400][ T3791] loop2: detected capacity change from 0 to 2048
[ 1542.657109][ T3795] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13105'.
[ 1542.707349][ T3791] UDF-fs: INFO Mounting volume 'Li�uxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1542.734652][ T3797] syz_tun: entered promiscuous mode
[ 1542.864583][ T3801] vlan0: entered promiscuous mode
[ 1543.239806][ T3810] loop4: detected capacity change from 0 to 2048
[ 1543.278907][ T3810] UDF-fs: INFO Mounting volume 'Li�uxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1543.678662][ T3828] netlink: 'syz.4.13120': attribute type 1 has an invalid length.
[ 1543.715049][ T3828] netlink: 220 bytes leftover after parsing attributes in process `syz.4.13120'.
[ 1543.995505][ T3838] loop1: detected capacity change from 0 to 512
[ 1544.035177][ T3838] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1544.100343][ T3838] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.13127: bad orphan inode 131083
[ 1544.130088][ T3845] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 66052 out of range (51000000..2150000000)
[ 1544.172569][ T3838] loop1: lost filesystem error report for type 5 error -117
[ 1544.215653][ T3838] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1544.382930][ T3838] EXT4-fs error (device loop1): ext4_find_dest_de:2049: inode #2: block 13: comm syz.1.13127: bad entry in directory: '.' directory cannot be the last in data block - offset=0, inode=2, rec_len=1024, size=1024 fake=1
[ 1544.507114][ T3857] netlink: 'syz.4.13135': attribute type 2 has an invalid length.
[ 1544.539092][ T3857] netlink: 'syz.4.13135': attribute type 1 has an invalid length.
[ 1544.598668][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1544.685359][ T3866] loop6: detected capacity change from 0 to 64
[ 1545.445759][ T3889] netlink: 76 bytes leftover after parsing attributes in process `syz.0.13149'.
[ 1545.612465][ T3894] loop2: detected capacity change from 0 to 256
[ 1545.690579][ T3894] FAT-fs (loop2): Directory bread(block 64) failed
[ 1545.712972][ T3894] FAT-fs (loop2): Directory bread(block 65) failed
[ 1545.737455][ T3894] FAT-fs (loop2): Directory bread(block 66) failed
[ 1545.764750][ T3894] FAT-fs (loop2): Directory bread(block 67) failed
[ 1545.817487][ T3894] FAT-fs (loop2): Directory bread(block 68) failed
[ 1545.860528][ T3894] FAT-fs (loop2): Directory bread(block 69) failed
[ 1545.897452][ T3894] FAT-fs (loop2): Directory bread(block 70) failed
[ 1545.921421][ T3894] FAT-fs (loop2): Directory bread(block 71) failed
[ 1545.974698][ T3894] FAT-fs (loop2): Directory bread(block 72) failed
[ 1545.998581][ T3894] FAT-fs (loop2): Directory bread(block 73) failed
[ 1546.177739][ T30] audit: type=1800 audit(1710.739:243): pid=3894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.13152" name="bus" dev="loop2" ino=1048776 res=0 errno=0
[ 1546.868144][ T3937] loop5: detected capacity change from 0 to 256
[ 1546.877179][ T3937] exfat: Deprecated parameter 'namecase'
[ 1546.896829][ T3934] ip6gre1: entered promiscuous mode
[ 1546.908061][ T3937] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xf3765126, utbl_chksum : 0xe619d30d)
[ 1547.026395][ T3944] netlink: 'syz.6.13178': attribute type 1 has an invalid length.
[ 1547.070280][ T3944] netlink: 'syz.6.13178': attribute type 1 has an invalid length.
[ 1547.238091][T20796] usb 2-1: new high-speed USB device number 77 using dummy_hcd
[ 1547.249819][ T3946] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1547.430149][T20796] usb 2-1: Using ep0 maxpacket: 16
[ 1547.483877][T20796] usb 2-1: New USB device found, idVendor=046d, idProduct=08b5, bcdDevice=d7.01
[ 1547.503899][T20796] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1547.521626][T20796] usb 2-1: Product: syz
[ 1547.539142][T20796] usb 2-1: Manufacturer: syz
[ 1547.549654][T20796] usb 2-1: SerialNumber: syz
[ 1547.581801][T20796] usb 2-1: config 0 descriptor??
[ 1547.605436][T20796] pwc: Logitech QuickCam Orbit/Sphere USB webcam detected.
[ 1547.844560][T20796] pwc: Warning: more than 1 configuration available.
[ 1547.879495][T20796] pwc: Failed to set LED on/off time (-71)
[ 1547.890275][T20796] pwc: send_video_command error -71
[ 1547.907963][T20796] pwc: Failed to set video mode VGA@30 fps; return code = -71
[ 1547.918549][ T3967] loop2: detected capacity change from 0 to 16
[ 1547.929780][T20796] Philips webcam 2-1:0.0: probe with driver Philips webcam failed with error -71
[ 1547.960543][T20796] usb 2-1: USB disconnect, device number 77
[ 1548.003156][ T3967] erofs (device loop2): mounted with root inode @ nid 36.
[ 1548.146596][ T3971] ip6gre1: entered promiscuous mode
[ 1548.368471][ T3977] loop2: detected capacity change from 0 to 128
[ 1548.447791][ T3977] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[ 1548.480759][ T3977] FAT-fs (loop2): Filesystem has been set read-only
[ 1548.785126][ T3987] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13199'.
[ 1548.921376][ T3993] loop6: detected capacity change from 0 to 1024
[ 1549.395334][T20804] usb 3-1: new high-speed USB device number 77 using dummy_hcd
[ 1549.493961][ T4007] xt_hashlimit: invalid rate
[ 1549.578095][T20804] usb 3-1: Using ep0 maxpacket: 32
[ 1549.594454][T20804] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1549.626246][T20804] usb 3-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[ 1549.664826][T20804] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1549.682476][T20804] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[ 1549.697018][T20804] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1549.709914][T20804] usb 3-1: Product: syz
[ 1549.714232][T20804] usb 3-1: Manufacturer: syz
[ 1549.735549][T20804] usb 3-1: SerialNumber: syz
[ 1549.764240][T20804] usb 3-1: config 0 descriptor??
[ 1550.104664][ T4025] tmpfs: Bad value for 'mpol'
[ 1550.146758][ T4026] loop1: detected capacity change from 0 to 2048
[ 1550.198997][ T4030] xt_recent: Unsupported userspace flags (000000de)
[ 1550.212170][ T4032] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1550.237526][T20804] gs_usb 3-1:0.0: Couldn't get device config: (err=-71)
[ 1550.259472][T20804] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -71
[ 1550.336760][T20804] usb 3-1: USB disconnect, device number 77
[ 1550.535294][ T4040] loop1: detected capacity change from 0 to 8
[ 1550.562089][ T4040] unable to read xattr id index table
[ 1550.647062][ T5956] usb 6-1: new high-speed USB device number 73 using dummy_hcd
[ 1550.676986][T20815] usb 1-1: new high-speed USB device number 80 using dummy_hcd
[ 1550.826304][ T5956] usb 6-1: Using ep0 maxpacket: 16
[ 1550.844211][ T5956] usb 6-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1550.868482][ T5956] usb 6-1: config 0 has an invalid interface number: 125 but max is 1
[ 1550.868742][T20815] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1550.888399][ T5956] usb 6-1: config 0 has an invalid interface number: 125 but max is 1
[ 1550.898467][T20796] usb 2-1: new high-speed USB device number 78 using dummy_hcd
[ 1550.914786][T20815] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1550.933429][ T5956] usb 6-1: config 0 has an invalid interface number: 125 but max is 1
[ 1550.944045][T20815] usb 1-1: Product: syz
[ 1550.957264][ T5956] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1550.964666][T20815] usb 1-1: Manufacturer: syz
[ 1550.978708][ T5956] usb 6-1: config 0 has no interface number 0
[ 1550.984443][T20815] usb 1-1: SerialNumber: syz
[ 1550.996237][ T5956] usb 6-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[ 1551.047497][ T5956] usb 6-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[ 1551.068947][ T5956] usb 6-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1551.097552][ T5956] usb 6-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1551.112862][T20796] usb 2-1: Using ep0 maxpacket: 32
[ 1551.146132][ T5956] usb 6-1: config 0 interface 125 has no altsetting 0
[ 1551.155488][T20796] usb 2-1: config 0 has an invalid interface number: 130 but max is 0
[ 1551.169879][T20796] usb 2-1: config 0 has no interface number 0
[ 1551.187370][T20796] usb 2-1: too many endpoints for config 0 interface 130 altsetting 50: 167, using maximum allowed: 30
[ 1551.199667][ T5956] usb 6-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1551.219795][ T5956] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1551.229991][T20796] usb 2-1: config 0 interface 130 altsetting 50 has 0 endpoint descriptors, different from the interface descriptor's value: 167
[ 1551.255270][ T5956] usb 6-1: Product: syz
[ 1551.263371][ T5956] usb 6-1: Manufacturer: syz
[ 1551.270258][T20796] usb 2-1: config 0 interface 130 has no altsetting 0
[ 1551.277806][ T5956] usb 6-1: SerialNumber: syz
[ 1551.289330][T20796] usb 2-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01
[ 1551.312759][T20796] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1551.350519][ T5956] usb 6-1: config 0 descriptor??
[ 1551.361112][T20796] usb 2-1: config 0 descriptor??
[ 1551.497309][T20815] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO
[ 1551.520132][T20815] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPROTO
[ 1551.534103][T20815] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPROTO
[ 1551.548153][T20815] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1551.568171][T20815] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1551.595618][T20815] lan78xx 1-1:1.0: probe with driver lan78xx failed with error -71
[ 1551.634260][T20815] usb 1-1: USB disconnect, device number 80
[ 1551.643085][T20796] usb 2-1: string descriptor 0 read error: -71
[ 1551.662515][T20796] usb 2-1: USB disconnect, device number 78
[ 1551.848413][ T4046] loop6: detected capacity change from 0 to 32768
[ 1551.868293][T20796] usb 6-1: USB disconnect, device number 73
[ 1551.917487][ T4046] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1551.996959][ T4070] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1552.241698][ T4046] XFS (loop6): Starting recovery (logdev: internal)
[ 1552.365312][ T4040] Process accounting resumed
[ 1552.391015][ T4046] XFS (loop6): Ending recovery (logdev: internal)
[ 1552.771795][T29259] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1552.908642][ T4095] loop4: detected capacity change from 0 to 256
[ 1552.958204][ T4095] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1553.053314][ T4098] loop5: detected capacity change from 0 to 1024
[ 1553.088391][ T30] audit: type=1800 audit(1717.209:244): pid=4095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.13248" name="bus" dev="loop4" ino=1048778 res=0 errno=0
[ 1553.093354][ T4098] hfsplus: cannot replace xattr
[ 1553.843669][ T4111] trusted_key: encrypted_key: keylen parameter is missing
[ 1553.853594][ T4080] loop2: detected capacity change from 0 to 32768
[ 1553.891769][ T4080] jfs_strtoUCS: char2uni returned -22.
[ 1553.916259][ T4080] charset = iso8859-6, char = 0xfc
[ 1554.182749][ T4115] netlink: 'syz.4.13258': attribute type 11 has an invalid length.
[ 1554.470562][ T4092] loop1: detected capacity change from 0 to 32768
[ 1554.508408][ T4127] netlink: 256 bytes leftover after parsing attributes in process `syz.4.13265'.
[ 1554.599067][ T4092] ERROR: (device loop1): diAllocAG: numfree > numinos
[ 1554.599067][ T4092]
[ 1554.701817][ T4092] ERROR: (device loop1): remounting filesystem as read-only
[ 1554.760688][ T4092] ialloc: diAlloc returned -5!
[ 1554.801637][T20815] usb 6-1: new high-speed USB device number 74 using dummy_hcd
[ 1555.010964][T20815] usb 6-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1555.056054][T20815] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1555.072128][ T4138] loop4: detected capacity change from 0 to 256
[ 1555.079392][ T4139] loop1: detected capacity change from 0 to 64
[ 1555.088961][T20804] usb 3-1: new high-speed USB device number 78 using dummy_hcd
[ 1555.099952][T20815] usb 6-1: config 0 descriptor??
[ 1555.215663][ T4138] FAT-fs (loop4): Directory bread(block 64) failed
[ 1555.233731][ T4138] FAT-fs (loop4): Directory bread(block 65) failed
[ 1555.255591][ T4138] FAT-fs (loop4): Directory bread(block 66) failed
[ 1555.271956][ T4138] FAT-fs (loop4): Directory bread(block 67) failed
[ 1555.287471][T20804] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1555.301851][ T4138] FAT-fs (loop4): Directory bread(block 68) failed
[ 1555.312869][T20804] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7
[ 1555.329336][ T4138] FAT-fs (loop4): Directory bread(block 69) failed
[ 1555.344261][T20804] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 116, changing to 7
[ 1555.356769][ T4138] FAT-fs (loop4): Directory bread(block 70) failed
[ 1555.386148][ T4138] FAT-fs (loop4): Directory bread(block 71) failed
[ 1555.416585][ T4138] FAT-fs (loop4): Directory bread(block 72) failed
[ 1555.449096][T20804] usb 3-1: string descriptor 0 read error: -22
[ 1555.465908][T20804] usb 3-1: New USB device found, idVendor=1235, idProduct=8012, bcdDevice= 0.40
[ 1555.475292][ T4138] FAT-fs (loop4): Directory bread(block 73) failed
[ 1555.496898][T20804] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1555.589121][T20815] usb 6-1: Cannot set MAC address
[ 1555.606903][T20815] MOSCHIP usb-ethernet driver 6-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[ 1555.689312][T20815] usb 6-1: USB disconnect, device number 74
[ 1555.701235][ T30] audit: type=1800 audit(1719.653:245): pid=4138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.13270" name="bus" dev="loop4" ino=1048779 res=0 errno=0
[ 1556.045895][ T4156] loop6: detected capacity change from 0 to 1024
[ 1556.217545][ T802] usb 3-1: USB disconnect, device number 78
[ 1556.758193][ T4176] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1556.768489][ T4178] loop1: detected capacity change from 0 to 256
[ 1556.914346][ T4180] netlink: 20 bytes leftover after parsing attributes in process `syz.0.13290'.
[ 1557.742566][ T4168] loop6: detected capacity change from 0 to 32768
[ 1558.182673][ T4210] netlink: 'syz.6.13302': attribute type 10 has an invalid length.
[ 1558.262749][ T4210] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1558.311048][ T4183] loop5: detected capacity change from 0 to 32768
[ 1558.321445][ T4210] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[ 1558.466080][ T4183] ERROR: (device loop5): dbAllocNext: Corrupt dmap page
[ 1558.466080][ T4183]
[ 1558.532502][ T4183] ERROR: (device loop5): remounting filesystem as read-only
[ 1558.550195][ T4215] loop4: detected capacity change from 0 to 2048
[ 1558.587449][ T4215] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1558.685327][ T4216] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1558.725142][ T4215] NILFS error (device loop4): __nilfs_read_inode: invalid file type bits in mode 0177777 for inode 12
[ 1558.758715][ T4192] loop2: detected capacity change from 0 to 32768
[ 1558.840239][ T4192] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1558.868465][ T4215] Remounting filesystem read-only
[ 1559.121628][ T4234] netlink: 16 bytes leftover after parsing attributes in process `syz.1.13311'.
[ 1559.259755][ T4237] xt_policy: neither incoming nor outgoing policy selected
[ 1559.375221][ T4192] XFS (loop2): Starting recovery (logdev: internal)
[ 1559.399555][ T4240] bridge5: entered promiscuous mode
[ 1559.432733][ T4240] bridge5: entered allmulticast mode
[ 1559.537175][ T4192] XFS (loop2): Ending recovery (logdev: internal)
[ 1559.607282][ T4245] xt_l2tp: v2 doesn't support IP mode
[ 1559.732820][ T4250] loop4: detected capacity change from 0 to 1024
[ 1559.771463][ T4250] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only.
[ 1559.934479][ T5852] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1560.131243][T20796] usb 6-1: new high-speed USB device number 75 using dummy_hcd
[ 1560.321879][T20796] usb 6-1: Using ep0 maxpacket: 32
[ 1560.345838][T20796] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1560.412847][T20796] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1560.439528][T20796] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1560.464570][T20796] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1560.524787][T20796] usb 6-1: config 0 descriptor??
[ 1560.550353][T20796] hub 6-1:0.0: USB hub found
[ 1560.812805][T20796] hub 6-1:0.0: 29 ports detected
[ 1560.818426][T20796] hub 6-1:0.0: insufficient power available to use all downstream ports
[ 1560.911021][ T4279] loop2: detected capacity change from 0 to 8
[ 1561.032875][T20796] hub 6-1:0.0: hub_hub_status failed (err = -71)
[ 1561.068568][T20796] hub 6-1:0.0: config failed, can't get hub status (err -71)
[ 1561.138973][T20796] usbhid 6-1:0.0: can't add hid device: -71
[ 1561.172106][T20796] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1561.223379][T20796] usb 6-1: USB disconnect, device number 75
[ 1561.394765][ T4289] loop6: detected capacity change from 0 to 4096
[ 1561.514156][ T4298] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1561.607349][ T4289] NILFS error (device loop6): nilfs_check_folio: size of directory #2 is not a multiple of chunk size
[ 1561.676653][ T4289] Remounting filesystem read-only
[ 1561.771559][ T4304] loop4: detected capacity change from 0 to 64
[ 1562.247233][ T4314] loop1: detected capacity change from 0 to 256
[ 1562.329679][ T4314] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d)
[ 1563.196556][ T4338] loop6: detected capacity change from 0 to 1024
[ 1563.292344][ T4338] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1563.461040][ T4338] EXT4-fs error (device loop6): ext4_empty_dir:3114: inode #11: block 623: comm syz.6.13360: Attempting to read directory block (623) that is past i_size (638464)
[ 1563.725010][T29259] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1563.983725][ T4362] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[ 1564.059079][ T4362] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[ 1564.961955][ T4398] loop5: detected capacity change from 0 to 256
[ 1565.154040][ T4398] FAT-fs (loop5): error, clusters badly computed (0 != 128)
[ 1565.170443][ T4398] FAT-fs (loop5): Filesystem has been set read-only
[ 1565.201486][ T4398] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[ 1565.291799][ T4407] misc userio: Invalid payload size
[ 1565.692077][ T4419] bridge6: the hash_elasticity option has been deprecated and is always 16
[ 1565.743584][ T4422] loop4: detected capacity change from 0 to 1024
[ 1565.800330][ T4422] EXT4-fs: Ignoring removed bh option
[ 1565.852656][ T4424] netlink: 'syz.0.13400': attribute type 2 has an invalid length.
[ 1565.891134][ T4424] netlink: 132 bytes leftover after parsing attributes in process `syz.0.13400'.
[ 1565.909406][ T4422] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1565.947498][ T4386] loop6: detected capacity change from 0 to 32768
[ 1565.995553][ T4386] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1566.004695][ T4422] EXT4-fs error (device loop4): ext4_get_first_dir_block:3548: inode #11: comm syz.4.13399: directory missing '.'
[ 1566.120155][ T4422] EXT4-fs (loop4): Remounting filesystem read-only
[ 1566.181464][ T4386] XFS (loop6): Ending clean mount
[ 1566.411848][ T5859] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1566.441522][T29259] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1567.423879][ T5983] usb 2-1: new high-speed USB device number 79 using dummy_hcd
[ 1567.476766][ T4473] netlink: 'syz.2.13420': attribute type 39 has an invalid length.
[ 1567.599622][ T5983] usb 2-1: Using ep0 maxpacket: 8
[ 1567.622767][ T5983] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 1567.654682][ T5983] usb 2-1: config 0 has no interface number 0
[ 1567.687946][ T5983] usb 2-1: config 0 interface 1 has no altsetting 0
[ 1567.717046][ T5983] usb 2-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f
[ 1567.737145][ T5983] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1567.762913][ T5983] usb 2-1: Product: syz
[ 1567.777386][ T5983] usb 2-1: Manufacturer: syz
[ 1567.796364][ T5983] usb 2-1: SerialNumber: syz
[ 1567.827589][ T5983] usb 2-1: config 0 descriptor??
[ 1567.869638][ T4477] loop4: detected capacity change from 0 to 4096
[ 1567.893038][ T4451] loop5: detected capacity change from 0 to 32768
[ 1567.951124][ T4451]
[ 1567.951124][ T4451] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1567.951124][ T4451]
[ 1568.008238][ T4477] ntfs3(loop4): Failed to load $Extend (-22).
[ 1568.020399][ T4485] xt_cluster: node mask cannot exceed total number of nodes
[ 1568.029487][ T4477] ntfs3(loop4): Failed to initialize $Extend.
[ 1568.041058][ T4451] freecnt=0, but freelist=3 in dtroot
[ 1568.041058][ T4451]
[ 1568.060024][ T4451] ERROR: (device loop5): copy_from_dinode: Corrupt dtroot
[ 1568.060024][ T4451]
[ 1568.083612][ T5983] i2c-cp2615 2-1:0.1: probe with driver i2c-cp2615 failed with error -22
[ 1568.092263][ T4451] jfs_lookup: iget failed on inum 32
[ 1568.099538][ T4477] ntfs3(loop4): ino=5, "/" indx_read_ra
[ 1568.281320][ T5849]
[ 1568.281320][ T5849] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1568.281320][ T5849]
[ 1568.311998][ T5849]
[ 1568.311998][ T5849] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1568.311998][ T5849]
[ 1568.399267][T20804] usb 2-1: USB disconnect, device number 79
[ 1568.801710][ T5983] usb 1-1: new high-speed USB device number 81 using dummy_hcd
[ 1568.819523][ T4500] loop5: detected capacity change from 0 to 512
[ 1568.895314][ T4500] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1568.985401][ T5983] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1569.004563][ T5983] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7
[ 1569.019937][ T4506] netlink: 'syz.6.13433': attribute type 11 has an invalid length.
[ 1569.028207][ T5983] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 116, changing to 7
[ 1569.040197][ T4506] netlink: 199828 bytes leftover after parsing attributes in process `syz.6.13433'.
[ 1569.053702][ T5983] usb 1-1: string descriptor 0 read error: -22
[ 1569.071033][ T5983] usb 1-1: New USB device found, idVendor=1235, idProduct=8012, bcdDevice= 0.40
[ 1569.103946][ T5983] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1569.206624][ T4481] loop2: detected capacity change from 0 to 32768
[ 1569.281697][ T4481] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1569.315894][ T5849] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1569.521630][ T4481] XFS (loop2): Ending clean mount
[ 1569.845331][ T5983] usb 1-1: USB disconnect, device number 81
[ 1569.853531][ T5852] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1570.050763][ T4499] loop4: detected capacity change from 0 to 32768
[ 1570.226960][ T4499] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1570.507576][ T4541] xt_HMARK: proto mask must be zero with L3 mode
[ 1570.733601][ T4499] XFS (loop4): Starting recovery (logdev: internal)
[ 1571.027033][ T4499] XFS (loop4): Ending recovery (logdev: internal)
[ 1571.300634][ T4559] openvswitch: netlink: Unknown nsh attribute 0
[ 1571.457172][ T5859] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1571.566139][ T4568] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13457'.
[ 1571.735254][ T4564] bond6: Removing last arp target with arp_interval on
[ 1571.771349][ T4564] bond6: entered promiscuous mode
[ 1571.823059][ T4564] bond6: entered allmulticast mode
[ 1571.852039][ T4564] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1572.152234][T20796] usb 2-1: new high-speed USB device number 80 using dummy_hcd
[ 1572.280683][ T4585] loop2: detected capacity change from 0 to 2048
[ 1572.314090][ T4585] UDF-fs: INFO Mounting volume 'Li�uxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1572.341959][T20796] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1572.374516][T20796] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7
[ 1572.423027][T20796] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 116, changing to 7
[ 1572.456440][ T4590] loop4: detected capacity change from 0 to 16
[ 1572.486947][T20796] usb 2-1: string descriptor 0 read error: -22
[ 1572.506741][T20796] usb 2-1: New USB device found, idVendor=1235, idProduct=8012, bcdDevice= 0.40
[ 1572.566383][T20796] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1572.570432][ T4590] erofs (device loop4): mounted with root inode @ nid 36.
[ 1572.656644][ T4590] erofs (device loop4): not enough plain data on disk @ la 1024 of nid 36
[ 1572.720134][ T4590] erofs (device loop4): read error -117 @ 0 of nid 36
[ 1572.844286][ T4599] bond0: (slave sit0): refused to change device type
[ 1573.064235][ T4605] nvme_fabrics: unknown parameter or missing value '�‚' in ctrl creation request
[ 1573.262377][T20796] usb 2-1: USB disconnect, device number 80
[ 1575.068322][ T4676] overlayfs: missing 'lowerdir'
[ 1575.177737][T20804] usb 5-1: new high-speed USB device number 85 using dummy_hcd
[ 1575.372384][T20804] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1575.400442][T20804] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7
[ 1575.420426][ T4688] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1575.452673][T20804] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 116, changing to 7
[ 1575.482563][ T4690] nfs: Unknown parameter 'ntext'
[ 1575.526805][T20804] usb 5-1: string descriptor 0 read error: -22
[ 1575.551039][T20804] usb 5-1: New USB device found, idVendor=1235, idProduct=8012, bcdDevice= 0.40
[ 1575.584094][T20804] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1575.641446][ T4692] netlink: del zone limit has 8 unknown bytes
[ 1576.064333][ T4674] loop2: detected capacity change from 0 to 32768
[ 1576.116500][ T4674] JBD2: Ignoring recovery information on journal
[ 1576.213130][T20804] usb 5-1: USB disconnect, device number 85
[ 1576.305824][ T4674] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[ 1576.875332][ T5852] ocfs2: Unmounting device (7,2) on (node local)
[ 1577.086724][ T4721] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13530'.
[ 1577.131133][ T4724] rtc_cmos PNP0B00:00: Alarms can be up to one day in the future
[ 1577.315963][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1577.316784][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[ 1577.335275][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[ 1577.817359][ T4705] loop1: detected capacity change from 0 to 32768
[ 1577.881887][ T4742] loop4: detected capacity change from 0 to 1024
[ 1577.891912][ T4705] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1577.945427][ T4742] EXT4-fs (loop4): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[ 1578.012090][ T4742] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #3: block 2: comm syz.4.13539: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1578.104242][ T4742] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1578.109370][ T4742] Quota error (device loop4): qtree_write_dquot: dquota write failed
[ 1578.109443][ T4742] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #3: block 48: comm syz.4.13539: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1578.109501][ T4742] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1578.111176][ T4742] Quota error (device loop4): v2_write_file_info: Can't write info structure
[ 1578.111265][ T4742] EXT4-fs error (device loop4): ext4_acquire_dquot:7032: comm syz.4.13539: Failed to acquire dquot type 0
[ 1578.111308][ T4742] loop4: lost filesystem error report for type 5 error -117
[ 1578.114522][ C0] EXT4-fs (loop4): error count since last fsck: 3
[ 1578.114556][ C0] EXT4-fs (loop4): initial error at time 1740: ext4_map_blocks:791: inode 3: block 2
[ 1578.114626][ C0] EXT4-fs (loop4): last error at time 1740: ext4_acquire_dquot:7032
[ 1578.146153][ T4742] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6383: Corrupt filesystem
[ 1578.146197][ T4742] loop4: lost filesystem error report for type 5 error -117
[ 1578.153898][ T4742] EXT4-fs error (device loop4): ext4_evict_inode:267: inode #11: comm syz.4.13539: mark_inode_dirty error
[ 1578.153974][ T4742] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1578.154588][ T4742] EXT4-fs warning (device loop4): ext4_evict_inode:269: couldn't mark inode dirty (err -117)
[ 1578.154690][ T4742] EXT4-fs (loop4): 1 orphan inode deleted
[ 1578.159511][T28202] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:13: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1578.159574][T28202] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1578.159904][T28202] Quota error (device loop4): remove_tree: Can't read quota data block 1
[ 1578.159957][T28202] EXT4-fs error (device loop4): ext4_release_dquot:7068: comm kworker/u8:13: Failed to release dquot type 0
[ 1578.159999][T28202] loop4: lost filesystem error report for type 5 error -117
[ 1578.171709][ T4742] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1578.430754][ T5859] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1578.441591][T28204] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:14: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1578.441655][T28204] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1578.443109][T28204] Quota error (device loop4): remove_tree: Can't read quota data block 1
[ 1578.443178][T28204] EXT4-fs error (device loop4): ext4_release_dquot:7068: comm kworker/u8:14: Failed to release dquot type 0
[ 1578.443225][T28204] loop4: lost filesystem error report for type 5 error -117
[ 1578.447501][ T5859] EXT4-fs error (device loop4): __ext4_get_inode_loc:4884: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 1578.447553][ T5859] loop4: lost filesystem error report for type 5 error -117
[ 1578.449397][ T5859] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6383: Corrupt filesystem
[ 1578.449435][ T5859] loop4: lost filesystem error report for type 5 error -117
[ 1578.450387][ T5859] EXT4-fs error (device loop4): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error
[ 1578.450433][ T5859] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1578.541159][ T4705] XFS (loop1): Starting recovery (logdev: internal)
[ 1578.650899][ T4705] XFS (loop1): Ending recovery (logdev: internal)
[ 1578.945437][ T5843] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1579.533084][ T4784] loop2: detected capacity change from 0 to 2048
[ 1579.658636][ T4784] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1579.867709][ T4784] EXT4-fs error (device loop2): ext4_find_extent:939: inode #2: comm syz.2.13558: pblk 93 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(4)
[ 1580.031813][ T5852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1580.978006][T20796] usb 6-1: new high-speed USB device number 76 using dummy_hcd
[ 1581.102118][ T4832] loop1: detected capacity change from 0 to 256
[ 1581.192957][T20796] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[ 1581.226701][T20796] usb 6-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1581.263149][T20796] usb 6-1: Product: syz
[ 1581.282744][T20796] usb 6-1: SerialNumber: syz
[ 1581.350036][T20796] usb 6-1: config 0 descriptor??
[ 1581.627197][T20796] hso 6-1:0.0: Can't find BULK endpoints
[ 1581.854463][ T802] usb 6-1: USB disconnect, device number 76
[ 1581.925291][ T4859] loop6: detected capacity change from 0 to 256
[ 1581.975847][ T4859] exfat: Deprecated parameter 'utf8'
[ 1582.026882][ T4859] exfat: Deprecated parameter 'utf8'
[ 1582.131909][ T4863] loop4: detected capacity change from 0 to 2048
[ 1582.162739][ T4867] loop1: detected capacity change from 0 to 64
[ 1582.181474][ T4863] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1582.221301][ T4859] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1582.308607][ T4869] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1582.456104][ T4873] netlink: 412 bytes leftover after parsing attributes in process `syz.2.13599'.
[ 1582.699577][ T4875] loop1: detected capacity change from 0 to 2048
[ 1582.790161][ T4875] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1582.985232][ T4885] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1314: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[ 1583.161669][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1583.439369][ T4898] xt_connbytes: Forcing CT accounting to be enabled
[ 1583.474497][ T4898] set match dimension is over the limit!
[ 1583.680903][T20796] usb 6-1: new full-speed USB device number 77 using dummy_hcd
[ 1583.690352][ T5983] usb 1-1: new high-speed USB device number 82 using dummy_hcd
[ 1583.829863][ T4915] loop4: detected capacity change from 0 to 16
[ 1583.846028][ T4916] netlink: 20 bytes leftover after parsing attributes in process `syz.1.13619'.
[ 1583.853703][ T4915] MTD: Attempt to mount non-MTD device "/dev/loop4"
[ 1583.892720][ T5983] usb 1-1: Using ep0 maxpacket: 32
[ 1583.914301][ T5983] usb 1-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice= 0.40
[ 1583.924962][T20796] usb 6-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f
[ 1583.945900][ T5983] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1583.961864][T20796] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1583.978579][ T5983] usb 1-1: Product: syz
[ 1583.987948][T20796] usb 6-1: Product: syz
[ 1583.998119][ T5983] usb 1-1: Manufacturer: syz
[ 1584.003226][ T24] usb 3-1: new high-speed USB device number 79 using dummy_hcd
[ 1584.015806][T20796] usb 6-1: Manufacturer: syz
[ 1584.031568][ T5983] usb 1-1: SerialNumber: syz
[ 1584.036392][T20796] usb 6-1: SerialNumber: syz
[ 1584.057398][T20796] usb 6-1: config 0 descriptor??
[ 1584.085791][T20796] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state.
[ 1584.110801][T20796] dvb-usb: bulk message failed: -22 (4/0)
[ 1584.134632][T20796] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1584.157898][T20796] dvb-usb: bulk message failed: -22 (5/0)
[ 1584.172085][T20796] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1584.204980][ T24] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1584.216760][T20796] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[ 1584.241000][ T24] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1584.271963][ T24] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1584.303092][ T24] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1584.313188][T20796] dvb-usb: Pinnacle 450e DVB-S USB2.0 error while loading driver (-19)
[ 1584.333522][ T24] usb 3-1: Product: syz
[ 1584.338297][ T24] usb 3-1: Manufacturer: syz
[ 1584.349039][ T24] usb 3-1: SerialNumber: syz
[ 1584.364553][T20796] usb 6-1: USB disconnect, device number 77
[ 1584.375425][ T5983] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 1584.389200][ T24] usb 3-1: config 0 descriptor??
[ 1584.394419][ T5983] snd-usb-audio 1-1:1.1: probe with driver snd-usb-audio failed with error -2
[ 1584.415511][ T24] usb 3-1: selecting invalid altsetting 0
[ 1584.442805][ T5983] usb 1-1: USB disconnect, device number 82
[ 1584.521455][ T4926] Process accounting paused
[ 1584.678186][ T24] usb 3-1: USB disconnect, device number 79
[ 1584.818326][ T5830] udevd[5830]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1584.934572][ T4934] loop4: detected capacity change from 0 to 4096
[ 1584.968184][ T4934] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1585.114922][ T4934] ntfs3(loop4): Inode r=19 is not in use!
[ 1585.145145][ T4934] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1585.164038][ T4945] loop6: detected capacity change from 0 to 64
[ 1585.292532][ T4945] syz.6.13631: attempt to access beyond end of device
[ 1585.292532][ T4945] loop6: rw=0, sector=268435468, nr_sectors = 2 limit=64
[ 1585.312705][ T4934] ntfs3(loop4): ino=1b, mi_enum_attr
[ 1585.332552][ T4945] Buffer I/O error on dev loop6, logical block 134217734, async page read
[ 1585.354095][ T4934] ntfs3(loop4): ino=1b, mi_enum_attr
[ 1585.741799][ T4959] loop6: detected capacity change from 0 to 256
[ 1585.858562][ T4959] FAT-fs (loop6): Directory bread(block 64) failed
[ 1585.896564][ T4959] FAT-fs (loop6): Directory bread(block 65) failed
[ 1585.924349][ T4959] FAT-fs (loop6): Directory bread(block 66) failed
[ 1585.954717][ T4959] FAT-fs (loop6): Directory bread(block 67) failed
[ 1585.983054][ T4959] FAT-fs (loop6): Directory bread(block 68) failed
[ 1586.012414][ T4959] FAT-fs (loop6): Directory bread(block 69) failed
[ 1586.042370][ T4959] FAT-fs (loop6): Directory bread(block 70) failed
[ 1586.077665][ T4959] FAT-fs (loop6): Directory bread(block 71) failed
[ 1586.093409][ T4959] FAT-fs (loop6): Directory bread(block 72) failed
[ 1586.129933][ T4959] FAT-fs (loop6): Directory bread(block 73) failed
[ 1586.259368][ T4976] netlink: 132 bytes leftover after parsing attributes in process `syz.0.13642'.
[ 1586.303612][ T4942] loop1: detected capacity change from 0 to 32768
[ 1586.343244][ T4942] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1586.430240][ T4942] XFS (loop1): Ending clean mount
[ 1586.601035][ T5843] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1586.769038][ T24] usb 5-1: new high-speed USB device number 86 using dummy_hcd
[ 1586.875450][ T30] audit: type=1326 audit(1748.837:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5000 comm="syz.6.13648" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f321279ce59 code=0x7ffc0000
[ 1586.972768][ T30] audit: type=1326 audit(1748.837:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5000 comm="syz.6.13648" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f321279ce59 code=0x7ffc0000
[ 1586.989091][ T24] usb 5-1: too many configurations: 72, using maximum allowed: 8
[ 1587.058721][ T24] usb 5-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db
[ 1587.085563][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1587.088405][ T5003] loop1: detected capacity change from 0 to 256
[ 1587.129855][ T30] audit: type=1326 audit(1748.847:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5000 comm="syz.6.13648" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f321279ce59 code=0x7ffc0000
[ 1587.179692][ T24] usb 5-1: config 0 descriptor??
[ 1587.248703][ T30] audit: type=1326 audit(1748.847:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5000 comm="syz.6.13648" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f321279ce59 code=0x7ffc0000
[ 1587.275749][ T24] rndis_host 5-1:0.0: rndis: master #0/ffff888079296000 slave #1/0000000000000000
[ 1587.304163][ T5008] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13652'.
[ 1587.342618][ T5003] FAT-fs (loop1): Directory bread(block 64) failed
[ 1587.358557][ T5003] FAT-fs (loop1): Directory bread(block 65) failed
[ 1587.371018][ T5003] FAT-fs (loop1): Directory bread(block 66) failed
[ 1587.390257][ T5003] FAT-fs (loop1): Directory bread(block 67) failed
[ 1587.484696][ T5003] FAT-fs (loop1): Directory bread(block 68) failed
[ 1587.514249][ T5003] FAT-fs (loop1): Directory bread(block 69) failed
[ 1587.530150][ T24] usb 5-1: USB disconnect, device number 86
[ 1587.536225][ T5003] FAT-fs (loop1): Directory bread(block 70) failed
[ 1587.536274][ T5003] FAT-fs (loop1): Directory bread(block 71) failed
[ 1587.536381][ T5003] FAT-fs (loop1): Directory bread(block 72) failed
[ 1587.608973][ T5011] netlink: 'syz.0.13654': attribute type 2 has an invalid length.
[ 1587.631807][ T5011] netlink: 723 bytes leftover after parsing attributes in process `syz.0.13654'.
[ 1587.642580][ T5003] FAT-fs (loop1): Directory bread(block 73) failed
[ 1588.158002][ T30] audit: type=1326 audit(1750.045:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5026 comm="syz.5.13662" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cab79ce59 code=0x7ffc0000
[ 1588.249832][ T5032] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1588.284809][ T30] audit: type=1326 audit(1750.083:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5026 comm="syz.5.13662" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cab79ce59 code=0x7ffc0000
[ 1588.382511][ T30] audit: type=1326 audit(1750.083:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5026 comm="syz.5.13662" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f1cab79ce59 code=0x7ffc0000
[ 1588.428778][ T5035] openvswitch: netlink: Missing key (keys=40, expected=2000)
[ 1588.469045][ T30] audit: type=1326 audit(1750.083:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5026 comm="syz.5.13662" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cab79ce59 code=0x7ffc0000
[ 1588.593590][ T30] audit: type=1326 audit(1750.083:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5026 comm="syz.5.13662" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cab79ce59 code=0x7ffc0000
[ 1588.909792][ T5054] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1589.168768][T20796] usb 1-1: new high-speed USB device number 83 using dummy_hcd
[ 1589.204596][ T802] usb 6-1: new high-speed USB device number 78 using dummy_hcd
[ 1589.354877][T20796] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1589.381029][T20796] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1589.393354][ T802] usb 6-1: Using ep0 maxpacket: 8
[ 1589.415247][T20796] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1589.415586][ T802] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1589.457578][T20796] usb 1-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1589.497735][ T802] usb 6-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1589.515435][T20796] usb 1-1: config 1 interface 1 has no altsetting 0
[ 1589.518290][ T802] usb 6-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1589.547367][T20796] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1589.560036][ T802] usb 6-1: Product: syz
[ 1589.567493][T20796] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1589.573489][ T802] usb 6-1: Manufacturer: syz
[ 1589.598627][T20796] usb 1-1: Product: syz
[ 1589.599722][ T802] usb 6-1: SerialNumber: syz
[ 1589.618198][T20796] usb 1-1: Manufacturer: syz
[ 1589.638974][T20796] usb 1-1: SerialNumber: syz
[ 1589.691107][T20796] cdc_ncm 1-1:1.0: skipping garbage
[ 1589.713001][T20796] cdc_ncm 1-1:1.0: skipping garbage
[ 1589.734218][T20796] cdc_ncm 1-1:1.0: NCM or ECM functional descriptors missing
[ 1589.753156][T20796] cdc_ncm 1-1:1.0: bind() failure
[ 1589.884382][ T802] usb 6-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1589.902884][ T802] usb 6-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1589.920428][ T802] usb 6-1: Handspring Visor / Palm OS: Number of ports: 2
[ 1589.976428][ T5057] loop2: detected capacity change from 0 to 32768
[ 1590.020150][ T5057] XFS (loop2): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[ 1590.100157][ T802] usb 6-1: palm_os_3_probe - error -71 getting bytes available request
[ 1590.137424][ T802] visor 6-1:1.0: Handspring Visor / Palm OS converter detected
[ 1590.150278][ T5057] XFS (loop2): Ending clean mount
[ 1590.168474][ T802] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1590.222141][ T5057] XFS (loop2): Quotacheck needed: Please wait.
[ 1590.245726][ T802] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1590.296385][T20804] usb 1-1: USB disconnect, device number 83
[ 1590.317322][ T802] usb 6-1: USB disconnect, device number 78
[ 1590.378218][ T802] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1590.450997][ T802] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1590.460641][ T5057] XFS (loop2): Quotacheck: Done.
[ 1590.478770][ T802] visor 6-1:1.0: device disconnected
[ 1590.593580][ T5852] XFS (loop2): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[ 1590.952466][ T5065] loop1: detected capacity change from 0 to 40427
[ 1591.007949][ T5065] F2FS-fs (loop1): build fault injection rate: 14
[ 1591.028239][ T5065] F2FS-fs (loop1): build fault injection type: 0x0
[ 1591.047547][ T5095] netlink: 'syz.6.13693': attribute type 4 has an invalid length.
[ 1591.073452][ T5065] F2FS-fs (loop1): invalid crc value
[ 1591.085042][ T5095] netlink: 152 bytes leftover after parsing attributes in process `syz.6.13693'.
[ 1591.186617][ T30] audit: type=1326 audit(1752.882:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5098 comm="syz.0.13694" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15fe19ce59 code=0x7ffc0000
[ 1591.339745][ T5095] .`: renamed from bond0 (while UP)
[ 1591.499634][ T5065] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1591.640072][ T5065] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1591.878602][ T5110] Device name not specified.
[ 1591.878602][ T5110]
[ 1591.983298][ T5114] netlink: 'syz.5.13700': attribute type 7 has an invalid length.
[ 1592.016258][ T5114] �: entered promiscuous mode
[ 1592.023110][ T5843] syz-executor: attempt to access beyond end of device
[ 1592.023110][ T5843] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1592.122348][ T5843] CPU: 1 UID: 0 PID: 5843 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full)
[ 1592.122410][ T5843] Tainted: [L]=SOFTLOCKUP
[ 1592.122425][ T5843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1592.122449][ T5843] Call Trace:
[ 1592.122462][ T5843]
[ 1592.122478][ T5843] dump_stack_lvl+0x100/0x190
[ 1592.122529][ T5843] f2fs_stop_checkpoint+0x600/0x9b0
[ 1592.122569][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.122619][ T5843] ? errseq_set+0xe3/0x150
[ 1592.122663][ T5843] ? errseq_set+0xe3/0x150
[ 1592.122707][ T5843] f2fs_write_end_io+0xf59/0x1340
[ 1592.122756][ T5843] ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1592.122807][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.122867][ T5843] ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1592.122911][ T5843] bio_endio+0x78f/0x8f0
[ 1592.122974][ T5843] submit_bio_noacct+0x64c/0x2000
[ 1592.123033][ T5843] f2fs_submit_write_bio+0x135/0x340
[ 1592.123100][ T5843] __submit_merged_bio+0x331/0x780
[ 1592.123152][ T5843] __submit_merged_write_cond+0x3fe/0x510
[ 1592.123208][ T5843] ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1592.123264][ T5843] ? __pfx___might_resched+0x10/0x10
[ 1592.123326][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.123384][ T5843] f2fs_write_cache_pages+0x20e9/0x2630
[ 1592.123459][ T5843] ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 1592.123515][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.123563][ T5843] ? bpf_ksym_find+0x124/0x1c0
[ 1592.123624][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.123672][ T5843] ? __lock_acquire+0x4a5/0x2630
[ 1592.123748][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.123820][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.123868][ T5843] ? __lock_acquire+0x4a5/0x2630
[ 1592.123914][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.124009][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.124057][ T5843] ? rcu_is_watching+0x12/0xc0
[ 1592.124124][ T5843] f2fs_write_data_pages+0x799/0x16d0
[ 1592.124192][ T5843] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1592.124261][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.124319][ T5843] ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1592.124377][ T5843] do_writepages+0x278/0x600
[ 1592.124448][ T5843] ? __pfx_do_writepages+0x10/0x10
[ 1592.124511][ T5843] ? do_raw_spin_unlock+0x145/0x1e0
[ 1592.124570][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.124618][ T5843] ? _raw_spin_unlock+0x28/0x50
[ 1592.124684][ T5843] filemap_writeback+0x22d/0x2e0
[ 1592.124726][ T5843] ? __pfx_filemap_writeback+0x10/0x10
[ 1592.124763][ T5843] ? check_noncircular+0x97/0x160
[ 1592.124860][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.124908][ T5843] ? find_held_lock+0x2b/0x80
[ 1592.124971][ T5843] ? f2fs_sync_dirty_inodes+0x3a6/0x990
[ 1592.125025][ T5843] ? f2fs_sync_dirty_inodes+0x3a6/0x990
[ 1592.125079][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.125141][ T5843] f2fs_sync_dirty_inodes+0x469/0x990
[ 1592.125215][ T5843] block_operations+0x2a6/0xfc0
[ 1592.125267][ T5843] ? __bfs+0x150/0x2a0
[ 1592.125316][ T5843] ? __pfx_block_operations+0x10/0x10
[ 1592.125367][ T5843] ? check_noncircular+0x97/0x160
[ 1592.125461][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.125514][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.125561][ T5843] ? rcu_is_watching+0x12/0xc0
[ 1592.125618][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.125674][ T5843] f2fs_write_checkpoint+0x582/0x5550
[ 1592.125738][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.125786][ T5843] ? _raw_spin_unlock_irq+0x2e/0x50
[ 1592.125846][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.125894][ T5843] ? __wait_for_common+0x1f3/0x4c0
[ 1592.125930][ T5843] ? __pfx_schedule_timeout+0x10/0x10
[ 1592.125994][ T5843] ? __pfx___wait_for_common+0x10/0x10
[ 1592.126034][ T5843] ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1592.126102][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.126149][ T5843] ? rcu_is_watching+0x12/0xc0
[ 1592.126207][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.126254][ T5843] ? kthread_stop+0x280/0x640
[ 1592.126315][ T5843] kill_f2fs_super+0x3f1/0x4a0
[ 1592.126371][ T5843] ? __pfx_kill_f2fs_super+0x10/0x10
[ 1592.126446][ T5843] ? lockdep_hardirqs_on+0x78/0x100
[ 1592.126483][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.126532][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.126596][ T5843] deactivate_locked_super+0xc1/0x1b0
[ 1592.126658][ T5843] deactivate_super+0xe7/0x110
[ 1592.126719][ T5843] cleanup_mnt+0x21f/0x450
[ 1592.126761][ T5843] task_work_run+0x150/0x240
[ 1592.126813][ T5843] ? __pfx_task_work_run+0x10/0x10
[ 1592.126866][ T5843] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1592.126914][ T5843] ? rcu_is_watching+0x12/0xc0
[ 1592.126979][ T5843] exit_to_user_mode_loop+0x107/0x4f0
[ 1592.127028][ T5843] ? rcu_is_watching+0x12/0xc0
[ 1592.127091][ T5843] do_syscall_64+0x706/0xf80
[ 1592.127137][ T5843] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1592.127177][ T5843] RIP: 0033:0x7fd6b0d9e097
[ 1592.127209][ T5843] Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1592.127248][ T5843] RSP: 002b:00007ffdaee13418 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1592.127292][ T5843] RAX: 0000000000000000 RBX: 00007fd6b0e321ca RCX: 00007fd6b0d9e097
[ 1592.127319][ T5843] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdaee134d0
[ 1592.127343][ T5843] RBP: 00007ffdaee134d0 R08: 00007ffdaee144d0 R09: 00000000ffffffff
[ 1592.127369][ T5843] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdaee14560
[ 1592.127393][ T5843] R13: 00007fd6b0e321ca R14: 000000000016d9d4 R15: 00007ffdaee145a0
[ 1592.127446][ T5843]
[ 1592.293203][ T5093] loop4: detected capacity change from 0 to 32768
[ 1592.330370][ T5843] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1592.545054][ T5118] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1592.550700][T20796] usb 1-1: new high-speed USB device number 84 using dummy_hcd
[ 1592.605880][ T5093] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1592.841252][ T5093] XFS (loop4): Ending clean mount
[ 1592.875908][T20796] usb 1-1: Using ep0 maxpacket: 32
[ 1592.883435][T20796] usb 1-1: config 155 has an invalid interface number: 1 but max is 0
[ 1592.892431][T20796] usb 1-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[ 1592.908851][T20796] usb 1-1: config 155 has 2 interfaces, different from the descriptor's value: 1
[ 1592.918696][T20796] usb 1-1: config 155 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 11
[ 1592.935373][T20796] usb 1-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[ 1592.946005][T20796] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1592.955810][T20796] usb 1-1: Product: syz
[ 1592.960095][T20796] usb 1-1: Manufacturer: syz
[ 1592.965239][T20796] usb 1-1: SerialNumber: syz
[ 1593.000526][T20796] imon:imon_find_endpoints: no valid input (IR) endpoint found
[ 1593.025971][T20796] imon 1-1:155.0: unable to initialize intf0, err -19
[ 1593.051420][T20796] imon:imon_probe: failed to initialize context!
[ 1593.079751][T20796] imon 1-1:155.0: unable to register, err -19
[ 1593.129180][T20796] imon 1-1:155.1: inconsistent driver matching
[ 1593.166973][T20796] imon 1-1:155.1: unable to register, err -22
[ 1593.173250][ T5108] loop6: detected capacity change from 0 to 32768
[ 1593.187244][T20796] imon 1-1:155.1: probe with driver imon failed with error -22
[ 1593.267162][T20796] usb 1-1: USB disconnect, device number 84
[ 1593.414325][ T5859] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1593.651853][ T5136] netlink: 'syz.2.13710': attribute type 32 has an invalid length.
[ 1594.642694][ T5153] loop4: detected capacity change from 0 to 256
[ 1594.758726][ T5153] FAT-fs (loop4): Directory bread(block 64) failed
[ 1594.804890][ T5153] FAT-fs (loop4): Directory bread(block 65) failed
[ 1594.859930][ T5153] FAT-fs (loop4): Directory bread(block 66) failed
[ 1594.881956][ T5158] loop5: detected capacity change from 0 to 1024
[ 1594.905819][ T5153] FAT-fs (loop4): Directory bread(block 67) failed
[ 1594.955099][ T5153] FAT-fs (loop4): Directory bread(block 68) failed
[ 1594.992524][ T5153] FAT-fs (loop4): Directory bread(block 69) failed
[ 1595.029509][ T5161] loop1: detected capacity change from 0 to 8
[ 1595.049393][ T5153] FAT-fs (loop4): Directory bread(block 70) failed
[ 1595.072613][ T5161] MTD: Attempt to mount non-MTD device "/dev/loop1"
[ 1595.079140][ T5153] FAT-fs (loop4): Directory bread(block 71) failed
[ 1595.129961][ T5153] FAT-fs (loop4): Directory bread(block 72) failed
[ 1595.161755][T11188] udevd[11188]: incorrect cramfs checksum on /dev/loop1
[ 1595.171864][ T5153] FAT-fs (loop4): Directory bread(block 73) failed
[ 1595.208749][ T5161] cramfs: Error -3 while decompressing!
[ 1595.291068][ T5161] cramfs: ffffffff9b2818a8(26)->ffff88803caab000(4096)
[ 1595.348943][ T5161] cramfs: Error -3 while decompressing!
[ 1595.353819][ T5645] udevd[5645]: incorrect cramfs checksum on /dev/loop1
[ 1595.403517][ T5161] cramfs: ffffffff9b2818c2(26)->ffff888068133000(4096)
[ 1595.464950][ T5161] cramfs: Error -3 while decompressing!
[ 1595.483679][ T5161] cramfs: ffffffff9b2818dc(16)->ffff8880675e6000(4096)
[ 1595.500554][ T5161] cramfs: Error -3 while decompressing!
[ 1595.536892][ T5161] cramfs: ffffffff9b2818a8(26)->ffff88803caab000(4096)
[ 1595.961698][ T5181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13729'.
[ 1596.019089][ T5181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13729'.
[ 1596.314096][ T5190] loop5: detected capacity change from 0 to 1024
[ 1596.444094][ T5194] loop4: detected capacity change from 0 to 256
[ 1596.478587][ T30] kauditd_printk_skb: 188 callbacks suppressed
[ 1596.478615][ T30] audit: type=1326 audit(1757.835:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5196 comm="syz.2.13738" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1596.563032][ T30] audit: type=1326 audit(1757.835:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5196 comm="syz.2.13738" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1596.588326][ T5194] FAT-fs (loop4): Directory bread(block 64) failed
[ 1596.588377][ T5194] FAT-fs (loop4): Directory bread(block 65) failed
[ 1596.588477][ T5194] FAT-fs (loop4): Directory bread(block 66) failed
[ 1596.588515][ T5194] FAT-fs (loop4): Directory bread(block 67) failed
[ 1596.689468][ T5194] FAT-fs (loop4): Directory bread(block 68) failed
[ 1596.719326][ T5194] FAT-fs (loop4): Directory bread(block 69) failed
[ 1596.742919][ T30] audit: type=1326 audit(1757.892:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5196 comm="syz.2.13738" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1596.756739][ T5194] FAT-fs (loop4): Directory bread(block 70) failed
[ 1596.799562][ T5202] loop1: detected capacity change from 0 to 256
[ 1596.828989][ T5194] FAT-fs (loop4): Directory bread(block 71) failed
[ 1596.857822][ T5194] FAT-fs (loop4): Directory bread(block 72) failed
[ 1596.869854][ T30] audit: type=1326 audit(1757.892:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5196 comm="syz.2.13738" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1596.898096][ T5194] FAT-fs (loop4): Directory bread(block 73) failed
[ 1597.013997][ T30] audit: type=1326 audit(1757.892:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5196 comm="syz.2.13738" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3c099ce59 code=0x7ffc0000
[ 1597.018829][ T5202] FAT-fs (loop1): Directory bread(block 64) failed
[ 1597.106515][ T5202] FAT-fs (loop1): Directory bread(block 65) failed
[ 1597.143099][ T5202] FAT-fs (loop1): Directory bread(block 66) failed
[ 1597.158190][ T5202] FAT-fs (loop1): Directory bread(block 67) failed
[ 1597.183376][ T5202] FAT-fs (loop1): Directory bread(block 68) failed
[ 1597.227394][ T5202] FAT-fs (loop1): Directory bread(block 69) failed
[ 1597.243788][ T5202] FAT-fs (loop1): Directory bread(block 70) failed
[ 1597.273860][ T5202] FAT-fs (loop1): Directory bread(block 71) failed
[ 1597.306436][ T5202] FAT-fs (loop1): Directory bread(block 72) failed
[ 1597.362290][ T5202] FAT-fs (loop1): Directory bread(block 73) failed
[ 1597.963850][ T5224] netlink: 'syz.1.13750': attribute type 1 has an invalid length.
[ 1597.963881][ T5224] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13750'.
[ 1598.117691][ T5204] loop6: detected capacity change from 0 to 32768
[ 1598.174805][ T5204] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1598.319296][ T5204] XFS (loop6): Ending clean mount
[ 1598.644304][ T5246] loop2: detected capacity change from 0 to 64
[ 1598.655287][ T5245] netlink: 'syz.0.13757': attribute type 4 has an invalid length.
[ 1598.710200][ T5245] netlink: 152 bytes leftover after parsing attributes in process `syz.0.13757'.
[ 1598.821618][T29259] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1598.837078][ T5245] .`: renamed from bond0 (while UP)
[ 1599.568611][ T5237] loop4: detected capacity change from 0 to 32768
[ 1599.610999][ T5237] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.13753 (5237)
[ 1599.733864][ T5237] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1599.799116][ T5237] BTRFS info (device loop4): using sha256 checksum algorithm
[ 1599.967064][ T5237] BTRFS info (device loop4): enabling ssd optimizations
[ 1599.998739][ T5237] BTRFS info (device loop4): turning on async discard
[ 1600.031147][ T5237] BTRFS info (device loop4): enabling free space tree
[ 1600.311972][ T5859] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1601.622523][ T802] usb 1-1: new high-speed USB device number 85 using dummy_hcd
[ 1601.847233][ T802] usb 1-1: Using ep0 maxpacket: 16
[ 1601.870056][ T802] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1601.892872][ T802] usb 1-1: config 255 has an invalid interface number: 45 but max is 0
[ 1601.936372][ T802] usb 1-1: config 255 has no interface number 0
[ 1601.961488][ T802] usb 1-1: config 255 interface 45 has no altsetting 0
[ 1601.987945][ T24] usb 5-1: new high-speed USB device number 87 using dummy_hcd
[ 1602.001803][ T802] usb 1-1: New USB device found, idVendor=07c4, idProduct=a004, bcdDevice= b.6c
[ 1602.024496][ T802] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1602.042268][ T802] usb 1-1: Product: syz
[ 1602.054663][ T802] usb 1-1: Manufacturer: syz
[ 1602.063529][ T802] usb 1-1: SerialNumber: syz
[ 1602.159158][ T24] usb 5-1: Using ep0 maxpacket: 8
[ 1602.188607][ T24] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1602.229199][ T24] usb 5-1: New USB device found, idVendor=046d, idProduct=08f0, bcdDevice=a1.8c
[ 1602.265893][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1602.303679][ T24] usb 5-1: config 0 descriptor??
[ 1602.332632][ T24] gspca_main: STV06xx-2.14.0 probing 046d:08f0
[ 1602.346840][ T802] ums-datafab 1-1:255.45: USB Mass Storage device detected
[ 1602.366442][ T24] gspca_stv06xx: st6422 sensor detected
[ 1602.381124][ T5328] loop5: detected capacity change from 0 to 32768
[ 1602.453128][ T5328] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[ 1602.531120][ T5328] JBD2: Ignoring recovery information on journal
[ 1602.541144][ T802] usb 1-1: USB disconnect, device number 85
[ 1602.643132][ T5328] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1602.653541][ T5372] netlink: 'syz.2.13806': attribute type 1 has an invalid length.
[ 1602.682047][ T5372] netlink: 248 bytes leftover after parsing attributes in process `syz.2.13806'.
[ 1602.777474][ T5983] usb 2-1: new high-speed USB device number 81 using dummy_hcd
[ 1602.879974][ T5328] OCFS2: ERROR (device loop5): ocfs2_validate_gd_self: Group descriptor #32 has an invalid bg_blkno of 393248
[ 1602.902100][ T24] STV06xx 5-1:0.0: probe with driver STV06xx failed with error -71
[ 1602.934210][ T24] usb 5-1: USB disconnect, device number 87
[ 1602.952782][ T5328] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1602.968857][ T5328] OCFS2: File system is now read-only.
[ 1602.988281][ T5328] (syz.5.13788,5328,0):ocfs2_search_chain:1913 ERROR: status = -30
[ 1602.991441][ T5983] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1603.040901][ T5983] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1603.080494][ T5328] (syz.5.13788,5328,0):ocfs2_search_chain:2036 ERROR: status = -30
[ 1603.080547][ T5983] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1603.108622][ T5328] (syz.5.13788,5328,0):ocfs2_claim_suballoc_bits:2123 ERROR: status = -30
[ 1603.149050][ T5328] (syz.5.13788,5328,0):ocfs2_claim_suballoc_bits:2176 ERROR: status = -30
[ 1603.170404][ T5983] usb 2-1: New USB device found, idVendor=041e, idProduct=3000, bcdDevice= 0.40
[ 1603.190866][ T5328] (syz.5.13788,5328,0):__ocfs2_claim_clusters:2557 ERROR: status = -30
[ 1603.194493][ T5983] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1603.213989][ T5328] (syz.5.13788,5328,0):__ocfs2_claim_clusters:2565 ERROR: status = -30
[ 1603.221769][ T5983] usb 2-1: Product: syz
[ 1603.232571][ T5983] usb 2-1: Manufacturer: syz
[ 1603.248681][ T5328] (syz.5.13788,5328,0):ocfs2_local_alloc_new_window:1197 ERROR: status = -30
[ 1603.250513][ T5983] usb 2-1: SerialNumber: syz
[ 1603.285542][ T5328] (syz.5.13788,5328,0):ocfs2_local_alloc_new_window:1222 ERROR: status = -30
[ 1603.307825][ T5983] usb 2-1: 0:1 : does not exist
[ 1603.321532][ T5328] (syz.5.13788,5328,0):ocfs2_local_alloc_slide_window:1296 ERROR: status = -30
[ 1603.334985][ T5328] (syz.5.13788,5328,0):ocfs2_local_alloc_slide_window:1315 ERROR: status = -30
[ 1603.356544][ T5328] (syz.5.13788,5328,0):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -30
[ 1603.385040][ T5328] (syz.5.13788,5328,0):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30
[ 1603.397759][ T5328] (syz.5.13788,5328,0):ocfs2_reserve_clusters_with_limit:1266 ERROR: status = -30
[ 1603.409005][ T5328] (syz.5.13788,5328,0):ocfs2_reserve_clusters_with_limit:1315 ERROR: status = -30
[ 1603.448512][ T5328] (syz.5.13788,5328,0):ocfs2_expand_inline_dir:2891 ERROR: status = -30
[ 1603.495277][ T5328] (syz.5.13788,5328,0):ocfs2_extend_dir:3238 ERROR: status = -30
[ 1603.532755][ T5328] (syz.5.13788,5328,0):ocfs2_prepare_dir_for_insert:4356 ERROR: status = -30
[ 1603.567088][ T5328] (syz.5.13788,5328,0):ocfs2_mknod:302 ERROR: status = -30
[ 1603.597383][ T5328] (syz.5.13788,5328,0):ocfs2_mknod:506 ERROR: status = -30
[ 1603.660417][ T5394] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13817'.
[ 1603.742077][ T5983] usb 2-1: USB disconnect, device number 81
[ 1603.866428][ T5849] ocfs2: Unmounting device (7,5) on (node local)
[ 1604.238994][T20829] usb 1-1: new high-speed USB device number 86 using dummy_hcd
[ 1604.239013][ T4920] usb 5-1: new high-speed USB device number 88 using dummy_hcd
[ 1604.249699][ T5410] kAFS: unable to lookup cell '/,'
[ 1604.399410][ T4920] usb 5-1: Using ep0 maxpacket: 8
[ 1604.420562][T20829] usb 1-1: Using ep0 maxpacket: 16
[ 1604.421389][ T4920] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1604.447166][T20829] usb 1-1: config 8 has an invalid interface number: 206 but max is 0
[ 1604.464444][ T4920] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1604.466105][T20829] usb 1-1: config 8 has an invalid descriptor of length 64, skipping remainder of the config
[ 1604.501332][ T4920] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1604.538893][ T4920] usb 5-1: New USB device found, idVendor=2466, idProduct=8010, bcdDevice= 0.40
[ 1604.555066][T20829] usb 1-1: config 8 has no interface number 0
[ 1604.561700][ T4920] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1604.578086][T20829] usb 1-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[ 1604.592781][ T4920] usb 5-1: Product: syz
[ 1604.600359][T20829] usb 1-1: config 8 interface 206 altsetting 1 endpoint 0x87 has invalid maxpacket 33058, setting to 1024
[ 1604.607867][ T4920] usb 5-1: Manufacturer: syz
[ 1604.622571][T20829] usb 1-1: config 8 interface 206 altsetting 1 bulk endpoint 0xC has invalid maxpacket 1024
[ 1604.640227][ T4920] usb 5-1: SerialNumber: syz
[ 1604.641727][T20829] usb 1-1: config 8 interface 206 has no altsetting 0
[ 1604.669254][T20829] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[ 1604.694092][T20829] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1604.722258][T20829] usb 1-1: Product: syz
[ 1604.727798][T20829] usb 1-1: Manufacturer: syz
[ 1604.746327][T20829] usb 1-1: SerialNumber: syz
[ 1604.774742][ T5403] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1604.858446][T20804] usb 2-1: new high-speed USB device number 82 using dummy_hcd
[ 1604.905916][ T4920] usb 5-1: cannot find UAC_HEADER
[ 1605.014325][T20829] garmin_gps 1-1:8.206: Garmin GPS usb/tty converter detected
[ 1605.039274][T20804] usb 2-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[ 1605.050921][ T4920] snd-usb-audio 5-1:1.0: probe with driver snd-usb-audio failed with error -22
[ 1605.062583][T20829] usb 1-1: Garmin GPS usb/tty converter now attached to ttyUSB0
[ 1605.071467][T20804] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1605.096451][T20804] usb 2-1: Product: syz
[ 1605.103179][T20804] usb 2-1: Manufacturer: syz
[ 1605.124391][T20829] usb 1-1: USB disconnect, device number 86
[ 1605.145787][T20804] usb 2-1: SerialNumber: syz
[ 1605.154744][ T4920] usb 5-1: USB disconnect, device number 88
[ 1605.233758][T20829] garmin_gps ttyUSB0: Garmin GPS usb/tty converter now disconnected from ttyUSB0
[ 1605.251431][T20804] usb 2-1: config 0 descriptor??
[ 1605.262343][ T5833] udevd[5833]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1605.273981][T20804] i2c-tiny-usb 2-1:0.0: version 6d.cc found at bus 002 address 082
[ 1605.295608][T20829] garmin_gps 1-1:8.206: device disconnected
[ 1605.322927][ T5436] loop5: detected capacity change from 0 to 4096
[ 1605.358639][ T5436] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[ 1605.461198][ T5436] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[ 1605.559281][ T30] audit: type=1800 audit(1766.337:449): pid=5436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.13835" name="file2" dev="loop5" ino=31 res=0 errno=0
[ 1605.718433][T20804] (null): failure reading functionality
[ 1605.723517][ T5415] loop6: detected capacity change from 0 to 32768
[ 1605.768535][T20804] i2c i2c-1: failure reading functionality
[ 1605.783872][ T5415] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1605.817624][T20804] i2c i2c-1: connected i2c-tiny-usb device
[ 1605.898433][T20804] usb 2-1: USB disconnect, device number 82
[ 1605.941068][ T5415] XFS (loop6): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50.
[ 1605.999139][ T5454] loop4: detected capacity change from 0 to 512
[ 1606.015724][ T5454] EXT4-fs: Ignoring removed bh option
[ 1606.032583][ T5415] XFS (loop6): Tail block (0x29) overwrite detected. Updated to 0x30
[ 1606.038718][ T5454] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1606.056466][ T5454] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #11: block 1: comm syz.4.13840: lblock 0 mapped to illegal pblock 1 (length 1)
[ 1606.070957][T20815] usb 3-1: new high-speed USB device number 80 using dummy_hcd
[ 1606.146630][ T5415] XFS (loop6): Ending clean mount
[ 1606.176314][ T5454] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1606.177028][ T5454] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2859: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 1606.186472][ C0] EXT4-fs (loop4): error count since last fsck: 1
[ 1606.186509][ C0] EXT4-fs (loop4): initial error at time 1766: ext4_map_blocks:791: inode 11: block 1
[ 1606.186580][ C0] EXT4-fs (loop4): last error at time 1766: ext4_map_blocks:791: inode 11: block 1
[ 1606.253192][ T5454] EXT4-fs error (device loop4): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.4.13840: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[ 1606.271873][ T5454] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1606.274230][ T5454] EXT4-fs warning (device loop4): ext4_xattr_inode_dec_ref_all:1230: inode #11: comm syz.4.13840: ea_inode dec ref err=-117
[ 1606.297756][ T5454] EXT4-fs (loop4): 1 orphan inode deleted
[ 1606.309046][ T5454] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1606.355677][T20815] usb 3-1: Using ep0 maxpacket: 16
[ 1606.379335][T20815] usb 3-1: config 1 has an invalid interface number: 105 but max is 0
[ 1606.388918][T20815] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 1
[ 1606.399094][T20815] usb 3-1: config 1 has no interface number 1
[ 1606.408854][T20815] usb 3-1: config 1 interface 105 altsetting 2 has an endpoint descriptor with address 0x24, changing to 0x4
[ 1606.444191][T20815] usb 3-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[ 1606.456106][T20815] usb 3-1: config 1 interface 105 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1606.470482][T20815] usb 3-1: config 1 interface 105 has no altsetting 0
[ 1606.507349][T20815] usb 3-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[ 1606.531078][T20815] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1606.569100][T29259] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1606.581813][T20815] usb 3-1: Product: syz
[ 1606.595786][T20815] usb 3-1: Manufacturer: syz
[ 1606.609674][T20815] usb 3-1: SerialNumber: syz
[ 1606.633866][ T5445] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1606.702780][ T5859] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1606.906305][T20815] aqc111 3-1:1.105: probe with driver aqc111 failed with error -22
[ 1606.973500][T20804] usb 2-1: new high-speed USB device number 83 using dummy_hcd
[ 1607.165325][T20804] usb 2-1: Using ep0 maxpacket: 8
[ 1607.184076][T20804] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1607.205534][T20804] usb 2-1: config 4 has an invalid interface number: 147 but max is 0
[ 1607.233461][ T5983] usb 3-1: USB disconnect, device number 80
[ 1607.247918][T20804] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1607.299883][T20804] usb 2-1: config 4 has no interface number 0
[ 1607.330533][T20804] usb 2-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[ 1607.353339][T20804] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1607.373728][T20804] usb 2-1: Product: syz
[ 1607.384520][T20804] usb 2-1: Manufacturer: syz
[ 1607.393175][T20804] usb 2-1: SerialNumber: syz
[ 1607.694090][T20804] uvcvideo 2-1:4.147: probe with driver uvcvideo failed with error -22
[ 1607.749685][T20804] usb 2-1: USB disconnect, device number 83
[ 1607.809516][ T5485] loop6: detected capacity change from 0 to 4096
[ 1607.824426][ T5471] loop5: detected capacity change from 0 to 32768
[ 1607.835703][ T5485] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512).
[ 1607.869694][ T5471] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[ 1607.886570][ T5485] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[ 1607.910026][ T5471] JBD2: Ignoring recovery information on journal
[ 1607.971656][ T5983] usb 1-1: new full-speed USB device number 87 using dummy_hcd
[ 1608.038336][ T5471] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1608.204441][ T5983] usb 1-1: not running at top speed; connect to a high speed hub
[ 1608.227791][ T5983] usb 1-1: config 11 has an invalid interface number: 95 but max is 0
[ 1608.255676][ T5983] usb 1-1: config 11 has no interface number 0
[ 1608.277902][ T5983] usb 1-1: config 11 interface 95 altsetting 64 has an endpoint descriptor with address 0xC6, changing to 0x86
[ 1608.317256][ T5983] usb 1-1: config 11 interface 95 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[ 1608.348736][ T5983] usb 1-1: config 11 interface 95 has no altsetting 0
[ 1608.376493][ T5983] usb 1-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=b1.4d
[ 1608.394121][T20815] usb 3-1: new high-speed USB device number 81 using dummy_hcd
[ 1608.414371][ T5983] usb 1-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0
[ 1608.444867][ T5983] usb 1-1: Manufacturer: syz
[ 1608.474500][ T5489] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1608.557328][ T5849] ocfs2: Unmounting device (7,5) on (node local)
[ 1608.620661][T20815] usb 3-1: Using ep0 maxpacket: 32
[ 1608.636386][T20815] usb 3-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice= 0.40
[ 1608.677365][T20815] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1608.712468][T20815] usb 3-1: Product: syz
[ 1608.721328][T20815] usb 3-1: Manufacturer: syz
[ 1608.732149][T20815] usb 3-1: SerialNumber: syz
[ 1608.783124][ T5507] netlink: 2 bytes leftover after parsing attributes in process `syz.6.13865'.
[ 1608.820974][ T5983] usb 1-1: USB disconnect, device number 87
[ 1608.986083][ T5511] netlink: 'syz.1.13867': attribute type 1 has an invalid length.
[ 1609.022432][ T5511] netlink: 'syz.1.13867': attribute type 1 has an invalid length.
[ 1609.032992][ T5511] netlink: 9172 bytes leftover after parsing attributes in process `syz.1.13867'.
[ 1609.039764][T20815] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1609.066940][T20815] snd-usb-audio 3-1:1.1: probe with driver snd-usb-audio failed with error -2
[ 1609.115566][T20815] usb 3-1: USB disconnect, device number 81
[ 1609.772892][ T5531] loop4: detected capacity change from 0 to 128
[ 1609.783896][ T5530] loop1: detected capacity change from 0 to 2048
[ 1609.825088][ T5531] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1609.866179][ T5535] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1609.884802][ T5536] netlink: 'syz.2.13878': attribute type 4 has an invalid length.
[ 1609.897148][ T5531] hpfs: filesystem error: improperly stopped
[ 1609.917357][ T5531] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1609.928742][ T5536] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.13878'.
[ 1609.957210][ T5531] hpfs: You really don't want any checks? You are crazy...
[ 1609.989626][ T5531] hpfs: Code page index out of array
[ 1610.012180][ T5531] hpfs: code page support is disabled
[ 1610.034859][ T5530] NILFS (loop1): vblocknr = 5121 has abnormal lifetime: start cno (= 100663298) > current cno (= 3)
[ 1610.043295][ T5531] hpfs: hpfs_map_4sectors(): unaligned read
[ 1610.062428][ T5530] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=13)
[ 1610.079392][ T5531] hpfs: hpfs_map_4sectors(): unaligned read
[ 1610.105016][ T5530] Remounting filesystem read-only
[ 1610.120206][ T5531] hpfs: filesystem error: unable to find root dir
[ 1610.136317][T20829] usb 6-1: new high-speed USB device number 79 using dummy_hcd
[ 1610.153764][ T5530] NILFS (loop1): error -5 truncating bmap (ino=13)
[ 1610.241432][ T5513] loop6: detected capacity change from 0 to 32768
[ 1610.269839][ T5513] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.13868 (5513)
[ 1610.308176][T20829] usb 6-1: config 220 has an invalid interface number: 76 but max is 2
[ 1610.344071][T20829] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1610.360917][ T5843] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[ 1610.399665][T20829] usb 6-1: config 220 has no interface number 2
[ 1610.413455][ T5513] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1610.430351][T20829] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1610.465339][ T5513] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1610.484141][T20829] usb 6-1: config 220 interface 0 has no altsetting 0
[ 1610.510720][T20829] usb 6-1: config 220 interface 76 has no altsetting 0
[ 1610.531934][T20829] usb 6-1: config 220 interface 1 has no altsetting 0
[ 1610.615584][T20829] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1610.631873][ T5513] BTRFS info (device loop6): enabling ssd optimizations
[ 1610.655444][ T5513] BTRFS info (device loop6): turning on async discard
[ 1610.668363][T20829] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1610.689493][T20829] usb 6-1: Product: syz
[ 1610.697701][ T5513] BTRFS info (device loop6): enabling free space tree
[ 1610.699743][T20829] usb 6-1: Manufacturer: syz
[ 1610.721652][T20829] usb 6-1: SerialNumber: syz
[ 1610.922223][T29259] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1611.066954][T20829] usb 6-1: selecting invalid altsetting 0
[ 1611.092756][T20829] uvcvideo 6-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[ 1611.133325][T20829] uvcvideo 6-1:220.0: No valid video chain found.
[ 1611.298703][T20829] usb 6-1: selecting invalid altsetting 0
[ 1611.323325][T20829] usbtest 6-1:220.1: probe with driver usbtest failed with error -22
[ 1611.398146][T20829] usb 6-1: USB disconnect, device number 79
[ 1611.784397][ T5587] loop1: detected capacity change from 0 to 1024
[ 1612.004206][ T5591] ip6t_REJECT: TCP_RESET illegal for non-tcp
[ 1612.686962][ T24] usb 6-1: new high-speed USB device number 80 using dummy_hcd
[ 1612.768475][ T5614] netlink: 32 bytes leftover after parsing attributes in process `syz.1.13907'.
[ 1612.858483][ T24] usb 6-1: Using ep0 maxpacket: 16
[ 1612.881858][ T24] usb 6-1: config 0 has an invalid interface number: 105 but max is 0
[ 1612.907532][ T24] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1612.949120][ T24] usb 6-1: config 0 has no interface number 0
[ 1612.973932][ T24] usb 6-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28
[ 1613.006180][ T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1613.044750][ T24] usb 6-1: Product: syz
[ 1613.063924][ T24] usb 6-1: Manufacturer: syz
[ 1613.082315][ T24] usb 6-1: SerialNumber: syz
[ 1613.113255][ T24] usb 6-1: config 0 descriptor??
[ 1613.140086][ T24] uvcvideo 6-1:0.105: probe with driver uvcvideo failed with error -22
[ 1613.369379][ T5635] netlink: 132 bytes leftover after parsing attributes in process `syz.4.13917'.
[ 1613.438096][ T24] usb 6-1: USB disconnect, device number 80
[ 1614.236290][T20829] usb 7-1: new full-speed USB device number 13 using dummy_hcd
[ 1614.432492][T20829] usb 7-1: config 36 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1614.477858][T20829] usb 7-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[ 1614.511251][T20829] usb 7-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[ 1614.542287][T20829] usb 7-1: Manufacturer: syz
[ 1614.560433][T20829] usb 7-1: SerialNumber: syz
[ 1614.696798][ T5680] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13940'.
[ 1614.830632][T20829] usbhid 7-1:36.0: couldn't find an input interrupt endpoint
[ 1614.887853][T20829] usb 7-1: USB disconnect, device number 13
[ 1615.236791][ T5694] loop1: detected capacity change from 0 to 1764
[ 1615.266748][ T5694] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[ 1615.395139][ T5698] loop4: detected capacity change from 0 to 4096
[ 1615.430061][ T5698] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[ 1615.571432][ T5698] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[ 1615.603031][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1616.580562][ T5734] loop2: detected capacity change from 0 to 1764
[ 1616.608849][ T5730] Process accounting resumed
[ 1616.631397][ T5734] iso9660: Corrupted directory entry in block 0 of inode 1792
[ 1616.645088][ T24] usb 6-1: new high-speed USB device number 81 using dummy_hcd
[ 1616.834964][ T24] usb 6-1: Using ep0 maxpacket: 8
[ 1616.867901][ T24] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1616.891910][ T24] usb 6-1: config 7 has an invalid interface number: 58 but max is 0
[ 1616.923263][ T24] usb 6-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[ 1616.973401][ T24] usb 6-1: config 7 has no interface number 0
[ 1617.003254][ T24] usb 6-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=48.0f
[ 1617.035927][ T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1617.070474][ T24] usb 6-1: Product: syz
[ 1617.082588][ T24] usb 6-1: Manufacturer: syz
[ 1617.096504][ T24] usb 6-1: SerialNumber: syz
[ 1617.303280][ T5756] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13978'.
[ 1617.371390][ T24] usb 6-1: USB disconnect, device number 81
[ 1617.569613][ T5764] fuse: Bad value for 'fd'
[ 1617.653997][T20829] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[ 1617.710973][ T5768] loop4: detected capacity change from 0 to 16
[ 1617.752461][ T5770] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.13985'.
[ 1617.762846][ T5768] erofs (device loop4): mounted with root inode @ nid 36.
[ 1617.836152][ T5768] syz.4.13984: attempt to access beyond end of device
[ 1617.836152][ T5768] loop4: rw=524288, sector=1056, nr_sectors = 16 limit=16
[ 1617.865718][T20829] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1617.885848][T20829] usb 7-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1617.905133][ T5768] erofs (device loop4): bogus lookback distance 0 @ lcn 8 of nid 89
[ 1617.937326][T20829] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1617.952240][ T5768] erofs (device loop4): readahead error at folio 8 @ nid 89
[ 1617.954185][ T5776] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13988'.
[ 1617.972934][T20829] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1617.976642][ T5768] syz.4.13984: attempt to access beyond end of device
[ 1617.976642][ T5768] loop4: rw=524288, sector=16, nr_sectors = 8 limit=16
[ 1618.001530][T20829] usb 7-1: Product: syz
[ 1618.031522][T20829] usb 7-1: Manufacturer: syz
[ 1618.038848][ T5768] syz.4.13984: attempt to access beyond end of device
[ 1618.038848][ T5768] loop4: rw=524288, sector=32, nr_sectors = 24 limit=16
[ 1618.042253][T20829] usb 7-1: SerialNumber: syz
[ 1618.099546][ T5768] erofs (device loop4): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 8192
[ 1618.107980][T20829] cdc_ncm 7-1:1.0: skipping garbage
[ 1618.138030][T20829] cdc_ncm 7-1:1.0: NCM or ECM functional descriptors missing
[ 1618.139096][ T5768] erofs (device loop4): read error -117 @ 1 of nid 89
[ 1618.157959][T20829] cdc_ncm 7-1:1.0: bind() failure
[ 1618.181138][ T30] audit: type=1800 audit(1778.162:450): pid=5768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.13984" name="file2" dev="loop4" ino=89 res=0 errno=0
[ 1618.201115][T20829] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[ 1618.246131][T20829] cdc_ncm 7-1:1.1: bind() failure
[ 1618.374661][ T4920] usb 7-1: USB disconnect, device number 14
[ 1619.032013][ T5810] Unsupported ieee802154 address type: 0
[ 1619.179458][ T5817] netlink: 12 bytes leftover after parsing attributes in process `syz.6.14008'.
[ 1620.035526][ T24] usb 6-1: new high-speed USB device number 82 using dummy_hcd
[ 1620.097187][ T5870] �€Â: renamed from virt_wifi0
[ 1620.217793][ T24] usb 6-1: Using ep0 maxpacket: 8
[ 1620.239516][ T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1620.257995][ T5875] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1620.274737][ T24] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1620.326472][ T24] usb 6-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[ 1620.357038][ T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1620.388608][ T24] usb 6-1: Product: syz
[ 1620.402032][ T24] usb 6-1: Manufacturer: syz
[ 1620.423766][ T24] usb 6-1: SerialNumber: syz
[ 1620.450361][ T24] usb 6-1: config 0 descriptor??
[ 1620.465473][ T5883] loop1: detected capacity change from 0 to 512
[ 1620.525988][ T5880] loop6: detected capacity change from 0 to 4096
[ 1620.534895][ T5883] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.14032: inode has both inline data and extents flags
[ 1620.564945][ T5883] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1620.565459][ T5883] EXT4-fs error (device loop1): ext4_orphan_get:1400: comm syz.1.14032: couldn't read orphan inode 15 (err -117)
[ 1620.574790][ C1] EXT4-fs (loop1): error count since last fsck: 1
[ 1620.574826][ C1] EXT4-fs (loop1): initial error at time 1780: ext4_orphan_get:1397: inode 15
[ 1620.574881][ C1] EXT4-fs (loop1): last error at time 1780: ext4_orphan_get:1397: inode 15
[ 1620.613272][ T5883] loop1: lost filesystem error report for type 5 error -117
[ 1620.617197][ T5880] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1620.662182][ T5883] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1620.722208][ T5894] netlink: 'syz.0.14037': attribute type 6 has an invalid length.
[ 1620.892227][T29259] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1621.005519][T20829] usb 6-1: USB disconnect, device number 82
[ 1621.017114][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1621.271469][ T5904] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1621.598182][ T5920] openvswitch: netlink: Multiple metadata blocks provided
[ 1621.935323][ T5889] loop2: detected capacity change from 0 to 32768
[ 1622.001196][ T5889] read_mapping_page failed!
[ 1622.032747][ T5889] ERROR: (device loop2): txAbort:
[ 1622.032747][ T5889]
[ 1622.216120][ T34] read_mapping_page failed!
[ 1622.259062][ T34] ERROR: (device loop2): txAbort:
[ 1622.259062][ T34]
[ 1622.288501][ T34] jfs_write_inode: jfs_commit_inode failed!
[ 1622.351336][ T5954] loop1: detected capacity change from 0 to 2048
[ 1622.458775][ T5954] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1622.607379][ T5954] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #12: block 2: comm syz.1.14055: lblock 0 mapped to illegal pblock 2 (length 1)
[ 1622.871124][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1623.021658][ T6007] CIFS: VFS: UNC: missing share name
[ 1623.034495][ T6007] CIFS: VFS: Malformed UNC in devname
[ 1623.474142][T20829] usb 2-1: new high-speed USB device number 84 using dummy_hcd
[ 1623.554948][ T6024] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1623.668414][T20829] usb 2-1: config index 0 descriptor too short (expected 1572, got 36)
[ 1623.687978][ T24] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[ 1623.698231][T20829] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1623.736390][T20829] usb 2-1: New USB device found, idVendor=05ac, idProduct=0238, bcdDevice= 0.40
[ 1623.758375][T20829] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1623.781070][T20829] usb 2-1: Product: syz
[ 1623.790039][T20829] usb 2-1: Manufacturer: syz
[ 1623.800806][T20829] usb 2-1: SerialNumber: syz
[ 1623.845138][T20829] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input102
[ 1623.885569][ T24] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[ 1623.917713][ T24] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1623.958989][ T24] usb 7-1: config 220 has no interface number 2
[ 1623.976327][ T24] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1624.008108][ T24] usb 7-1: config 220 interface 0 has no altsetting 0
[ 1624.032876][ T24] usb 7-1: config 220 interface 76 has no altsetting 0
[ 1624.045391][ T4975] bcm5974 2-1:1.0: could not read from device
[ 1624.056308][ T24] usb 7-1: config 220 interface 1 has no altsetting 0
[ 1624.064803][ T4975] bcm5974 2-1:1.0: could not read from device
[ 1624.082003][ T24] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1624.117782][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1624.134098][T20829] bcm5974 2-1:1.0: could not read from device
[ 1624.150943][ T24] usb 7-1: Product: syz
[ 1624.170497][ T24] usb 7-1: Manufacturer: syz
[ 1624.185822][ T24] usb 7-1: SerialNumber: syz
[ 1624.219109][T20829] input: failed to attach handler mousedev to device input102, error: -5
[ 1624.252831][ T4975] bcm5974 2-1:1.0: could not read from device
[ 1624.272250][T20829] usb 2-1: USB disconnect, device number 84
[ 1624.420447][ T6018] loop2: detected capacity change from 0 to 32768
[ 1624.498106][ T6018] JBD2: Ignoring recovery information on journal
[ 1624.524349][ T24] usb 7-1: selecting invalid altsetting 0
[ 1624.594377][ T24] uvcvideo 7-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[ 1624.661154][ T24] uvcvideo 7-1:220.0: No valid video chain found.
[ 1624.678764][ T6018] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[ 1624.715050][ T24] usb 7-1: selecting invalid altsetting 0
[ 1624.737963][ T24] usbtest 7-1:220.1: probe with driver usbtest failed with error -22
[ 1624.767972][ T6018] OCFS2: ERROR (device loop2): ocfs2_xattr_find_entry: corrupted xattr entries
[ 1624.783926][ T24] usb 7-1: USB disconnect, device number 15
[ 1624.807015][ T6018] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1624.849079][ T6018] OCFS2: Returning error to the calling process.
[ 1624.882224][ T6018] (syz.2.14070,6018,1):ocfs2_calc_xattr_init:642 ERROR: status = -117
[ 1624.941133][ T6018] (syz.2.14070,6018,1):ocfs2_mknod:338 ERROR: status = -117
[ 1624.960322][ T6018] (syz.2.14070,6018,1):ocfs2_mknod:506 ERROR: status = -117
[ 1624.978637][ T6018] (syz.2.14070,6018,1):ocfs2_create:679 ERROR: status = -117
[ 1625.197918][ T6058] comedi comedi2: dt2814: I/O base address or length out of range
[ 1625.246599][ T6062] loop1: detected capacity change from 0 to 256
[ 1625.259951][ T5852] ocfs2: Unmounting device (7,2) on (node local)
[ 1625.276565][ T6062] exfat: Deprecated parameter 'utf8'
[ 1625.284204][ T6060] geneve3: entered promiscuous mode
[ 1625.332976][ T6060] geneve3: entered allmulticast mode
[ 1625.392060][ T6062] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x47dfe6af, utbl_chksum : 0xe619d30d)
[ 1626.000496][ T6078] netlink: 248 bytes leftover after parsing attributes in process `syz.4.14101'.
[ 1626.989188][ T6105] comedi comedi2: ni_at_a2150: I/O base address or length out of range
[ 1627.075587][ T6103] loop1: detected capacity change from 0 to 2048
[ 1627.151938][ T6110] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1627.672632][ T6088] loop5: detected capacity change from 0 to 32768
[ 1627.723720][ T6122] loop6: detected capacity change from 0 to 256
[ 1627.771855][ T6088] add_index: next_index = 0. Resetting!
[ 1628.729015][ T24] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[ 1628.921231][ T24] usb 7-1: Using ep0 maxpacket: 32
[ 1628.941718][ T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1628.986691][ T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1629.031026][ T24] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1629.065500][ T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1629.121767][ T24] usb 7-1: config 0 descriptor??
[ 1629.163821][ T24] hub 7-1:0.0: USB hub found
[ 1629.227832][ T6174] netlink: 76 bytes leftover after parsing attributes in process `syz.5.14128'.
[ 1629.396507][ T24] hub 7-1:0.0: config failed, can't read hub descriptor (err -90)
[ 1629.480187][ T6180] loop1: detected capacity change from 0 to 256
[ 1629.538276][ T6180] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x614dc512, utbl_chksum : 0xe619d30d)
[ 1629.626639][ T24] usbhid 7-1:0.0: can't add hid device: -71
[ 1629.646375][ T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 1629.695327][ T6180] exFAT-fs (loop1): valid_size(9000) is greater than size(0)
[ 1629.746378][ T24] usb 7-1: USB disconnect, device number 16
[ 1629.931179][ T6191] geneve3: entered promiscuous mode
[ 1629.945507][ T6191] geneve3: entered allmulticast mode
[ 1630.089939][ T6197] netlink: 12 bytes leftover after parsing attributes in process `syz.1.14156'.
[ 1630.561343][ T6212] netlink: 'syz.4.14166': attribute type 21 has an invalid length.
[ 1630.564124][ T6214] loop6: detected capacity change from 0 to 16
[ 1630.601760][ T6212] netlink: 132 bytes leftover after parsing attributes in process `syz.4.14166'.
[ 1630.617350][ T6214] erofs (device loop6): mounted with root inode @ nid 36.
[ 1630.886307][ T24] usb 1-1: new high-speed USB device number 88 using dummy_hcd
[ 1630.973869][ T6225] loop4: detected capacity change from 0 to 2048
[ 1631.021729][ T6225] UDF-fs: INFO Mounting volume 'Li�uxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1631.059881][ T6230] netlink: 'syz.6.14174': attribute type 21 has an invalid length.
[ 1631.085540][ T24] usb 1-1: New USB device found, idVendor=0fc5, idProduct=1227, bcdDevice=da.8e
[ 1631.089342][ T6230] netlink: 156 bytes leftover after parsing attributes in process `syz.6.14174'.
[ 1631.137902][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1631.172248][ T24] usb 1-1: Product: syz
[ 1631.180207][ T6233] loop2: detected capacity change from 0 to 512
[ 1631.188847][ T24] usb 1-1: Manufacturer: syz
[ 1631.208912][ T24] usb 1-1: SerialNumber: syz
[ 1631.251097][ T24] usb 1-1: config 0 descriptor??
[ 1631.258409][ T6233] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[ 1631.281048][ T24] hub 1-1:0.0: bad descriptor, ignoring hub
[ 1631.293591][ T6233] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[ 1631.345998][ T24] hub 1-1:0.0: probe with driver hub failed with error -5
[ 1631.370984][ T6233] EXT4-fs error (device loop2): ext4_acquire_dquot:7032: comm syz.2.14175: Failed to acquire dquot type 1
[ 1631.434753][ T6233] loop2: lost filesystem error report for type 5 error -117
[ 1631.435827][ T24] usbsevseg 1-1:0.0: USB 7 Segment device now attached
[ 1631.443612][ C1] EXT4-fs (loop2): error count since last fsck: 1
[ 1631.443649][ C1] EXT4-fs (loop2): last error at time 1790: ext4_acquire_dquot:7032
[ 1631.472640][ T6233] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[ 1631.526395][ T6233] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[ 1631.553533][ T6233] EXT4-fs error (device loop2): ext4_acquire_dquot:7032: comm syz.2.14175: Failed to acquire dquot type 1
[ 1631.615213][ T6233] loop2: lost filesystem error report for type 5 error -117
[ 1631.616577][ T6233] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.14175: bg 0: block 248: padding at end of block bitmap is not set
[ 1631.641554][ T24] usb 1-1: USB disconnect, device number 88
[ 1631.685606][ T24] usbsevseg 1-1:0.0: USB 7 Segment now disconnected
[ 1631.705066][ T6233] loop2: lost filesystem error report for type 5 error -117
[ 1631.705604][ T6233] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6679: Corrupt filesystem
[ 1631.756945][ T6233] loop2: lost filesystem error report for type 5 error -117
[ 1631.771216][ T6233] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[ 1631.817798][ T6233] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[ 1631.851054][ T6233] EXT4-fs error (device loop2): ext4_acquire_dquot:7032: comm syz.2.14175: Failed to acquire dquot type 1
[ 1631.874494][ T6233] loop2: lost filesystem error report for type 5 error -117
[ 1631.875102][ T6233] EXT4-fs (loop2): 1 orphan inode deleted
[ 1631.910018][ T6233] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1632.004751][ T6254] loop1: detected capacity change from 0 to 512
[ 1632.053235][ T6254] EXT4-fs (loop1): revision level too high, forcing read-only mode
[ 1632.073265][ T6254] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002]
[ 1632.083167][ T5852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1632.122747][ T6254] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1632.134710][ T6254] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0
[ 1632.144960][ T6254] EXT4-fs warning (device loop1): ext4_enable_quotas:7265: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1632.171860][ T6254] EXT4-fs (loop1): Cannot turn on quotas: error -22
[ 1632.202475][ T6254] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.14185: bg 0: block 40: padding at end of block bitmap is not set
[ 1632.279699][ T6254] loop1: lost filesystem error report for type 5 error -117
[ 1632.285803][ C1] EXT4-fs (loop1): error count since last fsck: 1
[ 1632.299620][ C1] EXT4-fs (loop1): initial error at time 1791: ext4_validate_block_bitmap:440
[ 1632.308658][ C1] EXT4-fs (loop1): last error at time 1791: ext4_validate_block_bitmap:440
[ 1632.347603][ T6254] EXT4-fs (loop1): Remounting filesystem read-only
[ 1632.366555][ T6254] EXT4-fs (loop1): 1 truncate cleaned up
[ 1632.393701][ T6254] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1632.758494][ T5843] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1632.915790][T20804] usb 5-1: new high-speed USB device number 89 using dummy_hcd
[ 1633.098082][T20804] usb 5-1: Using ep0 maxpacket: 16
[ 1633.114325][T20804] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[ 1633.143674][T20804] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1633.203237][T20804] usb 5-1: config 0 descriptor??
[ 1633.239015][T20804] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[ 1633.459322][T20804] usb 5-1: Detected FT232B
[ 1633.609937][T20815] usb 1-1: new high-speed USB device number 89 using dummy_hcd
[ 1633.677169][T20804] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1633.702393][T20804] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1633.734573][T20804] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1633.782613][T20804] usb 5-1: USB disconnect, device number 89
[ 1633.799559][T20815] usb 1-1: config 0 has an invalid interface number: 120 but max is 0
[ 1633.831068][T20815] usb 1-1: config 0 has no interface number 0
[ 1633.850957][T20804] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1633.874149][T20815] usb 1-1: config 0 interface 120 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1633.907522][T20804] ftdi_sio 5-1:0.0: device disconnected
[ 1633.927491][T20815] usb 1-1: config 0 interface 120 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1633.974680][T20815] usb 1-1: config 0 interface 120 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1634.020384][T20815] usb 1-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[ 1634.051260][T20815] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1634.091488][T20815] usb 1-1: config 0 descriptor??
[ 1634.108302][ T6299] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1634.146344][T20815] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.120/input/input103
[ 1634.234263][ T6321] loop6: detected capacity change from 0 to 512
[ 1634.335028][ T6321] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1634.350564][ T6327] netlink: 'syz.1.14218': attribute type 1 has an invalid length.
[ 1634.396826][ T6327] netlink: 936 bytes leftover after parsing attributes in process `syz.1.14218'.
[ 1634.681109][T29259] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1634.699614][ T6331] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1634.760065][ T6333] netlink: 'syz.5.14221': attribute type 3 has an invalid length.
[ 1634.771616][ T24] usb 1-1: USB disconnect, device number 89
[ 1634.996836][ T6339] tmpfs: Bad value for 'size'
[ 1635.128513][ T6309] loop2: detected capacity change from 0 to 32768
[ 1635.188740][ T6309] JBD2: Ignoring recovery information on journal
[ 1635.212754][ T6309] jbd2_journal_bmap: journal block not found at offset 32 on loop2-75
[ 1635.236488][ T6309] JBD2: bad block at offset 32
[ 1635.291104][ T6309] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[ 1635.529624][ T6309] ocfs2: Unmounting device (7,2) on (node local)
[ 1635.788989][T20804] usb 5-1: new high-speed USB device number 90 using dummy_hcd
[ 1635.973494][T20804] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1636.013349][T20804] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[ 1636.067476][T20804] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1636.110889][T20804] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[ 1636.162590][T20804] usb 5-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[ 1636.199005][T20804] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1636.219028][T20804] usb 5-1: Product: syz
[ 1636.233056][T20804] usb 5-1: Manufacturer: syz
[ 1636.250692][T20804] usb 5-1: SerialNumber: syz
[ 1636.295206][T20804] usb 5-1: config 0 descriptor??
[ 1636.332778][T20804] ums-isd200 5-1:0.0: USB Mass Storage device detected
[ 1636.384860][ T6381] netlink: 16 bytes leftover after parsing attributes in process `syz.6.14243'.
[ 1636.408700][T20815] usb 6-1: new high-speed USB device number 83 using dummy_hcd
[ 1636.571151][T20815] usb 6-1: config index 0 descriptor too short (expected 1572, got 36)
[ 1636.592527][T20815] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1636.626181][T20815] usb 6-1: New USB device found, idVendor=05ac, idProduct=0238, bcdDevice= 0.40
[ 1636.636379][T20804] ums-isd200 5-1:0.0: probe with driver ums-isd200 failed with error -22
[ 1636.662881][T20815] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1636.690506][T20815] usb 6-1: Product: syz
[ 1636.702592][ T6393] loop1: detected capacity change from 0 to 64
[ 1636.714522][T20815] usb 6-1: Manufacturer: syz
[ 1636.729795][T20815] usb 6-1: SerialNumber: syz
[ 1636.768902][ T6393] hfs: unable to locate alternate MDB
[ 1636.776331][ T4920] usb 5-1: USB disconnect, device number 90
[ 1636.795737][ T6393] hfs: continuing without an alternate MDB
[ 1636.811339][T20815] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/input/input104
[ 1636.827156][ T6396] netlink: 'syz.6.14249': attribute type 2 has an invalid length.
[ 1636.851643][ T6396] netlink: 'syz.6.14249': attribute type 2 has an invalid length.
[ 1636.904021][ T30] audit: type=1800 audit(1795.690:451): pid=6393 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.14248" name="file1" dev="loop1" ino=22 res=0 errno=0
[ 1636.989902][ T4975] bcm5974 6-1:1.0: could not read from device
[ 1637.040314][T20815] bcm5974 6-1:1.0: could not read from device
[ 1637.103471][ T4975] bcm5974 6-1:1.0: could not read from device
[ 1637.119966][T28197]
[ 1637.122323][T28197] ======================================================
[ 1637.126385][ T4975] bcm5974: mode switch failed
[ 1637.129338][T28197] WARNING: possible circular locking dependency detected
[ 1637.129360][T28197] syzkaller #0 Tainted: G L
[ 1637.146976][T28197] ------------------------------------------------------
[ 1637.154001][T28197] kworker/u8:11/28197 is trying to acquire lock:
[ 1637.160336][T28197] ffff88804edb32f0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0
[ 1637.171125][T28197]
[ 1637.171125][T28197] but task is already holding lock:
[ 1637.178494][T28197] ffff888045d120a8 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1637.188070][T28197]
[ 1637.188070][T28197] which lock already depends on the new lock.
[ 1637.188070][T28197]
[ 1637.198472][T28197]
[ 1637.198472][T28197] the existing dependency chain (in reverse order) is:
[ 1637.208004][T28197]
[ 1637.208004][T28197] -> #1 (&tree->tree_lock#2/1){+.+.}-{4:4}:
[ 1637.216310][T28197] __mutex_lock+0x1a4/0x1b10
[ 1637.221431][T28197] hfs_find_init+0x273/0x330
[ 1637.226555][T28197] hfs_ext_read_extent+0x19d/0x9d0
[ 1637.232214][T28197] hfs_get_block+0x576/0x830
[ 1637.237351][T28197] block_read_full_folio+0x36c/0x8e0
[ 1637.243182][T28197] filemap_read_folio+0xfc/0x3b0
[ 1637.248660][T28197] do_read_cache_folio+0x2d7/0x6b0
[ 1637.254309][T28197] read_cache_page+0x5b/0x1b0
[ 1637.259525][T28197] __hfs_bnode_create+0x718/0x9a0
[ 1637.265174][T28197] hfs_bnode_find+0x2d5/0xd30
[ 1637.270394][T28197] hfs_brec_find+0x39d/0x620
[ 1637.275520][T28197] hfs_brec_read+0x26/0x120
[ 1637.280556][T28197] hfs_cat_find_brec+0xdc/0x2a0
[ 1637.285949][T28197] hfs_fill_super+0x58d/0x7e0
[ 1637.291160][T28197] get_tree_bdev_flags+0x38c/0x620
[ 1637.296818][T28197] vfs_get_tree+0x92/0x320
[ 1637.301776][T28197] path_mount+0x7d0/0x23d0
[ 1637.306735][T28197] __x64_sys_mount+0x293/0x310
[ 1637.312045][T28197] do_syscall_64+0x10b/0xf80
[ 1637.317161][T28197] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1637.323583][T28197]
[ 1637.323583][T28197] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}:
[ 1637.332816][T28197] __lock_acquire+0x14b8/0x2630
[ 1637.338204][T28197] lock_acquire+0x1b1/0x370
[ 1637.343240][T28197] __mutex_lock+0x1a4/0x1b10
[ 1637.348357][T28197] hfs_extend_file+0xa6/0xcf0
[ 1637.353581][T28197] hfs_bmap_reserve+0x2ab/0x3a0
[ 1637.359061][T28197] __hfs_ext_write_extent+0x3c4/0x510
[ 1637.364984][T28197] hfs_ext_write_extent+0x1b7/0x200
[ 1637.370822][T28197] hfs_write_inode+0xce/0xab0
[ 1637.376115][T28197] __writeback_single_inode+0xcd4/0x1350
[ 1637.382353][T28197] writeback_sb_inodes+0x766/0x1c60
[ 1637.388136][T28197] wb_writeback+0x1bf/0xb90
[ 1637.393283][T28197] wb_workfn+0x14f/0xc00
[ 1637.398084][T28197] process_one_work+0xa0e/0x1980
[ 1637.403568][T28197] worker_thread+0x5ef/0xe50
[ 1637.408702][T28197] kthread+0x370/0x450
[ 1637.413306][T28197] ret_from_fork+0x72b/0xd50
[ 1637.418435][T28197] ret_from_fork_asm+0x1a/0x30
[ 1637.423744][T28197]
[ 1637.423744][T28197] other info that might help us debug this:
[ 1637.423744][T28197]
[ 1637.433986][T28197] Possible unsafe locking scenario:
[ 1637.433986][T28197]
[ 1637.441446][T28197] CPU0 CPU1
[ 1637.446988][T28197] ---- ----
[ 1637.452368][T28197] lock(&tree->tree_lock#2/1);
[ 1637.457253][T28197] lock(&HFS_I(tree->inode)->extents_lock);
[ 1637.465777][T28197] lock(&tree->tree_lock#2/1);
[ 1637.473214][T28197] lock(&HFS_I(tree->inode)->extents_lock);
[ 1637.479238][T28197]
[ 1637.479238][T28197] *** DEADLOCK ***
[ 1637.479238][T28197]
[ 1637.487382][T28197] 3 locks held by kworker/u8:11/28197:
[ 1637.492840][T28197] #0: ffff8880206d1140 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1637.503617][T28197] #1: ffffc900082f7d08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1637.515519][T28197] #2: ffff888045d120a8 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1637.525624][T28197]
[ 1637.525624][T28197] stack backtrace:
[ 1637.531611][T28197] CPU: 0 UID: 0 PID: 28197 Comm: kworker/u8:11 Tainted: G L syzkaller #0 PREEMPT(full)
[ 1637.531663][T28197] Tainted: [L]=SOFTLOCKUP
[ 1637.531677][T28197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1637.531703][T28197] Workqueue: writeback wb_workfn (flush-7:1)
[ 1637.531772][T28197] Call Trace:
[ 1637.531786][T28197]
[ 1637.531801][T28197] dump_stack_lvl+0x100/0x190
[ 1637.531841][T28197] print_circular_bug.cold+0x178/0x1c7
[ 1637.531903][T28197] check_noncircular+0x146/0x160
[ 1637.531941][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.532006][T28197] __lock_acquire+0x14b8/0x2630
[ 1637.532055][T28197] ? __pfx_stack_trace_save+0x10/0x10
[ 1637.532093][T28197] lock_acquire+0x1b1/0x370
[ 1637.532134][T28197] ? hfs_extend_file+0xa6/0xcf0
[ 1637.532194][T28197] ? __pfx___might_resched+0x10/0x10
[ 1637.532244][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.532293][T28197] ? add_lock_to_list+0x99/0x110
[ 1637.532330][T28197] __mutex_lock+0x1a4/0x1b10
[ 1637.532367][T28197] ? hfs_extend_file+0xa6/0xcf0
[ 1637.532424][T28197] ? hfs_extend_file+0xa6/0xcf0
[ 1637.532483][T28197] ? hfs_write_inode+0xce/0xab0
[ 1637.532516][T28197] ? __writeback_single_inode+0xcd4/0x1350
[ 1637.532575][T28197] ? __pfx___mutex_lock+0x10/0x10
[ 1637.532613][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.532656][T28197] ? lock_acquire+0x1b1/0x370
[ 1637.532702][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.532746][T28197] ? trace_contention_end+0x122/0x170
[ 1637.532794][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.532842][T28197] ? hfs_extend_file+0xa6/0xcf0
[ 1637.532897][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.532940][T28197] hfs_extend_file+0xa6/0xcf0
[ 1637.532999][T28197] ? __pfx_hfs_extend_file+0x10/0x10
[ 1637.533055][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.533106][T28197] hfs_bmap_reserve+0x2ab/0x3a0
[ 1637.533164][T28197] __hfs_ext_write_extent+0x3c4/0x510
[ 1637.533221][T28197] ? hfs_find_init+0x273/0x330
[ 1637.533261][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.533319][T28197] hfs_ext_write_extent+0x1b7/0x200
[ 1637.533377][T28197] ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1637.533440][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.533484][T28197] ? __mpage_writepages+0x1a8/0x210
[ 1637.533520][T28197] ? __pfx___mpage_writepages+0x10/0x10
[ 1637.533558][T28197] hfs_write_inode+0xce/0xab0
[ 1637.533593][T28197] ? __pfx_hfs_write_inode+0x10/0x10
[ 1637.533628][T28197] ? __lock_acquire+0x4a5/0x2630
[ 1637.533683][T28197] ? __writeback_single_inode+0x454/0x1350
[ 1637.533742][T28197] ? __writeback_single_inode+0x454/0x1350
[ 1637.533799][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.533849][T28197] __writeback_single_inode+0xcd4/0x1350
[ 1637.533911][T28197] ? __pfx___writeback_single_inode+0x10/0x10
[ 1637.533989][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.534032][T28197] ? do_raw_spin_unlock+0x145/0x1e0
[ 1637.534084][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.534131][T28197] writeback_sb_inodes+0x766/0x1c60
[ 1637.534199][T28197] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1637.534258][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.534337][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.534380][T28197] ? rcu_is_watching+0x12/0xc0
[ 1637.534432][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.534476][T28197] ? queue_io+0x287/0x540
[ 1637.534525][T28197] wb_writeback+0x1bf/0xb90
[ 1637.534588][T28197] ? __pfx_wb_writeback+0x10/0x10
[ 1637.534651][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.534716][T28197] ? mark_held_locks+0x40/0x70
[ 1637.534758][T28197] ? _raw_spin_unlock_irq+0x23/0x50
[ 1637.534815][T28197] wb_workfn+0x14f/0xc00
[ 1637.534873][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.534917][T28197] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1637.534975][T28197] ? __pfx_wb_workfn+0x10/0x10
[ 1637.535034][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.535083][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.535129][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.535172][T28197] ? rcu_is_watching+0x12/0xc0
[ 1637.535224][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.535272][T28197] process_one_work+0xa0e/0x1980
[ 1637.535332][T28197] ? __pfx_process_one_work+0x10/0x10
[ 1637.535375][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.535427][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.535474][T28197] worker_thread+0x5ef/0xe50
[ 1637.535527][T28197] ? kthread+0x13a/0x450
[ 1637.535566][T28197] ? __pfx_worker_thread+0x10/0x10
[ 1637.535608][T28197] kthread+0x370/0x450
[ 1637.535646][T28197] ? __pfx_kthread+0x10/0x10
[ 1637.535687][T28197] ret_from_fork+0x72b/0xd50
[ 1637.535731][T28197] ? __pfx_ret_from_fork+0x10/0x10
[ 1637.535773][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.535816][T28197] ? rcu_is_watching+0x12/0xc0
[ 1637.535868][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1637.535911][T28197] ? __switch_to+0x800/0x1100
[ 1637.535963][T28197] ? __switch_to_asm+0x39/0x70
[ 1637.536013][T28197] ? __pfx_kthread+0x10/0x10
[ 1637.536054][T28197] ret_from_fork_asm+0x1a/0x30
[ 1637.536115][T28197]
[ 1638.043273][T28197] hfs: new node 0 already hashed?
[ 1638.048956][T28197] ------------[ cut here ]------------
[ 1638.055735][T28197] 1
[ 1638.055753][T28197] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#0: kworker/u8:11/28197
[ 1638.069031][T28197] Modules linked in:
[ 1638.073332][T28197] CPU: 0 UID: 0 PID: 28197 Comm: kworker/u8:11 Tainted: G L syzkaller #0 PREEMPT(full)
[ 1638.084788][T28197] Tainted: [L]=SOFTLOCKUP
[ 1638.089372][T28197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1638.099783][T28197] Workqueue: writeback wb_workfn (flush-7:1)
[ 1638.106164][T28197] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1638.112400][T28197] Code: 85 71 65 0a e9 87 45 d1 01 e8 6b 22 e1 00 4c 89 f7 e8 73 71 65 0a e8 5e 22 e1 00 89 ee 48 c7 c7 40 e9 d1 8b e8 b0 df fa ff 90 <0f> 0b 90 e9 89 48 d1 01 e8 42 22 e1 00 e8 6d 5c 4d 00 e9 e5 4a d1
[ 1638.132214][T28197] RSP: 0018:ffffc900082f7020 EFLAGS: 00010282
[ 1638.138614][T28197] RAX: 000000000000001f RBX: ffff88807b57ce00 RCX: 0000000000000000
[ 1638.146898][T28197] RDX: 000000000000001f RSI: ffffffff81e72d69 RDI: fffff5200105edf5
[ 1638.155415][T28197] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1638.163504][T28197] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000
[ 1638.171527][T28197] R13: ffff888045d12000 R14: ffff888045d120d8 R15: 0000000000000000
[ 1638.179571][T28197] FS: 0000000000000000(0000) GS:ffff88812436a000(0000) knlGS:0000000000000000
[ 1638.188570][T28197] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1638.195249][T28197] CR2: 00007f32129ea2f8 CR3: 000000008ee51000 CR4: 0000000000350ef0
[ 1638.203289][T28197] Call Trace:
[ 1638.206592][T28197]
[ 1638.209613][T28197] ? _raw_spin_unlock+0x28/0x50
[ 1638.214544][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.220207][T28197] ? hfs_bnode_put+0x208/0x480
[ 1638.225045][T28197] hfs_bmap_alloc+0x5a7/0x6b0
[ 1638.229786][T28197] ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1638.235183][T28197] ? __asan_memcpy+0x3c/0x60
[ 1638.239819][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.245579][T28197] ? hfs_bnode_read.part.0+0x298/0x330
[ 1638.251098][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.256881][T28197] ? folio_mark_accessed+0xf3/0x1040
[ 1638.262215][T28197] hfs_btree_inc_height.isra.0+0xff/0x820
[ 1638.268049][T28197] ? rcu_is_watching+0x12/0xc0
[ 1638.272865][T28197] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1638.279277][T28197] ? do_raw_spin_unlock+0x145/0x1e0
[ 1638.284552][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.290252][T28197] ? _raw_spin_unlock+0x28/0x50
[ 1638.295163][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.300892][T28197] ? hfs_bnode_put+0x208/0x480
[ 1638.305746][T28197] hfs_brec_insert+0x8ba/0xc20
[ 1638.308984][ T4920] usb 1-1: new full-speed USB device number 90 using dummy_hcd
[ 1638.310602][T28197] ? __pfx_hfs_brec_insert+0x10/0x10
[ 1638.323446][T28197] ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1638.328535][T28197] __hfs_ext_write_extent+0x3ef/0x510
[ 1638.334012][T28197] ? hfs_find_init+0x273/0x330
[ 1638.338966][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.344708][T28197] hfs_ext_write_extent+0x1b7/0x200
[ 1638.349968][T28197] ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1638.355789][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.361454][T28197] ? __mpage_writepages+0x1a8/0x210
[ 1638.366703][T28197] ? __pfx___mpage_writepages+0x10/0x10
[ 1638.372298][T28197] hfs_write_inode+0xce/0xab0
[ 1638.377022][T28197] ? __pfx_hfs_write_inode+0x10/0x10
[ 1638.382334][T28197] ? __lock_acquire+0x4a5/0x2630
[ 1638.387449][T28197] ? __writeback_single_inode+0x454/0x1350
[ 1638.393343][T28197] ? __writeback_single_inode+0x454/0x1350
[ 1638.399220][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.404905][T28197] __writeback_single_inode+0xcd4/0x1350
[ 1638.410613][T28197] ? __pfx___writeback_single_inode+0x10/0x10
[ 1638.416772][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.422463][T28197] ? do_raw_spin_unlock+0x145/0x1e0
[ 1638.427714][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.433385][T28197] writeback_sb_inodes+0x766/0x1c60
[ 1638.438652][T28197] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1638.444365][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.450175][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.455877][T28197] ? rcu_is_watching+0x12/0xc0
[ 1638.460734][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.466408][T28197] ? queue_io+0x287/0x540
[ 1638.470814][T28197] wb_writeback+0x1bf/0xb90
[ 1638.475401][T28197] ? __pfx_wb_writeback+0x10/0x10
[ 1638.481016][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.482009][ T4920] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 10
[ 1638.486782][T28197] ? mark_held_locks+0x40/0x70
[ 1638.502716][T28197] ? _raw_spin_unlock_irq+0x23/0x50
[ 1638.505584][ T4920] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1638.507964][T28197] wb_workfn+0x14f/0xc00
[ 1638.518311][ T4920] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 10
[ 1638.522039][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.533727][ T4920] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1638.538707][T28197] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1638.551284][ T4920] usb 1-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[ 1638.554284][T28197] ? __pfx_wb_workfn+0x10/0x10
[ 1638.564211][ T4920] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1638.568314][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.576948][ T4920] usb 1-1: Product: syz
[ 1638.581928][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.586144][ T4920] usb 1-1: Manufacturer: syz
[ 1638.591962][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.602029][T28197] ? rcu_is_watching+0x12/0xc0
[ 1638.606861][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.612572][T28197] process_one_work+0xa0e/0x1980
[ 1638.617556][T28197] ? __pfx_process_one_work+0x10/0x10
[ 1638.623044][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.628729][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.634447][T28197] worker_thread+0x5ef/0xe50
[ 1638.639115][T28197] ? kthread+0x13a/0x450
[ 1638.643425][T28197] ? __pfx_worker_thread+0x10/0x10
[ 1638.648577][T28197] kthread+0x370/0x450
[ 1638.652925][T28197] ? __pfx_kthread+0x10/0x10
[ 1638.657453][ T4920] usb 1-1: SerialNumber: syz
[ 1638.657570][T28197] ret_from_fork+0x72b/0xd50
[ 1638.666729][T28197] ? __pfx_ret_from_fork+0x10/0x10
[ 1638.671887][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.677798][T28197] ? rcu_is_watching+0x12/0xc0
[ 1638.682720][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.683479][ T4920] usb 1-1: config 0 descriptor??
[ 1638.688387][T28197] ? __switch_to+0x800/0x1100
[ 1638.698088][T28197] ? __switch_to_asm+0x39/0x70
[ 1638.702892][T28197] ? __pfx_kthread+0x10/0x10
[ 1638.707557][T28197] ret_from_fork_asm+0x1a/0x30
[ 1638.712398][T28197]
[ 1638.715464][T28197] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1638.722763][T28197] CPU: 0 UID: 0 PID: 28197 Comm: kworker/u8:11 Tainted: G L syzkaller #0 PREEMPT(full)
[ 1638.734012][T28197] Tainted: [L]=SOFTLOCKUP
[ 1638.738344][T28197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1638.748414][T28197] Workqueue: writeback wb_workfn (flush-7:1)
[ 1638.754478][T28197] Call Trace:
[ 1638.757759][T28197]
[ 1638.760693][T28197] dump_stack_lvl+0x100/0x190
[ 1638.765407][T28197] vpanic+0x552/0x970
[ 1638.769504][T28197] ? __pfx_vpanic+0x10/0x10
[ 1638.774116][T28197] ? lock_release+0x245/0x310
[ 1638.778827][T28197] panic+0xd1/0xe0
[ 1638.782577][T28197] ? __pfx_panic+0x10/0x10
[ 1638.787017][T28197] ? check_panic_on_warn+0x1f/0x90
[ 1638.792156][T28197] check_panic_on_warn.cold+0x19/0x34
[ 1638.797549][T28197] ? hfs_bnode_create.cold+0x41/0x49
[ 1638.802961][T28197] __warn.cold+0x191/0x328
[ 1638.807419][T28197] __report_bug+0x296/0x3d0
[ 1638.811964][T28197] ? hfs_bnode_create.cold+0x41/0x49
[ 1638.817281][T28197] ? __pfx___report_bug+0x10/0x10
[ 1638.822376][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.828030][T28197] ? preempt_schedule_thunk+0x16/0x30
[ 1638.833453][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.839117][T28197] ? preempt_count_add+0x76/0x150
[ 1638.844174][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.849827][T28197] ? __wake_up_klogd+0xe2/0x140
[ 1638.854712][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.860371][T28197] ? vprintk_emit+0x1c9/0x6b0
[ 1638.865087][T28197] ? __pfx_vprintk_emit+0x10/0x10
[ 1638.870159][T28197] ? hfs_bnode_create.cold+0x41/0x49
[ 1638.875483][T28197] report_bug+0xb2/0x220
[ 1638.879764][T28197] ? hfs_bnode_create.cold+0x41/0x49
[ 1638.885071][T28197] handle_bug+0x16a/0x2a0
[ 1638.889423][T28197] exc_invalid_op+0x17/0x50
[ 1638.893950][T28197] asm_exc_invalid_op+0x1a/0x20
[ 1638.898921][T28197] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1638.904851][T28197] Code: 85 71 65 0a e9 87 45 d1 01 e8 6b 22 e1 00 4c 89 f7 e8 73 71 65 0a e8 5e 22 e1 00 89 ee 48 c7 c7 40 e9 d1 8b e8 b0 df fa ff 90 <0f> 0b 90 e9 89 48 d1 01 e8 42 22 e1 00 e8 6d 5c 4d 00 e9 e5 4a d1
[ 1638.924606][T28197] RSP: 0018:ffffc900082f7020 EFLAGS: 00010282
[ 1638.930699][T28197] RAX: 000000000000001f RBX: ffff88807b57ce00 RCX: 0000000000000000
[ 1638.938679][T28197] RDX: 000000000000001f RSI: ffffffff81e72d69 RDI: fffff5200105edf5
[ 1638.946662][T28197] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1638.954734][T28197] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000
[ 1638.962718][T28197] R13: ffff888045d12000 R14: ffff888045d120d8 R15: 0000000000000000
[ 1638.970715][T28197] ? vprintk_emit+0x1c9/0x6b0
[ 1638.975442][T28197] ? _raw_spin_unlock+0x28/0x50
[ 1638.980417][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1638.986082][T28197] ? hfs_bnode_put+0x208/0x480
[ 1638.991143][T28197] hfs_bmap_alloc+0x5a7/0x6b0
[ 1638.995885][T28197] ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1639.001119][T28197] ? __asan_memcpy+0x3c/0x60
[ 1639.005774][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.011429][T28197] ? hfs_bnode_read.part.0+0x298/0x330
[ 1639.016919][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.022576][T28197] ? folio_mark_accessed+0xf3/0x1040
[ 1639.027897][T28197] hfs_btree_inc_height.isra.0+0xff/0x820
[ 1639.033648][T28197] ? rcu_is_watching+0x12/0xc0
[ 1639.038446][T28197] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1639.044810][T28197] ? do_raw_spin_unlock+0x145/0x1e0
[ 1639.050053][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.055718][T28197] ? _raw_spin_unlock+0x28/0x50
[ 1639.060611][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.066316][T28197] ? hfs_bnode_put+0x208/0x480
[ 1639.071129][T28197] hfs_brec_insert+0x8ba/0xc20
[ 1639.075937][T28197] ? __pfx_hfs_brec_insert+0x10/0x10
[ 1639.081261][T28197] ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1639.086333][T28197] __hfs_ext_write_extent+0x3ef/0x510
[ 1639.091748][T28197] ? hfs_find_init+0x273/0x330
[ 1639.096535][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.102205][T28197] hfs_ext_write_extent+0x1b7/0x200
[ 1639.107448][T28197] ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1639.113216][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.118902][T28197] ? __mpage_writepages+0x1a8/0x210
[ 1639.124125][T28197] ? __pfx___mpage_writepages+0x10/0x10
[ 1639.130126][T28197] hfs_write_inode+0xce/0xab0
[ 1639.134828][T28197] ? __pfx_hfs_write_inode+0x10/0x10
[ 1639.140137][T28197] ? __lock_acquire+0x4a5/0x2630
[ 1639.145114][T28197] ? __writeback_single_inode+0x454/0x1350
[ 1639.150992][T28197] ? __writeback_single_inode+0x454/0x1350
[ 1639.156845][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.162773][T28197] __writeback_single_inode+0xcd4/0x1350
[ 1639.168488][T28197] ? __pfx___writeback_single_inode+0x10/0x10
[ 1639.174600][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.180261][T28197] ? do_raw_spin_unlock+0x145/0x1e0
[ 1639.185537][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.191287][T28197] writeback_sb_inodes+0x766/0x1c60
[ 1639.196543][T28197] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1639.202217][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.207910][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.213569][T28197] ? rcu_is_watching+0x12/0xc0
[ 1639.218374][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.224204][T28197] ? queue_io+0x287/0x540
[ 1639.228657][T28197] wb_writeback+0x1bf/0xb90
[ 1639.233221][T28197] ? __pfx_wb_writeback+0x10/0x10
[ 1639.238287][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.243949][T28197] ? mark_held_locks+0x40/0x70
[ 1639.248739][T28197] ? _raw_spin_unlock_irq+0x23/0x50
[ 1639.254071][T28197] wb_workfn+0x14f/0xc00
[ 1639.258360][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.264017][T28197] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1639.269872][T28197] ? __pfx_wb_workfn+0x10/0x10
[ 1639.274695][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.280415][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.286118][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.291791][T28197] ? rcu_is_watching+0x12/0xc0
[ 1639.296602][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.302285][T28197] process_one_work+0xa0e/0x1980
[ 1639.307279][T28197] ? __pfx_process_one_work+0x10/0x10
[ 1639.312776][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.318457][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.324215][T28197] worker_thread+0x5ef/0xe50
[ 1639.329042][T28197] ? kthread+0x13a/0x450
[ 1639.333307][T28197] ? __pfx_worker_thread+0x10/0x10
[ 1639.338459][T28197] kthread+0x370/0x450
[ 1639.342554][T28197] ? __pfx_kthread+0x10/0x10
[ 1639.347256][T28197] ret_from_fork+0x72b/0xd50
[ 1639.351879][T28197] ? __pfx_ret_from_fork+0x10/0x10
[ 1639.357017][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.362680][T28197] ? rcu_is_watching+0x12/0xc0
[ 1639.367482][T28197] ? srso_alias_return_thunk+0x5/0xfbef5
[ 1639.373143][T28197] ? __switch_to+0x800/0x1100
[ 1639.377856][T28197] ? __switch_to_asm+0x39/0x70
[ 1639.382654][T28197] ? __pfx_kthread+0x10/0x10
[ 1639.387280][T28197] ret_from_fork_asm+0x1a/0x30
[ 1639.392096][T28197]
[ 1639.395652][T28197] Kernel Offset: disabled
[ 1639.399986][T28197] Rebooting in 86400 seconds..