last executing test programs:

5m8.25820725s ago: executing program 1 (id=2785):
capset(0x0, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file1\x00', 0x10c00, &(0x7f0000000100)=ANY=[], 0x3, 0x150f, &(0x7f0000000780)="$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")
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)

5m7.646472316s ago: executing program 1 (id=2790):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x18, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_RULES={0x4, 0x10d}]}, 0x18}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

5m7.29703191s ago: executing program 1 (id=2796):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x4)

5m7.057407753s ago: executing program 1 (id=2801):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
dup3(r1, r0, 0x0)

5m6.756803216s ago: executing program 1 (id=2805):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1, 0x103)

5m6.522279689s ago: executing program 1 (id=2810):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
sendmmsg(r0, &(0x7f0000003c40)=[{{&(0x7f0000000140)=@ieee802154={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0202}}}, 0x80, 0x0}}], 0x1, 0x4000880)

4m51.279782458s ago: executing program 32 (id=2810):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
sendmmsg(r0, &(0x7f0000003c40)=[{{&(0x7f0000000140)=@ieee802154={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0202}}}, 0x80, 0x0}}], 0x1, 0x4000880)

2m43.401474411s ago: executing program 5 (id=4088):
r0 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x1}, 0x10)
write(r0, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042402000000ff020003000a0000", 0x1e5)

2m42.270524224s ago: executing program 5 (id=4095):
r0 = creat(&(0x7f0000000280)='./bus\x00', 0xd4)
io_setup(0x5, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000002c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x0, r0, 0x0}])

2m42.080715406s ago: executing program 5 (id=4096):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newlink={0x44, 0x10, 0xfffffffffffff4fb, 0x70bd25, 0x25de59f7, {0x0, 0x0, 0x0, 0x0, 0x2813, 0x2c21}, [@IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r1}, @IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x20004800)

2m41.526716102s ago: executing program 5 (id=4101):
syz_mount_image$hfsplus(&(0x7f0000000080), &(0x7f0000000640)='./file0\x00', 0x800000, &(0x7f0000000000)={[{@type={'type', 0x3d, "de3fb575"}}, {}, {@gid}, {@nls={'nls', 0x3d, 'iso8859-6'}}]}, 0x1, 0x5d8, &(0x7f0000000cc0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='devpts\x00', 0x0, 0x0)

2m41.118631047s ago: executing program 5 (id=4104):
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8983, &(0x7f0000000280)={0x6, 'batadv_slave_0\x00', {0x1}, 0x8916})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000000)={0x0, 'batadv_slave_0\x00', {0x1}, 0x80})

2m40.453645204s ago: executing program 5 (id=4112):
syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800000, &(0x7f0000000180)=ANY=[], 0xff, 0x234, &(0x7f0000000900)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f000001f940))
truncate(&(0x7f0000000000)='./file1\x00', 0x2)

2m39.90898844s ago: executing program 33 (id=4112):
syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800000, &(0x7f0000000180)=ANY=[], 0xff, 0x234, &(0x7f0000000900)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f000001f940))
truncate(&(0x7f0000000000)='./file1\x00', 0x2)

23.204074791s ago: executing program 0 (id=5355):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@loopback, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xfffd, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, {0x9}}, {{@in=@private=0xa010102, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x4, 0x0, 0x0, 0x5}}, 0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0)

22.848817215s ago: executing program 0 (id=5361):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000000040)={[{@clear_cache}, {@metadata_ratio}, {@ssd_spread}]}, 0x0, 0x559e, &(0x7f0000005680)="$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")
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, 0x0)

20.416496313s ago: executing program 0 (id=5382):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a0000000212a277", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f000000b200)={0x0, 0x0, 0x1, "b5"}, 0x9)

19.285189365s ago: executing program 0 (id=5392):
syz_mount_image$ext4(&(0x7f0000000600)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x10081, &(0x7f00000000c0)={[{@nodioread_nolock}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@mblk_io_submit}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x450, &(0x7f0000000dc0)="$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")
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000000)='./file0\x00')

18.535455703s ago: executing program 0 (id=5399):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$inet6_int(r0, 0x29, 0xcf, 0x0, 0x0)

17.809647252s ago: executing program 0 (id=5406):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x702, 0xe40, 0x0, &(0x7f0000000580)="e460334470d8d400eb00c15286dd", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

17.364709616s ago: executing program 34 (id=5406):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x702, 0xe40, 0x0, &(0x7f0000000580)="e460334470d8d400eb00c15286dd", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.526455212s ago: executing program 6 (id=5508):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000010240)=@newtaction={0x64, 0x30, 0x20, 0x70bd28, 0x25dfdbfe, {}, [{0x50, 0x1, [@m_mpls={0x4c, 0xa, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0xb, 0xc, 0x6, 0xffffffff, 0x2}, 0x1}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x64}}, 0x4000)

2.334013394s ago: executing program 4 (id=5510):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x13}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r0, 0x0, 0xe, 0x0, &(0x7f0000000080)="c1dfb080cd21d308098e00008100", 0x0, 0x8006, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.237064844s ago: executing program 6 (id=5511):
r0 = fsopen(&(0x7f0000000000)='cgroup\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000340)='name', &(0x7f00000000c0)='\xf6gr\xe7lo_', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000100)='name', &(0x7f0000000140)='ccnA\xf6gr\xe7lo_', 0x0)

2.019319607s ago: executing program 6 (id=5514):
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x90, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$NILFS_IOCTL_CLEAN_SEGMENTS(r0, 0x40786e88, &(0x7f0000000640)={{&(0x7f0000000500)=[{0x800, 0x5, 0x80000ffff, {0x7, 0x657}, 0x0, 0xf762, 0x174}], 0x1, 0x40, 0xd, 0xe2}, {0x0, 0x0, 0x10, 0x20c, 0xfffffffffffffff8}, {0x0, 0x0, 0x8, 0xfffe, 0x2}, {0x0, 0x0, 0x28, 0x0, 0xffffffffffffff2d}, {&(0x7f00000003c0)=[0x9], 0x1, 0x8, 0x98f, 0x40000000ffff}})

1.923968348s ago: executing program 2 (id=5515):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000000080)="fb", 0x1}], 0x1)

1.878728139s ago: executing program 3 (id=5516):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000b40)={0x54, 0x9, 0x1, {0x1, 0x1}, {0x64, 0x7}, @cond=[{0x7f, 0x2, 0x81, 0x6, 0xffff, 0xe8}, {0x3, 0xffff, 0x1, 0x1, 0x2}]})
write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250)

1.814224959s ago: executing program 4 (id=5517):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000dc0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_DYNSET_OP={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz1\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}, 0x1, 0x0, 0x0, 0x10}, 0x4010)

1.684403491s ago: executing program 2 (id=5518):
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x41071, 0xffffffffffffffff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f00000021c0)={'broute\x00', 0x0, 0x0, 0x0, [0x9, 0x57, 0x4, 0x9, 0x64e3, 0x5]}, &(0x7f0000002240)=0x78)

1.545105492s ago: executing program 3 (id=5519):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000026c0), r0)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000002800)={0x0, 0x0, &(0x7f00000027c0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x70bd25, 0x25dfdc02, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1000100000001}, @NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x7}}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24040001}, 0x800)

1.488110263s ago: executing program 4 (id=5520):
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0xe23, 0xfffffffc, @remote, 0x1}, 0x1c)
write$binfmt_script(r0, &(0x7f00000000c0), 0xfdef)

1.250371976s ago: executing program 6 (id=5521):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000340)={[{@noload}, {@stripe={'stripe', 0x3d, 0x30c}}, {@jqfmt_vfsv1}, {@nojournal_checksum}, {@jqfmt_vfsv1}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$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")
r0 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21)
write$cgroup_subtree(r0, 0x0, 0x0)

1.197856196s ago: executing program 4 (id=5522):
r0 = socket(0x11, 0x2, 0x0)
setsockopt(r0, 0x107, 0x1, &(0x7f00000001c0)="010000000000060000071a80010061cc", 0x10)
close(r0)

1.178192496s ago: executing program 3 (id=5523):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=r0], 0xfd, 0x0, 0x0)
mount(&(0x7f0000000100)=@filename='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='ubifs\x00', 0x0, 0x0)

1.092074267s ago: executing program 2 (id=5524):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newqdisc={0x148, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffc, {0x0, 0x0, 0x0, r1, {0x0, 0x1}, {0xffff, 0xffff}, {0x16}}, [@qdisc_kind_options=@q_red={{0x8}, {0x11c, 0x2, [@TCA_RED_STAB={0x104, 0x2, "09000000002020008f29d158039b90627d7b60f0d5ca47f33eed46409b7c8722ce020df6b24c2e6ac7b97dc04d01be2092874115214b1ebb764511f69cd1e9f6263346363d2c639c76000067af25166c2f0f85f36aa8867406119c010400002e31dea98204000000d560eae59ea49ef95d73202a6e3b5e1eb38244e694e7410d33bc92794ad27031f2a19698b5142ddf36e2a876a4fc871207bf12a84f1d4d132f5bb7edcf2d08d677e6a7268e106b6ced3c7f53df24092ddb9e0fac6a1153c3fc88bfd1404fef22cf3e825a6e19c6a48a5444eabb459ac3ec9a278df4011773d2f2e6529ed0ad424b47ec67522477f979360b76d1008000"}, @TCA_RED_PARMS={0x14, 0x1, {0x3f26, 0x7, 0x81, 0xc, 0xb, 0x14, 0x5}}]}}]}, 0x148}}, 0x0)

906.811779ms ago: executing program 4 (id=5525):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000c00)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0], 0x1, 0x11e2, &(0x7f0000002480)="$eJzs3MFrHFUcB/BfYm1rarNRa7UF8aEXvQzdHLzoZZEUpAtK2xVaQZiaWV123A2ZJbAiVk9e/TvEozdBvOklF/8Gb7l4zCE44m5iElkPQZOF8Plc5gfvfee9x8DADPNm561vPu13q6ybj2JxYSEWNyLSbooUi3Hgy3j9zZ9/eeneg4d3Wu322t2UbrfuN99IKS2//OMHn3/3yk+jK+9/v/zDpdhe+XDn99Xftq9v39j54/4nvSr1qjQYjlKeHg2Ho/xRWaT1XtXPUnqvLPKqSL1BVWwea++Ww42NccoH6wsRUVRVygfj1C/GaTRMo81xyj/Oe4OUZVm6uhT8F51vd+u6jqjrJ+Ni1HVdPxVLcSWejquxHI1YiWfi2XgursXzcT1eiBfjxqTXvOcNAAAAAAAAAAAAAAAAAAAA54v9/wAAAAAAAAAAAAAAAAAAADB/9x48vNNqt9fupnQ5ovx6q7PVmR6n7a1u9KKMIm5FI/Zisvt/alrffqe9ditNrMRX5eP9/OOtzhPH883J7wRm5pvTfDqevxRLR/Or0Yhrs/OrM/OX47VXj+SzaMSvH8UwyliPv7KH+S+aKb39bvsf+ZuTfgAAAHAeZOlvM5/fs+zf2qf5E7wfqPaH3M9fiJsX5rdupqrxZ/28LIvNUysuxqkPoVAoDoq9uq7/h/PM+87EWTi86POeCQAAAAAAAAAAACdxFp8lznuNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPzJDhwLAAAAAAjzt06jYwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4KgAA//9N2dOT")
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
open_tree(0xffffffffffffff9c, &(0x7f0000000180)='./file0/../file0/../file0/../file0\x00', 0x89901)

895.87075ms ago: executing program 3 (id=5526):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
recvmmsg(r0, &(0x7f0000001d40)=[{{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000002140)=""/91, 0x5b}], 0x1, 0x0, 0xfffffffffffffe24}, 0x1}], 0x2, 0x2, 0x0)
sendto(r0, 0x0, 0x0, 0x840, 0x0, 0x0)

668.220582ms ago: executing program 2 (id=5527):
r0 = socket(0x1, 0x3, 0x0)
bind$unix(r0, &(0x7f0000000400)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, 0x0)

642.165722ms ago: executing program 3 (id=5528):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file1\x00', 0x0, &(0x7f0000000180)={[{@grpjquota}, {@barrier_val={'barrier', 0x3d, 0x1}}]}, 0xfe, 0x24b, &(0x7f0000006440)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x51)
getdents64(r0, 0x0, 0x0)

635.433202ms ago: executing program 4 (id=5529):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x17, &(0x7f00000003c0)=0x3, 0x4)
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x1, @local, 0xa}, 0x1c, 0x0}}], 0x1, 0x20084800)

579.770583ms ago: executing program 6 (id=5530):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=r0], 0xfd, 0x0, 0x0)
utime(&(0x7f0000000080)='./file0\x00', 0x0)

386.251496ms ago: executing program 2 (id=5531):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TCSETS(r0, 0x5402, 0x0)

307.814826ms ago: executing program 2 (id=5532):
futex(&(0x7f000000cffc)=0x1, 0x0, 0x1, 0x0, 0x0, 0x0)
futex(&(0x7f0000000000)=0x1, 0xd, 0x1, 0x0, 0x0, 0xfffffffd)
futex(&(0x7f000000cffc)=0x2, 0x5, 0x2000, 0x0, &(0x7f0000000000)=0x6, 0x4ffffff)

41.867059ms ago: executing program 3 (id=5533):
syz_mount_image$hfs(&(0x7f0000000300), &(0x7f0000000000)='.\x02\x00', 0x804810, &(0x7f0000000680)=ANY=[], 0x3, 0x2ef, &(0x7f0000000880)="$eJzs3b1PFE8cx/HP7N3B8YPwWx4MiaVKQmUUG2ODMfwZakTuTAgXTAATsZFYGmPofOgs7KyNjaU90dpoZWUP3ZqZ3T32wj7ccXAL+n4ld1luZ2a/s7u3+51LlhGAf9atxR/vr/2yLyNVVJF0Q/Ik1aWqpHOaqT9a21zZbDUbeQ1VXA37MgprmkNllteaaVVtPVcj4tu/qhpLfoaTEQRB8PNbJb/M/wMLByVx3/4UnjTsLgeR+gBjOknbZQdQMrOvfT3WeNlxAADKZe//tTDxt3nAWJS/e540G932XX5wdu7/+Vnr/uACOZUS9383ygqMPb5ul5mD8Z4bwtn1XjxKzGkxc82QwkSyI8E0RaNKF4s38mCl1by8/LDV8PRMC5FEsWn33lAySVVBtBdygk1R3PcsrsdezfZhPiP+qaNs8VXvobTtBWbX3DW+3qrRzv+qgdsj7kj5Lm6/XSGM/0p2i6P2zRhXKqOXE24j56Mt6NOHLnpZTx+RtOOciE/dp+GHfhznzlBOrUl1/qwQ9u5qdu9cranUWvNp5RN7cjpZK7pyRmdz9vZ69nwnGWkh89LYgr/1UYuJ/N+ze3vWFYh3e06QxpWMzozc/lRdSb+LwLyMTfEr0NHUcte+0H1d1/jG1pPVpVarud7twufvPRQ+roU378KFSj/txD0/tKqqfiMMhsOmT2on9B9hNwvxCTPAgxsfk4GfUSUvqO92KhrWanzNPLbAosOxvbrUCpfSE6WRfq5LOEUSl8eZ22UHgzLYa4gJx38ukw+zuptunf36+y5PryktTw+KGnctvr6zGw4fEmODg2R10r3/19MIbjR7BJfoQ+6Y6+KcdClni186m/WjOP8SZlFfdY/f/wEAAAAAAAAAAAAAAAAAAM6awgcD9oL1ja3o8ZYjPhlSchcBAAAAAAAAAAAAAAAAAAAAADjzsub/rcZzZBbM/xs/GZAx/+9cx3/1Lp7/d8E2lDH/b/4ktQB69icAAP//PDxxKA==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='devices.list\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100), 0x208e24b)

0s ago: executing program 6 (id=5534):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

kernel console output (not intermixed with test programs):

0 to 512
[  481.550549][T15063] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  481.627027][T15063] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  481.647135][T15063] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.4427: Corrupt directory, running e2fsck is recommended
[  481.718566][T15063] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  481.777004][T15063] EXT4-fs error (device loop4): ext4_iget_extra_inode:4763: inode #15: comm syz.4.4427: corrupted in-inode xattr
[  481.861474][T15063] EXT4-fs error (device loop4): ext4_orphan_get:1410: comm syz.4.4427: couldn't read orphan inode 15 (err -117)
[  481.915829][T15077] loop3: detected capacity change from 0 to 1024
[  481.922389][T15063] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  481.954574][T15080] loop6: detected capacity change from 0 to 256
[  481.978906][T15080] exfat: Deprecated parameter 'utf8'
[  481.984399][T15080] exfat: Deprecated parameter 'utf8'
[  482.100009][T15080] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  482.167085][T13913] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  482.248410][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  482.378960][T13913] usb 1-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  482.419501][T13913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.460086][T13913] usb 1-1: Product: syz
[  482.464606][T13913] usb 1-1: Manufacturer: syz
[  482.500254][T13913] usb 1-1: SerialNumber: syz
[  482.533114][T15052] loop2: detected capacity change from 0 to 32768
[  482.667365][T15052] jfs_lookup: dtSearch returned -5
[  482.732250][T15088] loop6: detected capacity change from 0 to 4096
[  482.790695][T15088] EXT4-fs: inline encryption not supported
[  482.833006][T15088] EXT4-fs (loop6): Test dummy encryption mode enabled
[  482.891406][T15088] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  482.918396][T15088] System zones: 0-5
[  482.984225][T15088] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  483.169931][T13913] (unnamed net_device) (uninitialized): Assigned a random MAC address: 3e:b0:3f:26:db:71
[  483.209590][T13913] rtl8150 1-1:1.0: eth9: rtl8150 is detected
[  483.254826][T13913] usb 1-1: USB disconnect, device number 24
[  483.292860][T14104] EXT4-fs (loop6): unmounting filesystem.
[  483.903129][T15122] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4446'.
[  484.146431][T15133] loop6: detected capacity change from 0 to 16
[  484.192540][T15133] erofs: (device loop6): mounted with root inode @ nid 36.
[  484.263907][T15133] overlayfs: failed to get metacopy (-117)
[  484.277922][ T5642] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  485.148514][T15129] loop4: detected capacity change from 0 to 32768
[  485.350115][T14048] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  485.572560][T14048] usb 3-1: unable to get BOS descriptor or descriptor too short
[  485.601617][T14048] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  485.648370][T14048] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  485.686524][T14048] usb 3-1: too many endpoints for config 1 interface 1 altsetting 76: 188, using maximum allowed: 30
[  485.715647][T15138] loop0: detected capacity change from 0 to 40427
[  485.754527][T15138] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  485.768119][T14048] usb 3-1: config 1 interface 1 altsetting 76 has 0 endpoint descriptors, different from the interface descriptor's value: 188
[  485.797064][T15138] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  485.847027][T14048] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  485.896023][T15138] F2FS-fs (loop0): Found nat_bits in checkpoint
[  485.898658][T14048] usb 3-1: config 1 interface 1 has no altsetting 0
[  485.958515][T14048] usb 3-1: string descriptor 0 read error: -22
[  486.005689][T14048] usb 3-1: New USB device found, idVendor=21b4, idProduct=0081, bcdDevice= 0.40
[  486.060406][T14048] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.115146][T15138] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  486.137641][T15138] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  486.171418][T15173] loop6: detected capacity change from 0 to 512
[  486.197984][   T33] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  486.257695][T15173] EXT4-fs error (device loop6): ext4_orphan_get:1405: inode #15: comm syz.6.4461: inode has both inline data and extents flags
[  486.324233][T15155] loop3: detected capacity change from 0 to 32768
[  486.399635][T15173] EXT4-fs error (device loop6): ext4_orphan_get:1410: comm syz.6.4461: couldn't read orphan inode 15 (err -117)
[  486.434199][T15155] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  486.443473][T15173] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  486.658380][T15173] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  486.732630][T14048] usb 3-1: 2:0: cannot get min/max values for control 2 (id 2)
[  486.802439][T14048] usb 3-1: USB disconnect, device number 25
[  486.870933][ T4271] ocfs2: Unmounting device (7,3) on (node local)
[  486.935723][T15163] loop4: detected capacity change from 0 to 32768
[  486.962168][T14104] EXT4-fs (loop6): unmounting filesystem.
[  487.063763][T15163] read_mapping_page failed!
[  487.088527][ T4357] udevd[4357]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  487.105535][T15163] ERROR: (device loop4): txCommit: 
[  487.105535][T15163] 
[  487.445499][T15190] loop6: detected capacity change from 0 to 4096
[  487.585906][T15190] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  487.616526][T15197] loop2: detected capacity change from 0 to 4096
[  487.757956][T15197] EXT4-fs: inline encryption not supported
[  487.793506][T15197] EXT4-fs (loop2): Test dummy encryption mode enabled
[  487.854701][T15197] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  487.881968][T15197] System zones: 0-5
[  487.895805][T15197] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  487.939064][T15190] EXT4-fs: Cannot change journaled quota options when quota turned on
[  488.033717][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  488.264855][   T27] audit: type=1326 audit(1778243383.356:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15212 comm="syz.2.4472" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f255959cdd9 code=0x7ffc0000
[  488.305470][T15214] block nbd0: not configured, cannot reconfigure
[  488.323946][T14104] EXT4-fs (loop6): unmounting filesystem.
[  488.387217][   T27] audit: type=1326 audit(1778243383.356:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15212 comm="syz.2.4472" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f255959cdd9 code=0x7ffc0000
[  488.535320][   T27] audit: type=1326 audit(1778243383.356:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15212 comm="syz.2.4472" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f255959cdd9 code=0x7ffc0000
[  488.644582][   T27] audit: type=1326 audit(1778243383.356:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15212 comm="syz.2.4472" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f255959cdd9 code=0x7ffc0000
[  488.669726][    C0] vkms_vblank_simulate: vblank timer overrun
[  488.802689][   T27] audit: type=1326 audit(1778243383.356:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15212 comm="syz.2.4472" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f255959cdd9 code=0x7ffc0000
[  488.886970][   T27] audit: type=1326 audit(1778243383.356:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15212 comm="syz.2.4472" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f255959cdd9 code=0x7ffc0000
[  488.919653][T15227] loop3: detected capacity change from 0 to 4096
[  489.014756][T15237] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  489.067097][   T27] audit: type=1326 audit(1778243383.356:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15212 comm="syz.2.4472" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f255959cdd9 code=0x7ffc0000
[  489.092098][    C0] vkms_vblank_simulate: vblank timer overrun
[  489.277617][   T27] audit: type=1326 audit(1778243383.356:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15212 comm="syz.2.4472" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f255959cdd9 code=0x7ffc0000
[  489.400177][T15249] loop4: detected capacity change from 0 to 64
[  489.617816][T15244] loop0: detected capacity change from 0 to 4096
[  489.625735][T15244] EXT4-fs: inline encryption not supported
[  489.711726][T15244] EXT4-fs (loop0): Test dummy encryption mode enabled
[  489.766779][T15255] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4489'.
[  489.808437][T15244] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  489.877105][T15244] System zones: 0-5
[  489.937546][T15244] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  490.037402][ T4298] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  490.096079][T15267] Bluetooth: MGMT ver 1.22
[  490.189404][T15272] delete_channel: no stack
[  490.371644][ T4272] EXT4-fs (loop0): unmounting filesystem.
[  490.387506][T15271] loop6: detected capacity change from 0 to 4096
[  490.398765][T15276] vxcan0: MTU too low for tipc bearer
[  490.404327][T15276] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  490.446664][T15271] ntfs: (device loop6): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  490.528067][T15271] ntfs: (device loop6): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  490.630901][T15271] ntfs: volume version 3.1.
[  491.012256][T15292] devpts: called with bogus options
[  491.045450][T15296] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4505'.
[  491.092132][T15296] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4505'.
[  491.352100][T15305] genirq: Flags mismatch irq 4. 00000000 (pcl816) vs. 00000000 (ttyS0)
[  491.374313][T15302] loop6: detected capacity change from 0 to 512
[  491.432316][T15302] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  491.485464][T15307] usb usb8: usbfs: process 15307 (syz.4.4510) did not claim interface 4 before use
[  491.589529][T15302] EXT4-fs error (device loop6): ext4_orphan_get:1431: comm syz.6.4507: bad orphan inode 131083
[  491.617767][T15280] loop2: detected capacity change from 0 to 32768
[  491.684584][T15317] netlink: 'syz.3.4512': attribute type 3 has an invalid length.
[  491.691918][T15302] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  491.905967][T14104] EXT4-fs (loop6): unmounting filesystem.
[  491.957687][ T4334] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  493.176681][T15360] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4528'.
[  493.678458][T15374] loop0: detected capacity change from 0 to 16
[  493.731473][T15374] erofs: (device loop0): mounted with root inode @ nid 36.
[  493.790393][T15374] erofs: (device loop0): init_inode_xattrs: xattr_isize 12 of nid 46 is not supported yet
[  493.855441][T15380] fuse: Bad value for 'fd'
[  493.986167][T14352] kernel write not supported for file /snd/seq (pid: 14352 comm: kworker/1:20)
[  494.025180][T15348] loop4: detected capacity change from 0 to 32768
[  494.975180][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[  495.178134][ T4334] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  495.326489][T15421] loop2: detected capacity change from 0 to 512
[  495.488997][T15421] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  495.506994][T15421] ext4 filesystem being mounted at /897/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  495.611595][T15395] loop0: detected capacity change from 0 to 32768
[  495.694958][T15421] EXT4-fs error (device loop2): ext4_empty_dir:3139: inode #12: comm syz.2.4549: Directory hole found for htree leaf block 0
[  495.800122][T15395] XFS (loop0): Mounting V5 Filesystem
[  495.816387][T15421] EXT4-fs (loop2): Remounting filesystem read-only
[  496.034313][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  496.056331][T15395] XFS (loop0): Ending clean mount
[  496.162973][T15451] loop4: detected capacity change from 0 to 64
[  496.214170][T15453] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4556'.
[  496.231103][T15451] MINIX-fs: mounting file system with errors, running fsck is recommended
[  496.255979][ T4272] XFS (loop0): Unmounting Filesystem
[  496.821691][T15434] loop3: detected capacity change from 0 to 32768
[  497.139890][T15470] Bluetooth: MGMT ver 1.22
[  497.191643][ T6166] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  497.386974][ T6166] usb 5-1: Using ep0 maxpacket: 16
[  497.394547][ T6166] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  497.435145][ T6166] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  497.455385][ T6166] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  497.515975][ T6166] usb 5-1: New USB device found, idVendor=045e, idProduct=fc40, bcdDevice=72.a8
[  497.556366][ T6166] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  497.659826][ T6166] usb 5-1: config 0 descriptor??
[  497.722579][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  497.836448][T15463] loop6: detected capacity change from 0 to 32768
[  497.879874][T15482] loop3: detected capacity change from 0 to 512
[  497.928428][T15482] EXT4-fs: Ignoring removed bh option
[  497.961911][T15482] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  497.993556][T15463] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  498.032808][T15463] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  498.043464][T15482] EXT4-fs (loop3): 1 truncate cleaned up
[  498.074121][T15482] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  498.101198][ T6166] hid-generic 0003:045E:FC40.001E: hidraw0: USB HID v0.00 Device [HID 045e:fc40] on usb-dummy_hcd.4-1/input0
[  498.136631][T15463] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  498.188327][T13922] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  498.197762][T13922] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  498.265044][T13922] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 67ms
[  498.283797][T13922] gfs2: fsid=syz:syz.0: jid=0: Done
[  498.298426][T14048] usb 5-1: USB disconnect, device number 22
[  498.311024][T15463] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  498.431230][ T4271] EXT4-fs (loop3): unmounting filesystem.
[  498.545863][T15488] fido_id[15488]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  499.310870][T15512] loop3: detected capacity change from 0 to 2048
[  499.409499][T15512] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  499.442605][T15512] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  499.491990][T15512] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  499.507931][   T27] kauditd_printk_skb: 12 callbacks suppressed
[  499.507949][   T27] audit: type=1326 audit(1778243394.606:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.6.4587" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ffc0000
[  499.522381][T15512] UDF-fs: Scanning with blocksize 512 failed
[  499.627077][   T27] audit: type=1326 audit(1778243394.606:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.6.4587" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fb068b9cdd9 code=0x7ffc0000
[  499.687014][T15522] loop0: detected capacity change from 0 to 512
[  499.704226][T15522] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  499.731029][T15512] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  499.741509][   T27] audit: type=1326 audit(1778243394.606:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.6.4587" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ffc0000
[  499.778733][T15522] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  499.817422][T15528] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  499.844406][T15522] EXT4-fs (loop0): 1 truncate cleaned up
[  499.877034][   T27] audit: type=1326 audit(1778243394.606:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.6.4587" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ffc0000
[  499.901346][    C1] vkms_vblank_simulate: vblank timer overrun
[  499.908061][   T27] audit: type=1326 audit(1778243394.606:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.6.4587" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fb068b9cdd9 code=0x7ffc0000
[  499.932745][    C1] vkms_vblank_simulate: vblank timer overrun
[  499.939121][   T27] audit: type=1326 audit(1778243394.606:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.6.4587" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ffc0000
[  499.942245][T15522] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  499.964066][    C1] vkms_vblank_simulate: vblank timer overrun
[  499.976901][   T27] audit: type=1326 audit(1778243394.676:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.6.4587" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ffc0000
[  500.334448][T15522] EXT4-fs warning (device loop0): verify_group_input:151: Cannot add at group 4294966271 (only 1 groups)
[  500.359974][T15540] vivid-004: disconnect
[  500.378622][T15539] vivid-004: reconnect
[  500.466393][ T4272] EXT4-fs (loop0): unmounting filesystem.
[  500.874232][T15556] loop6: detected capacity change from 0 to 512
[  500.917525][   T46] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  501.040191][T15556] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.4604: invalid indirect mapped block 256 (level 2)
[  501.146684][T15556] EXT4-fs (loop6): Remounting filesystem read-only
[  501.239926][T15556] EXT4-fs (loop6): 2 truncates cleaned up
[  501.245978][T15556] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  501.343149][T15556] EXT4-fs warning (device loop6): ext4_resize_begin:84: There are errors in the filesystem, so online resizing is not allowed
[  501.503481][T15571] loop2: detected capacity change from 0 to 64
[  501.518128][T14104] EXT4-fs (loop6): unmounting filesystem.
[  501.562365][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  501.568849][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  501.756541][ T4273] hfs: node 4:3 still has 1 user(s)!
[  502.907142][T15602] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4626'.
[  502.946656][T15602] sch_fq: defrate 4294967295 ignored.
[  503.243094][T15588] loop0: detected capacity change from 0 to 32768
[  503.362736][T15588] XFS (loop0): Mounting V5 Filesystem
[  503.383726][T15594] loop3: detected capacity change from 0 to 32768
[  503.478093][   T46] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  503.529107][T15588] XFS (loop0): Ending clean mount
[  503.559495][T15594] XFS (loop3): Mounting V5 Filesystem
[  503.688341][T15598] loop6: detected capacity change from 0 to 32768
[  503.743202][ T4272] XFS (loop0): Unmounting Filesystem
[  503.939292][T15594] XFS (loop3): Ending clean mount
[  504.178586][ T4271] XFS (loop3): Unmounting Filesystem
[  504.356920][   T48] Bluetooth: hci0: command 0x0411 tx timeout
[  504.391913][T15612] loop2: detected capacity change from 0 to 32768
[  504.523528][T15612] JBD2: Ignoring recovery information on journal
[  504.637064][T15612] jbd2_journal_bmap: journal block not found at offset 32 on loop2-75
[  504.666915][T15612] JBD2: bad block at offset 32
[  504.744198][T15612] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  504.983175][ T4273] ocfs2: Unmounting device (7,2) on (node local)
[  505.651905][T15626] loop6: detected capacity change from 0 to 32768
[  505.835905][T15626] XFS (loop6): Mounting V5 Filesystem
[  505.897083][ T6161] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  505.928131][T15652] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4638'.
[  506.022397][T15626] XFS (loop6): Ending clean mount
[  506.089543][ T6161] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  506.127094][ T6161] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  506.171384][T15661] usb usb8: usbfs: process 15661 (syz.3.4642) did not claim interface 5 before use
[  506.173655][ T6161] usb 5-1: config 0 descriptor??
[  506.223536][ T6161] cp210x 5-1:0.0: cp210x converter detected
[  506.241093][T14104] XFS (loop6): Unmounting Filesystem
[  506.519235][T15655] loop2: detected capacity change from 0 to 32768
[  506.562745][T15655] ea_get: extended attribute size too large: 2617245744 > INT_MAX
[  506.678524][ T4298] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  506.802474][T15670] comedi comedi3: pcmda12: I/O port conflict (0x100,16)
[  506.853179][ T6161] cp210x 5-1:0.0: failed to get vendor val 0x000e size 678: -71
[  506.870263][ T6161] cp210x 5-1:0.0: GPIO initialisation failed: -71
[  506.909042][ T6161] usb 5-1: cp210x converter now attached to ttyUSB0
[  506.947502][ T6161] usb 5-1: USB disconnect, device number 23
[  506.972084][ T6161] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  507.026255][ T6161] cp210x 5-1:0.0: device disconnected
[  507.126551][T15676] loop3: detected capacity change from 0 to 1024
[  507.507037][ T4277] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  507.708786][ T4277] usb 7-1: config 0 has an invalid interface number: 250 but max is 0
[  507.708816][ T4277] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  507.708839][ T4277] usb 7-1: config 0 has no interface number 0
[  507.708877][ T4277] usb 7-1: New USB device found, idVendor=0cf3, idProduct=1002, bcdDevice=4f.2c
[  507.708903][ T4277] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  507.710897][ T4277] usb 7-1: config 0 descriptor??
[  507.763417][T15694] loop4: detected capacity change from 0 to 256
[  507.778989][T15694] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  507.920024][ T4277] usb 7-1: string descriptor 0 read error: -71
[  508.046353][T15698] loop4: detected capacity change from 0 to 64
[  508.507362][T15708] loop4: detected capacity change from 0 to 512
[  508.511611][T15679] loop0: detected capacity change from 0 to 32768
[  508.571558][T15679] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  508.587118][T15679] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  508.609053][ T4277] usb 7-1: reset high-speed USB device number 4 using dummy_hcd
[  508.665861][T15708] EXT4-fs (loop4): 1 orphan inode deleted
[  508.679658][T15708] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  508.697284][ T4334] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  508.729074][T15679] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  508.758370][T15708] ext4 filesystem being mounted at /942/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  508.775074][T13913] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  508.782283][ T4334] EXT4-fs error (device loop4): ext4_release_dquot:6877: comm kworker/u4:7: Failed to release dquot type 1
[  508.794542][T13913] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  508.883661][T15719] loop3: detected capacity change from 0 to 256
[  508.910774][T13913] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 116ms
[  508.930904][T15719] FAT-fs (loop3): bogus logical sector size 58182
[  508.947075][T13913] gfs2: fsid=syz:syz.0: jid=0: Done
[  508.949145][T15719] FAT-fs (loop3): Can't find a valid FAT filesystem
[  508.973823][T15721] loop2: detected capacity change from 0 to 256
[  508.974595][T15679] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  509.042935][T15721] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  509.129349][T13913] usb 7-1: USB disconnect, device number 4
[  509.174913][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  509.253742][ T4298] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  509.515034][T15728] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  509.533721][T15728] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  509.543888][T15728] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  509.564429][T15728] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  509.592651][T15728] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  509.637052][T15728] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  509.643832][T15728] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  509.688259][T15728] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  509.767895][T15728] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  509.770804][T15729] loop0: detected capacity change from 0 to 4096
[  509.774433][T15728] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  509.820698][T15729] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  509.890663][T15728] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  509.916429][T15728] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  510.014136][   T27] audit: type=1800 audit(1778243405.106:163): pid=15729 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.4673" name="file1" dev="loop0" ino=30 res=0 errno=0
[  510.154012][ T4272] ntfs3: loop0: ntfs_evict_inode r=3 failed, -22.
[  510.173706][ T4272] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  510.192300][ T4272] ntfs3: loop0: ntfs_set_state r=3 failed, -22.
[  510.262681][T15723] loop3: detected capacity change from 0 to 32768
[  510.493101][   T27] audit: type=1326 audit(1778243405.586:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15750 comm="syz.4.4682" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f269e99cdd9 code=0x0
[  510.493893][T15723] XFS (loop3): Mounting V5 filesystem in no-recovery mode. Filesystem will be inconsistent.
[  510.680314][ T4271] XFS (loop3): Unmounting Filesystem
[  511.546404][T15776] netlink: 79 bytes leftover after parsing attributes in process `syz.4.4692'.
[  511.715192][T15781] loop0: detected capacity change from 0 to 16
[  511.757276][T15781] erofs: (device loop0): mounted with root inode @ nid 36.
[  512.137569][T15794] netlink: 68 bytes leftover after parsing attributes in process `syz.2.4700'.
[  512.290175][T15796] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4701'.
[  512.463305][ T5642] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  512.910349][T15817] loop4: detected capacity change from 0 to 256
[  512.993425][T15817] FAT-fs (loop4): Directory bread(block 64) failed
[  513.031502][T15817] FAT-fs (loop4): Directory bread(block 65) failed
[  513.051866][T15817] FAT-fs (loop4): Directory bread(block 66) failed
[  513.068204][T15817] FAT-fs (loop4): Directory bread(block 67) failed
[  513.082925][T15817] FAT-fs (loop4): Directory bread(block 68) failed
[  513.097804][T15817] FAT-fs (loop4): Directory bread(block 69) failed
[  513.111456][T15817] FAT-fs (loop4): Directory bread(block 70) failed
[  513.131117][T15817] FAT-fs (loop4): Directory bread(block 71) failed
[  513.144708][T15817] FAT-fs (loop4): Directory bread(block 72) failed
[  513.159332][T15817] FAT-fs (loop4): Directory bread(block 73) failed
[  513.214413][T15821] loop6: detected capacity change from 0 to 4096
[  513.261895][T15821] ntfs3: loop6: Different NTFS' sector size (1024) and media sector size (512)
[  513.297076][ T6166] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  513.343788][T15821] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  513.429645][T15821] ntfs3: loop6: ino=0, attr_set_size
[  513.479625][T15821] ntfs3: loop6: ino=0, attr_set_size
[  513.494894][T15827] netlink: 'syz.0.4716': attribute type 15 has an invalid length.
[  513.506992][ T6166] usb 4-1: Using ep0 maxpacket: 8
[  513.514401][ T6166] usb 4-1: config 2 has an invalid interface number: 31 but max is 0
[  513.534211][T15827] netlink: 16126 bytes leftover after parsing attributes in process `syz.0.4716'.
[  513.552191][ T6166] usb 4-1: config 2 has no interface number 0
[  513.580743][ T6166] usb 4-1: config 2 interface 31 has no altsetting 0
[  513.622790][ T6166] usb 4-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[  513.637093][ T6166] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  513.645151][ T6166] usb 4-1: Product: syz
[  513.704054][ T6166] usb 4-1: Manufacturer: syz
[  513.724264][ T6166] usb 4-1: SerialNumber: syz
[  513.764827][   T27] audit: type=1400 audit(513.758:165): apparmor="DENIED" operation="change_profile" info="label not found" error=-2 profile="unconfined" name="://&P" pid=15830 comm="syz.6.4718"
[  514.395603][ T6166] ch9200: probe of 4-1:2.31 failed with error -22
[  514.410496][T15845] nftables ruleset with unbound set
[  514.416306][ T6166] usb 4-1: USB disconnect, device number 26
[  514.454658][ T5642] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  514.650443][T15837] loop4: detected capacity change from 0 to 32768
[  514.762175][T15837] XFS (loop4): Mounting V5 Filesystem
[  514.838209][T15837] XFS (loop4): Ending clean mount
[  514.901001][T15843] loop0: detected capacity change from 0 to 32768
[  515.001876][T15843] JBD2: Ignoring recovery information on journal
[  515.030414][ T4280] XFS (loop4): Unmounting Filesystem
[  515.054704][T15843] jbd2_journal_bmap: journal block not found at offset 32 on loop0-75
[  515.064088][T15843] JBD2: bad block at offset 32
[  515.147679][T15843] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  515.459716][ T4272] ocfs2: Unmounting device (7,0) on (node local)
[  515.878737][T15888] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  515.950873][T15887] loop2: detected capacity change from 0 to 1024
[  516.387663][T15898] loop2: detected capacity change from 0 to 512
[  516.454538][T15904] loop3: detected capacity change from 0 to 8
[  516.543847][T15898] EXT4-fs (loop2): 1 orphan inode deleted
[  516.556950][T15898] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  516.594658][   T56] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  516.644642][   T56] EXT4-fs error (device loop2): ext4_release_dquot:6877: comm kworker/u4:4: Failed to release dquot type 1
[  516.657208][T15904] unable to read id index table
[  516.762413][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  516.964046][T15914] netlink: 80 bytes leftover after parsing attributes in process `syz.3.4751'.
[  517.667411][   T56] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  517.685366][T15899] loop6: detected capacity change from 0 to 40427
[  517.712454][T15899] F2FS-fs (loop6): invalid crc value
[  517.747639][T15899] F2FS-fs (loop6): Found nat_bits in checkpoint
[  517.823828][T15942] loop3: detected capacity change from 0 to 8
[  517.840652][T15899] F2FS-fs (loop6): Start checkpoint disabled!
[  517.856126][T15942] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  517.872630][T15899] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  517.918660][ T4429] udevd[4429]: incorrect cramfs checksum on /dev/loop3
[  517.996201][ T4429] udevd[4429]: incorrect cramfs checksum on /dev/loop3
[  518.008898][T15945] loop4: detected capacity change from 0 to 1024
[  518.047947][T15945] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  518.123919][T15945] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  leaving read-only.
[  518.345888][T15949] loop3: detected capacity change from 0 to 1024
[  518.395683][T15951] netlink: 80 bytes leftover after parsing attributes in process `syz.2.4767'.
[  518.418836][   T56] kworker/u4:4: attempt to access beyond end of device
[  518.418836][   T56] loop6: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  518.462069][T15953] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4770'.
[  518.494157][T15949] smb3: Unexpected value for 'rdma'
[  518.835580][T15955] loop2: detected capacity change from 0 to 4096
[  518.867439][T15955] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512)
[  518.948323][T15955] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  519.025494][T15955] ntfs3: loop2: ino=0, attr_set_size
[  519.047597][T15955] ntfs3: loop2: ino=0, attr_set_size
[  519.092417][ T4277] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  519.288760][ T4277] usb 4-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  519.308983][ T4277] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  519.341345][T15972] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4778'.
[  519.352346][ T4277] usb 4-1: config 0 descriptor??
[  519.364142][ T4277] gspca_main: cpia1-2.14.0 probing 0813:0001
[  519.509166][T13913] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  519.723678][T13913] usb 1-1: config 0 has an invalid interface number: 250 but max is 0
[  519.749894][T13913] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  519.774850][ T4277] gspca_cpia1: usb_control_msg 03, error -32
[  519.785328][ T4277] gspca_cpia1: usb_control_msg 03, error -71
[  519.797608][T13913] usb 1-1: config 0 has no interface number 0
[  519.804395][ T4277] gspca_cpia1: usb_control_msg 01, error -71
[  519.820690][ T4277] cpia1 4-1:0.0: only firmware version 1 is supported (got: 0)
[  519.830248][T13913] usb 1-1: New USB device found, idVendor=0cf3, idProduct=1002, bcdDevice=4f.2c
[  519.850566][ T4277] usb 4-1: USB disconnect, device number 27
[  519.867000][T13913] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  519.907902][T13913] usb 1-1: config 0 descriptor??
[  520.044950][T15984] loop2: detected capacity change from 0 to 4096
[  520.118468][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  520.145609][T13913] usb 1-1: string descriptor 0 read error: -71
[  520.165553][T15987] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  520.772915][T15980] loop6: detected capacity change from 0 to 32768
[  520.809694][T15999] loop2: detected capacity change from 0 to 2048
[  520.826899][T13913] usb 1-1: reset high-speed USB device number 25 using dummy_hcd
[  520.902280][T15980] XFS (loop6): Mounting V5 filesystem in no-recovery mode. Filesystem will be inconsistent.
[  521.014300][T16007] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  521.201694][T14104] XFS (loop6): Unmounting Filesystem
[  521.296421][T13913] usb 1-1: USB disconnect, device number 25
[  521.482365][T16007] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  521.530484][T16007] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4)
[  521.593618][T16007] Remounting filesystem read-only
[  521.615253][ T4273] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  521.648847][T16012] loop4: detected capacity change from 0 to 32768
[  521.709593][T16012] JBD2: Ignoring recovery information on journal
[  521.784774][T16012] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  522.020632][T15998] loop3: detected capacity change from 0 to 32768
[  522.054507][ T4280] ocfs2: Unmounting device (7,4) on (node local)
[  522.128859][T15998] ea_get: extended attribute size too large: 2617245744 > INT_MAX
[  522.691785][T16033] loop4: detected capacity change from 0 to 4096
[  523.092789][T14048] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  523.302852][T14048] usb 4-1: config 0 has an invalid interface number: 50 but max is 0
[  523.317571][   T33] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  523.334015][T16049] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4809'.
[  523.344320][T14048] usb 4-1: config 0 has no interface number 0
[  523.362949][T14048] usb 4-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  523.407799][T14048] usb 4-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  523.446946][T14048] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  523.471122][T14048] usb 4-1: Product: syz
[  523.496394][T14048] usb 4-1: Manufacturer: syz
[  523.501436][T14048] usb 4-1: SerialNumber: syz
[  523.528624][T14048] usb 4-1: config 0 descriptor??
[  523.560719][T14048] yurex 4-1:0.50: USB YUREX device now attached to Yurex #0
[  523.800631][ T4277] usb 4-1: USB disconnect, device number 28
[  523.831535][ T4277] yurex 4-1:0.50: USB YUREX #0 now disconnected
[  523.861479][T16030] loop6: detected capacity change from 0 to 40427
[  523.902698][T16030] F2FS-fs (loop6): build fault injection attr: rate: 771, type: 0x3ffff
[  523.939470][T16030] F2FS-fs (loop6): invalid crc value
[  523.986146][T16030] F2FS-fs (loop6): Found nat_bits in checkpoint
[  524.153956][T16030] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  524.467244][T16078] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4823'.
[  524.545741][T16082] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4824'.
[  524.826088][T16089] rdma_op ffff88805594b1f0 conn xmit_rdma 0000000000000000
[  525.043815][T16095] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  525.093064][T16100] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4831'.
[  525.130615][T16100] nbd: illegal input index -28
[  525.389737][T16108] loop3: detected capacity change from 0 to 1024
[  525.584838][   T46] hfsplus: b-tree write err: -5, ino 25
[  525.593760][   T46] hfsplus: b-tree write err: -5, ino 4
[  525.599439][   T46] hfsplus: b-tree write err: -5, ino 2
[  525.877524][   T33] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  526.169725][T16098] loop6: detected capacity change from 0 to 32768
[  526.224072][T16098] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop6 scanned by syz.6.4830 (16098)
[  526.285539][T16098] BTRFS info (device loop6): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  526.337106][T16098] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  526.373049][T16098] BTRFS info (device loop6): using free space tree
[  526.737037][T16098] BTRFS info (device loop6): enabling ssd optimizations
[  526.804738][T16121] loop3: detected capacity change from 0 to 32768
[  526.912859][T16121] XFS (loop3): Mounting V5 Filesystem
[  526.944086][T14104] BTRFS info (device loop6): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  527.102728][T16121] XFS (loop3): Ending clean mount
[  527.124733][T16116] loop4: detected capacity change from 0 to 32768
[  527.148160][T16121] XFS (loop3): Quotacheck needed: Please wait.
[  527.443721][T16116] XFS (loop4): Mounting V5 Filesystem
[  527.522755][T16121] XFS (loop3): Quotacheck: Done.
[  527.530771][T16128] loop2: detected capacity change from 0 to 32768
[  527.619689][T16116] XFS (loop4): Ending clean mount
[  527.650537][   T27] audit: type=1800 audit(527.648:166): pid=16116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4839" name="file1" dev="loop4" ino=6150 res=0 errno=0
[  527.743178][T16128] JBD2: Ignoring recovery information on journal
[  527.940823][T16128] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  527.950668][ T4280] XFS (loop4): Unmounting Filesystem
[  527.983594][ T4271] XFS (loop3): Unmounting Filesystem
[  528.057197][ T6161] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  528.119189][T16181] program syz.6.4853 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  528.207663][ T4273] ocfs2: Unmounting device (7,2) on (node local)
[  528.261326][ T6161] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  528.297528][ T6161] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  528.315812][   T27] audit: type=1326 audit(528.308:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  528.352990][ T6161] usb 1-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00
[  528.373599][ T6161] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  528.391414][   T27] audit: type=1326 audit(528.308:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  528.425216][ T6161] usb 1-1: config 0 descriptor??
[  528.443722][   T27] audit: type=1326 audit(528.308:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  528.491608][   T27] audit: type=1326 audit(528.308:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  528.521667][   T27] audit: type=1326 audit(528.308:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  528.565208][   T27] audit: type=1326 audit(528.308:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  528.598600][   T27] audit: type=1326 audit(528.308:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  528.667892][T16187] loop2: detected capacity change from 0 to 2048
[  528.691601][T16187] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  528.712849][   T27] audit: type=1326 audit(528.308:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  528.724361][T16187] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  528.739143][   T27] audit: type=1326 audit(528.308:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16182 comm="syz.6.4856" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb068b9cdd9 code=0x7ff00000
[  529.049411][ T6161] razer 0003:1532:010E.001F: failed to enable macro keys: -71
[  529.073180][ T6161] razer 0003:1532:010E.001F: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.0-1/input0
[  529.085158][   T46] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  529.131594][ T6161] usb 1-1: USB disconnect, device number 26
[  529.150500][T16196] sp0: Synchronizing with TNC
[  529.201416][T16193] [U] è
[  529.454241][T16200] fido_id[16200]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  529.804297][T16212] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4854'.
[  530.059858][T16220] loop3: detected capacity change from 0 to 64
[  530.576003][T13917] kernel write not supported for file /input/event0 (pid: 13917 comm: kworker/1:12)
[  530.716213][T16238] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4879'.
[  530.849927][T16214] loop0: detected capacity change from 0 to 32768
[  530.917609][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  530.985781][T16214] JBD2: Ignoring recovery information on journal
[  531.136723][T16249] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  531.184065][T16214] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  531.483778][ T4272] ocfs2: Unmounting device (7,0) on (node local)
[  531.680024][T16267] loop2: detected capacity change from 0 to 256
[  531.767434][T16267] FAT-fs (loop2): Directory bread(block 64) failed
[  531.774141][T16267] FAT-fs (loop2): Directory bread(block 65) failed
[  531.829249][T16267] FAT-fs (loop2): Directory bread(block 66) failed
[  531.846358][T16267] FAT-fs (loop2): Directory bread(block 67) failed
[  531.873797][T16267] FAT-fs (loop2): Directory bread(block 68) failed
[  531.893435][T16265] loop4: detected capacity change from 0 to 8192
[  531.906613][T16267] FAT-fs (loop2): Directory bread(block 69) failed
[  531.936583][T16267] FAT-fs (loop2): Directory bread(block 70) failed
[  531.961226][T16267] FAT-fs (loop2): Directory bread(block 71) failed
[  531.989348][T16267] FAT-fs (loop2): Directory bread(block 72) failed
[  532.017949][T16267] FAT-fs (loop2): Directory bread(block 73) failed
[  532.561378][T16260] loop6: detected capacity change from 0 to 32768
[  532.625203][T16260] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop6 scanned by syz.6.4888 (16260)
[  532.656975][T14048] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  532.711616][T16260] BTRFS info (device loop6): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  532.767915][T16260] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  532.785996][T16280] loop0: detected capacity change from 0 to 8192
[  532.792971][T16260] BTRFS info (device loop6): using free space tree
[  532.820841][T16280] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  532.847338][T14048] usb 4-1: Using ep0 maxpacket: 8
[  532.854959][T14048] usb 4-1: config index 0 descriptor too short (expected 30, got 18)
[  532.866544][T14048] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  532.877178][T14048] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  532.885285][T14048] usb 4-1: Product: syz
[  532.890209][T14048] usb 4-1: Manufacturer: syz
[  532.894884][T14048] usb 4-1: SerialNumber: syz
[  532.902285][T14048] usb 4-1: config 0 descriptor??
[  532.911122][T14048] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  532.919720][T14048] usb 4-1: setting power ON
[  532.925043][T14048] dvb-usb: bulk message failed: -22 (2/0)
[  532.935693][T14048] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  532.946470][T14048] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  532.955331][T14048] usb 4-1: media controller created
[  532.965664][T16280] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[  532.983471][T14048] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  533.000280][T16280] REISERFS (device loop0): using ordered data mode
[  533.020267][T16280] reiserfs: using flush barriers
[  533.026010][T14048] usb 4-1: selecting invalid altsetting 6
[  533.033221][T14048] usb 4-1: digital interface selection failed (-22)
[  533.040081][T14048] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  533.056136][T14048] usb 4-1: setting power OFF
[  533.062763][T14048] dvb-usb: bulk message failed: -22 (2/0)
[  533.063596][T16280] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  533.073970][T14048] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  533.104397][T16280] REISERFS (device loop0): checking transaction log (loop0)
[  533.187104][T14048] (NULL device *): no alternate interface
[  533.264355][T14048] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  533.265603][T16260] BTRFS info (device loop6): enabling ssd optimizations
[  533.275496][T14048] usb 4-1: USB disconnect, device number 29
[  533.349035][T16280] REISERFS (device loop0): Using r5 hash to sort names
[  533.359789][T16280] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  533.443776][T16309] loop2: detected capacity change from 0 to 512
[  533.484184][T16309] EXT4-fs: Ignoring removed oldalloc option
[  533.550410][T16309] EXT4-fs (loop2): Test dummy encryption mode enabled
[  533.679791][T16309] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  533.744094][T16309] EXT4-fs warning (device loop2): verify_group_input:169: Last group not full
[  533.818250][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  533.865968][T14104] BTRFS info (device loop6): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  533.981265][T16316] device bridge0 entered promiscuous mode
[  534.109106][T16316] device macsec2 entered promiscuous mode
[  534.129069][T16320] loop3: detected capacity change from 0 to 256
[  534.176962][ T4429] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 10 /dev/loop6 scanned by udevd (4429)
[  534.276785][T16320] FAT-fs (loop3): Directory bread(block 64) failed
[  534.348756][T16320] FAT-fs (loop3): Directory bread(block 65) failed
[  534.383937][T16320] FAT-fs (loop3): Directory bread(block 66) failed
[  534.427159][T16320] FAT-fs (loop3): Directory bread(block 67) failed
[  534.462616][T16320] FAT-fs (loop3): Directory bread(block 68) failed
[  534.481500][T16320] FAT-fs (loop3): Directory bread(block 69) failed
[  534.497183][T16320] FAT-fs (loop3): Directory bread(block 70) failed
[  534.537669][T16320] FAT-fs (loop3): Directory bread(block 71) failed
[  534.552477][T16320] FAT-fs (loop3): Directory bread(block 72) failed
[  534.570221][T16320] FAT-fs (loop3): Directory bread(block 73) failed
[  534.847305][   T33] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  535.769899][T16367] loop2: detected capacity change from 0 to 1024
[  536.442395][T16384] loop4: detected capacity change from 0 to 512
[  536.510517][T16384] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  536.593430][T16384] EXT4-fs (loop4): 1 truncate cleaned up
[  536.637145][T16384] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  536.661095][T16371] loop3: detected capacity change from 0 to 32768
[  536.722340][T16384] EXT4-fs error (device loop4): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.4.4939: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  536.757445][   T56] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  536.803182][T16384] EXT4-fs (loop4): Remounting filesystem read-only
[  536.835286][T16384] EXT4-fs error (device loop4) in ext4_delete_entry:2800: Corrupt filesystem
[  536.896640][T16384] EXT4-fs (loop4): Remounting filesystem read-only
[  536.950173][T16392] loop2: detected capacity change from 0 to 512
[  536.978669][T16396] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0
[  536.997750][T16392] EXT4-fs: Ignoring removed oldalloc option
[  537.040697][T16392] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  537.105656][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  537.114046][T16392] EXT4-fs (loop2): 1 truncate cleaned up
[  537.167832][T16373] loop6: detected capacity change from 0 to 32768
[  537.176080][T16392] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  537.263720][T16373] XFS (loop6): Mounting V5 Filesystem
[  537.461098][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  537.488525][T16403] loop0: detected capacity change from 0 to 4096
[  537.510525][T16373] XFS (loop6): Ending clean mount
[  537.562468][T16403] __ntfs_error: 88 callbacks suppressed
[  537.562490][T16403] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  537.601726][T16373] XFS (loop6): Quotacheck needed: Please wait.
[  537.661337][T16403] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  537.751011][T16403] ntfs: (device loop0): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  537.756704][T16412] loop4: detected capacity change from 0 to 8192
[  537.802307][T16373] XFS (loop6): Quotacheck: Done.
[  537.835449][T16403] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  537.863837][T16416] loop3: detected capacity change from 0 to 1024
[  537.876212][T16403] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  537.895136][T16412] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  537.987879][T16403] ntfs: volume version 3.1.
[  537.994786][T16412] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[  538.005482][T14104] XFS (loop6): Unmounting Filesystem
[  538.073225][T16403] ntfs: (device loop0): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  538.077139][T16412] REISERFS (device loop4): using ordered data mode
[  538.113772][T16403] ntfs: (device loop0): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  538.187093][T16412] reiserfs: using flush barriers
[  538.193821][T16403] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  538.206159][T16412] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  538.254880][T16403] ntfs: (device loop0): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  538.296126][T16412] REISERFS (device loop4): checking transaction log (loop4)
[  538.311902][T16403] ntfs: (device loop0): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  538.358881][T16412] REISERFS (device loop4): Using r5 hash to sort names
[  538.366211][T16412] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  539.194311][T16434] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4965'.
[  539.205653][T16414] loop2: detected capacity change from 0 to 32768
[  539.227427][T16433] tipc: Cannot configure node identity twice
[  539.313758][T16436] loop6: detected capacity change from 0 to 1024
[  539.371132][T16414] XFS (loop2): Mounting V5 Filesystem
[  539.652616][T16414] XFS (loop2): Ending clean mount
[  539.769024][T16456] loop0: detected capacity change from 0 to 1024
[  539.968869][T16414] syz.2.4957 (16414) used greatest stack depth: 20336 bytes left
[  540.007051][ T4273] XFS (loop2): Unmounting Filesystem
[  540.026932][T16463] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4966'.
[  540.141203][T16467] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing
[  540.388583][T16469] exfat: Deprecated parameter 'utf8'
[  540.438895][T16469] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  540.605969][ T5642] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  540.923212][T16481] netlink: 168 bytes leftover after parsing attributes in process `syz.0.4976'.
[  541.564035][T16473] set_capacity_and_notify: 4 callbacks suppressed
[  541.564054][T16473] loop6: detected capacity change from 0 to 32768
[  541.836590][T16473] XFS (loop6): Mounting V5 Filesystem
[  541.878718][   T33] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  542.067800][T16473] XFS (loop6): Ending clean mount
[  542.068887][T16522] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4990'.
[  542.093280][T16473] XFS (loop6): Quotacheck needed: Please wait.
[  542.123956][T16505] loop2: detected capacity change from 0 to 8192
[  542.214229][T16505] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  542.228143][T16473] XFS (loop6): Quotacheck: Done.
[  542.290885][T16505] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  542.312769][T16505] REISERFS (device loop2): using ordered data mode
[  542.333323][T16528] loop4: detected capacity change from 0 to 64
[  542.340988][T16505] reiserfs: using flush barriers
[  542.376050][T14104] XFS (loop6): Unmounting Filesystem
[  542.380967][T16505] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  542.445607][T16505] REISERFS (device loop2): checking transaction log (loop2)
[  542.475976][T16505] REISERFS (device loop2): Using rupasov hash to sort names
[  542.493943][T16505] REISERFS (device loop2): using 3.5.x disk format
[  542.511544][T16505] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  542.544192][T16505] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  542.565121][T16505] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  542.584730][T16505] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2)
[  542.611275][T16505] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  542.976387][T16536] netlink: 'syz.2.4997': attribute type 153 has an invalid length.
[  543.178648][T16543] loop2: detected capacity change from 0 to 16
[  543.213741][T16543] erofs: (device loop2): mounted with root inode @ nid 36.
[  543.242385][T16543] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  543.269352][T16545] comedi comedi3: bad chanlist[0]=0x00000004 chan=4 range length=1
[  543.281828][T16543] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851]
[  543.322572][T16543] erofs: (device loop2): z_erofs_read_folio: failed to read, err [-117]
[  544.263343][T16567] device macsec0 entered promiscuous mode
[  545.294587][T16604] device gretap0 entered promiscuous mode
[  545.347220][T16604] device vlan3 entered promiscuous mode
[  545.684613][T16618] loop2: detected capacity change from 0 to 512
[  545.706994][ T4277] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  545.717795][   T56] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  545.877289][ T6161] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[  545.926983][ T4277] usb 4-1: Using ep0 maxpacket: 8
[  545.934654][ T4277] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[  545.956035][ T4277] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  545.966736][T16621] loop6: detected capacity change from 0 to 4096
[  545.973309][ T4277] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  545.994509][ T4277] usb 4-1: Product: syz
[  546.008416][ T4277] usb 4-1: Manufacturer: syz
[  546.017197][ T4277] usb 4-1: SerialNumber: syz
[  546.025414][T16621] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  546.089439][ T6161] usb 5-1: unable to get BOS descriptor or descriptor too short
[  546.124987][ T6161] usb 5-1: not running at top speed; connect to a high speed hub
[  546.207736][ T6161] usb 5-1: config 3 has an invalid interface number: 155 but max is 0
[  546.249538][ T6161] usb 5-1: config 3 has no interface number 0
[  546.256559][ T6161] usb 5-1: config 3 interface 155 altsetting 15 endpoint 0x4 has invalid maxpacket 512, setting to 64
[  546.257916][ T4277] usb 4-1: Handspring Visor / Palm OS: No valid connect info available
[  546.272664][ T6161] usb 5-1: config 3 interface 155 altsetting 15 endpoint 0x87 has invalid maxpacket 1024, setting to 64
[  546.291200][ T4277] usb 4-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  546.303570][ T4277] usb 4-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  546.326915][ T4277] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2
[  546.334994][ T6161] usb 5-1: config 3 interface 155 has no altsetting 0
[  546.390277][ T6161] usb 5-1: New USB device found, idVendor=05ac, idProduct=022b, bcdDevice=8e.39
[  546.416190][ T6161] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  546.431233][T14104] EXT4-fs (loop6): unmounting filesystem.
[  546.445010][ T6161] usb 5-1: Product: syz
[  546.455141][ T6161] usb 5-1: Manufacturer: syz
[  546.465295][ T6161] usb 5-1: SerialNumber: syz
[  546.477369][T16614] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  546.484831][ T4277] visor 4-1:1.0: Handspring Visor / Palm OS converter detected
[  546.541928][ T4277] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  546.564052][ T4277] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  546.728626][ T6161] appletouch 5-1:3.155: Failed to read mode from device.
[  546.736044][ T6161] appletouch: probe of 5-1:3.155 failed with error -5
[  546.803895][ T6166] usb 4-1: USB disconnect, device number 30
[  546.825701][ T6166] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  546.844844][ T6161] usb 5-1: USB disconnect, device number 24
[  546.893389][ T6166] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  546.918054][ T6166] visor 4-1:1.0: device disconnected
[  547.639165][ T4298] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  547.931589][T16679] loop0: detected capacity change from 0 to 512
[  547.938375][ T6161] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  547.969825][T16679] EXT4-fs: Ignoring removed nomblk_io_submit option
[  547.997046][T16679] EXT4-fs: Ignoring removed mblk_io_submit option
[  548.093766][T16679] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  548.112572][T16679] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  548.137150][T13917] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  548.143596][T16679] EXT4-fs (loop0): 1 truncate cleaned up
[  548.153119][ T6161] usb 3-1: Using ep0 maxpacket: 16
[  548.168989][ T6161] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  548.179068][T16679] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  548.215273][T16679] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[  548.236894][ T6161] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  548.262691][ T6161] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  548.303213][T16679] EXT4-fs (loop0): Remounting filesystem read-only
[  548.326386][ T6161] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  548.348842][T13917] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[  548.356424][ T6161] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  548.371935][T13917] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  548.385955][ T6161] usb 3-1: config 0 descriptor??
[  548.404838][ T4272] EXT4-fs (loop0): unmounting filesystem.
[  548.413016][T13917] usb 7-1: config 220 has no interface number 2
[  548.429919][T13917] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  548.476862][T13917] usb 7-1: config 220 interface 0 has no altsetting 0
[  548.483740][T13917] usb 7-1: config 220 interface 76 has no altsetting 0
[  548.497050][T13917] usb 7-1: config 220 interface 1 has no altsetting 0
[  548.528397][T13917] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  548.555983][T13917] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  548.576876][T13917] usb 7-1: Product: syz
[  548.581210][T13917] usb 7-1: Manufacturer: syz
[  548.586018][T13917] usb 7-1: SerialNumber: syz
[  548.812982][ T6161] microsoft 0003:045E:07DA.0020: No inputs registered, leaving
[  548.829111][ T6161] microsoft 0003:045E:07DA.0020: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  548.837979][T13917] usb 7-1: Found UVC 7.01 device syz (8086:0b07)
[  548.842471][ T6161] microsoft 0003:045E:07DA.0020: no inputs found
[  548.873717][T13917] usb 7-1: No valid video chain found.
[  548.874397][ T6161] microsoft 0003:045E:07DA.0020: could not initialize ff, continuing anyway
[  548.896232][T13917] usb 7-1: selecting invalid altsetting 0
[  548.954457][T13917] usb 7-1: selecting invalid altsetting 0
[  548.973240][T13917] usbtest: probe of 7-1:220.1 failed with error -22
[  548.990571][T16681] loop3: detected capacity change from 0 to 40427
[  549.023183][T13917] usb 7-1: USB disconnect, device number 5
[  549.049377][T16681] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  549.059215][T16681] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  549.113024][ T6161] usb 3-1: USB disconnect, device number 26
[  549.139420][T16681] F2FS-fs (loop3): invalid crc value
[  549.195662][T16681] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  549.216218][T16698] fido_id[16698]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  549.370309][T16681] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  549.384430][T16681] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  549.482231][ T4271] syz-executor: attempt to access beyond end of device
[  549.482231][ T4271] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  549.553380][T16707] loop0: detected capacity change from 0 to 4096
[  549.605205][T16707] __ntfs_error: 5 callbacks suppressed
[  549.605226][T16707] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  549.665654][T16707] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  549.758095][T16707] ntfs: (device loop0): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  549.810349][T16707] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  549.893207][T16707] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  549.959466][T16707] ntfs: volume version 3.1.
[  549.972912][T16707] ntfs: (device loop0): ntfs_read_locked_inode(): $INDEX_ALLOCATION attribute is resident.
[  549.983994][T16720] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5079'.
[  550.002998][T16720] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5079'.
[  550.044846][T16707] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x5 as bad.  Run chkdsk.
[  550.125611][T16707] ntfs: (device loop0): load_system_files(): Failed to load root directory.
[  550.173514][T16707] ntfs: (device loop0): ntfs_fill_super(): Failed to load system files.
[  550.229518][T16722] loop4: detected capacity change from 0 to 4096
[  550.359077][T16729] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  550.429794][T16731] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5084'.
[  550.439928][T16707] net_ratelimit: 3661 callbacks suppressed
[  550.439947][T16707] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  550.632781][T16728] loop6: detected capacity change from 0 to 4096
[  550.702890][T16728] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512)
[  550.751505][T16728] ntfs3: loop6: ntfs_evict_inode r=6 failed, -22.
[  550.786881][T16728] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  550.817045][T16737] netlink: 480 bytes leftover after parsing attributes in process `syz.0.5087'.
[  551.008869][T16728] ntfs3: loop6: ino=1e, "file1" attr_set_size
[  551.478358][ T4334] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  552.099423][T16743] loop4: detected capacity change from 0 to 40427
[  552.112659][T16739] loop3: detected capacity change from 0 to 40427
[  552.129182][T16743] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  552.137167][T16743] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  552.161177][T16743] F2FS-fs (loop4): invalid crc value
[  552.180925][T16739] F2FS-fs (loop3): invalid crc value
[  552.205731][T16743] F2FS-fs (loop4): Found nat_bits in checkpoint
[  552.217761][T16739] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  552.417504][T16743] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  552.424712][T16743] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  552.497054][T16739] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  552.679460][T16780] loop0: detected capacity change from 0 to 8192
[  552.716490][T16780] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  552.804070][T16780] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[  552.870963][T16766] loop6: detected capacity change from 0 to 40427
[  552.894082][T16780] REISERFS (device loop0): using ordered data mode
[  552.902200][T16766] F2FS-fs (loop6): invalid crc value
[  552.910769][T16766] F2FS-fs (loop6): Found nat_bits in checkpoint
[  552.960421][T16780] reiserfs: using flush barriers
[  552.974182][T16780] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  553.011242][T16766] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  553.127275][T16780] REISERFS (device loop0): checking transaction log (loop0)
[  553.192648][T16780] REISERFS (device loop0): Using rupasov hash to sort names
[  553.227319][T16780] REISERFS (device loop0): using 3.5.x disk format
[  553.234394][T16780] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  553.305225][T16780] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  553.377054][T16780] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  553.397661][   T56] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  553.408818][T16780] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2)
[  553.468711][T16780] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  553.561011][T16789] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5107'.
[  553.587158][T16789] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5107'.
[  553.745821][T16778] loop2: detected capacity change from 0 to 32768
[  554.578066][T16811] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5116'.
[  555.114995][T16829] tipc: Enabling of bearer <eth:caif0> rejected, failed to enable media
[  556.210215][T16858] device bridge0 entered promiscuous mode
[  556.218637][T16858] bridge0: port 3(macvlan3) entered blocking state
[  556.234185][T16858] bridge0: port 3(macvlan3) entered disabled state
[  556.263483][T16858] device bridge0 left promiscuous mode
[  556.274192][T16863] loop6: detected capacity change from 0 to 512
[  556.310924][T16863] EXT4-fs: Ignoring removed nomblk_io_submit option
[  556.350212][T16863] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  556.409532][T16840] loop2: detected capacity change from 0 to 32768
[  556.416305][T16863] EXT4-fs (loop6): 1 truncate cleaned up
[  556.431967][T16863] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  556.499437][T14104] EXT4-fs (loop6): unmounting filesystem.
[  556.605530][T16840] XFS (loop2): Mounting V5 Filesystem
[  556.611657][ T4298] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  556.823389][T16840] XFS (loop2): Ending clean mount
[  556.860695][T16840] XFS (loop2): Quotacheck needed: Please wait.
[  556.963011][T16840] XFS (loop2): Quotacheck: Done.
[  557.216310][ T4273] XFS (loop2): Unmounting Filesystem
[  557.496462][T16889] loop0: detected capacity change from 0 to 4096
[  557.497948][T16894] loop3: detected capacity change from 0 to 2048
[  557.607312][T16894] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  557.697989][T16889] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  557.765503][T16889] ntfs3: loop0: Failed to load $Extend.
[  558.548757][T16906] loop0: detected capacity change from 0 to 4096
[  558.565062][T16908] loop3: detected capacity change from 0 to 4096
[  558.576105][T16906] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  558.614416][T16908] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[  558.654018][T16906] ntfs3: loop0: ntfs_evict_inode r=6 failed, -22.
[  558.694402][T16908] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  558.699173][T16906] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  558.732594][T16914] loop6: detected capacity change from 0 to 8192
[  558.814801][T16914] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  558.874449][T16914] REISERFS (device loop6): found reiserfs format "3.5" with non-standard journal
[  558.893387][T16914] REISERFS (device loop6): using ordered data mode
[  558.919329][T16914] reiserfs: using flush barriers
[  558.970836][T16914] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  559.051338][T16906] ntfs3: loop0: ino=1e, "file1" attr_set_size
[  559.098628][T16914] REISERFS (device loop6): checking transaction log (loop6)
[  559.139241][T16914] REISERFS (device loop6): Using rupasov hash to sort names
[  559.157532][ T5642] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  559.208130][T16914] REISERFS (device loop6): using 3.5.x disk format
[  559.215013][T16914] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  559.320867][T16914] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  559.393237][T16914] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  559.447221][T16914] REISERFS warning (device loop6): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2)
[  559.489260][T16914] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[  559.648720][T16938] sg_write: data in/out 209152/4 bytes for SCSI command 0xf2-- guessing data in;
[  559.648720][T16938]    program syz.3.5169 not setting count and/or reply_len properly
[  559.720084][T16942] IPVS: sync thread started: state = BACKUP, mcast_ifn = macvlan1, syncid = 512, id = 0
[  559.730082][T16939] IPVS: stopping backup sync thread 16942 ...
[  560.063281][T16948] xt_l2tp: v2 tid > 0xffff: 37482740
[  560.282446][T16955] IPVS: sync thread started: state = MASTER, mcast_ifn = batadv0, syncid = 0, id = 0
[  560.372669][T16961] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5181'.
[  560.802500][T16967] loop3: detected capacity change from 0 to 8192
[  560.853796][T16936] loop2: detected capacity change from 0 to 32768
[  560.858409][T16967] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  560.917133][T16967] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  560.947037][T16967] REISERFS (device loop3): using ordered data mode
[  560.953981][T16967] reiserfs: using flush barriers
[  561.016305][T16967] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  561.111885][T16967] REISERFS (device loop3): checking transaction log (loop3)
[  561.382791][T16967] REISERFS (device loop3): Using tea hash to sort names
[  561.407307][T16967] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  561.693880][T16980] netlink: 'syz.2.5189': attribute type 3 has an invalid length.
[  561.713508][T16966] loop0: detected capacity change from 0 to 40427
[  561.756553][T16957] loop6: detected capacity change from 0 to 40427
[  561.825206][T16966] F2FS-fs (loop0): Invalid SB checksum offset: 0
[  561.846153][T16957] F2FS-fs (loop6): invalid crc value
[  561.861218][T16966] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  561.895762][T16957] F2FS-fs (loop6): Found nat_bits in checkpoint
[  561.974318][T16966] F2FS-fs (loop0): invalid crc value
[  562.037423][T16966] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  562.238409][T16957] F2FS-fs (loop6): Start checkpoint disabled!
[  562.291495][T16957] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  562.367541][ T4334] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  562.418837][T16966] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  562.422973][T16996] tipc: Started in network mode
[  562.448049][T16996] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  562.458025][T16966] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  562.471927][T16996] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  562.504758][T16996] tipc: Enabled bearer <udp:syz0>, priority 10
[  562.521471][T16999] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5191'.
[  562.532610][T16994] loop4: detected capacity change from 0 to 4096
[  562.604531][T16994] EXT4-fs (loop4): Test dummy encryption mode enabled
[  562.625965][T16994] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002]
[  562.655736][T16994] System zones: 0-5
[  562.677089][T16994] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  562.706040][   T56] kworker/u4:4: attempt to access beyond end of device
[  562.706040][   T56] loop6: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  562.825508][T17003] device macsec0 entered promiscuous mode
[  562.856430][   T56] kworker/u4:4: attempt to access beyond end of device
[  562.856430][   T56] loop6: rw=2049, sector=40976, nr_sectors = 8 limit=40427
[  562.886425][ T4272] syz-executor: attempt to access beyond end of device
[  562.886425][ T4272] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  562.935357][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  563.012888][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  563.019472][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  563.566435][T17014] loop2: detected capacity change from 0 to 4096
[  563.626925][T13917] tipc: Node number set to 1
[  563.661577][T17020] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  563.692159][T17021] device wlan1 entered promiscuous mode
[  563.763233][T17021] device macsec1 entered promiscuous mode
[  563.813992][T17021] device wlan1 left promiscuous mode
[  564.258565][T17039] netlink: 64 bytes leftover after parsing attributes in process `syz.6.5211'.
[  564.280448][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  564.680611][T17050] loop3: detected capacity change from 0 to 1024
[  565.558386][T13917] usb 4-1: new low-speed USB device number 31 using dummy_hcd
[  565.755845][T17074] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5230'.
[  565.778832][T13917] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  565.805951][T13917] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 8
[  565.835872][T13917] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  565.860227][T13917] usb 4-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  565.874569][T13917] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  565.894192][T13917] usb 4-1: config 0 descriptor??
[  565.900411][T17056] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  566.309030][T17092] loop6: detected capacity change from 0 to 256
[  566.328777][T13917] gt683r_led 0003:1770:FF00.0021: ignoring exceeding usage max
[  566.349440][T13917] gt683r_led 0003:1770:FF00.0021: unknown main item tag 0x0
[  566.369451][T13917] gt683r_led 0003:1770:FF00.0021: unknown main item tag 0x0
[  566.384806][T17092] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x196362d4, utbl_chksum : 0xe619d30d)
[  566.405146][T13917] gt683r_led 0003:1770:FF00.0021: unknown main item tag 0x0
[  566.413882][T13917] gt683r_led 0003:1770:FF00.0021: unknown main item tag 0x0
[  566.430056][T13917] gt683r_led 0003:1770:FF00.0021: unknown main item tag 0x0
[  566.442901][T13917] gt683r_led 0003:1770:FF00.0021: unknown main item tag 0x0
[  566.456378][T13917] gt683r_led 0003:1770:FF00.0021: unknown main item tag 0x0
[  566.471078][T13917] gt683r_led 0003:1770:FF00.0021: unknown main item tag 0x0
[  566.490954][T13917] gt683r_led 0003:1770:FF00.0021: hidraw0: USB HID v0.04 Device [HID 1770:ff00] on usb-dummy_hcd.3-1/input0
[  566.587152][T13917] usb 4-1: USB disconnect, device number 31
[  566.617739][T13913] gt683r_led 0003:1770:FF00.0021: failed to send set report request: -19
[  566.668142][T13913] gt683r_led 0003:1770:FF00.0021: failed to send set report request: -19
[  566.878554][T17104] fido_id[17104]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  567.031722][T13917] kernel write not supported for file /input/event0 (pid: 13917 comm: kworker/1:12)
[  567.479970][   T56] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  567.565705][T17103] loop2: detected capacity change from 0 to 32768
[  567.597536][   T27] audit: type=1326 audit(567.598:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17125 comm="syz.0.5254" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f10f359cdd9 code=0x0
[  567.807097][ T4277] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  567.877190][   T48] Bluetooth: hci0: command 0x0c1a tx timeout
[  567.882033][T14106] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  567.997956][T17137] loop6: detected capacity change from 0 to 256
[  568.007431][ T4277] usb 5-1: Using ep0 maxpacket: 32
[  568.015704][ T4277] usb 5-1: config 0 has an invalid interface number: 119 but max is 0
[  568.056954][ T4277] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  568.084309][ T4277] usb 5-1: config 0 has no interface number 0
[  568.104286][ T4277] usb 5-1: config 0 interface 119 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  568.118776][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  568.142756][T17137] FAT-fs (loop6): Directory bread(block 64) failed
[  568.166950][T17137] FAT-fs (loop6): Directory bread(block 65) failed
[  568.186231][T17139] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5260'.
[  568.186945][T17137] FAT-fs (loop6): Directory bread(block 66) failed
[  568.202721][T17139] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5260'.
[  568.229021][T17137] FAT-fs (loop6): Directory bread(block 67) failed
[  568.236270][ T4277] usb 5-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73
[  568.258193][ T4277] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  568.277325][T17137] FAT-fs (loop6): Directory bread(block 68) failed
[  568.284377][T17137] FAT-fs (loop6): Directory bread(block 69) failed
[  568.291498][ T4277] usb 5-1: Product: syz
[  568.295804][ T4277] usb 5-1: Manufacturer: syz
[  568.306885][ T4277] usb 5-1: SerialNumber: syz
[  568.313592][T17137] FAT-fs (loop6): Directory bread(block 70) failed
[  568.327904][ T4277] usb 5-1: config 0 descriptor??
[  568.333274][T17137] FAT-fs (loop6): Directory bread(block 71) failed
[  568.350431][ T4277] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.119/input/input27
[  568.374639][T17137] FAT-fs (loop6): Directory bread(block 72) failed
[  568.388093][T17137] FAT-fs (loop6): Directory bread(block 73) failed
[  568.658242][T11824] usb 5-1: USB disconnect, device number 25
[  568.710421][T17143] loop0: detected capacity change from 0 to 256
[  568.771582][T17145] loop3: detected capacity change from 0 to 1024
[  568.889252][T17145] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  568.975791][ T4271] EXT4-fs (loop3): unmounting filesystem.
[  568.984579][T17133] loop2: detected capacity change from 0 to 32768
[  569.096407][T17133] JBD2: Ignoring recovery information on journal
[  569.258783][T17133] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  569.397904][   T33] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  569.507011][T17133] (syz.2.5257,17133,0):ocfs2_group_extend:306 ERROR: The disk is too old and small. Force to do offline resize.
[  569.595808][T17166] loop3: detected capacity change from 0 to 512
[  569.660206][T17166] EXT4-fs (loop3): Test dummy encryption mode enabled
[  569.694143][ T4273] ocfs2: Unmounting device (7,2) on (node local)
[  569.757359][T17166] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  569.804863][T17166] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[  569.837182][T17166] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  569.897019][T17166] EXT4-fs (loop3): re-mounted. Quota mode: writeback.
[  569.917154][ T6166] usb 1-1: new full-speed USB device number 27 using dummy_hcd
[  570.122825][ T4271] EXT4-fs (loop3): unmounting filesystem.
[  570.128832][ T6166] usb 1-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  570.159994][ T6166] usb 1-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  570.200283][ T6166] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  570.226894][ T6166] usb 1-1: Product: syz
[  570.241509][ T6166] usb 1-1: Manufacturer: syz
[  570.246315][ T6166] usb 1-1: SerialNumber: syz
[  570.277443][ T6166] usb 1-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[  570.831408][T17181] loop2: detected capacity change from 0 to 32768
[  570.890284][ T6166] usb 1-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[  570.905736][ T6166] usb 1-1: USB disconnect, device number 27
[  570.920243][T17181] XFS (loop2): Mounting V5 Filesystem
[  570.996371][T17181] XFS (loop2): Ending clean mount
[  571.054996][T17181] XFS (loop2): Quotacheck needed: Please wait.
[  571.076083][T17208] loop4: detected capacity change from 0 to 16
[  571.112103][T17208] erofs: (device loop4): check_layout_compatibility: unidentified incompatible feature a50000, please upgrade kernel version
[  571.160917][T17181] XFS (loop2): Quotacheck: Done.
[  571.202704][T17205] loop6: detected capacity change from 0 to 4096
[  571.262451][T17205] EXT4-fs (loop6): Test dummy encryption mode enabled
[  571.300091][T17205] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002]
[  571.355192][ T4273] XFS (loop2): Unmounting Filesystem
[  571.386991][T17205] System zones: 0-5
[  571.423695][T17205] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  571.546224][T17215] loop4: detected capacity change from 0 to 2048
[  571.626324][T14104] EXT4-fs (loop6): unmounting filesystem.
[  571.628417][T17215] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  571.855150][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  571.902999][T17223] loop6: detected capacity change from 0 to 736
[  572.015922][T17223] rock: directory entry would overflow storage
[  572.045069][T17223] rock: sig=0x3b10, size=4, remaining=3
[  572.615790][T17245] loop6: detected capacity change from 0 to 64
[  572.635140][T17232] loop0: detected capacity change from 0 to 8192
[  572.714489][T17232]  loop0: p1 p2 < > p3 p4 < p5 >
[  572.734624][T17232] loop0: partition table partially beyond EOD, truncated
[  572.787279][T17232] loop0: p1 size 1342439424 extends beyond EOD, truncated
[  572.840890][T17232] loop0: p2 start 16384 is beyond EOD, truncated
[  572.886243][T17232] loop0: p3 start 67108864 is beyond EOD, truncated
[  572.918973][T17232] loop0: p5 size 1342439424 extends beyond EOD, truncated
[  572.950381][T17250] device macsec0 entered promiscuous mode
[  573.189412][T17256] netlink: 'syz.0.5309': attribute type 1 has an invalid length.
[  573.253257][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  573.300487][ T4357] udevd[4357]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  573.320853][ T5335] udevd[5335]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  573.334750][ T8296] udevd[8296]: inotify_add_watch(7, /dev/loop0p5, 10) failed: No such file or directory
[  573.781549][T17242] loop3: detected capacity change from 0 to 32768
[  573.845613][T17242] 
[  573.845613][T17242]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  573.845613][T17242] 
[  573.941164][T17242] ERROR: (device loop3): diWrite: ixpxd invalid
[  573.941164][T17242] 
[  573.995034][T17242] ERROR: (device loop3): txCommit: 
[  573.995034][T17242] 
[  574.060141][T17242] ERROR: (device loop3): dtSearch: stack overrun!
[  574.060141][T17242] 
[  574.079795][T17242] btstack dump:
[  574.083514][T17242] bn = 0, index = 0
[  574.096735][T17242] bn = 0, index = 0
[  574.110558][T17242] bn = 0, index = 0
[  574.123670][T17242] bn = 0, index = 0
[  574.137879][T17242] bn = 0, index = 0
[  574.151604][T17242] bn = 0, index = 0
[  574.165118][T17242] bn = 0, index = 0
[  574.186899][T17242] bn = 0, index = 0
[  574.204671][T17242] jfs_mkdir: dtSearch returned -5
[  574.244186][T17253] loop6: detected capacity change from 0 to 32768
[  574.448630][ T4271] 
[  574.448630][ T4271]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  574.448630][ T4271] 
[  574.501219][ T4271] 
[  574.501219][ T4271]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  574.501219][ T4271] 
[  574.517472][ T5642] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  574.699445][T17283] comedi comedi1: pcmmio: I/O port conflict (0x8005,32)
[  574.764968][T17285] netlink: 'syz.3.5321': attribute type 10 has an invalid length.
[  575.477098][ T4277] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  575.676881][ T4277] usb 3-1: Using ep0 maxpacket: 16
[  575.700479][ T4277] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  575.731479][ T4277] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  575.743496][ T4277] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  575.758563][ T4277] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  575.769731][ T4277] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  575.789160][ T4277] usb 3-1: config 0 descriptor??
[  575.897021][ T6166] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  575.970127][T17321] loop6: detected capacity change from 0 to 64
[  576.097982][ T6166] usb 5-1: Using ep0 maxpacket: 8
[  576.106024][ T6166] usb 5-1: config index 0 descriptor too short (expected 30, got 18)
[  576.132825][ T6166] usb 5-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  576.157484][ T6166] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  576.202792][ T6166] usb 5-1: Product: syz
[  576.215291][ T6166] usb 5-1: Manufacturer: syz
[  576.231083][ T6166] usb 5-1: SerialNumber: syz
[  576.234992][ T4277] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0022/input/input28
[  576.250164][ T6166] usb 5-1: config 0 descriptor??
[  576.251751][T17327] device macsec0 entered promiscuous mode
[  576.269604][ T6166] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  576.287608][ T6166] usb 5-1: setting power ON
[  576.293064][ T6166] dvb-usb: bulk message failed: -22 (2/0)
[  576.313762][ T6166] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  576.353854][ T6166] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  576.354420][T17330] loop3: detected capacity change from 0 to 1024
[  576.365668][ T6166] usb 5-1: media controller created
[  576.385168][ T4277] microsoft 0003:045E:07DA.0022: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  576.416152][ T6166] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  576.437188][ T4277] usb 3-1: USB disconnect, device number 27
[  576.473193][T17313] dvb-usb: bulk message failed: -22 (3/0)
[  576.482737][T17313] cxusb: i2c wr: len=79 is too big!
[  576.482737][T17313] 
[  576.549086][ T6166] usb 5-1: selecting invalid altsetting 6
[  576.576739][ T6166] usb 5-1: digital interface selection failed (-22)
[  576.591126][ T6166] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  576.627496][ T6166] usb 5-1: setting power OFF
[  576.638243][ T6166] dvb-usb: bulk message failed: -22 (2/0)
[  576.652945][ T6166] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  576.715476][T17333] fido_id[17333]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  576.736958][ T6166] (NULL device *): no alternate interface
[  576.808424][ T6166] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  576.814306][T17335] option changes via remount are deprecated (pid=17334 comm=syz.3.5345)
[  576.848119][T17335] cgroup: option or name mismatch, new: 0x0 ".", old: 0x0 ""
[  576.864771][T17337] loop0: detected capacity change from 0 to 64
[  576.898585][ T6166] usb 5-1: USB disconnect, device number 26
[  577.049398][T17339] loop6: detected capacity change from 0 to 2048
[  577.093330][T17339] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=27481, location=27481
[  577.185447][T17339] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  577.279593][T17343] loop0: detected capacity change from 0 to 256
[  577.295643][T17339] UDF-fs: bad mount option "discard" or missing value
[  577.442601][T17343] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  577.586664][T17349] netlink: 88 bytes leftover after parsing attributes in process `syz.3.5352'.
[  577.613418][T17349] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  578.104250][T17365] loop4: detected capacity change from 0 to 2048
[  578.161156][T17365] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  578.620619][T17375] sp0: Synchronizing with TNC
[  578.907629][T17363] loop6: detected capacity change from 0 to 32768
[  578.931966][T17367] loop0: detected capacity change from 0 to 32768
[  578.968176][T17367] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.5361 (17367)
[  578.997774][   T46] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  579.051675][T17367] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  579.071679][T17381] sock: sock_set_timeout: `syz.3.5368' (pid 17381) tries to set negative timeout
[  579.089663][T17355] loop2: detected capacity change from 0 to 40427
[  579.138296][T17355] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  579.140125][T17367] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  579.146343][T17355] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  579.179403][T17367] BTRFS info (device loop0): force clearing of disk cache
[  579.208626][T17355] F2FS-fs (loop2): invalid crc value
[  579.277511][T17355] F2FS-fs (loop2): Found nat_bits in checkpoint
[  579.282729][T17367] BTRFS info (device loop0): metadata ratio 0
[  579.328105][T17367] BTRFS info (device loop0): enabling ssd optimizations
[  579.374181][T17367] BTRFS info (device loop0): using spread ssd allocation scheme
[  579.402599][T17367] BTRFS info (device loop0): using free space tree
[  579.478396][T17355] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  579.485503][T17355] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  579.551409][T17399] binder: 17398:17399 ioctl c0306201 200000000640 returned -14
[  579.844049][T17367] BTRFS info (device loop0): rebuilding free space tree
[  580.180038][T17421] loop3: detected capacity change from 0 to 4096
[  580.283113][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  580.317359][T17426] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  580.442580][ T4272] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  580.472139][   T27] audit: type=1800 audit(580.468:266): pid=17421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.5379" name="file2" dev="loop3" ino=16 res=0 errno=0
[  580.561924][T17431] block nbd4: NBD_DISCONNECT
[  580.753313][T17437] loop2: detected capacity change from 0 to 512
[  580.779271][T17437] EXT4-fs error (device loop2): ext4_orphan_get:1405: inode #17: comm syz.2.5386: iget: immutable or append flags not allowed on symlinks
[  580.795581][T17437] EXT4-fs error (device loop2): ext4_orphan_get:1410: comm syz.2.5386: couldn't read orphan inode 17 (err -117)
[  580.808433][T17437] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  580.946971][ T4277] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  580.948021][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  581.169684][ T4277] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  581.201401][ T4277] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  581.232390][ T4277] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  581.255725][ T4277] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  581.306164][T17435] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  581.708389][T17458] loop0: detected capacity change from 0 to 512
[  581.738988][T17458] EXT4-fs: Ignoring removed mblk_io_submit option
[  581.747147][ T4323] usb 7-1: USB disconnect, device number 6
[  581.811884][T17458] EXT4-fs (loop0): orphan cleanup on readonly fs
[  581.827764][T17458] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[  581.855869][T17458] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.5392: attempt to clear invalid blocks 2 len 1
[  581.918812][T17458] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  581.957663][T17458] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.5392: invalid indirect mapped block 1819239214 (level 0)
[  582.047266][T17458] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.5392: invalid indirect mapped block 1819239214 (level 1)
[  582.089858][T17458] EXT4-fs (loop0): 1 truncate cleaned up
[  582.090911][T17467] loop3: detected capacity change from 0 to 512
[  582.102050][T17458] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  582.167192][T17467] EXT4-fs: Ignoring removed oldalloc option
[  582.189253][T17467] EXT4-fs: Ignoring removed nomblk_io_submit option
[  582.251439][T17467] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  582.274421][ T4272] EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  582.275972][T17467] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002]
[  582.304853][T17467] EXT4-fs (loop3): orphan cleanup on readonly fs
[  582.311599][T17467] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  582.321163][T17467] EXT4-fs warning (device loop3): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  582.336606][T17467] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  582.347773][T17467] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.5396: bg 0: block 40: padding at end of block bitmap is not set
[  582.364156][T17467] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6180: Corrupt filesystem
[  582.381288][ T4272] EXT4-fs error (device loop0): ext4_iget_extra_inode:4763: inode #15: comm syz-executor: corrupted in-inode xattr
[  582.399487][T17467] EXT4-fs (loop3): 1 truncate cleaned up
[  582.406537][ T4272] EXT4-fs error (device loop0): ext4_iget_extra_inode:4763: inode #15: comm syz-executor: corrupted in-inode xattr
[  582.426516][T17467] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  582.568131][T17467] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.5396: bad symlink.
[  582.609543][T17467] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.5396: bad symlink.
[  582.808668][ T4271] EXT4-fs (loop3): unmounting filesystem.
[  582.911043][ T4272] EXT4-fs (loop0): unmounting filesystem.
[  583.143639][   T46] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  583.377358][   T46] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  583.555114][   T46] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  583.689982][T17481] loop4: detected capacity change from 0 to 40427
[  583.731488][   T46] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  583.827020][T17481] F2FS-fs (loop4): Found nat_bits in checkpoint
[  584.075695][T17481] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  584.118085][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  584.407534][   T46] tipc: Disabling bearer <udp:syz1>
[  584.434044][   T46] tipc: Left network mode
[  584.512322][T17519] delete_channel: no stack
[  584.525576][ T4280] syz-executor: attempt to access beyond end of device
[  584.525576][ T4280] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  584.545789][ T4288] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  584.560841][ T4288] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  584.570339][ T4288] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  584.580052][   T48] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  584.597737][   T48] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  584.605284][   T48] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  584.976018][T17532] ALSA: mixer_oss: invalid OSS volume ''
[  585.085023][T17530] loop2: detected capacity change from 0 to 4096
[  585.247880][T17530] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing.
[  585.274118][T17530] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  585.340403][T17530] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  585.426208][T17530] ntfs: volume version 3.1.
[  585.639827][T17546] loop4: detected capacity change from 0 to 64
[  585.695711][ T4273] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  585.751865][T17546] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[  586.371304][T17518] chnl_net:caif_netlink_parms(): no params data found
[  586.387194][T17558] loop4: detected capacity change from 0 to 4096
[  586.467842][T17558] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  586.492259][T17566] loop6: detected capacity change from 0 to 1024
[  586.523699][T17566] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  586.545375][T17566] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  586.677055][   T48] Bluetooth: hci2: command 0x0409 tx timeout
[  586.760596][T14104] EXT4-fs (loop6): unmounting filesystem.
[  586.769761][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  587.064078][T17574] loop4: detected capacity change from 0 to 256
[  587.108332][T17574] exfat: Deprecated parameter 'namecase'
[  587.131295][T17556] loop2: detected capacity change from 0 to 32768
[  587.156096][T17574] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  587.257093][T11824] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  587.288523][T17556] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.5431 (17556)
[  587.339034][T17556] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  587.349030][T17518] bridge0: port 1(bridge_slave_0) entered blocking state
[  587.356406][T17518] bridge0: port 1(bridge_slave_0) entered disabled state
[  587.367068][T17518] device bridge_slave_0 entered promiscuous mode
[  587.376378][T17518] bridge0: port 2(bridge_slave_1) entered blocking state
[  587.384578][T17518] bridge0: port 2(bridge_slave_1) entered disabled state
[  587.402806][T17518] device bridge_slave_1 entered promiscuous mode
[  587.432081][T17556] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  587.450506][T11824] usb 7-1: Using ep0 maxpacket: 16
[  587.454749][T17518] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  587.466452][T11824] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  587.496875][T17556] BTRFS info (device loop2): setting nodatasum
[  587.515368][T11824] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  587.533673][T17556] BTRFS info (device loop2): force zlib compression, level 3
[  587.551203][T17518] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  587.624329][T11824] usb 7-1: config 0 interface 0 has no altsetting 0
[  587.645765][T17556] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8)
[  587.702968][T11824] usb 7-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  587.730642][T17556] BTRFS info (device loop2): use lzo compression, level 0
[  587.738465][T11824] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  587.756172][T17518] team0: Port device team_slave_0 added
[  587.765234][T11824] usb 7-1: config 0 descriptor??
[  587.771172][T17556] BTRFS info (device loop2): turning on flush-on-commit
[  587.818631][   T46] device hsr_slave_0 left promiscuous mode
[  587.830563][T17556] BTRFS info (device loop2): enabling auto defrag
[  587.867127][   T46] device hsr_slave_1 left promiscuous mode
[  587.889751][T17556] BTRFS info (device loop2): max_inline at 4096
[  587.896256][T17556] BTRFS info (device loop2): using free space tree
[  587.911851][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  587.928028][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  587.936114][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  588.044429][   T46] device bridge_slave_1 left promiscuous mode
[  588.059409][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  588.168775][   T46] device bridge_slave_0 left promiscuous mode
[  588.175142][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  588.193075][T17570] loop3: detected capacity change from 0 to 40427
[  588.214236][T11824] hid (null): unknown global tag 0xc
[  588.224820][T11824] hid (null): report_id 11172 is invalid
[  588.231140][T11824] hid (null): report_id 19093 is invalid
[  588.237245][T11824] hid (null): nested delimiters
[  588.242862][T11824] hid (null): unknown global tag 0xd
[  588.248720][T11824] hid (null): report_id 0 is invalid
[  588.253443][T17556] BTRFS info (device loop2): enabling ssd optimizations
[  588.255329][T11824] hid (null): global environment stack overflow
[  588.270607][T17570] F2FS-fs (loop3): Found nat_bits in checkpoint
[  588.379010][   T46] device veth1_macvtap left promiscuous mode
[  588.397398][   T46] device veth0_macvtap left promiscuous mode
[  588.403671][   T46] device veth1_vlan left promiscuous mode
[  588.424247][T17570] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  588.471722][   T46] device veth0_vlan left promiscuous mode
[  588.513461][ T6166] usb 7-1: USB disconnect, device number 7
[  588.616073][T17606] f2fs_ckpt-7:3: attempt to access beyond end of device
[  588.616073][T17606] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  588.636710][ T4273] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  588.761029][   T48] Bluetooth: hci2: command 0x041b tx timeout
[  589.652101][   T27] audit: type=1326 audit(589.648:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.2.5441" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f255959cdd9 code=0x0
[  589.748963][   T46] bond1 (unregistering): Released all slaves
[  589.877775][T17627] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  589.984110][T17641] loop3: detected capacity change from 0 to 512
[  590.096053][T17641] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  590.150521][T17641] EXT4-fs (loop3): orphan cleanup on readonly fs
[  590.249301][T17648] loop4: detected capacity change from 0 to 1024
[  590.254593][T17641] EXT4-fs error (device loop3): ext4_orphan_get:1405: inode #17: comm syz.3.5442: inode has both inline data and extents flags
[  590.376466][T17641] EXT4-fs error (device loop3): ext4_orphan_get:1410: comm syz.3.5442: couldn't read orphan inode 17 (err -117)
[  590.455232][T17641] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  590.677961][ T4271] EXT4-fs (loop3): unmounting filesystem.
[  590.847128][   T48] Bluetooth: hci2: command 0x040f tx timeout
[  590.926626][T17660] loop3: detected capacity change from 0 to 512
[  590.967773][T17660] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.5455: invalid indirect mapped block 4294967295 (level 1)
[  590.981048][T17660] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.5455: invalid indirect mapped block 4294967295 (level 1)
[  590.981550][T17660] EXT4-fs (loop3): 2 truncates cleaned up
[  590.981583][T17660] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  591.168845][T17668] loop2: detected capacity change from 0 to 1024
[  591.207667][ T4271] EXT4-fs (loop3): unmounting filesystem.
[  591.354734][T17627] hfsplus: b-tree write err: -5, ino 8
[  591.403415][T17674] loop3: detected capacity change from 0 to 1024
[  591.466714][T17676] loop2: detected capacity change from 0 to 512
[  591.593809][    T9] hfsplus: b-tree write err: -5, ino 25
[  591.600289][    T9] hfsplus: b-tree write err: -5, ino 4
[  591.607356][    T9] hfsplus: b-tree write err: -5, ino 2
[  591.649438][T17676] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  591.748014][T17676] EXT4-fs error (device loop2): ext4_validate_block_bitmap:420: comm syz.2.5463: bg 0: bad block bitmap checksum
[  591.974817][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  592.156726][T17691] genirq: Flags mismatch irq 31. 00000000 (comedi_parport) vs. 00000000 (virtio1-input.0)
[  592.216276][T17693] loop4: detected capacity change from 0 to 1024
[  592.275150][T17693] hfsplus: bad catalog entry type
[  592.372916][ T4334] hfsplus: b-tree write err: -5, ino 25
[  592.384497][ T4334] hfsplus: b-tree write err: -5, ino 4
[  592.417685][ T4334] hfsplus: b-tree write err: -5, ino 2
[  592.794962][   T46] team0 (unregistering): Port device team_slave_1 removed
[  592.807725][ T6165] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  592.911795][   T46] team0 (unregistering): Port device team_slave_0 removed
[  592.920139][T14106] Bluetooth: hci2: command 0x0419 tx timeout
[  593.001024][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  593.015446][ T6165] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  593.054533][ T6165] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  593.080091][ T6165] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  593.091769][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  593.097984][T17699] loop2: detected capacity change from 0 to 40427
[  593.107210][ T6165] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  593.139055][T17697] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  593.278394][T17699] F2FS-fs (loop2): Found nat_bits in checkpoint
[  593.377354][T17699] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  593.529291][ T6165] usb 5-1: USB disconnect, device number 27
[  593.540096][ T4273] syz-executor: attempt to access beyond end of device
[  593.540096][ T4273] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  594.037323][   T46] bond0 (unregistering): Released all slaves
[  594.207752][T17518] team0: Port device team_slave_1 added
[  594.368447][T17518] batman_adv: batadv0: Adding interface: batadv_slave_0
[  594.375478][T17518] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  594.494214][T17518] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  594.539348][T17518] batman_adv: batadv0: Adding interface: batadv_slave_1
[  594.553929][T17518] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  594.655106][T17518] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  594.786981][T11824] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  594.842583][T17518] device hsr_slave_0 entered promiscuous mode
[  594.863009][T17518] device hsr_slave_1 entered promiscuous mode
[  594.887769][T17518] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  594.898092][T17518] Cannot create hsr debugfs directory
[  595.003615][T11824] usb 7-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  595.036988][T11824] usb 7-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  595.046457][T11824] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  595.102630][T11824] gspca_main: stv0680-2.14.0 probing 041e:4007
[  595.216108][T17730] loop2: detected capacity change from 0 to 2048
[  595.292174][T17730] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  595.386260][T17737] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  595.637325][ T4334] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  595.655109][T17717] loop4: detected capacity change from 0 to 32768
[  595.683764][T17518] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  595.701160][T17717] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.5479 (17717)
[  595.716637][T17518] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  595.747457][T17717] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  595.762024][T17518] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  595.806684][T17717] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  595.806742][T17518] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  595.830213][T17749] loop3: detected capacity change from 0 to 128
[  595.844180][T17717] BTRFS info (device loop4): setting nodatasum
[  595.877110][T17717] BTRFS info (device loop4): force zlib compression, level 3
[  595.943813][T17717] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8)
[  595.983129][T17717] BTRFS info (device loop4): use lzo compression, level 0
[  596.008910][T17717] BTRFS info (device loop4): turning on flush-on-commit
[  596.045123][T17717] BTRFS info (device loop4): enabling auto defrag
[  596.081343][T17717] BTRFS info (device loop4): max_inline at 4096
[  596.113394][T17717] BTRFS info (device loop4): using free space tree
[  596.228878][T17518] 8021q: adding VLAN 0 to HW filter on device bond0
[  596.342364][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  596.360433][T17717] BTRFS info (device loop4): enabling ssd optimizations
[  596.369385][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  596.418340][T11824] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  596.440754][T17518] 8021q: adding VLAN 0 to HW filter on device team0
[  596.446927][T11824] stv0680 7-1:4.0: last error: 86,  command = 0x78
[  596.474418][T11824] usb 7-1: USB disconnect, device number 8
[  596.507524][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  596.532247][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  596.562223][   T33] bridge0: port 1(bridge_slave_0) entered blocking state
[  596.569725][   T33] bridge0: port 1(bridge_slave_0) entered forwarding state
[  596.633237][ T4280] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  596.647516][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  596.670595][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  596.733795][   T33] bridge0: port 2(bridge_slave_1) entered blocking state
[  596.741053][   T33] bridge0: port 2(bridge_slave_1) entered forwarding state
[  596.796999][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  596.853357][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  596.898063][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  596.991726][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  597.012222][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  597.052102][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  597.083604][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  597.094617][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  597.122808][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  597.132839][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  597.155466][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  597.170253][T17627] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  597.183202][T17518] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  597.237950][T17790] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5497'.
[  597.550867][T17797] loop3: detected capacity change from 0 to 16
[  597.559975][T17798] loop4: detected capacity change from 0 to 512
[  597.605066][T17797] erofs: (device loop3): mounted with root inode @ nid 36.
[  597.648487][T17798] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  597.779648][T17803] netlink: 92 bytes leftover after parsing attributes in process `syz.2.5499'.
[  597.873766][T17808] netlink: 104 bytes leftover after parsing attributes in process `syz.3.5501'.
[  597.895962][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  598.107824][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  598.115495][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  598.197867][T17518] 8021q: adding VLAN 0 to HW filter on device batadv0
[  599.115159][T17846] loop6: detected capacity change from 0 to 4096
[  599.227795][T17855] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  599.282619][T17846] NILFS (loop6): nilfs_ioctl_move_inode_block: invalid virtual block address (node): ino=2048, cno=5, offset=63330, blocknr=0, vblocknr=34359803903
[  599.385055][T17846] NILFS (loop6): error -2 preparing GC: cannot read source blocks
[  599.441738][T17860] netlink: 'syz.3.5519': attribute type 1 has an invalid length.
[  599.498623][T17860] nbd: error processing sock list
[  599.815203][T17869] loop6: detected capacity change from 0 to 512
[  599.829084][T17868] UBIFS error (pid: 17868): cannot open "./file0", error -22
[  599.874412][T17869] EXT4-fs (loop6): 1 truncate cleaned up
[  599.924135][T17869] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  600.022585][T17878] loop4: detected capacity change from 0 to 8192
[  600.023014][   T27] audit: type=1800 audit(600.018:268): pid=17869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.5521" name="file1" dev="loop6" ino=15 res=0 errno=0
[  600.227322][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  600.250830][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  600.304969][T14104] EXT4-fs (loop6): unmounting filesystem.
[  600.310359][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  600.338084][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  600.350820][T17885] loop3: detected capacity change from 0 to 128
[  600.410749][T17518] device veth0_vlan entered promiscuous mode
[  600.423184][T17885] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  600.432250][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  600.433012][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  600.559510][T17885] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #2: comm syz.3.5528: No space for directory leaf checksum. Please run e2fsck -D.
[  600.620128][T17885] EXT4-fs error (device loop3): htree_dirblock_to_tree:1083: inode #2: comm syz.3.5528: Directory block failed checksum
[  600.626435][T17518] device veth1_vlan entered promiscuous mode
[  600.777785][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  600.803271][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  600.808902][ T4271] EXT4-fs (loop3): unmounting filesystem.
[  600.832497][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  600.894813][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  600.945088][T17518] device veth0_macvtap entered promiscuous mode
[  600.972564][T17518] device veth1_macvtap entered promiscuous mode
[  600.985838][T17906] loop3: detected capacity change from 0 to 64
[  601.022171][T17518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.045411][T17906] 
[  601.047912][T17906] ======================================================
[  601.055061][T17906] WARNING: possible circular locking dependency detected
[  601.062199][T17906] syzkaller #0 Not tainted
[  601.066821][T17906] ------------------------------------------------------
[  601.070428][T17518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.073971][T17906] syz.3.5533/17906 is trying to acquire lock:
[  601.073989][T17906] ffff88801eb127f8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xfb/0x13f0
[  601.074054][T17906] 
[  601.074054][T17906] but task is already holding lock:
[  601.074060][T17906] ffff888078b9e0b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x15b/0x1d0
[  601.074116][T17906] 
[  601.074116][T17906] which lock already depends on the new lock.
[  601.074116][T17906] 
[  601.074123][T17906] 
[  601.074123][T17906] the existing dependency chain (in reverse order) is:
[  601.074129][T17906] 
[  601.074129][T17906] -> #1 (&tree->tree_lock
[  601.085476][T17518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.090033][T17906] /1){+.+.}-{3:3}:
[  601.090063][T17906]        __mutex_lock+0x12d/0xaf0
[  601.090095][T17906]        hfs_find_init+0x15b/0x1d0
[  601.090120][T17906]        hfs_extend_file+0x35d/0x13f0
[  601.101824][T17518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.108352][T17906]        hfs_bmap_reserve+0x103/0x420
[  601.108392][T17906]        hfs_cat_move+0x209/0xd90
[  601.108417][T17906]        hfs_rename+0x22c/0x320
[  601.108442][T17906]        vfs_rename+0xbe1/0x1100
[  601.118753][T17518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.128315][T17906]        do_renameat2+0x8e5/0xce0
[  601.128350][T17906]        __x64_sys_rename+0x82/0x90
[  601.128371][T17906]        do_syscall_64+0x4c/0xa0
[  601.128395][T17906]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  601.128419][T17906] 
[  601.128419][T17906] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}:
[  601.128454][T17906]        __lock_acquire+0x2d07/0x7d10
[  601.128483][T17906]        lock_acquire+0x1bb/0x4a0
[  601.138438][T17518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.144094][T17906]        __mutex_lock+0x12d/0xaf0
[  601.144138][T17906]        hfs_extend_file+0xfb/0x13f0
[  601.144166][T17906]        hfs_bmap_reserve+0x103/0x420
[  601.144197][T17906]        __hfs_ext_write_extent+0x1fa/0x470
[  601.144221][T17906]        __hfs_ext_cache_extent+0x6b/0x9b0
[  601.144248][T17906]        hfs_extend_file+0x39c/0x13f0
[  601.144273][T17906]        hfs_get_block+0x40f/0xc50
[  601.144299][T17906]        __block_write_begin_int+0x55d/0x1a80
[  601.144325][T17906]        block_write_begin+0x96/0x1e0
[  601.144350][T17906]        cont_write_begin+0x5ea/0x800
[  601.144376][T17906]        hfs_write_begin+0x87/0xd0
[  601.144403][T17906]        generic_perform_write+0x2fa/0x5c0
[  601.156364][T17518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.158738][T17906]        __generic_file_write_iter+0x148/0x2a0
[  601.158775][T17906]        generic_file_write_iter+0xab/0x2e0
[  601.158801][T17906]        vfs_write+0x4b1/0xa30
[  601.158826][T17906]        ksys_write+0x14c/0x250
[  601.164478][T17518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.169077][T17906]        do_syscall_64+0x4c/0xa0
[  601.169111][T17906]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  601.169136][T17906] 
[  601.169136][T17906] other info that might help us debug this:
[  601.169136][T17906] 
[  601.169142][T17906]  Possible unsafe locking scenario:
[  601.169142][T17906] 
[  601.169147][T17906]        CPU0                    CPU1
[  601.169153][T17906]        ----                    ----
[  601.169158][T17906]   lock(&tree->tree_lock
[  601.176557][T17518] batman_adv: batadv0: Interface activated: batadv_slave_0
[  601.184725][T17906] /1);
[  601.184743][T17906]                                lock(&HFS_I(tree->inode)->extents_lock);
[  601.184760][T17906]                                lock(&tree->tree_lock/1);
[  601.184780][T17906]   lock(&HFS_I(tree->inode)->extents_lock);
[  601.184794][T17906] 
[  601.184794][T17906]  *** DEADLOCK ***
[  601.184794][T17906] 
[  601.184799][T17906] 5 locks held by syz.3.5533/17906:
[  601.184813][T17906]  #0: ffff88807d224ae8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x2ae/0x360
[  601.184874][T17906]  #1: ffff88804e37e460 (sb_writers#22){.+.+}-{0:0}, at: vfs_write+0x26b/0xa30
[  601.184948][T17906]  #2: ffff88801eb16aa8 (&sb->s_type->i_mutex_key#27){+.+.}-{3:3}
[  601.191389][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  601.195538][T17906] , at: generic_file_write_iter+0x7f/0x2e0
[  601.195572][T17906]  #3: ffff88801eb168f8 (&HFS_I(inode)->extents_lock
[  601.202286][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  601.205730][T17906] ){+.+.}-{3:3}, at: hfs_extend_file+0xfb/0x13f0
[  601.205778][T17906]  #4: 
[  601.217728][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  601.221366][T17906] ffff888078b9e0b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x15b/0x1d0
[  601.227709][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  601.231616][T17906] 
[  601.231616][T17906] stack backtrace:
[  601.231626][T17906] CPU: 1 PID: 17906 Comm: syz.3.5533 Not tainted syzkaller #0
[  601.231654][T17906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  601.231665][T17906] Call Trace:
[  601.231672][T17906]  <TASK>
[  601.231681][T17906]  dump_stack_lvl+0x188/0x24e
[  601.241281][T17518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.247593][T17906]  ? load_image+0x400/0x400
[  601.247624][T17906]  ? show_regs_print_info+0x12/0x12
[  601.247655][T17906]  ? print_circular_bug+0x12b/0x1a0
[  601.247684][T17906]  check_noncircular+0x296/0x330
[  601.247711][T17906]  ? hlock_conflict+0x59/0x1f0
[  601.247738][T17906]  ? look_up_lock_class+0x75/0x140
[  601.247760][T17906]  ? add_chain_block+0x940/0x940
[  601.247788][T17906]  ? lockdep_lock+0xf1/0x1f0
[  601.247814][T17906]  ? check_path+0x21/0x40
[  601.247843][T17906]  ? _find_first_zero_bit+0xcf/0x100
[  601.254749][T17518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.258260][T17906]  __lock_acquire+0x2d07/0x7d10
[  601.258304][T17906]  ? verify_lock_unused+0x140/0x140
[  601.258331][T17906]  ? __bfs+0x2a3/0x5c0
[  601.258356][T17906]  ? check_path+0x40/0x40
[  601.258384][T17906]  ? check_path+0x21/0x40
[  601.269316][T17518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.273391][T17906]  ? check_noncircular+0x189/0x330
[  601.273426][T17906]  ? look_up_lock_class+0x75/0x140
[  601.273463][T17906]  lock_acquire+0x1bb/0x4a0
[  601.279237][T17518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.284296][T17906]  ? hfs_extend_file+0xfb/0x13f0
[  601.284339][T17906]  ? __might_sleep+0xd0/0xd0
[  601.284360][T17906]  ? read_lock_is_recursive+0x10/0x10
[  601.292158][T17518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.296706][T17906]  ? __lock_acquire+0x28c4/0x7d10
[  601.296750][T17906]  __mutex_lock+0x12d/0xaf0
[  601.302577][T17518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.307318][T17906]  ? hfs_extend_file+0xfb/0x13f0
[  601.307360][T17906]  ? hfs_extend_file+0xfb/0x13f0
[  601.307387][T17906]  ? mutex_lock_nested+0x10/0x10
[  601.307420][T17906]  hfs_extend_file+0xfb/0x13f0
[  601.314342][T17518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.319213][T17906]  ? hfs_get_block+0xc50/0xc50
[  601.319250][T17906]  ? __mutex_trylock_common+0x155/0x260
[  601.319274][T17906]  ? trace_raw_output_contention_end+0xd0/0xd0
[  601.319300][T17906]  ? memset+0x1e/0x40
[  601.325459][T17518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.330098][T17906]  ? hfs_brec_find+0x197/0x500
[  601.330139][T17906]  hfs_bmap_reserve+0x103/0x420
[  601.330173][T17906]  __hfs_ext_write_extent+0x1fa/0x470
[  601.330204][T17906]  __hfs_ext_cache_extent+0x6b/0x9b0
[  601.330234][T17906]  ? hfs_find_init+0x15b/0x1d0
[  601.330259][T17906]  hfs_extend_file+0x39c/0x13f0
[  601.338629][T17518] batman_adv: batadv0: Interface activated: batadv_slave_1
[  601.346949][T17906]  ? verify_lock_unused+0x140/0x140
[  601.346993][T17906]  ? hfs_get_block+0xc50/0xc50
[  601.347022][T17906]  ? memset+0x1e/0x40
[  601.347041][T17906]  ? lockdep_init_map_type+0x98/0x8d0
[  601.347073][T17906]  hfs_get_block+0x40f/0xc50
[  601.347104][T17906]  ? __lock_acquire+0x7d10/0x7d10
[  601.347132][T17906]  ? hfs_free_extents+0x430/0x430
[  601.347161][T17906]  ? do_raw_spin_unlock+0x11d/0x230
[  601.347183][T17906]  ? create_page_buffers+0x24f/0x4a0
[  601.347213][T17906]  __block_write_begin_int+0x55d/0x1a80
[  601.347239][T17906]  ? filemap_add_folio+0x188/0x3c0
[  601.354690][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  601.359486][T17906]  ? xas_load+0x119/0x140
[  601.359525][T17906]  ? hfs_free_extents+0x430/0x430
[  601.359553][T17906]  ? page_zero_new_buffers+0x650/0x650
[  601.359581][T17906]  ? PageHeadHuge+0x8f/0x1c0
[  601.359603][T17906]  ? hfs_free_extents+0x430/0x430
[  601.366227][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  601.369519][T17906]  block_write_begin+0x96/0x1e0
[  601.369555][T17906]  cont_write_begin+0x5ea/0x800
[  601.369588][T17906]  ? generic_cont_expand_simple+0x200/0x200
[  601.383093][T17518] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  601.384863][T17906]  ? fault_in_readable+0x139/0x1f0
[  601.392628][T17518] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  601.401613][T17906]  ? fault_in_readable+0x13e/0x1f0
[  601.401657][T17906]  hfs_write_begin+0x87/0xd0
[  601.401687][T17906]  ? hfs_free_extents+0x430/0x430
[  601.401716][T17906]  generic_perform_write+0x2fa/0x5c0
[  601.401748][T17906]  ? generic_file_direct_write+0x330/0x330
[  601.401774][T17906]  ? __file_remove_privs+0x5f0/0x5f0
[  601.401797][T17906]  ? rwsem_write_trylock+0x135/0x1c0
[  601.401822][T17906]  ? clear_nonspinnable+0x60/0x60
[  601.401844][T17906]  ? generic_write_checks_count+0x3d9/0x4c0
[  601.410838][T17518] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  601.414788][T17906]  __generic_file_write_iter+0x148/0x2a0
[  601.414827][T17906]  generic_file_write_iter+0xab/0x2e0
[  601.414872][T17906]  vfs_write+0x4b1/0xa30
[  601.414897][T17906]  ? file_end_write+0x250/0x250
[  601.414921][T17906]  ? __fget_files+0x43d/0x4b0
[  601.414951][T17906]  ? __fdget_pos+0x2ae/0x360
[  601.414976][T17906]  ? ksys_write+0x71/0x250
[  601.415002][T17906]  ksys_write+0x14c/0x250
[  601.415031][T17906]  ? __ia32_sys_read+0x80/0x80
[  601.421520][T17518] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  601.425026][T17906]  ? lockdep_hardirqs_on+0x94/0x140
[  601.425062][T17906]  do_syscall_64+0x4c/0xa0
[  601.425092][T17906]  ? clear_bhb_loop+0x60/0xb0
[  602.129079][T17906]  ? clear_bhb_loop+0x60/0xb0
[  602.133868][T17906]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  602.139777][T17906] RIP: 0033:0x7f2aab19cdd9
[  602.144377][T17906] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  602.164885][T17906] RSP: 002b:00007f2aac133028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  602.173804][T17906] RAX: ffffffffffffffda RBX: 00007f2aab415fa0 RCX: 00007f2aab19cdd9
[  602.182177][T17906] RDX: 000000000208e24b RSI: 0000200000000100 RDI: 0000000000000004
[  602.190242][T17906] RBP: 00007f2aab232d69 R08: 0000000000000000 R09: 0000000000000000
[  602.198245][T17906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  602.206517][T17906] R13: 00007f2aab416038 R14: 00007f2aab415fa0 R15: 00007ffed2725388
[  602.214522][T17906]  </TASK>
[  602.222904][   T46] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  602.265995][T17518] ieee80211 phy21: Selected rate control algorithm 'minstrel_ht'
[  602.275694][ T4271] hfs: node 4:3 still has 1 user(s)!
[  602.309216][ T4300] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  602.318204][T17518] ieee80211 phy22: Selected rate control algorithm 'minstrel_ht'
[  602.326227][ T4300] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  602.339580][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  602.356011][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  602.365065][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  602.387185][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  603.323782][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  607.797646][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  608.438114][   T46] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration