last executing test programs:

57.772342289s ago: executing program 0 (id=6533):
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
readv(r0, &(0x7f0000000480)=[{&(0x7f0000000400)=""/66, 0x42}, {&(0x7f0000002680)=""/4094, 0xffe}, {&(0x7f0000000640)=""/183, 0xb7}], 0x3)

57.566261614s ago: executing program 0 (id=6538):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002c00)=@raw={'raw\x00', 0x3c1, 0x3, 0x3b0, 0x1f8, 0xc8, 0x8, 0x0, 0x5803, 0x2e0, 0x2e8, 0x2e8, 0x2e0, 0x2e8, 0x3, 0x0, {[{{@uncond, 0x0, 0x190, 0x1f8, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5df11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f35a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1, 0x3}}, @common=@mh={{0x28}, {"df07"}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x10, 0x3, 0x4, 0x2, 'snmp_trap\x00', 'syz1\x00', {0x450d74d1}}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0xb, 0x800, 0x4, 0x6, 0x9, 0xcb, 0xb1, 0xff]}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x410)

57.332021693s ago: executing program 0 (id=6543):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x800001, &(0x7f0000000100), 0x0, 0x559e, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000780)={{0x0, 0x102, 0x102, 0x4, 0x5, 0x3, 0x8, 0x6, 0xc, 0x1ffffff, 0x6, 0x8000000000000007, 0x7, 0xab2d, 0x9}})

56.013332259s ago: executing program 0 (id=6569):
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000180)='./file0\x00', 0x2, &(0x7f0000000500)={[{@noquota}, {@gid}, {@errors_continue}, {@errors_continue}, {@gid={'gid', 0x3d, 0xee00}}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@quota}, {@errors_continue}, {@discard_size}]}, 0x1, 0x61c0, &(0x7f0000006740)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})

54.473046237s ago: executing program 0 (id=6584):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="340000003e000701030000f5ffffff02017c00000400428011000100686d61d31acb1b320100000000000000080002"], 0x34}, 0x1, 0x0, 0x0, 0x48011}, 0x0)

52.821877679s ago: executing program 0 (id=6594):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40})

52.22326164s ago: executing program 32 (id=6594):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40})

4.018738043s ago: executing program 2 (id=7276):
r0 = epoll_create1(0x0)
epoll_pwait(r0, 0xfffffffffffffffc, 0x40, 0x8000005, 0x0, 0x0)

3.918451189s ago: executing program 2 (id=7277):
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0xc, &(0x7f0000000180)={[{@dax_never}, {@cache_strategy_disabled}, {@cache_strategy_readahead}, {@dax}, {}, {@acl}]}, 0xff, 0x1b5, &(0x7f00000003c0)="$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")
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)

3.404389854s ago: executing program 2 (id=7279):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f00000003c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f00000000c0)={0x4, 0xefd, 0x1, 0x8, 0x6, 0x100000000006, 0x20000001000, 0xf64})

1.398302749s ago: executing program 4 (id=7300):
syz_clone(0x4200400, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, &(0x7f0000000080), 0x40000000, &(0x7f0000000240))

1.311479318s ago: executing program 2 (id=7304):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa400}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_LACP_ACTIVE={0x5, 0x1d, 0x9}, @IFLA_BOND_MODE={0x5, 0x1, 0x4}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

1.132780809s ago: executing program 1 (id=7307):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0x103000, 0x0)
lseek(r0, 0x3476d95a, 0x5)

1.007429549s ago: executing program 3 (id=7308):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r0, 0xffffffffffffffff, 0x33, 0x0, @void}, 0x10)

944.142346ms ago: executing program 1 (id=7310):
r0 = socket(0x2b, 0x80801, 0x1)
getsockname$packet(r0, 0x0, &(0x7f0000000700))

931.791774ms ago: executing program 4 (id=7311):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="1800000000000000100100000e"], 0x10b8}, 0x4)

858.953181ms ago: executing program 3 (id=7312):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0x1a, &(0x7f0000000140)={@multicast2, @multicast1, 0x0, "aaa517d60f2811d48c8a2cc60c4380bc23b510d442ff13482864280a9c0f4eb5"}, 0x3c)

760.950376ms ago: executing program 4 (id=7314):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
getdents(r0, 0x0, 0x18)

758.935032ms ago: executing program 1 (id=7315):
setreuid(0x0, 0xee01)
setuid(0x0)

683.061988ms ago: executing program 5 (id=7317):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="08000000040000000400000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x3, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000070000008500000021000000b70000000000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

654.578514ms ago: executing program 3 (id=7318):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x20100)
mmap(&(0x7f000002d000/0x4000)=nil, 0x4000, 0x1000004, 0x12, r0, 0x8a962000)

606.62145ms ago: executing program 4 (id=7319):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x0, 0x15, 0x0, 0x0)

603.183621ms ago: executing program 5 (id=7320):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x8, 0x1019, &(0x7f0000001200)=""/4121, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)

518.954578ms ago: executing program 1 (id=7321):
r0 = socket(0x2, 0x80802, 0x0)
setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f0000000040)={0x0, {{0x2, 0x4e20, @loopback}}}, 0x88)

504.28096ms ago: executing program 3 (id=7322):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002200)=ANY=[@ANYBLOB="5c00000010000305000000000004000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003c0012800e00010069703665727370616e0000002800028006000200300000000500160001"], 0x5c}}, 0x0)

477.356239ms ago: executing program 4 (id=7323):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x183, &(0x7f0000000500)="$eJzskrGO00AQhr+1neSA4wQS1TV3xUlAgez4ANFxZejpaLASEyISROJIkCiFEUIpKBAlT5DXQOIFoEA8QOoUETUy2t2x5YRHuP2K/TP/zs7uTPwyG2ct4O920eUCg88RP5UiAE6U9Tae1S+iv0Q/W+GH5D0R/4PocTabNyXnlJvWeJUMh+nkFPhjvMrKHr/32JhSv+XQc6AoigI8eqDTOSxztouuD4yrHDgO4JZpoqhydCM6uA2E09GbMJvN7w1GST/tp69j//xhdD+KHsThi8EwjeyqaldIK2i9C7QOxEgOzX4D+CjWVXZRtafJvrrCM8razXKGR4p9vNrZUhXfqne1KP8veHoB+llvc1Vzz0yVANNSB4UvQTuovc/edWA2wmvQW6JQ5bEVQVWjvaZRBXE9OH+Uc92WWkrJM9GO6Ep0LXqy98kEuV4/SXQnhybvkul00tZDsr8acnYSV158I68PTN/61dtt7rv332wdDofD4XA4HA6H47LxLwAA///evHHK")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

466.758915ms ago: executing program 5 (id=7324):
r0 = socket(0x25, 0x5, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0)

349.511072ms ago: executing program 1 (id=7325):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x61c28c7771d1cf6b)

298.964441ms ago: executing program 5 (id=7326):
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000200)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)

284.346922ms ago: executing program 2 (id=7327):
r0 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000002380)=@multiplanar_overlay={0x7ff, 0x7, 0x4, 0x4, 0x80000001, {}, {0x1, 0x1, 0xf, 0x1, 0x4, 0x2, "a484dd9c"}, 0xce0, 0x3, {0x0}, 0x74ba})

255.150392ms ago: executing program 3 (id=7328):
r0 = syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x141000)
ioctl$FE_GET_PROPERTY(r0, 0x80106f53, &(0x7f00000016c0)={0x37, &(0x7f0000001600)=[{0x9, '\x00', @st={0x4, [{0x2, @svalue=0x5}, {0x1, @uvalue=0x8}, {0x2, @svalue=0x4}, {0xfffffffffffffffe, @uvalue=0x9}]}, 0x3}]})

236.19906ms ago: executing program 4 (id=7329):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18020000feffffff000000000300000085000000410000009500"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r0, 0x0, 0x7c, 0x0, &(0x7f0000000280)="548852ac5b4eba7aeaccd2c62b2b916a4c3c00a8a08fc700364d074b26d7cc5b7ece6cf62a75c42999d4c5acbb7691ac6390017592cc5e7c2bcc1dbd37d07a90522c7f1d7f65478813473f70cda28556b896d7355aaa1888609862f70e7dc3f4f5f7634cd47b45dd0e9396c0743b1f821c2e252d18d92275f20bc73e", 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x6}, 0x50)

194.504181ms ago: executing program 5 (id=7330):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@newtaction={0x68, 0x31, 0x1, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x3, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x1ff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x0)

87.425139ms ago: executing program 2 (id=7331):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000014e00), 0x2, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000014e40)=@raw={0xfe, 0x8, "02801b00"})

82.761122ms ago: executing program 3 (id=7332):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x29, 0x33, 0x0, 0x0)

859.161µs ago: executing program 1 (id=7333):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000004500090000000000000100f102000000080002"], 0x1c}}, 0x0)

0s ago: executing program 5 (id=7334):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000216c0000000c0a010300000000000000000700fffe0900020073797a31000000000900010073797a300000000040000380300000802c000180250001"], 0xf0}}, 0x0)

kernel console output (not intermixed with test programs):

 usb 5-1: 0:2 : does not exist
[  578.241555][ T6211] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.289453][ T6211] EXT4-fs error (device loop2): __ext4_get_inode_loc:4785: comm syz-executor: Invalid inode table block 1 in block_group 0
[  578.307766][ T6240] usb 5-1: USB disconnect, device number 124
[  578.333029][ T6211] loop2: lost filesystem error report for type 5 error -117
[  578.334019][ T6211] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6249: Corrupt filesystem
[  578.391969][ T6211] loop2: lost filesystem error report for type 5 error -117
[  578.392214][ T6211] EXT4-fs error (device loop2): ext4_quota_off:7285: inode #3: comm syz-executor: mark_inode_dirty error
[  578.437384][ T6211] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  578.461512][T19681] loop3: detected capacity change from 0 to 128
[  578.514153][T19681] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  578.549805][T19681] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  578.681523][T19689] netlink: 'syz.0.6077': attribute type 10 has an invalid length.
[  578.736096][T19689] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  578.811550][T19691] ip6erspan0: entered allmulticast mode
[  578.947950][T19675] loop1: detected capacity change from 0 to 32768
[  579.044534][T19675] ERROR: (device loop1): dbAlloc: the hint is outside the map
[  579.044534][T19675] 
[  579.144716][T19675] ERROR: (device loop1): remounting filesystem as read-only
[  579.200116][T19709] loop3: detected capacity change from 0 to 8
[  579.270513][T19713] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  579.292814][T19709] SQUASHFS error: Failed to read block 0x2d7: -5
[  579.303675][T19713] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  579.315776][T19709] SQUASHFS error: Unable to read metadata cache entry [2d5]
[  579.334553][T19713] overlayfs: missing 'lowerdir'
[  579.398319][T19709] SQUASHFS error: Failed to read block 0x8f: -5
[  579.434347][   T30] audit: type=1800 audit(2000004718.852:103): pid=19709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6087" name="file1" dev="loop3" ino=5 res=0 errno=0
[  580.315900][T19762] loop1: detected capacity change from 0 to 256
[  580.392405][T19728] loop2: detected capacity change from 0 to 32768
[  580.421182][T19728] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6096 (19728)
[  580.469194][T19728] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  580.508788][T19728] BTRFS info (device loop2): using sha256 checksum algorithm
[  580.686757][T19728] BTRFS info (device loop2): enabling ssd optimizations
[  580.714876][T19728] BTRFS info (device loop2): turning on async discard
[  580.732890][T19728] BTRFS info (device loop2): enabling free space tree
[  580.798171][T19789] netlink: 'syz.1.6118': attribute type 9 has an invalid length.
[  580.806274][T19791] netlink: 'syz.4.6121': attribute type 75 has an invalid length.
[  580.934359][ T6211] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  580.989906][T19799] dlm: non-version read from control device 90
[  581.121861][T19758] loop3: detected capacity change from 0 to 32768
[  581.169296][T19758] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6111 (19758)
[  581.316541][T19758] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  581.371616][T19758] BTRFS info (device loop3): using sha256 checksum algorithm
[  581.412305][   T29] usb 1-1: new high-speed USB device number 117 using dummy_hcd
[  581.653518][T19831] loop4: detected capacity change from 0 to 164
[  581.670550][   T29] usb 1-1: Using ep0 maxpacket: 32
[  581.695291][T19758] BTRFS info (device loop3): enabling ssd optimizations
[  581.732676][   T29] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  581.754168][T19758] BTRFS info (device loop3): turning on async discard
[  581.786295][T19758] BTRFS info (device loop3): enabling free space tree
[  581.787984][   T29] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  581.868024][   T29] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  581.913438][   T29] usb 1-1: Product: syz
[  581.933843][   T29] usb 1-1: Manufacturer: syz
[  581.960683][   T29] usb 1-1: SerialNumber: syz
[  582.001154][   T29] usb 1-1: config 0 descriptor??
[  582.026698][   T29] quatech2 1-1:0.0: Quatech 2nd gen USB to Serial Driver converter detected
[  582.259129][   T29] usb 1-1: qt2_setup_urbs - submit read urb failed -8
[  582.294442][   T29] quatech2 1-1:0.0: probe with driver quatech2 failed with error -8
[  582.557135][ T6360] usb 1-1: USB disconnect, device number 117
[  582.578014][ T6417] usb 3-1: new high-speed USB device number 117 using dummy_hcd
[  582.725038][T19866] netlink: 'syz.1.6149': attribute type 21 has an invalid length.
[  582.738115][T19866] netlink: 128 bytes leftover after parsing attributes in process `syz.1.6149'.
[  582.747485][T19866] netlink: 'syz.1.6149': attribute type 4 has an invalid length.
[  582.771453][ T6417] usb 3-1: config index 0 descriptor too short (expected 39, got 27)
[  582.780401][T19866] netlink: 'syz.1.6149': attribute type 5 has an invalid length.
[  582.785717][ T6417] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  582.798206][T19866] netlink: 3 bytes leftover after parsing attributes in process `syz.1.6149'.
[  582.813968][ T6212] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  582.827793][ T6417] usb 3-1: config 0 interface 0 has no altsetting 0
[  582.847479][ T6417] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  582.857093][ T6417] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  582.876235][ T6417] usb 3-1: Product: syz
[  582.903727][ T6417] usb 3-1: Manufacturer: syz
[  582.909816][ T6417] usb 3-1: SerialNumber: syz
[  582.939797][ T6417] usb 3-1: config 0 descriptor??
[  582.948517][ T6417] hub 3-1:0.0: bad descriptor, ignoring hub
[  582.957252][ T6417] hub 3-1:0.0: probe with driver hub failed with error -5
[  582.987271][ T6417] usb 3-1: selecting invalid altsetting 0
[  583.012791][T19862] loop4: detected capacity change from 0 to 32768
[  583.139601][T19862] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.6147 (19862)
[  583.266113][T19862] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  583.319363][T19862] BTRFS info (device loop4): using xxhash64 checksum algorithm
[  583.351861][T19862] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  583.623459][T19862] BTRFS info (device loop4): setting nodatasum
[  583.638890][T19880] loop3: detected capacity change from 0 to 4096
[  583.659273][T19862] BTRFS info (device loop4): allowing degraded mounts
[  583.697259][T19880] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  583.701401][T19862] BTRFS info (device loop4): enabling ssd optimizations
[  583.732230][   T24] usb 3-1: USB disconnect, device number 117
[  583.754487][T19862] BTRFS info (device loop4): turning on async discard
[  583.791238][T19862] BTRFS info (device loop4): enabling disk space caching
[  583.844910][T19862] BTRFS info (device loop4): force clearing of disk cache
[  583.892184][T19862] BTRFS info (device loop4): force zlib compression, level 3
[  583.900404][T19880] ntfs3(loop3): ino=19, mi_enum_attr
[  583.949995][T19880] ntfs3(loop3): failed to convert "c46c" to cp936
[  583.991554][T19880] ntfs3(loop3): ino=20, mi_enum_attr
[  584.189139][ T6208] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  585.081943][T19930] loop4: detected capacity change from 0 to 128
[  585.108850][T19932] loop3: detected capacity change from 0 to 256
[  585.204028][T19932] FAT-fs (loop3): Directory bread(block 64) failed
[  585.244051][T19932] FAT-fs (loop3): Directory bread(block 65) failed
[  585.254961][T19934] loop2: detected capacity change from 0 to 512
[  585.266830][T19906] loop1: detected capacity change from 0 to 32768
[  585.277165][T19932] FAT-fs (loop3): Directory bread(block 66) failed
[  585.285485][T19932] FAT-fs (loop3): Directory bread(block 67) failed
[  585.292519][T19932] FAT-fs (loop3): Directory bread(block 68) failed
[  585.300184][T19932] FAT-fs (loop3): Directory bread(block 69) failed
[  585.334760][T19932] FAT-fs (loop3): Directory bread(block 70) failed
[  585.346580][T19906] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  585.357431][T19906] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  585.366130][T19934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  585.368164][T19932] FAT-fs (loop3): Directory bread(block 71) failed
[  585.387288][T19934] ext4 filesystem being mounted at /1199/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  585.435312][T19932] FAT-fs (loop3): Directory bread(block 72) failed
[  585.462021][T19932] FAT-fs (loop3): Directory bread(block 73) failed
[  585.474765][T19906] XFS (loop1): Ending clean mount
[  585.514767][ T6211] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  585.516355][T19906] XFS (loop1): Quotacheck needed: Please wait.
[  585.649453][   T30] audit: type=1800 audit(2000004724.670:104): pid=19932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.6173" name="file1" dev="loop3" ino=1048706 res=0 errno=0
[  585.845289][T19906] XFS (loop1): Quotacheck: Done.
[  585.995501][T19964] loop4: detected capacity change from 0 to 128
[  586.024857][T19964] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  586.056203][ T6203] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  586.066245][T19964] System zones: 1-3, 19-19, 35-36
[  586.073959][T19964] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  586.084195][T19969] netlink: zone id is out of range
[  586.093585][T19971] blktrace: Concurrent blktraces are not allowed on sg0
[  586.143081][T19969] netlink: zone id is out of range
[  586.183028][T19969] netlink: set zone limit has 8 unknown bytes
[  586.234497][ T6208] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  586.499770][T19980] loop0: detected capacity change from 0 to 2048
[  586.549835][T19980] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=27485, location=27485
[  586.632050][T19980] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  586.820148][T19993] netlink: 'syz.0.6197': attribute type 1 has an invalid length.
[  586.863981][T19993] netlink: 'syz.0.6197': attribute type 2 has an invalid length.
[  586.883333][T19996] loop4: detected capacity change from 0 to 64
[  587.096535][T20006] netlink: 'syz.1.6203': attribute type 8 has an invalid length.
[  587.193111][T20003] bond1: option miimon: invalid value (18446744073709551614)
[  587.208738][T20003] bond1: option miimon: allowed values 0 - 2147483647
[  587.217109][T19984] loop2: detected capacity change from 0 to 32768
[  587.225730][T19984] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6192 (19984)
[  587.246588][T20003] bond1 (unregistering): Released all slaves
[  587.258425][T19984] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  587.273010][T19984] BTRFS info (device loop2): using sha256 checksum algorithm
[  587.341874][T19984] BTRFS info (device loop2): enabling ssd optimizations
[  587.358716][T19984] BTRFS info (device loop2): turning on async discard
[  587.377655][T19984] BTRFS info (device loop2): enabling free space tree
[  587.502610][ T6211] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  587.866670][T20039] loop4: detected capacity change from 0 to 2048
[  587.899011][T20044] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  588.286904][T20056] loop2: detected capacity change from 0 to 512
[  588.362896][T20056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.362899][T20054] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  588.363401][T20054] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  588.396244][T20054] UDF-fs: Scanning with blocksize 512 failed
[  588.407886][T20054] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  588.435992][T20056] ext4 filesystem being mounted at /1209/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  588.711432][ T6211] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  588.960771][T20081] netlink: 'syz.0.6231': attribute type 1 has an invalid length.
[  588.989365][T20081] netlink: 96 bytes leftover after parsing attributes in process `syz.0.6231'.
[  589.033544][T20081] netlink: 658 bytes leftover after parsing attributes in process `syz.0.6231'.
[  589.099144][T20087] netlink: 'syz.3.6234': attribute type 29 has an invalid length.
[  589.229123][T20091] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6236'.
[  589.273130][T20091] bridge0: entered allmulticast mode
[  589.293623][T20091] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6236'.
[  589.639415][T20109] geneve2: entered allmulticast mode
[  589.753599][T20089] (syz.1.6235,20089,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  589.777685][T20089] (syz.1.6235,20089,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  589.824221][T20089] JBD2: Ignoring recovery information on journal
[  589.884835][T20089] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  589.966843][T20099] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6240 (20099)
[  589.971960][T20089] (syz.1.6235,20089,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  590.012771][T20099] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  590.027127][T20107] bridge0: port 2(bridge_slave_1) entered disabled state
[  590.047620][T20099] BTRFS info (device loop2): using sha256 checksum algorithm
[  590.190639][T20099] BTRFS info (device loop2): rebuilding free space tree
[  590.264886][T20099] BTRFS info (device loop2): enabling ssd optimizations
[  590.272392][T20099] BTRFS info (device loop2): using spread ssd allocation scheme
[  590.281213][T20099] BTRFS info (device loop2): turning on async discard
[  590.289153][T20099] BTRFS info (device loop2): enabling free space tree
[  590.297927][T20099] BTRFS info (device loop2): force clearing of disk cache
[  590.508381][ T6211] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  590.540379][T20089] (syz.1.6235,20089,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  590.740711][T20107] veth0_macvtap: left allmulticast mode
[  590.985038][T17056] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  591.032617][T17056] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  591.094240][T17056] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  591.129246][T17056] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  591.166959][T17056] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  591.215252][T17056] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  591.263717][T17056] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  591.283297][T17056] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  591.452077][ T6203] ocfs2: Unmounting device (7,1) on (node local)
[  591.705144][T20176] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  591.735493][T20179] netlink: 37 bytes leftover after parsing attributes in process `syz.4.6271'.
[  591.838616][T20185] netlink: 132 bytes leftover after parsing attributes in process `syz.0.6274'.
[  591.981999][T20190] sock: sock_timestamping_bind_phc: sock not bind to device
[  592.182001][T20199] sctp: [Deprecated]: syz.1.6280 (pid 20199) Use of struct sctp_assoc_value in delayed_ack socket option.
[  592.182001][T20199] Use struct sctp_sack_info instead
[  592.454112][T20182] set_capacity_and_notify: 3 callbacks suppressed
[  592.454130][T20182] loop2: detected capacity change from 0 to 32768
[  592.551393][T20219] loop4: detected capacity change from 0 to 736
[  592.695749][T20223] loop3: detected capacity change from 0 to 128
[  592.777385][T20223] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  592.883133][T20223] ext4 filesystem being mounted at /1175/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  592.983644][ T6212] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  593.105489][T20235] ip6gre1: entered allmulticast mode
[  593.326368][T20248] dummy0: entered allmulticast mode
[  593.406421][T20245] dummy0: left allmulticast mode
[  593.979974][   T30] audit: type=1326 audit(2000004732.462:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.022663][T20249] loop3: detected capacity change from 0 to 32768
[  594.052447][T20249] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6301 (20249)
[  594.077813][   T30] audit: type=1326 audit(2000004732.462:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.128155][T20249] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  594.154958][   T30] audit: type=1326 audit(2000004732.462:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.178238][T20249] BTRFS info (device loop3): using sha256 checksum algorithm
[  594.248368][   T30] audit: type=1326 audit(2000004732.462:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.415982][T20292] netlink: 'syz.4.6318': attribute type 11 has an invalid length.
[  594.428459][   T30] audit: type=1326 audit(2000004732.462:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.466389][T20296] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6319'.
[  594.481930][T20249] BTRFS info (device loop3): enabling ssd optimizations
[  594.494281][T20292] netlink: 'syz.4.6318': attribute type 5 has an invalid length.
[  594.512009][T20249] BTRFS info (device loop3): turning on async discard
[  594.538021][T20249] BTRFS info (device loop3): enabling free space tree
[  594.555185][   T30] audit: type=1326 audit(2000004732.472:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.659319][   T30] audit: type=1326 audit(2000004732.472:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.713432][ T6212] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  594.746014][   T30] audit: type=1326 audit(2000004732.472:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.814123][   T30] audit: type=1326 audit(2000004732.472:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20271 comm="syz.4.6314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  594.969399][T20274] loop1: detected capacity change from 0 to 32768
[  595.036028][T20274] (syz.1.6315,20274,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  595.062499][T20306] netlink: 'syz.3.6322': attribute type 1 has an invalid length.
[  595.091001][T20274] (syz.1.6315,20274,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  595.198327][T20274] JBD2: Ignoring recovery information on journal
[  595.246843][T20274] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  595.567002][ T6417] usb 4-1: new full-speed USB device number 111 using dummy_hcd
[  595.624149][T20299] loop0: detected capacity change from 0 to 32768
[  595.726117][T20299] ERROR: (device loop0): diAllocAG: nfreeinos = 0, but iag on freelist
[  595.726117][T20299] 
[  595.759404][ T6417] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  595.817362][ T6417] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  595.828990][T20299] ERROR: (device loop0): remounting filesystem as read-only
[  595.858176][ T6417] usb 4-1: config 0 descriptor??
[  595.874222][T20299] ialloc: diAlloc returned -5!
[  595.906437][ T6417] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  595.942565][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  596.182336][ T6203] ocfs2: Unmounting device (7,1) on (node local)
[  596.312973][ T6417] gp8psk: usb out operation failed.
[  596.326288][ T6417] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  596.369362][ T6417] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  596.396895][ T6417] usb 4-1: USB disconnect, device number 111
[  597.082388][T20324] loop4: detected capacity change from 0 to 40427
[  597.106587][T20324] F2FS-fs: heap/no_heap options were deprecated
[  597.110533][T20350] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  597.129638][T20324] F2FS-fs (loop4): build fault injection rate: 19
[  597.153231][T20324] F2FS-fs (loop4): build fault injection type: 0x3bfe8c
[  597.187738][T20324] F2FS-fs (loop4): invalid crc value
[  597.251040][T20324] F2FS-fs (loop4): inject page alloc in f2fs_grab_cache_folio of f2fs_build_free_nids+0x9d8/0x1810
[  597.391827][T20361] bridge_slave_0: left allmulticast mode
[  597.442627][T20361] bridge_slave_0: left promiscuous mode
[  597.461971][T20324] F2FS-fs (loop4): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x221/0x410
[  597.476497][T20361] bridge0: port 1(bridge_slave_0) entered disabled state
[  597.528358][T20361] bridge_slave_1: left allmulticast mode
[  597.546885][T20361] bridge_slave_1: left promiscuous mode
[  597.561869][T20361] bridge0: port 2(bridge_slave_1) entered disabled state
[  597.571925][T20324] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  597.583821][T20324] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  597.675499][T20361] bond0: (slave bond_slave_0): Releasing backup interface
[  597.746479][T20361] bond0: (slave bond_slave_1): Releasing backup interface
[  597.758904][T20324] F2FS-fs (loop4): inject page alloc in f2fs_grab_cache_folio of f2fs_get_dnode_of_data+0x911/0x2060
[  597.762807][T20381] netlink: 'syz.3.6357': attribute type 10 has an invalid length.
[  597.783920][T20381] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6357'.
[  597.817501][T20361] team0: Port device team_slave_0 removed
[  597.847750][T20361] team0: Port device team_slave_1 removed
[  597.854717][T20361] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  597.862299][T20361] batman_adv: batadv0: Removing interface: batadv_slave_0
[  597.878922][T20361] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  597.887616][T20361] batman_adv: batadv0: Removing interface: batadv_slave_1
[  597.899790][T20361] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  597.942689][T20381] team0: entered promiscuous mode
[  597.965671][T20381] team_slave_0: entered promiscuous mode
[  597.981392][T20381] team_slave_1: entered promiscuous mode
[  598.002563][    C0] F2FS-fs (loop4): inject write IO error in f2fs_write_end_io of blk_update_request+0x57e/0xe60
[  598.015265][    C0] CPU: 0 UID: 0 PID: 6208 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  598.015293][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  598.015310][    C0] Call Trace:
[  598.015370][    C0]  <IRQ>
[  598.015379][    C0]  dump_stack_lvl+0xe8/0x150
[  598.015444][    C0]  f2fs_handle_critical_error+0x37c/0x540
[  598.015475][    C0]  f2fs_write_end_io+0x1274/0x1740
[  598.015521][    C0]  blk_update_request+0x57e/0xe60
[  598.015554][    C0]  blk_mq_end_request+0x3e/0x70
[  598.015573][    C0]  blk_flush_complete_seq+0x678/0xcc0
[  598.015602][    C0]  flush_end_io+0xbaa/0xe60
[  598.015632][    C0]  __blk_mq_end_request+0x4f8/0x630
[  598.015654][    C0]  blk_done_softirq+0x10a/0x160
[  598.015683][    C0]  handle_softirqs+0x22a/0x870
[  598.015716][    C0]  ? __irq_exit_rcu+0xca/0x220
[  598.015777][    C0]  __irq_exit_rcu+0xca/0x220
[  598.015793][    C0]  irq_exit_rcu+0x9/0x30
[  598.015806][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  598.015836][    C0]  </IRQ>
[  598.015872][    C0]  <TASK>
[  598.015880][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  598.015901][    C0] RIP: 0010:finish_task_switch+0x427/0xbe0
[  598.015925][    C0] Code: 41 c7 84 24 e0 0d 00 00 00 00 00 00 0f 1f 44 00 00 49 83 c4 48 4c 89 e7 e8 b6 2e 21 0a e8 81 d7 38 00 fb 49 8d bd 68 16 00 00 <48> 89 f8 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 7b 03 00 00 41 80
[  598.015937][    C0] RSP: 0018:ffffc90004346c50 EFLAGS: 00000202
[  598.015985][    C0] RAX: 00000000005051e9 RBX: 1ffff110170c776c RCX: 0000000080000001
[  598.015994][    C0] RDX: 0000000000000006 RSI: ffffffff8df3af0d RDI: ffff88802e229668
[  598.016003][    C0] RBP: ffffc90004346cb0 R08: ffffffff90123ff7 R09: 1ffffffff20247fe
[  598.016013][    C0] R10: dffffc0000000000 R11: fffffbfff20247ff R12: ffff8880b863adc8
[  598.016022][    C0] R13: ffff88802e228000 R14: ffff888051f11e80 R15: dffffc0000000000
[  598.016048][    C0]  __schedule+0x166d/0x5590
[  598.016063][    C0]  ? ktime_get+0x45/0x220
[  598.016086][    C0]  ? lapic_next_event+0x11/0x20
[  598.016097][    C0]  ? clockevents_program_event+0x3ba/0x4b0
[  598.016113][    C0]  ? __pfx_clockevents_program_event+0x10/0x10
[  598.016135][    C0]  ? __pfx___schedule+0x10/0x10
[  598.016149][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[  598.016164][    C0]  ? irqentry_exit+0x61a/0x700
[  598.016184][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  598.016201][    C0]  preempt_schedule_common+0x82/0xd0
[  598.016217][    C0]  preempt_schedule_thunk+0x16/0x30
[  598.016237][    C0]  _raw_spin_unlock_irq+0x45/0x50
[  598.016252][    C0]  blk_insert_flush+0x44f/0x5a0
[  598.016269][    C0]  blk_mq_submit_bio+0x1a99/0x2910
[  598.016284][    C0]  ? bio_associate_blkg+0x6d/0x230
[  598.016310][    C0]  ? __pfx_blk_mq_submit_bio+0x10/0x10
[  598.016332][    C0]  ? up_write+0x1ab/0x410
[  598.016347][    C0]  ? restore_priority+0x1af/0x480
[  598.016369][    C0]  __submit_bio+0x1c0/0x580
[  598.016388][    C0]  ? __pfx___submit_bio+0x10/0x10
[  598.016409][    C0]  ? blk_add_trace_bio+0x2e/0x2f0
[  598.016432][    C0]  submit_bio_noacct_nocheck+0x2f4/0xa70
[  598.016451][    C0]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  598.016480][    C0]  __submit_merged_bio+0x256/0x700
[  598.016502][    C0]  f2fs_submit_merged_write+0x284/0x390
[  598.016523][    C0]  ? __pfx_f2fs_submit_merged_write+0x10/0x10
[  598.016541][    C0]  ? folio_unlock+0x101/0x160
[  598.016563][    C0]  ? __f2fs_write_meta_folio+0x262/0x510
[  598.016585][    C0]  do_checkpoint+0x2532/0x3ff0
[  598.016614][    C0]  ? __pfx_do_checkpoint+0x10/0x10
[  598.016652][    C0]  ? __f2fs_save_inmem_curseg+0x1be/0x2f0
[  598.016671][    C0]  f2fs_write_checkpoint+0x16b8/0x26a0
[  598.016705][    C0]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  598.016750][    C0]  kill_f2fs_super+0x314/0x720
[  598.016775][    C0]  ? __pfx_kill_f2fs_super+0x10/0x10
[  598.016802][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[  598.016827][    C0]  deactivate_locked_super+0xbc/0x130
[  598.016852][    C0]  cleanup_mnt+0x437/0x4d0
[  598.016865][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  598.016882][    C0]  task_work_run+0x1d9/0x270
[  598.016903][    C0]  ? __pfx_task_work_run+0x10/0x10
[  598.016927][    C0]  exit_to_user_mode_loop+0xed/0x480
[  598.016948][    C0]  ? rcu_is_watching+0x15/0xb0
[  598.016976][    C0]  do_syscall_64+0x32d/0xf80
[  598.016992][    C0]  ? trace_irq_disable+0x3b/0x150
[  598.017009][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.017023][    C0]  ? clear_bhb_loop+0x40/0x90
[  598.017040][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.017055][    C0] RIP: 0033:0x7f1ccfd9d9d7
[  598.017072][    C0] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  598.017084][    C0] RSP: 002b:00007ffc7f9fac48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  598.017098][    C0] RAX: 0000000000000000 RBX: 00007f1ccfe32050 RCX: 00007f1ccfd9d9d7
[  598.017106][    C0] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc7f9fad00
[  598.017114][    C0] RBP: 00007ffc7f9fad00 R08: 00007ffc7f9fbd00 R09: 00000000ffffffff
[  598.017123][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc7f9fbd90
[  598.017132][    C0] R13: 00007f1ccfe32050 R14: 0000000000089d7c R15: 00007ffc7f9fbdd0
[  598.017152][    C0]  </TASK>
[  598.017160][    C0] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  598.047094][T20381] bond0: entered promiscuous mode
[  598.052762][ T6208] F2FS-fs (loop4): do_checkpoint failed err:-5, stop checkpoint
[  598.079610][T20381] bond_slave_0: entered promiscuous mode
[  598.573524][T20381] bond_slave_1: entered promiscuous mode
[  598.579537][T20381] team0: entered allmulticast mode
[  598.584739][T20381] team_slave_0: entered allmulticast mode
[  598.590487][T20381] team_slave_1: entered allmulticast mode
[  598.596295][T20381] bond0: entered allmulticast mode
[  598.601597][T20381] bond_slave_0: entered allmulticast mode
[  598.607396][T20381] bond_slave_1: entered allmulticast mode
[  598.625767][T20381] 8021q: adding VLAN 0 to HW filter on device team0
[  598.647482][T20381] bridge0: port 1(team0) entered blocking state
[  598.679147][T20381] bridge0: port 1(team0) entered disabled state
[  598.964978][   T30] audit: type=1326 audit(2000004737.120:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20408 comm="syz.1.6370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  599.052192][ T6417] usb 3-1: new high-speed USB device number 118 using dummy_hcd
[  599.243924][ T6417] usb 3-1: Using ep0 maxpacket: 8
[  599.252531][ T6417] usb 3-1: config 2 has an invalid interface number: 31 but max is 0
[  599.282579][ T6417] usb 3-1: config 2 has no interface number 0
[  599.299830][ T6417] usb 3-1: config 2 interface 31 has no altsetting 0
[  599.321788][ T6417] usb 3-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[  599.335050][ T6417] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  599.352510][ T6417] usb 3-1: Product: syz
[  599.362746][ T6417] usb 3-1: Manufacturer: syz
[  599.374880][ T6417] usb 3-1: SerialNumber: syz
[  599.391773][T20425] loop1: detected capacity change from 0 to 1764
[  599.742381][T20410] loop4: detected capacity change from 0 to 32768
[  599.798682][T20410] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  599.859238][ T6417] ch9200 3-1:2.31: probe with driver ch9200 failed with error -22
[  599.916079][ T6417] usb 3-1: USB disconnect, device number 118
[  600.023236][T20410] XFS (loop4): Ending clean mount
[  600.042064][T20463] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6393'.
[  600.058005][T20410] XFS (loop4): Quotacheck needed: Please wait.
[  600.088265][T20463] netlink: 348 bytes leftover after parsing attributes in process `syz.3.6393'.
[  600.126476][T20463] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6393'.
[  600.151621][T20463] netlink: 348 bytes leftover after parsing attributes in process `syz.3.6393'.
[  600.159861][T20467] loop0: detected capacity change from 0 to 2048
[  600.172473][T20463] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6393'.
[  600.211316][T20468] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  600.251360][T20410] XFS (loop4): Quotacheck: Done.
[  600.335798][ T6343] usb 2-1: new high-speed USB device number 109 using dummy_hcd
[  600.344618][ T6208] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  600.529766][ T6343] usb 2-1: config 0 has an invalid interface number: 255 but max is 0
[  600.549597][ T6343] usb 2-1: config 0 has no interface number 0
[  600.576399][ T6343] usb 2-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  600.611555][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  600.611574][   T30] audit: type=1326 audit(2000004738.655:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20474 comm="syz.2.6400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0199c799 code=0x7ffc0000
[  600.650258][ T6343] usb 2-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  600.679870][   T30] audit: type=1326 audit(2000004738.692:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20474 comm="syz.2.6400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f1b0199c799 code=0x7ffc0000
[  600.714586][ T6343] usb 2-1: config 0 interface 255 has no altsetting 0
[  600.731919][ T6343] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  600.759010][ T6343] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  600.795958][   T30] audit: type=1326 audit(2000004738.692:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20474 comm="syz.2.6400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0199c799 code=0x7ffc0000
[  600.846157][ T6343] usb 2-1: config 0 descriptor??
[  600.864197][ T6343] ums-realtek 2-1:0.255: USB Mass Storage device detected
[  600.911193][   T30] audit: type=1326 audit(2000004738.701:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20474 comm="syz.2.6400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b0199c799 code=0x7ffc0000
[  601.124368][ T6360] usb 2-1: USB disconnect, device number 109
[  601.435155][T20506] loop0: detected capacity change from 0 to 4096
[  601.467816][ T6417] usb 4-1: new high-speed USB device number 112 using dummy_hcd
[  601.515916][T20506] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  601.525273][T20514] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  601.545502][T20506] ntfs3(loop0): Failed to load $Extend (-22).
[  601.557815][T20506] ntfs3(loop0): Failed to initialize $Extend.
[  601.609233][T20506] ntfs3(loop0): ino=21, The size of extended attributes must not exceed 64KiB
[  601.628907][T20516] loop4: detected capacity change from 0 to 8
[  601.650404][ T6417] usb 4-1: too many configurations: 125, using maximum allowed: 8
[  601.685959][ T6417] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  601.724864][ T6417] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  601.763662][ T6417] usb 4-1: Product: syz
[  601.780643][ T6417] usb 4-1: Manufacturer: syz
[  601.798123][ T6417] usb 4-1: SerialNumber: syz
[  601.850106][ T6417] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  601.889172][ T6360] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  602.189301][    C0] usb 4-1: ath: unknown panic pattern!
[  602.241788][T20536] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6428'.
[  602.466519][    T9] usb 4-1: USB disconnect, device number 112
[  603.107940][ T6360] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  603.126075][T20581] loop0: detected capacity change from 0 to 764
[  603.138334][ T6360] ath9k_htc: Failed to initialize the device
[  603.171858][    T9] usb 4-1: ath9k_htc: USB layer deinitialized
[  603.214036][T20581] Symlink component flag not implemented
[  603.227923][T20589] dlm: no locking on control device
[  603.246989][T20581] Symlink component flag not implemented
[  603.274055][T20581] Symlink component flag not implemented (128)
[  603.301677][T20581] Symlink component flag not implemented (122)
[  603.664665][T20609] loop4: detected capacity change from 0 to 1024
[  603.957498][T20629] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6472'.
[  603.969655][T20630] netlink: 'syz.0.6474': attribute type 1 has an invalid length.
[  604.544179][T20656] netlink: 232 bytes leftover after parsing attributes in process `syz.3.6487'.
[  604.637150][T20659] tmpfs: Bad value for 'mpol'
[  604.830708][T20668] loop1: detected capacity change from 0 to 128
[  604.875931][T20664] loop2: detected capacity change from 0 to 4096
[  605.240538][T20646] loop0: detected capacity change from 0 to 32768
[  605.253866][T20680] ip6t_srh: unknown srh invflags 4000
[  605.291436][T20646] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  605.478721][T20646] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  605.553879][T20646] XFS (loop0): Starting recovery (logdev: internal)
[  605.557859][T20696] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6503'.
[  605.628247][T20698] bridge0: port 1(bridge_slave_0) entered disabled state
[  605.667735][T20646] XFS (loop0): Ending recovery (logdev: internal)
[  605.693310][T20646] XFS (loop0): AG 0: Corrupt finobt pointer at level 1 index 0.
[  605.714399][T20698] bridge_slave_0 (unregistering): left allmulticast mode
[  605.724445][T20646] loop0: lost filesystem error report for type 5 error -117
[  605.724653][T20646] XFS (loop0): Failed to initialize disk quotas, err -117.
[  605.750357][T20698] bridge_slave_0 (unregistering): left promiscuous mode
[  605.762474][T20698] bridge0: port 1(bridge_slave_0) entered disabled state
[  605.764204][T20676] loop1: detected capacity change from 0 to 32768
[  605.823781][T20676] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6496 (20676)
[  605.841935][T20646] XFS (loop0): AG 0: Corrupt finobt pointer at level 1 index 0.
[  605.901375][T20676] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  605.924907][T20676] BTRFS info (device loop1): using sha256 checksum algorithm
[  605.935964][T20706] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6508'.
[  605.959268][ T6199] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  605.997975][ T6199] XFS (loop0): Uncorrected metadata errors detected; please run xfs_repair.
[  606.137930][T20676] BTRFS info (device loop1): enabling ssd optimizations
[  606.146653][T20676] BTRFS info (device loop1): turning on async discard
[  606.154759][T20676] BTRFS info (device loop1): enabling free space tree
[  606.240207][ T6203] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  606.544566][T20704] loop3: detected capacity change from 0 to 32768
[  606.612781][T20704] JBD2: Ignoring recovery information on journal
[  606.668644][T20704] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  607.109575][T20748] netlink: 'syz.2.6522': attribute type 1 has an invalid length.
[  607.154459][T20748] netlink: 2096 bytes leftover after parsing attributes in process `syz.2.6522'.
[  607.216841][T20748] netlink: 5 bytes leftover after parsing attributes in process `syz.2.6522'.
[  607.228970][ T6212] ocfs2: Unmounting device (7,3) on (node local)
[  607.428661][T20758] overlayfs: missing 'lowerdir'
[  607.688112][T20767] bond1: option arp_interval: mode dependency failed, not supported in mode balance-alb(6)
[  607.736363][T20767] bond1 (unregistering): Released all slaves
[  607.940899][T20773] netlink: 404 bytes leftover after parsing attributes in process `syz.3.6520'.
[  607.961607][T20783] netlink: 132 bytes leftover after parsing attributes in process `syz.4.6536'.
[  607.963035][T20773] netlink: 88 bytes leftover after parsing attributes in process `syz.3.6520'.
[  607.982757][T20773] netlink: 88 bytes leftover after parsing attributes in process `syz.3.6520'.
[  608.004456][T20785] x_tables: ip6_tables: mh match: only valid for protocol 135
[  608.738893][ T6360] usb 5-1: new high-speed USB device number 125 using dummy_hcd
[  608.908073][T20795] loop0: detected capacity change from 0 to 32768
[  608.922210][T20795] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6543 (20795)
[  608.937241][ T6360] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  608.961606][ T6360] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  608.997407][ T6360] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  609.019305][T20795] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  609.023760][ T6360] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  609.041236][T20795] BTRFS info (device loop0): using sha256 checksum algorithm
[  609.046531][ T6360] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  609.079831][ T6360] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  609.096956][ T6360] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  609.116126][ T6360] usb 5-1: Product: syz
[  609.130970][ T6360] usb 5-1: Manufacturer: syz
[  609.173482][ T6360] cdc_wdm 5-1:1.0: skipping garbage
[  609.182340][ T6166] usb 2-1: new high-speed USB device number 110 using dummy_hcd
[  609.205309][T20795] BTRFS info (device loop0): enabling ssd optimizations
[  609.231980][ T6360] cdc_wdm 5-1:1.0: skipping garbage
[  609.255862][T20795] BTRFS info (device loop0): turning on async discard
[  609.289368][T20795] BTRFS info (device loop0): enabling free space tree
[  609.309863][ T6360] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  609.332388][ T6360] cdc_wdm 5-1:1.0: Unknown control protocol
[  609.396478][ T6166] usb 2-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  609.428025][ T6166] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  609.450011][ T6199] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  609.464377][ T6166] usb 2-1: Product: syz
[  609.473092][ T6166] usb 2-1: Manufacturer: syz
[  609.483816][ T6166] usb 2-1: SerialNumber: syz
[  609.503615][T20808] cdc_wdm 5-1:1.0: Error submitting int urb - -90
[  609.510227][ T6166] usb 2-1: config 0 descriptor??
[  609.529230][ T6166] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  609.529499][ T6343] usb 5-1: USB disconnect, device number 125
[  609.846113][T20864] netlink: 5 bytes leftover after parsing attributes in process `syz.3.6571'.
[  609.887610][T20856] loop2: detected capacity change from 0 to 32768
[  609.958339][T20856] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  610.029575][ T6343] usb 2-1: USB disconnect, device number 110
[  610.077235][T20856] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  610.136871][T20856] XFS (loop2): Starting recovery (logdev: internal)
[  610.280616][T20856] XFS (loop2): Ending recovery (logdev: internal)
[  610.281222][T20880] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6574'.
[  610.297657][T20856] XFS (loop2): AG 0: Corrupt finobt pointer at level 1 index 0.
[  610.314111][T20856] loop2: lost filesystem error report for type 5 error -117
[  610.314251][T20856] XFS (loop2): Failed to initialize disk quotas, err -117.
[  610.401381][T20856] XFS (loop2): AG 0: Corrupt finobt pointer at level 1 index 0.
[  610.457379][ T6211] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  610.486201][ T6211] XFS (loop2): Uncorrected metadata errors detected; please run xfs_repair.
[  610.575227][T20876] loop0: detected capacity change from 0 to 32768
[  610.664809][T20888] loop4: detected capacity change from 0 to 1024
[  610.713805][T20888] hfsplus: request for non-existent node 3 in B*Tree
[  610.748215][T20888] hfsplus: request for non-existent node 3 in B*Tree
[  610.800795][T20888] hfsplus: invalid length 28418 has been corrected to 255
[  610.829282][T20888] hfsplus: invalid length 28418 has been corrected to 255
[  610.976332][T20894] loop3: detected capacity change from 0 to 1024
[  611.065169][T20894] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  611.136897][ T6199] read_mapping_page failed!
[  611.159852][ T6199] ERROR: (device loop0): txCommit: 
[  611.159852][ T6199] 
[  611.182771][ T6199] read_mapping_page failed!
[  611.185366][ T6166] usb 5-1: new high-speed USB device number 126 using dummy_hcd
[  611.220724][ T6199] ERROR: (device loop0): txCommit: 
[  611.220724][ T6199] 
[  611.305217][T20905] loop1: detected capacity change from 0 to 128
[  611.314430][T20905] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  611.330739][T20905] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  611.405956][ T6166] usb 5-1: Using ep0 maxpacket: 32
[  611.422773][ T6166] usb 5-1: config 2 has an invalid interface number: 88 but max is 0
[  611.446896][ T6166] usb 5-1: config 2 has no interface number 0
[  611.462678][ T6166] usb 5-1: config 2 interface 88 altsetting 7 has an endpoint descriptor with address 0x61, changing to 0x1
[  611.521517][ T6166] usb 5-1: config 2 interface 88 altsetting 7 endpoint 0x1 has an invalid bInterval 97, changing to 7
[  611.555915][ T6166] usb 5-1: config 2 interface 88 altsetting 7 endpoint 0x1 has invalid maxpacket 24929, setting to 1024
[  611.583719][ T6212] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.612364][ T6166] usb 5-1: config 2 interface 88 has no altsetting 0
[  611.629755][ T6199] team0: Port device syz_tun removed
[  611.648236][ T6166] usb 5-1: New USB device found, idVendor=0557, idProduct=2009, bcdDevice=c7.1e
[  611.664057][ T6166] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  611.672356][ T6166] usb 5-1: Product: syz
[  611.676609][ T6166] usb 5-1: Manufacturer: syz
[  611.682345][ T6166] usb 5-1: SerialNumber: syz
[  611.743044][ T6166] asix 5-1:2.88: probe with driver asix failed with error -22
[  611.756800][T20901] loop2: detected capacity change from 0 to 32768
[  611.810097][T20901] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6578 (20901)
[  611.849057][ T6199] ERROR: (device loop0): diFree: numfree > numinos
[  611.849057][ T6199] 
[  611.882572][T20911] loop1: detected capacity change from 0 to 24
[  611.918008][T20901] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  611.930090][T20911] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  611.952821][    T9] usb 5-1: USB disconnect, device number 126
[  611.965418][  T119] ERROR: (device loop0): diFree: numfree > numinos
[  611.965418][  T119] 
[  611.975396][T20901] BTRFS info (device loop2): using sha256 checksum algorithm
[  612.000750][T20911] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  612.188365][T20901] BTRFS info (device loop2): enabling ssd optimizations
[  612.215496][T20901] BTRFS info (device loop2): turning on async discard
[  612.223250][T20901] BTRFS info (device loop2): enabling free space tree
[  612.297138][ T6360] usb 2-1: new high-speed USB device number 111 using dummy_hcd
[  612.314958][ T6211] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  612.387086][T20930] loop3: detected capacity change from 0 to 4096
[  612.423688][T20930] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  612.547053][ T6360] usb 2-1: config 0 has an invalid descriptor of length 66, skipping remainder of the config
[  612.620411][ T6360] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 34, using maximum allowed: 30
[  612.646483][T20930] ntfs3(loop3): Failed to initialize $Extend/$Reparse.
[  612.659903][ T6360] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 10276, setting to 1024
[  612.681205][T20930] ntfs3(loop3): ino=5, mi_enum_attr
[  612.731936][ T6360] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 1024
[  612.776888][ T6360] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 34
[  612.840072][ T6360] usb 2-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=71.94
[  612.904882][ T6360] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  612.952931][ T6360] usb 2-1: config 0 descriptor??
[  612.958756][T20911] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  613.042449][ T6360] ttusbir 2-1:0.0: cannot find expected altsetting
[  613.313825][ T6360] usb 2-1: USB disconnect, device number 111
[  613.586688][T20949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  613.594164][    T9] usb 3-1: new high-speed USB device number 119 using dummy_hcd
[  613.605444][T17054] bond0: (slave netdevsim0): Releasing backup interface
[  613.629582][T20949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  613.638574][T20949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  613.651409][T20949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  613.660123][T20949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  613.683009][ T6206] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  613.696466][ T6206] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  613.705228][ T6206] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  613.714721][ T6206] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  613.726693][ T6206] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  613.775734][    T9] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  613.803574][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  613.822701][    T9] usb 3-1: Product: syz
[  613.835290][    T9] usb 3-1: Manufacturer: syz
[  613.842252][    T9] usb 3-1: SerialNumber: syz
[  613.863410][    T9] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  613.885517][ T6360] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  614.173432][T20960] netlink: 'syz.4.6605': attribute type 10 has an invalid length.
[  614.199807][T20960] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6605'.
[  614.224658][T17054] bridge_slave_1: left allmulticast mode
[  614.230395][T17054] bridge_slave_1: left promiscuous mode
[  614.238928][T17054] bridge0: port 2(bridge_slave_1) entered disabled state
[  614.400512][ T6240] usb 3-1: USB disconnect, device number 119
[  614.678396][T20982] loop3: detected capacity change from 0 to 8
[  615.076877][ T6360] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  615.126436][ T6360] ath9k_htc: Failed to initialize the device
[  615.154229][ T6240] usb 3-1: ath9k_htc: USB layer deinitialized
[  615.384272][T17054] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  615.409584][T17054] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  615.421637][T17054] bond0 (unregistering): Released all slaves
[  615.444614][T17054] bond1 (unregistering): Released all slaves
[  615.499279][T20960] geneve0: entered promiscuous mode
[  615.528835][T20960] team0: Port device geneve0 added
[  615.552913][T20996] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  615.604730][T21006] loop3: detected capacity change from 0 to 32768
[  615.730275][T21006] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  615.877503][T21006] XFS (loop3): Ending clean mount
[  615.944961][ T6206] Bluetooth: hci0: command tx timeout
[  615.955281][T21006] XFS (loop3): Quotacheck needed: Please wait.
[  616.108723][T21006] XFS (loop3): Quotacheck: Done.
[  616.158606][ T6212] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  616.465206][   T30] audit: type=1326 audit(2000004753.490:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21043 comm="syz.4.6635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  616.561056][   T30] audit: type=1326 audit(2000004753.490:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21043 comm="syz.4.6635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  616.652315][T20947] chnl_net:caif_netlink_parms(): no params data found
[  616.662039][   T30] audit: type=1326 audit(2000004753.490:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21043 comm="syz.4.6635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  616.781914][   T30] audit: type=1326 audit(2000004753.490:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21043 comm="syz.4.6635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  616.876613][   T30] audit: type=1326 audit(2000004753.490:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21043 comm="syz.4.6635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  616.999546][   T30] audit: type=1326 audit(2000004753.490:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21043 comm="syz.4.6635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  617.112124][   T30] audit: type=1326 audit(2000004753.490:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21043 comm="syz.4.6635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  617.136137][T21067] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6642'.
[  617.209006][   T30] audit: type=1326 audit(2000004753.490:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21043 comm="syz.4.6635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f1ccfd9c799 code=0x7ffc0000
[  617.306866][T21078] loop4: detected capacity change from 0 to 2048
[  617.352994][T21078] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  617.438209][T21078] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  617.478780][T21088] netlink: 'syz.3.6649': attribute type 1 has an invalid length.
[  617.515779][ T6360] usb 3-1: new high-speed USB device number 120 using dummy_hcd
[  617.609880][T21091] loop3: detected capacity change from 0 to 8
[  617.688077][ T6360] usb 3-1: too many configurations: 9, using maximum allowed: 8
[  617.731349][ T6360] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  617.764248][ T6360] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  617.788237][ T6360] usb 3-1: config 0 interface 0 has no altsetting 0
[  617.803914][ T6360] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  617.850240][ T6360] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  617.866298][ T6360] usb 3-1: config 0 interface 0 has no altsetting 0
[  617.874269][ T6360] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  617.886095][ T6360] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  617.899903][ T6360] usb 3-1: config 0 interface 0 has no altsetting 0
[  617.907811][ T6360] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  617.927493][ T6360] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  617.948192][T20947] bridge0: port 1(bridge_slave_0) entered blocking state
[  617.972726][ T6360] usb 3-1: config 0 interface 0 has no altsetting 0
[  617.980922][T20947] bridge0: port 1(bridge_slave_0) entered disabled state
[  618.009054][ T6360] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  618.024430][T20947] bridge_slave_0: entered allmulticast mode
[  618.042670][ T6360] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  618.065205][T20947] bridge_slave_0: entered promiscuous mode
[  618.084205][ T6360] usb 3-1: config 0 interface 0 has no altsetting 0
[  618.093016][T20947] bridge0: port 2(bridge_slave_1) entered blocking state
[  618.100338][T20947] bridge0: port 2(bridge_slave_1) entered disabled state
[  618.112068][ T6360] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  618.126854][ T6360] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  618.144982][T20947] bridge_slave_1: entered allmulticast mode
[  618.159423][ T6206] Bluetooth: hci0: command tx timeout
[  618.167698][T20947] bridge_slave_1: entered promiscuous mode
[  618.176924][ T6360] usb 3-1: config 0 interface 0 has no altsetting 0
[  618.196885][ T6360] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  618.207862][ T6360] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  618.218998][T17054] hsr_slave_0: left promiscuous mode
[  618.219346][ T6360] usb 3-1: config 0 interface 0 has no altsetting 0
[  618.238559][ T6360] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  618.247800][T17054] hsr_slave_1: left promiscuous mode
[  618.248257][ T6360] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  618.265250][ T6360] usb 3-1: config 0 interface 0 has no altsetting 0
[  618.274073][ T6360] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  618.274763][T17054] batman_adv: batadv0: Removing interface: batadv_slave_0
[  618.283454][ T6360] usb 3-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  618.303000][ T6360] usb 3-1: Product: syz
[  618.309784][ T6360] usb 3-1: Manufacturer: syz
[  618.315297][ T6360] usb 3-1: SerialNumber: syz
[  618.326153][ T6360] usb 3-1: config 0 descriptor??
[  618.342177][T17054] batman_adv: batadv0: Removing interface: batadv_slave_1
[  618.347519][ T6360] yurex 3-1:0.0: USB YUREX device now attached to Yurex #0
[  618.475206][T21117] netlink: 'syz.3.6663': attribute type 1 has an invalid length.
[  618.491951][T21117] netlink: 'syz.3.6663': attribute type 3 has an invalid length.
[  618.503998][T21117] netlink: 224 bytes leftover after parsing attributes in process `syz.3.6663'.
[  618.581023][ T6240] usb 3-1: USB disconnect, device number 120
[  618.605541][ T6240] yurex 3-1:0.0: USB YUREX #0 now disconnected
[  618.978152][T17054] team0 (unregistering): Port device team_slave_1 removed
[  618.999199][T17054] team0 (unregistering): Port device team_slave_0 removed
[  619.334180][T21131] loop4: detected capacity change from 0 to 32768
[  619.346845][T20947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  619.393450][T21131] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  619.428485][T20947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  619.457740][T21131] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  619.725436][T21156] xt_hashlimit: size too large, truncated to 1048576
[  619.761255][T21131] XFS (loop4): Ending clean mount
[  619.798661][T21156] xt_hashlimit: max too large, truncated to 1048576
[  619.813392][T20947] team0: Port device team_slave_0 added
[  619.822737][T21160] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  619.968656][T20947] team0: Port device team_slave_1 added
[  620.023686][ T6208] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  620.179688][T20947] batman_adv: batadv0: Adding interface: batadv_slave_0
[  620.188888][T20947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  620.290341][T20947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  620.351492][T20947] batman_adv: batadv0: Adding interface: batadv_slave_1
[  620.379743][ T6206] Bluetooth: hci0: command tx timeout
[  620.414543][T20947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  620.544560][T20947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  620.607525][T21172] loop3: detected capacity change from 0 to 4096
[  620.647022][T21172] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  620.751119][T21172] ntfs3(loop3): ino=5, mi_enum_attr
[  620.783913][T21172] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  620.960234][T21172] ntfs3(loop3): ino=5, "/" mi_enum_attr
[  621.004630][T20947] hsr_slave_0: entered promiscuous mode
[  621.012052][T21172] ntfs3(loop3): ino=5, "/" mi_enum_attr
[  621.045973][T20947] hsr_slave_1: entered promiscuous mode
[  621.280962][T21170] loop1: detected capacity change from 0 to 32768
[  621.370855][T21170] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  621.622002][T21201] loop4: detected capacity change from 0 to 1024
[  621.643722][T21170] XFS (loop1): Ending clean mount
[  621.651779][T21201] EXT4-fs: Ignoring removed orlov option
[  621.712447][T21201] EXT4-fs (loop4): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  621.793915][T21201] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  621.946303][ T6203] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  622.076131][ T6208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  622.583099][T21235] loop3: detected capacity change from 0 to 256
[  622.605489][ T6206] Bluetooth: hci0: command tx timeout
[  622.660580][T21235] exfat: Deprecated parameter 'utf8'
[  622.697775][T21235] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  622.716302][T21241] netlink: 180 bytes leftover after parsing attributes in process `syz.1.6694'.
[  622.725755][T21241] netlink: 48 bytes leftover after parsing attributes in process `syz.1.6694'.
[  623.272151][T21261] comedi comedi3: dt2815: I/O port conflict (0x7,2)
[  623.311910][ T6360] IPVS: starting estimator thread 0...
[  623.449331][T21265] IPVS: using max 42 ests per chain, 100800 per kthread
[  623.472721][   T30] audit: type=1326 audit(2000004760.056:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.540219][   T30] audit: type=1326 audit(2000004760.056:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.565796][T20947] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  623.615582][T20947] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  623.631711][   T30] audit: type=1326 audit(2000004760.056:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.694789][T21278] loop2: detected capacity change from 0 to 512
[  623.699742][T20947] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  623.712541][   T30] audit: type=1326 audit(2000004760.056:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.767046][T20947] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  623.776176][ T6360] usb 4-1: new high-speed USB device number 113 using dummy_hcd
[  623.789100][T21278] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0022]
[  623.817434][    T9] usb 5-1: new full-speed USB device number 127 using dummy_hcd
[  623.832315][T21278] System zones: 1-12
[  623.836303][   T30] audit: type=1326 audit(2000004760.085:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.836350][   T30] audit: type=1326 audit(2000004760.085:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.886775][   T30] audit: type=1326 audit(2000004760.085:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.904037][T21278] EXT4-fs error (device loop2): dx_probe:791: inode #2: comm syz.2.6719: Directory hole found for htree index block 0
[  623.912959][   T30] audit: type=1326 audit(2000004760.085:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.945661][   T30] audit: type=1326 audit(2000004760.085:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21268 comm="syz.1.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f361479c799 code=0x7ffc0000
[  623.961226][ T6360] usb 4-1: Using ep0 maxpacket: 32
[  623.991043][ T6360] usb 4-1: config 0 has an invalid interface number: 35 but max is 0
[  623.991873][T21278] loop2: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[  624.003958][ T6360] usb 4-1: config 0 has no interface number 0
[  624.026406][    C0] EXT4-fs (loop2): initial error at time 2000004760: dx_probe:791: inode 2
[  624.036042][    C0] EXT4-fs (loop2): last error at time 2000004760: dx_probe:791: inode 2
[  624.052471][T21278] EXT4-fs (loop2): Remounting filesystem read-only
[  624.072176][    T9] usb 5-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  624.082892][ T6360] usb 4-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  624.095558][T21278] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -117
[  624.105983][    T9] usb 5-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3
[  624.119738][    T9] usb 5-1: Product: syz
[  624.124776][ T6360] usb 4-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  624.136225][T21278] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  624.145065][    T9] usb 5-1: Manufacturer: syz
[  624.149817][    T9] usb 5-1: SerialNumber: syz
[  624.159276][ T6360] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[  624.169563][T21278] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  624.192784][ T6360] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  624.202383][    T9] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
[  624.213390][ T6360] usb 4-1: Product: syz
[  624.218927][ T6360] usb 4-1: Manufacturer: syz
[  624.223716][ T6360] usb 4-1: SerialNumber: syz
[  624.242679][ T6360] usb 4-1: config 0 descriptor??
[  624.341904][T21278] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[  624.382458][ T6211] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  624.414275][T20947] 8021q: adding VLAN 0 to HW filter on device bond0
[  624.496787][T20947] 8021q: adding VLAN 0 to HW filter on device team0
[  624.503554][ T6360] radio-si470x 4-1:0.35: this is not a si470x device.
[  624.554714][T17050] bridge0: port 1(bridge_slave_0) entered blocking state
[  624.562000][T17050] bridge0: port 1(bridge_slave_0) entered forwarding state
[  624.634352][  T143] bridge0: port 2(bridge_slave_1) entered blocking state
[  624.642337][  T143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  624.652280][    T9] vp7045: USB control message 'in' went wrong.
[  624.672770][    T9] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  624.688641][    T9] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19)
[  624.720028][ T6360] radio-raremono 4-1:0.35: this is not Thanko's Raremono.
[  624.731189][    T9] usb 5-1: USB disconnect, device number 127
[  624.739509][T21305] loop1: detected capacity change from 0 to 256
[  624.777767][ T6360] usb 4-1: USB disconnect, device number 113
[  624.816614][T21305] FAT-fs (loop1): Directory bread(block 64) failed
[  624.845759][T21305] FAT-fs (loop1): Directory bread(block 65) failed
[  624.861801][T21305] FAT-fs (loop1): Directory bread(block 66) failed
[  624.888391][T21305] FAT-fs (loop1): Directory bread(block 67) failed
[  624.910769][T21305] FAT-fs (loop1): Directory bread(block 68) failed
[  624.935244][T21305] FAT-fs (loop1): Directory bread(block 69) failed
[  624.942686][T21305] FAT-fs (loop1): Directory bread(block 70) failed
[  624.950630][T21305] FAT-fs (loop1): Directory bread(block 71) failed
[  624.961921][T21305] FAT-fs (loop1): Directory bread(block 72) failed
[  624.971998][T21305] FAT-fs (loop1): Directory bread(block 73) failed
[  625.258294][ T6360] usb 3-1: new high-speed USB device number 121 using dummy_hcd
[  625.402072][T20947] 8021q: adding VLAN 0 to HW filter on device batadv0
[  625.409357][T21322] No control pipe specified
[  625.455255][ T6360] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  625.489566][ T6360] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  625.510153][ T6360] usb 3-1: Product: syz
[  625.523602][ T6360] usb 3-1: Manufacturer: syz
[  625.529092][ T6360] usb 3-1: SerialNumber: syz
[  625.559237][ T6360] usb 3-1: config 0 descriptor??
[  625.590544][ T6360] ch341 3-1:0.0: ch341-uart converter detected
[  625.883373][T21343] loop4: detected capacity change from 0 to 256
[  625.967383][T21343] FAT-fs (loop4): Directory bread(block 64) failed
[  625.986720][T21343] FAT-fs (loop4): Directory bread(block 65) failed
[  626.007088][T21343] FAT-fs (loop4): Directory bread(block 66) failed
[  626.025712][T21343] FAT-fs (loop4): Directory bread(block 67) failed
[  626.046579][T21343] FAT-fs (loop4): Directory bread(block 68) failed
[  626.054458][ T6360] usb 3-1: failed to send control message: -71
[  626.075802][ T6360] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  626.083001][T21343] FAT-fs (loop4): Directory bread(block 69) failed
[  626.109752][T21343] FAT-fs (loop4): Directory bread(block 70) failed
[  626.135982][ T6360] usb 3-1: USB disconnect, device number 121
[  626.151078][T21343] FAT-fs (loop4): Directory bread(block 71) failed
[  626.161962][ T6360] ch341 3-1:0.0: device disconnected
[  626.174631][T21343] FAT-fs (loop4): Directory bread(block 72) failed
[  626.186103][T21343] FAT-fs (loop4): Directory bread(block 73) failed
[  626.206530][T21349] overlayfs: workdir and upperdir must be separate subtrees
[  626.312143][T20947] veth0_vlan: entered promiscuous mode
[  626.375828][T20947] veth1_vlan: entered promiscuous mode
[  626.399808][T21355] vivid-002: disconnect
[  626.454911][T21353] vivid-002: reconnect
[  626.466205][T20947] veth0_macvtap: entered promiscuous mode
[  626.514554][T20947] veth1_macvtap: entered promiscuous mode
[  626.613463][T20947] batman_adv: batadv0: Interface activated: batadv_slave_0
[  626.676583][T20947] batman_adv: batadv0: Interface activated: batadv_slave_1
[  626.739379][T17045] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  626.774560][T17045] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  626.820776][T17045] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  626.853583][T17045] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  626.883947][T21368] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6752'.
[  627.249281][T17050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  627.288576][T17050] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  627.402047][T21386] 9p: Unknown access argument 	: -22
[  627.417481][  T143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  627.441456][  T143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  627.599700][    C1] sd 0:0:1:0: [sda] tag#4903 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  627.610244][    C1] sd 0:0:1:0: [sda] tag#4903 CDB: Read(10)
[  627.616101][    C1] sd 0:0:1:0: [sda] tag#4903 CDB[00]: 28 08 f9 9a 33 66 0a 01 f5 68 8f dd cd 98 d3 83
[  627.625980][    C1] sd 0:0:1:0: [sda] tag#4903 CDB[10]: 9b 21 1e 42 6d f2 ce 63 12 ea
[  628.214185][T21381] loop2: detected capacity change from 0 to 32768
[  628.274660][T21381] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  628.365812][T21388] loop3: detected capacity change from 0 to 32768
[  628.405771][T21381] XFS (loop2): Ending clean mount
[  628.407583][T21388] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6762 (21388)
[  628.464946][ T6211] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  628.556982][T21388] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  628.624425][T21388] BTRFS info (device loop3): using xxhash64 checksum algorithm
[  628.640268][T21392] loop1: detected capacity change from 0 to 32768
[  628.653979][T21388] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  628.995710][T21388] BTRFS info (device loop3): rebuilding free space tree
[  629.326733][T21388] BTRFS info (device loop3): disabling free space tree
[  629.334218][T21437] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6774'.
[  629.361665][T21388] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  629.390858][T21437] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6774'.
[  629.434342][T21388] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  629.529324][T21409] loop5: detected capacity change from 0 to 32768
[  629.582401][T21409] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.6769 (21409)
[  629.652723][T21388] BTRFS info (device loop3): setting nodatasum
[  629.681917][T21388] BTRFS info (device loop3): allowing degraded mounts
[  629.733038][T21388] BTRFS info (device loop3): turning on async discard
[  629.751532][T21388] BTRFS info (device loop3): enabling disk space caching
[  629.787512][T21409] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  629.804579][T21388] BTRFS info (device loop3): force clearing of disk cache
[  629.825610][T21398] loop4: detected capacity change from 0 to 32768
[  629.836144][T21409] BTRFS info (device loop5): using sha256 checksum algorithm
[  629.845554][T21388] BTRFS info (device loop3): force zlib compression, level 3
[  630.013565][ T6212] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  630.047504][T21409] BTRFS info (device loop5): enabling ssd optimizations
[  630.047534][T21409] BTRFS info (device loop5): turning on async discard
[  630.047549][T21409] BTRFS info (device loop5): enabling free space tree
[  630.082921][T21398] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  630.330080][T20947] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  630.392290][T21398] XFS (loop4): Ending clean mount
[  630.489987][T21478] loop1: detected capacity change from 0 to 4096
[  630.591382][T21480] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  630.696402][T21398] XFS (loop4): Quotacheck needed: Please wait.
[  630.967607][T21478] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  631.045986][T21478] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=12)
[  631.107800][T21478] Remounting filesystem read-only
[  631.113010][T21478] NILFS (loop1): error -5 truncating bmap (ino=12)
[  631.203610][ T6203] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  631.409849][T21496] loop2: detected capacity change from 0 to 512
[  631.459314][T21496] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  631.473265][T21398] XFS (loop4): Quotacheck: Done.
[  631.552831][T21496] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.6790: bg 0: block 104: invalid block bitmap
[  631.647245][T21496] loop2: lost filesystem error report for type 5 error -117
[  631.648544][T21496] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  631.660116][    C0] EXT4-fs (loop2): error count since last fsck: 1
[  631.660144][    C0] EXT4-fs (loop2): initial error at time 2000004767: ext4_validate_block_bitmap:432
[  631.660171][    C0] EXT4-fs (loop2): last error at time 2000004767: ext4_validate_block_bitmap:432
[  631.699959][T21496] loop2: lost filesystem error report for type 5 error -117
[  631.700418][T21496] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.6790: invalid indirect mapped block 1 (level 1)
[  631.761068][T21496] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  631.769028][ T6208] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  631.786629][T21496] EXT4-fs (loop2): 1 truncate cleaned up
[  631.802000][T21506] netlink: 'syz.3.6792': attribute type 2 has an invalid length.
[  631.845100][T21506] netlink: 'syz.3.6792': attribute type 11 has an invalid length.
[  631.880001][T21496] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  631.882341][T21506] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6792'.
[  631.949726][   T30] audit: type=1800 audit(2000004767.970:140): pid=21496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.6790" name="file1" dev="loop2" ino=18 res=0 errno=0
[  632.103932][ T6211] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  632.278394][T21514] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6797'.
[  632.366422][T21490] loop5: detected capacity change from 0 to 32768
[  632.481948][T21490] XFS (loop5): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  632.575298][T21528] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  632.694172][T21490] XFS (loop5): Ending clean mount
[  632.774135][T21535] new mount options do not match the existing superblock, will be ignored
[  632.933082][T21538] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6806'.
[  633.009297][T20947] XFS (loop5): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  633.240411][T21550] loop1: detected capacity change from 0 to 512
[  633.246957][T21548] loop2: detected capacity change from 0 to 2048
[  633.309897][T21548] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  633.333483][T21550] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  633.381967][T21550] EXT4-fs (loop1): orphan cleanup on readonly fs
[  633.422342][T21550] Quota error (device loop1): dq_insert_tree: Quota tree root isn't allocated!
[  633.460438][T21550] Quota error (device loop1): qtree_write_dquot: Error -5 occurred while creating quota
[  633.500906][T21550] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.6812: Failed to acquire dquot type 1
[  633.578982][T21550] loop1: lost filesystem error report for type 5 error -5
[  633.581959][T21550] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.6812: bg 0: block 40: padding at end of block bitmap is not set
[  633.582049][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  633.582066][    C1] EXT4-fs (loop1): initial error at time 2000004769: ext4_acquire_dquot:7001
[  633.582086][    C1] EXT4-fs (loop1): last error at time 2000004769: ext4_acquire_dquot:7001
[  633.640987][T21550] loop1: lost filesystem error report for type 5 error -117
[  633.643044][T21550] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  633.742483][T21550] loop1: lost filesystem error report for type 5 error -117
[  633.744420][T21550] EXT4-fs (loop1): 1 truncate cleaned up
[  633.815765][T21550] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  633.895397][T21563] dvmrp0: entered allmulticast mode
[  633.967885][T21550] EXT4-fs error (device loop1): ext4_get_link:106: inode #16: comm syz.1.6812: bad symlink.
[  634.075764][T21570] geneve2: entered promiscuous mode
[  634.145098][ T6203] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  634.182322][T21571] geneve3: entered promiscuous mode
[  634.254662][  T143] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  634.276079][  T143] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  634.327539][  T143] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  634.362007][T17056] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  634.604825][T21589] netlink: 'syz.4.6829': attribute type 1 has an invalid length.
[  634.715477][ T6240] usb 3-1: new high-speed USB device number 122 using dummy_hcd
[  634.880606][T21599] loop1: detected capacity change from 0 to 2048
[  634.900620][ T6240] usb 3-1: Using ep0 maxpacket: 8
[  634.916966][ T6240] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  634.937323][ T6240] usb 3-1: config 0 interface 0 has no altsetting 0
[  634.955538][ T6240] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  634.965156][T21599] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  634.978683][ T6240] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  634.988317][ T6240] usb 3-1: Product: syz
[  634.992978][ T6240] usb 3-1: Manufacturer: syz
[  634.998022][ T6240] usb 3-1: SerialNumber: syz
[  635.009866][ T6240] usb 3-1: config 0 descriptor??
[  635.036453][ T6240] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 found
[  635.139682][T21613] loop3: detected capacity change from 0 to 256
[  635.254370][ T6240] snd_usb_toneport 3-1:0.0: cannot get proper max packet size
[  635.294274][ T6240] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 now disconnected
[  635.343739][ T6240] snd_usb_toneport 3-1:0.0: probe with driver snd_usb_toneport failed with error -22
[  635.418311][T21623] lo: entered allmulticast mode
[  635.472367][T21623] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  635.503718][ T6240] usb 3-1: USB disconnect, device number 122
[  635.806588][   T30] audit: type=1326 audit(2000004771.590:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21641 comm="syz.3.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  635.890827][   T30] audit: type=1326 audit(2000004771.590:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21641 comm="syz.3.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  635.890876][   T30] audit: type=1326 audit(2000004771.627:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21641 comm="syz.3.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  635.891024][   T30] audit: type=1326 audit(2000004771.627:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21641 comm="syz.3.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  635.891067][   T30] audit: type=1326 audit(2000004771.627:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21641 comm="syz.3.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  636.409348][T21666] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  636.652152][T21683] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6868'.
[  636.700197][T21685] loop2: detected capacity change from 0 to 256
[  636.775019][T21685] FAT-fs (loop2): Directory bread(block 64) failed
[  636.785306][T21687] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6870'.
[  636.811642][T21685] FAT-fs (loop2): Directory bread(block 65) failed
[  636.833968][T21685] FAT-fs (loop2): Directory bread(block 66) failed
[  636.861476][T21685] FAT-fs (loop2): Directory bread(block 67) failed
[  636.901478][T21685] FAT-fs (loop2): Directory bread(block 68) failed
[  636.923497][T21685] FAT-fs (loop2): Directory bread(block 69) failed
[  636.950534][T21685] FAT-fs (loop2): Directory bread(block 70) failed
[  636.980616][T21685] FAT-fs (loop2): Directory bread(block 71) failed
[  637.016762][T21685] FAT-fs (loop2): Directory bread(block 72) failed
[  637.054759][T21685] FAT-fs (loop2): Directory bread(block 73) failed
[  637.204536][T21712] i2c i2c-0: Invalid block write size 255
[  637.428398][T21724] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  638.031997][T21756] loop4: detected capacity change from 0 to 512
[  638.034497][T21757] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6899'.
[  638.459065][T21766] loop2: detected capacity change from 0 to 4096
[  638.498370][T21766] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  638.637023][T21766] ntfs3(loop2): ino=19, mi_enum_attr
[  638.663992][T21766] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  638.841964][T21766] ntfs3(loop2): failed to convert "c46c" to cp860
[  638.849244][T21793] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6913'.
[  638.883241][T21766] ntfs3(loop2): ino=20, mi_enum_attr
[  639.501112][T21828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6928'.
[  639.686812][ T6240] usb 2-1: new high-speed USB device number 112 using dummy_hcd
[  639.832727][T21845] loop4: detected capacity change from 0 to 256
[  639.890637][ T6240] usb 2-1: too many configurations: 125, using maximum allowed: 8
[  639.905438][T21838] loop3: detected capacity change from 0 to 4096
[  639.920599][ T6240] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  639.974175][ T6240] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  640.020541][ T6240] usb 2-1: Product: syz
[  640.035763][T21845] FAT-fs (loop4): Directory bread(block 64) failed
[  640.044586][ T6240] usb 2-1: Manufacturer: syz
[  640.053166][T21838] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  640.061051][ T6240] usb 2-1: SerialNumber: syz
[  640.066438][T21845] FAT-fs (loop4): Directory bread(block 65) failed
[  640.078401][T21845] FAT-fs (loop4): Directory bread(block 66) failed
[  640.089525][T21845] FAT-fs (loop4): Directory bread(block 67) failed
[  640.123940][T21845] FAT-fs (loop4): Directory bread(block 68) failed
[  640.132682][ T6240] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  640.172308][ T6343] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  640.191776][T21845] FAT-fs (loop4): Directory bread(block 69) failed
[  640.225594][T21838] ntfs3(loop3): Failed to load $Extend (-22).
[  640.235072][T21845] FAT-fs (loop4): Directory bread(block 70) failed
[  640.258765][T21845] FAT-fs (loop4): Directory bread(block 71) failed
[  640.265804][T21838] ntfs3(loop3): Failed to initialize $Extend.
[  640.284761][T21845] FAT-fs (loop4): Directory bread(block 72) failed
[  640.318486][T21845] FAT-fs (loop4): Directory bread(block 73) failed
[  640.620465][T21869] loop5: detected capacity change from 0 to 256
[  640.663150][ T6417] usb 2-1: USB disconnect, device number 112
[  640.700020][T21869] FAT-fs (loop5): Directory bread(block 64) failed
[  640.719848][T21869] FAT-fs (loop5): Directory bread(block 65) failed
[  640.748058][T21869] FAT-fs (loop5): Directory bread(block 66) failed
[  640.779131][T21869] FAT-fs (loop5): Directory bread(block 67) failed
[  640.802189][T21869] FAT-fs (loop5): Directory bread(block 68) failed
[  640.829496][T21869] FAT-fs (loop5): Directory bread(block 69) failed
[  640.863036][T21869] FAT-fs (loop5): Directory bread(block 70) failed
[  640.890232][T21869] FAT-fs (loop5): Directory bread(block 71) failed
[  640.914956][T21869] FAT-fs (loop5): Directory bread(block 72) failed
[  640.943321][T21869] FAT-fs (loop5): Directory bread(block 73) failed
[  641.075344][   T30] audit: type=1800 audit(2000004776.510:146): pid=21869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.6941" name="file1" dev="loop5" ino=1048719 res=0 errno=0
[  641.332904][ T6343] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  641.356555][ T6343] ath9k_htc: Failed to initialize the device
[  641.362860][T21866] loop2: detected capacity change from 0 to 32768
[  641.394100][T21888] loop1: detected capacity change from 0 to 256
[  641.403378][ T6417] usb 2-1: ath9k_htc: USB layer deinitialized
[  641.416649][T21888] exfat: Deprecated parameter 'namecase'
[  641.432036][T21888] exfat: Deprecated parameter 'utf8'
[  641.464970][T21866] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  641.601895][T21906] netlink: 32 bytes leftover after parsing attributes in process `syz.3.6955'.
[  641.606895][T21888] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  641.612486][T21906] netlink: 32 bytes leftover after parsing attributes in process `syz.3.6955'.
[  641.676651][T21866] XFS (loop2): Ending clean mount
[  641.833575][ T6211] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  641.934747][T21917] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6961'.
[  642.964813][ T6360] kernel read not supported for file /2673/net/xfrm_stat (pid: 6360 comm: kworker/0:5)
[  642.978542][ T6417] kernel write not supported for file /2673/net/xfrm_stat (pid: 6417 comm: kworker/0:6)
[  643.215809][T21933] loop5: detected capacity change from 0 to 32768
[  643.230381][   T30] audit: type=1326 audit(2000004778.531:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21967 comm="syz.3.6986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  643.287794][   T30] audit: type=1326 audit(2000004778.531:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21967 comm="syz.3.6986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  643.296596][T21933] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  643.396802][   T30] audit: type=1326 audit(2000004778.559:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21967 comm="syz.3.6986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  643.437154][T21933] XFS (loop5): Ending clean mount
[  643.506997][T21933] XFS (loop5): Quotacheck needed: Please wait.
[  643.541672][   T30] audit: type=1326 audit(2000004778.559:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21967 comm="syz.3.6986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  643.617453][T21988] loop1: detected capacity change from 0 to 256
[  643.660104][T21992] loop4: detected capacity change from 0 to 1024
[  643.670738][   T30] audit: type=1326 audit(2000004778.559:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21967 comm="syz.3.6986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  643.737653][T21992] hfsplus: request for non-existent node 3 in B*Tree
[  643.740526][T21988] FAT-fs (loop1): Directory bread(block 64) failed
[  643.772970][T21992] hfsplus: request for non-existent node 3 in B*Tree
[  643.794298][T21988] FAT-fs (loop1): Directory bread(block 65) failed
[  643.794713][T21992] hfsplus: invalid length 28418 has been corrected to 255
[  643.817706][   T30] audit: type=1326 audit(2000004778.559:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21967 comm="syz.3.6986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  643.854629][T21988] FAT-fs (loop1): Directory bread(block 66) failed
[  643.892123][T21933] XFS (loop5): Quotacheck: Done.
[  643.893818][T21988] FAT-fs (loop1): Directory bread(block 67) failed
[  643.920928][   T30] audit: type=1326 audit(2000004778.559:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21967 comm="syz.3.6986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  643.924308][T21992] hfsplus: invalid length 28418 has been corrected to 255
[  643.947668][   T30] audit: type=1326 audit(2000004778.559:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21967 comm="syz.3.6986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  643.959987][T21988] FAT-fs (loop1): Directory bread(block 68) failed
[  644.012727][T21988] FAT-fs (loop1): Directory bread(block 69) failed
[  644.027001][T21988] FAT-fs (loop1): Directory bread(block 70) failed
[  644.068006][T22000] loop3: detected capacity change from 0 to 256
[  644.082548][T21988] FAT-fs (loop1): Directory bread(block 71) failed
[  644.100661][T20947] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  644.138447][T21988] FAT-fs (loop1): Directory bread(block 72) failed
[  644.171709][T21988] FAT-fs (loop1): Directory bread(block 73) failed
[  644.256144][T22004] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7001'.
[  644.324021][T22006] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7002'.
[  644.422712][ T6240] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  644.606027][ T6240] usb 5-1: Using ep0 maxpacket: 32
[  644.627390][ T6240] usb 5-1: config 2 has an invalid interface number: 88 but max is 0
[  644.662268][ T6240] usb 5-1: config 2 has no interface number 0
[  644.689127][T22016] netlink: 'syz.5.7000': attribute type 21 has an invalid length.
[  644.698768][ T6240] usb 5-1: config 2 interface 88 altsetting 7 endpoint 0x82 has invalid maxpacket 24929, setting to 1024
[  644.724333][T22016] netlink: 132 bytes leftover after parsing attributes in process `syz.5.7000'.
[  644.765356][ T6240] usb 5-1: config 2 interface 88 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 1024
[  644.776704][T22016] netlink: 'syz.5.7000': attribute type 1 has an invalid length.
[  644.784298][ T6240] usb 5-1: config 2 interface 88 has no altsetting 0
[  644.795072][ T6240] usb 5-1: New USB device found, idVendor=0557, idProduct=2009, bcdDevice=c7.1e
[  644.829887][T22022] openvswitch: netlink: Unexpected mask (mask=5000040, allowed=1010048)
[  644.838758][ T6240] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  644.860425][ T6240] usb 5-1: Product: syz
[  644.877623][ T6240] usb 5-1: Manufacturer: syz
[  644.892051][ T6240] usb 5-1: SerialNumber: syz
[  644.922680][T21992] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  645.138290][T22035] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7015'.
[  645.177946][ T6240] asix 5-1:2.88: probe with driver asix failed with error -71
[  645.229767][ T6240] usb 5-1: USB disconnect, device number 2
[  645.347781][T22044] mmap: syz.3.7019 (22044): VmData 37466112 exceed data ulimit 2840. Update limits or use boot option ignore_rlimit_data.
[  645.360861][T22039] bond2: option active_slave: mode dependency failed, not supported in mode balance-xor(2)
[  645.376664][T22039] bond2 (unregistering): Released all slaves
[  646.071108][T22076] loop3: detected capacity change from 0 to 512
[  646.155823][T22076] EXT4-fs (loop3): orphan cleanup on readonly fs
[  646.180272][T22076] EXT4-fs error (device loop3): ext4_quota_enable:7192: inode #15: comm syz.3.7035: iget: bad i_size value: 360287970189639690
[  646.201479][T22076] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  646.203392][T22076] EXT4-fs error (device loop3): ext4_quota_enable:7195: comm syz.3.7035: Bad quota inode: 15, type: 2
[  646.212671][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  646.212694][    C0] EXT4-fs (loop3): last error at time 2000004781: ext4_quota_enable:7192: inode 15
[  646.242968][T22076] loop3: lost filesystem error report for type 5 error -117
[  646.243380][T22076] EXT4-fs warning (device loop3): ext4_enable_quotas:7236: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  646.272138][T22076] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  646.280650][T22076] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  646.287449][T22082] loop1: detected capacity change from 0 to 1024
[  646.300386][T22076] EXT4-fs error (device loop3): ext4_lookup:1789: inode #2: comm syz.3.7035: deleted inode referenced: 12
[  646.382872][ T6212] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  646.824195][T22108] binder: 22107:22108 ioctl 400c620e 0 returned -14
[  647.092319][T22118] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  647.510514][T22101] loop5: detected capacity change from 0 to 32768
[  647.587644][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  647.587644][T22101] 
[  647.741039][T22101] ERROR: (device loop5): remounting filesystem as read-only
[  647.764006][T22101] xtLookup: xtSearch returned -5
[  647.783533][T22101] free_index: error reading directory table
[  647.813039][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  647.813039][T22101] 
[  647.840908][T22101] xtLookup: xtSearch returned -5
[  647.854329][T22154] xt_HMARK: spi-set and port-set can't be combined
[  647.863881][T22101] free_index: error reading directory table
[  647.886826][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  647.886826][T22101] 
[  647.914598][T22101] xtLookup: xtSearch returned -5
[  647.945620][T22101] free_index: error reading directory table
[  647.968177][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  647.968177][T22101] 
[  648.015656][T22101] xtLookup: xtSearch returned -5
[  648.028538][T22101] free_index: error reading directory table
[  648.035449][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  648.035449][T22101] 
[  648.050707][T22101] xtLookup: xtSearch returned -5
[  648.059281][T22101] free_index: error reading directory table
[  648.072588][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  648.072588][T22101] 
[  648.093041][T22101] xtLookup: xtSearch returned -5
[  648.098108][T22101] add_index: get/read_metapage failed!
[  648.103736][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  648.103736][T22101] 
[  648.136204][T22101] xtLookup: xtSearch returned -5
[  648.151162][T22101] free_index: error reading directory table
[  648.168397][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  648.168397][T22101] 
[  648.204805][   T30] audit: type=1326 audit(2000004783.180:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22164 comm="syz.3.7078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  648.208753][T22165] loop4: detected capacity change from 0 to 256
[  648.236263][T22101] xtLookup: xtSearch returned -5
[  648.246363][T22101] free_index: error reading directory table
[  648.281138][T22165] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  648.293970][T22101] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  648.293970][T22101] 
[  648.321692][   T30] audit: type=1326 audit(2000004783.180:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22164 comm="syz.3.7078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  648.357615][T22101] xtLookup: xtSearch returned -5
[  648.369783][T22101] free_index: error reading directory table
[  648.420711][   T30] audit: type=1326 audit(2000004783.217:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22164 comm="syz.3.7078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa6f575cfce code=0x7ffc0000
[  648.490683][   T30] audit: type=1326 audit(2000004783.217:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22164 comm="syz.3.7078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa6f575cfce code=0x7ffc0000
[  648.565371][   T30] audit: type=1326 audit(2000004783.217:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22164 comm="syz.3.7078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  648.578751][T22151] loop1: detected capacity change from 0 to 32768
[  648.623155][T22176] ipt_ECN: cannot use operation on non-tcp rule
[  648.811410][T22180] netlink: 32 bytes leftover after parsing attributes in process `syz.2.7087'.
[  648.843954][T22180] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7087'.
[  648.894576][T22178] loop3: detected capacity change from 0 to 4096
[  648.928108][T22178] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  649.427225][T22194] IPv6: Can't replace route, no match found
[  649.489553][T22196] netlink: 'syz.1.7094': attribute type 21 has an invalid length.
[  649.561484][T22182] loop4: detected capacity change from 0 to 32768
[  649.571890][ T6417] usb 6-1: new low-speed USB device number 2 using dummy_hcd
[  649.636610][T22182] JBD2: Ignoring recovery information on journal
[  649.759500][ T6417] usb 6-1: config 32 has 1 interface, different from the descriptor's value: 2
[  649.760907][T22182] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  649.781927][ T6417] usb 6-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 10
[  649.808439][ T6417] usb 6-1: config 32 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  649.839154][ T6417] usb 6-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  649.872197][ T6417] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  649.987633][T22182] ocfs2: Unmounting device (7,4) on (node local)
[  650.145156][ T6417] usb 6-1: string descriptor 0 read error: -71
[  650.268226][ T6417] usb 6-1: USB disconnect, device number 2
[  650.324097][ T6240] usb 2-1: new high-speed USB device number 113 using dummy_hcd
[  650.519864][ T6240] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  650.568435][ T6240] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  650.596767][ T6240] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  650.617717][ T6240] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  650.631314][ T6240] usb 2-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  650.641897][ T6240] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  650.661679][ T6240] usb 2-1: Product: syz
[  650.671025][ T6240] usb 2-1: Manufacturer: syz
[  650.702570][ T6240] usb 2-1: SerialNumber: syz
[  650.726414][ T6240] usb 2-1: config 0 descriptor??
[  650.984048][ T6240] adutux 2-1:0.0: Could not retrieve serial number
[  651.008084][ T6360] usb 3-1: new full-speed USB device number 123 using dummy_hcd
[  651.008816][ T6240] adutux 2-1:0.0: probe with driver adutux failed with error -5
[  651.202364][ T6360] usb 3-1: unable to get BOS descriptor or descriptor too short
[  651.223217][ T6360] usb 3-1: not running at top speed; connect to a high speed hub
[  651.237126][ T6360] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10
[  651.263448][ T6240] usb 2-1: USB disconnect, device number 113
[  651.270531][ T6360] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  651.289794][ T6360] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xC has invalid maxpacket 65535, setting to 64
[  651.303427][T22253] loop4: detected capacity change from 0 to 32768
[  651.311416][T22253] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7120 (22253)
[  651.324677][ T6360] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  651.335381][ T6360] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD4, changing to 0x84
[  651.351784][ T6360] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 22085, setting to 64
[  651.366601][T22253] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  651.380505][T22253] BTRFS info (device loop4): using sha256 checksum algorithm
[  651.394616][ T6360] usb 3-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84
[  651.404963][ T6360] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  651.413787][ T6360] usb 3-1: Product: syz
[  651.423774][ T6360] usb 3-1: Manufacturer: syz
[  651.429508][ T6360] usb 3-1: SerialNumber: syz
[  651.439671][ T6360] usb 3-1: config 0 descriptor??
[  651.445792][T22242] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  651.453908][T22242] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  651.466335][ T6360] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  651.519861][T22253] BTRFS info (device loop4): enabling ssd optimizations
[  651.531877][T22253] BTRFS info (device loop4): turning on async discard
[  651.551880][T22253] BTRFS info (device loop4): enabling free space tree
[  651.696926][ T6208] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  651.704877][ T6485] udevd[6485]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  651.750237][ T6360] usb 3-1: USB disconnect, device number 123
[  651.773072][T22283] loop5: detected capacity change from 0 to 512
[  651.785896][T22283] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  651.818072][T22283] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  651.856056][T22283] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  651.874539][T22283] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01d, mo2=0006]
[  651.987540][T22283] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  652.043768][T22295] i2c i2c-0: Invalid block write size 252
[  652.186091][T22283] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  652.247441][T22303] loop1: detected capacity change from 0 to 512
[  652.345753][T20947] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  652.352854][T22303] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  652.449089][T22303] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  652.517373][T22303] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.7136: Failed to acquire dquot type 1
[  652.552305][T22303] loop1: lost filesystem error report for type 5 error -5
[  652.553759][T22303] EXT4-fs (loop1): 1 truncate cleaned up
[  652.561476][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  652.561499][    C1] EXT4-fs (loop1): last error at time 2000004787: ext4_acquire_dquot:7001
[  652.619943][T22303] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  652.752346][T22303] ext4 filesystem being mounted at /1394/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  652.851956][T22303] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  652.874910][T22324] netlink: 76 bytes leftover after parsing attributes in process `syz.4.7144'.
[  652.901183][   T30] audit: type=1326 audit(2000004787.576:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22325 comm="syz.5.7145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f0779c799 code=0x7ffc0000
[  652.928040][T22303] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  652.992316][T22303] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.7136: Failed to acquire dquot type 1
[  653.084609][T22331] QAT: failed to copy from user.
[  653.203696][ T6203] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  653.318106][T22344] loop2: detected capacity change from 0 to 256
[  653.328885][T22339] loop4: detected capacity change from 0 to 2048
[  653.391198][T22339] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  653.510383][T22353] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  653.560547][T22339] NILFS error (device loop4): nilfs_check_folio: size of directory #2 is not a multiple of chunk size
[  653.635158][T22339] Remounting filesystem read-only
[  653.755740][ T6240] usb 4-1: new high-speed USB device number 114 using dummy_hcd
[  653.831432][T22363] loop4: detected capacity change from 0 to 512
[  653.879691][T22363] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  653.948302][ T6240] usb 4-1: Using ep0 maxpacket: 8
[  653.957680][ T6240] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[  653.961426][T22363] ext4 filesystem being mounted at /1366/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  653.980537][ T6240] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  653.989982][ T6240] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  653.999081][ T6240] usb 4-1: Product: syz
[  654.003720][ T6240] usb 4-1: Manufacturer: syz
[  654.008388][ T6240] usb 4-1: SerialNumber: syz
[  654.239193][T22363] EXT4-fs error (device loop4): ext4_generic_delete_entry:2666: inode #12: block 32: comm syz.4.7164: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0
[  654.279261][ T6240] usb 4-1: palm_os_3_probe - error -71 getting connection information
[  654.300909][ T6240] visor 4-1:1.0: probe with driver visor failed with error -71
[  654.342471][ T6240] usb 4-1: USB disconnect, device number 114
[  654.357374][T22379] SET target dimension over the limit!
[  654.395312][T22385] loop1: detected capacity change from 0 to 256
[  654.398042][T22363] EXT4-fs (loop4): Remounting filesystem read-only
[  654.497665][ T6208] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  654.554773][T22385] FAT-fs (loop1): Directory bread(block 64) failed
[  654.579886][T22385] FAT-fs (loop1): Directory bread(block 65) failed
[  654.609320][T22385] FAT-fs (loop1): Directory bread(block 66) failed
[  654.637340][T22385] FAT-fs (loop1): Directory bread(block 67) failed
[  654.662836][T22385] FAT-fs (loop1): Directory bread(block 68) failed
[  654.698565][T22385] FAT-fs (loop1): Directory bread(block 69) failed
[  654.727132][T22385] FAT-fs (loop1): Directory bread(block 70) failed
[  654.753760][T22385] FAT-fs (loop1): Directory bread(block 71) failed
[  654.775248][T22385] FAT-fs (loop1): Directory bread(block 72) failed
[  654.783648][T22385] FAT-fs (loop1): Directory bread(block 73) failed
[  654.837170][T22397] netlink: 'syz.4.7180': attribute type 10 has an invalid length.
[  654.883968][T22397] bridge0: port 2(bridge_slave_1) entered disabled state
[  654.948305][T22397] bridge0: port 2(bridge_slave_1) entered blocking state
[  654.955912][T22397] bridge0: port 2(bridge_slave_1) entered forwarding state
[  655.000792][T22397] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  655.152877][T22408] netlink: 5 bytes leftover after parsing attributes in process `syz.1.7184'.
[  655.182456][T22403] bond1: option arp_validate: mode dependency failed, not supported in mode balance-tlb(5)
[  655.237870][T22403] bond1 (unregistering): Released all slaves
[  655.290250][T22400] loop5: detected capacity change from 0 to 32768
[  655.318460][T22411] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7186'.
[  655.370748][T22400] (syz.5.7181,22400,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  655.441380][T22413] loop4: detected capacity change from 0 to 256
[  655.481740][T22400] (syz.5.7181,22400,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  655.531702][T22413] FAT-fs (loop4): Directory bread(block 64) failed
[  655.556160][T22413] FAT-fs (loop4): Directory bread(block 65) failed
[  655.587655][T22413] FAT-fs (loop4): Directory bread(block 66) failed
[  655.596767][T22400] JBD2: Ignoring recovery information on journal
[  655.622571][T22413] FAT-fs (loop4): Directory bread(block 67) failed
[  655.696062][T22413] FAT-fs (loop4): Directory bread(block 68) failed
[  655.738776][T22413] FAT-fs (loop4): Directory bread(block 69) failed
[  655.740773][T22422] loop1: detected capacity change from 0 to 512
[  655.782089][T22413] FAT-fs (loop4): Directory bread(block 70) failed
[  655.801989][T22422] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  655.814338][T22413] FAT-fs (loop4): Directory bread(block 71) failed
[  655.815652][T22400] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  655.821300][T22413] FAT-fs (loop4): Directory bread(block 72) failed
[  655.842070][T22413] FAT-fs (loop4): Directory bread(block 73) failed
[  655.894197][T22422] ext4 filesystem being mounted at /1405/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  655.970723][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  655.970741][   T30] audit: type=1800 audit(2000004790.448:164): pid=22413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.7187" name="cgroup.stat" dev="loop4" ino=1048726 res=0 errno=0
[  655.976484][T22422] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #15: comm syz.1.7191: corrupted xattr block 33: invalid header
[  656.115902][T22422] EXT4-fs (loop1): Remounting filesystem read-only
[  656.268914][ T6203] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  656.281863][T22435] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  656.435667][T22441] netlink: 'syz.4.7199': attribute type 10 has an invalid length.
[  656.449902][T20947] ocfs2: Unmounting device (7,5) on (node local)
[  656.462387][T22441] netlink: 152 bytes leftover after parsing attributes in process `syz.4.7199'.
[  656.580496][T22446] ieee802154 phy0 wpan0: encryption failed: -22
[  656.917952][T22462] netlink: 228 bytes leftover after parsing attributes in process `syz.3.7209'.
[  656.921836][T22463] netlink: 'syz.5.7197': attribute type 2 has an invalid length.
[  656.940700][T22463] netlink: 5356 bytes leftover after parsing attributes in process `syz.5.7197'.
[  657.105824][T22471] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7212'.
[  657.318022][T22479] loop3: detected capacity change from 0 to 256
[  657.341698][T22483] openvswitch: netlink: Key type 341 is out of range max 32
[  657.352546][T22479] exfat: Deprecated parameter 'utf8'
[  657.387139][T22479] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  657.530696][T22479] fuse: Bad value for 'fd'
[  657.723058][T22457] loop4: detected capacity change from 0 to 32768
[  657.750356][T22457] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7206 (22457)
[  657.787948][T22457] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  657.810354][T22457] BTRFS info (device loop4): using sha256 checksum algorithm
[  657.991591][T22457] BTRFS info (device loop4): enabling ssd optimizations
[  658.014507][T22457] BTRFS info (device loop4): turning on async discard
[  658.040655][T22523] loop2: detected capacity change from 0 to 64
[  658.062444][T22457] BTRFS info (device loop4): enabling free space tree
[  658.276774][ T6208] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  658.485411][T22534] loop2: detected capacity change from 0 to 4096
[  658.664486][T22543] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  659.075562][T22554] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  659.304300][ T6360] usb 2-1: new high-speed USB device number 114 using dummy_hcd
[  659.388812][T22564] loop5: detected capacity change from 0 to 1024
[  659.480784][ T6360] usb 2-1: config 0 has too many interfaces: 253, using maximum allowed: 32
[  659.497053][ T6360] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 253
[  659.530327][ T6360] usb 2-1: New USB device found, idVendor=055f, idProduct=c630, bcdDevice=b6.ac
[  659.580314][ T6360] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  659.599472][ T6360] usb 2-1: Product: syz
[  659.610109][ T6360] usb 2-1: Manufacturer: syz
[  659.622102][ T6360] usb 2-1: SerialNumber: syz
[  659.652850][ T6360] usb 2-1: config 0 descriptor??
[  659.661007][  T143] hfsplus: b-tree write err: -5, ino 25
[  659.673283][  T143] hfsplus: b-tree write err: -5, ino 4
[  659.704000][  T143] hfsplus: b-tree write err: -5, ino 2
[  659.713004][ T6360] gspca_main: sunplus-2.14.0 probing 055f:c630
[  659.868225][T22576] loop5: detected capacity change from 0 to 1764
[  659.946054][ T6166] usb 3-1: new high-speed USB device number 124 using dummy_hcd
[  660.116201][ T6166] usb 3-1: Using ep0 maxpacket: 8
[  660.129649][ T6166] usb 3-1: unable to get BOS descriptor or descriptor too short
[  660.159025][    T9] usb 2-1: USB disconnect, device number 114
[  660.169266][ T6166] usb 3-1: config 4 interface 0 has no altsetting 0
[  660.202548][ T6166] usb 3-1: string descriptor 0 read error: -22
[  660.221459][ T6166] usb 3-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  660.250991][ T6166] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3
[  660.302674][ T6166] usb 3-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  660.339506][ T6166] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  660.354082][T22585] netlink: 'syz.3.7259': attribute type 10 has an invalid length.
[  660.358983][ T6166] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  660.372138][T22585] macvlan0: entered promiscuous mode
[  660.373669][ T6166] usb 3-1: media controller created
[  660.380677][T22570] loop4: detected capacity change from 0 to 32768
[  660.389795][T22585] macvlan0: entered allmulticast mode
[  660.393998][ T6166] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  660.410539][T22585] veth1_vlan: entered allmulticast mode
[  660.422068][T22585] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  660.447388][T22570] ERROR: (device loop4): dbAlloc: the hint is outside the map
[  660.447388][T22570] 
[  660.478891][T22570] ialloc: diAlloc returned -5!
[  660.578662][ T6166] usb 3-1: DVB: registering adapter 1 frontend 0 (Zarlink ZL10353 DVB-T)...
[  660.622024][ T6166] dvbdev: dvb_create_media_entity: media entity 'Zarlink ZL10353 DVB-T' registered.
[  660.879184][ T6166] DVB: Unable to find symbol qt1010_attach()
[  661.069434][   T30] audit: type=1326 audit(2000004795.218:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22604 comm="syz.3.7269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  661.160871][   T30] audit: type=1326 audit(2000004795.256:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22604 comm="syz.3.7269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  661.232709][   T30] audit: type=1326 audit(2000004795.256:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22604 comm="syz.3.7269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  661.322150][ T6166] usb 3-1: USB disconnect, device number 124
[  661.347321][   T30] audit: type=1326 audit(2000004795.256:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22604 comm="syz.3.7269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6f579c799 code=0x7ffc0000
[  661.518154][T22614] loop3: detected capacity change from 0 to 4096
[  661.620477][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  661.666224][T22622] loop2: detected capacity change from 0 to 16
[  661.670094][T22614] ntfs3(loop3): ino=9, attr_set_size_ex
[  661.689177][T22622] erofs (device loop2): DAX unsupported by block device. Turning off DAX.
[  661.746191][T22622] erofs (device loop2): mounted with root inode @ nid 36.
[  661.809351][T22622] syz.2.7277: attempt to access beyond end of device
[  661.809351][T22622] loop2: rw=0, sector=131157, nr_sectors = 1 limit=16
[  661.880614][T22622] syz.2.7277: attempt to access beyond end of device
[  661.880614][T22622] loop2: rw=0, sector=46, nr_sectors = 1 limit=16
[  661.967380][T22622] erofs (device loop2): read error -5 @ 0 of nid 36
[  661.976142][T22606] loop4: detected capacity change from 0 to 32768
[  662.009014][T22606] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7268 (22606)
[  662.099092][T22606] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  662.123948][T22606] BTRFS info (device loop4): using sha256 checksum algorithm
[  662.323128][T22606] BTRFS info (device loop4): enabling ssd optimizations
[  662.369526][T22606] BTRFS info (device loop4): turning on async discard
[  662.408191][T22606] BTRFS info (device loop4): enabling free space tree
[  662.642776][  T118] blkno = 8ed2c, nblocks = 1
[  662.648389][  T118] ERROR: (device loop1): dbUpdatePMap: blocks are outside the map
[  662.648389][  T118] 
[  662.678349][ T6208] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  662.708646][  T118] ERROR: (device loop1): remounting filesystem as read-only
[  662.919394][ T6203] JFS: metapage_get_blocks failed
[  663.234585][T22670] set_capacity_and_notify: 1 callbacks suppressed
[  663.234603][T22670] loop4: detected capacity change from 0 to 2048
[  663.337003][T22670] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  663.359755][T22639] loop2: detected capacity change from 0 to 32768
[  663.413643][T22639] (syz.2.7279,22639,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  663.534225][T22639] (syz.2.7279,22639,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  663.620026][T22639] JBD2: Ignoring recovery information on journal
[  663.763114][T22639] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  663.961167][T22688] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  664.011002][T22693] loop1: detected capacity change from 0 to 1024
[  664.250651][ T6211] ocfs2: Unmounting device (7,2) on (node local)
[  664.284500][T22705] netlink: 'syz.3.7305': attribute type 10 has an invalid length.
[  664.682309][T22725] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7313'.
[  664.750708][T22720] bond1: option lacp_active: invalid value (9)
[  664.834834][T22720] bond1 (unregistering): Released all slaves
[  665.083837][T22747] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7322'.
[  665.095432][T22746] loop4: detected capacity change from 0 to 8
[  665.231771][T22751] loop1: detected capacity change from 0 to 64
[  665.271073][T22751] hfs: unable to locate alternate MDB
[  665.297568][T22751] hfs: continuing without an alternate MDB
[  665.347390][T22759] netlink: 'syz.5.7330': attribute type 3 has an invalid length.
[  665.460105][T17052] hfs: new node 0 already hashed?
[  665.480035][T17052] ------------[ cut here ]------------
[  665.485752][T17052] 1
[  665.485788][T17052] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create+0x461/0x4f0, CPU#0: kworker/u8:11/17052
[  665.501357][T17052] Modules linked in:
[  665.506030][T17052] CPU: 0 UID: 0 PID: 17052 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) 
[  665.516609][T17052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  665.527489][T17052] Workqueue: writeback wb_workfn (flush-7:1)
[  665.534091][T17052] RIP: 0010:hfs_bnode_create+0x461/0x4f0
[  665.540556][T17052] Code: e8 8b 89 ee e8 a0 cd 78 fe e9 cf fc ff ff e8 46 bf 17 ff 4c 89 ef e8 fe 33 08 09 48 c7 c7 c0 12 e8 8b 89 ee e8 80 cd 78 fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff
[  665.560766][T17052] RSP: 0018:ffffc9000de96cc0 EFLAGS: 00010246
[  665.566944][T17052] RAX: 000000000000001f RBX: ffff88804a16c000 RCX: 3e823bd98d668b00
[  665.575471][T17052] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  665.584425][T17052] RBP: 0000000000000000 R08: ffffc9000de96a47 R09: 1ffff92001bd2d48
[  665.592724][T17052] R10: dffffc0000000000 R11: fffff52001bd2d49 R12: 0000000000000000
[  665.601003][T17052] R13: ffff88804a16c0d8 R14: ffff88802b4fb300 R15: dffffc0000000000
[  665.609279][T17052] FS:  0000000000000000(0000) GS:ffff888125435000(0000) knlGS:0000000000000000
[  665.618597][T17052] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  665.625494][T17052] CR2: 00007f1b01c17dac CR3: 000000000e54a000 CR4: 00000000003526f0
[  665.633928][T17052] Call Trace:
[  665.637352][T17052]  <TASK>
[  665.640425][T17052]  ? do_raw_spin_unlock+0xf5/0x210
[  665.646367][T17052]  hfs_bmap_alloc+0x5c1/0x650
[  665.651514][T17052]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[  665.657167][T17052]  hfs_btree_inc_height+0x100/0xad0
[  665.662445][T17052]  ? __pfx_folio_mark_accessed+0x10/0x10
[  665.668492][T17052]  ? __pfx_hfs_btree_inc_height+0x10/0x10
[  665.674428][T17052]  ? do_raw_spin_unlock+0xf5/0x210
[  665.679648][T17052]  hfs_brec_insert+0x7ef/0xc90
[  665.684717][T17052]  ? __pfx_hfs_brec_insert+0x10/0x10
[  665.690206][T17052]  __hfs_ext_write_extent+0x2a1/0x470
[  665.695774][T17052]  hfs_ext_write_extent+0x17e/0x210
[  665.701237][T17052]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[  665.706994][T17052]  hfs_write_inode+0x117/0x960
[  665.712240][T17052]  ? __pfx_hfs_write_inode+0x10/0x10
[  665.717940][T17052]  ? __pfx_hfs_writepages+0x10/0x10
[  665.723229][T17052]  ? do_raw_spin_unlock+0xf5/0x210
[  665.728369][T17052]  __writeback_single_inode+0x75a/0x11a0
[  665.734937][T17052]  writeback_sb_inodes+0x992/0x1a20
[  665.740376][T17052]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  665.746367][T17052]  ? do_raw_spin_lock+0x12b/0x2f0
[  665.752162][T17052]  ? rcu_is_watching+0x15/0xb0
[  665.756969][T17052]  wb_writeback+0x456/0xb70
[  665.761547][T17052]  ? queue_io+0x211/0x4a0
[  665.765890][T17052]  ? __pfx_wb_writeback+0x10/0x10
[  665.770961][T17052]  ? do_raw_spin_lock+0x12b/0x2f0
[  665.776075][T17052]  wb_workfn+0x414/0xf50
[  665.780353][T17052]  ? look_up_lock_class+0x57/0x110
[  665.785592][T17052]  ? __pfx_wb_workfn+0x10/0x10
[  665.790595][T17052]  ? do_raw_spin_lock+0x12b/0x2f0
[  665.795812][T17052]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  665.801216][T17052]  ? process_one_work+0x8bb/0x1780
[  665.806452][T17052]  process_one_work+0x9ab/0x1780
[  665.811432][T17052]  ? __pfx_process_one_work+0x10/0x10
[  665.817060][T17052]  ? do_raw_spin_lock+0x12b/0x2f0
[  665.822220][T17052]  worker_thread+0xba8/0x11e0
[  665.827221][T17052]  kthread+0x388/0x470
[  665.831593][T17052]  ? __pfx_worker_thread+0x10/0x10
[  665.836782][T17052]  ? __pfx_kthread+0x10/0x10
[  665.841633][T17052]  ret_from_fork+0x51e/0xb90
[  665.846490][T17052]  ? __pfx_ret_from_fork+0x10/0x10
[  665.852189][T17052]  ? __switch_to+0xc7d/0x1450
[  665.856928][T17052]  ? __pfx_kthread+0x10/0x10
[  665.861627][T17052]  ret_from_fork_asm+0x1a/0x30
[  665.866846][T17052]  </TASK>
[  665.869956][T17052] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  665.877331][T17052] CPU: 0 UID: 0 PID: 17052 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) 
[  665.887482][T17052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  665.897881][T17052] Workqueue: writeback wb_workfn (flush-7:1)
[  665.903892][T17052] Call Trace:
[  665.907279][T17052]  <TASK>
[  665.910223][T17052]  vpanic+0x56c/0xa60
[  665.914217][T17052]  ? __pfx__printk+0x10/0x10
[  665.919011][T17052]  ? __pfx_vpanic+0x10/0x10
[  665.923969][T17052]  ? is_bpf_text_address+0x292/0x2b0
[  665.929285][T17052]  ? is_bpf_text_address+0x26/0x2b0
[  665.934513][T17052]  panic+0xc5/0xd0
[  665.938261][T17052]  ? __pfx_panic+0x10/0x10
[  665.942897][T17052]  ? ret_from_fork_asm+0x1a/0x30
[  665.947844][T17052]  __warn+0x315/0x4f0
[  665.951912][T17052]  ? hfs_bnode_create+0x461/0x4f0
[  665.956934][T17052]  ? hfs_bnode_create+0x461/0x4f0
[  665.961957][T17052]  __report_bug+0x29a/0x540
[  665.966549][T17052]  ? preempt_schedule_thunk+0x16/0x30
[  665.971912][T17052]  ? hfs_bnode_create+0x461/0x4f0
[  665.976957][T17052]  ? __pfx___report_bug+0x10/0x10
[  665.981970][T17052]  ? __wake_up_klogd+0xe6/0x120
[  665.986817][T17052]  ? vprintk_emit+0x4eb/0x560
[  665.991497][T17052]  ? __pfx_vprintk_emit+0x10/0x10
[  665.996524][T17052]  ? hfs_bnode_create+0x461/0x4f0
[  666.001658][T17052]  report_bug+0x16a/0x220
[  666.005989][T17052]  ? hfs_bnode_create+0x461/0x4f0
[  666.011021][T17052]  ? hfs_bnode_create+0x463/0x4f0
[  666.016034][T17052]  handle_bug+0x9c/0x200
[  666.020267][T17052]  exc_invalid_op+0x1a/0x50
[  666.024765][T17052]  asm_exc_invalid_op+0x1a/0x20
[  666.029618][T17052] RIP: 0010:hfs_bnode_create+0x461/0x4f0
[  666.035363][T17052] Code: e8 8b 89 ee e8 a0 cd 78 fe e9 cf fc ff ff e8 46 bf 17 ff 4c 89 ef e8 fe 33 08 09 48 c7 c7 c0 12 e8 8b 89 ee e8 80 cd 78 fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff
[  666.054982][T17052] RSP: 0018:ffffc9000de96cc0 EFLAGS: 00010246
[  666.061170][T17052] RAX: 000000000000001f RBX: ffff88804a16c000 RCX: 3e823bd98d668b00
[  666.069153][T17052] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  666.077157][T17052] RBP: 0000000000000000 R08: ffffc9000de96a47 R09: 1ffff92001bd2d48
[  666.085131][T17052] R10: dffffc0000000000 R11: fffff52001bd2d49 R12: 0000000000000000
[  666.093104][T17052] R13: ffff88804a16c0d8 R14: ffff88802b4fb300 R15: dffffc0000000000
[  666.101100][T17052]  ? do_raw_spin_unlock+0xf5/0x210
[  666.106225][T17052]  hfs_bmap_alloc+0x5c1/0x650
[  666.110987][T17052]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[  666.116185][T17052]  hfs_btree_inc_height+0x100/0xad0
[  666.121382][T17052]  ? __pfx_folio_mark_accessed+0x10/0x10
[  666.127008][T17052]  ? __pfx_hfs_btree_inc_height+0x10/0x10
[  666.132809][T17052]  ? do_raw_spin_unlock+0xf5/0x210
[  666.138016][T17052]  hfs_brec_insert+0x7ef/0xc90
[  666.142870][T17052]  ? __pfx_hfs_brec_insert+0x10/0x10
[  666.148532][T17052]  __hfs_ext_write_extent+0x2a1/0x470
[  666.154414][T17052]  hfs_ext_write_extent+0x17e/0x210
[  666.159758][T17052]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[  666.165593][T17052]  hfs_write_inode+0x117/0x960
[  666.170696][T17052]  ? __pfx_hfs_write_inode+0x10/0x10
[  666.176084][T17052]  ? __pfx_hfs_writepages+0x10/0x10
[  666.181282][T17052]  ? do_raw_spin_unlock+0xf5/0x210
[  666.186734][T17052]  __writeback_single_inode+0x75a/0x11a0
[  666.192367][T17052]  writeback_sb_inodes+0x992/0x1a20
[  666.197749][T17052]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  666.203455][T17052]  ? do_raw_spin_lock+0x12b/0x2f0
[  666.208496][T17052]  ? rcu_is_watching+0x15/0xb0
[  666.213251][T17052]  wb_writeback+0x456/0xb70
[  666.217746][T17052]  ? queue_io+0x211/0x4a0
[  666.222092][T17052]  ? __pfx_wb_writeback+0x10/0x10
[  666.227470][T17052]  ? do_raw_spin_lock+0x12b/0x2f0
[  666.232532][T17052]  wb_workfn+0x414/0xf50
[  666.236868][T17052]  ? look_up_lock_class+0x57/0x110
[  666.241977][T17052]  ? __pfx_wb_workfn+0x10/0x10
[  666.246735][T17052]  ? do_raw_spin_lock+0x12b/0x2f0
[  666.251869][T17052]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  666.257245][T17052]  ? process_one_work+0x8bb/0x1780
[  666.262348][T17052]  process_one_work+0x9ab/0x1780
[  666.267557][T17052]  ? __pfx_process_one_work+0x10/0x10
[  666.272918][T17052]  ? do_raw_spin_lock+0x12b/0x2f0
[  666.278036][T17052]  worker_thread+0xba8/0x11e0
[  666.282993][T17052]  kthread+0x388/0x470
[  666.287074][T17052]  ? __pfx_worker_thread+0x10/0x10
[  666.292179][T17052]  ? __pfx_kthread+0x10/0x10
[  666.296761][T17052]  ret_from_fork+0x51e/0xb90
[  666.301345][T17052]  ? __pfx_ret_from_fork+0x10/0x10
[  666.306447][T17052]  ? __switch_to+0xc7d/0x1450
[  666.311123][T17052]  ? __pfx_kthread+0x10/0x10
[  666.315701][T17052]  ret_from_fork_asm+0x1a/0x30
[  666.320564][T17052]  </TASK>
[  666.324494][T17052] Kernel Offset: disabled
[  666.328811][T17052] Rebooting in 86400 seconds..