last executing test programs:

9m31.437912354s ago: executing program 1 (id=8634):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x14, 0x4, 0x8, 0x6, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r0, &(0x7f0000000280), &(0x7f0000000a80)=@tcp, 0x1}, 0x20)

9m31.165140219s ago: executing program 1 (id=8638):
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1)

9m30.917582571s ago: executing program 1 (id=8643):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x1010051, &(0x7f0000000800)={[{@errors_remount}, {@noload}, {@noblock_validity}, {@dioread_lock}, {@nouid32}, {@data_writeback}]}, 0x1, 0x546, &(0x7f0000000180)="$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")
syz_mount_image$fuse(&(0x7f0000000140), &(0x7f0000000700)='./file2\x00', 0x10000, &(0x7f0000000940)={{}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}, 0x1, 0x0, 0x0)

9m29.947130104s ago: executing program 1 (id=8655):
syz_mount_image$jfs(&(0x7f0000000240), &(0x7f0000000040)='./file1\x00', 0x3010846, &(0x7f00000002c0)=ANY=[@ANYBLOB='iocharset=koi8-u,discard=0x0000000000000004,iocharset=iso8859-9,discard,iocharset=koi8-ru,errors=remount-ro,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c6e6f646973636172642c696f636861727365743d69736f383835392d332c005d245603bb5b494e31b3e32f7a4536f7389f889613f9bebfad670d9c5b69025afa2ed8a0983033c21a066b886aded885e0be89c3a88225b41e870229bff872d594d5a79ca2a73ae38725a8a4251c102dd8a175ce9f42f974c650e3f4d216c776b32d707119113d826189e7cc3f2b74b5191cce0209a7c007d15932d18b9ea2f49c0c2b7395277707"], 0x24, 0x62d7, &(0x7f0000021240)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x40, &(0x7f0000000200)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

9m28.376876714s ago: executing program 1 (id=8680):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x14, 0x3, 0x2, 0x5, 0x0, 0x0, {0x0, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0x800)

9m27.524878124s ago: executing program 1 (id=8691):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000080)=@mangle={'mangle\x00', 0x44, 0x6, 0xc80, 0x98, 0x9b0, 0x9b0, 0x0, 0x138, 0xbe8, 0xbe8, 0xbe8, 0xbe8, 0xbe8, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'veth0_to_hsr\x00', 'veth1_virt_wifi\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'nr0\x00'}, 0x0, 0x850, 0x878, 0x0, {}, [@common=@unspec=@u32={{0x7e0}, {[{[{0x8}, {0x6, 0x1}, {0x9, 0x3}, {0x9, 0x1}, {}, {0x11}, {0x400, 0x2}, {0x7, 0x2}, {0x1, 0x1}, {0x4, 0x3}, {0x10, 0x1}], [{0x7fff, 0x9}, {0x4, 0x3}, {0xd, 0xb}, {0x6, 0x5}, {0x0, 0xfffff228}, {0x6, 0x8}, {0xfffffffc, 0xe000}, {0x5, 0x6}, {0x948, 0x37}, {0x101, 0x7}, {0x2, 0x6}], 0x0, 0xc}, {[{0x2, 0x2}, {0x9}, {0x8, 0x1}, {0x80, 0x2}, {0x4, 0x2}, {0x2, 0x2}, {0x2, 0x2}, {0x80000001, 0x2}, {0xe7e, 0x1}, {0x7fffffff, 0x3}, {0x7, 0x2}], [{0x373d, 0x7}, {0x7fffffff, 0xa}, {0x5, 0xfffff000}, {0xc771, 0x10}, {0x81, 0x3}, {0x3}, {0x3, 0x9}, {0x8, 0x10001}, {0x3, 0x7}, {0xecb, 0x5d2}, {0x9, 0x1}], 0x1, 0x9}, {[{0x4, 0x2}, {0x4, 0x2}, {0x8000, 0x2}, {0x7, 0x2}, {0x3ff, 0x1}, {0x8000, 0x3}, {0x3ff, 0x2}, {0x6, 0x2}, {0xc2, 0x2}, {0x1, 0x1}, {0x6e898bc6, 0x2}], [{0xd, 0x2}, {0x10000, 0x6bd}, {0x8000, 0x2}, {0x4, 0x2}, {0x6, 0x5}, {0x0, 0x2}, {0xd9, 0x9}, {0x7f, 0x5410}, {0x7, 0x9}, {0x2eb, 0x1}, {0x2, 0x5}], 0x8, 0x7}, {[{0x5, 0x2}, {0x3}, {0x6, 0x1}, {0xaa, 0x1}, {0xaeb6}, {0x7}, {0x81, 0x2}, {0x80000001, 0x1}, {0x7}, {0x100, 0x1}, {0x64}], [{0x0, 0x6}, {0x3, 0x55a}, {0x709d, 0x328c}, {0x1, 0x4}, {0x8000, 0x6}, {0x471f, 0x8171}, {0x1, 0x1}, {0x0, 0x400}, {0x7fff, 0x5}, {0x7fff, 0x4}, {0x800, 0x3c69}], 0x9, 0x8}, {[{0x13, 0x1}, {0x4, 0x3}, {0x81, 0x2}, {0x2, 0x1}, {0x7e}, {0x82c7, 0x2}, {0x3ff, 0x3}, {0x0, 0x3}, {0x2, 0x2}, {0x8000, 0x1}, {0x1000, 0x1}], [{0x800, 0x5}, {0x0, 0x7ff}, {0x31cec858, 0xc73}, {0x2, 0x3}, {0x9, 0x100}, {0x6, 0x7}, {0x101, 0x101}, {0xfffffff7, 0xfffffffc}, {0x8d2d2a6, 0x8000}, {0x3e43}, {0x7fff, 0x4}], 0x7, 0x6}, {[{0x1, 0x1}, {0xc, 0x1}, {0x1, 0x2}, {0x9, 0x3}, {0x2}, {0xffffffff, 0x2}, {0x7}, {0x5, 0x2}, {0x7}, {0xfee}, {0x6, 0x1}], [{0x80, 0x21a2}, {0x2, 0x4}, {0x8000, 0x8}, {0x3, 0x4}, {0x1, 0x8}, {0x7, 0x2b1}, {0x5, 0x9}, {0x3, 0x1}, {0x4, 0x7ff}, {0x9, 0x48c2}, {0x10001, 0x5}], 0x7, 0x3}, {[{0x1, 0x1}, {0x3, 0x3}, {0x84, 0x3}, {0x400, 0x3}, {0x6e31, 0x1}, {0x2, 0x3}, {0x9, 0x2}, {0x4, 0x2}, {0x8, 0x1}, {0x9, 0x3}, {0x3914}], [{0x5, 0x2f35}, {0x3, 0x8}, {0x6, 0x6870}, {0xfffffff9}, {0x8e3, 0x200}, {0x6, 0xbfd5}, {0x7, 0x226}, {0x0, 0xfffffffd}, {0xffffffa5, 0x3d}, {0x3, 0x6}, {0x5, 0x3}], 0x3, 0x1}, {[{0x5, 0x2}, {0x85f, 0x2}, {0x5}, {0xfff, 0x3}, {0x80000001, 0x3}, {0xb58, 0x3}, {0x10, 0x1}, {0x53, 0x3}, {0x40}, {0x5c, 0x3}, {0x474f, 0x2}], [{0x3, 0x183}, {0x8, 0x5efb5271}, {0x4, 0x1ff}, {0x9, 0x5}, {0x3, 0x1}, {0x10, 0x1}, {0x0, 0x4}, {0x2000006, 0x4}, {0x0, 0x5}, {0xe79f, 0x2}, {0x10, 0x2}], 0x5, 0x6}, {[{0x21b1, 0x1}, {0x200}, {}, {0x159d2f81, 0x3}, {0x8}, {0x80}, {0x296, 0x3}, {0x7, 0x1ddaba58ff2d2f41}, {}, {0xe, 0x1}, {0x4, 0x3}], [{0xfffffe18, 0xffffffff}, {0x80, 0x8}, {0x7, 0x6}, {0x85, 0x7}, {0x3, 0x2acb}, {0x3, 0x3}, {0x0, 0xffffffff}, {0x1, 0x8}, {0x1f, 0x1000}, {0x3, 0x4}], 0x5, 0x3}, {[{0xeca5, 0x3}, {0x1, 0x3}, {0x9, 0x3}, {0x2, 0x2}, {0xaf27, 0x3}, {0x9}, {0xa9e, 0x1}, {0x8c96}, {0x101}, {0x4}, {0x7, 0x3}], [{0x4, 0xdcc}, {0x1000, 0x8}, {0x8, 0x4}, {0x4, 0x4}, {0xc8, 0x9}, {0x8, 0x3}, {0xcbf, 0x24}, {0x7, 0xf5}, {0x7, 0x4}, {0x2, 0x5}, {0x3329, 0xcf7}], 0x4, 0x9}, {[{0xfffffff9, 0x3}, {0x2, 0x2}, {0x1}, {0x6}, {0x7, 0x1}, {0x8001, 0x2}, {0x4, 0x2}, {0xffff, 0x2}, {0xfffffffe, 0x2}, {0x2, 0x1}, {0xf, 0x2}], [{0xfffffff9, 0xff}, {0xbe03, 0x6}, {0xee0, 0x7fffffff}, {0x9, 0x8}, {0x1, 0xffffffff}, {0x2, 0x9}, {0xfffffffe, 0x11400}, {0x7, 0x1}, {0x5a6, 0x4}, {0x1, 0x3}, {0x7}], 0xb, 0xb}], 0x8}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@loopback, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0xce0)

9m27.158449264s ago: executing program 32 (id=8691):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000080)=@mangle={'mangle\x00', 0x44, 0x6, 0xc80, 0x98, 0x9b0, 0x9b0, 0x0, 0x138, 0xbe8, 0xbe8, 0xbe8, 0xbe8, 0xbe8, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'veth0_to_hsr\x00', 'veth1_virt_wifi\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'nr0\x00'}, 0x0, 0x850, 0x878, 0x0, {}, [@common=@unspec=@u32={{0x7e0}, {[{[{0x8}, {0x6, 0x1}, {0x9, 0x3}, {0x9, 0x1}, {}, {0x11}, {0x400, 0x2}, {0x7, 0x2}, {0x1, 0x1}, {0x4, 0x3}, {0x10, 0x1}], [{0x7fff, 0x9}, {0x4, 0x3}, {0xd, 0xb}, {0x6, 0x5}, {0x0, 0xfffff228}, {0x6, 0x8}, {0xfffffffc, 0xe000}, {0x5, 0x6}, {0x948, 0x37}, {0x101, 0x7}, {0x2, 0x6}], 0x0, 0xc}, {[{0x2, 0x2}, {0x9}, {0x8, 0x1}, {0x80, 0x2}, {0x4, 0x2}, {0x2, 0x2}, {0x2, 0x2}, {0x80000001, 0x2}, {0xe7e, 0x1}, {0x7fffffff, 0x3}, {0x7, 0x2}], [{0x373d, 0x7}, {0x7fffffff, 0xa}, {0x5, 0xfffff000}, {0xc771, 0x10}, {0x81, 0x3}, {0x3}, {0x3, 0x9}, {0x8, 0x10001}, {0x3, 0x7}, {0xecb, 0x5d2}, {0x9, 0x1}], 0x1, 0x9}, {[{0x4, 0x2}, {0x4, 0x2}, {0x8000, 0x2}, {0x7, 0x2}, {0x3ff, 0x1}, {0x8000, 0x3}, {0x3ff, 0x2}, {0x6, 0x2}, {0xc2, 0x2}, {0x1, 0x1}, {0x6e898bc6, 0x2}], [{0xd, 0x2}, {0x10000, 0x6bd}, {0x8000, 0x2}, {0x4, 0x2}, {0x6, 0x5}, {0x0, 0x2}, {0xd9, 0x9}, {0x7f, 0x5410}, {0x7, 0x9}, {0x2eb, 0x1}, {0x2, 0x5}], 0x8, 0x7}, {[{0x5, 0x2}, {0x3}, {0x6, 0x1}, {0xaa, 0x1}, {0xaeb6}, {0x7}, {0x81, 0x2}, {0x80000001, 0x1}, {0x7}, {0x100, 0x1}, {0x64}], [{0x0, 0x6}, {0x3, 0x55a}, {0x709d, 0x328c}, {0x1, 0x4}, {0x8000, 0x6}, {0x471f, 0x8171}, {0x1, 0x1}, {0x0, 0x400}, {0x7fff, 0x5}, {0x7fff, 0x4}, {0x800, 0x3c69}], 0x9, 0x8}, {[{0x13, 0x1}, {0x4, 0x3}, {0x81, 0x2}, {0x2, 0x1}, {0x7e}, {0x82c7, 0x2}, {0x3ff, 0x3}, {0x0, 0x3}, {0x2, 0x2}, {0x8000, 0x1}, {0x1000, 0x1}], [{0x800, 0x5}, {0x0, 0x7ff}, {0x31cec858, 0xc73}, {0x2, 0x3}, {0x9, 0x100}, {0x6, 0x7}, {0x101, 0x101}, {0xfffffff7, 0xfffffffc}, {0x8d2d2a6, 0x8000}, {0x3e43}, {0x7fff, 0x4}], 0x7, 0x6}, {[{0x1, 0x1}, {0xc, 0x1}, {0x1, 0x2}, {0x9, 0x3}, {0x2}, {0xffffffff, 0x2}, {0x7}, {0x5, 0x2}, {0x7}, {0xfee}, {0x6, 0x1}], [{0x80, 0x21a2}, {0x2, 0x4}, {0x8000, 0x8}, {0x3, 0x4}, {0x1, 0x8}, {0x7, 0x2b1}, {0x5, 0x9}, {0x3, 0x1}, {0x4, 0x7ff}, {0x9, 0x48c2}, {0x10001, 0x5}], 0x7, 0x3}, {[{0x1, 0x1}, {0x3, 0x3}, {0x84, 0x3}, {0x400, 0x3}, {0x6e31, 0x1}, {0x2, 0x3}, {0x9, 0x2}, {0x4, 0x2}, {0x8, 0x1}, {0x9, 0x3}, {0x3914}], [{0x5, 0x2f35}, {0x3, 0x8}, {0x6, 0x6870}, {0xfffffff9}, {0x8e3, 0x200}, {0x6, 0xbfd5}, {0x7, 0x226}, {0x0, 0xfffffffd}, {0xffffffa5, 0x3d}, {0x3, 0x6}, {0x5, 0x3}], 0x3, 0x1}, {[{0x5, 0x2}, {0x85f, 0x2}, {0x5}, {0xfff, 0x3}, {0x80000001, 0x3}, {0xb58, 0x3}, {0x10, 0x1}, {0x53, 0x3}, {0x40}, {0x5c, 0x3}, {0x474f, 0x2}], [{0x3, 0x183}, {0x8, 0x5efb5271}, {0x4, 0x1ff}, {0x9, 0x5}, {0x3, 0x1}, {0x10, 0x1}, {0x0, 0x4}, {0x2000006, 0x4}, {0x0, 0x5}, {0xe79f, 0x2}, {0x10, 0x2}], 0x5, 0x6}, {[{0x21b1, 0x1}, {0x200}, {}, {0x159d2f81, 0x3}, {0x8}, {0x80}, {0x296, 0x3}, {0x7, 0x1ddaba58ff2d2f41}, {}, {0xe, 0x1}, {0x4, 0x3}], [{0xfffffe18, 0xffffffff}, {0x80, 0x8}, {0x7, 0x6}, {0x85, 0x7}, {0x3, 0x2acb}, {0x3, 0x3}, {0x0, 0xffffffff}, {0x1, 0x8}, {0x1f, 0x1000}, {0x3, 0x4}], 0x5, 0x3}, {[{0xeca5, 0x3}, {0x1, 0x3}, {0x9, 0x3}, {0x2, 0x2}, {0xaf27, 0x3}, {0x9}, {0xa9e, 0x1}, {0x8c96}, {0x101}, {0x4}, {0x7, 0x3}], [{0x4, 0xdcc}, {0x1000, 0x8}, {0x8, 0x4}, {0x4, 0x4}, {0xc8, 0x9}, {0x8, 0x3}, {0xcbf, 0x24}, {0x7, 0xf5}, {0x7, 0x4}, {0x2, 0x5}, {0x3329, 0xcf7}], 0x4, 0x9}, {[{0xfffffff9, 0x3}, {0x2, 0x2}, {0x1}, {0x6}, {0x7, 0x1}, {0x8001, 0x2}, {0x4, 0x2}, {0xffff, 0x2}, {0xfffffffe, 0x2}, {0x2, 0x1}, {0xf, 0x2}], [{0xfffffff9, 0xff}, {0xbe03, 0x6}, {0xee0, 0x7fffffff}, {0x9, 0x8}, {0x1, 0xffffffff}, {0x2, 0x9}, {0xfffffffe, 0x11400}, {0x7, 0x1}, {0x5a6, 0x4}, {0x1, 0x3}, {0x7}], 0xb, 0xb}], 0x8}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@loopback, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0xce0)

7m0.513544812s ago: executing program 3 (id=10317):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002a80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0xfffd}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0x8, 0x3, "e4edf2b7"}, @NFTA_MATCH_REV={0x8}, @NFTA_MATCH_NAME={0xe, 0x1, 'connlabel\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_COMPAT={0xc, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2f}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0xe0}}, 0x0)

7m0.095205322s ago: executing program 3 (id=10323):
setuid(0xee01)
semctl$GETNCNT(0x0, 0x3, 0xe, 0x0)

6m59.74464483s ago: executing program 3 (id=10329):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}}, 0x0)

6m59.346015948s ago: executing program 3 (id=10334):
syz_mount_image$erofs(&(0x7f0000000140), &(0x7f0000000000)='./file2\x00', 0x300000c, &(0x7f0000000080)=ANY=[], 0xfe, 0x26e, &(0x7f0000000640)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

6m58.958265875s ago: executing program 3 (id=10341):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x2, 0x2)
ioctl$VIDIOC_G_PARM(r0, 0xc0cc5615, &(0x7f0000000140)={0x4, @output={0x1000, 0x1, {0x1, 0x5}, 0x7, 0x3}})

6m58.533253705s ago: executing program 3 (id=10347):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=@ipv4_newrule={0x24, 0x1e, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x1}, [@FRA_DST={0x8, 0x1, @empty}]}, 0x24}}, 0x0)

6m57.803719168s ago: executing program 33 (id=10347):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=@ipv4_newrule={0x24, 0x1e, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x1}, [@FRA_DST={0x8, 0x1, @empty}]}, 0x24}}, 0x0)

3m10.967233904s ago: executing program 5 (id=13251):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x114, 0x2e, 0x1, 0x0, 0x25dfdbfb, "", [@nested={0x104, 0x117, 0x0, 0x1, [@typed={0x5, 0x18, 0x0, 0x0, @u64=0xfac06}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @empty}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82", @typed={0x4, 0xeb}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

3m10.64792258s ago: executing program 5 (id=13254):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x42000)

3m10.328320015s ago: executing program 5 (id=13257):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_REMOVE(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000040)={0x268, 0x1, 0x5, 0x3, 0x0, 0x0, {0x3, 0x0, 0xa}, [{{0x254, 0x1, {{0x1, 0x4}, 0x2, 0x0, 0x1, 0x401, 0xb, 'syz0\x00', "000000006400000000000000dec1fc8c5a3f96ee7f72d2458a199fccb7a5a37c", "57565ac1ebcc91999bd2611bbe317f5f14885cc9ebd5ed7819ee2702b4aadcd4", [{0xfffc, 0xb, {0x3, 0x2}}, {0x1, 0x2, {0x3, 0x8001}}, {0x9, 0x1, {0x1, 0x6}}, {0x8, 0x1, {0x2, 0x8001}}, {0x199, 0x200, {0x0, 0x5}}, {0x0, 0xc000, {0x3, 0xa11d}}, {0x3ff, 0xd569, {0x0, 0xbae}}, {0x6, 0x3, {0x1, 0x7}}, {0x2, 0xa57c, {0x2, 0x3}}, {0x9, 0x1ff, {0x0, 0xffffffff}}, {0xd2, 0x100, {0x0, 0x9a}}, {0x0, 0x2, {0x1, 0x4}}, {0x8, 0x1, {0x1, 0x2}}, {0x9, 0x1, {0x3, 0x6}}, {0x4, 0x46, {0x0, 0x4}}, {0xa345, 0x101, {0x1, 0x2e}}, {0x1, 0x9f59, {0x2, 0x3}}, {0x55b, 0x5, {0x2, 0x9}}, {0x1, 0x1, {0x2, 0x532}}, {0x7fff, 0x9, {0x2, 0x80000000}}, {0x2, 0x7, {0x2, 0x2e}}, {0x3, 0xfffa, {0x1, 0x4}}, {0xff, 0x5, {0x3, 0x1}}, {0xfffb, 0xffff, {0x1, 0x8}}, {0x3ff, 0x3, {0x0, 0x487837ff}}, {0x6, 0xfd7b, {0x2, 0x2d5}}, {0x1168, 0x7fff, {0x2, 0x7fff}}, {0x21fa, 0x3, {0x3, 0x10001}}, {0x2, 0x148e, {0x1, 0x4d}}, {0x40, 0x8, {0x2, 0x401}}, {0x7, 0x3ff, {0x0, 0x3}}, {0x2, 0x6182, {0x1, 0xc1}}, {0x5, 0x2, {0x3, 0x5}}, {0x1, 0xc0b, {0x3, 0x7}}, {0x3ff, 0x400, {0x2, 0x8}}, {0x8, 0x8, {0x3, 0x4}}, {0x3, 0x9, {0x1, 0xfffffffa}}, {0x31, 0x3, {0x0, 0x1}}, {0xf5a, 0x2, {0x2, 0x7}}, {0x84, 0xcf5, {0x2, 0x8000}}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0x8040}, 0x8800)

3m10.048702561s ago: executing program 5 (id=13260):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x2000004, &(0x7f0000000500)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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")
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x80, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

3m9.603025825s ago: executing program 5 (id=13263):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
ioctl$FBIOBLANK(r0, 0x4611, 0x2)

3m8.020940393s ago: executing program 5 (id=13273):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000180)={0x2, 0x8, 0x2, {0x1, @sliced={0xffff, [0x9, 0xc, 0x2800, 0x4, 0xd3a6, 0x800, 0x3, 0x1, 0x7, 0x1, 0x5, 0x7ff, 0x4, 0x1, 0x6, 0x70b, 0x2, 0x3, 0x5, 0x6, 0xf, 0xc, 0x2, 0x5, 0x4, 0x10, 0x93d, 0x3, 0x5, 0x9, 0x9, 0x0, 0x3, 0x2f24, 0x6, 0x8, 0x3, 0x7b, 0x3, 0x0, 0x2, 0x6, 0x7b, 0xd, 0xa, 0xe0, 0x20, 0xc], 0x7}}, 0x3ff})

3m7.32209189s ago: executing program 34 (id=13273):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000180)={0x2, 0x8, 0x2, {0x1, @sliced={0xffff, [0x9, 0xc, 0x2800, 0x4, 0xd3a6, 0x800, 0x3, 0x1, 0x7, 0x1, 0x5, 0x7ff, 0x4, 0x1, 0x6, 0x70b, 0x2, 0x3, 0x5, 0x6, 0xf, 0xc, 0x2, 0x5, 0x4, 0x10, 0x93d, 0x3, 0x5, 0x9, 0x9, 0x0, 0x3, 0x2f24, 0x6, 0x8, 0x3, 0x7b, 0x3, 0x0, 0x2, 0x6, 0x7b, 0xd, 0xa, 0xe0, 0x20, 0xc], 0x7}}, 0x3ff})

4.952668413s ago: executing program 6 (id=15570):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='source', &(0x7f0000000100)='::,:\x00\ai\x88\x04\xc4\xa4\xe3\xce\xcc\x1a\xc7\xc4\xa5\xa0M\x02Z)\bok\xd4\x14y\xfe^\a\xe0\xadK;y\xef\xa5A\x1a\x9dfM\xd2\xe3C\xd6\xf1F\x04\xea\'0\xbfN<\xf4\xf6\x93\xb1\xe2o\xef\xa8[\x1a\x01\x00\x01\x00\x00\x00\x00\x00a\x14\xf6\x1dX\x9el\xb1\xd0\xca\x04\x15R\x04K\x18\xc1\xdb\x8fim\x80#\xf4b~\xce\x92\xfa\x816Pb\xb3\xc8\xee\xe0\xea\xf6E\x80\xcdpdV\x8a\x8e\x84\xaf\x94pi\xbf\x9fh\x0f_kp\x12\xdd\r\xdf*\xbbz\x9e\xf0v\x15R\xf1\xc5\xa8p\xf2\xc1\xe4\xa9!\xb5\\\\(ZpX_\xc8C\x04\xa0\x02\xe3s\x81\x82\xf4/0J\x99\x9b\x1c:\xf6\x98Q\x92#\xccx\xa4\xd2\xdax\x04\x91]\x94', 0x0)

4.66131914s ago: executing program 6 (id=15575):
capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x0, 0x10ffff, 0xfffffffd})
open_tree(0xffffffffffffffff, 0x0, 0x89901)

4.40000716s ago: executing program 6 (id=15581):
r0 = syz_usb_connect(0x2, 0x2d, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="9fcf"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

3.102120631s ago: executing program 8 (id=15593):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000002600)=ANY=[@ANYBLOB='quota,iocharset=macgreek,discard,iocharset=iso8859-4,discard,integrity,quota,iocharset=default,uid=', @ANYRESHEX=0xee01, @ANYBLOB="2c001f1d02192b82c1d77d5275a9dd011c79b65ddfeffff26d30b4e45e4ff5d2a3c8f687494e2782c60db0fe3c08f1fd0244f2b3988f6a3c9f05e62bd27131d2e1354fc8865886482d784608f35db7a23eefc1665bb78934469d2a73d3fb7bf425ada37085aa46365837765a72f50552ce8f69886588138e3b027f009c59356fac135f289d895427a12d3f87b72351c22f0b418fba3067e7363e488de8e5c39f01bbb7e7b106977504e87fc87a886769f8eba6de3294c2076360fcb9ee4058f16c292335f4ea4af20729aff7de5cbcf16e575540ffb2ac590551ecdecf048219491837307887a332528baad28ae02a33b060"], 0x24, 0x61b6, &(0x7f00000075c0)="$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")
mknod$loop(&(0x7f0000001b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, 0x1)

2.501329448s ago: executing program 4 (id=15598):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f000098d000/0x2000)=nil, 0x2000, 0xc)

2.500580091s ago: executing program 7 (id=15610):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000000)={0xf0f027, 0x2})

2.38966402s ago: executing program 6 (id=15599):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r0, 0x84, 0x11, &(0x7f00000002c0)="1a00000002000000", 0x8)

2.369926949s ago: executing program 2 (id=15600):
r0 = syz_io_uring_setup(0x315b, &(0x7f0000000080)={0x0, 0xcfcb, 0x1042, 0x4, 0x354}, &(0x7f0000000100), &(0x7f0000000300), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r0, 0xc, 0x0, 0x0)

2.128636629s ago: executing program 2 (id=15601):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000400)=@nat={'nat\x00', 0x670, 0x5, 0x3b0, 0x178, 0x0, 0xfeffffff, 0x178, 0xa8, 0x318, 0x318, 0xffffffff, 0x318, 0x318, 0x5, 0x0, {[{{@ip={@broadcast, @remote, 0x0, 0xffffffff, 'geneve1\x00', 'geneve0\x00', {0xff}}, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x7ffffffe, {0x12, @dev={0xac, 0x14, 0x14, 0x3f}, @loopback, @port=0x4e24, @gre_key=0x6}}}}, {{@uncond, 0x0, 0x70, 0xd0, 0x0, {0x0, 0x7}}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x2, [0x1, 0x5, 0x5, 0x4, 0x4, 0x1], 0x6, 0x1}, {0x3, [0x1, 0x0, 0x0, 0xc, 0x2, 0x5], 0x4, 0x1}}}}, {{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00', 0x0, 0xd, 0x0, 0x1}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0xd00, {0x0, @loopback, @local, @gre_key, @gre_key}}}}, {{@ip={@private, @local, 0x0, 0x0, 'veth1_virt_wifi\x00', 'pim6reg0\x00', {}, {0xff}, 0x84, 0x2}, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @local, @loopback, @icmp_id=0x67, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x410)

2.121752033s ago: executing program 6 (id=15602):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000001440)={{0x12, 0x1, 0x310, 0x3e, 0xbb, 0xaf, 0x10, 0x5ac, 0x12a8, 0xd4d0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0xc, 0x5, 0x80, 0x73}}]}}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, &(0x7f00000001c0)={0x2c, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x448}}, 0x0, 0x0, 0x0}, 0x0)

2.121582787s ago: executing program 7 (id=15603):
r0 = socket(0x2, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'bond_slave_1\x00', &(0x7f0000000080)=@ethtool_sset_info={0x37, 0x9, 0xfffffffffffffffb}})

1.816973653s ago: executing program 7 (id=15605):
syz_mount_image$hfs(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x200000, &(0x7f0000000040)={[{}, {@dir_umask={'dir_umask', 0x3d, 0x7}}, {@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@codepage={'codepage', 0x3d, 'maciceland'}}, {}, {@uid}, {@file_umask={'file_umask', 0x3d, 0x2b4}}, {@creator={'creator', 0x3d, "8c10b081"}}, {@file_umask={'file_umask', 0x3d, 0x2}}]}, 0x2, 0x36d, &(0x7f0000000500)="$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")
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))

1.791012757s ago: executing program 0 (id=15606):
r0 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0xffffffffffffffff, 0x4)

1.78711583s ago: executing program 2 (id=15607):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/pid_for_children\x00')
setns(r0, 0x0)

1.621333625s ago: executing program 8 (id=15608):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff)

1.550255907s ago: executing program 7 (id=15609):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
readv(r0, &(0x7f0000000540)=[{0x0}, {&(0x7f00000004c0)=""/37, 0x25}, {&(0x7f0000000500)=""/51, 0x33}], 0x3)

1.495126984s ago: executing program 2 (id=15611):
r0 = syz_open_dev$dri(&(0x7f0000000540), 0x1fa4, 0x0)
ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, 0x0)

1.441312438s ago: executing program 0 (id=15612):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)={0x30, 0x42, 0x1, 0xffffffff, 0x25dfdbfd, {0x2}, [@nested={0x4, 0x38}, @nested={0x10, 0x1, 0x0, 0x1, [@typed={0xc, 0xc8, 0x0, 0x0, @u64=0x2}]}, @nested={0x8, 0x4, 0x0, 0x1, [@generic="e1ab5582"]}]}, 0x30}, 0x1, 0x0, 0x0, 0x8800}, 0x4040)

1.300242611s ago: executing program 7 (id=15613):
r0 = syz_open_dev$dri(&(0x7f0000000400), 0x0, 0x8640)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f00000002c0)={0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})

1.24943255s ago: executing program 4 (id=15614):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x14, 0x35, 0x9, 0x70bd27, 0x0, {0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x6804}, 0x80000)

1.068942356s ago: executing program 2 (id=15615):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="0218000014000000000000000000000005000500000000000a00ffff00000000fe8000000000000000000000000000aa0000000000000000080012000000000003000000000000002600000000000000000000000000000002000002000000000000000000000000fc010000000000000000000000000000050006006c0000000a"], 0xa0}}, 0x0)

1.068715823s ago: executing program 0 (id=15616):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r0, 0x0, 0x0)

1.004384037s ago: executing program 7 (id=15617):
r0 = syz_mount_image$btrfs(&(0x7f0000000200), &(0x7f0000005600)='./file0\x00', 0x800, &(0x7f0000000240), 0x0, 0x559e, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000480)={0x2, 0xffffffffffffc66b, @status={[0x214e1e0c, 0x7, 0x40, 0x3ff, 0x80]}, [0x9773, 0xb, 0x3, 0x40, 0x4, 0x8, 0x7f, 0x4, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1, 0xd, 0x9, 0x0, 0x86f, 0x0, 0x2, 0xfffffffffffffffc, 0x1, 0x1, 0x9, 0x7, 0x1, 0x100000001, 0x8, 0x4, 0xb, 0x1, 0x200, 0x10, 0x7fffffffffffffff, 0xffffffff, 0x5, 0x6, 0x8, 0x9, 0x3ff, 0x3, 0x7fffffff, 0x9, 0x4, 0xc216, 0x0, 0x2, 0x400, 0x1, 0x4, 0x0, 0x7fff, 0xfa, 0xff, 0xe, 0x599f, 0x639e, 0x5, 0x4, 0xa, 0xa, 0x7, 0xc, 0x9, 0x14, 0xe6b]})

996.631969ms ago: executing program 8 (id=15618):
r0 = fanotify_init(0xf00, 0x0)
fanotify_mark(r0, 0x115, 0x5000003a, 0xffffffffffffffff, 0x0)

948.797727ms ago: executing program 4 (id=15619):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x8003}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x98, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x70, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x38, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_XOR={0x4}, @NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x10c}}, 0x0)

791.196206ms ago: executing program 0 (id=15620):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x50a32, 0x823}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_USE_IFADDR={0x5}, @IFLA_BR_MCAST_QUERIER={0x5}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4044064}, 0x40000)

790.451335ms ago: executing program 2 (id=15621):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="1802000000000000000000000f000000850000002800000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300007f000000850000007b00000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000500)="0000000000000000000051229dc9", 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

636.864829ms ago: executing program 8 (id=15622):
r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x8, 0x0, 0x0, 0x0)

553.080142ms ago: executing program 4 (id=15623):
r0 = add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)={0x2, 0x0, @c}, 0x29, 0xfffffffffffffffc)
keyctl$revoke(0x3, r0)

407.275641ms ago: executing program 0 (id=15624):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)

354.452529ms ago: executing program 4 (id=15625):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x16c, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x4e21, 0x2, 0x2, 0x0, 0x0, 0x6c, 0x0, 0xee00}, {@in6=@private1, 0xfe, 0x32}, @in6=@ipv4={'\x00', '\xff\xff', @remote}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x5, 0x543}, {0x7, 0x7fffffffffffffff}, {0x0, 0x0, 0x2000000}, 0x70bd2d, 0x3500, 0xa, 0x4, 0x0, 0x50}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "210466d38547aa140db90100000000c54222cb7a"}}, @encap={0x1c, 0x4, {0x2, 0x4e24, 0x4e24, @in=@remote}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0)

336.785868ms ago: executing program 8 (id=15626):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000000c80)="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", 0x223}], 0x1)

88.541441ms ago: executing program 4 (id=15627):
syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='shortad,partition=00000000000000000005,noadinicb,uid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=', @ANYRESDEC=0x0, @ANYBLOB=',volume=0000000000000006,\x00\x00\x00\x00\x00'], 0x1, 0x489, &(0x7f0000000580)="$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")
mknod$loop(&(0x7f0000000b40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffc000, 0x1)

25.284828ms ago: executing program 0 (id=15628):
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2000c12, &(0x7f0000000100)={[{@check_relaxed}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}, {@nocompress}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@overriderock}, {@map_acorn}, {@check_strict}, {}, {@block={'block', 0x3d, 0x400}}, {@check_strict}, {@overriderock}, {@nocompress}]}, 0x1, 0xa15, &(0x7f00000001c0)="$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")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000000), 0x0)

25.165405ms ago: executing program 6 (id=15629):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000001f80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4050}}, {{&(0x7f0000001980)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000000100)=[@rights={{0x14, 0x1, 0x1, [r0]}}], 0x18, 0x90}}], 0x2, 0x50)

0s ago: executing program 8 (id=15630):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_buf(r0, 0x6, 0xe, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 0x0001fe89, chksum : 0xc232f927, utbl_chksum : 0xe619d30d)
[ 1567.592012][ T7566] ea_get: invalid extended attribute
[ 1567.679760][ T7566] ffff888056e22f78: 04 00 00 00                                      ....
[ 1568.022430][ T7601] netlink: 'syz.0.14136': attribute type 7 has an invalid length.
[ 1568.051220][ T7601] netlink: 'syz.0.14136': attribute type 8 has an invalid length.
[ 1568.397128][ T7611] loop6: detected capacity change from 0 to 256
[ 1568.499863][ T7587] loop4: detected capacity change from 0 to 32768
[ 1568.520194][ T7587] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.14129 (7587)
[ 1568.537953][ T7611] FAT-fs (loop6): Directory bread(block 64) failed
[ 1568.558772][ T7611] FAT-fs (loop6): Directory bread(block 65) failed
[ 1568.578684][ T7587] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1568.579879][ T7611] FAT-fs (loop6): Directory bread(block 66) failed
[ 1568.621466][ T7587] BTRFS info (device loop4): using sha256 checksum algorithm
[ 1568.648613][ T7611] FAT-fs (loop6): Directory bread(block 67) failed
[ 1568.687148][ T7611] FAT-fs (loop6): Directory bread(block 68) failed
[ 1568.709868][ T7611] FAT-fs (loop6): Directory bread(block 69) failed
[ 1568.752910][ T7611] FAT-fs (loop6): Directory bread(block 70) failed
[ 1568.770977][T23125] usb 3-1: new high-speed USB device number 84 using dummy_hcd
[ 1568.792166][ T7611] FAT-fs (loop6): Directory bread(block 71) failed
[ 1568.813838][ T7587] BTRFS info (device loop4): enabling ssd optimizations
[ 1568.835065][ T7611] FAT-fs (loop6): Directory bread(block 72) failed
[ 1568.863646][ T7587] BTRFS info (device loop4): turning on async discard
[ 1568.877793][ T7611] FAT-fs (loop6): Directory bread(block 73) failed
[ 1568.896224][ T7587] BTRFS info (device loop4): enabling free space tree
[ 1568.941937][T23125] usb 3-1: Using ep0 maxpacket: 16
[ 1568.962732][T23125] usb 3-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[ 1568.990501][T23125] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1569.010577][T23125] usb 3-1: Product: syz
[ 1569.016791][T23125] usb 3-1: Manufacturer: syz
[ 1569.023061][T23125] usb 3-1: SerialNumber: syz
[ 1569.065080][T23125] usb 3-1: config 0 descriptor??
[ 1569.126101][   T30] audit: type=1800 audit(2000001373.220:345): pid=7611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.14142" name="bus" dev="loop6" ino=1048810 res=0 errno=0
[ 1569.182749][ T5801] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1569.218511][ T7637] netdevsim netdevsim8 netdevsim0: entered promiscuous mode
[ 1569.241113][ T7637] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1569.313169][T23125] speedtch 3-1:0.0: speedtch_bind: data interface not found!
[ 1569.339669][T23125] speedtch 3-1:0.0: usbatm_usb_probe: bind failed: -19!
[ 1569.598527][T23125] usb 3-1: USB disconnect, device number 84
[ 1569.840497][T23325] usb 5-1: new high-speed USB device number 80 using dummy_hcd
[ 1570.010772][T23325] usb 5-1: Using ep0 maxpacket: 32
[ 1570.033230][T23325] usb 5-1: config index 0 descriptor too short (expected 539, got 27)
[ 1570.059141][T23325] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 33275, setting to 1024
[ 1570.101238][T23325] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 1570.122001][T23325] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1570.152148][T23325] usb 5-1: Product: syz
[ 1570.173108][T23325] usb 5-1: Manufacturer: syz
[ 1570.190577][T23325] usb 5-1: SerialNumber: syz
[ 1570.234764][T23325] usb 5-1: config 0 descriptor??
[ 1570.266124][T23325] hub 5-1:0.0: bad descriptor, ignoring hub
[ 1570.279222][T23325] hub 5-1:0.0: probe with driver hub failed with error -5
[ 1570.344943][T23325] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input106
[ 1570.589602][ T7666] loop6: detected capacity change from 0 to 128
[ 1570.614269][T23325] usb 5-1: USB disconnect, device number 80
[ 1570.620277][    C0] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[ 1570.654031][ T7666] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1)
[ 1570.710006][ T7640] loop0: detected capacity change from 0 to 32768
[ 1570.782624][ T7640] 
[ 1570.782624][ T7640]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1570.782624][ T7640] 
[ 1570.800363][ T7671] loop2: detected capacity change from 0 to 1024
[ 1570.913615][ T7640] ERROR: (device loop0): xtTruncate_pmap: xt_getpage: xtree page corrupt
[ 1570.913615][ T7640] 
[ 1570.970351][ T7640] ERROR: (device loop0): txAbort: 
[ 1570.970351][ T7640] 
[ 1571.176857][ T5793] ERROR: (device loop0): xtTruncate: xt_getpage: xtree page corrupt
[ 1571.176857][ T5793] 
[ 1571.244111][T28192] ERROR: (device loop0): diWrite: ixpxd invalid
[ 1571.244111][T28192] 
[ 1571.291071][T28192] ERROR: (device loop0): txAbort: 
[ 1571.291071][T28192] 
[ 1571.327054][T28192] jfs_write_inode: jfs_commit_inode failed!
[ 1571.357366][ T7679] netlink: 'syz.2.14167': attribute type 13 has an invalid length.
[ 1571.374492][ T5793] 
[ 1571.374492][ T5793]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1571.374492][ T5793] 
[ 1571.408661][ T7679] netlink: 'syz.2.14167': attribute type 17 has an invalid length.
[ 1571.429088][ T5793] 
[ 1571.429088][ T5793]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1571.429088][ T5793] 
[ 1571.628072][ T7685] loop7: detected capacity change from 0 to 2048
[ 1571.659020][ T7685] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1571.707402][ T7679] dummy0: left promiscuous mode
[ 1571.728818][   T30] audit: type=1326 audit(2000001375.820:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1571.743072][ T7679] dummy0: left allmulticast mode
[ 1571.872502][   T30] audit: type=1326 audit(2000001375.850:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1571.907438][ T7679] bridge_slave_0: left promiscuous mode
[ 1571.980367][   T30] audit: type=1326 audit(2000001375.850:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1572.072562][ T7679] 0·: left allmulticast mode
[ 1572.090359][   T30] audit: type=1326 audit(2000001375.860:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1572.123593][ T7679] hsr_slave_0: left allmulticast mode
[ 1572.139587][ T7679] hsr_slave_1: left allmulticast mode
[ 1572.193569][   T30] audit: type=1326 audit(2000001375.860:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1572.292921][ T7679] veth0_macvtap: left allmulticast mode
[ 1572.303961][ T7697] Cannot find del_set index 1 as target
[ 1572.311728][   T30] audit: type=1326 audit(2000001375.860:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1572.364550][ T7700] openvswitch: netlink: IP tunnel dst address not specified
[ 1572.388598][ T7679] veth1_macvtap: entered promiscuous mode
[ 1572.404743][   T30] audit: type=1326 audit(2000001375.860:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1572.431060][ T7701] netlink: 'syz.6.14177': attribute type 1 has an invalid length.
[ 1572.463223][ T7701] netlink: 244 bytes leftover after parsing attributes in process `syz.6.14177'.
[ 1572.484229][   T30] audit: type=1326 audit(2000001375.860:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1572.557385][   T30] audit: type=1326 audit(2000001375.860:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.6.14173" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1572.594477][ T7679] ip6gre1: left promiscuous mode
[ 1572.600809][ T7679] ip6tnl1: left allmulticast mode
[ 1572.693615][ T7679] geneve2: left promiscuous mode
[ 1572.713258][ T7683] loop4: detected capacity change from 0 to 32768
[ 1572.725068][ T7679] bridge5: left allmulticast mode
[ 1572.745986][ T7683] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.14170 (7683)
[ 1572.759956][ T7705] loop7: detected capacity change from 0 to 512
[ 1572.826863][ T7705] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1572.828940][ T7683] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1572.910496][ T7683] BTRFS info (device loop4): using sha256 checksum algorithm
[ 1572.915518][ T7705] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1573.054588][ T7705] ext4 filesystem being mounted at /631/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1573.177148][ T7683] BTRFS info (device loop4): enabling ssd optimizations
[ 1573.220764][ T7683] BTRFS info (device loop4): turning on async discard
[ 1573.254470][T31017] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1573.257657][ T7683] BTRFS info (device loop4): enabling free space tree
[ 1573.384747][ T6024] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1573.434750][ T7739] loop0: detected capacity change from 0 to 64
[ 1573.579359][ T6024] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 959
[ 1573.625861][ T6024] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1573.676414][ T6024] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1573.726567][ T6024] usb 9-1: New USB device found, idVendor=1199, idProduct=b000, bcdDevice=e5.38
[ 1573.760024][ T6024] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1573.798225][ T6024] usb 9-1: Product: syz
[ 1573.806044][ T6024] usb 9-1: Manufacturer: syz
[ 1573.837212][ T6024] usb 9-1: SerialNumber: syz
[ 1573.886087][ T6024] usb 9-1: config 0 descriptor??
[ 1573.916001][ T7730] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1573.944898][ T5801] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1574.203453][ T7753] geneve2: entered promiscuous mode
[ 1574.241964][ T7753] geneve2: entered allmulticast mode
[ 1574.301781][ T6024] usb 9-1: USB disconnect, device number 3
[ 1574.672274][ T7759] loop2: detected capacity change from 0 to 8192
[ 1574.702567][ T7759] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1575.541190][ T7784] xt_CT: No such helper "snmp_trap"
[ 1575.839171][ T7798] geneve2: entered promiscuous mode
[ 1575.872121][ T7798] geneve2: entered allmulticast mode
[ 1576.035989][ T7803] loop8: detected capacity change from 0 to 8192
[ 1576.066884][ T7803] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1576.122154][ T5995] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[ 1576.220711][ T6024] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[ 1576.320718][ T5995] usb 8-1: New USB device found, idVendor=13d8, idProduct=0011, bcdDevice=d0.62
[ 1576.359175][ T5995] usb 8-1: New USB device strings: Mfr=1, Product=6, SerialNumber=3
[ 1576.384422][ T5995] usb 8-1: Product: syz
[ 1576.398832][ T5995] usb 8-1: Manufacturer: syz
[ 1576.405189][ T5995] usb 8-1: SerialNumber: syz
[ 1576.419102][ T6024] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 959
[ 1576.442321][ T5995] usb 8-1: config 0 descriptor??
[ 1576.475215][ T6024] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1576.514768][ T5995] usb 8-1: selecting invalid altsetting 1
[ 1576.524833][ T6024] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1576.545561][ T5995] comedi comedi5: could not switch to alternate setting 1
[ 1576.568217][ T6024] usb 1-1: New USB device found, idVendor=1199, idProduct=b000, bcdDevice=e5.38
[ 1576.580317][ T5995] usbduxfast 8-1:0.0: driver 'usbduxfast' failed to auto-configure device.
[ 1576.607246][ T6024] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1576.633973][ T6024] usb 1-1: Product: syz
[ 1576.657803][ T6024] usb 1-1: Manufacturer: syz
[ 1576.664220][ T6024] usb 1-1: SerialNumber: syz
[ 1576.689914][ T6024] usb 1-1: config 0 descriptor??
[ 1576.723027][ T7805] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1576.790954][ T5995] usb 8-1: USB disconnect, device number 18
[ 1577.077434][T23316] usb 1-1: USB disconnect, device number 54
[ 1577.322599][ T7835] misc userio: Invalid payload size
[ 1577.596052][ T7845] bond0: (slave sit0): refused to change device type
[ 1578.167896][ T7855] loop0: detected capacity change from 0 to 4096
[ 1578.204946][ T7855] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[ 1578.355383][ T7855] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1578.897006][ T7843] loop2: detected capacity change from 0 to 32768
[ 1578.974735][ T7883] nbd: couldn't find a device at index 17
[ 1579.015051][ T7881] loop4: detected capacity change from 0 to 4096
[ 1579.160145][ T7881] ntfs3(loop4): ino=19, mi_enum_attr
[ 1579.197970][ T7881] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1579.410294][ T7893] netlink: 'syz.6.14264': attribute type 21 has an invalid length.
[ 1579.417009][ T7886] loop0: detected capacity change from 0 to 8192
[ 1579.448274][ T7894] netlink: 196 bytes leftover after parsing attributes in process `syz.2.14263'.
[ 1579.490157][ T7886] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1579.523208][ T7894] netlink: 196 bytes leftover after parsing attributes in process `syz.2.14263'.
[ 1579.605814][ T7894] netlink: 19 bytes leftover after parsing attributes in process `syz.2.14263'.
[ 1580.126588][ T7908] netlink: 'syz.6.14271': attribute type 13 has an invalid length.
[ 1580.175519][ T7908] netlink: 'syz.6.14271': attribute type 17 has an invalid length.
[ 1580.236685][ T7908] lo: left allmulticast mode
[ 1580.347733][ T7908] sit0: left promiscuous mode
[ 1580.533188][ T7908] batadv0: left promiscuous mode
[ 1580.557014][ T7908] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1580.561593][T23325] usb 5-1: new high-speed USB device number 81 using dummy_hcd
[ 1580.696667][ T7908] vlan0: left promiscuous mode
[ 1580.747250][T23325] usb 5-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[ 1580.762995][T23325] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1580.782334][T23325] usb 5-1: Product: syz
[ 1580.792424][T23325] usb 5-1: Manufacturer: syz
[ 1580.802550][T23325] usb 5-1: SerialNumber: syz
[ 1580.823833][T23325] usb 5-1: config 0 descriptor??
[ 1580.844441][ T7908] bond1: left allmulticast mode
[ 1580.854075][ T7908] bond2: left promiscuous mode
[ 1580.870559][ T7908] gtp0: left promiscuous mode
[ 1580.875349][ T7908] gtp0: left allmulticast mode
[ 1580.955826][T28192] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1581.194708][ T7936] loop6: detected capacity change from 0 to 1024
[ 1581.263747][T23325] usb 5-1: f81604_write: reg: 105 data: 0 failed: -EPROTO
[ 1581.299619][T23325] f81604 5-1:0.0: Setting termination of CH#0 failed: -EPROTO
[ 1581.345504][T23325] f81604 5-1:0.0: probe with driver f81604 failed with error -71
[ 1581.419467][T23325] usb 5-1: USB disconnect, device number 81
[ 1581.444098][ T7934] loop7: detected capacity change from 0 to 8192
[ 1581.499505][ T7934] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1582.075314][ T7953] loop8: detected capacity change from 0 to 2048
[ 1582.105031][ T7953] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1582.177317][ T7953] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1582.198171][ T7959] loop4: detected capacity change from 0 to 4096
[ 1582.285217][ T7967] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1582.337202][ T5585] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1582.350635][ T6024] usb 1-1: new full-speed USB device number 55 using dummy_hcd
[ 1582.545837][ T6024] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 10
[ 1582.598546][ T6024] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1582.638896][ T6024] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 10
[ 1582.711733][ T6024] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1582.745832][ T6024] usb 1-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[ 1582.762092][ T6024] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1582.805955][ T6024] usb 1-1: Product: syz
[ 1582.822143][ T6024] usb 1-1: Manufacturer: syz
[ 1582.839232][ T6024] usb 1-1: SerialNumber: syz
[ 1582.864480][ T6024] usb 1-1: config 0 descriptor??
[ 1583.111013][ T6024] adutux 1-1:0.0: Could not retrieve serial number
[ 1583.136178][ T6024] adutux 1-1:0.0: probe with driver adutux failed with error -5
[ 1583.377021][ T7987] loop4: detected capacity change from 0 to 8192
[ 1583.399061][T23325] usb 1-1: USB disconnect, device number 55
[ 1583.442900][ T7987] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1583.569440][ T8002] netlink: 68 bytes leftover after parsing attributes in process `syz.6.14314'.
[ 1583.605547][ T8002] netlink: 68 bytes leftover after parsing attributes in process `syz.6.14314'.
[ 1584.252070][ T8030] loop6: detected capacity change from 0 to 8
[ 1584.263127][ T8029] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14329'.
[ 1584.304593][ T8030] unable to read xattr id index table
[ 1584.611512][T23119] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[ 1584.680572][T23325] usb 5-1: new full-speed USB device number 82 using dummy_hcd
[ 1584.788413][ T8045] loop2: detected capacity change from 0 to 1024
[ 1584.801503][T23119] usb 7-1: Using ep0 maxpacket: 32
[ 1584.803169][ T8048] netlink: 'syz.8.14349': attribute type 13 has an invalid length.
[ 1584.818293][T23119] usb 7-1: config 0 has an invalid interface number: 130 but max is 0
[ 1584.836442][T23119] usb 7-1: config 0 has no interface number 0
[ 1584.854099][T23119] usb 7-1: too many endpoints for config 0 interface 130 altsetting 50: 167, using maximum allowed: 30
[ 1584.863832][ T8048] netlink: 'syz.8.14349': attribute type 17 has an invalid length.
[ 1584.877181][T23325] usb 5-1: config 0 has an invalid interface number: 20 but max is 0
[ 1584.897530][T23325] usb 5-1: config 0 has no interface number 0
[ 1584.906232][T23119] usb 7-1: config 0 interface 130 altsetting 50 has 0 endpoint descriptors, different from the interface descriptor's value: 167
[ 1584.926307][T23325] usb 5-1: config 0 interface 20 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[ 1584.937920][T23119] usb 7-1: config 0 interface 130 has no altsetting 0
[ 1584.946338][T23325] usb 5-1: config 0 interface 20 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1584.957233][T23119] usb 7-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01
[ 1584.968420][T23119] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1584.980627][T23325] usb 5-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[ 1584.992098][T23325] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1585.002699][T23119] usb 7-1: config 0 descriptor??
[ 1585.024094][T23325] usb 5-1: Product: syz
[ 1585.044336][T23325] usb 5-1: Manufacturer: syz
[ 1585.057210][T23325] usb 5-1: SerialNumber: syz
[ 1585.091392][T23325] usb 5-1: config 0 descriptor??
[ 1585.109454][ T8050] overlay: ./file0 is not a directory
[ 1585.117840][ T8034] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1585.138749][T23325] usb-storage 5-1:0.20: USB Mass Storage device detected
[ 1585.173621][T23325] usb-storage 5-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[ 1585.225367][T23119] usb 7-1: string descriptor 0 read error: -71
[ 1585.261197][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1585.278028][ T8052] loop7: detected capacity change from 0 to 4096
[ 1585.297949][ T8052] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512).
[ 1585.304374][ T8048] netdevsim netdevsim8 netdevsim0: left promiscuous mode
[ 1585.331803][T23119] usb 7-1: USB disconnect, device number 17
[ 1585.355985][T23325] scsi host1: usb-storage 5-1:0.20
[ 1585.410262][ T8052] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[ 1585.472271][ T8048] ip6gre1: left promiscuous mode
[ 1585.503040][ T8048] ip6gre1: left allmulticast mode
[ 1585.639319][T23125] usb 5-1: USB disconnect, device number 82
[ 1586.044972][ T8068] netlink: 'syz.6.14346': attribute type 11 has an invalid length.
[ 1587.364671][ T8073] loop8: detected capacity change from 0 to 32768
[ 1587.951670][ T8129] loop2: detected capacity change from 0 to 64
[ 1588.588100][ T8136] loop2: detected capacity change from 0 to 4096
[ 1588.618450][ T8136] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[ 1588.702844][ T8136] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[ 1588.869896][ T8149] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14386'.
[ 1589.176909][ T8156] bridge0: port 3(syz_tun) entered blocking state
[ 1589.207104][ T8156] bridge0: port 3(syz_tun) entered disabled state
[ 1589.237136][ T8156] syz_tun: entered allmulticast mode
[ 1589.302885][ T8156] syz_tun: entered promiscuous mode
[ 1589.327148][ T8156] bridge0: port 3(syz_tun) entered blocking state
[ 1589.333740][ T8156] bridge0: port 3(syz_tun) entered forwarding state
[ 1589.627629][ T8168] loop7: detected capacity change from 0 to 512
[ 1589.773840][ T8166] loop0: detected capacity change from 0 to 4096
[ 1589.873012][ T8172] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1590.554940][ T8159] loop4: detected capacity change from 0 to 32768
[ 1590.600567][ T5995] usb 1-1: new high-speed USB device number 56 using dummy_hcd
[ 1590.786438][ T5995] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1590.836737][ T8184] Timeout policy `syz1' can only be used by L4 protocol number 255
[ 1590.846502][ T5995] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 1590.887304][ T5995] usb 1-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[ 1590.928680][ T5995] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1591.014158][ T5995] usb 1-1: config 0 descriptor??
[ 1591.471399][ T5995] Bluetooth: Can't get version to change to load ram patch err
[ 1591.510852][ T5995] Bluetooth: Loading patch file failed
[ 1591.541953][ T5995] ath3k 1-1:0.0: probe with driver ath3k failed with error -71
[ 1591.597889][ T5995] usb 1-1: USB disconnect, device number 56
[ 1591.682695][ T8200] bridge0: entered promiscuous mode
[ 1591.720976][ T8200] bridge0: entered allmulticast mode
[ 1592.006507][ T8178] loop7: detected capacity change from 0 to 32768
[ 1592.089789][ T8178] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1592.277072][ T8191] loop6: detected capacity change from 0 to 32768
[ 1592.340761][ T8191] JBD2: Ignoring recovery information on journal
[ 1592.555009][ T8178] XFS (loop7): Ending clean mount
[ 1592.604902][ T8191] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1592.666123][ T8178] XFS (loop7): Quotacheck needed: Please wait.
[ 1592.715749][ T8191] OCFS2: ERROR (device loop6): ocfs2_xattr_find_entry: corrupted xattr entries
[ 1592.760670][ T8191] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1592.855845][ T8178] XFS (loop7): Quotacheck: Done.
[ 1592.881520][ T8191] OCFS2: Returning error to the calling process.
[ 1592.914894][ T8191] (syz.6.14419,8191,0):ocfs2_setattr:1306 ERROR: status = -117
[ 1592.990993][ T8224] x_tables: ip_tables: sctp match: only valid for protocol 132
[ 1593.198840][T26835] ocfs2: Unmounting device (7,6) on (node local)
[ 1593.218349][T31017] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1593.296600][ T8225] loop8: detected capacity change from 0 to 4096
[ 1593.380553][ T8225] ntfs3(loop8): Different NTFS sector size (1024) and media sector size (512).
[ 1593.478985][ T8225] ntfs3(loop8): Mark volume as dirty due to NTFS errors
[ 1593.597996][ T8232] bridge0: port 1(syz_tun) entered blocking state
[ 1593.623797][ T8232] bridge0: port 1(syz_tun) entered disabled state
[ 1593.646422][ T8232] syz_tun: entered allmulticast mode
[ 1593.693830][ T8232] syz_tun: entered promiscuous mode
[ 1593.741296][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1593.775239][ T8234] MTD: Couldn't look up './file0': -15
[ 1595.227213][ T8270] loop7: detected capacity change from 0 to 512
[ 1595.266046][ T8270] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1595.327905][ T8270] EXT4-fs error (device loop7): ext4_orphan_get:1423: comm syz.7.14441: bad orphan inode 131083
[ 1595.370632][ T8270] loop7: lost filesystem error report for type 5 error -117
[ 1595.376577][ T8270] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1595.445675][ T8270] EXT4-fs error (device loop7): ext4_find_dest_de:2049: inode #2: block 13: comm syz.7.14441: bad entry in directory: '.' directory cannot be the last in data block - offset=0, inode=2, rec_len=1024, size=1024 fake=1
[ 1595.784139][T31017] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1595.886644][ T8245] loop6: detected capacity change from 0 to 32768
[ 1595.936358][ T8245] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.14418 (8245)
[ 1595.999780][ T8245] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1596.038759][ T8245] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1596.250196][ T8245] BTRFS info (device loop6): enabling ssd optimizations
[ 1596.282662][ T8245] BTRFS info (device loop6): turning on async discard
[ 1596.317533][ T8245] BTRFS info (device loop6): enabling free space tree
[ 1596.585438][ T8322] netlink: 8 bytes leftover after parsing attributes in process `syz.8.14458'.
[ 1596.659018][ T8319] bridge8: entered promiscuous mode
[ 1596.680660][ T8319] bridge8: entered allmulticast mode
[ 1596.823934][T26835] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1597.259920][ T8336] Scaler: =================  START STATUS  =================
[ 1597.321695][ T8336] Scaler: ==================  END STATUS  ==================
[ 1597.468963][ T8340] loop8: detected capacity change from 0 to 8
[ 1597.529974][ T8340] unable to read xattr id index table
[ 1597.880587][T23130] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1598.091546][T23130] usb 9-1: Using ep0 maxpacket: 32
[ 1598.123419][T23130] usb 9-1: config 0 has an invalid interface number: 130 but max is 0
[ 1598.157428][T23130] usb 9-1: config 0 has no interface number 0
[ 1598.188746][T23130] usb 9-1: too many endpoints for config 0 interface 130 altsetting 50: 167, using maximum allowed: 30
[ 1598.245633][T23130] usb 9-1: config 0 interface 130 altsetting 50 has 0 endpoint descriptors, different from the interface descriptor's value: 167
[ 1598.276837][ T8357] Bluetooth: hci0: Opcode 0x0401 failed: -22
[ 1598.299564][T23130] usb 9-1: config 0 interface 130 has no altsetting 0
[ 1598.331770][T23130] usb 9-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01
[ 1598.379854][T23130] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1598.440931][T23130] usb 9-1: config 0 descriptor??
[ 1598.688803][T23130] usb 9-1: string descriptor 0 read error: -71
[ 1598.744534][T23130] usb 9-1: USB disconnect, device number 4
[ 1598.925128][ T8369] loop7: detected capacity change from 0 to 4096
[ 1599.014568][ T8369] ntfs3(loop7): Failed to load $Extend (-22).
[ 1599.051587][ T8369] ntfs3(loop7): Failed to initialize $Extend.
[ 1599.125847][ T8373] loop4: detected capacity change from 0 to 4096
[ 1599.165723][ T8373] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1599.380640][   T30] audit: type=1400 audit(2000001403.470:355): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//(@\)//&@},['%%&\#*" pid=8384 comm="syz.7.14489"
[ 1599.509150][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1600.704502][ T8430] loop8: detected capacity change from 0 to 64
[ 1600.907236][ T8437] loop0: detected capacity change from 0 to 128
[ 1600.947875][ T8437] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 1601.009300][ T8437] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1601.104518][ T8435] loop6: detected capacity change from 0 to 4096
[ 1601.154540][ T8435] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[ 1601.303003][ T8435] ntfs3(loop6): ino=19, mi_enum_attr
[ 1601.392247][ T8435] ntfs3(loop6): failed to convert "c46c" to cp850
[ 1601.435913][ T8435] ntfs3(loop6): ino=20, mi_enum_attr
[ 1601.693119][ T8453] netlink: 1047 bytes leftover after parsing attributes in process `syz.4.14520'.
[ 1601.973075][ T8425] loop7: detected capacity change from 0 to 32768
[ 1602.031946][ T8425] jfs_strtoUCS: char2uni returned -22.
[ 1602.048274][ T8425] charset = utf8, char = 0xc5
[ 1602.598932][ T8475] loop2: detected capacity change from 0 to 4096
[ 1602.683500][ T8475] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1603.055502][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1603.109539][ T8496] netlink: 16 bytes leftover after parsing attributes in process `syz.0.14540'.
[ 1603.332225][ T8499] overlayfs: cannot append lower layer
[ 1603.620707][T23125] usb 3-1: new high-speed USB device number 85 using dummy_hcd
[ 1603.810534][T23125] usb 3-1: Using ep0 maxpacket: 32
[ 1603.827021][T23125] usb 3-1: config 0 has an invalid interface number: 130 but max is 0
[ 1603.849464][T23125] usb 3-1: config 0 has no interface number 0
[ 1603.880577][T23125] usb 3-1: too many endpoints for config 0 interface 130 altsetting 50: 167, using maximum allowed: 30
[ 1603.937578][T23125] usb 3-1: config 0 interface 130 altsetting 50 has 0 endpoint descriptors, different from the interface descriptor's value: 167
[ 1603.972532][T23125] usb 3-1: config 0 interface 130 has no altsetting 0
[ 1603.995976][ T8522] nbd: illegal input index -1156311892
[ 1603.999719][T23125] usb 3-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01
[ 1604.038294][T23125] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1604.077571][T23125] usb 3-1: config 0 descriptor??
[ 1604.308710][T23125] usb 3-1: string descriptor 0 read error: -71
[ 1604.349863][T23125] usb 3-1: USB disconnect, device number 85
[ 1604.538961][ T8535] loop6: detected capacity change from 0 to 4096
[ 1604.683752][ T8535] ntfs3(loop6): Failed to load $Extend (-22).
[ 1604.721488][ T8535] ntfs3(loop6): Failed to initialize $Extend.
[ 1605.216540][ T8560] loop2: detected capacity change from 0 to 512
[ 1605.265412][ T8560] EXT4-fs: Ignoring removed oldalloc option
[ 1605.388184][ T8560] EXT4-fs error (device loop2): ext4_iget_extra_inode:5127: inode #15: comm syz.2.14571: corrupted in-inode xattr: invalid ea_ino
[ 1605.500568][ T8560] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1605.501267][ T8565] loop7: detected capacity change from 0 to 128
[ 1605.511952][    C0] EXT4-fs (loop2): error count since last fsck: 1
[ 1605.523403][    C0] EXT4-fs (loop2): initial error at time 2000001409: ext4_iget_extra_inode:5127: inode 15
[ 1605.533509][    C0] EXT4-fs (loop2): last error at time 2000001409: ext4_iget_extra_inode:5127: inode 15
[ 1605.545913][ T8560] EXT4-fs (loop2): Remounting filesystem read-only
[ 1605.575008][ T8565] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1605.587287][ T8560] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1605.630957][ T8565] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1605.832523][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1606.150770][ T8582] loop2: detected capacity change from 0 to 256
[ 1606.166439][ T8585] netlink: 'syz.4.14583': attribute type 1 has an invalid length.
[ 1606.184661][ T8582] exfat: Deprecated parameter 'utf8'
[ 1606.209075][ T8589] loop0: detected capacity change from 0 to 8
[ 1606.282514][ T8589] unable to read xattr id index table
[ 1606.314043][ T8582] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d)
[ 1606.640864][T23125] usb 1-1: new high-speed USB device number 57 using dummy_hcd
[ 1606.810691][T23125] usb 1-1: Using ep0 maxpacket: 32
[ 1606.819949][ T8605] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1606.842499][T23125] usb 1-1: config 0 has an invalid interface number: 130 but max is 0
[ 1606.867887][T23125] usb 1-1: config 0 has no interface number 0
[ 1606.889950][T23125] usb 1-1: too many endpoints for config 0 interface 130 altsetting 50: 167, using maximum allowed: 30
[ 1606.931825][T23125] usb 1-1: config 0 interface 130 altsetting 50 has 0 endpoint descriptors, different from the interface descriptor's value: 167
[ 1606.982451][ T8609] netlink: 5012 bytes leftover after parsing attributes in process `syz.7.14596'.
[ 1606.998285][T23125] usb 1-1: config 0 interface 130 has no altsetting 0
[ 1607.029958][T23125] usb 1-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01
[ 1607.031836][ T8612] loop2: detected capacity change from 0 to 128
[ 1607.065154][T23125] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1607.076662][ T8612] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[ 1607.129956][T23125] usb 1-1: config 0 descriptor??
[ 1607.143842][ T8612] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1607.153052][ T8615] dlm: non-version read from control device 36
[ 1607.188082][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.387225][T23125] usb 1-1: string descriptor 0 read error: -71
[ 1607.439723][T23125] usb 1-1: USB disconnect, device number 57
[ 1607.750537][ T8629] loop7: detected capacity change from 0 to 512
[ 1607.782811][ T8629] EXT4-fs: Ignoring removed orlov option
[ 1607.860851][ T8629] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1607.878865][ T8633] ubi8: attaching mtd0
[ 1607.955429][ T8629] ext4 filesystem being mounted at /699/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1608.029545][ T8629] EXT4-fs error (device loop7): ext4_get_verity_descriptor_location:337: inode #15: comm syz.7.14605: verity file corrupted; can't find descriptor
[ 1608.079499][ T8633] ubi8: scanning is finished
[ 1608.089154][ T8629] EXT4-fs (loop7): Remounting filesystem read-only
[ 1608.104360][ T8633] ubi8: empty MTD device detected
[ 1608.128521][ T8629] fs-verity (loop7, inode 15): Error -117 getting verity descriptor size
[ 1608.149288][ T8633] ubi8 error: ubi_read_volume_table: LEB size too small for a volume record
[ 1608.319643][T31017] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1608.557416][ T8633] ubi8 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1608.586444][ T8617] loop4: detected capacity change from 0 to 32768
[ 1608.615396][ T8617] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.14601 (8617)
[ 1608.686116][ T8617] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1608.731560][ T8617] BTRFS info (device loop4): using crc32c checksum algorithm
[ 1608.937177][ T8617] BTRFS info (device loop4): enabling ssd optimizations
[ 1608.986049][ T8617] BTRFS info (device loop4): turning on flush-on-commit
[ 1608.995658][ T8617] BTRFS info (device loop4): enabling free space tree
[ 1609.002881][ T8617] BTRFS info (device loop4): enabling auto defrag
[ 1609.009400][ T8617] BTRFS info (device loop4): use lzo compression, level 1
[ 1609.012994][ T8670] loop8: detected capacity change from 0 to 1764
[ 1609.017086][ T8617] BTRFS info (device loop4): max_inline set to 4096
[ 1609.202376][ T8617] overlayfs: missing 'lowerdir'
[ 1609.387733][ T5801] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1609.567475][ T8684] bond0: option ad_select: unable to set because the bond device is up
[ 1609.727287][ T8640] loop6: detected capacity change from 0 to 32768
[ 1609.763950][ T8640] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.14609 (8640)
[ 1609.886165][ T8640] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1609.921893][ T8640] BTRFS info (device loop6): using blake2b checksum algorithm
[ 1610.166774][ T8706] netlink: 'syz.4.14628': attribute type 2 has an invalid length.
[ 1610.186675][ T8706] netlink: 723 bytes leftover after parsing attributes in process `syz.4.14628'.
[ 1610.205872][ T8640] BTRFS info (device loop6 state EC): setting nodatasum
[ 1610.225159][ T8640] BTRFS info (device loop6 state EC): setting nodatacow
[ 1610.256103][ T8640] BTRFS info (device loop6 state EC): disabling log replay at mount time
[ 1610.293075][ T8640] BTRFS info (device loop6 state EC): enabling free space tree
[ 1610.339995][ T8640] BTRFS info (device loop6 state EC): ignoring data csums
[ 1610.652405][ T8720] netdevsim netdevsim2: Direct firmware load for /
[ 1610.652405][ T8720]  failed with error -2
[ 1610.732069][ T8720] netdevsim netdevsim2: Falling back to sysfs fallback for: /
[ 1610.732069][ T8720] 
[ 1610.819096][T26835] BTRFS info (device loop6 state EC): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1610.977367][ T8731] ieee802154 phy1 wpan1: encryption failed: -22
[ 1611.021219][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1611.864412][ T8755] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1612.293503][ T8767] loop4: detected capacity change from 0 to 1764
[ 1612.590877][T23119] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[ 1612.593357][ T8736] loop6: detected capacity change from 0 to 32768
[ 1612.662944][ T8736] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1612.703371][ T8788] program syz.2.14676 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1612.734899][ T8788] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1612.766634][T23119] usb 9-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[ 1612.775958][T23119] usb 9-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1612.785212][T23119] usb 9-1: Product: syz
[ 1612.799635][T23119] usb 9-1: SerialNumber: syz
[ 1612.808679][T23119] usb 9-1: config 0 descriptor??
[ 1612.823183][ T8792] loop7: detected capacity change from 0 to 512
[ 1612.852884][ T8792] EXT4-fs: Ignoring removed oldalloc option
[ 1612.928991][ T8792] EXT4-fs error (device loop7): ext4_iget_extra_inode:5127: inode #15: comm syz.7.14664: corrupted in-inode xattr: invalid ea_ino
[ 1613.040927][ T8792] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1613.042345][T23119] hso 9-1:0.0: Can't find BULK endpoints
[ 1613.060425][    C1] EXT4-fs (loop7): error count since last fsck: 1
[ 1613.066915][    C1] EXT4-fs (loop7): initial error at time 2000001417: ext4_iget_extra_inode:5127: inode 15
[ 1613.076915][    C1] EXT4-fs (loop7): last error at time 2000001417: ext4_iget_extra_inode:5127: inode 15
[ 1613.087512][ T8792] EXT4-fs (loop7): Remounting filesystem read-only
[ 1613.116564][ T8792] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1613.136600][ T8736] XFS (loop6): Ending clean mount
[ 1613.177692][ T8736] XFS (loop6): Quotacheck needed: Please wait.
[ 1613.195344][ T8802] netlink: 'syz.2.14668': attribute type 2 has an invalid length.
[ 1613.271808][T23119] usb 9-1: USB disconnect, device number 5
[ 1613.404448][ T8736] XFS (loop6): Quotacheck: Done.
[ 1613.412097][T31017] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1613.638518][ T8813] loop7: detected capacity change from 0 to 64
[ 1614.055700][T26835] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1614.305282][ T8831] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 1614.940720][ T8850] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1615.205648][ T8858] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1616.095206][ T8886] loop2: detected capacity change from 0 to 512
[ 1616.117553][ T8886] EXT4-fs: Ignoring removed nobh option
[ 1616.137172][ T8886] EXT4-fs: Ignoring removed bh option
[ 1616.163242][ T8886] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1616.215461][ T8886] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0007-000000000000 r/w without journal. Quota mode: writeback.
[ 1616.259741][ T8886] ext4 filesystem being mounted at /2432/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1616.356606][ T8886] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[ 1616.387628][ T8872] loop6: detected capacity change from 0 to 32768
[ 1616.394750][ T8886] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[ 1616.431863][ T8886] EXT4-fs error (device loop2): ext4_acquire_dquot:7032: comm syz.2.14710: Failed to acquire dquot type 0
[ 1616.626258][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0007-000000000000.
[ 1616.695873][ T8895] netlink: 'syz.0.14713': attribute type 1 has an invalid length.
[ 1616.752999][ T8895] netlink: 224 bytes leftover after parsing attributes in process `syz.0.14713'.
[ 1616.803702][ T8867] loop7: detected capacity change from 0 to 32768
[ 1616.853852][ T8867] add_index: next_index = 0.  Resetting!
[ 1616.892329][ T8878] loop8: detected capacity change from 0 to 32768
[ 1616.899937][ T8901] loop2: detected capacity change from 0 to 256
[ 1616.939359][ T8878] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.14706 (8878)
[ 1616.990835][ T5995] usb 5-1: new high-speed USB device number 83 using dummy_hcd
[ 1617.038677][ T8901] FAT-fs (loop2): Directory bread(block 64) failed
[ 1617.053623][ T8878] BTRFS info (device loop8): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1617.075789][ T8901] FAT-fs (loop2): Directory bread(block 65) failed
[ 1617.099401][ T8878] BTRFS info (device loop8): using blake2b checksum algorithm
[ 1617.107634][ T8901] FAT-fs (loop2): Directory bread(block 66) failed
[ 1617.117673][ T8901] FAT-fs (loop2): Directory bread(block 67) failed
[ 1617.142065][ T8904] netlink: 'syz.6.14717': attribute type 1 has an invalid length.
[ 1617.159635][ T8901] FAT-fs (loop2): Directory bread(block 68) failed
[ 1617.172186][ T5995] usb 5-1: Using ep0 maxpacket: 32
[ 1617.182003][ T8901] FAT-fs (loop2): Directory bread(block 69) failed
[ 1617.215418][ T5995] usb 5-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1617.227454][ T8901] FAT-fs (loop2): Directory bread(block 70) failed
[ 1617.229789][ T8878] BTRFS info (device loop8 state EC): setting nodatasum
[ 1617.248250][ T8901] FAT-fs (loop2): Directory bread(block 71) failed
[ 1617.255035][ T8878] BTRFS info (device loop8 state EC): setting nodatacow
[ 1617.255072][ T8878] BTRFS info (device loop8 state EC): disabling log replay at mount time
[ 1617.255107][ T8878] BTRFS info (device loop8 state EC): enabling free space tree
[ 1617.255140][ T8878] BTRFS info (device loop8 state EC): ignoring data csums
[ 1617.285545][ T5995] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1617.293691][ T5995] usb 5-1: Product: syz
[ 1617.293856][ T8901] FAT-fs (loop2): Directory bread(block 72) failed
[ 1617.297879][ T5995] usb 5-1: Manufacturer: syz
[ 1617.309184][ T5995] usb 5-1: SerialNumber: syz
[ 1617.316852][ T8901] FAT-fs (loop2): Directory bread(block 73) failed
[ 1617.326444][ T5995] usb 5-1: config 0 descriptor??
[ 1617.361144][ T5995] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1617.562801][ T5585] BTRFS info (device loop8 state EC): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1617.798497][ T5995] gspca_topro: reg_w err -71
[ 1617.850762][ T5995] gspca_topro: Sensor soi763a
[ 1617.904356][ T5995] usb 5-1: USB disconnect, device number 83
[ 1618.619601][ T8944] loop8: detected capacity change from 0 to 256
[ 1618.730757][T23119] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[ 1618.801600][ T8944] FAT-fs (loop8): Directory bread(block 64) failed
[ 1618.840500][ T8944] FAT-fs (loop8): Directory bread(block 65) failed
[ 1618.866931][ T8944] FAT-fs (loop8): Directory bread(block 66) failed
[ 1618.887707][ T8944] FAT-fs (loop8): Directory bread(block 67) failed
[ 1618.921651][ T8944] FAT-fs (loop8): Directory bread(block 68) failed
[ 1618.955229][T23119] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1618.963969][ T8944] FAT-fs (loop8): Directory bread(block 69) failed
[ 1619.007130][ T8944] FAT-fs (loop8): Directory bread(block 70) failed
[ 1619.010953][T23119] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1619.044602][ T8944] FAT-fs (loop8): Directory bread(block 71) failed
[ 1619.078639][ T8944] FAT-fs (loop8): Directory bread(block 72) failed
[ 1619.080306][T23119] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1619.115989][ T8944] FAT-fs (loop8): Directory bread(block 73) failed
[ 1619.147522][T23119] usb 8-1: string descriptor 0 read error: -22
[ 1619.162546][T23119] usb 8-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40
[ 1619.203911][T23119] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1619.258868][T23119] usb 8-1: selecting invalid altsetting 1
[ 1619.278567][T23119] usb 8-1: unit 3 not found!
[ 1619.382828][ T8962] netlink: 'syz.6.14737': attribute type 11 has an invalid length.
[ 1619.428379][ T8962] netlink: 12 bytes leftover after parsing attributes in process `syz.6.14737'.
[ 1619.490984][T23119] usb 8-1: cannot request logical cluster ID: 0 (err: -5)
[ 1619.501229][ T8964] loop2: detected capacity change from 0 to 256
[ 1619.534082][T23119] usb 8-1: invalid MIXER UNIT descriptor 6
[ 1619.568383][ T8964] exfat: Deprecated parameter 'namecase'
[ 1619.610712][ T8964] exfat: Deprecated parameter 'namecase'
[ 1619.659626][ T8964] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1619.742851][ T5995] usb 1-1: new full-speed USB device number 58 using dummy_hcd
[ 1619.764569][T23119] snd-usb-audio 8-1:1.0: probe with driver snd-usb-audio failed with error -5
[ 1619.827986][T23119] usb 8-1: USB disconnect, device number 19
[ 1619.923753][ T5995] usb 1-1: config 36 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1619.958215][ T5995] usb 1-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[ 1620.000034][ T5995] usb 1-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[ 1620.034617][ T5995] usb 1-1: Manufacturer: syz
[ 1620.049885][ T5995] usb 1-1: SerialNumber: syz
[ 1620.106021][ T8974] netlink: 48 bytes leftover after parsing attributes in process `syz.6.14745'.
[ 1620.212328][ T8978] netlink: 'syz.2.14746': attribute type 1 has an invalid length.
[ 1620.249337][ T8978] netlink: 224 bytes leftover after parsing attributes in process `syz.2.14746'.
[ 1620.303745][ T5995] usbhid 1-1:36.0: couldn't find an input interrupt endpoint
[ 1620.339901][ T5995] usb 1-1: USB disconnect, device number 58
[ 1623.689377][ T9008] loop8: detected capacity change from 0 to 16
[ 1623.731685][ T9008] MTD: Attempt to mount non-MTD device "/dev/loop8"
[ 1624.226223][ T9019] sctp: [Deprecated]: syz.0.14766 (pid 9019) Use of int in max_burst socket option.
[ 1624.226223][ T9019] Use struct sctp_assoc_value instead
[ 1624.261304][ T9021] netlink: 104 bytes leftover after parsing attributes in process `syz.4.14768'.
[ 1624.324576][ T9025] bond0: Error: Cannot enslave bond to itself.
[ 1624.653757][ T9035] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048)
[ 1624.876835][ T9041] loop0: detected capacity change from 0 to 16
[ 1624.925728][ T9041] erofs (device loop0): mounted with root inode @ nid 36.
[ 1624.946887][ T9009] loop7: detected capacity change from 0 to 32768
[ 1624.997146][ T9009] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.14761 (9009)
[ 1625.116020][ T9009] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1625.168660][ T9009] BTRFS info (device loop7): using crc32c checksum algorithm
[ 1625.324942][ T9048] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[ 1625.440245][ T9009] BTRFS info (device loop7): enabling ssd optimizations
[ 1625.482946][ T9009] BTRFS info (device loop7): turning on flush-on-commit
[ 1625.516489][ T9009] BTRFS info (device loop7): enabling free space tree
[ 1625.551504][ T9009] BTRFS info (device loop7): enabling auto defrag
[ 1625.574669][ T9009] BTRFS info (device loop7): use lzo compression, level 1
[ 1625.614132][ T9009] BTRFS info (device loop7): max_inline set to 4096
[ 1625.648735][ T9076] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14785'.
[ 1625.796473][ T9009] overlayfs: missing 'lowerdir'
[ 1626.005696][T31017] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1626.861314][ T9113] loop7: detected capacity change from 0 to 256
[ 1627.316179][   T30] audit: type=1326 audit(2000001431.410:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.6.14811" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1627.413186][   T30] audit: type=1326 audit(2000001431.410:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.6.14811" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1627.438818][ T9129] netlink: 'syz.4.14812': attribute type 21 has an invalid length.
[ 1627.573519][   T30] audit: type=1326 audit(2000001431.450:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.6.14811" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1627.699328][   T30] audit: type=1326 audit(2000001431.450:359): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.6.14811" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0399ce59 code=0x7ffc0000
[ 1627.887942][ T9133] bond3 (unregistering): Released all slaves
[ 1627.947691][ T9140] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[ 1628.063539][ T9142] xt_policy: too many policy elements
[ 1628.182481][ T9120] loop0: detected capacity change from 0 to 32768
[ 1628.218884][ T9120] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.14808 (9120)
[ 1628.236227][ T9104] loop8: detected capacity change from 0 to 40427
[ 1628.267830][ T9104] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[ 1628.292126][ T9146] loop7: detected capacity change from 0 to 64
[ 1628.304674][ T9104] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 1628.321346][ T9120] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1628.332914][ T9104] F2FS-fs (loop8): invalid crc_offset: 33558524
[ 1628.343864][ T9120] BTRFS info (device loop0): using crc32c checksum algorithm
[ 1628.507811][ T9120] BTRFS info (device loop0): enabling ssd optimizations
[ 1628.563488][ T9120] BTRFS info (device loop0): turning on flush-on-commit
[ 1628.598847][ T9120] BTRFS info (device loop0): enabling free space tree
[ 1628.646815][ T9120] BTRFS info (device loop0): enabling auto defrag
[ 1628.692108][ T9120] BTRFS info (device loop0): use lzo compression, level 1
[ 1628.702067][ T9104] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1628.719743][ T9120] BTRFS info (device loop0): max_inline set to 4096
[ 1628.789727][ T9104] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 1628.824093][ T9104] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1628.850579][T23125] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 1628.856288][ T9120] overlayfs: missing 'lowerdir'
[ 1628.897565][ T9177] CIFS mount error: No usable UNC path provided in device string!
[ 1628.897565][ T9177] 
[ 1628.929976][ T9177] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1629.030498][T23125] usb 7-1: Using ep0 maxpacket: 32
[ 1629.064073][T23125] usb 7-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1629.123967][ T5793] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1629.144951][T23125] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1629.183283][T23125] usb 7-1: Product: syz
[ 1629.211862][T23125] usb 7-1: Manufacturer: syz
[ 1629.216504][T23125] usb 7-1: SerialNumber: syz
[ 1629.237073][T23125] usb 7-1: config 0 descriptor??
[ 1629.287132][T23125] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1629.409186][ T9183] netlink: 'syz.2.14829': attribute type 2 has an invalid length.
[ 1629.677036][T23125] gspca_topro: reg_w err -71
[ 1629.686963][ T9185] netlink: 'syz.7.14832': attribute type 21 has an invalid length.
[ 1629.720515][T23125] gspca_topro: Sensor soi763a
[ 1629.724980][ T9185] netlink: 156 bytes leftover after parsing attributes in process `syz.7.14832'.
[ 1629.740573][T26837] Bluetooth: hci5: command 0x0406 tx timeout
[ 1629.792077][T23125] usb 7-1: USB disconnect, device number 18
[ 1630.554904][ T9208] netlink: 17 bytes leftover after parsing attributes in process `syz.6.14841'.
[ 1631.110199][ T9231] netlink: 'syz.2.14854': attribute type 28 has an invalid length.
[ 1631.200831][ T9225] bond3 (unregistering): Released all slaves
[ 1631.374042][ T9240] netlink: 8 bytes leftover after parsing attributes in process `syz.6.14856'.
[ 1631.453136][ T9243] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[ 1631.560814][T23324] usb 1-1: new high-speed USB device number 59 using dummy_hcd
[ 1631.740516][T23324] usb 1-1: Using ep0 maxpacket: 32
[ 1631.765579][T23324] usb 1-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1631.801151][T23324] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1631.838126][T23324] usb 1-1: Product: syz
[ 1631.848348][ T9258] loop6: detected capacity change from 0 to 16
[ 1631.852978][T23324] usb 1-1: Manufacturer: syz
[ 1631.872776][T23324] usb 1-1: SerialNumber: syz
[ 1631.881973][ T9258] MTD: Attempt to mount non-MTD device "/dev/loop6"
[ 1631.933686][T23324] usb 1-1: config 0 descriptor??
[ 1631.972593][T23324] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1632.389492][T23324] gspca_topro: reg_w err -71
[ 1632.432174][T23324] gspca_topro: Sensor soi763a
[ 1632.472673][T23324] usb 1-1: USB disconnect, device number 59
[ 1632.749739][ T9271] 8021q: VLANs not supported on lo
[ 1632.811239][ T9250] loop4: detected capacity change from 0 to 32768
[ 1632.844381][ T9256] loop8: detected capacity change from 0 to 32768
[ 1632.858143][ T9250] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.14861 (9250)
[ 1632.935343][ T9256] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.14863 (9256)
[ 1632.971282][ T9250] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1632.985732][ T9250] BTRFS info (device loop4): using blake2b checksum algorithm
[ 1632.993394][ T9253] loop7: detected capacity change from 0 to 32768
[ 1633.008756][ T9253] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.14862 (9253)
[ 1633.022695][ T9256] BTRFS info (device loop8): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1633.050308][ T9256] BTRFS info (device loop8): using sha256 checksum algorithm
[ 1633.066448][ T9253] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1633.117889][ T9253] BTRFS info (device loop7): using crc32c checksum algorithm
[ 1633.240905][T23324] usb 7-1: new full-speed USB device number 19 using dummy_hcd
[ 1633.278788][ T9250] BTRFS info (device loop4 state EC): setting nodatasum
[ 1633.289946][ T9250] BTRFS info (device loop4 state EC): setting nodatacow
[ 1633.298695][ T9250] BTRFS info (device loop4 state EC): disabling log replay at mount time
[ 1633.308059][ T9250] BTRFS info (device loop4 state EC): enabling free space tree
[ 1633.317819][ T9250] BTRFS info (device loop4 state EC): ignoring data csums
[ 1633.413808][ T9253] BTRFS info (device loop7): enabling ssd optimizations
[ 1633.454960][ T9287] bond5 (unregistering): Released all slaves
[ 1633.465251][T23324] usb 7-1: config 1 has an invalid interface number: 105 but max is 0
[ 1633.484867][ T9253] BTRFS info (device loop7): turning on flush-on-commit
[ 1633.495883][T23324] usb 7-1: config 1 has no interface number 0
[ 1633.500255][ T9256] BTRFS info (device loop8): enabling ssd optimizations
[ 1633.527096][T23324] usb 7-1: config 1 interface 105 has no altsetting 0
[ 1633.541916][ T9253] BTRFS info (device loop7): enabling free space tree
[ 1633.552659][ T9256] BTRFS info (device loop8): turning on async discard
[ 1633.569148][T23324] usb 7-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[ 1633.571757][ T9253] BTRFS info (device loop7): enabling auto defrag
[ 1633.594662][ T9256] BTRFS info (device loop8): enabling free space tree
[ 1633.624592][ T9253] BTRFS info (device loop7): use lzo compression, level 1
[ 1633.624973][T23324] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1633.658265][ T9253] BTRFS info (device loop7): max_inline set to 4096
[ 1633.703959][T23324] usb 7-1: Product: syz
[ 1633.737044][T23324] usb 7-1: Manufacturer: syz
[ 1633.745978][ T5801] BTRFS info (device loop4 state EC): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1633.758380][T23324] usb 7-1: SerialNumber: syz
[ 1633.847107][ T5585] BTRFS info (device loop8): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1634.044308][T31017] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1634.081295][T23324] aqc111 7-1:1.105: probe with driver aqc111 failed with error -71
[ 1634.148720][T23324] usb 7-1: USB disconnect, device number 19
[ 1635.111000][T23324] IPVS: starting estimator thread 0...
[ 1635.262562][ T9350] IPVS: using max 22 ests per chain, 52800 per kthread
[ 1635.330723][T23325] usb 5-1: new high-speed USB device number 84 using dummy_hcd
[ 1635.353337][ T9355] netlink: 'syz.7.14888': attribute type 1 has an invalid length.
[ 1635.395379][ T9355] netlink: 224 bytes leftover after parsing attributes in process `syz.7.14888'.
[ 1635.563749][T23325] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1635.583134][T23325] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1635.589486][T23125] usb 3-1: new high-speed USB device number 86 using dummy_hcd
[ 1635.625401][T23325] usb 5-1: Product: syz
[ 1635.648891][T23325] usb 5-1: Manufacturer: syz
[ 1635.672215][T23325] usb 5-1: SerialNumber: syz
[ 1635.724648][T23325] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1635.756128][T23119] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1635.791070][T23125] usb 3-1: Using ep0 maxpacket: 8
[ 1635.808653][T23125] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1635.835031][ T9333] loop0: detected capacity change from 0 to 32768
[ 1635.846948][T23125] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1635.881743][T23125] usb 3-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[ 1635.895033][ T9362] netlink: 'syz.6.14892': attribute type 11 has an invalid length.
[ 1635.934005][T23125] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1635.997347][T23125] usb 3-1: Product: syz
[ 1636.001678][T23125] usb 3-1: Manufacturer: syz
[ 1636.007074][T23125] usb 3-1: SerialNumber: syz
[ 1636.023657][T23125] usb 3-1: config 0 descriptor??
[ 1636.049214][ T9333] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1636.136883][ T9369] loop7: detected capacity change from 0 to 512
[ 1636.149006][ T9369] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1636.197786][ T9340] loop8: detected capacity change from 0 to 32768
[ 1636.259726][ T9369] EXT4-fs error (device loop7): mb_free_blocks:2046: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 1636.280438][    C1] EXT4-fs (loop7): error count since last fsck: 1
[ 1636.286913][    C1] EXT4-fs (loop7): initial error at time 2000001440: mb_free_blocks:2046: inode 11: block 64
[ 1636.297193][    C1] EXT4-fs (loop7): last error at time 2000001440: mb_free_blocks:2046: inode 11: block 64
[ 1636.298846][ T9369] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #11: comm syz.7.14893: corrupted inode contents
[ 1636.326870][ T9369] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1636.327456][ T9369] EXT4-fs error (device loop7): ext4_dirty_inode:6587: inode #11: comm syz.7.14893: mark_inode_dirty error
[ 1636.336852][ T9340] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.14878 (9340)
[ 1636.349005][ T9369] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1636.387411][ T5995] usb 5-1: USB disconnect, device number 84
[ 1636.424582][ T9340] BTRFS info (device loop8): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1636.455226][ T9340] BTRFS info (device loop8): using crc32c checksum algorithm
[ 1636.480894][ T9369] EXT4-fs error (device loop7): ext4_free_branches:1020: inode #11: comm syz.7.14893: invalid indirect mapped block 1 (level 1)
[ 1636.509644][ T9369] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1636.510094][ T9369] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #11: comm syz.7.14893: corrupted inode contents
[ 1636.538337][ T9333] XFS (loop0): Ending clean mount
[ 1636.550978][ T9369] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1636.563515][ T9369] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[ 1636.647428][ T9369] loop7: lost filesystem error report for type 5 error -117
[ 1636.647816][ T9369] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #11: comm syz.7.14893: corrupted inode contents
[ 1636.684070][ T9369] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1636.686714][ T9369] EXT4-fs error (device loop7): ext4_truncate:4690: inode #11: comm syz.7.14893: mark_inode_dirty error
[ 1636.691104][T23324] usb 3-1: USB disconnect, device number 86
[ 1636.712968][ T9369] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1636.717496][ T9340] BTRFS info (device loop8): enabling ssd optimizations
[ 1636.734723][ T9369] EXT4-fs error (device loop7) in ext4_process_orphan:345: Corrupt filesystem
[ 1636.750239][ T9369] loop7: lost filesystem error report for type 5 error -117
[ 1636.750786][ T9369] EXT4-fs (loop7): 1 truncate cleaned up
[ 1636.757592][ T9340] BTRFS info (device loop8): turning on flush-on-commit
[ 1636.772901][ T9369] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1636.810171][ T9369] EXT4-fs error (device loop7): ext4_find_dest_de:2049: inode #2: block 13: comm syz.7.14893: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[ 1636.831377][ T9340] BTRFS info (device loop8): enabling free space tree
[ 1636.854787][ T9340] BTRFS info (device loop8): enabling auto defrag
[ 1636.864318][ T5793] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1636.866389][ T9340] BTRFS info (device loop8): use lzo compression, level 1
[ 1636.873408][T23119] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[ 1636.882027][ T9340] BTRFS info (device loop8): max_inline set to 4096
[ 1636.911707][T23119] ath9k_htc: Failed to initialize the device
[ 1636.920554][ T5995] usb 5-1: ath9k_htc: USB layer deinitialized
[ 1637.073976][ T9340] overlayfs: missing 'lowerdir'
[ 1637.132050][T31017] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1637.294688][ T5585] BTRFS info (device loop8): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1637.510351][ T9398] program syz.6.14898 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1637.520369][ T9401] netlink: 'syz.4.14900': attribute type 4 has an invalid length.
[ 1637.568333][ T9404] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.14902'.
[ 1637.596229][ T9401] netlink: 17 bytes leftover after parsing attributes in process `syz.4.14900'.
[ 1637.663583][ T9395] bond1 (unregistering): Released all slaves
[ 1637.883100][ T9410] xt_AUDIT: Audit type out of range (valid range: 0..2)
[ 1638.191588][ T9415] netlink: 4 bytes leftover after parsing attributes in process `syz.8.14905'.
[ 1640.240722][T23130] usb 1-1: new high-speed USB device number 60 using dummy_hcd
[ 1640.345994][T23324] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1640.419242][T23130] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1640.459338][T23130] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1640.481302][T23130] usb 1-1: config 0 descriptor??
[ 1640.550207][T23324] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1640.596335][T23324] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1640.640503][T23324] usb 9-1: Product: syz
[ 1640.668616][T23324] usb 9-1: Manufacturer: syz
[ 1640.695432][T23324] usb 9-1: SerialNumber: syz
[ 1640.707773][T23130] ath6kl: Failed to submit usb control message: -71
[ 1640.722430][T23130] ath6kl: unable to send the bmi data to the device: -71
[ 1640.750081][T23324] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1640.750481][T23130] ath6kl: Unable to send get target info: -71
[ 1640.788442][T23119] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1640.792895][T23130] ath6kl: Failed to init ath6kl core: -71
[ 1640.837500][T23130] ath6kl_usb 1-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1640.869393][T23130] usb 1-1: USB disconnect, device number 60
[ 1640.933753][ T9522] netlink: 'syz.6.14959': attribute type 10 has an invalid length.
[ 1641.034892][ T9524] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14960'.
[ 1641.082745][ T9524] gre0: Master is either lo or non-ether device
[ 1641.335723][T23125] usb 9-1: USB disconnect, device number 6
[ 1641.542659][T23130] usb 3-1: new full-speed USB device number 87 using dummy_hcd
[ 1641.558742][ T9539] netlink: 'syz.0.14967': attribute type 9 has an invalid length.
[ 1641.714518][T23130] usb 3-1: config 0 has an invalid interface number: 41 but max is 0
[ 1641.750611][T23130] usb 3-1: config 0 has no interface number 0
[ 1641.770770][T23130] usb 3-1: config 0 interface 41 has no altsetting 0
[ 1641.796439][T23130] usb 3-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1641.818678][T23130] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1641.843464][T23130] usb 3-1: Product: syz
[ 1641.860974][T23130] usb 3-1: Manufacturer: syz
[ 1641.879948][T23130] usb 3-1: SerialNumber: syz
[ 1641.902152][T23119] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[ 1641.919097][T23130] usb 3-1: config 0 descriptor??
[ 1641.926095][T23119] ath9k_htc: Failed to initialize the device
[ 1641.966693][T23125] usb 9-1: ath9k_htc: USB layer deinitialized
[ 1642.182632][ T9559] loop7: detected capacity change from 0 to 256
[ 1642.390383][ T9559] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000001)
[ 1642.399450][T23130] CoreChips 3-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71
[ 1642.443261][T23130] CoreChips 3-1:0.41: probe with driver CoreChips failed with error -71
[ 1642.497499][ T9568] netlink: 'syz.8.14981': attribute type 10 has an invalid length.
[ 1642.511910][T23130] usb 3-1: USB disconnect, device number 87
[ 1642.578747][ T9568] team0: Device wg2 is of different type
[ 1642.630224][ T9565] loop4: detected capacity change from 0 to 4096
[ 1642.723388][ T9565] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1642.759233][ T9565] ntfs3(loop4): Failed to load $Extend (-22).
[ 1642.784244][ T9565] ntfs3(loop4): Failed to initialize $Extend.
[ 1643.110488][T23119] usb 1-1: new high-speed USB device number 61 using dummy_hcd
[ 1643.290918][T23119] usb 1-1: Using ep0 maxpacket: 8
[ 1643.327180][T23119] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1643.353807][T23119] usb 1-1: config 127 has an invalid interface number: 1 but max is 0
[ 1643.375842][T23119] usb 1-1: config 127 has no interface number 0
[ 1643.405124][T23119] usb 1-1: config 127 interface 1 altsetting 2 bulk endpoint 0xC has invalid maxpacket 16
[ 1643.452993][T23119] usb 1-1: config 127 interface 1 has no altsetting 0
[ 1643.495422][T23119] usb 1-1: New USB device found, idVendor=112a, idProduct=0005, bcdDevice=df.89
[ 1643.527185][T23119] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1643.561680][T23119] usb 1-1: Product: syz
[ 1643.574927][T23119] usb 1-1: Manufacturer: syz
[ 1643.591801][T23119] usb 1-1: SerialNumber: syz
[ 1643.624415][ T9578] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1643.660677][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1643.891142][T23119] redrat3 1-1:127.1: Couldn't find all endpoints
[ 1643.934449][T23119] usb 1-1: USB disconnect, device number 61
[ 1644.118125][ T9619] netlink: 'syz.8.15007': attribute type 2 has an invalid length.
[ 1644.164055][ T9619] netlink: 'syz.8.15007': attribute type 1 has an invalid length.
[ 1644.728888][T23130] IPVS: starting estimator thread 0...
[ 1644.840544][ T9643] IPVS: using max 23 ests per chain, 55200 per kthread
[ 1644.953056][ T9649] loop8: detected capacity change from 0 to 512
[ 1644.986051][ T9649] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1645.054927][ T9649] EXT4-fs error (device loop8): mb_free_blocks:2046: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 1645.070427][    C1] EXT4-fs (loop8): error count since last fsck: 1
[ 1645.076877][    C1] EXT4-fs (loop8): initial error at time 2000001449: mb_free_blocks:2046: inode 11: block 64
[ 1645.087157][    C1] EXT4-fs (loop8): last error at time 2000001449: mb_free_blocks:2046: inode 11: block 64
[ 1645.162142][ T9649] EXT4-fs error (device loop8): ext4_do_update_inode:5690: inode #11: comm syz.8.15021: corrupted inode contents
[ 1645.201752][ T9649] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1645.202728][ T9649] EXT4-fs error (device loop8): ext4_dirty_inode:6587: inode #11: comm syz.8.15021: mark_inode_dirty error
[ 1645.237944][ T9659] netlink: 188 bytes leftover after parsing attributes in process `syz.2.15024'.
[ 1645.253581][ T9649] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1645.256825][ T9649] EXT4-fs error (device loop8): ext4_free_branches:1020: inode #11: comm syz.8.15021: invalid indirect mapped block 1 (level 1)
[ 1645.331631][ T9649] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1645.332087][ T9649] EXT4-fs error (device loop8): ext4_do_update_inode:5690: inode #11: comm syz.8.15021: corrupted inode contents
[ 1645.406280][ T9649] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1645.406796][ T9649] EXT4-fs error (device loop8) in ext4_orphan_del:303: Corrupt filesystem
[ 1645.475886][ T9649] loop8: lost filesystem error report for type 5 error -117
[ 1645.476577][ T9649] EXT4-fs error (device loop8): ext4_do_update_inode:5690: inode #11: comm syz.8.15021: corrupted inode contents
[ 1645.550338][ T9649] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1645.552624][ T9649] EXT4-fs error (device loop8): ext4_truncate:4690: inode #11: comm syz.8.15021: mark_inode_dirty error
[ 1645.630526][ T9649] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1645.639406][ T9649] EXT4-fs error (device loop8) in ext4_process_orphan:345: Corrupt filesystem
[ 1645.678867][ T9671] loop4: detected capacity change from 0 to 512
[ 1645.723351][ T9671] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 1645.744998][T23324] IPVS: starting estimator thread 0...
[ 1645.763613][ T9649] loop8: lost filesystem error report for type 5 error -117
[ 1645.764126][ T9649] EXT4-fs (loop8): 1 truncate cleaned up
[ 1645.825210][ T9649] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1645.851577][ T9674] IPVS: using max 24 ests per chain, 57600 per kthread
[ 1646.003965][ T9649] EXT4-fs error (device loop8): ext4_find_dest_de:2049: inode #2: block 13: comm syz.8.15021: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[ 1646.032986][ T9632] loop7: detected capacity change from 0 to 32768
[ 1646.105393][ T9632] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1646.342658][ T5585] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1646.531181][ T9632] XFS (loop7): Ending clean mount
[ 1646.770946][T31017] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1646.879599][ T5592] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1646.892970][ T9667] loop2: detected capacity change from 0 to 32768
[ 1646.902964][ T9667] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.15029 (9667)
[ 1647.020986][ T9667] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1647.050480][ T9667] BTRFS info (device loop2): using sha256 checksum algorithm
[ 1647.123470][T23119] IPVS: starting estimator thread 0...
[ 1647.210902][ T9718] IPVS: using max 22 ests per chain, 52800 per kthread
[ 1647.276984][ T9667] BTRFS info (device loop2): enabling ssd optimizations
[ 1647.337101][ T9667] BTRFS info (device loop2): turning on async discard
[ 1647.394905][ T9667] BTRFS info (device loop2): enabling free space tree
[ 1647.638444][ T5803] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1648.623230][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1649.584917][ T9753] loop7: detected capacity change from 0 to 32768
[ 1649.661021][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1649.673405][T23125] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[ 1649.845830][T23125] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1649.892735][T23125] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1649.946734][T23125] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[ 1649.986685][T23125] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1650.023143][T23125] usb 9-1: SerialNumber: syz
[ 1650.057755][ T9776] loop0: detected capacity change from 0 to 32768
[ 1650.090269][T23125] usb 9-1: 0:2 : does not exist
[ 1650.100168][ T9776] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.15070 (9776)
[ 1650.156826][ T9776] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1650.194435][ T9776] BTRFS info (device loop0): using sha256 checksum algorithm
[ 1650.364053][ T9776] BTRFS info (device loop0): enabling ssd optimizations
[ 1650.374299][ T9776] BTRFS info (device loop0): turning on async discard
[ 1650.382091][ T9776] BTRFS info (device loop0): enabling free space tree
[ 1650.459068][ T9826] netlink: 'syz.2.15087': attribute type 10 has an invalid length.
[ 1650.470567][ T9826] netlink: 228 bytes leftover after parsing attributes in process `syz.2.15087'.
[ 1650.537940][T23125] usb 9-1: USB disconnect, device number 7
[ 1650.702542][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1650.765032][ T5743] udevd[5743]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1650.843865][ T5793] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1650.917551][ T9794] loop6: detected capacity change from 0 to 32768
[ 1650.967118][ T9794] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.15079 (9794)
[ 1651.044121][ T9794] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1651.080791][ T9794] BTRFS info (device loop6): using crc32c checksum algorithm
[ 1651.120510][T23324] usb 3-1: new high-speed USB device number 88 using dummy_hcd
[ 1651.296762][T23324] usb 3-1: Using ep0 maxpacket: 32
[ 1651.320767][ T9794] BTRFS info (device loop6): enabling ssd optimizations
[ 1651.355302][T23324] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86
[ 1651.382335][ T9794] BTRFS info (device loop6): turning on flush-on-commit
[ 1651.409776][ T9794] BTRFS info (device loop6): enabling free space tree
[ 1651.440038][T23324] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[ 1651.447306][ T9794] BTRFS info (device loop6): enabling auto defrag
[ 1651.486057][T23324] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[ 1651.498867][ T9794] BTRFS info (device loop6): use lzo compression, level 1
[ 1651.528227][T23324] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1651.542782][ T9794] BTRFS info (device loop6): max_inline set to 4096
[ 1651.573691][T23324] usb 3-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[ 1651.609803][T23324] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1651.641625][T23324] usb 3-1: Product: syz
[ 1651.658152][T23324] usb 3-1: Manufacturer: syz
[ 1651.681879][T23324] usb 3-1: SerialNumber: syz
[ 1651.716592][T23324] usb 3-1: config 0 descriptor??
[ 1651.740725][T23125] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1651.993693][T23325] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1652.012352][ T5995] usb 3-1: USB disconnect, device number 88
[ 1652.164504][T26835] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1652.166282][ T9869] loop4: detected capacity change from 0 to 16
[ 1652.208029][   T30] audit: type=1326 audit(2000001456.290:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.7.15103" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87319ce59 code=0x7ffc0000
[ 1652.228902][ T9869] erofs (device loop4): mounted with root inode @ nid 36.
[ 1652.332693][   T30] audit: type=1326 audit(2000001456.290:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.7.15103" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87319ce59 code=0x7ffc0000
[ 1652.357153][ T9869] erofs (device loop4): readahead error at folio 2 @ nid 89
[ 1652.423946][ T9869] erofs (device loop4): inconsistent algorithmtype 2 for nid 89
[ 1652.472074][   T30] audit: type=1326 audit(2000001456.290:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.7.15103" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fa87319ce59 code=0x7ffc0000
[ 1652.480816][ T9869] erofs (device loop4): readahead error at folio 1 @ nid 89
[ 1652.606515][ T9876] loop7: detected capacity change from 0 to 256
[ 1652.613108][ T9869] erofs (device loop4): inconsistent algorithmtype 2 for nid 89
[ 1652.619699][   T30] audit: type=1326 audit(2000001456.290:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9870 comm="syz.7.15103" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa87319ce59 code=0x7ffc0000
[ 1652.622290][T28203] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1652.705670][ T9869] erofs (device loop4): readahead error at folio 0 @ nid 89
[ 1652.718668][ T9876] FAT-fs (loop7): Directory bread(block 64) failed
[ 1652.738203][ T9876] FAT-fs (loop7): Directory bread(block 65) failed
[ 1652.780165][ T9869] erofs (device loop4): inconsistent algorithmtype 2 for nid 89
[ 1652.788401][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1652.824294][ T9876] FAT-fs (loop7): Directory bread(block 66) failed
[ 1652.830868][ T9869] erofs (device loop4): inconsistent algorithmtype 2 for nid 89
[ 1652.830906][ T9869] erofs (device loop4): read error -117 @ 0 of nid 89
[ 1652.861092][ T9876] FAT-fs (loop7): Directory bread(block 67) failed
[ 1652.867917][ T9876] FAT-fs (loop7): Directory bread(block 68) failed
[ 1652.901246][ T9876] FAT-fs (loop7): Directory bread(block 69) failed
[ 1652.921917][   T30] audit: type=1800 audit(2000001457.000:364): pid=9869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.15101" name="file3" dev="loop4" ino=89 res=0 errno=0
[ 1652.966682][ T9876] FAT-fs (loop7): Directory bread(block 70) failed
[ 1652.988314][ T9876] FAT-fs (loop7): Directory bread(block 71) failed
[ 1653.041445][ T9876] FAT-fs (loop7): Directory bread(block 72) failed
[ 1653.049078][ T9876] FAT-fs (loop7): Directory bread(block 73) failed
[ 1653.358281][ T9885] loop6: detected capacity change from 0 to 2048
[ 1653.408424][ T9885] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1653.515958][ T9891] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1653.549563][ T9863] loop8: detected capacity change from 0 to 32768
[ 1653.579701][ T9885] NILFS (loop6): the device already has a read/write mount.
[ 1653.655875][ T9863] XFS (loop8): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1653.821172][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1653.900944][ T5995] usb 8-1: new low-speed USB device number 20 using dummy_hcd
[ 1653.915239][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1653.952529][ T9863] XFS (loop8): Ending clean mount
[ 1654.066522][ T5995] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1654.084711][ T5995] usb 8-1: config 172 has an invalid interface number: 190 but max is 1
[ 1654.115151][ T5995] usb 8-1: config 172 has an invalid descriptor of length 0, skipping remainder of the config
[ 1654.149170][ T5995] usb 8-1: config 172 has no interface number 1
[ 1654.167856][ T5995] usb 8-1: config 172 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1654.212827][ T5995] usb 8-1: config 172 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0
[ 1654.262011][ T5585] XFS (loop8): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1654.283559][ T5995] usb 8-1: string descriptor 0 read error: -22
[ 1654.295779][ T5995] usb 8-1: New USB device found, idVendor=04cb, idProduct=0127, bcdDevice=3a.be
[ 1654.344405][ T9881] loop2: detected capacity change from 0 to 40427
[ 1654.369224][ T5995] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1654.373022][ T9881] F2FS-fs (loop2): invalid crc value
[ 1654.450098][ T5995] gspca_main: finepix-2.14.0 probing 04cb:0127
[ 1654.689106][ T5995] usb 8-1: USB disconnect, device number 20
[ 1654.855251][ T9920] netlink: 'syz.6.15122': attribute type 5 has an invalid length.
[ 1654.861510][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1654.912551][ T9920] netlink: 45 bytes leftover after parsing attributes in process `syz.6.15122'.
[ 1654.927130][ T9881] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1655.026491][ T9881] F2FS-fs (loop2): Start checkpoint disabled!
[ 1655.176776][ T9881] F2FS-fs (loop2): f2fs_disable_checkpoint() finish, err:0
[ 1655.203106][ T9881] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1655.901109][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1656.438458][ T9931] loop8: detected capacity change from 0 to 32768
[ 1656.478014][ T9931] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.15119 (9931)
[ 1656.544345][ T9931] BTRFS info (device loop8): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1656.580255][ T9931] BTRFS info (device loop8): using sha256 checksum algorithm
[ 1656.722148][ T9931] BTRFS info (device loop8): enabling ssd optimizations
[ 1656.738077][ T9931] BTRFS info (device loop8): turning on async discard
[ 1656.759117][ T9931] BTRFS info (device loop8): enabling free space tree
[ 1656.940947][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1656.994283][ T9992] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1657.085453][ T5585] BTRFS info (device loop8): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1657.126681][ T9999] netlink: 72 bytes leftover after parsing attributes in process `syz.0.15152'.
[ 1657.190840][ T9999] netlink: 72 bytes leftover after parsing attributes in process `syz.0.15152'.
[ 1657.336991][T10001] netlink: 'syz.2.15154': attribute type 10 has an invalid length.
[ 1657.707680][T10015] netlink: 8 bytes leftover after parsing attributes in process `syz.6.15160'.
[ 1657.984179][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1658.350535][ T5995] usb 9-1: new full-speed USB device number 8 using dummy_hcd
[ 1658.519883][ T5995] usb 9-1: New USB device found, idVendor=0a2c, idProduct=0008, bcdDevice=c7.b3
[ 1658.566684][ T5995] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1658.582040][ T6024] usb 5-1: new full-speed USB device number 85 using dummy_hcd
[ 1658.602907][T10043] xt_hashlimit: max too large, truncated to 1048576
[ 1658.615078][ T5995] usb 9-1: Product: syz
[ 1658.630041][ T5995] usb 9-1: Manufacturer: syz
[ 1658.649496][ T5995] usb 9-1: SerialNumber: syz
[ 1658.681760][ T5995] usb 9-1: config 0 descriptor??
[ 1658.709141][ T5995] cypress_cy7c63 9-1:0.0: Cypress CY7C63xxx device now attached
[ 1658.717493][T10048] netlink: 60 bytes leftover after parsing attributes in process `syz.6.15175'.
[ 1658.763430][ T6024] usb 5-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1658.800647][ T6024] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1658.825816][ T6024] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1658.860946][ T6024] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1658.913519][ T6024] usb 5-1: config 1 has no interface number 0
[ 1658.940209][ T6024] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1658.955995][ T5995] usb 9-1: USB disconnect, device number 8
[ 1658.970081][ T5995] cypress_cy7c63 9-1:0.0: Cypress CY7C63xxx device now disconnected
[ 1658.987620][ T6024] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1659.009150][T10055] netlink: 172 bytes leftover after parsing attributes in process `syz.0.15180'.
[ 1659.026765][T23125] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1659.044434][ T6024] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found
[ 1659.077479][T10055] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15180'.
[ 1659.105357][T10055] netlink: 172 bytes leftover after parsing attributes in process `syz.0.15180'.
[ 1659.165887][T10055] netlink: 100 bytes leftover after parsing attributes in process `syz.0.15180'.
[ 1659.188303][T10059] loop2: detected capacity change from 0 to 2048
[ 1659.207158][T10055] netlink: 32 bytes leftover after parsing attributes in process `syz.0.15180'.
[ 1659.257317][ T6024] snd_usb_pod 5-1:1.1: endpoint not available, using fallback values
[ 1659.269045][T10059] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1659.281713][ T6024] snd_usb_pod 5-1:1.1: invalid control EP
[ 1659.288953][ T6024] snd_usb_pod 5-1:1.1: cannot start listening: -22
[ 1659.297062][ T6024] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected
[ 1659.310303][ T6024] snd_usb_pod 5-1:1.1: probe with driver snd_usb_pod failed with error -22
[ 1659.492457][ T6024] usb 5-1: USB disconnect, device number 85
[ 1659.553876][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1659.576978][T10073] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[ 1659.587802][T10074] loop7: detected capacity change from 0 to 512
[ 1659.661848][T10074] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1659.683232][T10077] x_tables: unsorted underflow at hook 3
[ 1660.051734][T31017] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1660.060850][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1660.363787][T10099] loop4: detected capacity change from 0 to 256
[ 1660.459215][T10099] FAT-fs (loop4): Directory bread(block 64) failed
[ 1660.487714][T10099] FAT-fs (loop4): Directory bread(block 65) failed
[ 1660.508717][T10099] FAT-fs (loop4): Directory bread(block 66) failed
[ 1660.544541][T10099] FAT-fs (loop4): Directory bread(block 67) failed
[ 1660.560620][T10099] FAT-fs (loop4): Directory bread(block 68) failed
[ 1660.577315][T10099] FAT-fs (loop4): Directory bread(block 69) failed
[ 1660.611559][T10099] FAT-fs (loop4): Directory bread(block 70) failed
[ 1660.639061][T10099] FAT-fs (loop4): Directory bread(block 71) failed
[ 1660.663284][T10099] FAT-fs (loop4): Directory bread(block 72) failed
[ 1660.686027][T10099] FAT-fs (loop4): Directory bread(block 73) failed
[ 1660.754438][T10103] nvme_fabrics: missing parameter 'transport=%s'
[ 1660.766693][T10099] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1660.773066][T10103] nvme_fabrics: missing parameter 'nqn=%s'
[ 1660.942151][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1661.100678][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1661.249008][T23119] usb 1-1: new high-speed USB device number 62 using dummy_hcd
[ 1661.440514][T23119] usb 1-1: Using ep0 maxpacket: 16
[ 1661.462544][T23119] usb 1-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1661.493554][T23119] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[ 1661.533581][T23119] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[ 1661.566450][T23119] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[ 1661.602313][T23119] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1661.642569][T23119] usb 1-1: config 0 has no interface number 0
[ 1661.671689][T23119] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[ 1661.716144][T23119] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[ 1661.765395][T23119] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1661.803299][T23119] usb 1-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1661.857866][T23119] usb 1-1: config 0 interface 125 has no altsetting 0
[ 1661.891384][T23119] usb 1-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1661.921862][T23119] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1661.951023][T23119] usb 1-1: Product: syz
[ 1661.964693][T23119] usb 1-1: Manufacturer: syz
[ 1661.979613][T23119] usb 1-1: SerialNumber: syz
[ 1662.007655][T10145] loop8: detected capacity change from 0 to 2048
[ 1662.013775][T23119] usb 1-1: config 0 descriptor??
[ 1662.065013][T10145] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1662.140056][   T30] audit: type=1800 audit(2000001466.230:365): pid=10145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.15223" name="file1" dev="loop8" ino=1367 res=0 errno=0
[ 1662.183785][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1662.578126][T10164] loop2: detected capacity change from 0 to 256
[ 1662.596430][ T6024] usb 1-1: USB disconnect, device number 62
[ 1662.682190][T10164] FAT-fs (loop2): Directory bread(block 64) failed
[ 1662.709366][T10164] FAT-fs (loop2): Directory bread(block 65) failed
[ 1662.733450][T10164] FAT-fs (loop2): Directory bread(block 66) failed
[ 1662.767238][T10164] FAT-fs (loop2): Directory bread(block 67) failed
[ 1662.790653][T10164] FAT-fs (loop2): Directory bread(block 68) failed
[ 1662.808997][T10164] FAT-fs (loop2): Directory bread(block 69) failed
[ 1662.837998][T10164] FAT-fs (loop2): Directory bread(block 70) failed
[ 1662.870085][T10164] FAT-fs (loop2): Directory bread(block 71) failed
[ 1662.890894][T10164] FAT-fs (loop2): Directory bread(block 72) failed
[ 1662.915156][T10164] FAT-fs (loop2): Directory bread(block 73) failed
[ 1662.956239][T10176] xt_policy: neither incoming nor outgoing policy selected
[ 1663.108106][T10182] loop4: detected capacity change from 0 to 1024
[ 1663.149955][T10182] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[ 1663.218659][T10186] IPVS: set_ctl: invalid protocol: 2 0.0.0.0:20002
[ 1663.285417][T23125] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1663.490210][T10188] loop8: detected capacity change from 0 to 2048
[ 1663.534491][T10188] NILFS (loop8): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1663.629812][T10199] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1663.689100][T10188] NILFS (loop8): the device already has a read/write mount.
[ 1663.787509][T10203] xt_limit: Overflow, try lower: 167772/2147483648
[ 1663.983452][T10210] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1664.548254][T10230] netlink: 'syz.7.15262': attribute type 3 has an invalid length.
[ 1664.784096][T23324] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1664.868498][T10241] x_tables: ip_tables: icmp match: only valid for protocol 1
[ 1664.909995][T10239] loop7: detected capacity change from 0 to 2048
[ 1664.950752][T10239] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1665.021739][T10249] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1665.072332][T10239] NILFS (loop7): the device already has a read/write mount.
[ 1665.139689][ T5797] Bluetooth: unknown link type 128
[ 1665.342842][T23125] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1665.635130][T10267] vti0: entered promiscuous mode
[ 1665.654140][T10267] vti0: entered allmulticast mode
[ 1665.886218][ T5797] Bluetooth: hci5: Malformed LE Event: 0x1b
[ 1666.066782][T10280] loop0: detected capacity change from 0 to 512
[ 1666.104850][T10280] EXT4-fs: Ignoring removed nobh option
[ 1666.134884][T10243] loop6: detected capacity change from 0 to 32768
[ 1666.171124][T10243] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.15279 (10243)
[ 1666.217820][T10280] EXT4-fs error (device loop0): ext4_do_update_inode:5690: inode #3: comm syz.0.15284: corrupted inode contents
[ 1666.241192][T10280] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1666.241810][T10280] EXT4-fs (loop0): Remounting filesystem read-only
[ 1666.250938][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1666.250970][    C0] EXT4-fs (loop0): initial error at time 2000001470: ext4_do_update_inode:5690: inode 3
[ 1666.251030][    C0] EXT4-fs (loop0): last error at time 2000001470: ext4_do_update_inode:5690: inode 3
[ 1666.335220][T10243] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1666.373180][T10280] Quota error (device loop0): write_blk: dquota write failed
[ 1666.379356][T10243] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1666.386754][T10280] Quota error (device loop0): qtree_write_dquot: Error -30 occurred while creating quota
[ 1666.398420][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1666.448597][T10280] EXT4-fs (loop0): 1 truncate cleaned up
[ 1666.476849][T10280] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1666.516712][T10280] ext4 filesystem being mounted at /2540/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1666.543184][T23125] usb 5-1: new full-speed USB device number 86 using dummy_hcd
[ 1666.580079][T10243] BTRFS info (device loop6): enabling ssd optimizations
[ 1666.617029][T10243] BTRFS info (device loop6): turning on async discard
[ 1666.658627][T10243] BTRFS info (device loop6): enabling free space tree
[ 1666.713195][T23125] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1666.733667][T23125] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1666.756789][T23125] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[ 1666.776598][T23125] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1666.795114][T23125] usb 5-1: SerialNumber: syz
[ 1666.830942][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1666.843015][T23125] usb 5-1: 0:2 : does not exist
[ 1667.056316][T26835] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1667.200753][ T5797] Bluetooth: hci5: command 0x0406 tx timeout
[ 1667.367812][T23324] usb 5-1: USB disconnect, device number 86
[ 1667.426838][T23125] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1667.726905][T10324] nvme_fabrics: missing parameter 'transport=%s'
[ 1667.743911][ T5741] udevd[5741]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1667.787663][T10324] nvme_fabrics: missing parameter 'nqn=%s'
[ 1667.980931][T23125] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1668.484879][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1668.608777][T10364] loop2: detected capacity change from 0 to 128
[ 1669.067047][T10374] loop6: detected capacity change from 0 to 2048
[ 1669.157314][T10374] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1669.520528][ T5995] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[ 1669.554461][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1669.710547][ T5995] usb 8-1: Using ep0 maxpacket: 32
[ 1669.734224][ T5995] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[ 1669.788397][ T5995] usb 8-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 1669.831917][ T5995] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1669.867965][ T5995] usb 8-1: Product: syz
[ 1669.879437][ T5995] usb 8-1: Manufacturer: syz
[ 1669.895832][ T5995] usb 8-1: SerialNumber: syz
[ 1669.919237][ T5995] usb 8-1: config 0 descriptor??
[ 1669.944681][T10384] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1669.985065][ T5995] hub 8-1:0.0: bad descriptor, ignoring hub
[ 1670.003486][ T5995] hub 8-1:0.0: probe with driver hub failed with error -5
[ 1670.054570][ T5995] input: syz syz as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/input/input108
[ 1670.233412][T23325] usb 8-1: USB disconnect, device number 21
[ 1670.233540][    C1] usbtouchscreen 8-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[ 1670.576827][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1670.625335][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1670.890592][T23325] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1670.971962][T23119] usb 1-1: new high-speed USB device number 63 using dummy_hcd
[ 1671.080610][T23325] usb 9-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[ 1671.118097][T23325] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1671.148665][T23119] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1671.158901][T23325] usb 9-1: Product: syz
[ 1671.177031][T23325] usb 9-1: Manufacturer: syz
[ 1671.186728][T23119] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1671.196681][T23325] usb 9-1: SerialNumber: syz
[ 1671.209020][T23119] usb 1-1: Product: syz
[ 1671.219595][T23325] usb 9-1: config 0 descriptor??
[ 1671.226763][T23119] usb 1-1: Manufacturer: syz
[ 1671.234276][T23119] usb 1-1: SerialNumber: syz
[ 1671.263752][T23325] gspca_main: sq905c-2.14.0 probing 2770:9052
[ 1671.283078][T23119] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1671.311377][T23324] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1671.460980][ T6024] usb 8-1: new full-speed USB device number 22 using dummy_hcd
[ 1671.642980][ T6024] usb 8-1: config 8 has an invalid interface number: 177 but max is 0
[ 1671.669961][T23325] gspca_sq905c: sq905c_read: usb_control_msg failed (-71)
[ 1671.677154][ T6024] usb 8-1: config 8 has no interface number 0
[ 1671.677214][ T6024] usb 8-1: config 8 interface 177 altsetting 9 endpoint 0x9 has invalid maxpacket 1023, setting to 64
[ 1671.677268][ T6024] usb 8-1: config 8 interface 177 has no altsetting 0
[ 1671.677318][ T6024] usb 8-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[ 1671.677369][ T6024] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1671.725417][T10447] raw-gadget.2 gadget.7: fail, usb_ep_enable returned -22
[ 1671.748069][T23125] usb 1-1: USB disconnect, device number 63
[ 1671.800691][T23325] sq905c 9-1:0.0: Reading version command failed
[ 1671.810094][T23325] sq905c 9-1:0.0: probe with driver sq905c failed with error -71
[ 1671.823371][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1671.854397][T23325] usb 9-1: USB disconnect, device number 9
[ 1672.001653][ T6024] usb 8-1: string descriptor 0 read error: -71
[ 1672.027868][    C1] ir_toy 8-1:8.177: out urb status: -71
[ 1672.237629][T10473] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1672.391302][T23324] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[ 1672.413994][T23324] ath9k_htc: Failed to initialize the device
[ 1672.449359][T23125] usb 1-1: ath9k_htc: USB layer deinitialized
[ 1672.540690][ T6024] ir_toy 8-1:8.177: could not write reset command: -110
[ 1672.572435][ T6024] ir_toy 8-1:8.177: probe with driver ir_toy failed with error -110
[ 1672.628339][ T6024] usb 8-1: USB disconnect, device number 22
[ 1672.701775][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1672.751500][T23119] usb 9-1: new low-speed USB device number 10 using dummy_hcd
[ 1672.906575][T10497] loop2: detected capacity change from 0 to 256
[ 1672.932669][T23119] usb 9-1: config index 0 descriptor too short (expected 6427, got 27)
[ 1672.965366][T23119] usb 9-1: config 0 has an invalid interface number: 21 but max is 0
[ 1672.998852][T23119] usb 9-1: config 0 has no interface number 0
[ 1673.010111][T10497] FAT-fs (loop2): Directory bread(block 64) failed
[ 1673.032047][T23119] usb 9-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1673.047150][T10497] FAT-fs (loop2): Directory bread(block 65) failed
[ 1673.063195][T10497] FAT-fs (loop2): Directory bread(block 66) failed
[ 1673.073533][T23119] usb 9-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1673.104574][T10497] FAT-fs (loop2): Directory bread(block 67) failed
[ 1673.120492][T23119] usb 9-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 1673.132649][T10497] FAT-fs (loop2): Directory bread(block 68) failed
[ 1673.154065][T23119] usb 9-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[ 1673.166199][T10497] FAT-fs (loop2): Directory bread(block 69) failed
[ 1673.193076][T23119] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1673.201228][T10497] FAT-fs (loop2): Directory bread(block 70) failed
[ 1673.201272][T10497] FAT-fs (loop2): Directory bread(block 71) failed
[ 1673.201375][T10497] FAT-fs (loop2): Directory bread(block 72) failed
[ 1673.201413][T10497] FAT-fs (loop2): Directory bread(block 73) failed
[ 1673.272437][T23119] usb 9-1: config 0 descriptor??
[ 1673.283485][T10484] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1673.360835][T10510] xt_CONNSECMARK: invalid mode: 66
[ 1673.711291][T23119] usb 9-1: USB disconnect, device number 10
[ 1673.743730][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1673.859248][T10524] loop4: detected capacity change from 0 to 1764
[ 1673.898534][T10528] netlink: 4 bytes leftover after parsing attributes in process `syz.7.15394'.
[ 1674.165806][T10538] CIFS mount error: No usable UNC path provided in device string!
[ 1674.165806][T10538] 
[ 1674.202951][T10538] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1674.781693][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1674.874823][T10562] loop0: detected capacity change from 0 to 8
[ 1674.943722][T10562] SQUASHFS error: Unable to read inode 0xa7
[ 1675.021727][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1675.737572][   T30] audit: type=1326 audit(2000001479.830:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.4.15428" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a3b79ce59 code=0x7ffc0000
[ 1675.765264][T28203] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1675.821460][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1675.858317][   T30] audit: type=1326 audit(2000001479.830:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.4.15428" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a3b79ce59 code=0x7ffc0000
[ 1675.927675][   T30] audit: type=1326 audit(2000001479.830:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.4.15428" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f0a3b79ce59 code=0x7ffc0000
[ 1675.974250][T10603] loop8: detected capacity change from 0 to 1024
[ 1676.007301][T10603] EXT4-fs: Ignoring removed orlov option
[ 1676.040592][   T30] audit: type=1326 audit(2000001479.830:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.4.15428" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a3b79ce59 code=0x7ffc0000
[ 1676.134211][T10603] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1676.337357][T10608] loop4: detected capacity change from 0 to 4096
[ 1676.349051][T10615] netlink: 8 bytes leftover after parsing attributes in process `syz.6.15435'.
[ 1676.375453][T10608] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1676.425290][ T5585] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1676.711027][T10618] netlink: 'syz.0.15437': attribute type 3 has an invalid length.
[ 1676.746295][T10618] netlink: 3 bytes leftover after parsing attributes in process `syz.0.15437'.
[ 1676.805610][T10625] loop6: detected capacity change from 0 to 64
[ 1676.813853][T10623] loop8: detected capacity change from 0 to 64
[ 1676.847857][T10627] netlink: 'syz.2.15440': attribute type 21 has an invalid length.
[ 1676.862608][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1676.943577][T10625] Bad inode number on dev loop6: 5 is out of range
[ 1677.397287][T10641] loop0: detected capacity change from 0 to 512
[ 1677.463747][T10641] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1677.482193][T10641] ext4 filesystem being mounted at /2569/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1677.585736][T28203] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1677.661274][T10641] EXT4-fs error (device loop0): ext4_validate_block_bitmap:423: comm syz.0.15447: bg 0: bad block bitmap checksum
[ 1677.722721][T10654] netlink: 8 bytes leftover after parsing attributes in process `syz.8.15451'.
[ 1677.900946][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1677.994161][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1678.580642][T23316] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[ 1678.803575][T23316] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1678.830886][T23316] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[ 1678.862815][T23316] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1678.897973][T23316] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[ 1678.946640][T10695] Process accounting resumed
[ 1678.967744][T23316] usb 9-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[ 1678.980575][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1679.005746][T23316] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1679.030503][T23119] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[ 1679.053086][T23316] usb 9-1: Product: syz
[ 1679.069850][T23316] usb 9-1: Manufacturer: syz
[ 1679.086483][T23316] usb 9-1: SerialNumber: syz
[ 1679.110208][T23316] usb 9-1: config 0 descriptor??
[ 1679.144715][T23316] ums-isd200 9-1:0.0: USB Mass Storage device detected
[ 1679.155461][T10705] loop6: detected capacity change from 0 to 64
[ 1679.212794][T23119] usb 8-1: Using ep0 maxpacket: 8
[ 1679.253051][T23119] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1679.358382][T23119] usb 8-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[ 1679.405146][T23119] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1679.436435][T23119] usb 8-1: Product: syz
[ 1679.463724][T23316] ums-isd200 9-1:0.0: probe with driver ums-isd200 failed with error -22
[ 1679.472402][T23119] usb 8-1: Manufacturer: syz
[ 1679.486252][T23119] usb 8-1: SerialNumber: syz
[ 1679.519272][T23119] usb 8-1: config 0 descriptor??
[ 1679.547006][T23119] gspca_main: stk014-2.14.0 probing 05e1:0893
[ 1679.568984][T23119] usb 8-1: selecting invalid altsetting 1
[ 1679.699239][T23316] usb 9-1: USB disconnect, device number 11
[ 1679.767144][T23119] gspca_stk014: init reg: 0x00
[ 1679.785983][T23119] stk014 8-1:0.0: probe with driver stk014 failed with error -5
[ 1680.065056][T10725] netlink: 65173 bytes leftover after parsing attributes in process `syz.4.15487'.
[ 1680.069481][T23119] usb 8-1: USB disconnect, device number 23
[ 1681.103514][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1681.233082][T10766] loop0: detected capacity change from 0 to 128
[ 1681.295308][T10766] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 1681.323809][T10766] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1681.357663][T10770] loop4: detected capacity change from 0 to 512
[ 1681.363287][T10773] loop2: detected capacity change from 0 to 256
[ 1681.376443][T10769] loop6: detected capacity change from 0 to 1764
[ 1681.389164][T10773] vfat: Deprecated parameter 'posix'
[ 1681.411190][T10773] FAT-fs: "posix" option is obsolete, not supported now
[ 1681.431791][ T5592] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1682.057335][T10796] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4.
[ 1682.065582][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1682.142732][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1682.396791][T10808] netlink: 140 bytes leftover after parsing attributes in process `syz.8.15528'.
[ 1682.429303][T10806] loop6: detected capacity change from 0 to 1764
[ 1683.186890][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1683.232133][ T6024] usb 5-1: new full-speed USB device number 87 using dummy_hcd
[ 1683.271980][T10839] netlink: 16 bytes leftover after parsing attributes in process `syz.0.15543'.
[ 1683.341937][ T5592] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1683.403951][ T6024] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1683.445848][ T6024] usb 5-1: New USB device found, idVendor=0cf2, idProduct=6250, bcdDevice=87.bd
[ 1683.484975][ T6024] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1683.520537][ T6024] usb 5-1: Product: syz
[ 1683.538534][ T6024] usb 5-1: Manufacturer: syz
[ 1683.560127][ T6024] usb 5-1: SerialNumber: syz
[ 1683.583130][ T6024] usb 5-1: config 0 descriptor??
[ 1683.607889][ T6024] ums_eneub6250 5-1:0.0: USB Mass Storage device detected
[ 1683.796979][T10858] netdevsim netdevsim8 netdevsim0: entered allmulticast mode
[ 1683.819934][ T5995] usb 5-1: USB disconnect, device number 87
[ 1683.841360][T23130] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[ 1683.863905][T10860] openvswitch: netlink: VXLAN extension message has 1 unknown bytes.
[ 1684.013480][T23130] usb 1-1: Using ep0 maxpacket: 32
[ 1684.038217][T23130] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1684.072232][T23130] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1684.119911][T23130] usb 1-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[ 1684.144511][T23130] usb 1-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[ 1684.161716][T23130] usb 1-1: Product: syz
[ 1684.170739][T23130] usb 1-1: Manufacturer: syz
[ 1684.186289][T23130] usb 1-1: SerialNumber: syz
[ 1684.223146][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1684.244795][T23130] input: appletouch as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input112
[ 1684.301648][T10870] loop7: detected capacity change from 0 to 4096
[ 1684.389990][T10870] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[ 1684.477153][T10876] netlink: 8 bytes leftover after parsing attributes in process `syz.8.15561'.
[ 1684.501406][T10870] ntfs3(loop7): ino=1a, mi_enum_attr
[ 1684.527938][T10870] ntfs3(loop7): ino=1a, mi_enum_attr
[ 1684.559445][T10870] ntfs3(loop7): Failed to initialize $Extend/$Reparse.
[ 1684.604685][T23130] usb 1-1: USB disconnect, device number 64
[ 1684.604770][    C0] appletouch 1-1:1.0: atp_complete: usb_submit_urb failed with result -19
[ 1684.676936][T10881] netlink: 164 bytes leftover after parsing attributes in process `syz.4.15563'.
[ 1684.707874][   T30] audit: type=1800 audit(2000001488.800:370): pid=10870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.15558" name="bus" dev="loop7" ino=33 res=0 errno=0
[ 1684.795278][T23130] appletouch 1-1:1.0: input: appletouch disconnected
[ 1685.263906][ T6024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1685.306121][T10898] loop2: detected capacity change from 0 to 64
[ 1685.498879][T10907] loop0: detected capacity change from 0 to 256
[ 1685.597009][T10907] FAT-fs (loop0): Directory bread(block 64) failed
[ 1685.622095][T10907] FAT-fs (loop0): Directory bread(block 65) failed
[ 1685.639595][T10907] FAT-fs (loop0): Directory bread(block 66) failed
[ 1685.665625][T10907] FAT-fs (loop0): Directory bread(block 67) failed
[ 1685.687104][T10907] FAT-fs (loop0): Directory bread(block 68) failed
[ 1685.710567][T10907] FAT-fs (loop0): Directory bread(block 69) failed
[ 1685.741429][T10907] FAT-fs (loop0): Directory bread(block 70) failed
[ 1685.755566][T10907] FAT-fs (loop0): Directory bread(block 71) failed
[ 1685.779774][T10907] FAT-fs (loop0): Directory bread(block 72) failed
[ 1685.795349][T10907] FAT-fs (loop0): Directory bread(block 73) failed
[ 1685.870929][T23119] usb 5-1: new high-speed USB device number 88 using dummy_hcd
[ 1685.897105][T10907] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1685.953141][T23316] usb 7-1: new full-speed USB device number 20 using dummy_hcd
[ 1686.061730][T23119] usb 5-1: Using ep0 maxpacket: 8
[ 1686.079816][T23119] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1686.122766][T23119] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1686.151761][T23316] usb 7-1: config 0 has an invalid interface number: 8 but max is 0
[ 1686.165027][T23316] usb 7-1: config 0 has no interface number 0
[ 1686.171642][T23119] usb 5-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1686.194014][T10924] loop8: detected capacity change from 0 to 4096
[ 1686.200704][T23316] usb 7-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0x9F, changing to 0x8F
[ 1686.215135][T23119] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1686.236037][T10924] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512).
[ 1686.245165][T23316] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1686.257800][T23119] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1686.266444][T23316] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1686.277316][T23119] usb 5-1: Product: syz
[ 1686.284283][T23119] usb 5-1: Manufacturer: syz
[ 1686.289278][T23119] usb 5-1: SerialNumber: syz
[ 1686.297634][T23316] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1686.304094][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1686.329326][T23316] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1686.348493][T10924] ntfs3(loop8): Failed to initialize $Extend/$Reparse.
[ 1686.362641][T23119] cdc_ncm 5-1:1.0: NCM or ECM functional descriptors missing
[ 1686.371752][T23316] usb 7-1: Product: syz
[ 1686.389483][T23316] usb 7-1: SerialNumber: syz
[ 1686.401065][T23119] cdc_ncm 5-1:1.0: bind() failure
[ 1686.439398][T23316] usb 7-1: config 0 descriptor??
[ 1686.469713][T23316] cm109 7-1:0.8: invalid payload size 0, expected 4
[ 1686.509800][T23316] input: CM109 USB driver as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.8/input/input113
[ 1686.583136][T23119] cdc_mbim 5-1:1.1: CDC Union missing and no IAD found
[ 1686.615792][T23119] cdc_mbim 5-1:1.1: bind() failure
[ 1686.701382][    C0] cm109 7-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[ 1686.805826][T23119] usb 5-1: USB disconnect, device number 88
[ 1686.910089][T10939] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.15591'.
[ 1686.919769][T10940] netlink: 'syz.0.15592': attribute type 1 has an invalid length.
[ 1686.922414][T23316] usb 7-1: USB disconnect, device number 20
[ 1686.961979][T10939] openvswitch: netlink: Missing key (keys=40, expected=2000)
[ 1686.975094][T10940] netlink: 'syz.0.15592': attribute type 2 has an invalid length.
[ 1687.001206][T23316] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1687.076449][T10944] loop7: detected capacity change from 0 to 1024
[ 1687.097686][T10944] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[ 1687.136985][T10944] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[ 1687.177346][T10944] EXT4-fs error (device loop7): ext4_get_journal_inode:5896: inode #32: comm syz.7.15594: iget: special inode unallocated
[ 1687.191115][T28196] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1687.225063][T10944] loop7: lost file I/O error report for ino 32 type 5 pos 0x0 len 0x0 error -117
[ 1687.225410][T10944] EXT4-fs (loop7): no journal found
[ 1687.234589][    C1] EXT4-fs (loop7): error count since last fsck: 1
[ 1687.234625][    C1] EXT4-fs (loop7): initial error at time 2000001491: ext4_get_journal_inode:5896: inode 32
[ 1687.234682][    C1] EXT4-fs (loop7): last error at time 2000001491: ext4_get_journal_inode:5896: inode 32
[ 1687.296770][T10944] EXT4-fs (loop7): can't get journal size
[ 1687.316441][T10944] EXT4-fs (loop7): filesystem is read-only
[ 1687.351061][T10944] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1687.461247][T31017] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1688.183788][T10942] loop8: detected capacity change from 0 to 32768
[ 1688.266169][T10973] loop7: detected capacity change from 0 to 64
[ 1688.311034][ T6024] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 1688.383890][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1688.480518][ T6024] usb 7-1: Using ep0 maxpacket: 16
[ 1688.515713][ T6024] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1688.570869][ T6024] usb 7-1: config 12 has an invalid descriptor of length 0, skipping remainder of the config
[ 1688.608480][ T6024] usb 7-1: config 12 has 0 interfaces, different from the descriptor's value: 1
[ 1688.674392][ T6024] usb 7-1: New USB device found, idVendor=05ac, idProduct=12a8, bcdDevice=d4.d0
[ 1688.698015][ T6024] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1688.710304][T10983] netlink: 'syz.0.15612': attribute type 1 has an invalid length.
[ 1688.742454][ T6024] usb 7-1: Product: syz
[ 1688.752196][ T6024] usb 7-1: Manufacturer: syz
[ 1688.766346][ T6024] usb 7-1: SerialNumber: syz
[ 1689.102244][ T5565] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1689.102649][ T5995] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1689.260044][ T6024] apple-mfi-fastcharge 7-1: USB disconnect, device number 21
[ 1689.424269][T23130] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1689.732233][T11009] loop0: detected capacity change from 0 to 64
[ 1689.768730][T11009] hfs: unable to locate alternate MDB
[ 1689.798210][T11009] hfs: continuing without an alternate MDB
[ 1689.814603][T11013] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[ 1689.843255][   T30] audit: type=1800 audit(2000001493.930:371): pid=11009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.15624" name="file1" dev="loop0" ino=22 res=0 errno=0
[ 1689.868985][T11013] [U] J"—e:ÀÆ"


[ 1690.044995][T11015] loop4: detected capacity change from 0 to 128
[ 1690.091850][T11015] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1690.145063][ T5565] 
[ 1690.147400][ T5565] ======================================================
[ 1690.154416][ T5565] WARNING: possible circular locking dependency detected
[ 1690.161435][ T5565] syzkaller #0 Tainted: G             L     
[ 1690.167419][ T5565] ------------------------------------------------------
[ 1690.174432][ T5565] kworker/u8:1/5565 is trying to acquire lock:
[ 1690.180585][ T5565] ffff888057e7acb0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0
[ 1690.191361][ T5565] 
[ 1690.191361][ T5565] but task is already holding lock:
[ 1690.198727][ T5565] ffff88806ae300a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1690.208107][ T5565] 
[ 1690.208107][ T5565] which lock already depends on the new lock.
[ 1690.208107][ T5565] 
[ 1690.218547][ T5565] 
[ 1690.218547][ T5565] the existing dependency chain (in reverse order) is:
[ 1690.227561][ T5565] 
[ 1690.227561][ T5565] -> #1 (&tree->tree_lock/1){+.+.}-{4:4}:
[ 1690.233724][T10998] loop7: detected capacity change from 0 to 32768
[ 1690.235512][ T5565]        __mutex_lock+0x1a4/0x1b10
[ 1690.247017][ T5565]        hfs_find_init+0x273/0x330
[ 1690.252150][ T5565]        hfs_ext_read_extent+0x19d/0x9d0
[ 1690.257819][ T5565]        hfs_get_block+0x576/0x830
[ 1690.262962][ T5565]        block_read_full_folio+0x36c/0x8e0
[ 1690.268810][ T5565]        filemap_read_folio+0xfc/0x3b0
[ 1690.274294][ T5565]        do_read_cache_folio+0x2d7/0x6b0
[ 1690.279956][ T5565]        read_cache_page+0x5b/0x1b0
[ 1690.285172][ T5565]        __hfs_bnode_create+0x718/0x9a0
[ 1690.290735][ T5565]        hfs_bnode_find+0x2d5/0xd30
[ 1690.295952][ T5565]        hfs_brec_find+0x39d/0x620
[ 1690.301073][ T5565]        hfs_brec_read+0x26/0x120
[ 1690.306110][ T5565]        hfs_cat_find_brec+0xdc/0x2a0
[ 1690.311515][ T5565]        hfs_fill_super+0x58d/0x7e0
[ 1690.316720][ T5565]        get_tree_bdev_flags+0x38c/0x620
[ 1690.322378][ T5565]        vfs_get_tree+0x92/0x320
[ 1690.327333][ T5565]        path_mount+0x7d0/0x23d0
[ 1690.332286][ T5565]        __x64_sys_mount+0x293/0x310
[ 1690.337584][ T5565]        do_syscall_64+0x10b/0x860
[ 1690.342697][ T5565]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1690.349115][ T5565] 
[ 1690.349115][ T5565] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}:
[ 1690.358341][ T5565]        __lock_acquire+0x14b8/0x2630
[ 1690.363729][ T5565]        lock_acquire+0x1b1/0x370
[ 1690.368762][ T5565]        __mutex_lock+0x1a4/0x1b10
[ 1690.373875][ T5565]        hfs_extend_file+0xa6/0xcf0
[ 1690.379096][ T5565]        hfs_bmap_reserve+0x2ab/0x3a0
[ 1690.384485][ T5565]        __hfs_ext_write_extent+0x3c4/0x510
[ 1690.390405][ T5565]        hfs_ext_write_extent+0x1b7/0x200
[ 1690.396155][ T5565]        hfs_write_inode+0xce/0xab0
[ 1690.401358][ T5565]        __writeback_single_inode+0xcd4/0x1350
[ 1690.407548][ T5565]        writeback_sb_inodes+0x766/0x1c60
[ 1690.413293][ T5565]        wb_writeback+0x1bf/0xb90
[ 1690.418344][ T5565]        wb_workfn+0x14f/0xc00
[ 1690.423107][ T5565]        process_one_work+0xa0e/0x1980
[ 1690.428577][ T5565]        worker_thread+0x5ef/0xe50
[ 1690.433696][ T5565]        kthread+0x370/0x450
[ 1690.438291][ T5565]        ret_from_fork+0x72b/0xd50
[ 1690.443410][ T5565]        ret_from_fork_asm+0x1a/0x30
[ 1690.448712][ T5565] 
[ 1690.448712][ T5565] other info that might help us debug this:
[ 1690.448712][ T5565] 
[ 1690.458928][ T5565]  Possible unsafe locking scenario:
[ 1690.458928][ T5565] 
[ 1690.466365][ T5565]        CPU0                    CPU1
[ 1690.471722][ T5565]        ----                    ----
[ 1690.477075][ T5565]   lock(&tree->tree_lock/1);
[ 1690.481770][ T5565]                                lock(&HFS_I(tree->inode)->extents_lock);
[ 1690.490272][ T5565]                                lock(&tree->tree_lock/1);
[ 1690.497482][ T5565]   lock(&HFS_I(tree->inode)->extents_lock);
[ 1690.503466][ T5565] 
[ 1690.503466][ T5565]  *** DEADLOCK ***
[ 1690.503466][ T5565] 
[ 1690.511595][ T5565] 3 locks held by kworker/u8:1/5565:
[ 1690.516873][ T5565]  #0: ffff888020a88140 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1690.527631][ T5565]  #1: ffffc900067bfd08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1690.539515][ T5565]  #2: ffff88806ae300a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1690.549322][ T5565] 
[ 1690.549322][ T5565] stack backtrace:
[ 1690.555205][ T5565] CPU: 1 UID: 0 PID: 5565 Comm: kworker/u8:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1690.555255][ T5565] Tainted: [L]=SOFTLOCKUP
[ 1690.555269][ T5565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1690.555294][ T5565] Workqueue: writeback wb_workfn (flush-7:0)
[ 1690.555332][ T5565] Call Trace:
[ 1690.555343][ T5565]  <TASK>
[ 1690.555357][ T5565]  dump_stack_lvl+0x100/0x190
[ 1690.555401][ T5565]  print_circular_bug.cold+0x178/0x1c7
[ 1690.555461][ T5565]  check_noncircular+0x146/0x160
[ 1690.555499][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.555551][ T5565]  __lock_acquire+0x14b8/0x2630
[ 1690.555598][ T5565]  ? __pfx_stack_trace_save+0x10/0x10
[ 1690.555635][ T5565]  lock_acquire+0x1b1/0x370
[ 1690.555677][ T5565]  ? hfs_extend_file+0xa6/0xcf0
[ 1690.555734][ T5565]  ? __pfx___might_resched+0x10/0x10
[ 1690.555783][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.555826][ T5565]  ? add_lock_to_list+0x99/0x110
[ 1690.555862][ T5565]  __mutex_lock+0x1a4/0x1b10
[ 1690.555899][ T5565]  ? hfs_extend_file+0xa6/0xcf0
[ 1690.555955][ T5565]  ? hfs_extend_file+0xa6/0xcf0
[ 1690.556013][ T5565]  ? hfs_write_inode+0xce/0xab0
[ 1690.556047][ T5565]  ? __writeback_single_inode+0xcd4/0x1350
[ 1690.556105][ T5565]  ? __pfx___mutex_lock+0x10/0x10
[ 1690.556143][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.556186][ T5565]  ? lock_acquire+0x1b1/0x370
[ 1690.556232][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.556275][ T5565]  ? trace_contention_end+0x122/0x170
[ 1690.556323][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.556370][ T5565]  ? hfs_extend_file+0xa6/0xcf0
[ 1690.556430][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.556472][ T5565]  hfs_extend_file+0xa6/0xcf0
[ 1690.556531][ T5565]  ? __pfx_hfs_extend_file+0x10/0x10
[ 1690.556587][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.556637][ T5565]  hfs_bmap_reserve+0x2ab/0x3a0
[ 1690.556694][ T5565]  __hfs_ext_write_extent+0x3c4/0x510
[ 1690.556751][ T5565]  ? hfs_find_init+0x273/0x330
[ 1690.556792][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.556838][ T5565]  hfs_ext_write_extent+0x1b7/0x200
[ 1690.556896][ T5565]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1690.556959][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.557001][ T5565]  ? __mpage_writepages+0x1a8/0x210
[ 1690.557038][ T5565]  ? __pfx___mpage_writepages+0x10/0x10
[ 1690.557077][ T5565]  hfs_write_inode+0xce/0xab0
[ 1690.557113][ T5565]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1690.557148][ T5565]  ? __lock_acquire+0x4a5/0x2630
[ 1690.557203][ T5565]  ? __writeback_single_inode+0x454/0x1350
[ 1690.557261][ T5565]  ? __writeback_single_inode+0x454/0x1350
[ 1690.557318][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.557367][ T5565]  __writeback_single_inode+0xcd4/0x1350
[ 1690.557435][ T5565]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1690.557494][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.557536][ T5565]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1690.557588][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.557634][ T5565]  writeback_sb_inodes+0x766/0x1c60
[ 1690.557702][ T5565]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1690.557759][ T5565]  ? wakeup_preempt_fair+0x630/0x1050
[ 1690.557844][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.557887][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1690.557938][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.557981][ T5565]  ? queue_io+0x287/0x540
[ 1690.558030][ T5565]  wb_writeback+0x1bf/0xb90
[ 1690.558092][ T5565]  ? __pfx_wb_writeback+0x10/0x10
[ 1690.558155][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.558197][ T5565]  ? mark_held_locks+0x40/0x70
[ 1690.558238][ T5565]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1690.558296][ T5565]  wb_workfn+0x14f/0xc00
[ 1690.558328][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.558371][ T5565]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1690.558435][ T5565]  ? __pfx_wb_workfn+0x10/0x10
[ 1690.558468][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.558513][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.558557][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.558600][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1690.558651][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.558698][ T5565]  process_one_work+0xa0e/0x1980
[ 1690.558755][ T5565]  ? __pfx_process_one_work+0x10/0x10
[ 1690.558798][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.558848][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.558895][ T5565]  worker_thread+0x5ef/0xe50
[ 1690.558944][ T5565]  ? __pfx_worker_thread+0x10/0x10
[ 1690.558988][ T5565]  ? kthread+0x13a/0x450
[ 1690.559025][ T5565]  ? __pfx_worker_thread+0x10/0x10
[ 1690.559067][ T5565]  kthread+0x370/0x450
[ 1690.559104][ T5565]  ? __pfx_kthread+0x10/0x10
[ 1690.559144][ T5565]  ret_from_fork+0x72b/0xd50
[ 1690.559187][ T5565]  ? __pfx_ret_from_fork+0x10/0x10
[ 1690.559230][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1690.559272][ T5565]  ? __switch_to+0x800/0x1100
[ 1690.559323][ T5565]  ? __switch_to_asm+0x39/0x70
[ 1690.559370][ T5565]  ? __pfx_kthread+0x10/0x10
[ 1690.559416][ T5565]  ret_from_fork_asm+0x1a/0x30
[ 1690.559477][ T5565]  </TASK>
[ 1690.613027][T10998] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.15617 (10998)
[ 1690.704511][ T5565] hfs: new node 0 already hashed?
[ 1690.705107][ T5565] ------------[ cut here ]------------
[ 1690.740740][T11015] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1690.741920][ T5565] 1
[ 1691.063067][T10998] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1691.066165][ T5565] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#1: kworker/u8:1/5565
[ 1691.086772][T10998] BTRFS info (device loop7): using sha256 checksum algorithm
[ 1691.087434][ T5565] Modules linked in:
[ 1691.109048][ T5565] CPU: 1 UID: 0 PID: 5565 Comm: kworker/u8:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1691.120150][ T5565] Tainted: [L]=SOFTLOCKUP
[ 1691.124512][ T5565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1691.134615][ T5565] Workqueue: writeback wb_workfn (flush-7:0)
[ 1691.140930][ T5565] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1691.147070][ T5565] Code: 35 83 65 0a e9 a7 5a d1 01 e8 7b 21 e1 00 4c 89 f7 e8 23 83 65 0a e8 6e 21 e1 00 89 ee 48 c7 c7 c0 e8 d1 8b e8 40 e1 fa ff 90 <0f> 0b 90 e9 a9 5d d1 01 e8 52 21 e1 00 e8 ad 5c 4d 00 e9 05 60 d1
[ 1691.166759][ T5565] RSP: 0018:ffffc900067bf020 EFLAGS: 00010282
[ 1691.172917][ T5565] RAX: 000000000000001f RBX: ffff8880274b0c00 RCX: 0000000000000000
[ 1691.180978][ T5565] RDX: 000000000000001f RSI: ffffffff81e72ae9 RDI: fffff52000cf7df5
[ 1691.188964][ T5565] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1691.196986][ T5565] R10: 0000000080000000 R11: 0000000000000003 R12: dffffc0000000000
[ 1691.204999][ T5565] R13: ffff88806ae30000 R14: ffff88806ae300d8 R15: 0000000000000000
[ 1691.213020][ T5565] FS:  0000000000000000(0000) GS:ffff88812446a000(0000) knlGS:0000000000000000
[ 1691.221996][ T5565] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1691.228597][ T5565] CR2: 00007fc52a5e8158 CR3: 000000000e596000 CR4: 0000000000350ef0
[ 1691.236625][ T5565] Call Trace:
[ 1691.239911][ T5565]  <TASK>
[ 1691.243145][ T5565]  ? _raw_spin_unlock+0x28/0x50
[ 1691.248058][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.253978][ T5565]  ? hfs_bnode_put+0x208/0x480
[ 1691.258806][ T5565]  hfs_bmap_alloc+0x5a7/0x6b0
[ 1691.263582][ T5565]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1691.268834][ T5565]  ? __asan_memcpy+0x3c/0x60
[ 1691.273504][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.279169][ T5565]  ? hfs_bnode_read.part.0+0x298/0x330
[ 1691.284710][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.290374][ T5565]  ? folio_mark_accessed+0xf3/0x1040
[ 1691.295836][ T5565]  hfs_btree_inc_height.isra.0+0xff/0x820
[ 1691.301650][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1691.306460][ T5565]  ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1691.312891][ T5565]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1691.318145][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.323837][ T5565]  ? _raw_spin_unlock+0x28/0x50
[ 1691.328741][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.334445][ T5565]  ? hfs_bnode_put+0x208/0x480
[ 1691.339257][ T5565]  hfs_brec_insert+0x8ba/0xc20
[ 1691.344110][ T5565]  ? __pfx_hfs_brec_insert+0x10/0x10
[ 1691.349721][ T5565]  ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1691.355066][ T5565]  __hfs_ext_write_extent+0x3ef/0x510
[ 1691.360535][ T5565]  ? hfs_find_init+0x273/0x330
[ 1691.365334][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.371036][ T5565]  hfs_ext_write_extent+0x1b7/0x200
[ 1691.376287][ T5565]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1691.382099][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.387763][ T5565]  ? __mpage_writepages+0x1a8/0x210
[ 1691.393026][ T5565]  ? __pfx___mpage_writepages+0x10/0x10
[ 1691.398600][ T5565]  hfs_write_inode+0xce/0xab0
[ 1691.403357][ T5565]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1691.408667][ T5565]  ? __lock_acquire+0x4a5/0x2630
[ 1691.413688][ T5565]  ? __writeback_single_inode+0x454/0x1350
[ 1691.419544][ T5565]  ? __writeback_single_inode+0x454/0x1350
[ 1691.425452][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.431161][ T5565]  __writeback_single_inode+0xcd4/0x1350
[ 1691.436844][ T5565]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1691.442993][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.448921][ T5565]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1691.454416][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.460102][ T5565]  writeback_sb_inodes+0x766/0x1c60
[ 1691.465403][ T5565]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1691.471108][ T5565]  ? wakeup_preempt_fair+0x630/0x1050
[ 1691.476555][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.482278][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1691.487084][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.492795][ T5565]  ? queue_io+0x287/0x540
[ 1691.497167][ T5565]  wb_writeback+0x1bf/0xb90
[ 1691.501754][ T5565]  ? __pfx_wb_writeback+0x10/0x10
[ 1691.506831][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.512535][ T5565]  ? mark_held_locks+0x40/0x70
[ 1691.517336][ T5565]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1691.522622][ T5565]  wb_workfn+0x14f/0xc00
[ 1691.526914][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.532623][ T5565]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1691.538502][ T5565]  ? __pfx_wb_workfn+0x10/0x10
[ 1691.543325][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.548989][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.555174][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.559760][T10998] BTRFS info (device loop7): enabling ssd optimizations
[ 1691.561056][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1691.571744][T10998] BTRFS info (device loop7): turning on async discard
[ 1691.572700][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.579412][T10998] BTRFS info (device loop7): enabling free space tree
[ 1691.585045][ T5565]  process_one_work+0xa0e/0x1980
[ 1691.585109][ T5565]  ? __pfx_process_one_work+0x10/0x10
[ 1691.602139][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.607784][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.613455][ T5565]  worker_thread+0x5ef/0xe50
[ 1691.618079][ T5565]  ? __pfx_worker_thread+0x10/0x10
[ 1691.623242][ T5565]  ? kthread+0x13a/0x450
[ 1691.627508][ T5565]  ? __pfx_worker_thread+0x10/0x10
[ 1691.632658][ T5565]  kthread+0x370/0x450
[ 1691.636752][ T5565]  ? __pfx_kthread+0x10/0x10
[ 1691.641377][ T5565]  ret_from_fork+0x72b/0xd50
[ 1691.645996][ T5565]  ? __pfx_ret_from_fork+0x10/0x10
[ 1691.651177][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.657034][ T5565]  ? __switch_to+0x800/0x1100
[ 1691.661991][ T5565]  ? __switch_to_asm+0x39/0x70
[ 1691.668585][ T5565]  ? __pfx_kthread+0x10/0x10
[ 1691.673233][ T5565]  ret_from_fork_asm+0x1a/0x30
[ 1691.678046][ T5565]  </TASK>
[ 1691.681101][ T5565] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1691.688389][ T5565] CPU: 1 UID: 0 PID: 5565 Comm: kworker/u8:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1691.699413][ T5565] Tainted: [L]=SOFTLOCKUP
[ 1691.703723][ T5565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1691.713770][ T5565] Workqueue: writeback wb_workfn (flush-7:0)
[ 1691.719761][ T5565] Call Trace:
[ 1691.723025][ T5565]  <TASK>
[ 1691.725945][ T5565]  dump_stack_lvl+0x100/0x190
[ 1691.730622][ T5565]  vpanic+0x552/0x970
[ 1691.734605][ T5565]  ? __pfx_vpanic+0x10/0x10
[ 1691.739108][ T5565]  ? lock_release+0x245/0x310
[ 1691.743794][ T5565]  panic+0xd1/0xe0
[ 1691.747516][ T5565]  ? __pfx_panic+0x10/0x10
[ 1691.751942][ T5565]  ? check_panic_on_warn+0x1f/0x90
[ 1691.757055][ T5565]  check_panic_on_warn.cold+0x19/0x34
[ 1691.762427][ T5565]  ? hfs_bnode_create.cold+0x41/0x49
[ 1691.767717][ T5565]  __warn.cold+0x191/0x328
[ 1691.772134][ T5565]  __report_bug+0x296/0x3d0
[ 1691.776652][ T5565]  ? hfs_bnode_create.cold+0x41/0x49
[ 1691.781940][ T5565]  ? __pfx___report_bug+0x10/0x10
[ 1691.786979][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.792616][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1691.797416][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.803065][ T5565]  ? preempt_count_add+0x76/0x150
[ 1691.808113][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.813757][ T5565]  ? __wake_up_klogd+0xe2/0x140
[ 1691.818626][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.824277][ T5565]  ? vprintk_emit+0x1c9/0x6b0
[ 1691.828982][ T5565]  ? __pfx_vprintk_emit+0x10/0x10
[ 1691.834037][ T5565]  ? hfs_bnode_create.cold+0x41/0x49
[ 1691.839337][ T5565]  report_bug+0xb2/0x220
[ 1691.843606][ T5565]  ? hfs_bnode_create.cold+0x41/0x49
[ 1691.848909][ T5565]  handle_bug+0x16a/0x2a0
[ 1691.853256][ T5565]  exc_invalid_op+0x17/0x50
[ 1691.857775][ T5565]  asm_exc_invalid_op+0x1a/0x20
[ 1691.862631][ T5565] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1691.868544][ T5565] Code: 35 83 65 0a e9 a7 5a d1 01 e8 7b 21 e1 00 4c 89 f7 e8 23 83 65 0a e8 6e 21 e1 00 89 ee 48 c7 c7 c0 e8 d1 8b e8 40 e1 fa ff 90 <0f> 0b 90 e9 a9 5d d1 01 e8 52 21 e1 00 e8 ad 5c 4d 00 e9 05 60 d1
[ 1691.888156][ T5565] RSP: 0018:ffffc900067bf020 EFLAGS: 00010282
[ 1691.894232][ T5565] RAX: 000000000000001f RBX: ffff8880274b0c00 RCX: 0000000000000000
[ 1691.902201][ T5565] RDX: 000000000000001f RSI: ffffffff81e72ae9 RDI: fffff52000cf7df5
[ 1691.910173][ T5565] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1691.918141][ T5565] R10: 0000000080000000 R11: 0000000000000003 R12: dffffc0000000000
[ 1691.926110][ T5565] R13: ffff88806ae30000 R14: ffff88806ae300d8 R15: 0000000000000000
[ 1691.934088][ T5565]  ? vprintk_emit+0x1c9/0x6b0
[ 1691.938809][ T5565]  ? _raw_spin_unlock+0x28/0x50
[ 1691.943687][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.949333][ T5565]  ? hfs_bnode_put+0x208/0x480
[ 1691.954123][ T5565]  hfs_bmap_alloc+0x5a7/0x6b0
[ 1691.958834][ T5565]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1691.964054][ T5565]  ? __asan_memcpy+0x3c/0x60
[ 1691.968657][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.974305][ T5565]  ? hfs_bnode_read.part.0+0x298/0x330
[ 1691.979784][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1691.985429][ T5565]  ? folio_mark_accessed+0xf3/0x1040
[ 1691.990741][ T5565]  hfs_btree_inc_height.isra.0+0xff/0x820
[ 1691.996489][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1692.001285][ T5565]  ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1692.007639][ T5565]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1692.012858][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.018529][ T5565]  ? _raw_spin_unlock+0x28/0x50
[ 1692.023425][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.029070][ T5565]  ? hfs_bnode_put+0x208/0x480
[ 1692.033855][ T5565]  hfs_brec_insert+0x8ba/0xc20
[ 1692.038649][ T5565]  ? __pfx_hfs_brec_insert+0x10/0x10
[ 1692.043955][ T5565]  ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1692.049023][ T5565]  __hfs_ext_write_extent+0x3ef/0x510
[ 1692.054422][ T5565]  ? hfs_find_init+0x273/0x330
[ 1692.059196][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.064844][ T5565]  hfs_ext_write_extent+0x1b7/0x200
[ 1692.070072][ T5565]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1692.075823][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.081469][ T5565]  ? __mpage_writepages+0x1a8/0x210
[ 1692.086676][ T5565]  ? __pfx___mpage_writepages+0x10/0x10
[ 1692.092232][ T5565]  hfs_write_inode+0xce/0xab0
[ 1692.096917][ T5565]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1692.102207][ T5565]  ? __lock_acquire+0x4a5/0x2630
[ 1692.107171][ T5565]  ? __writeback_single_inode+0x454/0x1350
[ 1692.113008][ T5565]  ? __writeback_single_inode+0x454/0x1350
[ 1692.118842][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.124495][ T5565]  __writeback_single_inode+0xcd4/0x1350
[ 1692.130160][ T5565]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1692.136255][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.141899][ T5565]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1692.147120][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.152769][ T5565]  writeback_sb_inodes+0x766/0x1c60
[ 1692.158007][ T5565]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1692.163664][ T5565]  ? wakeup_preempt_fair+0x630/0x1050
[ 1692.169089][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.174733][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1692.179520][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.185166][ T5565]  ? queue_io+0x287/0x540
[ 1692.189518][ T5565]  wb_writeback+0x1bf/0xb90
[ 1692.194052][ T5565]  ? __pfx_wb_writeback+0x10/0x10
[ 1692.199108][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.204752][ T5565]  ? mark_held_locks+0x40/0x70
[ 1692.209525][ T5565]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1692.214751][ T5565]  wb_workfn+0x14f/0xc00
[ 1692.219002][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.224650][ T5565]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1692.230489][ T5565]  ? __pfx_wb_workfn+0x10/0x10
[ 1692.235264][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.240912][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.246563][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.252207][ T5565]  ? rcu_is_watching+0x12/0xc0
[ 1692.256991][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.262640][ T5565]  process_one_work+0xa0e/0x1980
[ 1692.267605][ T5565]  ? __pfx_process_one_work+0x10/0x10
[ 1692.272991][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.278642][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.284290][ T5565]  worker_thread+0x5ef/0xe50
[ 1692.288900][ T5565]  ? __pfx_worker_thread+0x10/0x10
[ 1692.294027][ T5565]  ? kthread+0x13a/0x450
[ 1692.298277][ T5565]  ? __pfx_worker_thread+0x10/0x10
[ 1692.303404][ T5565]  kthread+0x370/0x450
[ 1692.307484][ T5565]  ? __pfx_kthread+0x10/0x10
[ 1692.312085][ T5565]  ret_from_fork+0x72b/0xd50
[ 1692.316691][ T5565]  ? __pfx_ret_from_fork+0x10/0x10
[ 1692.321817][ T5565]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.327464][ T5565]  ? __switch_to+0x800/0x1100
[ 1692.332163][ T5565]  ? __switch_to_asm+0x39/0x70
[ 1692.336945][ T5565]  ? __pfx_kthread+0x10/0x10
[ 1692.341552][ T5565]  ret_from_fork_asm+0x1a/0x30
[ 1692.346346][ T5565]  </TASK>
[ 1692.349654][ T5565] Kernel Offset: disabled
[ 1692.353969][ T5565] Rebooting in 86400 seconds..