last executing test programs:

1m29.98253557s ago: executing program 2 (id=6760):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x9, 0x0, &(0x7f0000000040))

1m29.782260074s ago: executing program 2 (id=6765):
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
pwrite64(r0, &(0x7f0000000140)='r', 0x1, 0x7fffffffffffffff)

1m29.590808589s ago: executing program 2 (id=6767):
r0 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={{0x14, 0x3ea, 0x1, 0x0, 0x0, {0x7}}, [], {0x14, 0x3f4}}, 0x28}}, 0x0)

1m29.366012128s ago: executing program 2 (id=6771):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000a00)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@inlinecrypt}, {@grpid}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x49f, &(0x7f00000004c0)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

1m29.095083499s ago: executing program 2 (id=6775):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='attr/exec\x00')
copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0xffffffffffffff80, 0x9, 0x0)

1m28.512815194s ago: executing program 2 (id=6785):
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000000)={0xa, @pix_mp={0x9, 0x3, 0x32315659, 0x4, 0x1, [{0x400, 0x10}, {0x5, 0xc}, {0x2}, {0x2, 0x3532}, {0x7fff, 0x7}, {0x9, 0xa}, {0x2, 0x1000}, {0x7, 0x401}], 0x0, 0x63, 0x1, 0x0, 0x7}})

1m28.122292493s ago: executing program 32 (id=6785):
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000000)={0xa, @pix_mp={0x9, 0x3, 0x32315659, 0x4, 0x1, [{0x400, 0x10}, {0x5, 0xc}, {0x2}, {0x2, 0x3532}, {0x7fff, 0x7}, {0x9, 0xa}, {0x2, 0x1000}, {0x7, 0x401}], 0x0, 0x63, 0x1, 0x0, 0x7}})

4.595052073s ago: executing program 5 (id=8134):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000180)=[{&(0x7f0000000200)="2e0400001c00810ce00f80ecdb4cb9f207c804a00d000000010006fb0a0002000a0ada1b40d805481100c50083b8", 0x4f13}, {&(0x7f0000000140)="351d3c9c253645d143d2b687882ae53ef1372aff1ada70f0987dd6906990b13ae862"}, {&(0x7f0000000240)="7b27b15bb70ad10bb42b2d78924a6b74c3a8f9229110fbfc519dd43e07a533ab778a4e0a257e7951b5126dd9f2b6a3d3ee0e122e18ea78b26bd962c2d1a7fdbabf5739ddb66b5d5335f9f3fd4fbd1964caf9d6b7cff4defd06208e52d84d88b061cc2d741351a61411514fd354595906e6d3abee31abf8611c6cd04d7dd3db4d8942402dfc"}], 0x1, 0x0, 0x0, 0x5865}, 0x0)

4.315939423s ago: executing program 5 (id=8138):
r0 = socket(0x11, 0x3, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)

4.048254424s ago: executing program 5 (id=8142):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000400)=ANY=[@ANYBLOB="1201000009b768405e0483020b9901e40201090227000100000000090400fb015cc7aa00090509"], 0x0)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x3, 0x42382)

2.949708845s ago: executing program 3 (id=8156):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000000)='./bus\x00', 0x300000a, &(0x7f0000000080)={[{@nodatacow}, {@thread_pool={'thread_pool', 0x3d, 0x3}}, {@nodiscard}, {@clear_cache}, {@ssd_spread}, {@clear_cache}, {@nobarrier}, {@thread_pool={'thread_pool', 0x3d, 0x8}}, {@nospace_cache}, {@enospc_debug}, {@ssd_spread}, {@nossd}]}, 0x3, 0x55a3, &(0x7f000000e0c0)="$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")
symlink(&(0x7f000000a900)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.440337793s ago: executing program 0 (id=8162):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0xffff0000, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x0, 0xffff0000}, 0x48)

2.278275674s ago: executing program 5 (id=8164):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000000)='./file1\x00', 0x1000400, &(0x7f0000004400)={[{@discard}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@nodiscard}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@gid}, {@nodiscard}, {@uid}, {@uid={'uid', 0x3d, 0xee01}}]}, 0x21, 0x61fb, &(0x7f000000d780)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)

2.171126304s ago: executing program 0 (id=8166):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@newspdinfo={0x1c, 0x24, 0x21, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV6_HTHRESH={0x6}]}, 0x1c}}, 0x0)

2.008372384s ago: executing program 0 (id=8169):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22000, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc004ae0a, 0x0)

1.833960043s ago: executing program 0 (id=8171):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="05000000040000000400000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x15, 0x17, &(0x7f0000000880)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20000000}, {0x85, 0x0, 0x0, 0xa0}}, {{0x6, 0x0, 0x2, 0x9, 0x0, 0x6, 0xe7030000}, {0x4, 0x0, 0x0, 0x6}}, [@printk={@llx, {0x5, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x14}}], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3, 0x0, 0x2}, {}, {0x7, 0x0, 0xb, 0x0, 0x0, 0x0, 0x2000000}}}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.734825505s ago: executing program 3 (id=8174):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000014c0), 0x80000, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, 0xffffffffffffffff)

1.502687413s ago: executing program 3 (id=8177):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="ec0000002100390d000000000000000000000000000000000000000000000000e000000200000000000000000000000000000000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000009c001100ff010000000000000000000000000001ffffffff000000000000000000000000ac1414aa000000000000000000000000ac141400000000000000000000000000030000000000000011000a00ff010000000000000000000000000001"], 0xec}}, 0x0)

1.238242905s ago: executing program 3 (id=8181):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newtaction={0x7c, 0x30, 0x9, 0x0, 0x0, {}, [{0x68, 0x1, [@m_mpls={0x64, 0x1, 0x0, 0x0, {{0x9}, {0x38, 0x2, 0x0, 0x1, [@TCA_MPLS_BOS={0x5}, @TCA_MPLS_LABEL={0x8}, @TCA_MPLS_TTL={0x5, 0x7, 0x8}, @TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x2}}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x7c}}, 0x0)

1.127135235s ago: executing program 1 (id=8182):
pipe2(&(0x7f0000000000)={<r0=>0x0, <r1=>0x0}, 0x0)
tee(r0, r1, 0x2000, 0x0)

1.119090344s ago: executing program 5 (id=8183):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@acquire={0x128, 0x17, 0x1, 0x0, 0x0, {{@in6=@dev={0xfe, 0x80, '\x00', 0x41}}, @in6=@remote, {@in=@remote, @in6=@dev={0xfe, 0x80, '\x00', 0x22}, 0x4e21, 0x4, 0x400, 0x0, 0x0, 0x0, 0x56befe125658cb64, 0x2c}, {{@in6=@private2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80, 0x20, 0xb2, 0x0, 0xee00}, {0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x3}, {}, 0x1, 0x6e6bbd, 0x2, 0x0, 0x0, 0x2}, 0xfffffff9}}, 0x128}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)

1.060708493s ago: executing program 4 (id=8184):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000005480)=[{{&(0x7f0000000100)={0x2, 0x4e20, @local}, 0x10, 0x0, 0x0, &(0x7f00000018c0)=[@ip_retopts={{0x18, 0x0, 0x7, {[@ra={0x94, 0x4}, @timestamp_addr={0x44, 0x4, 0xe7, 0x1, 0x4}]}}}], 0x18}}], 0x1, 0x28008004)

1.057002562s ago: executing program 3 (id=8185):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x1, &(0x7f0000000300)={[{@heartbeat_none}, {@heartbeat_none}, {@dir_resv_level}, {@barrier={'barrier', 0x3d, 0x2}}, {@coherency_full}, {@localflocks}, {@coherency_full}, {@inode64}]}, 0x1, 0x4421, &(0x7f0000004500)="$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")
syz_mount_image$msdos(&(0x7f0000000940), &(0x7f0000001cc0)='.\x00', 0x1a4a438, &(0x7f0000000300)=ANY=[], 0xb, 0x0, &(0x7f0000000300))

933.64877ms ago: executing program 1 (id=8186):
r0 = syz_open_dev$vbi(&(0x7f0000000140), 0x2, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000180)={0x0, 0x4, 0x4, {0x6, @pix_mp={0x0, 0x0, 0x0, 0x0, 0x0, [{}, {}, {}, {}, {0xffffffc7}]}}})

807.393797ms ago: executing program 4 (id=8187):
prctl$PR_SET_NAME(0xf, &(0x7f0000000500)='//(\x00')
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)

767.50435ms ago: executing program 1 (id=8188):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0x48, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x0, 0x2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x8, 0xa888}]}}}, @IFLA_ADDRESS={0x6, 0x1, @dev}]}, 0x48}}, 0x4)

678.953054ms ago: executing program 4 (id=8189):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x9003000000000000, 0x40, &(0x7f0000000b40)=@raw={'raw\x00', 0x2, 0x3, 0x2c8, 0x0, 0x178, 0x178, 0x178, 0x178, 0x230, 0x230, 0x230, 0x230, 0x230, 0x3, 0x0, {[{{@uncond, 0x0, 0x158, 0x178, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "d9d9e63590ab5471c46924e95540949f0cd7e2b0a94d71d9d944acb7f0a1297674a95b30cee19db4c1725572ba928385b1635c89b58ae9a0e1ea500b26f006da3fa8a134552f7980e92de5a784cd4f46e799e191835d7d5ea776f04bef524e22f0bb6ed4b00f44ceb936943e13fa1caa6b4b159c673db1efa9a08b1ddc74ce6c", 0x43, 0x3}}, @common=@inet=@socket3={{0x28}, 0x51}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x98, 0xb8, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x328)

511.173803ms ago: executing program 1 (id=8190):
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000440)={0x1, 0x1, 0x0, "ef2f31df33f8acf07a6e81e93c2013175d14d0fb15e30045f15389f866f5866c", 0x32314d48})

507.840883ms ago: executing program 0 (id=8191):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
get_mempolicy(&(0x7f0000000000), 0x0, 0x29f64d91, &(0x7f00001fe000/0x1000)=nil, 0x4)

487.351439ms ago: executing program 4 (id=8192):
r0 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x22827)
ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x40084149, 0xfffffffffffffffe)

342.978103ms ago: executing program 0 (id=8193):
r0 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0xfffff000, @loopback={0x0, 0xffffffffffffffc0}, 0x3}, 0x1c)

308.792666ms ago: executing program 1 (id=8194):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x80002, 0x0)
sendfile(r0, r0, 0x0, 0x2000006)

308.696377ms ago: executing program 4 (id=8195):
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f00000001c0)={'nat\x00', 0x0, 0x4, 0x0, [0x8, 0x1, 0x9, 0x6, 0x0, 0x1], 0x0, 0x0, 0x0}, &(0x7f0000000040)=0x50)

107.10072ms ago: executing program 5 (id=8196):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000e80)={'syz_tun\x00', {0x2, 0x4ea5, @empty}})

106.80418ms ago: executing program 4 (id=8197):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000640)=@migrate={0x50, 0x21, 0x1, 0x0, 0xfffffffe, {{@in6=@private2, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x84}}}, 0x50}}, 0x4000000)

95.906618ms ago: executing program 1 (id=8198):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000100001000000000000000089a000000a20000000000a03000000000000000000070000000900010073797a300000000080000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d3c00128014000180090001006c617374000000000400028010000180090001006c61737400000000380001800c000100636f756e746572000400028008000340000001"], 0xc8}, 0x1, 0x0, 0x0, 0x40840}, 0x20050800)

0s ago: executing program 3 (id=8199):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x44, 0x29, 0x9, 0x70bd27, 0x0, {0x4}, [@typed={0x30, 0x18, 0x0, 0x0, @binary="0dac0f000aac0f00aa0bf7648575375d4314600f7910b147c55137b8aef70cd8871f3c8f1f16dc2fdc59ea00"}]}, 0x44}, 0x1, 0x0, 0x0, 0x4042806}, 0x24000094)

kernel console output (not intermixed with test programs):

 an invalid length.
[  434.900195][T18084] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6321'.
[  435.192959][T18103] loop4: detected capacity change from 0 to 736
[  435.270322][T18075] loop1: detected capacity change from 0 to 32768
[  435.308038][T18075] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.6318 (18075)
[  435.343787][T18103] rock: directory entry would overflow storage
[  435.352227][T18103] rock: sig=0x3b10, size=4, remaining=3
[  435.364228][T18075] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  435.386379][T18075] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  435.409749][T18075] BTRFS info (device loop1): using free space tree
[  435.594482][T18121] loop4: detected capacity change from 0 to 2048
[  435.594489][T18075] BTRFS info (device loop1): enabling ssd optimizations
[  435.657160][T18121] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  435.686820][ T4267] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  435.793181][ T4396] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop1 scanned by udevd (4396)
[  436.674256][T18165] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6353'.
[  436.755524][T18165] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6353'.
[  436.808363][T18165] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6353'.
[  437.107291][T18183] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6361'.
[  437.194746][T18189] ieee802154 phy1 wpan1: encryption failed: -22
[  437.654362][T18214] MTD: Couldn't look up './bus': -15
[  437.758158][T18218] loop3: detected capacity change from 0 to 256
[  437.784751][T18218] exfat: Deprecated parameter 'utf8'
[  437.800472][T18218] /dev/loop3: Can't open blockdev
[  438.055052][T18228] loop2: detected capacity change from 0 to 512
[  438.117892][T18228] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  438.213226][T18228] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  438.229173][T18228] ext4 filesystem being mounted at /1244/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  438.270019][T18241] loop3: detected capacity change from 0 to 512
[  438.284867][T18241] /dev/loop3: Can't open blockdev
[  438.351900][ T4261] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  438.406498][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  438.610530][T18254] loop3: detected capacity change from 0 to 1024
[  439.112502][T18276] usb usb8: usbfs: process 18276 (syz.4.6401) did not claim interface 0 before use
[  439.413467][T18251] loop2: detected capacity change from 0 to 32768
[  439.465851][T18251] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  439.495700][T18287] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  439.505079][T18287] overlayfs: missing 'lowerdir'
[  439.545235][T18251] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  439.668027][T18251] (syz.2.6389,18251,0):ocfs2_read_blocks:239 ERROR: status = -12
[  439.696752][T18251] (syz.2.6389,18251,0):ocfs2_xattr_block_find:2835 ERROR: status = -12
[  439.860541][ T4271] ocfs2: Unmounting device (7,2) on (node local)
[  439.924370][   T14] usb 4-1: new full-speed USB device number 32 using dummy_hcd
[  439.969347][ T1272] ieee802154 phy1 wpan1: encryption failed: -22
[  439.982792][   T26] kauditd_printk_skb: 5 callbacks suppressed
[  439.982805][   T26] audit: type=1326 audit(1773250799.154:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.082071][   T26] audit: type=1326 audit(1773250799.184:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.105396][    C0] vkms_vblank_simulate: vblank timer overrun
[  440.143235][   T14] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  440.165088][   T14] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  440.178835][   T26] audit: type=1326 audit(1773250799.194:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.209983][   T26] audit: type=1326 audit(1773250799.194:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.252006][   T14] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  440.261385][   T26] audit: type=1326 audit(1773250799.194:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.293857][   T14] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  440.312282][   T14] usb 4-1: SerialNumber: syz
[  440.343582][   T14] usb 4-1: 0:2 : does not exist
[  440.352216][   T26] audit: type=1326 audit(1773250799.194:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.374540][    C0] vkms_vblank_simulate: vblank timer overrun
[  440.422784][   T26] audit: type=1326 audit(1773250799.194:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.479682][   T26] audit: type=1326 audit(1773250799.194:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.564963][   T26] audit: type=1326 audit(1773250799.194:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18309 comm="syz.4.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f910d79c799 code=0x7ffc0000
[  440.587307][    C0] vkms_vblank_simulate: vblank timer overrun
[  440.613385][   T26] audit: type=1326 audit(1773250799.384:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18313 comm="syz.0.6421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe670f9c799 code=0x7ffc0000
[  440.636015][    C0] vkms_vblank_simulate: vblank timer overrun
[  440.750354][T18306] loop1: detected capacity change from 0 to 32768
[  440.801252][T18078] usb 4-1: USB disconnect, device number 32
[  440.909710][T18306] XFS (loop1): Mounting V5 Filesystem
[  441.093760][T18306] XFS (loop1): Ending clean mount
[  441.239877][ T4267] XFS (loop1): Unmounting Filesystem
[  441.473044][T18362] netlink: 'syz.3.6441': attribute type 49 has an invalid length.
[  441.506707][T18360] loop2: detected capacity change from 0 to 2048
[  441.538784][T18360] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  441.670862][T18366] netlink: 'syz.0.6442': attribute type 1 has an invalid length.
[  442.437816][T18404] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  442.664238][T18412] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  442.670358][   T27] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  442.875482][   T27] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  442.901190][   T27] usb 4-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[  442.938375][   T27] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  442.964690][   T27] usb 4-1: config 0 descriptor??
[  443.086129][T18434] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[  443.435916][T18078] usb 4-1: USB disconnect, device number 33
[  443.630767][T18458] loop2: detected capacity change from 0 to 16
[  443.669331][T18458] erofs: (device loop2): mounted with root inode @ nid 36.
[  443.720261][T18458] syz.2.6486: attempt to access beyond end of device
[  443.720261][T18458] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[  444.234997][T18480] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6497'.
[  444.274353][T18480] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6497'.
[  444.304276][T18480] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6497'.
[  444.325852][T18485] loop1: detected capacity change from 0 to 22
[  444.354678][T18485] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  444.391828][T18485] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  444.568874][T18493] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6502'.
[  444.593517][T18493] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6502'.
[  444.630343][T18493] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6502'.
[  444.783205][T18498] loop1: detected capacity change from 0 to 4096
[  445.254160][   T27] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  445.457790][T18528] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6521'.
[  445.468302][   T27] usb 5-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[  445.494060][   T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.522515][T18528] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6521'.
[  445.541902][   T27] usb 5-1: Product: syz
[  445.546492][   T27] usb 5-1: Manufacturer: syz
[  445.551106][   T27] usb 5-1: SerialNumber: syz
[  445.567394][   T27] usb 5-1: config 0 descriptor??
[  445.580937][   T27] gspca_main: sq905c-2.14.0 probing 2770:9052
[  445.905948][T18547] loop3: detected capacity change from 0 to 256
[  445.987173][   T27] gspca_sq905c: sq905c_read: usb_control_msg failed (-71)
[  445.998970][   T27] sq905c 5-1:0.0: Reading version command failed
[  446.027696][   T27] sq905c: probe of 5-1:0.0 failed with error -71
[  446.056728][   T27] usb 5-1: USB disconnect, device number 33
[  446.586175][T18571] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6540'.
[  446.627544][T18571] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6540'.
[  447.478381][T18613] xt_TPROXY: Can be used only with -p tcp or -p udp
[  448.044206][T18636] loop2: detected capacity change from 0 to 512
[  448.092278][T18636] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.6572: bg 0: block 5: invalid block bitmap
[  448.155102][T18636] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6179: Corrupt filesystem
[  448.214735][T18636] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.6572: invalid indirect mapped block 3 (level 2)
[  448.254805][T18636] EXT4-fs (loop2): 1 orphan inode deleted
[  448.260586][T18636] EXT4-fs (loop2): 1 truncate cleaned up
[  448.281495][T18636] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  448.479042][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  448.610459][T18663] netlink: 'syz.2.6585': attribute type 1 has an invalid length.
[  448.870511][T18679] loop3: detected capacity change from 0 to 256
[  449.821809][T18722] autofs4:pid:18722:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.2), cmd(0xc0189374)
[  449.871876][T18722] autofs4:pid:18722:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189374)
[  450.149979][T18738] __nla_validate_parse: 4 callbacks suppressed
[  450.149995][T18738] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6622'.
[  450.320984][T18746] x_tables: duplicate entry at hook 1
[  450.650207][T18762] loop3: detected capacity change from 0 to 128
[  451.153022][T18772] loop1: detected capacity change from 0 to 4096
[  451.239020][T18753] loop2: detected capacity change from 0 to 32768
[  451.562281][T18756] loop4: detected capacity change from 0 to 40427
[  451.615166][T18756] F2FS-fs (loop4): build fault injection attr: rate: 14, type: 0x3ffff
[  451.658216][T18756] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0xe4
[  451.705384][T18756] F2FS-fs (loop4): invalid crc value
[  451.758948][T18756] F2FS-fs (loop4): Found nat_bits in checkpoint
[  451.849663][T18756] F2FS-fs (loop4) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x432/0xa20
[  451.954743][T18756] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  451.981178][T18756] F2FS-fs (loop4) : inject alloc nid in f2fs_alloc_nid of f2fs_get_dnode_of_data+0x6eb/0x1b10
[  452.094132][   T27] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  452.294010][   T27] usb 2-1: Using ep0 maxpacket: 8
[  452.296970][   T27] usb 2-1: config 0 has an invalid interface number: 52 but max is 0
[  452.296995][   T27] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  452.297014][   T27] usb 2-1: config 0 has no interface number 0
[  452.297042][   T27] usb 2-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  452.297069][   T27] usb 2-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  452.297094][   T27] usb 2-1: config 0 interface 52 has no altsetting 0
[  452.298805][   T27] usb 2-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[  452.298834][   T27] usb 2-1: New USB device strings: Mfr=0, Product=234, SerialNumber=34
[  452.298855][   T27] usb 2-1: Product: syz
[  452.298870][   T27] usb 2-1: SerialNumber: syz
[  452.300545][   T27] usb 2-1: config 0 descriptor??
[  452.510442][   T27] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.52/input/input39
[  452.740123][   T27] usb 2-1: USB disconnect, device number 31
[  452.740240][    C1] synaptics_usb 2-1:0.52: synusb_irq - usb_submit_urb failed with result: -19
[  453.543752][T18852] loop2: detected capacity change from 0 to 4096
[  453.581033][T18857] loop3: detected capacity change from 0 to 736
[  453.639653][T18860] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  454.117484][T18873] device geneve2 entered promiscuous mode
[  454.555959][T18895] (unnamed net_device) (uninitialized): option lacp_rate: invalid value (253)
[  455.724198][ T4397] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  455.748935][T18958] device wlan0 entered promiscuous mode
[  455.919706][ T4397] usb 5-1: Using ep0 maxpacket: 8
[  455.931756][ T4397] usb 5-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  455.954613][T18966] netlink: 'syz.1.6732': attribute type 1 has an invalid length.
[  455.959313][ T4397] usb 5-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  455.978891][ T4397] usb 5-1: Product: syz
[  455.983187][ T4397] usb 5-1: Manufacturer: syz
[  455.988763][ T4397] usb 5-1: SerialNumber: syz
[  456.026499][ T4397] usb 5-1: config 0 descriptor??
[  456.072481][T18972] netlink: 'syz.3.6734': attribute type 3 has an invalid length.
[  456.082554][ T4397] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  456.111605][T18972] netlink: 766 bytes leftover after parsing attributes in process `syz.3.6734'.
[  456.333990][   T27] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  456.444168][ T4397] gspca_zc3xx: reg_r err -71
[  456.452223][ T4397] gspca_zc3xx: probe of 5-1:0.0 failed with error -71
[  456.479441][ T4397] usb 5-1: USB disconnect, device number 34
[  456.483141][T18991] netlink: 'syz.1.6744': attribute type 21 has an invalid length.
[  456.502369][T18991] IPv6: NLM_F_CREATE should be specified when creating new route
[  456.529576][T18991] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  456.536917][T18991] IPv6: NLM_F_CREATE should be set when creating new route
[  456.544214][T18991] IPv6: NLM_F_CREATE should be set when creating new route
[  456.551441][T18991] IPv6: NLM_F_CREATE should be set when creating new route
[  456.564126][   T27] usb 3-1: Using ep0 maxpacket: 8
[  456.572106][   T27] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  456.607172][   T27] usb 3-1: New USB device found, idVendor=0421, idProduct=798f, bcdDevice=86.54
[  456.633349][   T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  456.647920][   T27] usb 3-1: Product: syz
[  456.652661][   T27] usb 3-1: Manufacturer: syz
[  456.660046][   T27] usb 3-1: SerialNumber: syz
[  456.679895][   T27] usb 3-1: config 0 descriptor??
[  456.693443][   T27] cdc_phonet 3-1:0.0: skipping garbage
[  456.710437][   T27] cdc_phonet: probe of 3-1:0.0 failed with error -22
[  456.913472][ T5949] usb 3-1: USB disconnect, device number 28
[  457.778362][T19024] loop1: detected capacity change from 0 to 128
[  457.858377][T19024] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  457.874295][T19024] ext4 filesystem being mounted at /1317/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  458.094969][ T4267] EXT4-fs (loop1): unmounting filesystem.
[  458.349057][T19046] loop2: detected capacity change from 0 to 512
[  458.400269][T19043] loop1: detected capacity change from 0 to 4096
[  458.415066][T19046] EXT4-fs: inline encryption not supported
[  458.452629][T19046] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.6771: bad orphan inode 15
[  458.477020][T19046] ext4_test_bit(bit=14, block=5) = 0
[  458.482528][T19046] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  458.506287][T19043] ntfs3: loop1: Failed to load $Extend.
[  458.526795][ T4271] EXT4-fs error (device loop2): ext4_lookup:1858: inode #17: comm syz-executor: iget: bad extra_isize 255 (inode size 256)
[  458.547816][ T4271] EXT4-fs error (device loop2): ext4_lookup:1858: inode #17: comm syz-executor: iget: bad extra_isize 255 (inode size 256)
[  458.672029][T19043] ntfs3: loop1: ino=5, "/" directory corrupted
[  459.023582][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  459.234887][ T8179] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.444073][ T8179] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.546568][ T8179] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.614757][T19082] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.6790' sets config #1
[  459.719033][ T8179] device netdevsim0 left promiscuous mode
[  459.742582][ T8179] bridge0: port 3(netdevsim0) entered disabled state
[  459.786444][ T8179] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.803307][T19085] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6792'.
[  460.497038][ T4270] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  460.507976][ T4270] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  460.517595][ T4270] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  460.526574][ T4270] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  460.535747][ T4270] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  460.543010][ T4270] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  460.574851][ T4272] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  460.585251][ T4272] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  460.592619][ T4272] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  460.602794][ T4272] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  460.611933][ T4272] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  460.619433][ T4272] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  460.898703][T19106] wg1 speed is unknown, defaulting to 1000
[  461.962534][T19169] loop1: detected capacity change from 0 to 256
[  462.052921][T19169] FAT-fs (loop1): Directory bread(block 64) failed
[  462.065401][T19169] FAT-fs (loop1): Directory bread(block 65) failed
[  462.090977][T19169] FAT-fs (loop1): Directory bread(block 66) failed
[  462.098386][T19169] FAT-fs (loop1): Directory bread(block 67) failed
[  462.121960][T19169] FAT-fs (loop1): Directory bread(block 68) failed
[  462.126080][T19172] netlink: 'syz.4.6827': attribute type 13 has an invalid length.
[  462.132579][T19169] FAT-fs (loop1): Directory bread(block 69) failed
[  462.149132][T19169] FAT-fs (loop1): Directory bread(block 70) failed
[  462.156348][T19106] chnl_net:caif_netlink_parms(): no params data found
[  462.176136][T19169] FAT-fs (loop1): Directory bread(block 71) failed
[  462.195845][T19169] FAT-fs (loop1): Directory bread(block 72) failed
[  462.212615][T19169] FAT-fs (loop1): Directory bread(block 73) failed
[  462.229981][ T5949] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  462.293604][T19169] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 899)
[  462.310170][T19177] IPv6: sit2: Disabled Multicast RS
[  462.339236][T19169] FAT-fs (loop1): Filesystem has been set read-only
[  462.424127][ T5949] usb 1-1: Using ep0 maxpacket: 32
[  462.431311][ T5949] usb 1-1: config 0 has an invalid interface number: 35 but max is 0
[  462.464229][ T5949] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  462.493973][ T5949] usb 1-1: config 0 has no interface number 0
[  462.500252][ T5949] usb 1-1: config 0 interface 35 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  462.572981][ T5949] usb 1-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[  462.630914][ T5949] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.647722][ T5949] usb 1-1: Product: syz
[  462.673220][ T5949] usb 1-1: Manufacturer: syz
[  462.673243][ T5949] usb 1-1: SerialNumber: syz
[  462.685430][ T5949] usb 1-1: config 0 descriptor??
[  462.688846][ T5949] radio-si470x 1-1:0.35: could not find interrupt in endpoint
[  462.688892][ T5949] radio-si470x: probe of 1-1:0.35 failed with error -5
[  462.690354][ T4277] Bluetooth: hci1: command 0x0409 tx timeout
[  462.696536][T19194] rtc_cmos 00:00: Alarms can be up to one day in the future
[  462.824663][T19106] bridge0: port 1(bridge_slave_0) entered blocking state
[  462.837012][T19106] bridge0: port 1(bridge_slave_0) entered disabled state
[  462.840205][ T4309] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  462.855246][T19106] device bridge_slave_0 entered promiscuous mode
[  462.880359][T19106] bridge0: port 2(bridge_slave_1) entered blocking state
[  462.895131][T19106] bridge0: port 2(bridge_slave_1) entered disabled state
[  462.902850][ T5949] radio-raremono 1-1:0.35: this is not Thanko's Raremono.
[  462.911463][ T5949] usbhid 1-1:0.35: couldn't find an input interrupt endpoint
[  462.915816][T19106] device bridge_slave_1 entered promiscuous mode
[  463.063375][ T4309] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  463.093068][ T4309] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  463.125281][ T4397] usb 1-1: USB disconnect, device number 27
[  463.145732][ T4309] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  463.184116][ T4309] usb 5-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db
[  463.214513][ T4309] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  463.231616][ T4309] usb 5-1: config 0 descriptor??
[  463.289947][T19106] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  463.313501][T19106] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  463.501851][ T4309] usb 5-1: USB disconnect, device number 35
[  463.545976][T19106] team0: Port device team_slave_0 added
[  463.575744][T19106] team0: Port device team_slave_1 added
[  463.656469][ T8179] device hsr_slave_0 left promiscuous mode
[  463.684425][ T8179] device hsr_slave_1 left promiscuous mode
[  463.704639][ T8179] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  463.712188][ T8179] batman_adv: batadv0: Removing interface: batadv_slave_0
[  463.741286][ T8179] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  463.765376][ T8179] batman_adv: batadv0: Removing interface: batadv_slave_1
[  463.780247][ T8179] device bridge_slave_1 left promiscuous mode
[  463.802791][ T8179] bridge0: port 2(bridge_slave_1) entered disabled state
[  463.864743][ T8179] device bridge_slave_0 left promiscuous mode
[  463.873013][T19230] loop1: detected capacity change from 0 to 64
[  463.891962][ T8179] bridge0: port 1(bridge_slave_0) entered disabled state
[  463.990856][ T8179] device veth1_vlan left promiscuous mode
[  464.015925][ T8179] device veth0_vlan left promiscuous mode
[  464.483347][ T8179] bond4 (unregistering): Released all slaves
[  464.510483][ T8179] bond3 (unregistering): Released all slaves
[  464.772541][ T4272] Bluetooth: hci1: command 0x041b tx timeout
[  464.917583][T19264] loop4: detected capacity change from 0 to 2048
[  464.986777][T19264] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  464.997897][ T8179] bond2 (unregistering): Released all slaves
[  465.011475][ T8179] bond1 (unregistering): Released all slaves
[  465.629588][ T8179] device team_slave_1 left promiscuous mode
[  465.642114][ T8179] team0 (unregistering): Port device team_slave_1 removed
[  465.686076][ T8179] device team_slave_0 left promiscuous mode
[  465.697903][ T8179] team0 (unregistering): Port device team_slave_0 removed
[  465.745262][ T8179] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  465.801731][ T8179] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  466.137505][ T8179] bond0 (unregistering): Released all slaves
[  466.294381][T19106] batman_adv: batadv0: Adding interface: batadv_slave_0
[  466.301376][T19106] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  466.365667][T19106] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  466.398818][T19106] batman_adv: batadv0: Adding interface: batadv_slave_1
[  466.415347][T19106] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  466.483053][T19106] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  466.704056][T19106] device hsr_slave_0 entered promiscuous mode
[  466.745127][T19106] device hsr_slave_1 entered promiscuous mode
[  466.760159][T19106] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  466.798824][T19106] Cannot create hsr debugfs directory
[  466.851366][ T4272] Bluetooth: hci1: command 0x040f tx timeout
[  467.000460][T19300] netlink: 'syz.3.6880': attribute type 1 has an invalid length.
[  467.267958][T19313] netlink: 'syz.0.6885': attribute type 30 has an invalid length.
[  467.403325][T19106] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  467.433552][T19106] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  467.483146][T19106] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  467.512934][T19106] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  467.537830][ T4397] usb 5-1: new full-speed USB device number 36 using dummy_hcd
[  467.719707][T19106] 8021q: adding VLAN 0 to HW filter on device bond0
[  467.729605][ T4397] usb 5-1: config 0 has an invalid interface number: 133 but max is 0
[  467.757916][ T4397] usb 5-1: config 0 has no interface number 0
[  467.773152][ T4397] usb 5-1: config 0 interface 133 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  467.796086][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  467.814685][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  467.833987][ T4397] usb 5-1: config 0 interface 133 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  467.853772][T19106] 8021q: adding VLAN 0 to HW filter on device team0
[  467.877507][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  467.898026][ T4397] usb 5-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[  467.912372][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  467.921024][ T4397] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  467.935233][ T4397] usb 5-1: Product: syz
[  467.939435][ T4397] usb 5-1: Manufacturer: syz
[  467.984096][ T4397] usb 5-1: SerialNumber: syz
[  467.988332][T16234] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.990317][ T4397] usb 5-1: config 0 descriptor??
[  467.995850][T16234] bridge0: port 1(bridge_slave_0) entered forwarding state
[  468.009625][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  468.055123][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  468.064867][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  468.075278][ T4314] bridge0: port 2(bridge_slave_1) entered blocking state
[  468.082387][ T4314] bridge0: port 2(bridge_slave_1) entered forwarding state
[  468.107410][T19343] loop1: detected capacity change from 0 to 256
[  468.135029][T19343] exfat: Deprecated parameter 'utf8'
[  468.140428][T19343] exfat: Deprecated parameter 'namecase'
[  468.147208][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  468.185785][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  468.213527][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  468.244076][T19343] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  468.261278][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  468.286814][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  468.315328][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  468.328622][ T4397] keyspan 5-1:0.133: Keyspan 1 port adapter converter detected
[  468.345716][ T4397] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 81
[  468.353701][ T4397] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 1
[  468.376795][T19106] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  468.387767][T19343] kAFS: unable to lookup cell 's@z0'
[  468.422158][ T4397] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 2
[  468.430356][T19106] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  468.456745][ T4397] usb 5-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  468.467048][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  468.475848][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  468.494674][T19352] loop3: detected capacity change from 0 to 512
[  468.499283][ T4397] usb 5-1: USB disconnect, device number 36
[  468.544851][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  468.553707][T19352] /dev/loop3: Can't open blockdev
[  468.581611][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  468.598993][ T4397] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  468.613718][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  468.621755][ T4397] keyspan 5-1:0.133: device disconnected
[  468.634959][ T4396] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  468.669570][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  468.855759][T19362] program syz.1.6903 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  468.928496][ T4272] Bluetooth: hci1: command 0x0419 tx timeout
[  469.041848][T19369] loop3: detected capacity change from 0 to 16
[  469.100023][T19369] /dev/loop3: Can't open blockdev
[  469.163703][ T4261] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  469.375102][   T26] kauditd_printk_skb: 3 callbacks suppressed
[  469.375123][   T26] audit: type=1326 audit(1773250828.544:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19379 comm="syz.3.6910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  469.515526][   T26] audit: type=1326 audit(1773250828.544:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19379 comm="syz.3.6910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  469.638917][   T26] audit: type=1326 audit(1773250828.584:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19379 comm="syz.3.6910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  469.733200][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  469.757434][   T26] audit: type=1326 audit(1773250828.584:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19379 comm="syz.3.6910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  469.784655][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  469.802832][T19106] 8021q: adding VLAN 0 to HW filter on device batadv0
[  469.824950][T19398] xt_limit: Overflow, try lower: 1207959552/384
[  469.880828][   T26] audit: type=1326 audit(1773250828.584:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19379 comm="syz.3.6910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  470.261950][T19421] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6924'.
[  470.344097][ T4397] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  470.475595][T19426] device geneve3 entered promiscuous mode
[  470.532182][T19431] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled
[  470.555715][ T4397] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  470.589329][ T4397] usb 1-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  470.638869][ T4397] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  470.680012][ T4397] gspca_main: stv0680-2.14.0 probing 041e:4007
[  471.060113][T16236] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  471.084402][T16236] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  471.134705][T19452] Unsupported ieee802154 address type: 0
[  471.138324][T19106] device veth0_vlan entered promiscuous mode
[  471.176607][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  471.213235][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  471.257009][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  471.275392][T16234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  471.315915][T19106] device veth1_vlan entered promiscuous mode
[  471.410338][T16236] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  471.439525][T16236] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  471.473687][T16236] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  471.498134][T16236] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  471.524827][T19106] device veth0_macvtap entered promiscuous mode
[  471.580498][T19106] device veth1_macvtap entered promiscuous mode
[  471.632121][T19106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.678855][T19106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.703299][T19106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.707379][T19471] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6944'.
[  471.722334][T19106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.744265][ T4397] stv0680 1-1:4.0: STV(e): camera ping failed!!
[  471.789854][T19106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.834950][T19106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.875784][T19106] batman_adv: batadv0: Interface activated: batadv_slave_0
[  471.909714][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  471.947284][ T4397] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  471.968299][ T4397] stv0680 1-1:4.0: last error: 0,  command = 0x0
[  471.977090][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  472.004499][ T4397] usb 1-1: USB disconnect, device number 28
[  472.012831][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  472.049709][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  472.065024][T19486] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6949'.
[  472.087030][T19106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  472.097628][T19106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  472.117328][T19106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  472.128213][T19106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  472.138400][T19106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  472.169403][T19106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  472.229774][T19106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  472.261914][T19106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  472.293007][T19106] batman_adv: batadv0: Interface activated: batadv_slave_1
[  472.320444][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  472.336223][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  472.358575][T19106] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  472.374100][T19106] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  472.402324][T19106] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  472.433717][T19106] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  472.711729][   T33] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  472.730794][   T33] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  472.778115][T16238] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  472.897538][T16238] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  472.916039][T16238] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  472.956507][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  473.389895][   T27] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  473.584038][   T27] usb 2-1: Using ep0 maxpacket: 8
[  473.591685][   T27] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  473.631502][   T27] usb 2-1: config 179 has no interface number 0
[  473.658395][   T27] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  473.710711][   T27] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  473.745271][   T27] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[  473.769332][   T27] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[  473.804625][   T27] usb 2-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  473.849098][   T27] usb 2-1: config 179 interface 65 has no altsetting 0
[  473.867321][   T27] usb 2-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  473.896718][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  473.954344][   T27] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input41
[  474.231026][T19570] netlink: 'syz.5.6984': attribute type 11 has an invalid length.
[  474.253281][T19571] ERROR: device name not specified.
[  474.442965][   T27] usb 2-1: USB disconnect, device number 32
[  474.449055][    C1] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  474.472740][   T27] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  475.012813][T19602] netlink: 72 bytes leftover after parsing attributes in process `syz.5.6997'.
[  475.117403][T19609] sctp: [Deprecated]: syz.4.7000 (pid 19609) Use of struct sctp_assoc_value in delayed_ack socket option.
[  475.117403][T19609] Use struct sctp_sack_info instead
[  475.325893][T19616] loop5: detected capacity change from 0 to 1024
[  475.371758][T19616] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  475.411883][T19616] EXT4-fs error (device loop5): ext4_lookup:1858: comm syz.5.7002: inode #12: comm syz.5.7002: iget: illegal inode #
[  475.503338][T19616] EXT4-fs (loop5): Remounting filesystem read-only
[  475.594732][T19633] IPVS: length: 218 != 24
[  475.706850][T19106] EXT4-fs (loop5): unmounting filesystem.
[  476.078284][T19652] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7016'.
[  476.365403][T19671] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7023'.
[  476.399563][T19671] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7023'.
[  476.424013][ T4309] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  476.644014][ T4309] usb 6-1: Using ep0 maxpacket: 16
[  476.650751][ T4309] usb 6-1: config 0 interface 0 has no altsetting 0
[  476.710869][ T4309] usb 6-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice=29.82
[  476.747728][ T4309] usb 6-1: New USB device strings: Mfr=83, Product=5, SerialNumber=10
[  476.783975][ T4309] usb 6-1: Product: syz
[  476.788192][ T4309] usb 6-1: Manufacturer: syz
[  476.792790][ T4309] usb 6-1: SerialNumber: syz
[  476.854374][ T4309] usb 6-1: config 0 descriptor??
[  477.104033][ T4309] snd-usb-audio: probe of 6-1:0.0 failed with error -22
[  477.151846][ T4309] usb 6-1: USB disconnect, device number 2
[  477.165685][T19701] netlink: 'syz.3.7037': attribute type 2 has an invalid length.
[  477.171661][ T4261] udevd[4261]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  477.662987][T19720] loop3: detected capacity change from 0 to 1024
[  477.731058][T19720] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  477.760376][T19720] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  477.766148][T19726] xt_recent: Unsupported userspace flags (000000de)
[  477.791399][T19720] EXT4-fs error (device loop3): ext4_get_journal_inode:5756: inode #5: comm syz.3.7045: unexpected bad inode w/o EXT4_IGET_BAD
[  477.843435][T19720] EXT4-fs (loop3): no journal found
[  477.860037][T19720] EXT4-fs (loop3): can't get journal size
[  477.894539][T19720] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  478.014426][T19736] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  478.115077][ T4280] EXT4-fs (loop3): unmounting filesystem.
[  478.174325][T19741] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7052'.
[  478.297428][T19746] netlink: 830 bytes leftover after parsing attributes in process `syz.5.7054'.
[  478.318821][T19744] loop3: detected capacity change from 0 to 1764
[  478.492503][T19722] loop1: detected capacity change from 0 to 32768
[  478.600477][T19722] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  478.681590][T19762] loop3: detected capacity change from 0 to 1024
[  478.696475][T19722] XFS (loop1): Mounting V5 Filesystem
[  478.941898][T19722] XFS (loop1): Ending clean mount
[  479.087103][ T4267] XFS (loop1): Unmounting Filesystem
[  479.214225][  T125] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  479.420224][  T125] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  479.442712][  T125] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  479.484058][  T125] usb 5-1: Product: syz
[  479.499935][  T125] usb 5-1: Manufacturer: syz
[  479.508569][  T125] usb 5-1: SerialNumber: syz
[  479.563675][  T125] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  479.646322][  T125] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  479.914701][    C0] usb 5-1: ath: unknown panic pattern!
[  480.129235][   T26] audit: type=1326 audit(1773250839.304:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19813 comm="syz.1.7082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc98539c799 code=0x7ffc0000
[  480.154934][   T14] usb 5-1: USB disconnect, device number 37
[  480.212645][   T26] audit: type=1326 audit(1773250839.304:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19813 comm="syz.1.7082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7fc98539c799 code=0x7ffc0000
[  480.311878][   T26] audit: type=1326 audit(1773250839.304:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19813 comm="syz.1.7082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc98539c799 code=0x7ffc0000
[  480.764131][  T125] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  480.771166][  T125] ath9k_htc: Failed to initialize the device
[  480.844576][   T14] usb 5-1: ath9k_htc: USB layer deinitialized
[  481.258029][T19867] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  481.509597][T19878] netlink: 'syz.0.7108': attribute type 1 has an invalid length.
[  481.534333][T19878] netlink: 224 bytes leftover after parsing attributes in process `syz.0.7108'.
[  481.696039][T19888] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7113'.
[  481.725666][T19888] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7113'.
[  481.754275][T19888] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check.
[  482.017809][T19902] netlink: 'syz.3.7120': attribute type 2 has an invalid length.
[  482.087717][T19905] loop1: detected capacity change from 0 to 1764
[  482.228653][T19909] overlayfs: failed to resolve './file0': -2
[  482.634205][ T5949] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  482.689788][T19929] loop5: detected capacity change from 0 to 512
[  482.712415][T19929] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  482.753887][T19929] EXT4-fs error (device loop5): ext4_get_verity_descriptor_location:337: inode #15: comm syz.5.7132: verity file corrupted; can't find descriptor
[  482.844202][ T5949] usb 2-1: Using ep0 maxpacket: 16
[  482.853615][T19929] fs-verity (loop5, inode 15): Error -117 getting verity descriptor size
[  482.868736][ T5949] usb 2-1: New USB device found, idVendor=041e, idProduct=4018, bcdDevice=ed.b4
[  482.888059][ T5949] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.898876][ T5949] usb 2-1: Product: syz
[  482.903071][ T5949] usb 2-1: Manufacturer: syz
[  482.929218][ T5949] usb 2-1: SerialNumber: syz
[  482.955172][ T5949] usb 2-1: config 0 descriptor??
[  482.970874][ T5949] gspca_main: spca508-2.14.0 probing 041e:4018
[  483.005522][T19106] EXT4-fs (loop5): unmounting filesystem.
[  483.125126][T19939] syz.5.7136 (19939): /proc/19938/oom_adj is deprecated, please use /proc/19938/oom_score_adj instead.
[  483.371940][ T5949] gspca_spca508: reg_read err -71
[  483.384216][ T5949] gspca_spca508: reg_read err -71
[  483.394255][ T5949] gspca_spca508: reg_read err -71
[  483.404873][ T5949] gspca_spca508: reg_read err -71
[  483.423081][ T5949] gspca_spca508: reg write: error -71
[  483.433333][ T5949] spca508: probe of 2-1:0.0 failed with error -71
[  483.492260][ T5949] usb 2-1: USB disconnect, device number 33
[  483.538811][T19954] netlink: 'syz.4.7144': attribute type 2 has an invalid length.
[  483.557559][T19954] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7144'.
[  483.685588][T19961] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7145'.
[  483.717975][T19961] device geneve2 entered promiscuous mode
[  483.811233][T19965] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  484.370513][T19992] netlink: 'syz.5.7157': attribute type 21 has an invalid length.
[  484.394068][T19992] IPv6: NLM_F_CREATE should be specified when creating new route
[  484.418681][T19992] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7157'.
[  484.522525][T19998] loop3: detected capacity change from 0 to 1024
[  484.560369][T19998] /dev/loop3: Can't open blockdev
[  485.143243][T20029] loop5: detected capacity change from 0 to 8
[  485.260331][T20029] SQUASHFS error: lzo decompression failed, data probably corrupt
[  485.314441][T20029] SQUASHFS error: Failed to read block 0x0: -5
[  485.371462][T20029] SQUASHFS error: lzo decompression failed, data probably corrupt
[  485.429210][T20029] SQUASHFS error: Failed to read block 0x0: -5
[  485.448722][   T26] audit: type=1800 audit(1773250844.624:200): pid=20029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.7178" name="file2" dev="loop5" ino=3 res=0 errno=0
[  486.124172][  T125] usb 4-1: new full-speed USB device number 34 using dummy_hcd
[  486.132146][T20045] loop4: detected capacity change from 0 to 32768
[  486.202944][T20045] ERROR: (device loop4): diAllocAG: numfree > numinos
[  486.202944][T20045] 
[  486.253087][T20045] ialloc: diAlloc returned -5!
[  486.336427][  T125] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 64
[  486.369896][  T125] usb 4-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  486.401196][  T125] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.447798][  T125] usb 4-1: Product: syz
[  486.452025][  T125] usb 4-1: Manufacturer: syz
[  486.474916][  T125] usb 4-1: SerialNumber: syz
[  486.505129][  T125] usb 4-1: config 0 descriptor??
[  486.520594][T20061] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  486.538781][T20090] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[  486.551488][T20061] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  486.573894][  T125] port100 4-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  486.863019][  T125] usb 4-1: USB disconnect, device number 34
[  486.901847][T20100] netlink: 'syz.0.7210': attribute type 1 has an invalid length.
[  486.930940][T20100] netlink: 'syz.0.7210': attribute type 2 has an invalid length.
[  486.964366][T20100] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7210'.
[  487.334027][ T4309] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  487.544000][ T4309] usb 6-1: Using ep0 maxpacket: 32
[  487.553090][ T4309] usb 6-1: unable to get BOS descriptor or descriptor too short
[  487.579564][ T4309] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  487.621941][ T4309] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  487.632390][ T4309] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  487.676586][ T4309] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  487.709366][ T4309] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  487.724511][ T4309] usb 6-1: Product: syz
[  487.728740][ T4309] usb 6-1: Manufacturer: syz
[  487.744157][ T4309] usb 6-1: SerialNumber: syz
[  487.966660][ T4309] cdc_ncm 6-1:1.0: CDC Union missing and no IAD found
[  487.987664][ T4309] cdc_ncm 6-1:1.0: bind() failure
[  488.013708][ T4309] usb 6-1: USB disconnect, device number 3
[  488.382360][T20169] netlink: 'syz.0.7241': attribute type 10 has an invalid length.
[  488.414071][T20169] netlink: 'syz.0.7241': attribute type 16 has an invalid length.
[  488.438619][T20169] netlink: 156 bytes leftover after parsing attributes in process `syz.0.7241'.
[  489.044925][T20194] netlink: 'syz.1.7256': attribute type 21 has an invalid length.
[  489.078773][T20194] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  489.088358][T20194] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  489.097142][T20194] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  489.105912][T20194] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  490.504487][ T4309] usb 1-1: new full-speed USB device number 29 using dummy_hcd
[  490.716613][ T4309] usb 1-1: unable to get BOS descriptor or descriptor too short
[  490.729476][ T4309] usb 1-1: not running at top speed; connect to a high speed hub
[  490.754950][ T4309] usb 1-1: config 4 has an invalid interface number: 175 but max is 0
[  490.783861][ T4309] usb 1-1: config 4 has no interface number 0
[  490.806717][ T4309] usb 1-1: New USB device found, idVendor=0403, idProduct=da73, bcdDevice=dc.17
[  490.833981][ T4309] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  490.862356][ T4309] usb 1-1: Product: syz
[  490.872462][ T4309] usb 1-1: Manufacturer: syz
[  490.889829][ T4309] usb 1-1: SerialNumber: syz
[  491.117897][ T4309] usb 1-1: NDI device with a latency value of 1
[  491.129479][ T4309] ftdi_sio 1-1:4.175: FTDI USB Serial Device converter detected
[  491.145428][ T4309] ftdi_sio ttyUSB0: unknown device type: 0xdc17
[  491.164273][ T4309] usb 1-1: USB disconnect, device number 29
[  491.174197][ T4321] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  491.202699][ T4309] ftdi_sio 1-1:4.175: device disconnected
[  491.382294][T20282] loop1: detected capacity change from 0 to 32768
[  491.384129][ T4321] usb 5-1: Using ep0 maxpacket: 8
[  491.432586][ T4321] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  491.456758][ T4321] usb 5-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  491.498872][ T4321] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  491.534964][ T4321] usb 5-1: Product: syz
[  491.541347][ T4321] usb 5-1: Manufacturer: syz
[  491.571473][ T4321] usb 5-1: SerialNumber: syz
[  491.591562][ T4321] usb 5-1: config 0 descriptor??
[  491.612546][ T4321] gspca_main: stk014-2.14.0 probing 05e1:0893
[  491.639305][ T4321] usb 5-1: selecting invalid altsetting 1
[  492.038353][ T4321] usb 5-1: USB disconnect, device number 38
[  492.214193][   T14] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  492.274186][ T4397] usb 4-1: new full-speed USB device number 35 using dummy_hcd
[  492.406177][   T14] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  492.426105][   T14] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  492.442273][   T14] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  492.459976][   T14] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  492.473342][   T14] usb 6-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  492.490371][   T14] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.490563][ T4397] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  492.517226][   T14] usb 6-1: config 0 descriptor??
[  492.522523][ T4397] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  492.551263][ T4397] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  492.567516][ T4397] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  492.594146][ T4397] usb 4-1: SerialNumber: syz
[  492.624907][ T4397] usb 4-1: 0:2 : does not exist
[  492.629899][ T4397] usb 4-1: unit 64 not found!
[  492.757872][   T14] hdpvr 6-1:0.0: firmware version 0x1e dated þÀq|RC¾@µ2£¹ö2[Ì7ÔB½�ËDŠ^jvi0ì
[  492.757872][   T14] †Ã“‘êpY
[  492.860252][ T4321] usb 4-1: USB disconnect, device number 35
[  492.958387][   T14] hdpvr 6-1:0.0: device init failed
[  492.968776][   T14] hdpvr: probe of 6-1:0.0 failed with error -12
[  492.977973][   T14] usb 6-1: USB disconnect, device number 4
[  493.190995][T20368] netlink: 'syz.1.7327': attribute type 1 has an invalid length.
[  493.212605][T20368] netlink: 224 bytes leftover after parsing attributes in process `syz.1.7327'.
[  494.004116][T18078] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  494.185654][T18078] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  494.214239][T18078] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  494.242554][T18078] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  494.262778][T18078] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  494.303470][T18078] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  494.323021][T18078] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.357926][T18078] usb 4-1: Product: syz
[  494.362169][T18078] usb 4-1: Manufacturer: syz
[  494.379741][T18078] usb 4-1: SerialNumber: syz
[  494.394264][ T4321] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  494.420735][T18078] usb 4-1: config 0 descriptor??
[  494.431180][T18078] ums-isd200 4-1:0.0: USB Mass Storage device detected
[  494.588577][ T4321] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  494.609309][ T4321] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.617824][ T4321] usb 6-1: Product: syz
[  494.622008][ T4321] usb 6-1: Manufacturer: syz
[  494.626914][ T4321] usb 6-1: SerialNumber: syz
[  494.638929][ T4321] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  494.668243][T18078] ums-isd200: probe of 4-1:0.0 failed with error -22
[  494.671260][T20436] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  494.732297][T20436] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  494.749397][ T4321] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  494.839998][ T4309] usb 4-1: USB disconnect, device number 36
[  495.186530][   T14] usb 6-1: USB disconnect, device number 5
[  495.432126][T20441] loop1: detected capacity change from 0 to 32768
[  495.535940][T20441] XFS (loop1): Mounting V5 Filesystem
[  495.659313][T20441] XFS (loop1): Ending clean mount
[  495.814058][ T4321] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  495.821080][ T4321] ath9k_htc: Failed to initialize the device
[  495.829867][T20480] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7364'.
[  495.857237][T20482] netlink: 'syz.4.7365': attribute type 1 has an invalid length.
[  495.866030][   T14] usb 6-1: ath9k_htc: USB layer deinitialized
[  495.929305][ T4267] XFS (loop1): Unmounting Filesystem
[  496.128238][T20490] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7370'.
[  496.183258][T20490] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7370'.
[  496.239622][T20490] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7370'.
[  496.268511][T20493] netlink: 'syz.0.7371': attribute type 2 has an invalid length.
[  496.298319][T20490] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7370'.
[  496.327572][T20490] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7370'.
[  496.360664][T20490] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7370'.
[  496.380345][T20490] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7370'.
[  496.400300][T20490] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7370'.
[  496.411956][T20490] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  496.425213][T20490] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  496.450724][T20490] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  496.468945][T20490] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  496.840355][T20484] loop5: detected capacity change from 0 to 32768
[  496.854000][ T4321] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  496.962097][T20518] overlayfs: conflicting options: userxattr,metacopy=on
[  497.046648][T20521] tmpfs: Bad value for 'mpol'
[  497.083998][ T4321] usb 2-1: Using ep0 maxpacket: 32
[  497.091386][ T4321] usb 2-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  497.134176][ T4321] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  497.188249][ T4321] usb 2-1: config 0 descriptor??
[  497.252975][ T4321] as10x_usb: device has been detected
[  497.284810][ T4321] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  497.299310][T18078] usb 1-1: new full-speed USB device number 30 using dummy_hcd
[  497.387469][ T4321] usb 2-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  497.432005][T20530] loop3: detected capacity change from 0 to 4096
[  497.441744][T20535] Bluetooth: hci0: Opcode 0x080f failed: -22
[  497.475139][T20530] /dev/loop3: Can't open blockdev
[  497.506807][ T4321] as10x_usb: error during firmware upload part1
[  497.510339][T18078] usb 1-1: config 0 has an invalid interface number: 31 but max is 0
[  497.513664][ T4321] Registered device nBox DVB-T Dongle
[  497.548254][T18078] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  497.627552][T18078] usb 1-1: config 0 has no interface number 0
[  497.631452][ T4321] usb 2-1: USB disconnect, device number 34
[  497.654075][T18078] usb 1-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  497.701637][T18078] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  497.734422][T18078] usb 1-1: Product: syz
[  497.738644][T18078] usb 1-1: Manufacturer: syz
[  497.777129][T18078] usb 1-1: SerialNumber: syz
[  497.782869][ T4321] Unregistered device nBox DVB-T Dongle
[  497.838250][ T4321] as10x_usb: device has been disconnected
[  497.838802][T18078] usb 1-1: config 0 descriptor??
[  497.924410][T18078] hub 1-1:0.31: bad descriptor, ignoring hub
[  497.932124][T18078] hub: probe of 1-1:0.31 failed with error -5
[  497.985447][T18078] usb 1-1: Found UVC 0.04 device syz (046d:08c3)
[  497.991874][T18078] uvcvideo 1-1:0.31: Entity type for entity Output 6 was not initialized!
[  498.061222][T18078] usb 1-1: Failed to create links for entity 6
[  498.068517][T18078] usb 1-1: Failed to register entities (-22).
[  498.234214][T18078] usb 1-1: USB disconnect, device number 30
[  498.265085][T20556] netlink: 'syz.5.7394': attribute type 5 has an invalid length.
[  498.313056][   T26] audit: type=1326 audit(1773250857.484:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20557 comm="syz.3.7395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  498.404009][   T26] audit: type=1326 audit(1773250857.534:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20557 comm="syz.3.7395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  498.494007][   T26] audit: type=1326 audit(1773250857.534:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20557 comm="syz.3.7395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  498.570722][   T26] audit: type=1326 audit(1773250857.534:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20557 comm="syz.3.7395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  498.869609][T20580] xt_CT: You must specify a L4 protocol and not use inversions on it
[  499.059199][T20587] netlink: zone id is out of range
[  499.059495][T20589] __nla_validate_parse: 80 callbacks suppressed
[  499.059508][T20589] netlink: 129384 bytes leftover after parsing attributes in process `syz.5.7404'.
[  499.384286][T20605] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7413'.
[  499.397164][T20605] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2
[  499.486769][ T4277] Bluetooth: hci0: command 0x080f tx timeout
[  499.561720][T20612] libceph: resolve '0' (ret=-3): failed
[  499.621259][T20614] loop5: detected capacity change from 0 to 256
[  499.681030][T20607] loop4: detected capacity change from 0 to 4096
[  499.744653][T20614] FAT-fs (loop5): Directory bread(block 64) failed
[  499.771012][T20607] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512)
[  499.789427][T20614] FAT-fs (loop5): Directory bread(block 65) failed
[  499.815158][T20614] FAT-fs (loop5): Directory bread(block 66) failed
[  499.841040][T20614] FAT-fs (loop5): Directory bread(block 67) failed
[  499.889557][T20614] FAT-fs (loop5): Directory bread(block 68) failed
[  499.914999][T20614] FAT-fs (loop5): Directory bread(block 69) failed
[  499.959500][T20614] FAT-fs (loop5): Directory bread(block 70) failed
[  499.989339][T20614] FAT-fs (loop5): Directory bread(block 71) failed
[  500.007941][T20614] FAT-fs (loop5): Directory bread(block 72) failed
[  500.035366][T20614] FAT-fs (loop5): Directory bread(block 73) failed
[  500.268759][T20635] netlink: 'syz.1.7425': attribute type 3 has an invalid length.
[  500.548998][T20646] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7429'.
[  500.616198][T20646] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2
[  500.642187][T20649] loop1: detected capacity change from 0 to 2048
[  500.788760][T20649] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  500.840107][T20649] ext4 filesystem being mounted at /1459/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  501.048819][ T4267] EXT4-fs error (device loop1): ext4_readdir:263: inode #2: block 16: comm syz-executor: path /1459/file0: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[  501.253585][ T4267] EXT4-fs (loop1): unmounting filesystem.
[  501.414230][ T1272] ieee802154 phy1 wpan1: encryption failed: -22
[  501.481953][T20691] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7446'.
[  501.547248][T20691] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  501.901948][T20711] xt_connbytes: Forcing CT accounting to be enabled
[  501.951662][T20711] xt_NFQUEUE: number of total queues is 0
[  502.127287][T20724] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7459'.
[  502.197435][T20726] netlink: 'syz.1.7460': attribute type 1 has an invalid length.
[  502.234519][T20726] netlink: 224 bytes leftover after parsing attributes in process `syz.1.7460'.
[  502.326036][T20732] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  502.490415][T20739] kAFS: unable to lookup cell '.,'
[  502.498064][T20741] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7466'.
[  502.521482][T20743] loop5: detected capacity change from 0 to 512
[  502.565159][T20743] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  502.619593][T20743] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802e02c, mo2=0002]
[  502.663729][T20743] EXT4-fs (loop5): orphan cleanup on readonly fs
[  502.691833][T20743] EXT4-fs error (device loop5): ext4_orphan_get:1425: comm syz.5.7467: bad orphan inode 267
[  502.695652][T20750] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7469'.
[  502.731229][T20743] EXT4-fs (loop5): Remounting filesystem read-only
[  502.747743][T20750] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7469'.
[  502.753289][T20743] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  502.818098][T20743] EXT4-fs warning (device loop5): dx_probe:893: inode #2: comm syz.5.7467: dx entry: limit 0 != root limit 125
[  502.849153][T20743] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.7467: Corrupt directory, running e2fsck is recommended
[  502.863993][ T4321] usb 5-1: new full-speed USB device number 39 using dummy_hcd
[  502.955227][T19106] EXT4-fs (loop5): unmounting filesystem.
[  503.068451][ T4321] usb 5-1: unable to get BOS descriptor or descriptor too short
[  503.087440][ T4321] usb 5-1: not running at top speed; connect to a high speed hub
[  503.131225][ T4321] usb 5-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  503.181965][ T4321] usb 5-1: config 2 has 1 interface, different from the descriptor's value: 2
[  503.225499][ T4321] usb 5-1: string descriptor 0 read error: -22
[  503.245370][ T4321] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=b2.86
[  503.285249][ T4321] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  503.551735][ T4321] snd-usb-6fire 5-1:2.0: unknown device firmware state received from device:
[  503.564382][ T4321] eb 2e 87 4b 9a 05 e6 5e 
[  503.568927][ T4321] snd-usb-6fire: probe of 5-1:2.0 failed with error -5
[  503.649620][T20785] --map-set only usable from mangle table
[  503.789446][ T4397] usb 5-1: USB disconnect, device number 39
[  503.958587][T20796] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7488'.
[  504.039362][T20800] netlink: 'syz.1.7490': attribute type 1 has an invalid length.
[  504.064331][T20800] __nla_validate_parse: 1 callbacks suppressed
[  504.064346][T20800] netlink: 220 bytes leftover after parsing attributes in process `syz.1.7490'.
[  504.104575][T20800] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7490'.
[  504.242207][T20806] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7493'.
[  504.279811][T20806] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7493'.
[  504.314467][T20806] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7493'.
[  504.323480][T20806] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7493'.
[  504.444102][T20806] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7493'.
[  504.509370][T20806] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7493'.
[  504.533567][T20806] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7493'.
[  504.573659][T20806] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7493'.
[  504.615641][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  504.652057][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  504.663769][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  504.680723][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  504.713780][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  504.742169][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  504.767848][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  504.787896][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  504.799442][T20806] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  504.929657][T20832] netlink: 'syz.5.7505': attribute type 10 has an invalid length.
[  505.014118][ T4321] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  505.116021][   T26] audit: type=1800 audit(1773250864.284:205): pid=20822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.4.7501" name="/" dev="sockfs" ino=85554 res=0 errno=0
[  505.206393][ T4321] usb 2-1: unable to get BOS descriptor or descriptor too short
[  505.228020][ T4321] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  505.274689][ T4321] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 9
[  505.291936][ T4321] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 24
[  505.342856][ T4321] usb 2-1: New USB device found, idVendor=04e6, idProduct=5591, bcdDevice=94.39
[  505.373319][ T4321] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  505.403650][ T4321] usb 2-1: Product: syz
[  505.438673][ T4321] usb 2-1: Manufacturer: syz
[  505.443326][ T4321] usb 2-1: SerialNumber: syz
[  505.464877][ T4321] usb 2-1: config 0 descriptor??
[  505.487550][T20825] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  505.515084][T20825] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  505.527028][    C1] usb 2-1: NFC: Urb failure (status -71)
[  505.533514][    C1] usb 2-1: NFC: Urb failure (status -71)
[  505.542815][ T4321] usb 2-1: NFC: Unable to get FW version
[  505.550318][ T4321] pn533_usb: probe of 2-1:0.0 failed with error -71
[  505.562829][T20854] netlink: 'syz.4.7515': attribute type 1 has an invalid length.
[  505.815027][ T4321] usb 2-1: USB disconnect, device number 35
[  506.199194][T20857] loop3: detected capacity change from 0 to 32768
[  506.216691][T20857] /dev/loop3: Can't open blockdev
[  506.260152][ T4261] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  507.288217][   T14] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  507.451432][T20926] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  507.464386][T20928] netlink: 'syz.0.7552': attribute type 1 has an invalid length.
[  507.484081][   T14] usb 2-1: Using ep0 maxpacket: 32
[  507.491127][   T14] usb 2-1: config 0 has an invalid interface number: 132 but max is 0
[  507.499954][T20926] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  507.514008][   T14] usb 2-1: config 0 has no interface number 0
[  507.526506][T20926] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  507.544079][   T14] usb 2-1: config 0 interface 132 has no altsetting 0
[  507.567120][T20926] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  507.584444][   T14] usb 2-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice= 3.02
[  507.593516][   T14] usb 2-1: New USB device strings: Mfr=19, Product=95, SerialNumber=25
[  507.627843][   T14] usb 2-1: Product: syz
[  507.637569][   T14] usb 2-1: Manufacturer: syz
[  507.642272][   T14] usb 2-1: SerialNumber: syz
[  507.651970][T20934] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  507.655847][   T14] usb 2-1: config 0 descriptor??
[  507.673738][T20934] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  507.686138][   T14] ftdi_sio 2-1:0.132: FTDI USB Serial Device converter detected
[  507.689609][T20934] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  507.698721][   T14] ftdi_sio ttyUSB0: unknown device type: 0x302
[  507.874506][T20942] netlink: 'syz.0.7558': attribute type 4 has an invalid length.
[  507.902718][ T4397] usb 2-1: USB disconnect, device number 36
[  507.917953][ T4397] ftdi_sio 2-1:0.132: device disconnected
[  507.919493][T20942] netlink: 'syz.0.7558': attribute type 10 has an invalid length.
[  507.981120][T20942] device bond_slave_0 left promiscuous mode
[  508.016722][T20940] loop3: detected capacity change from 0 to 4096
[  508.021110][T20942] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  508.074151][   T27] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  508.265723][   T27] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  508.284184][   T27] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3
[  508.312070][   T27] usb 5-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[  508.331989][   T27] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.355335][   T27] usb 5-1: config 0 descriptor??
[  508.614770][ T4309] usb 1-1: new full-speed USB device number 31 using dummy_hcd
[  508.768068][   T27] Bluetooth: Can't get state to change to load configuration err
[  508.788561][   T27] Bluetooth: Loading sysconfig file failed
[  508.794973][   T27] ath3k: probe of 5-1:0.0 failed with error -16
[  508.808744][   T27] usb 5-1: USB disconnect, device number 40
[  508.824194][ T4309] usb 1-1: config 0 has an invalid interface number: 52 but max is 0
[  508.840262][ T4309] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  508.871116][ T4309] usb 1-1: config 0 has no interface number 0
[  508.885853][ T4309] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  508.904025][ T4321] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  508.912426][ T4309] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  508.941568][ T4309] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  508.964689][ T4309] usb 1-1: config 0 interface 52 has no altsetting 0
[  508.981304][T20977] loop1: detected capacity change from 0 to 164
[  508.981300][ T4309] usb 1-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[  508.981328][ T4309] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[  509.033973][ T4309] usb 1-1: SerialNumber: syz
[  509.038314][T20977] Symlink component flag not implemented
[  509.049607][ T4309] usb 1-1: config 0 descriptor??
[  509.055028][T20977] Symlink component flag not implemented (7)
[  509.115618][ T4321] usb 4-1: config 160 has an invalid interface number: 200 but max is 0
[  509.132272][ T4321] usb 4-1: config 160 has no interface number 0
[  509.147271][ T4321] usb 4-1: config 160 interface 200 has no altsetting 0
[  509.165455][ T4321] usb 4-1: New USB device found, idVendor=21bb, idProduct=2070, bcdDevice=87.0b
[  509.184996][ T4321] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  509.203317][ T4321] usb 4-1: Product: syz
[  509.213466][ T4321] usb 4-1: Manufacturer: syz
[  509.224068][ T4321] usb 4-1: SerialNumber: syz
[  509.271421][ T4309] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  509.287279][ T4309] synaptics_usb: probe of 1-1:0.52 failed with error -5
[  509.430440][T20983] nvme_fabrics: missing parameter 'transport=%s'
[  509.458580][T20983] nvme_fabrics: missing parameter 'nqn=%s'
[  509.466799][ T4321] usb 4-1: MIDIStreaming interface descriptor not found
[  509.513564][ T4321] usb 4-1: USB disconnect, device number 37
[  509.540307][ T4309] usb 1-1: USB disconnect, device number 31
[  509.579854][T20990] loop1: detected capacity change from 0 to 2048
[  509.583510][T20988] loop4: detected capacity change from 0 to 2048
[  509.592418][T20990] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=66359, location=66359
[  509.611163][T20990] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  509.666739][T20991] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  509.795259][ T4395] udevd[4395]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:160.200/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  510.424448][T21024] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  510.424448][T21024] The task syz.5.7595 (21024) triggered the difference, watch for misbehavior.
[  510.624331][ T4321] usb 5-1: new full-speed USB device number 41 using dummy_hcd
[  510.828512][ T4321] usb 5-1: New USB device found, idVendor=0a2c, idProduct=0008, bcdDevice=c7.b3
[  510.853135][ T4321] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  510.875256][ T4321] usb 5-1: Product: syz
[  510.880047][ T4321] usb 5-1: Manufacturer: syz
[  510.900996][ T4321] usb 5-1: SerialNumber: syz
[  510.912261][ T4321] usb 5-1: config 0 descriptor??
[  510.928400][ T4321] cypress_cy7c63 5-1:0.0: Cypress CY7C63xxx device now attached
[  511.036382][T21028] loop1: detected capacity change from 0 to 32768
[  511.099942][T21028] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  511.142892][ T4321] usb 5-1: USB disconnect, device number 41
[  511.152689][ T4321] cypress_cy7c63 5-1:0.0: Cypress CY7C63xxx device now disconnected
[  511.433649][ T4267] ocfs2: Unmounting device (7,1) on (node local)
[  511.563533][T21044] __nla_validate_parse: 166 callbacks suppressed
[  511.563553][T21044] netlink: 256 bytes leftover after parsing attributes in process `syz.1.7606'.
[  511.874825][T21049] netlink: 144 bytes leftover after parsing attributes in process `syz.4.7608'.
[  511.971319][   T26] audit: type=1326 audit(1773250871.144:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21053 comm="syz.5.7611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd81cb9c799 code=0x7ffc0000
[  512.081667][   T26] audit: type=1326 audit(1773250871.194:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21053 comm="syz.5.7611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd81cb9c799 code=0x7ffc0000
[  512.184223][   T26] audit: type=1326 audit(1773250871.214:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21053 comm="syz.5.7611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7fd81cb9c799 code=0x7ffc0000
[  512.278424][   T26] audit: type=1326 audit(1773250871.214:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21053 comm="syz.5.7611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd81cb9c799 code=0x7ffc0000
[  512.372401][   T26] audit: type=1326 audit(1773250871.214:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21053 comm="syz.5.7611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd81cb9c799 code=0x7ffc0000
[  512.440247][T21073] loop5: detected capacity change from 0 to 512
[  512.455168][T21073] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  512.624344][ T4321] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  512.638800][T21077] netlink: 56 bytes leftover after parsing attributes in process `syz.1.7622'.
[  512.862902][ T4321] usb 5-1: unable to get BOS descriptor or descriptor too short
[  512.892413][ T4321] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  512.919270][ T4321] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 9
[  512.942383][ T4321] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 24
[  512.967746][ T4321] usb 5-1: New USB device found, idVendor=04e6, idProduct=5591, bcdDevice=94.39
[  512.993166][ T4321] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  513.017483][ T4321] usb 5-1: Product: syz
[  513.021751][ T4321] usb 5-1: Manufacturer: syz
[  513.047270][ T4321] usb 5-1: SerialNumber: syz
[  513.049664][T21095] netlink: 'syz.5.7629': attribute type 1 has an invalid length.
[  513.053598][ T4321] usb 5-1: config 0 descriptor??
[  513.069701][T21094] loop3: detected capacity change from 0 to 256
[  513.088638][T21094] /dev/loop3: Can't open blockdev
[  513.103607][T21067] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  513.111804][T21067] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  513.134116][    C1] usb 5-1: NFC: Urb failure (status -71)
[  513.140128][    C1] usb 5-1: NFC: Urb failure (status -71)
[  513.148599][ T4321] usb 5-1: NFC: Unable to get FW version
[  513.204164][ T4321] pn533_usb: probe of 5-1:0.0 failed with error -71
[  513.309066][T21101] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7634'.
[  513.419026][ T4309] usb 5-1: USB disconnect, device number 42
[  513.684055][ T4321] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  513.761310][T21105] loop3: detected capacity change from 0 to 32768
[  513.884052][ T4321] usb 2-1: Using ep0 maxpacket: 16
[  513.891061][ T4321] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  513.947488][ T4321] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  513.968895][ T4321] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  513.968923][ T4321] usb 2-1: Product: syz
[  513.968939][ T4321] usb 2-1: Manufacturer: syz
[  513.968954][ T4321] usb 2-1: SerialNumber: syz
[  513.971668][ T4321] usb 2-1: config 0 descriptor??
[  514.181193][ T4321] usb 2-1: USB disconnect, device number 37
[  514.270608][T21137] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7652'.
[  514.300651][T21137] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7652'.
[  514.325053][T21137] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  514.396202][T21137] 8021q: adding VLAN 0 to HW filter on device bond1
[  515.044317][ T4321] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  515.060941][T21167] loop1: detected capacity change from 0 to 4096
[  515.102351][T21171] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7668'.
[  515.111805][T21171] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7668'.
[  515.121518][T21171] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7668'.
[  515.139567][T21167] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  515.152316][T21153] loop5: detected capacity change from 0 to 32768
[  515.159744][T21171] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7668'.
[  515.192944][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  515.205446][T21167] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  515.234301][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  515.237123][T21153] JBD2: Ignoring recovery information on journal
[  515.258458][T21167] ntfs: (device loop1): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  515.261874][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  515.284003][T21167] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  515.284718][ T4321] usb 4-1: unable to get BOS descriptor or descriptor too short
[  515.315249][ T4321] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  515.325550][ T4321] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 9
[  515.335305][ T4321] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 24
[  515.346543][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  515.350855][T21153] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  515.354206][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  515.371210][ T4321] usb 4-1: New USB device found, idVendor=04e6, idProduct=5591, bcdDevice=94.39
[  515.381434][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  515.388824][T21167] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  515.394404][T21167] ntfs: volume version 3.1.
[  515.400942][ T4321] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.434019][ T4321] usb 4-1: Product: syz
[  515.438589][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  515.446003][ T4321] usb 4-1: Manufacturer: syz
[  515.456430][ T4321] usb 4-1: SerialNumber: syz
[  515.478306][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  515.489582][ T4321] usb 4-1: config 0 descriptor??
[  515.524642][T21159] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  515.533296][T21159] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  515.542499][T21171] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  515.560285][    C1] usb 4-1: NFC: Urb failure (status -71)
[  515.568048][    C1] usb 4-1: NFC: Urb failure (status -71)
[  515.579402][ T4321] usb 4-1: NFC: Unable to get FW version
[  515.593877][ T4321] pn533_usb: probe of 4-1:0.0 failed with error -71
[  515.713029][T19106] ocfs2: Unmounting device (7,5) on (node local)
[  515.893091][ T6301] usb 4-1: USB disconnect, device number 38
[  516.010265][T21185] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  516.039909][T21187] ax25_connect(): syz.0.7674 uses autobind, please contact jreuter@yaina.de
[  516.602071][T21210] loop5: detected capacity change from 0 to 512
[  516.706501][T21210] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  516.754780][T21210] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  516.906045][T21229] loop3: detected capacity change from 0 to 64
[  516.944119][T21210] EXT4-fs error (device loop5): ext4_add_entry:2486: inode #12: comm syz.5.7683: Directory hole found for htree leaf block 0
[  517.010253][T21210] EXT4-fs (loop5): Remounting filesystem read-only
[  517.068069][T21233] netlink: 'syz.0.7694': attribute type 21 has an invalid length.
[  517.104052][T21233] __nla_validate_parse: 95 callbacks suppressed
[  517.104068][T21233] netlink: 128 bytes leftover after parsing attributes in process `syz.0.7694'.
[  517.157904][T21233] netlink: 'syz.0.7694': attribute type 5 has an invalid length.
[  517.188723][T19106] EXT4-fs (loop5): unmounting filesystem.
[  517.205083][T21233] netlink: 'syz.0.7694': attribute type 6 has an invalid length.
[  517.221616][T21233] netlink: 3 bytes leftover after parsing attributes in process `syz.0.7694'.
[  517.693685][T21227] loop4: detected capacity change from 0 to 32768
[  517.793100][T21227] XFS (loop4): Mounting V5 Filesystem
[  517.935137][T21227] XFS (loop4): Ending clean mount
[  518.031934][ T4275] XFS (loop4): Unmounting Filesystem
[  518.588857][T21296] IPv6: sit2: Disabled Multicast RS
[  519.027688][T21316] loop3: detected capacity change from 0 to 1764
[  519.062783][T21316] iso9660: Corrupted directory entry in block 14 of inode 1920
[  519.124157][ T4309] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  519.207111][T21325] device wlan0 entered promiscuous mode
[  519.222541][T21328] loop3: detected capacity change from 0 to 1024
[  519.321313][ T4309] usb 2-1: Using ep0 maxpacket: 8
[  519.343981][ T4309] usb 2-1: config 1 has an invalid interface number: 128 but max is 1
[  519.364076][ T4309] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  519.409515][ T4309] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  519.436747][ T4309] usb 2-1: config 1 has no interface number 0
[  519.460507][ T4309] usb 2-1: config 1 interface 128 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  519.511131][ T4309] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  519.521205][ T4309] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  519.532370][ T4309] usb 2-1: Product: syz
[  519.537292][ T4309] usb 2-1: Manufacturer: syz
[  519.551126][ T4309] usb 2-1: SerialNumber: syz
[  519.572060][ T4309] cdc_wdm 2-1:1.128: skipping garbage
[  519.589764][ T4309] cdc_wdm 2-1:1.128: invalid descriptor buffer length
[  519.599463][ T4309] cdc_wdm: probe of 2-1:1.128 failed with error -22
[  519.774155][ T4309] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  519.802688][ T4321] usb 2-1: USB disconnect, device number 38
[  519.987378][ T4309] usb 6-1: Using ep0 maxpacket: 32
[  519.996177][ T4309] usb 6-1: config index 0 descriptor too short (expected 35577, got 27)
[  520.034088][ T4309] usb 6-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  520.053051][ T4309] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 92
[  520.073267][ T4309] usb 6-1: config 1 has no interface number 0
[  520.083404][ T4309] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  520.124321][ T4309] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  520.144219][ T4309] usb 6-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  520.167408][ T4309] usb 6-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  520.187637][ T4309] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  520.215688][ T4309] snd_usb_pod 6-1:1.1: Line 6 Pocket POD found
[  520.425140][ T4309] snd_usb_pod 6-1:1.1: cannot start listening: -90
[  520.432278][ T4309] snd_usb_pod 6-1:1.1: Line 6 Pocket POD now disconnected
[  520.441770][T21351] loop3: detected capacity change from 0 to 32768
[  520.454331][ T4309] snd_usb_pod: probe of 6-1:1.1 failed with error -90
[  520.618841][T21367] netlink: 'syz.3.7754': attribute type 21 has an invalid length.
[  520.637036][ T4309] usb 6-1: USB disconnect, device number 6
[  520.651628][T21367] netlink: 128 bytes leftover after parsing attributes in process `syz.3.7754'.
[  520.693322][T21367] netlink: 'syz.3.7754': attribute type 4 has an invalid length.
[  520.713392][T21367] netlink: 3 bytes leftover after parsing attributes in process `syz.3.7754'.
[  520.871842][T21379] netlink: 'syz.0.7760': attribute type 1 has an invalid length.
[  520.961283][T21381] netlink: 'syz.3.7761': attribute type 12 has an invalid length.
[  521.002230][T21381] netlink: 132 bytes leftover after parsing attributes in process `syz.3.7761'.
[  521.051228][T21385] netlink: 'syz.0.7764': attribute type 1 has an invalid length.
[  521.582560][T21407] netlink: 32 bytes leftover after parsing attributes in process `syz.5.7775'.
[  521.634386][T21407] netlink: 32 bytes leftover after parsing attributes in process `syz.5.7775'.
[  522.161669][T21440] loop5: detected capacity change from 0 to 512
[  522.205390][T21442] loop3: detected capacity change from 0 to 256
[  522.261672][T21440] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  522.274372][T21440] ext4 filesystem being mounted at /152/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  522.283493][ T4396] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  522.534834][T19106] EXT4-fs (loop5): unmounting filesystem.
[  522.694276][ T4309] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  522.884043][ T4309] usb 5-1: Using ep0 maxpacket: 8
[  522.890818][ T4309] usb 5-1: config 0 has too many interfaces: 65, using maximum allowed: 32
[  522.914667][ T4309] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  522.954472][ T4309] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 65
[  522.994012][ T4309] usb 5-1: config 0 has no interface number 0
[  523.012957][ T4309] usb 5-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75
[  523.019069][T21478] netlink: 'syz.1.7808': attribute type 4 has an invalid length.
[  523.044945][T21479] IPv6: ADDRCONF(NETDEV_CHANGE): netdevsim0: link becomes ready
[  523.052676][T21479] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  523.068959][ T4309] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.110462][ T4309] usb 5-1: config 0 descriptor??
[  523.289938][T21488] IPv6: sit4: Disabled Multicast RS
[  523.529127][T21500] device bridge_slave_1 left promiscuous mode
[  523.539048][   T14] usb 5-1: USB disconnect, device number 43
[  523.554960][T21500] bridge0: port 2(bridge_slave_1) entered disabled state
[  523.593108][T21500] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  523.609589][   T26] kauditd_printk_skb: 9 callbacks suppressed
[  523.609601][   T26] audit: type=1326 audit(1773250882.774:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21501 comm="syz.0.7820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe670f9c799 code=0x7ffc0000
[  523.655023][   T26] audit: type=1326 audit(1773250882.774:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21501 comm="syz.0.7820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7fe670f9c799 code=0x7ffc0000
[  523.724310][ T4397] usb 2-1: new full-speed USB device number 39 using dummy_hcd
[  523.727527][   T26] audit: type=1326 audit(1773250882.774:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21501 comm="syz.0.7820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe670f9c799 code=0x7ffc0000
[  523.789738][   T26] audit: type=1326 audit(1773250882.944:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21507 comm="syz.3.7822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  523.817844][   T26] audit: type=1326 audit(1773250882.944:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21507 comm="syz.3.7822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  523.841630][   T26] audit: type=1326 audit(1773250882.964:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21507 comm="syz.3.7822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  523.841665][   T26] audit: type=1326 audit(1773250882.964:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21507 comm="syz.3.7822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  523.841694][   T26] audit: type=1326 audit(1773250882.964:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21507 comm="syz.3.7822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  523.841719][   T26] audit: type=1326 audit(1773250882.964:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21507 comm="syz.3.7822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  523.841747][   T26] audit: type=1326 audit(1773250882.964:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21507 comm="syz.3.7822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  523.923676][ T4397] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  523.923705][ T4397] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65535, setting to 64
[  523.923740][ T4397] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  523.923764][ T4397] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.925697][ T4397] usb 2-1: config 0 descriptor??
[  523.926241][T21494] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  523.926439][T21494] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  524.359446][ T4397] usb 2-1: USB disconnect, device number 39
[  524.473798][T21531] netlink: 'syz.0.7834': attribute type 1 has an invalid length.
[  524.560237][T21536] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7836'.
[  525.011047][T21559] loop4: detected capacity change from 0 to 256
[  525.362134][T21573] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7854'.
[  525.443188][T21580] ieee802154 phy1 wpan1: encryption failed: -90
[  525.953513][T21604] loop1: detected capacity change from 0 to 512
[  525.964096][ T4272] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  526.036598][T21604] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  526.062835][T21604] EXT4-fs (loop1): orphan cleanup on readonly fs
[  526.071701][T21604] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  526.085360][T21604] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[  526.142837][T21604] EXT4-fs (loop1): 1 truncate cleaned up
[  526.162942][T21604] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  526.246673][T21604] EXT4-fs (loop1): unmounting filesystem.
[  526.621134][T21627] netlink: 'syz.5.7881': attribute type 4 has an invalid length.
[  526.676418][T21627] netlink: 'syz.5.7881': attribute type 10 has an invalid length.
[  526.726226][T21627] netlink: 152 bytes leftover after parsing attributes in process `syz.5.7881'.
[  526.746999][T21626] loop1: detected capacity change from 0 to 4096
[  526.834869][T21627] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  526.861856][T21626] ntfs3: loop1: ino=1e, "file1" attr_set_size
[  526.884688][T21626] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  527.217379][T21645] netlink: 'syz.4.7888': attribute type 1 has an invalid length.
[  527.451816][T21651] IPv6: ADDRCONF(NETDEV_CHANGE): netdevsim0: link becomes ready
[  527.476258][T21651] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  527.480776][T21655] loop4: detected capacity change from 0 to 512
[  527.534213][T21655] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  527.554394][T21655] EXT4-fs (loop4): orphan cleanup on readonly fs
[  527.574373][T21655] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  527.592634][T21655] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  527.609409][T21655] EXT4-fs (loop4): 1 truncate cleaned up
[  527.660498][T21655] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  527.679315][T21643] loop1: detected capacity change from 0 to 32768
[  527.724872][T21655] EXT4-fs (loop4): unmounting filesystem.
[  527.749092][T21643] XFS (loop1): Mounting V5 Filesystem
[  527.848194][T21643] XFS (loop1): Ending clean mount
[  527.975234][   T14] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  528.001423][ T4267] XFS (loop1): Unmounting Filesystem
[  528.106807][T21676] loop4: detected capacity change from 0 to 2048
[  528.143791][T21676] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  528.178176][   T14] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[  528.198147][   T14] usb 6-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  528.221056][T21676] UDF-fs: incorrect filename length (10)
[  528.238308][   T14] usb 6-1: Product: syz
[  528.252889][   T14] usb 6-1: SerialNumber: syz
[  528.281335][   T14] usb 6-1: config 0 descriptor??
[  528.508337][   T14] hso 6-1:0.0: Can't find BULK IN endpoint
[  528.702659][T21693] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7910'.
[  528.729450][   T14] usb 6-1: USB disconnect, device number 7
[  528.730659][T21696] netlink: 'syz.1.7901': attribute type 15 has an invalid length.
[  529.088854][T21710] loop1: detected capacity change from 0 to 256
[  529.140990][T21710] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  529.212417][   T11] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  529.384307][ T4321] usb 5-1: new full-speed USB device number 44 using dummy_hcd
[  529.394809][T21724] netlink: 52 bytes leftover after parsing attributes in process `syz.0.7923'.
[  529.519868][T21728] loop1: detected capacity change from 0 to 2048
[  529.585528][ T4321] usb 5-1: config 0 has an invalid interface number: 20 but max is 0
[  529.603846][ T4321] usb 5-1: config 0 has no interface number 0
[  529.631640][T21731] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  529.649989][ T4321] usb 5-1: config 0 interface 20 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  529.683682][ T4321] usb 5-1: config 0 interface 20 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  529.698226][   T26] kauditd_printk_skb: 2 callbacks suppressed
[  529.698242][   T26] audit: type=1326 audit(1773250888.874:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21736 comm="syz.3.7930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  529.712099][ T4321] usb 5-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[  529.769851][ T4321] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  529.778305][ T4321] usb 5-1: Product: syz
[  529.782535][ T4321] usb 5-1: Manufacturer: syz
[  529.790708][ T4321] usb 5-1: SerialNumber: syz
[  529.824057][   T26] audit: type=1326 audit(1773250888.874:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21736 comm="syz.3.7930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  529.827073][ T4321] usb 5-1: config 0 descriptor??
[  529.846411][    C1] vkms_vblank_simulate: vblank timer overrun
[  529.868796][T21712] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  529.893712][ T4321] usb-storage 5-1:0.20: USB Mass Storage device detected
[  529.902993][ T4321] usb-storage 5-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[  529.952521][   T26] audit: type=1326 audit(1773250888.924:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21736 comm="syz.3.7930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  529.994513][   T26] audit: type=1326 audit(1773250888.924:226): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=21736 comm="syz.3.7930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  530.017213][    C1] vkms_vblank_simulate: vblank timer overrun
[  530.060933][T21746] IPv6: sit3: Disabled Multicast RS
[  530.062184][   T26] audit: type=1326 audit(1773250888.924:227): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=21736 comm="syz.3.7930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dd699c799 code=0x7ffc0000
[  530.109837][ T4321] scsi host1: usb-storage 5-1:0.20
[  530.220320][T21749] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check.
[  530.261140][T21754] netlink: 288 bytes leftover after parsing attributes in process `syz.5.7937'.
[  530.332019][   T14] usb 5-1: USB disconnect, device number 44
[  530.426018][T21761] loop5: detected capacity change from 0 to 512
[  530.432527][T21762] device bridge_slave_1 left promiscuous mode
[  530.446961][T21761] EXT4-fs: Ignoring removed orlov option
[  530.452796][T21761] EXT4-fs: Ignoring removed bh option
[  530.474438][T21762] bridge0: port 2(bridge_slave_1) entered disabled state
[  530.495980][T21762] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  530.503278][T21761] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  530.550554][T21761] EXT4-fs (loop5): orphan cleanup on readonly fs
[  530.582483][T21761] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.7942: bg 0: block 248: padding at end of block bitmap is not set
[  530.614754][T21761] Quota error (device loop5): write_blk: dquota write failed
[  530.624299][T21761] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  530.663065][T21761] EXT4-fs error (device loop5): ext4_acquire_dquot:6835: comm syz.5.7942: Failed to acquire dquot type 1
[  530.695388][T21771] loop3: detected capacity change from 0 to 2048
[  530.721778][T21761] EXT4-fs (loop5): 1 truncate cleaned up
[  530.734251][T21761] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  530.801148][T21761] EXT4-fs: Ignoring removed orlov option
[  530.842563][T21761] EXT4-fs: Ignoring removed bh option
[  530.874156][T21761] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  530.882667][T21761] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  531.010191][T21761] EXT4-fs error (device loop5): __ext4_remount:6644: comm syz.5.7942: Abort forced by user
[  531.044863][T21761] EXT4-fs (loop5): Remounting filesystem read-only
[  531.051506][T21761] EXT4-fs (loop5): re-mounted. Quota mode: writeback.
[  531.065045][T21761] ext4 filesystem being remounted at /180/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  531.175147][T19106] EXT4-fs (loop5): unmounting filesystem.
[  531.235475][T21789] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7953'.
[  531.236596][T21788] netlink: 'syz.0.7952': attribute type 2 has an invalid length.
[  531.281546][T21788] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.7952'.
[  531.759910][T21811] netlink: 56 bytes leftover after parsing attributes in process `syz.4.7965'.
[  531.818947][T21814] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  531.850083][T21814] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  531.910632][T21814] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  531.925174][ T4397] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  531.971920][T21814] IPv6: ADDRCONF(NETDEV_CHANGE): netdevsim0: link becomes ready
[  532.124849][ T4397] usb 1-1: Using ep0 maxpacket: 32
[  532.132383][ T4397] usb 1-1: config 0 has an invalid interface number: 132 but max is 0
[  532.161235][ T4397] usb 1-1: config 0 has no interface number 0
[  532.183398][T21827] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7972'.
[  532.193477][ T4397] usb 1-1: config 0 interface 132 has no altsetting 0
[  532.222045][ T4397] usb 1-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice= 3.02
[  532.234081][ T4397] usb 1-1: New USB device strings: Mfr=19, Product=95, SerialNumber=25
[  532.274023][ T4397] usb 1-1: Product: syz
[  532.278240][ T4397] usb 1-1: Manufacturer: syz
[  532.282860][ T4397] usb 1-1: SerialNumber: syz
[  532.310914][ T4397] usb 1-1: config 0 descriptor??
[  532.322522][T21833] device bridge_slave_1 left promiscuous mode
[  532.349742][ T4397] ftdi_sio 1-1:0.132: FTDI USB Serial Device converter detected
[  532.364197][T21833] bridge0: port 2(bridge_slave_1) entered disabled state
[  532.377013][ T4397] ftdi_sio ttyUSB0: unknown device type: 0x302
[  532.425776][T21833] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  532.470951][T21835] netlink: 52 bytes leftover after parsing attributes in process `syz.5.7976'.
[  532.538310][T21838] loop1: detected capacity change from 0 to 4096
[  532.562076][T21838] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  532.590676][ T4397] usb 1-1: USB disconnect, device number 32
[  532.608340][ T4397] ftdi_sio 1-1:0.132: device disconnected
[  532.734385][T21845] ax25_connect(): syz.5.7980 uses autobind, please contact jreuter@yaina.de
[  532.751415][T21843] loop3: detected capacity change from 0 to 2048
[  532.797089][T21843]  loop3: p1 < > p3
[  532.832217][T21843] loop3: p3 size 134217728 extends beyond EOD, truncated
[  533.172493][T21857] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7987'.
[  533.220716][ T4261] udevd[4261]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  533.249400][ T4396] udevd[4396]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  533.315100][T21861] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  533.362509][T21863] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  533.402833][T21866] device bridge_slave_1 left promiscuous mode
[  533.444380][T21866] bridge0: port 2(bridge_slave_1) entered disabled state
[  533.487385][T21866] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  533.860353][T21884] loop4: detected capacity change from 0 to 16
[  533.898093][T21884] erofs: (device loop4): mounted with root inode @ nid 36.
[  534.402324][T21898] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  534.439654][T21898] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  534.484353][T21898] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  534.523800][T21898] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  534.564069][T21898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  534.594554][T21898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  534.624987][T21898] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  534.676726][T21898] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  534.686771][T21881] loop3: detected capacity change from 0 to 40427
[  534.847749][T21890] loop1: detected capacity change from 0 to 32768
[  534.890324][T21890] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.8004 (21890)
[  534.978580][T21890] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  535.019350][T21890] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  535.036691][T21890] BTRFS info (device loop1): setting nodatacow, compression disabled
[  535.074275][T21890] BTRFS info (device loop1): force clearing of disk cache
[  535.081841][T21906] 9pnet_fd: p9_fd_create_tcp (21906): problem connecting socket to 127.0.0.1
[  535.111891][T21890] BTRFS info (device loop1): enabling ssd optimizations
[  535.120913][T21890] BTRFS info (device loop1): using spread ssd allocation scheme
[  535.145963][T21890] BTRFS info (device loop1): turning off barriers
[  535.154229][T21890] BTRFS info (device loop1): disabling free space tree
[  535.161231][T21890] BTRFS info (device loop1): not using ssd optimizations
[  535.190218][T21890] BTRFS info (device loop1): not using spread ssd allocation scheme
[  535.403822][T21900] loop4: detected capacity change from 0 to 32768
[  535.428445][T21900] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.8008 (21900)
[  535.465231][T21900] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  535.484261][T21900] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  535.493409][T21900] BTRFS info (device loop4): setting nodatacow, compression disabled
[  535.501640][T21900] BTRFS info (device loop4): using free space tree
[  535.519829][T21890] BTRFS info (device loop1): rebuilding free space tree
[  535.617456][T21890] BTRFS info (device loop1): disabling free space tree
[  535.662979][T21955] netlink: 'syz.5.8021': attribute type 21 has an invalid length.
[  535.671451][T21890] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  535.674229][T21955] netlink: 128 bytes leftover after parsing attributes in process `syz.5.8021'.
[  535.682274][T21890] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  535.719185][T21955] netlink: 'syz.5.8021': attribute type 4 has an invalid length.
[  535.728240][T21955] netlink: 3 bytes leftover after parsing attributes in process `syz.5.8021'.
[  535.761366][T21900] BTRFS info (device loop4): enabling ssd optimizations
[  535.814310][ T4397] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  535.972466][ T4275] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  536.017179][ T4397] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[  536.037484][ T4397] usb 4-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  536.045859][ T4397] usb 4-1: Product: syz
[  536.050326][ T4397] usb 4-1: SerialNumber: syz
[  536.065206][ T4397] usb 4-1: config 0 descriptor??
[  536.090826][ T4267] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  536.127005][ T4321] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  536.278139][ T4397] hso 4-1:0.0: Can't find BULK IN endpoint
[  536.361791][ T4321] usb 6-1: config 0 has an invalid interface number: 251 but max is 0
[  536.372682][ T4321] usb 6-1: config 0 has no interface number 0
[  536.445274][ T4321] usb 6-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  536.463428][ T4261] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 12 /dev/loop1 scanned by udevd (4261)
[  536.476356][ T4321] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  536.484846][ T4321] usb 6-1: Product: syz
[  536.489031][ T4321] usb 6-1: Manufacturer: syz
[  536.493693][ T4321] usb 6-1: SerialNumber: syz
[  536.532327][ T4321] usb 6-1: config 0 descriptor??
[  536.971112][ T4321] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  536.991486][ T4321] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71
[  537.011786][ T4321] asix: probe of 6-1:0.251 failed with error -5
[  537.020727][ T4321] usb 6-1: USB disconnect, device number 8
[  537.054391][ T5949] usb 4-1: USB disconnect, device number 39
[  537.227210][T21993] overlayfs: conflicting options: nfs_export=on,index=off
[  537.424109][T22000] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8033'.
[  537.443845][T22000] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8033'.
[  537.462046][T22000] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  537.553893][T22000] 8021q: adding VLAN 0 to HW filter on device bond6
[  537.683519][T21987] loop4: detected capacity change from 0 to 32768
[  537.729298][T21987] (syz.4.8028,21987,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  537.765242][T21987] (syz.4.8028,21987,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  537.820586][T21987] JBD2: Ignoring recovery information on journal
[  537.862604][T22017] loop1: detected capacity change from 0 to 128
[  537.947743][T22020] loop3: detected capacity change from 0 to 4096
[  537.947783][T21987] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  537.994031][ T4261] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  538.194403][T22025] netlink: 'syz.0.8044': attribute type 3 has an invalid length.
[  538.202189][T22025] netlink: 132 bytes leftover after parsing attributes in process `syz.0.8044'.
[  538.326946][ T4275] ocfs2: Unmounting device (7,4) on (node local)
[  538.429970][T22031] loop1: detected capacity change from 0 to 1024
[  538.747445][T22041] loop1: detected capacity change from 0 to 128
[  539.077335][T22053] 9pnet_fd: p9_fd_create_tcp (22053): problem connecting socket to 127.0.0.1
[  539.441658][T22067] 9pnet_fd: p9_fd_create_tcp (22067): problem connecting socket to 127.0.0.1
[  539.538502][T22030] loop5: detected capacity change from 0 to 40427
[  539.594761][T22030] F2FS-fs (loop5): invalid crc value
[  539.656819][T22030] F2FS-fs (loop5): Found nat_bits in checkpoint
[  539.832551][T22030] F2FS-fs (loop5): Cannot turn on quotas: -2 on 1
[  539.868587][T22085] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8073'.
[  539.904514][T22085] netlink: 40 bytes leftover after parsing attributes in process `syz.4.8073'.
[  539.913598][T22030] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  540.574164][ T4397] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  540.766592][ T4397] usb 6-1: unable to get BOS descriptor or descriptor too short
[  540.799072][ T4397] usb 6-1: string descriptor 0 read error: -22
[  540.823256][ T4397] usb 6-1: New USB device found, idVendor=04b4, idProduct=0384, bcdDevice= 0.40
[  540.844884][ T4397] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  540.882855][ T4397] usb 6-1: Audio class v2/v3 interfaces need an interface association
[  540.959827][ T4397] snd-usb-audio: probe of 6-1:1.0 failed with error -22
[  541.092764][ T4397] snd-usb-hiface: probe of 6-1:1.0 failed with error -22
[  541.295085][ T4397] usb 6-1: can't set first interface for hiFace device.
[  541.302096][ T4397] snd-usb-hiface: probe of 6-1:1.1 failed with error -5
[  541.341410][ T4397] usb 6-1: can't set first interface for hiFace device.
[  541.348804][ T4397] snd-usb-hiface: probe of 6-1:1.2 failed with error -5
[  541.383891][ T4397] usb 6-1: USB disconnect, device number 9
[  541.407508][ T4261] udevd[4261]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  541.645201][T22146] loop4: detected capacity change from 0 to 4096
[  541.660813][T22146] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  541.758593][T22146] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  541.857366][T22157] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8107'.
[  541.893173][T22157] netlink: 19 bytes leftover after parsing attributes in process `syz.3.8107'.
[  542.004966][T22163] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8110'.
[  542.653363][T22194] netlink: 32 bytes leftover after parsing attributes in process `syz.4.8125'.
[  542.744303][T18078] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  542.779105][T22197] loop3: detected capacity change from 0 to 1024
[  542.858456][ T4261] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  542.934090][T18078] usb 1-1: Using ep0 maxpacket: 8
[  542.942910][T18078] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  543.005780][T18078] usb 1-1: New USB device found, idVendor=22b8, idProduct=6425, bcdDevice=d3.6c
[  543.044583][T18078] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  543.052633][T18078] usb 1-1: Product: syz
[  543.087969][T18078] usb 1-1: Manufacturer: syz
[  543.092628][T18078] usb 1-1: SerialNumber: syz
[  543.096131][T22209] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8133'.
[  543.119589][T22209] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8133'.
[  543.133656][T22209] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  543.145884][T18078] usb 1-1: config 0 descriptor??
[  543.162267][T18078] cdc_ether 1-1:0.0: skipping garbage
[  543.184272][T18078] cdc_ether 1-1:0.0: skipping garbage
[  543.189759][T18078] cdc_ether 1-1:0.0: invalid descriptor buffer length
[  543.195061][T22209] 8021q: adding VLAN 0 to HW filter on device bond3
[  543.205658][T22212] netlink: 1010 bytes leftover after parsing attributes in process `syz.5.8134'.
[  543.215086][T22212] bridge: RTM_NEWNEIGH with invalid state 0x1
[  543.301021][T18078] usb 1-1: bad CDC descriptors
[  543.328206][T18078] usb 1-1: unsupported MDLM descriptors
[  543.355498][T18078] cdc_acm 1-1:0.0: skipping garbage
[  543.381142][T18078] cdc_acm 1-1:0.0: skipping garbage
[  543.407055][T18078] cdc_acm 1-1:0.0: invalid descriptor buffer length
[  543.446908][T18078] usb 1-1: USB disconnect, device number 33
[  543.612264][T22230] netlink: 'syz.1.8141': attribute type 8 has an invalid length.
[  543.799592][T22227] loop4: detected capacity change from 0 to 32768
[  543.807643][T22227] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 12
[  543.884412][ T5949] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  544.028875][ T4261] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 12
[  544.106055][ T5949] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  544.123179][ T5949] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  544.153471][ T5949] usb 6-1: config 0 interface 0 has no altsetting 0
[  544.180921][T22242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8146'.
[  544.192238][ T5949] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  544.212088][T22242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8146'.
[  544.221528][ T5949] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  544.250280][ T5949] usb 6-1: Product: syz
[  544.258328][T22242] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8146'.
[  544.267766][ T5949] usb 6-1: Manufacturer: syz
[  544.272444][ T5949] usb 6-1: SerialNumber: syz
[  544.284799][ T5949] usb 6-1: config 0 descriptor??
[  544.305881][ T5949] hub 6-1:0.0: bad descriptor, ignoring hub
[  544.316715][T22246] 8021q: adding VLAN 0 to HW filter on device bond7
[  544.323463][ T5949] hub: probe of 6-1:0.0 failed with error -5
[  544.335943][ T5949] usb 6-1: selecting invalid altsetting 0
[  544.407035][T22249] program syz.0.8149 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  544.784487][ T5949] usb 6-1: USB disconnect, device number 10
[  545.138690][T22269] netlink: 'syz.0.8170': attribute type 1 has an invalid length.
[  545.176747][T22272] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  545.252628][T22272] 8021q: adding VLAN 0 to HW filter on device bond4
[  545.356952][T22259] loop3: detected capacity change from 0 to 32768
[  545.425715][ T4261] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  546.051539][T22299] netlink: 'syz.4.8175': attribute type 1 has an invalid length.
[  546.290967][T22281] loop5: detected capacity change from 0 to 32768
[  546.942869][T22323] __nla_validate_parse: 4 callbacks suppressed
[  546.942885][T22323] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8188'.
[  546.992939][T22323] netlink: 'syz.1.8188': attribute type 8 has an invalid length.
[  547.016803][T22325] xt_socket: unknown flags 0x50
[  547.454933][T22316] loop3: detected capacity change from 0 to 32768
[  547.524460][T22316] ocfs2: Readonly device (7,3) detected. Cluster services will not be used for this mount. Recovery will be skipped.
[  547.550124][T22316] ocfs2: Mounting device (7,3) on (node local, slot 65535) with ordered data mode.
[  547.616530][ T4280] INFO: trying to register non-static key.
[  547.622388][ T4280] The code is fine but needs lockdep annotation, or maybe
[  547.629495][ T4280] you didn't initialize this object before use?
[  547.635733][ T4280] turning off the locking correctness validator.
[  547.642076][ T4280] CPU: 1 PID: 4280 Comm: syz-executor Not tainted syzkaller #0
[  547.649624][ T4280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  547.659679][ T4280] Call Trace:
[  547.662950][ T4280]  <TASK>
[  547.665870][ T4280]  dump_stack_lvl+0x188/0x24e
[  547.670546][ T4280]  ? show_regs_print_info+0x12/0x12
[  547.675734][ T4280]  ? load_image+0x400/0x400
[  547.680241][ T4280]  ? _find_next_bit+0x11e/0x130
[  547.685093][ T4280]  ? __is_module_percpu_address+0x279/0x3b0
[  547.690998][ T4280]  ? is_kernel_percpu_address+0x18f/0x1b0
[  547.696726][ T4280]  assign_lock_key+0x201/0x230
[  547.701489][ T4280]  ? SOFTIRQ_verbose+0x10/0x10
[  547.706253][ T4280]  ? verify_lock_unused+0x140/0x140
[  547.711454][ T4280]  ? deref_stack_reg+0x19f/0x230
[  547.716390][ T4280]  register_lock_class+0x21d/0x870
[  547.721504][ T4280]  ? mark_lock+0x94/0x320
[  547.725826][ T4280]  ? is_dynamic_key+0x260/0x260
[  547.730672][ T4280]  ? __lock_acquire+0x13cf/0x7d10
[  547.735687][ T4280]  ? __lock_acquire+0x7d10/0x7d10
[  547.740702][ T4280]  __lock_acquire+0x16f/0x7d10
[  547.745460][ T4280]  ? is_bpf_text_address+0x28b/0x2a0
[  547.750737][ T4280]  ? kernel_text_address+0x9c/0xd0
[  547.755838][ T4280]  ? verify_lock_unused+0x140/0x140
[  547.761024][ T4280]  ? stack_trace_save+0xf0/0xf0
[  547.765862][ T4280]  ? arch_stack_walk+0xf2/0x140
[  547.770703][ T4280]  ? verify_lock_unused+0x140/0x140
[  547.775893][ T4280]  ? stack_trace_save+0xa6/0xf0
[  547.780826][ T4280]  lock_acquire+0x1bb/0x4a0
[  547.785335][ T4280]  ? ocfs2_mark_lockres_freeing+0x159/0x600
[  547.791234][ T4280]  ? memset+0x1e/0x40
[  547.795211][ T4280]  ? read_lock_is_recursive+0x10/0x10
[  547.800586][ T4280]  ? seqcount_lockdep_reader_access+0x127/0x1d0
[  547.806837][ T4280]  ? lockdep_hardirqs_on+0x94/0x140
[  547.812059][ T4280]  _raw_spin_lock_irqsave+0xb0/0x100
[  547.817364][ T4280]  ? ocfs2_mark_lockres_freeing+0x159/0x600
[  547.823261][ T4280]  ? _raw_spin_lock+0x40/0x40
[  547.827931][ T4280]  ? ktime_get+0x247/0x270
[  547.832336][ T4280]  ocfs2_mark_lockres_freeing+0x159/0x600
[  547.838048][ T4280]  ? kasan_quarantine_put+0xd4/0x220
[  547.843324][ T4280]  ? ocfs2_dlm_shutdown+0x240/0x240
[  547.848515][ T4280]  ? ocfs2_journal_shutdown+0x673/0xc20
[  547.854052][ T4280]  ? ocfs2_journal_init+0xdb0/0xdb0
[  547.859264][ T4280]  ? __kmem_cache_free+0xb6/0x1f0
[  547.864283][ T4280]  ocfs2_dlm_shutdown+0x36/0x240
[  547.869214][ T4280]  ocfs2_dismount_volume+0x47f/0x940
[  547.874492][ T4280]  ? ocfs2_enable_quotas+0x490/0x490
[  547.879765][ T4280]  ? clear_inode+0x150/0x150
[  547.884360][ T4280]  ? ocfs2_free_inode+0x20/0x20
[  547.889196][ T4280]  generic_shutdown_super+0x130/0x340
[  547.894560][ T4280]  kill_block_super+0x7c/0xe0
[  547.899224][ T4280]  deactivate_locked_super+0x93/0xf0
[  547.904498][ T4280]  cleanup_mnt+0x42c/0x4b0
[  547.908907][ T4280]  ? lockdep_hardirqs_on+0x94/0x140
[  547.914091][ T4280]  task_work_run+0x1d0/0x260
[  547.918673][ T4280]  ? task_work_cancel+0x220/0x220
[  547.923685][ T4280]  ? exit_to_user_mode_loop+0x3b/0x110
[  547.929141][ T4280]  exit_to_user_mode_loop+0xe6/0x110
[  547.934419][ T4280]  exit_to_user_mode_prepare+0xee/0x180
[  547.939974][ T4280]  syscall_exit_to_user_mode+0x16/0x40
[  547.945442][ T4280]  do_syscall_64+0x58/0xa0
[  547.949873][ T4280]  ? clear_bhb_loop+0x60/0xb0
[  547.954553][ T4280]  ? clear_bhb_loop+0x60/0xb0
[  547.959238][ T4280]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  547.965129][ T4280] RIP: 0033:0x7f9dd699d9d7
[  547.969548][ T4280] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  547.989148][ T4280] RSP: 002b:00007fffd1e240c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  547.997549][ T4280] RAX: 0000000000000000 RBX: 00007f9dd6a32050 RCX: 00007f9dd699d9d7
[  548.005516][ T4280] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffd1e24180
[  548.013488][ T4280] RBP: 00007fffd1e24180 R08: 00007fffd1e25180 R09: 00000000ffffffff
[  548.021556][ T4280] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffd1e25210
[  548.029537][ T4280] R13: 00007f9dd6a32050 R14: 0000000000085ae4 R15: 00007fffd1e25250
[  548.037958][ T4280]  </TASK>
[  548.042752][ T4280] ocfs2: Unmounting device (7,3) on (node local)