last executing test programs:

1m3.013504357s ago: executing program 1 (id=339):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1200004, &(0x7f0000000100), 0x1, 0x599, &(0x7f0000000540)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x194)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040)={0x0, 0x0, 0x7})
quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000202, 0x0, 0x0)

1m2.878225488s ago: executing program 1 (id=340):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000054c0)=[{{0x0, 0x0, &(0x7f0000004440)=[{0x0}, {0x0}, {&(0x7f0000003200)=""/214, 0xd6}], 0x3}, 0x8c}], 0x1, 0x2000, 0x0)
recvmmsg(r0, &(0x7f00000037c0), 0x41, 0x2, 0x0)

1m2.763376557s ago: executing program 1 (id=342):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c040, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000003c0)=[{0x0}], 0x1, &(0x7f0000000040)}, 0x20000800)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000040), 0x4)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01')

1m2.688436693s ago: executing program 1 (id=344):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0xa0835c, &(0x7f0000000340)={[{@nojournal_checksum}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@dioread_nolock}, {@usrjquota}, {@oldalloc}, {@sysvgroups}]}, 0x2, 0x44a, &(0x7f0000000880)="$eJzs281vFOUfAPDvzLbl9+OtFfEFRK0SY+NLSwsqBy8aTTxgNNEDHuu2EMJCDa2JECLVGLyYGBI9G48m/gXevBj1ZOJV74aEKBfQU83MzsDuslsobHcr+/kkA8+z82yf57vPPDPPzLMbwMAaz/5JIrZGxG8RMVrPNhcYr/939fLZ6t+Xz1aTWFl5688kL3fl8tlqWbR835YiM5FGpJ8kRSXNFk+fOT5bq82fKvJTSyfem1o8febZYydmj84fnT85c/Dggf3TLzw/81xX4sziurL7w4U9u15758Lr1cMX3v3p26y9W4v9jXF0y3gW+F8rudZ9T3S7sj7b1pBOhvrYENakEhFZdw3n4380KnG980bj1Y/72jhgXWXXpk2ddy+vAHexJPrdAqA/ygt9dv9bbj2aemwIl16q3wBlcV8ttvqeoUiLMsMt97fdNB4Rh5f/+SrbYp2eQwAANPqs+uWheKbd/C+N+xvKbS/WUMYi4p6I2BER90bEzoi4LyIv+0BEPLjG+luXhm6c/6QXbyuwW5TN/14s1raa53/l7C/GKkVuWx7/cHLkWG1+X/GZTMTwpiw/vUod37/y6+ed9jXO/7Itq7+cCxbtuDjU8oBubnZpNp+UdsGljyJ2D7WLP7m2EpBExK6I2L22P729TBx76ps9nQrdPP5VdGGdaeXriCfr/b8cLfGXktXXJ6f+F7X5fVPlUXGjn385/2an+u8o/i7I+n9z8/HfWmQsaVyvXVx7Hed//7TjPc3tHv8jydv5+WikeO2D2aWlU9MRI8mhPN/0+sz195b5snwW/8Te9uN/R/GeLP6HIiI7iB+OiEci4tGi7Y9FxOMRsXeV+H98ufO+jdD/c23Pf9eO/5b+X3uicvyH7zrVf2v9fyBPTRSv5Oe/m7jVBt7JZwcAAAD/FWn+HfgknbyWTtPJyfp3+HfG5rS2sLj09JGF90/O1b8rPxbDafmka7Theeh0slz8xXp+pnhWXO7fXzw3/qLy/zw/WV2ozfU5dhh0WzqM/8wflX63Dlh37dbRZkb60BCg51rHf9qcPfdGLxsD9JTfa8Pgusn4T3vVDqD3XP9hcLUb/+da8tYC4O7k+g+Dy/iHwWX8w+Ay/mEg3cnv+iUGORHphmiGxDol+n1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6I5/AwAA///K8u7c")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1a1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0xd2f0, 0x2000, 0x8, 0xadea})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})

1m2.399504366s ago: executing program 1 (id=349):
r0 = socket$inet(0x2, 0x802, 0x1)
connect$inet(r0, &(0x7f0000002780)={0x2, 0x4e22, @remote}, 0x10)
write(r0, &(0x7f0000000440)="08008edf773c8000", 0x8)
read(r0, &(0x7f0000000040)=""/25, 0x19)

1m1.761128868s ago: executing program 1 (id=356):
pipe(&(0x7f00000004c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)
pidfd_getfd(r1, 0xffffffffffffffff, 0x0)

1m1.421752765s ago: executing program 32 (id=356):
pipe(&(0x7f00000004c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)
pidfd_getfd(r1, 0xffffffffffffffff, 0x0)

5.357777559s ago: executing program 3 (id=1008):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_mount_image$ocfs2(&(0x7f0000000680), &(0x7f00000001c0)='./file1\x00', 0x8c0, &(0x7f0000000200)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x1, 0x4428, &(0x7f0000008940)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)

4.35242505s ago: executing program 3 (id=1020):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020)

4.184761823s ago: executing program 0 (id=1022):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000340)="0a000300010000", 0x7)
recvmmsg(r0, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}, 0x5}], 0x40001af, 0x12122, 0x0)

3.916533365s ago: executing program 4 (id=1025):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000e80)={0x44, r0, 0x801, 0x400, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee33908f8eef16f162471f4"}, @NL80211_KEY_IDX={0x5, 0x2, 0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac0c}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

2.519498407s ago: executing program 0 (id=1026):
r0 = socket(0x1e, 0x4, 0x0)
connect$tipc(r0, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
sendmmsg$unix(r0, &(0x7f0000004400), 0x400000000000203, 0x0)
connect$tipc(r0, &(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x2, {0x41, 0xfffffffe, 0x4}}, 0x10)

2.519271437s ago: executing program 4 (id=1027):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x18)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=@updpolicy={0xc4, 0x19, 0x1, 0x0, 0x0, {{@in6=@loopback, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}}, [@offload={0xc, 0x1c, {r2, 0x4}}]}, 0xc4}}, 0x0)

2.519016217s ago: executing program 3 (id=1030):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x60, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

2.340331862s ago: executing program 0 (id=1031):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4, <r2=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})

2.334060702s ago: executing program 4 (id=1032):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700)={'team0\x00', <r2=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000880)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r2, @ANYBLOB="4400028040000100240001006d6f646500000000000500000000000000000000000000000000000000000000050003000500000010000300"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)

2.226541481s ago: executing program 4 (id=1033):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x6d93, 0x4)
shutdown(r0, 0x1)
sendmsg$sock(r0, &(0x7f0000000780)={&(0x7f0000000300)=@in6={0xa, 0x4e23, 0x41d, @loopback, 0x4}, 0x80, 0x0}, 0xff00)

2.181761064s ago: executing program 0 (id=1035):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10)
r1 = io_uring_setup(0x5111, &(0x7f0000000100)={0x0, 0x9c54, 0x100, 0x2, 0x1ec})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f000000aa80)={0x80002, 0x0, &(0x7f0000000600)=[0xffffffffffffffff]}, 0x1)

2.068364814s ago: executing program 0 (id=1036):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000200)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x6, 0x3a, '@', 0x3a, '\\', 0x3a, './file0', 0x3a, [0x46]}, 0x2a)

2.068123893s ago: executing program 4 (id=1037):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000200)={{0x12, 0x1, 0x0, 0xdc, 0x7a, 0x22, 0x40, 0xac8, 0x321, 0xa1c9, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x68, 0x20, 0x0, 0x63, 0x74, 0x11}}]}}]}}, 0x0)
ioctl$EVIOCRMFF(r0, 0x83c0550b, 0x0)

1.472154612s ago: executing program 0 (id=1040):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
pwrite64(r1, 0x0, 0x0, 0x2)

789.490246ms ago: executing program 2 (id=1045):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000003c0)={[{@utf8}, {@fmask={'fmask', 0x3d, 0xa3}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@fmask={'fmask', 0x3d, 0x5}}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@gid}, {@umask={'umask', 0x3d, 0x5}}, {@discard}, {}]}, 0x3, 0x152f, &(0x7f00000037c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1/file3\x00', &(0x7f0000000480)={0x44240, 0x168, 0x1}, 0x18)
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file0/file3\x00', 0x0)

461.682053ms ago: executing program 4 (id=1046):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000008dc0)={0x0, 0x0, &(0x7f0000008cc0)=[{&(0x7f0000008a40)="7c72bf03f7d9c0fd0826786ffcfb99e55c1272594d5be5c7f1de9562bbf652", 0x1f}, {&(0x7f0000008c80)="9d", 0x7fffefe1}], 0x2}, 0x0)

461.547513ms ago: executing program 2 (id=1047):
mount(&(0x7f0000000040)=@nullb, 0x0, 0x0, 0x8000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e00000000000000000018000280080002001100000004000100080004"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x8090)

418.766926ms ago: executing program 2 (id=1048):
r0 = socket(0x1d, 0x2, 0x6)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x3)
close_range(r0, 0xffffffffffffffff, 0x0)

272.621138ms ago: executing program 3 (id=1049):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2)

272.444628ms ago: executing program 2 (id=1050):
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, 0x0, &(0x7f0000000080))

191.982854ms ago: executing program 2 (id=1051):
syz_mount_image$erofs(&(0x7f00000000c0), &(0x7f0000000140)='./file1\x00', 0x3000801, &(0x7f0000000840)=ANY=[], 0x2, 0x1ea, &(0x7f00000003c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1a4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
fadvise64(r0, 0xe0ffff, 0x9, 0x3)

186.291965ms ago: executing program 3 (id=1052):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r2 = dup3(r0, r1, 0x80000)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0xc1}, 0x1)

494.53µs ago: executing program 3 (id=1053):
syz_mount_image$reiserfs(&(0x7f0000001100), &(0x7f0000000000)='./file0\x00', 0xc0c2, &(0x7f0000000900)={[{@acl}, {@usrjquota_file, 0x4}, {@acl}, {@balloc_hashed_reloc}, {@usrjquota, 0x3d}]}, 0x2, 0x111a, &(0x7f00000033c0)="$eJzs2LFqFEEYB/D/7B0Yq5NNvwhaWEhIODurFBGutbaRkMpUuSoiqO/i40gq+5AHsAhYCiN7uTUigSh3IRz8fjC7w8w3M9+U3wQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACuvOw/203SDiNNkpJ03dnsIkk3jD/6OmpS8vpoNj84mb6aJxktwkvf+lX9srR7T7baaTtt99oX2/tP2/np+3dvj4+PTpbblHQ5v1z/RcoynxttlfUfCAAAABuirmzy95bjofMvFffq5wMAAAC3WfuDAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB/qpOkLvttkp+11jRJStJ1Z7OLJN095wgAAACspqTJm8lN41k8A1x7nm+Tkk/Lub79KH3Mbr4s1j+4Dj1s8vDuUwcAAIANMr41ovxRjz/LOLXWj8Pc44yzs3PV73/9xPf9ZHR6kN3fNfnnxff88sPh0Eod3dF9AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Bc7cEACAAAAIOj/63YECgAAAAAAAAAAAAAAAAAAAAAAAADwUQAAAP//5vjfKg==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
setresuid(0xee00, 0xee01, 0x0)
utimensat(r0, 0x0, &(0x7f0000000080)={{}, {0x77359400}}, 0x0)

0s ago: executing program 2 (id=1054):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000180)='./file1\x00', 0x28108c0, &(0x7f0000006980)=ANY=[], 0xfe, 0x6212, &(0x7f0000012fc0)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

kernel console output (not intermixed with test programs):

isconnecting em28xx
[   88.207577][ T6413] loop2: detected capacity change from 0 to 4096
[   88.209050][ T5839] em28xx 2-1:0.0: Registering input extension
[   88.243410][ T6413] ntfs: (device loop2): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[   88.272091][ T6413] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing.
[   88.297032][ T6413] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[   88.328740][ T6413] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[   88.340063][ T6417] loop3: detected capacity change from 0 to 64
[   88.359112][ T6413] ntfs: volume version 3.1.
[   88.363585][ T5839] rc_core: IR keymap rc-pinnacle-pctv-hd not found
[   88.384404][ T5839] Registered IR keymap rc-empty
[   88.399560][ T6413] ntfs: (device loop2): load_and_init_quota(): Failed to find inode number for $Quota.
[   88.412394][ T5839] rc rc0: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[   88.429751][ T6413] ntfs: (device loop2): load_system_files(): Failed to load $Quota.  Will not be able to remount read-write.  Run chkdsk.
[   88.457626][ T5839] input: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input6
[   88.524883][ T5839] em28xx 2-1:0.0: Input extension successfully initialized
[   88.576294][ T5853] em28xx 2-1:0.0: Closing input extension
[   88.640256][ T6413] ntfs: (device loop2): map_mft_record_page(): Attempt to read mft record 0x8ace442d, which is beyond the end of the mft.  This is probably a bug in the ntfs driver.
[   88.689280][ T5853] em28xx 2-1:0.0: Freeing device
[   88.691889][ T6413] ntfs: (device loop2): map_mft_record(): Failed with error code 2.
[   88.757523][ T6413] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x8ace442d as bad.  Run chkdsk.
[   88.852169][ T6411] loop0: detected capacity change from 0 to 32768
[   88.884210][ T6411] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 scanned by syz.0.197 (6411)
[   88.907859][ T6411] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   88.929956][ T6411] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[   88.984761][ T6411] BTRFS info (device loop0): using free space tree
[   89.032726][ T6425] loop3: detected capacity change from 0 to 1024
[   89.061267][ T6431] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   89.187367][ T6411] BTRFS info (device loop0): enabling ssd optimizations
[   89.225862][ T6411] BTRFS info (device loop0): auto enabling async discard
[   89.261044][ T3439] hfsplus: b-tree write err: -5, ino 4
[   89.283144][ T6425] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  leaving read-only.
[   89.703183][ T5788] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   89.893541][ T6241] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 10 /dev/loop0 scanned by udevd (6241)
[   89.989635][ T6464] loop1: detected capacity change from 0 to 1024
[   90.443689][ T6456] loop3: detected capacity change from 0 to 32768
[   90.692658][ T5917] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by udevd (5917)
[   90.730316][ T6459] loop2: detected capacity change from 0 to 32768
[   90.814601][ T6459] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   91.033564][ T6459] XFS (loop2): Ending clean mount
[   91.179230][ T6495] netlink: 8 bytes leftover after parsing attributes in process `syz.3.223'.
[   91.239652][ T6495] vlan2: entered allmulticast mode
[   91.291152][ T5786] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   91.303704][ T6497] loop1: detected capacity change from 0 to 512
[   91.519547][ T6501] loop3: detected capacity change from 0 to 4096
[   91.687036][ T6505] loop1: detected capacity change from 0 to 1024
[   91.751898][ T6505] EXT4-fs: Ignoring removed nobh option
[   91.775588][ T6505] EXT4-fs: inline encryption not supported
[   91.818401][ T6505] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   91.873803][ T6505] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.894857][ T6511] sctp: [Deprecated]: syz.2.230 (pid 6511) Use of struct sctp_assoc_value in delayed_ack socket option.
[   91.894857][ T6511] Use struct sctp_sack_info instead
[   92.159315][ T6520] loop3: detected capacity change from 0 to 256
[   92.170466][ T6517] loop0: detected capacity change from 0 to 512
[   92.187302][ T6517] EXT4-fs: Ignoring removed mblk_io_submit option
[   92.192853][ T6520] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   92.215238][ T6517] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   92.224826][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.246426][ T6520] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   92.271953][ T6517] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.232: iget: bad extended attribute block 1
[   92.303564][ T6517] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.232: couldn't read orphan inode 15 (err -117)
[   92.417022][ T6517] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.494735][ T6528] loop1: detected capacity change from 0 to 64
[   92.518354][ T6517] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[   92.581681][ T6530] loop3: detected capacity change from 0 to 64
[   92.601864][   T27] audit: type=1800 audit(1756232756.566:5): pid=6528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.234" name="file1" dev="loop1" ino=21 res=0 errno=0
[   92.616395][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.723432][ T5792] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   92.934015][ T5792] usb 3-1: Using ep0 maxpacket: 8
[   92.947819][ T5792] usb 3-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[   92.970496][ T5792] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.994969][ T5792] usb 3-1: Product: syz
[   93.000123][ T5792] usb 3-1: Manufacturer: syz
[   93.007552][ T5792] usb 3-1: SerialNumber: syz
[   93.023151][ T5792] usb 3-1: config 0 descriptor??
[   93.036685][ T5792] gspca_main: sq930x-2.14.0 probing 2770:930c
[   93.143483][ T5888] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   93.343533][ T5888] usb 4-1: Using ep0 maxpacket: 32
[   93.358220][ T5888] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   93.358543][ T6540] loop1: detected capacity change from 0 to 32768
[   93.389606][ T5888] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   93.419536][ T6540] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   93.432524][ T5888] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   93.473953][ T5888] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[   93.482333][ T5888] usb 4-1: Product: syz
[   93.486996][ T5888] usb 4-1: Manufacturer: syz
[   93.497464][ T5888] hub 4-1:4.0: USB hub found
[   93.521817][ T6540] XFS (loop1): Ending clean mount
[   93.700904][ T6546] loop0: detected capacity change from 0 to 32768
[   93.737021][ T5888] hub 4-1:4.0: config failed, hub has too many ports! (err -19)
[   93.753965][ T5787] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   93.783917][ T6546] JBD2: Ignoring recovery information on journal
[   93.865812][ T5792] gspca_sq930x: ucbus_write failed -71
[   93.923974][ T6546] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   94.069201][ T6558] netlink: 'syz.1.246': attribute type 25 has an invalid length.
[   94.077179][ T6558] netlink: 'syz.1.246': attribute type 8 has an invalid length.
[   94.103475][ T5792] gspca_sq930x: Sensor ov9630 not yet treated
[   94.109654][ T5792] sq930x: probe of 3-1:0.0 failed with error -22
[   94.124094][ T5853] usb 4-1: USB disconnect, device number 4
[   94.146686][ T5792] usb 3-1: USB disconnect, device number 4
[   94.197570][ T6560] netlink: 12 bytes leftover after parsing attributes in process `syz.1.247'.
[   94.277961][ T5788] ocfs2: Unmounting device (7,0) on (node local)
[   94.524980][ T6566] netlink: 80 bytes leftover after parsing attributes in process `syz.1.251'.
[   94.549696][ T6568] loop0: detected capacity change from 0 to 64
[   94.661986][ T6568] syz.0.248: attempt to access beyond end of device
[   94.661986][ T6568] loop0: rw=34817, sector=39, nr_sectors = 125 limit=64
[   94.665395][   T27] audit: type=1800 audit(1756232758.626:6): pid=6568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.248" name="file1" dev="loop0" ino=21 res=0 errno=0
[   94.729338][ T6568] syz.0.248: attempt to access beyond end of device
[   94.729338][ T6568] loop0: rw=34817, sector=167, nr_sectors = 1 limit=64
[   94.769061][ T6568] syz.0.248: attempt to access beyond end of device
[   94.769061][ T6568] loop0: rw=34817, sector=169, nr_sectors = 1 limit=64
[   94.807824][ T6568] syz.0.248: attempt to access beyond end of device
[   94.807824][ T6568] loop0: rw=34817, sector=171, nr_sectors = 7 limit=64
[   94.846822][ T6568] syz.0.248: attempt to access beyond end of device
[   94.846822][ T6568] loop0: rw=34817, sector=179, nr_sectors = 700 limit=64
[   95.127101][ T6583] loop3: detected capacity change from 0 to 4096
[   95.187631][ T6583] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[   95.241303][ T6583] ntfs3: loop3: Failed to load $Extend (-22).
[   95.265509][ T6583] ntfs3: loop3: Failed to initialize $Extend.
[   95.532171][ T6597] warning: `syz.0.264' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   95.889462][ T6591] loop1: detected capacity change from 0 to 32768
[   95.905202][ T6591] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.261 (6591)
[   95.944696][ T6591] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   95.963497][ T6591] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[   95.984166][ T6591] BTRFS info (device loop1): using free space tree
[   96.042541][ T6591] BTRFS info (device loop1): enabling ssd optimizations
[   96.056053][ T6591] BTRFS info (device loop1): auto enabling async discard
[   96.285011][ T6630] netlink: 27 bytes leftover after parsing attributes in process `syz.2.272'.
[   96.409467][ T5787] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   97.111697][ T6650] netlink: 'syz.3.283': attribute type 11 has an invalid length.
[   97.199652][ T6636] loop2: detected capacity change from 0 to 32768
[   97.293741][ T6636] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   97.469171][ T6636] XFS (loop2): Ending clean mount
[   97.508278][ T6636] XFS (loop2): Quotacheck needed: Please wait.
[   97.608101][ T6636] XFS (loop2): Quotacheck: Done.
[   97.876074][ T5786] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   98.226204][ T6670] loop1: detected capacity change from 0 to 32768
[   98.325031][ T6670] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[   98.534706][ T5787] (syz-executor,5787,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 76
[   98.597244][ T5787] ocfs2: Unmounting device (7,1) on (node local)
[   99.001126][ T6708] loop3: detected capacity change from 0 to 64
[   99.135317][ T6708] syz.3.305: attempt to access beyond end of device
[   99.135317][ T6708] loop3: rw=0, sector=1024, nr_sectors = 2 limit=64
[   99.170692][ T6685] loop0: detected capacity change from 0 to 40427
[   99.180714][ T6708] Buffer I/O error on dev loop3, logical block 512, async page read
[   99.210786][ T6685] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[   99.220055][ T6708] syz.3.305: attempt to access beyond end of device
[   99.220055][ T6708] loop3: rw=0, sector=113152, nr_sectors = 2 limit=64
[   99.241247][ T6685] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   99.252187][ T6685] F2FS-fs (loop0): build fault injection attr: rate: 17008, type: 0x7ffff
[   99.264306][ T6708] Buffer I/O error on dev loop3, logical block 56576, async page read
[   99.278954][ T6685] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x1f8
[   99.298014][ T6685] F2FS-fs (loop0): invalid crc value
[   99.352466][ T6685] F2FS-fs (loop0): Found nat_bits in checkpoint
[   99.431235][ T6702] loop2: detected capacity change from 0 to 32768
[   99.517282][ T6702] JBD2: Ignoring recovery information on journal
[   99.589419][ T6702] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   99.607516][ T6685] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   99.633821][ T6685] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   99.896211][   T27] audit: type=1800 audit(1756232763.866:7): pid=6726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.303" name="bus" dev="loop2" ino=17059 res=0 errno=0
[   99.899631][ T6685] syz.0.296: attempt to access beyond end of device
[   99.899631][ T6685] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   99.958790][ T6702] syz.2.303 (6702) used greatest stack depth: 18992 bytes left
[   99.978777][ T6685] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   99.996718][ T6732] loop3: detected capacity change from 0 to 64
[  100.107972][ T5786] ocfs2: Unmounting device (7,2) on (node local)
[  100.526179][ T6738] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  100.544962][ T5888] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  100.774417][ T5888] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  100.794411][ T5888] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  100.817437][ T6744] loop2: detected capacity change from 0 to 256
[  100.819153][ T5888] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  100.835653][ T6744] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x09066d1f, utbl_chksum : 0xe619d30d)
[  100.844143][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  100.857411][ T5888] usb 2-1: SerialNumber: syz
[  100.884662][ T6744] syz.2.317: attempt to access beyond end of device
[  100.884662][ T6744] loop2: rw=524288, sector=280, nr_sectors = 128 limit=256
[  100.905744][ T6744] syz.2.317: attempt to access beyond end of device
[  100.905744][ T6744] loop2: rw=524288, sector=408, nr_sectors = 256 limit=256
[  100.924799][ T6744] syz.2.317: attempt to access beyond end of device
[  100.924799][ T6744] loop2: rw=0, sector=280, nr_sectors = 8 limit=256
[  100.942420][   T27] audit: type=1800 audit(1756232764.916:8): pid=6744 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.317" name="file1" dev="loop2" ino=1048592 res=0 errno=0
[  100.997114][ T6744] exFAT-fs (loop2): invalid start cluster (20)
[  101.045625][ T3460] kworker/u4:9: attempt to access beyond end of device
[  101.045625][ T3460] loop2: rw=1, sector=279, nr_sectors = 1 limit=256
[  101.060053][ T3460] Buffer I/O error on dev loop2, logical block 279, lost async page write
[  101.073781][ T5792] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  101.094788][ T5888] usb 2-1: 0:2 : does not exist
[  101.110266][ T5888] usb 2-1: unit 255 not found!
[  101.133205][ T5888] usb 2-1: USB disconnect, device number 4
[  101.303443][ T5792] usb 1-1: Using ep0 maxpacket: 32
[  101.311383][ T5792] usb 1-1: config 0 has an invalid interface number: 126 but max is 0
[  101.321412][ T5792] usb 1-1: config 0 has no interface number 0
[  101.334410][ T5792] usb 1-1: config 0 interface 126 altsetting 16 bulk endpoint 0x6 has invalid maxpacket 1023
[  101.349108][ T6749] loop3: detected capacity change from 0 to 32768
[  101.355631][ T5792] usb 1-1: config 0 interface 126 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 8
[  101.367989][ T5792] usb 1-1: config 0 interface 126 has no altsetting 0
[  101.375001][ T6749] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.319 (6749)
[  101.392080][ T6749] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  101.404278][ T5792] usb 1-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice=b0.1c
[  101.413569][ T5792] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.421573][ T5792] usb 1-1: Product: syz
[  101.433566][ T6749] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  101.443011][ T6749] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8)
[  101.452674][ T5792] usb 1-1: Manufacturer: syz
[  101.457342][ T5792] usb 1-1: SerialNumber: syz
[  101.464164][ T6749] BTRFS info (device loop3): use lzo compression, level 0
[  101.471321][ T6749] BTRFS info (device loop3): using free space tree
[  101.478943][ T5792] usb 1-1: config 0 descriptor??
[  101.486401][ T6742] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  101.497794][ T6742] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  101.531992][ T6749] BTRFS info (device loop3): enabling ssd optimizations
[  101.539258][ T6749] BTRFS info (device loop3): auto enabling async discard
[  101.696196][ T5789] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  101.944563][ T5792] ir_usb 1-1:0.126: IR Dongle converter detected
[  102.153487][ T5792] usb 1-1: IRDA class descriptor not found, device not bound
[  102.264501][ T6795] loop1: detected capacity change from 0 to 128
[  102.271320][ T6795] EXT4-fs: Ignoring removed nobh option
[  102.283868][ T6795] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  102.296727][ T6795] ext4 filesystem being mounted at /79/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  102.398306][ T5787] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  102.405935][ T5839] usb 1-1: USB disconnect, device number 2
[  102.669887][ T6812] loop1: detected capacity change from 0 to 1024
[  102.681706][ T6812] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  102.702644][ T6812] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.768013][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  102.999177][ T6826] loop1: detected capacity change from 0 to 512
[  103.012455][ T6826] EXT4-fs: Ignoring removed oldalloc option
[  103.022218][ T6826] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  103.049425][ T6826] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.344: Parent and EA inode have the same ino 15
[  103.051277][ T6828] loop0: detected capacity change from 0 to 512
[  103.087393][ T6826] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  103.109017][ T6826] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.344: Parent and EA inode have the same ino 15
[  103.133907][ T6826] EXT4-fs (loop1): 1 orphan inode deleted
[  103.139079][ T6828] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  103.140820][ T6826] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.179173][ T6828] EXT4-fs (loop0): 1 truncate cleaned up
[  103.193094][ T6828] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.217926][ T5787] EXT4-fs error (device loop1): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  103.340749][ T6836] loop3: detected capacity change from 0 to 4096
[  103.380303][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.450157][ T6841] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  103.757228][ T6582] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.851100][   T59] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.987270][ T6858] loop3: detected capacity change from 0 to 1024
[  104.021481][   T59] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.076309][ T6858] hfsplus: bad catalog entry type
[  104.146295][  T140] hfsplus: b-tree write err: -5, ino 4
[  104.180681][   T59] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.296472][   T59] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.309095][ T6863] netlink: 12 bytes leftover after parsing attributes in process `syz.3.362'.
[  104.704400][ T6855] loop0: detected capacity change from 0 to 32768
[  104.728624][ T6855] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.357 (6855)
[  104.772854][ T6855] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  104.785058][ T6855] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  104.794824][ T6855] BTRFS info (device loop0): force zlib compression, level 3
[  104.802332][ T6855] BTRFS info (device loop0): force clearing of disk cache
[  104.809973][ T6855] BTRFS info (device loop0): setting nodatasum
[  104.812523][ T6873] loop3: detected capacity change from 0 to 16
[  104.816838][ T6855] BTRFS info (device loop0): allowing degraded mounts
[  104.831630][ T6855] BTRFS info (device loop0): disabling free space tree
[  104.849888][ T6873] erofs: (device loop3): mounted with root inode @ nid 36.
[  104.873898][ T6873] syz.3.366: attempt to access beyond end of device
[  104.873898][ T6873] loop3: rw=0, sector=14546590680, nr_sectors = 8 limit=16
[  104.890339][ T6873] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -2 in[1, 1440] out[1677]
[  104.899226][ T5791] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  104.903815][ T6873] erofs: (device loop3): erofs_readdir: fail to readdir of logical block 87 of nid 36
[  104.921481][ T5791] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  104.935910][ T5792] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  104.944578][ T5791] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  104.950706][ T6855] BTRFS info (device loop0): enabling ssd optimizations
[  104.959167][ T6855] BTRFS info (device loop0): auto enabling async discard
[  104.968872][ T5791] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  104.972474][ T6855] BTRFS info (device loop0): rebuilding free space tree
[  104.981173][ T5791] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  104.990527][ T5791] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  105.033085][ T6855] BTRFS info (device loop0): disabling free space tree
[  105.067883][ T6855] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  105.092507][ T6855] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  105.153550][ T5792] usb 3-1: Using ep0 maxpacket: 16
[  105.165091][ T5792] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  105.176590][ T5792] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  105.188060][ T5792] usb 3-1: New USB device found, idVendor=054c, idProduct=05c4, bcdDevice= 0.00
[  105.197239][ T5792] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.215052][ T5792] usb 3-1: config 0 descriptor??
[  105.301392][ T5788] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  105.673141][ T5792] playstation 0003:054C:05C4.0002: hidraw0: USB HID v0.00 Device [HID 054c:05c4] on usb-dummy_hcd.2-1/input0
[  105.832305][ T5792] playstation 0003:054C:05C4.0002: Invalid byte count transferred, expected 16 got 0
[  105.845225][ T6902] loop0: detected capacity change from 0 to 32768
[  105.858211][ T5792] playstation 0003:054C:05C4.0002: Failed to retrieve DualShock4 pairing info: -22
[  105.874758][ T6902] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  105.877740][ T5792] playstation 0003:054C:05C4.0002: Failed to get MAC address from DualShock4
[  105.901487][ T6902] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  105.902270][ T5792] playstation 0003:054C:05C4.0002: Failed to create dualshock4.
[  105.952234][ T5792] playstation: probe of 0003:054C:05C4.0002 failed with error -22
[  105.956588][ T6887] chnl_net:caif_netlink_parms(): no params data found
[  106.051793][ T5788] ocfs2: Unmounting device (7,0) on (node local)
[  106.139056][   T23] usb 3-1: USB disconnect, device number 5
[  106.238910][ T6887] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.264454][ T6887] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.280108][ T6887] bridge_slave_0: entered allmulticast mode
[  106.287835][ T6887] bridge_slave_0: entered promiscuous mode
[  106.303582][ T6887] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.310857][ T6887] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.326355][ T6887] bridge_slave_1: entered allmulticast mode
[  106.339114][ T6887] bridge_slave_1: entered promiscuous mode
[  106.392636][ T6887] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  106.416176][   T59] hsr_slave_0: left promiscuous mode
[  106.422654][   T59] hsr_slave_1: left promiscuous mode
[  106.445027][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.452491][   T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[  106.474668][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  106.492793][   T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[  106.512116][   T59] bridge_slave_1: left allmulticast mode
[  106.523375][   T59] bridge_slave_1: left promiscuous mode
[  106.541749][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.571567][   T59] bridge_slave_0: left allmulticast mode
[  106.577437][   T59] bridge_slave_0: left promiscuous mode
[  106.588557][   T59] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.663756][   T59] veth1_macvtap: left promiscuous mode
[  106.669844][   T59] veth0_macvtap: left promiscuous mode
[  106.679842][   T59] veth1_vlan: left promiscuous mode
[  106.691252][   T59] veth0_vlan: left promiscuous mode
[  106.932303][ T6925] loop2: detected capacity change from 0 to 512
[  106.982926][   T27] audit: type=1800 audit(1756232770.946:9): pid=6925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.378" name="file1" dev="loop2" ino=1048593 res=0 errno=0
[  107.013829][ T5791] Bluetooth: hci1: command tx timeout
[  107.066885][  T140] FAT-fs (loop2): error, invalid FAT chain (i_pos 2306, last_block 8)
[  107.087596][  T140] FAT-fs (loop2): Filesystem has been set read-only
[  107.131934][  T140] FAT-fs (loop2): error, corrupted file size (i_pos 2306, 2058)
[  107.667232][ T6945] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  107.839690][   T59] team0 (unregistering): Port device team_slave_1 removed
[  107.873590][ T6947] loop0: detected capacity change from 0 to 512
[  107.902167][   T59] team0 (unregistering): Port device team_slave_0 removed
[  107.922942][ T6947] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 2: comm syz.0.387: invalid block
[  107.945363][ T6947] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.387: invalid indirect mapped block 10 (level 1)
[  107.960386][ T6947] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.387: invalid indirect mapped block 8 (level 1)
[  107.983703][ T6947] EXT4-fs (loop0): 1 truncate cleaned up
[  107.990306][   T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.992579][ T6947] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.062193][   T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.101201][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.539032][ T6951] loop0: detected capacity change from 0 to 32768
[  108.573583][ T6951] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  108.631015][ T6951] XFS (loop0): Ending clean mount
[  108.766568][   T59] bond0 (unregistering): Released all slaves
[  108.767210][ T5788] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  108.893216][ T6887] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.049384][ T6887] team0: Port device team_slave_0 added
[  109.100265][ T6887] team0: Port device team_slave_1 added
[  109.107437][ T5791] Bluetooth: hci1: command tx timeout
[  109.222774][ T6887] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.239740][ T6887] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.269039][ T6887] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.293478][ T6887] batman_adv: batadv0: Adding interface: batadv_slave_1
[  109.300536][ T6887] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.329085][ T6887] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  109.462884][ T6979] netlink: 884 bytes leftover after parsing attributes in process `syz.0.397'.
[  109.518252][ T6887] hsr_slave_0: entered promiscuous mode
[  109.564547][ T6887] hsr_slave_1: entered promiscuous mode
[  109.581845][ T6887] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  109.601475][ T6887] Cannot create hsr debugfs directory
[  109.931165][ T6998] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'.
[  109.942353][ T6887] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  109.965101][ T6887] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  110.003501][ T6887] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  110.017420][ T6887] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  110.159582][ T6887] 8021q: adding VLAN 0 to HW filter on device bond0
[  110.189102][ T7012] loop2: detected capacity change from 0 to 16
[  110.190356][ T6887] 8021q: adding VLAN 0 to HW filter on device team0
[  110.199348][ T7012] erofs: (device loop2): mounted with root inode @ nid 36.
[  110.218027][ T1081] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.225255][ T1081] bridge0: port 1(bridge_slave_0) entered forwarding state
[  110.248775][ T7012] erofs: (device loop2): erofs_read_inode: bogus i_mode (0) @ nid 0
[  110.290652][ T1081] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.297885][ T1081] bridge0: port 2(bridge_slave_1) entered forwarding state
[  110.390771][ T7017] loop0: detected capacity change from 0 to 512
[  110.408481][ T7017] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  110.422697][ T7017] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  110.535763][ T7017] EXT4-fs (loop0): 1 truncate cleaned up
[  110.554993][ T7017] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.747307][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.782437][ T6887] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.834629][ T7036] loop2: detected capacity change from 0 to 1024
[  110.953542][   T23] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  111.035402][ T7047] loop2: detected capacity change from 0 to 2048
[  111.058386][ T7047] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  111.070278][ T6887] veth0_vlan: entered promiscuous mode
[  111.108710][ T6887] veth1_vlan: entered promiscuous mode
[  111.149749][ T6887] veth0_macvtap: entered promiscuous mode
[  111.162181][ T6887] veth1_macvtap: entered promiscuous mode
[  111.169217][   T23] usb 4-1: Using ep0 maxpacket: 32
[  111.183725][ T5791] Bluetooth: hci1: command tx timeout
[  111.195613][   T23] usb 4-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  111.215544][ T6887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  111.228840][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.230517][ T6887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.251259][ T6887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  111.267935][   T23] usb 4-1: config 0 descriptor??
[  111.268665][ T6887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.303531][ T6887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  111.314057][ T6887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.327786][ T6887] batman_adv: batadv0: Interface activated: batadv_slave_0
[  111.349081][ T6887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.354627][ T7049] input: syz1 as /devices/virtual/input/input7
[  111.360594][ T6887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.386139][ T6887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.404833][ T6887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.422165][ T6887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.432731][ T6887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.448824][ T6887] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.454630][ T7051] loop2: detected capacity change from 0 to 2048
[  111.460227][ T6887] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.476892][ T7051] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=3932051, location=3932051
[  111.483416][ T6887] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.496592][   T23] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  111.500385][   T23] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  111.518533][ T7051] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  111.522485][ T6887] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.537410][   T23] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  111.541388][ T6887] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.553480][   T23] usb 4-1: media controller created
[  111.605255][   T23] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  111.645427][   T27] audit: type=1800 audit(1756232775.596:10): pid=7051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.423" name="bus" dev="loop2" ino=1367 res=0 errno=0
[  111.645903][ T7053] loop0: detected capacity change from 0 to 512
[  111.702693][  T140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.704691][   T23] az6027: usb out operation failed. (-71)
[  111.720260][  T140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.728765][   T23] az6027: usb out operation failed. (-71)
[  111.737005][ T7053] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  111.752795][   T23] stb0899_attach: Driver disabled by Kconfig
[  111.761515][   T23] az6027: no front-end attached
[  111.761515][   T23] 
[  111.772949][   T23] az6027: usb out operation failed. (-71)
[  111.779275][   T23] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  111.785381][ T3439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.799609][ T3439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.808357][   T23] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input8
[  111.827985][ T7053] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.862479][   T23] dvb-usb: schedule remote query interval to 400 msecs.
[  111.874794][ T7053] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.903660][   T23] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  111.946003][   T23] usb 4-1: USB disconnect, device number 5
[  112.027610][ T7062] netlink: 8 bytes leftover after parsing attributes in process `syz.2.428'.
[  112.085761][   T23] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  112.103195][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.516426][ T7084] netem: change failed
[  112.572492][ T7086] process 'syz.0.438' launched './file1' with NULL argv: empty string added
[  112.786105][ T7099] netlink: 8 bytes leftover after parsing attributes in process `syz.2.445'.
[  112.887185][ T7103] program syz.3.446 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  112.956525][ T7107] loop4: detected capacity change from 0 to 256
[  113.025140][ T7107] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  113.128471][ T7113] loop2: detected capacity change from 0 to 512
[  113.200826][ T7113] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.236855][ T7113] ext4 filesystem being mounted at /121/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.253720][ T5791] Bluetooth: hci1: command tx timeout
[  113.359634][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.368561][ T7105] loop0: detected capacity change from 0 to 32768
[  113.442868][ T7121] loop2: detected capacity change from 0 to 128
[  113.457058][ T7121] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  113.470080][ T7121] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  113.831585][ T7134] loop3: detected capacity change from 0 to 512
[  113.857998][ T7134] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.460: corrupted in-inode xattr: invalid ea_ino
[  113.896152][ T7134] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.460: couldn't read orphan inode 15 (err -117)
[  113.938111][ T7134] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.041237][ T7134] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #2: block 3: comm syz.3.460: lblock 0 mapped to illegal pblock 3 (length 1)
[  114.078497][ T7134] EXT4-fs warning (device loop3): dx_probe:823: inode #2: lblock 0: comm syz.3.460: error -117 reading directory block
[  114.105478][ T7145] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #2: block 3: comm syz.3.460: lblock 0 mapped to illegal pblock 3 (length 1)
[  114.146219][ T7145] EXT4-fs warning (device loop3): dx_probe:823: inode #2: lblock 0: comm syz.3.460: error -117 reading directory block
[  114.267535][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.544441][ T7166] loop2: detected capacity change from 0 to 8
[  114.888555][ T7183] loop4: detected capacity change from 0 to 16
[  114.947523][ T7183] erofs: (device loop4): mounted with root inode @ nid 36.
[  115.080969][ T7194] netlink: 24 bytes leftover after parsing attributes in process `syz.4.484'.
[  115.142261][ T7194] netlink: 24 bytes leftover after parsing attributes in process `syz.4.484'.
[  115.299498][ T7204] macvlan0: entered promiscuous mode
[  115.326668][ T7204] netlink: 'syz.0.490': attribute type 1 has an invalid length.
[  115.349731][ T7204] netlink: 'syz.0.490': attribute type 2 has an invalid length.
[  115.389479][ T7207] block nbd4: not configured, cannot reconfigure
[  115.791050][ T7221] input: syz1 as /devices/virtual/input/input9
[  115.935943][ T7212] loop3: detected capacity change from 0 to 32768
[  116.030387][ T7212] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  116.207991][ T7241] capability: warning: `syz.2.505' uses 32-bit capabilities (legacy support in use)
[  116.277429][ T5789] ocfs2: Unmounting device (7,3) on (node local)
[  116.546975][ T7254] loop4: detected capacity change from 0 to 2048
[  116.568704][ T7258] loop0: detected capacity change from 0 to 1024
[  116.569300][ T7254] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.611854][ T7254] EXT4-fs (loop4): shut down requested (1)
[  116.645003][ T1081] hfsplus: b-tree write err: -5, ino 4
[  116.652256][ T6887] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.727882][ T7265] loop4: detected capacity change from 0 to 16
[  116.735870][ T7265] erofs: (device loop4): mounted with root inode @ nid 36.
[  116.799098][ T7269] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  116.814901][    T9] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  117.031884][    T9] usb 4-1: Using ep0 maxpacket: 32
[  117.045244][    T9] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  117.058938][    T9] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x2 has an invalid bInterval 129, changing to 11
[  117.070521][    T9] usb 4-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  117.087911][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  117.095299][    T9] usb 4-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  117.119632][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.144092][    T9] usb 4-1: config 0 descriptor??
[  117.151423][ T7283] loop4: detected capacity change from 0 to 128
[  117.161098][ T7283] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  117.361186][ T7289] loop4: detected capacity change from 0 to 8192
[  117.554249][ T7291] loop4: detected capacity change from 0 to 4096
[  117.624714][   T27] audit: type=1800 audit(1756232787.596:11): pid=7291 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.528" name="file1" dev="loop4" ino=30 res=0 errno=0
[  117.930519][    T9] hid-thrustmaster 0003:044F:B65D.0003: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.3-1/input0
[  118.127660][    T9] hid-thrustmaster 0003:044F:B65D.0003: setup data couldn't be sent
[  118.149152][    C0] hid-thrustmaster 0003:044F:B65D.0003: URB to get model id failed with error -71
[  118.164563][    T9] usb 4-1: USB disconnect, device number 6
[  118.310022][ T7302] capability: warning: `syz.2.532' uses deprecated v2 capabilities in a way that may be insecure
[  118.743588][    T9] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  118.937077][    T9] usb 3-1: unable to get BOS descriptor or descriptor too short
[  118.949721][    T9] usb 3-1: config 1 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  118.960076][    T9] usb 3-1: config 1 interface 0 altsetting 2 endpoint 0x3 has invalid maxpacket 41895, setting to 1024
[  118.972779][    T9] usb 3-1: config 1 interface 0 altsetting 2 bulk endpoint 0x3 has invalid maxpacket 1024
[  118.983028][    T9] usb 3-1: config 1 interface 0 has no altsetting 0
[  118.994577][    T9] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  119.003864][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.011876][    T9] usb 3-1: Product: syz
[  119.016873][    T9] usb 3-1: Manufacturer: syz
[  119.021494][    T9] usb 3-1: SerialNumber: syz
[  119.030641][ T7307] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  119.038336][ T7307] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  119.077009][ T7326] loop3: detected capacity change from 0 to 2048
[  119.099332][ T7326] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.203029][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.281451][    T9] usb 3-1: bad CDC descriptors
[  119.297519][    T9] usb 3-1: USB disconnect, device number 6
[  119.417698][ T7332] loop4: detected capacity change from 0 to 40427
[  119.429852][ T7332] F2FS-fs (loop4): invalid crc value
[  119.437394][ T7332] F2FS-fs (loop4): Found nat_bits in checkpoint
[  119.467765][ T7332] F2FS-fs (loop4): Start checkpoint disabled!
[  119.509615][ T7332] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  119.599319][ T7336] netlink: 20 bytes leftover after parsing attributes in process `syz.3.547'.
[  119.648068][   T59] kworker/u4:4: attempt to access beyond end of device
[  119.648068][   T59] loop4: rw=1, sector=45096, nr_sectors = 8 limit=40427
[  119.672272][   T59] kworker/u4:4: attempt to access beyond end of device
[  119.672272][   T59] loop4: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  119.690745][   T59] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  119.698268][   T59] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  119.705818][   T59] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  120.011286][ T7348] loop0: detected capacity change from 0 to 256
[  120.044689][ T7348] exfat: Deprecated parameter 'utf8'
[  120.050066][ T7348] exfat: Deprecated parameter 'namecase'
[  120.077056][ T7348] exfat: Deprecated parameter 'namecase'
[  120.082811][ T7348] exfat: Deprecated parameter 'utf8'
[  120.118179][ T7348] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffad0, utbl_chksum : 0xe619d30d)
[  120.323465][    T9] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[  120.507030][    T9] usb 4-1: config index 0 descriptor too short (expected 69, got 36)
[  120.523406][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  120.543574][ T5792] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  120.555672][    T9] usb 4-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b7.89
[  120.568754][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.577468][    T9] usb 4-1: Product: syz
[  120.581679][    T9] usb 4-1: Manufacturer: syz
[  120.587827][    T9] usb 4-1: SerialNumber: syz
[  120.595227][    T9] usb 4-1: config 0 descriptor??
[  120.605343][    T9] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622
[  120.728450][ T7364] loop4: detected capacity change from 0 to 40427
[  120.737724][ T7364] F2FS-fs (loop4): heap/no_heap options were deprecated
[  120.751458][ T7364] F2FS-fs (loop4): invalid crc value
[  120.754760][ T5792] usb 1-1: Using ep0 maxpacket: 32
[  120.759223][ T7364] F2FS-fs (loop4): Found nat_bits in checkpoint
[  120.765104][ T5792] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  120.784877][ T5792] usb 1-1: config 0 has no interface number 0
[  120.791066][ T5792] usb 1-1: config 0 interface 184 has no altsetting 0
[  120.812483][ T5792] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  120.827819][ T7364] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  120.843467][ T5792] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.851512][ T5792] usb 1-1: Product: syz
[  120.863683][ T5792] usb 1-1: Manufacturer: syz
[  120.868766][ T5792] usb 1-1: SerialNumber: syz
[  120.886294][ T5792] usb 1-1: config 0 descriptor??
[  120.905565][ T5792] smsc75xx v1.0.0
[  120.909274][ T5792] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  120.924250][ T5792] smsc75xx: probe of 1-1:0.184 failed with error -22
[  120.940722][   T27] audit: type=1326 audit(1756232790.906:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7380 comm="syz.2.567" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b0cd8ebe9 code=0x0
[  120.941038][ T6887] syz-executor: attempt to access beyond end of device
[  120.941038][ T6887] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  120.979696][ T6887] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  121.148959][ T5853] usb 1-1: USB disconnect, device number 3
[  121.421786][    T9] gspca_pac7302: reg_w() failed i: 78 v: 40 error -71
[  121.431465][    T9] gspca_pac7302: probe of 4-1:0.0 failed with error -71
[  121.444883][    T9] usb 4-1: USB disconnect, device number 7
[  121.689166][ T7393] netlink: 'syz.4.572': attribute type 38 has an invalid length.
[  121.697253][ T7393] netlink: 4 bytes leftover after parsing attributes in process `syz.4.572'.
[  121.879559][ T7401] loop2: detected capacity change from 0 to 4096
[  121.908134][ T7401] NILFS (loop2): invalid segment: Checksum error in segment payload
[  121.917657][ T7402] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  121.927730][ T7401] NILFS (loop2): trying rollback from an earlier position
[  121.963851][ T7401] NILFS (loop2): recovery complete
[  122.377584][    T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  122.585693][    T9] usb 4-1: config index 0 descriptor too short (expected 39, got 27)
[  122.598137][    T9] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  122.618419][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  122.636857][    T9] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  122.655609][    T9] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  122.675380][    T9] usb 4-1: Product: syz
[  122.685531][    T9] usb 4-1: Manufacturer: syz
[  122.695457][    T9] usb 4-1: SerialNumber: syz
[  122.715422][    T9] usb 4-1: config 0 descriptor??
[  122.733819][    T9] hub 4-1:0.0: bad descriptor, ignoring hub
[  122.739759][    T9] hub: probe of 4-1:0.0 failed with error -5
[  122.750541][ T7422] loop2: detected capacity change from 0 to 8192
[  122.752337][    T9] usb 4-1: selecting invalid altsetting 0
[  122.778112][ T7422] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  122.801494][ T7422] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  122.823615][ T7422] REISERFS (device loop2): using ordered data mode
[  122.833429][ T7422] reiserfs: using flush barriers
[  122.850598][ T7422] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  122.856661][ T7417] loop0: detected capacity change from 0 to 32768
[  122.878001][ T7422] REISERFS (device loop2): checking transaction log (loop2)
[  122.885532][ T7417] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.583 (7417)
[  122.897292][ T7422] REISERFS (device loop2): Using r5 hash to sort names
[  122.913753][ T7422] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  122.922848][ T7417] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  122.953685][ T7417] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  122.964619][ T7417] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8)
[  122.974061][ T7417] BTRFS info (device loop0): use lzo compression, level 0
[  122.981291][ T7417] BTRFS info (device loop0): using free space tree
[  123.002613][   T27] audit: type=1800 audit(1756232792.966:13): pid=7422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.585" name="file1" dev="loop2" ino=2 res=0 errno=0
[  123.096213][ T7417] BTRFS info (device loop0): enabling ssd optimizations
[  123.104904][ T7417] BTRFS info (device loop0): auto enabling async discard
[  123.364622][ T5788] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  123.460060][ T7404] usb 4-1: reset high-speed USB device number 8 using dummy_hcd
[  123.589299][ T7442] loop4: detected capacity change from 0 to 32768
[  123.612466][ T7442] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.586 (7442)
[  123.638246][ T7442] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  123.661063][ T7442] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  123.679714][ T7442] BTRFS info (device loop4): setting nodatacow, compression disabled
[  123.693499][ T7442] BTRFS info (device loop4): max_inline at 0
[  123.700260][ T7442] BTRFS info (device loop4): enabling disk space caching
[  123.710269][ T7442] BTRFS info (device loop4): turning off barriers
[  123.718161][ T7404] usb 4-1: device firmware changed
[  123.728724][ T5853] usb 4-1: USB disconnect, device number 8
[  123.738385][ T7442] BTRFS info (device loop4): turning on flush-on-commit
[  123.764287][ T7442] BTRFS info (device loop4): doing ref verification
[  123.781186][ T7442] BTRFS info (device loop4): force clearing of disk cache
[  123.798571][ T7442] BTRFS info (device loop4): enabling ssd optimizations
[  123.805983][ T7442] BTRFS info (device loop4): max_inline at 4096
[  123.812338][ T7442] BTRFS info (device loop4): disk space caching is enabled
[  123.892934][ T7444] loop2: detected capacity change from 0 to 32768
[  123.902257][ T7444] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.594 (7444)
[  123.905807][ T7442] BTRFS info (device loop4): auto enabling async discard
[  123.925619][ T7442] BTRFS info (device loop4): rebuilding free space tree
[  123.939416][ T7444] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  123.949195][ T7442] BTRFS info (device loop4): disabling free space tree
[  123.949713][ T7444] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  123.958124][ T5853] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  123.965214][ T7444] BTRFS info (device loop2): enabling disk space caching
[  123.988887][ T7442] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  123.992540][ T7444] BTRFS info (device loop2): force clearing of disk cache
[  124.006363][ T7442] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  124.023588][ T7444] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  124.033052][ T7444] BTRFS info (device loop2): use zstd compression, level 3
[  124.040329][ T7444] BTRFS info (device loop2): disk space caching is enabled
[  124.147008][ T7444] BTRFS info (device loop2): enabling ssd optimizations
[  124.162700][ T7444] BTRFS info (device loop2): auto enabling async discard
[  124.184404][ T7444] BTRFS info (device loop2): rebuilding free space tree
[  124.187104][ T7479] loop0: detected capacity change from 0 to 128
[  124.202855][ T5853] usb 4-1: config index 0 descriptor too short (expected 39, got 27)
[  124.221645][ T5853] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  124.226126][ T7444] BTRFS info (device loop2): disabling free space tree
[  124.234959][ T5853] usb 4-1: config 0 interface 0 has no altsetting 0
[  124.247256][ T7444] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  124.247958][ T7479] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  124.258355][ T7444] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  124.286696][ T7479] ext4 filesystem being mounted at /135/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  124.319339][ T5853] usb 4-1: string descriptor 0 read error: -22
[  124.325843][ T5853] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  124.335867][ T5853] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  124.347228][ T5853] usb 4-1: config 0 descriptor??
[  124.364193][ T5853] hub 4-1:0.0: bad descriptor, ignoring hub
[  124.370137][ T5853] hub: probe of 4-1:0.0 failed with error -5
[  124.394293][ T5853] usb 4-1: selecting invalid altsetting 0
[  124.415497][ T6887] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  124.506700][ T5786] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  124.550397][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  124.803660][ T5853] usb 4-1: USB disconnect, device number 9
[  125.229338][ T7488] loop2: detected capacity change from 0 to 4096
[  125.287322][ T7488] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  125.323478][ T7488] ntfs3: loop2: Failed to load $Extend (-22).
[  125.329694][ T7488] ntfs3: loop2: Failed to initialize $Extend.
[  125.468097][ T7483] loop0: detected capacity change from 0 to 32768
[  125.494187][ T7483] JBD2: Ignoring recovery information on journal
[  125.585822][ T7490] loop4: detected capacity change from 0 to 32768
[  125.589325][ T7483] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  125.596672][ T7490] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz.4.592 (7490)
[  125.631677][ T7490] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  125.643446][   T54] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  125.653546][ T7490] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  125.676402][ T7490] BTRFS info (device loop4): force zlib compression, level 3
[  125.694676][ T7490] BTRFS info (device loop4): force clearing of disk cache
[  125.707981][ T7490] BTRFS info (device loop4): setting nodatasum
[  125.716677][ T7490] BTRFS info (device loop4): allowing degraded mounts
[  125.725859][ T7490] BTRFS info (device loop4): disabling free space tree
[  125.752433][   T27] audit: type=1800 audit(1756232795.716:14): pid=7483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.590" name="bus" dev="loop0" ino=17059 res=0 errno=0
[  125.849073][ T7490] BTRFS info (device loop4): enabling ssd optimizations
[  125.856721][ T7490] BTRFS info (device loop4): auto enabling async discard
[  125.867169][   T54] usb 4-1: Using ep0 maxpacket: 16
[  125.877106][ T7490] BTRFS info (device loop4): rebuilding free space tree
[  125.886903][   T54] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[  125.899462][ T7518] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  125.915785][ T7490] BTRFS info (device loop4): disabling free space tree
[  125.921240][ T5788] ocfs2: Unmounting device (7,0) on (node local)
[  125.929311][ T7490] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  125.939941][   T54] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.953525][   T54] usb 4-1: config 0 descriptor??
[  125.958909][ T7490] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  125.998997][   T54] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  126.180804][   T54] usb 4-1: Detected FT232B
[  126.216451][ T6887] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  126.253969][ T7528] loop2: detected capacity change from 0 to 256
[  126.378102][ T7528] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  126.396533][   T54] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  126.444351][   T54] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  126.653846][ T5853] usb 4-1: USB disconnect, device number 10
[  126.676221][ T5853] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  126.686949][ T5853] ftdi_sio 4-1:0.0: device disconnected
[  127.042379][ T7534] loop2: detected capacity change from 0 to 32768
[  127.055352][ T7530] loop0: detected capacity change from 0 to 40427
[  127.059818][ T7534] JBD2: Ignoring recovery information on journal
[  127.078426][ T7530] F2FS-fs (loop0): Found nat_bits in checkpoint
[  127.104959][ T7534] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  127.132017][ T7530] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  127.175304][ T7534] OCFS2: ERROR (device loop2): int ocfs2_reserve_local_alloc_bits(struct ocfs2_super *, u32, struct ocfs2_alloc_context *): local alloc inode 76 says it has 9 used bits, but a count shows 8
[  127.197034][ T5788] syz-executor: attempt to access beyond end of device
[  127.197034][ T5788] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  127.200869][ T7534] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  127.222844][ T7534] OCFS2: File system is now read-only.
[  127.229539][ T5788] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  127.240287][ T7534] (syz.2.605,7534,0):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30
[  127.250885][    T8] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  127.272156][ T7548] loop3: detected capacity change from 0 to 256
[  127.276435][ T7534] (syz.2.605,7534,0):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30
[  127.280145][ T7548] exfat: Deprecated parameter 'utf8'
[  127.298759][ T7548] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  127.311055][ T7534] (syz.2.605,7534,1):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30
[  127.334788][ T7534] (syz.2.605,7534,1):ocfs2_lock_allocators:2672 ERROR: status = -30
[  127.342819][ T7534] (syz.2.605,7534,1):ocfs2_write_begin_nolock:1744 ERROR: status = -30
[  127.351466][ T7534] (syz.2.605,7534,1):ocfs2_write_begin:1907 ERROR: status = -30
[  127.387162][   T27] audit: type=1800 audit(1756232797.356:15): pid=7548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.618" name="file3" dev="loop3" ino=1048612 res=0 errno=0
[  127.482972][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  127.496275][    T8] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  127.498988][ T5786] ocfs2: Unmounting device (7,2) on (node local)
[  127.523401][    T8] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  127.532461][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.594658][    T8] usb 5-1: config 0 descriptor??
[  127.605975][    T8] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  127.612637][    T8] dvb-usb: bulk message failed: -22 (3/0)
[  127.636842][    T8] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  127.664439][    T8] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  127.671548][    T8] usb 5-1: media controller created
[  127.695188][    T8] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  127.736158][    T8] dvb-usb: bulk message failed: -22 (6/0)
[  127.742336][    T8] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  127.766199][    T8] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input10
[  127.800280][    T8] dvb-usb: schedule remote query interval to 150 msecs.
[  127.823977][    T8] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  127.883905][ T7540] dibusb: i2c wr: len=61 is too big!
[  127.883905][ T7540] 
[  127.913048][    T8] usb 5-1: USB disconnect, device number 2
[  127.942907][    T8] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  128.193534][ T5853] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  128.271732][ T7567] loop2: detected capacity change from 0 to 512
[  128.373968][ T5853] usb 4-1: Using ep0 maxpacket: 32
[  128.380824][ T5853] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.392320][ T5853] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.402691][ T5853] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  128.403466][ T5792] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  128.412140][ T5853] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.429913][ T5853] usb 4-1: config 0 descriptor??
[  128.437719][ T5853] hub 4-1:0.0: USB hub found
[  128.616087][ T5792] usb 1-1: config 0 has no interfaces?
[  128.621627][ T5792] usb 1-1: New USB device found, idVendor=056a, idProduct=0045, bcdDevice= 0.00
[  128.642021][ T5792] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.650154][ T5853] hub 4-1:0.0: 1 port detected
[  128.655446][ T5792] usb 1-1: config 0 descriptor??
[  128.905854][ T7564] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.917822][ T7564] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.930273][   T23] usb 1-1: USB disconnect, device number 4
[  129.056119][ T5853] usb 4-1: USB disconnect, device number 11
[  129.313575][ T5792] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  129.413500][   T23] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  129.503698][ T5792] usb 5-1: Using ep0 maxpacket: 8
[  129.511087][ T5792] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  129.523004][ T5792] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  129.537581][ T5792] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  129.548495][ T5792] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  129.562297][ T5792] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  129.571695][ T5792] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.593520][   T23] usb 1-1: Using ep0 maxpacket: 8
[  129.605019][   T23] usb 1-1: config index 0 descriptor too short (expected 72, got 36)
[  129.618767][   T23] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  129.644399][   T23] usb 1-1: New USB device found, idVendor=0af0, idProduct=6751, bcdDevice= 1.08
[  129.662530][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.680839][   T23] usb 1-1: Product: syz
[  129.690955][   T23] usb 1-1: Manufacturer: syz
[  129.695722][   T23] usb 1-1: SerialNumber: syz
[  129.811448][ T5792] usb 5-1: GET_CAPABILITIES returned 0
[  129.833426][ T5792] usbtmc 5-1:16.0: can't read capabilities
[  129.896955][ T7626] loop2: detected capacity change from 0 to 512
[  129.904958][ T7626] EXT4-fs: Ignoring removed orlov option
[  129.911212][ T7626] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  129.931315][ T7626] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  129.956841][ T7626] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.645: corrupted in-inode xattr: e_value size too large
[  129.980048][ T7626] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.645: couldn't read orphan inode 15 (err -117)
[  129.995198][ T7626] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.054238][   T23] usb 1-1: USB disconnect, device number 5
[  130.073581][ T5839] usb 5-1: USB disconnect, device number 3
[  130.108663][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.148277][ T7634] netlink: 8 bytes leftover after parsing attributes in process `syz.3.649'.
[  130.549240][ T7647] loop2: detected capacity change from 0 to 32768
[  130.557715][ T7647] (syz.2.654,7647,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  130.575068][ T7647] (syz.2.654,7647,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  130.608298][ T7647] JBD2: Ignoring recovery information on journal
[  130.682933][ T7647] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  130.796523][ T7659] binfmt_misc: register: failed to install interpreter file ./file0
[  130.891457][ T5786] ocfs2: Unmounting device (7,2) on (node local)
[  130.961590][ T7661] loop0: detected capacity change from 0 to 1024
[  130.993442][ T5888] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  131.025184][   T59] hfsplus: b-tree write err: -5, ino 4
[  131.089015][ T7665] loop0: detected capacity change from 0 to 256
[  131.097215][ T7665] exfat: Deprecated parameter 'utf8'
[  131.102574][ T7665] exfat: Deprecated parameter 'namecase'
[  131.113078][ T7665] exfat: Deprecated parameter 'namecase'
[  131.120229][ T7665] exfat: Deprecated parameter 'utf8'
[  131.135884][ T7665] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  131.198720][ T5888] usb 5-1: Using ep0 maxpacket: 16
[  131.220174][ T5888] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  131.220246][ T7667] loop2: detected capacity change from 0 to 4096
[  131.238476][ T5888] usb 5-1: config 0 has no interface number 0
[  131.261490][ T5888] usb 5-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d
[  131.272425][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.291751][ T5888] usb 5-1: Product: syz
[  131.296434][ T5888] usb 5-1: Manufacturer: syz
[  131.301356][ T5888] usb 5-1: SerialNumber: syz
[  131.318942][ T5888] usb 5-1: config 0 descriptor??
[  131.337074][ T5888] usb 5-1: Quirk or no altest; falling back to MIDI 1.0
[  131.435510][ T7673] input: syz1 as /devices/virtual/input/input11
[  131.578807][ T5888] usb 5-1: USB disconnect, device number 4
[  131.916259][ T7691] loop3: detected capacity change from 0 to 512
[  131.927828][ T7691] EXT4-fs: Ignoring removed oldalloc option
[  131.957624][ T7691] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.971604][ T7679] loop2: detected capacity change from 0 to 32768
[  132.001693][ T7691] ext4 filesystem being mounted at /165/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.107395][ T7691] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.672: bg 0: block 217: padding at end of block bitmap is not set
[  132.245651][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.261541][ T7689] loop0: detected capacity change from 0 to 32768
[  132.293522][ T7689] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  132.322076][ T7689] XFS (loop0): Ending clean mount
[  132.337381][ T7708] loop3: detected capacity change from 0 to 512
[  132.361498][ T7708] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.378741][ T7708] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.404058][ T7708] EXT4-fs error (device loop3): ext4_generic_delete_entry:2729: inode #12: block 32: comm syz.3.677: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0
[  132.433289][ T7708] EXT4-fs (loop3): Remounting filesystem read-only
[  132.436474][ T5788] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  132.462234][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.553823][ T5888] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  132.660718][ T7714] loop3: detected capacity change from 0 to 1024
[  132.668168][ T7714] EXT4-fs: Ignoring removed orlov option
[  132.674548][ T7714] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.684494][ T7714] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  132.745509][ T5888] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  132.755226][ T5888] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  132.769538][ T5888] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  132.779598][ T5888] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  132.780735][ T7714] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.791232][ T5888] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  132.818439][ T5888] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  132.833372][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  132.841384][ T5888] usb 5-1: Product: syz
[  132.845606][ T5888] usb 5-1: Manufacturer: syz
[  132.856363][ T5888] cdc_wdm 5-1:1.0: skipping garbage
[  132.861607][ T5888] cdc_wdm 5-1:1.0: skipping garbage
[  132.883654][ T5888] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  132.889604][ T5888] cdc_wdm 5-1:1.0: Unknown control protocol
[  132.938043][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  132.944451][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  132.958263][ T7722] loop0: detected capacity change from 0 to 1024
[  132.970630][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.000767][ T7722] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.071770][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.088943][ T5888] usb 5-1: USB disconnect, device number 5
[  133.147059][ T7731] netlink: 20 bytes leftover after parsing attributes in process `syz.3.684'.
[  133.322561][ T7738] loop3: detected capacity change from 0 to 2048
[  133.346616][ T7738] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  133.562259][ T7742] loop3: detected capacity change from 0 to 47
[  133.698993][ T7748] loop3: detected capacity change from 0 to 64
[  133.776504][   T27] audit: type=1800 audit(1756232803.746:16): pid=7748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.691" name="file1" dev="loop3" ino=21 res=0 errno=0
[  134.473416][ T5792] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  134.683639][ T5792] usb 3-1: Using ep0 maxpacket: 32
[  134.694679][ T5792] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[  134.714295][ T5792] usb 3-1: config 0 has no interface number 0
[  134.727864][ T5792] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  134.735943][ T7763] loop3: detected capacity change from 0 to 32768
[  134.754522][ T5792] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0
[  134.773092][ T5792] usb 3-1: config 0 interface 85 has no altsetting 0
[  134.776682][ T7763] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  134.791134][ T5792] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  134.810171][ T5792] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.831795][ T5792] usb 3-1: Product: syz
[  134.844520][ T5792] usb 3-1: Manufacturer: syz
[  134.858156][   T27] audit: type=1326 audit(1756232804.826:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40d38ebe9 code=0x7ffc0000
[  134.880516][ T5792] usb 3-1: SerialNumber: syz
[  134.887735][   T27] audit: type=1326 audit(1756232804.826:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40d38ebe9 code=0x7ffc0000
[  134.910954][ T5792] usb 3-1: config 0 descriptor??
[  134.921961][ T7763] XFS (loop3): Ending clean mount
[  134.952484][   T27] audit: type=1326 audit(1756232804.826:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff40d38ebe9 code=0x7ffc0000
[  134.974908][ T5792] usb 3-1: can't set config #0, error -71
[  134.982447][ T5792] usb 3-1: USB disconnect, device number 7
[  134.989636][   T27] audit: type=1326 audit(1756232804.826:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40d38ebe9 code=0x7ffc0000
[  135.019459][ T7763] XFS (loop3): Quotacheck needed: Please wait.
[  135.026762][   T27] audit: type=1326 audit(1756232804.826:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40d38ebe9 code=0x7ffc0000
[  135.071253][   T27] audit: type=1326 audit(1756232804.826:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff40d38ebe9 code=0x7ffc0000
[  135.103149][ T7763] XFS (loop3): Quotacheck: Done.
[  135.122146][   T27] audit: type=1326 audit(1756232804.876:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff40d38ebe9 code=0x7ffc0000
[  135.146616][   T27] audit: type=1326 audit(1756232804.906:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7ff40d38ebe9 code=0x7ffc0000
[  135.169560][   T27] audit: type=1326 audit(1756232804.906:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.4.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff40d385ba7 code=0x7ffc0000
[  135.259212][ T7791] program syz.4.707 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  135.270686][ T5789] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  135.362513][ T7795] veth1_to_batadv: entered promiscuous mode
[  135.700679][ T7808] block nbd0: Unsupported socket: shutdown callout must be supported.
[  135.703467][ T7806] pimreg: tun_chr_ioctl cmd 1074025673
[  136.121052][ T7802] loop3: detected capacity change from 0 to 32768
[  136.141357][ T7802] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  136.171117][ T7802] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  136.230469][ T7824] loop0: detected capacity change from 0 to 4096
[  136.241185][ T7824] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  136.513161][ T5789] ocfs2: Unmounting device (7,3) on (node local)
[  136.800094][ T7841] loop3: detected capacity change from 0 to 512
[  136.844999][ T7841] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  136.883242][ T7841] EXT4-fs (loop3): 1 truncate cleaned up
[  136.904659][ T7841] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.939979][ T7848] loop6: detected capacity change from 0 to 524287999
[  136.964873][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  136.974108][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  136.997886][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.007123][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.020871][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.030081][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.047702][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.056964][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.066375][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.075599][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.084072][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.093264][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.103390][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.112557][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.122298][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.131500][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.139424][ T7848] ldm_validate_partition_table(): Disk read failed.
[  137.146428][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.155703][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.168651][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  137.177882][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  137.188331][ T7848] Dev loop6: unable to read RDB block 0
[  137.195374][ T7848]  loop6: unable to read partition table
[  137.203946][ T7848] loop_reread_partitions: partition scan of loop6 (3��x��C�

) failed (rc=-5)
[  137.245054][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.641570][ T7861] loop4: detected capacity change from 0 to 2048
[  137.651885][ T7861] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=3932051, location=3932051
[  137.675716][ T7861] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  137.921091][ T7869] loop4: detected capacity change from 0 to 1024
[  138.001085][ T7869] hfsplus: b-tree write err: -5, ino 3
[  138.080499][  T140] hfsplus: bad catalog file entry
[  138.113405][ T5792] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  138.265903][ T7875] loop4: detected capacity change from 0 to 2048
[  138.318012][ T5792] usb 4-1: config 0 has an invalid interface number: 104 but max is 0
[  138.330257][ T7875] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  138.339448][ T5792] usb 4-1: config 0 has no interface number 0
[  138.353382][ T5792] usb 4-1: config 0 interface 104 has no altsetting 0
[  138.372793][ T5792] usb 4-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9
[  138.392186][ T5792] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.411337][ T5792] usb 4-1: Product: syz
[  138.420904][ T5792] usb 4-1: Manufacturer: syz
[  138.431246][ T5792] usb 4-1: SerialNumber: syz
[  138.452168][ T5792] usb 4-1: config 0 descriptor??
[  138.466335][ T5792] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  138.667297][ T5792] gspca_vc032x: reg_r err -71
[  138.672040][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.688116][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.708347][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.733923][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.753549][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.758872][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.783560][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.803383][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.808705][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.827996][ T7879] loop4: detected capacity change from 0 to 512
[  138.844800][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.850124][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.860233][ T7873] loop0: detected capacity change from 0 to 32768
[  138.871210][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.878610][ T7879] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  138.887354][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.892651][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.903498][ T7873] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.742 (7873)
[  138.920506][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.926199][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.931511][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.951021][ T5792] gspca_vc032x: I2c Bus Busy Wait 00
[  138.965995][ T7879] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.984706][ T7873] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  139.003475][ T5792] gspca_vc032x: Unknown sensor...
[  139.008591][ T5792] vc032x: probe of 4-1:0.104 failed with error -22
[  139.019866][ T7879] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.033616][ T7873] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  139.057434][ T5792] usb 4-1: USB disconnect, device number 12
[  139.075876][ T7873] BTRFS info (device loop0): enabling disk space caching
[  139.106687][ T7873] BTRFS info (device loop0): enabling auto defrag
[  139.118425][ T7873] BTRFS info (device loop0): turning on sync discard
[  139.125736][ T7873] BTRFS info (device loop0): use no compression
[  139.132362][ T7873] BTRFS info (device loop0): force clearing of disk cache
[  139.140530][ T7873] BTRFS info (device loop0): turning on async discard
[  139.149694][ T7873] BTRFS info (device loop0): disabling disk space caching
[  139.151379][   T27] kauditd_printk_skb: 3 callbacks suppressed
[  139.151391][   T27] audit: type=1800 audit(1756232809.126:29): pid=7879 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.745" name="file1" dev="loop4" ino=15 res=0 errno=0
[  139.263436][   T27] audit: type=1800 audit(1756232809.166:30): pid=7879 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.745" name="file2" dev="loop4" ino=16 res=0 errno=0
[  139.263972][ T6887] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.303423][ T7890] input: syz0 as /devices/virtual/input/input12
[  139.414442][ T7873] BTRFS info (device loop0): enabling ssd optimizations
[  139.424577][ T7873] BTRFS info (device loop0): rebuilding free space tree
[  139.453651][ T7873] BTRFS info (device loop0): disabling free space tree
[  139.461632][ T7873] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  139.472177][ T7873] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  139.485723][ T7902] loop3: detected capacity change from 0 to 512
[  139.536738][ T7902] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  139.565074][ T7902] EXT4-fs (loop3): orphan cleanup on readonly fs
[  139.635721][ T5788] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  139.657557][ T7902] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #16: comm syz.3.748: corrupted inode contents
[  139.699029][ T7902] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #16: comm syz.3.748: mark_inode_dirty error
[  139.769051][ T7902] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #16: comm syz.3.748: corrupted inode contents
[  139.808565][ T7902] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #16: comm syz.3.748: mark_inode_dirty error
[  139.850990][ T7902] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #16: comm syz.3.748: corrupted inode contents
[  139.888267][ T7902] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  139.928245][ T7902] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #16: comm syz.3.748: corrupted inode contents
[  139.940746][ T7902] EXT4-fs error (device loop3): ext4_truncate:4288: inode #16: comm syz.3.748: mark_inode_dirty error
[  139.959292][ T7902] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  139.980881][ T7902] EXT4-fs (loop3): 1 truncate cleaned up
[  139.994217][ T1081] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  140.039148][ T1081] EXT4-fs error (device loop3): ext4_release_dquot:6974: comm kworker/u4:6: Failed to release dquot type 1
[  140.100419][ T7902] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.189572][ T7911] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.191160][ T7911] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.271820][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.795204][ T7925] overlay: filesystem on ./file0 is read-only
[  140.975652][ T7929] loop4: detected capacity change from 0 to 1024
[  141.028054][ T7929] hfsplus: bad catalog entry type
[  141.091937][ T3460] hfsplus: b-tree write err: -5, ino 4
[  141.270667][ T7821] Set syz1 is full, maxelem 65536 reached
[  141.367893][ T7937] syzkaller1: tun_chr_ioctl cmd 1074025677
[  141.378435][ T7937] syzkaller1: linktype set to 32
[  141.778903][ T7953] loop2: detected capacity change from 0 to 4096
[  141.845773][ T7953] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  141.872600][ T7953] ntfs3: loop2: ino=9, attr_set_size
[  141.885488][    T8] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  142.095111][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.133619][    T8] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  142.149624][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.166185][    T8] usb 1-1: config 0 descriptor??
[  142.195631][ T7966] Falling back ldisc for ttyS3.
[  142.466683][ T7962] loop4: detected capacity change from 0 to 32768
[  142.486452][ T7962] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.520646][ T7962] XFS (loop4): Ending clean mount
[  142.535642][ T7962] XFS (loop4): Quotacheck needed: Please wait.
[  142.553540][ T5853] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  142.577753][ T7962] XFS (loop4): Quotacheck: Done.
[  142.603690][    T8] keytouch 0003:0926:3333.0004: fixing up Keytouch IEC report descriptor
[  142.631003][    T8] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0004/input/input13
[  142.653232][ T7986] loop2: detected capacity change from 0 to 64
[  142.661382][ T7986] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[  142.678678][ T6887] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.764092][ T5853] usb 4-1: Using ep0 maxpacket: 16
[  142.777075][ T5853] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.800272][ T5853] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  142.806492][    T8] keytouch 0003:0926:3333.0004: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  142.810572][ T5853] usb 4-1: New USB device found, idVendor=054c, idProduct=05c4, bcdDevice= 0.00
[  142.832220][ T5853] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.854376][ T5853] usb 4-1: config 0 descriptor??
[  142.906712][ T7988] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  142.913777][ T7988] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  142.926775][ T7988] vhci_hcd vhci_hcd.0: Device attached
[  142.938460][ T7989] vhci_hcd: connection closed
[  142.942632][ T1081] vhci_hcd: stop threads
[  142.964158][ T1081] vhci_hcd: release socket
[  142.968675][ T1081] vhci_hcd: disconnect device
[  143.023587][ T5888] usb 1-1: USB disconnect, device number 6
[  143.291077][ T5853] playstation 0003:054C:05C4.0005: hidraw0: USB HID v0.00 Device [HID 054c:05c4] on usb-dummy_hcd.3-1/input0
[  143.477542][ T5853] playstation 0003:054C:05C4.0005: Invalid byte count transferred, expected 16 got 0
[  143.487469][ T5853] playstation 0003:054C:05C4.0005: Failed to retrieve DualShock4 pairing info: -22
[  143.502108][ T5853] playstation 0003:054C:05C4.0005: Failed to get MAC address from DualShock4
[  143.511329][ T5853] playstation 0003:054C:05C4.0005: Failed to create dualshock4.
[  143.525008][ T5853] playstation: probe of 0003:054C:05C4.0005 failed with error -22
[  143.682359][ T8017] loop0: detected capacity change from 0 to 512
[  143.730027][    T8] usb 4-1: USB disconnect, device number 13
[  143.919927][ T8027] tap0: tun_chr_ioctl cmd 2147767517
[  144.322552][ T8038] loop4: detected capacity change from 0 to 32768
[  144.343802][ T8038] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  144.423749][ T6887] ocfs2: Unmounting device (7,4) on (node local)
[  144.463597][    T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  144.517956][ T8050] loop3: detected capacity change from 0 to 16
[  144.532155][ T8050] erofs: (device loop3): mounted with root inode @ nid 36.
[  144.549991][ T8050] erofs: (device loop3): erofs_read_inode: bogus i_mode (0) @ nid 0
[  144.673122][    T9] usb 1-1: Using ep0 maxpacket: 32
[  144.685623][    T9] usb 1-1: config 0 interface 0 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  144.708890][    T9] usb 1-1: config 0 interface 0 has no altsetting 0
[  144.722363][    T9] usb 1-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  144.741706][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.767871][    T9] usb 1-1: config 0 descriptor??
[  145.059158][ T8052] loop4: detected capacity change from 0 to 32768
[  145.112131][ T8054] loop3: detected capacity change from 0 to 40427
[  145.130831][ T8052] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  145.145207][ T8054] F2FS-fs (loop3): invalid crc value
[  145.182237][ T8054] F2FS-fs (loop3): Found nat_bits in checkpoint
[  145.233783][    T9] corsair-cpro 0003:1B1C:0C10.0006: unknown main item tag 0x0
[  145.251119][    T9] corsair-cpro 0003:1B1C:0C10.0006: unknown main item tag 0x0
[  145.271222][    T9] corsair-cpro 0003:1B1C:0C10.0006: item fetching failed at offset 2/5
[  145.272577][ T8054] F2FS-fs (loop3): Start checkpoint disabled!
[  145.281744][    T9] corsair-cpro: probe of 0003:1B1C:0C10.0006 failed with error -22
[  145.305946][ T8054] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  145.315026][ T6887] ocfs2: Unmounting device (7,4) on (node local)
[  145.346219][ T8054] syz.3.814: attempt to access beyond end of device
[  145.346219][ T8054] loop3: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  145.365388][ T8054] syz.3.814: attempt to access beyond end of device
[  145.365388][ T8054] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  145.462230][ T5839] usb 1-1: USB disconnect, device number 7
[  145.505160][ T5853] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  145.521280][ T3439] kworker/u4:8: attempt to access beyond end of device
[  145.521280][ T3439] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  145.536019][ T3439] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  145.543221][ T3439] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  145.699122][ T5853] usb 3-1: Using ep0 maxpacket: 8
[  145.706775][ T5853] usb 3-1: unable to get BOS descriptor or descriptor too short
[  145.708262][ T8075] loop4: detected capacity change from 0 to 128
[  145.715913][ T5853] usb 3-1: config 4 interface 0 has no altsetting 0
[  145.733104][ T8075] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  145.747871][ T8075] ext4 filesystem being mounted at /132/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  145.758355][ T5853] usb 3-1: string descriptor 0 read error: -22
[  145.764792][ T5853] usb 3-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  145.773933][ T5853] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.794924][ T5853] usb 3-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  145.805794][ T5853] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  145.816642][ T5853] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  145.823904][ T5853] usb 3-1: media controller created
[  145.845704][ T6887] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  145.848234][ T5853] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  145.927996][ T8079] syz.4.824[8079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  145.928129][ T8079] syz.4.824[8079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.152783][ T8089] netlink: 20 bytes leftover after parsing attributes in process `syz.3.820'.
[  146.251722][ T8091] loop0: detected capacity change from 0 to 512
[  146.262365][ T8091] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.828: iget: bad extended attribute block 1
[  146.283482][ T8091] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.828: couldn't read orphan inode 15 (err -117)
[  146.332345][ T8096] loop3: detected capacity change from 0 to 4096
[  146.345609][ T8096] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.347934][ T8091] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.401204][   T27] audit: type=1800 audit(1756232816.366:31): pid=8091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.828" name="file2" dev="loop0" ino=16 res=0 errno=0
[  146.452897][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.468743][   T27] audit: type=1800 audit(1756232816.366:32): pid=8096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.830" name="file1" dev="loop3" ino=15 res=0 errno=0
[  146.508426][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.783102][    T8] IPVS: starting estimator thread 0...
[  146.876510][ T8117] ipvlan2: entered promiscuous mode
[  146.886504][ T8114] IPVS: using max 23 ests per chain, 55200 per kthread
[  146.901392][ T8117] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  146.911808][ T8117] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  147.129790][ T5853] usb 3-1: USB disconnect, device number 8
[  147.443515][   T54] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  147.583768][ T8123] loop3: detected capacity change from 0 to 32768
[  147.602159][ T8123] 
[  147.602159][ T8123]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  147.602159][ T8123] 
[  147.633079][ T8123] JFS: metapage_get_blocks failed
[  147.647650][   T54] usb 1-1: Using ep0 maxpacket: 8
[  147.659686][ T8123] ERROR: (device loop3): release_metapage: metapage_write_one() failed
[  147.659686][ T8123] 
[  147.682860][   T54] usb 1-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  147.698165][   T54] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.706116][ T8123] ERROR: (device loop3): diWrite: ixpxd invalid
[  147.706116][ T8123] 
[  147.706269][ T8123] ERROR: (device loop3): txCommit: 
[  147.706269][ T8123] 
[  147.727212][   T54] usb 1-1: Product: syz
[  147.731407][   T54] usb 1-1: Manufacturer: syz
[  147.736461][   T54] usb 1-1: SerialNumber: syz
[  147.738250][ T8127] ERROR: (device loop3): diWrite: ixpxd invalid
[  147.738250][ T8127] 
[  147.743291][   T54] usb 1-1: config 0 descriptor??
[  147.761669][   T54] gspca_main: se401-2.14.0 probing 047d:5003
[  147.783514][ T8127] ERROR: (device loop3): txCommit: 
[  147.783514][ T8127] 
[  147.850983][ T5789] 
[  147.850983][ T5789]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  147.850983][ T5789] 
[  147.874520][ T5789] 
[  147.874520][ T5789]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  147.874520][ T5789] 
[  148.086252][ T8132] netlink: 8 bytes leftover after parsing attributes in process `syz.4.847'.
[  148.171619][   T54] gspca_se401: Frame size: 0x0 1/16th janggu
[  148.187906][   T54] gspca_se401: Frame size: 0x0 1/16th janggu
[  148.203684][   T54] gspca_se401: Frame size: 0x0 1/16th janggu
[  148.209705][   T54] gspca_se401: Frame size: 0x0 1/16th janggu
[  148.243383][   T54] gspca_se401: Frame size: 0x0 1/16th janggu
[  148.249425][   T54] gspca_se401: Frame size: 0x0 1/16th janggu
[  148.302050][ T8128] loop2: detected capacity change from 0 to 40427
[  148.319412][ T8128] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  148.333542][ T8128] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  148.377085][   T54] input: se401 as /devices/platform/dummy_hcd.0/usb1/1-1/input/input14
[  148.391358][ T8128] F2FS-fs (loop2): invalid crc value
[  148.418896][ T8128] F2FS-fs (loop2): Found nat_bits in checkpoint
[  148.424868][   T54] usb 1-1: USB disconnect, device number 8
[  148.530006][ T8128] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  148.540436][ T8128] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  148.632262][ T5786] syz-executor: attempt to access beyond end of device
[  148.632262][ T5786] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  148.640453][ T8153] loop3: detected capacity change from 0 to 128
[  148.653931][ T8153] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  148.669219][ T5786] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  149.072293][ T8166] loop0: detected capacity change from 0 to 8
[  149.277136][ T8170] loop4: detected capacity change from 0 to 64
[  149.432485][ T8177] loop2: detected capacity change from 0 to 1024
[  149.457937][ T8177] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  150.013659][ T5888] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  150.044326][ T8194] sctp: [Deprecated]: syz.3.873 (pid 8194) Use of int in max_burst socket option.
[  150.044326][ T8194] Use struct sctp_assoc_value instead
[  150.176712][ T8199] loop0: detected capacity change from 0 to 32768
[  150.200137][ T8199] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  150.218315][ T5888] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  150.228909][ T5888] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3
[  150.238443][ T5888] usb 5-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[  150.248061][ T5888] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.259607][ T5888] usb 5-1: config 0 descriptor??
[  150.305845][ T5788] ocfs2: Unmounting device (7,0) on (node local)
[  150.674309][ T5888] Bluetooth: Can't get version to change to load ram patch err
[  150.727386][ T5888] Bluetooth: Loading patch file failed
[  150.737461][ T5888] ath3k: probe of 5-1:0.0 failed with error -71
[  150.758130][ T5888] usb 5-1: USB disconnect, device number 6
[  150.829672][ T8216] netlink: 12 bytes leftover after parsing attributes in process `syz.2.881'.
[  151.470095][ T8240] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  151.477464][ T8240] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  151.591185][ T8229] loop0: detected capacity change from 0 to 32768
[  151.608219][ T8229] JBD2: Ignoring recovery information on journal
[  151.638884][ T8229] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  151.700288][ T5788] ocfs2: Unmounting device (7,0) on (node local)
[  152.229795][ T8266] loop0: detected capacity change from 0 to 64
[  152.258077][ T8266] hfs: unable to locate alternate MDB
[  152.273457][ T8266] hfs: continuing without an alternate MDB
[  152.380326][ T8272] loop2: detected capacity change from 0 to 1024
[  152.396326][ T8272] EXT4-fs: Ignoring removed bh option
[  152.431031][ T8272] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  152.452203][ T8281] loop3: detected capacity change from 0 to 512
[  152.478166][ T8281] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  152.503446][ T8281] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  152.520320][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  152.546043][ T8281] EXT4-fs (loop3): 1 truncate cleaned up
[  152.552921][ T8281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.678244][ T8281] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[  152.688079][ T8291] io-wq is not configured for unbound workers
[  152.696048][ T8281] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[  152.779412][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.238172][ T8313] loop0: detected capacity change from 0 to 4096
[  153.255697][ T8313] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  153.323061][ T8320] loop3: detected capacity change from 0 to 4096
[  153.379197][   T27] audit: type=1800 audit(1756232823.346:33): pid=8320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.924" name="file1" dev="loop3" ino=33 res=0 errno=0
[  153.398460][ T8313] ntfs3: loop0: ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ntfs_sync_inode failed, -22.
[  153.418507][   T27] audit: type=1800 audit(1756232823.366:34): pid=8320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.924" name="file1" dev="loop3" ino=33 res=0 errno=0
[  153.539649][   T59] ntfs3: loop0: ino=1e, ntfs3_write_inode failed, -22.
[  153.763753][ T8335] loop7: detected capacity change from 0 to 7
[  153.772959][ T8335] Dev loop7: unable to read RDB block 7
[  153.788033][ T8335]  loop7: unable to read partition table
[  153.795977][ T8335] loop7: partition table beyond EOD, truncated
[  153.802282][ T8335] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  153.826987][ T8335] Dev loop7: unable to read RDB block 7
[  153.832774][ T8335]  loop7: unable to read partition table
[  153.846902][ T8335] loop7: partition table beyond EOD, truncated
[  153.862795][ T8338] loop2: detected capacity change from 0 to 64
[  153.891854][ T8318] loop4: detected capacity change from 0 to 32768
[  153.913060][ T8318] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.089880][ T8318] XFS (loop4): Ending clean mount
[  154.190813][ T6887] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.523662][ T5888] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  154.713443][ T5888] usb 3-1: Using ep0 maxpacket: 32
[  154.721132][ T5888] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  154.732226][ T5888] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.733536][ T5853] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  154.754893][ T5888] usb 3-1: config 0 descriptor??
[  154.764787][ T5888] gspca_main: sunplus-2.14.0 probing 041e:400b
[  154.943406][ T5853] usb 4-1: Using ep0 maxpacket: 32
[  154.963730][ T5853] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  154.971849][ T5853] usb 4-1: config 0 has no interface number 0
[  154.980704][ T5853] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  154.989809][ T5853] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.997886][ T5853] usb 4-1: Product: syz
[  155.002059][ T5853] usb 4-1: Manufacturer: syz
[  155.006868][ T5853] usb 4-1: SerialNumber: syz
[  155.013970][ T5853] usb 4-1: config 0 descriptor??
[  155.022352][ T5853] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  155.156088][ T8386] loop0: detected capacity change from 0 to 40427
[  155.168672][ T8386] F2FS-fs (loop0): invalid crc value
[  155.178436][ T8386] F2FS-fs (loop0): Found nat_bits in checkpoint
[  155.229349][ T8386] F2FS-fs (loop0): Start checkpoint disabled!
[  155.239769][ T5853] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  155.252243][ T8386] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  155.252483][ T5853] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  155.306094][ T8386] syz.0.953: attempt to access beyond end of device
[  155.306094][ T8386] loop0: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  155.320399][ T8386] syz.0.953: attempt to access beyond end of device
[  155.320399][ T8386] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  155.435570][ T1081] kworker/u4:6: attempt to access beyond end of device
[  155.435570][ T1081] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  155.449771][ T1081] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  155.459491][ T1081] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  155.579803][ T5888] gspca_sunplus: reg_w_riv err -71
[  155.589780][ T5888] sunplus: probe of 3-1:0.0 failed with error -71
[  155.598691][ T5888] usb 3-1: USB disconnect, device number 9
[  155.673270][    C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[  155.674485][    T9] usb 4-1: USB disconnect, device number 14
[  155.697191][    T9] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  155.712771][    T9] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  155.726248][    T9] quatech2 4-1:0.51: device disconnected
[  155.793507][    T8] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  155.975005][    T8] usb 5-1: Using ep0 maxpacket: 32
[  155.982203][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.997485][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.007416][    T8] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  156.016547][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.027559][    T8] usb 5-1: config 0 descriptor??
[  156.035054][    T8] hub 5-1:0.0: USB hub found
[  156.194463][ T8404] loop2: detected capacity change from 0 to 512
[  156.218488][ T8404] EXT4-fs: Ignoring removed nobh option
[  156.224052][ T8402] loop0: detected capacity change from 0 to 32768
[  156.232829][ T8402] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.960 (8402)
[  156.254054][ T8402] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  156.254438][ T8404] EXT4-fs error (device loop2): __ext4_iget:5053: inode #11: block 1: comm syz.2.961: invalid block
[  156.264561][ T8402] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  156.288826][ T8402] BTRFS info (device loop0): enabling ssd optimizations
[  156.293602][    T8] hub 5-1:0.0: config failed, can't read hub descriptor (err -90)
[  156.296279][ T8402] BTRFS info (device loop0): using spread ssd allocation scheme
[  156.311377][ T8402] BTRFS info (device loop0): setting nodatacow, compression disabled
[  156.315214][ T8404] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.961: couldn't read orphan inode 11 (err -117)
[  156.319546][ T8402] BTRFS info (device loop0): not using ssd optimizations
[  156.339841][ T8404] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.343274][ T8402] BTRFS info (device loop0): not using spread ssd allocation scheme
[  156.360959][ T8402] BTRFS info (device loop0): max_inline at 0
[  156.367012][ T8402] BTRFS info (device loop0): using free space tree
[  156.382191][ T8408] loop3: detected capacity change from 0 to 1024
[  156.390772][ T8408] EXT4-fs (loop3): VFS: Can't find ext4 filesystem
[  156.412936][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.431871][ T8402] BTRFS info (device loop0): auto enabling async discard
[  156.491471][ T5788] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  156.539201][ T8426] syz.3.962 (8426): attempted to duplicate a private mapping with mremap.  This is not supported.
[  156.738668][    T8] hid-generic 0003:046D:C31C.0007: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.4-1/input0
[  157.036411][    T9] usb 5-1: USB disconnect, device number 7
[  157.068905][ T5839] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  157.197692][ T8446] loop3: detected capacity change from 0 to 2048
[  157.204666][ T8446] EXT4-fs: Ignoring removed mblk_io_submit option
[  157.211111][ T8446] EXT4-fs: Ignoring removed nobh option
[  157.283678][ T5839] usb 3-1: Using ep0 maxpacket: 32
[  157.288765][ T8446] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.324132][ T5839] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.343475][ T5839] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.353240][ T5839] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  157.389815][ T5839] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.404252][ T5839] usb 3-1: config 0 descriptor??
[  157.427529][ T5839] hub 3-1:0.0: USB hub found
[  157.502251][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.655365][ T5839] hub 3-1:0.0: 1 port detected
[  157.840856][ T8459] loop0: detected capacity change from 0 to 1024
[  157.926777][ T8459] hfsplus: invalid extended attribute record
[  157.989816][ T1081] hfsplus: b-tree write err: -5, ino 8
[  158.029531][ T5839] usb 3-1: USB disconnect, device number 10
[  158.083768][    T9] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  158.130835][ T8466] loop4: detected capacity change from 0 to 4096
[  158.141893][ T8466] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  158.190260][ T8466] ntfs3: loop4: ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ntfs_sync_inode failed, -22.
[  158.241537][   T48] ntfs3: loop4: ino=1e, ntfs3_write_inode failed, -22.
[  158.273532][    T9] usb 4-1: Using ep0 maxpacket: 32
[  158.281724][    T9] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[  158.293186][    T9] usb 4-1: config 0 has no interface number 0
[  158.304893][    T9] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  158.316936][    T9] usb 4-1: config 0 interface 85 has no altsetting 0
[  158.338452][    T9] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  158.353409][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.368717][    T9] usb 4-1: Product: syz
[  158.383361][    T9] usb 4-1: Manufacturer: syz
[  158.388157][    T9] usb 4-1: SerialNumber: syz
[  158.405839][    T9] usb 4-1: config 0 descriptor??
[  158.424464][ T8475] loop0: detected capacity change from 0 to 64
[  158.750542][ T8489] loop2: detected capacity change from 0 to 1024
[  159.039311][    T9] appletouch 4-1:0.85: Geyser mode initialized.
[  159.055081][    T9] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.85/input/input15
[  159.163541][ T5839] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  159.259360][    T9] usb 4-1: USB disconnect, device number 15
[  159.279822][    T9] appletouch 4-1:0.85: input: appletouch disconnected
[  159.358626][ T8500] loop4: detected capacity change from 0 to 32768
[  159.365581][ T5839] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  159.369526][ T8500] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop4 scanned by syz.4.994 (8500)
[  159.388116][ T5839] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2
[  159.388170][ T5839] usb 3-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  159.388190][ T5839] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.408942][ T5839] usb 3-1: config 0 descriptor??
[  159.428399][ T5839] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  159.428990][ T8500] BTRFS info (device loop4): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  159.443490][ T5839] dvb-usb: bulk message failed: -22 (3/0)
[  159.450772][ T8500] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  159.460729][ T5839] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  159.461125][ T8500] BTRFS info (device loop4): using free space tree
[  159.474140][ T5839] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  159.482905][ T5839] usb 3-1: media controller created
[  159.489969][ T5839] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  159.502059][ T5839] dvb-usb: bulk message failed: -22 (6/0)
[  159.509821][ T5839] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  159.527426][ T5839] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input16
[  159.541159][ T8500] BTRFS info (device loop4): enabling ssd optimizations
[  159.541404][ T5839] dvb-usb: schedule remote query interval to 150 msecs.
[  159.555402][ T5839] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  159.566243][ T8500] BTRFS info (device loop4): auto enabling async discard
[  159.662119][ T6887] BTRFS info (device loop4): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  159.685365][ T8496] dibusb: i2c wr: len=61 is too big!
[  159.685365][ T8496] 
[  159.695471][ T5839] usb 3-1: USB disconnect, device number 11
[  159.721497][ T5839] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  160.334329][ T8546] input: syz1 as /devices/virtual/input/input17
[  160.673527][ T8561] loop4: detected capacity change from 0 to 1024
[  160.778634][  T140] hfsplus: b-tree write err: -5, ino 4
[  160.836881][ T8545] loop3: detected capacity change from 0 to 32768
[  160.878538][ T8545] JBD2: Ignoring recovery information on journal
[  160.981747][ T8545] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  161.067519][ T8571] loop4: detected capacity change from 0 to 64
[  161.143230][ T8545] OCFS2: ERROR (device loop3): int ocfs2_reserve_local_alloc_bits(struct ocfs2_super *, u32, struct ocfs2_alloc_context *): local alloc inode 76 says it has 9 used bits, but a count shows 8
[  161.170040][ T8545] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  161.182132][ T8545] OCFS2: File system is now read-only.
[  161.192411][ T8545] (syz.3.1008,8545,0):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30
[  161.201581][ T8545] (syz.3.1008,8545,0):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30
[  161.214407][ T8545] (syz.3.1008,8545,0):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30
[  161.223933][ T8545] (syz.3.1008,8545,0):ocfs2_lock_allocators:2672 ERROR: status = -30
[  161.232200][ T8545] (syz.3.1008,8545,0):ocfs2_write_begin_nolock:1744 ERROR: status = -30
[  161.240622][ T8545] (syz.3.1008,8545,0):ocfs2_write_begin:1907 ERROR: status = -30
[  161.335012][ T5789] ocfs2: Unmounting device (7,3) on (node local)
[  161.541695][ T8582] Bluetooth: MGMT ver 1.22
[  161.571958][ T8586] loop2: detected capacity change from 0 to 256
[  163.377702][ T8609] netlink: 'syz.4.1032': attribute type 3 has an invalid length.
[  163.882758][ T8617] loop0: detected capacity change from 0 to 32768
[  163.892303][ T8617] (syz.0.1036,8617,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  163.913076][ T8617] (syz.0.1036,8617,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  163.947271][ T8617] JBD2: Ignoring recovery information on journal
[  163.998562][ T8617] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  164.013015][ T8619] loop2: detected capacity change from 0 to 32768
[  164.031992][ T8619] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  164.081451][ T8617] binfmt_misc: register: failed to install interpreter file ./file0
[  164.093443][    T9] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  164.115918][ T5786] ocfs2: Unmounting device (7,2) on (node local)
[  164.178057][ T5788] ocfs2: Unmounting device (7,0) on (node local)
[  164.294557][    T9] usb 5-1: config 0 has an invalid interface number: 104 but max is 0
[  164.302769][    T9] usb 5-1: config 0 has no interface number 0
[  164.317164][    T9] usb 5-1: config 0 interface 104 has no altsetting 0
[  164.339003][    T9] usb 5-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9
[  164.348359][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.357685][    T9] usb 5-1: Product: syz
[  164.361882][    T9] usb 5-1: Manufacturer: syz
[  164.369997][    T9] usb 5-1: SerialNumber: syz
[  164.380414][    T9] usb 5-1: config 0 descriptor??
[  164.394861][    T9] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  164.602501][    T9] gspca_vc032x: reg_r err -71
[  164.607567][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.612872][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.623433][ T5839] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  164.636980][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.649091][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.654911][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.660220][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.665883][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.671185][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.681111][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.686701][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.691999][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.697975][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.703682][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.708992][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.715117][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.720424][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.726103][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.731406][    T9] gspca_vc032x: I2c Bus Busy Wait 00
[  164.737332][    T9] gspca_vc032x: Unknown sensor...
[  164.743996][    T9] vc032x: probe of 5-1:0.104 failed with error -22
[  164.752723][    T9] usb 5-1: USB disconnect, device number 8
[  164.768315][ T8634] netlink: 'syz.2.1043': attribute type 3 has an invalid length.
[  164.827356][ T5839] usb 1-1: Using ep0 maxpacket: 8
[  164.835036][ T5839] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  164.851648][ T5839] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  164.861804][ T5839] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  164.876212][ T5839] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  164.879222][ T8638] loop2: detected capacity change from 0 to 256
[  164.890385][ T5839] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  164.896862][ T8638] exfat: Deprecated parameter 'utf8'
[  164.908683][ T5839] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.917021][ T8638] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  164.967451][   T27] audit: type=1800 audit(1756232834.936:35): pid=8638 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1045" name="file3" dev="loop2" ino=1048620 res=0 errno=0
[  165.143410][ T5839] usb 1-1: GET_CAPABILITIES returned 0
[  165.148975][ T5839] usbtmc 1-1:16.0: can't read capabilities
[  165.253643][ T5800] Bluetooth: hci4: command 0x1003 tx timeout
[  165.262751][ T5791] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  165.372626][    T9] usb 1-1: USB disconnect, device number 9
[  165.470663][ T8652] loop2: detected capacity change from 0 to 16
[  165.481435][ T8652] erofs: (device loop2): mounted with root inode @ nid 36.
[  165.509903][ T8652] syz.2.1051: attempt to access beyond end of device
[  165.509903][ T8652] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[  165.527800][ T8652] syz.2.1051: attempt to access beyond end of device
[  165.527800][ T8652] loop2: rw=524288, sector=16, nr_sectors = 16 limit=16
[  165.544127][ T8652] syz.2.1051: attempt to access beyond end of device
[  165.544127][ T8652] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[  165.610074][ T5786] BUG: Bad page state in process syz-executor  pfn:5fcb2
[  165.618011][ T5786] page:ffffea00017f2c80 refcount:0 mapcount:0 mapping:ffff8880593f17d0 index:0x2 pfn:0x5fcb2
[  165.628309][ T5786] aops:z_erofs_cache_aops ino:0
[  165.633207][ T5786] flags: 0xfff00000000001(locked|node=0|zone=1|lastcpupid=0x7ff)
[  165.641008][ T5786] page_type: 0xffffffff()
[  165.645430][ T5786] raw: 00fff00000000001 dead000000000100 dead000000000122 ffff8880593f17d0
[  165.654387][ T5786] raw: 0000000000000002 0000000000000000 00000000ffffffff 0000000000000000
[  165.662988][ T5786] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  165.670780][ T5786] page_owner tracks the page as allocated
[  165.677254][ T5786] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x192840(GFP_NOWAIT|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 8652, tgid 8651 (syz.2.1051), ts 165509801148, free_ts 157659237053
[  165.699318][ T5786]  post_alloc_hook+0x1cd/0x210
[  165.704147][ T5786]  get_page_from_freelist+0x195c/0x19f0
[  165.709721][ T5786]  __alloc_pages+0x1e3/0x460
[  165.714473][ T5786]  z_erofs_do_read_page+0x20c0/0x3680
[  165.719866][ T5786]  z_erofs_pcluster_readmore+0x2cf/0x450
[  165.725548][ T5786]  z_erofs_read_folio+0x208/0x540
[  165.730006][ T8656] loop3: detected capacity change from 0 to 8192
[  165.730570][ T5786]  filemap_read_folio+0x167/0x760
[  165.741996][ T5786]  do_read_cache_folio+0x470/0x7e0
[  165.747269][ T5786]  erofs_bread+0x16f/0x630
[  165.751708][ T5786]  erofs_namei+0x28c/0xf00
[  165.756268][ T5786]  erofs_lookup+0x135/0x310
[  165.760798][ T5786]  __lookup_slow+0x281/0x3b0
[  165.765492][ T5786]  lookup_slow+0x53/0x70
[  165.768756][ T8656] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  165.770138][ T5786]  walk_component+0x2be/0x3f0
[  165.787617][ T5786]  path_lookupat+0x169/0x440
[  165.792229][ T5786]  filename_lookup+0x1f4/0x510
[  165.797077][ T5786] page last free stack trace:
[  165.801763][ T5786]  free_unref_page_prepare+0x7ce/0x8e0
[  165.807350][ T5786]  free_unref_page_list+0xbe/0x860
[  165.812483][ T5786]  release_pages+0x1fa0/0x2220
[  165.817510][ T5786]  tlb_flush_mmu+0x368/0x4f0
[  165.817681][ T8656] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  165.822108][ T5786]  tlb_finish_mmu+0xc3/0x1d0
[  165.822134][ T5786]  exit_mmap+0x3f0/0xb50
[  165.836866][ T8656] REISERFS (device loop3): using ordered data mode
[  165.840150][ T5786]  __mmput+0x118/0x3c0
[  165.840171][ T5786]  exit_mm+0x1da/0x2c0
[  165.847775][ T8656] reiserfs: using flush barriers
[  165.850812][ T5786]  do_exit+0x88e/0x23c0
[  165.864139][ T5786]  do_group_exit+0x21b/0x2d0
[  165.869151][ T5786]  __x64_sys_exit_group+0x3f/0x40
[  165.874303][ T5786]  do_syscall_64+0x55/0xb0
[  165.878733][ T5786]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  165.884757][ T5786] Modules linked in:
[  165.888688][ T5786] CPU: 1 PID: 5786 Comm: syz-executor Not tainted 6.6.102-syzkaller #0
[  165.896933][ T5786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  165.906991][ T5786] Call Trace:
[  165.910264][ T5786]  <TASK>
[  165.913191][ T5786]  dump_stack_lvl+0x16c/0x230
[  165.917871][ T5786]  ? show_regs_print_info+0x20/0x20
[  165.923065][ T5786]  ? swiotlb_print_info+0x70/0x70
[  165.928092][ T5786]  bad_page+0x14b/0x170
[  165.932241][ T5786]  free_unref_page_prepare+0x887/0x8e0
[  165.937704][ T5786]  free_unref_page+0x32/0x2e0
[  165.942378][ T5786]  ? __folio_put+0xef/0x210
[  165.946875][ T5786]  erofs_try_to_free_all_cached_pages+0x295/0x600
[  165.953292][ T5786]  erofs_shrink_workstation+0x118/0x290
[  165.958846][ T5786]  ? erofs_shrinker_unregister+0x170/0x170
[  165.964652][ T5786]  ? io_schedule+0xd0/0xd0
[  165.969069][ T5786]  ? kobject_put+0x43c/0x470
[  165.973674][ T5786]  erofs_shrinker_unregister+0x5d/0x170
[  165.979237][ T5786]  erofs_put_super+0x4e/0x150
[  165.983911][ T5786]  ? erofs_free_inode+0xb0/0xb0
[  165.988754][ T5786]  generic_shutdown_super+0x134/0x2b0
[  165.994125][ T5786]  kill_block_super+0x44/0x90
[  165.998789][ T5786]  erofs_kill_sb+0x4c/0x140
[  166.003309][ T5786]  deactivate_locked_super+0x97/0x100
[  166.008676][ T5786]  cleanup_mnt+0x429/0x4c0
[  166.013087][ T5786]  task_work_run+0x1ce/0x250
[  166.017674][ T5786]  ? task_work_cancel+0x240/0x240
[  166.022693][ T5786]  ? exit_to_user_mode_loop+0x3b/0x110
[  166.028148][ T5786]  exit_to_user_mode_loop+0xe6/0x110
[  166.033425][ T5786]  exit_to_user_mode_prepare+0xb1/0x140
[  166.038961][ T5786]  syscall_exit_to_user_mode+0x1a/0x50
[  166.044411][ T5786]  do_syscall_64+0x61/0xb0
[  166.048816][ T5786]  ? clear_bhb_loop+0x40/0x90
[  166.053480][ T5786]  ? clear_bhb_loop+0x40/0x90
[  166.058144][ T5786]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  166.064030][ T5786] RIP: 0033:0x7f2b0cd8ff17
[  166.068443][ T5786] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  166.088045][ T5786] RSP: 002b:00007ffc30868c08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  166.096450][ T5786] RAX: 0000000000000000 RBX: 00007f2b0ce11c05 RCX: 00007f2b0cd8ff17
[  166.104412][ T5786] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc30868cc0
[  166.112374][ T5786] RBP: 00007ffc30868cc0 R08: 0000000000000000 R09: 0000000000000000
[  166.120336][ T5786] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc30869d50
[  166.128296][ T5786] R13: 00007f2b0ce11c05 R14: 00000000000286a9 R15: 00007ffc30869d90
[  166.136272][ T5786]  </TASK>
[  166.139961][ T5786] Disabling lock debugging due to kernel taint
[  166.146770][ T8656] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  166.170260][ T8656] REISERFS (device loop3): checking transaction log (loop3)
[  166.180076][ T8656] REISERFS (device loop3): Using r5 hash to sort names
[  166.188160][ T8656] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.