last executing test programs:

6.543979861s ago: executing program 3 (id=1302):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xd06d000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock2(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1)

4.26971147s ago: executing program 2 (id=1326):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000300)=ANY=[@ANYBLOB='partition=00000000000000000007,iocharset=iso8859-3,utf8,dmode=00000000000000000000017,longad,iocharset=maccroatian,uid=', @ANYRESDEC=0x0, @ANYBLOB=',dmode=00000000000000000400004,nostrict,gid=forget,undelete,gid=forget,gid=', @ANYRESDEC=0x0, @ANYBLOB='$\x00'], 0x1, 0xc80, &(0x7f0000001bc0)="$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")
creat(&(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x44)
r0 = open(&(0x7f0000000040)='.\x00', 0x20000, 0x0)
getdents64(r0, &(0x7f0000000fc0)=""/224, 0xe0)

4.141869084s ago: executing program 3 (id=1329):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$inet(r1, &(0x7f0000005300)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000001c0)="48f53b8198800acead6e5f2e346af0f1", 0x10}], 0x1}}], 0x1, 0x2000c010)

3.863898483s ago: executing program 3 (id=1331):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000ec0)={'batadv0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000540), r0)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)={0x1c, r2, 0x303, 0x70bd27, 0xfffffffc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0)

3.788532225s ago: executing program 4 (id=1332):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000280)={r1, r1, 0xfffb, 0x0, 0x0, 0x9, 0xb2, 0x2, 0x5508, 0xff, 0x5, 0x5, 'syz0\x00'})

3.773178236s ago: executing program 2 (id=1333):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'streebog512\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmsg$can_j1939(r1, &(0x7f0000001400)={0x0, 0x0, 0x0}, 0x2003)

3.451078165s ago: executing program 2 (id=1335):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x81ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x38)

3.450847445s ago: executing program 3 (id=1336):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

3.053321797s ago: executing program 2 (id=1339):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xd06d000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock2(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1)

2.692563678s ago: executing program 4 (id=1343):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@bridge_dellink={0x2c, 0x13, 0x1, 0x0, 0x4, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x5, 0x0, 0x1, {0x4}}]}]}, 0x2c}}, 0x0)

2.476344345s ago: executing program 3 (id=1345):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r1 = syz_io_uring_setup(0x112, &(0x7f00000002c0)={0x0, 0xf59b, 0x0, 0x10003, 0xda}, &(0x7f0000000140), &(0x7f0000000280), &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000480), 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

2.364075699s ago: executing program 4 (id=1347):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="0815000000051104000000000000000001000005540201"], 0x1508}}, 0x10)
sendmsg$AUDIT_DEL_RULE(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000006c0)=ANY=[@ANYBLOB="20040000f4"], 0x420}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
writev(r0, &(0x7f0000000040), 0x2)

2.106538946s ago: executing program 0 (id=1349):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x81ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x38)

2.105898576s ago: executing program 3 (id=1350):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f00000069c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5531, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000440)="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")

2.081933147s ago: executing program 1 (id=1351):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003200)=ANY=[@ANYBLOB="3801000010000100feffe1ff000100b4a5880000000000000000000000000001fc0100000080004e272d7ee504000008dc000000000000000000000080000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c00000020010000000000000000000000000002000000000000000092010000000000000600000000000000ffff0000000000001c25080000000000fffffffffffffffff8ffffffffffffff0000000000000000ffffffffffffffff00000000000000001f00000000000000feffffffffffffff02000000fcffffff000000002abd700004350000020001002000000000000000480003"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x844)

1.935893452s ago: executing program 4 (id=1352):
r0 = socket(0x15, 0x5, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f0000000040), 0x10)

1.804184216s ago: executing program 1 (id=1353):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000003c0)={0x0, 0x0, 0x80800, 0x0, <r1=>0xffffffffffffffff})
r2 = dup3(r1, r0, 0x80000)
ioctl$DRM_IOCTL_SET_MASTER(r2, 0x641e)

1.700032048s ago: executing program 0 (id=1354):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20004001}, 0x4000018)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310007000008000a40fffffffc14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x94}, 0x24000000)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a68000000090a010400000000000000000a0000040900020073797a310000000008000a40fffffffc0900010073797a3100000000080005400000000d18001280e1140180090001006c617374000000000400028008000340000001"], 0x90}, 0x1, 0x0, 0x0, 0x4044050}, 0x4000000)

1.63647777s ago: executing program 4 (id=1355):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x8, 0x8}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000840)={r1}, 0xc)

1.523881834s ago: executing program 1 (id=1356):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nobarrier}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x10}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.swap.current\x00', 0x275a, 0x0)

1.391869028s ago: executing program 0 (id=1357):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000680)={0x2008})
sendmmsg(r0, &(0x7f0000005000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

1.305210771s ago: executing program 4 (id=1358):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f0000000240)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@inode64}, {@heartbeat_none}, {@inode64}]}, 0x0, 0x4703, &(0x7f0000004800)="$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")
lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f00000021c0), 0x0, 0x0, 0x0)
capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340))
listxattr(&(0x7f00000002c0)='./file0\x00', 0x0, 0x0)

1.058697138s ago: executing program 0 (id=1359):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000000)=0x1ff, 0x4)
sendto$inet(r0, 0x0, 0xffef, 0x20000000, &(0x7f0000000240)={0x2, 0x4e22, @remote}, 0x10)
setsockopt$inet_int(r0, 0x0, 0xb, 0x0, 0x0)

981.44313ms ago: executing program 1 (id=1360):
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000000c0)='./file1\x00', 0x204888, &(0x7f0000000380)=ANY=[@ANYBLOB="756e695f786c6174653d312c696f636861727365743d757466382c0097b75cbdde02821d0f899c2377ee9577397fc18b433d0c59e692b381740ca495e1c145c5922679338b5ff21c0653a98440a5725268a242c0263564f988d3c178704feaf8a412df818275708882ea9a4048c6e458a1f05b83f2e69b965b1df203b21de2b0ee375647f886a5310889982079aa7b1fb42e2382d40feefe7f768eec58b19cf50faaf129503175f4262df740183df51d3641ff78b86127c1db8ef165bfa3bd20797fde6ff91a0e45d3d7c1c6d1ce0a72be8c1fdb00000000"], 0x1, 0x336, &(0x7f0000000880)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000100)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000480)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

980.60609ms ago: executing program 2 (id=1361):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x82c0, 0x8)
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000000)=0x4)

815.992476ms ago: executing program 0 (id=1362):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x24, r1, 0x331, 0x1d, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}}, 0x0)

559.442233ms ago: executing program 0 (id=1363):
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d1d7a440041601801f44010203010902120001000000000904"], 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0xdc3, 0x0)
syz_usb_disconnect(r0)
syz_open_procfs(0x0, &(0x7f0000000600)='fd/4\x00')

423.227437ms ago: executing program 1 (id=1364):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003200)=@newsa={0x15c, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x0, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {0x800, 0x192, 0x2, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0x7}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @lifetime_val={0x24, 0x9, {0xf, 0xedcb, 0x9, 0x100}}]}, 0x15c}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000940)=@newsa={0x138, 0x1a, 0x1, 0xfffffffe, 0x100, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x717, 0x4e23, 0x5, 0xa, 0x0, 0x20, 0x2b}, {@in6=@mcast2, 0x4d4, 0x6c}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, {0x100, 0x1000000000000192, 0x8000000009ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc, 0x4}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffe, 0x3f9, 0x5}, 0x7e, 0x3505, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x844)

205.93µs ago: executing program 1 (id=1365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x81ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x38)

0s ago: executing program 2 (id=1366):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x3, 0x400, 0x43, 0x42}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20)

kernel console output (not intermixed with test programs):

fy the problem(s)
[  134.135311][ T5245] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.314: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  134.190448][ T4278] XFS (loop2): Unmounting Filesystem
[  134.196764][ T5245] EXT4-fs error (device loop0): ext4_orphan_get:1410: comm syz.0.314: couldn't read orphan inode 11 (err -117)
[  134.283584][ T5245] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  134.511389][ T4275] EXT4-fs (loop0): unmounting filesystem.
[  134.553305][ T5223] loop1: detected capacity change from 0 to 40427
[  134.635728][ T5223] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  134.664880][ T5223] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  134.722647][ T5223] F2FS-fs (loop1): build fault injection attr: rate: 2, type: 0x3ffff
[  134.746616][ T4320] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  134.766872][ T5223] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x1f8
[  134.803108][ T5223] F2FS-fs (loop1): invalid crc value
[  134.853010][ T5223] F2FS-fs (loop1): Found nat_bits in checkpoint
[  134.949753][ T4320] usb 4-1: Using ep0 maxpacket: 8
[  134.960640][ T4320] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  135.020230][ T4320] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  135.062046][ T4320] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  135.121294][ T4320] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  135.148067][ T5223] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  135.155222][ T5223] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  135.165148][ T4320] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  135.195980][ T4320] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  135.224009][ T4320] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.337159][ T5223] F2FS-fs (loop1) : inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xd6/0x1c0
[  135.511620][ T4320] usb 4-1: GET_CAPABILITIES returned 0
[  135.520419][ T4320] usbtmc 4-1:16.0: can't read capabilities
[  135.684308][ T5274] loop4: detected capacity change from 0 to 256
[  135.734882][ T5276] raw_sendmsg: syz.1.323 forgot to set AF_INET. Fix it!
[  135.745184][ T4320] usb 4-1: USB disconnect, device number 6
[  136.356549][ T5290] overlayfs: failed to resolve './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  137.166465][ T4323] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  137.464775][ T5319] bridge_slave_0: default FDB implementation only supports local addresses
[  137.606648][ T4323] usb 5-1: Using ep0 maxpacket: 16
[  137.614648][ T4323] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  137.666799][ T4323] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  137.704259][ T4323] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  137.734720][ T4323] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.763175][ T4323] usb 5-1: config 0 descriptor??
[  137.817734][ T5322] loop1: detected capacity change from 0 to 4096
[  138.007343][ T4320] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  138.110025][ T4279] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[  138.130050][ T4279] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  138.170186][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  138.177423][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  138.200002][ T4323] HID 045e:07da: Invalid code 65791 type 1
[  138.219768][ T4320] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  138.237076][ T4323] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0004/input/input10
[  138.246772][ T4320] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.282110][ T4323] microsoft 0003:045E:07DA.0004: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  138.289221][ T4320] usb 1-1: config 0 interface 0 has no altsetting 0
[  138.315246][ T5316] loop3: detected capacity change from 0 to 32768
[  138.336399][ T4320] usb 1-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  138.395913][ T4320] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.447312][ T4320] usb 1-1: config 0 descriptor??
[  138.596462][ T5316] XFS (loop3): Mounting V5 Filesystem
[  138.661583][ T4319] usb 5-1: USB disconnect, device number 2
[  138.736630][ T5342] fido_id[5342]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory
[  138.828211][ T5316] XFS (loop3): Ending clean mount
[  138.900115][ T4320] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[  138.923181][ T4320] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[  138.961090][ T4320] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[  138.994841][ T4320] hid-steam 0003:28DE:1102.0005: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.0-1/input0
[  139.035142][ T4272] XFS (loop3): Unmounting Filesystem
[  139.163999][ T4319] usb 1-1: USB disconnect, device number 6
[  139.198482][ T5351] loop1: detected capacity change from 0 to 4096
[  139.297289][ T5351] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  139.438311][ T5353] fido_id[5353]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  139.816839][ T4323] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  140.026438][ T4323] usb 4-1: Using ep0 maxpacket: 32
[  140.034403][ T4323] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  140.095229][ T4323] usb 4-1: config 0 has no interface number 0
[  140.122636][ T4323] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  140.142894][ T4323] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.172542][ T4323] usb 4-1: Product: syz
[  140.197347][ T4323] usb 4-1: Manufacturer: syz
[  140.202049][ T4323] usb 4-1: SerialNumber: syz
[  140.227515][ T4323] usb 4-1: config 0 descriptor??
[  140.241485][ T4323] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  140.266921][ T1171] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  140.461101][ T4323] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  140.474192][ T1171] usb 5-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  140.499195][ T5355] loop2: detected capacity change from 0 to 40427
[  140.506655][ T1171] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.522630][ T4323] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  140.545455][ T1171] usb 5-1: config 0 descriptor??
[  140.575654][ T5355] F2FS-fs (loop2): invalid crc value
[  140.628944][ T5355] F2FS-fs (loop2): Found nat_bits in checkpoint
[  140.712039][ T5359] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  140.746665][ T5359] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  140.847396][ T5382] netlink: 4 bytes leftover after parsing attributes in process `syz.0.368'.
[  140.868718][ T5355] F2FS-fs (loop2): Start checkpoint disabled!
[  140.926262][ T5355] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  141.007207][    C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[  141.010284][ T3044] usb 4-1: USB disconnect, device number 7
[  141.019937][ T1171] [drm:udl_init] *ERROR* Selecting channel failed
[  141.048794][ T3044] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  141.061018][ T1171] [drm] Initialized udl 0.0.1 20120220 for 5-1:0.0 on minor 2
[  141.098043][ T1171] [drm] Initialized udl on minor 2
[  141.113430][   T26] audit: type=1800 audit(1779278879.250:4): pid=5355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.359" name="file1" dev="loop2" ino=10 res=0 errno=0
[  141.138192][ T1171] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  141.158312][ T1171] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  141.165680][ T3044] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  141.191709][ T1171] usb 5-1: USB disconnect, device number 3
[  141.218840][ T3044] quatech2 4-1:0.51: device disconnected
[  141.228143][ T4323] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  141.262014][ T4323] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  141.292410][ T4323] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  141.494511][   T41] kworker/u4:2: attempt to access beyond end of device
[  141.494511][   T41] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  141.955964][ T5398] loop4: detected capacity change from 0 to 1024
[  142.014972][ T5398] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  142.058721][ T5398] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.605825][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  142.615659][ T5395] netlink: 'syz.1.375': attribute type 4 has an invalid length.
[  143.120108][ T5420] loop3: detected capacity change from 0 to 512
[  143.158697][ T5423] loop2: detected capacity change from 0 to 512
[  143.181427][ T5420] EXT4-fs: Ignoring removed orlov option
[  143.213790][ T5420] EXT4-fs (loop3): Test dummy encryption mode enabled
[  143.242244][ T5420] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  143.322770][ T5420] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  143.386750][ T5420] EXT4-fs (loop3): 1 truncate cleaned up
[  143.402070][ T5420] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  143.688757][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  143.902513][ T5436] loop0: detected capacity change from 0 to 256
[  143.913933][ T5425] loop1: detected capacity change from 0 to 32768
[  143.948907][ T5436] FAT-fs (loop0): Unrecognized mount option "uni^xlate=0" or missing value
[  144.102632][ T5425] XFS (loop1): Mounting V5 Filesystem
[  144.245344][ T5425] XFS (loop1): Ending clean mount
[  144.450192][ T5457] loop4: detected capacity change from 0 to 16
[  144.523479][ T4279] XFS (loop1): Unmounting Filesystem
[  144.530957][ T5457] erofs: (device loop4): mounted with root inode @ nid 36.
[  144.670994][ T5463] loop3: detected capacity change from 0 to 256
[  144.744194][ T5463] exfat: Deprecated parameter 'namecase'
[  144.816731][ T5463] exfat: Deprecated parameter 'namecase'
[  144.836522][ T4320] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  144.861234][ T5463] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc232f927, utbl_chksum : 0xe619d30d)
[  145.026681][ T4320] usb 5-1: Using ep0 maxpacket: 16
[  145.038368][ T4320] usb 5-1: config 1 has an invalid descriptor of length 108, skipping remainder of the config
[  145.089875][ T4320] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  145.162841][ T4320] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  145.177966][ T5472] loop1: detected capacity change from 0 to 512
[  145.194248][ T4320] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.227751][ T4320] usb 5-1: Product: syz
[  145.232042][ T4320] usb 5-1: Manufacturer: syz
[  145.242222][ T5472] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  145.265302][ T4320] usb 5-1: SerialNumber: syz
[  145.286662][ T5472] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.391636][ T5472] EXT4-fs (loop1): shut down requested (2)
[  145.526172][ T4320] usb 5-1: 0:2 : does not exist
[  145.554703][ T4320] usb 5-1: 5:0: failed to get current value for ch 0 (-22)
[  145.634111][ T4279] EXT4-fs (loop1): unmounting filesystem.
[  145.667783][ T4320] usb 5-1: USB disconnect, device number 4
[  145.744775][ T4396] udevd[4396]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  146.066480][ T4319] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  146.183135][ T5491] program syz.1.421 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  146.196590][ T3044] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  146.246585][ T4319] usb 3-1: Using ep0 maxpacket: 16
[  146.265813][ T4319] usb 3-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  146.304620][ T4319] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.334817][ T4319] usb 3-1: Product: syz
[  146.340611][ T4319] usb 3-1: Manufacturer: syz
[  146.345285][ T4319] usb 3-1: SerialNumber: syz
[  146.374991][ T4319] usb 3-1: config 0 descriptor??
[  146.406433][ T3044] usb 1-1: Using ep0 maxpacket: 8
[  146.429095][ T3044] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  146.441542][ T3044] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.472120][ T3044] pvrusb2: Hardware description: Terratec Grabster AV400
[  146.479514][ T3044] pvrusb2: **********
[  146.483814][ T3044] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  146.509604][ T3044] pvrusb2: Important functionality might not be entirely working.
[  146.559781][ T3044] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  146.609109][ T3044] pvrusb2: **********
[  146.648295][ T5501] netlink: 8 bytes leftover after parsing attributes in process `syz.1.415'.
[  146.674665][ T2310] pvrusb2: Invalid write control endpoint
[  146.797628][ T4319] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  146.818046][ T4319] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  146.867662][ T5505] netlink: 104 bytes leftover after parsing attributes in process `syz.4.416'.
[  146.877901][ T4319] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  146.878676][ T2310] pvrusb2: Invalid write control endpoint
[  146.885936][ T4319] usb 3-1: media controller created
[  146.906696][    T7] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  146.925627][ T4323] usb 1-1: USB disconnect, device number 7
[  146.933927][ T2310] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  146.953471][ T2310] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  146.961737][ T4319] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  146.969168][ T2310] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  147.001074][ T2310] pvrusb2: Device being rendered inoperable
[  147.013363][ T2310] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  147.027849][ T2310] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  147.029280][ T4319] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  147.056456][ T2310] pvrusb2: Attached sub-driver cx25840
[  147.069436][ T4319] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  147.079766][ T2310] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  147.106776][ T2310] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  147.128389][    T7] usb 4-1: Using ep0 maxpacket: 16
[  147.135717][    T7] usb 4-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 25
[  147.202398][ T5511] loop1: detected capacity change from 0 to 128
[  147.205821][    T7] usb 4-1: config 0 interface 0 has no altsetting 0
[  147.224370][    T7] usb 4-1: New USB device found, idVendor=146b, idProduct=0902, bcdDevice= 0.00
[  147.281321][    T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.315060][    T7] usb 4-1: config 0 descriptor??
[  147.345225][ T1171] usb 3-1: USB disconnect, device number 5
[  147.439215][ T1171] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  147.761995][    T7] hid (null): invalid report_size 918321780
[  147.778832][    T7] bigben 0003:146B:0902.0006: unexpected rdesc, please submit for review
[  147.798215][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x0
[  147.825663][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x0
[  147.843899][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x0
[  147.860140][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x0
[  147.868868][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x0
[  147.876819][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x0
[  147.883962][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0xe
[  147.891512][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x2
[  147.903700][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x1
[  147.923727][    T7] bigben 0003:146B:0902.0006: unknown main item tag 0x1
[  147.944046][    T7] bigben 0003:146B:0902.0006: invalid report_size 918321780
[  147.956571][ T3044] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  147.964285][    T7] bigben 0003:146B:0902.0006: item 0 4 1 7 parsing failed
[  147.984686][    T7] bigben 0003:146B:0902.0006: parse failed
[  147.993415][    T7] bigben: probe of 0003:146B:0902.0006 failed with error -22
[  148.034242][    T7] usb 4-1: USB disconnect, device number 8
[  148.146400][ T3044] usb 2-1: Using ep0 maxpacket: 16
[  148.168096][ T3044] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  148.182398][ T3044] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  148.204025][ T3044] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  148.214652][ T3044] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.232142][ T3044] usb 2-1: config 0 descriptor??
[  148.654081][ T3044] HID 045e:07da: Invalid code 65791 type 1
[  148.672249][ T3044] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0007/input/input11
[  148.763480][ T3044] microsoft 0003:045E:07DA.0007: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  149.113259][ T4319] usb 2-1: USB disconnect, device number 9
[  149.188836][ T4396] udevd[4396]: setting mode of /dev/input/event4 to 020660 failed: No such file or directory
[  149.229011][ T4396] udevd[4396]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  149.306218][ T5538] fido_id[5538]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  149.502377][ T5541] loop3: detected capacity change from 0 to 8192
[  149.578038][ T5541] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  149.741095][ T5541] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  149.761199][ T5541] REISERFS (device loop3): using ordered data mode
[  149.781181][ T5541] reiserfs: using flush barriers
[  149.808707][ T5541] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  149.877960][ T5541] REISERFS (device loop3): checking transaction log (loop3)
[  149.926746][ T5549] netlink: 'syz.4.435': attribute type 3 has an invalid length.
[  149.955031][ T5549] netlink: 72 bytes leftover after parsing attributes in process `syz.4.435'.
[  149.987598][ T5551] loop1: detected capacity change from 0 to 8
[  150.278519][ T5541] REISERFS (device loop3): Using r5 hash to sort names
[  150.310322][ T5541] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  150.674970][ T5556] reiserfs: enabling write barrier flush mode
[  150.776279][ T5545] loop2: detected capacity change from 0 to 32768
[  150.899358][ T5545] XFS (loop2): Mounting V5 Filesystem
[  151.127325][ T5545] XFS (loop2): Ending clean mount
[  151.300412][ T5545] XFS (loop2): Metadata CRC error detected at xfs_rmapbt_read_verify+0x3a/0xd0, xfs_rmapbt block 0x14 
[  151.376417][ T5545] XFS (loop2): Unmount and run xfs_repair
[  151.382306][ T5545] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  151.433827][ T5582] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  151.454488][ T5545] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff  RMB3............
[  151.526444][ T5545] 00000010: 00 00 00 00 00 00 00 14 00 00 00 01 00 00 00 10  ................
[  151.551146][ T5545] 00000020: d7 dc 42 4e 79 90 42 cb 9f 91 9c b7 20 0a 10 1d  ..BNy.B..... ...
[  151.562445][ T5582] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.570163][ T5582] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.606229][ T5545] 00000030: 00 00 00 00 6c 4b dc c9 00 00 00 00 00 00 00 01  ....lK..........
[  151.696692][ T5588] loop3: detected capacity change from 0 to 1024
[  151.715570][ T5545] 00000040: ff ff ff ff ff ff 00 00 00 00 00 00 00 00 00 00  ................
[  151.725856][ T5588] EXT4-fs: Ignoring removed bh option
[  151.786377][ T5545] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb  ................
[  151.795815][ T5545] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02  ................
[  151.833882][ T5588] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  151.869369][ T5545] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00  ................
[  151.880868][ T5545] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x1db/0x2d0" at daddr 0x14 len 4 error 74
[  151.945123][ T5545] XFS (loop2): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x1798/0x1e60 (fs/xfs/libxfs/xfs_defer.c:580).  Shutting down filesystem.
[  151.976470][ T5545] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[  152.019199][ T5545] loop2: writeback error on inode 6150, offset 0, sector 12252
[  152.164467][ T5545] syz.2.434 (5545) used greatest stack depth: 19312 bytes left
[  152.211203][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  152.223280][ T4278] XFS (loop2): Unmounting Filesystem
[  153.197522][ T5595] loop1: detected capacity change from 0 to 40427
[  153.272828][ T5595] F2FS-fs (loop1): build fault injection attr: rate: 14, type: 0x3ffff
[  153.299033][ T5595] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0xe4
[  153.325239][ T5599] loop0: detected capacity change from 0 to 40427
[  153.348932][ T5621] loop3: detected capacity change from 0 to 512
[  153.384381][ T5595] F2FS-fs (loop1): invalid crc value
[  153.405946][ T5621] EXT4-fs error (device loop3): ext4_orphan_get:1405: inode #15: comm syz.3.462: inode has both inline data and extents flags
[  153.429900][ T5621] EXT4-fs error (device loop3): ext4_orphan_get:1410: comm syz.3.462: couldn't read orphan inode 15 (err -117)
[  153.444130][ T5599] F2FS-fs (loop0): Found nat_bits in checkpoint
[  153.464179][ T5595] F2FS-fs (loop1): Found nat_bits in checkpoint
[  153.506573][ T5621] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  153.634973][ T5595] F2FS-fs (loop1) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x432/0xa20
[  153.669560][ T5599] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  153.777612][ T5595] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  153.923804][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  153.955501][ T5595] F2FS-fs (loop1) : inject alloc nid in f2fs_alloc_nid of f2fs_get_dnode_of_data+0x6eb/0x1b10
[  154.033230][ T4275] syz-executor: attempt to access beyond end of device
[  154.033230][ T4275] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  154.057326][ T5595] F2FS-fs (loop1) : inject page alloc in f2fs_grab_cache_page of f2fs_get_new_data_page+0xce/0x600
[  154.406567][ T3044] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  154.608891][ T3044] usb 3-1: config 0 has an invalid interface number: 133 but max is 0
[  154.626380][ T3044] usb 3-1: config 0 has no interface number 0
[  154.639903][ T3044] usb 3-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[  154.676145][ T3044] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.695043][ T3044] usb 3-1: Product: syz
[  154.699705][ T3044] usb 3-1: Manufacturer: syz
[  154.731563][ T3044] usb 3-1: SerialNumber: syz
[  154.777908][ T3044] usb 3-1: config 0 descriptor??
[  155.003728][ T3044] keyspan 3-1:0.133: Keyspan 1 port adapter converter detected
[  155.034658][ T3044] keyspan 3-1:0.133: found no endpoint descriptor for endpoint 81
[  155.056483][ T3044] keyspan 3-1:0.133: found no endpoint descriptor for endpoint 1
[  155.092941][ T3044] keyspan 3-1:0.133: found no endpoint descriptor for endpoint 2
[  155.122153][ T3044] usb 3-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  155.322366][ T5663] loop0: detected capacity change from 0 to 1024
[  155.424909][ T5663] hfsplus: walked past end of dir
[  155.449434][ T3044] usb 3-1: USB disconnect, device number 6
[  155.478617][ T3044] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  155.543071][ T3044] keyspan 3-1:0.133: device disconnected
[  155.702241][ T5670] loop1: detected capacity change from 0 to 1024
[  155.722824][ T5670] EXT4-fs: Ignoring removed mblk_io_submit option
[  155.750880][ T5670] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  155.835165][ T5670] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #11: comm syz.1.481: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  155.922473][ T5670] EXT4-fs error (device loop1): ext4_orphan_get:1410: comm syz.1.481: couldn't read orphan inode 11 (err -117)
[  155.936734][ T5670] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  156.184586][ T4279] EXT4-fs (loop1): unmounting filesystem.
[  156.393820][ T5690] loop2: detected capacity change from 0 to 512
[  156.436095][ T5690] EXT4-fs error (device loop2): ext4_orphan_get:1405: inode #15: comm syz.2.490: inode has both inline data and extents flags
[  156.468563][ T5690] EXT4-fs error (device loop2): ext4_orphan_get:1410: comm syz.2.490: couldn't read orphan inode 15 (err -117)
[  156.504221][ T5690] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  156.762206][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  156.979158][ T5696] loop1: detected capacity change from 0 to 8192
[  157.016796][ T5696] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  157.046482][ T5696] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  157.055778][ T5696] REISERFS (device loop1): using ordered data mode
[  157.114844][ T5696] reiserfs: using flush barriers
[  157.145069][ T5696] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  157.166872][ T5696] REISERFS (device loop1): checking transaction log (loop1)
[  157.336563][ T3044] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  157.441054][ T5696] REISERFS (device loop1): Using r5 hash to sort names
[  157.450031][ T5696] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  157.526820][ T3044] usb 4-1: Using ep0 maxpacket: 16
[  157.534437][ T3044] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  157.555135][ T3044] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  157.590925][ T3044] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  157.611021][ T3044] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  157.641419][ T3044] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  157.682936][ T3044] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  157.702523][ T3044] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  157.722775][ T3044] usb 4-1: Manufacturer: syz
[  157.737406][ T3044] usb 4-1: config 0 descriptor??
[  157.748832][ T5711] reiserfs: enabling write barrier flush mode
[  157.889612][ T5700] loop4: detected capacity change from 0 to 40427
[  157.919929][ T5700] F2FS-fs (loop4): invalid crc value
[  157.927906][ T5707] loop0: detected capacity change from 0 to 32768
[  158.013405][ T5700] F2FS-fs (loop4): Found nat_bits in checkpoint
[  158.066851][ T5707] XFS (loop0): Mounting V5 Filesystem
[  158.216119][ T5707] XFS (loop0): Ending clean mount
[  158.231785][ T5700] F2FS-fs (loop4): Start checkpoint disabled!
[  158.290545][ T5700] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  158.327146][ T5707] XFS (loop0): User initiated shutdown received.
[  158.346496][ T5707] XFS (loop0): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x6d/0x150 (fs/xfs/xfs_fsops.c:499).  Shutting down filesystem.
[  158.398063][ T5707] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[  158.439430][   T26] audit: type=1800 audit(1779278896.580:5): pid=5700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.495" name="file1" dev="loop4" ino=10 res=0 errno=0
[  158.449101][ T3044] rc_core: IR keymap rc-hauppauge not found
[  158.486690][ T3044] Registered IR keymap rc-empty
[  158.509653][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  158.566636][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  158.611617][ T3044] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  158.644546][ T3044] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input12
[  158.668490][ T4275] XFS (loop0): Unmounting Filesystem
[  158.714066][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  158.796655][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  158.836568][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  158.882002][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  158.907276][   T46] kworker/u4:3: attempt to access beyond end of device
[  158.907276][   T46] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  158.926622][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  158.983931][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  159.026512][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  159.066577][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  159.102577][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  159.156535][ T3044] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  159.195260][ T3044] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  159.235232][ T3044] mceusb 4-1:0.0: 2 tx ports (0x1 cabled) and 2 rx sensors (0x0 active)
[  159.274475][ T3044] usb 4-1: USB disconnect, device number 9
[  159.319477][ T5739] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  159.398510][ T5739] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.874355][ T5751] loop2: detected capacity change from 0 to 8
[  160.556758][ T5772] netlink: 20 bytes leftover after parsing attributes in process `syz.1.516'.
[  160.582297][   T26] audit: type=1326 audit(1779278898.720:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5773 comm="syz.0.517" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8ce899ce59 code=0x0
[  160.724197][ T5744] loop4: detected capacity change from 0 to 32768
[  160.790684][ T5744] ERROR: (device loop4): dbAdjCtl: the maximum free buddy is not the old root
[  160.790684][ T5744] 
[  160.815309][ T5744] ERROR: (device loop4): remounting filesystem as read-only
[  161.054309][ T5780] netlink: 8 bytes leftover after parsing attributes in process `syz.1.519'.
[  161.140133][ T5782] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  161.167591][ T5782] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.175169][ T5782] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.706156][ T5798] loop3: detected capacity change from 0 to 64
[  161.835604][ T5792] loop2: detected capacity change from 0 to 8192
[  161.845888][ T5798] gfs2: path_lookup on c::: returned error -2
[  161.890303][ T5792] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  161.947326][ T5792] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  161.957073][ T5792] REISERFS (device loop2): using ordered data mode
[  161.963651][ T5792] reiserfs: using flush barriers
[  161.988070][ T5792] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  162.013274][ T5792] REISERFS (device loop2): checking transaction log (loop2)
[  162.258321][ T5810] input: syz1 as /devices/virtual/input/input13
[  162.280442][ T5792] REISERFS (device loop2): Using r5 hash to sort names
[  162.354303][ T5792] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  162.560910][ T5792] reiserfs: enabling write barrier flush mode
[  162.604711][ T5817] overlayfs: failed to resolve './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  162.713558][ T5821] loop1: detected capacity change from 0 to 256
[  163.554432][ T5837] loop1: detected capacity change from 0 to 128
[  163.593864][ T5840] loop2: detected capacity change from 0 to 64
[  164.096469][ T3044] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  164.286643][    T7] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  164.296517][ T3044] usb 5-1: Using ep0 maxpacket: 8
[  164.309135][ T3044] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  164.336460][ T3044] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  164.362534][ T3044] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  164.405196][ T3044] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  164.432688][ T3044] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  164.472041][ T3044] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  164.486510][    T7] usb 3-1: Using ep0 maxpacket: 16
[  164.493722][ T3044] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.494052][    T7] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  164.532960][    T7] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  164.575536][    T7] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  164.605731][    T7] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  164.637097][    T7] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  164.661001][ T5847] loop1: detected capacity change from 0 to 32768
[  164.675342][    T7] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  164.720013][    T7] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  164.759333][ T3044] usb 5-1: GET_CAPABILITIES returned 0
[  164.761304][    T7] usb 3-1: Manufacturer: syz
[  164.765042][ T3044] usbtmc 5-1:16.0: can't read capabilities
[  164.810466][    T7] usb 3-1: config 0 descriptor??
[  164.832060][ T5847] XFS (loop1): Mounting V5 Filesystem
[  164.893612][ T5845] loop3: detected capacity change from 0 to 40427
[  164.919362][ T5845] F2FS-fs (loop3): build fault injection attr: rate: 14, type: 0x3ffff
[  164.994261][ T4319] usb 5-1: USB disconnect, device number 5
[  165.008808][ T5845] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0xe4
[  165.038615][ T5845] F2FS-fs (loop3): invalid crc value
[  165.067621][ T5845] F2FS-fs (loop3): Found nat_bits in checkpoint
[  165.105960][ T5847] XFS (loop1): Ending clean mount
[  165.130859][ T5845] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x432/0xa20
[  165.201166][ T5845] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  165.306449][    T7] rc_core: IR keymap rc-hauppauge not found
[  165.312584][    T7] Registered IR keymap rc-empty
[  165.321835][ T4279] XFS (loop1): Unmounting Filesystem
[  165.328997][ T5845] F2FS-fs (loop3) : inject alloc nid in f2fs_alloc_nid of f2fs_get_dnode_of_data+0x6eb/0x1b10
[  165.348095][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.398302][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.410370][ T5845] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of f2fs_get_new_data_page+0xce/0x600
[  165.424509][ T5852] loop0: detected capacity change from 0 to 32768
[  165.445549][    T7] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  165.527681][    T7] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input14
[  165.553162][ T5852] XFS (loop0): Mounting V5 Filesystem
[  165.591849][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.646838][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.698458][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.746497][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.781908][ T5852] XFS (loop0): Ending clean mount
[  165.807292][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.834388][ T5852] XFS (loop0): Quotacheck needed: Please wait.
[  165.856985][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.926609][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.966660][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  165.997969][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  166.042234][    T7] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  166.084846][ T5852] XFS (loop0): Quotacheck: Done.
[  166.098070][    T7] mceusb 3-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  166.127157][    T7] mceusb 3-1:0.0: 2 tx ports (0x1 cabled) and 2 rx sensors (0x0 active)
[  166.183545][    T7] usb 3-1: USB disconnect, device number 7
[  166.765955][ T4275] XFS (loop0): Unmounting Filesystem
[  167.263185][ T5892] netlink: 24 bytes leftover after parsing attributes in process `syz.2.573'.
[  167.335526][ T5896] netlink: 24 bytes leftover after parsing attributes in process `syz.2.573'.
[  167.543578][ T5900] loop0: detected capacity change from 0 to 2048
[  167.587953][    T7] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  167.637211][ T5905] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  167.684550][ T5905] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  167.696913][ T5905] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4)
[  167.711786][ T5905] Remounting filesystem read-only
[  167.717888][ T5900] NILFS (loop0): mounting fs with errors
[  167.727524][ T5900] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=2)
[  167.739066][ T5900] Remounting filesystem read-only
[  167.812840][    T7] usb 2-1: Using ep0 maxpacket: 16
[  167.838872][    T7] usb 2-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  167.855932][    T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.865285][    T7] usb 2-1: Product: syz
[  167.896829][    T7] usb 2-1: Manufacturer: syz
[  167.901538][    T7] usb 2-1: SerialNumber: syz
[  167.920035][    T7] usb 2-1: config 0 descriptor??
[  167.928606][ T4275] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[  168.367614][    T7] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  168.389834][    T7] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  168.417019][    T7] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  168.452436][    T7] usb 2-1: media controller created
[  168.517470][    T7] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  168.597121][    T7] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  168.605274][    T7] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  168.801515][ T5902] loop2: detected capacity change from 0 to 40427
[  168.853089][ T5902] F2FS-fs (loop2): build fault injection attr: rate: 14, type: 0x3ffff
[  168.867774][ T5902] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0xe4
[  168.880273][    T7] usb 2-1: USB disconnect, device number 10
[  168.906956][ T5902] F2FS-fs (loop2): invalid crc value
[  168.929256][ T5902] F2FS-fs (loop2): Found nat_bits in checkpoint
[  168.974905][    T7] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  169.043347][ T5902] F2FS-fs (loop2) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x432/0xa20
[  169.138322][ T5902] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  169.176551][ T5924] tap0: tun_chr_ioctl cmd 1074025673
[  169.215854][ T5902] F2FS-fs (loop2) : inject alloc nid in f2fs_alloc_nid of f2fs_get_dnode_of_data+0x6eb/0x1b10
[  169.235258][ T5902] F2FS-fs (loop2) : inject page alloc in f2fs_grab_cache_page of f2fs_get_new_data_page+0xce/0x600
[  169.263436][ T5916] loop3: detected capacity change from 0 to 32768
[  169.418106][ T5916] XFS (loop3): Mounting V5 Filesystem
[  169.632236][ T5916] XFS (loop3): Ending clean mount
[  169.729646][ T5916] XFS (loop3): Quotacheck needed: Please wait.
[  169.845572][ T5936] loop4: detected capacity change from 0 to 32768
[  169.899069][ T5936] XFS (loop4): Mounting V5 Filesystem
[  169.933508][ T5936] XFS (loop4): Ending clean mount
[  169.944111][ T5936] XFS (loop4): Quotacheck needed: Please wait.
[  170.012577][ T5916] XFS (loop3): Quotacheck: Done.
[  170.141507][ T5936] XFS (loop4): Quotacheck: Done.
[  170.165586][ T5936] XFS (loop4): Unmounting Filesystem
[  170.319422][ T4272] XFS (loop3): Unmounting Filesystem
[  170.830805][ T5956] loop0: detected capacity change from 0 to 1024
[  170.991894][ T5956] hfsplus: b-tree write err: -5, ino 3
[  171.160778][ T4319] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  171.376487][ T4319] usb 3-1: Using ep0 maxpacket: 8
[  171.383734][ T4319] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  171.407273][ T4319] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.529601][ T4319] pvrusb2: Hardware description: Terratec Grabster AV400
[  171.547179][ T4319] pvrusb2: **********
[  171.566473][ T4319] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  171.600778][ T4319] pvrusb2: Important functionality might not be entirely working.
[  171.637051][ T4319] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  171.656456][ T4319] pvrusb2: **********
[  171.734095][ T2310] pvrusb2: Invalid write control endpoint
[  171.748653][ T5975] loop1: detected capacity change from 0 to 128
[  171.760104][ T5975] EXT4-fs (loop1): Test dummy encryption mode enabled
[  171.775318][ T5975] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  171.825455][ T5975] ext4 filesystem being mounted at /107/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  172.039844][ T4320] usb 3-1: USB disconnect, device number 8
[  172.123343][ T2310] pvrusb2: Invalid write control endpoint
[  172.129288][ T4279] EXT4-fs (loop1): unmounting filesystem.
[  172.140799][ T2310] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  172.161275][ T2310] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  172.183305][ T5984] loop0: detected capacity change from 0 to 2048
[  172.206753][ T2310] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  172.264856][ T2310] pvrusb2: Device being rendered inoperable
[  172.274232][ T5984] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  172.293209][ T2310] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  172.312543][ T2310] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  172.336444][   T26] audit: type=1800 audit(1779278910.470:7): pid=5984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.592" name="file1" dev="loop0" ino=15 res=0 errno=0
[  172.381390][ T5990] loop1: detected capacity change from 0 to 1024
[  172.388155][ T2310] pvrusb2: Attached sub-driver cx25840
[  172.400825][ T2310] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  172.426544][ T2310] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  172.457433][ T4275] EXT4-fs (loop0): unmounting filesystem.
[  172.528290][ T5992] loop3: detected capacity change from 0 to 2048
[  172.654298][ T5992] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  172.792010][ T6001] loop2: detected capacity change from 0 to 1024
[  172.835939][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  172.987066][ T6001] hfsplus: b-tree write err: -5, ino 3
[  173.362403][ T6008] loop0: detected capacity change from 0 to 4096
[  173.447494][ T6008] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  173.574131][ T6008] ntfs3: loop0: Failed to load $Extend.
[  174.131975][ T6030] loop4: detected capacity change from 0 to 512
[  174.181792][ T6030] EXT4-fs: Ignoring removed i_version option
[  174.272897][ T6030] EXT4-fs: Mount option(s) incompatible with ext3
[  174.306266][ T6034] loop2: detected capacity change from 0 to 128
[  174.437714][ T6038] loop1: detected capacity change from 0 to 64
[  175.002887][ T6044] loop2: detected capacity change from 0 to 4096
[  175.017333][ T6049] loop3: detected capacity change from 0 to 4096
[  175.090242][ T6044] NILFS (loop2): invalid segment: Checksum error in segment payload
[  175.124441][ T6049] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  175.140918][ T6044] NILFS (loop2): trying rollback from an earlier position
[  175.205555][ T6044] NILFS (loop2): recovery complete
[  175.218035][ T6049] ntfs3: loop3: Failed to load $Extend.
[  175.245789][ T6052] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  176.439987][ T6089] loop3: detected capacity change from 0 to 2048
[  176.521062][ T6089] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  176.716416][    T7] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  176.926501][    T7] usb 1-1: Using ep0 maxpacket: 16
[  176.936023][    T7] usb 1-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[  176.955732][    T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.011904][    T7] usb 1-1: Product: syz
[  177.016194][    T7] usb 1-1: Manufacturer: syz
[  177.042447][    T7] usb 1-1: SerialNumber: syz
[  177.279601][    T7] usb 1-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[  177.312398][    T7] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  177.324040][ T6111] loop2: detected capacity change from 0 to 512
[  177.339670][    T7] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[  177.370053][ T6111] EXT4-fs: Ignoring removed nobh option
[  177.392556][    T7] usb 1-1: media controller created
[  177.407375][ T6111] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  177.443942][    T7] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  177.464121][ T6111] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c128, mo2=0002]
[  177.483440][    T7] zl10353_read_register: readreg error (reg=127, ret==-71)
[  177.515190][    T7] dvb_usb_gl861: probe of 1-1:157.0 failed with error -5
[  177.525949][    T7] usb 1-1: USB disconnect, device number 8
[  177.577984][ T6111] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  177.620092][ T6111] EXT4-fs (loop2): 1 truncate cleaned up
[  177.665801][ T6111] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  177.665961][ T6122] loop4: detected capacity change from 0 to 512
[  177.735074][ T6122] EXT4-fs error (device loop4): ext4_orphan_get:1431: comm syz.4.652: bad orphan inode 11862016
[  177.754759][ T6122] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  177.764266][ T6122] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.889492][ T6111] EXT4-fs (loop2): re-mounted. Quota mode: none.
[  178.018426][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  178.115525][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  178.474330][ T6146] netlink: 'syz.2.660': attribute type 12 has an invalid length.
[  178.487980][ T6146] netlink: 'syz.2.660': attribute type 29 has an invalid length.
[  178.497470][ T6146] netlink: 148 bytes leftover after parsing attributes in process `syz.2.660'.
[  178.507103][ T6146] netlink: 16 bytes leftover after parsing attributes in process `syz.2.660'.
[  178.517675][ T4282] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  178.686059][ T6152] loop0: detected capacity change from 0 to 256
[  178.706421][ T4282] usb 2-1: Using ep0 maxpacket: 16
[  178.714565][ T4282] usb 2-1: unable to get BOS descriptor or descriptor too short
[  178.732054][ T4282] usb 2-1: config 1 interface 0 altsetting 151 endpoint 0x81 has an invalid bInterval 128, changing to 11
[  178.757887][ T4282] usb 2-1: config 1 interface 0 has no altsetting 0
[  178.762136][ T6152] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d)
[  178.791037][ T4282] usb 2-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.40
[  178.815273][ T4282] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.847349][ T4282] usb 2-1: Product: syz
[  178.888472][ T4282] usb 2-1: Manufacturer: syz
[  178.893179][ T4282] usb 2-1: SerialNumber: syz
[  179.055895][ T6157] netlink: 'syz.2.668': attribute type 30 has an invalid length.
[  179.088747][ T6157] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  179.098376][ T6157] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  179.107414][ T6157] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  179.116175][ T6157] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  179.160860][ T4282] usbhid 2-1:1.0: can't add hid device: -71
[  179.173278][ T6157] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  179.181413][ T4282] usbhid: probe of 2-1:1.0 failed with error -71
[  179.185137][ T6157] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  179.198052][ T6157] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  179.207063][ T6157] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  179.223763][ T4282] usb 2-1: USB disconnect, device number 11
[  179.429156][ T6165] loop0: detected capacity change from 0 to 256
[  179.503120][ T6165] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  179.897956][ T6181] loop1: detected capacity change from 0 to 256
[  179.947590][ T6181] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3ec, utbl_chksum : 0xe619d30d)
[  180.096487][ T4282] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[  180.248817][ T6187] loop3: detected capacity change from 0 to 64
[  180.298462][ T4282] usb 1-1: config 8 has an invalid interface number: 223 but max is 0
[  180.338867][ T4282] usb 1-1: config 8 contains an unexpected descriptor of type 0x1, skipping
[  180.368017][   T26] audit: type=1800 audit(1779278918.510:8): pid=6187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.679" name="file1" dev="loop3" ino=21 res=0 errno=0
[  180.371568][ T4282] usb 1-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  180.476530][ T4282] usb 1-1: config 8 has no interface number 0
[  180.493307][ T4282] usb 1-1: config 8 interface 223 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  180.517547][ T4282] usb 1-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d
[  180.532628][ T4282] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  180.559060][ T4282] usb 1-1: Product: syz
[  180.569187][ T4282] usb 1-1: Manufacturer: syz
[  180.579591][ T4282] usb 1-1: SerialNumber: syz
[  180.724016][ T6194] loop3: detected capacity change from 0 to 16
[  180.753004][ T6194] erofs: (device loop3): mounted with root inode @ nid 36.
[  180.785409][ T6194] overlayfs: failed to get metacopy (-117)
[  180.830153][ T4282] usb 1-1: USB disconnect, device number 9
[  180.852236][ T6196] loop1: detected capacity change from 0 to 1024
[  181.119662][ T6198] loop3: detected capacity change from 0 to 64
[  181.346119][ T6185] loop4: detected capacity change from 0 to 32768
[  181.594754][ T6185] XFS (loop4): Mounting V5 Filesystem
[  181.793873][ T6185] XFS (loop4): Ending clean mount
[  181.840952][ T6185] XFS (loop4): User initiated shutdown received.
[  181.866667][ T6185] XFS (loop4): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x6d/0x150 (fs/xfs/xfs_fsops.c:499).  Shutting down filesystem.
[  181.905194][ T6185] XFS (loop4): Please unmount the filesystem and rectify the problem(s)
[  181.953785][ T6223] loop0: detected capacity change from 0 to 512
[  182.075489][ T4280] XFS (loop4): Unmounting Filesystem
[  182.085506][ T6223] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  182.117143][ T6223] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  182.357020][ T4275] EXT4-fs (loop0): unmounting filesystem.
[  182.972595][ T6246] netlink: 8 bytes leftover after parsing attributes in process `syz.0.701'.
[  183.002533][ T6249] loop4: detected capacity change from 0 to 128
[  183.354404][ T6226] F2FS-fs (loop2): build fault injection attr: rate: 14, type: 0x3ffff
[  183.406731][ T6226] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0xe4
[  183.443703][ T6226] F2FS-fs (loop2): invalid crc value
[  183.480645][ T6226] F2FS-fs (loop2): Found nat_bits in checkpoint
[  183.628525][ T6226] F2FS-fs (loop2) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x432/0xa20
[  183.707995][ T6226] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  183.813673][ T6226] F2FS-fs (loop2) : inject alloc nid in f2fs_alloc_nid of f2fs_get_dnode_of_data+0x6eb/0x1b10
[  183.841143][ T6226] F2FS-fs (loop2) : inject orphan in f2fs_acquire_orphan_inode of __f2fs_tmpfile+0x1a8/0x340
[  184.049431][ T4278] syz-executor: attempt to access beyond end of device
[  184.049431][ T4278] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  184.080574][ T6271] set_capacity_and_notify: 2 callbacks suppressed
[  184.080594][ T6271] loop3: detected capacity change from 0 to 8192
[  184.164883][ T6271] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  184.185338][ T6271] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  184.201015][ T6271] REISERFS (device loop3): using ordered data mode
[  184.240229][ T6271] reiserfs: using flush barriers
[  184.298752][ T6271] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  184.301623][ T6279] loop4: detected capacity change from 0 to 1024
[  184.370690][ T6279] EXT4-fs: inline encryption not supported
[  184.389598][ T6271] REISERFS (device loop3): checking transaction log (loop3)
[  184.547557][ T6279] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  184.556179][ T6279] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.659886][ T6271] REISERFS (device loop3): Using tea hash to sort names
[  184.676064][ T6287] loop0: detected capacity change from 0 to 2048
[  184.710921][ T6271] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  184.737031][ T6279] EXT4-fs error (device loop4): ext4_map_blocks:747: inode #15: comm syz.4.714: lblock 0 mapped to illegal pblock 0 (length 6)
[  184.769542][ T6287] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  184.792704][ T6290] loop2: detected capacity change from 0 to 512
[  184.856509][ T6287] ext4 filesystem being mounted at /160/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  184.883086][ T6290] EXT4-fs (loop2): 1 truncate cleaned up
[  184.914860][ T6290] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  185.006741][ T6295] loop1: detected capacity change from 0 to 1024
[  185.029678][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  185.150649][ T4275] EXT4-fs (loop0): unmounting filesystem.
[  185.264630][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  185.379306][ T4326] hfsplus: b-tree write err: -5, ino 25
[  185.385851][ T4326] hfsplus: b-tree write err: -5, ino 4
[  185.429176][ T4326] hfsplus: b-tree write err: -5, ino 2
[  185.463232][ T4326] hfsplus: b-tree write err: -5, ino 17
[  185.508344][ T6303] loop0: detected capacity change from 0 to 512
[  185.647919][ T6307] loop1: detected capacity change from 0 to 64
[  185.784099][ T6307] Trying to free block not in datazone
[  186.442190][ T6323] loop2: detected capacity change from 0 to 32768
[  186.484448][ T6323] JBD2: Ignoring recovery information on journal
[  186.521794][ T6323] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  186.588301][ T6323] OCFS2: ERROR (device loop2): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 0 but claims that 2046 are free
[  186.606454][    C0] vkms_vblank_simulate: vblank timer overrun
[  186.612753][ T6323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  186.622719][ T6323] OCFS2: File system is now read-only.
[  186.628400][ T6323] (syz.2.727,6323,0):ocfs2_search_chain:1761 ERROR: status = -30
[  186.637032][ T6323] (syz.2.727,6323,0):ocfs2_search_chain:1871 ERROR: status = -30
[  186.644887][ T6323] (syz.2.727,6323,0):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30
[  186.654358][ T6323] (syz.2.727,6323,0):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[  186.663355][ T6323] (syz.2.727,6323,0):ocfs2_claim_new_inode:2226 ERROR: status = -30
[  186.671622][ T6323] (syz.2.727,6323,0):ocfs2_claim_new_inode:2241 ERROR: status = -30
[  186.679798][ T6323] (syz.2.727,6323,0):ocfs2_mknod_locked:639 ERROR: status = -30
[  186.687591][ T6323] (syz.2.727,6323,0):ocfs2_mknod:385 ERROR: status = -30
[  186.696413][ T6323] (syz.2.727,6323,0):ocfs2_mknod:502 ERROR: status = -30
[  186.704051][ T6323] (syz.2.727,6323,0):ocfs2_create:676 ERROR: status = -30
[  186.812554][ T4278] ocfs2: Unmounting device (7,2) on (node local)
[  187.468910][ T6353] loop0: detected capacity change from 0 to 128
[  187.512671][ T6353] EXT4-fs: inline encryption not supported
[  187.561821][ T6353] EXT4-fs (loop0): Test dummy encryption mode enabled
[  187.685424][ T6353] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  187.710719][ T6353] ext4 filesystem being mounted at /164/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  187.920448][ T4275] EXT4-fs (loop0): unmounting filesystem.
[  188.086851][ T4290] Bluetooth: hci5: command 0x1003 tx timeout
[  188.096076][ T4281] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  188.433898][ T6382] loop0: detected capacity change from 0 to 256
[  188.848696][ T6395] netlink: 'syz.4.755': attribute type 2 has an invalid length.
[  188.862636][ T6395] netlink: 'syz.4.755': attribute type 1 has an invalid length.
[  188.871028][ T6395] netlink: 170140 bytes leftover after parsing attributes in process `syz.4.755'.
[  188.966646][   T14] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  189.170015][   T14] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  189.186477][   T14] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.197268][   T14] usb 3-1: config 0 descriptor??
[  189.204926][   T14] cp210x 3-1:0.0: cp210x converter detected
[  189.303526][ T6410] Bluetooth: MGMT ver 1.22
[  189.342294][ T4321] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  189.456502][ T4319] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  189.536415][ T4321] usb 1-1: Using ep0 maxpacket: 8
[  189.545121][ T4321] usb 1-1: config 0 interface 0 altsetting 144 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  189.574521][ T4321] usb 1-1: config 0 interface 0 altsetting 144 endpoint 0x81 has invalid wMaxPacketSize 0
[  189.584950][ T4321] usb 1-1: config 0 interface 0 has no altsetting 0
[  189.592367][ T4321] usb 1-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[  189.603333][ T4321] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.613397][   T14] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[  189.637887][ T4321] usb 1-1: config 0 descriptor??
[  189.643512][   T14] usb 3-1: cp210x converter now attached to ttyUSB0
[  189.666519][ T4319] usb 4-1: Using ep0 maxpacket: 16
[  189.673439][ T6417] input: syz0 as /devices/virtual/input/input15
[  189.697738][ T4319] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7
[  189.736012][ T4319] usb 4-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f
[  189.753631][ T4319] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  189.762390][ T4319] usb 4-1: Product: syz
[  189.774429][ T4319] usb 4-1: Manufacturer: syz
[  189.779624][ T4319] usb 4-1: SerialNumber: syz
[  189.793322][ T4319] usb 4-1: config 0 descriptor??
[  189.801421][ T4319] hub 4-1:0.0: bad descriptor, ignoring hub
[  189.815812][ T4319] hub: probe of 4-1:0.0 failed with error -5
[  189.845817][   T14] usb 3-1: USB disconnect, device number 9
[  189.861109][   T14] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  189.918709][   T14] cp210x 3-1:0.0: device disconnected
[  190.035865][    T7] usb 4-1: USB disconnect, device number 10
[  190.077003][ T4321] smartjoyplus 0003:6666:8804.0008: unknown main item tag 0x1
[  190.092247][ T4321] smartjoyplus 0003:6666:8804.0008: unknown main item tag 0x6
[  190.102867][ T4321] smartjoyplus 0003:6666:8804.0008: item fetching failed at offset 4/5
[  190.115947][ T4321] smartjoyplus 0003:6666:8804.0008: parse failed
[  190.125261][ T4321] smartjoyplus: probe of 0003:6666:8804.0008 failed with error -22
[  190.279510][   T14] usb 1-1: USB disconnect, device number 10
[  190.579599][ T6432] vivid-000: disconnect
[  190.593354][ T6431] vivid-000: reconnect
[  190.789583][   T26] audit: type=1326 audit(1779278928.930:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.2.772" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb52bb9ce59 code=0x0
[  191.043024][ T6443] loop0: detected capacity change from 0 to 256
[  191.095425][ T6443] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x1d73664b, utbl_chksum : 0xe619d30d)
[  191.188205][ T6443] exFAT-fs (loop0): error, broken FAT chain.
[  191.196750][ T6443] exFAT-fs (loop0): Filesystem has been set read-only
[  191.203927][ T6443] exFAT-fs (loop0): error, failed to bmap (inode : ffff888072ab2860 iblock : 0, err : -5)
[  191.946537][ T4321] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  192.141934][ T4321] usb 3-1: Using ep0 maxpacket: 16
[  192.190906][ T4321] usb 3-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  192.216588][ T4321] usb 3-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  192.231542][ T4321] usb 3-1: Product: syz
[  192.235836][ T4321] usb 3-1: Manufacturer: syz
[  192.256517][ T4321] usb 3-1: SerialNumber: syz
[  192.262858][ T6448] loop3: detected capacity change from 0 to 40427
[  192.275650][ T4321] usb 3-1: config 0 descriptor??
[  192.310590][ T6448] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x3ffff
[  192.357299][ T6448] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x4
[  192.396158][ T6448] F2FS-fs (loop3): invalid crc value
[  192.456696][ T6448] F2FS-fs (loop3): Found nat_bits in checkpoint
[  192.534221][ T6460] loop4: detected capacity change from 0 to 32768
[  192.585924][ T4321] usb 3-1: USB disconnect, device number 10
[  192.703311][ T6448] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  192.759291][ T6460] read_mapping_page failed!
[  192.801785][ T6460] ERROR: (device loop4): txCommit: 
[  192.801785][ T6460] 
[  192.818584][ T6476] loop1: detected capacity change from 0 to 16
[  192.853112][ T6476] erofs: (device loop1): mounted with root inode @ nid 36.
[  192.865504][   T26] audit: type=1800 audit(1779278931.000:10): pid=6448 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.780" name="file1" dev="loop3" ino=10 res=0 errno=0
[  192.910953][ T6475] jfs_unlink: dtDelete returned -116
[  192.950563][ T6448] syz.3.780: attempt to access beyond end of device
[  192.950563][ T6448] loop3: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[  192.959856][ T6476] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 36
[  192.985500][ T6475] jfs_unlink: dtDelete returned -116
[  193.111520][  T108] ERROR: (device loop4): diUpdatePMap: the inode is not allocated in the working map
[  193.111520][  T108] 
[  193.158003][ T4272] syz-executor: attempt to access beyond end of device
[  193.158003][ T4272] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  193.754528][ T6488] loop1: detected capacity change from 0 to 512
[  193.807461][ T6488] EXT4-fs: Ignoring removed bh option
[  193.812978][ T6488] EXT4-fs: Ignoring removed bh option
[  193.958658][ T6488] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  194.008796][ T6488] ext4 filesystem being mounted at /161/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.051192][ T6495] loop0: detected capacity change from 0 to 256
[  194.095158][ T6488] EXT4-fs (loop1): shut down requested (2)
[  194.142351][ T6498] netlink: 32 bytes leftover after parsing attributes in process `syz.4.795'.
[  194.219770][ T6495] exFAT-fs (loop0): failed to load upcase table (idx : 0x000103c2, chksum : 0xe64499b9, utbl_chksum : 0xe619d30d)
[  194.276979][ T4279] EXT4-fs (loop1): unmounting filesystem.
[  194.591551][ T6511] loop0: detected capacity change from 0 to 256
[  194.716968][ T6511] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  194.813167][ T6515] loop3: detected capacity change from 0 to 1024
[  194.841433][ T6517] loop4: detected capacity change from 0 to 64
[  194.865996][ T6515] EXT4-fs: inline encryption not supported
[  194.939093][   T26] audit: type=1800 audit(1779278933.080:11): pid=6517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.810" name="file1" dev="loop4" ino=21 res=0 errno=0
[  194.987578][ T6515] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  195.007470][ T6515] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.041130][ T6515] EXT4-fs error (device loop3): ext4_map_blocks:747: inode #15: block 3: comm syz.3.820: lblock 3 mapped to illegal pblock 3 (length 1)
[  195.129038][ T6515] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  195.156742][ T6515] EXT4-fs (loop3): This should not happen!! Data will be lost
[  195.156742][ T6515] 
[  195.221817][ T6524] EXT4-fs error (device loop3): ext4_map_blocks:747: inode #15: comm syz.3.820: lblock 0 mapped to illegal pblock 0 (length 3)
[  195.312754][ T6524] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 117
[  195.363855][ T6524] EXT4-fs (loop3): This should not happen!! Data will be lost
[  195.363855][ T6524] 
[  195.564114][   T46] EXT4-fs error (device loop3): ext4_map_blocks:747: inode #15: block 4: comm kworker/u4:3: lblock 4 mapped to illegal pblock 4 (length 1)
[  195.614600][   T46] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 117
[  195.646669][   T46] EXT4-fs (loop3): This should not happen!! Data will be lost
[  195.646669][   T46] 
[  195.681694][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  195.706486][ T6535] loop0: detected capacity change from 0 to 8192
[  195.740113][ T6535] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  195.773566][ T6535] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  195.785144][ T6535] REISERFS (device loop0): using ordered data mode
[  195.792297][ T6535] reiserfs: using flush barriers
[  195.799870][ T6535] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  195.816909][ T6535] REISERFS (device loop0): checking transaction log (loop0)
[  195.964522][ T6535] REISERFS (device loop0): Using tea hash to sort names
[  195.980002][ T6535] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  196.530784][ T6555] loop1: detected capacity change from 0 to 64
[  196.628975][   T26] audit: type=1800 audit(1779278934.770:12): pid=6555 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.826" name="file1" dev="loop1" ino=21 res=0 errno=0
[  196.706136][ T6559] loop2: detected capacity change from 0 to 64
[  196.888115][ T6564] loop4: detected capacity change from 0 to 512
[  197.021115][ T6571] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  197.216438][ T4320] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  197.396713][ T4320] usb 3-1: Using ep0 maxpacket: 32
[  197.407855][ T4320] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  197.432402][ T4320] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  197.455665][ T6584] netlink: 8 bytes leftover after parsing attributes in process `syz.4.838'.
[  197.481319][ T4320] usb 3-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  197.526186][ T4320] usb 3-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  197.556415][ T4320] usb 3-1: Product: syz
[  197.560793][ T4320] usb 3-1: Manufacturer: syz
[  197.565543][ T4320] usb 3-1: SerialNumber: syz
[  197.634297][ T4320] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input16
[  197.924103][ T4320] usb 3-1: USB disconnect, device number 11
[  197.930275][    C1] appletouch 3-1:1.0: atp_complete: usb_submit_urb failed with result -19
[  198.006622][ T4322] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  198.041478][ T4320] appletouch 3-1:1.0: input: appletouch disconnected
[  198.206419][ T4322] usb 5-1: Using ep0 maxpacket: 8
[  198.213682][ T4322] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  198.242168][ T4322] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  198.280246][ T4322] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  198.339234][ T4322] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  198.383342][ T4322] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  198.413255][ T4322] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.431707][ T6609] loop3: detected capacity change from 0 to 512
[  198.472919][ T6609] EXT4-fs error (device loop3): ext4_orphan_get:1405: inode #15: comm syz.3.849: inode has both inline data and extents flags
[  198.584334][ T6609] EXT4-fs error (device loop3): ext4_orphan_get:1410: comm syz.3.849: couldn't read orphan inode 15 (err -117)
[  198.607173][ T6609] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  198.658156][ T4322] usb 5-1: GET_CAPABILITIES returned 0
[  198.663964][ T4322] usbtmc 5-1:16.0: can't read capabilities
[  198.749500][ T6616] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[  198.895619][ T6589] usb 5-1: usbtmc_ioctl_clear_out_halt returned -32
[  198.904790][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  198.933443][ T4320] usb 5-1: USB disconnect, device number 6
[  199.144805][ T6625] loop2: detected capacity change from 0 to 4096
[  199.382370][ T4278] ntfs3: loop2: ntfs_evict_inode r=5 failed, -22.
[  199.403312][ T4278] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  199.609739][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  199.616156][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  199.956665][    T7] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  200.132526][ T6652] loop4: detected capacity change from 0 to 256
[  200.157881][ T6654] vivid-000: disconnect
[  200.162673][    T7] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  200.189470][ T6652] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  200.202392][ T6653] vivid-000: reconnect
[  200.216788][    T7] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  200.248456][    T7] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  200.269552][    T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.323887][ T6638] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  200.622915][    T7] usb 2-1: USB disconnect, device number 12
[  200.743270][ T6664] loop0: detected capacity change from 0 to 256
[  201.745398][ T6692] netlink: 8 bytes leftover after parsing attributes in process `syz.1.883'.
[  202.006689][ T4281] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  202.008211][ T4274] Bluetooth: hci5: command 0x1003 tx timeout
[  202.125126][ T4282] kernel read not supported for file /adsp1 (pid: 4282 comm: kworker/0:4)
[  202.213302][ T6702] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[  202.753618][ T6717] loop4: detected capacity change from 0 to 1024
[  202.885583][ T6717] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  202.905622][ T6717] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.979328][ T6730] loop2: detected capacity change from 0 to 64
[  203.234629][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  203.810852][ T6746] option changes via remount are deprecated (pid=6745 comm=syz.2.906)
[  203.841555][ T6746] cgroup: option or name mismatch, new: 0x10000 "", old: 0x0 ""
[  203.994939][ T6751] loop4: detected capacity change from 0 to 512
[  203.999925][ T6721] loop0: detected capacity change from 0 to 40427
[  204.077471][ T6721] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x3ffff
[  204.103127][ T6721] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x4
[  204.147487][ T6721] F2FS-fs (loop0): invalid crc value
[  204.200796][ T6721] F2FS-fs (loop0): Found nat_bits in checkpoint
[  204.436743][ T6721] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  204.493113][ T6762] loop3: detected capacity change from 0 to 256
[  204.540446][ T6762] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  204.623469][   T26] audit: type=1800 audit(1779278942.760:13): pid=6721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.896" name="file1" dev="loop0" ino=10 res=0 errno=0
[  204.657551][ T6721] syz.0.896: attempt to access beyond end of device
[  204.657551][ T6721] loop0: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[  204.963578][ T4275] syz-executor: attempt to access beyond end of device
[  204.963578][ T4275] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  205.756181][ T6780] loop3: detected capacity change from 0 to 8192
[  205.824356][ T6780] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  205.854503][ T6780] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  205.867004][ T6780] REISERFS (device loop3): using ordered data mode
[  205.901512][ T6780] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  205.937022][ T6780] REISERFS (device loop3): checking transaction log (loop3)
[  205.951149][ T6780] REISERFS (device loop3): Using r5 hash to sort names
[  205.960324][ T6780] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  205.976675][ T6780] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  206.055224][ T6789] loop2: detected capacity change from 0 to 2048
[  206.150416][ T6789] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  206.209785][ T6789] ext4 filesystem being mounted at /171/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.317587][ T6797] netlink: 12 bytes leftover after parsing attributes in process `syz.0.927'.
[  206.398349][ T6797] netlink: 12 bytes leftover after parsing attributes in process `syz.0.927'.
[  206.432029][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  206.806485][ T4290] Bluetooth: hci4: command 0x0406 tx timeout
[  206.812671][ T4290] Bluetooth: hci1: command 0x0406 tx timeout
[  206.818953][ T4281] Bluetooth: hci0: command 0x0406 tx timeout
[  206.818976][ T4274] Bluetooth: hci2: command 0x0406 tx timeout
[  206.826478][ T4281] Bluetooth: hci3: command 0x0406 tx timeout
[  206.965697][ T6816] loop3: detected capacity change from 0 to 512
[  206.989764][ T6816] EXT4-fs: Ignoring removed nobh option
[  207.019219][ T6816] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  207.045416][ T6816] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c128, mo2=0002]
[  207.155200][ T6816] EXT4-fs (loop3): 1 truncate cleaned up
[  207.156841][    T7] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  207.186639][ T6816] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  207.271626][ T6816] EXT4-fs (loop3): re-mounted. Quota mode: none.
[  207.359233][    T7] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  207.383502][    T7] usb 1-1: config 220 descriptor has 1 excess byte, ignoring
[  207.392502][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  207.412463][    T7] usb 1-1: config 220 has no interface number 2
[  207.451475][    T7] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  207.506375][    T7] usb 1-1: config 220 interface 0 has no altsetting 0
[  207.513255][    T7] usb 1-1: config 220 interface 76 has no altsetting 0
[  207.553361][ T6834] loop3: detected capacity change from 0 to 512
[  207.560790][    T7] usb 1-1: config 220 interface 1 has no altsetting 0
[  207.590362][    T7] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  207.606445][    T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.614726][ T6834] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  207.645274][    T7] usb 1-1: Product: syz
[  207.651905][    T7] usb 1-1: Manufacturer: syz
[  207.666600][    T7] usb 1-1: SerialNumber: syz
[  207.728025][ T6834] EXT4-fs (loop3): 1 truncate cleaned up
[  207.754248][ T6834] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  207.897268][    T7] uvcvideo 1-1:220.1: Unknown video format 00000080-0000-0000-0000-000000000000
[  207.926818][    T7] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[  207.933381][    T7] usb 1-1: No valid video chain found.
[  207.956491][    T7] usb 1-1: selecting invalid altsetting 0
[  208.008331][    T7] usb 1-1: selecting invalid altsetting 0
[  208.014319][    T7] usbtest: probe of 1-1:220.1 failed with error -22
[  208.044894][    T7] usb 1-1: USB disconnect, device number 11
[  208.154560][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  208.496078][ T6851] netlink: 'syz.3.949': attribute type 30 has an invalid length.
[  208.560659][ T6851] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  208.570450][ T6851] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  208.579522][ T6851] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  208.588361][ T6851] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  208.650143][ T6851] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  208.659405][ T6851] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  208.669350][ T6851] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  208.678811][ T6851] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  208.720489][ T6853] loop0: detected capacity change from 0 to 8
[  209.787305][ T6880] loop3: detected capacity change from 0 to 128
[  210.437216][ T6895] ieee802154 phy0 wpan0: encryption failed: -22
[  211.062435][ T6906] loop0: detected capacity change from 0 to 8192
[  211.105651][ T6906] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  211.211659][ T6906] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[  211.236518][ T6906] REISERFS (device loop0): using ordered data mode
[  211.243197][ T6906] reiserfs: using flush barriers
[  211.277247][ T6906] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  211.360560][ T6906] REISERFS (device loop0): checking transaction log (loop0)
[  211.450569][ T6914] loop4: detected capacity change from 0 to 512
[  211.527813][ T6914] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  211.605455][ T6914] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  211.720288][ T6914] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  211.766643][ T6906] REISERFS (device loop0): Using r5 hash to sort names
[  211.786807][ T6906] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  211.968819][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  212.512628][ T6919] loop3: detected capacity change from 0 to 32768
[  212.603439][ T6919] XFS (loop3): Mounting V5 Filesystem
[  212.616617][ T6921] netlink: 'syz.4.982': attribute type 21 has an invalid length.
[  212.643947][ T6921] netlink: 40 bytes leftover after parsing attributes in process `syz.4.982'.
[  212.731260][ T6919] XFS (loop3): Ending clean mount
[  212.977592][ T4272] XFS (loop3): Unmounting Filesystem
[  213.026827][ T6939] syz.1.986 uses obsolete (PF_INET,SOCK_PACKET)
[  213.119283][ T6941] loop0: detected capacity change from 0 to 1024
[  213.586113][ T6945] loop1: detected capacity change from 0 to 4096
[  213.665570][ T6949] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  213.909105][ T6948] loop0: detected capacity change from 0 to 8192
[  213.942980][ T6948] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  214.032604][ T6948] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[  214.052273][ T6948] REISERFS (device loop0): using ordered data mode
[  214.070180][ T6948] reiserfs: using flush barriers
[  214.131870][ T6948] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  214.247029][ T6948] REISERFS (device loop0): checking transaction log (loop0)
[  214.305632][ T6948] REISERFS (device loop0): Using r5 hash to sort names
[  214.356829][ T6948] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  214.372642][ T6937] loop4: detected capacity change from 0 to 40427
[  214.394464][ T6937] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x3ffff
[  214.442139][ T6937] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x4
[  214.483403][ T6937] F2FS-fs (loop4): invalid crc value
[  214.529055][ T6937] F2FS-fs (loop4): Found nat_bits in checkpoint
[  214.716581][ T6937] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  214.820205][   T26] audit: type=1800 audit(1779278952.960:14): pid=6937 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.985" name="file1" dev="loop4" ino=10 res=0 errno=0
[  214.859208][ T6937] syz.4.985: attempt to access beyond end of device
[  214.859208][ T6937] loop4: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[  215.051700][ T4280] syz-executor: attempt to access beyond end of device
[  215.051700][ T4280] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  215.351892][ T6977] loop0: detected capacity change from 0 to 256
[  215.358798][ T6975] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1000'.
[  215.411885][ T6977] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf3da6b1f, utbl_chksum : 0xe619d30d)
[  215.742402][   T26] audit: type=1326 audit(1779278953.880:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6966 comm="syz.1.998" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effb919ce59 code=0x7fc00000
[  215.955016][ T6984] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1005'.
[  215.995209][ T6987] loop1: detected capacity change from 0 to 64
[  216.017364][ T6984] device hsr0 entered promiscuous mode
[  217.162535][ T7012] loop4: detected capacity change from 0 to 1024
[  217.284371][ T7016] loop2: detected capacity change from 0 to 2048
[  217.365541][ T7016] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  217.805540][ T7016] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  218.007822][ T4326] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 496 with error 28
[  218.051041][ T4326] EXT4-fs (loop2): This should not happen!! Data will be lost
[  218.051041][ T4326] 
[  218.122582][ T4326] EXT4-fs (loop2): Total free blocks count 0
[  218.133998][ T7023] loop3: detected capacity change from 0 to 32768
[  218.139591][ T4326] EXT4-fs (loop2): Free/Dirty block details
[  218.162542][ T4326] EXT4-fs (loop2): free_blocks=4096
[  218.184515][ T4326] EXT4-fs (loop2): dirty_blocks=512
[  218.210565][ T4326] EXT4-fs (loop2): Block reservation details
[  218.233089][ T4326] EXT4-fs (loop2): i_reserved_data_blocks=32
[  218.274644][ T7020] loop0: detected capacity change from 0 to 32768
[  218.322606][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  218.463551][ T7023] ialloc: diAlloc returned -28!
[  218.796415][ T4321] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  218.900967][ T7030] loop4: detected capacity change from 0 to 32768
[  218.986442][ T4321] usb 3-1: Using ep0 maxpacket: 32
[  218.993577][ T4321] usb 3-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  219.019104][ T7030] 
[  219.019104][ T7030]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  219.019104][ T7030] 
[  219.056507][ T4321] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  219.077716][ T4321] usb 3-1: config 0 descriptor??
[  219.123921][ T7030] read_mapping_page failed!
[  219.133739][ T4321] gspca_main: sq930x-2.14.0 probing 041e:403c
[  219.162603][ T7030] ERROR: (device loop4): txCommit: 
[  219.162603][ T7030] 
[  219.334338][ T7044] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1028'.
[  219.485657][ T4280] 
[  219.485657][ T4280]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  219.485657][ T4280] 
[  219.538541][ T4280] 
[  219.538541][ T4280]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  219.538541][ T4280] 
[  219.657185][ T7048] loop0: detected capacity change from 0 to 2048
[  219.996448][ T4321] gspca_sq930x: reg_w 0105 bf00 failed -71
[  220.076452][ T4321] sq930x: probe of 3-1:0.0 failed with error -71
[  220.104255][ T4321] usb 3-1: USB disconnect, device number 12
[  220.118627][ T7054] tap0: tun_chr_ioctl cmd 1074025677
[  220.124341][ T7054] tap0: linktype set to 780
[  220.326811][ T4320] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  220.456398][ T4322] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  220.526382][ T4320] usb 1-1: Using ep0 maxpacket: 16
[  220.533719][ T4320] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 51, changing to 9
[  220.585968][ T4320] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid maxpacket 33540, setting to 1024
[  220.607782][ T4320] usb 1-1: config 0 interface 0 has no altsetting 0
[  220.614597][ T4320] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  220.642088][ T7071] binder: 7070:7071 ioctl 400c620e 200000000200 returned -22
[  220.644927][ T4320] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.658730][ T4322] usb 5-1: Using ep0 maxpacket: 16
[  220.667366][ T4322] usb 5-1: config 127 has an invalid interface number: 124 but max is 0
[  220.686169][ T4322] usb 5-1: config 127 has no interface number 0
[  220.705179][ T4320] usb 1-1: config 0 descriptor??
[  220.716420][ T4322] usb 5-1: config 127 interface 124 has no altsetting 0
[  220.747935][ T4322] usb 5-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=36.87
[  220.766410][ T4322] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.816436][ T4322] usb 5-1: Product: syz
[  220.841108][ T4322] usb 5-1: Manufacturer: syz
[  220.845954][ T4322] usb 5-1: SerialNumber: syz
[  221.133295][ T4320] hid (null): unknown global tag 0xe
[  221.146633][ T4320] hid (null): unknown global tag 0xe
[  221.152123][ T4320] hid (null): unknown global tag 0x63
[  221.166444][ T4320] hid (null): unknown global tag 0xe
[  221.171849][ T4320] hid (null): global environment stack underflow
[  221.196455][ T4320] hid (null): unknown global tag 0xc
[  221.203891][ T4320] hid (null): unknown global tag 0xe4
[  221.216957][ T4320] hid (null): unknown global tag 0x52
[  221.222434][ T4320] hid (null): unknown global tag 0xe
[  221.246414][ T4320] hid (null): invalid report_size 222345300
[  221.295958][ T7073] loop2: detected capacity change from 0 to 32768
[  221.347968][ T4320] usb 1-1: USB disconnect, device number 12
[  221.398012][ T7073] XFS (loop2): Mounting V5 Filesystem
[  221.492634][ T7073] XFS (loop2): Ending clean mount
[  221.646952][ T4278] XFS (loop2): Unmounting Filesystem
[  221.773983][ T4322] usb 5-1: reset high-speed USB device number 7 using dummy_hcd
[  222.033593][ T4322] usb 5-1: unable to get BOS descriptor or descriptor too short
[  222.052229][ T4322] usb 5-1: device firmware changed
[  222.107400][ T4322] usb 5-1: USB disconnect, device number 7
[  222.114857][ T7095] tipc: Started in network mode
[  222.133972][ T7095] tipc: Node identity , cluster identity 4711
[  222.162131][ T7095] tipc: Failed to set node id, please configure manually
[  222.186476][ T7095] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  222.366830][ T7104] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  222.426639][ T4320] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  222.629508][ T4320] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  222.658139][ T4320] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  222.671500][ T4320] usb 1-1: New USB device found, idVendor=054c, idProduct=0ba0, bcdDevice= 0.00
[  222.681812][ T4320] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.692932][ T4320] usb 1-1: config 0 descriptor??
[  222.915684][ T7119] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1055'.
[  222.958430][ T7119] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1055'.
[  222.985250][ T7119] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1055'.
[  223.129928][ T4320] sony 0003:054C:0BA0.000A: item fetching failed at offset 0/7
[  223.162981][ T4320] sony 0003:054C:0BA0.000A: parse failed
[  223.179280][ T4320] sony: probe of 0003:054C:0BA0.000A failed with error -22
[  223.366840][    T7] usb 1-1: USB disconnect, device number 13
[  223.492503][ T7134] netlink: 332 bytes leftover after parsing attributes in process `syz.1.1062'.
[  223.534817][ T7134] netlink: 'syz.1.1062': attribute type 9 has an invalid length.
[  223.580450][ T7134] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1062'.
[  223.608145][ T7134] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1062'.
[  223.852165][ T7141] loop1: detected capacity change from 0 to 4096
[  223.944524][ T7142] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  224.205898][ T4279] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0
[  224.310733][ T4279] Remounting filesystem read-only
[  224.315877][ T4279] NILFS error (device loop1): nilfs_readdir: bad page in #2
[  224.384173][ T4279] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=8192, inode=0, rec_len=0, name_len=0
[  224.440091][ T4279] NILFS error (device loop1): nilfs_readdir: bad page in #2
[  224.558849][ T7152] loop3: detected capacity change from 0 to 128
[  224.686905][ T7152] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  224.786626][ T7152] ext4 filesystem being mounted at /204/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  224.851983][ T7152] fscrypt (loop3, inode 12): Mutually exclusive encryption flags (0x1b)
[  224.999421][ T7162] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  225.033783][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  225.064989][ T7162] device batadv_slave_0 entered promiscuous mode
[  225.736469][    T7] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  225.926466][    T7] usb 4-1: Using ep0 maxpacket: 8
[  225.946791][    T7] usb 4-1: unable to get BOS descriptor or descriptor too short
[  225.977077][    T7] usb 4-1: unable to read config index 0 descriptor/start: -71
[  225.984760][    T7] usb 4-1: can't read configurations, error -71
[  226.106442][ T1171] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  226.316394][ T1171] usb 2-1: Using ep0 maxpacket: 32
[  226.323506][ T1171] usb 2-1: config 0 has an invalid interface number: 188 but max is 0
[  226.342610][ T1171] usb 2-1: config 0 has no interface number 0
[  226.366376][ T1171] usb 2-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  226.390591][ T7178] loop0: detected capacity change from 0 to 32768
[  226.399860][ T1171] usb 2-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  226.418045][ T1171] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.426176][ T1171] usb 2-1: Product: syz
[  226.436384][ T1171] usb 2-1: Manufacturer: syz
[  226.441098][ T1171] usb 2-1: SerialNumber: syz
[  226.447988][ T1171] usb 2-1: config 0 descriptor??
[  226.453943][ T7182] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  226.539789][ T7178] XFS (loop0): Mounting V5 Filesystem
[  226.662844][ T7178] XFS (loop0): Ending clean mount
[  226.684309][ T7182] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  226.962172][ T4275] XFS (loop0): Unmounting Filesystem
[  227.159517][ T1171] asix 2-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  227.196530][ T1171] asix: probe of 2-1:0.188 failed with error -71
[  227.250946][ T1171] usb 2-1: USB disconnect, device number 13
[  227.719609][ T7195] loop3: detected capacity change from 0 to 32768
[  227.799592][ T7195] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop3 scanned by syz.3.1084 (7195)
[  227.992353][ T7195] BTRFS info (device loop3): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  228.066919][ T7195] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  228.075711][ T7195] BTRFS info (device loop3): enabling ssd optimizations
[  228.106349][ T7195] BTRFS info (device loop3): not using ssd optimizations
[  228.113515][ T7195] BTRFS info (device loop3): turning off barriers
[  228.158625][ T7195] BTRFS info (device loop3): using free space tree
[  228.450222][ T7231] netlink: 192 bytes leftover after parsing attributes in process `syz.2.1092'.
[  228.516731][    T7] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  228.690779][ T4281] Bluetooth: hci2: hardware error 0x02
[  228.721881][    T7] usb 2-1: Using ep0 maxpacket: 32
[  228.729467][    T7] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  228.737936][    T7] usb 2-1: config 0 has no interface number 0
[  228.747907][    T7] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  228.757302][    T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.765452][    T7] usb 2-1: Product: syz
[  228.770234][    T7] usb 2-1: Manufacturer: syz
[  228.775045][    T7] usb 2-1: SerialNumber: syz
[  228.782631][    T7] usb 2-1: config 0 descriptor??
[  228.791242][    T7] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  228.952420][ T7197] loop4: detected capacity change from 0 to 32768
[  229.006132][    T7] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  229.044566][ T4272] BTRFS info (device loop3): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  229.071616][    T7] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  229.102219][ T7197] XFS (loop4): Mounting V5 Filesystem
[  229.451900][    C0] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[  229.620906][ T7197] XFS (loop4): Ending clean mount
[  229.627116][ T7251] usb 2-1: USB disconnect, device number 14
[  229.655246][ T7251] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  229.676985][ T7197] XFS (loop4): Quotacheck needed: Please wait.
[  229.694098][ T7251] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  229.739859][ T7251] quatech2 2-1:0.51: device disconnected
[  229.746149][ T7197] XFS (loop4): Quotacheck: Done.
[  230.053965][ T4280] XFS (loop4): Unmounting Filesystem
[  230.421344][ T7264] loop3: detected capacity change from 0 to 256
[  230.539092][ T7258] loop0: detected capacity change from 0 to 8192
[  230.579248][ T7264] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  230.737100][ T4281] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  230.933447][ T7266] loop2: detected capacity change from 0 to 4096
[  231.049766][ T7266] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  231.179392][ T7273] loop4: detected capacity change from 0 to 64
[  231.555482][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  231.732738][ T7280] loop2: detected capacity change from 0 to 512
[  231.803271][ T7280] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  231.898418][ T7282] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1107'.
[  231.917005][ T7280] EXT4-fs (loop2): orphan cleanup on readonly fs
[  231.953116][ T7280] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3861: comm syz.2.1105: Allocating blocks 41-42 which overlap fs metadata
[  232.037113][ T7280] Quota error (device loop2): write_blk: dquota write failed
[  232.056772][ T7280] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  232.071744][ T7280] EXT4-fs error (device loop2): ext4_acquire_dquot:6841: comm syz.2.1105: Failed to acquire dquot type 0
[  232.129091][ T7280] EXT4-fs error (device loop2): mb_free_blocks:1839: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  232.195227][ T7280] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #12: comm syz.2.1105: corrupted inode contents
[  232.281468][ T7280] EXT4-fs error (device loop2): ext4_dirty_inode:6156: inode #12: comm syz.2.1105: mark_inode_dirty error
[  232.360561][ T7280] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #12: comm syz.2.1105: corrupted inode contents
[  232.446823][ T7280] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #12: comm syz.2.1105: mark_inode_dirty error
[  232.479476][ T7280] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #12: comm syz.2.1105: corrupted inode contents
[  232.505406][ T7289] loop3: detected capacity change from 0 to 4096
[  232.524915][ T7280] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  232.564792][ T7289] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  232.604097][ T7280] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #12: comm syz.2.1105: corrupted inode contents
[  232.626666][ T7289] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  232.644418][ T7280] EXT4-fs error (device loop2): ext4_truncate:4325: inode #12: comm syz.2.1105: mark_inode_dirty error
[  232.712478][ T7289] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  232.762137][ T7280] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  232.782146][ T7289] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  232.801442][ T7280] EXT4-fs (loop2): 1 truncate cleaned up
[  232.822846][ T7280] EXT4-fs (loop2): pa ffff8880746e4380: logic 1, phys. 41, len 23
[  232.831587][ T7280] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4894: group 0, free 22, pa_free 23
[  232.847633][ T7289] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  232.868605][ T7289] ntfs: volume version 3.1.
[  232.877303][ T7280] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  232.900124][ T7289] ntfs: (device loop3): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  232.937504][ T7295] ntfs: (device nullb0): read_ntfs_boot_sector(): Primary boot sector is invalid.
[  232.957824][ T7289] ntfs: (device loop3): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  233.184733][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  233.626428][   T14] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  233.828279][   T14] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  233.848946][   T14] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  233.882018][   T14] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  233.911792][   T14] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  233.936465][   T14] usb 3-1: SerialNumber: syz
[  233.954877][ T7316] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1122'.
[  234.162682][ T7318] loop4: detected capacity change from 0 to 512
[  234.184882][   T14] usb 3-1: 0:2 : does not exist
[  234.218564][   T14] usb 3-1: USB disconnect, device number 13
[  234.343845][ T7324] loop1: detected capacity change from 0 to 2048
[  234.355900][ T7318] FAT-fs (loop4): FAT read failed (blocknr 128)
[  234.458919][ T4396] udevd[4396]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  234.526573][ T7324] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  234.942532][ T7335] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1130'.
[  234.964355][ T7335] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1130'.
[  235.096100][ T7339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1132'.
[  235.121402][ T4279] EXT4-fs (loop1): unmounting filesystem.
[  235.285260][ T7346] Cannot find add_set index 4 as target
[  235.402629][ T7348] loop1: detected capacity change from 0 to 8
[  235.508378][ T7348] SQUASHFS error: Unable to read directory block [249:c]
[  235.633886][ T7353] loop2: detected capacity change from 0 to 64
[  236.445408][ T7370] loop4: detected capacity change from 0 to 128
[  236.525838][ T7372] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  236.533427][ T7372] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  237.328932][ T7384] loop2: detected capacity change from 0 to 256
[  237.985605][ T7395] loop3: detected capacity change from 0 to 2048
[  238.050356][ T7395] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  238.298762][ T7378] device wlan0 entered promiscuous mode
[  238.339931][ T7378] device wlan0 left promiscuous mode
[  238.415169][ T7401] loop1: detected capacity change from 0 to 128
[  239.166397][   T32] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  239.358743][   T32] usb 2-1: Using ep0 maxpacket: 8
[  239.366134][   T32] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  239.394685][   T32] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  239.421100][ T7419] loop2: detected capacity change from 0 to 4096
[  239.433579][   T32] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  239.453143][   T32] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  239.472662][   T32] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  239.482879][   T32] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.506420][ T7419] __ntfs_error: 11 callbacks suppressed
[  239.506440][ T7419] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  239.536564][ T7419] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  239.564384][ T7419] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  239.616428][ T7419] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  239.660768][ T7419] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  239.730822][ T7419] ntfs: volume version 3.1.
[  239.752021][ T7419] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  239.771236][   T32] usb 2-1: GET_CAPABILITIES returned 0
[  239.776970][   T32] usbtmc 2-1:16.0: can't read capabilities
[  239.796675][ T7419] ntfs: (device loop2): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  239.815104][ T7429] loop4: detected capacity change from 0 to 1024
[  239.857673][ T7419] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  239.886214][ T7429] hfsplus: found bad thread record in catalog
[  239.902383][ T7429] hfsplus: found bad thread record in catalog
[  239.911503][ T7419] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  239.947840][ T7429] hfsplus: found bad thread record in catalog
[  239.986823][ T7419] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  240.048107][   T14] usb 2-1: USB disconnect, device number 15
[  240.128140][ T1176] hfsplus: found bad thread record in catalog
[  240.141588][ T1176] hfsplus: found bad thread record in catalog
[  240.408476][ T7438] loop0: detected capacity change from 0 to 64
[  242.777673][ T7488] loop1: detected capacity change from 0 to 1764
[  243.360931][ T7494] input: syz0 as /devices/virtual/input/input17
[  243.667268][ T7505] loop0: detected capacity change from 0 to 256
[  243.674628][ T7504] input: syz0 as /devices/virtual/input/input18
[  243.734299][ T7505] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0xf17e4aaa, utbl_chksum : 0xe619d30d)
[  243.804632][ T7508] loop1: detected capacity change from 0 to 2048
[  243.874376][ T7511] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  244.189980][ T7511] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  244.206938][ T7511] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4)
[  244.233634][ T7511] Remounting filesystem read-only
[  244.254954][ T4279] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer
[  244.378716][ T7519] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1209'.
[  244.442269][ T7521] program syz.1.1208 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  245.563993][ T7537] loop1: detected capacity change from 0 to 1024
[  245.644319][ T7537] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  245.667529][ T7545] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1219'.
[  245.684072][ T7537] ext4 filesystem being mounted at /241/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.818960][ T7537] EXT4-fs error (device loop1): ext4_free_blocks:6220: comm syz.1.1217: Freeing blocks not in datazone - block = 0, count = 16
[  245.993067][ T7552] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1222'.
[  246.623492][ T4279] EXT4-fs (loop1): unmounting filesystem.
[  246.714897][ T7562] loop3: detected capacity change from 0 to 128
[  246.771223][ T7558] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1225'.
[  247.056727][ T7568] loop4: detected capacity change from 0 to 512
[  247.106891][ T7568] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  247.142790][ T7568] ext4 filesystem being mounted at /255/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.321403][ T7568] EXT4-fs error (device loop4): ext4_validate_block_bitmap:420: comm syz.4.1228: bg 0: bad block bitmap checksum
[  247.528123][ T4280] EXT4-fs (loop4): unmounting filesystem.
[  248.442831][ T7586] loop0: detected capacity change from 0 to 32768
[  248.937502][ T7614] loop2: detected capacity change from 0 to 128
[  249.010984][ T7614] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  249.053390][ T7614] hpfs: filesystem error: improperly stopped
[  249.086777][ T7614] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  249.094670][ T7614] hpfs: You really don't want any checks? You are crazy...
[  249.118485][ T7616] batman_adv: batadv0: Adding interface: gretap1
[  249.146559][ T7616] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  249.202893][ T7614] hpfs: hpfs_map_sector(): read error
[  249.207489][ T7616] batman_adv: batadv0: Interface activated: gretap1
[  249.232904][ T7614] hpfs: code page support is disabled
[  249.265016][ T7614] hpfs: hpfs_map_4sectors(): unaligned read
[  249.279119][ T7614] hpfs: hpfs_map_4sectors(): unaligned read
[  249.300089][ T7622] loop3: detected capacity change from 0 to 2048
[  249.316821][ T7614] hpfs: filesystem error: unable to find root dir
[  249.392463][ T7622] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  249.540269][ T7625] netlink: 'syz.1.1251': attribute type 12 has an invalid length.
[  249.584714][ T7625] netlink: 'syz.1.1251': attribute type 29 has an invalid length.
[  249.609903][ T7625] netlink: 148 bytes leftover after parsing attributes in process `syz.1.1251'.
[  249.651025][ T7625] netlink: 'syz.1.1251': attribute type 1 has an invalid length.
[  249.683158][ T7630] loop2: detected capacity change from 0 to 64
[  249.706713][ T7625] netlink: 'syz.1.1251': attribute type 2 has an invalid length.
[  249.733511][ T7625] netlink: 11 bytes leftover after parsing attributes in process `syz.1.1251'.
[  249.753453][ T7630] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[  249.788444][ T7632] syz.3.1254[7632] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  249.788646][ T7632] syz.3.1254[7632] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  250.580248][ T7654] loop3: detected capacity change from 0 to 512
[  250.696540][ T7654] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  250.730720][ T7659] loop2: detected capacity change from 0 to 256
[  250.749318][ T7659] exfat: Deprecated parameter 'namecase'
[  250.755143][ T7659] exfat: Deprecated parameter 'namecase'
[  250.802315][ T7659] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0x5ec6d925, utbl_chksum : 0xe619d30d)
[  250.821082][ T7654] EXT4-fs error (device loop3): ext4_xattr_inode_iget:401: inode #2: comm syz.3.1263: missing EA_INODE flag
[  250.896769][ T7654] EXT4-fs error (device loop3): ext4_xattr_inode_iget:406: comm syz.3.1263: error while reading EA inode 2 err=-117
[  250.942779][ T7654] EXT4-fs (loop3): 1 orphan inode deleted
[  250.966492][ T7654] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  251.259402][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  251.632102][ T7651] loop0: detected capacity change from 0 to 32768
[  251.674041][ T7651] XFS: attr2 mount option is deprecated.
[  251.887578][ T7651] XFS (loop0): Mounting V5 Filesystem
[  252.056609][ T7651] XFS (loop0): Ending clean mount
[  252.070486][ T7651] XFS (loop0): Quotacheck needed: Please wait.
[  252.181268][ T7651] XFS (loop0): Quotacheck: Done.
[  252.332706][ T4275] XFS (loop0): Unmounting Filesystem
[  252.624168][ T7674] loop2: detected capacity change from 0 to 32768
[  252.779616][ T7674] XFS (loop2): Mounting V5 Filesystem
[  252.892097][ T7674] XFS (loop2): Ending clean mount
[  252.981463][   T26] kauditd_printk_skb: 6 callbacks suppressed
[  252.981479][   T26] audit: type=1326 audit(1779278991.120:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  253.012237][    C0] vkms_vblank_simulate: vblank timer overrun
[  253.063884][   T26] audit: type=1326 audit(1779278991.120:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  253.221178][ T7674] XFS (loop2): User initiated shutdown received.
[  253.249324][ T7716] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1283'.
[  253.267965][   T26] audit: type=1326 audit(1779278991.120:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  253.291990][    C0] vkms_vblank_simulate: vblank timer overrun
[  253.309138][ T7674] XFS (loop2): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0x101/0x150 (fs/xfs/xfs_fsops.c:489).  Shutting down filesystem.
[  253.346523][ T7674] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[  253.409724][   T26] audit: type=1326 audit(1779278991.120:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  253.533999][   T26] audit: type=1326 audit(1779278991.160:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  253.558037][    C0] vkms_vblank_simulate: vblank timer overrun
[  253.642985][   T26] audit: type=1326 audit(1779278991.160:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  253.681527][ T4278] XFS (loop2): Unmounting Filesystem
[  253.789494][   T26] audit: type=1326 audit(1779278991.160:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  253.813483][    C0] vkms_vblank_simulate: vblank timer overrun
[  253.886524][   T26] audit: type=1326 audit(1779278991.160:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  253.910497][    C0] vkms_vblank_simulate: vblank timer overrun
[  253.959346][   T26] audit: type=1326 audit(1779278991.160:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  254.028915][   T26] audit: type=1326 audit(1779278991.160:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7708 comm="syz.4.1282" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f392319ce59 code=0x7ffc0000
[  254.369958][ T7717] loop4: detected capacity change from 0 to 32768
[  254.484116][ T7717] JBD2: Ignoring recovery information on journal
[  254.685023][ T7717] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  254.833559][ T7721] loop1: detected capacity change from 0 to 32768
[  255.021296][ T4280] ocfs2: Unmounting device (7,4) on (node local)
[  255.032370][ T7733] device erspan0 entered promiscuous mode
[  255.052056][ T7724] loop3: detected capacity change from 0 to 40427
[  255.084510][ T7724] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  255.123537][ T7724] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  255.197611][ T7724] F2FS-fs (loop3): invalid crc value
[  255.262021][ T7724] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  255.574298][ T7724] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  255.596500][ T7724] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  255.789804][ T7724] syz.3.1287: attempt to access beyond end of device
[  255.789804][ T7724] loop3: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[  256.077511][ T4272] syz-executor: attempt to access beyond end of device
[  256.077511][ T4272] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  256.573161][ T7772] loop0: detected capacity change from 0 to 64
[  257.452098][ T7768] loop1: detected capacity change from 0 to 40427
[  257.471119][ T7768] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  257.492039][ T7768] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  257.574926][ T7768] F2FS-fs (loop1): Found nat_bits in checkpoint
[  257.787269][ T7768] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  257.794631][ T7768] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  258.292777][ T7813] vivid-008: disconnect
[  258.327312][ T7812] vivid-008: reconnect
[  258.535738][ T7817] loop2: detected capacity change from 0 to 2048
[  258.615425][ T7823] netlink: 1 bytes leftover after parsing attributes in process `syz.4.1327'.
[  258.643181][ T7817] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  258.826127][ T7827] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1330'.
[  258.891276][ T7831] xt_connbytes: Forcing CT accounting to be enabled
[  259.816575][ T7844] loop0: detected capacity change from 0 to 32768
[  259.880898][ T7844] JBD2: Ignoring recovery information on journal
[  259.958782][ T7844] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  259.972460][ T7856] netlink: 1 bytes leftover after parsing attributes in process `syz.1.1342'.
[  260.207480][ T4275] ocfs2: Unmounting device (7,0) on (node local)
[  260.456624][ T7869] netlink: 4768 bytes leftover after parsing attributes in process `syz.4.1347'.
[  260.520217][ T7869] netlink: 4768 bytes leftover after parsing attributes in process `syz.4.1347'.
[  261.058287][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  261.081175][ T7882] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1354'.
[  261.192130][ T7886] loop1: detected capacity change from 0 to 1024
[  261.232833][ T7886] EXT4-fs: Ignoring removed bh option
[  261.377567][ T7886] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  261.635357][ T4279] EXT4-fs (loop1): unmounting filesystem.
[  261.725723][ T7897] loop2: detected capacity change from 0 to 512
[  261.807500][ T7897] EXT4-fs: Ignoring removed bh option
[  261.834627][ T7897] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  261.885410][ T7900] loop1: detected capacity change from 0 to 512
[  261.901451][ T7897] EXT4-fs (loop2): 1 truncate cleaned up
[  261.947277][ T7900] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  261.969955][ T7897] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  262.204725][ T7893] loop4: detected capacity change from 0 to 32768
[  262.240451][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  262.247344][ T7893] (syz.4.1358,7893,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  262.330857][ T7893] (syz.4.1358,7893,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  262.362434][ T7874] loop3: detected capacity change from 0 to 40427
[  262.406536][   T32] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  262.427658][ T7874] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  262.448994][ T7874] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  262.465280][ T7893] JBD2: Ignoring recovery information on journal
[  262.529038][ T7874] F2FS-fs (loop3): invalid crc value
[  262.602470][   T32] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  262.617114][ T7874] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  262.629786][ T7893] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  262.653508][   T32] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  262.673281][ T7914] loop2: detected capacity change from 0 to 128
[  262.680811][   T32] usb 1-1: Product: syz
[  262.686094][   T32] usb 1-1: Manufacturer: syz
[  262.705854][   T32] usb 1-1: SerialNumber: syz
[  262.755840][   T32] usb 1-1: config 0 descriptor??
[  262.773699][ T7893] 
[  262.776180][ T7893] ======================================================
[  262.783337][ T7893] WARNING: possible circular locking dependency detected
[  262.790424][ T7893] syzkaller #0 Not tainted
[  262.794879][ T7893] ------------------------------------------------------
[  262.801938][ T7893] syz.4.1358/7893 is trying to acquire lock:
[  262.807963][ T7893] ffff88804ec6b488 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x16d/0x4810
[  262.821293][ T7893] 
[  262.821293][ T7893] but task is already holding lock:
[  262.828709][ T7893] ffff88804ed1dc78 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x472/0x13e0
[  262.838284][ T7893] 
[  262.838284][ T7893] which lock already depends on the new lock.
[  262.838284][ T7893] 
[  262.848731][ T7893] 
[  262.848731][ T7893] the existing dependency chain (in reverse order) is:
[  262.857853][ T7893] 
[  262.857853][ T7893] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}:
[  262.865744][ T7893]        down_read+0x42/0x2d0
[  262.870514][ T7893]        ocfs2_init_acl+0x307/0x770
[  262.875779][ T7893]        ocfs2_mknod+0x15e8/0x25b0
[  262.881219][ T7893]        ocfs2_create+0x1b6/0x4b0
[  262.886325][ T7893]        path_openat+0x1181/0x2ee0
[  262.891503][ T7893]        do_filp_open+0x1f1/0x430
[  262.896595][ T7893]        do_sys_openat2+0x150/0x4b0
[  262.901866][ T7893]        __x64_sys_creat+0x8c/0xb0
[  262.907057][ T7893]        do_syscall_64+0x4c/0xa0
[  262.912073][ T7893]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  262.918645][ T7893] 
[  262.918645][ T7893] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  262.927237][ T7893]        down_read+0x42/0x2d0
[  262.931987][ T7893]        ocfs2_start_trans+0x3a4/0x6f0
[  262.937506][ T7893]        ocfs2_update_inode_atime+0xed/0x5a0
[  262.943566][ T7893]        ocfs2_inode_lock_atime+0x338/0x530
[  262.949525][ T7893]        ocfs2_readdir+0x1a0/0x500
[  262.954708][ T7893]        iterate_dir+0x218/0x560
[  262.959744][ T7893]        __se_sys_getdents64+0xf2/0x270
[  262.965368][ T7893]        do_syscall_64+0x4c/0xa0
[  262.970386][ T7893]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  262.976874][ T7893] 
[  262.976874][ T7893] -> #2 (sb_internal#5){.+.+}-{0:0}:
[  262.984447][ T7893]        ocfs2_start_trans+0x2a5/0x6f0
[  262.989972][ T7893]        ocfs2_mknod+0xf77/0x25b0
[  262.995068][ T7893]        ocfs2_create+0x1b6/0x4b0
[  263.000165][ T7893]        path_openat+0x1181/0x2ee0
[  263.005347][ T7893]        do_filp_open+0x1f1/0x430
[  263.010872][ T7893]        do_sys_openat2+0x150/0x4b0
[  263.016328][ T7893]        __x64_sys_openat+0x135/0x160
[  263.022038][ T7893]        do_syscall_64+0x4c/0xa0
[  263.027055][ T7893]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.033718][ T7893] 
[  263.033718][ T7893] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}:
[  263.044406][ T7893]        down_write+0x36/0x60
[  263.049158][ T7893]        ocfs2_reserve_local_alloc_bits+0x11e/0x2700
[  263.055903][ T7893]        ocfs2_reserve_clusters_with_limit+0x1b6/0xc10
[  263.062997][ T7893]        ocfs2_mknod+0xf15/0x25b0
[  263.068175][ T7893]        ocfs2_create+0x1b6/0x4b0
[  263.073263][ T7893]        path_openat+0x1181/0x2ee0
[  263.078433][ T7893]        do_filp_open+0x1f1/0x430
[  263.083527][ T7893]        do_sys_openat2+0x150/0x4b0
[  263.088883][ T7893]        __x64_sys_openat+0x135/0x160
[  263.094325][ T7893]        do_syscall_64+0x4c/0xa0
[  263.099437][ T7893]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.106274][ T7893] 
[  263.106274][ T7893] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}:
[  263.116890][ T7893]        __lock_acquire+0x2d07/0x7d10
[  263.122342][ T7893]        lock_acquire+0x1bb/0x4a0
[  263.127440][ T7893]        down_write+0x36/0x60
[  263.132278][ T7893]        ocfs2_reserve_suballoc_bits+0x16d/0x4810
[  263.138757][ T7893]        ocfs2_reserve_new_metadata_blocks+0x412/0x9a0
[  263.145879][ T7893]        ocfs2_init_xattr_set_ctxt+0x314/0x7b0
[  263.152111][ T7893]        ocfs2_xattr_set+0xc3b/0x13e0
[  263.157560][ T7893]        __vfs_setxattr+0x3e0/0x420
[  263.162841][ T7893]        __vfs_setxattr_noperm+0x129/0x5e0
[  263.168725][ T7893]        vfs_setxattr+0x167/0x2e0
[  263.173999][ T7893]        setxattr+0x346/0x360
[  263.178842][ T7893]        path_setxattr+0x147/0x290
[  263.184064][ T7893]        __x64_sys_lsetxattr+0xb4/0xd0
[  263.189595][ T7893]        do_syscall_64+0x4c/0xa0
[  263.194437][ T7874] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  263.194757][ T7893]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.208276][ T7893] 
[  263.208276][ T7893] other info that might help us debug this:
[  263.208276][ T7893] 
[  263.218638][ T7893] Chain exists of:
[  263.218638][ T7893]   &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4 --> &journal->j_trans_barrier --> &oi->ip_xattr_sem
[  263.218638][ T7893] 
[  263.235755][ T7893]  Possible unsafe locking scenario:
[  263.235755][ T7893] 
[  263.243274][ T7893]        CPU0                    CPU1
[  263.248696][ T7893]        ----                    ----
[  263.254110][ T7893]   lock(&oi->ip_xattr_sem);
[  263.254554][ T7874] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  263.258738][ T7893]                                lock(&journal->j_trans_barrier);
[  263.258761][ T7893]                                lock(&oi->ip_xattr_sem);
[  263.258777][ T7893]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4);
[  263.288631][ T7893] 
[  263.288631][ T7893]  *** DEADLOCK ***
[  263.288631][ T7893] 
[  263.296871][ T7893] 3 locks held by syz.4.1358/7893:
[  263.302127][ T7893]  #0: ffff888028bf4460 (sb_writers#31){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90
[  263.311459][ T7893]  #1: ffff88804ed1df48 (&type->i_mutex_dir_key#16){+.+.}-{3:3}, at: vfs_setxattr+0x140/0x2e0
[  263.321912][ T7893]  #2: ffff88804ed1dc78 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x472/0x13e0
[  263.331933][ T7893] 
[  263.331933][ T7893] stack backtrace:
[  263.337887][ T7893] CPU: 1 PID: 7893 Comm: syz.4.1358 Not tainted syzkaller #0
[  263.345312][ T7893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  263.355446][ T7893] Call Trace:
[  263.358774][ T7893]  <TASK>
[  263.361751][ T7893]  dump_stack_lvl+0x188/0x24e
[  263.366497][ T7893]  ? load_image+0x400/0x400
[  263.370873][ T7914] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  263.371056][ T7893]  ? show_regs_print_info+0x12/0x12
[  263.384766][ T7893]  ? print_circular_bug+0x12b/0x1a0
[  263.390053][ T7893]  check_noncircular+0x296/0x330
[  263.395081][ T7893]  ? look_up_lock_class+0x75/0x140
[  263.400265][ T7893]  ? add_chain_block+0x940/0x940
[  263.402426][ T7914] ext4 filesystem being mounted at /261/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  263.405252][ T7893]  ? lockdep_lock+0xf1/0x1f0
[  263.441904][ T7893]  ? _find_first_zero_bit+0xcf/0x100
[  263.447248][ T7893]  __lock_acquire+0x2d07/0x7d10
[  263.452189][ T7893]  ? verify_lock_unused+0x140/0x140
[  263.457462][ T7893]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[  263.463178][ T7893]  ? do_raw_spin_lock+0x128/0x2f0
[  263.468271][ T7893]  ? mutex_unlock+0x10/0x10
[  263.472862][ T7893]  ? __rwlock_init+0x140/0x140
[  263.477700][ T7893]  ? do_raw_spin_unlock+0x11d/0x230
[  263.482970][ T7893]  lock_acquire+0x1bb/0x4a0
[  263.487547][ T7893]  ? ocfs2_reserve_suballoc_bits+0x16d/0x4810
[  263.493772][ T7893]  ? __might_sleep+0xd0/0xd0
[  263.498422][ T7893]  ? check_noncircular+0x189/0x330
[  263.503617][ T7893]  ? read_lock_is_recursive+0x10/0x10
[  263.509253][ T7893]  down_write+0x36/0x60
[  263.513497][ T7893]  ? ocfs2_reserve_suballoc_bits+0x16d/0x4810
[  263.519631][ T7893]  ocfs2_reserve_suballoc_bits+0x16d/0x4810
[  263.525600][ T7893]  ? mark_lock+0x94/0x320
[  263.530046][ T7893]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  263.536116][ T7893]  ? _raw_spin_unlock_irqrestore+0x82/0x120
[  263.542170][ T7893]  ? lockdep_hardirqs_on+0x94/0x140
[  263.547442][ T7893]  ? ocfs2_block_group_search+0x4f0/0x4f0
[  263.553229][ T7893]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[  263.559195][ T7893]  ? _raw_spin_unlock+0x40/0x40
[  263.564122][ T7893]  ? stack_trace_save+0xa6/0xf0
[  263.569051][ T7893]  ? __stack_depot_save+0x421/0x460
[  263.574332][ T7893]  ? kasan_set_track+0x60/0x70
[  263.579338][ T7893]  ? kasan_set_track+0x4b/0x70
[  263.584171][ T7893]  ? __kasan_kmalloc+0x8e/0xa0
[  263.589098][ T7893]  ? ocfs2_reserve_new_metadata_blocks+0x109/0x9a0
[  263.595668][ T7893]  ? ocfs2_init_xattr_set_ctxt+0x314/0x7b0
[  263.601543][ T7893]  ? ocfs2_xattr_set+0xc3b/0x13e0
[  263.606643][ T7893]  ? __vfs_setxattr+0x3e0/0x420
[  263.611561][ T7893]  ? __vfs_setxattr_noperm+0x129/0x5e0
[  263.617096][ T7893]  ? vfs_setxattr+0x167/0x2e0
[  263.621851][ T7893]  ? setxattr+0x346/0x360
[  263.626268][ T7893]  ? path_setxattr+0x147/0x290
[  263.631104][ T7893]  ? __x64_sys_lsetxattr+0xb4/0xd0
[  263.636374][ T7893]  ? do_syscall_64+0x4c/0xa0
[  263.641042][ T7893]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.647208][ T7893]  ocfs2_reserve_new_metadata_blocks+0x412/0x9a0
[  263.653610][ T7893]  ? ocfs2_init_steal_slots+0x150/0x150
[  263.659223][ T7893]  ? ocfs2_xattr_block_set+0x3090/0x3090
[  263.664928][ T7893]  ? do_raw_spin_lock+0x128/0x2f0
[  263.670024][ T7893]  ocfs2_init_xattr_set_ctxt+0x314/0x7b0
[  263.675739][ T7893]  ? _raw_spin_unlock+0x24/0x40
[  263.680685][ T7893]  ? ocfs2_prepare_refcount_xattr+0xff0/0xff0
[  263.686824][ T7893]  ? ocfs2_truncate_log_needs_flush+0x12c/0x300
[  263.693321][ T7893]  ? ocfs2_remove_btree_range+0x15e0/0x15e0
[  263.699304][ T7893]  ? up_write+0x1bb/0x420
[  263.703707][ T7893]  ocfs2_xattr_set+0xc3b/0x13e0
[  263.708670][ T7893]  ? __ocfs2_xattr_set_handle+0xf30/0xf30
[  263.714467][ T7893]  ? __lock_acquire+0x28c4/0x7d10
[  263.719851][ T7893]  ? aa_get_newest_label+0xf9/0x5b0
[  263.725127][ T7893]  ? posix_xattr_acl+0x8f/0xb0
[  263.730056][ T7893]  ? evm_protect_xattr+0x333/0x9d0
[  263.735252][ T7893]  ? ocfs2_xattr_trusted_get+0x40/0x40
[  263.740802][ T7893]  __vfs_setxattr+0x3e0/0x420
[  263.745593][ T7893]  __vfs_setxattr_noperm+0x129/0x5e0
[  263.750962][ T7893]  vfs_setxattr+0x167/0x2e0
[  263.755547][ T7893]  ? xattr_permission+0x500/0x500
[  263.760674][ T7893]  ? strncpy_from_user+0x1e3/0x350
[  263.765874][ T7893]  setxattr+0x346/0x360
[  263.770112][ T7893]  ? path_setxattr+0x290/0x290
[  263.774963][ T7893]  ? __mnt_want_write+0x21f/0x2a0
[  263.780077][ T7893]  path_setxattr+0x147/0x290
[  263.784744][ T7893]  ? simple_xattr_list_add+0xf0/0xf0
[  263.790119][ T7893]  ? lock_chain_count+0x20/0x20
[  263.795135][ T7893]  __x64_sys_lsetxattr+0xb4/0xd0
[  263.800143][ T7893]  do_syscall_64+0x4c/0xa0
[  263.804635][ T7893]  ? clear_bhb_loop+0x60/0xb0
[  263.809381][ T7893]  ? clear_bhb_loop+0x60/0xb0
[  263.814137][ T7893]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.820100][ T7893] RIP: 0033:0x7f392319ce59
[  263.824580][ T7893] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  263.844337][ T7893] RSP: 002b:00007f392402e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  263.852823][ T7893] RAX: ffffffffffffffda RBX: 00007f3923415fa0 RCX: 00007f392319ce59
[  263.860849][ T7893] RDX: 0000000000000000 RSI: 00002000000021c0 RDI: 0000200000000000
[  263.868885][ T7893] RBP: 00007f3923232d6f R08: 0000000000000000 R09: 0000000000000000
[  263.876921][ T7893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  263.885305][ T7893] R13: 00007f3923416038 R14: 00007f3923415fa0 R15: 00007ffdc018cb48
[  263.893349][ T7893]  </TASK>
[  263.896491][    C1] vkms_vblank_simulate: vblank timer overrun
[  264.148785][ T4323] usb 1-1: USB disconnect, device number 14
[  264.184938][ T4278] EXT4-fs (loop2): unmounting filesystem.
[  264.239357][ T7893] capability: warning: `syz.4.1358' uses deprecated v2 capabilities in a way that may be insecure
[  264.270046][ T4280] ocfs2: Unmounting device (7,4) on (node local)