last executing test programs:

1m20.090124428s ago: executing program 0 (id=712):
bind$inet6(0xffffffffffffffff, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x7, 0x6, 0x0, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0x25)

1m19.932908837s ago: executing program 0 (id=714):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x12ba00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000400)={0x1, 0x0, [{0xc0010141, 0x0, 0x1}]})

1m19.488134843s ago: executing program 0 (id=717):
r0 = memfd_create(&(0x7f0000000080)=',\xea\x00', 0x4)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
ftruncate(r0, 0x7000000)
preadv(r0, &(0x7f0000000280)=[{&(0x7f00000019c0)=""/4102, 0x1000}, {&(0x7f0000000000)=""/46, 0x5c}], 0x2, 0x0, 0x800)

1m19.286445025s ago: executing program 0 (id=719):
syz_mount_image$hfsplus(&(0x7f00000001c0), &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000002c0)={[{@creator={'creator', 0x3d, "1c4cdc1a"}}, {@type={'type', 0x3d, "e833026f"}}, {@gid}, {@uid}, {}, {@part={'part', 0x3d, 0x2}}, {@creator={'creator', 0x3d, "338be97f"}}, {}, {@part={'part', 0x3d, 0x7}}, {@nobarrier}]}, 0x20, 0x6fe, &(0x7f0000000480)="$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")
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020)

1m18.913397077s ago: executing program 0 (id=721):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x4, <r2=>0xffffffffffffffff})
ioctl$TUNSETVNETHDRSZ(r2, 0x4018aee1, 0x0)

1m18.286739263s ago: executing program 0 (id=728):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x4000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
getpgrp(0x0)

1m18.038992827s ago: executing program 32 (id=728):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x4000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
getpgrp(0x0)

3.655515317s ago: executing program 3 (id=1372):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000005d40)='./file0\x00', 0x14040, &(0x7f0000001e40)=ANY=[], 0xff, 0x5e92, &(0x7f0000018400)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0xbd)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendfile(r0, r1, 0x0, 0xfffe82)

2.989039476s ago: executing program 4 (id=1376):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x54}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r0, 0x8b2a, &(0x7f0000000040))

2.643714086s ago: executing program 4 (id=1377):
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x200008, &(0x7f0000000740)={[{@check_relaxed}, {@dmode={'dmode', 0x3d, 0x2}}, {@check_strict}, {@mode={'mode', 0x3d, 0x7ff00000}}, {@dmode={'dmode', 0x3d, 0x4}}, {@unhide}, {@utf8}, {@session={'session', 0x3d, 0x39}}, {@map_off}]}, 0x0, 0x3fc, &(0x7f0000000280)="$eJzs3M9OG0ccwPFZYiilUlQpagKEw6RpJXqIs7sUI5TTdj02k6x3VzPrCE5VVCBCBVKVVCpcWi5pK7UPkWvfoJc+UaP2Dah211DANq7CH6Po+5HQjD2/nfnNypqRjWYFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQTlh3Xc8RkY7by7K/sG6SVq+GT7eL4rC/j08UZ4wrhJP/ifFxMVm+NXnrv+aPyk7ulK/uiPG8GBd7H9z+8NGtysjh9WckfCV2dvde/FHm+L/iK/8cFC49sSvSVLG2iW4FTSW1TeRireY+XGpY2dCRsis2Uy0ZGhVkiZGz4WfSW1yck6q6krTjZj2I1OGbCw98163Jx9VUBcYm8cPHVRsu6SjScbOIyZvzmIX8g/hEZzJTQUvK9Y3NtblBSeZB3hntjhA/FkH+oJ581/c9z/e92vzi/ILrVnzXlyfecE8RXZcM/0OL4brI5Rs4l4PO/g8AAAAAAN5dTvEbe/79f7T4Hd4RDR0pd9hpAQAAAACAC1T85/9OXozmtUnh8P0fAAAAAIB3zc/Hz9i93+uMnU3fc/78Wxgz6uyny584W0EeHmyJSnHdjdM9Zo1p52ank6KoVTqvQjXjTJVBU4fRbzrF+qCzfk5XAp2RTydQnrA7+KFHAuJXMV0GTa+W5ephSznKRENHqhom0SNPBMHNkUwtZ99tb3wviun/ErduOmJ9Y3Ot+tWLzdUil/28l/2tzgGKrnMU/W+GeHl07rH3jMc6XRTjTpTjusfnP1K2j3SPOSX6jPlK3C1j7k6U5cTJ+Y/n8/eq/WbfycI758xfiZkyZmb2fl7cn+2RhT8oC/94Fv3vxfmymOudxV9HWcydMwsAGJb1AbuQ073xv8Uqd3G7+9kr+r0y5t50sbBWpnus6O6gfcU95+72e9czEPrtsfm4v8Wt6pgQR7vq6/yC133HtZHv5Lfwxsutb8Ttnd29Bxtbz56vPV/b9v25mvu56877YrSYRqdg7wEA9KDMG2ci+8kxRqdfemOLXpAtKWmS8Ik0ut5UUseZMuFSEDeVTE2SJWES5ZWnuq6stO00TUwmG4mRaWL1cvHkF9l59ItVrSDOdGjTSAVWyTCJsyDMZF3bUKbtLyJtl5QpLrapCnVDh0Gmk1japG1CVZXSKnUsUNdVnOmGzquxTI1uBWZFPk2idkvJurKh0WmW5NMyR2PpuJGYVtFtddg3GwCAa2Jnd+/rZ5uba99eYmXYcwQAACexSwMAAAAAAAAAAAAAAAAAAAAAcP1dxfm/i604QohrkAYVKhddGXvbD/bBJeQz7JUJwGX7NwAA//++Aql5")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18)
getdents64(r0, 0x0, 0x0)

2.266523428s ago: executing program 3 (id=1379):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)={0x58, r1, 0x101, 0x20000, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_SSID={0x6, 0x34, @random='\nb'}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_KEYS={0x28, 0x51, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "4ffd7cf928"}, @NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}]}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

2.261608199s ago: executing program 4 (id=1387):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000e13d6a206419010015d4010203010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2603)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000100)={&(0x7f0000000680)=[{0x0, 0xa201, 0x1, &(0x7f0000000180)='\b'}, {0x0, 0x1001, 0x0, 0x0}], 0x2})

2.218302241s ago: executing program 1 (id=1380):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x4}, 0x8)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0xffffffb6, 0xffffffff})
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{&(0x7f0000000040)={0xa, 0x4e23, 0x9, @local, 0x1}, 0x1c, 0x0}}], 0x1, 0x4004000)

2.076566389s ago: executing program 1 (id=1381):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f6400947e570028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)
setuid(0xee00)
syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r0)

1.88068775s ago: executing program 1 (id=1383):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0)
mmap$snddsp_control(&(0x7f0000000000/0x3000)=nil, 0x1000, 0x0, 0x12, r0, 0x82000000)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f0000000200)={0xfbca, 0x5, 0x82, 0x80, 0x7, 0x0, 0xd}, 0xc)

1.833405343s ago: executing program 3 (id=1384):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="043e110b"], 0xec)

1.501199992s ago: executing program 1 (id=1394):
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x5, 0x214, &(0x7f0000000840)="$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")
mremap(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000ffe000/0x1000)=nil)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000004c0), 0x208e24b)

1.356654871s ago: executing program 2 (id=1386):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x20101, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)={0x2, 0x0, [{0x3a, 0x0, 0x5}, {0x27b, 0x0, 0x2}]})

1.246064487s ago: executing program 1 (id=1388):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000001000000850000000c000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000200), &(0x7f00000003c0)=r1}, 0x20)

1.034842459s ago: executing program 1 (id=1389):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000005d40)='./file0\x00', 0x14040, &(0x7f0000001e40)=ANY=[], 0xff, 0x5e92, &(0x7f0000018400)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0xbd)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendfile(r0, r1, 0x0, 0xfffe82)

1.03469516s ago: executing program 2 (id=1390):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x54}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r0, 0x8b2a, &(0x7f0000000040))

871.953409ms ago: executing program 2 (id=1391):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x4}, 0x8)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0xffffffb6, 0xffffffff})
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{&(0x7f0000000040)={0xa, 0x4e23, 0x9, @local, 0x1}, 0x1c, 0x0}}], 0x1, 0x4004000)

871.808729ms ago: executing program 3 (id=1392):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000080)=[{0x30, 0x0, 0x0, 0xfffff00c}, {0x6, 0x0, 0x5, 0x12e}]}, 0x10)
syz_emit_ethernet(0x56, &(0x7f0000000140)={@broadcast, @broadcast, @void, {@canfd={0xd, {{0x3, 0x1, 0x0, 0x1}, 0x9, 0x2, 0x0, 0x0, "23624fc65ea65170e45d61e16e64b6ff9372bde994f5b89af251983ba468ec99e9cc90fb0abb844f12ef10fc95705ca4b14c2a0f1cc0f4723cabc53bd6b67127"}}}}, 0x0)

780.654434ms ago: executing program 3 (id=1393):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f6400947e570028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)
setuid(0xee00)
syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r0)

752.796976ms ago: executing program 2 (id=1395):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x560, 0x1000000, 0x35}]})

634.359223ms ago: executing program 3 (id=1396):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f0000000040)={[{@compress_algo={'compress', 0x3d, 'zstd'}}]}, 0x1, 0x559a, &(0x7f0000005680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
lseek(r0, 0x1, 0x1)
getdents64(r0, 0x0, 0x22)

466.882892ms ago: executing program 4 (id=1397):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000340)={r1, r1, 0xc, 0x2, &(0x7f00000009c0)="1600", 0x9, 0x1, 0x16c0, 0x5df, 0x8b, 0x1, 0x9, 'syz0\x00'})

460.821673ms ago: executing program 2 (id=1405):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',default_permissions'], 0x0, 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000008100)="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", 0x2000, &(0x7f0000000340)={&(0x7f0000000400)={0x50, 0x0, 0x101, {0x7, 0x28, 0x81, 0xffffffff8015ac02, 0x7fff, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000002080)="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", 0x2000, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x78, 0x0, 0x5, {0xc14, 0x0, 0x0, {0x5, 0xfffffffffffffffc, 0x1, 0x0, 0x49, 0x6, 0xffffffff, 0x0, 0x6, 0xa000, 0xe0b, 0x0, 0x0, 0x9, 0x80000006}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

334.91638ms ago: executing program 4 (id=1398):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x20101, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)={0x2, 0x0, [{0x3a, 0x0, 0x5}, {0x27b, 0x0, 0x2}]})

149.03µs ago: executing program 4 (id=1399):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x1}]}, 0x10)
bind$inet6(r0, &(0x7f0000000200)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @multicast2}, 0xffff}, 0x1c)

0s ago: executing program 2 (id=1400):
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x1, 0xaa6, &(0x7f0000001100)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x275a, 0x0)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)

kernel console output (not intermixed with test programs):

ing 0
[  131.692759][ T5849] usb 3-1: config 220 interface 1 has no altsetting 0
[  131.702933][ T5849] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  131.710967][   T23] mceusb 1-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  131.712475][ T5849] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.729426][ T5849] usb 3-1: Product: syz
[  131.734048][ T5849] usb 3-1: Manufacturer: syz
[  131.737094][   T23] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  131.738857][ T5849] usb 3-1: SerialNumber: syz
[  131.773206][   T23] usb 1-1: USB disconnect, device number 9
[  131.976223][ T5849] uvcvideo 3-1:220.1: Unknown video format 00000073-4500-0000-0000-000000008800
[  131.994082][ T5849] usb 3-1: Found UVC 7.01 device syz (8086:0b07)
[  132.015482][ T5849] usb 3-1: No valid video chain found.
[  132.027115][ T5849] usb 3-1: selecting invalid altsetting 0
[  132.079951][ T5849] usb 3-1: selecting invalid altsetting 0
[  132.088171][ T5849] usbtest: probe of 3-1:220.1 failed with error -22
[  132.107526][ T5849] usb 3-1: USB disconnect, device number 11
[  132.348206][ T7259] loop1: detected capacity change from 0 to 64
[  133.025814][ T7273] erspan0: entered promiscuous mode
[  133.132593][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  133.139019][ T1282] ieee802154 phy1 wpan1: encryption failed: -22
[  133.166484][ T7263] loop3: detected capacity change from 0 to 32768
[  133.229229][ T7263] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  133.315158][ T7263] XFS (loop3): Ending clean mount
[  133.550135][ T5773] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  133.833671][ T5849] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  134.039133][ T5849] usb 1-1: too many endpoints for config 0 interface 0 altsetting 144: 127, using maximum allowed: 30
[  134.041447][ T7306] nvme_fabrics: missing parameter 'transport=%s'
[  134.071131][ T5849] usb 1-1: config 0 interface 0 altsetting 144 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.097386][ T5849] usb 1-1: config 0 interface 0 altsetting 144 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.107048][ T7306] nvme_fabrics: missing parameter 'nqn=%s'
[  134.136328][ T5849] usb 1-1: config 0 interface 0 altsetting 144 has 1 endpoint descriptor, different from the interface descriptor's value: 127
[  134.174087][ T5849] usb 1-1: config 0 interface 0 has no altsetting 0
[  134.191739][ T5849] usb 1-1: New USB device found, idVendor=5543, idProduct=004d, bcdDevice= 0.00
[  134.230576][ T7317] loop2: detected capacity change from 0 to 256
[  134.233269][ T5849] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.284645][ T5849] usb 1-1: config 0 descriptor??
[  134.298536][ T7317] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00007372)
[  134.669558][ T7327] loop3: detected capacity change from 0 to 1024
[  135.023619][ T7336] netlink: 16 bytes leftover after parsing attributes in process `syz.3.528'.
[  135.150430][ T5849] uclogic 0003:5543:004D.0008: failed retrieving Huion firmware version: -71
[  135.174651][ T5849] uclogic 0003:5543:004D.0008: failed probing parameters: -71
[  135.196613][ T5849] uclogic: probe of 0003:5543:004D.0008 failed with error -71
[  135.225201][ T7343] netlink: 'syz.1.531': attribute type 3 has an invalid length.
[  135.233355][ T5849] usb 1-1: USB disconnect, device number 10
[  135.302786][ T7345] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  135.650719][ T7353] loop3: detected capacity change from 0 to 256
[  135.695942][ T7353] exfat: Deprecated parameter 'namecase'
[  135.742047][ T7353] exfat: Deprecated parameter 'utf8'
[  135.832848][ T7353] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d)
[  136.085144][ T7358] loop0: detected capacity change from 0 to 1024
[  136.234910][ T7358] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.361037][   T28] audit: type=1800 audit(1770220247.529:9): pid=7358 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.537" name="bus" dev="loop0" ino=18 res=0 errno=0
[  136.462365][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.613524][   T27] IPVS: starting estimator thread 0...
[  136.719592][ T7370] IPVS: using max 21 ests per chain, 50400 per kthread
[  136.855486][ T7375] option changes via remount are deprecated (pid=7374 comm=syz.2.543)
[  137.540631][ T7381] loop2: detected capacity change from 0 to 32768
[  137.589760][ T7381] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  137.654069][ T7381] XFS (loop2): Ending clean mount
[  137.673264][ T7381] XFS (loop2): Quotacheck needed: Please wait.
[  137.775855][ T7381] XFS (loop2): Quotacheck: Done.
[  138.063370][ T5770] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  138.135797][ T7413] loop3: detected capacity change from 0 to 256
[  138.336047][ T7417] netlink: 104 bytes leftover after parsing attributes in process `syz.0.560'.
[  138.360721][ T7413] FAT-fs (loop3): Directory bread(block 64) failed
[  138.378443][ T7413] FAT-fs (loop3): Directory bread(block 65) failed
[  138.385122][ T7413] FAT-fs (loop3): Directory bread(block 66) failed
[  138.437054][ T7413] FAT-fs (loop3): Directory bread(block 67) failed
[  138.447346][ T7413] FAT-fs (loop3): Directory bread(block 68) failed
[  138.454778][ T7413] FAT-fs (loop3): Directory bread(block 69) failed
[  138.486448][ T7413] FAT-fs (loop3): Directory bread(block 70) failed
[  138.519680][ T7413] FAT-fs (loop3): Directory bread(block 71) failed
[  138.539038][ T7413] FAT-fs (loop3): Directory bread(block 72) failed
[  138.545636][ T7413] FAT-fs (loop3): Directory bread(block 73) failed
[  138.564370][ T7421] loop0: detected capacity change from 0 to 512
[  138.582957][ T7421] EXT4-fs: Ignoring removed mblk_io_submit option
[  138.664226][ T7421] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.562: invalid indirect mapped block 10 (level 1)
[  138.700129][ T7424] Falling back ldisc for ptm0.
[  138.746378][ T7421] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.562: invalid indirect mapped block 8 (level 1)
[  138.773454][ T7421] EXT4-fs (loop0): 1 truncate cleaned up
[  138.818973][ T7421] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.139267][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.573357][ T7450] loop5: detected capacity change from 0 to 7
[  139.617987][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.627447][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.639832][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.649051][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.668110][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.677392][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.690121][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.712120][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.721527][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.729862][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.739106][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.748478][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.757796][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.767125][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.776409][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.784310][ T7450] ldm_validate_partition_table(): Disk read failed.
[  139.795530][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.804789][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.816600][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  139.825972][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.838306][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  139.851345][ T7450] Dev loop5: unable to read RDB block 0
[  139.861788][ T7450]  loop5: unable to read partition table
[  139.886036][ T7450] loop5: partition table beyond EOD, truncated
[  139.902757][ T7450] loop_reread_partitions: partition scan of loop5 (úùƒå¡™‰ü�¾CêjÌ–ã¢P=ý?ã}X‹ºÐ	œëÜ%õ«`ÉæÖ€ù…ˆ{í©Ö�˜Èµ4FLQkÝŠ) failed (rc=-5)
[  140.689357][ T7480] loop2: detected capacity change from 0 to 1024
[  140.721943][ T7482] netlink: 16 bytes leftover after parsing attributes in process `syz.3.588'.
[  140.780350][ T7480] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.092070][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.361200][ T7508] loop1: detected capacity change from 0 to 128
[  141.406694][ T7509] loop0: detected capacity change from 0 to 1024
[  141.441847][ T7509] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  141.466406][ T7509] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.561418][ T7509] EXT4-fs error (device loop0): ext4_free_blocks:6692: comm syz.0.599: Freeing blocks not in datazone - block = 0, count = 16
[  141.687463][  T218] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm kworker/u4:5: bg 0: block 112: padding at end of block bitmap is not set
[  141.721590][  T218] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  141.738633][  T218] EXT4-fs (loop0): This should not happen!! Data will be lost
[  141.738633][  T218] 
[  141.741806][ T7518] loop8: detected capacity change from 0 to 1
[  141.754719][  T218] EXT4-fs (loop0): Total free blocks count 0
[  141.761394][  T218] EXT4-fs (loop0): Free/Dirty block details
[  141.768011][  T218] EXT4-fs (loop0): free_blocks=16
[  141.774391][  T218] EXT4-fs (loop0): dirty_blocks=16
[  141.779662][ T7518] Dev loop8: unable to read RDB block 1
[  141.779762][ T7518]  loop8: unable to read partition table
[  141.787324][  T218] EXT4-fs (loop0): Block reservation details
[  141.798663][  T218] EXT4-fs (loop0): i_reserved_data_blocks=1
[  141.814880][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  141.819529][ T7518] loop8: partition table beyond EOD, truncated
[  141.871764][ T7518] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  142.177121][   T23] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  142.361381][ T7534] ieee802154 phy0 wpan0: encryption failed: -22
[  142.378854][   T23] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  142.390374][   T23] usb 1-1: config 0 has no interface number 0
[  142.406279][   T23] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.417920][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  142.439629][   T23] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  142.457299][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  142.465984][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  142.486493][   T23] usb 1-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  142.495892][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.508725][   T23] usb 1-1: config 0 descriptor??
[  142.589977][ T7538] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  142.892102][ T7542] loop1: detected capacity change from 0 to 4096
[  142.907347][ T7542] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  142.956775][   T23] prodikeys 0003:041E:2801.0009: unknown main item tag 0x5
[  142.996687][ T7542] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  143.003999][   T23] prodikeys 0003:041E:2801.0009: unknown main item tag 0x0
[  143.017515][   T23] prodikeys 0003:041E:2801.0009: unknown main item tag 0x0
[  143.035655][   T23] prodikeys 0003:041E:2801.0009: unknown main item tag 0x0
[  143.056763][   T23] prodikeys 0003:041E:2801.0009: unknown main item tag 0x0
[  143.095510][   T23] prodikeys 0003:041E:2801.0009: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.0-1/input1
[  143.144485][   T23] hid_prodikeys: hid-prodikeys: failed to find output report
[  143.144485][   T23] 
[  143.372600][ T7536] loop3: detected capacity change from 0 to 32768
[  143.390462][ T7552] loop2: detected capacity change from 0 to 256
[  143.487483][ T5849] usb 1-1: USB disconnect, device number 11
[  143.490056][ T7536] ERROR: (device loop3): dtSearch: DT_GETPAGE: dtree page corrupt
[  143.490056][ T7536] 
[  143.551066][ T7536] ERROR: (device loop3): remounting filesystem as read-only
[  143.559202][ T7536] jfs_lookup: dtSearch returned -5
[  143.577456][ T7536] ERROR: (device loop3): dtReadFirst: DT_GETPAGE: dtree page corrupt
[  143.577456][ T7536] 
[  144.208795][ T7571] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  144.267597][ T7571] overlayfs: overlapping lowerdir path
[  144.675023][ T7567] loop1: detected capacity change from 0 to 32768
[  145.029446][ T7573] loop3: detected capacity change from 0 to 32768
[  145.182475][   T28] audit: type=1800 audit(1770220256.349:10): pid=7573 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.628" name="file1" dev="loop3" ino=4 res=0 errno=0
[  145.725892][ T7608] netlink: 'syz.1.645': attribute type 9 has an invalid length.
[  145.787043][ T7608] netlink: 8 bytes leftover after parsing attributes in process `syz.1.645'.
[  145.824363][ T7608] hsr0: entered promiscuous mode
[  145.830485][ T7608] macvlan2: entered promiscuous mode
[  145.836071][ T7608] macvlan2: entered allmulticast mode
[  145.842230][ T7608] hsr0: entered allmulticast mode
[  145.847681][ T7608] hsr_slave_0: entered allmulticast mode
[  145.860221][ T7608] hsr_slave_1: entered allmulticast mode
[  146.234852][ T7623] loop3: detected capacity change from 0 to 1024
[  146.252609][ T7623] EXT4-fs: Ignoring removed mblk_io_submit option
[  146.287175][ T7623] EXT4-fs: inline encryption not supported
[  146.318400][ T7623] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  146.351185][ T7623] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c802e018, mo2=0000]
[  146.374954][ T7623] EXT4-fs error (device loop3): ext4_orphan_get:1424: comm syz.3.651: bad orphan inode 11
[  146.412889][ T7623] ext4_test_bit(bit=10, block=4) = 1
[  146.422357][ T7623] is_bad_inode(inode)=0
[  146.426559][ T7623] NEXT_ORPHAN(inode)=3254779904
[  146.467206][ T7623] max_ino=32
[  146.470476][ T7623] i_nlink=0
[  146.516075][ T7623] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.651: lblock 2 mapped to illegal pblock 2 (length 1)
[  146.583542][ T7623] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  146.609135][ T7623] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.651: lblock 0 mapped to illegal pblock 48 (length 1)
[  146.645588][ T7623] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  146.652461][ T7614] loop0: detected capacity change from 0 to 40427
[  146.663754][ T7623] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.651: Failed to acquire dquot type 0
[  146.683495][ T7614] F2FS-fs (loop0): Image doesn't support compression
[  146.697411][ T7623] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  146.701783][ T7614] F2FS-fs (loop0): invalid crc value
[  146.739057][ T7614] F2FS-fs (loop0): Found nat_bits in checkpoint
[  146.739101][ T7623] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.651: mark_inode_dirty error
[  146.797650][ T7623] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  146.824934][ T7623] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.890422][ T7614] F2FS-fs (loop0): Start checkpoint disabled!
[  146.930233][ T7614] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  147.031217][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.059232][ T5773] EXT4-fs error (device loop3): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0
[  147.097445][ T5773] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  147.118583][ T5773] EXT4-fs error (device loop3): ext4_quota_off:7233: inode #3: comm syz-executor: mark_inode_dirty error
[  147.253504][   T42] kworker/u4:2: attempt to access beyond end of device
[  147.253504][   T42] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  147.272105][   T42] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  147.280726][   T42] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  147.927711][ T7635] loop1: detected capacity change from 0 to 40427
[  147.961483][ T7635] F2FS-fs (loop1): Invalid SB checksum offset: 0
[  147.969624][ T7635] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  147.983440][ T7635] F2FS-fs (loop1): invalid crc value
[  148.099940][ T7635] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[  148.112051][ T7635] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  148.253056][ T7644] loop0: detected capacity change from 0 to 32768
[  148.349760][ T7651] netlink: 8 bytes leftover after parsing attributes in process `syz.3.659'.
[  148.377642][   T28] audit: type=1800 audit(1770220259.539:11): pid=7644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.656" name="file1" dev="loop0" ino=4 res=0 errno=0
[  149.057241][ T5762] syz-executor: attempt to access beyond end of device
[  149.057241][ T5762] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  149.093404][ T5762] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  149.455920][ T7672] loop3: detected capacity change from 0 to 512
[  149.525865][ T7672] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.669: invalid block
[  149.614239][ T7672] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.669: invalid indirect mapped block 4294967295 (level 1)
[  149.652756][ T7672] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.669: invalid indirect mapped block 4294967295 (level 1)
[  149.709381][ T7672] EXT4-fs (loop3): 2 truncates cleaned up
[  149.724638][ T7672] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.849814][ T7672] EXT4-fs (loop3): shut down requested (0)
[  150.059022][ T7687] io-wq is not configured for unbound workers
[  150.070274][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.537648][   T23] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  150.539646][ T7707] nbd: socks must be embedded in a SOCK_ITEM attr
[  150.746194][   T23] usb 2-1: config 0 has an invalid interface number: 104 but max is 0
[  150.759091][   T23] usb 2-1: config 0 has no interface number 0
[  150.765695][   T23] usb 2-1: config 0 interface 104 has no altsetting 0
[  150.788325][   T23] usb 2-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9
[  150.798108][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.806213][   T23] usb 2-1: Product: syz
[  150.815661][   T23] usb 2-1: Manufacturer: syz
[  150.820715][   T23] usb 2-1: SerialNumber: syz
[  150.831425][   T23] usb 2-1: config 0 descriptor??
[  150.843816][   T23] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  151.012052][ T7721] netlink: 8 bytes leftover after parsing attributes in process `syz.0.691'.
[  151.022231][ T7721] netlink: 'syz.0.691': attribute type 21 has an invalid length.
[  151.058040][   T23] gspca_vc032x: reg_r err -71
[  151.068986][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.074325][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.081746][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.101113][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.106464][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.122511][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.132625][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.142972][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.152882][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.167823][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.177331][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.182684][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.195338][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.211256][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.217872][ T5829] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  151.233997][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.240233][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.245591][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.249494][ T7727] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  151.251619][   T23] gspca_vc032x: I2c Bus Busy Wait 00
[  151.264125][   T23] gspca_vc032x: Unknown sensor...
[  151.269708][   T23] vc032x: probe of 2-1:0.104 failed with error -22
[  151.279743][   T23] usb 2-1: USB disconnect, device number 9
[  151.417134][ T5829] usb 3-1: Using ep0 maxpacket: 16
[  151.425597][ T5829] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.440371][ T5829] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.450391][ T5829] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  151.468636][ T5829] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  151.480818][ T5829] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.494474][ T5829] usb 3-1: config 0 descriptor??
[  151.724205][ T7736] loop1: detected capacity change from 0 to 128
[  151.931017][ T5829] microsoft 0003:045E:07DA.000A: No inputs registered, leaving
[  151.943629][ T7734] loop0: detected capacity change from 0 to 32768
[  151.954291][ T5829] microsoft 0003:045E:07DA.000A: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  151.971500][ T5829] microsoft 0003:045E:07DA.000A: no inputs found
[  151.981568][ T7734] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.697 (7734)
[  152.001135][ T5829] microsoft 0003:045E:07DA.000A: could not initialize ff, continuing anyway
[  152.037100][   T28] audit: type=1326 audit(1770220263.199:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.066208][ T7734] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  152.096295][ T7734] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  152.106807][   T28] audit: type=1326 audit(1770220263.199:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.133596][ T7734] BTRFS info (device loop0): force clearing of disk cache
[  152.142143][ T7734] BTRFS info (device loop0): enabling auto defrag
[  152.155804][   T28] audit: type=1326 audit(1770220263.199:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.173560][ T7738] loop1: detected capacity change from 0 to 8192
[  152.179020][ T7734] BTRFS info (device loop0): enabling ssd optimizations
[  152.199621][ T7734] BTRFS info (device loop0): max_inline at 0
[  152.202059][ T5849] usb 3-1: USB disconnect, device number 12
[  152.214721][   T28] audit: type=1326 audit(1770220263.199:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.253281][ T7734] BTRFS info (device loop0): enabling disk space caching
[  152.263274][ T7738] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  152.265679][ T7734] BTRFS info (device loop0): disk space caching is enabled
[  152.313488][   T28] audit: type=1326 audit(1770220263.199:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.336375][ T7738] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal
[  152.358746][ T7738] REISERFS (device loop1): using ordered data mode
[  152.365302][ T7738] reiserfs: using flush barriers
[  152.383048][ T7738] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  152.401972][   T28] audit: type=1326 audit(1770220263.199:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.445421][ T7738] REISERFS (device loop1): checking transaction log (loop1)
[  152.462955][   T28] audit: type=1326 audit(1770220263.199:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.468167][ T7734] BTRFS info (device loop0): rebuilding free space tree
[  152.503207][ T7738] REISERFS (device loop1): Using r5 hash to sort names
[  152.525508][   T28] audit: type=1326 audit(1770220263.199:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.540244][ T7738] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  152.574885][ T7734] BTRFS info (device loop0): disabling free space tree
[  152.582174][ T7734] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  152.603650][ T7734] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  152.615491][   T28] audit: type=1326 audit(1770220263.199:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.677797][   T28] audit: type=1326 audit(1770220263.199:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x7fc00000
[  152.925345][ T5766] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  153.512535][ T5765] Bluetooth: hci3: link tx timeout
[  153.531646][ T5765] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  153.689066][ T7779] netlink: 36 bytes leftover after parsing attributes in process `syz.3.709'.
[  153.961505][ T7783] program syz.3.711 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  154.036546][ T7773] loop1: detected capacity change from 0 to 32768
[  154.112607][ T7773] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.222510][ T7773] XFS (loop1): Ending clean mount
[  154.241780][ T7773] XFS (loop1): Quotacheck needed: Please wait.
[  154.254834][ T7772] loop2: detected capacity change from 0 to 32768
[  154.331165][ T7772] JBD2: Ignoring recovery information on journal
[  154.341376][ T7773] XFS (loop1): Quotacheck: Done.
[  154.396786][ T7772] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  154.745865][ T7806] loop3: detected capacity change from 0 to 4096
[  154.754988][ T7806] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  154.776477][ T5770] ocfs2: Unmounting device (7,2) on (node local)
[  154.852785][ T7811] loop0: detected capacity change from 0 to 1024
[  154.915170][ T5762] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  155.080401][ T5766] hfsplus: bad catalog entry type
[  155.199312][ T7813] netlink: 4 bytes leftover after parsing attributes in process `syz.2.718'.
[  155.259502][ T7813] netlink: 20 bytes leftover after parsing attributes in process `syz.2.718'.
[  155.293070][ T7813] netlink: 4 bytes leftover after parsing attributes in process `syz.2.718'.
[  155.601733][ T5765] Bluetooth: hci3: command 0x0406 tx timeout
[  155.613721][ T1089] hfsplus: b-tree write err: -5, ino 4
[  155.786831][ T1139] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.817746][ T5830] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  155.921080][ T1139] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.035404][ T1139] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.047226][ T5830] usb 2-1: Using ep0 maxpacket: 32
[  156.058750][ T5830] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  156.085045][ T5830] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.116413][ T5830] usb 2-1: config 0 descriptor??
[  156.249242][ T1139] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.265462][ T7836] netlink: 8 bytes leftover after parsing attributes in process `syz.3.732'.
[  156.366444][ T5830] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  156.418147][ T5830] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  156.463587][ T5830] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  156.497846][ T5830] usb 2-1: media controller created
[  156.527153][ T5765] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  156.542345][ T5765] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  156.559459][ T5765] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  156.571856][ T5765] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  156.582115][ T5765] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  156.589677][ T5765] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  156.628183][ T5830] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  156.673255][ T5830] az6027: usb out operation failed. (-71)
[  156.680803][ T5830] az6027: usb out operation failed. (-71)
[  156.686586][ T5830] stb0899_attach: Driver disabled by Kconfig
[  156.693714][ T5830] az6027: no front-end attached
[  156.693714][ T5830] 
[  156.702319][ T5830] az6027: usb out operation failed. (-71)
[  156.708889][ T5830] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  156.725391][ T5830] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input15
[  156.746331][ T5830] dvb-usb: schedule remote query interval to 400 msecs.
[  156.765774][ T5830] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  156.798114][ T5830] usb 2-1: USB disconnect, device number 10
[  156.878520][ T5830] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  156.887870][ T7846] vivid-000: disconnect
[  156.916106][ T7844] vivid-000: reconnect
[  157.244572][ T7851] loop3: detected capacity change from 0 to 8192
[  157.292699][ T7851] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  157.357154][ T7851] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  157.368593][ T7851] REISERFS (device loop3): using ordered data mode
[  157.375963][ T7851] reiserfs: using flush barriers
[  157.385096][ T7851] REISERFS (device loop3): journal params: device ram0, size 1, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30
[  157.413153][ T7851] REISERFS (device loop3): checking transaction log (ram0)
[  157.431002][ T7851] REISERFS warning: reiserfs-5090 is_tree_node: node level 1 does not match to the expected one 127
[  157.487063][ T7851] REISERFS error (device loop3): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[  157.517056][ T7851] REISERFS (device loop3): Remounting filesystem read-only
[  157.537227][ T7851] REISERFS error (device loop3): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD]
[  157.592282][ T7866] loop2: detected capacity change from 0 to 256
[  157.711092][ T7866] FAT-fs (loop2): Directory bread(block 64) failed
[  157.737041][ T7866] FAT-fs (loop2): Directory bread(block 65) failed
[  157.744757][ T7866] FAT-fs (loop2): Directory bread(block 66) failed
[  157.771092][ T7866] FAT-fs (loop2): Directory bread(block 67) failed
[  157.773230][ T7840] chnl_net:caif_netlink_parms(): no params data found
[  157.787169][ T7866] FAT-fs (loop2): Directory bread(block 68) failed
[  157.802409][ T7866] FAT-fs (loop2): Directory bread(block 69) failed
[  157.821164][ T7866] FAT-fs (loop2): Directory bread(block 70) failed
[  157.863034][ T7866] FAT-fs (loop2): Directory bread(block 71) failed
[  157.877509][ T7866] FAT-fs (loop2): Directory bread(block 72) failed
[  157.902632][ T7866] FAT-fs (loop2): Directory bread(block 73) failed
[  157.909455][ T5829] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  158.111027][ T5829] usb 2-1: Using ep0 maxpacket: 16
[  158.143072][ T5829] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.174529][ T5829] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.202211][ T5829] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  158.223341][ T5829] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  158.234149][ T5829] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.259300][ T5829] usb 2-1: config 0 descriptor??
[  158.486296][ T7840] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.501326][ T7840] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.509559][ T7840] bridge_slave_0: entered allmulticast mode
[  158.517130][ T7840] bridge_slave_0: entered promiscuous mode
[  158.525397][ T7840] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.533108][ T7840] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.551066][ T7840] bridge_slave_1: entered allmulticast mode
[  158.582304][ T7840] bridge_slave_1: entered promiscuous mode
[  158.639300][ T5765] Bluetooth: hci1: command tx timeout
[  158.679739][ T7869] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.697498][ T7869] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.723155][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x2
[  158.743949][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  158.767006][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  158.774321][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  158.781917][ T7840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.800012][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  158.827005][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  158.847109][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  158.854392][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  158.864082][ T7840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.909037][ T5829] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  158.924479][   T28] kauditd_printk_skb: 58 callbacks suppressed
[  158.924494][   T28] audit: type=1800 audit(1770220270.089:80): pid=7894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.748" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  158.926450][ T5829] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.000B/input/input16
[  159.011937][ T5829] microsoft 0003:045E:07DA.000B: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  159.082417][ T5829] usb 2-1: USB disconnect, device number 11
[  159.255194][ T7840] team0: Port device team_slave_0 added
[  159.301895][ T7840] team0: Port device team_slave_1 added
[  159.311498][ T7896] fido_id[7896]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  159.467982][ T1139] hsr_slave_0: left promiscuous mode
[  159.512787][ T1139] hsr_slave_1: left promiscuous mode
[  159.529160][ T1139] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  159.536700][ T1139] batman_adv: batadv0: Removing interface: batadv_slave_0
[  159.556236][ T1139] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  159.573210][ T1139] batman_adv: batadv0: Removing interface: batadv_slave_1
[  159.585336][ T1139] bridge_slave_1: left allmulticast mode
[  159.608647][ T1139] bridge_slave_1: left promiscuous mode
[  159.617073][ T1139] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.722389][ T1139] bridge_slave_0: left allmulticast mode
[  159.755367][ T1139] bridge_slave_0: left promiscuous mode
[  159.783736][ T1139] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.953688][ T1139] veth1_macvtap: left promiscuous mode
[  159.968437][ T1139] veth0_macvtap: left promiscuous mode
[  159.984487][ T1139] veth1_vlan: left promiscuous mode
[  159.995220][ T1139] veth0_vlan: left promiscuous mode
[  160.137416][ T5830] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  160.347151][ T5830] usb 2-1: Using ep0 maxpacket: 16
[  160.356537][ T5830] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  160.373046][ T5830] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  160.385641][ T5830] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  160.395898][ T5830] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  160.408295][ T5830] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  160.426745][ T5830] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  160.444115][ T5830] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  160.452624][ T5830] usb 2-1: Manufacturer: syz
[  160.474304][ T5830] usb 2-1: config 0 descriptor??
[  160.728318][ T5765] Bluetooth: hci1: command tx timeout
[  160.808652][ T5830] rc_core: IR keymap rc-hauppauge not found
[  160.814641][ T5830] Registered IR keymap rc-empty
[  160.828853][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  160.872997][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  160.910495][ T5830] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  160.925093][ T5830] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input17
[  160.946392][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  160.988036][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.027271][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.077237][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.117364][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.154298][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.163884][ T1139] team0 (unregistering): Port device team_slave_1 removed
[  161.225537][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.267256][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.317864][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.340791][ T1139] team0 (unregistering): Port device team_slave_0 removed
[  161.359609][ T5830] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  161.412606][ T5830] mceusb 2-1:0.0: Registered  with mce emulator interface version 1
[  161.432022][ T5830] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  161.466647][ T5830] usb 2-1: USB disconnect, device number 12
[  161.495185][ T1139] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.662341][ T1139] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.914696][ T7941] loop2: detected capacity change from 0 to 32768
[  161.936137][ T7941] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 scanned by syz.2.763 (7941)
[  161.952009][ T7943] loop1: detected capacity change from 0 to 512
[  161.970923][ T7941] BTRFS info (device loop2): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  161.975463][ T7943] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  161.985948][ T7941] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  162.027935][ T7941] BTRFS info (device loop2): using free space tree
[  162.129853][ T7943] EXT4-fs (loop1): 1 orphan inode deleted
[  162.161495][ T1089] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  162.172883][ T7943] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.201585][ T1089] EXT4-fs error (device loop1): ext4_release_dquot:6985: comm kworker/u4:6: Failed to release dquot type 1
[  162.242861][ T7941] BTRFS info (device loop2): enabling ssd optimizations
[  162.251376][ T7941] BTRFS info (device loop2): auto enabling async discard
[  162.268160][ T7943] ext4 filesystem being mounted at /176/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.345362][ T5762] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.550700][ T5770] BTRFS info (device loop2): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  162.797140][ T5765] Bluetooth: hci1: command tx timeout
[  162.929563][ T7967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.766'.
[  163.009323][ T1139] bond0 (unregistering): Released all slaves
[  163.131673][ T7964] loop1: detected capacity change from 0 to 32768
[  163.141600][ T7964] XFS: attr2 mount option is deprecated.
[  163.273136][ T7964] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  163.372305][ T7840] batman_adv: batadv0: Adding interface: batadv_slave_0
[  163.387498][ T7964] XFS (loop1): Ending clean mount
[  163.406105][ T7840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.408367][ T7964] XFS (loop1): Quotacheck needed: Please wait.
[  163.487362][ T7840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  163.534407][ T7964] XFS (loop1): Quotacheck: Done.
[  163.587789][ T7840] batman_adv: batadv0: Adding interface: batadv_slave_1
[  163.594790][ T7840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.664675][ T7840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  163.719280][ T7964] XFS (loop1): User initiated shutdown received.
[  163.749259][ T7980] loop3: detected capacity change from 0 to 256
[  163.767184][ T7980] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  163.769545][ T7964] XFS (loop1): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:497).  Shutting down filesystem.
[  163.792328][ T7964] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[  163.881750][ T7980] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010364, chksum : 0x44009a1b, utbl_chksum : 0xe619d30d)
[  163.983662][ T7840] hsr_slave_0: entered promiscuous mode
[  164.002488][ T5762] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  164.017302][ T7840] hsr_slave_1: entered promiscuous mode
[  164.072208][ T7840] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  164.117689][ T7840] Cannot create hsr debugfs directory
[  164.317001][ T7989] 9pnet: p9_errstr2errno: server reported unknown error ÿÿÿÿ
[  164.713684][ T1139] IPVS: stop unused estimator thread 0...
[  164.879153][ T5765] Bluetooth: hci1: command tx timeout
[  164.939681][ T7840] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  164.954857][ T7840] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  164.969405][ T7840] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  164.993237][ T7840] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  165.153912][ T7840] 8021q: adding VLAN 0 to HW filter on device bond0
[  165.163127][ T7991] loop3: detected capacity change from 0 to 32768
[  165.199085][ T7991] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.771 (7991)
[  165.244737][ T7840] 8021q: adding VLAN 0 to HW filter on device team0
[  165.296188][ T7991] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  165.318745][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.325916][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.353415][ T7991] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  165.369935][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.377142][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.387361][ T7991] BTRFS info (device loop3): enabling disk space caching
[  165.394541][ T7991] BTRFS info (device loop3): force clearing of disk cache
[  165.422982][ T7991] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  165.455656][ T7991] BTRFS info (device loop3): use zstd compression, level 3
[  165.470537][ T7991] BTRFS info (device loop3): disk space caching is enabled
[  165.597417][ T7840] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  165.642627][ T7991] BTRFS info (device loop3): enabling ssd optimizations
[  165.690638][ T7991] BTRFS info (device loop3): auto enabling async discard
[  165.740391][ T7991] BTRFS info (device loop3): rebuilding free space tree
[  165.762493][ T8039] netlink: 12 bytes leftover after parsing attributes in process `syz.1.775'.
[  165.792472][ T7991] BTRFS info (device loop3): disabling free space tree
[  165.817368][ T7991] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  165.849313][ T7991] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  166.302089][ T7840] 8021q: adding VLAN 0 to HW filter on device batadv0
[  166.329221][ T5773] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  166.483122][ T8060] loop1: detected capacity change from 0 to 1024
[  166.599106][ T8060] hfsplus: bad catalog entry type
[  166.773374][   T59] hfsplus: b-tree write err: -5, ino 4
[  167.177352][   T23] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  167.344792][ T7840] veth0_vlan: entered promiscuous mode
[  167.381788][ T8049] loop2: detected capacity change from 0 to 40427
[  167.392661][ T7840] veth1_vlan: entered promiscuous mode
[  167.411598][   T23] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  167.431182][   T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.456561][ T8049] F2FS-fs (loop2): invalid crc value
[  167.472593][   T23] usb 4-1: Product: syz
[  167.483979][   T23] usb 4-1: Manufacturer: syz
[  167.515489][ T7840] veth0_macvtap: entered promiscuous mode
[  167.524107][ T8049] F2FS-fs (loop2): Found nat_bits in checkpoint
[  167.531654][   T23] usb 4-1: SerialNumber: syz
[  167.548982][   T23] usb 4-1: config 0 descriptor??
[  167.572032][ T7840] veth1_macvtap: entered promiscuous mode
[  167.661612][ T7840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.695589][ T7840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.717725][ T7840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.728407][ T8049] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  167.777032][ T7840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.807028][ T7840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.842251][ T7840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.878963][ T7840] batman_adv: batadv0: Interface activated: batadv_slave_0
[  167.928343][ T5770] syz-executor: attempt to access beyond end of device
[  167.928343][ T5770] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  167.929691][ T7840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.983604][ T7840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.993572][ T5770] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  168.003347][   T23] usb 4-1: Firmware: major: 130, minor: 102, hardware type: HULUSB (4)
[  168.012111][ T7840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  168.062278][ T7840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.097043][ T7840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  168.136490][ T7840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.154390][ T7840] batman_adv: batadv0: Interface activated: batadv_slave_1
[  168.186262][ T7840] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.210427][ T7840] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.217899][   T23] usb 4-1: failed to fetch extended address, random address set
[  168.221305][ T7840] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.238352][ T7840] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.364214][   T23] usb 4-1: USB disconnect, device number 9
[  168.596581][ T1139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  168.634899][ T1139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  168.687645][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  168.696594][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  168.797811][ T8103] input: syz0 as /devices/virtual/input/input18
[  168.867186][   T27] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  169.067432][   T27] usb 2-1: Using ep0 maxpacket: 8
[  169.088065][   T27] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  169.095284][ T8116] loop2: detected capacity change from 0 to 64
[  169.114387][   T27] usb 2-1: config 0 has no interfaces?
[  169.133499][   T27] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  169.184362][   T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.214768][   T27] usb 2-1: Product: syz
[  169.237294][   T27] usb 2-1: Manufacturer: syz
[  169.241953][   T27] usb 2-1: SerialNumber: syz
[  169.275099][   T27] usb 2-1: config 0 descriptor??
[  169.537043][ T5830] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  169.554559][   T27] usb 2-1: USB disconnect, device number 13
[  169.726968][ T5830] usb 4-1: Using ep0 maxpacket: 8
[  169.733772][ T5830] usb 4-1: too many configurations: 23, using maximum allowed: 8
[  169.768805][ T5830] usb 4-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  169.797021][ T5830] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.815323][ T5830] usb 4-1: Product: syz
[  169.826874][ T5830] usb 4-1: Manufacturer: syz
[  169.834453][ T5830] usb 4-1: SerialNumber: syz
[  169.864955][ T5830] usb 4-1: config 0 descriptor??
[  170.137543][ T5830] usb 4-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[  170.240270][ T8157] loop1: detected capacity change from 0 to 512
[  170.271468][ T8157] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  170.375705][ T8157] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  170.468574][ T8157] EXT4-fs error (device loop1): __ext4_iget:5071: inode #15: block 1803188595: comm syz.1.800: invalid block
[  170.487722][ T8157] EXT4-fs (loop1): Remounting filesystem read-only
[  170.499107][ T8157] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.708965][ T5762] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.718785][ T8154] loop2: detected capacity change from 0 to 32768
[  170.747399][ T5830] usb write operation failed. (-71)
[  170.758545][ T8154] XFS: attr2 mount option is deprecated.
[  170.782504][ T5830] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  170.800148][ T5830] dvbdev: DVB: registering new adapter (Terratec H7)
[  170.807213][ T5830] usb 4-1: media controller created
[  170.812840][ T5830] usb read operation failed. (-71)
[  170.826643][ T5830] usb write operation failed. (-71)
[  170.844885][ T8154] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  170.888947][ T5830] dvb_usb_az6007: probe of 4-1:0.0 failed with error -5
[  170.932234][ T5830] usb 4-1: USB disconnect, device number 10
[  171.076224][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.084628][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.092891][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.100959][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.108921][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.116846][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.124934][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.132900][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.140868][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.148923][ T8186] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  171.245904][ T8154] XFS (loop2): Ending clean mount
[  171.260801][ T8154] XFS (loop2): Quotacheck needed: Please wait.
[  171.346146][ T8154] XFS (loop2): Quotacheck: Done.
[  171.486637][ T8193] loop1: detected capacity change from 0 to 512
[  171.522410][ T8193] EXT4-fs: Ignoring removed nomblk_io_submit option
[  171.547752][ T8193] EXT4-fs (loop1): Test dummy encryption mode enabled
[  171.574082][ T8193] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  171.660518][ T8193] EXT4-fs (loop1): 1 truncate cleaned up
[  171.699259][ T8193] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.778428][ T5770] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  171.841861][ T8205] loop4: detected capacity change from 0 to 256
[  171.971912][ T8205] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d)
[  172.047052][   T28] audit: type=1800 audit(1770220283.209:81): pid=8205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.810" name="file1" dev="loop4" ino=1048614 res=0 errno=0
[  172.104174][   T28] audit: type=1800 audit(1770220283.239:82): pid=8205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.810" name="file1" dev="loop4" ino=1048614 res=0 errno=0
[  172.150641][ T5762] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.371235][ T8215] loop1: detected capacity change from 0 to 256
[  172.443454][ T8215] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  172.488917][ T8220] loop2: detected capacity change from 0 to 128
[  172.522678][ T8220] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  172.585848][ T8220] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  172.587105][ T8223] netlink: 20 bytes leftover after parsing attributes in process `syz.3.816'.
[  172.662392][ T8225] netlink: 4 bytes leftover after parsing attributes in process `syz.4.817'.
[  172.934779][   T11] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  173.027146][ T5816] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  173.219778][ T5816] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  173.240150][ T5816] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.280678][ T5816] usb 2-1: config 0 descriptor??
[  173.305317][ T5816] cp210x 2-1:0.0: cp210x converter detected
[  173.475416][ T8247] loop2: detected capacity change from 0 to 4096
[  173.572934][ T8232] loop3: detected capacity change from 0 to 32768
[  173.620561][ T8232] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop3 scanned by syz.3.819 (8232)
[  173.671517][ T8232] BTRFS info (device loop3): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  173.708647][ T8232] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  173.721779][ T5816] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32
[  173.742859][ T8232] BTRFS info (device loop3): using free space tree
[  173.767634][ T5816] usb 2-1: cp210x converter now attached to ttyUSB0
[  173.987150][ T2131] usb 2-1: USB disconnect, device number 14
[  173.997460][ T2131] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  174.032803][ T2131] cp210x 2-1:0.0: device disconnected
[  174.070756][ T8232] BTRFS info (device loop3): enabling ssd optimizations
[  174.085586][ T8246] loop4: detected capacity change from 0 to 32768
[  174.104205][ T8232] BTRFS info (device loop3): auto enabling async discard
[  174.124118][ T8246] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop4 scanned by syz.4.825 (8246)
[  174.165432][ T8246] BTRFS info (device loop4): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  174.206302][ T8246] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  174.231591][ T8246] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8)
[  174.277815][ T8246] BTRFS info (device loop4): use lzo compression, level 0
[  174.284996][ T8246] BTRFS info (device loop4): using free space tree
[  174.390108][ T5773] BTRFS info (device loop3): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  174.495955][ T8246] BTRFS info (device loop4): enabling ssd optimizations
[  174.586425][ T8246] BTRFS info (device loop4): auto enabling async discard
[  174.595696][ T5991] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 10 /dev/loop3 scanned by udevd (5991)
[  174.602922][ T8293] netlink: 'syz.2.830': attribute type 1 has an invalid length.
[  174.965241][ T7840] BTRFS info (device loop4): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  175.020898][ T8304] netlink: 20 bytes leftover after parsing attributes in process `syz.1.833'.
[  175.137879][ T8304] nbd: socks must be embedded in a SOCK_ITEM attr
[  175.571878][ T8318] loop1: detected capacity change from 0 to 128
[  175.587046][ T2131] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  175.633735][ T8318] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  175.656106][ T5990] udevd[5990]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  175.791870][  T218] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  175.797047][ T2131] usb 3-1: Using ep0 maxpacket: 32
[  175.829674][ T2131] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.841498][ T2131] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  175.867143][ T2131] usb 3-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  175.917127][ T2131] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.942062][ T8296] loop3: detected capacity change from 0 to 32768
[  175.943635][ T2131] usb 3-1: config 0 descriptor??
[  176.091498][ T8296] non-latin1 character 0x172 found in JFS file name
[  176.098681][ T8296] mount with iocharset=utf8 to access
[  176.104214][ T8296] ERROR: (device loop3): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 0
[  176.104214][ T8296] 
[  176.144651][ T8296] ERROR: (device loop3): remounting filesystem as read-only
[  176.155070][ T8296] read_mapping_page failed!
[  176.169983][ T8296] bread failed!
[  176.297291][   T27] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  176.411021][ T2131] logitech 0003:046D:C29C.000C: unknown main item tag 0x0
[  176.434587][ T2131] logitech 0003:046D:C29C.000C: unknown main item tag 0x0
[  176.449611][ T2131] logitech 0003:046D:C29C.000C: unknown main item tag 0x0
[  176.469466][ T2131] logitech 0003:046D:C29C.000C: unknown main item tag 0x0
[  176.476668][ T2131] logitech 0003:046D:C29C.000C: unknown main item tag 0x0
[  176.494324][ T2131] logitech 0003:046D:C29C.000C: unknown main item tag 0x0
[  176.511957][   T27] usb 2-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a
[  176.534207][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.543425][ T2131] logitech 0003:046D:C29C.000C: hidraw0: USB HID vb4.30 Device [HID 046d:c29c] on usb-dummy_hcd.2-1/input0
[  176.556800][ T8334] loop4: detected capacity change from 0 to 2048
[  176.579630][   T27] usb 2-1: config 0 descriptor??
[  176.598013][   T27] gspca_main: sn9c2028-2.14.0 probing 0c45:8001
[  176.633729][ T8334] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.671796][ T8334] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.801140][ T8334] fs-verity: sha512 using implementation "sha512-avx2"
[  176.807199][   T27] gspca_sn9c2028: read1 error -32
[  176.820122][   T27] gspca_sn9c2028: read1 error -32
[  176.828352][ T2131] logitech 0003:046D:C29C.000C: no inputs found
[  176.838231][ T8334] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 5 vs 4156096517 free clusters
[  176.869649][ T8334] fs-verity (loop4, inode 13): ext4_end_enable_verity() failed with err -28
[  176.903803][ T2131] usb 3-1: USB disconnect, device number 13
[  177.007579][ T7840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.058099][ T5816] usb 2-1: USB disconnect, device number 15
[  177.177729][ T8341] Bluetooth: MGMT ver 1.22
[  177.315158][ T8345] loop4: detected capacity change from 0 to 128
[  177.580937][ T8353] loop2: detected capacity change from 0 to 2048
[  177.611212][ T8353] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  177.664473][ T8353] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  177.951739][ T8361] overlayfs: upper fs does not support tmpfile.
[  178.096340][ T8366] loop2: detected capacity change from 0 to 512
[  178.190030][ T8366] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.853: invalid indirect mapped block 256 (level 2)
[  178.286194][ T8366] EXT4-fs (loop2): 2 truncates cleaned up
[  178.329560][ T8366] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.446128][ T8366] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.853: bg 0: block 5: invalid block bitmap
[  178.455406][ T8373] netlink: 8 bytes leftover after parsing attributes in process `syz.1.857'.
[  178.489528][ T8373] netlink: 12 bytes leftover after parsing attributes in process `syz.1.857'.
[  178.517178][ T8366] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  178.559147][ T8366] EXT4-fs (loop2): This should not happen!! Data will be lost
[  178.559147][ T8366] 
[  178.626521][ T8366] EXT4-fs (loop2): Total free blocks count 0
[  178.651412][ T8366] EXT4-fs (loop2): Free/Dirty block details
[  178.677052][ T8366] EXT4-fs (loop2): free_blocks=0
[  178.687290][ T8366] EXT4-fs (loop2): dirty_blocks=66
[  178.692463][ T8366] EXT4-fs (loop2): Block reservation details
[  178.720904][ T8366] EXT4-fs (loop2): i_reserved_data_blocks=66
[  178.843020][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.623031][ T8403] loop2: detected capacity change from 0 to 4096
[  179.653768][ T8403] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  179.687559][   T28] audit: type=1326 audit(1770220290.839:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8406 comm="syz.4.871" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe6b459aeb9 code=0x0
[  179.764504][ T8403] ntfs3: loop2: Failed to initialize $Extend/$ObjId.
[  179.856801][ T8403] Zero length message leads to an empty skb
[  180.381552][ T8425] net_ratelimit: 44 callbacks suppressed
[  180.381571][ T8425] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  180.534982][ T8431] loop2: detected capacity change from 0 to 128
[  180.572737][ T8431] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  180.600909][ T8431] hpfs: filesystem error: improperly stopped
[  180.630219][ T8431] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  180.648962][ T8431] hpfs: You really don't want any checks? You are crazy...
[  180.661862][ T8431] hpfs: hpfs_map_sector(): read error
[  180.668722][ T8431] hpfs: code page support is disabled
[  180.674401][ T8431] hpfs: hpfs_map_4sectors(): unaligned read
[  180.682249][ T8431] hpfs: hpfs_map_4sectors(): unaligned read
[  180.688605][ T8431] hpfs: filesystem error: unable to find root dir
[  180.988573][ T8440] loop4: detected capacity change from 0 to 512
[  181.035701][ T8440] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  181.061241][ T8401] loop1: detected capacity change from 0 to 65536
[  181.103817][ T8440] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.126320][ T8440] ext4 filesystem being mounted at /38/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  181.129473][ T8401] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  181.151253][   T28] audit: type=1800 audit(1770220292.319:84): pid=8440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.882" name="file2" dev="loop4" ino=16 res=0 errno=0
[  181.212685][ T8401] XFS (loop1): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  181.229451][ T7840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.414559][ T8401] XFS (loop1): Ending clean mount
[  181.647679][ T5762] XFS (loop1): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  182.645425][ T8497] IPv6: NLM_F_REPLACE set, but no existing node found!
[  182.653411][ T8491] block device autoloading is deprecated and will be removed.
[  182.920384][ T8503] loop2: detected capacity change from 0 to 2048
[  182.943119][ T8505] loop1: detected capacity change from 0 to 1024
[  182.984396][ T8503] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.985835][ T8505] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  183.031755][ T8505] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.100228][   T28] audit: type=1800 audit(1770220294.269:85): pid=8505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.908" name="file1" dev="loop1" ino=15 res=0 errno=0
[  183.131745][ T8505] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #15: comm syz.1.908: lblock 0 mapped to illegal pblock 0 (length 6)
[  183.204613][ T8514] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  183.224987][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.269348][ T8505] EXT4-fs error (device loop1): ext4_ext_remove_space:2929: inode #15: comm syz.1.908: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  183.364169][ T8517] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #15: comm syz.1.908: lblock 0 mapped to illegal pblock 0 (length 1)
[  183.579416][ T5762] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  183.867026][ T2131] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  184.057009][ T2131] usb 4-1: Using ep0 maxpacket: 16
[  184.068764][ T2131] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  184.082035][ T2131] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  184.105009][ T2131] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  184.123783][ T2131] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  184.149383][ T2131] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  184.180381][ T2131] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  184.192238][ T2131] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  184.211784][ T2131] usb 4-1: Manufacturer: syz
[  184.237667][ T2131] usb 4-1: config 0 descriptor??
[  184.627181][ T2131] rc_core: IR keymap rc-hauppauge not found
[  184.633145][ T2131] Registered IR keymap rc-empty
[  184.647162][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  184.681231][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  184.724298][ T2131] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  184.769893][ T2131] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input20
[  184.817470][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  184.867085][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  184.913812][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  184.957568][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  184.998592][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  185.048569][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  185.078061][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  185.130883][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  185.168342][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  185.217050][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  185.247053][ T2131] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  185.300099][ T2131] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[  185.337853][ T2131] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  185.374041][ T2131] usb 4-1: USB disconnect, device number 11
[  185.379106][ T8575] loop2: detected capacity change from 0 to 256
[  185.905220][ T8589] loop1: detected capacity change from 0 to 256
[  185.992777][ T8589] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  186.078982][ T8589] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  186.185259][ T8589] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  186.186266][ T8600] netlink: 20 bytes leftover after parsing attributes in process `syz.2.937'.
[  186.236025][ T8600] nbd: socks must be embedded in a SOCK_ITEM attr
[  186.861554][ T8591] loop3: detected capacity change from 0 to 32768
[  187.438713][ T8627] loop3: detected capacity change from 0 to 136
[  187.578891][ T8627] rock: directory entry would overflow storage
[  187.585608][ T8627] rock: sig=0x4f50, size=4, remaining=3
[  187.606077][ T8627] iso9660: Corrupted directory entry in block 2 of inode 1472
[  187.915583][ T8642] netlink: 48 bytes leftover after parsing attributes in process `syz.4.949'.
[  189.020285][ T8688] netlink: 8 bytes leftover after parsing attributes in process `syz.3.964'.
[  190.183243][ T8725] loop1: detected capacity change from 0 to 256
[  190.722056][ T8714] loop2: detected capacity change from 0 to 32768
[  190.785107][ T8714] 
[  190.785107][ T8714]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  190.785107][ T8714] 
[  190.959318][ T5770] 
[  190.959318][ T5770]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  190.959318][ T5770] 
[  190.994840][ T8720] loop4: detected capacity change from 0 to 40427
[  191.027248][ T5770] 
[  191.027248][ T5770]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  191.027248][ T5770] 
[  191.058711][ T8720] F2FS-fs (loop4): invalid crc value
[  191.085297][ T8720] F2FS-fs (loop4): Found nat_bits in checkpoint
[  191.327121][ T8720] F2FS-fs (loop4): Start checkpoint disabled!
[  191.407051][ T8720] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  191.506091][ T8720] syz.4.974: attempt to access beyond end of device
[  191.506091][ T8720] loop4: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  191.526255][ T5772] Bluetooth: hci0: command 0x0c20 tx timeout
[  191.532718][ T5772] Bluetooth: hci2: command 0x0406 tx timeout
[  191.552033][ T8742] loop2: detected capacity change from 0 to 8192
[  191.988451][   T49] kworker/u4:3: attempt to access beyond end of device
[  191.988451][   T49] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  192.066523][   T49] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  192.078943][   T49] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  192.369317][ T8743] loop1: detected capacity change from 0 to 32768
[  192.412739][ T8743] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.978 (8743)
[  192.491443][ T8743] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  192.517891][ T8743] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  192.547343][ T8743] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  192.557921][ T8743] BTRFS info (device loop1): use zstd compression, level 3
[  192.578663][ T8743] BTRFS info (device loop1): using free space tree
[  192.628764][ T8770] loop2: detected capacity change from 0 to 128
[  192.906110][ T8743] BTRFS info (device loop1): enabling ssd optimizations
[  192.926494][ T8743] BTRFS info (device loop1): auto enabling async discard
[  192.953734][   T49] kworker/u4:3: attempt to access beyond end of device
[  192.953734][   T49] loop2: rw=1, sector=138, nr_sectors = 16 limit=128
[  192.996586][   T49] kworker/u4:3: attempt to access beyond end of device
[  192.996586][   T49] loop2: rw=1, sector=170, nr_sectors = 6 limit=128
[  193.201348][ T5762] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  193.264502][ T8800] loop2: detected capacity change from 0 to 1024
[  193.311989][ T8800] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  193.374478][ T8800] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  193.396634][ T8798] loop3: detected capacity change from 0 to 4096
[  193.461673][ T8798] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  193.477482][ T8800] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.649931][ T8798] ntfs3: loop3: Failed to load $Extend (-22).
[  193.681351][ T8798] ntfs3: loop3: Failed to initialize $Extend.
[  193.690426][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.586684][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  194.596962][ T1282] ieee802154 phy1 wpan1: encryption failed: -22
[  195.253791][ T8868] loop4: detected capacity change from 0 to 1024
[  195.445524][ T8876] loop3: detected capacity change from 0 to 256
[  195.477131][   T27] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  195.667028][   T27] usb 3-1: Using ep0 maxpacket: 32
[  195.676787][   T27] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0021, bcdDevice=29.40
[  195.696349][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.724903][   T27] usb 3-1: config 0 descriptor??
[  195.970365][   T27] dvb-usb: found a 'Elgato EyeTV DTT' in warm state.
[  195.993758][ T8887] loop4: detected capacity change from 0 to 256
[  196.001212][   T27] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  196.007975][ T8887] exfat: Deprecated parameter 'utf8'
[  196.015809][ T8887] exfat: Deprecated parameter 'utf8'
[  196.041268][   T27] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT)
[  196.069354][ T8887] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  196.075209][   T27] usb 3-1: media controller created
[  196.145457][   T27] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  196.204329][ T8867] dib0700: tx buffer length is larger than 4. Not supported.
[  196.342589][   T27] DVB: Unable to find symbol dib7000p_attach()
[  196.348943][   T27] dvb-usb: no frontend was attached by 'Elgato EyeTV DTT'
[  196.457093][   T27] rc_core: IR keymap rc-dib0700-rc5 not found
[  196.463439][   T27] Registered IR keymap rc-empty
[  196.478592][   T27] dvb-usb: could not initialize remote control.
[  196.496335][   T27] dvb-usb: Elgato EyeTV DTT successfully initialized and connected.
[  196.523173][   T27] usb 3-1: USB disconnect, device number 14
[  196.603801][   T27] dvb-usb: Elgato EyeTV DTT successfully deinitialized and disconnected.
[  196.794858][ T8905] loop4: detected capacity change from 0 to 1024
[  196.854141][   T23] hid-generic 0005:16C0:05DF.000D: item fetching failed at offset 0/2
[  196.895714][   T23] hid-generic: probe of 0005:16C0:05DF.000D failed with error -22
[  196.922699][ T8912] input: syz0 as /devices/virtual/input/input22
[  196.932918][ T8905] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  197.000026][ T8905] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.023601][ T8905] EXT4-fs error (device loop4): ext4_map_blocks:718: inode #15: comm syz.4.1020: lblock 0 mapped to illegal pblock 0 (length 1)
[  197.096558][   T59] EXT4-fs error (device loop4): ext4_map_blocks:718: inode #15: comm kworker/u4:4: lblock 0 mapped to illegal pblock 0 (length 1)
[  197.154122][   T59] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  197.175306][ T5830] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  197.190063][   T59] EXT4-fs (loop4): This should not happen!! Data will be lost
[  197.190063][   T59] 
[  197.229238][ T7840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  197.396270][ T5830] usb 4-1: New USB device found, idVendor=056e, idProduct=00fb, bcdDevice= 0.00
[  197.417644][ T5830] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.428468][ T5830] usb 4-1: config 0 descriptor??
[  197.844009][ T5830] elecom 0003:056E:00FB.000E: unknown main item tag 0x0
[  197.865454][ T5830] elecom 0003:056E:00FB.000E: unknown main item tag 0x0
[  197.877594][ T8945] sock: sock_set_timeout: `syz.4.1038' (pid 8945) tries to set negative timeout
[  197.880889][ T5830] elecom 0003:056E:00FB.000E: unknown main item tag 0x0
[  197.899034][ T5830] elecom 0003:056E:00FB.000E: unknown main item tag 0x0
[  197.906154][ T5830] elecom 0003:056E:00FB.000E: unknown main item tag 0x0
[  197.924596][ T5830] elecom 0003:056E:00FB.000E: unknown main item tag 0x0
[  197.934385][ T5830] elecom 0003:056E:00FB.000E: unknown main item tag 0x0
[  197.954274][ T5830] elecom 0003:056E:00FB.000E: hidraw0: USB HID v10.00 Device [HID 056e:00fb] on usb-dummy_hcd.3-1/input0
[  198.050788][ T5830] usb 4-1: USB disconnect, device number 12
[  198.079987][ T8949] fido_id[8949]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  198.318131][ T8963] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  198.502873][ T8961] loop4: detected capacity change from 0 to 32768
[  198.516453][ T8961] (syz.4.1044,8961,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  198.533058][ T8961] (syz.4.1044,8961,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  198.558215][ T8961] JBD2: Ignoring recovery information on journal
[  198.599875][ T8961] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  198.924088][ T8977] syzkaller1: tun_chr_ioctl cmd 1074025694
[  198.932835][   T28] audit: type=1800 audit(1770220566.094:86): pid=8961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1044" name="file1" dev="loop4" ino=16978 res=0 errno=0
[  199.091312][ T7840] ocfs2: Unmounting device (7,4) on (node local)
[  199.095950][ T8982] loop2: detected capacity change from 0 to 16
[  199.138271][ T8982] erofs: (device loop2): mounted with root inode @ nid 36.
[  199.630502][ T8997] loop4: detected capacity change from 0 to 1024
[  199.986311][   T27] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  200.197778][   T27] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[  200.224864][   T27] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  200.249965][   T27] usb 4-1: config 220 has an invalid descriptor of length 1, skipping remainder of the config
[  200.286055][   T27] usb 4-1: config 220 has no interface number 2
[  200.304584][   T27] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  200.349786][   T27] usb 4-1: config 220 interface 0 has no altsetting 0
[  200.370031][   T27] usb 4-1: config 220 interface 76 has no altsetting 0
[  200.394080][   T27] usb 4-1: config 220 interface 1 has no altsetting 0
[  200.418053][   T27] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  200.446058][   T27] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.466097][   T27] usb 4-1: Product: syz
[  200.470319][   T27] usb 4-1: Manufacturer: syz
[  200.474935][   T27] usb 4-1: SerialNumber: syz
[  200.746630][   T27] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[  200.753046][   T27] usb 4-1: No valid video chain found.
[  200.766247][   T27] usb 4-1: selecting invalid altsetting 0
[  200.802410][   T27] usb 4-1: selecting invalid altsetting 0
[  200.819259][   T27] usbtest: probe of 4-1:220.1 failed with error -22
[  200.838770][   T27] usb 4-1: USB disconnect, device number 13
[  201.225648][ T5849] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  201.435816][ T5849] usb 3-1: Using ep0 maxpacket: 32
[  201.444765][ T5849] usb 3-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  201.454563][   T28] audit: type=1326 audit(1770220568.605:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9045 comm="syz.3.1083" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd6a39aeb9 code=0x0
[  201.476358][ T5849] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.484359][ T5849] usb 3-1: Product: syz
[  201.488617][ T5849] usb 3-1: Manufacturer: syz
[  201.493224][ T5849] usb 3-1: SerialNumber: syz
[  201.503922][ T5849] usb 3-1: config 0 descriptor??
[  201.717272][ T5849] RobotFuzz Open Source InterFace, OSIF 3-1:0.0: version d4.15 found at bus 003 address 015
[  201.923104][ T9034] i2c i2c-1: adapter quirk: no zero length (addr 0x0000, size 0, read)
[  201.950293][   T27] usb 3-1: USB disconnect, device number 15
[  202.291257][ T9065] loop4: detected capacity change from 0 to 1024
[  202.311075][ T9065] EXT4-fs: Ignoring removed bh option
[  202.341467][ T9065] EXT4-fs: Ignoring removed bh option
[  202.419138][ T9065] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  202.433645][ T9065] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.527233][ T9065] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1090: bg 0: block 112: padding at end of block bitmap is not set
[  202.597292][ T9065] EXT4-fs (loop4): Remounting filesystem read-only
[  202.682641][ T7840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  204.085895][ T9121] loop2: detected capacity change from 0 to 256
[  204.115066][ T9121] exfat: Deprecated parameter 'namecase'
[  204.163874][ T9125] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  204.215903][ T9121] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xee17df4f, utbl_chksum : 0xe619d30d)
[  204.221309][ T9125] iommufd_mock iommufd_mock2: Adding to iommu group 1
[  205.183093][ T9164] loop3: detected capacity change from 0 to 2048
[  205.232999][ T9165] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  205.315147][ T9167] macvlan0: entered promiscuous mode
[  205.339737][ T9146] loop2: detected capacity change from 0 to 40427
[  205.349123][ T9167] netlink: 'syz.4.1134': attribute type 1 has an invalid length.
[  205.353723][ T9146] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  205.372650][ T9167] netlink: 'syz.4.1134': attribute type 2 has an invalid length.
[  205.395881][ T9146] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  205.406244][ T9165] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  205.423357][ T9146] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x1f8
[  205.437947][ T9165] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4)
[  205.450585][ T9146] F2FS-fs (loop2): invalid crc value
[  205.466668][ T9165] Remounting filesystem read-only
[  205.472081][   T49] NILFS (loop3): discard dirty page: offset=4096, ino=6
[  205.486225][   T49] NILFS (loop3): discard dirty block: blocknr=39, size=1024
[  205.490265][ T9146] F2FS-fs (loop2): Found nat_bits in checkpoint
[  205.517650][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.548315][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.578108][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.597041][ T9146] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  205.604477][ T9146] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  205.610015][   T49] NILFS (loop3): discard dirty page: offset=0, ino=2
[  205.618824][   T49] NILFS (loop3): discard dirty block: blocknr=18, size=1024
[  205.634161][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.667606][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.681811][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.699793][   T49] NILFS (loop3): discard dirty page: offset=0, ino=5
[  205.707578][   T49] NILFS (loop3): discard dirty block: blocknr=41, size=1024
[  205.721013][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.730804][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.756282][   T49] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  205.800190][ T9168] NILFS (loop3): mounting fs with errors
[  205.807248][ T5770] syz-executor: attempt to access beyond end of device
[  205.807248][ T5770] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  205.822967][ T9164] NILFS error (device loop3): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  205.829334][ T5770] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  205.844661][ T9164] Remounting filesystem read-only
[  205.849092][ T9180] loop4: detected capacity change from 0 to 512
[  205.849711][ T9164] NILFS (loop3): error -5 reading inode: ino=18
[  205.864602][ T9180] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  205.875489][ T9164] NILFS (loop3): cannot mark inode dirty (ino=18): error -5 loading inode block
[  205.923371][ T9180] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.1138: iget: bad i_size value: 38620345925642
[  205.950455][ T5773] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer
[  205.970025][ T5773] NILFS (loop3): discard dirty page: offset=0, ino=6
[  205.977817][ T9180] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.1138: couldn't read orphan inode 15 (err -117)
[  205.989818][ T5773] NILFS (loop3): discard dirty block: blocknr=35, size=1024
[  205.997667][ T5773] NILFS (loop3): discard dirty block: blocknr=36, size=1024
[  206.006649][ T5773] NILFS (loop3): discard dirty block: blocknr=37, size=1024
[  206.015861][ T5773] NILFS (loop3): discard dirty block: blocknr=38, size=1024
[  206.034799][ T5773] NILFS (loop3): discard dirty page: offset=0, ino=4
[  206.034800][ T9180] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.063239][ T5773] NILFS (loop3): discard dirty block: blocknr=40, size=1024
[  206.070745][ T5773] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  206.086315][ T5773] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  206.097420][ T5773] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  206.109585][ T5773] NILFS (loop3): discard dirty page: offset=0, ino=3
[  206.116668][ T5773] NILFS (loop3): discard dirty block: blocknr=42, size=1024
[  206.126896][ T5773] NILFS (loop3): discard dirty block: blocknr=43, size=1024
[  206.135607][ T9180] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm syz.4.1138: bg 0: block 5: invalid block bitmap
[  206.155078][ T5773] NILFS (loop3): discard dirty block: blocknr=44, size=1024
[  206.162529][ T5773] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  206.179857][ T5773] NILFS (loop3): discard dirty page: offset=196608, ino=3
[  206.187973][ T9180] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  206.200504][ T5773] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  206.211246][ T9180] EXT4-fs (loop4): This should not happen!! Data will be lost
[  206.211246][ T9180] 
[  206.221104][ T5773] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  206.230105][ T5773] NILFS (loop3): discard dirty block: blocknr=49, size=1024
[  206.237798][ T9180] EXT4-fs (loop4): Total free blocks count 0
[  206.243936][ T5773] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  206.252943][ T9180] EXT4-fs (loop4): Free/Dirty block details
[  206.260109][ T9180] EXT4-fs (loop4): free_blocks=0
[  206.265339][ T9180] EXT4-fs (loop4): dirty_blocks=2
[  206.270407][ T9180] EXT4-fs (loop4): Block reservation details
[  206.295177][ T9180] EXT4-fs (loop4): i_reserved_data_blocks=2
[  206.369805][ T7840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.449533][ T9186] loop4: detected capacity change from 0 to 512
[  206.542742][ T9186] EXT4-fs (loop4): orphan cleanup on readonly fs
[  206.596941][ T9192] loop1: detected capacity change from 0 to 4096
[  206.616522][ T9186] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1141: bg 0: block 248: padding at end of block bitmap is not set
[  206.637967][ T9186] Quota error (device loop4): write_blk: dquota write failed
[  206.661378][ T9186] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  206.672013][ T9186] EXT4-fs error (device loop4): ext4_acquire_dquot:6949: comm syz.4.1141: Failed to acquire dquot type 1
[  206.737163][ T9186] EXT4-fs (loop4): 1 truncate cleaned up
[  206.763712][ T9186] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  206.776812][ T9196] loop2: detected capacity change from 0 to 2048
[  206.804122][ T9186] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  206.811793][ T9192] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  206.830483][ T9186] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 0
[  206.860162][ T9196] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  206.957774][ T7840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.400559][ T9214] loop1: detected capacity change from 0 to 256
[  207.441804][ T9214] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  207.530284][ T9211] loop2: detected capacity change from 0 to 32768
[  207.598650][ T9211] JBD2: Ignoring recovery information on journal
[  207.687832][ T9211] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  207.861728][ T9211] OCFS2: ERROR (device loop2): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #32 has bit count of 1024
[  207.880214][ T9211] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  207.890208][ T9211] OCFS2: File system is now read-only.
[  207.895721][ T9211] (syz.2.1151,9211,0):ocfs2_search_chain:1761 ERROR: status = -30
[  207.904087][ T9211] (syz.2.1151,9211,0):ocfs2_search_chain:1871 ERROR: status = -30
[  207.911932][ T9211] (syz.2.1151,9211,0):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30
[  207.922298][ T9211] (syz.2.1151,9211,0):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[  207.930770][ T9211] (syz.2.1151,9211,0):__ocfs2_claim_clusters:2365 ERROR: status = -30
[  207.939651][ T9211] (syz.2.1151,9211,0):__ocfs2_claim_clusters:2373 ERROR: status = -30
[  207.948430][ T9211] (syz.2.1151,9211,0):ocfs2_block_group_alloc_contig:433 ERROR: status = -30
[  207.957976][ T9211] (syz.2.1151,9211,0):ocfs2_block_group_alloc:705 ERROR: status = -30
[  207.966673][ T9211] (syz.2.1151,9211,0):ocfs2_block_group_alloc:758 ERROR: status = -30
[  207.975740][ T9211] (syz.2.1151,9211,0):ocfs2_reserve_suballoc_bits:833 ERROR: status = -30
[  207.984347][ T9211] (syz.2.1151,9211,0):ocfs2_reserve_suballoc_bits:850 ERROR: status = -30
[  207.992939][ T9211] (syz.2.1151,9211,0):ocfs2_reserve_new_metadata_blocks:990 ERROR: status = -30
[  208.002077][ T9211] (syz.2.1151,9211,0):ocfs2_reserve_new_metadata_blocks:1013 ERROR: status = -30
[  208.012015][ T9211] (syz.2.1151,9211,0):ocfs2_expand_inline_dir:2841 ERROR: status = -30
[  208.021050][ T9211] (syz.2.1151,9211,0):ocfs2_extend_dir:3205 ERROR: status = -30
[  208.029483][ T9211] (syz.2.1151,9211,0):ocfs2_prepare_dir_for_insert:4326 ERROR: status = -30
[  208.038258][ T9211] (syz.2.1151,9211,0):ocfs2_mknod:298 ERROR: status = -30
[  208.045455][ T9211] (syz.2.1151,9211,0):ocfs2_mknod:502 ERROR: status = -30
[  208.053232][ T9211] (syz.2.1151,9211,0):ocfs2_create:676 ERROR: status = -30
[  208.134299][ T9211] syz.2.1151 (9211) used greatest stack depth: 17712 bytes left
[  208.316887][ T5767] Bluetooth: hci1: link tx timeout
[  208.322780][ T5770] ocfs2: Unmounting device (7,2) on (node local)
[  208.325336][ T5767] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  208.352366][ T5767] Bluetooth: hci1: link tx timeout
[  208.358413][ T5767] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  208.366718][ T5767] Bluetooth: hci1: link tx timeout
[  208.371846][ T5767] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  208.385147][ T5767] Bluetooth: hci1: link tx timeout
[  208.390313][ T5767] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  208.706938][ T9240] loop2: detected capacity change from 0 to 4096
[  208.739173][ T9240] EXT4-fs (loop2): Test dummy encryption mode enabled
[  208.778653][ T9240] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103]
[  208.802278][ T9240] System zones: 0-5
[  208.827977][ T9240] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.954664][ T9254] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[  209.029879][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.301169][ T9265] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1172'.
[  209.317377][ T9266] set_capacity_and_notify: 1 callbacks suppressed
[  209.317391][ T9266] loop1: detected capacity change from 0 to 256
[  209.626832][ T9276] loop3: detected capacity change from 0 to 128
[  209.756849][ T9280] loop2: detected capacity change from 0 to 128
[  209.784860][ T9282] loop1: detected capacity change from 0 to 512
[  209.830786][ T9284] input: syz0 as /devices/virtual/input/input24
[  209.832576][ T9282] EXT4-fs (loop1): Test dummy encryption mode enabled
[  209.871062][ T9280] VFS: Found a Xenix FS (block size = 512) on device loop2
[  209.918212][ T9282] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  209.974830][ T9282] EXT4-fs error (device loop1): ext4_orphan_get:1424: comm syz.1.1179: bad orphan inode 131083
[  209.976834][ T9280] sysv_free_block: trying to free block not in datazone
[  210.018085][ T9282] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.123034][ T9280] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  210.142891][ T9282] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #12: block 35: comm syz.1.1179: bad entry in directory: inode out of bounds - offset=12, inode=7929858, rec_len=12, size=1024 fake=1
[  210.309638][ T5762] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.393189][ T5767] Bluetooth: hci1: command 0x0406 tx timeout
[  210.548610][ T9301] loop3: detected capacity change from 0 to 512
[  210.593676][ T9281] loop4: detected capacity change from 0 to 32768
[  210.657993][ T9301] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.707690][ T9301] ext4 filesystem being mounted at /293/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  210.806182][   T28] audit: type=1800 audit(1770220577.970:88): pid=9301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1189" name="file1" dev="loop3" ino=15 res=0 errno=0
[  210.826722][    C1] vkms_vblank_simulate: vblank timer overrun
[  210.969589][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.673577][ T9336] loop3: detected capacity change from 0 to 256
[  211.701464][ T9336] exfat: Deprecated parameter 'utf8'
[  211.747131][ T9336] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x3e6496f2, utbl_chksum : 0xe619d30d)
[  212.029982][ T9347] loop4: detected capacity change from 0 to 256
[  212.073883][ T9348] loop3: detected capacity change from 0 to 256
[  212.089887][ T9347] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  212.239444][ T9347] exFAT-fs (loop4): error, invalid access to FAT (entry 0xffffffff)
[  212.253886][ T9347] exFAT-fs (loop4): Filesystem has been set read-only
[  212.284211][ T9351] exFAT-fs (loop4): error, invalid access to FAT (entry 0xffffffff)
[  212.324821][ T9332] loop1: detected capacity change from 0 to 32768
[  212.401432][ T9332] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  212.618407][ T9332] XFS (loop1): Ending clean mount
[  212.657129][ T9332] XFS (loop1): Quotacheck needed: Please wait.
[  212.815577][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[  212.829050][ T9332] XFS (loop1): Quotacheck: Done.
[  212.939765][ T5849] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  213.084812][ T5762] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  213.219585][ T5849] usb 3-1: Using ep0 maxpacket: 32
[  213.254223][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  213.274708][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  213.301480][ T5849] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  213.311008][ T5849] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.330949][ T5849] usb 3-1: config 0 descriptor??
[  213.547247][   T23] usb 3-1: USB disconnect, device number 16
[  213.922528][ T9407] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  213.951012][ T9407] EXT4-fs (loop3): invalid journal inode
[  213.962537][ T9407] EXT4-fs (loop3): can't get journal size
[  214.010075][ T9407] EXT4-fs (loop3): 1 truncate cleaned up
[  214.048526][ T9407] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.323098][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.944796][ T9447] set_capacity_and_notify: 1 callbacks suppressed
[  214.944812][ T9447] loop1: detected capacity change from 0 to 512
[  214.978827][ T5849] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  215.038353][ T9447] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1247: invalid indirect mapped block 4294967295 (level 1)
[  215.103755][ T9447] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1247: invalid indirect mapped block 4294967295 (level 1)
[  215.143209][ T9447] EXT4-fs (loop1): 2 truncates cleaned up
[  215.150694][ T9447] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.190472][ T9443] loop4: detected capacity change from 0 to 40427
[  215.208593][ T5849] usb 3-1: config 0 has an invalid interface number: 104 but max is 0
[  215.224243][ T5849] usb 3-1: config 0 has no interface number 0
[  215.226335][ T9443] F2FS-fs (loop4): Image doesn't support compression
[  215.248330][ T5849] usb 3-1: config 0 interface 104 has no altsetting 0
[  215.255249][ T9443] F2FS-fs (loop4): invalid crc value
[  215.257487][ T9443] F2FS-fs (loop4): Found nat_bits in checkpoint
[  215.261156][ T9447] EXT4-fs (loop1): shut down requested (0)
[  215.286456][ T5849] usb 3-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9
[  215.296858][ T5849] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.316309][ T5849] usb 3-1: Product: syz
[  215.326141][ T5849] usb 3-1: Manufacturer: syz
[  215.340911][ T5849] usb 3-1: SerialNumber: syz
[  215.375899][ T5849] usb 3-1: config 0 descriptor??
[  215.401037][ T5849] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  215.437040][ T9443] F2FS-fs (loop4): Start checkpoint disabled!
[  215.470499][ T9443] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  215.490152][ T5762] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.616209][ T5849] gspca_vc032x: reg_r err -71
[  215.625978][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.647494][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.661895][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.667455][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.691415][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.697616][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.703093][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.709226][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.714544][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.720038][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.725579][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.733185][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.742464][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.747797][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.765641][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.772172][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.777629][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.787002][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  215.806184][ T5849] gspca_vc032x: Unknown sensor...
[  215.811908][ T5849] vc032x: probe of 3-1:0.104 failed with error -22
[  215.833626][  T218] kworker/u4:5: attempt to access beyond end of device
[  215.833626][  T218] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  215.853453][ T5849] usb 3-1: USB disconnect, device number 17
[  215.865092][  T218] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  215.872785][  T218] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  216.147341][ T9462] erspan0: entered promiscuous mode
[  216.453082][ T9474] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1258'.
[  216.598782][ T9481] input: syz0 as /devices/virtual/input/input25
[  217.015641][ T9468] loop4: detected capacity change from 0 to 32768
[  217.095927][   T28] audit: type=1800 audit(1770220584.273:89): pid=9468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1252" name="file1" dev="loop4" ino=4 res=0 errno=0
[  217.497562][   T23] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  217.702297][   T23] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  217.717302][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.725416][   T23] usb 3-1: Product: syz
[  217.731045][   T23] usb 3-1: Manufacturer: syz
[  217.735777][   T23] usb 3-1: SerialNumber: syz
[  217.746236][   T23] usb 3-1: config 0 descriptor??
[  218.051935][ T9520] loop4: detected capacity change from 0 to 4096
[  218.138256][ T9520] ntfs: volume version 3.1.
[  218.169209][   T23] usb 3-1: Firmware: major: 130, minor: 102, hardware type: HULUSB (4)
[  218.290727][ T9520] ntfs: (device loop4): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -28).
[  218.320011][ T9520] ntfs: (device loop4): ntfs_attr_extend_allocation(): Cannot extend allocation of inode 0x43, attribute type 0x80, because the allocation of clusters failed with error code -28.
[  218.380530][   T23] usb 3-1: failed to fetch extended address, random address set
[  218.442709][ T9532] loop3: detected capacity change from 0 to 64
[  218.491386][   T23] usb 3-1: USB disconnect, device number 18
[  219.094442][ T9541] loop4: detected capacity change from 0 to 512
[  219.163924][ T9541] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1286: invalid indirect mapped block 4294967295 (level 1)
[  219.231631][ T9541] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1286: invalid indirect mapped block 4294967295 (level 1)
[  219.274228][ T9541] EXT4-fs (loop4): 2 truncates cleaned up
[  219.281879][ T9549] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1290'.
[  219.295275][ T9541] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.430219][ T9541] EXT4-fs (loop4): shut down requested (0)
[  219.678788][ T9540] loop3: detected capacity change from 0 to 32768
[  219.710652][ T9540] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  219.778519][ T7840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.924279][ T9540] XFS (loop3): Ending clean mount
[  219.936804][ T9540] XFS (loop3): Quotacheck needed: Please wait.
[  220.009600][ T9540] XFS (loop3): Quotacheck: Done.
[  220.120622][ T5773] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  220.616050][ T5830] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  220.808814][ T5830] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  220.818066][ T5830] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.826612][ T5830] usb 5-1: Product: syz
[  220.830794][ T5830] usb 5-1: Manufacturer: syz
[  220.835380][ T5830] usb 5-1: SerialNumber: syz
[  220.842000][ T5830] usb 5-1: config 0 descriptor??
[  221.273790][ T5830] usb 5-1: Firmware: major: 130, minor: 102, hardware type: HULUSB (4)
[  221.485010][ T5830] usb 5-1: failed to fetch extended address, random address set
[  221.541548][ T5830] usb 5-1: USB disconnect, device number 2
[  222.168008][ T9601] loop1: detected capacity change from 0 to 1024
[  222.339803][ T9603] syz.1.1309: attempt to access beyond end of device
[  222.339803][ T9603] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  223.201037][ T9615] loop4: detected capacity change from 0 to 32768
[  223.233920][ T9615] JBD2: Ignoring recovery information on journal
[  223.278514][ T9615] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  223.397635][ T9615] OCFS2: ERROR (device loop4): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #32 has bit count of 1024
[  223.416854][ T9615] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  223.426835][ T9615] OCFS2: File system is now read-only.
[  223.432321][ T9615] (syz.4.1314,9615,0):ocfs2_search_chain:1761 ERROR: status = -30
[  223.440349][ T9615] (syz.4.1314,9615,0):ocfs2_search_chain:1871 ERROR: status = -30
[  223.448292][ T9615] (syz.4.1314,9615,0):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30
[  223.456876][ T9615] (syz.4.1314,9615,0):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[  223.465375][ T9615] (syz.4.1314,9615,0):__ocfs2_claim_clusters:2365 ERROR: status = -30
[  223.473564][ T9615] (syz.4.1314,9615,0):__ocfs2_claim_clusters:2373 ERROR: status = -30
[  223.481816][ T9615] (syz.4.1314,9615,0):ocfs2_block_group_alloc_contig:433 ERROR: status = -30
[  223.490685][ T9615] (syz.4.1314,9615,0):ocfs2_block_group_alloc:705 ERROR: status = -30
[  223.499254][ T9615] (syz.4.1314,9615,0):ocfs2_block_group_alloc:758 ERROR: status = -30
[  223.508460][ T9615] (syz.4.1314,9615,0):ocfs2_reserve_suballoc_bits:833 ERROR: status = -30
[  223.517058][ T9615] (syz.4.1314,9615,0):ocfs2_reserve_suballoc_bits:850 ERROR: status = -30
[  223.526770][ T9615] (syz.4.1314,9615,0):ocfs2_reserve_new_metadata_blocks:990 ERROR: status = -30
[  223.535987][ T9615] (syz.4.1314,9615,0):ocfs2_reserve_new_metadata_blocks:1013 ERROR: status = -30
[  223.545176][ T9615] (syz.4.1314,9615,0):ocfs2_expand_inline_dir:2841 ERROR: status = -30
[  223.553457][ T9615] (syz.4.1314,9615,0):ocfs2_extend_dir:3205 ERROR: status = -30
[  223.561181][ T9615] (syz.4.1314,9615,0):ocfs2_prepare_dir_for_insert:4326 ERROR: status = -30
[  223.569982][ T9615] (syz.4.1314,9615,0):ocfs2_mknod:298 ERROR: status = -30
[  223.577165][ T9615] (syz.4.1314,9615,0):ocfs2_mknod:502 ERROR: status = -30
[  223.584386][ T9615] (syz.4.1314,9615,0):ocfs2_create:676 ERROR: status = -30
[  223.735891][ T7840] ocfs2: Unmounting device (7,4) on (node local)
[  224.040257][ T9643] macvlan0: entered promiscuous mode
[  224.081622][ T9643] netlink: 'syz.3.1326': attribute type 1 has an invalid length.
[  224.104452][ T9643] netlink: 'syz.3.1326': attribute type 2 has an invalid length.
[  224.172857][ T9631] loop2: detected capacity change from 0 to 32768
[  224.229380][   T28] audit: type=1800 audit(1770220591.407:90): pid=9631 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1321" name="file1" dev="loop2" ino=4 res=0 errno=0
[  224.538766][ T9650] loop1: detected capacity change from 0 to 2048
[  224.592031][ T9651] loop3: detected capacity change from 0 to 4096
[  224.593901][ T9652] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  224.687971][ T9652] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  224.709130][ T9652] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4)
[  224.730329][ T9651] ntfs: volume version 3.1.
[  224.749834][ T9652] Remounting filesystem read-only
[  224.770413][ T1139] NILFS (loop1): discard dirty page: offset=4096, ino=6
[  224.793920][ T1139] NILFS (loop1): discard dirty block: blocknr=39, size=1024
[  224.826779][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  224.862637][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  224.877245][ T9651] ntfs: (device loop3): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -28).
[  224.883786][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  224.919706][ T1139] NILFS (loop1): discard dirty page: offset=0, ino=2
[  224.924375][ T9651] ntfs: (device loop3): ntfs_attr_extend_allocation(): Cannot extend allocation of inode 0x43, attribute type 0x80, because the allocation of clusters failed with error code -28.
[  224.939661][ T1139] NILFS (loop1): discard dirty block: blocknr=18, size=1024
[  224.961915][ T9645] loop4: detected capacity change from 0 to 32768
[  224.968623][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  224.984343][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.013707][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.035780][ T1139] NILFS (loop1): discard dirty page: offset=0, ino=5
[  225.068132][ T9645] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  225.075353][ T1139] NILFS (loop1): discard dirty block: blocknr=41, size=1024
[  225.084473][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.093453][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.122729][ T1139] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.167312][ T9650] NILFS (loop1): mounting fs with errors
[  225.212324][ T9650] NILFS error (device loop1): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  225.242798][ T9650] Remounting filesystem read-only
[  225.264705][ T9650] NILFS (loop1): error -5 reading inode: ino=18
[  225.293690][ T9650] NILFS (loop1): cannot mark inode dirty (ino=18): error -5 loading inode block
[  225.334487][ T9645] XFS (loop4): Ending clean mount
[  225.360943][ T5762] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer
[  225.370272][ T9645] XFS (loop4): Quotacheck needed: Please wait.
[  225.370401][ T5762] NILFS (loop1): discard dirty page: offset=0, ino=6
[  225.387825][ T5762] NILFS (loop1): discard dirty block: blocknr=35, size=1024
[  225.396153][ T5762] NILFS (loop1): discard dirty block: blocknr=36, size=1024
[  225.407011][ T5762] NILFS (loop1): discard dirty block: blocknr=37, size=1024
[  225.418903][ T5762] NILFS (loop1): discard dirty block: blocknr=38, size=1024
[  225.428482][ T5762] NILFS (loop1): discard dirty page: offset=0, ino=4
[  225.446551][ T5762] NILFS (loop1): discard dirty block: blocknr=40, size=1024
[  225.455268][ T5762] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.459367][ T9645] XFS (loop4): Quotacheck: Done.
[  225.466169][ T5762] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.483566][ T5763] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  225.501228][ T5762] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.526144][ T5762] NILFS (loop1): discard dirty page: offset=0, ino=3
[  225.542340][ T5762] NILFS (loop1): discard dirty block: blocknr=42, size=1024
[  225.552689][ T5762] NILFS (loop1): discard dirty block: blocknr=43, size=1024
[  225.564594][ T5762] NILFS (loop1): discard dirty block: blocknr=44, size=1024
[  225.571943][ T5762] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.581634][ T5762] NILFS (loop1): discard dirty page: offset=196608, ino=3
[  225.588892][ T5762] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.598497][ T5762] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.620349][ T5762] NILFS (loop1): discard dirty block: blocknr=49, size=1024
[  225.627768][ T5762] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  225.631574][ T7840] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  225.674296][ T5763] usb 4-1: Using ep0 maxpacket: 32
[  225.698559][ T5763] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  225.710545][ T5763] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  225.722132][ T5763] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  225.734789][ T5763] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.749019][ T5763] usb 4-1: config 0 descriptor??
[  225.907058][ T9671] loop1: detected capacity change from 0 to 32768
[  225.926262][ T9671] JBD2: Ignoring recovery information on journal
[  225.968318][ T9671] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  225.995552][ T5830] usb 4-1: USB disconnect, device number 14
[  226.047910][ T9671] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #32 has bit count of 1024
[  226.067121][ T9671] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  226.077426][ T9671] OCFS2: File system is now read-only.
[  226.082905][ T9671] (syz.1.1331,9671,1):ocfs2_search_chain:1761 ERROR: status = -30
[  226.090807][ T9671] (syz.1.1331,9671,1):ocfs2_search_chain:1871 ERROR: status = -30
[  226.098805][ T9671] (syz.1.1331,9671,1):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30
[  226.107350][ T9671] (syz.1.1331,9671,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[  226.115849][ T9671] (syz.1.1331,9671,1):__ocfs2_claim_clusters:2365 ERROR: status = -30
[  226.124139][ T9671] (syz.1.1331,9671,1):__ocfs2_claim_clusters:2373 ERROR: status = -30
[  226.132331][ T9671] (syz.1.1331,9671,1):ocfs2_block_group_alloc_contig:433 ERROR: status = -30
[  226.141201][ T9671] (syz.1.1331,9671,1):ocfs2_block_group_alloc:705 ERROR: status = -30
[  226.149670][ T9671] (syz.1.1331,9671,1):ocfs2_block_group_alloc:758 ERROR: status = -30
[  226.157902][ T9671] (syz.1.1331,9671,1):ocfs2_reserve_suballoc_bits:833 ERROR: status = -30
[  226.167271][ T9671] (syz.1.1331,9671,1):ocfs2_reserve_suballoc_bits:850 ERROR: status = -30
[  226.175862][ T9671] (syz.1.1331,9671,1):ocfs2_reserve_new_metadata_blocks:990 ERROR: status = -30
[  226.185043][ T9671] (syz.1.1331,9671,1):ocfs2_reserve_new_metadata_blocks:1013 ERROR: status = -30
[  226.194289][ T9671] (syz.1.1331,9671,1):ocfs2_expand_inline_dir:2841 ERROR: status = -30
[  226.202551][ T9671] (syz.1.1331,9671,1):ocfs2_extend_dir:3205 ERROR: status = -30
[  226.210282][ T9671] (syz.1.1331,9671,1):ocfs2_prepare_dir_for_insert:4326 ERROR: status = -30
[  226.219026][ T9671] (syz.1.1331,9671,1):ocfs2_mknod:298 ERROR: status = -30
[  226.226552][ T9671] (syz.1.1331,9671,1):ocfs2_mknod:502 ERROR: status = -30
[  226.233774][ T9671] (syz.1.1331,9671,1):ocfs2_create:676 ERROR: status = -30
[  226.316773][ T5762] ocfs2: Unmounting device (7,1) on (node local)
[  226.734516][ T9683] loop1: detected capacity change from 0 to 16
[  226.773388][ T9683] erofs: (device loop1): mounted with root inode @ nid 36.
[  227.147665][ T9691] loop4: detected capacity change from 0 to 256
[  227.147668][ T9677] loop2: detected capacity change from 0 to 32768
[  227.599594][ T9704] loop4: detected capacity change from 0 to 256
[  227.641861][ T9705] loop3: detected capacity change from 0 to 256
[  227.691185][ T9705] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  227.743240][ T9705] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  227.855912][ T9709] input: syz0 as /devices/virtual/input/input27
[  227.873274][ T9705] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  229.805747][ T9749] input: syz0 as /devices/virtual/input/input28
[  230.124890][ T9756] syzkaller1: tun_chr_ioctl cmd 1074025694
[  230.301680][   T23] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  230.402448][ T9762] loop4: detected capacity change from 0 to 8192
[  230.513693][   T23] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[  230.539305][   T23] usb 2-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  230.565893][   T23] usb 2-1: config 220 has an invalid descriptor of length 1, skipping remainder of the config
[  230.591123][   T23] usb 2-1: config 220 has no interface number 2
[  230.597564][   T23] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  230.639953][   T23] usb 2-1: config 220 interface 0 has no altsetting 0
[  230.672989][   T23] usb 2-1: config 220 interface 76 has no altsetting 0
[  230.695005][   T23] usb 2-1: config 220 interface 1 has no altsetting 0
[  230.718741][   T23] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  230.742076][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.760411][   T23] usb 2-1: Product: syz
[  230.768539][   T23] usb 2-1: Manufacturer: syz
[  230.781684][   T23] usb 2-1: SerialNumber: syz
[  231.066781][   T23] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  231.097040][   T23] usb 2-1: No valid video chain found.
[  231.120841][   T23] usb 2-1: selecting invalid altsetting 0
[  231.135515][ T9764] loop3: detected capacity change from 0 to 32768
[  231.155155][   T23] usb 2-1: selecting invalid altsetting 0
[  231.174718][   T23] usbtest: probe of 2-1:220.1 failed with error -22
[  231.212230][   T23] usb 2-1: USB disconnect, device number 16
[  231.220345][ T9766] loop2: detected capacity change from 0 to 40427
[  231.255691][   T28] audit: type=1800 audit(1770220598.430:91): pid=9764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1372" name="file1" dev="loop3" ino=4 res=0 errno=0
[  231.272691][ T9766] F2FS-fs (loop2): invalid crc value
[  231.336348][ T9766] F2FS-fs (loop2): Found nat_bits in checkpoint
[  231.487745][ T9776] loop4: detected capacity change from 0 to 136
[  231.505518][ T9766] F2FS-fs (loop2): Start checkpoint disabled!
[  231.535757][ T9766] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  231.619227][ T9776] rock: directory entry would overflow storage
[  231.633372][ T9776] rock: sig=0x4f50, size=4, remaining=3
[  231.640422][ T9776] iso9660: Corrupted directory entry in block 2 of inode 1472
[  231.694050][ T9766] syz.2.1373: attempt to access beyond end of device
[  231.694050][ T9766] loop2: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  232.007537][   T42] kworker/u4:2: attempt to access beyond end of device
[  232.007537][   T42] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  232.040026][   T42] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  232.047962][   T42] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  232.130478][ T5763] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  232.340213][ T5763] usb 5-1: Using ep0 maxpacket: 32
[  232.354487][ T5763] usb 5-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  232.370047][ T5763] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.389327][ T5763] usb 5-1: Product: syz
[  232.393856][ T5763] usb 5-1: Manufacturer: syz
[  232.398494][ T5763] usb 5-1: SerialNumber: syz
[  232.436865][ T5763] usb 5-1: config 0 descriptor??
[  232.554285][ T9798] loop1: detected capacity change from 0 to 128
[  232.569628][   T23] hid-generic 0005:16C0:05DF.000F: item fetching failed at offset 0/2
[  232.578641][   T23] hid-generic: probe of 0005:16C0:05DF.000F failed with error -22
[  232.710830][ T5763] RobotFuzz Open Source InterFace, OSIF 5-1:0.0: version d4.15 found at bus 005 address 003
[  232.780914][   T42] kworker/u4:2: attempt to access beyond end of device
[  232.780914][   T42] loop1: rw=1, sector=138, nr_sectors = 16 limit=128
[  232.805913][   T42] kworker/u4:2: attempt to access beyond end of device
[  232.805913][   T42] loop1: rw=1, sector=170, nr_sectors = 6 limit=128
[  232.941619][ T9783] i2c i2c-1: adapter quirk: no zero length (addr 0x0000, size 0, read)
[  232.957954][ T5849] usb 5-1: USB disconnect, device number 3
[  233.626325][ T9810] loop1: detected capacity change from 0 to 32768
[  233.717551][   T28] audit: type=1800 audit(1770220600.901:92): pid=9810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1389" name="file1" dev="loop1" ino=4 res=0 errno=0
[  234.099155][  T112] ==================================================================
[  234.107272][  T112] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0x751/0xa70
[  234.114929][  T112] Read of size 4 at addr ffff8880775fc294 by task jfsCommit/112
[  234.122580][  T112] 
[  234.124935][  T112] CPU: 1 PID: 112 Comm: jfsCommit Not tainted syzkaller #0
[  234.132152][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  234.142234][  T112] Call Trace:
[  234.145529][  T112]  <TASK>
[  234.148464][  T112]  dump_stack_lvl+0x18c/0x250
[  234.153157][  T112]  ? __lock_acquire+0x7d40/0x7d40
[  234.158176][  T112]  ? show_regs_print_info+0x20/0x20
[  234.163367][  T112]  ? load_image+0x400/0x400
[  234.167867][  T112]  ? __virt_addr_valid+0x469/0x540
[  234.172971][  T112]  print_report+0xa8/0x210
[  234.177390][  T112]  ? jfs_lazycommit+0x751/0xa70
[  234.182234][  T112]  kasan_report+0x117/0x150
[  234.186726][  T112]  ? _raw_spin_lock_irqsave+0xc0/0x100
[  234.192200][  T112]  ? jfs_lazycommit+0x751/0xa70
[  234.197048][  T112]  jfs_lazycommit+0x751/0xa70
[  234.201714][  T112]  ? txFreelock+0x5a0/0x5a0
[  234.206206][  T112]  ? do_task_dead+0xd0/0xd0
[  234.210699][  T112]  ? __kthread_parkme+0x7a/0x1c0
[  234.215628][  T112]  kthread+0x2fa/0x390
[  234.219687][  T112]  ? txFreelock+0x5a0/0x5a0
[  234.224179][  T112]  ? kthread_blkcg+0xd0/0xd0
[  234.228754][  T112]  ret_from_fork+0x48/0x80
[  234.233189][  T112]  ? kthread_blkcg+0xd0/0xd0
[  234.237768][  T112]  ret_from_fork_asm+0x11/0x20
[  234.242528][  T112]  </TASK>
[  234.245533][  T112] 
[  234.247841][  T112] Allocated by task 9810:
[  234.252157][  T112]  kasan_set_track+0x4e/0x70
[  234.256743][  T112]  __kasan_kmalloc+0x8f/0xa0
[  234.261320][  T112]  jfs_fill_super+0xdc/0xad0
[  234.265897][  T112]  mount_bdev+0x221/0x2d0
[  234.270213][  T112]  legacy_get_tree+0xea/0x180
[  234.274876][  T112]  vfs_get_tree+0x8c/0x280
[  234.279278][  T112]  do_new_mount+0x24b/0xa40
[  234.283766][  T112]  __se_sys_mount+0x2e7/0x3d0
[  234.288429][  T112]  do_syscall_64+0x55/0xa0
[  234.292839][  T112]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  234.298718][  T112] 
[  234.301028][  T112] Freed by task 5762:
[  234.304995][  T112]  kasan_set_track+0x4e/0x70
[  234.309574][  T112]  kasan_save_free_info+0x2e/0x50
[  234.314597][  T112]  ____kasan_slab_free+0x126/0x1e0
[  234.319717][  T112]  slab_free_freelist_hook+0x130/0x1a0
[  234.325180][  T112]  __kmem_cache_free+0xba/0x1e0
[  234.330026][  T112]  generic_shutdown_super+0x134/0x2b0
[  234.335388][  T112]  kill_block_super+0x44/0x90
[  234.340065][  T112]  deactivate_locked_super+0x97/0x100
[  234.345425][  T112]  cleanup_mnt+0x43b/0x4d0
[  234.349832][  T112]  task_work_run+0x1d4/0x260
[  234.354414][  T112]  exit_to_user_mode_loop+0xe6/0x110
[  234.359697][  T112]  exit_to_user_mode_prepare+0xee/0x180
[  234.365232][  T112]  syscall_exit_to_user_mode+0x1a/0x50
[  234.370677][  T112]  do_syscall_64+0x61/0xa0
[  234.375081][  T112]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  234.380961][  T112] 
[  234.383275][  T112] Last potentially related work creation:
[  234.388973][  T112]  kasan_save_stack+0x3e/0x60
[  234.393637][  T112]  __kasan_record_aux_stack+0xaf/0xc0
[  234.398998][  T112]  kvfree_call_rcu+0xee/0x790
[  234.403662][  T112]  drop_sysctl_table+0x394/0x540
[  234.408585][  T112]  drop_sysctl_table+0x3ab/0x540
[  234.413507][  T112]  unregister_sysctl_table+0x41/0x60
[  234.418777][  T112]  neigh_sysctl_unregister+0x78/0xa0
[  234.424053][  T112]  inetdev_event+0x7f7/0x1630
[  234.428717][  T112]  notifier_call_chain+0x197/0x380
[  234.433816][  T112]  unregister_netdevice_many_notify+0x100d/0x1900
[  234.440221][  T112]  default_device_exit_batch+0x9ee/0xa80
[  234.445863][  T112]  cleanup_net+0x795/0xbb0
[  234.450367][  T112]  process_scheduled_works+0xa5d/0x15d0
[  234.455911][  T112]  worker_thread+0xa55/0xfc0
[  234.460498][  T112]  kthread+0x2fa/0x390
[  234.464555][  T112]  ret_from_fork+0x48/0x80
[  234.468959][  T112]  ret_from_fork_asm+0x11/0x20
[  234.473712][  T112] 
[  234.476022][  T112] The buggy address belongs to the object at ffff8880775fc200
[  234.476022][  T112]  which belongs to the cache kmalloc-256 of size 256
[  234.490059][  T112] The buggy address is located 148 bytes inside of
[  234.490059][  T112]  freed 256-byte region [ffff8880775fc200, ffff8880775fc300)
[  234.503853][  T112] 
[  234.506166][  T112] The buggy address belongs to the physical page:
[  234.512581][  T112] page:ffffea0001dd7f00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x775fc
[  234.522725][  T112] head:ffffea0001dd7f00 order:1 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  234.531662][  T112] ksm flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  234.540002][  T112] page_type: 0xffffffff()
[  234.544331][  T112] raw: 00fff00000000840 ffff888017c41b40 ffffea0001dd4100 dead000000000007
[  234.552908][  T112] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[  234.561572][  T112] page dumped because: kasan: bad access detected
[  234.568004][  T112] page_owner tracks the page as allocated
[  234.573710][  T112] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 2, tgid 2 (kthreadd), ts 69484298269, free_ts 69233733622
[  234.594211][  T112]  post_alloc_hook+0x1c1/0x200
[  234.598986][  T112]  get_page_from_freelist+0x1951/0x19e0
[  234.604519][  T112]  __alloc_pages+0x1f0/0x460
[  234.609100][  T112]  alloc_slab_page+0x5d/0x160
[  234.613765][  T112]  new_slab+0x87/0x2d0
[  234.617823][  T112]  ___slab_alloc+0xc5d/0x12f0
[  234.622494][  T112]  __kmem_cache_alloc_node+0x19e/0x250
[  234.627948][  T112]  kmalloc_trace+0x2a/0xe0
[  234.632357][  T112]  set_kthread_struct+0xb7/0x1f0
[  234.637290][  T112]  copy_process+0x10a3/0x3d80
[  234.641958][  T112]  kernel_clone+0x24b/0x8a0
[  234.646448][  T112]  kernel_thread+0x13f/0x1b0
[  234.651032][  T112]  kthreadd+0x57f/0x750
[  234.655184][  T112]  ret_from_fork+0x48/0x80
[  234.659590][  T112]  ret_from_fork_asm+0x11/0x20
[  234.664347][  T112] page last free stack trace:
[  234.669003][  T112]  free_unref_page_prepare+0x7b2/0x8c0
[  234.674455][  T112]  free_unref_page+0x32/0x2e0
[  234.679129][  T112]  __slab_free+0x35a/0x400
[  234.683530][  T112]  qlist_free_all+0x75/0xd0
[  234.688024][  T112]  kasan_quarantine_reduce+0x143/0x160
[  234.693470][  T112]  __kasan_slab_alloc+0x22/0x80
[  234.698308][  T112]  slab_post_alloc_hook+0x6e/0x4b0
[  234.703412][  T112]  kmem_cache_alloc+0x11a/0x2d0
[  234.708262][  T112]  getname_flags+0xbb/0x500
[  234.712759][  T112]  vfs_fstatat+0x111/0x1b0
[  234.717161][  T112]  __x64_sys_newfstatat+0x149/0x1f0
[  234.722346][  T112]  do_syscall_64+0x55/0xa0
[  234.726753][  T112]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  234.732646][  T112] 
[  234.734956][  T112] Memory state around the buggy address:
[  234.740567][  T112]  ffff8880775fc180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  234.748610][  T112]  ffff8880775fc200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  234.756652][  T112] >ffff8880775fc280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  234.764695][  T112]                          ^
[  234.769277][  T112]  ffff8880775fc300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  234.777323][  T112]  ffff8880775fc380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  234.785383][  T112] ==================================================================
[  234.793456][  T112] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  234.800640][  T112] CPU: 1 PID: 112 Comm: jfsCommit Not tainted syzkaller #0
[  234.807826][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  234.817874][  T112] Call Trace:
[  234.821148][  T112]  <TASK>
[  234.824076][  T112]  dump_stack_lvl+0x18c/0x250
[  234.828752][  T112]  ? show_regs_print_info+0x20/0x20
[  234.833941][  T112]  ? load_image+0x400/0x400
[  234.838439][  T112]  panic+0x2dc/0x730
[  234.842330][  T112]  ? bpf_jit_dump+0xd0/0xd0
[  234.846822][  T112]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  234.852709][  T112]  ? _raw_spin_unlock+0x40/0x40
[  234.857556][  T112]  ? print_memory_metadata+0x314/0x400
[  234.863018][  T112]  ? jfs_lazycommit+0x751/0xa70
[  234.867877][  T112]  check_panic_on_warn+0x84/0xa0
[  234.872820][  T112]  ? jfs_lazycommit+0x751/0xa70
[  234.877663][  T112]  end_report+0x6f/0x130
[  234.881892][  T112]  kasan_report+0x128/0x150
[  234.886384][  T112]  ? _raw_spin_lock_irqsave+0xc0/0x100
[  234.891835][  T112]  ? jfs_lazycommit+0x751/0xa70
[  234.896676][  T112]  jfs_lazycommit+0x751/0xa70
[  234.901351][  T112]  ? txFreelock+0x5a0/0x5a0
[  234.905842][  T112]  ? do_task_dead+0xd0/0xd0
[  234.910330][  T112]  ? __kthread_parkme+0x7a/0x1c0
[  234.915261][  T112]  kthread+0x2fa/0x390
[  234.919316][  T112]  ? txFreelock+0x5a0/0x5a0
[  234.923807][  T112]  ? kthread_blkcg+0xd0/0xd0
[  234.928385][  T112]  ret_from_fork+0x48/0x80
[  234.932811][  T112]  ? kthread_blkcg+0xd0/0xd0
[  234.937391][  T112]  ret_from_fork_asm+0x11/0x20
[  234.942331][  T112]  </TASK>
[  234.945455][  T112] Kernel Offset: disabled
[  234.949761][  T112] Rebooting in 86400 seconds..