last executing test programs:

7.215462558s ago: executing program 2 (id=1690):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
pidfd_send_signal(r1, 0x27, 0x0, 0x4)

6.525774147s ago: executing program 2 (id=1694):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a800000018010000786c6c2500000000f71f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000040000000850000000600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

5.831091859s ago: executing program 2 (id=1698):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x74, r1, 0x800}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_ROUTER={0x5, 0x16, 0x3}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48840}, 0x20040080)

5.717631209s ago: executing program 4 (id=1700):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x48a, &(0x7f0000000700)=ANY=[@ANYBLOB='iocharset=default,noadinicb,gid=forget,gid=ignore,nostrict,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c616e63686f723d30303030000088be0900303030303030303030312c7569643d666f726765742c00215e8c2e42462f3ab5e1f7c0527abbb422be9178aa60681964adb069ae876c4a599d560075ac47c0de1a9bb9146af6433efdcdac853a8e8f16d6bad90ecce0a1fab46f48331e6b3c325c08df3c334e4da28067a30b3b1dc64bf692c712fc273bc1702008f563765c6f3e67d97e1369973c2a87f0ecca7320819863179fb85e394a8cf1d62c70d8306633b6958ebf998a0685bc5cdd1f97291328743add4c867115fae1082f8faf482e15eb939968"], 0xfd, 0xc34, &(0x7f0000001080)="$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")
mkdir(&(0x7f0000000100)='./control\x00', 0x0)
rmdir(&(0x7f0000000040)='./control\x00')
symlink(&(0x7f00000000c0)='./file0/file0/..\x00', &(0x7f0000000280)='./file0\x00')

5.332693682s ago: executing program 1 (id=1702):
syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000180)='./bus\x00', 0x14018, &(0x7f0000000cc0)={[{@barrier}, {@force}, {@umask={'umask', 0x3d, 0x99}}, {@uid}, {@nodecompose}, {@gid}, {@nls={'nls', 0x3d, 'cp949'}}, {@uid}, {@part={'part', 0x3d, 0x4db}}]}, 0xb, 0x6c4, &(0x7f00000002c0)="$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")
r0 = fsopen(&(0x7f0000000200)='romfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000100)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

5.326097962s ago: executing program 2 (id=1703):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x12, 0x10, 0xfa00, {0x0, 0xffffffffffffffff, r1}}, 0x18)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)

4.785689791s ago: executing program 2 (id=1705):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2, &(0x7f0000000180)={[{@quota}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@noquota}, {@nodiscard}, {@discard_size={'discard', 0x3d, 0x4}}, {@discard_size={'discard', 0x3d, 0x6}}, {@quota}, {@iocharset={'iocharset', 0x3d, 'cp874'}}, {@discard}]}, 0x1, 0x6108, &(0x7f000000fa40)="$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")
open(&(0x7f0000000000)='./file1\x00', 0x14927e, 0x0)

4.466458058s ago: executing program 1 (id=1707):
syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800044, &(0x7f00000007c0)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303030322c71756965742c696f636861727365743d63703934392c6469725f756d61736b3d30303030303030303030303030303030303030303737372c636f6465706167653d69736f383835392d392c66696c655f756d61736b3d30303030303030303030303030303030303030303030352c706172743d3078303030303030303030303030303030322c63726561746f723d8c10b0812c00a1256287fd83ce3523b7970f1e5a99cec415dd6f3e3314910285851068b2a283ff57d12646740ca5027a1aaef99f0ed06ae2cd8ccce6d9f2abb2d62cb5d4d62eb1bb8137fdaf3e8765d9870b3517d9113174ff79a528e894d6e8b4c07059a7bb25f63c92dfe0dcddee95e00b95e22f5c9784b03a23f2d1bb8c0c2672061fdf3bc30cb550eda58d64e14ef687c41bdc656fb2a9458c602fabc94df7d81fe559210e5ead8116b889830d958f9cc3b9ebc888e6263f5d9e3564a41c32408386b67b6924279f5e1c57c4d4b5091f05afc76f934b84cfd24fe4b3b3fdd46e8072ea98bed0"], 0x1, 0x365, &(0x7f0000000440)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000080)=""/54, 0x36)
rename(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040)='./file1\x00')

4.420810514s ago: executing program 4 (id=1708):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000680)={0x2c, 0x12, 0x1, 0x0, 0x0, "", [@nested={0x10, 0x0, 0x0, 0x0, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, @typed={0xc, 0x36, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0)

4.204890832s ago: executing program 3 (id=1710):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f00), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000f40)={'wpan0\x00', <r2=>0x0})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000f80)={0x2c, r1, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x0)

3.782033733s ago: executing program 3 (id=1712):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x14, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x10, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x4}, @NL80211_TXRATE_HT={0x5, 0x2, [{0x5, 0x1}]}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x0)

3.249227202s ago: executing program 2 (id=1714):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x172f, 0x500, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x101, 0x3, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x0, 0x0, 0x8}}}}}]}}]}}, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\b'], 0x0, 0x0, 0x0, 0x0}, 0x0)

3.216589318s ago: executing program 3 (id=1715):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f00000004c0)={0x5, {{0x2, 0x0, @multicast2}}, {{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2b, &(0x7f0000000040)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @multicast2}}}, 0x108)

2.881379124s ago: executing program 0 (id=1716):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
syz_emit_ethernet(0x42, &(0x7f0000000000)={@link_local={0x3, 0x80, 0xc2, 0x0, 0x0, 0xd}, @multicast, @val={@void, {0x8100, 0x0, 0x0, 0x2}}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x12, 0x30, 0x0, 0x0, 0x4, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0xc, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010102, @loopback}}}}}}, 0x0)

2.850932715s ago: executing program 3 (id=1717):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000280), r1)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x2c, r2, 0x1, 0x0, 0x0, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_LLC_PARAM_MIUX={0x6}, @NFC_ATTR_LLC_PARAM_RW={0x5}]}, 0x2c}}, 0x0)

2.799393943s ago: executing program 4 (id=1718):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x18)
r1 = io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0xd9d8, 0x8})
io_uring_register$IORING_REGISTER_FILES(r1, 0x1e, 0x0, 0x0)

2.383403183s ago: executing program 1 (id=1719):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x19, &(0x7f0000000140)=0xa80, 0x4)
sendmmsg$inet6(r0, &(0x7f0000006b80)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @local}, 0x1c, 0x0}}], 0x1, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x10042, 0x0, 0x0)

2.211902109s ago: executing program 4 (id=1720):
timer_create(0x0, 0x0, &(0x7f0000000100))
timer_create(0x0, 0x0, &(0x7f0000000000))
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='timers\x00')
preadv(r0, &(0x7f0000000300)=[{&(0x7f0000000180)=""/50, 0x32}], 0x1, 0xfffffff9, 0x9)

2.187517773s ago: executing program 3 (id=1721):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0xc8200, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x7d)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000004c0)=0x87)

2.113717512s ago: executing program 0 (id=1722):
r0 = shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil)
r1 = shmat(r0, &(0x7f0000ff6000/0x4000)=nil, 0x400c)
mremap(&(0x7f0000fec000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff9000/0x3000)=nil)
shmdt(r1)

1.773850799s ago: executing program 1 (id=1723):
r0 = io_uring_setup(0x40b0, &(0x7f0000000080)={0x0, 0xe9ce, 0x2, 0x20001, 0x175})
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fdinfo/3\x00')
close(r0)
readv(r1, &(0x7f0000001440)=[{&(0x7f0000000040)=""/20, 0x14}], 0x1)

1.670922633s ago: executing program 4 (id=1724):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@default_permissions}]}}, 0xfe, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000004940)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002200)={0x50, 0x0, r1, {0x7, 0x8, 0x2000800, 0x238d117e660ceb5b, 0x401, 0x6, 0x7f, 0x2bf, 0x0, 0x0, 0x100, 0x27}}, 0x50)

1.568279707s ago: executing program 0 (id=1725):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp256-generic\x00'}, 0x58)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000340)="8224aca5f41b9e0ec5e7a706c919e7c0e343f0cd0a779c17e7f992396b09252009d2d12e9475a57ec39f71417044cf4151af34ac1dfd", 0x36}, {&(0x7f00000005c0)="f2b314c96d500b66f7fd46", 0xb}], 0x2}}], 0x1, 0x0)

1.373623498s ago: executing program 3 (id=1726):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xcf, 0x8b, 0xed, 0x20, 0xfd9, 0x25, 0x2940, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xca, 0xfb, 0x1a}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000180)=ANY=[@ANYBLOB="201101"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000140)={0x0, 0xd0, 0x4, &(0x7f0000000080)={0x13, "42cae8b3df20afbcfcdd178c50e5d84526580489979a473f112453b228922bd31c"}})

1.129541447s ago: executing program 0 (id=1727):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r2=>0x0], 0x0, 0x0, 0xfffffd52, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000280)={0x1, r2, 0x0, 0x0, 0x4000000a, 0x1ff, 0x1})

1.068222542s ago: executing program 1 (id=1728):
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
ioperm(0x2, 0x8, 0xa)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x3000)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f00000046c0)={0x0, 0x989680}, 0x0)

702.955756ms ago: executing program 0 (id=1729):
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x100c416, &(0x7f0000000600)={[{@dots}, {@fat=@discard}, {@fat=@nfs_nostale_ro}, {@fat=@nfs}, {@nodots}, {@fat=@nfs_nostale_ro}, {@dots}, {@nodots}, {@fat=@nfs_nostale_ro}, {@dots}, {@fat=@check_strict}, {@nodots}, {@nodots}, {@nodots}, {@fat=@sys_immutable}, {@nodots}, {@nodots}, {@dots}, {@fat=@flush}, {@fat=@dos1xfloppy}, {@fat=@umask={'umask', 0x3d, 0x9}}, {@nodots}]}, 0x0, 0x1f0, &(0x7f0000000300)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="30020000", @ANYRES16=r1, @ANYBLOB="b1012cbd7000fddbdf2511000000900001800f00010069623a65727370616e3000000d00010069623a766c616e1100000000380004001400010002004e237f0000010000000000000000200002000a004e2000000008fc0000000000000000000000000000010200000008000300040000001c00028008000400ff000000080003000800000008000300070000000d00010069623a7663616e30000000004c0005802c000280080001001e00000008000200050000000800030006000000080003004000000008000400080000000c0002800800020006000000080001007564700007000100696200003c000980"], 0x230}, 0x1, 0x0, 0x0, 0x5}, 0x0)

669.483209ms ago: executing program 1 (id=1730):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x2, 0x1509, &(0x7f000001aa40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

253.388592ms ago: executing program 4 (id=1731):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000580)="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", 0x13c}], 0x2}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c804}, 0x4091)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00'})

0s ago: executing program 0 (id=1732):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x100, @ipv4={'\x00', '\xff\xff', @empty}, 0x3}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c)

kernel console output (not intermixed with test programs):

draw this file system
[  394.026483][ T7401] gfs2: fsid=îhSÃ…Ë.0: File system withdrawn
[  394.032915][ T7401] CPU: 0 UID: 0 PID: 7401 Comm: syz.4.629 Not tainted 6.15.0-syzkaller #0 PREEMPT(undef) 
[  394.033066][ T7401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  394.033159][ T7401] Call Trace:
[  394.033212][ T7401]  <TASK>
[  394.033265][ T7401]  __dump_stack+0x26/0x30
[  394.033451][ T7401]  dump_stack_lvl+0x1df/0x270
[  394.033650][ T7401]  dump_stack+0x1e/0x25
[  394.033822][ T7401]  gfs2_withdraw+0x1d26/0x22e0
[  394.034051][ T7401]  ? gfs2_meta_read+0xded/0x1050
[  394.034213][ T7401]  ? kmsan_get_metadata+0x105/0x1b0
[  394.034449][ T7401]  gfs2_meta_check_ii+0xe0/0x120
[  394.034648][ T7401]  gfs2_meta_buffer+0x3a2/0x600
[  394.034828][ T7401]  inode_go_instantiate+0xda/0x1cf0
[  394.035019][ T7401]  ? queue_delayed_work_on+0x21d/0x350
[  394.035244][ T7401]  ? kmsan_get_metadata+0x105/0x1b0
[  394.035460][ T7401]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  394.035667][ T7401]  ? kmsan_get_metadata+0x105/0x1b0
[  394.035887][ T7401]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  394.036111][ T7401]  ? __pfx_inode_go_instantiate+0x10/0x10
[  394.036305][ T7401]  gfs2_instantiate+0x24f/0x4b0
[  394.036526][ T7401]  gfs2_glock_wait+0x26a/0x3b0
[  394.036749][ T7401]  gfs2_glock_nq+0x28cf/0x34a0
[  394.037019][ T7401]  gfs2_lookupi+0x57e/0x990
[  394.037222][ T7401]  ? gfs2_lookup_meta+0x101/0x280
[  394.037452][ T7401]  gfs2_lookup_meta+0x101/0x280
[  394.037667][ T7401]  init_journal+0x1b5/0x3a30
[  394.037900][ T7401]  ? snprintf+0x1d2/0x210
[  394.038080][ T7401]  ? kmsan_get_metadata+0x105/0x1b0
[  394.038294][ T7401]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  394.038515][ T7401]  init_inodes+0x124/0x510
[  394.038707][ T7401]  gfs2_fill_super+0x333f/0x3ee0
[  394.038918][ T7401]  ? init_locking+0xed/0x500
[  394.039154][ T7401]  get_tree_bdev_flags+0x6e3/0x920
[  394.039357][ T7401]  ? __pfx_gfs2_fill_super+0x10/0x10
[  394.039554][ T7401]  ? __pfx_gfs2_fill_super+0x10/0x10
[  394.039739][ T7401]  ? __pfx_gfs2_get_tree+0x10/0x10
[  394.039933][ T7401]  get_tree_bdev+0x38/0x50
[  394.040116][ T7401]  gfs2_get_tree+0x57/0x350
[  394.040310][ T7401]  ? __pfx_gfs2_get_tree+0x10/0x10
[  394.040499][ T7401]  vfs_get_tree+0xb0/0x5c0
[  394.040689][ T7401]  ? mount_capable+0x99/0x100
[  394.040869][ T7401]  do_new_mount+0x738/0x1610
[  394.041059][ T7401]  ? kmsan_get_metadata+0x105/0x1b0
[  394.041270][ T7401]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  394.041509][ T7401]  path_mount+0x6db/0x1e90
[  394.041700][ T7401]  ? user_path_at+0x32d/0x3d0
[  394.041887][ T7401]  __se_sys_mount+0x6eb/0x7d0
[  394.042081][ T7401]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  394.042308][ T7401]  __x64_sys_mount+0xe4/0x150
[  394.042522][ T7401]  x64_sys_call+0xfa7/0x3db0
[  394.042725][ T7401]  do_syscall_64+0xd9/0x1b0
[  394.042936][ T7401]  ? irqentry_exit+0x16/0x60
[  394.043109][ T7401]  ? clear_bhb_loop+0x40/0x90
[  394.043271][ T7401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.043433][ T7401] RIP: 0033:0x7f1054d9010a
[  394.043547][ T7401] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.043664][ T7401] RSP: 002b:00007f1052bf5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  394.043800][ T7401] RAX: ffffffffffffffda RBX: 00007f1052bf5ef0 RCX: 00007f1054d9010a
[  394.043915][ T7401] RDX: 000020000001f680 RSI: 000020000001f6c0 RDI: 00007f1052bf5eb0
[  394.044019][ T7401] RBP: 000020000001f680 R08: 00007f1052bf5ef0 R09: 0000000000000084
[  394.044116][ T7401] R10: 0000000000000084 R11: 0000000000000246 R12: 000020000001f6c0
[  394.044212][ T7401] R13: 00007f1052bf5eb0 R14: 000000000001f73d R15: 0000200000000240
[  394.044349][ T7401]  </TASK>
[  394.413318][ T7401] gfs2: fsid=îhSÃ…Ë.0: can't lookup journal index: 0
[  395.799822][ T7425] loop4: detected capacity change from 0 to 2048
[  395.911862][ T7431] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  396.014923][ T7432] netlink: 'syz.2.643': attribute type 3 has an invalid length.
[  396.569739][ T7438] netlink: 4 bytes leftover after parsing attributes in process `syz.3.646'.
[  397.452298][ T7453] loop3: detected capacity change from 0 to 1024
[  397.614363][ T7453] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  397.660143][ T7464] loop0: detected capacity change from 0 to 8
[  397.893466][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.553705][   T30] audit: type=1326 audit(1748286771.794:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7492 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  399.629722][ T7488] loop4: detected capacity change from 0 to 1024
[  399.649582][   T30] audit: type=1326 audit(1748286771.854:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7492 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  399.676271][   T30] audit: type=1326 audit(1748286771.854:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7492 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  400.057363][ T7486] loop1: detected capacity change from 0 to 4096
[  400.076837][ T7500] loop3: detected capacity change from 0 to 256
[  400.214800][ T7500] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  400.246052][ T7501] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  401.176087][ T7509] loop3: detected capacity change from 0 to 512
[  401.245040][ T7509] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (3451!=33349)
[  401.288493][ T7515] netlink: 32 bytes leftover after parsing attributes in process `syz.0.683'.
[  401.349524][ T7509] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  401.430215][ T5878] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  401.535934][ T7509] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (3451!=33349)
[  401.629565][ T5878] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  401.641071][ T5878] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  401.651400][ T5878] usb 3-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00
[  401.661108][ T5878] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  401.682701][ T7522] loop0: detected capacity change from 0 to 128
[  401.789003][ T5878] usb 3-1: config 0 descriptor??
[  401.812355][   T30] audit: type=1800 audit(1748286774.064:29): pid=7522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.685" name="file2" dev="loop0" ino=1048647 res=0 errno=0
[  401.856621][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.281882][ T5878] arvo 0003:1E7D:30D4.000B: item fetching failed at offset 5/7
[  402.345957][ T5878] arvo 0003:1E7D:30D4.000B: parse failed
[  402.352729][ T5878] arvo 0003:1E7D:30D4.000B: probe with driver arvo failed with error -22
[  402.472470][ T5878] usb 3-1: USB disconnect, device number 5
[  403.817312][ T7551] loop0: detected capacity change from 0 to 256
[  403.988439][ T7551] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  404.464102][ T7557] loop3: detected capacity change from 0 to 256
[  404.675985][ T7558] loop2: detected capacity change from 0 to 2048
[  404.769566][ T7558] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  404.795417][ T7557] FAT-fs (loop3): Directory bread(block 64) failed
[  404.802785][ T7557] FAT-fs (loop3): Directory bread(block 65) failed
[  404.809748][ T7557] FAT-fs (loop3): Directory bread(block 66) failed
[  404.816716][ T7557] FAT-fs (loop3): Directory bread(block 67) failed
[  404.823826][ T7557] FAT-fs (loop3): Directory bread(block 68) failed
[  404.830916][ T7557] FAT-fs (loop3): Directory bread(block 69) failed
[  404.837902][ T7557] FAT-fs (loop3): Directory bread(block 70) failed
[  404.844846][ T7557] FAT-fs (loop3): Directory bread(block 71) failed
[  404.852005][ T7557] FAT-fs (loop3): Directory bread(block 72) failed
[  404.858793][ T7557] FAT-fs (loop3): Directory bread(block 73) failed
[  404.866213][ T7566] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  405.096086][   T30] audit: type=1326 audit(1748286777.314:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ff00000
[  405.135631][   T30] audit: type=1326 audit(1748286777.324:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ff00000
[  405.158349][   T30] audit: type=1326 audit(1748286777.334:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ff00000
[  405.181192][   T30] audit: type=1326 audit(1748286777.334:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ff00000
[  405.207070][   T30] audit: type=1326 audit(1748286777.334:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ff00000
[  405.231188][   T30] audit: type=1326 audit(1748286777.334:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ff00000
[  405.254059][   T30] audit: type=1326 audit(1748286777.364:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ff00000
[  405.277144][   T30] audit: type=1326 audit(1748286777.374:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f1054dc1225 code=0x7ff00000
[  405.303424][   T30] audit: type=1326 audit(1748286777.374:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f1054dc1225 code=0x7ff00000
[  405.332615][   T30] audit: type=1326 audit(1748286777.374:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7565 comm="syz.4.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f1054dc1225 code=0x7ff00000
[  405.653798][ T5811] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.710858][   T52] Bluetooth: hci4: command 0x0406 tx timeout
[  407.117398][ T7579] loop2: detected capacity change from 0 to 32768
[  407.136386][ T7579] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.709 (7579)
[  407.165551][ T7579] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  407.177515][ T7579] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  407.187937][ T7579] BTRFS info (device loop2): using free-space-tree
[  407.430284][ T7579] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  408.305685][ T7608] loop1: detected capacity change from 0 to 64
[  408.977818][ T7617] usb usb8: usbfs: process 7617 (syz.0.720) did not claim interface 0 before use
[  408.993849][ T7617] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  410.259718][ T7635] loop1: detected capacity change from 0 to 512
[  410.341863][ T7635] EXT4-fs: Invalid want_extra_isize 759
[  410.821001][ T7629] loop0: detected capacity change from 0 to 32768
[  410.880551][ T7629] jfs_mount: dbMount failed w/rc = -22
[  410.887078][ T7629] Mount JFS Failure: -22
[  411.507869][ T7643] loop1: detected capacity change from 0 to 512
[  411.618201][ T7643] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  411.741464][ T7643] fs-verity: sha256 using implementation "sha256-generic"
[  411.796360][ T7643] EXT4-fs warning (device loop1): ext4_begin_enable_verity:135: inode #15: comm syz.1.733: verity is only allowed on extent-based files
[  411.894072][ T7647] netlink: 64 bytes leftover after parsing attributes in process `syz.4.734'.
[  412.113647][ T7649] loop3: detected capacity change from 0 to 1024
[  412.280247][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.349027][ T7649] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.373661][ T7649] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  412.944319][ T7665] geneve2: entered promiscuous mode
[  413.040262][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.229529][   T30] kauditd_printk_skb: 415 callbacks suppressed
[  413.229613][   T30] audit: type=1326 audit(1748286785.474:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.0.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914b78e969 code=0x7ffc0000
[  413.269198][   T30] audit: type=1326 audit(1748286785.494:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.0.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914b78e969 code=0x7ffc0000
[  413.936007][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  414.282071][ T7683] loop1: detected capacity change from 0 to 1024
[  414.511798][ T7683] hfsplus: found bad thread record in catalog
[  414.518280][ T7683] hfsplus: catalog searching failed
[  414.804939][ T4064] hfsplus: b-tree write err: -5, ino 4
[  415.383543][   T30] audit: type=1400 audit(1748286787.634:457): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=7700 comm="syz.2.757"
[  416.633803][ T7720] loop0: detected capacity change from 0 to 128
[  416.694595][ T7720] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  416.793600][ T7720] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  416.983213][ T7726] netlink: 20 bytes leftover after parsing attributes in process `syz.4.768'.
[  417.497930][ T7734] lo speed is unknown, defaulting to 1000
[  417.504368][ T7734] lo speed is unknown, defaulting to 1000
[  417.511880][ T7734] lo speed is unknown, defaulting to 1000
[  417.530958][ T7734] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  417.587066][ T7734] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  417.723594][ T7734] lo speed is unknown, defaulting to 1000
[  417.733061][ T7734] lo speed is unknown, defaulting to 1000
[  417.742142][ T7734] lo speed is unknown, defaulting to 1000
[  417.753424][ T7737] netlink: 4 bytes leftover after parsing attributes in process `syz.4.773'.
[  417.756080][ T7734] lo speed is unknown, defaulting to 1000
[  417.762745][ T7737] netlink: 32 bytes leftover after parsing attributes in process `syz.4.773'.
[  417.771627][ T7734] lo speed is unknown, defaulting to 1000
[  418.454943][ T7749] loop0: detected capacity change from 0 to 16
[  418.484180][ T7744] [U] ©ÃÇJ<C÷©)•ÍÆ¥M]=ÜK®EQUпY«„Ê�7¡‰-�,B…Z~ˆÄ£6*ØÑÂżCXËAËSÑ&¢4WJÕß•Œ2ÃI")¬Ã£~«Û   
[  418.534341][ T7749] erofs (device loop0): mounted with root inode @ nid 36.
[  418.582010][ T7743] loop3: detected capacity change from 0 to 4096
[  419.269773][ T7743] ntfs3(loop3): ino=5, "/" indx_read
[  419.275987][ T7743] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  419.303474][ T7743] ntfs3(loop3): ino=5, ntfs_readdir
[  419.907366][ T7768] loop1: detected capacity change from 0 to 512
[  419.943592][ T7768] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  420.064607][ T7768] EXT4-fs (loop1): 1 truncate cleaned up
[  420.073116][ T7768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  420.078994][ T7773] loop2: detected capacity change from 0 to 16
[  420.163326][ T7773] erofs (device loop2): mounted with root inode @ nid 36.
[  420.270939][   T30] audit: type=1800 audit(1748286792.524:458): pid=7773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.790" name="file1" dev="loop2" ino=86 res=0 errno=0
[  420.537323][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.406678][ T7794] loop3: detected capacity change from 0 to 40427
[  422.418688][ T7794] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  422.426404][ T7794] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  422.438611][ T7794] F2FS-fs (loop3): build fault injection attr: rate: 17008, type: 0x3fffff
[  422.448388][ T7794] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x1f8
[  423.220681][ T7807] overlayfs: missing 'workdir'
[  425.820015][ T7860] nbd: socks must be embedded in a SOCK_ITEM attr
[  426.222087][ T7863] netlink: 12 bytes leftover after parsing attributes in process `syz.1.830'.
[  426.234937][ T7863] tc_dump_action: action bad kind
[  426.321658][ T7868] netlink: 8 bytes leftover after parsing attributes in process `syz.0.832'.
[  426.909029][ T7875] loop0: detected capacity change from 0 to 1024
[  427.438603][ T4064] hfsplus: b-tree write err: -5, ino 4
[  428.166498][ T7893] loop2: detected capacity change from 0 to 2048
[  428.197013][ T7893] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  428.282880][ T7902] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  428.400635][   T24] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  428.543237][ T7906] fuse: Invalid rootmode
[  428.609613][   T24] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  428.621535][   T24] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  428.641013][   T24] usb 5-1: config 0 interface 0 has no altsetting 0
[  428.650062][   T24] usb 5-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  428.659441][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  428.704796][   T24] usb 5-1: config 0 descriptor??
[  428.712644][ T7900] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  429.274917][   T24] logitech 0003:046D:C24F.000C: unbalanced delimiter at end of report description
[  429.316653][   T24] logitech 0003:046D:C24F.000C: parse failed
[  429.323613][   T24] logitech 0003:046D:C24F.000C: probe with driver logitech failed with error -22
[  429.470635][ T5878] usb 5-1: USB disconnect, device number 6
[  429.987331][ T7919] loop2: detected capacity change from 0 to 1024
[  430.450857][ T5878] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  430.648287][ T5878] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  430.657131][ T5878] usb 1-1: config 0 has no interface number 0
[  430.717540][ T5878] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  430.727180][ T5878] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  430.735794][ T5878] usb 1-1: Product: syz
[  430.740374][ T5878] usb 1-1: Manufacturer: syz
[  430.745247][ T5878] usb 1-1: SerialNumber: syz
[  430.822538][ T5878] usb 1-1: config 0 descriptor??
[  430.831787][ T5844] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  431.010654][ T5844] usb 5-1: Using ep0 maxpacket: 32
[  431.035091][ T5844] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  431.049673][ T5844] usb 5-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[  431.059478][ T5844] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.140486][ T5878] usb 1-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  431.182077][ T5878] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  431.199402][ T5878] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  431.209426][ T5878] usb 1-1: media controller created
[  431.221448][ T5844] usb 5-1: config 0 descriptor??
[  431.322082][ T7936] program syz.3.865 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  431.407227][ T5878] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  431.718653][ T7940] loop1: detected capacity change from 0 to 256
[  431.804317][ T5844] ortek 0003:1223:3F07.000D: collection stack underflow
[  431.817846][ T5844] ortek 0003:1223:3F07.000D: item 0 1 0 12 parsing failed
[  431.848444][ T5844] ortek 0003:1223:3F07.000D: probe with driver ortek failed with error -22
[  432.003111][ T2161] usb 5-1: USB disconnect, device number 7
[  432.074788][ T7940] FAT-fs (loop1): Directory bread(block 64) failed
[  432.081910][ T7940] FAT-fs (loop1): Directory bread(block 65) failed
[  432.088878][ T7940] FAT-fs (loop1): Directory bread(block 66) failed
[  432.095950][ T7940] FAT-fs (loop1): Directory bread(block 67) failed
[  432.103165][ T7940] FAT-fs (loop1): Directory bread(block 68) failed
[  432.110267][ T7940] FAT-fs (loop1): Directory bread(block 69) failed
[  432.121783][ T7940] FAT-fs (loop1): Directory bread(block 70) failed
[  432.128611][ T7940] FAT-fs (loop1): Directory bread(block 71) failed
[  432.137072][ T7940] FAT-fs (loop1): Directory bread(block 72) failed
[  432.144103][ T7940] FAT-fs (loop1): Directory bread(block 73) failed
[  432.152082][ T7938] loop2: detected capacity change from 0 to 4096
[  432.197943][ T5878] usb 1-1: USB disconnect, device number 3
[  432.249171][ T7938] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  432.940568][ T5878] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  433.108427][ T7950] netlink: 'syz.4.872': attribute type 1 has an invalid length.
[  433.117486][ T7950] netlink: 244 bytes leftover after parsing attributes in process `syz.4.872'.
[  433.127135][ T7950] NCSI netlink: No device for ifindex 320
[  433.200813][ T5878] usb 4-1: config 0 interface 0 altsetting 248 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  433.213486][ T5878] usb 4-1: config 0 interface 0 has no altsetting 0
[  433.221535][ T5878] usb 4-1: New USB device found, idVendor=1ea7, idProduct=0907, bcdDevice= 0.00
[  433.231134][ T5878] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  433.265595][ T5878] usb 4-1: config 0 descriptor??
[  433.818753][ T5878] semitek 0003:1EA7:0907.000E: item fetching failed at offset 6/7
[  433.864637][ T5878] semitek 0003:1EA7:0907.000E: probe with driver semitek failed with error -22
[  434.011552][ T5878] usb 4-1: USB disconnect, device number 6
[  434.345315][ T7959] loop0: detected capacity change from 0 to 4096
[  434.434791][ T7967] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  434.509603][ T7959] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0
[  434.538164][ T7959] Remounting filesystem read-only
[  434.543939][ T7959] NILFS error (device loop0): nilfs_readdir: bad page in #2
[  435.448485][ T7980] sch_tbf: burst 0 is lower than device veth1 mtu (1514) !
[  436.395014][ T7994] loop3: detected capacity change from 0 to 1024
[  436.440848][ T7994] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  437.341608][ T7998] loop0: detected capacity change from 0 to 4096
[  437.400101][ T8004] loop3: detected capacity change from 0 to 1764
[  437.431807][ T7998] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  437.688439][ T7998] ntfs3(loop0): ino=19, mi_enum_attr
[  437.697674][ T7998] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  438.253260][ T8013] loop4: detected capacity change from 0 to 1024
[  438.291113][ T8015] loop2: detected capacity change from 0 to 1024
[  438.302335][ T8013] EXT4-fs: Ignoring removed nobh option
[  438.308221][ T8013] EXT4-fs: Ignoring removed bh option
[  438.481946][ T8013] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  438.508421][ T8018] lo speed is unknown, defaulting to 1000
[  438.912226][ T8016] loop3: detected capacity change from 0 to 4096
[  439.050435][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.144578][ T8028] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  439.258629][ T8016] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  439.330864][ T8016] Remounting filesystem read-only
[  439.798852][ T8034] loop2: detected capacity change from 0 to 1024
[  439.849658][ T8034] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  440.088963][ T8034] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.908: Invalid block bitmap block 0 in block_group 0
[  440.170706][ T8034] Quota error (device loop2): write_blk: dquota write failed
[  440.181344][ T8034] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  440.191956][ T8034] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.908: Failed to acquire dquot type 0
[  440.263954][ T8034] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm syz.2.908: Freeing blocks not in datazone - block = 0, count = 4096
[  440.360509][ T8034] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.908: Invalid inode bitmap blk 0 in block_group 0
[  440.392815][ T1863] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-7
[  440.402586][ T1863] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 0
[  440.435503][ T8034] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  440.489662][ T8034] EXT4-fs (loop2): 1 orphan inode deleted
[  440.501863][ T8034] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.963704][ T8034] syz.2.908 (8034) used greatest stack depth: 4080 bytes left
[  441.029160][ T5811] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.063127][ T4864] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-7
[  441.074723][ T4864] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:28: Failed to release dquot type 0
[  442.204240][ T8074] loop4: detected capacity change from 0 to 128
[  442.278799][ T8073] loop3: detected capacity change from 0 to 512
[  442.360338][ T8073] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  442.460523][ T8073] EXT4-fs (loop3): 1 truncate cleaned up
[  442.468951][ T8073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.859635][ T2161] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  443.024553][ T8086] devtmpfs: Cannot disable swap on remount
[  443.084530][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.094152][ T2161] usb 3-1: Using ep0 maxpacket: 32
[  443.105394][ T2161] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[  443.114112][ T2161] usb 3-1: config 0 has no interface number 0
[  443.123824][ T2161] usb 3-1: config 0 interface 12 has no altsetting 0
[  443.131113][ T5878] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  443.186519][ T2161] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  443.196270][ T2161] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  443.204798][ T2161] usb 3-1: Product: syz
[  443.209215][ T2161] usb 3-1: Manufacturer: syz
[  443.217195][ T2161] usb 3-1: SerialNumber: syz
[  443.292876][ T2161] usb 3-1: config 0 descriptor??
[  443.339331][ T5878] usb 1-1: config 0 interface 0 altsetting 10 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  443.351008][ T5878] usb 1-1: config 0 interface 0 altsetting 10 endpoint 0x81 has invalid wMaxPacketSize 0
[  443.361423][ T5878] usb 1-1: config 0 interface 0 has no altsetting 0
[  443.368383][ T5878] usb 1-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00
[  443.381519][ T5878] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.439550][ T5878] usb 1-1: config 0 descriptor??
[  443.843803][ T8091] loop1: detected capacity change from 0 to 512
[  443.934148][ T5878] cypress 0003:04B4:DE61.000F: unknown main item tag 0x0
[  443.942650][ T5878] cypress 0003:04B4:DE61.000F: unknown main item tag 0x0
[  443.950414][ T5878] cypress 0003:04B4:DE61.000F: unknown main item tag 0x0
[  443.983686][ T8091] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  444.001077][ T8091] ext4 filesystem being mounted at /184/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  444.019081][ T2161] f81534 3-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  444.027151][ T2161] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71
[  444.037926][ T2161] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  444.046236][ T2161] f81534 3-1:0.12: probe with driver f81534 failed with error -71
[  444.068588][ T2161] usb 3-1: USB disconnect, device number 6
[  444.119511][ T5878] cypress 0003:04B4:DE61.000F: hidraw0: USB HID v0.00 Device [HID 04b4:de61] on usb-dummy_hcd.0-1/input0
[  444.178429][ T5878] usb 1-1: USB disconnect, device number 4
[  444.340955][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  444.615824][ T8101] loop1: detected capacity change from 0 to 128
[  444.672676][ T8101] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  445.691861][   T30] audit: type=1326 audit(1748286817.944:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.2.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407ad8e969 code=0x7ffc0000
[  445.801084][   T30] audit: type=1326 audit(1748286817.994:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.2.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f407ad8e969 code=0x7ffc0000
[  445.823939][   T30] audit: type=1326 audit(1748286817.994:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.2.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407ad8e969 code=0x7ffc0000
[  445.851149][   T30] audit: type=1326 audit(1748286818.034:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.2.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407ad8e969 code=0x7ffc0000
[  445.876132][   T30] audit: type=1326 audit(1748286818.034:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.2.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7f407ad8e969 code=0x7ffc0000
[  445.899284][   T30] audit: type=1326 audit(1748286818.034:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.2.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407ad8e969 code=0x7ffc0000
[  445.922152][   T30] audit: type=1326 audit(1748286818.034:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.2.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407ad8e969 code=0x7ffc0000
[  446.340300][ T8127] netlink: 88 bytes leftover after parsing attributes in process `syz.0.952'.
[  446.785216][ T8135] loop1: detected capacity change from 0 to 8
[  447.023877][ T8139] netlink: 12 bytes leftover after parsing attributes in process `syz.0.959'.
[  447.450455][ T8143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.961'.
[  447.459756][ T8143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.961'.
[  448.097259][ T8153] loop2: detected capacity change from 0 to 256
[  448.248981][ T8153] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  448.418653][ T8159] netlink: 24 bytes leftover after parsing attributes in process `syz.4.969'.
[  450.053599][ T8190] dvmrp5: entered allmulticast mode
[  450.060200][ T2161] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  450.099063][ T8188] dvmrp5: left allmulticast mode
[  450.274240][ T2161] usb 5-1: config 0 has an invalid interface number: 64 but max is 0
[  450.285872][ T2161] usb 5-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[  450.296807][ T2161] usb 5-1: config 0 has no interface number 0
[  450.384846][ T2161] usb 5-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[  450.395618][ T2161] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.405072][ T2161] usb 5-1: Product: syz
[  450.413270][ T2161] usb 5-1: Manufacturer: syz
[  450.418145][ T2161] usb 5-1: SerialNumber: syz
[  450.458480][ T2161] usb 5-1: config 0 descriptor??
[  450.729572][ T8198] loop0: detected capacity change from 0 to 512
[  450.749124][ T8198] EXT4-fs: Ignoring removed mblk_io_submit option
[  450.799637][ T8198] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  450.809338][ T8198] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  450.895690][ T8198] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  450.920573][ T8198] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c01c, mo2=0102]
[  450.931946][ T8198] System zones: 0-2, 18-18, 34-34
[  450.949389][ T2161] usb 5-1: Found UVC 0.00 device syz (046d:0823)
[  450.960977][ T8198] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  450.974807][ T2161] usb 5-1: No valid video chain found.
[  451.008021][ T8198] EXT4-fs (loop0): 1 truncate cleaned up
[  451.019804][ T8198] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  451.170534][ T5878] usb 5-1: USB disconnect, device number 8
[  451.301386][ T8204] loop1: detected capacity change from 0 to 512
[  451.328094][ T8208] loop2: detected capacity change from 0 to 64
[  451.350794][ T8204] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  451.432728][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.441002][ T8204] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  451.458144][ T8204] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #11: comm syz.1.989: corrupted inode contents
[  451.535987][ T8204] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #11: comm syz.1.989: mark_inode_dirty error
[  451.563783][ T8204] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.989: invalid indirect mapped block 1 (level 1)
[  451.624694][ T8204] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #11: comm syz.1.989: corrupted inode contents
[  451.670180][ T8204] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  451.704729][ T8204] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #11: comm syz.1.989: corrupted inode contents
[  451.751663][ T8204] EXT4-fs error (device loop1): ext4_truncate:4255: inode #11: comm syz.1.989: mark_inode_dirty error
[  451.801287][ T8204] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  451.857109][ T8204] EXT4-fs (loop1): 1 truncate cleaned up
[  451.869092][ T8204] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  452.090328][ T2161] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  452.227010][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.333062][ T2161] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  452.348720][ T2161] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  452.360156][ T2161] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  452.377040][ T2161] usb 3-1: New USB device found, idVendor=a2d4, idProduct=ffff, bcdDevice= 0.00
[  452.386593][ T2161] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  452.549004][ T2161] usb 3-1: config 0 descriptor??
[  453.027352][ T2161] hid-generic 0003:A2D4:FFFF.0010: unknown main item tag 0x0
[  453.040172][ T2161] hid-generic 0003:A2D4:FFFF.0010: unknown main item tag 0x0
[  453.047985][ T2161] hid-generic 0003:A2D4:FFFF.0010: unknown main item tag 0x0
[  453.055970][ T2161] hid-generic 0003:A2D4:FFFF.0010: unknown main item tag 0x0
[  453.067012][ T2161] hid-generic 0003:A2D4:FFFF.0010: unknown main item tag 0x0
[  453.365312][ T2161] hid-generic 0003:A2D4:FFFF.0010: hidraw0: USB HID v0.40 Device [HID a2d4:ffff] on usb-dummy_hcd.2-1/input0
[  453.455556][ T2161] usb 3-1: USB disconnect, device number 7
[  453.532434][ T8232] loop3: detected capacity change from 0 to 512
[  453.749774][ T8232] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  453.814556][ T8232] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1001: iget: bad extended attribute block 9
[  453.839569][ T8232] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1001: couldn't read orphan inode 15 (err -117)
[  453.872779][ T8232] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.295594][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  455.281793][ T8248] loop4: detected capacity change from 0 to 128
[  455.351147][ T8248] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  455.477619][ T8248] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  455.579204][ T8240] loop2: detected capacity change from 0 to 40427
[  455.597272][ T8240] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  455.605621][ T8240] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  455.646089][ T8240] F2FS-fs (loop2): invalid crc value
[  455.653761][ T8250] loop0: detected capacity change from 0 to 1024
[  455.685853][ T8257] loop3: detected capacity change from 0 to 64
[  455.705751][ T8240] F2FS-fs (loop2): Wrong journal entry on segno 851973
[  455.720782][ T8240] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-117)
[  455.840241][ T8257] syz.3.1007: attempt to access beyond end of device
[  455.840241][ T8257] loop3: rw=2049, sector=268435468, nr_sectors = 2 limit=64
[  455.849218][ T8250] hfsplus: bad catalog entry type
[  456.606141][ T1863] hfsplus: b-tree write err: -5, ino 4
[  456.918338][ T8253] could not allocate digest TFM handle sha224-ssse3
[  457.243079][   T30] audit: type=1326 audit(1748286829.494:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8267 comm="syz.2.1016" exe="/root/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7f407ad85927 code=0x0
[  457.647719][ T8274] loop4: detected capacity change from 0 to 64
[  457.888468][ T8274] Trying to free block not in datazone
[  459.298136][ T8292] loop1: detected capacity change from 0 to 1024
[  459.358918][ T8292] EXT4-fs: Ignoring removed nomblk_io_submit option
[  459.405334][ T8297] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  459.508750][ T8292] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.785211][ T8292] EXT4-fs error (device loop1): __ext4_new_inode:1073: comm syz.1.1027: reserved inode found cleared - inode=18
[  460.002047][ T8306] loop3: detected capacity change from 0 to 47
[  460.063058][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.192809][ T8306] MINIX-fs: deleted inode referenced: 9
[  460.217299][ T8306] MINIX-fs: deleted inode referenced: 9
[  460.382593][ T8310] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1034'.
[  460.450696][ T8312] netlink: 'syz.1.1033': attribute type 1 has an invalid length.
[  461.449371][ T8328] loop2: detected capacity change from 0 to 64
[  461.898859][ T8335] loop0: detected capacity change from 0 to 1024
[  462.085760][ T8335] hfsplus: bad catalog entry type
[  462.443585][ T1811] hfsplus: b-tree write err: -5, ino 4
[  462.640925][ T2161] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[  462.848376][ T2161] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  462.859468][ T2161] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  462.909057][ T2161] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  462.918862][ T2161] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.927545][ T2161] usb 3-1: Product: syz
[  462.941824][ T2161] usb 3-1: Manufacturer: syz
[  462.946706][ T2161] usb 3-1: SerialNumber: syz
[  463.012169][ T8345] loop3: detected capacity change from 0 to 4096
[  463.162776][ T8345] NILFS (loop3): invalid segment: Checksum error in segment payload
[  463.176278][ T8345] NILFS (loop3): trying rollback from an earlier position
[  463.277185][ T8345] NILFS (loop3): recovery complete
[  463.286924][ T2161] usb 3-1: 0:2 : does not exist
[  463.320270][ T8352] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  463.340746][ T2161] usb 3-1: 5:0: failed to get current value for ch 0 (-22)
[  463.521633][ T2161] usb 3-1: USB disconnect, device number 8
[  464.052260][ T8357] loop0: detected capacity change from 0 to 4096
[  464.199428][ T8357] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  464.272293][ T8357] EXT4-fs (loop0): Online resizing not supported with bigalloc
[  464.304045][ T8360] loop4: detected capacity change from 0 to 512
[  464.316943][ T8360] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  464.466830][ T8360] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  464.485871][ T8360] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  464.776483][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.072704][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.406410][ T8379] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1061'.
[  465.461703][ T8378] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1061'.
[  465.792406][ T8388] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1067'.
[  465.813803][ T8385] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1067'.
[  466.408879][ T5878] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  466.588834][ T8400] loop4: detected capacity change from 0 to 256
[  466.634369][ T8400] exfat: Deprecated parameter 'utf8'
[  466.639758][ T5878] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  466.640076][ T5878] usb 1-1: New USB device found, idVendor=0eef, idProduct=72c4, bcdDevice= 0.00
[  466.640249][ T8400] exfat: Deprecated parameter 'utf8'
[  466.651475][ T5878] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  466.664462][ T8400] exfat: Deprecated parameter 'utf8'
[  466.775484][ T8400] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  466.783688][ T5878] usb 1-1: config 0 descriptor??
[  466.801917][ T8392] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  467.412324][ T5878] hid-multitouch 0003:0EEF:72C4.0011: hidraw0: USB HID v1.01 Device [HID 0eef:72c4] on usb-dummy_hcd.0-1/input0
[  467.514390][ T2161] usb 1-1: USB disconnect, device number 5
[  468.378850][ T8420] smc: net device bond0 applied user defined pnetid SYZ2
[  468.415660][ T8421] loop2: detected capacity change from 0 to 1024
[  468.450461][ T8421] EXT4-fs: Ignoring removed mblk_io_submit option
[  468.534276][ T8421] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  469.119663][ T5811] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.313608][ T8438] loop1: detected capacity change from 0 to 512
[  469.400734][ T8438] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.1091: iget: bad extended attribute block 1
[  469.447486][ T8438] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1091: couldn't read orphan inode 15 (err -117)
[  469.532975][ T8433] loop3: detected capacity change from 0 to 4096
[  469.546442][ T8438] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  469.563159][ T8433] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  469.585957][ T8442] loop2: detected capacity change from 0 to 512
[  469.637444][ T8442] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  469.650266][ T8442] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  469.692337][ T8442] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  469.754975][ T8438] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  469.758854][ T8442] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  469.838938][ T8442] System zones: 0-2, 18-18, 34-34
[  469.880695][ T8442] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  469.947682][ T8442] EXT4-fs (loop2): 1 truncate cleaned up
[  469.956640][ T8442] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  470.028520][ T8447] loop4: detected capacity change from 0 to 64
[  470.141074][   T30] audit: type=1800 audit(1748286842.334:467): pid=8442 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1093" name="file2" dev="loop2" ino=16 res=0 errno=0
[  470.258056][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.135816][ T2161] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  471.341882][ T2161] usb 2-1: Using ep0 maxpacket: 16
[  471.400318][ T2161] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  471.411160][ T2161] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  471.425650][ T2161] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  471.441650][ T2161] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  471.456518][ T2161] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  471.775640][ T2161] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  471.788314][ T2161] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  471.796917][ T2161] usb 2-1: Manufacturer: syz
[  471.911961][ T2161] usb 2-1: config 0 descriptor??
[  472.145012][ T8466] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1102'.
[  472.196716][ T5811] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.556456][ T8474] netlink: 10 bytes leftover after parsing attributes in process `syz.2.1105'.
[  472.637766][ T2161] rc_core: IR keymap rc-hauppauge not found
[  472.644395][ T2161] Registered IR keymap rc-empty
[  472.660669][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  472.730489][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  472.762373][ T2161] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  472.788094][ T2161] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input9
[  472.906538][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  472.945168][    C1] mceusb 2-1:0.0: short-range (0xb) receiver active
[  473.002801][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.022116][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.044681][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.060950][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.083539][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.105129][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.121605][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.148665][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.160642][ T2161] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  473.245193][ T2161] mceusb 2-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  473.245335][ T2161] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0xb active)
[  473.253289][ T2161] usb 2-1: USB disconnect, device number 5
[  473.271205][ T8481] loop3: detected capacity change from 0 to 256
[  473.969227][ T8485] loop0: detected capacity change from 0 to 512
[  474.048594][ T8485] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  474.176621][ T8492] loop4: detected capacity change from 0 to 64
[  474.265509][ T8492] MINIX-fs: mounting file system with errors, running fsck is recommended
[  474.286397][ T8485] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.303410][ T8485] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  474.756275][ T8496] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  474.842916][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.054392][ T8503] loop2: detected capacity change from 0 to 2048
[  475.239046][ T5878] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  475.365357][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  475.444686][ T5878] usb 2-1: Using ep0 maxpacket: 16
[  475.478588][ T5878] usb 2-1: config 0 has an invalid interface number: 251 but max is 0
[  475.487422][ T5878] usb 2-1: config 0 has no interface number 0
[  475.494036][ T5878] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  475.507474][ T5878] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  475.541147][ T8510] loop4: detected capacity change from 0 to 128
[  475.672698][ T5878] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  475.682387][ T5878] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.694010][ T5878] usb 2-1: Product: syz
[  475.698462][ T5878] usb 2-1: Manufacturer: syz
[  475.703648][ T5878] usb 2-1: SerialNumber: syz
[  475.785081][ T5878] usb 2-1: config 0 descriptor??
[  475.795834][ T8504] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  475.832881][ T8504] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  476.120925][ T5844] IPVS: starting estimator thread 0...
[  476.153453][ T8515] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[  476.190599][ T8504] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  476.241626][ T8504] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  476.264397][ T8516] IPVS: using max 192 ests per chain, 9600 per kthread
[  476.479152][ T5878] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  476.490252][ T5878] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -61
[  476.504531][ T5878] asix 2-1:0.251: probe with driver asix failed with error -5
[  476.706695][ T5878] usb 2-1: USB disconnect, device number 6
[  476.810267][ T2161] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  476.990246][ T2161] usb 4-1: Using ep0 maxpacket: 32
[  477.024787][ T2161] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  477.036458][ T2161] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  477.050282][ T2161] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  477.059648][ T2161] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  477.151209][ T2161] usb 4-1: config 0 descriptor??
[  477.694114][ T2161] savu 0003:1E7D:2D5A.0012: hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  477.756653][ T8535] netlink: 192 bytes leftover after parsing attributes in process `syz.2.1131'.
[  477.766614][ T8535] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1131'.
[  477.845038][ T5878] usb 4-1: USB disconnect, device number 7
[  478.533202][ T8546] loop4: detected capacity change from 0 to 64
[  478.691540][ T8546] hfs: request for non-existent node -129 in B*Tree
[  478.698407][ T8546] hfs: request for non-existent node -129 in B*Tree
[  479.465116][ T8558] xfs: Unexpected value for 'discard'
[  479.601450][ T8562] loop0: detected capacity change from 0 to 16
[  479.685468][   T30] audit: type=1326 audit(1748286851.924:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8560 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  479.697403][ T8562] erofs (device loop0): mounted with root inode @ nid 36.
[  479.712055][   T30] audit: type=1326 audit(1748286851.924:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8560 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  479.751848][   T30] audit: type=1326 audit(1748286851.924:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8560 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  479.867610][ T8566] binder: 8564:8566 ioctl c0306201 200000000040 returned -14
[  479.996299][   T30] audit: type=1326 audit(1748286852.104:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8560 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  480.023137][   T30] audit: type=1326 audit(1748286852.104:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8560 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  483.076219][ T8600] loop1: detected capacity change from 0 to 40427
[  483.089114][ T8600] F2FS-fs (loop1): Invalid segment/section count (24 != 1 * 1)
[  483.097391][ T8600] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  483.134412][ T8600] F2FS-fs (loop1): invalid crc value
[  483.539242][ T8600] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  483.557116][ T8600] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  484.101445][ T8620] netlink: 'syz.4.1171': attribute type 1 has an invalid length.
[  484.192162][ T8621] loop3: detected capacity change from 0 to 256
[  484.238570][ T8621] exfat: Deprecated parameter 'utf8'
[  484.366683][ T8621] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  484.878728][ T8631] loop2: detected capacity change from 0 to 24
[  485.530508][   T30] audit: type=1326 audit(1748286857.784:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8639 comm="syz.4.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ffc0000
[  485.558616][   T30] audit: type=1326 audit(1748286857.784:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8639 comm="syz.4.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ffc0000
[  485.591729][   T30] audit: type=1326 audit(1748286857.814:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8639 comm="syz.4.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f1054d8e969 code=0x7ffc0000
[  485.631443][   T30] audit: type=1326 audit(1748286857.894:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8639 comm="syz.4.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ffc0000
[  485.657554][   T30] audit: type=1326 audit(1748286857.894:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8639 comm="syz.4.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1054d8e969 code=0x7ffc0000
[  487.567985][ T8662] loop2: detected capacity change from 0 to 2048
[  487.679524][ T8662] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  487.689754][ T8662] NILFS (loop2): mounting unchecked fs
[  487.808990][ T8662] NILFS (loop2): recovery complete
[  487.846065][ T8670] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  488.047441][ T8675] loop1: detected capacity change from 0 to 1024
[  488.413332][ T8680] loop4: detected capacity change from 0 to 64
[  488.612641][ T3776] hfsplus: b-tree write err: -5, ino 4
[  488.926795][ T8684] netlink: 'syz.2.1199': attribute type 5 has an invalid length.
[  489.207074][ T8690] loop0: detected capacity change from 0 to 1024
[  489.272664][ T8690] EXT4-fs: inline encryption not supported
[  489.278863][ T8690] EXT4-fs: Ignoring removed i_version option
[  489.367679][ T8690] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  489.528504][ T8690] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.1202: lblock 2 mapped to illegal pblock 2 (length 1)
[  489.650607][ T8690] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  489.659137][ T8690] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 48: comm syz.0.1202: lblock 0 mapped to illegal pblock 48 (length 1)
[  489.813907][ T8690] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  489.826688][ T8690] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.1202: Failed to acquire dquot type 0
[  489.954991][ T8690] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  490.045129][ T8690] EXT4-fs error (device loop0): ext4_evict_inode:259: inode #11: comm syz.0.1202: mark_inode_dirty error
[  490.134013][ T8690] EXT4-fs warning (device loop0): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[  490.145093][ T8690] EXT4-fs (loop0): 1 orphan inode deleted
[  490.153652][ T8690] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  490.215559][ T3567] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:14: lblock 1 mapped to illegal pblock 1 (length 1)
[  490.359137][ T3567] Quota error (device loop0): remove_tree: Can't read quota data block 1
[  490.371784][ T3567] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:14: Failed to release dquot type 0
[  490.520267][ T2161] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  490.593552][ T8695] loop2: detected capacity change from 0 to 40427
[  490.611115][ T8695] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x3fffff
[  490.684778][ T8695] F2FS-fs (loop2): invalid crc value
[  490.734660][ T2161] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  490.746535][ T2161] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  490.760047][ T2161] usb 5-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00
[  490.769500][ T2161] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  490.979066][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.106907][ T5809] EXT4-fs error (device loop0): __ext4_get_inode_loc:4450: comm syz-executor: Invalid inode table block 1 in block_group 0
[  491.167314][ T8695] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  491.208826][ T2161] usb 5-1: config 0 descriptor??
[  491.237710][ T5809] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  491.286194][ T5809] EXT4-fs error (device loop0): ext4_quota_off:7219: inode #3: comm syz-executor: mark_inode_dirty error
[  492.022262][ T2161] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  492.029756][ T2161] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  492.042809][ T2161] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  492.050517][ T2161] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  492.057943][ T2161] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  492.193784][ T2161] samsung 0003:0419:0001.0013: hidraw0: USB HID v0.00 Device [HID 0419:0001] on usb-dummy_hcd.4-1/input0
[  492.320146][ T2161] usb 5-1: USB disconnect, device number 9
[  492.638251][ T8717] loop1: detected capacity change from 0 to 128
[  492.897696][ T8719] loop4: detected capacity change from 0 to 128
[  493.184882][ T8722] loop3: detected capacity change from 0 to 64
[  494.641620][ T8727] loop4: detected capacity change from 0 to 4096
[  495.042389][ T8732] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  495.259102][ T8735] loop1: detected capacity change from 0 to 32768
[  495.271725][ T8735] bcachefs: bch2_fs_parse_param() Error parsing option journal_reclaim_delay: option_value
[  495.924472][ T8741] loop2: detected capacity change from 0 to 512
[  495.933765][ T8741] EXT4-fs: Ignoring removed oldalloc option
[  495.942561][ T8741] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  496.031164][ T8741] EXT4-fs (loop2): 1 orphan inode deleted
[  496.037226][ T8741] EXT4-fs (loop2): 1 truncate cleaned up
[  496.049346][ T8741] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  496.556857][ T5811] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  496.607055][ T8749] loop1: detected capacity change from 0 to 512
[  496.724084][ T8752] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1227'.
[  496.938656][ T8749] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  496.955270][ T8749] ext4 filesystem being mounted at /235/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  497.464882][ T8763] Zero length message leads to an empty skb
[  497.494514][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.620428][ T8766] loop3: detected capacity change from 0 to 64
[  499.313393][ T8776] loop2: detected capacity change from 0 to 32768
[  499.399703][ T8776] (syz.2.1239,8776,1):ocfs2_find_entry:1075 ERROR: status = -117
[  499.408231][ T8776] (syz.2.1239,8776,1):ocfs2_init_global_system_inodes:465 ERROR: status = -22
[  499.417683][ T8776] (syz.2.1239,8776,1):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs?
[  499.417905][ T8776] (syz.2.1239,8776,1):ocfs2_init_global_system_inodes:476 ERROR: status = -22
[  499.442774][ T8776] (syz.2.1239,8776,1):ocfs2_initialize_super:2198 ERROR: status = -22
[  499.451902][ T8776] (syz.2.1239,8776,1):ocfs2_fill_super:1177 ERROR: status = -22
[  499.534348][ T8784] loop0: detected capacity change from 0 to 256
[  499.636162][ T8784] exfat: Deprecated parameter 'utf8'
[  499.899002][ T8784] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xdd33351c, utbl_chksum : 0xe619d30d)
[  500.351242][ T5878] kernel write not supported for file /dsp (pid: 5878 comm: kworker/0:5)
[  500.552542][ T8796] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1247'.
[  500.565351][ T8796] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1247'.
[  500.754439][ T8795] loop4: detected capacity change from 0 to 2048
[  500.840685][ T8795] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  501.333138][ T8806] netlink: 'syz.3.1252': attribute type 2 has an invalid length.
[  501.421158][ T8806] netlink: 'syz.3.1252': attribute type 2 has an invalid length.
[  501.812295][ T8802] loop1: detected capacity change from 0 to 4096
[  501.840380][ T8802] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[  502.263901][   T30] audit: type=1800 audit(1748286874.514:478): pid=8802 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1250" name="file2" dev="loop1" ino=31 res=0 errno=0
[  502.967864][ T8826] netlink: 100 bytes leftover after parsing attributes in process `syz.0.1263'.
[  503.321080][ T8834] loop4: detected capacity change from 0 to 256
[  503.343885][ T8834] exfat: Deprecated parameter 'namecase'
[  503.470005][ T8834] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1cbb3694, utbl_chksum : 0xe619d30d)
[  504.302305][ T8851] loop2: detected capacity change from 0 to 256
[  504.325018][ T8851] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  504.336607][ T8851] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  504.442122][ T8853] loop4: detected capacity change from 0 to 512
[  504.483298][ T8851] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xd2ee65da, utbl_chksum : 0xe619d30d)
[  504.498774][ T8853] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  504.513780][ T8851] exFAT-fs (loop2): error, invalid access to FAT (entry 0x00000005) bogus content (0xffffd5ff)
[  504.528826][ T8851] exFAT-fs (loop2): Filesystem has been set read-only
[  504.535984][ T8851] exFAT-fs (loop2): failed to initialize root inode
[  504.626073][ T8853] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0102]
[  504.636103][ T8853] EXT4-fs (loop4): orphan cleanup on readonly fs
[  504.695456][ T8853] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.1275: attempt to clear invalid blocks 1024 len 1
[  504.785607][ T8853] EXT4-fs (loop4): Remounting filesystem read-only
[  504.849121][ T8853] EXT4-fs (loop4): 1 truncate cleaned up
[  504.858835][ T8853] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  504.931332][ T8853] kernel profiling enabled (shift: 63)
[  504.937239][ T8853] profiling shift: 63 too large
[  505.133843][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  505.292933][ T8860] mkiss: ax0: crc mode is auto.
[  506.785847][ T8885] loop4: detected capacity change from 0 to 512
[  506.932611][ T8877] loop1: detected capacity change from 0 to 4096
[  506.990916][ T8885] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  507.007192][ T8885] ext4 filesystem being mounted at /257/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  507.034254][ T8877] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  507.127308][ T8891] loop0: detected capacity change from 0 to 2048
[  507.193900][   T30] audit: type=1326 audit(1748286879.454:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8893 comm="syz.3.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  507.311192][ T8891] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  507.315078][   T30] audit: type=1326 audit(1748286879.494:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8893 comm="syz.3.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=444 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  507.350614][   T30] audit: type=1326 audit(1748286879.494:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8893 comm="syz.3.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  507.376412][   T30] audit: type=1326 audit(1748286879.494:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8893 comm="syz.3.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=446 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  507.414666][   T30] audit: type=1326 audit(1748286879.494:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8893 comm="syz.3.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  507.457205][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  507.680684][ T8877] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  507.683704][ T8898] loop2: detected capacity change from 0 to 1024
[  507.832775][ T8898] hfsplus: small file entry
[  507.960106][ T5809] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  508.032485][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.410219][ T8905] loop2: detected capacity change from 0 to 8
[  508.640442][ T8910] loop1: detected capacity change from 0 to 512
[  508.701642][ T8910] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  508.721011][ T8910] ext4 filesystem being mounted at /246/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  508.793897][ T8912] loop4: detected capacity change from 0 to 512
[  508.824650][ T8912] EXT4-fs (loop4): Test dummy encryption mode enabled
[  508.832144][ T8912] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  508.948002][ T8910] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1297: corrupted inode contents
[  508.970070][ T8912] EXT4-fs (loop4): 1 truncate cleaned up
[  508.978314][ T8912] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  509.031203][ T8910] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.1297: mark_inode_dirty error
[  509.130946][ T8912] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  509.149040][ T8910] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1297: corrupted inode contents
[  509.210457][ T8912] EXT4-fs (loop4): Remounting filesystem read-only
[  509.251799][ T8912] EXT4-fs (loop4): error restoring inline_data for inode -- potential data loss! (inode 12, error -30)
[  509.343696][ T8918] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1297: corrupted inode contents
[  509.464457][ T8918] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.1297: mark_inode_dirty error
[  509.545917][ T8918] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1297: corrupted inode contents
[  509.636590][ T8918] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.1297: mark_inode_dirty error
[  509.702426][ T8918] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1297: corrupted inode contents
[  509.831012][ T8918] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.1297: mark_inode_dirty error
[  509.901720][ T8921] loop2: detected capacity change from 0 to 32768
[  509.924479][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  509.972156][ T8921] jbd2_journal_init_inode: Cannot locate journal superblock
[  509.980112][ T8921] (syz.2.1302,8921,1):ocfs2_journal_init:973 ERROR: Linux journal layer error
[  509.989306][ T8921] (syz.2.1302,8921,1):ocfs2_check_volume:2347 ERROR: Could not initialize journal!
[  510.000248][ T8921] (syz.2.1302,8921,1):ocfs2_check_volume:2432 ERROR: status = -22
[  510.008381][ T8921] (syz.2.1302,8921,1):ocfs2_mount_volume:1764 ERROR: status = -22
[  510.028164][ T8921] (syz.2.1302,8921,1):ocfs2_fill_super:1177 ERROR: status = -22
[  510.533217][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.188179][ T8940] netlink: 'syz.3.1310': attribute type 2 has an invalid length.
[  511.209569][ T8941] loop4: detected capacity change from 0 to 164
[  512.120633][ T2161] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  512.176682][ T8946] loop1: detected capacity change from 0 to 4096
[  512.206812][ T8946] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  512.379618][ T2161] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  512.391133][ T2161] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  512.407578][ T2161] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  512.419672][ T2161] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  512.434188][ T2161] usb 4-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00
[  512.443716][ T2161] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  512.672305][ T2161] usb 4-1: config 0 descriptor??
[  513.147405][ T2161] hid-picolcd 0003:04D8:C002.0014: unknown main item tag 0x0
[  513.156298][ T2161] hid-picolcd 0003:04D8:C002.0014: unknown main item tag 0x0
[  513.164358][ T2161] hid-picolcd 0003:04D8:C002.0014: unknown main item tag 0x0
[  513.172352][ T2161] hid-picolcd 0003:04D8:C002.0014: unknown main item tag 0x0
[  513.180390][ T2161] hid-picolcd 0003:04D8:C002.0014: unknown main item tag 0x0
[  513.188178][ T2161] hid-picolcd 0003:04D8:C002.0014: unknown main item tag 0x0
[  513.196198][ T2161] hid-picolcd 0003:04D8:C002.0014: unknown main item tag 0x0
[  513.331762][ T8960] loop2: detected capacity change from 0 to 4096
[  513.382200][ T8960] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  513.460681][ T2161] hid-picolcd 0003:04D8:C002.0014: No report with id 0x11 found
[  513.499709][ T2161] usb 4-1: USB disconnect, device number 8
[  513.612047][ T8960] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[  514.770423][ T2161] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  514.961192][ T2161] usb 2-1: Using ep0 maxpacket: 16
[  515.015553][ T2161] usb 2-1: New USB device found, idVendor=110a, idProduct=1653, bcdDevice=5e.a7
[  515.025224][ T2161] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.035262][ T2161] usb 2-1: Product: syz
[  515.039715][ T2161] usb 2-1: Manufacturer: syz
[  515.044727][ T2161] usb 2-1: SerialNumber: syz
[  515.139316][ T2161] usb 2-1: config 0 descriptor??
[  515.210753][ T5878] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  515.416640][ T5878] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  515.427367][ T5878] usb 3-1: config 0 has no interfaces?
[  515.514879][ T5878] usb 3-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  515.527801][ T5878] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.536288][ T5878] usb 3-1: Product: syz
[  515.540841][ T5878] usb 3-1: Manufacturer: syz
[  515.545701][ T5878] usb 3-1: SerialNumber: syz
[  515.620421][ T2161] mxuport 2-1:0.0: mxuport_recv_ctrl_urb - short read (0 / 4)
[  515.628523][ T2161] mxuport 2-1:0.0: probe with driver mxuport failed with error -5
[  515.667637][ T5878] usb 3-1: config 0 descriptor??
[  515.837869][ T2161] usb 2-1: USB disconnect, device number 7
[  515.920630][ T5806] Bluetooth: hci4: unexpected event for opcode 0x2035
[  516.008052][   T30] audit: type=1326 audit(1748286888.234:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914b78e969 code=0x7ffc0000
[  516.034639][   T30] audit: type=1326 audit(1748286888.234:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914b78e969 code=0x7ffc0000
[  516.057816][   T30] audit: type=1326 audit(1748286888.284:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f914b78e969 code=0x7ffc0000
[  516.074639][ T9002] loop0: detected capacity change from 0 to 512
[  516.084566][   T30] audit: type=1326 audit(1748286888.284:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f914b78e9a3 code=0x7ffc0000
[  516.116877][   T30] audit: type=1326 audit(1748286888.284:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f914b78d41f code=0x7ffc0000
[  516.136798][ T9002] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  516.140774][   T30] audit: type=1326 audit(1748286888.304:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f914b78e9f7 code=0x7ffc0000
[  516.175377][   T30] audit: type=1326 audit(1748286888.304:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f914b78d2d0 code=0x7ffc0000
[  516.194327][ T9002] EXT4-fs (loop0): 1 truncate cleaned up
[  516.201651][   T30] audit: type=1326 audit(1748286888.334:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f914b78e56b code=0x7ffc0000
[  516.206334][ T9002] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  516.231331][   T30] audit: type=1326 audit(1748286888.384:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f914b78d5ca code=0x7ffc0000
[  516.264860][   T30] audit: type=1326 audit(1748286888.384:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.0.1340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f914b78d5ca code=0x7ffc0000
[  516.350907][ T5878] usb 3-1: USB disconnect, device number 9
[  516.534505][ T9008] ip6_vti0: entered promiscuous mode
[  516.663129][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  517.161693][ T9015] netlink: 'syz.3.1346': attribute type 2 has an invalid length.
[  517.718733][ T2161] IPVS: starting estimator thread 0...
[  517.828008][ T9028] IPVS: using max 192 ests per chain, 9600 per kthread
[  519.570292][ T9035] loop0: detected capacity change from 0 to 32768
[  519.628409][ T9035] gfs2: not a GFS2 filesystem
[  520.100765][ T5806] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  520.109428][ T5806] Bluetooth: hci4: Injecting HCI hardware error event
[  520.118335][ T5806] Bluetooth: hci4: hardware error 0x00
[  520.450791][ T9041] loop4: detected capacity change from 0 to 32768
[  520.536198][ T9041] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  520.548342][ T9041] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  520.573160][ T9041] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 3ms
[  520.778942][ T9045] loop1: detected capacity change from 0 to 1024
[  520.780927][ T9041] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  520.880873][ T9045] EXT4-fs: Ignoring removed nobh option
[  520.886774][ T9045] EXT4-fs: inline encryption not supported
[  520.903911][ T9045] EXT4-fs: Ignoring removed bh option
[  520.986856][ T9051] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1362'.
[  521.002707][ T9051] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1362'.
[  521.014150][ T9051] netlink: 'syz.3.1362': attribute type 12 has an invalid length.
[  521.212885][ T9045] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  521.682893][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  522.192031][ T5806] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  522.392022][ T9067] loop0: detected capacity change from 0 to 1024
[  523.333428][ T9080] sctp: [Deprecated]: syz.4.1373 (pid 9080) Use of int in maxseg socket option.
[  523.333428][ T9080] Use struct sctp_assoc_value instead
[  524.198856][ T9081] loop3: detected capacity change from 0 to 32768
[  524.301302][ T9081] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  524.444894][ T9081] XFS (loop3): Internal error !uuid_equal(&mp->m_sb.sb_uuid, &head->h_fs_uuid) at line 254 of file fs/xfs/xfs_log_recover.c.  Caller xlog_header_check_mount+0x17b/0x1d0
[  524.462489][ T9081] CPU: 0 UID: 0 PID: 9081 Comm: syz.3.1374 Not tainted 6.15.0-syzkaller #0 PREEMPT(undef) 
[  524.462630][ T9081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  524.462714][ T9081] Call Trace:
[  524.462763][ T9081]  <TASK>
[  524.462813][ T9081]  __dump_stack+0x26/0x30
[  524.462982][ T9081]  dump_stack_lvl+0x1df/0x270
[  524.463162][ T9081]  dump_stack+0x1e/0x25
[  524.463317][ T9081]  xfs_corruption_error+0x28b/0x2a0
[  524.463507][ T9081]  xlog_header_check_mount+0x1ae/0x1d0
[  524.463656][ T9081]  ? xlog_header_check_mount+0x17b/0x1d0
[  524.463813][ T9081]  xlog_find_verify_log_record+0x7a5/0xc90
[  524.464006][ T9081]  xlog_find_zeroed+0x7fb/0x940
[  524.464173][ T9081]  xlog_find_head+0xc7/0x1460
[  524.464363][ T9081]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  524.464576][ T9081]  ? xlog_recover+0x6d/0x7f0
[  524.464787][ T9081]  xlog_find_tail+0xda/0x1a50
[  524.464991][ T9081]  ? _raw_spin_unlock_irqrestore+0x3f/0x60
[  524.465176][ T9081]  ? stack_depot_save_flags+0x60f/0x7c0
[  524.465346][ T9081]  ? kmsan_get_metadata+0x105/0x1b0
[  524.465565][ T9081]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  524.465786][ T9081]  ? xlog_recover+0x55/0x7f0
[  524.465982][ T9081]  ? xfs_log_mount+0x4da/0x880
[  524.466168][ T9081]  xlog_recover+0x6d/0x7f0
[  524.466399][ T9081]  ? kmsan_get_metadata+0x105/0x1b0
[  524.466618][ T9081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  524.466852][ T9081]  xfs_log_mount+0x4da/0x880
[  524.467057][ T9081]  xfs_mountfs+0x1599/0x2d00
[  524.467246][ T9081]  xfs_fs_fill_super+0x2a6f/0x2d80
[  524.467490][ T9081]  get_tree_bdev_flags+0x6e3/0x920
[  524.467686][ T9081]  ? __pfx_xfs_fs_fill_super+0x10/0x10
[  524.467886][ T9081]  ? __pfx_xfs_fs_fill_super+0x10/0x10
[  524.468077][ T9081]  ? __pfx_xfs_fs_get_tree+0x10/0x10
[  524.468266][ T9081]  get_tree_bdev+0x38/0x50
[  524.468449][ T9081]  xfs_fs_get_tree+0x35/0x40
[  524.468646][ T9081]  vfs_get_tree+0xb0/0x5c0
[  524.468821][ T9081]  ? mount_capable+0x99/0x100
[  524.469011][ T9081]  do_new_mount+0x738/0x1610
[  524.469214][ T9081]  ? kmsan_get_metadata+0x105/0x1b0
[  524.469466][ T9081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  524.469720][ T9081]  path_mount+0x6db/0x1e90
[  524.469909][ T9081]  ? user_path_at+0x32d/0x3d0
[  524.470095][ T9081]  __se_sys_mount+0x6eb/0x7d0
[  524.470284][ T9081]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  524.470517][ T9081]  __x64_sys_mount+0xe4/0x150
[  524.470728][ T9081]  x64_sys_call+0xfa7/0x3db0
[  524.470929][ T9081]  do_syscall_64+0xd9/0x1b0
[  524.471144][ T9081]  ? irqentry_exit+0x16/0x60
[  524.471330][ T9081]  ? clear_bhb_loop+0x40/0x90
[  524.471512][ T9081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  524.471683][ T9081] RIP: 0033:0x7f984bf9010a
[  524.471797][ T9081] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  524.471941][ T9081] RSP: 002b:00007f984cec4e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  524.472078][ T9081] RAX: ffffffffffffffda RBX: 00007f984cec4ef0 RCX: 00007f984bf9010a
[  524.472179][ T9081] RDX: 0000200000000500 RSI: 00002000000004c0 RDI: 00007f984cec4eb0
[  524.472283][ T9081] RBP: 0000200000000500 R08: 00007f984cec4ef0 R09: 0000000001000000
[  524.472382][ T9081] R10: 0000000001000000 R11: 0000000000000246 R12: 00002000000004c0
[  524.472482][ T9081] R13: 00007f984cec4eb0 R14: 0000000000009959 R15: 0000200000000000
[  524.472612][ T9081]  </TASK>
[  524.813643][ T9081] XFS (loop3): Corruption detected. Unmount and run xfs_repair
[  524.824899][ T9081] XFS (loop3): log has mismatched uuid - can't recover
[  524.835425][ T9081] XFS (loop3): empty log check failed
[  524.841178][ T9081] XFS (loop3): log mount/recovery failed: error -117
[  524.928011][ T9103] lo speed is unknown, defaulting to 1000
[  525.109115][ T9081] XFS (loop3): log mount failed
[  525.438322][ T9108] loop2: detected capacity change from 0 to 256
[  525.924733][ T9108] FAT-fs (loop2): Directory bread(block 64) failed
[  525.931877][ T9108] FAT-fs (loop2): Directory bread(block 65) failed
[  525.938826][ T9108] FAT-fs (loop2): Directory bread(block 66) failed
[  525.947028][ T9108] FAT-fs (loop2): Directory bread(block 67) failed
[  525.955663][ T9108] FAT-fs (loop2): Directory bread(block 68) failed
[  525.962833][ T9108] FAT-fs (loop2): Directory bread(block 69) failed
[  525.969761][ T9108] FAT-fs (loop2): Directory bread(block 70) failed
[  525.976742][ T9108] FAT-fs (loop2): Directory bread(block 71) failed
[  525.984096][ T9108] FAT-fs (loop2): Directory bread(block 72) failed
[  525.991042][ T9108] FAT-fs (loop2): Directory bread(block 73) failed
[  526.970824][ T9123] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1389'.
[  526.980411][ T9123] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1389'.
[  526.989636][ T9123] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1389'.
[  527.000181][ T9123] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1389'.
[  529.038700][ T9156] loop0: detected capacity change from 0 to 1024
[  529.132685][ T9156] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  529.251909][ T9156] EXT4-fs warning (device loop0): ext4_resize_begin:72: won't resize using backup superblock at 1
[  529.782373][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  529.819437][ T9168] loop2: detected capacity change from 0 to 256
[  530.350950][ T9168] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  531.318950][ T9163] loop4: detected capacity change from 0 to 65536
[  531.493939][ T9163] XFS (loop4): Mounting V5 Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[  531.757044][ T9192] netlink: 'syz.1.1416': attribute type 24 has an invalid length.
[  531.860957][ T9163] XFS (loop4): Ending clean mount
[  531.984915][ T5795] XFS (loop4): Unmounting Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[  532.352892][ T9199] netlink: 277 bytes leftover after parsing attributes in process `syz.0.1421'.
[  533.988947][ T9219] loop1: detected capacity change from 0 to 2048
[  534.153336][ T9219] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  534.306487][ T9219] EXT4-fs error (device loop1): ext4_lookup:1789: inode #12: comm syz.1.1430: iget: bogus i_mode (4355)
[  534.756985][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  535.888711][ T9250] loop4: detected capacity change from 0 to 256
[  536.792008][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  537.402522][ T9269] loop4: detected capacity change from 0 to 1024
[  537.641531][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  537.641615][   T30] audit: type=1326 audit(1748286909.874:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44778e969 code=0x7ffc0000
[  537.799684][   T30] audit: type=1326 audit(1748286909.934:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa44778e969 code=0x7ffc0000
[  537.825778][   T30] audit: type=1326 audit(1748286909.934:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44778e969 code=0x7ffc0000
[  537.854421][   T30] audit: type=1326 audit(1748286909.944:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44778e969 code=0x7ffc0000
[  537.877380][   T30] audit: type=1326 audit(1748286909.944:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fa44778e969 code=0x7ffc0000
[  537.906590][   T30] audit: type=1326 audit(1748286909.944:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44778e969 code=0x7ffc0000
[  537.930567][   T30] audit: type=1326 audit(1748286909.944:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44778e969 code=0x7ffc0000
[  538.188883][ T9278] loop0: detected capacity change from 0 to 256
[  538.256611][ T9278] FAT-fs (loop0): Directory bread(block 1285) failed
[  538.387436][ T9278] FAT-fs (loop0): FAT read failed (blocknr 1281)
[  538.387947][ T9286] loop2: detected capacity change from 0 to 164
[  539.184637][ T9295] loop2: detected capacity change from 0 to 8
[  541.661984][ T2161] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  541.915469][ T2161] usb 4-1: Using ep0 maxpacket: 8
[  541.941750][ T2161] usb 4-1: config 0 interface 0 altsetting 64 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  541.953416][ T2161] usb 4-1: config 0 interface 0 altsetting 64 endpoint 0x81 has invalid wMaxPacketSize 0
[  541.963995][ T2161] usb 4-1: config 0 interface 0 has no altsetting 0
[  541.971543][ T2161] usb 4-1: New USB device found, idVendor=5543, idProduct=0045, bcdDevice= 0.00
[  541.981095][ T2161] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  542.154139][ T2161] usb 4-1: config 0 descriptor??
[  542.826816][ T2161] usb 4-1: string descriptor 0 read error: -71
[  542.869084][ T2161] uclogic 0003:5543:0045.0015: failed retrieving string descriptor #200: -71
[  542.880798][ T2161] uclogic 0003:5543:0045.0015: failed retrieving pen parameters: -71
[  542.889434][ T2161] uclogic 0003:5543:0045.0015: failed probing pen v2 parameters: -71
[  542.898157][ T2161] uclogic 0003:5543:0045.0015: failed probing parameters: -71
[  542.906902][ T2161] uclogic 0003:5543:0045.0015: probe with driver uclogic failed with error -71
[  542.963243][ T2161] usb 4-1: USB disconnect, device number 9
[  544.352989][ T9351] loop0: detected capacity change from 0 to 512
[  544.613166][ T9351] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  544.626660][ T9351] ext4 filesystem being mounted at /317/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  545.025802][ T2161] kernel write not supported for file /uhid (pid: 2161 comm: kworker/1:2)
[  545.045736][ T9359] loop4: detected capacity change from 0 to 1764
[  545.203164][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  545.205041][ T9359] iso9660: Corrupted directory entry in block 2 of inode 1920
[  545.655527][ T9370] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1493'.
[  545.704582][ T9372] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  546.273934][ T9382] loop2: detected capacity change from 0 to 256
[  546.380089][ T9382] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1497'.
[  546.584621][ T9386] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1500'.
[  546.658679][ T9389] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1500'.
[  547.570656][ T9401] netlink: 'syz.1.1506': attribute type 4 has an invalid length.
[  547.578695][ T9401] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.1506'.
[  548.928628][ T9426] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1517'.
[  550.370236][ T9435] loop0: detected capacity change from 0 to 32768
[  550.515924][ T9436] loop1: detected capacity change from 0 to 32768
[  550.653715][ T9435] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1521 (9435)
[  550.668666][ T9435] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  550.669040][ T9435] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm
[  550.669258][ T9435] BTRFS info (device loop0): using free-space-tree
[  550.685907][ T9440] loop2: detected capacity change from 0 to 164
[  550.735838][ T9440] Unable to read rock-ridge attributes
[  550.936345][ T9436] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  550.972728][ T9436] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=no,norecovery,recovery_pass_last=check_extents,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  550.972728][ T9436]   allowing incompatible features above 0.0: (unknown version)
[  550.973916][ T9436] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  550.975491][ T9436] bcachefs (loop1): Version upgrade required:
[  550.975491][ T9436] Version upgrade from 0.8: (unknown version) to 1.7: mi_btree_bitmap incomplete
[  550.975491][ T9436] Doing incompatible version upgrade from 0.8: (unknown version) to 1.25: extent_flags
[  550.975491][ T9436]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  550.979020][ T9436] bcachefs (loop1): dropping and reconstructing all alloc info
[  551.261228][ T5809] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  551.498705][ T9436] bcachefs (loop1): invalid bkey in btree_node btree=inodes level=0: u64s 18 type inode_v3 0:536870914:U32_MAX len 0 ver 0: 
[  551.498830][ T9436]     mode=100755
[  551.498894][ T9436]     flags=(15300000)
[  551.498956][ T9436]     journal_seq=4
[  551.499024][ T9436]     hash_seed=d483206f1ed95abf
[  551.499092][ T9436]     hash_type=siphash
[  551.499153][ T9436]     bi_size=100
[  551.499219][ T9436]     bi_sectors=8
[  551.499286][ T9436]     bi_version=1126999418470400
[  551.499358][ T9436]     bi_atime=0
[  551.499424][ T9436]     bi_ctime=0
[  551.499485][ T9436]     bi_mtime=0
[  551.499547][ T9436]     bi_otime=2780562352
[  551.499615][ T9436]     bi_uid=2780562352
[  551.499695][ T9436]     bi_gid=0
[  551.499754][ T9436]     bi_nlink=2780562352
[  551.500072][ T9436]     bi_generation=0
[  551.500140][ T9436]     bi_dev=0
[  551.500202][ T9436]     bi_data_checksum=0
[  551.500269][ T9436]     bi_compression=56
[  551.500330][ T9436]     bi_project=0
[  551.500392][ T9436]     bi_background_compression=0
[  551.500460][ T9436]     bi_data_replicas=0
[  551.500527][ T9436]     bi_promote_target=0
[  551.500688][ T9436]     bi_foreground_target=0
[  551.500764][ T9436]     bi_background_target=0
[  551.500855][ T9436]     bi_erasure_code=0
[  551.501029][ T9436]     bi_fields_set=0
[  551.501095][ T9436]     bi_dir=0
[  551.501156][ T9436]     bi_dir_offset=0
[  551.501217][ T9436]     bi_subvol=0
[  551.501281][ T9436]     bi_parent_subvol=0
[  551.501346][ T9436]     bi_nocow=0
[  551.501406][ T9436]     bi_depth=0
[  551.501466][ T9436]     bi_inodes_32bit=0
[  551.501532][ T9436]     bi_casefold=0
[  551.501595][ T9436]   invalid compression opt 55, deleting
[  551.740381][ T9464] loop2: detected capacity change from 0 to 2048
[  551.804689][ T9464] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  551.812876][ T9436] bcachefs (loop1): accounting_read... done
[  551.814112][ T9436] bcachefs (loop1): alloc_read... done
[  551.814576][ T9436] bcachefs (loop1): snapshots_read... done
[  551.815325][ T9436] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean
[  551.817463][ T9436] bcachefs (loop1): done starting filesystem
[  552.472670][ T5798] bcachefs (loop1): shutting down
[  552.683440][ T5798] bcachefs (loop1): shutdown complete
[  553.184073][ T9471] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1531'.
[  554.171088][ T9482] loop4: detected capacity change from 0 to 2048
[  554.341210][ T9485] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  555.162364][ T9494] IPv6: NLM_F_CREATE should be specified when creating new route
[  556.896678][ T9507] loop0: detected capacity change from 0 to 4096
[  556.931736][ T9507] EXT4-fs: Ignoring removed nomblk_io_submit option
[  557.031876][ T9507] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  557.133571][ T9507] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  557.170052][ T9510] loop3: detected capacity change from 0 to 32768
[  557.214719][ T9510] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  557.340740][ T9510] (syz.3.1546,9510,1):ocfs2_clear_journal_error:1147 ERROR: File system error -318767104 recorded in journal 0.
[  557.361008][ T9510] (syz.3.1546,9510,1):ocfs2_clear_journal_error:1149 ERROR: File system on device loop3 needs checking.
[  557.386110][ T9510] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  557.588786][ T9507] EXT4-fs error (device loop0): ext4_get_first_dir_block:3547: inode #12: block 80: comm syz.0.1545: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  557.594342][ T5800] ocfs2: Unmounting device (7,3) on (node local)
[  557.633662][ T9507] EXT4-fs (loop0): Remounting filesystem read-only
[  557.949120][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  558.227061][ T9522] ALSA: mixer_oss: invalid index 40000
[  558.691777][ T9526] loop1: detected capacity change from 0 to 2048
[  558.773842][ T9526] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  559.673964][ T9536] loop3: detected capacity change from 0 to 1024
[  559.687215][ T9539] loop4: detected capacity change from 0 to 128
[  559.735972][ T9536] EXT4-fs: Ignoring removed orlov option
[  559.742385][ T9536] EXT4-fs: Ignoring removed nomblk_io_submit option
[  559.822043][ T9539] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  559.897364][ T9536] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  559.944614][ T9539] ext4 filesystem being mounted at /313/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  560.419732][ T5795] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  560.584444][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  561.150918][ T9560] sp0: Synchronizing with TNC
[  561.257243][ T9560] sp0: Found TNC
[  561.466659][ T9556] loop2: detected capacity change from 0 to 32768
[  561.481833][ T9556] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1564 (9556)
[  561.587121][ T9556] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  561.601024][ T9556] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  561.611026][ T9556] BTRFS info (device loop2): using free-space-tree
[  561.923231][ T9556] BTRFS info (device loop2): rebuilding free space tree
[  562.077832][ T5811] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  562.648251][ T9588] loop0: detected capacity change from 0 to 2048
[  562.793319][ T9593] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1573'.
[  562.807836][ T9590] loop1: detected capacity change from 0 to 256
[  562.918379][ T9590] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  564.500650][ T5853] kernel read not supported for file /dsp (pid: 5853 comm: kworker/1:4)
[  564.510595][ T2161] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  564.697961][ T2161] usb 2-1: config 0 has an invalid interface number: 30 but max is 0
[  564.706984][ T2161] usb 2-1: config 0 has no interface number 0
[  564.713628][ T2161] usb 2-1: New USB device found, idVendor=0572, idProduct=d811, bcdDevice=94.e2
[  564.728525][ T2161] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  564.779684][ T2161] usb 2-1: config 0 descriptor??
[  564.810331][ T2161] dvb-usb: found a 'Mygica D689 DMB-TH' in warm state.
[  564.817519][ T2161] usb 2-1: setting power ON
[  564.822596][ T2161] dvb-usb: bulk message failed: -22 (2/0)
[  564.971843][ T2161] dvb-usb: bulk message failed: -22 (1/0)
[  565.088782][ T2161] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  565.146816][ T2161] dvb-usb: Mygica D689 DMB-TH error while loading driver (-19)
[  565.156101][ T2161] dvb_usb_cxusb 2-1:0.30: probe with driver dvb_usb_cxusb failed with error -22
[  565.158260][ T9625] loop0: detected capacity change from 0 to 128
[  565.182473][ T2161] usb 2-1: USB disconnect, device number 8
[  565.213485][ T9625] EXT4-fs: Ignoring removed nobh option
[  565.272671][ T9625] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  565.323563][ T9625] ext4 filesystem being mounted at /338/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  565.787550][ T5809] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  565.833418][ T5878] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[  566.083481][ T5878] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  566.094134][ T5878] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  566.105909][ T5878] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  566.118820][ T5878] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  566.450717][ T5878] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  566.460786][ T5878] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  566.472708][ T5878] usb 4-1: Manufacturer: syz
[  566.666147][ T5878] usb 4-1: config 0 descriptor??
[  567.021896][ T9636] loop2: detected capacity change from 0 to 32768
[  567.088444][ T9636] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  567.097279][ T9636] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  567.137592][ T9636] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[  567.474146][ T9636] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  567.556041][ T5878] rc_core: IR keymap rc-hauppauge not found
[  567.562674][ T5878] Registered IR keymap rc-empty
[  567.575982][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  567.730205][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  567.762948][ T5878] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  567.783256][ T5878] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input10
[  567.985587][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.096574][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.151559][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.181872][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.216740][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.244212][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.284164][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.314127][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.348532][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.385316][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.417080][ T5878] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  568.450404][ T5878] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  568.460308][ T5878] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  568.574390][ T5878] usb 4-1: USB disconnect, device number 10
[  569.185453][ T9665] loop0: detected capacity change from 0 to 512
[  569.268580][ T9665] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  569.322529][ T9665] EXT4-fs (loop0): warning: maximal mount count reached, running e2fsck is recommended
[  569.457367][ T9665] EXT4-fs error (device loop0): ext4_orphan_get:1391: comm syz.0.1604: inode #15: comm syz.0.1604: iget: illegal inode #
[  569.507172][ T9665] EXT4-fs (loop0): Remounting filesystem read-only
[  569.516734][ T9665] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  569.941217][ T9665] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  570.516155][ T9687] netlink: 'syz.3.1612': attribute type 3 has an invalid length.
[  570.602493][ T9681] loop4: detected capacity change from 0 to 4096
[  570.681310][ T9681] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  570.839047][ T9690] netlink: 'syz.0.1613': attribute type 1 has an invalid length.
[  570.847371][ T9690] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1613'.
[  571.131118][ T9695] loop3: detected capacity change from 0 to 16
[  571.179621][ T9695] erofs (device loop3): mounted with root inode @ nid 36.
[  571.536153][ T9699] netlink: 124 bytes leftover after parsing attributes in process `syz.2.1618'.
[  572.006131][ T9705] tap0: tun_chr_ioctl cmd 1074025677
[  572.012551][ T9705] tap0: linktype set to 778
[  572.665449][ T9716] loop2: detected capacity change from 0 to 128
[  573.579205][ T9717] loop1: detected capacity change from 0 to 32768
[  573.933127][ T9717] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  573.961189][   T30] audit: type=1800 audit(1748286946.184:511): pid=9716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1625" name="bus" dev="loop2" ino=1048688 res=0 errno=0
[  574.259252][ T9720] loop4: detected capacity change from 0 to 32768
[  574.300322][ T9720] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  574.308858][ T9720] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  574.339053][ T9717] XFS (loop1): Ending clean mount
[  574.357121][ T9720] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[  574.369381][ T9717] XFS (loop1): Quotacheck needed: Please wait.
[  574.483995][ T9717] XFS (loop1): Quotacheck: Done.
[  574.568843][ T9720] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  574.697341][ T5798] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  575.273981][ T9739] loop2: detected capacity change from 0 to 2048
[  575.469263][ T9739] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  575.534538][ T9739] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  575.543057][ T9739] UDF-fs: Scanning with blocksize 512 failed
[  575.641805][ T9739] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  575.752414][   T30] audit: type=1800 audit(1748286948.004:512): pid=9739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1632" name="file1" dev="loop2" ino=838 res=0 errno=0
[  575.840209][ T9739] ------------[ cut here ]------------
[  575.846090][ T9739] WARNING: CPU: 1 PID: 9739 at fs/udf/truncate.c:224 udf_truncate_extents+0x7a1/0x1d50
[  575.856400][ T9739] Modules linked in:
[  575.860798][ T9739] CPU: 1 UID: 0 PID: 9739 Comm: syz.2.1632 Not tainted 6.15.0-syzkaller #0 PREEMPT(undef) 
[  575.871378][ T9739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  575.881951][ T9739] RIP: 0010:udf_truncate_extents+0x7a1/0x1d50
[  575.896682][ T9739] Code: ff 44 89 ff 48 89 d3 e8 dd 02 62 fe 89 03 e9 58 fd ff ff 44 89 e7 e8 ee 06 62 fe 4d 85 ff 0f 84 38 fe ff ff e8 00 49 c1 fd 90 <0f> 0b 90 e9 37 14 00 00 44 89 f7 e8 cf 06 62 fe 45 85 ff 0f 84 7e
[  575.924294][ T9739] RSP: 0018:ffff88812b9bb798 EFLAGS: 00010287
[  575.931430][ T9739] RAX: ffffffff8430ddd0 RBX: ffffffffffffffff RCX: 0000000000080000
[  575.939690][ T9739] RDX: ffffc90008c07000 RSI: 00000000000003b1 RDI: 00000000000003b2
[  575.948232][ T9739] RBP: ffff88812b9bb8f0 R08: ffffea000000000f R09: 0000000000000002
[  575.956725][ T9739] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000
[  575.965298][ T9739] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000000000a
[  575.973758][ T9739] FS:  00007f407bcd96c0(0000) GS:ffff8881aabb6000(0000) knlGS:0000000000000000
[  575.983222][ T9739] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  575.996748][ T9739] CR2: 0000001b2e01eff8 CR3: 000000012ba7c000 CR4: 00000000003526f0
[  576.007130][ T9739] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  576.015540][ T9739] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  576.024188][ T9739] Call Trace:
[  576.027706][ T9739]  <TASK>
[  576.031107][ T9739]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  576.037843][ T9739]  ? kmsan_get_metadata+0x105/0x1b0
[  576.043738][ T9739]  udf_write_failed+0x321/0x3d0
[  576.049003][ T9739]  udf_direct_IO+0x338/0x360
[  576.054120][ T9739]  ? __pfx_udf_direct_IO+0x10/0x10
[  576.059568][ T9739]  generic_file_direct_write+0x2bc/0x720
[  576.065866][ T9739]  __generic_file_write_iter+0x25b/0x460
[  576.072071][ T9739]  udf_file_write_iter+0x53f/0xdb0
[  576.077545][ T9739]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  576.084792][ T9739]  ? __pfx_udf_file_write_iter+0x10/0x10
[  576.097558][ T9739]  do_iter_readv_writev+0x914/0xa90
[  576.105419][ T9739]  ? __pfx_udf_file_write_iter+0x10/0x10
[  576.111823][ T9739]  vfs_writev+0x51c/0x1420
[  576.116615][ T9739]  ? kmsan_get_metadata+0x105/0x1b0
[  576.122391][ T9739]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  576.128607][ T9739]  __se_sys_pwritev2+0x22f/0x470
[  576.134211][ T9739]  __x64_sys_pwritev2+0xe4/0x150
[  576.139543][ T9739]  x64_sys_call+0x22b9/0x3db0
[  576.144915][ T9739]  do_syscall_64+0xd9/0x1b0
[  576.150017][ T9739]  ? irqentry_exit+0x16/0x60
[  576.154956][ T9739]  ? clear_bhb_loop+0x40/0x90
[  576.160181][ T9739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.166404][ T9739] RIP: 0033:0x7f407ad8e969
[  576.171584][ T9739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.198805][ T9739] RSP: 002b:00007f407bcd9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  576.209955][ T9739] RAX: ffffffffffffffda RBX: 00007f407afb5fa0 RCX: 00007f407ad8e969
[  576.218249][ T9739] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000004
[  576.226713][ T9739] RBP: 00007f407ae10ab1 R08: 0000000000000000 R09: 0000000000000003
[  576.235107][ T9739] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000000
[  576.243499][ T9739] R13: 0000000000000000 R14: 00007f407afb5fa0 R15: 00007ffe58102778
[  576.251963][ T9739]  </TASK>
[  576.255189][ T9739] ---[ end trace 0000000000000000 ]---
[  576.432700][   T30] audit: type=1326 audit(1748286948.674:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9746 comm="syz.3.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  576.568538][   T30] audit: type=1326 audit(1748286948.734:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9746 comm="syz.3.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  576.594554][   T30] audit: type=1326 audit(1748286948.784:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9746 comm="syz.3.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  576.624693][   T30] audit: type=1326 audit(1748286948.784:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9746 comm="syz.3.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  576.647695][   T30] audit: type=1326 audit(1748286948.784:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9746 comm="syz.3.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f984bf8e969 code=0x7ffc0000
[  576.673763][   T30] audit: type=1326 audit(1748286948.794:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9746 comm="syz.3.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f984bf85927 code=0x7ffc0000
[  576.696596][   T30] audit: type=1326 audit(1748286948.884:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9746 comm="syz.3.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f984bf2ab39 code=0x7ffc0000
[  576.725476][   T30] audit: type=1326 audit(1748286948.884:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9746 comm="syz.3.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f984bf85927 code=0x7ffc0000
[  577.164730][ T9749] loop0: detected capacity change from 0 to 4096
[  577.205836][ T9749] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  577.235025][ T9753] loop4: detected capacity change from 0 to 65
[  577.253540][ T9753] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  577.477033][ T9749] ntfs3(loop0): ino=1a, mi_enum_attr
[  577.483139][ T9749] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  578.983351][ T5878] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  579.090869][ T9782] loop0: detected capacity change from 0 to 512
[  579.140540][ T9782] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  579.165055][ T5878] usb 3-1: Using ep0 maxpacket: 16
[  579.198827][ T5878] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[  579.205658][ T9782] EXT4-fs (loop0): 1 truncate cleaned up
[  579.210829][ T5878] usb 3-1: config 0 descriptor has 1 excess byte, ignoring
[  579.215858][ T9782] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.221746][ T5878] usb 3-1: config 0 has no interface number 0
[  579.411155][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.482884][ T5878] usb 3-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  579.493904][ T5878] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  579.505794][ T5878] usb 3-1: Product: syz
[  579.510494][ T5878] usb 3-1: Manufacturer: syz
[  579.515666][ T5878] usb 3-1: SerialNumber: syz
[  579.602430][ T5878] usb 3-1: config 0 descriptor??
[  579.638349][ T5878] usb 3-1: Found UVC 0.00 device syz (046d:08f3)
[  579.645320][ T5878] usb 3-1: No valid video chain found.
[  579.694291][ T9790] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  579.701146][ T9790] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  579.709317][ T9790] vhci_hcd vhci_hcd.0: Device attached
[  579.717211][ T9789] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1655'.
[  579.769511][ T9794] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(6)
[  579.776446][ T9794] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  579.789521][ T9794] vhci_hcd vhci_hcd.0: Device attached
[  579.835676][ T9790] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  579.856815][ T5878] usb 3-1: USB disconnect, device number 10
[  579.879626][ T9799] loop0: detected capacity change from 0 to 256
[  579.947833][ T5844] vhci_hcd: vhci_device speed not set
[  579.974330][ T9790] vhci_hcd vhci_hcd.0: pdev(4) rhport(3) sockfd(8)
[  579.981276][ T9790] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  579.992724][ T9790] vhci_hcd vhci_hcd.0: Device attached
[  580.030737][ T5844] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  580.063403][ T9791] vhci_hcd: connection reset by peer
[  580.074723][ T9801] vhci_hcd: connection closed
[  580.077969][ T9795] vhci_hcd: connection closed
[  580.104566][ T3567] vhci_hcd: stop threads
[  580.115483][ T3567] vhci_hcd: release socket
[  580.121180][ T3567] vhci_hcd: disconnect device
[  580.127364][ T2161] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  580.180369][ T3567] vhci_hcd: stop threads
[  580.190197][ T3567] vhci_hcd: release socket
[  580.194882][ T3567] vhci_hcd: disconnect device
[  580.227862][ T3567] vhci_hcd: stop threads
[  580.233018][ T3567] vhci_hcd: release socket
[  580.237725][ T3567] vhci_hcd: disconnect device
[  580.301190][ T2161] usb 2-1: Using ep0 maxpacket: 32
[  580.328951][ T2161] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  580.340853][ T2161] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  580.351080][ T2161] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  580.364630][ T2161] usb 2-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  580.374249][ T2161] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.384824][ T9804] loop3: detected capacity change from 0 to 2048
[  580.397249][ T2161] usb 2-1: config 0 descriptor??
[  580.473775][ T9804] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  580.484580][ T9804] NILFS (loop3): mounting unchecked fs
[  580.661538][ T9804] NILFS (loop3): recovery complete
[  580.720771][ T9807] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  580.998809][ T2161] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5011.0016/input/input12
[  581.032964][ T2161] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5011.0016/input/input13
[  581.089178][ T9810] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1661'.
[  581.121770][ T2161] kye 0003:0458:5011.0016: input,hiddev0,hidraw0: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.1-1/input0
[  581.369246][ T2161] usb 2-1: USB disconnect, device number 9
[  582.186953][ T9826] loop2: detected capacity change from 0 to 128
[  582.234472][ T9826] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  582.279461][ T9826] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  582.343611][ T9829] bond0: entered promiscuous mode
[  582.348931][ T9829] bond_slave_0: entered promiscuous mode
[  582.359655][ T9829] bond_slave_1: entered promiscuous mode
[  582.375596][ T9829] batadv0: entered promiscuous mode
[  582.389573][ T9829] 8021q: adding VLAN 0 to HW filter on device hsr1
[  582.446087][ T9829] bond0: left promiscuous mode
[  582.451380][ T9829] bond_slave_0: left promiscuous mode
[  582.458094][ T9829] bond_slave_1: left promiscuous mode
[  582.488148][ T9831] netlink: 452 bytes leftover after parsing attributes in process `syz.1.1670'.
[  582.498162][ T9829] batadv0: left promiscuous mode
[  582.911717][ T4864] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  582.927073][ T9833] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  582.947585][ T5878] lo speed is unknown, defaulting to 1000
[  583.418993][ T9842] loop2: detected capacity change from 0 to 1024
[  583.567401][ T9844] loop4: detected capacity change from 0 to 512
[  583.609350][ T9844] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  583.663167][   T30] kauditd_printk_skb: 58 callbacks suppressed
[  583.663244][   T30] audit: type=1804 audit(1748286955.924:579): pid=9842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1673" name="/newroot/331/file1/file1" dev="loop2" ino=20 res=1 errno=0
[  583.663616][ T9842] syz.2.1673: attempt to access beyond end of device
[  583.663616][ T9842] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  583.714914][ T9842] Buffer I/O error on dev loop2, logical block 2889, async page read
[  583.803929][   T30] audit: type=1800 audit(1748286956.044:580): pid=9842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1673" name="file1" dev="loop2" ino=20 res=0 errno=0
[  583.845480][ T9844] UDF-fs: error (device loop4): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128
[  584.365106][ T9854] netlink: 340 bytes leftover after parsing attributes in process `syz.2.1680'.
[  584.372682][ T9856] loop3: detected capacity change from 0 to 128
[  584.469265][ T9856] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  584.507087][ T9856] ext4 filesystem being mounted at /340/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  585.092232][ T5800] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  585.190441][ T5844] vhci_hcd: vhci_device speed not set
[  585.417221][ T9878] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1688'.
[  585.903085][ T9882] loop4: detected capacity change from 0 to 1024
[  585.965192][ T9882] EXT4-fs (loop4): Test dummy encryption mode enabled
[  585.995182][ T9885] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1692'.
[  586.052655][ T9882] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  586.212489][ T9882] EXT4-fs (loop4): shut down requested (1)
[  586.274244][ T9891] sch_fq: defrate 4294967292 ignored.
[  586.686165][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  586.865746][ T9899] loop0: detected capacity change from 0 to 16
[  586.926078][ T9899] erofs (device loop0): mounted with root inode @ nid 36.
[  587.335715][ T9901] loop4: detected capacity change from 0 to 2048
[  587.441119][ T9903] loop1: detected capacity change from 0 to 1024
[  587.494352][ T9901] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  587.548473][ T9901] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  588.867052][ T9911] loop2: detected capacity change from 0 to 32768
[  589.329744][ T9926] loop1: detected capacity change from 0 to 64
[  591.633443][ T5844] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  591.720330][ T5878] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  591.819748][ T9962] loop0: detected capacity change from 0 to 256
[  591.871464][ T5844] usb 4-1: Using ep0 maxpacket: 32
[  591.894326][ T9962] netlink: 248 bytes leftover after parsing attributes in process `syz.0.1729'.
[  591.898695][ T5844] usb 4-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  591.904391][ T9962] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1729'.
[  591.913297][ T5844] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  591.934136][ T5878] usb 3-1: Using ep0 maxpacket: 16
[  591.969687][ T5878] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  591.979583][ T9964] loop1: detected capacity change from 0 to 256
[  591.981198][ T5878] usb 3-1: New USB device found, idVendor=172f, idProduct=0500, bcdDevice= 0.00
[  591.993615][ T9964] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  592.000101][ T5878] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  592.011303][ T9964] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  592.028340][ T5844] usb 4-1: config 0 descriptor??
[  592.131756][ T5878] usb 3-1: config 0 descriptor??
[  592.185640][ T9964] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x062de574, utbl_chksum : 0xe619d30d)
[  592.330955][ T5844] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  592.382629][ T5844] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  592.458177][ T5844] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  592.466067][ T5844] usb 4-1: media controller created
[  592.528347][ T9955] =====================================================
[  592.539067][ T9955] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xcc/0x120
[  592.546730][ T9955]  _copy_to_user+0xcc/0x120
[  592.551598][ T9955]  i2cdev_ioctl_smbus+0x586/0x660
[  592.556863][ T9955]  i2cdev_ioctl+0xa14/0xf40
[  592.564954][ T9955]  __se_sys_ioctl+0x23c/0x400
[  592.570028][ T9955]  __x64_sys_ioctl+0x97/0xe0
[  592.581615][ T9955]  x64_sys_call+0x1ebe/0x3db0
[  592.586579][ T9955]  do_syscall_64+0xd9/0x1b0
[  592.596404][ T9955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.602849][ T9955] 
[  592.605299][ T9955] Uninit was stored to memory at:
[  592.610814][ T9955]  __i2c_smbus_xfer+0x254d/0x2f60
[  592.616097][ T9955]  i2c_smbus_xfer+0x31d/0x4d0
[  592.617985][ T5844] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  592.625279][ T9955]  i2cdev_ioctl_smbus+0x4a1/0x660
[  592.638177][ T9955]  i2cdev_ioctl+0xa14/0xf40
[  592.643076][ T9955]  __se_sys_ioctl+0x23c/0x400
[  592.647982][ T9955]  __x64_sys_ioctl+0x97/0xe0
[  592.656099][ T9955]  x64_sys_call+0x1ebe/0x3db0
[  592.661230][ T9955]  do_syscall_64+0xd9/0x1b0
[  592.665991][ T9955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.672288][ T9955] 
[  592.674736][ T9955] Local variable msgbuf1.i created at:
[  592.689010][ T9955]  __i2c_smbus_xfer+0x86a/0x2f60
[  592.696246][ T9955]  i2c_smbus_xfer+0x31d/0x4d0
[  592.701329][ T9955] 
[  592.703774][ T9955] Bytes 0-1 of 2 are uninitialized
[  592.709039][ T9955] Memory access of size 2 starts at ffff88812b973d06
[  592.719440][ T9955] Data copied to user address 0000200000000080
[  592.725963][ T9955] 
[  592.728448][ T9955] CPU: 1 UID: 0 PID: 9955 Comm: syz.3.1726 Tainted: G        W           6.15.0-syzkaller #0 PREEMPT(undef) 
[  592.743497][ T9955] Tainted: [W]=WARN
[  592.747457][ T9955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  592.757898][ T9955] =====================================================
[  592.765170][ T9955] Disabling lock debugging due to kernel taint
[  592.774511][ T9955] Kernel panic - not syncing: kmsan.panic set ...
[  592.781125][ T9955] CPU: 1 UID: 0 PID: 9955 Comm: syz.3.1726 Tainted: G    B   W           6.15.0-syzkaller #0 PREEMPT(undef) 
[  592.792946][ T9955] Tainted: [B]=BAD_PAGE, [W]=WARN
[  592.798124][ T9955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  592.808374][ T9955] Call Trace:
[  592.811820][ T9955]  <TASK>
[  592.814901][ T9955]  __dump_stack+0x26/0x30
[  592.819489][ T9955]  dump_stack_lvl+0x53/0x270
[  592.824337][ T9955]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  592.830449][ T9955]  dump_stack+0x1e/0x25
[  592.834845][ T9955]  panic+0x4bd/0xd50
[  592.839010][ T9955]  kmsan_report+0x29d/0x2a0
[  592.843765][ T9955]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  592.850332][ T9955]  ? kmsan_internal_check_memory+0x496/0x570
[  592.856651][ T9955]  ? kmsan_copy_to_user+0xca/0xe0
[  592.861908][ T9955]  ? _copy_to_user+0xcc/0x120
[  592.866765][ T9955]  ? i2cdev_ioctl_smbus+0x586/0x660
[  592.872175][ T9955]  ? i2cdev_ioctl+0xa14/0xf40
[  592.877033][ T9955]  ? __se_sys_ioctl+0x23c/0x400
[  592.882117][ T9955]  ? __x64_sys_ioctl+0x97/0xe0
[  592.887114][ T9955]  ? x64_sys_call+0x1ebe/0x3db0
[  592.892232][ T9955]  ? do_syscall_64+0xd9/0x1b0
[  592.897140][ T9955]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.903436][ T9955]  ? __pfx_az6027_i2c_xfer+0x10/0x10
[  592.908952][ T9955]  ? __i2c_transfer+0x11ca/0x30e0
[  592.914177][ T9955]  ? kmsan_get_metadata+0x105/0x1b0
[  592.919623][ T9955]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  592.926216][ T9955]  ? kmsan_get_metadata+0x105/0x1b0
[  592.931668][ T9955]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  592.937767][ T9955]  ? __i2c_smbus_xfer+0x1e93/0x2f60
[  592.943201][ T9955]  ? kmsan_get_metadata+0x105/0x1b0
[  592.948644][ T9955]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  592.954736][ T9955]  kmsan_internal_check_memory+0x496/0x570
[  592.960823][ T9955]  kmsan_copy_to_user+0xca/0xe0
[  592.965907][ T9955]  ? should_fail_usercopy+0x2e/0x40
[  592.971323][ T9955]  _copy_to_user+0xcc/0x120
[  592.976032][ T9955]  i2cdev_ioctl_smbus+0x586/0x660
[  592.981295][ T9955]  i2cdev_ioctl+0xa14/0xf40
[  592.986019][ T9955]  ? __pfx_kmsan_get_metadata+0x10/0x10
[  592.991855][ T9955]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  592.997075][ T9955]  __se_sys_ioctl+0x23c/0x400
[  593.001967][ T9955]  __x64_sys_ioctl+0x97/0xe0
[  593.006780][ T9955]  x64_sys_call+0x1ebe/0x3db0
[  593.011686][ T9955]  do_syscall_64+0xd9/0x1b0
[  593.016427][ T9955]  ? clear_bhb_loop+0x40/0x90
[  593.021301][ T9955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.027386][ T9955] RIP: 0033:0x7f984bf8e969
[  593.031963][ T9955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  593.051820][ T9955] RSP: 002b:00007f984cec5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  593.060441][ T9955] RAX: ffffffffffffffda RBX: 00007f984c1b5fa0 RCX: 00007f984bf8e969
[  593.068665][ T9955] RDX: 0000200000000140 RSI: 0000000000000720 RDI: 0000000000000004
[  593.076827][ T9955] RBP: 00007f984c010ab1 R08: 0000000000000000 R09: 0000000000000000
[  593.084958][ T9955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  593.093085][ T9955] R13: 0000000000000000 R14: 00007f984c1b5fa0 R15: 00007ffdbb720558
[  593.101266][ T9955]  </TASK>
[  593.104801][ T9955] Kernel Offset: disabled
[  593.109244][ T9955] Rebooting in 86400 seconds..