last executing test programs:

4m9.753162442s ago: executing program 2 (id=501):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x101800, 0x0)
ioctl$FBIOBLANK(r0, 0x4611, 0x2)

4m9.70261485s ago: executing program 2 (id=502):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2, &(0x7f0000000100)={[{@quota}, {@iocharset={'iocharset', 0x3d, 'maccroatian'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}, {@nodiscard}, {@discard_size={'discard', 0x3d, 0x4}}, {@discard_size={'discard', 0x3d, 0x2}}, {@quota}, {@noquota}, {@discard}]}, 0x1, 0x6142, &(0x7f0000009100)="$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")
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x20441, 0x189)

4m8.933840632s ago: executing program 2 (id=510):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000003c000000050a0b020000000000000000010020000c00024000000000000000010900010073797a3100000000040004800a000700726f757465"], 0xc4}}, 0x0)

4m7.966938155s ago: executing program 2 (id=525):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x1018056, &(0x7f0000000080)={[{@discard}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}, {@iocharset={'iocharset', 0x3d, 'utf8'}}, {@noquota}, {}, {@nodiscard}, {@usrquota}, {@uid}, {@iocharset={'iocharset', 0x3d, 'cp865'}}]}, 0x24, 0x6260, &(0x7f0000000340)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

4m6.546242911s ago: executing program 2 (id=545):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000035c0)=ANY=[@ANYBLOB="4c0000006d00673c2bbd7000ffdadf2500000000", @ANYRES32=0x0, @ANYBLOB="0110040064e8020018003480560035006272696467653000000000000000000014000300ff037468315f746f5f626f00005528f2"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

4m5.630216948s ago: executing program 2 (id=557):
r0 = getpid()
kcmp(r0, r0, 0x4, 0xffffffffffffffff, 0xffffffffffffffff)

4m5.086653205s ago: executing program 32 (id=557):
r0 = getpid()
kcmp(r0, r0, 0x4, 0xffffffffffffffff, 0xffffffffffffffff)

2m8.595173549s ago: executing program 4 (id=2093):
unshare(0x2a020400)
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x10, 0x18, 0x0, 0x0, 0x2ca2, 0x0, 0x0, 0x41100, 0x32, '\x00', 0x0, @sk_msg=0x7, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)

2m8.44856828s ago: executing program 4 (id=2094):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000340)=0x15, 0x4)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x21, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)

2m7.568794642s ago: executing program 4 (id=2105):
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{0x0, 0x59}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000004600070128bd700001000000017c0000080002"], 0x1c}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)

2m7.464204035s ago: executing program 4 (id=2106):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file2\x00', 0x3000000, &(0x7f0000000240)={[{@umask={'umask', 0x3d, 0xe}}, {@creator={'creator', 0x3d, "851aa049"}}, {}, {@part={'part', 0x3d, 0x5}}, {@part={'part', 0x3d, 0x6}}, {@force}, {}, {@nls={'nls', 0x3d, 'iso8859-7'}}]}, 0x44, 0x70b, &(0x7f0000000300)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000001080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000f00), 0x2010000, 0x0)

2m7.201320039s ago: executing program 4 (id=2109):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect$packet(r0, &(0x7f0000000200)={0x1f, 0xf8, 0x0, 0x1, 0xa, 0x6, @remote}, 0x14)
getpeername(r0, 0x0, &(0x7f00000000c0))

2m6.828770425s ago: executing program 4 (id=2114):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe0200108500000007"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=ANY=[@ANYBLOB="1800000007140100000032c83a110000050042"], 0x18}}, 0x0)

2m6.541694475s ago: executing program 33 (id=2114):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe0200108500000007"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=ANY=[@ANYBLOB="1800000007140100000032c83a110000050042"], 0x18}}, 0x0)

4.752643494s ago: executing program 0 (id=3550):
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902900902000000000904"], 0x0)
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000200)={&(0x7f0000000080)=[{0x50, 0x8001, 0x0, 0x0}, {0xd, 0x0, 0x0, 0x0}], 0x2})

4.50705931s ago: executing program 3 (id=3557):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x1f, &(0x7f00000002c0)="ec", 0x1)
setsockopt$inet_buf(r0, 0x0, 0x25, 0x0, 0x0)

4.208944248s ago: executing program 3 (id=3563):
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2008412, &(0x7f0000000b40)=ANY=[], 0x1, 0x5566, &(0x7f000000b9c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$F2FS_IOC_SEC_TRIM_FILE(r0, 0x4018f514, 0x0)

3.20066632s ago: executing program 0 (id=3572):
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000351000/0x2000)=nil)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000640)=""/4112, 0x1010}], 0x1, 0x4000, 0x0)

2.946036228s ago: executing program 0 (id=3574):
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x1, 0x401, 0x0, 0x90, 0x55, 0x6, 0x1000006, 0x4}, 0x0)
r0 = openat$random(0xffffffffffffff9c, &(0x7f00000003c0), 0x40202, 0x0)
sendfile(r0, r0, 0x0, 0x4800000009)

2.81517173s ago: executing program 3 (id=3575):
r0 = syz_open_procfs(0x0, &(0x7f0000002180)='projid_map\x00')
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020)
pread64(r0, &(0x7f0000000340)=""/78, 0x4e, 0x3)

2.242988227s ago: executing program 1 (id=3584):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000000)={0x0, 0x4, 0x40000060, 0x100007f, 0x17, "9f940b3491d052d172e0e573229ac6de50806c"})
mount$9p_fd(0x0, &(0x7f0000000280)='./cgroup\x00', &(0x7f0000000340), 0x8401, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_u}]}})

1.883712014s ago: executing program 3 (id=3587):
r0 = syz_open_dev$vim2m(&(0x7f0000000280), 0x4eb36, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000007c0)={0x1, 0x2, 0x1, 0x0, 0x8})
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x4, 0x2, 0x4, 0x0, 0x1, {0x77359400}, {0x0, 0x2, 0x0, 0x3}, 0x9, 0x1, {0x0}, 0x8})

1.858941203s ago: executing program 5 (id=3588):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x2204806, &(0x7f0000000840)=ANY=[@ANYBLOB='map=off,check=relaxed\x00mode=0x0000000000000001,map=off,session=0x0000000000000062,iocharset=macgreekAmap=acorn,iocharset=macgaelic,session=0x0000000000000058,mode=0xffffffffffffffff,block=0x0000000000000a00,check=strict,uid>', @ANYRESDEC=0x0, @ANYBLOB="2c636f6e745c78743d757365725f752c00535d2314dd6a9f68fd0400000000000000592ce7d5d1cb32eb579ee04e3a0b7a7fdfae387432a965e1b7cab454382ffa8c16ee"], 0xfa, 0x6bb, &(0x7f00000015c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42842, 0x8d)
syz_mount_image$fuse(0x0, &(0x7f0000000100)='./file1\x00', 0x44000, 0x0, 0x1, 0x0, 0x0)

1.783663144s ago: executing program 3 (id=3590):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000004000000bca30000000000002403000020feffff620af8fff8ffffff71a4f2ff000000001f03000000000000e5000500000000002604fdffff02000014010000033800001d13f8ff000000007a0af0ff0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0ea"], 0x0}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021740000000c0a01030000000000000000070000090900020073797a31000000000900010073797a30000000004800038044000080080003400000000238000b80340001800a0001006c696d6974000000240002800c00024000000000000000050c000140fffffffffffffffc0800", @ANYRES16=r0], 0xf8}, 0x1, 0x0, 0x0, 0xc0c5}, 0x4000)

1.76684793s ago: executing program 1 (id=3591):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000200)={0x0, 0x2, "5a77bd318786aeb879ca62cdab2a02fa560186d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f68530c2b21a100efb76cba37ff3111d6847e0c7f719e169a596e5fc008daefba68f6222103472bc55704cdb72b4b996ed82ccb1eaae27969d008ba7d34371113d806726615380fe65a6a0a72e19c2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13e4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe3635b2ee97c143f28def4b73905ca14d90d1f6"})
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x13ff, 0x0, &(0x7f0000000340)='\x00', 0x1, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0x0})

1.727441581s ago: executing program 0 (id=3592):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000640)={[{@fat=@errors_remount}, {@dots}, {@fat=@dmask={'dmask', 0x3d, 0x4}}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@dots}, {@nodots}, {@fat=@gid={'gid', 0x3d, 0xee00}}, {@nodots}, {@nodots}, {@dots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@fat=@codepage={'codepage', 0x3d, '1255'}}, {@fat=@sys_immutable}, {@nodots}, {@dots}, {@fat=@flush}, {@dots}, {@fat=@dmask={'dmask', 0x3d, 0xfffffffffffffffc}}, {@nodots}]}, 0x1, 0x20e, &(0x7f0000000400)="$eJzs3T9rE2EYAPAnbdpcVKSbIAgnDjoVdXKsSAUxIFQy6CboZKZ2SV3a7+DiV/B7+QGkUxZ5Jd4lF9MkDaW5YP39lnvunve990/IJUuepHgWQz/ufIssa8TGXuzFoBE7sREjpwEAXCeDlOJnKqx7LgBAPZb4/P9V85QAgBV7++796+edzv5BnmcRZ6f9br9bHIv8y1ed/cf5HztVr7N+v7s5zj/Jp787DPNbcaPMPy365+P0dkR0t+PRgyI/zL1408n/7t+KjyteOwAAAAAAAAAAAAAAAAAAAAAArMu9yEeq+j6bEVHW99ndnc63y/o8xdlEfaCp+j3NuNssT6vyQOmkllUBAAAAAAAAAAAAAAAAAADAv+Xo+MvnD73ep8MqaEXE5JXmjDbzg0Z546UaXxzcvKL7zAs24nLd26MNbMzcw0VBo9yic6ksrnCB7dkv7jJBNFe44bUEeQ1jtRdub0rDYPa7YFQWY2737YhYPPrDg8tOfpBS6n2/f3h0HGlh4+oZ0arzgQQAAAAAAAAAAAAAAAAAAP+xiV99j329XRyztc0KAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOpV/f//MDh/ZWFwEhG34sLGo7G2IlvrWgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALi+fgcAAP//9DweRg==")
r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x0)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

1.714535337s ago: executing program 5 (id=3593):
syz_mount_image$ext4(&(0x7f0000000780)='ext2\x00', &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f0000000000), 0x1, 0x478, &(0x7f0000000300)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0x0, 0x8000})

1.597446096s ago: executing program 1 (id=3595):
r0 = fsopen(&(0x7f0000000040)='ceph\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000100)='test_dummy_encryption', &(0x7f0000000240)='v2\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='test_dummy_encryption', &(0x7f0000000080)='v1\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)

1.581283791s ago: executing program 3 (id=3596):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x56a, 0xce, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x3, "", [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0xa, 0x3, 0x1, {0x22, 0x29}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x3, 0x3, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000040)={0x24, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0x371, {0x9}}}, &(0x7f0000000080)={0xffffffffffffffeb, 0x0, 0x0, 0x0, 0x0, 0x0})

1.519016548s ago: executing program 0 (id=3597):
syz_mount_image$udf(&(0x7f0000000180), &(0x7f0000000100)='./bus\x00', 0x1014494, &(0x7f00000001c0)=ANY=[@ANYBLOB="696f636861727365743d63703933322c706172746974696f6e3d30303030303030303030303030303030303030332c6769643d666f726765742c6769643d666f726765742c6e6f6164696e6963622c756e64656c6574652c7569643d666f726765742c00fb5ebc1bbec00aea8217b7375ace1f91cad4e856ac3ce827902dd91a9a936650ca99205dc1adee73bc464ab6ea2dad7091eea47594f5ef5227a72684b2ed98640aa52eba3e04c81c829036f312ecb1c7483575d32ed9eef652c6b7284dc45cecea6a0ae3a01c5cd7b60af90431eddc00"/225], 0xfe, 0xc24, &(0x7f0000001480)="$eJzs3UFsHNd9B+D/Gy5Fym4rJk5Uu42LTVukMmO5sqSYilW4q5pmG0CWiVDMLQBX5EpdmFoSJNXIRtrQvfTQQ4Ci6CEnAq1RIEUDoymCHtnWBZKLD0VOPREtbARFD2wRIKeAxcy+lZY0ZcmmSFH299nUbznz3ux7b5YzkqA3LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiN976cKpZ9ODbgUAcJAuTX311Gn3fwD4RLnsz/8AAAAAAAAAAAAAAHDYpSjisUixeGkzzVTfdw1fbHdu3Jwen9i92tFU1Ryoypdfw8+ePnP2S8+NnevlB9e/356IV6YuX6i/uHB9cam1vNyaq0932rMLc617PsJe6+80Wg1A/fqrN+auXl2un37mzLbdN0feG3r0+Mj5sadOPtkrOz0+MTHVV6Y2+JHf/X3uNMPjSBRxMlI8/b2fpGZEFLH3sbjLZ2e/Ha06MVp1Ynp8ourIfLvZWSl3TvYGooio91Vq9MboAM7FnjQiVsvmlw0eLbs3tdhcal6Zb9Unm0sr7ZX2QmcydVtb9qceRZxLEWsRsTH0/sMNRhG1SPGdY5vpSkQM9Mbhi9XE4Du3o9jHPt6Dsp31wYi14iE4Z4fYUBTxcqT46dtFzJZjlr/iCxEvl/mDiDfLfCEilR+MsxHv7vI54uFUiyL+vDz/5zfTXHU96F1XLn6t/pXO1YW+sr3rykN/fzhIh/zaNBxFNKsr/mb66L/ZAQAAAAAAAAAAAAAAAOB+OxpFPBEpXvr3P6rmFUc1L/3Y+bHfH/nF/jnjj9/lOGXZZyJitbi3OblH8hTiyTSZ0gOeS/xJNhxF/HGe//fGg24MAAAAAAAAAAAAAAAAAADAJ9yPI8Xz75xIa9G/pni7c61+uXllvrsqbG/t396a6VtbW1v11M1GzpmcqznXcq7n3MgZRa6fs5FzJudqzrWc6zk3csZArp+zkXMm52rOtZzrOTdyRi3Xz9nIOZNzNedazvWcGznjkKzdCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwcVJEET+PFN/+xmaKFBGNiJno5vpQrwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8CANpSK+Hynqf9C4ta0WEan6v+tE+cvZaBwp89PRGCvzhWhcyNmsstZ44wG0n70ZTEX8KFIMDb9164Tn8z/Y/e7WxyDe/Obt736l1s2B3s6R94YePX7s/NjErz1+p9dptwaMXmx3btysT49PTEz1ba7ld/9037aR/L7F/ek6EbH82uuvNufnW0ufmBdFHIpmPKgXte6LWhyS9hzUi3y9il12FYfhp6BxWAaq9+IBX5g4EOX9/91I8dvv/Efvht+7//9C97tbd/j42Z/cvv8/v/NA+3T/f6xv2/P5dyODtYjhleuLg8cjhpdfe/1k+3rzWutaq3P21Kkvj419+cypwSMRw1fb862+V3seKgAAAAAAAAAAAAAAAICDlYr43UjR/NFmqkfEzWq+1sj5sadOPjkQA9V8q23ztl6Zunyh/uLC9cWl1vJya64+3WnPLsy17vXthqvpXtPjE/vSmbs6us/tPzr84sLia0vta3+4suv+R4YvXFleWWrO7r47jkYR0ejfMlo1eHp8omr0fLvZqapO7jqZ7sMbTEX8Z6SYPVs/0tuW5//tnOG/bf7/6s4D7dP8v0/1bSvfM6UifhYpfusvHo/PV+18JN43Zrnc30SK0XOfy+XiSFmu14bucwW6MwPLsv8bKf7h59vL9uZDPna77LP3Oq4Pi/L8H4sU3/+z78av523bn/+w+/l/ZOeB9un8f6Zv2yPbnlew566Tz//JSPHCY2/Fb+RtH/T8jyK2tra+FXEiF771fI59Ov+f7ds2Et33/c37130AAAAAAAAAAICH1mAq4m8jxZMTtfRc3nYv//5vbueB9unff/1y37a5A1qvaM+DCgAAAACHxGAq4seR4trKW7fmUG+f/903//N3bq+9Pp527K3+nu+XqucG3M+//+s3kt93Zu/dBgAAAAAAAAAAAAAAAAAAgEMlpSKey+upz9xlPfX1SPHSfz+dy6XjZbneOvAj1a/DlxY6Jy/Mzy/MNleaV+Zb9anF5myrrPuZSLH515/LdYtqffXP57rdNd6Ht3prsS9Fiom/65XtrsXeW5u8ux54dy32suynIsV//f32sr11rD97u+zpsuxfRYqv/9PuZY/fLnumLPvdSPHDr9d7ZR8py/aej9p9JulwLeZbz8wuzL/vUagAAAAAAAAAAAAAAAAAAADwYQ2mIv40UvzP9bVYrab9v3FrV85ab8Ob3+xb73+Hm9U6/yPV+v93ev1R1v8fuS+9BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh0uKIl6PFIuXNtP6UPl91/DFdufGzenxid2rHU1VzYGqfPk1/OzpM2e/9NzYuV5+cP377Yl4ZeryhfqLC9cXl1rLy625+nSnPbsw17rnI+y1/u2h6xqtBqB+/dUbc1evLtdPP3Nm2+6bI+8NPXp85PzYUyef7JWdHp+YmOorUxv8EO/+oRp325Eo4i8jxdPf+0n656GIIvY+Fnf57Oy3o1UnRqtOTI9PVB2Zbzc7K+XOyd5AFBH1vkqN3hgdwLnYk0bEatn8ssGjZfemFptLzSvzrfpkc2mlvdJe6EymbmvL/tSjiHMpYi0iNob6D3QkZxGvRorvHNtM/zIUMdAbhy9emvrqqdN3bkexr728i29V7awPRqwVD8E5O8SGooh/jBQ/fftE/OtQRC26X/GFiJfL/EHEm2W+EJHKD8bZiHeHHnSruV9qUcT/lef//GZ6eyii+pGprisXv1b/SufqQl/Z3nVl5/1hKyIeqvvDQTrk16bhKOKH1RV/M/2bn2sAAAAAAAAAAAAAAACAQ6SIX40Uz79zIlXzg2/NKW53rtUvN6/Md6f19eb+9eZMb21tbdVTNxs5Z3Ku5lzLuZ5zI2cUuX7ORs6ZnKs513Ku59zIGQO5fs5GzpmcqznXcq7n3MgZtVw/ZyPnTM7VnGs513Nu5IxDMncPAAAAAAAAAAAAAAAAAAD4eCmq/1J8+xubaWuou770THRz3XqgH3v/HwAA//9wn/vk")
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000001080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1021408, 0x0, 0x1, 0x0, &(0x7f0000006380))
symlink(&(0x7f0000000440)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.431955981s ago: executing program 6 (id=3599):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
chdir(&(0x7f0000000400)='./file0\x00')
mkdir(&(0x7f0000000040)='./bus\x00', 0x10b)

1.324264975s ago: executing program 1 (id=3600):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWRULE={0x84, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x58, 0x4, 0x0, 0x1, [{0x54, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8}, @NFTA_MATCH_INFO={0x2c, 0x3, "5c8f022482395afa4d23edfcbe6d55b57cb15e63c15c46395916e2b388abc3d6ce2316334e8278ad"}, @NFTA_MATCH_NAME={0xb, 0x1, 'nfacct\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0xac}, 0x1, 0x0, 0x0, 0x2000094}, 0x4000800)

1.150140341s ago: executing program 1 (id=3601):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000040000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000700000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x4002000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

964.53812ms ago: executing program 6 (id=3602):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r0)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x3c}}, 0x0)

919.752012ms ago: executing program 0 (id=3603):
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

880.523083ms ago: executing program 5 (id=3604):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000000)="1400000009000000", 0x8)

835.153427ms ago: executing program 6 (id=3605):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3e, 0x18, 0x3a, 0x8c0, 0x3, 0x2000005}, 0x1c)

577.193958ms ago: executing program 6 (id=3606):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000240)=ANY=[@ANYBLOB="d8010000", @ANYRES16=r1, @ANYBLOB="010000000000fbdbdf25010000000800050001000000060006004e220000140002007767320000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78242fb5427c0108800c01008006000500070000002400020086650b35f0b4c2dc04a95e352f55e8204db1e7226209134b560245c6b556ecdb24000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b1400040002004e24ac1e0001000000000000000008000300000000009c0009801c000080060001000200000008000200e0000002050003000300000028000080060001000a000000190002"], 0x1d8}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

399.116003ms ago: executing program 5 (id=3607):
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
readv(r0, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/226, 0xe2}], 0x1)
ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000006c0)=@multiplanar_mmap={0x2, 0xd, 0x4, 0x100000, 0x9620, {}, {0x1, 0x2, 0x9, 0xcb, 0x2, 0x5, "c1288205"}, 0x7, 0x1, {0x0}, 0x7})

305.945609ms ago: executing program 5 (id=3608):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r1 = socket(0x1d, 0x2, 0x6)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

194.233157ms ago: executing program 5 (id=3609):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xc, {"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", 0x7c4}}, 0x1006)

175.791378ms ago: executing program 6 (id=3610):
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1b, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x800}}, 0x0, 0x8, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94)
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x50, &(0x7f0000000100), 0x48)

26.209176ms ago: executing program 1 (id=3611):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_HANDLE(r0, 0x113, 0x3, 0x0, 0x0)
connect$phonet_pipe(r0, &(0x7f0000000000), 0x10)

0s ago: executing program 6 (id=3612):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001200), 0x101101, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x6)
ioctl$TCSBRKP(r0, 0x5425, 0x80000000)

kernel console output (not intermixed with test programs):

escriptor': No such file or directory
[  280.745038][T12448] loop5: detected capacity change from 0 to 128
[  280.762969][   T10] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  280.779057][   T10] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  280.790892][   T10] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  280.815092][   T10] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  280.824099][   T10] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  280.839440][   T10] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  280.851784][   T10] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  280.883045][   T10] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  280.936864][   T10] usb 2-1: string descriptor 0 read error: -22
[  280.947034][   T10] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  280.966607][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  280.994585][   T10] adutux 2-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  281.268275][   T10] usb 2-1: USB disconnect, device number 19
[  281.473437][T10487] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  281.644133][T10487] usb 6-1: unable to get BOS descriptor or descriptor too short
[  281.646636][T12482] vivid-000: disconnect
[  281.666440][T12480] vivid-000: reconnect
[  281.668890][T10487] usb 6-1: string descriptor 0 read error: -22
[  281.678305][T10487] usb 6-1: New USB device found, idVendor=2466, idProduct=8010, bcdDevice= 0.40
[  281.687739][T10487] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  281.847786][T12486] loop1: detected capacity change from 0 to 2048
[  281.859653][T12486] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  281.879405][T12486] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  281.911225][T10494] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  281.971243][    T9] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  282.061230][T10494] usb 7-1: Using ep0 maxpacket: 16
[  282.075979][T10494] usb 7-1: config 0 has an invalid interface number: 34 but max is 0
[  282.091418][T10494] usb 7-1: config 0 has no interface number 0
[  282.100751][T10494] usb 7-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[  282.116633][T10494] usb 7-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80
[  282.128152][T10487] usb 6-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  282.130233][T12492] use of bytesused == 0 is deprecated and will be removed in the future,
[  282.139716][T10494] usb 7-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[  282.147053][    T9] usb 4-1: Using ep0 maxpacket: 16
[  282.160078][T12492] use the actual size instead.
[  282.161158][T10494] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.170233][    T9] usb 4-1: unable to get BOS descriptor or descriptor too short
[  282.175693][T10494] usb 7-1: Product: syz
[  282.182275][    T9] usb 4-1: config 127 has an invalid interface number: 124 but max is 0
[  282.186212][T10494] usb 7-1: Manufacturer: syz
[  282.194576][    T9] usb 4-1: config 127 has no interface number 0
[  282.200014][T10494] usb 7-1: SerialNumber: syz
[  282.214517][T10494] usb 7-1: config 0 descriptor??
[  282.220615][T12481] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  282.226486][    T9] usb 4-1: config 127 interface 124 has no altsetting 0
[  282.229251][T12481] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  282.251006][    T9] usb 4-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=36.87
[  282.276211][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.294411][    T9] usb 4-1: Product: syz
[  282.298632][    T9] usb 4-1: Manufacturer: syz
[  282.304639][    T9] usb 4-1: SerialNumber: syz
[  282.329626][T10487] usb 6-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  282.495368][T12481] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  282.540671][T12481] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  282.547303][T10487] usb 6-1: USB disconnect, device number 10
[  282.958699][T10494] asix 7-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  282.976896][T10494] asix 7-1:0.34 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  283.000433][T10494] asix 7-1:0.34: probe with driver asix failed with error -71
[  283.016656][T12511] loop1: detected capacity change from 0 to 24
[  283.027949][T12511] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  283.029478][T10494] usb 7-1: USB disconnect, device number 2
[  283.054402][T12511] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  283.223729][    T9] usb 4-1: reset high-speed USB device number 14 using dummy_hcd
[  283.414029][    T9] usb 4-1: device firmware changed
[  283.458873][    T9] usb 4-1: USB disconnect, device number 14
[  283.475407][T12513] loop0: detected capacity change from 0 to 64
[  283.601187][    T9] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  283.763479][    T9] usb 4-1: Using ep0 maxpacket: 16
[  283.792089][    T9] usb 4-1: config 127 has an invalid interface number: 124 but max is 0
[  283.821206][    T9] usb 4-1: config 127 has no interface number 0
[  283.856846][    T9] usb 4-1: config 127 interface 124 has no altsetting 0
[  283.888061][    T9] usb 4-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=36.87
[  283.920894][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.954097][    T9] usb 4-1: Product: syz
[  283.968541][    T9] usb 4-1: Manufacturer: syz
[  283.986539][    T9] usb 4-1: SerialNumber: syz
[  284.017383][T12533] tmpfs: Cannot change global quota limit on remount
[  284.306439][T12547] netlink: 84 bytes leftover after parsing attributes in process `syz.6.2631'.
[  284.338671][T12547] netlink: 84 bytes leftover after parsing attributes in process `syz.6.2631'.
[  284.357544][T12547] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  284.470501][T12551] ipvlan2: entered promiscuous mode
[  284.961480][T12571] loop1: detected capacity change from 0 to 256
[  284.983219][T12571] exfat: Deprecated parameter 'utf8'
[  285.002059][T12571] exfat: Deprecated parameter 'utf8'
[  285.039653][T12571] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  285.065902][   T10] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  285.180881][    T9] usb 4-1: USB disconnect, device number 15
[  285.256539][   T10] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  285.257036][T12559] loop0: detected capacity change from 0 to 32768
[  285.281647][   T10] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[  285.311719][   T10] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  285.328151][T12559] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  285.337150][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.358552][   T10] usb 7-1: config 0 descriptor??
[  285.377783][   T10] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  285.410769][   T10] dvb-usb: bulk message failed: -22 (3/0)
[  285.458676][T12567] loop5: detected capacity change from 0 to 40427
[  285.508914][   T10] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  285.521640][T12567] F2FS-fs (loop5): invalid crc value
[  285.529023][T12559] XFS (loop0): Ending clean mount
[  285.558931][T12559] XFS (loop0): Quotacheck needed: Please wait.
[  285.566543][   T10] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  285.597956][T12569] dvb-usb: bulk message failed: -22 (2/0)
[  285.608694][   T10] usb 7-1: media controller created
[  285.644066][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  285.743706][T12559] XFS (loop0): Quotacheck: Done.
[  285.750068][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  285.819698][   T10] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  285.820607][T12567] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  285.846294][T12567] F2FS-fs (loop5): Start checkpoint disabled!
[  285.866153][   T10] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.6/usb7/7-1/input/input20
[  285.867192][T12567] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  285.896866][T12567] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  285.925714][   T10] dvb-usb: schedule remote query interval to 150 msecs.
[  285.956015][   T10] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  285.968455][ T5846] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  285.983734][  T762] kworker/u8:6: attempt to access beyond end of device
[  285.983734][  T762] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  286.003118][   T10] usb 7-1: USB disconnect, device number 3
[  286.012138][T10494] usb 4-1: new full-speed USB device number 16 using dummy_hcd
[  286.035947][  T762] CPU: 0 UID: 0 PID: 762 Comm: kworker/u8:6 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  286.035976][  T762] Tainted: [L]=SOFTLOCKUP
[  286.035982][  T762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  286.035993][  T762] Workqueue: writeback wb_workfn (flush-7:5)
[  286.036020][  T762] Call Trace:
[  286.036027][  T762]  <TASK>
[  286.036034][  T762]  dump_stack_lvl+0xe8/0x150
[  286.036062][  T762]  f2fs_stop_checkpoint+0x3c7/0x590
[  286.036092][  T762]  f2fs_write_end_io+0x12e5/0x17a0
[  286.036131][  T762]  __submit_merged_bio+0x256/0x6a0
[  286.036161][  T762]  __submit_merged_write_cond+0x3c9/0x4e0
[  286.036193][  T762]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  286.036240][  T762]  f2fs_write_data_pages+0x287e/0x34f0
[  286.036303][  T762]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  286.036340][  T762]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  286.036383][  T762]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  286.036424][  T762]  ? __lock_acquire+0x6b5/0x2cf0
[  286.036466][  T762]  ? __pfx_f2fs_inode_chksum_set+0x10/0x10
[  286.036488][  T762]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  286.036511][  T762]  do_writepages+0x32e/0x550
[  286.036538][  T762]  ? reacquire_held_locks+0x104/0x190
[  286.036555][  T762]  ? writeback_sb_inodes+0x463/0x19d0
[  286.036583][  T762]  __writeback_single_inode+0x133/0x10e0
[  286.036606][  T762]  ? do_raw_spin_unlock+0xf5/0x210
[  286.036631][  T762]  writeback_sb_inodes+0x979/0x19d0
[  286.036650][  T762]  ? __lock_acquire+0x6b5/0x2cf0
[  286.036702][  T762]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  286.036720][  T762]  ? do_raw_spin_lock+0x12b/0x2f0
[  286.036780][  T762]  ? rcu_is_watching+0x15/0xb0
[  286.036807][  T762]  wb_writeback+0x445/0xb00
[  286.036832][  T762]  ? queue_io+0x2b1/0x470
[  286.036860][  T762]  ? __pfx_wb_writeback+0x10/0x10
[  286.036878][  T762]  ? do_raw_spin_lock+0x12b/0x2f0
[  286.036914][  T762]  wb_workfn+0x3f8/0xf10
[  286.036936][  T762]  ? __lock_acquire+0x6b5/0x2cf0
[  286.036957][  T762]  ? look_up_lock_class+0x57/0x110
[  286.036995][  T762]  ? __pfx_wb_workfn+0x10/0x10
[  286.037017][  T762]  ? do_raw_spin_lock+0x12b/0x2f0
[  286.037035][  T762]  ? lock_acquire+0x106/0x350
[  286.037060][  T762]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  286.037082][  T762]  ? process_scheduled_works+0xa70/0x1860
[  286.037109][  T762]  ? process_scheduled_works+0xa70/0x1860
[  286.037140][  T762]  ? process_scheduled_works+0xa70/0x1860
[  286.037163][  T762]  ? process_scheduled_works+0xa70/0x1860
[  286.037189][  T762]  process_scheduled_works+0xb5d/0x1860
[  286.037245][  T762]  ? __pfx_process_scheduled_works+0x10/0x10
[  286.037276][  T762]  ? assign_work+0x3d5/0x5e0
[  286.037305][  T762]  worker_thread+0xa53/0xfc0
[  286.037358][  T762]  kthread+0x388/0x470
[  286.037377][  T762]  ? __pfx_worker_thread+0x10/0x10
[  286.037399][  T762]  ? __pfx_kthread+0x10/0x10
[  286.037420][  T762]  ret_from_fork+0x514/0xb70
[  286.037447][  T762]  ? __pfx_ret_from_fork+0x10/0x10
[  286.037469][  T762]  ? __switch_to+0xc7d/0x1420
[  286.037495][  T762]  ? __pfx_kthread+0x10/0x10
[  286.037516][  T762]  ret_from_fork_asm+0x1a/0x30
[  286.037551][  T762]  </TASK>
[  286.037577][  T762] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  286.159097][T12583] loop1: detected capacity change from 0 to 32768
[  286.185004][    T9] loop5: lost filesystem error report for type 5 error -108
[  286.225240][T10494] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x9B, changing to 0x8B
[  286.319486][   T10] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  286.423844][T10494] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 50, changing to 4
[  286.428430][T12583] JBD2: Ignoring recovery information on journal
[  286.443410][T10494] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 47187, setting to 1023
[  286.560114][T10494] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  286.593132][T10494] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.652474][T10494] usb 4-1: Product: syz
[  286.679807][T10494] usb 4-1: Manufacturer: syz
[  286.703876][T10494] usb 4-1: SerialNumber: syz
[  286.710666][T12583] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  286.734827][T10494] usb 4-1: config 0 descriptor??
[  286.764624][T10494] hub 4-1:0.0: bad descriptor, ignoring hub
[  286.783746][T10494] hub 4-1:0.0: probe with driver hub failed with error -5
[  286.825691][T10494] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input21
[  286.943954][T12597] netlink: 8548 bytes leftover after parsing attributes in process `syz.6.2650'.
[  287.015225][ T5835] ocfs2: Unmounting device (7,1) on (node local)
[  287.306416][T12607] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2655'.
[  287.344376][T12607] netlink: 'syz.0.2655': attribute type 6 has an invalid length.
[  287.368710][T12607] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2655'.
[  287.577511][T12619] loop5: detected capacity change from 0 to 256
[  287.606080][T12619] FAT-fs (loop5): Directory bread(block 64) failed
[  287.618022][T12619] FAT-fs (loop5): Directory bread(block 65) failed
[  287.636131][T12619] FAT-fs (loop5): Directory bread(block 66) failed
[  287.652112][T12619] FAT-fs (loop5): Directory bread(block 67) failed
[  287.665513][T12619] FAT-fs (loop5): Directory bread(block 68) failed
[  287.687916][T12619] FAT-fs (loop5): Directory bread(block 69) failed
[  287.701375][T12619] FAT-fs (loop5): Directory bread(block 70) failed
[  287.712991][  T808] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  287.714185][T12619] FAT-fs (loop5): Directory bread(block 71) failed
[  287.727990][T12619] FAT-fs (loop5): Directory bread(block 72) failed
[  287.736340][T12623] loop1: detected capacity change from 0 to 2048
[  287.737203][T12619] FAT-fs (loop5): Directory bread(block 73) failed
[  287.751846][T12623] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  287.770420][T12623] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  287.785067][T12623] UDF-fs: Scanning with blocksize 512 failed
[  287.804228][T12623] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  287.872966][  T808] usb 7-1: Using ep0 maxpacket: 32
[  287.889632][  T808] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  287.901697][T10482] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  287.905057][  T808] usb 7-1: config 0 has no interface number 0
[  287.933333][  T808] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8
[  287.944995][  T808] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  287.976228][  T808] usb 7-1: Product: syz
[  287.990089][  T808] usb 7-1: Manufacturer: syz
[  288.008230][  T808] usb 7-1: SerialNumber: syz
[  288.040103][  T808] usb 7-1: config 0 descriptor??
[  288.053349][T10482] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  288.068568][  T808] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  288.080920][T10482] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  288.090740][  T808] usb 7-1: selecting invalid altsetting 1
[  288.090762][  T808] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  288.104797][  T808] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  288.126614][  T808] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  288.136306][T10482] usb 1-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  288.146048][T10482] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.166394][  T808] usb 7-1: media controller created
[  288.228195][T10482] usb 1-1: config 0 descriptor??
[  288.237413][  T808] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  288.392657][  T808] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  288.423971][  T808] zl10353_read_register: readreg error (reg=127, ret==-71)
[  288.450552][  T808] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  288.479269][T12640] loop5: detected capacity change from 0 to 1764
[  288.543826][  T808] usb 7-1: USB disconnect, device number 4
[  288.693083][T10482] hid_parser_main: 28 callbacks suppressed
[  288.693103][T10482] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  288.712284][T10482] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  288.733979][T10482] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  288.756782][T10482] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  288.784299][T10482] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  288.808457][T10482] playstation 0003:054C:0DF2.0008: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.0-1/input0
[  288.889388][T12655] loop5: detected capacity change from 0 to 512
[  288.915998][T10482] playstation 0003:054C:0DF2.0008: Failed to retrieve feature with reportID 9: -71
[  288.927391][T12656] loop3: detected capacity change from 0 to 2048
[  288.946290][T10482] playstation 0003:054C:0DF2.0008: Failed to retrieve DualSense pairing info: -71
[  288.957733][T12655] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002]
[  288.961876][T12656] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  288.977119][T10482] playstation 0003:054C:0DF2.0008: Failed to get MAC address from DualSense
[  288.986641][T12656] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  288.994553][T10482] playstation 0003:054C:0DF2.0008: Failed to create dualsense.
[  289.002997][T12656] UDF-fs: Scanning with blocksize 512 failed
[  289.010470][T12655] System zones: 1-12
[  289.012683][T10482] playstation 0003:054C:0DF2.0008: probe with driver playstation failed with error -71
[  289.043498][T10482] usb 1-1: USB disconnect, device number 14
[  289.047424][T12656] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  289.074234][T12655] EXT4-fs error (device loop5): dx_probe:791: inode #2: comm syz.5.2677: Directory hole found for htree index block 0
[  289.122868][T12654] fido_id[12654]: Failed to read report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:054C:0DF2.0008/report_descriptor': No such device
[  289.178328][T12655] loop5: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[  289.181906][    C0] EXT4-fs (loop5): error count since last fsck: 1
[  289.197476][    C0] EXT4-fs (loop5): initial error at time 1774576870: dx_probe:791: inode 2
[  289.206147][    C0] EXT4-fs (loop5): last error at time 1774576870: dx_probe:791: inode 2
[  289.224591][T12655] EXT4-fs (loop5): Remounting filesystem read-only
[  289.262271][T12655] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -117
[  289.270850][T12655] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  289.288601][T12655] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.343601][T12655] EXT4-fs: user quota file already specified
[  289.417884][ T7295] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.478833][T12651] loop1: detected capacity change from 0 to 32768
[  289.563346][T12651] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  289.653551][T12651] XFS (loop1): Ending clean mount
[  289.718003][T12678] loop0: detected capacity change from 0 to 64
[  289.917220][ T5835] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  290.335699][T12690] hugetlbfs: Bad value for 'uid'
[  290.363699][T12690] hugetlbfs: Bad value for 'uid'
[  290.425116][T12692] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2691'.
[  290.589691][T12664] loop3: detected capacity change from 0 to 32768
[  290.619593][T12664] JBD2: Ignoring recovery information on journal
[  290.741496][T12682] loop6: detected capacity change from 0 to 32768
[  290.747290][T10494] usb 4-1: USB disconnect, device number 16
[  290.836710][T12664] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  290.848408][T12682] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  291.008863][T12682] XFS (loop6): Ending clean mount
[  291.076125][T12682] XFS (loop6): Quotacheck needed: Please wait.
[  291.238485][ T5847] ocfs2: Unmounting device (7,3) on (node local)
[  291.260424][T12682] XFS (loop6): Quotacheck: Done.
[  291.409224][T12729] loop5: detected capacity change from 0 to 512
[  291.413193][T11123] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  291.455015][T12729] EXT4-fs: Ignoring removed oldalloc option
[  291.460755][T12731] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  291.496967][T12729] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2704: invalid indirect mapped block 4294967295 (level 1)
[  291.592439][T12729] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  291.594571][T12729] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2704: invalid indirect mapped block 4294967295 (level 1)
[  291.603840][    C0] EXT4-fs (loop5): error count since last fsck: 1
[  291.603860][    C0] EXT4-fs (loop5): initial error at time 1774576873: ext4_free_branches:1023: inode 11
[  291.603891][    C0] EXT4-fs (loop5): last error at time 1774576873: ext4_free_branches:1023: inode 11
[  291.772793][T12729] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  291.778554][T12729] EXT4-fs (loop5): 2 truncates cleaned up
[  291.853044][T12729] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.882297][T12741] loop1: detected capacity change from 0 to 1024
[  292.035768][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  292.035786][   T30] audit: type=1800 audit(1774576873.780:203): pid=12741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2709" name="file1" dev="loop1" ino=20 res=0 errno=0
[  292.068718][ T7295] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.143601][   T12] hfsplus: b-tree write err: -5, ino 25
[  292.170519][   T12] hfsplus: b-tree write err: -5, ino 4
[  292.203593][   T12] hfsplus: b-tree write err: -5, ino 2
[  292.465847][T12762] loop5: detected capacity change from 0 to 1024
[  292.496448][T12762] EXT4-fs: inline encryption not supported
[  292.521976][T12762] EXT4-fs: Ignoring removed bh option
[  292.550715][T12766] loop3: detected capacity change from 0 to 2048
[  292.584816][T12766] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  292.613165][T12762] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.839372][T12754] loop0: detected capacity change from 0 to 32768
[  292.867081][ T7295] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.390868][T12760] loop6: detected capacity change from 0 to 32768
[  293.473777][T12760] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  293.543272][T12795] loop0: detected capacity change from 0 to 2048
[  293.552264][    T9] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  293.569008][T12760] XFS (loop6): Ending clean mount
[  293.597237][T12795] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  293.658937][T12778] loop5: detected capacity change from 0 to 32768
[  293.711222][    T9] usb 2-1: Using ep0 maxpacket: 8
[  293.728224][    T9] usb 2-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b
[  293.743515][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  293.772443][    T9] usb 2-1: Product: syz
[  293.796490][    T9] usb 2-1: Manufacturer: syz
[  293.806682][T11123] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  293.819078][    T9] usb 2-1: SerialNumber: syz
[  293.863576][    T9] usb 2-1: config 0 descriptor??
[  293.922187][    T9] dvb-usb: found a 'DViCO FusionHDTV DVB-T USB (LGZ201)' in warm state.
[  293.976264][    T9] dvb-usb: bulk message failed: -22 (2/0)
[  294.004223][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  294.022938][   T10] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  294.054485][    T9] dvbdev: DVB: registering new adapter (DViCO FusionHDTV DVB-T USB (LGZ201))
[  294.080188][    T9] usb 2-1: media controller created
[  294.193586][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  294.245768][   T10] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30
[  294.272436][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  294.290911][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  294.304572][    T9] cxusb: set interface failed
[  294.313331][    T9] dvb-usb: bulk message failed: -22 (1/0)
[  294.326947][   T10] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196
[  294.365728][   T10] usb 4-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[  294.395442][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.406183][T12810] netlink: 67 bytes leftover after parsing attributes in process `syz.6.2730'.
[  294.417932][   T10] usb 4-1: config 0 descriptor??
[  294.424931][    T9] DVB: Unable to find symbol mt352_attach()
[  294.433567][    T9] dvb-usb: no frontend was attached by 'DViCO FusionHDTV DVB-T USB (LGZ201)'
[  294.544358][    T9] rc_core: IR keymap rc-dvico-portable not found
[  294.572192][    T9] Registered IR keymap rc-empty
[  294.589222][T12815] netlink: 256 bytes leftover after parsing attributes in process `syz.6.2736'.
[  294.593244][    T9] rc rc0: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.1/usb2/2-1/rc/rc0
[  294.620013][    T9] input: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.1/usb2/2-1/rc/rc0/input22
[  294.652529][    T9] dvb-usb: schedule remote query interval to 100 msecs.
[  294.671042][    T9] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully initialized and connected.
[  294.706386][    T9] usb 2-1: USB disconnect, device number 20
[  294.903024][   T10] holtek_kbd 0003:04D9:A055.0009: unknown main item tag 0x0
[  294.931600][   T10] holtek_kbd 0003:04D9:A055.0009: unknown main item tag 0x0
[  294.957156][    T9] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully deinitialized and disconnected.
[  294.972272][   T10] holtek_kbd 0003:04D9:A055.0009: unknown main item tag 0x0
[  294.997028][   T10] holtek_kbd 0003:04D9:A055.0009: unknown main item tag 0x0
[  295.005826][T12823] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  295.026113][   T10] holtek_kbd 0003:04D9:A055.0009: unknown main item tag 0x0
[  295.060894][   T10] holtek_kbd 0003:04D9:A055.0009: unknown main item tag 0x0
[  295.090600][   T10] holtek_kbd 0003:04D9:A055.0009: unknown main item tag 0x0
[  295.144589][   T10] holtek_kbd 0003:04D9:A055.0009: hidraw0: USB HID v10.00 Device [HID 04d9:a055] on usb-dummy_hcd.3-1/input0
[  295.185122][   T10] usb 4-1: USB disconnect, device number 17
[  295.373545][T12830] fido_id[12830]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  295.954109][T12827] set_capacity_and_notify: 1 callbacks suppressed
[  295.954128][T12827] loop1: detected capacity change from 0 to 32768
[  296.025098][T12857] loop3: detected capacity change from 0 to 128
[  296.028207][T12827] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  296.072973][T12857] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  296.133706][T12857] ext4 filesystem being mounted at /583/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  296.193703][T12827] XFS (loop1): Ending clean mount
[  296.243921][T12827] XFS (loop1): Quotacheck needed: Please wait.
[  296.366377][ T5847] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  296.599051][T12883] loop6: detected capacity change from 0 to 1024
[  296.663294][T12885] loop5: detected capacity change from 0 to 1764
[  296.672593][T12827] XFS (loop1): Quotacheck: Done.
[  296.735443][   T13] hfsplus: b-tree write err: -5, ino 25
[  296.771420][   T13] hfsplus: b-tree write err: -5, ino 4
[  296.777177][   T13] hfsplus: b-tree write err: -5, ino 2
[  296.815991][   T13] hfsplus: b-tree write err: -5, ino 20
[  296.983922][ T5835] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  297.516691][T12910] loop6: detected capacity change from 0 to 4096
[  297.612718][T10494] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  297.631497][T12915] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  297.705089][T12919] binfmt_misc: register: failed to install interpreter file ./file0
[  297.741444][T12910] NILFS (loop6): nilfs_sufile_do_free: segment 9 is already clean
[  297.783958][T10494] usb 4-1: Using ep0 maxpacket: 16
[  297.818177][T10494] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  297.850413][T10494] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  297.864701][T10494] usb 4-1: New USB device found, idVendor=1532, idProduct=011b, bcdDevice= 0.00
[  297.882897][T10494] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.910406][T10494] usb 4-1: config 0 descriptor??
[  297.984829][T12924] loop1: detected capacity change from 0 to 4096
[  298.087863][T12932] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  298.113940][T12924] NILFS (loop1): unable to set label with more than 80 bytes
[  298.155651][T12933] loop6: detected capacity change from 0 to 1024
[  298.396145][T10494] razer 0003:1532:011B.000A: hidraw0: USB HID v0.00 Device [HID 1532:011b] on usb-dummy_hcd.3-1/input0
[  298.613877][T10494] usb 4-1: USB disconnect, device number 18
[  298.706617][T12947] fido_id[12947]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  299.012699][T12941] loop5: detected capacity change from 0 to 32768
[  299.033539][T12941] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2790 (12941)
[  299.065022][T12941] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  299.097742][T12941] BTRFS info (device loop5): using crc32c checksum algorithm
[  299.207174][T12943] loop6: detected capacity change from 0 to 40427
[  299.267731][T12943] F2FS-fs (loop6): Invalid SB checksum offset: 0
[  299.283666][T12941] BTRFS info (device loop5): enabling ssd optimizations
[  299.303057][T12943] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  299.321333][T12941] BTRFS info (device loop5): turning on flush-on-commit
[  299.351993][T12941] BTRFS info (device loop5): enabling free space tree
[  299.377474][T12941] BTRFS info (device loop5): enabling auto defrag
[  299.385226][T12943] F2FS-fs (loop6): invalid crc value
[  299.403022][T12941] BTRFS info (device loop5): use lzo compression, level 1
[  299.419661][T12941] BTRFS info (device loop5): max_inline set to 4096
[  299.634045][T12943] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  299.716452][T12943] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[  299.744857][T12943] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  299.763399][ T7295] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  299.876583][T12968] loop3: detected capacity change from 0 to 32768
[  299.921028][T10490] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  299.992747][T12968] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  300.131619][T10490] usb 1-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  300.164840][T12968] XFS (loop3): Ending clean mount
[  300.184337][T10490] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.219953][T12991] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  300.240741][T12968] XFS (loop3): Quotacheck needed: Please wait.
[  300.284437][T10490] usb 1-1: config 0 descriptor??
[  300.325714][T10490] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  300.344072][T12991] EXT4-fs error (device loop5): ext4_readdir:225: inode #2: comm syz.5.2801: path /435/file0: directory fails checksum at offset 0
[  300.412738][ T7295] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.514074][T12968] XFS (loop3): Quotacheck: Done.
[  300.659830][ T5847] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  300.968364][T10490] usb 1-1: USB disconnect, device number 15
[  301.459451][T12999] set_capacity_and_notify: 1 callbacks suppressed
[  301.459467][T12999] loop5: detected capacity change from 0 to 32768
[  301.535879][T12999] JBD2: Ignoring recovery information on journal
[  301.651049][T12999] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  301.682836][T13009] loop6: detected capacity change from 0 to 32768
[  301.707733][T13009] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2811 (13009)
[  301.792087][T13009] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  301.833773][T13009] BTRFS info (device loop6): using blake2b checksum algorithm
[  301.915393][T13042] loop1: detected capacity change from 0 to 8
[  301.932929][T13009] BTRFS info (device loop6): enabling ssd optimizations
[  301.985875][T13042] squashfs image failed sanity check
[  301.993078][T13009] BTRFS info (device loop6): turning on async discard
[  302.020777][T13048] loop0: detected capacity change from 0 to 4096
[  302.028609][T13048] EXT4-fs: inline encryption not supported
[  302.050587][T13009] BTRFS info (device loop6): enabling free space tree
[  302.058106][T13048] EXT4-fs (loop0): Test dummy encryption mode enabled
[  302.089119][   T30] audit: type=1800 audit(1774576883.840:204): pid=13009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2811" name="file1" dev="loop6" ino=260 res=0 errno=0
[  302.123099][ T7295] ocfs2: Unmounting device (7,5) on (node local)
[  302.141436][T13048] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  302.152003][T11123] BTRFS info (device loop6): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  302.184342][T13048] System zones: 0-5
[  302.267027][T13048] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.468833][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  303.304237][T13088] loop5: detected capacity change from 0 to 64
[  303.376119][T13093] loop6: detected capacity change from 0 to 512
[  303.472338][T13093] FAT-fs (loop6): Directory bread(block 199916) failed
[  303.496856][T13093] FAT-fs (loop6): Directory bread(block 199917) failed
[  303.525849][T13093] FAT-fs (loop6): Directory bread(block 199918) failed
[  303.555031][T13093] FAT-fs (loop6): Directory bread(block 199919) failed
[  303.580249][T13093] FAT-fs (loop6): Directory bread(block 199920) failed
[  303.623643][T13093] FAT-fs (loop6): Directory bread(block 199921) failed
[  303.659516][T13093] FAT-fs (loop6): Directory bread(block 199922) failed
[  303.693618][T13093] FAT-fs (loop6): Directory bread(block 199923) failed
[  303.716319][T13093] FAT-fs (loop6): Directory bread(block 199916) failed
[  303.723879][T13093] FAT-fs (loop6): Directory bread(block 199917) failed
[  303.790632][T13108] loop1: detected capacity change from 0 to 512
[  303.822800][T13108] EXT4-fs: Ignoring removed nobh option
[  303.874478][T13112] loop0: detected capacity change from 0 to 256
[  303.887367][T13108] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  303.941205][T10490] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  303.942745][T13108] EXT4-fs (loop1): 1 truncate cleaned up
[  303.975965][T13108] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.022954][T13112] FAT-fs (loop0): Directory bread(block 64) failed
[  304.059087][T13112] FAT-fs (loop0): Directory bread(block 65) failed
[  304.094428][T10490] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  304.109316][T13112] FAT-fs (loop0): Directory bread(block 66) failed
[  304.123873][T10490] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  304.138661][T13112] FAT-fs (loop0): Directory bread(block 67) failed
[  304.156534][T10490] usb 6-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  304.167306][T13112] FAT-fs (loop0): Directory bread(block 68) failed
[  304.168776][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.179094][T13112] FAT-fs (loop0): Directory bread(block 69) failed
[  304.189828][T13112] FAT-fs (loop0): Directory bread(block 70) failed
[  304.200280][T13112] FAT-fs (loop0): Directory bread(block 71) failed
[  304.228481][T10490] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.263899][T13112] FAT-fs (loop0): Directory bread(block 72) failed
[  304.263965][T13124] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  304.282197][T10490] usb 6-1: config 0 descriptor??
[  304.287467][T13112] FAT-fs (loop0): Directory bread(block 73) failed
[  304.676925][T13139] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2861'.
[  304.713617][T10490] playstation 0003:054C:0DF2.000B: unknown main item tag 0x0
[  304.746630][T10490] playstation 0003:054C:0DF2.000B: unknown main item tag 0x0
[  304.772036][T10490] playstation 0003:054C:0DF2.000B: unknown main item tag 0x0
[  304.792021][T10490] playstation 0003:054C:0DF2.000B: unknown main item tag 0x0
[  304.818762][T10490] playstation 0003:054C:0DF2.000B: unknown main item tag 0x0
[  304.859816][T10490] playstation 0003:054C:0DF2.000B: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.5-1/input0
[  304.952706][T10490] playstation 0003:054C:0DF2.000B: Failed to retrieve feature with reportID 9: -71
[  304.998818][T10490] playstation 0003:054C:0DF2.000B: Failed to retrieve DualSense pairing info: -71
[  305.028217][T10490] playstation 0003:054C:0DF2.000B: Failed to get MAC address from DualSense
[  305.063637][T10490] playstation 0003:054C:0DF2.000B: Failed to create dualsense.
[  305.093379][T10490] playstation 0003:054C:0DF2.000B: probe with driver playstation failed with error -71
[  305.142185][T10490] usb 6-1: USB disconnect, device number 11
[  305.232466][T13163] loop0: detected capacity change from 0 to 256
[  305.377691][T13170] netlink: 'syz.6.2876': attribute type 1 has an invalid length.
[  305.386046][T13170] netlink: 'syz.6.2876': attribute type 2 has an invalid length.
[  305.500640][T13174] loop6: detected capacity change from 0 to 512
[  305.539922][T13174] EXT4-fs: Ignoring removed nobh option
[  305.578347][T13174] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  305.671543][T13174] EXT4-fs (loop6): 1 truncate cleaned up
[  305.725941][T13174] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  305.897844][T11123] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.133803][T13192] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[  306.197981][T13200] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  306.212709][T13200] ext4 filesystem being mounted at /615/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  306.327091][T13192] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[  306.342853][T13211] bridge0: entered promiscuous mode
[  306.575182][T13216] ntfs3(loop5): ino=1e, "file1" The size of extended attributes must not exceed 64KiB
[  306.648282][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.837320][T13230] set_capacity_and_notify: 2 callbacks suppressed
[  306.837336][T13230] loop0: detected capacity change from 0 to 64
[  307.268911][T13238] loop5: detected capacity change from 0 to 256
[  307.276335][T13238] exfat: Deprecated parameter 'namecase'
[  307.283799][T13238] exfat: Deprecated parameter 'namecase'
[  307.300467][T13238] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[  307.425982][T13240] loop0: detected capacity change from 0 to 4096
[  307.557660][T13241] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  307.588859][T13240] NILFS (loop0): nilfs_palloc_freev (ino=3): entry number 32 already freed
[  307.659548][T13240] NILFS (loop0): nilfs_sufile_do_free: segment 9 is already clean
[  308.038679][T13257] option changes via remount are deprecated (pid=13256 comm=syz.0.2915)
[  308.342024][T13275] [U] øÇ
[  308.456538][T13279] loop0: detected capacity change from 0 to 256
[  308.501243][T13279] FAT-fs (loop0): Directory bread(block 64) failed
[  308.518354][T13279] FAT-fs (loop0): Directory bread(block 65) failed
[  308.531951][T13279] FAT-fs (loop0): Directory bread(block 66) failed
[  308.538765][T13279] FAT-fs (loop0): Directory bread(block 67) failed
[  308.553855][T13279] FAT-fs (loop0): Directory bread(block 68) failed
[  308.572108][T13279] FAT-fs (loop0): Directory bread(block 69) failed
[  308.587725][T13279] FAT-fs (loop0): Directory bread(block 70) failed
[  308.607342][T13279] FAT-fs (loop0): Directory bread(block 71) failed
[  308.627181][   T30] audit: type=1326 audit(1774576890.380:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  308.628538][T13279] FAT-fs (loop0): Directory bread(block 72) failed
[  308.689717][T13279] FAT-fs (loop0): Directory bread(block 73) failed
[  308.709218][   T30] audit: type=1326 audit(1774576890.380:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  308.747127][   T30] audit: type=1326 audit(1774576890.380:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  308.770561][   T30] audit: type=1326 audit(1774576890.380:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  308.799157][   T30] audit: type=1326 audit(1774576890.380:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  308.843007][   T30] audit: type=1326 audit(1774576890.380:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  308.867771][   T30] audit: type=1326 audit(1774576890.380:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  308.903829][   T30] audit: type=1326 audit(1774576890.380:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  308.957848][   T30] audit: type=1326 audit(1774576890.380:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  309.035840][   T30] audit: type=1326 audit(1774576890.380:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13283 comm="syz.1.2928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3794b9c799 code=0x7ffc0000
[  309.185911][T13296] bridge0: entered promiscuous mode
[  309.204642][T13296] macsec1: entered promiscuous mode
[  309.216891][T13296] macsec1: entered allmulticast mode
[  309.239371][T13296] bridge0: entered allmulticast mode
[  309.277826][T13296] bridge0: port 3(macsec1) entered blocking state
[  309.302184][T13296] bridge0: port 3(macsec1) entered disabled state
[  309.355171][T13296] bridge0: left allmulticast mode
[  309.373248][T13296] bridge0: left promiscuous mode
[  309.399645][T13306] loop0: detected capacity change from 0 to 1024
[  309.416283][T13306] EXT4-fs: Ignoring removed orlov option
[  309.439058][T13306] EXT4-fs (loop0): stripe (9) is not aligned with cluster size (16), stripe is disabled
[  309.523292][T13306] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.557619][T13317] vimc link validate: Scaler:src:16x16 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:16x16 (0x33524742, 8, 0, 0, 0)
[  309.664633][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.475732][T13351] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2955'.
[  310.484949][T13351] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2955'.
[  310.511307][T13351] netlink: 'syz.3.2955': attribute type 20 has an invalid length.
[  310.647565][T13360] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  311.267462][T13389] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2968'.
[  311.690818][T13413] netlink: 120 bytes leftover after parsing attributes in process `syz.6.2975'.
[  311.739086][T13413] netlink: 'syz.6.2975': attribute type 1 has an invalid length.
[  311.762029][T13413] netlink: 64 bytes leftover after parsing attributes in process `syz.6.2975'.
[  311.945720][T13425] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2981'.
[  312.005539][T13426] loop3: detected capacity change from 0 to 4096
[  312.117096][T13429] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  312.572950][T13449] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2990'.
[  312.578443][T13446] team_slave_0: entered promiscuous mode
[  312.591541][T13446] team_slave_1: entered promiscuous mode
[  312.628220][T13446] macsec1: entered promiscuous mode
[  312.629460][T13449] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2990'.
[  312.634235][T13446] team0: entered promiscuous mode
[  312.650503][T13446] team0: Device macsec1 is already an upper device of the team interface
[  312.660660][T13449] netlink: 'syz.0.2990': attribute type 19 has an invalid length.
[  312.668677][T13449] netlink: 'syz.0.2990': attribute type 20 has an invalid length.
[  312.678251][T13446] team0: left promiscuous mode
[  312.685229][T13446] team_slave_0: left promiscuous mode
[  312.690704][T13446] team_slave_1: left promiscuous mode
[  312.738214][T13455] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2993'.
[  312.779581][T13455] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2993'.
[  313.142455][T10487] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  313.322093][T10487] usb 1-1: Using ep0 maxpacket: 32
[  313.342204][T10487] usb 1-1: config 0 has an invalid interface number: 196 but max is 0
[  313.351548][T10487] usb 1-1: config 0 has no interface number 0
[  313.371303][T10487] usb 1-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  313.392048][T10487] usb 1-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  313.426690][T10487] usb 1-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  313.460255][T10487] usb 1-1: config 0 interface 196 has no altsetting 0
[  313.484132][T10487] usb 1-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  313.504912][T10487] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.533073][T10487] usb 1-1: Product: syz
[  313.548088][T10487] usb 1-1: Manufacturer: syz
[  313.571259][T10487] usb 1-1: SerialNumber: syz
[  313.588149][T10487] usb 1-1: config 0 descriptor??
[  313.603217][T13461] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  313.821409][  T808] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  313.993510][  T808] usb 2-1: Using ep0 maxpacket: 32
[  314.011604][  T808] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[  314.031053][T10487] ipheth 1-1:0.196: ipheth_get_macaddr: usb_control_msg: short packet: 0 bytes
[  314.033561][  T808] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  314.063985][T10487] ipheth 1-1:0.196: probe with driver ipheth failed with error -22
[  314.082998][T13514] loop5: detected capacity change from 0 to 128
[  314.098205][  T808] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  314.143752][  T808] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  314.170149][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  314.170166][   T30] audit: type=1326 audit(1774576895.920:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.6.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f73f9c799 code=0x7ffc0000
[  314.195715][  T808] usb 2-1: config 0 interface 0 has no altsetting 0
[  314.205596][   T30] audit: type=1326 audit(1774576895.920:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.6.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f73f9c799 code=0x7ffc0000
[  314.205638][   T30] audit: type=1326 audit(1774576895.950:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.6.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0f73f9c799 code=0x7ffc0000
[  314.205681][   T30] audit: type=1326 audit(1774576895.950:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.6.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f73f9c799 code=0x7ffc0000
[  314.205715][   T30] audit: type=1326 audit(1774576895.950:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.6.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f73f9c799 code=0x7ffc0000
[  314.244486][T13514] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  314.267070][T10487] usb 1-1: USB disconnect, device number 16
[  314.315605][T13514] ext4 filesystem being mounted at /473/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  314.328803][  T808] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  314.342308][   T30] audit: type=1326 audit(1774576895.990:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.6.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f0f73f9c799 code=0x7ffc0000
[  314.363238][  T808] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  314.377402][  T808] usb 2-1: Product: syz
[  314.382713][   T30] audit: type=1326 audit(1774576895.990:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.6.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f73f9c799 code=0x7ffc0000
[  314.387684][  T808] usb 2-1: Manufacturer: syz
[  314.468176][ T7295] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  314.479126][  T808] usb 2-1: SerialNumber: syz
[  314.524976][  T808] usb 2-1: config 0 descriptor??
[  314.552277][  T808] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  314.662705][  T808] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  314.824844][  T808] usb 2-1: USB disconnect, device number 21
[  314.866631][  T808] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[  315.335020][T13545] netlink: 'syz.0.3037': attribute type 4 has an invalid length.
[  315.352136][T13545] netlink: 'syz.0.3037': attribute type 2 has an invalid length.
[  315.896759][T13557] loop1: detected capacity change from 0 to 256
[  315.993940][T13557] FAT-fs (loop1): Directory bread(block 64) failed
[  316.020059][T13557] FAT-fs (loop1): Directory bread(block 65) failed
[  316.052508][T13557] FAT-fs (loop1): Directory bread(block 66) failed
[  316.082761][T13557] FAT-fs (loop1): Directory bread(block 67) failed
[  316.109989][T13557] FAT-fs (loop1): Directory bread(block 68) failed
[  316.140776][T13557] FAT-fs (loop1): Directory bread(block 69) failed
[  316.164332][T13557] FAT-fs (loop1): Directory bread(block 70) failed
[  316.191183][T13557] FAT-fs (loop1): Directory bread(block 71) failed
[  316.204105][T13557] FAT-fs (loop1): Directory bread(block 72) failed
[  316.211831][T13557] FAT-fs (loop1): Directory bread(block 73) failed
[  316.423586][T13572] loop6: detected capacity change from 0 to 4096
[  316.458242][T13572] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  316.625393][T13572] ntfs3(loop6): ino=19, mi_enum_attr
[  316.634436][T13579] loop1: detected capacity change from 0 to 4096
[  316.651351][T13579] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  316.661685][T13572] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  316.757639][T13579] ntfs3(loop1): ino=19, mi_enum_attr
[  316.776565][T13579] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  316.872074][T13585] loop0: detected capacity change from 0 to 1024
[  316.952622][T13585] hfsplus: b-tree write err: -5, ino 2
[  317.081256][ T1316] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  317.093817][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  317.100218][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  317.170178][  T762] hfsplus: b-tree write err: -5, ino 25
[  317.179507][T13589] loop1: detected capacity change from 0 to 164
[  317.186600][  T762] hfsplus: b-tree write err: -5, ino 4
[  317.236658][T13587] __nla_validate_parse: 2 callbacks suppressed
[  317.236674][T13587] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3056'.
[  317.274704][T13589] iso9660: Corrupted directory entry in block 2 of inode 1920
[  317.593077][T13603] loop0: detected capacity change from 0 to 128
[  317.595354][T13605] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3066'.
[  317.613800][T13603] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; going on - but anything won't be destroyed because it's read-only
[  317.671954][T13603] hpfs: filesystem error: improperly stopped
[  317.696988][T13603] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  317.705749][T13603] hpfs: Proceeding, but your filesystem could be corrupted if you delete files or directories
[  317.733366][T13603] hpfs: You really don't want any checks? You are crazy...
[  317.749022][T13603] hpfs: hpfs_map_sector(): read error
[  317.768421][T13603] hpfs: code page support is disabled
[  317.797971][T13603] hpfs: hpfs_map_4sectors(): unaligned read
[  317.825286][T13603] hpfs: hpfs_map_4sectors(): unaligned read
[  317.855788][T13603] hpfs: filesystem error: unable to find root dir
[  318.635625][T13648] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 0
[  318.688088][T13652] loop3: detected capacity change from 0 to 256
[  318.732094][T13652] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  318.851855][T13652] exFAT-fs (loop3): start_clu is invalid cluster(0xffffffff)
[  319.036838][T13660] loop1: detected capacity change from 0 to 2048
[  319.070593][T13660] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  319.137728][T13664] loop0: detected capacity change from 0 to 1024
[  319.144291][T13665] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  319.600731][T13677] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3098'.
[  319.603741][T13654] loop5: detected capacity change from 0 to 32768
[  319.619356][T13675] loop0: detected capacity change from 0 to 1024
[  319.625915][T13677] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3098'.
[  319.625949][T13677] netlink: 'syz.1.3098': attribute type 19 has an invalid length.
[  319.625978][T13677] netlink: 'syz.1.3098': attribute type 20 has an invalid length.
[  319.820381][T13675] hfsplus: bad catalog entry type
[  319.954905][   T13] hfsplus: b-tree write err: -5, ino 25
[  319.969799][   T13] hfsplus: b-tree write err: -5, ino 4
[  319.994038][   T13] hfsplus: b-tree write err: -5, ino 2
[  320.346200][T13701] max out of range
[  320.532608][T13709] loop0: detected capacity change from 0 to 64
[  320.600495][T13707] loop5: detected capacity change from 0 to 2048
[  320.649518][T13707] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  320.675964][T13707] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[  320.723618][T13707] UDF-fs: Scanning with blocksize 512 failed
[  320.771720][T13707] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  321.017254][T13726] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3123'.
[  321.132834][T13730] loop3: detected capacity change from 0 to 1024
[  321.149362][T13732] Bluetooth: MGMT ver 1.23
[  321.171740][T13730] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  321.225124][T13730] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  321.261755][T13730] EXT4-fs error (device loop3): ext4_get_journal_inode:5863: inode #32: comm syz.3.3124: iget: special inode unallocated
[  321.297471][T13730] loop3: lost file I/O error report for ino 32 type 5 pos 0x0 len 0x0 error -117
[  321.299174][T13730] EXT4-fs (loop3): Remounting filesystem read-only
[  321.308432][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  321.308453][    C0] EXT4-fs (loop3): initial error at time 1774576903: ext4_get_journal_inode:5863: inode 32
[  321.308481][    C0] EXT4-fs (loop3): last error at time 1774576903: ext4_get_journal_inode:5863: inode 32
[  321.392441][T13730] EXT4-fs (loop3): no journal found
[  321.409913][T13730] EXT4-fs (loop3): can't get journal size
[  321.427225][T13730] EXT4-fs (loop3): filesystem is read-only
[  321.461947][T13730] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  321.531360][    T9] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  321.675847][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.719649][    T9] usb 2-1: Using ep0 maxpacket: 32
[  321.742646][    T9] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  321.768153][    T9] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  321.794518][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  321.805289][T13752] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3132'.
[  321.814389][    T9] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  321.829457][    T9] usb 2-1: Product: syz
[  321.838844][    T9] usb 2-1: Manufacturer: syz
[  321.861373][    T9] hub 2-1:4.0: USB hub found
[  321.935489][  T808] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  322.063924][    T9] hub 2-1:4.0: config failed, hub has too many ports! (err -19)
[  322.101212][  T808] usb 1-1: Using ep0 maxpacket: 32
[  322.115875][  T808] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[  322.143104][  T808] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  322.160696][  T808] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  322.200202][  T808] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[  322.213700][  T808] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  322.223055][  T808] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.239808][  T808] usb 1-1: config 0 descriptor??
[  322.361175][T10490] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  322.383030][  T808] usb 2-1: USB disconnect, device number 22
[  322.495643][  T808] usb 1-1: USB disconnect, device number 17
[  322.531481][T10490] usb 7-1: Using ep0 maxpacket: 32
[  322.552431][T10490] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  322.577314][T10490] usb 7-1: config 0 has no interface number 0
[  322.594327][T10490] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  322.622408][T10490] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  322.643201][T10490] usb 7-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  322.661684][T10490] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.689659][T10490] usb 7-1: config 0 descriptor??
[  322.916476][T13784] loop3: detected capacity change from 0 to 256
[  322.924951][T13784] exfat: Deprecated parameter 'utf8'
[  322.931006][T13784] exfat: Deprecated parameter 'utf8'
[  322.952891][T13784] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  322.981994][T10482] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  323.151370][T10482] usb 1-1: Using ep0 maxpacket: 16
[  323.167550][T10482] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[  323.192033][T10482] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  323.211604][T10482] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  323.237484][T10482] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[  323.247960][T10482] usb 1-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice= 0.40
[  323.271060][T10482] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.304761][T10482] usb 1-1: config 0 descriptor??
[  323.315603][T10490] uclogic 0003:28BD:0094.000C: failed retrieving string descriptor #100: -71
[  323.343091][T10490] uclogic 0003:28BD:0094.000C: failed retrieving pen parameters: -71
[  323.354938][T10482] port100 1-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  323.377037][T10490] uclogic 0003:28BD:0094.000C: pen probing failed: -71
[  323.394637][T10490] uclogic 0003:28BD:0094.000C: failed probing parameters: -71
[  323.408835][T13804] netlink: 'syz.3.3159': attribute type 25 has an invalid length.
[  323.417592][T10490] uclogic 0003:28BD:0094.000C: probe with driver uclogic failed with error -71
[  323.426781][T13804] netlink: 'syz.3.3159': attribute type 9 has an invalid length.
[  323.450376][T10490] usb 7-1: USB disconnect, device number 5
[  323.577673][  T808] usb 1-1: USB disconnect, device number 18
[  323.704264][T13813] loop5: detected capacity change from 0 to 16
[  323.723559][T13813] erofs (device loop5): mounted with root inode @ nid 36.
[  323.999453][T13824] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3169'.
[  324.177157][T13832] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3173'.
[  324.389339][T13838] loop0: detected capacity change from 0 to 1024
[  324.531774][   T13] hfsplus: b-tree write err: -5, ino 25
[  324.557665][   T13] hfsplus: b-tree write err: -5, ino 4
[  324.569480][   T13] hfsplus: b-tree write err: -5, ino 2
[  324.618043][T13828] loop6: detected capacity change from 0 to 32768
[  324.625136][T13846] vim2m vim2m.0: vidioc_s_fmt queue busy
[  325.793051][T13894] futex_wake_op: syz.5.3198 tries to shift op by 32; fix this program
[  325.839677][T13888] loop1: detected capacity change from 0 to 8192
[  325.911635][T13888] syz.1.3196: attempt to access beyond end of device
[  325.911635][T13888] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  325.948993][T13888] Buffer I/O error on dev loop1, logical block 57847, async page read
[  326.009392][T13888] syz.1.3196: attempt to access beyond end of device
[  326.009392][T13888] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  326.070056][T13888] Buffer I/O error on dev loop1, logical block 57847, async page read
[  326.138365][   T30] audit: type=1800 audit(1774576907.890:225): pid=13888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3196" name="file2" dev="loop1" ino=1048844 res=0 errno=0
[  326.170902][T13880] loop3: detected capacity change from 0 to 32768
[  326.206247][T13902] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[  326.230042][T13880] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  326.284803][T13880] JBD2: Ignoring recovery information on journal
[  326.300482][T13902] FAT-fs (loop1): Filesystem has been set read-only
[  326.433672][T13911] tracefs: Bad value for 'gid'
[  326.443418][T13880] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  326.448728][T13911] tracefs: Bad value for 'gid'
[  326.562736][T13897] loop6: detected capacity change from 0 to 32768
[  326.641154][T13897] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  326.653049][ T5847] ocfs2: Unmounting device (7,3) on (node local)
[  326.757300][T13897] XFS (loop6): Ending clean mount
[  326.810271][T13897] XFS (loop6): Quotacheck needed: Please wait.
[  327.077644][T13897] XFS (loop6): Quotacheck: Done.
[  327.110480][T13935] loop0: detected capacity change from 0 to 4096
[  327.130292][T13935] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  327.198038][T11123] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  327.219621][T13935] ntfs3(loop0): ino=19, mi_enum_attr
[  327.252682][T13935] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  327.370623][T13941] loop3: detected capacity change from 0 to 128
[  327.420124][T13941] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  327.490088][T13941] hpfs: filesystem error: improperly stopped
[  327.502037][T13941] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  327.541177][T13941] hpfs: You really don't want any checks? You are crazy...
[  327.559719][T13943] loop5: detected capacity change from 0 to 512
[  327.562118][T13941] hpfs: hpfs_map_sector(): read error
[  327.584436][T13941] hpfs: code page support is disabled
[  327.608217][T13941] hpfs: hpfs_map_4sectors(): unaligned read
[  327.616595][T13941] hpfs: hpfs_map_4sectors(): unaligned read
[  327.629641][T13943] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c198, mo2=0002]
[  327.655575][T13941] hpfs: filesystem error: unable to find root dir
[  327.669518][T13943] System zones: 1-12
[  327.690837][T13943] EXT4-fs error (device loop5): ext4_iget_extra_inode:5028: inode #15: comm syz.5.3218: corrupted in-inode xattr: e_value size too large
[  327.742743][T13946] hfsplus: bad catalog entry type
[  327.752590][T13941] hpfs: hpfs_map_4sectors(): unaligned read
[  327.771326][T13943] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  327.776524][T13943] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.3218: couldn't read orphan inode 15 (err -117)
[  327.785862][    C0] EXT4-fs (loop5): error count since last fsck: 1
[  327.785884][    C0] EXT4-fs (loop5): initial error at time 1774576909: ext4_iget_extra_inode:5028: inode 15
[  327.785911][    C0] EXT4-fs (loop5): last error at time 1774576909: ext4_iget_extra_inode:5028: inode 15
[  327.838544][T13941] hpfs: hpfs_map_sector(): read error
[  327.885201][T13943] loop5: lost filesystem error report for type 5 error -117
[  327.907185][ T1178] hfsplus: b-tree write err: -5, ino 25
[  327.915192][T13943] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  327.976995][ T1178] hfsplus: b-tree write err: -5, ino 4
[  327.989337][ T1178] hfsplus: b-tree write err: -5, ino 2
[  328.158078][T13955] netlink: 'syz.6.3221': attribute type 1 has an invalid length.
[  328.568277][ T7295] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.857009][T13949] set_capacity_and_notify: 1 callbacks suppressed
[  328.857027][T13949] loop1: detected capacity change from 0 to 40427
[  328.876953][T13959] loop0: detected capacity change from 0 to 32768
[  328.908956][T13949] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(263168)
[  328.941565][T13949] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  328.955612][T13959] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  328.978566][T13949] F2FS-fs (loop1): invalid crc value
[  329.067992][T13959] XFS (loop0): Ending clean mount
[  329.081798][  T808] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  329.243308][  T808] usb 4-1: Using ep0 maxpacket: 16
[  329.244744][ T5846] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  329.252181][  T808] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  329.273702][T13949] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  329.308246][  T808] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  329.341947][  T808] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  329.369712][  T808] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  329.373050][T13949] F2FS-fs (loop1): Start checkpoint disabled!
[  329.387545][T13993] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  329.405650][  T808] usb 4-1: config 0 descriptor??
[  329.555956][T13949] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[  329.575980][T13949] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[  329.587954][T13949] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  329.674561][ T1178] kworker/u8:9: attempt to access beyond end of device
[  329.674561][ T1178] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  329.704826][ T1178] CPU: 1 UID: 0 PID: 1178 Comm: kworker/u8:9 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  329.704856][ T1178] Tainted: [L]=SOFTLOCKUP
[  329.704861][ T1178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  329.704871][ T1178] Workqueue: writeback wb_workfn (flush-7:1)
[  329.704899][ T1178] Call Trace:
[  329.704905][ T1178]  <TASK>
[  329.704913][ T1178]  dump_stack_lvl+0xe8/0x150
[  329.704941][ T1178]  f2fs_stop_checkpoint+0x3c7/0x590
[  329.704971][ T1178]  f2fs_write_end_io+0x12e5/0x17a0
[  329.705010][ T1178]  __submit_merged_bio+0x256/0x6a0
[  329.705038][ T1178]  __submit_merged_write_cond+0x3c9/0x4e0
[  329.705069][ T1178]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  329.705113][ T1178]  f2fs_write_data_pages+0x287e/0x34f0
[  329.705186][ T1178]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  329.705225][ T1178]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  329.705277][ T1178]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  329.705321][ T1178]  ? __lock_acquire+0x6b5/0x2cf0
[  329.705369][ T1178]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  329.705395][ T1178]  do_writepages+0x32e/0x550
[  329.705424][ T1178]  ? reacquire_held_locks+0x104/0x190
[  329.705441][ T1178]  ? writeback_sb_inodes+0x463/0x19d0
[  329.705468][ T1178]  __writeback_single_inode+0x133/0x10e0
[  329.705491][ T1178]  ? do_raw_spin_unlock+0xf5/0x210
[  329.705516][ T1178]  writeback_sb_inodes+0x979/0x19d0
[  329.705535][ T1178]  ? __lock_acquire+0x6b5/0x2cf0
[  329.705586][ T1178]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  329.705604][ T1178]  ? do_raw_spin_lock+0x12b/0x2f0
[  329.705661][ T1178]  ? rcu_is_watching+0x15/0xb0
[  329.705686][ T1178]  wb_writeback+0x445/0xb00
[  329.705711][ T1178]  ? queue_io+0x2b1/0x470
[  329.705739][ T1178]  ? __pfx_wb_writeback+0x10/0x10
[  329.705756][ T1178]  ? do_raw_spin_lock+0x12b/0x2f0
[  329.705788][ T1178]  wb_workfn+0x3f8/0xf10
[  329.705802][ T1178]  ? __lock_acquire+0x6b5/0x2cf0
[  329.705822][ T1178]  ? look_up_lock_class+0x57/0x110
[  329.705859][ T1178]  ? __pfx_wb_workfn+0x10/0x10
[  329.705881][ T1178]  ? do_raw_spin_lock+0x12b/0x2f0
[  329.705899][ T1178]  ? lock_acquire+0x106/0x350
[  329.705924][ T1178]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  329.705946][ T1178]  ? process_scheduled_works+0xa70/0x1860
[  329.705973][ T1178]  ? process_scheduled_works+0xa70/0x1860
[  329.706004][ T1178]  ? process_scheduled_works+0xa70/0x1860
[  329.706026][ T1178]  ? process_scheduled_works+0xa70/0x1860
[  329.706051][ T1178]  process_scheduled_works+0xb5d/0x1860
[  329.706108][ T1178]  ? __pfx_process_scheduled_works+0x10/0x10
[  329.706137][ T1178]  ? assign_work+0x3d5/0x5e0
[  329.706165][ T1178]  worker_thread+0xa53/0xfc0
[  329.706223][ T1178]  kthread+0x388/0x470
[  329.706243][ T1178]  ? __pfx_worker_thread+0x10/0x10
[  329.706265][ T1178]  ? __pfx_kthread+0x10/0x10
[  329.706286][ T1178]  ret_from_fork+0x514/0xb70
[  329.706313][ T1178]  ? __pfx_ret_from_fork+0x10/0x10
[  329.706335][ T1178]  ? __switch_to+0xc7d/0x1420
[  329.706361][ T1178]  ? __pfx_kthread+0x10/0x10
[  329.706382][ T1178]  ret_from_fork_asm+0x1a/0x30
[  329.706416][ T1178]  </TASK>
[  329.706444][ T1178] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  329.735605][T13998] loop5: detected capacity change from 0 to 512
[  330.028961][  T808] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.000D/input/input23
[  330.036709][T13998] EXT4-fs: Ignoring removed nomblk_io_submit option
[  330.050600][T13998] EXT4-fs (loop5): 1 truncate cleaned up
[  330.052494][T13998] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  330.061464][T13998] EXT4-fs (loop5): Online resizing not supported with sparse_super2
[  330.069118][  T808] microsoft 0003:045E:07DA.000D: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  330.111737][ T7295] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.141013][  T808] usb 4-1: USB disconnect, device number 19
[  330.235012][T14006] loop6: detected capacity change from 0 to 1024
[  330.258648][T14008] loop5: detected capacity change from 0 to 1024
[  330.297709][   T48] hfsplus: b-tree write err: -5, ino 25
[  330.297826][   T48] hfsplus: b-tree write err: -5, ino 4
[  330.299011][T14008] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  330.300386][   T48] hfsplus: b-tree write err: -5, ino 2
[  330.306358][   T30] audit: type=1800 audit(1774576912.060:226): pid=14008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3242" name="bus" dev="loop5" ino=18 res=0 errno=0
[  330.371752][ T7295] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.538449][T14014] loop6: detected capacity change from 0 to 256
[  330.575543][T14014] FAT-fs (loop6): Directory bread(block 64) failed
[  330.575576][T14014] FAT-fs (loop6): Directory bread(block 65) failed
[  330.575652][T14014] FAT-fs (loop6): Directory bread(block 66) failed
[  330.575672][T14014] FAT-fs (loop6): Directory bread(block 67) failed
[  330.575745][T14014] FAT-fs (loop6): Directory bread(block 68) failed
[  330.575765][T14014] FAT-fs (loop6): Directory bread(block 69) failed
[  330.575837][T14014] FAT-fs (loop6): Directory bread(block 70) failed
[  330.575856][T14014] FAT-fs (loop6): Directory bread(block 71) failed
[  330.575927][T14014] FAT-fs (loop6): Directory bread(block 72) failed
[  330.575946][T14014] FAT-fs (loop6): Directory bread(block 73) failed
[  330.695736][T14016] fido_id[14016]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  330.744864][T14020] loop1: detected capacity change from 0 to 736
[  330.763143][T14015] loop5: detected capacity change from 0 to 4096
[  330.956639][T14015] ntfs3(loop5): failed to convert "0000" to iso8859-9
[  331.091817][T14015] ntfs3(loop5): failed to convert name for inode 1e.
[  331.093707][T14015] ntfs3(loop5): ino=1f, mi_enum_attr
[  331.660729][T14041] loop5: detected capacity change from 0 to 2048
[  331.706274][T14042] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  332.331902][T10494] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  332.481181][T10494] usb 1-1: Using ep0 maxpacket: 8
[  332.500766][T10494] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 127, changing to 10
[  332.533663][T10494] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  332.567250][T10494] usb 1-1: New USB device found, idVendor=1532, idProduct=011d, bcdDevice= 0.00
[  332.594435][T10494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  332.667771][T10494] usb 1-1: config 0 descriptor??
[  332.682329][T14068] sch_tbf: burst 3 is lower than device tunl0 mtu (1480) !
[  333.087446][T14055] loop1: detected capacity change from 0 to 32768
[  333.109684][T14055] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3262 (14055)
[  333.113444][T10494] hid-rmi 0003:1532:011D.000E: ignoring exceeding usage max
[  333.163696][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.181796][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.188089][T14055] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  333.208287][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.226636][T14055] BTRFS info (device loop1): using crc32c checksum algorithm
[  333.235482][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.250471][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.282151][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.320486][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.357605][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.384938][T14055] BTRFS info (device loop1): enabling ssd optimizations
[  333.409016][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.417949][T14105] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.3279: invalid indirect mapped block 4294967295 (level 1)
[  333.447840][T14055] BTRFS info (device loop1): turning on flush-on-commit
[  333.460081][T10494] hid-rmi 0003:1532:011D.000E: unknown main item tag 0x0
[  333.466153][T14105] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  333.467689][T14055] BTRFS info (device loop1): enabling free space tree
[  333.476891][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  333.476915][    C0] EXT4-fs (loop3): initial error at time 1774576915: ext4_free_branches:1023: inode 11
[  333.476944][    C0] EXT4-fs (loop3): last error at time 1774576915: ext4_free_branches:1023: inode 11
[  333.490635][T10494] hid-rmi 0003:1532:011D.000E: unbalanced collection at end of report description
[  333.503901][T14105] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.3279: invalid indirect mapped block 4294967295 (level 1)
[  333.512615][T14055] BTRFS info (device loop1): enabling auto defrag
[  333.521450][T14105] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  333.544544][T14105] EXT4-fs (loop3): 2 truncates cleaned up
[  333.567926][T14055] BTRFS info (device loop1): use lzo compression, level 1
[  333.572170][T14105] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.578202][T10494] hid-rmi 0003:1532:011D.000E: parse failed
[  333.607219][T14055] BTRFS info (device loop1): max_inline set to 4096
[  333.635912][T10494] hid-rmi 0003:1532:011D.000E: probe with driver hid-rmi failed with error -22
[  333.666102][T10494] usb 1-1: USB disconnect, device number 19
[  333.745506][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.057859][T14118] set_capacity_and_notify: 1 callbacks suppressed
[  334.057878][T14118] loop6: detected capacity change from 0 to 2048
[  334.190015][T14123] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  334.361883][T14123] NILFS (loop6): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  334.389506][T14123] NILFS error (device loop6): nilfs_bmap_propagate: broken bmap (inode number=4)
[  334.442006][T14127] loop0: detected capacity change from 0 to 4096
[  334.454633][T14127] EXT4-fs: inline encryption not supported
[  334.493987][T14123] Remounting filesystem read-only
[  334.509954][T14127] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  334.527341][T11123] NILFS (loop6): disposed unprocessed dirty file(s) when stopping log writer
[  334.532697][T14127] System zones: 0-5
[  334.549004][ T5835] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  334.580773][T14127] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.755740][T14127] __find_get_block_slow() failed. block=144115188075855873, b_blocknr=1, b_state=0x00000019, b_size=4096, device loop0 blocksize: 4096
[  334.793405][T14127] grow_buffers: requested out-of-range block 144115188075855873 for device loop0
[  334.832805][T14127] EXT4-fs warning (device loop0): ext4_resize_fs:2018: can't read last block, resize aborted
[  334.899634][T14138] binder: 14137:14138 unknown command 1847616617
[  334.943023][T14138] binder: 14137:14138 ioctl c0306201 200000000080 returned -22
[  334.987433][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.023543][T14116] loop3: detected capacity change from 0 to 32768
[  335.113576][T14116] XFS (loop3): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  335.241160][T14116] XFS (loop3): Ending clean mount
[  335.395243][   T30] audit: type=1800 audit(1774576917.150:227): pid=14116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3282" name="file1" dev="loop3" ino=4422 res=0 errno=0
[  335.528419][ T5847] XFS (loop3): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  335.581372][T14164] loop1: detected capacity change from 0 to 512
[  335.625123][T14164] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  336.053747][T14175] loop0: detected capacity change from 0 to 1024
[  336.081963][T14175] EXT4-fs: Ignoring removed oldalloc option
[  336.136864][T14175] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  336.181423][T14158] loop5: detected capacity change from 0 to 32768
[  336.288976][T14185] loop3: detected capacity change from 0 to 1024
[  336.325327][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.335884][T10490] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  336.467036][  T762] hfsplus: b-tree write err: -5, ino 25
[  336.482033][  T762] hfsplus: b-tree write err: -5, ino 4
[  336.494881][  T762] hfsplus: b-tree write err: -5, ino 2
[  336.504114][T10490] usb 2-1: config 1 has an invalid interface number: 7 but max is 0
[  336.526618][T10490] usb 2-1: config 1 has no interface number 0
[  336.539681][T14189] loop6: detected capacity change from 0 to 4096
[  336.549273][T14189] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  336.557785][T10490] usb 2-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[  336.597704][T10490] usb 2-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  336.630014][T10490] usb 2-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  336.657593][T14189] ntfs3(loop6): ino=1d, mi_enum_attr
[  336.676179][T10490] usb 2-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  336.713655][T10490] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.716190][T14189] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  336.740990][T10490] usb 2-1: Product: syz
[  336.765424][T10490] usb 2-1: Manufacturer: syz
[  336.784897][T10490] usb 2-1: SerialNumber: syz
[  336.812430][T14177] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  336.821888][T14189] ntfs3(loop6): ino=1d, mi_enum_attr
[  336.846180][T14189] ntfs3(loop6): ino=1d, "file1" mi_enum_attr
[  336.990849][T14201] loop3: detected capacity change from 0 to 512
[  337.033035][T14177] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  337.055044][T14201] EXT4-fs error (device loop3): ext4_iget_extra_inode:5028: inode #15: comm syz.3.3318: corrupted in-inode xattr: invalid ea_ino
[  337.093264][T14201] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  337.101123][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  337.117153][    C1] EXT4-fs (loop3): initial error at time 1774576918: ext4_iget_extra_inode:5028: inode 15
[  337.127134][    C1] EXT4-fs (loop3): last error at time 1774576918: ext4_iget_extra_inode:5028: inode 15
[  337.146491][T14205] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3312'.
[  337.168548][T14201] EXT4-fs (loop3): Remounting filesystem read-only
[  337.224396][T14201] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.259169][T14209] loop5: detected capacity change from 0 to 2048
[  337.356096][T14209]  loop5: p3 < > p4 < >
[  337.371145][T14209] loop5: partition table partially beyond EOD, truncated
[  337.378653][T10490] sierra_net 2-1:1.7 wwan0: register 'sierra_net' at usb-dummy_hcd.1-1, Sierra Wireless USB-to-WWAN Modem, 00:00:00:00:02:07
[  337.387995][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.400522][T14209] loop5: p3 start 4284289 is beyond EOD, truncated
[  337.469640][T10490] sierra_net 2-1:1.7 wwan0: Submit SYNC failed -71
[  337.485644][T10490] sierra_net 2-1:1.7 wwan0: Send SYNC failed, status -71
[  337.538697][T10490] sierra_net 2-1:1.7 wwan0: Submit SYNC failed -71
[  337.592271][T10490] sierra_net 2-1:1.7 wwan0: Send SYNC failed, status -71
[  337.665206][T10490] usb 2-1: USB disconnect, device number 23
[  337.701917][T10490] sierra_net 2-1:1.7 wwan0: unregister 'sierra_net' usb-dummy_hcd.1-1, Sierra Wireless USB-to-WWAN Modem
[  337.830455][T14228] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  337.889385][ T5853] udevd[5853]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  337.905944][T10490] sierra_net 2-1:1.7 wwan0 (unregistered): usb_control_msg failed, status -19
[  338.463527][T14228] NILFS (loop6): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  338.490590][T14228] NILFS error (device loop6): nilfs_bmap_propagate: broken bmap (inode number=4)
[  338.528227][T14228] Remounting filesystem read-only
[  338.590500][T14242] FAT-fs (loop5): Directory bread(block 64) failed
[  338.615129][T14242] FAT-fs (loop5): Directory bread(block 65) failed
[  338.640118][T14242] FAT-fs (loop5): Directory bread(block 66) failed
[  338.664191][T11123] NILFS (loop6): disposed unprocessed dirty file(s) when stopping log writer
[  338.680920][T14242] FAT-fs (loop5): Directory bread(block 67) failed
[  338.701547][T14242] FAT-fs (loop5): Directory bread(block 68) failed
[  338.719818][T14242] FAT-fs (loop5): Directory bread(block 69) failed
[  338.737082][T14242] FAT-fs (loop5): Directory bread(block 70) failed
[  338.754854][T14242] FAT-fs (loop5): Directory bread(block 71) failed
[  338.773954][T14242] FAT-fs (loop5): Directory bread(block 72) failed
[  338.791211][T14242] FAT-fs (loop5): Directory bread(block 73) failed
[  339.517737][T14251] set_capacity_and_notify: 5 callbacks suppressed
[  339.517752][T14251] loop3: detected capacity change from 0 to 32768
[  339.556476][T14251] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3339 (14251)
[  339.623307][T14251] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  339.641933][T14251] BTRFS info (device loop3): using sha256 checksum algorithm
[  339.769086][T14255] loop0: detected capacity change from 0 to 32768
[  339.812785][T14253] loop6: detected capacity change from 0 to 32768
[  339.822107][T14251] BTRFS info (device loop3): enabling ssd optimizations
[  339.845255][T14251] BTRFS info (device loop3): turning on async discard
[  339.852847][T14251] BTRFS info (device loop3): enabling free space tree
[  339.857034][T14255] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  339.860369][T14253] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3341 (14253)
[  339.917535][T14253] BTRFS info (device loop6): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  340.010135][ T5847] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  340.024297][T14253] BTRFS info (device loop6): using crc32c checksum algorithm
[  340.068849][T14253] BTRFS warning (device loop6): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  340.103422][T14255] XFS (loop0): Ending clean mount
[  340.311961][   T30] audit: type=1326 audit(1774576922.050:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14306 comm="syz.1.3351" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3794b9c799 code=0x0
[  340.372711][T14253] BTRFS info (device loop6): rebuilding free space tree
[  340.403080][T14253] BTRFS info (device loop6): disabling free space tree
[  340.410764][T14253] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  340.420929][T14253] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  340.424045][ T5846] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  340.442218][T14253] BTRFS info (device loop6): enabling ssd optimizations
[  340.449456][T14253] BTRFS info (device loop6): turning on async discard
[  340.460402][T14253] BTRFS info (device loop6): enabling disk space caching
[  340.501733][T14253] BTRFS info (device loop6): force clearing of disk cache
[  340.524919][T14253] BTRFS info (device loop6): use zstd compression, level 3
[  341.342649][T11123] BTRFS info (device loop6): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  341.543788][T14339] /dev/nullb0: Can't open blockdev
[  341.793290][T14347] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3367'.
[  341.833962][    C1] sd 0:0:1:0: [sda] tag#7222 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  341.839454][T14351] netlink: 'syz.3.3368': attribute type 1 has an invalid length.
[  341.844426][    C1] sd 0:0:1:0: [sda] tag#7222 CDB: Read(6) 08 18 4b 56 00 40
[  342.136282][T14364] mkiss: ax0: crc mode is auto.
[  342.330876][T14366] netlink: 48 bytes leftover after parsing attributes in process `syz.6.3375'.
[  342.852587][T14384] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3384'.
[  343.030409][T14388] netlink: 165 bytes leftover after parsing attributes in process `syz.6.3387'.
[  343.141876][T14368] loop3: detected capacity change from 0 to 32768
[  343.207930][T14396] comedi comedi3: bad chanlist[0]=0x0000157c chan=5500 range length=1
[  343.217104][T14370] loop0: detected capacity change from 0 to 32768
[  343.232770][T14368] JBD2: Ignoring recovery information on journal
[  343.263411][T14370] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.3377 (14370)
[  343.344427][T14368] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  343.387344][T14370] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  343.423292][T14370] BTRFS info (device loop0): using crc32c checksum algorithm
[  343.550166][T14368] (syz.3.3376,14368,0):ocfs2_get_suballoc_slot_bit:3120 ERROR: invalid inode 212 requested
[  343.581750][T14370] BTRFS info (device loop0): enabling ssd optimizations
[  343.589988][T14368] (syz.3.3376,14368,0):ocfs2_get_suballoc_slot_bit:3145 ERROR: status = -22
[  343.611918][T14368] (syz.3.3376,14368,0):ocfs2_test_inode_bit:3231 ERROR: get alloc slot and bit failed -22
[  343.616817][T14370] BTRFS info (device loop0): turning on flush-on-commit
[  343.634273][T14368] (syz.3.3376,14368,0):ocfs2_test_inode_bit:3276 ERROR: status = -22
[  343.646257][T14423] loop1: detected capacity change from 0 to 512
[  343.680720][T14370] BTRFS info (device loop0): enabling free space tree
[  343.706109][T14423] FAT-fs (loop1): Directory bread(block 199916) failed
[  343.713286][T14370] BTRFS info (device loop0): enabling auto defrag
[  343.743762][T14423] FAT-fs (loop1): Directory bread(block 199917) failed
[  343.757189][T14370] BTRFS info (device loop0): use lzo compression, level 1
[  343.781938][T14423] FAT-fs (loop1): Directory bread(block 199918) failed
[  343.811005][T14370] BTRFS info (device loop0): max_inline set to 4096
[  343.811270][T14423] FAT-fs (loop1): Directory bread(block 199919) failed
[  343.849503][ T5847] ocfs2: Unmounting device (7,3) on (node local)
[  343.882431][T14423] FAT-fs (loop1): Directory bread(block 199920) failed
[  343.914780][T14423] FAT-fs (loop1): Directory bread(block 199921) failed
[  343.961827][ T5846] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  343.975999][T14423] FAT-fs (loop1): Directory bread(block 199922) failed
[  343.992535][T14427] loop6: detected capacity change from 0 to 4096
[  344.004368][T14423] FAT-fs (loop1): Directory bread(block 199923) failed
[  344.085870][T14428] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  344.806441][T14425] loop5: detected capacity change from 0 to 32768
[  344.868825][T14425] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  344.916263][T14425] XFS (loop5): Ending clean mount
[  344.938786][T14425] XFS (loop5): Quotacheck needed: Please wait.
[  345.059610][T14436] loop3: detected capacity change from 0 to 32768
[  345.157717][T14462] loop1: detected capacity change from 0 to 512
[  345.364219][T14462] EXT4-fs (loop1): 1 orphan inode deleted
[  345.376007][T14425] XFS (loop5): Quotacheck: Done.
[  345.385170][   T36] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  345.385685][T14462] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.417631][   T36] EXT4-fs error (device loop1): ext4_release_dquot:7037: comm kworker/u8:2: Failed to release dquot type 1
[  345.426647][T14469] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3410'.
[  345.446365][   T36] loop1: lost filesystem error report for type 5 error -117
[  345.449248][T14462] ext4 filesystem being mounted at /696/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.572319][ T7295] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  345.593980][T14462] EXT4-fs: Ignoring sb option on remount
[  345.624096][T14462] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[  345.641503][T14462] EXT4-fs: Cannot change journaled quota options when quota turned on
[  345.783823][T14448] loop6: detected capacity change from 0 to 32768
[  345.797478][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.733379][T14474] loop0: detected capacity change from 0 to 32768
[  346.783547][T14474] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.3414 (14474)
[  346.854581][T14474] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  346.895726][T14474] BTRFS info (device loop0): using crc32c checksum algorithm
[  346.934871][T14474] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  347.047815][T14517] loop5: detected capacity change from 0 to 256
[  347.089036][T14517] exfat: Deprecated parameter 'utf8'
[  347.125997][T14517] exfat: Deprecated parameter 'utf8'
[  347.159988][T14474] BTRFS info (device loop0): rebuilding free space tree
[  347.184682][T14517] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x97423c56, utbl_chksum : 0xe619d30d)
[  347.214981][ T5161] Bluetooth: hci1: link tx timeout
[  347.220699][ T5161] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  347.295491][T14517] exFAT-fs (loop5): valid_size(72057594054706202) is greater than size(1050)
[  347.383155][T14474] BTRFS info (device loop0): disabling free space tree
[  347.423599][T14474] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  347.445813][T14474] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  347.544217][T14474] BTRFS info (device loop0): enabling ssd optimizations
[  347.566152][T14474] BTRFS info (device loop0): turning on async discard
[  347.581643][T14474] BTRFS info (device loop0): enabling disk space caching
[  347.603645][T14474] BTRFS info (device loop0): force clearing of disk cache
[  347.631382][T14474] BTRFS info (device loop0): use zstd compression, level 3
[  348.009056][ T5846] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  348.221574][   T10] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[  348.278112][T14542] loop1: detected capacity change from 0 to 32768
[  348.324542][T14542] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  348.407820][   T10] usb 7-1: too many endpoints for config 0 interface 0 altsetting 2: 254, using maximum allowed: 30
[  348.477937][   T10] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  348.494766][T14555] loop5: detected capacity change from 0 to 32768
[  348.518960][T14542] XFS (loop1): Ending clean mount
[  348.540411][   T10] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  348.558632][T14555] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.3445 (14555)
[  348.604297][   T10] usb 7-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[  348.629797][T14555] BTRFS info (device loop5): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  348.666970][T14575] loop3: detected capacity change from 0 to 512
[  348.670039][   T10] usb 7-1: config 0 interface 0 has no altsetting 0
[  348.676040][T14555] BTRFS info (device loop5): using blake2b checksum algorithm
[  348.717252][   T10] usb 7-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00
[  348.728421][ T5835] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  348.774248][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.799331][T14575] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.817413][   T10] usb 7-1: config 0 descriptor??
[  348.872577][T14575] ext4 filesystem being mounted at /731/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  348.939312][T14555] BTRFS info (device loop5): enabling ssd optimizations
[  348.996016][T14555] BTRFS info (device loop5): turning on async discard
[  349.040484][T14555] BTRFS info (device loop5): enabling free space tree
[  349.076890][T14575] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  349.110734][T14599] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  349.280774][   T10] ryos 0003:1E7D:3138.000F: item fetching failed at offset 1/5
[  349.296664][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.311176][ T5843] Bluetooth: hci1: command 0x0405 tx timeout
[  349.322043][   T10] ryos 0003:1E7D:3138.000F: parse failed
[  349.342127][   T10] ryos 0003:1E7D:3138.000F: probe with driver ryos failed with error -22
[  349.515505][ T7295] BTRFS info (device loop5): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  349.528241][T10490] usb 7-1: USB disconnect, device number 6
[  349.855973][T14601] loop1: detected capacity change from 0 to 32768
[  349.885322][T14601] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3452 (14601)
[  349.954291][T14601] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  349.985620][T14601] BTRFS info (device loop1): using crc32c checksum algorithm
[  350.205443][T14601] BTRFS info (device loop1): rebuilding free space tree
[  350.282228][T10494] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  350.482193][T10494] usb 6-1: Using ep0 maxpacket: 16
[  350.485987][T14632] loop0: detected capacity change from 0 to 512
[  350.494763][T14601] BTRFS info (device loop1): checking UUID tree
[  350.504605][T10494] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  350.508269][T14601] BTRFS info (device loop1): allowing degraded mounts
[  350.528009][T14632] EXT4-fs: Ignoring removed nomblk_io_submit option
[  350.550040][T10494] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  350.555007][T14601] BTRFS info (device loop1): enabling ssd optimizations
[  350.579175][T14632] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  350.603532][T14601] BTRFS info (device loop1): enabling free space tree
[  350.605928][T10494] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  350.611693][T14632] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e842e128, mo2=0002]
[  350.635699][T14601] BTRFS info (device loop1): force clearing of disk cache
[  350.644928][T14632] System zones: 1-12
[  350.662034][T14601] BTRFS info (device loop1): force zlib compression, level 3
[  350.669567][T14632] EXT4-fs (loop0): orphan cleanup on readonly fs
[  350.713333][T10494] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.727069][T14638] loop6: detected capacity change from 0 to 4096
[  350.736788][T14632] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.3461: attempt to clear invalid blocks 1024 len 1
[  350.774813][T14607] loop3: detected capacity change from 0 to 32768
[  350.784486][T10494] usb 6-1: config 0 descriptor??
[  350.805373][T14632] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  350.809932][T14639] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  350.821095][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  350.836525][    C1] EXT4-fs (loop0): initial error at time 1774576932: ext4_clear_blocks:876: inode 11
[  350.846077][    C1] EXT4-fs (loop0): last error at time 1774576932: ext4_clear_blocks:876: inode 11
[  350.868576][T14632] EXT4-fs (loop0): Remounting filesystem read-only
[  350.896310][T14607] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3457 (14607)
[  350.920611][T14632] EXT4-fs (loop0): 1 truncate cleaned up
[  350.950965][T14607] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  350.957096][T14632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  350.969283][T14607] BTRFS info (device loop3): using crc32c checksum algorithm
[  351.022635][T14607] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  351.140822][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  351.260056][ T5835] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  351.296130][T10494] input: HID 045e:07da as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:045E:07DA.0010/input/input26
[  351.348628][T14607] BTRFS info (device loop3): rebuilding free space tree
[  351.414383][T10494] microsoft 0003:045E:07DA.0010: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0
[  351.488350][T14607] BTRFS info (device loop3): disabling free space tree
[  351.508589][T14662] ALSA: seq fatal error: cannot create timer (-19)
[  351.518764][T14607] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  351.540293][T14607] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  351.547253][   T10] usb 6-1: USB disconnect, device number 12
[  351.660120][T14607] BTRFS info (device loop3): enabling ssd optimizations
[  351.692204][T14607] BTRFS info (device loop3): turning on async discard
[  351.736310][T14607] BTRFS info (device loop3): enabling disk space caching
[  351.792476][T14607] BTRFS info (device loop3): force clearing of disk cache
[  351.829513][T14607] BTRFS info (device loop3): use zstd compression, level 3
[  351.843642][T14664] fido_id[14664]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  352.423231][T14684] loop5: detected capacity change from 0 to 8
[  352.477604][ T5847] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  352.497576][T14684] SQUASHFS error: Failed to read block 0x2d0: -5
[  352.571735][T14684] SQUASHFS error: Unable to read metadata cache entry [2ce]
[  352.598572][T14684] SQUASHFS error: Unable to read directory block [2ce:0]
[  353.220977][T14709] geneve1: entered promiscuous mode
[  353.237819][ T5161] Bluetooth: hci4: SCO packet for unknown connection handle 200
[  353.261711][T14709] macsec1: entered promiscuous mode
[  353.306617][T14709] macsec1: entered allmulticast mode
[  353.319415][T14709] geneve1: entered allmulticast mode
[  353.338197][T14709] geneve1: left allmulticast mode
[  353.349797][T14709] geneve1: left promiscuous mode
[  353.385662][T14715] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  353.396556][T14719] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  353.486638][T14721] loop3: detected capacity change from 0 to 512
[  353.539727][T14721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  353.675222][T14721] fs-verity (loop3, inode 16): Unsupported log_blocksize: 12
[  353.781499][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.792168][T14738] loop5: detected capacity change from 0 to 128
[  353.799300][T14739] loop6: detected capacity change from 0 to 512
[  353.824195][T14738] EXT4-fs: Ignoring removed nomblk_io_submit option
[  353.832075][T14739] EXT4-fs: inline encryption not supported
[  353.838450][T14739] EXT4-fs: Ignoring removed mblk_io_submit option
[  353.845024][T14738] EXT4-fs: Ignoring removed nomblk_io_submit option
[  353.860310][T14738] EXT4-fs: Ignoring removed nobh option
[  353.867135][T14739] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  353.882066][T14738] EXT4-fs (loop5): Test dummy encryption mode enabled
[  353.902408][T14742] netlink: 332 bytes leftover after parsing attributes in process `syz.1.3502'.
[  353.920512][T14742] netlink: 'syz.1.3502': attribute type 9 has an invalid length.
[  353.922221][T14739] EXT4-fs (loop6): 1 truncate cleaned up
[  353.929406][T14742] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3502'.
[  353.943791][T14742] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3502'.
[  353.944991][T14738] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  353.965532][T14739] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  353.994948][T14748] netlink: 164 bytes leftover after parsing attributes in process `syz.0.3503'.
[  354.006566][T14738] ext4 filesystem being mounted at /587/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  354.079915][T14738] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx"
[  354.100322][T11123] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.263575][ T7295] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  354.356324][T14751] loop3: detected capacity change from 0 to 4096
[  354.425856][T14757] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  354.830849][T14774] loop6: detected capacity change from 0 to 512
[  354.876255][T14774] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  354.911521][T14774] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3515: bg 0: block 255: padding at end of block bitmap is not set
[  354.933976][T14774] loop6: lost filesystem error report for type 5 error -117
[  354.937772][  T808] usb 1-1: new full-speed USB device number 20 using dummy_hcd
[  354.945993][T14774] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  354.953563][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  354.953585][    C1] EXT4-fs (loop6): initial error at time 1774576936: ext4_validate_block_bitmap:441
[  354.953605][    C1] EXT4-fs (loop6): last error at time 1774576936: ext4_validate_block_bitmap:441
[  355.036889][T14774] loop6: lost filesystem error report for type 5 error -117
[  355.037564][T14774] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3515: invalid indirect mapped block 1 (level 1)
[  355.089118][T14754] loop1: detected capacity change from 0 to 32768
[  355.114257][  T808] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  355.118019][T14774] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  355.129679][T14754] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3506 (14754)
[  355.155382][T14774] EXT4-fs (loop6): 1 truncate cleaned up
[  355.166249][  T808] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  355.192868][  T808] usb 1-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  355.196032][T14754] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  355.214555][  T808] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.217524][T14774] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  355.244918][T14754] BTRFS info (device loop1): using crc32c checksum algorithm
[  355.265108][  T808] usb 1-1: config 0 descriptor??
[  355.289213][  T808] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  355.328155][  T808] dvb-usb: bulk message failed: -22 (3/0)
[  355.396413][  T808] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  355.418835][  T808] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  355.429110][  T808] usb 1-1: media controller created
[  355.440567][  T808] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  355.460813][  T808] dvb-usb: bulk message failed: -22 (6/0)
[  355.479350][T14754] BTRFS info (device loop1): checking UUID tree
[  355.479833][  T808] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  355.498139][T14768] dvb-usb: bulk message failed: -22 (2/0)
[  355.515039][T14754] BTRFS info (device loop1): turning on flush-on-commit
[  355.526099][T14754] BTRFS info (device loop1): enabling free space tree
[  355.536335][T14754] BTRFS info (device loop1): force zlib compression, level 3
[  355.620573][T11123] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.628317][  T808] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input27
[  355.677875][T10490] usb 4-1: new full-speed USB device number 20 using dummy_hcd
[  355.686710][  T808] dvb-usb: schedule remote query interval to 150 msecs.
[  355.709003][  T808] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  355.724297][ T5835] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  355.769586][  T808] usb 1-1: USB disconnect, device number 20
[  355.867909][T10490] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  355.908494][T10490] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  355.930128][  T808] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  355.959640][T10490] usb 4-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  355.994983][T10490] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.043339][T10490] usb 4-1: config 0 descriptor??
[  356.069812][T10490] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  356.095137][T10490] dvb-usb: bulk message failed: -22 (3/0)
[  356.144281][T10490] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  356.176356][T10490] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  356.199581][T10490] usb 4-1: media controller created
[  356.223843][T10490] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  356.270386][T14799] dvb-usb: bulk message failed: -22 (2/0)
[  356.296264][T14799] dvb-usb: bulk message failed: -22 (4/0)
[  356.348880][T14820] loop0: detected capacity change from 0 to 2048
[  356.367391][T10490] dvb-usb: bulk message failed: -22 (6/0)
[  356.424688][T10490] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  356.434197][T14820] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  356.475770][T10490] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input28
[  356.488611][T14820] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  356.535378][T10490] dvb-usb: schedule remote query interval to 150 msecs.
[  356.564659][T10490] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  356.591002][T10490] usb 4-1: USB disconnect, device number 20
[  356.597751][T10482] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  356.716468][T10490] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  356.752652][T10482] usb 2-1: Using ep0 maxpacket: 16
[  356.790070][T10482] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  356.824609][T10482] usb 2-1: config 0 interface 0 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  356.879574][T10482] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  356.939652][T10482] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  356.989187][T10482] usb 2-1: config 0 interface 0 has no altsetting 0
[  357.022154][T10482] usb 2-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  357.040728][T10482] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  357.064452][T10482] usb 2-1: Product: syz
[  357.080569][T10482] usb 2-1: Manufacturer: syz
[  357.103070][T10482] usb 2-1: SerialNumber: syz
[  357.124607][T10482] usb 2-1: config 0 descriptor??
[  357.150232][T14822] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  357.223531][T14841] loop5: detected capacity change from 0 to 16
[  357.243021][T14839] loop3: detected capacity change from 0 to 1764
[  357.249098][T14841] erofs (device loop5): mounted with root inode @ nid 36.
[  357.268761][T14839] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  357.388804][T14822] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  357.443481][T10482] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input29
[  357.804399][T10482] usb 2-1: USB disconnect, device number 24
[  357.903546][T14857] netlink: 52 bytes leftover after parsing attributes in process `syz.0.3546'.
[  357.933071][T14857] netlink: 'syz.0.3546': attribute type 3 has an invalid length.
[  358.341235][   T10] usb 1-1: new full-speed USB device number 21 using dummy_hcd
[  358.505903][   T10] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  358.550377][T14886] : entered promiscuous mode
[  358.555215][   T10] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  358.583691][   T10] usb 1-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  358.616600][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.644607][   T10] usb 1-1: config 0 descriptor??
[  358.680081][   T10] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  358.704670][   T10] dvb-usb: bulk message failed: -22 (3/0)
[  358.764373][   T10] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  358.792308][   T10] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  358.812057][   T10] usb 1-1: media controller created
[  358.831552][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  358.873008][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  358.913205][   T10] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  358.932544][T14867] dvb-usb: bulk message failed: -22 (2/0)
[  358.950022][   T10] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input30
[  359.000015][   T10] dvb-usb: schedule remote query interval to 150 msecs.
[  359.020323][   T10] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  359.059438][   T10] usb 1-1: USB disconnect, device number 21
[  359.305867][T14911] loop5: detected capacity change from 0 to 256
[  359.377846][T14911] FAT-fs (loop5): Directory bread(block 64) failed
[  359.392790][T14911] FAT-fs (loop5): Directory bread(block 65) failed
[  359.412806][T14911] FAT-fs (loop5): Directory bread(block 66) failed
[  359.427469][T14911] FAT-fs (loop5): Directory bread(block 67) failed
[  359.434242][T14893] loop3: detected capacity change from 0 to 40427
[  359.442989][T14911] FAT-fs (loop5): Directory bread(block 68) failed
[  359.460245][T14893] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  359.475217][T14911] FAT-fs (loop5): Directory bread(block 69) failed
[  359.488975][T14893] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  359.499794][T14911] FAT-fs (loop5): Directory bread(block 70) failed
[  359.520748][T14893] F2FS-fs (loop3): invalid crc_offset: 33558524
[  359.530801][T14911] FAT-fs (loop5): Directory bread(block 71) failed
[  359.551340][T14911] FAT-fs (loop5): Directory bread(block 72) failed
[  359.570575][T14911] FAT-fs (loop5): Directory bread(block 73) failed
[  359.804095][T14893] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  359.845730][T14893] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  359.863721][T14893] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  360.113147][   T10] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  360.245241][T14925] loop6: detected capacity change from 0 to 512
[  360.314840][T14925] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.386244][T14925] ext4 filesystem being mounted at /259/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  360.417364][T14934] loop1: detected capacity change from 0 to 256
[  360.552341][T11123] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.948481][T14952] loop5: detected capacity change from 0 to 164
[  360.981768][T14952] iso9660: Corrupted directory entry in block 2 of inode 1792
[  361.148976][T14960] loop0: detected capacity change from 0 to 256
[  361.200516][T14962] loop5: detected capacity change from 0 to 512
[  361.232801][T14962] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  361.353326][T14962] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.3593: bg 0: block 104: invalid block bitmap
[  361.383183][T14962] loop5: lost filesystem error report for type 5 error -117
[  361.391111][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  361.396895][T14973] loop6: detected capacity change from 0 to 512
[  361.398446][    C1] EXT4-fs (loop5): initial error at time 1774576943: ext4_validate_block_bitmap:432
[  361.407073][T14962] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  361.411145][    C1] EXT4-fs (loop5): last error at time 1774576943: ext4_validate_block_bitmap:432
[  361.440724][T14973] EXT4-fs error (device loop6): ext4_iget_extra_inode:5028: inode #15: comm syz.6.3599: corrupted in-inode xattr: invalid ea_ino
[  361.442493][T14962] loop5: lost filesystem error report for type 5 error -117
[  361.461860][T14973] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  361.472857][T14962] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.3593: invalid indirect mapped block 1 (level 1)
[  361.496143][T14976] loop0: detected capacity change from 0 to 2048
[  361.501111][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  361.504511][T14962] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  361.508945][    C0] EXT4-fs (loop6): initial error at time 1774576943: ext4_iget_extra_inode:5028: inode 15
[  361.526463][T14978] xt_nfacct: accounting object `\�$‚9ZúM#íü¾mUµ|±^cÁ\F9YⳈ«ÃÖ' does not exist
[  361.528043][    C0] EXT4-fs (loop6): last error at time 1774576943: ext4_iget_extra_inode:5028: inode 15
[  361.539653][T14976] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  361.547123][   T10] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  361.564465][T14962] EXT4-fs (loop5): 1 truncate cleaned up
[  361.565946][T14973] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.3599: couldn't read orphan inode 15 (err -117)
[  361.574040][T14962] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  361.595995][T14976] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  361.627215][T14973] loop6: lost filesystem error report for type 5 error -117
[  361.636149][T14976] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  361.655770][T14973] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  361.761661][   T10] usb 4-1: Using ep0 maxpacket: 16
[  361.778783][   T10] usb 4-1: New USB device found, idVendor=056a, idProduct=00ce, bcdDevice= 0.00
[  361.793321][T11123] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.813267][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.879854][   T10] usb 4-1: config 0 descriptor??
[  362.170244][ T7295] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.329671][   T10] hid_parser_main: 13 callbacks suppressed
[  362.329734][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.372684][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.393220][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.408307][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.422323][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.437429][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.452418][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.466892][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.485763][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.510052][   T10] wacom 0003:056A:00CE.0011: unknown main item tag 0x0
[  362.540991][   T10] usb 4-1: USB disconnect, device number 21
[  362.846054][T14995] ==================================================================
[  362.846069][T14995] BUG: KASAN: slab-use-after-free in madvise_walk_vmas+0x661/0xae0
[  362.846135][T14995] Read of size 8 at addr ffff88803322aa08 by task syz.0.3603/14995
[  362.846148][T14995] 
[  362.846163][T14995] CPU: 1 UID: 0 PID: 14995 Comm: syz.0.3603 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  362.846182][T14995] Tainted: [L]=SOFTLOCKUP
[  362.846188][T14995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  362.846200][T14995] Call Trace:
[  362.846214][T14995]  <TASK>
[  362.846220][T14995]  dump_stack_lvl+0xe8/0x150
[  362.846319][T14995]  print_address_description+0x55/0x1e0
[  362.846343][T14995]  ? madvise_walk_vmas+0x661/0xae0
[  362.846389][T14995]  print_report+0x58/0x70
[  362.846405][T14995]  kasan_report+0x117/0x150
[  362.846421][T14995]  ? madvise_walk_vmas+0x661/0xae0
[  362.846440][T14995]  madvise_walk_vmas+0x661/0xae0
[  362.846453][T14995]  ? __lock_acquire+0x6b5/0x2cf0
[  362.846486][T14995]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  362.846502][T14995]  ? blk_start_plug+0x6e/0x1b0
[  362.846599][T14995]  madvise_do_behavior+0x386/0x540
[  362.846615][T14995]  ? __pfx_madvise_do_behavior+0x10/0x10
[  362.846633][T14995]  ? down_read+0x270/0x2e0
[  362.846729][T14995]  ? madvise_lock+0x146/0x2e0
[  362.846745][T14995]  do_madvise+0x1fa/0x2e0
[  362.846758][T14995]  ? __pfx_do_madvise+0x10/0x10
[  362.846776][T14995]  ? lockdep_hardirqs_on+0x7a/0x110
[  362.846797][T14995]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.846829][T14995]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.846843][T14995]  __x64_sys_madvise+0xa6/0xc0
[  362.846859][T14995]  do_syscall_64+0x15f/0xf80
[  362.846902][T14995]  ? trace_irq_disable+0x3b/0x140
[  362.846918][T14995]  ? clear_bhb_loop+0x40/0x90
[  362.846934][T14995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.846948][T14995] RIP: 0033:0x7f6f8599c799
[  362.846988][T14995] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  362.847001][T14995] RSP: 002b:00007f6f8681a028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  362.847047][T14995] RAX: ffffffffffffffda RBX: 00007f6f85c16090 RCX: 00007f6f8599c799
[  362.847058][T14995] RDX: 0000000000000019 RSI: 0000000008000000 RDI: 0000200000000000
[  362.847067][T14995] RBP: 00007f6f85a32c99 R08: 0000000000000000 R09: 0000000000000000
[  362.847076][T14995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  362.847084][T14995] R13: 00007f6f85c16128 R14: 00007f6f85c16090 R15: 00007ffd2a0e3548
[  362.847101][T14995]  </TASK>
[  362.847106][T14995] 
[  362.847111][T14995] Allocated by task 5846:
[  362.847153][T14995]  kasan_save_track+0x3e/0x80
[  362.847175][T14995]  __kasan_slab_alloc+0x6c/0x80
[  362.847187][T14995]  kmem_cache_alloc_noprof+0x2bc/0x650
[  362.847206][T14995]  vm_area_dup+0x2b/0x680
[  362.847224][T14995]  dup_mmap+0x8b1/0x1d90
[  362.847242][T14995]  copy_mm+0x13b/0x4a0
[  362.847270][T14995]  copy_process+0x1efd/0x4430
[  362.847291][T14995]  kernel_clone+0x26d/0x8e0
[  362.847305][T14995]  __x64_sys_clone+0x1b6/0x230
[  362.847321][T14995]  do_syscall_64+0x15f/0xf80
[  362.847340][T14995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.847357][T14995] 
[  362.847361][T14995] Freed by task 15002:
[  362.847371][T14995]  kasan_save_track+0x3e/0x80
[  362.847396][T14995]  kasan_save_free_info+0x46/0x50
[  362.847418][T14995]  __kasan_slab_free+0x5c/0x80
[  362.847433][T14995]  slab_free_after_rcu_debug+0x12a/0x220
[  362.847455][T14995]  rcu_core+0x7cd/0x1070
[  362.847482][T14995]  handle_softirqs+0x22a/0x840
[  362.847508][T14995]  do_softirq+0x76/0xd0
[  362.847533][T14995]  __local_bh_enable_ip+0xf8/0x130
[  362.847559][T14995]  packet_do_bind+0x33/0xe10
[  362.847657][T14995]  __sys_bind+0x2e3/0x410
[  362.847725][T14995]  __x64_sys_bind+0x7a/0x90
[  362.847750][T14995]  do_syscall_64+0x15f/0xf80
[  362.847771][T14995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.847789][T14995] 
[  362.847795][T14995] Last potentially related work creation:
[  362.847803][T14995]  kasan_save_stack+0x3e/0x60
[  362.847830][T14995]  kasan_record_aux_stack+0xbd/0xd0
[  362.847853][T14995]  kmem_cache_free+0x44f/0x650
[  362.847870][T14995]  vms_complete_munmap_vmas+0x929/0xc60
[  362.847892][T14995]  do_vmi_align_munmap+0x3b7/0x4b0
[  362.847913][T14995]  do_vmi_munmap+0x252/0x2d0
[  362.847933][T14995]  do_munmap+0xf9/0x170
[  362.847957][T14995]  mremap_to+0x353/0x880
[  362.847977][T14995]  __se_sys_mremap+0xe6d/0x11d0
[  362.847997][T14995]  do_syscall_64+0x15f/0xf80
[  362.848018][T14995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.848037][T14995] 
[  362.848042][T14995] The buggy address belongs to the object at ffff88803322aa00
[  362.848042][T14995]  which belongs to the cache vm_area_struct of size 256
[  362.848059][T14995] The buggy address is located 8 bytes inside of
[  362.848059][T14995]  freed 256-byte region [ffff88803322aa00, ffff88803322ab00)
[  362.848080][T14995] 
[  362.848086][T14995] The buggy address belongs to the physical page:
[  362.848104][T14995] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803322adc0 pfn:0x3322a
[  362.848124][T14995] memcg:ffff88803322af01
[  362.848140][T14995] flags: 0xfff00000000200(workingset|node=0|zone=1|lastcpupid=0x7ff)
[  362.848162][T14995] page_type: f5(slab)
[  362.848183][T14995] raw: 00fff00000000200 ffff88801c294b40 ffffea0001163f90 ffffea0001dba810
[  362.848203][T14995] raw: ffff88803322adc0 00000008000c000b 00000000f5000000 ffff88803322af01
[  362.848214][T14995] page dumped because: kasan: bad access detected
[  362.848227][T14995] page_owner tracks the page as allocated
[  362.848235][T14995] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 11045, tgid 11045 (syz.0.2085), ts 233915893282, free_ts 233883108694
[  362.848270][T14995]  post_alloc_hook+0x231/0x280
[  362.848297][T14995]  get_page_from_freelist+0x24ba/0x2540
[  362.848316][T14995]  __alloc_frozen_pages_noprof+0x233/0x3d0
[  362.848335][T14995]  allocate_slab+0x77/0x660
[  362.848355][T14995]  refill_objects+0x339/0x3d0
[  362.848373][T14995]  __pcs_replace_empty_main+0x321/0x720
[  362.848396][T14995]  kmem_cache_alloc_noprof+0x37d/0x650
[  362.848422][T14995]  vm_area_dup+0x2b/0x680
[  362.848436][T14995]  __split_vma+0x1dc/0xa40
[  362.848459][T14995]  vma_modify+0x88a/0x1e10
[  362.848479][T14995]  vma_modify_flags+0x24b/0x330
[  362.848499][T14995]  mprotect_fixup+0x62a/0xb60
[  362.848517][T14995]  do_mprotect_pkey+0x8d5/0xd20
[  362.848537][T14995]  __x64_sys_mprotect+0x80/0x90
[  362.848555][T14995]  do_syscall_64+0x15f/0xf80
[  362.848576][T14995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.848594][T14995] page last free pid 23 tgid 23 stack trace:
[  362.848606][T14995]  __free_frozen_pages+0xbc7/0xd30
[  362.848633][T14995]  tlb_remove_table_rcu+0x85/0x100
[  362.848652][T14995]  rcu_core+0x7cd/0x1070
[  362.848676][T14995]  handle_softirqs+0x22a/0x840
[  362.848702][T14995]  run_ksoftirqd+0x36/0x60
[  362.848719][T14995]  smpboot_thread_fn+0x541/0xa50
[  362.848737][T14995]  kthread+0x388/0x470
[  362.848756][T14995]  ret_from_fork+0x514/0xb70
[  362.848790][T14995]  ret_from_fork_asm+0x1a/0x30
[  362.848808][T14995] 
[  362.848813][T14995] Memory state around the buggy address:
[  362.848824][T14995]  ffff88803322a900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  362.848838][T14995]  ffff88803322a980: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  362.848850][T14995] >ffff88803322aa00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  362.848860][T14995]                       ^
[  362.848869][T14995]  ffff88803322aa80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  362.848882][T14995]  ffff88803322ab00: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00
[  362.848892][T14995] ==================================================================
[  362.849103][T14995] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  362.849121][T14995] CPU: 1 UID: 0 PID: 14995 Comm: syz.0.3603 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  362.849154][T14995] Tainted: [L]=SOFTLOCKUP
[  362.849161][T14995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  362.849172][T14995] Call Trace:
[  362.849179][T14995]  <TASK>
[  362.849185][T14995]  vpanic+0x56c/0xa60
[  362.849213][T14995]  ? __pfx_vpanic+0x10/0x10
[  362.849242][T14995]  panic+0xc5/0xd0
[  362.849262][T14995]  ? __pfx_panic+0x10/0x10
[  362.849287][T14995]  ? preempt_schedule_thunk+0x16/0x30
[  362.849308][T14995]  ? madvise_walk_vmas+0x661/0xae0
[  362.849326][T14995]  ? preempt_schedule_thunk+0x16/0x30
[  362.849347][T14995]  ? madvise_walk_vmas+0x661/0xae0
[  362.849364][T14995]  check_panic_on_warn+0x89/0xb0
[  362.849384][T14995]  ? madvise_walk_vmas+0x661/0xae0
[  362.849402][T14995]  end_report+0x73/0x170
[  362.849420][T14995]  ? madvise_walk_vmas+0x661/0xae0
[  362.849437][T14995]  kasan_report+0x128/0x150
[  362.849457][T14995]  ? madvise_walk_vmas+0x661/0xae0
[  362.849477][T14995]  madvise_walk_vmas+0x661/0xae0
[  362.849496][T14995]  ? __lock_acquire+0x6b5/0x2cf0
[  362.849526][T14995]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  362.849547][T14995]  ? blk_start_plug+0x6e/0x1b0
[  362.849569][T14995]  madvise_do_behavior+0x386/0x540
[  362.849590][T14995]  ? __pfx_madvise_do_behavior+0x10/0x10
[  362.849612][T14995]  ? down_read+0x270/0x2e0
[  362.849635][T14995]  ? madvise_lock+0x146/0x2e0
[  362.849656][T14995]  do_madvise+0x1fa/0x2e0
[  362.849674][T14995]  ? __pfx_do_madvise+0x10/0x10
[  362.849697][T14995]  ? lockdep_hardirqs_on+0x7a/0x110
[  362.849725][T14995]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.849748][T14995]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.849768][T14995]  __x64_sys_madvise+0xa6/0xc0
[  362.849790][T14995]  do_syscall_64+0x15f/0xf80
[  362.849812][T14995]  ? trace_irq_disable+0x3b/0x140
[  362.849836][T14995]  ? clear_bhb_loop+0x40/0x90
[  362.849859][T14995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.849878][T14995] RIP: 0033:0x7f6f8599c799
[  362.849896][T14995] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  362.849914][T14995] RSP: 002b:00007f6f8681a028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  362.849937][T14995] RAX: ffffffffffffffda RBX: 00007f6f85c16090 RCX: 00007f6f8599c799
[  362.849953][T14995] RDX: 0000000000000019 RSI: 0000000008000000 RDI: 0000200000000000
[  362.849967][T14995] RBP: 00007f6f85a32c99 R08: 0000000000000000 R09: 0000000000000000
[  362.849979][T14995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  362.849992][T14995] R13: 00007f6f85c16128 R14: 00007f6f85c16090 R15: 00007ffd2a0e3548
[  362.850015][T14995]  </TASK>
[  362.850165][T14995] Kernel Offset: disabled