last executing test programs:

4.7306092s ago: executing program 1 (id=1005):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

4.581751002s ago: executing program 1 (id=1008):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7, 0x8000, 0x8, 0x0, 0x806b})
ioctl$SG_BLKTRACETEARDOWN(r0, 0x1276, 0x0)

4.426723394s ago: executing program 1 (id=1010):
syz_mount_image$f2fs(&(0x7f0000000400), &(0x7f0000000040)='./file2\x00', 0x10400, &(0x7f0000005ac0)=ANY=[], 0xfe, 0x5517, &(0x7f000000df00)="$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")
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000180)={0x0, 0x9, 0xfffffffd, 0x0, 0x3, 0x8000})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x4008f510, 0x0)

3.402340106s ago: executing program 1 (id=1019):
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000007794608cd0c39007b90000000010902120001fc0000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x2c03)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f00000001c0)={&(0x7f0000000180)=[{0x1, 0x8a00, 0x0, 0x0}], 0x1})

2.382175888s ago: executing program 2 (id=1026):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000540), 0x1, 0x4a3, &(0x7f0000000580)="$eJzs3c1rXOUaAPBnZpo0SXNvP+7l0vbCbaEXej9oJh9IE3XjSl0UxIIbhRqTaayZZEJmUpvQRaq7LlyIoiAu3PsXuLEriyCudS8upKI1ggrCyDkzk+Zr4qBpBnJ+Pzid95z3dJ73zfC8nHnPOXMCyKyzyT+5iMGI+DwijjZWN+9wtvGydv/mVLLkol6//F0u3S9Zb+3a+n9HImI1Ivoi4tknI17KbY9bXV6ZnSyXS4vN9WJtbqFYXV65cG1ucqY0U5ofGb84MTE+PDY6sWd9vf3GK7cvffR074c/vX7v7puffJw0a7BZt7Efe6nR9Z44vmHboYh4/GEE64JCsz/93W4If0jy+f0tIs6l+X80CumnCWRBvV6v/1o/3K56tQ4cWPn0GDiXH4qIRjmfHxpqHMP/PQby5Uq19v+rlaX56cax8rHoyV+9Vi4NN78rHIueXLI+kpYfrI9uWR+LSI+B3yr0p+tDU5Xy9P4OdcAWR7bk/4+FRv4DGeErP2SX/Ifskv+QXfIfskv+Q3bJf8gu+Q/ZJf8hu+Q/ZJf8h+yS/5BJz1y6lCz11v3v09eXl2Yr1y9Ml6qzQ3NLU0NTlcWFoZlKZSa9Z2fu996vXKksjDwSSzeKtVK1Vqwur1yZqyzN166k9/VfKfXsS6+AThw/c+fLXESsPtqfLoneZp1chYOtXs9Ft+9BBrqj0O0BCOgaU3+QXb7jAzv8RO8mfe0qFva+LcD+yHe7AUDXnD/l/B9klfl/yC7z/5BdjvEB8/+QPeb/IbsG2zz/6y8bnt01HBF/jYgvCj2HW8/6Ag6C/De55vH/+aP/Htxa25v7OT1F0BsRr753+Z0bk7Xa4kiy/fv17bV3m9tHu9F+oFOtPG3lMQCQXWv3b061lv2M++0TjYsQtsc/1Jyb7EvPUQ6s5TZdq5Dbo2sXVm9FxMmd4ueazztvnPkYWCtsi3+i+ZprvEXa3kPpc9P3J/6pDfH/tSH+6T/9V4FsuJOMP8M75V8+zelYz7/N48/gHl070X78y6+Pf4U249+ZDmO8/P5rX7eNfyvi9I7xW/H60lhb4ydtO99h/HsvPPePdnX1Dxrvs1P8lqRUrM0tFKvLKxfS35GbKc2PjF+cmBgfHhudKKZz1MXWTPV2j5387O5u/R9oE3+3/ifb/tth/3/556fPn90l/n/O7fz5n9glfn9E/K/D+D+MfvViu7ok/nSb/ud3iZ9sG+swfvXtpw53uCsAsA+qyyuzk+VyaVFBQUFhvdDtkQl42B4kfbdbAgAAAAAAAAAAAHRqPy4n7nYfAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOgt8CAAD//1kn1ls=")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000240)={0x0, 0xfffffffffffffffc, 0x4000})

2.296004105s ago: executing program 3 (id=1027):
mkdir(0x0, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$pokeuser(0x6, r0, 0xa0, 0xe000000000000000)

2.287052546s ago: executing program 2 (id=1028):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
close(r0)
syz_usb_connect(0x4, 0x24, &(0x7f0000000200)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r0, 0x40085503, 0x0)

1.943658413s ago: executing program 3 (id=1030):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0xa9b, 0x4)

1.85572874s ago: executing program 3 (id=1031):
syz_open_dev$dri(&(0x7f0000000340), 0x1, 0x0)
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000580), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, r0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x8, 0x8e}}]}, 0x4c}}, 0x0)

1.693459244s ago: executing program 3 (id=1035):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x403, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x0, 0x7d043}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_usb_connect$cdc_ncm(0x4, 0xd1, &(0x7f0000000040)=ANY=[@ANYBLOB="12011003020000182505a1a44000010203010902bf0002010650000900000000020d00000524060001082400a9b30d240f010a0000000300ff000606241a05001407240a050905580c240c00000000a90c0900030424020204240200042402024424"], 0x0)
syz_usb_connect$cdc_ecm(0x6, 0x4d, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x1, 0x30, 0x7, [{{0x9, 0x4, 0x0, 0x9f, 0x2, 0x2, 0x6, 0x0, 0x5, {{0x5}, {0x5, 0x24, 0x0, 0x6}, {0xd, 0x24, 0xf, 0x1, 0xc, 0x6, 0x5, 0xf}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x10, 0x2, 0xaf, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0xf, 0x6, 0x2}}}}}]}}]}}, 0x0)
syz_usb_connect(0x3, 0xf5, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000772aed408680070bb96c010203010902e30003dc2000000904003f000e01000505a40600010524007f000d240f0104000000080000000006241a03000a05240101070424020a1524120009a317a88b045e4f01a607c0ffcb7e392a09044c03003a92a2010a240109000102010205240401050c2402"], 0x0)

1.605732621s ago: executing program 2 (id=1044):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={@private1, @loopback, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7, 0x1, 0x2, 0x0, 0x7fffffffffffffff, 0x20008})
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2}, {0x0, [0x0]}}, &(0x7f0000001f80)=""/226, 0x26, 0x81, 0x2}, 0x20)

1.551154705s ago: executing program 2 (id=1038):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000180), 0x1, 0x451, &(0x7f0000000780)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, &(0x7f00000000c0)=""/55, 0x37)

1.314840574s ago: executing program 2 (id=1039):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)

1.101244971s ago: executing program 1 (id=1040):
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ff"], 0x15)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})

965.929632ms ago: executing program 0 (id=1042):
syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r0 = syz_io_uring_setup(0x33fd, &(0x7f0000000580)={0x0, 0x95f5, 0x10100, 0xfffffffd, 0x89}, &(0x7f0000000280)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r0, 0x207a98, 0x363, 0xc, 0x0, 0x0)

838.317062ms ago: executing program 0 (id=1043):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000040)='./file1\x00', 0x14810, &(0x7f0000000200)={[{@datasum}, {@noenospc_debug}, {@flushoncommit}]}, 0x1, 0x510d, &(0x7f0000005140)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f00000000c0)=@v2={0x2000000, [{0xc33, 0x1}, {0xfffffff9, 0xbea}]}, 0x14, 0x1)
truncate(&(0x7f00000002c0)='./file1\x00', 0x42d9)

787.422906ms ago: executing program 2 (id=1045):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x1, 0x0, &(0x7f0000000000))
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
chown(&(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0xee00)

265.557359ms ago: executing program 0 (id=1046):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@newtaction={0x2a4, 0x30, 0xc96f2b0dc02612b1, 0x71bd23, 0x25dfdbff, {}, [{0x290, 0x1, [@m_ife={0x8c, 0xb, 0x0, 0x0, {{0x8}, {0x38, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x1, 0x8, 0x8, 0x1ff, 0x5}, 0x1}}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x4, 0x3, @void}]}, @TCA_IFE_DMAC={0xa, 0x3, @multicast}]}, {0x2e, 0x6, "ea24464decc1b2772ce0e9d802b5374a8d6638c9f5d62d73097ad328a4154dd4046c261a61dc99ee7003"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_csum={0xcc, 0x14, 0x0, 0x0, {{0x9}, {0x4}, {0x9d, 0x6, "576458eea52fd27eec92e713a172e757e1f62fe8475fa8817d9bd39d398251801f64d9b8e312b47b111ff094a2f452e1fd749b169123625c664a63e06baa8402c6b5fe34fbffaf329e5589fe1d00f704d8d13b0100000081ec7a1e9e21427be570631961812505684e260d3f73821a372961e6acf9f73f3ab3a6d19010c501877fc1473ff3fe388a502702c7e7d4eb99cd479f52bef8df8dc2"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_bpf={0xe8, 0x9, 0x0, 0x0, {{0x8}, {0x98, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x3, 0x4, 0x3, 0x87f3, 0x4}}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x2, 0x9, 0x6, 0x3, 0x7fb}}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x408, 0x6, 0x5, 0x5, 0x69e}}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{0xa, 0x1, 0x5, 0x924b}, {0xa, 0x40, 0x1, 0x3}, {0x9, 0x89, 0x6, 0x9}, {0x0, 0xce, 0x6, 0xf870da92}, {0xd5f7, 0x4, 0x3f, 0x6}, {0x4, 0xfd, 0xf9, 0x4}, {0x3, 0xb, 0x81, 0x262}]}]}, {0x29, 0x6, "a09e88b2fa7e2ad0dddad3cdaa9b726cf5b56034a46fe4468bd19b5780d1bd141230a65f0d"}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}, @m_skbmod={0x4c, 0xd, 0x0, 0x0, {{0xb}, {0x4}, {0x1d, 0x6, "d53a6627b5c2b2c1126462fd280ec461bb61d2323e41566a3e"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}]}]}, 0x2a4}, 0x1, 0x0, 0x0, 0x4004000}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x8804, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

146.349507ms ago: executing program 0 (id=1047):
syz_mount_image$hfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x22000c0, &(0x7f0000001700)={[{@codepage={'codepage', 0x3d, 'iso8859-13'}}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}]}, 0x4, 0x32d, &(0x7f0000000540)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)

146.079938ms ago: executing program 3 (id=1048):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x20902, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_TSC_KHZ_cpu(r2, 0xaea3)

145.966878ms ago: executing program 1 (id=1049):
r0 = socket(0x840000000002, 0x3, 0xfa)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, 0x0, 0x0)

83.769643ms ago: executing program 0 (id=1050):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000500)=[{0x0}, {&(0x7f0000000000)="850f", 0x2}], 0x2)

5.400049ms ago: executing program 3 (id=1051):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace(0x10, r0)
ptrace$setsig(0x4203, r0, 0x1000, &(0x7f00000002c0)={0x2d, 0xd5, 0x80})

0s ago: executing program 0 (id=1052):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000380)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000340)="10", 0x1, 0x8004, &(0x7f00000003c0)={0x11, 0x3, r1, 0x1, 0x0, 0x6, @local}, 0x14)

kernel console output (not intermixed with test programs):

esses unique to avoid problems!
[   72.505948][ T5781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.518890][ T5781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.539584][ T5781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.551073][ T5781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.562881][ T5781] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.628962][ T5781] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.641931][ T5781] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.653291][ T5781] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.662304][ T5781] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.721454][  T135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.746550][  T135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.829165][   T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.839738][   T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.851628][   T27] audit: type=1326 audit(1755710700.547:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   72.908384][  T135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.908813][   T27] audit: type=1326 audit(1755710700.547:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   72.939017][   T27] audit: type=1326 audit(1755710700.547:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   72.961262][  T135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.037621][   T27] audit: type=1326 audit(1755710700.547:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   73.076794][   T27] audit: type=1326 audit(1755710700.547:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   73.095333][ T3476] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.102315][   T27] audit: type=1326 audit(1755710700.557:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   73.129583][ T3476] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.139030][   T27] audit: type=1326 audit(1755710700.557:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   73.174181][ T2878] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.182053][ T2878] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.228257][   T27] audit: type=1326 audit(1755710700.557:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   73.323536][   T27] audit: type=1326 audit(1755710700.557:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   73.348129][ T2878] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.364374][ T2878] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.429907][   T27] audit: type=1326 audit(1755710700.557:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.2.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[   73.584807][   T50] Bluetooth: hci0: command tx timeout
[   73.634466][ T5892] syz.0.12[5892]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   73.674486][   T50] Bluetooth: hci1: command tx timeout
[   73.679957][   T50] Bluetooth: hci2: command tx timeout
[   73.744199][   T50] Bluetooth: hci3: command tx timeout
[   73.892974][ T5892] loop0: detected capacity change from 0 to 4096
[   73.920670][ T5892] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[   73.981841][ T5892] ntfs3: loop0: Inode r=19 is not in use!
[   74.004385][ T5892] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[   74.606842][ T5899] loop1: detected capacity change from 0 to 32768
[   74.707740][ T5899] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   74.831305][ T5899] XFS (loop1): Ending clean mount
[   74.884360][    T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   74.905255][ T5924] netlink: 'syz.0.22': attribute type 3 has an invalid length.
[   75.048329][ T5781] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   75.096410][    T9] usb 4-1: Using ep0 maxpacket: 16
[   75.148122][    T9] usb 4-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[   75.185034][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   75.193610][    T9] usb 4-1: Product: syz
[   75.224704][    T9] usb 4-1: Manufacturer: syz
[   75.229371][    T9] usb 4-1: SerialNumber: syz
[   75.252958][ T5907] loop2: detected capacity change from 0 to 40427
[   75.276808][    T9] usb 4-1: config 0 descriptor??
[   75.298806][    T9] visor 4-1:0.0: Sony Clie 3.5 converter detected
[   75.327402][ T5907] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[   75.368669][ T5907] F2FS-fs (loop2): Image doesn't support compression
[   75.391011][ T5907] F2FS-fs (loop2): Image doesn't support compression
[   75.438815][ T5907] F2FS-fs (loop2): invalid crc value
[   75.477523][ T5907] F2FS-fs (loop2): Found nat_bits in checkpoint
[   75.494004][ T5835] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   75.539028][ T5907] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   75.659212][ T5785] syz-executor: attempt to access beyond end of device
[   75.659212][ T5785] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   75.673724][   T50] Bluetooth: hci0: command tx timeout
[   75.681597][ T5785] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   75.684600][ T5835] usb 1-1: Using ep0 maxpacket: 8
[   75.700991][ T5835] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 17
[   75.718862][    T9] usb 4-1: Sony Clie 3.5 converter now attached to ttyUSB0
[   75.731757][ T5835] usb 1-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=c8.07
[   75.741169][ T5835] usb 1-1: New USB device strings: Mfr=209, Product=185, SerialNumber=60
[   75.756560][   T50] Bluetooth: hci2: command tx timeout
[   75.756573][ T5791] Bluetooth: hci1: command tx timeout
[   75.763773][ T5835] usb 1-1: Product: syz
[   75.771668][ T5835] usb 1-1: Manufacturer: syz
[   75.776558][ T5835] usb 1-1: SerialNumber: syz
[   75.792398][ T5835] usb 1-1: config 0 descriptor??
[   75.824076][ T5791] Bluetooth: hci3: command tx timeout
[   75.953355][ T2255] usb 4-1: USB disconnect, device number 2
[   75.984647][ T2255] clie_3.5 ttyUSB0: Sony Clie 3.5 converter now disconnected from ttyUSB0
[   76.011737][ T2255] visor 4-1:0.0: device disconnected
[   76.045264][ T5835] gspca_main: sunplus-2.14.0 probing 04a5:3003
[   76.181872][ T5939] loop2: detected capacity change from 0 to 256
[   76.189817][ T5939] =======================================================
[   76.189817][ T5939] WARNING: The mand mount option has been deprecated and
[   76.189817][ T5939]          and is ignored by this kernel. Remove the mand
[   76.189817][ T5939]          option from the mount to silence this warning.
[   76.189817][ T5939] =======================================================
[   76.254016][ T5939] FAT-fs (loop2): Directory bread(block 64) failed
[   76.261148][ T5939] FAT-fs (loop2): Directory bread(block 65) failed
[   76.268539][ T5939] FAT-fs (loop2): Directory bread(block 66) failed
[   76.276782][ T5939] FAT-fs (loop2): Directory bread(block 67) failed
[   76.283507][ T5939] FAT-fs (loop2): Directory bread(block 68) failed
[   76.291160][ T5939] FAT-fs (loop2): Directory bread(block 69) failed
[   76.298133][ T5939] FAT-fs (loop2): Directory bread(block 70) failed
[   76.305659][ T5939] FAT-fs (loop2): Directory bread(block 71) failed
[   76.312402][ T5939] FAT-fs (loop2): Directory bread(block 72) failed
[   76.330486][ T5939] FAT-fs (loop2): Directory bread(block 73) failed
[   76.416399][ T5941] netlink: 80 bytes leftover after parsing attributes in process `syz.1.27'.
[   76.644621][ T5835] gspca_sunplus: reg_w_riv err -71
[   76.649882][ T5835] sunplus: probe of 1-1:0.0 failed with error -71
[   76.662545][ T5946] loop3: detected capacity change from 0 to 256
[   76.667709][ T5835] usb 1-1: USB disconnect, device number 2
[   76.934338][  T788] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   77.127931][  T788] usb 3-1: Using ep0 maxpacket: 16
[   77.162157][  T788] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 8
[   77.189336][  T788] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[   77.212761][  T788] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.231492][  T788] usb 3-1: Product: syz
[   77.236764][  T788] usb 3-1: Manufacturer: syz
[   77.241403][  T788] usb 3-1: SerialNumber: syz
[   77.289496][  T788] usb 3-1: config 0 descriptor??
[   77.307335][  T788] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[   77.339649][  T788] usb 3-1: Detected FT232R
[   77.374178][ T5963] bond_slave_0: entered promiscuous mode
[   77.380095][ T5963] bond_slave_1: entered promiscuous mode
[   77.415022][ T5961] loop3: detected capacity change from 0 to 4096
[   77.460584][ T5961] ntfs: volume version 3.1.
[   77.486581][ T5963] bond_slave_0: left promiscuous mode
[   77.492087][ T5963] bond_slave_1: left promiscuous mode
[   77.529976][  T788] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[   77.799677][  T788] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   78.021494][ T5835] usb 3-1: USB disconnect, device number 2
[   78.058136][ T5835] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   78.111762][ T5835] ftdi_sio 3-1:0.0: device disconnected
[   78.549946][ T5975] loop1: detected capacity change from 0 to 32768
[   78.608021][ T5975] JBD2: Ignoring recovery information on journal
[   78.695380][ T5979] loop3: detected capacity change from 0 to 32768
[   78.750320][ T5975] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   78.752890][ T5987] loop2: detected capacity change from 0 to 2048
[   78.784119][   T42] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   78.827385][ T5979] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   78.840680][ T5979] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   78.973906][   T42] usb 1-1: Using ep0 maxpacket: 32
[   78.981464][   T42] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[   79.010495][   T42] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.024749][ T5979] XFS (loop3): Ending clean mount
[   79.046502][   T42] usb 1-1: config 0 descriptor??
[   79.054421][ T5979] XFS (loop3): Quotacheck needed: Please wait.
[   79.188001][ T5781] ocfs2: Unmounting device (7,1) on (node local)
[   79.196219][ T5979] XFS (loop3): Quotacheck: Done.
[   79.306913][   T42] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[   79.359303][   T42] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   79.387933][   T42] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[   79.430226][   T42] usb 1-1: media controller created
[   79.469861][   T42] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   79.478988][ T5784] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   79.565886][   T42] az6027: usb out operation failed. (-71)
[   79.582718][   T42] az6027: usb out operation failed. (-71)
[   79.623898][   T42] stb0899_attach: Driver disabled by Kconfig
[   79.629939][   T42] az6027: no front-end attached
[   79.629939][   T42] 
[   79.659223][   T42] az6027: usb out operation failed. (-71)
[   79.685979][   T42] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[   79.697576][   T42] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input5
[   79.764475][   T42] dvb-usb: schedule remote query interval to 400 msecs.
[   79.771478][   T42] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[   79.800609][ T6002] loop1: detected capacity change from 0 to 8192
[   79.808055][   T42] usb 1-1: USB disconnect, device number 3
[   79.882752][ T6002] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   79.895396][ T6007] warning: `syz.3.50' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   79.914438][ T6002] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[   79.924300][ T6002] REISERFS (device loop1): using ordered data mode
[   79.969169][   T42] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[   79.985365][ T6002] reiserfs: using flush barriers
[   79.993683][ T6002] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   80.018701][ T6002] REISERFS (device loop1): checking transaction log (loop1)
[   80.177426][ T6002] REISERFS (device loop1): Using tea hash to sort names
[   80.190368][ T6002] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[   80.210106][ T6002] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[   80.377179][ T6012] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   80.772093][ T6021] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   80.901651][ T6029] loop3: detected capacity change from 0 to 1024
[   81.075371][ T6029] hfsplus: xattr searching failed
[   81.104605][   T27] kauditd_printk_skb: 5 callbacks suppressed
[   81.104618][   T27] audit: type=1800 audit(1755710708.797:13): pid=6029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.58" name="file1" dev="loop3" ino=2 res=0 errno=0
[   81.142886][ T6034] loop2: detected capacity change from 0 to 2048
[   81.159635][ T6029] hfsplus: xattr searching failed
[   81.212377][   T27] audit: type=1800 audit(1755710708.867:14): pid=6029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.58" name="file1" dev="loop3" ino=2 res=0 errno=0
[   81.252912][ T6034] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.425874][ T6034] EXT4-fs error (device loop2): ext4_find_extent:936: inode #2: comm syz.2.60: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   81.522563][ T6047] EXT4-fs error (device loop2): ext4_ext_precache:627: inode #2: comm syz.2.60: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   81.552499][ T6034] EXT4-fs (loop2): Remounting filesystem read-only
[   81.561627][ T6047] EXT4-fs (loop2): Remounting filesystem read-only
[   81.655492][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.915761][  T787] cfg80211: failed to load regulatory.db
[   82.013348][ T6064] netlink: 52 bytes leftover after parsing attributes in process `syz.0.72'.
[   82.080938][ T6066] netlink: 27 bytes leftover after parsing attributes in process `syz.3.73'.
[   82.116517][ T6043] loop1: detected capacity change from 0 to 32768
[   82.187613][ T6043] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop1 scanned by syz.1.64 (6043)
[   82.291707][ T6043] BTRFS info (device loop1): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[   82.334414][ T6043] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[   82.343726][ T6043] BTRFS info (device loop1): using free space tree
[   82.511913][ T6094] netlink: 'syz.0.80': attribute type 13 has an invalid length.
[   82.519802][ T6094] netlink: 24859 bytes leftover after parsing attributes in process `syz.0.80'.
[   82.541257][ T6043] BTRFS info (device loop1): enabling ssd optimizations
[   82.584719][ T6043] BTRFS info (device loop1): auto enabling async discard
[   82.912222][ T5781] BTRFS info (device loop1): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[   82.930969][ T6108] input: syz0 as /devices/virtual/input/input6
[   83.170655][ T6114] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[   83.192873][ T6114] macsec1: entered allmulticast mode
[   83.198631][ T6114] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[   83.255526][ T5936] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 9 /dev/loop1 scanned by udevd (5936)
[   83.282720][ T6114] mac80211_hwsim hwsim5 wlan0: left allmulticast mode
[   83.320463][ T6114] mac80211_hwsim hwsim5 wlan0: left promiscuous mode
[   83.871569][ T6134] iommufd_mock iommufd_mock1: Adding to iommu group 0
[   84.037631][ T6136] loop1: detected capacity change from 0 to 256
[   84.097831][ T6136] FAT-fs (loop1): unable to read block(268435456) for building NFS inode
[   84.515213][ T6125] loop2: detected capacity change from 0 to 32768
[   84.561198][ T6125] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   84.571068][ T6125] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   84.578750][ T6132] loop0: detected capacity change from 0 to 32768
[   84.596821][ T6132] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.97 (6132)
[   84.642414][ T6132] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   84.680592][ T6132] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[   84.732026][ T6132] BTRFS info (device loop0): setting nodatacow, compression disabled
[   84.813296][ T6132] BTRFS info (device loop0): max_inline at 0
[   84.834526][ T6132] BTRFS info (device loop0): enabling disk space caching
[   84.841622][ T6132] BTRFS info (device loop0): turning off barriers
[   84.848216][ T6125] XFS (loop2): Ending clean mount
[   84.881583][ T6125] XFS (loop2): Quotacheck needed: Please wait.
[   84.888008][ T6132] BTRFS info (device loop0): turning on flush-on-commit
[   84.914949][ T6132] BTRFS info (device loop0): doing ref verification
[   84.948414][ T6132] BTRFS info (device loop0): force clearing of disk cache
[   84.976365][ T6125] XFS (loop2): Quotacheck: Done.
[   84.994026][ T6132] BTRFS info (device loop0): enabling ssd optimizations
[   85.014039][ T6132] BTRFS info (device loop0): max_inline at 4096
[   85.020360][ T6132] BTRFS info (device loop0): disk space caching is enabled
[   85.126591][ T6144] loop3: detected capacity change from 0 to 32768
[   85.148838][ T6144] XFS: ikeep mount option is deprecated.
[   85.193396][ T6132] BTRFS info (device loop0): auto enabling async discard
[   85.231107][ T6144] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   85.256734][ T6132] BTRFS info (device loop0): rebuilding free space tree
[   85.294691][ T5785] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.369192][ T6132] BTRFS info (device loop0): disabling free space tree
[   85.462628][ T6144] XFS (loop3): Ending clean mount
[   85.468542][ T6156] loop1: detected capacity change from 0 to 32768
[   85.471107][ T6132] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   85.514477][ T6132] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   85.529739][ T6144] XFS (loop3): Quotacheck needed: Please wait.
[   85.545161][ T6156] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[   85.674109][ T6156] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   85.706860][ T6144] XFS (loop3): Quotacheck: Done.
[   85.860780][ T6184] erspan0: entered promiscuous mode
[   85.899355][   T27] audit: type=1800 audit(1755710713.597:15): pid=6185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.97" name="file1" dev="loop0" ino=260 res=0 errno=0
[   86.026049][ T5784] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   86.131976][ T6156] syz.1.105 (6156) used greatest stack depth: 19216 bytes left
[   86.160149][ T5786] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   86.241822][ T5781] ocfs2: Unmounting device (7,1) on (node local)
[   86.593958][ T6196] netlink: 68 bytes leftover after parsing attributes in process `syz.1.111'.
[   86.776742][ T6206] loop2: detected capacity change from 0 to 64
[   87.518145][ T6222] loop2: detected capacity change from 0 to 64
[   87.620494][   T27] audit: type=1800 audit(1755710715.317:16): pid=6222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.123" name="file1" dev="loop2" ino=21 res=0 errno=0
[   87.944210][ T6235] tipc: Started in network mode
[   87.949290][ T6235] tipc: Node identity ac14140f, cluster identity 4711
[   87.967027][ T6235] tipc: New replicast peer: 255.255.255.255
[   87.978670][ T6235] tipc: Enabled bearer <udp:syz2>, priority 10
[   88.219546][ T6246] loop0: detected capacity change from 0 to 16
[   88.253688][ T6246] erofs: (device loop0): mounted with root inode @ nid 36.
[   88.354983][ T6243] loop2: detected capacity change from 0 to 4096
[   88.419932][ T6250] loop3: detected capacity change from 0 to 1024
[   88.450207][ T6243] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[   88.525841][ T6243] ntfs3: loop2: Failed to load $Extend (-22).
[   88.555880][   T27] audit: type=1800 audit(1755710716.257:17): pid=6250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.133" name="file1" dev="loop3" ino=20 res=0 errno=0
[   88.583872][ T6243] ntfs3: loop2: Failed to initialize $Extend.
[   88.783978][   T27] audit: type=1800 audit(1755710716.477:18): pid=6243 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.130" name="bus" dev="loop2" ino=33 res=0 errno=0
[   88.846545][ T6260] loop0: detected capacity change from 0 to 256
[   88.907889][ T6260] FAT-fs (loop0): Directory bread(block 64) failed
[   88.954056][ T6260] FAT-fs (loop0): Directory bread(block 65) failed
[   88.960746][ T6260] FAT-fs (loop0): Directory bread(block 66) failed
[   88.997890][ T6260] FAT-fs (loop0): Directory bread(block 67) failed
[   89.019054][ T6260] FAT-fs (loop0): Directory bread(block 68) failed
[   89.053915][ T6260] FAT-fs (loop0): Directory bread(block 69) failed
[   89.070417][ T6260] FAT-fs (loop0): Directory bread(block 70) failed
[   89.085637][  T788] tipc: Node number set to 2886997007
[   89.113957][ T6260] FAT-fs (loop0): Directory bread(block 71) failed
[   89.124395][ T6260] FAT-fs (loop0): Directory bread(block 72) failed
[   89.134122][ T6260] FAT-fs (loop0): Directory bread(block 73) failed
[   89.703174][ T6262] loop1: detected capacity change from 0 to 32768
[   89.726878][ T6262] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.138 (6262)
[   89.813979][ T6262] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   89.826261][ T6264] loop2: detected capacity change from 0 to 32768
[   89.881747][ T6262] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[   89.918523][ T6262] BTRFS info (device loop1): force clearing of disk cache
[   89.928427][ T6262] BTRFS info (device loop1): enabling auto defrag
[   89.942127][ T6262] BTRFS info (device loop1): max_inline at 0
[   89.974156][ T6262] BTRFS info (device loop1): enabling disk space caching
[   89.974823][ T6276] netlink: 'syz.0.145': attribute type 1 has an invalid length.
[   89.981269][ T6262] BTRFS info (device loop1): disk space caching is enabled
[   90.033931][ T6276] netlink: 20 bytes leftover after parsing attributes in process `syz.0.145'.
[   90.199843][ T6262] BTRFS info (device loop1): enabling ssd optimizations
[   90.218622][ T6262] BTRFS info (device loop1): rebuilding free space tree
[   90.282863][ T6262] BTRFS info (device loop1): disabling free space tree
[   90.314875][ T6262] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   90.339945][ T6262] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   90.607439][ T5781] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   90.983448][ T6274] loop3: detected capacity change from 0 to 32768
[   91.015325][ T6274] XFS: noikeep mount option is deprecated.
[   91.077854][ T6274] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   91.359210][ T6274] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[   91.420588][ T6274] XFS (loop3): Starting recovery (logdev: internal)
[   91.470855][ T6274] XFS (loop3): Ending recovery (logdev: internal)
[   91.627761][ T6274] XFS (loop3): Metadata corruption detected at xfs_btree_lookup_get_block+0x516/0x640, xfs_bnobt block 0x8
[   91.661628][ T6274] XFS (loop3): Unmount and run xfs_repair
[   91.709541][ T5784] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   91.833952][   T23] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   91.919288][ T6313] loop1: detected capacity change from 0 to 40427
[   91.937568][ T6313] F2FS-fs (loop1): Invalid log sectorsize (131081)
[   91.958558][ T6313] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   92.004786][ T6313] F2FS-fs (loop1): invalid crc value
[   92.033915][   T23] usb 3-1: Using ep0 maxpacket: 16
[   92.041601][   T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   92.081512][   T23] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[   92.104510][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.133156][   T23] usb 3-1: config 0 descriptor??
[   92.250996][ T6313] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   92.262925][ T6313] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   92.597239][   T23] mcp2221 0003:04D8:00DD.0001: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[   92.972166][ T6323] loop0: detected capacity change from 0 to 40427
[   92.999587][ T6323] F2FS-fs (loop0): invalid crc value
[   93.009058][ T6323] F2FS-fs (loop0): Found nat_bits in checkpoint
[   93.071266][ T6323] F2FS-fs (loop0): Start checkpoint disabled!
[   93.090282][ T6323] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   93.121960][   T23] usb 3-1: USB disconnect, device number 3
[   93.195569][ T6323] syz.0.154: attempt to access beyond end of device
[   93.195569][ T6323] loop0: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[   93.204262][ T5835] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   93.265793][ T5791] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   93.275001][ T5791] Bluetooth: hci1: Injecting HCI hardware error event
[   93.283757][ T5791] Bluetooth: hci1: hardware error 0x00
[   93.290366][ T3476] kworker/u4:8: attempt to access beyond end of device
[   93.290366][ T3476] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[   93.317440][ T3476] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   93.327413][ T3476] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   93.404401][ T5835] usb 4-1: Using ep0 maxpacket: 16
[   93.411887][ T5835] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   93.429626][ T5835] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   93.453929][ T5835] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   93.463625][ T5835] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[   93.494252][ T5835] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   93.525816][ T5835] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[   93.544438][ T5835] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[   93.552475][ T5835] usb 4-1: Manufacturer: syz
[   93.576020][ T5835] usb 4-1: config 0 descriptor??
[   93.810555][ T6348] loop0: detected capacity change from 0 to 128
[   93.866627][ T6348] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   93.921617][ T6348] ext4 filesystem being mounted at /40/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   93.956154][ T6348] EXT4-fs (loop0): shut down requested (1)
[   93.973967][ T5835] rc_core: IR keymap rc-hauppauge not found
[   93.974008][ T5835] Registered IR keymap rc-empty
[   93.974481][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   93.974603][    T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   94.004348][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.040477][ T5835] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[   94.075585][ T5786] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   94.081525][ T5835] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input7
[   94.107286][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.144355][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.164055][    T9] usb 3-1: Using ep0 maxpacket: 32
[   94.174076][    T9] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[   94.183725][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.207948][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.236725][    T9] usb 3-1: config 0 descriptor??
[   94.245949][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.284136][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.314946][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.355392][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.383986][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.420183][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.474074][ T5835] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   94.484441][    T9] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[   94.512095][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   94.536274][ T5835] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[   94.554800][    T9] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[   94.562027][ T5835] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[   94.570563][    T9] usb 3-1: media controller created
[   94.588936][ T5835] usb 4-1: USB disconnect, device number 3
[   94.643587][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   94.734792][    T9] az6027: usb out operation failed. (-71)
[   94.758390][    T9] az6027: usb out operation failed. (-71)
[   94.777136][    T9] stb0899_attach: Driver disabled by Kconfig
[   94.783203][    T9] az6027: no front-end attached
[   94.783203][    T9] 
[   94.801955][    T9] az6027: usb out operation failed. (-71)
[   94.808351][    T9] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[   94.828115][    T9] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input8
[   94.855013][    T9] dvb-usb: schedule remote query interval to 400 msecs.
[   94.876790][    T9] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[   94.907254][    T9] usb 3-1: USB disconnect, device number 4
[   94.959525][    T9] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[   95.071202][ T6362] loop1: detected capacity change from 0 to 40427
[   95.096860][ T6362] F2FS-fs (loop1): Small segment_count (9 < 1 * 24)
[   95.114181][ T6362] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   95.179121][ T6362] F2FS-fs (loop1): Found nat_bits in checkpoint
[   95.264808][ T6362] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   95.294116][ T6362] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   95.346010][ T5791] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   95.474345][ T5781] syz-executor: attempt to access beyond end of device
[   95.474345][ T5781] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   95.511563][ T5781] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   95.947069][ T6389] loop2: detected capacity change from 0 to 64
[   96.058207][ T6375] loop3: detected capacity change from 0 to 32768
[   96.097956][ T6375] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.171 (6375)
[   96.184728][ T6375] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   96.215501][ T6375] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[   96.264589][ T6375] BTRFS info (device loop3): use zlib compression, level 3
[   96.271863][ T6375] BTRFS info (device loop3): allowing degraded mounts
[   96.310163][ T6375] BTRFS info (device loop3): force zlib compression, level 3
[   96.335501][ T6375] BTRFS info (device loop3): metadata ratio 4
[   96.349874][ T6375] BTRFS info (device loop3): setting nodatacow
[   96.366610][ T6375] BTRFS info (device loop3): force clearing of disk cache
[   96.383961][ T6375] BTRFS info (device loop3): enabling ssd optimizations
[   96.403878][ T6375] BTRFS info (device loop3): using free space tree
[   96.557423][ T6411] netlink: 'syz.2.181': attribute type 29 has an invalid length.
[   96.591979][ T6375] BTRFS info (device loop3): auto enabling async discard
[   96.614295][ T6411] netlink: 'syz.2.181': attribute type 29 has an invalid length.
[   96.644455][ T6375] BTRFS info (device loop3): rebuilding free space tree
[   96.777867][ T6416] binder: 6415:6416 ioctl c0306201 0 returned -14
[   96.873512][ T6387] loop0: detected capacity change from 0 to 40427
[   96.928835][ T6387] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[   96.950181][ T6387] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   97.020438][ T6387] F2FS-fs (loop0): Found nat_bits in checkpoint
[   97.197573][ T6387] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   97.243145][ T6387] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   97.354218][ T5784] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   97.428329][ T6387] F2FS-fs (loop0): Stopped filesystem due to reason: 0
[   97.944726][ T6428] loop3: detected capacity change from 0 to 1024
[   98.003140][ T6424] loop2: detected capacity change from 0 to 32768
[   98.066011][ T6428] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5
[   98.112892][ T6428] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[   98.135449][ T6426] loop1: detected capacity change from 0 to 32768
[   98.158066][ T6428] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.185: Failed to acquire dquot type 0
[   98.160511][ T6424] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   98.212757][ T6428] EXT4-fs error (device loop3): mb_free_blocks:1943: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   98.237661][ T6428] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #13: comm syz.3.185: corrupted inode contents
[   98.267194][ T6426] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   98.283861][ T6428] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #13: comm syz.3.185: mark_inode_dirty error
[   98.315963][ T6428] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #13: comm syz.3.185: corrupted inode contents
[   98.328559][ T6428] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #13: comm syz.3.185: mark_inode_dirty error
[   98.408215][ T6428] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #13: comm syz.3.185: corrupted inode contents
[   98.425725][ T6424] XFS (loop2): Ending clean mount
[   98.450686][ T6424] XFS (loop2): Quotacheck needed: Please wait.
[   98.459192][ T6426] XFS (loop1): Ending clean mount
[   98.522337][ T6428] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   98.537881][ T6424] XFS (loop2): Quotacheck: Done.
[   98.557901][ T6428] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #13: comm syz.3.185: corrupted inode contents
[   98.599762][ T6428] EXT4-fs error (device loop3): ext4_truncate:4288: inode #13: comm syz.3.185: mark_inode_dirty error
[   98.643600][ T6424] XFS (loop2): User initiated shutdown received.
[   98.675411][ T6428] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   98.695289][ T6424] XFS (loop2): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:497).  Shutting down filesystem.
[   98.736219][ T6424] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[   98.749058][ T6428] EXT4-fs (loop3): 1 truncate cleaned up
[   98.765697][ T6428] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.822400][ T5781] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   98.879192][ T6458] loop0: detected capacity change from 0 to 512
[   98.896689][ T5785] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   98.917728][ T6428] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   99.005108][ T6458] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.035008][ T6458] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.164404][ T6458] fs-verity (loop0, inode 15): Unrecognized descriptor size: 0 bytes
[   99.165609][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.375792][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.094095][   T23] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  100.113640][ T6492] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  100.217175][ T6496] loop2: detected capacity change from 0 to 16
[  100.224699][ T6496] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  100.295677][ T6498] Bluetooth: MGMT ver 1.22
[  100.326703][   T23] usb 1-1: config index 0 descriptor too short (expected 156, got 27)
[  100.345585][   T23] usb 1-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  100.373958][   T23] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  100.380467][ T6500] loop3: detected capacity change from 0 to 764
[  100.397277][   T23] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[  100.412886][   T23] usb 1-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  100.458078][   T23] usb 1-1: config 0 interface 0 has no altsetting 0
[  100.495959][   T23] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  100.516949][   T23] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  100.528940][   T23] usb 1-1: Product: syz
[  100.548484][   T23] usb 1-1: Manufacturer: syz
[  100.553141][   T23] usb 1-1: SerialNumber: syz
[  100.605841][   T23] usb 1-1: config 0 descriptor??
[  100.611630][ T6482] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  100.626348][   T23] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  100.676327][   T23] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  100.703284][ T6509] loop3: detected capacity change from 0 to 64
[  100.738660][ T6509] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing
[  100.808236][ T6507] loop2: detected capacity change from 0 to 4096
[  100.830587][ T6507] ntfs: (device loop2): ntfs_read_locked_inode(): Attribute list has non zero lowest_vcn.
[  100.860705][ T6507] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  100.894331][ T6507] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  100.929211][ T6507] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  100.972489][ T6507] ntfs: volume version 3.1.
[  100.977672][ T6507] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[  101.005024][ T6507] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x2, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  101.036465][ T6511] loop1: detected capacity change from 0 to 2048
[  101.045407][ T6507] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[  101.063627][    T9] usb 1-1: USB disconnect, device number 4
[  101.092301][    T9] ldusb 1-1:0.0: LD USB Device #0 now disconnected
[  101.113449][ T6507] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x2, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  101.185751][ T6514] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  101.210417][ T5914] I/O error, dev loop2, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  101.499227][ T6514] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  101.534374][ T6514] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4)
[  101.582190][ T6514] Remounting filesystem read-only
[  101.591905][ T3476] NILFS (loop1): discard dirty page: offset=0, ino=6
[  101.630669][ T3476] NILFS (loop1): discard dirty block: blocknr=35, size=1024
[  101.674017][ T3476] NILFS (loop1): discard dirty block: blocknr=36, size=1024
[  101.681374][ T3476] NILFS (loop1): discard dirty block: blocknr=37, size=1024
[  101.710944][ T3476] NILFS (loop1): discard dirty block: blocknr=38, size=1024
[  101.723880][ T3476] NILFS (loop1): discard dirty page: offset=0, ino=3
[  101.762924][ T3476] NILFS (loop1): discard dirty block: blocknr=42, size=1024
[  101.777467][ T3476] NILFS (loop1): discard dirty block: blocknr=43, size=1024
[  101.817652][ T3476] NILFS (loop1): discard dirty block: blocknr=44, size=1024
[  101.831352][ T3476] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  101.850044][ T3476] NILFS (loop1): discard dirty page: offset=229376, ino=3
[  101.883881][ T3476] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  101.892907][ T3476] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  101.941497][ T3476] NILFS (loop1): discard dirty block: blocknr=50, size=1024
[  101.964181][ T3476] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  101.973334][ T3476] NILFS (loop1): discard dirty page: offset=0, ino=15
[  101.983526][ T3476] NILFS (loop1): discard dirty block: blocknr=0, size=1024
[  101.992342][ T3476] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.001616][ T3476] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.010818][ T3476] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.027978][ T5781] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer
[  102.038940][ T5781] NILFS (loop1): discard dirty page: offset=0, ino=2
[  102.050682][ T5781] NILFS (loop1): discard dirty block: blocknr=18, size=1024
[  102.078288][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.138776][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.166228][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.207705][ T5781] NILFS (loop1): discard dirty page: offset=0, ino=5
[  102.238261][ T5781] NILFS (loop1): discard dirty block: blocknr=41, size=1024
[  102.280296][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.304846][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.334195][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.353152][ T5781] NILFS (loop1): discard dirty page: offset=0, ino=4
[  102.368051][ T5781] NILFS (loop1): discard dirty block: blocknr=40, size=1024
[  102.406207][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.428867][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.439366][ T6548] loop3: detected capacity change from 0 to 1024
[  102.444017][ T5781] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.627407][ T6552] Zero length message leads to an empty skb
[  102.706420][ T6532] loop2: detected capacity change from 0 to 32768
[  102.736369][ T6532] XFS: attr2 mount option is deprecated.
[  102.820151][ T6532] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  103.091209][ T6532] XFS (loop2): Ending clean mount
[  103.129018][ T6532] XFS (loop2): Quotacheck needed: Please wait.
[  103.269446][ T6532] XFS (loop2): Quotacheck: Done.
[  103.416576][   T27] kauditd_printk_skb: 6 callbacks suppressed
[  103.416590][   T27] audit: type=1326 audit(1755710731.117:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  103.423008][ T6581] loop1: detected capacity change from 0 to 1024
[  103.451301][ T6532] XFS (loop2): User initiated shutdown received.
[  103.470296][ T6581] EXT4-fs: inline encryption not supported
[  103.474004][ T6532] XFS (loop2): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:501).  Shutting down filesystem.
[  103.476492][   T27] audit: type=1326 audit(1755710731.117:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  103.514672][ T6581] EXT4-fs: Ignoring removed i_version option
[  103.532151][ T6532] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[  103.541550][ T6581] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  103.607232][   T27] audit: type=1326 audit(1755710731.147:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  103.639238][   T27] audit: type=1326 audit(1755710731.147:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  103.670261][ T6581] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.677731][ T5785] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  103.773706][   T27] audit: type=1326 audit(1755710731.147:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  103.893721][   T27] audit: type=1326 audit(1755710731.147:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  103.948872][   T27] audit: type=1326 audit(1755710731.147:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  103.986518][ T6581] EXT4-fs error (device loop1): mb_free_blocks:1943: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[  104.002388][   T27] audit: type=1326 audit(1755710731.157:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  104.028548][   T27] audit: type=1326 audit(1755710731.157:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  104.059840][   T27] audit: type=1326 audit(1755710731.157:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbff8ebe9 code=0x7ffc0000
[  104.131940][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.301648][ T6598] input: syz0 as /devices/virtual/input/input9
[  104.673101][ T6609] netlink: 8 bytes leftover after parsing attributes in process `syz.0.251'.
[  105.679876][ T6616] loop0: detected capacity change from 0 to 32768
[  105.810203][ T6616] syz.0.254: attempt to access beyond end of device
[  105.810203][ T6616] loop0: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  105.868298][ T6624] loop3: detected capacity change from 0 to 32768
[  105.871019][ T6616] metapage_write_end_io: I/O error
[  105.885204][ T6616] ERROR: (device loop0): diWrite: ixpxd invalid
[  105.885204][ T6616] 
[  105.900395][ T6624] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.257 (6624)
[  105.940304][ T6616] ERROR: (device loop0): remounting filesystem as read-only
[  105.947893][ T6624] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  105.961295][ T6616] ERROR: (device loop0): txCommit: 
[  105.961295][ T6616] 
[  105.970191][ T6624] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  105.987794][ T6616] blkno = 8ed2c, nblocks = 1
[  105.995519][ T6616] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[  105.995519][ T6616] 
[  106.014136][ T6624] BTRFS info (device loop3): turning on sync discard
[  106.030298][ T6624] BTRFS info (device loop3): setting nodatacow, compression disabled
[  106.068762][ T6624] BTRFS info (device loop3): turning off barriers
[  106.085339][ T6624] BTRFS warning (device loop3): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  106.111568][ T6616] ERROR: (device loop0): dbAllocBits: leaf page corrupt
[  106.111568][ T6616] 
[  106.125471][ T6624] BTRFS info (device loop3): trying to use backup root at mount time
[  106.137006][ T6616] syz.0.254: attempt to access beyond end of device
[  106.137006][ T6616] loop0: rw=34817, sector=4683776, nr_sectors = 4 limit=32768
[  106.152639][ T6638] sp0: Synchronizing with TNC
[  106.169717][ T6624] BTRFS info (device loop3): metadata ratio 3
[  106.184773][ T6624] BTRFS info (device loop3): enabling auto defrag
[  106.207288][ T6616] syz.0.254: attempt to access beyond end of device
[  106.207288][ T6616] loop0: rw=34817, sector=4683780, nr_sectors = 2096 limit=32768
[  106.208574][ T6624] BTRFS info (device loop3): doing ref verification
[  106.246184][ T6624] BTRFS info (device loop3): max_inline at 0
[  106.253730][ T6616] syz.0.254: attempt to access beyond end of device
[  106.253730][ T6616] loop0: rw=34817, sector=4685876, nr_sectors = 468 limit=32768
[  106.263673][ T6624] BTRFS info (device loop3): using free space tree
[  106.319241][  T111] blkno = 8ed2c, nblocks = 4
[  106.352730][  T111] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[  106.352730][  T111] 
[  106.415238][  T111] blkno = 8ef00, nblocks = 141
[  106.433913][  T111] ERROR: (device loop0): dbFree: block to be freed is outside the map
[  106.433913][  T111] 
[  106.459838][  T135] BTRFS warning (device loop3): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  106.474723][ T6624] BTRFS error (device loop3): failed to load root extent
[  106.481943][ T6624] BTRFS warning (device loop3): try to load backup roots slot 1
[  106.493394][   T48] BTRFS warning (device loop3): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  106.511524][ T6624] BTRFS warning (device loop3): couldn't read tree root
[  106.520152][ T6624] BTRFS warning (device loop3): try to load backup roots slot 2
[  106.531406][   T41] BTRFS error (device loop3): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  106.564053][ T6624] BTRFS warning (device loop3): couldn't read tree root
[  106.571056][ T6624] BTRFS warning (device loop3): try to load backup roots slot 3
[  106.622251][ T6624] BTRFS info (device loop3): enabling ssd optimizations
[  106.705954][ T6624] BTRFS info (device loop3): rebuilding free space tree
[  106.804358][ T6624] BTRFS info (device loop3): checking UUID tree
[  107.019779][ T5784] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  107.423708][ T6651] loop2: detected capacity change from 0 to 32768
[  107.741150][ T6674] hsr0: entered promiscuous mode
[  107.804252][ T6674] macsec1: entered allmulticast mode
[  107.831042][ T6674] hsr0: entered allmulticast mode
[  107.900363][ T6674] hsr0: left allmulticast mode
[  107.906577][ T6674] hsr0: left promiscuous mode
[  108.648406][ T6688] loop1: detected capacity change from 0 to 4096
[  108.669635][ T6688] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  108.746289][ T6681] loop3: detected capacity change from 0 to 32768
[  108.824048][ T5835] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  108.918214][ T5914] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by udevd (5914)
[  109.036524][ T5835] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  109.064332][ T5835] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  109.084261][ T5835] usb 1-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  109.104803][ T5835] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.125612][ T5835] usb 1-1: config 0 descriptor??
[  109.341848][ T6685] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  109.494785][ T5826] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  109.572047][ T5835] playstation 0003:054C:0DF2.0002: unknown main item tag 0x0
[  109.591516][ T5835] playstation 0003:054C:0DF2.0002: unknown main item tag 0x0
[  109.599487][ T5835] playstation 0003:054C:0DF2.0002: unknown main item tag 0x0
[  109.627162][ T5835] playstation 0003:054C:0DF2.0002: unknown main item tag 0x0
[  109.642046][ T5835] playstation 0003:054C:0DF2.0002: unknown main item tag 0x0
[  109.670328][ T5835] playstation 0003:054C:0DF2.0002: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.0-1/input0
[  109.723937][ T5826] usb 4-1: Using ep0 maxpacket: 16
[  109.772155][ T5826] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  109.794620][ T5826] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.800989][ T6713] netlink: 156 bytes leftover after parsing attributes in process `syz.2.287'.
[  109.804667][ T5826] usb 4-1: Product: syz
[  109.833583][ T6713] netlink: 24 bytes leftover after parsing attributes in process `syz.2.287'.
[  109.842980][ T5826] usb 4-1: Manufacturer: syz
[  109.843001][ T5826] usb 4-1: SerialNumber: syz
[  109.874219][ T5826] r8152-cfgselector 4-1: config 0 descriptor??
[  109.983041][ T5835] playstation 0003:054C:0DF2.0002: Failed to retrieve feature with reportID 32: -71
[  110.003903][ T5835] playstation 0003:054C:0DF2.0002: Failed to retrieve DualSense firmware info: -71
[  110.024528][ T5835] playstation 0003:054C:0DF2.0002: Failed to get firmware info from DualSense
[  110.033486][ T5835] playstation 0003:054C:0DF2.0002: Failed to create dualsense.
[  110.057989][ T5835] playstation: probe of 0003:054C:0DF2.0002 failed with error -71
[  110.077941][ T5835] usb 1-1: USB disconnect, device number 5
[  110.305575][ T5826] r8152-cfgselector 4-1: Unknown version 0x0000
[  110.323344][ T5826] r8152-cfgselector 4-1: USB disconnect, device number 4
[  110.410422][ T6724] loop1: detected capacity change from 0 to 512
[  110.438438][ T6724] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  110.466242][ T6724] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  110.499729][ T6724] EXT4-fs (loop1): 1 truncate cleaned up
[  110.507420][ T6724] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.600382][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.797697][   T48] kworker/u4:3: attempt to access beyond end of device
[  110.797697][   T48] loop0: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  110.818669][   T48] metapage_write_end_io: I/O error
[  110.825644][   T48] JFS: metapage_get_blocks failed
[  111.023925][ T5835] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  111.216830][ T6745] loop2: detected capacity change from 0 to 8192
[  111.228095][ T5835] usb 1-1: Using ep0 maxpacket: 16
[  111.261466][ T5835] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  111.288896][ T5835] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  111.322566][ T5835] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  111.337741][ T5835] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  111.353611][ T5835] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  111.402958][ T5835] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  111.420222][ T5835] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  111.437700][ T5835] usb 1-1: Manufacturer: syz
[  111.461122][ T5835] usb 1-1: config 0 descriptor??
[  111.793970][ T5835] rc_core: IR keymap rc-hauppauge not found
[  111.802214][ T5835] Registered IR keymap rc-empty
[  111.818530][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  111.884506][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  111.925285][ T5835] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  111.976411][ T5835] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input10
[  112.025054][ T6760] loop3: detected capacity change from 0 to 1024
[  112.035069][ T6761] program syz.1.306 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  112.067176][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.134360][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.183724][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.235547][ T3476] hfsplus: b-tree write err: -5, ino 4
[  112.235965][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.289496][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.334018][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.374103][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.413937][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.454396][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.493982][ T5835] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  112.539135][ T5835] mceusb 1-1:0.0: Registered  with mce emulator interface version 1
[  112.556126][ T5835] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  112.584097][ T5835] usb 1-1: USB disconnect, device number 6
[  112.595617][ T6757] loop2: detected capacity change from 0 to 40427
[  112.613585][ T6757] F2FS-fs (loop2): Wrong segment_count / block_count (31 > 0)
[  112.629449][ T6757] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  112.687882][ T6757] F2FS-fs (loop2): invalid crc value
[  112.708919][ T6757] F2FS-fs (loop2): Found nat_bits in checkpoint
[  112.851982][ T6757] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  112.859329][ T6757] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  112.985075][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  112.985088][   T27] audit: type=1800 audit(1755710740.687:31): pid=6757 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.305" name="file1" dev="loop2" ino=10 res=0 errno=0
[  112.997608][ T6757] syz.2.305: attempt to access beyond end of device
[  112.997608][ T6757] loop2: rw=34817, sector=77824, nr_sectors = 8 limit=40427
[  113.036066][ T6771] loop3: detected capacity change from 0 to 32768
[  113.106573][   T27] audit: type=1800 audit(1755710740.807:32): pid=6771 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.311" name="bus" dev="loop3" ino=7 res=0 errno=0
[  113.255824][ T5785] syz-executor: attempt to access beyond end of device
[  113.255824][ T5785] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  113.313977][ T5785] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  113.338343][ T5835] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  113.381182][ T5835] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  113.626227][ T6783] loop1: detected capacity change from 0 to 64
[  113.713146][   T27] audit: type=1800 audit(1755710741.407:33): pid=6783 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.316" name="file2" dev="loop1" ino=21 res=0 errno=0
[  113.745317][ T6783] hfs: request for non-existent node 131072 in B*Tree
[  113.752621][ T6783] hfs: request for non-existent node 131072 in B*Tree
[  114.638456][ T6806] netlink: 8 bytes leftover after parsing attributes in process `syz.3.326'.
[  114.862052][ T6809] loop1: detected capacity change from 0 to 4096
[  114.876409][ T6809] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  115.106937][ T5952] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  115.213469][ T6796] loop2: detected capacity change from 0 to 40427
[  115.289508][ T6796] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[  115.326513][ T6796] F2FS-fs (loop2): Image doesn't support compression
[  115.327120][ T5952] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  115.346624][ T6796] F2FS-fs (loop2): Image doesn't support compression
[  115.361212][ T6796] F2FS-fs (loop2): invalid crc value
[  115.365599][ T5952] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  115.392215][ T6796] F2FS-fs (loop2): Found nat_bits in checkpoint
[  115.415651][ T5952] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  115.444256][ T5952] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  115.452304][ T5952] usb 4-1: SerialNumber: syz
[  115.503051][ T6796] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  115.714407][ T5952] usb 4-1: 0:2 : does not exist
[  115.759920][ T5785] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0
[  115.786762][ T5952] usb 4-1: USB disconnect, device number 5
[  115.805100][ T5785] F2FS-fs (loop2): invalid blkaddr: 1535, type: 10, run fsck to fix.
[  115.884689][ T6828] netlink: 28 bytes leftover after parsing attributes in process `syz.1.335'.
[  115.921091][ T5936] udevd[5936]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  116.797581][ T6852] loop1: detected capacity change from 0 to 2048
[  116.856071][ T6852] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  116.874092][   T23] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  116.897107][ T5936] udevd[5936]: incorrect nilfs2 checksum on /dev/loop1
[  116.929564][ T6854] loop3: detected capacity change from 0 to 4096
[  116.954381][ T6857] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  117.104088][   T23] usb 3-1: Using ep0 maxpacket: 8
[  117.130071][   T23] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  117.153216][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.227635][   T23] pvrusb2: Hardware description: Terratec Grabster AV400
[  117.241012][   T23] pvrusb2: **********
[  117.260259][   T23] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  117.302596][   T23] pvrusb2: Important functionality might not be entirely working.
[  117.361543][   T23] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  117.383867][   T23] pvrusb2: **********
[  117.385448][ T6863] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  117.463018][ T2316] pvrusb2: Invalid write control endpoint
[  117.599716][ T2316] pvrusb2: Invalid write control endpoint
[  117.635069][ T2316] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  117.695024][ T2316] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  117.702628][ T2316] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  117.742698][   T42] usb 3-1: USB disconnect, device number 5
[  117.763060][ T2316] pvrusb2: Device being rendered inoperable
[  117.788043][ T2316] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  117.804447][ T2316] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  117.830351][ T2316] pvrusb2: Attached sub-driver cx25840
[  117.847636][ T2316] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  117.862250][ T2316] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  118.428076][ T6894] loop1: detected capacity change from 0 to 2048
[  118.492524][ T6894] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.544994][ T6894] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  118.591192][ T6894] overlayfs: failed to create directory ./file0/work (errno: 28); mounting read-only
[  118.633948][  T788] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  118.733236][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.824496][  T788] usb 1-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  118.842880][  T788] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.885638][  T788] usb 1-1: config 0 descriptor??
[  118.902645][  T788] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  118.949629][ T6905] misc userio: Begin command sent, but we're already running
[  119.040341][   T27] audit: type=1326 audit(1755710746.737:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.1.370" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36b858ebe9 code=0x0
[  119.059195][ T6890] loop3: detected capacity change from 0 to 40427
[  119.074512][ T6890] F2FS-fs (loop3): invalid crc value
[  119.084015][ T6890] F2FS-fs (loop3): Found nat_bits in checkpoint
[  119.167790][ T6890] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  119.278474][ T5784] syz-executor: attempt to access beyond end of device
[  119.278474][ T5784] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  119.304554][ T5784] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  119.525488][  T788] gspca_stv06xx: vv6410 sensor detected
[  119.800744][  T788] STV06xx: probe of 1-1:0.0 failed with error -71
[  119.848053][  T788] usb 1-1: USB disconnect, device number 7
[  120.178594][ T6935] loop2: detected capacity change from 0 to 512
[  120.209260][ T6935] EXT4-fs: Ignoring removed orlov option
[  120.238824][ T6935] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  120.270796][ T6935] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  120.304184][ T6935] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.381: corrupted in-inode xattr: e_value size too large
[  120.398033][ T6935] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.381: couldn't read orphan inode 15 (err -117)
[  120.460261][ T6935] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.619879][ T6945] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  120.669587][ T6945] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.680094][ T6945] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.683341][ T6949] mmap: syz.1.384 (6949) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  120.720794][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.914011][   T42] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  121.150369][   T42] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  121.169370][   T42] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  121.194391][   T42] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  121.212374][   T42] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[  121.224443][   T42] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  121.243702][   T42] usb 4-1: config 0 interface 0 has no altsetting 0
[  121.254707][   T42] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  121.269718][   T42] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  121.287985][   T42] usb 4-1: Product: syz
[  121.302538][   T42] usb 4-1: Manufacturer: syz
[  121.311460][   T42] usb 4-1: SerialNumber: syz
[  121.331349][   T42] usb 4-1: config 0 descriptor??
[  121.336486][ T5952] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  121.355861][ T6947] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  121.365435][   T42] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  121.387760][   T42] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  121.528798][ T5952] usb 3-1: Using ep0 maxpacket: 16
[  121.536267][ T5952] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  121.554112][ T5952] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  121.569929][ T5952] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  121.590161][ T5952] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  121.610147][ T5952] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  121.659865][ T5952] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  121.682909][ T5952] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  121.703213][   T42] usb 4-1: USB disconnect, device number 6
[  121.715755][   T42] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  121.722380][ T5952] usb 3-1: Manufacturer: syz
[  121.736218][ T5952] usb 3-1: config 0 descriptor??
[  122.094124][ T5952] rc_core: IR keymap rc-hauppauge not found
[  122.101056][ T5952] Registered IR keymap rc-empty
[  122.119030][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.176603][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.180443][ T6984] netlink: 312 bytes leftover after parsing attributes in process `syz.1.401'.
[  122.225071][ T5952] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  122.285590][ T5952] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input12
[  122.337215][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.396237][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.447088][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.504971][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.563955][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.608504][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.654846][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.698809][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.745543][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.793916][ T5952] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.845474][ T5952] mceusb 3-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  122.874853][ T5952] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  122.883865][   T23] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  122.923693][ T5952] usb 3-1: USB disconnect, device number 6
[  123.101054][   T23] usb 4-1: Using ep0 maxpacket: 8
[  123.115503][   T23] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  123.135266][   T23] usb 4-1: config 179 has no interface number 0
[  123.141612][   T23] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  123.154502][   T23] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  123.162022][ T7009] netlink: 28 bytes leftover after parsing attributes in process `syz.1.412'.
[  123.167137][   T23] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  123.187336][   T23] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  123.199422][   T23] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  123.213508][   T23] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  123.253833][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.282360][ T6995] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  123.696997][   T23] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input13
[  123.730269][  T788] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  123.805345][ T7020] netlink: 'syz.1.417': attribute type 9 has an invalid length.
[  123.821540][ T7020] netlink: 154020 bytes leftover after parsing attributes in process `syz.1.417'.
[  123.945520][  T788] usb 3-1: Using ep0 maxpacket: 16
[  123.970972][  T788] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  124.015633][  T788] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.050373][  T788] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  124.080353][   T23] usb 4-1: USB disconnect, device number 7
[  124.080411][    C1] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  124.094044][  T788] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  124.094661][    C1] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  124.113451][  T788] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.126443][   T23] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  124.188614][  T788] usb 3-1: config 0 descriptor??
[  124.646178][  T788] microsoft 0003:045E:07DA.0004: No inputs registered, leaving
[  124.699869][  T788] microsoft 0003:045E:07DA.0004: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  124.732606][  T788] microsoft 0003:045E:07DA.0004: no inputs found
[  124.766953][  T788] microsoft 0003:045E:07DA.0004: could not initialize ff, continuing anyway
[  124.921432][ T5952] usb 3-1: USB disconnect, device number 7
[  125.786960][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  126.097253][ T7093] loop3: detected capacity change from 0 to 64
[  126.101000][ T7090] loop1: detected capacity change from 0 to 2048
[  126.147430][ T7090] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  127.073601][ T7119] netlink: 44 bytes leftover after parsing attributes in process `syz.1.461'.
[  127.959546][ T7142] netlink: 16 bytes leftover after parsing attributes in process `syz.2.469'.
[  128.057787][ T7144] netlink: 4 bytes leftover after parsing attributes in process `syz.1.470'.
[  128.563934][ T5835] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  128.764249][ T5835] usb 3-1: Using ep0 maxpacket: 32
[  128.781412][ T5835] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  128.804602][ T5835] usb 3-1: config 0 has no interface number 0
[  128.818425][ T5835] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.831838][ T5835] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.841778][ T5835] usb 3-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  128.851274][ T5835] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.869174][ T5835] usb 3-1: config 0 descriptor??
[  129.063875][   T23] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  129.256968][   T23] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  129.289545][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  129.313943][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 65535, setting to 64
[  129.332354][   T23] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  129.355995][   T23] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  129.373266][   T23] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  129.391106][   T23] usb 4-1: Manufacturer: syz
[  129.408960][   T23] usb 4-1: config 0 descriptor??
[  129.493997][ T5835] uclogic 0003:28BD:0094.0005: pen parameters not found
[  129.515940][ T5835] uclogic 0003:28BD:0094.0005: interface is invalid, ignoring
[  129.758898][   T23] rc_core: IR keymap rc-hauppauge not found
[  129.764201][ T5835] usb 3-1: USB disconnect, device number 8
[  129.773858][   T23] Registered IR keymap rc-empty
[  129.799376][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  129.807441][ T7191] kernel read not supported for file /file1 (pid: 7191 comm: syz.1.490)
[  129.841348][   T27] audit: type=1800 audit(1755710757.537:35): pid=7191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.490" name="file1" dev="mqueue" ino=11588 res=0 errno=0
[  129.864594][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  129.896987][   T23] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  129.933672][   T23] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input15
[  129.972141][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.014612][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.031681][ T7198] syzkaller0: tun_chr_ioctl cmd 1074025677
[  130.038658][ T7198] syzkaller0: linktype set to 778
[  130.064540][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.124530][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.183748][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.225323][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.293646][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.324724][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.354281][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.412233][   T23] mceusb 4-1:0.0: Error: mce write urb status = -71
[  130.455613][   T23] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  130.474433][   T23] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  130.509670][   T23] usb 4-1: USB disconnect, device number 8
[  130.578544][ T7211] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  130.578544][ T7211] The task syz.1.497 (7211) triggered the difference, watch for misbehavior.
[  130.610594][ T7212] loop2: detected capacity change from 0 to 164
[  130.652092][ T7212] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  130.692870][ T7212] process 'syz.2.499' launched './file2' with NULL argv: empty string added
[  130.717969][ T7212] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  131.374715][ T7225] capability: warning: `syz.0.504' uses 32-bit capabilities (legacy support in use)
[  132.003279][ T7220] loop3: detected capacity change from 0 to 40427
[  132.053177][ T7220] F2FS-fs (loop3): Found nat_bits in checkpoint
[  132.164648][ T7220] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  132.385705][ T5784] syz-executor: attempt to access beyond end of device
[  132.385705][ T5784] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  132.440107][ T5784] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  133.112557][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  133.119057][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  133.252606][ T7281] netlink: 12 bytes leftover after parsing attributes in process `syz.3.521'.
[  133.261581][ T7267] loop2: detected capacity change from 0 to 32768
[  133.274224][ T5952] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  133.474177][ T5952] usb 2-1: Using ep0 maxpacket: 8
[  133.487360][ T5952] usb 2-1: unable to get BOS descriptor or descriptor too short
[  133.501592][ T5952] usb 2-1: too many configurations: 73, using maximum allowed: 8
[  133.518913][ T5952] usb 2-1: unable to read config index 0 descriptor/start: -71
[  133.527207][ T5952] usb 2-1: can't read configurations, error -71
[  134.323953][ T7300] netlink: 'syz.1.538': attribute type 21 has an invalid length.
[  134.372917][ T7300] netlink: 156 bytes leftover after parsing attributes in process `syz.1.538'.
[  134.407689][ T7303] netlink: 'syz.1.538': attribute type 21 has an invalid length.
[  134.436758][ T7303] netlink: 156 bytes leftover after parsing attributes in process `syz.1.538'.
[  134.563888][  T788] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  134.754045][  T788] usb 1-1: Using ep0 maxpacket: 32
[  134.769500][  T788] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  134.784576][  T788] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  134.817710][  T788] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  134.829407][  T788] usb 1-1: config 1 has no interface number 0
[  134.837732][  T788] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  134.856544][  T788] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  134.871133][  T788] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  134.885946][  T788] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.942648][  T788] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  134.994946][ T7326] 9p: Unknown access argument 18446744073709551615: -34
[  135.170713][  T788] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  135.668135][ T5952] usb 1-1: USB disconnect, device number 8
[  135.692476][ T5952] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  135.815723][ T7334] loop1: detected capacity change from 0 to 32768
[  135.871130][ T7334] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  135.896040][ T7334] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  135.915537][ T7334] BTRFS info (device loop1): using free space tree
[  136.075083][ T3504] JFS: metapage_get_blocks failed
[  136.108818][ T7334] BTRFS info (device loop1): enabling ssd optimizations
[  136.127505][ T7334] BTRFS info (device loop1): auto enabling async discard
[  136.410136][ T5781] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  137.133921][  T787] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  137.314093][  T787] usb 2-1: Using ep0 maxpacket: 16
[  137.324463][  T787] usb 2-1: config 0 has an invalid interface number: 251 but max is 0
[  137.338407][  T787] usb 2-1: config 0 has no interface number 0
[  137.356274][  T787] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  137.381549][  T787] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  137.406278][  T787] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  137.421224][  T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.429956][  T787] usb 2-1: Product: syz
[  137.434321][  T787] usb 2-1: Manufacturer: syz
[  137.438944][  T787] usb 2-1: SerialNumber: syz
[  137.450531][  T787] usb 2-1: config 0 descriptor??
[  137.457313][ T7396] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  137.473637][ T7396] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  137.649203][   T27] audit: type=1326 audit(1755710765.337:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  137.691640][   T27] audit: type=1326 audit(1755710765.337:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  137.722351][   T27] audit: type=1326 audit(1755710765.347:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  137.751460][   T27] audit: type=1326 audit(1755710765.347:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  137.774875][ T7396] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  137.782180][ T7396] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  137.797690][   T27] audit: type=1326 audit(1755710765.347:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  137.821595][   T27] audit: type=1326 audit(1755710765.347:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  137.846259][   T27] audit: type=1326 audit(1755710765.367:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  137.927773][   T27] audit: type=1326 audit(1755710765.377:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  137.959292][   T27] audit: type=1326 audit(1755710765.417:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  138.023603][   T27] audit: type=1326 audit(1755710765.417:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.2.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16bd18ebe9 code=0x7ffc0000
[  138.453996][   T42] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  138.461767][  T787] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  138.482356][  T787] asix 2-1:0.251 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  138.514203][  T787] asix: probe of 2-1:0.251 failed with error -71
[  138.549670][  T787] usb 2-1: USB disconnect, device number 4
[  138.683993][   T42] usb 3-1: Using ep0 maxpacket: 32
[  138.700748][ T5159] udevd[5159]: worker [5914] terminated by signal 33 (Unknown signal 33)
[  138.711609][   T42] usb 3-1: unable to get BOS descriptor or descriptor too short
[  138.721323][   T42] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  138.727521][ T5159] udevd[5159]: worker [5914] failed while handling '/devices/virtual/block/loop0'
[  138.754657][   T42] usb 3-1: New USB device found, idVendor=17ef, idProduct=7000, bcdDevice=a1.ec
[  138.774585][   T42] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.782629][   T42] usb 3-1: Product: syz
[  138.805724][   T42] usb 3-1: Manufacturer: syz
[  138.810512][   T42] usb 3-1: SerialNumber: syz
[  138.835021][   T42] usb 3-1: config 0 descriptor??
[  139.114780][  T787] usb 3-1: USB disconnect, device number 9
[  139.296898][ T7443] loop3: detected capacity change from 0 to 32768
[  139.495703][ T7459] loop3: detected capacity change from 0 to 256
[  139.817027][ T5159] udevd[5159]: worker [5936] terminated by signal 33 (Unknown signal 33)
[  139.851549][ T7469] Non-string source
[  140.212613][ T7484] vxcan1: tx address claim with dest, not broadcast
[  141.021559][ T7518] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  141.186161][  T135] JFS: metapage_get_blocks failed
[  141.482911][ T7538] program syz.2.638 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  141.653999][  T788] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  141.843983][  T788] usb 4-1: Using ep0 maxpacket: 8
[  141.862782][  T788] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  141.882303][  T788] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  141.909747][  T788] pvrusb2: Hardware description: Terratec Grabster AV400
[  141.933885][  T788] pvrusb2: **********
[  141.937930][  T788] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  141.953911][  T788] pvrusb2: Important functionality might not be entirely working.
[  141.973907][  T788] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  142.004132][  T788] pvrusb2: **********
[  142.134124][ T2316] pvrusb2: Invalid write control endpoint
[  142.204081][   T42] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  142.237730][ T2316] pvrusb2: Invalid write control endpoint
[  142.241226][ T7548] loop1: detected capacity change from 0 to 32768
[  142.243490][ T2316] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  142.243530][ T2316] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  142.252646][ T7548] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.642 (7548)
[  142.260901][ T2316] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  142.299583][ T2316] pvrusb2: Device being rendered inoperable
[  142.305854][ T2316] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  142.313082][ T7548] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  142.313483][ T2316] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  142.333592][ T7548] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  142.353020][ T7533] pvrusb2: Attempted to execute control transfer when device not ok
[  142.353048][ T7548] BTRFS info (device loop1): turning on flush-on-commit
[  142.353066][ T7548] BTRFS info (device loop1): using free space tree
[  142.382268][ T2316] pvrusb2: Attached sub-driver cx25840
[  142.387977][ T2316] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  142.405666][   T42] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  142.414380][   T42] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  142.427899][   T42] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  142.437194][ T2316] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  142.440466][   T23] usb 4-1: USB disconnect, device number 9
[  142.461273][ T7548] BTRFS info (device loop1): enabling ssd optimizations
[  142.479792][ T7548] BTRFS info (device loop1): auto enabling async discard
[  142.487146][   T42] usb 1-1: config 220 has no interface number 2
[  142.493584][   T42] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  142.520629][   T42] usb 1-1: config 220 interface 0 has no altsetting 0
[  142.531012][   T42] usb 1-1: config 220 interface 76 has no altsetting 0
[  142.547226][   T42] usb 1-1: config 220 interface 1 has no altsetting 0
[  142.557110][   T42] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  142.565920][ T7579] loop2: detected capacity change from 0 to 256
[  142.577806][   T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.591267][   T42] usb 1-1: Product: syz
[  142.596577][   T42] usb 1-1: Manufacturer: syz
[  142.606694][   T42] usb 1-1: SerialNumber: syz
[  142.646342][ T5781] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  142.852881][   T42] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[  142.862771][   T42] usb 1-1: No valid video chain found.
[  142.886955][   T42] usb 1-1: selecting invalid altsetting 0
[  142.917454][   T42] usb 1-1: selecting invalid altsetting 0
[  142.942409][   T42] usbtest: probe of 1-1:220.1 failed with error -22
[  142.966852][   T42] usb 1-1: USB disconnect, device number 9
[  143.794050][  T788] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[  143.976910][  T788] usb 1-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[  143.997126][  T788] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.016343][  T788] usb 1-1: config 0 descriptor??
[  144.045903][  T788] pwc: Samsung MPC-C10 USB webcam detected.
[  144.106206][ T7617] macsec1: entered allmulticast mode
[  144.123965][ T7617] macvlan0: entered allmulticast mode
[  144.129570][ T7617] veth1_vlan: entered allmulticast mode
[  144.140437][ T7617] macvlan0: left allmulticast mode
[  144.150873][ T7617] veth1_vlan: left allmulticast mode
[  144.231033][  T788] pwc: send_video_command error -71
[  144.246826][  T788] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  144.265103][ T7618] loop3: detected capacity change from 0 to 8192
[  144.275512][  T788] Philips webcam: probe of 1-1:0.0 failed with error -71
[  144.284561][  T788] usb 1-1: USB disconnect, device number 10
[  144.430788][ T7622] loop1: detected capacity change from 0 to 2048
[  144.479453][ T7622] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.536182][ T7631] loop3: detected capacity change from 0 to 256
[  144.539362][   T48] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  144.544490][ T7631] exfat: Deprecated parameter 'namecase'
[  144.565868][   T48] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[  144.576128][ T7631] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  144.582893][   T48] EXT4-fs (loop1): This should not happen!! Data will be lost
[  144.582893][   T48] 
[  144.603092][   T48] EXT4-fs (loop1): Total free blocks count 0
[  144.609215][   T48] EXT4-fs (loop1): Free/Dirty block details
[  144.616525][   T48] EXT4-fs (loop1): free_blocks=2415919104
[  144.623006][   T48] EXT4-fs (loop1): dirty_blocks=16
[  144.628354][   T48] EXT4-fs (loop1): Block reservation details
[  144.637706][   T48] EXT4-fs (loop1): i_reserved_data_blocks=1
[  144.675657][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.748256][   T42] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  144.841705][ T7635] loop1: detected capacity change from 0 to 4096
[  144.865469][  T788] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  144.943991][   T42] usb 3-1: Using ep0 maxpacket: 8
[  144.965033][   T42] usb 3-1: config index 0 descriptor too short (expected 30, got 18)
[  144.991072][   T42] usb 3-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  145.003922][   T42] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.022813][   T42] usb 3-1: Product: syz
[  145.030513][   T42] usb 3-1: Manufacturer: syz
[  145.036159][   T42] usb 3-1: SerialNumber: syz
[  145.043253][   T42] usb 3-1: config 0 descriptor??
[  145.052173][   T42] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  145.057406][  T788] usb 1-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[  145.060518][   T42] usb 3-1: setting power ON
[  145.078401][   T42] dvb-usb: bulk message failed: -22 (2/0)
[  145.085768][  T788] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.091897][   T42] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  145.114478][ T7643] /dev/loop0: Can't open blockdev
[  145.121253][  T788] usb 1-1: config 0 descriptor??
[  145.130646][   T42] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  145.137954][  T788] pwc: Samsung MPC-C10 USB webcam detected.
[  145.151134][   T42] usb 3-1: media controller created
[  145.213633][   T42] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  145.239242][   T42] usb 3-1: selecting invalid altsetting 6
[  145.246801][   T42] usb 3-1: digital interface selection failed (-22)
[  145.263043][   T42] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  145.271950][ T7629] dvb-usb: bulk message failed: -22 (3/0)
[  145.283899][ T7629] dvb-usb: bulk message failed: -22 (37/0)
[  145.294746][   T42] usb 3-1: setting power OFF
[  145.299982][   T42] dvb-usb: bulk message failed: -22 (2/0)
[  145.319917][ T7629] dvb-usb: bulk message failed: -22 (3/0)
[  145.325858][   T42] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  145.343908][ T7629] dvb-usb: bulk message failed: -22 (3/0)
[  145.353809][   T42] (NULL device *): no alternate interface
[  145.398385][   T42] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  145.434819][   T42] usb 3-1: USB disconnect, device number 10
[  145.480366][ T7650] loop3: detected capacity change from 0 to 64
[  145.546720][  T788] pwc: recv_control_msg error -71 req 02 val 2b00
[  145.555659][  T788] pwc: recv_control_msg error -71 req 02 val 2700
[  145.573625][  T788] pwc: recv_control_msg error -71 req 04 val 1700
[  145.594225][  T788] pwc: recv_control_msg error -71 req 02 val 2c00
[  145.601252][  T788] pwc: recv_control_msg error -71 req 04 val 1000
[  145.611048][  T788] pwc: recv_control_msg error -71 req 04 val 1300
[  145.624287][  T788] pwc: recv_control_msg error -71 req 04 val 1400
[  145.634012][  T788] pwc: recv_control_msg error -71 req 02 val 2000
[  145.648821][  T788] pwc: recv_control_msg error -71 req 02 val 2100
[  145.657961][  T788] pwc: recv_control_msg error -71 req 02 val 2200
[  145.674476][  T788] pwc: recv_control_msg error -71 req 06 val 0600
[  145.681455][  T788] pwc: recv_control_msg error -71 req 04 val 1500
[  145.701348][  T788] pwc: recv_control_msg error -71 req 02 val 2500
[  145.711833][  T788] pwc: recv_control_msg error -71 req 02 val 2400
[  145.727160][  T788] pwc: recv_control_msg error -71 req 02 val 2600
[  145.734394][  T788] pwc: recv_control_msg error -71 req 02 val 2900
[  145.747436][  T788] pwc: recv_control_msg error -71 req 02 val 2800
[  145.755177][  T788] pwc: recv_control_msg error -71 req 04 val 1100
[  145.762060][  T788] pwc: recv_control_msg error -71 req 04 val 1200
[  145.772368][  T788] pwc: Registered as video103.
[  145.778031][  T788] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input16
[  145.792508][  T788] usb 1-1: USB disconnect, device number 11
[  146.013112][ T7667] loop2: detected capacity change from 0 to 24
[  146.229744][   T41] JFS: metapage_get_blocks failed
[  146.854808][   T27] kauditd_printk_skb: 66 callbacks suppressed
[  146.854821][   T27] audit: type=1326 audit(1755710774.557:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b858ebe9 code=0x7ffc0000
[  146.929943][   T27] audit: type=1326 audit(1755710774.587:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b858ebe9 code=0x7ffc0000
[  146.989245][   T27] audit: type=1326 audit(1755710774.587:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f36b858ebe9 code=0x7ffc0000
[  147.030796][ T7700] loop1: detected capacity change from 0 to 4096
[  147.037503][   T27] audit: type=1326 audit(1755710774.587:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f36b858ec23 code=0x7ffc0000
[  147.062381][ T7700] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  147.084845][   T27] audit: type=1326 audit(1755710774.657:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f36b858d69f code=0x7ffc0000
[  147.107423][   T27] audit: type=1326 audit(1755710774.727:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f36b858ec77 code=0x7ffc0000
[  147.130401][   T27] audit: type=1326 audit(1755710774.727:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f36b858d550 code=0x7ffc0000
[  147.216589][ T7700] ntfs: volume version 3.1.
[  147.247396][   T27] audit: type=1326 audit(1755710774.727:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f36b858e7eb code=0x7ffc0000
[  147.278945][   T27] audit: type=1326 audit(1755710774.757:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f36b858d84a code=0x7ffc0000
[  147.331611][ T7691] loop2: detected capacity change from 0 to 32768
[  147.423910][ T7691] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  147.505870][ T7716] netlink: 8 bytes leftover after parsing attributes in process `syz.3.709'.
[  147.528026][ T7691] OCFS2: ERROR (device loop2): int ocfs2_xattr_get_clusters(struct inode *, u32, u32 *, u32 *, struct ocfs2_extent_list *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) in xattr
[  147.550464][ T7691] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  147.566605][ T7716] netlink: 'syz.3.709': attribute type 2 has an invalid length.
[  147.573980][ T7691] OCFS2: File system is now read-only.
[  147.579865][ T7691] (syz.2.699,7691,0):__ocfs2_xattr_set_value_outside:1373 ERROR: status = -30
[  147.613947][ T7691] (syz.2.699,7691,0):ocfs2_xa_set:2260 ERROR: status = -30
[  147.705573][ T5785] ocfs2: Unmounting device (7,2) on (node local)
[  147.794565][ T7729] input: syz0 as /devices/virtual/input/input17
[  147.966898][ T7733] loop1: detected capacity change from 0 to 1024
[  148.015018][ T7733] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.071432][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.491612][ T7758] macsec2: entered allmulticast mode
[  148.514369][ T7758] macvlan0: entered allmulticast mode
[  148.530216][ T7758] veth1_vlan: entered allmulticast mode
[  148.545486][ T7758] macvlan0: left allmulticast mode
[  148.554025][ T7758] veth1_vlan: left allmulticast mode
[  148.624648][ T7764] netlink: 28 bytes leftover after parsing attributes in process `syz.0.737'.
[  149.058283][ T7774] loop3: detected capacity change from 0 to 512
[  149.092085][ T7774] EXT4-fs: Ignoring removed orlov option
[  149.120671][ T7774] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  149.193439][ T7774] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  149.239086][ T7774] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.730: corrupted in-inode xattr: e_value size too large
[  149.303697][ T7774] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.730: couldn't read orphan inode 15 (err -117)
[  149.381185][ T7774] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.566249][ T7790] loop2: detected capacity change from 0 to 1024
[  149.577202][ T7790] EXT4-fs: Ignoring removed orlov option
[  149.613619][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.632699][ T7790] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.750213][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.941345][ T7806] netlink: 28 bytes leftover after parsing attributes in process `syz.0.746'.
[  150.681330][ T7832] netlink: 12 bytes leftover after parsing attributes in process `syz.2.759'.
[  151.039775][ T7845] loop1: detected capacity change from 0 to 24
[  152.169903][ T7874] loop3: detected capacity change from 0 to 2048
[  152.231230][ T7874] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  152.285801][ T7874] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  152.848385][ T7886] netlink: 8 bytes leftover after parsing attributes in process `syz.2.783'.
[  153.403898][   T23] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  153.593879][   T23] usb 1-1: Using ep0 maxpacket: 16
[  153.608381][   T23] usb 1-1: New USB device found, idVendor=0c45, idProduct=800a, bcdDevice=db.47
[  153.623838][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.631888][   T23] usb 1-1: Product: syz
[  153.648426][   T23] usb 1-1: Manufacturer: syz
[  153.653086][   T23] usb 1-1: SerialNumber: syz
[  153.666273][   T23] usb 1-1: config 0 descriptor??
[  153.676031][   T23] gspca_main: sn9c2028-2.14.0 probing 0c45:800a
[  153.895505][   T23] gspca_sn9c2028: read1 error -32
[  153.902236][   T23] gspca_sn9c2028: read1 error -32
[  154.138807][ T2255] usb 1-1: USB disconnect, device number 12
[  154.251672][ T7935] loop1: detected capacity change from 0 to 8192
[  154.660776][ T7949] loop3: detected capacity change from 0 to 2048
[  154.697759][ T7949] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  154.767246][ T7951] sctp: [Deprecated]: syz.1.811 (pid 7951) Use of int in max_burst socket option.
[  154.767246][ T7951] Use struct sctp_assoc_value instead
[  154.806328][ T7953] netlink: 10 bytes leftover after parsing attributes in process `syz.2.813'.
[  155.609268][ T7980] loop2: detected capacity change from 0 to 256
[  155.685992][ T7968] loop3: detected capacity change from 0 to 40427
[  155.724129][ T7968] F2FS-fs (loop3): invalid crc value
[  155.754349][ T7968] F2FS-fs (loop3): Found nat_bits in checkpoint
[  155.862201][ T7968] F2FS-fs (loop3): Start checkpoint disabled!
[  155.872750][ T7968] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  156.022339][ T3504] kworker/u4:9: attempt to access beyond end of device
[  156.022339][ T3504] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  156.045497][ T3504] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  156.053000][ T3504] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  156.133932][   T23] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  156.355811][   T23] usb 2-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[  156.383860][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.415656][   T23] usb 2-1: config 0 descriptor??
[  156.424075][   T23] pwc: Samsung MPC-C10 USB webcam detected.
[  156.445437][   T27] kauditd_printk_skb: 30 callbacks suppressed
[  156.445452][   T27] audit: type=1326 audit(1755710784.147:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.510161][   T27] audit: type=1326 audit(1755710784.177:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.532437][    C1] vkms_vblank_simulate: vblank timer overrun
[  156.559580][   T27] audit: type=1326 audit(1755710784.177:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.581792][    C1] vkms_vblank_simulate: vblank timer overrun
[  156.592106][   T27] audit: type=1326 audit(1755710784.177:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.615775][   T27] audit: type=1326 audit(1755710784.177:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.650211][   T27] audit: type=1326 audit(1755710784.177:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.650923][   T23] pwc: send_video_command error -71
[  156.674707][   T27] audit: type=1326 audit(1755710784.187:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.723838][   T23] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  156.733889][   T27] audit: type=1326 audit(1755710784.187:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.743921][   T23] Philips webcam: probe of 2-1:0.0 failed with error -71
[  156.765597][   T27] audit: type=1326 audit(1755710784.187:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  156.806928][   T23] usb 2-1: USB disconnect, device number 5
[  156.817061][   T27] audit: type=1326 audit(1755710784.187:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8001 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85de78ebe9 code=0x7ffc0000
[  157.344026][   T23] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  157.535879][   T23] usb 2-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[  157.550372][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.578449][   T23] usb 2-1: config 0 descriptor??
[  157.604072][   T23] pwc: Samsung MPC-C10 USB webcam detected.
[  157.852885][ T8030] syzkaller0: tun_chr_ioctl cmd 1074025677
[  157.862461][ T8030] syzkaller0: linktype set to 778
[  158.009002][   T23] pwc: recv_control_msg error -71 req 02 val 2b00
[  158.026964][   T23] pwc: recv_control_msg error -71 req 02 val 2700
[  158.040039][   T23] pwc: recv_control_msg error -71 req 04 val 1700
[  158.057499][   T23] pwc: recv_control_msg error -71 req 02 val 2c00
[  158.074202][   T23] pwc: recv_control_msg error -71 req 04 val 1000
[  158.093092][   T23] pwc: recv_control_msg error -71 req 04 val 1300
[  158.093498][   T23] pwc: recv_control_msg error -71 req 04 val 1400
[  158.094131][   T23] pwc: recv_control_msg error -71 req 02 val 2000
[  158.094521][   T23] pwc: recv_control_msg error -71 req 02 val 2100
[  158.094896][   T23] pwc: recv_control_msg error -71 req 02 val 2200
[  158.095318][   T23] pwc: recv_control_msg error -71 req 06 val 0600
[  158.095687][   T23] pwc: recv_control_msg error -71 req 04 val 1500
[  158.096065][   T23] pwc: recv_control_msg error -71 req 02 val 2500
[  158.096439][   T23] pwc: recv_control_msg error -71 req 02 val 2400
[  158.096839][   T23] pwc: recv_control_msg error -71 req 02 val 2600
[  158.097209][   T23] pwc: recv_control_msg error -71 req 02 val 2900
[  158.097592][   T23] pwc: recv_control_msg error -71 req 02 val 2800
[  158.098139][   T23] pwc: recv_control_msg error -71 req 04 val 1100
[  158.098514][   T23] pwc: recv_control_msg error -71 req 04 val 1200
[  158.099785][   T23] pwc: Registered as video103.
[  158.101282][   T23] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input18
[  158.108915][   T23] usb 2-1: USB disconnect, device number 6
[  158.758775][ T8061] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  158.994600][ T8071] kvm: user requested TSC rate below hardware speed
[  159.113032][ T8073] loop3: detected capacity change from 0 to 8192
[  159.537323][ T8093] netlink: 12 bytes leftover after parsing attributes in process `syz.0.871'.
[  159.637494][ T8097] netlink: 'syz.2.872': attribute type 21 has an invalid length.
[  159.655054][ T8097] netlink: 156 bytes leftover after parsing attributes in process `syz.2.872'.
[  159.689834][ T8097] netlink: 'syz.2.872': attribute type 21 has an invalid length.
[  159.702454][ T8097] netlink: 156 bytes leftover after parsing attributes in process `syz.2.872'.
[  159.861243][ T8103] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  159.910481][ T8105] netlink: 'syz.3.875': attribute type 1 has an invalid length.
[  160.820218][  T788] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  160.841330][  T788] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  161.426167][ T8157] loop2: detected capacity change from 0 to 8192
[  161.474982][ T8152] loop3: detected capacity change from 0 to 40427
[  161.486376][ T8152] F2FS-fs (loop3): Wrong segment_count / block_count (31 > 0)
[  161.494077][ T8152] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  161.515781][ T8152] F2FS-fs (loop3): invalid crc value
[  161.527128][ T8152] F2FS-fs (loop3): Found nat_bits in checkpoint
[  161.561188][ T8152] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  161.568323][ T8152] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  161.600429][   T27] audit: type=1800 audit(1755710789.297:155): pid=8152 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.896" name="file1" dev="loop3" ino=10 res=0 errno=0
[  161.605306][ T8152] syz.3.896: attempt to access beyond end of device
[  161.605306][ T8152] loop3: rw=34817, sector=77824, nr_sectors = 8 limit=40427
[  161.663901][ T5784] syz-executor: attempt to access beyond end of device
[  161.663901][ T5784] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  161.678812][ T5784] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  161.728249][ T8147] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  161.986089][   T50] Bluetooth: hci3: command tx timeout
[  162.264972][ T8180] input: syz0 as /devices/virtual/input/input19
[  163.236330][ T8196] loop1: detected capacity change from 0 to 32768
[  163.277969][ T8206] loop2: detected capacity change from 0 to 4096
[  163.297693][ T8196] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  163.311908][ T8206] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  163.331285][ T8206] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  163.381005][ T8206] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  163.426508][ T8206] ntfs: volume version 3.1.
[  163.480129][ T5781] ocfs2: Unmounting device (7,1) on (node local)
[  163.539202][ T5785] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  163.809877][ T8221] input: syz0 as /devices/virtual/input/input20
[  163.997898][ T8230] loop2: detected capacity change from 0 to 256
[  164.529893][ T8250] loop3: detected capacity change from 0 to 8192
[  166.187073][ T8335] program syz.0.973 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  166.355024][   T23] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  166.543977][   T23] usb 2-1: Using ep0 maxpacket: 32
[  166.559794][   T23] usb 2-1: unable to get BOS descriptor or descriptor too short
[  166.573615][   T23] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  166.594308][   T23] usb 2-1: New USB device found, idVendor=17ef, idProduct=7000, bcdDevice=a1.ec
[  166.603401][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.621837][   T23] usb 2-1: Product: syz
[  166.631966][   T23] usb 2-1: Manufacturer: syz
[  166.636750][   T23] usb 2-1: SerialNumber: syz
[  166.649098][   T23] usb 2-1: config 0 descriptor??
[  166.904267][   T23] usb 2-1: USB disconnect, device number 7
[  167.059211][ T8350] netlink: 108 bytes leftover after parsing attributes in process `syz.2.980'.
[  167.091176][ T8352] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  167.589796][ T8356] loop2: detected capacity change from 0 to 32768
[  167.638738][ T8356] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  167.857348][ T5785] ocfs2: Unmounting device (7,2) on (node local)
[  169.925519][ T8426] loop1: detected capacity change from 0 to 40427
[  169.950543][ T8426] F2FS-fs (loop1): invalid crc value
[  169.976784][ T8426] F2FS-fs (loop1): Found nat_bits in checkpoint
[  170.074451][ T8426] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  170.187765][ T5781] syz-executor: attempt to access beyond end of device
[  170.187765][ T5781] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  170.218607][ T8449] Driver unsupported XDP return value 0 on prog  (id 95) dev N/A, expect packet loss!
[  170.227432][ T5781] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  170.790737][ T8451] loop3: detected capacity change from 0 to 32768
[  171.204157][    T9] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  171.238849][ T8468] loop2: detected capacity change from 0 to 512
[  171.259379][ T8468] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.272179][ T8468] ext4 filesystem being mounted at /258/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.322600][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.404305][    T9] usb 2-1: Using ep0 maxpacket: 8
[  171.414493][    T9] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  171.428432][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.440515][    T9] pvrusb2: Hardware description: Terratec Grabster AV400
[  171.449219][    T9] pvrusb2: **********
[  171.454503][    T9] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  171.464896][    T9] pvrusb2: Important functionality might not be entirely working.
[  171.472718][    T9] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  171.484269][    T9] pvrusb2: **********
[  171.650501][ T2316] pvrusb2: Invalid write control endpoint
[  171.711311][ T2316] pvrusb2: Invalid write control endpoint
[  171.718725][ T2316] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  171.728505][ T2316] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  171.738395][ T2316] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  171.763848][ T2316] pvrusb2: Device being rendered inoperable
[  171.769987][ T2316] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  171.780536][ T2316] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  171.789064][ T2316] pvrusb2: Attached sub-driver cx25840
[  171.799574][ T2316] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  171.813223][ T2316] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  171.895969][ T8458] pvrusb2: Attempted to execute control transfer when device not ok
[  171.925274][ T5835] usb 2-1: USB disconnect, device number 8
[  172.091992][ T8499] loop2: detected capacity change from 0 to 512
[  172.101509][ T8499] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  172.123377][ T8499] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #16: comm syz.2.1038: invalid indirect mapped block 4294967295 (level 0)
[  172.152174][ T8499] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #16: comm syz.2.1038: invalid indirect mapped block 4294967295 (level 1)
[  172.178767][ T8499] EXT4-fs (loop2): 1 orphan inode deleted
[  172.189031][ T8499] EXT4-fs (loop2): 1 truncate cleaned up
[  172.198315][ T8499] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.263940][   T23] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  172.294711][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.465608][   T23] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[  172.483814][   T23] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  172.500915][   T23] usb 4-1: config 220 has an invalid descriptor of length 13, skipping remainder of the config
[  172.521546][   T23] usb 4-1: config 220 has no interface number 2
[  172.533845][   T23] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  172.573942][   T23] usb 4-1: config 220 interface 0 has no altsetting 0
[  172.589615][   T23] usb 4-1: config 220 interface 76 has no altsetting 0
[  172.598406][   T23] usb 4-1: config 220 interface 1 has no altsetting 0
[  172.608374][   T23] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  172.624796][   T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.637789][   T23] usb 4-1: Product: syz
[  172.642097][   T23] usb 4-1: Manufacturer: syz
[  172.647269][   T23] usb 4-1: SerialNumber: syz
[  172.862296][   T23] usb 4-1: selecting invalid altsetting 0
[  172.863943][   T50] Bluetooth: hci3: command tx timeout
[  172.894788][   T23] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[  172.901191][   T23] usb 4-1: No valid video chain found.
[  172.939523][   T23] usb 4-1: selecting invalid altsetting 0
[  172.958048][   T23] usbtest: probe of 4-1:220.1 failed with error -22
[  172.980686][   T23] usb 4-1: USB disconnect, device number 10
[  173.275033][ T8514] loop2: detected capacity change from 0 to 32768
[  173.287318][ T8514] (syz.2.1045,8514,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  173.303070][ T8514] (syz.2.1045,8514,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  173.332677][ T8514] JBD2: Ignoring recovery information on journal
[  173.427648][ T8514] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  173.634384][ T8514] 
[  173.636761][ T8514] ======================================================
[  173.643789][ T8514] WARNING: possible circular locking dependency detected
[  173.650831][ T8514] 6.6.102-syzkaller #0 Not tainted
[  173.656002][ T8514] ------------------------------------------------------
[  173.663034][ T8514] syz.2.1045/8514 is trying to acquire lock:
[  173.669021][ T8514] ffff8880539bdc78 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_init_acl+0x2fa/0x720
[  173.678381][ T8514] 
[  173.678381][ T8514] but task is already holding lock:
[  173.685752][ T8514] ffff88805d890990 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1e7d/0x20c0
[  173.695002][ T8514] 
[  173.695002][ T8514] which lock already depends on the new lock.
[  173.695002][ T8514] 
[  173.705419][ T8514] 
[  173.705419][ T8514] the existing dependency chain (in reverse order) is:
[  173.714446][ T8514] 
[  173.714446][ T8514] -> #5 (jbd2_handle){++++}-{0:0}:
[  173.721765][ T8514]        start_this_handle+0x1e9d/0x20c0
[  173.727419][ T8514]        jbd2__journal_start+0x2bb/0x5b0
[  173.733078][ T8514]        jbd2_journal_start+0x2a/0x40
[  173.738475][ T8514]        ocfs2_start_trans+0x376/0x6c0
[  173.743958][ T8514]        ocfs2_mknod+0xe47/0x20f0
[  173.748998][ T8514]        ocfs2_create+0x196/0x410
[  173.754129][ T8514]        path_openat+0x1277/0x3190
[  173.759264][ T8514]        do_filp_open+0x1c5/0x3d0
[  173.764492][ T8514]        do_sys_openat2+0x12c/0x1c0
[  173.769705][ T8514]        __x64_sys_open+0x11f/0x140
[  173.774923][ T8514]        do_syscall_64+0x55/0xb0
[  173.779878][ T8514]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  173.786400][ T8514] 
[  173.786400][ T8514] -> #4 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  173.794941][ T8514]        down_read+0x46/0x2e0
[  173.799642][ T8514]        ocfs2_start_trans+0x36a/0x6c0
[  173.805130][ T8514]        ocfs2_mknod+0xe47/0x20f0
[  173.810182][ T8514]        ocfs2_create+0x196/0x410
[  173.815224][ T8514]        path_openat+0x1277/0x3190
[  173.820356][ T8514]        do_filp_open+0x1c5/0x3d0
[  173.825399][ T8514]        do_sys_openat2+0x12c/0x1c0
[  173.830600][ T8514]        __x64_sys_open+0x11f/0x140
[  173.835802][ T8514]        do_syscall_64+0x55/0xb0
[  173.840735][ T8514]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  173.847147][ T8514] 
[  173.847147][ T8514] -> #3 (sb_internal#3){.+.+}-{0:0}:
[  173.854614][ T8514]        ocfs2_start_trans+0x26b/0x6c0
[  173.860070][ T8514]        ocfs2_mknod+0xe47/0x20f0
[  173.865100][ T8514]        ocfs2_create+0x196/0x410
[  173.870282][ T8514]        path_openat+0x1277/0x3190
[  173.875381][ T8514]        do_filp_open+0x1c5/0x3d0
[  173.880489][ T8514]        do_sys_openat2+0x12c/0x1c0
[  173.885670][ T8514]        __x64_sys_open+0x11f/0x140
[  173.890938][ T8514]        do_syscall_64+0x55/0xb0
[  173.895871][ T8514]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  173.902450][ T8514] 
[  173.902450][ T8514] -> #2 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}:
[  173.912952][ T8514]        down_write+0x97/0x1f0
[  173.917707][ T8514]        ocfs2_reserve_local_alloc_bits+0x126/0x24b0
[  173.924366][ T8514]        ocfs2_reserve_clusters_with_limit+0x1bf/0xba0
[  173.931202][ T8514]        ocfs2_mknod+0xdee/0x20f0
[  173.936208][ T8514]        ocfs2_create+0x196/0x410
[  173.941212][ T8514]        path_openat+0x1277/0x3190
[  173.946313][ T8514]        do_filp_open+0x1c5/0x3d0
[  173.951347][ T8514]        do_sys_openat2+0x12c/0x1c0
[  173.956552][ T8514]        __x64_sys_open+0x11f/0x140
[  173.961846][ T8514]        do_syscall_64+0x55/0xb0
[  173.966770][ T8514]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  173.973175][ T8514] 
[  173.973175][ T8514] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}:
[  173.983693][ T8514]        down_write+0x97/0x1f0
[  173.988444][ T8514]        ocfs2_reserve_suballoc_bits+0x165/0x4360
[  173.994849][ T8514]        ocfs2_reserve_new_metadata_blocks+0x404/0x940
[  174.001685][ T8514]        ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0
[  174.007914][ T8514]        ocfs2_xattr_set+0xb6d/0x11f0
[  174.013312][ T8514]        __vfs_setxattr+0x431/0x470
[  174.018506][ T8514]        __vfs_setxattr_noperm+0x12d/0x5e0
[  174.024306][ T8514]        vfs_setxattr+0x16c/0x2f0
[  174.029339][ T8514]        path_setxattr+0x362/0x550
[  174.034455][ T8514]        __x64_sys_setxattr+0xbb/0xd0
[  174.039824][ T8514]        do_syscall_64+0x55/0xb0
[  174.044780][ T8514]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  174.051307][ T8514] 
[  174.051307][ T8514] -> #0 (&oi->ip_xattr_sem){++++}-{3:3}:
[  174.059119][ T8514]        __lock_acquire+0x2ddb/0x7c80
[  174.064481][ T8514]        lock_acquire+0x197/0x410
[  174.069488][ T8514]        down_read+0x46/0x2e0
[  174.074164][ T8514]        ocfs2_init_acl+0x2fa/0x720
[  174.079352][ T8514]        ocfs2_mknod+0x12e5/0x20f0
[  174.084458][ T8514]        ocfs2_mkdir+0x196/0x410
[  174.089383][ T8514]        vfs_mkdir+0x296/0x440
[  174.094155][ T8514]        do_mkdirat+0x1d4/0x440
[  174.098988][ T8514]        __x64_sys_mkdirat+0x89/0xa0
[  174.104254][ T8514]        do_syscall_64+0x55/0xb0
[  174.109174][ T8514]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  174.115754][ T8514] 
[  174.115754][ T8514] other info that might help us debug this:
[  174.115754][ T8514] 
[  174.125971][ T8514] Chain exists of:
[  174.125971][ T8514]   &oi->ip_xattr_sem --> &journal->j_trans_barrier --> jbd2_handle
[  174.125971][ T8514] 
[  174.139709][ T8514]  Possible unsafe locking scenario:
[  174.139709][ T8514] 
[  174.147145][ T8514]        CPU0                    CPU1
[  174.152515][ T8514]        ----                    ----
[  174.157867][ T8514]   rlock(jbd2_handle);
[  174.162008][ T8514]                                lock(&journal->j_trans_barrier);
[  174.169800][ T8514]                                lock(jbd2_handle);
[  174.176379][ T8514]   rlock(&oi->ip_xattr_sem);
[  174.181042][ T8514] 
[  174.181042][ T8514]  *** DEADLOCK ***
[  174.181042][ T8514] 
[  174.189181][ T8514] 8 locks held by syz.2.1045/8514:
[  174.194532][ T8514]  #0: ffff88807cd9c418 (sb_writers#17){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  174.203750][ T8514]  #1: ffff8880539bdf58 (&type->i_mutex_dir_key#11/1){+.+.}-{3:3}, at: filename_create+0x1f6/0x460
[  174.214469][ T8514]  #2: ffff888076f15f58 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#2){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x165/0x4360
[  174.228143][ T8514]  #3: ffff888076f16d98 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x165/0x4360
[  174.241820][ T8514]  #4: ffff888076f11818 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}, at: ocfs2_reserve_local_alloc_bits+0x126/0x24b0
[  174.255737][ T8514]  #5: ffff88807cd9c608 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_mknod+0xe47/0x20f0
[  174.264996][ T8514]  #6: ffff888030facce8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x36a/0x6c0
[  174.275816][ T8514]  #7: ffff88805d890990 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1e7d/0x20c0
[  174.285485][ T8514] 
[  174.285485][ T8514] stack backtrace:
[  174.291381][ T8514] CPU: 0 PID: 8514 Comm: syz.2.1045 Not tainted 6.6.102-syzkaller #0
[  174.299432][ T8514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  174.309486][ T8514] Call Trace:
[  174.312761][ T8514]  <TASK>
[  174.315697][ T8514]  dump_stack_lvl+0x16c/0x230
[  174.320373][ T8514]  ? load_image+0x3b0/0x3b0
[  174.324870][ T8514]  ? show_regs_print_info+0x20/0x20
[  174.330197][ T8514]  ? print_circular_bug+0x12b/0x1a0
[  174.335568][ T8514]  check_noncircular+0x2bd/0x3c0
[  174.340511][ T8514]  ? print_deadlock_bug+0x5d0/0x5d0
[  174.345714][ T8514]  ? lockdep_lock+0xe0/0x220
[  174.350326][ T8514]  ? _find_first_zero_bit+0xd3/0x100
[  174.355625][ T8514]  __lock_acquire+0x2ddb/0x7c80
[  174.360474][ T8514]  ? verify_lock_unused+0x140/0x140
[  174.365656][ T8514]  ? __find_get_block+0xafc/0xed0
[  174.370671][ T8514]  ? verify_lock_unused+0x140/0x140
[  174.375859][ T8514]  ? __ocfs2_journal_access+0x612/0x7f0
[  174.381399][ T8514]  lock_acquire+0x197/0x410
[  174.385894][ T8514]  ? ocfs2_init_acl+0x2fa/0x720
[  174.390735][ T8514]  ? __might_sleep+0xe0/0xe0
[  174.395325][ T8514]  ? read_lock_is_recursive+0x20/0x20
[  174.400683][ T8514]  ? do_raw_spin_unlock+0x121/0x230
[  174.405873][ T8514]  down_read+0x46/0x2e0
[  174.410027][ T8514]  ? ocfs2_init_acl+0x2fa/0x720
[  174.414870][ T8514]  ocfs2_init_acl+0x2fa/0x720
[  174.419539][ T8514]  ? ocfs2_acl_chmod+0x320/0x320
[  174.424475][ T8514]  ? dquot_alloc_inode+0x8ac/0xa40
[  174.429595][ T8514]  ? ocfs2_journal_access+0x40/0x40
[  174.434782][ T8514]  ? ocfs2_block_signals+0x95/0xd0
[  174.439885][ T8514]  ? ocfs2_metadata_cache_get_super+0x46/0x90
[  174.445937][ T8514]  ? ocfs2_inode_cache_get_super+0xd/0x40
[  174.451642][ T8514]  ocfs2_mknod+0x12e5/0x20f0
[  174.456235][ T8514]  ? ocfs2_mkdir+0x410/0x410
[  174.460809][ T8514]  ? verify_lock_unused+0x140/0x140
[  174.466004][ T8514]  ? ocfs2_inode_lock_tracker+0x3ec/0x660
[  174.471830][ T8514]  ? __lock_acquire+0x7c80/0x7c80
[  174.476843][ T8514]  ? do_raw_spin_lock+0x121/0x2c0
[  174.481888][ T8514]  ? ocfs2_inode_unlock_tracker+0x270/0x2e0
[  174.487765][ T8514]  ? __lock_acquire+0x7c80/0x7c80
[  174.492773][ T8514]  ? __rwlock_init+0x150/0x150
[  174.497555][ T8514]  ? do_raw_spin_unlock+0x121/0x230
[  174.502898][ T8514]  ? put_pid+0xde/0x120
[  174.507046][ T8514]  ocfs2_mkdir+0x196/0x410
[  174.511450][ T8514]  ? make_kgid+0x640/0x640
[  174.515920][ T8514]  ? apparmor_path_mkdir+0x1a7/0x220
[  174.521231][ T8514]  ? ocfs2_symlink+0x2550/0x2550
[  174.526175][ T8514]  ? HAS_UNMAPPED_ID+0x11a/0x180
[  174.531137][ T8514]  ? inode_permission+0xf3/0x480
[  174.536062][ T8514]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  174.541100][ T8514]  ? security_inode_mkdir+0xb7/0x100
[  174.546378][ T8514]  vfs_mkdir+0x296/0x440
[  174.550607][ T8514]  do_mkdirat+0x1d4/0x440
[  174.554922][ T8514]  ? vfs_mkdir+0x440/0x440
[  174.559324][ T8514]  __x64_sys_mkdirat+0x89/0xa0
[  174.564093][ T8514]  do_syscall_64+0x55/0xb0
[  174.568586][ T8514]  ? clear_bhb_loop+0x40/0x90
[  174.573253][ T8514]  ? clear_bhb_loop+0x40/0x90
[  174.577918][ T8514]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  174.583824][ T8514] RIP: 0033:0x7f16bd18d457
[  174.588240][ T8514] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.607853][ T8514] RSP: 002b:00007f16be011e68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  174.616261][ T8514] RAX: ffffffffffffffda RBX: 00007f16be011ef0 RCX: 00007f16bd18d457
[  174.624238][ T8514] RDX: 00000000000001ff RSI: 0000200000000140 RDI: 00000000ffffff9c
[  174.632234][ T8514] RBP: 0000000000000000 R08: 0000200000000000 R09: 0000000000000000
[  174.640202][ T8514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000140
[  174.648175][ T8514] R13: 00007f16be011eb0 R14: 0000000000000000 R15: 0000000000000000
[  174.656152][ T8514]  </TASK>
[  174.659390][    C0] vkms_vblank_simulate: vblank timer overrun
[  174.749741][ T5785] ocfs2: Unmounting device (7,2) on (node local)