last executing test programs:

4.796870195s ago: executing program 2 (id=1609):
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000006, 0x4132, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)

4.62762353s ago: executing program 2 (id=1611):
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000007794608cd0c39007b90000000010902120001fc0000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000140)={&(0x7f00000001c0)=[{0x2, 0x0, 0xa, &(0x7f00000006c0)="0203204bdcc36cda8907"}], 0x1})

4.07852223s ago: executing program 0 (id=1619):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000b80)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@block_validity}, {@errors_remount}, {@barrier_val}]}, 0x3, 0x44f, &(0x7f0000000640)="$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")
symlink(&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlinkat(0xffffffffffffff9c, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffffff, 0xb4)
readlink(&(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000004c0)=""/79, 0x4f)

3.862603327s ago: executing program 0 (id=1621):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000089c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000008c00)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_WOWLAN(r0, &(0x7f0000018c80)={0x0, 0x0, &(0x7f0000018c40)={&(0x7f000000b640)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01002cbd7000fedbdf038346000008000300", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x105}, 0x0)

3.600117516s ago: executing program 0 (id=1624):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000200)='./file1\x00', 0x810, &(0x7f0000000000)={[{@barrier}, {@nodatacow}, {@enospc_debug}, {@nossd}, {@nodatasum}, {@nossd_spread}, {@notreelog}, {@max_inline={'max_inline', 0x3d, [0x6d, 0x33, 0x34, 0x39, 0x65, 0x36]}}]}, 0x1, 0x50f3, &(0x7f000000a2c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
unlinkat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

3.132551202s ago: executing program 3 (id=1626):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0xff, 0x3}, 0x90)

2.989022977s ago: executing program 3 (id=1627):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000580)={[{@min_batch_time={'min_batch_time', 0x3d, 0x2}}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@quota}, {@quota}]}, 0xff, 0x44b, &(0x7f0000000dc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='./file0\x00', 0x59b801, 0x1ce)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8, 0x0, 0x0, 0x6, 0x4})
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8, 0x0, 0xfffffffe, 0xe4c, 0xf2})

2.892075991s ago: executing program 2 (id=1628):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c0000001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="50000000000000001c"], 0x3c}}, 0x0)

2.522028933s ago: executing program 0 (id=1631):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
r1 = getgid()
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file0\x00', 0x2004019, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=r1, @ANYBLOB=',group_id=', @ANYRESDEC=r1], 0xfc, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x420, 0x0)

2.521847813s ago: executing program 2 (id=1632):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000100000000000000000000008500000087000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0xe, 0x0, &(0x7f0000000940)="e0b9547e9f17dbe9abc89b6e0704", 0x0, 0x40000003, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.476870635s ago: executing program 3 (id=1633):
io_setup(0x239f, &(0x7f0000000380)=<r0=>0x0)
syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0xfd1b, 0x200, 0x3, 0x1, 0x0, 0x0}, 0x0, 0x0, &(0x7f0000000000))
r1 = eventfd2(0x5, 0x1)
io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x7, 0x9841, r1, &(0x7f0000000080)="e2", 0x1, 0x5, 0x0, 0x1, r1}])

1.996151792s ago: executing program 3 (id=1634):
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x10, 0x25dfdbff, {0x0, 0x0, 0x0, r2, 0x2800}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x8}]}}}]}, 0x3c}}, 0x0)

1.596228845s ago: executing program 3 (id=1637):
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000005d40)='./file0\x00', 0x4000, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"/2303], 0xff, 0x5e9b, &(0x7f000000bc00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x60843, 0x15)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0xfc6, 0xfffffffffffffff7, 0x6976})
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a5a438, &(0x7f0000006900)=ANY=[@ANYRES32=0x0, @ANYRESHEX=0x0, @ANYRES8, @ANYRESHEX, @ANYRESHEX, @ANYBLOB="0d9435a8af712ba22db08aad61bf52901d77aded910bc7949acdf1a626f568d38938f8ec34f72c1e0b3e6540dc1e44beac32958b12631708d0a5635580b2f9fef13a977211e5d519ab9531321cfb53a9b413ea91f290924482d4007a70a19759dd63f9fc81f2c63fe27bce5e7dddf01fa5c3f09ef226ee04045b0cf0661e3d5a67446c4d93db12c2ac7a15f0265fd7eade1a72cbd696413a03174375c955f8c82a9774c2c8ac5046d59c86dbd5165e6e447586", @ANYBLOB="4c07f18b4a72a428cdf1fcc6a889d51c7d395bfc15396c272d41b4a79dba0739c1c7461ae19481932aa4c03054c8b2442a4c1e4311032bebb0cb70495acfcf1f08735df868c705", @ANYBLOB="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", @ANYRES16, @ANYRES32, @ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRES8], 0xb, 0x0, &(0x7f0000000000))

1.4610927s ago: executing program 2 (id=1639):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030332c726573765f6c6576656c3d30303030303030303030303030303030303030362c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c636f686572656e63793d66756c6c2c6e6f61636c2c004c98065b85e5b137d63b2211c62c402045083da9bddc3b0d88d44ecd24ba5288d428197284f332858b83349af2c7646f1e07e91120d7f23ce20389bbc031d81d654f1ca08f61c92d90e6ea478843c1ad942c7c257f9ff5348dd038e947775991ad90f8861dada21d5fa2de7042b5e2cbbcd1ada2b568e375812eb0bc448e68eda4c70cf1d5adf566142ed45924fe72a1eb1a914faf754b9d94bf0fdc1f98c708bd89940b5ef96e328240c39559b35bc83c15c15104f3b3fe1945f0278c34e2399dadcd9776ac659afcbb239569140ab408ad87f15b353941"], 0x1, 0x442a, &(0x7f0000004480)="$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")
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10000, 0x0, 0x80, 0x0, &(0x7f0000000140))
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r0, 0xfffffffffffffffe, 0x29)

1.371871493s ago: executing program 0 (id=1640):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x8031, 0xffffffffffffffff, 0xfb83e000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setpgid(0x0, 0x0)

1.120535912s ago: executing program 1 (id=1641):
pipe(&(0x7f0000000400)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = fanotify_init(0x40, 0x800)
fanotify_mark(r1, 0x1, 0x48001013, r0, 0x0)

940.119038ms ago: executing program 1 (id=1642):
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0x31, &(0x7f0000000280)=0x6, 0x4)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
listen(r0, 0x3)

776.196124ms ago: executing program 1 (id=1643):
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r0, 0x52b242d)
keyctl$join(0x1, &(0x7f0000000100)={'syz', 0x3})
keyctl$join(0x1, &(0x7f0000000140)={'syz', 0x3})

508.502563ms ago: executing program 1 (id=1644):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000200)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000180)={0x1d, r1, 0x0, {0x0, 0x0, 0x1}, 0x2}, 0x18)
sendmsg$can_j1939(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x1d, 0x0, 0x15, {0x0, 0x1ee}}, 0x18, &(0x7f00000004c0)={0x0}}, 0x0)

363.383568ms ago: executing program 1 (id=1645):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet(0x10, 0x3, 0x0)
r1 = fsopen(&(0x7f00000000c0)='9p\x00', 0x1)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f0000000100)='syzkaller0\x00', 0x0, r0)

171.245175ms ago: executing program 0 (id=1646):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000d00)=[{{&(0x7f0000000f40)={0xa, 0x4e1e, 0xff9, @private0, 0x5}, 0x1c, &(0x7f0000002440)=[{&(0x7f0000000f80)='1', 0x1}], 0x1}}, {{&(0x7f0000000500)={0xa, 0x4e24, 0x0, @rand_addr=' \x01\x00', 0x3ff}, 0x1c, &(0x7f0000000240)=[{&(0x7f00000001c0)='\v', 0x1}], 0x1}}], 0x2, 0xc4)
sendto$inet6(r0, &(0x7f0000000000)='R', 0x1, 0x4048084, &(0x7f0000000140)={0xa, 0x4e23, 0x7fff, @private0, 0x10}, 0x1c)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000780), &(0x7f00000004c0)=0x13)

72.434268ms ago: executing program 1 (id=1647):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x8000, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$eJzs3M1rHOcZAPBnRquVbKtduZRS91KVUmwoXUsuMrUp1C4uvfRQaK8Fq/LKCK0/kFRcyTqskn8gX+dALoEkJiGH+OxLQnLNJbGvCTkETFCsBEJIFGY/pI2lleR4V6PIvx+8mvedd7TP8+ywO/PC7gbwxBrJ/qQRxyLiYhJRau5PI6JY7w1G1BrHra4sTX65sjSZxNravz5LIomIBytLk63HSprbI83BYES8/9ckfvb05rhzC4szE9VqZbY5Pjl/5frJuYXFP0xfmbhcuVy5Onb6T+Onxk+PnhnvWq1ffXTu9he/+fsnta9f/ebW58+/nMS5GGrOtdfRLSMxsv6ctCtExES3g+Wkr1lPe51JYYd/SnucFAAAHaVt93C/iFL0xcbNWyne/iDX5AAAAICuWOuLWAMAAAAOuMT6HwAAAA641ucAHqwsTbZavp9I2Fv3z0fEcKP+1WZrzBSiVt8ORn9EHH6QRPvXWpPGvz22kYj4+N6ZN7IWPfoe8nZqyxHxy63Of1Kvf7j+Le7N9acRMdqF+CMPjX9M9Z/rQvy86wfgyXTnfONCtvn6l67f/8QW17/CFteuHyLv61/r/m910/3fRv19He7//rnLGDdfefFGp7ms/j/f/tvrrZbFz7aPVdQjuL8c8avCVvUn6/UnHeq/uMsYpW9vVDrN5V3/2ksRx2Pr+luS7X+f6OTUdLUy2vi7ZYzl98Zf6xQ/7/qz83+4Q/2t33/qdP6v7zLGfy5ceHPTznsb3e3rTz8tJv+u94rNPf+fmJ+fHYsoJv/YvP/U9rm0jmk9Rlb/id9u//rfqv7sPaHWfB6ytcByc5uNn3oo5l9u3XyrUz6t9V+e5/9Sh/PfXv+7hc3n/5ldxvjdO8+d6DTXvv7NWha/tRYGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJY0IoYiScvr/TQtlyOORMTP43BavTY3//upa/+7eimbixiO/nRquloZjYhSY5xk47F6f2N86qHxHyPiaES8UDpUH5cnr1Uv5V08AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA645ExFAkaTki0ohYLaVpuZx3VgAAAEDXDeedAAAAANBz1v8AAABw8Fn/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0GNHf33nbhIRtbOH6i1TbM7155oZ0Gtp3gkAuenLOwEgN4W8EwBy84hrfLcLcAAlO8wPdpwZ6HouAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOxfx4/duZtERO3soXrLFJtz/blmBvRa2tZPcswD2Ht9200W9i4PYO95icOTyxof2GntP7hxTO37MwM9ywkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/Weo3pK0HBHF5r5yOeInETEc/cnUdLUyGhE/jYgPS/0D2Xgs55wBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADovrmFxZmJarUym3XSaHbW9/Sg09eM3MMQvekkjbxr+yWfg90ZeHanY/4bjxmiGPui0n3ayfNdCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAvMwtLM5MVKuV2bm8MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADyNrewODNRrVZme9jJu0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLzXQAAAP//jAsGRw==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
setresuid(0x0, 0xee00, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f00000003c0)={0x1, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

453.32µs ago: executing program 2 (id=1648):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@host})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r0, 0x7a9, &(0x7f0000000180)={{@host, 0xf2}, 0x9, 0x1011, 0xfff, 0x5, 0x3df000, 0xde73, 0x29, 0x6})

0s ago: executing program 3 (id=1649):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000008000000000000000000910095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r0, r0, 0x2f, 0x0, @void}, 0x10)
bpf$LINK_DETACH(0x22, &(0x7f0000000140)=r1, 0x4)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001c40)={r1, 0x0, 0x0}, 0x10)

kernel console output (not intermixed with test programs):

type 0
[  172.868091][ T8387] netem: change failed
[  172.874737][ T8380] REISERFS (device loop0): using ordered data mode
[  172.879076][ T8364] F2FS-fs (loop1): Found nat_bits in checkpoint
[  172.881361][ T8380] reiserfs: using flush barriers
[  172.903211][ T8380] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  172.953707][ T8380] REISERFS (device loop0): checking transaction log (loop0)
[  172.990491][ T8380] REISERFS (device loop0): Using r5 hash to sort names
[  173.023674][ T8380] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  173.087641][ T8380] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  173.115036][ T8364] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  173.192024][ T8380] REISERFS warning (device loop0): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  173.276579][ T8380] REISERFS warning (device loop0): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  173.303336][ T5768] syz-executor: attempt to access beyond end of device
[  173.303336][ T5768] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  173.321886][ T8380] REISERFS warning (device loop0): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  173.336260][ T5768] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  173.517359][ T8409] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[  174.045510][ T8419] loop0: detected capacity change from 0 to 512
[  174.068046][ T8419] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  174.110813][ T8419] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  174.126065][ T8419] EXT4-fs (loop0): 1 truncate cleaned up
[  174.135435][ T8417] loop1: detected capacity change from 0 to 4096
[  174.142130][ T8419] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.161316][ T8419] EXT4-fs (loop0): shut down requested (0)
[  174.163510][ T8417] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  174.246574][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.342854][ T8417] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  174.466450][ T8413] loop2: detected capacity change from 0 to 32768
[  174.559237][ T8413] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  174.601856][ T8432] loop3: detected capacity change from 0 to 4096
[  174.619147][ T8432] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[  174.743918][ T8413] XFS (loop2): Ending clean mount
[  174.758283][ T8438] C: renamed from team_slave_0 (while UP)
[  174.779958][ T8438] netlink: 'syz.0.945': attribute type 4 has an invalid length.
[  174.785982][ T8432] ntfs3: loop3: Failed to initialize $Extend/$ObjId.
[  174.819523][ T8438] netlink: 116 bytes leftover after parsing attributes in process `syz.0.945'.
[  174.850711][ T8438] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  174.879060][ T5765] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  174.952353][ T8441] loop3: detected capacity change from 0 to 64
[  174.982713][   T27] audit: type=1800 audit(1775131782.540:11): pid=8441 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.947" name="file2" dev="loop3" ino=21 res=0 errno=0
[  175.003183][ T5101] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  175.210600][ T5101] usb 2-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  175.233836][ T5101] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.258758][ T5101] usb 2-1: Product: syz
[  175.273155][ T5101] usb 2-1: Manufacturer: syz
[  175.293180][ T5101] usb 2-1: SerialNumber: syz
[  175.316370][ T5101] usb 2-1: config 0 descriptor??
[  175.535005][ T5101] usb 2-1: ignoring: probably an ADSL modem
[  175.881145][ T8443] loop0: detected capacity change from 0 to 40427
[  175.937007][ T5101] cxacru 2-1:0.0: usbatm_usb_probe: bind failed: -19!
[  175.961638][ T8443] F2FS-fs (loop0): Found nat_bits in checkpoint
[  176.009682][ T8449] loop2: detected capacity change from 0 to 32768
[  176.052728][ T8449] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.946 (8449)
[  176.127902][ T8443] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  176.142780][ T5803] usb 2-1: USB disconnect, device number 9
[  176.152990][ T8449] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  176.167054][ T8449] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  176.219786][ T8449] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  176.271946][ T8449] BTRFS info (device loop2): use zstd compression, level 3
[  176.283384][ T8449] BTRFS info (device loop2): using free space tree
[  176.326008][ T5772] syz-executor: attempt to access beyond end of device
[  176.326008][ T5772] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  176.371500][ T5772] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  176.463224][ T8449] BTRFS info (device loop2): enabling ssd optimizations
[  176.504703][ T8449] BTRFS info (device loop2): auto enabling async discard
[  176.594313][   T27] audit: type=1800 audit(1775131784.150:12): pid=8449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.946" name="file1" dev="loop2" ino=260 res=0 errno=0
[  176.678276][ T5765] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  176.801975][ T8484] loop1: detected capacity change from 0 to 1024
[  177.145809][ T8488] batman_adv: batadv0: Adding interface: gretap1
[  177.162478][ T8488] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  177.206983][ T8491] loop0: detected capacity change from 0 to 256
[  177.213523][ T8488] batman_adv: batadv0: Interface activated: gretap1
[  177.276516][ T8492] loop7: detected capacity change from 0 to 7
[  177.355333][    C0] blk_print_req_error: 301 callbacks suppressed
[  177.355348][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  177.392000][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  177.401232][    C0] buffer_io_error: 434 callbacks suppressed
[  177.401246][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  177.423212][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  177.432403][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  177.447388][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  177.456594][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  177.466759][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  177.475958][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  177.484835][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  177.494021][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  177.520547][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  177.530439][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  177.533951][    C0] I/O error, dev loop7, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  177.539622][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  177.548699][    C0] Buffer I/O error on dev loop7, logical block 1, async page read
[  177.564382][    C0] I/O error, dev loop7, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  177.573558][    C0] Buffer I/O error on dev loop7, logical block 2, async page read
[  177.581399][    C0] Buffer I/O error on dev loop7, logical block 3, async page read
[  177.589268][    C0] Buffer I/O error on dev loop7, logical block 4, async page read
[  177.723135][ T5101] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  177.904391][ T5101] usb 2-1: Using ep0 maxpacket: 16
[  177.928056][ T5101] usb 2-1: unable to get BOS descriptor or descriptor too short
[  177.939084][ T5101] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  177.970757][ T5101] usb 2-1: config 1 interface 0 altsetting 127 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  177.990940][ T5101] usb 2-1: config 1 interface 0 has no altsetting 0
[  178.009285][ T5101] usb 2-1: New USB device found, idVendor=05ac, idProduct=0242, bcdDevice= 0.40
[  178.018468][ T5101] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.026924][ T5101] usb 2-1: Product: syz
[  178.031180][ T5101] usb 2-1: Manufacturer: syz
[  178.035847][ T5101] usb 2-1: SerialNumber: syz
[  178.053233][ T5845] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  178.056293][ T5101] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input18
[  178.186741][ T8506] loop2: detected capacity change from 0 to 32768
[  178.261570][ T8506] ea_get: invalid extended attribute
[  178.264065][ T5126] bcm5974 2-1:1.0: could not read from device
[  178.275923][ T5845] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  178.290810][ T5101] bcm5974 2-1:1.0: could not read from device
[  178.295107][ T8506] ffff88805e7fb170: 04 00 00 00                                      ....
[  178.313354][ T5845] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  178.325833][ T5126] bcm5974 2-1:1.0: could not read from device
[  178.335673][ T8510] ea_get: invalid extended attribute
[  178.343095][ T5845] usb 4-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  178.354451][ T5101] input: failed to attach handler mousedev to device input18, error: -5
[  178.358593][ T8510] ffff88805e7fb170: 04 00 00 00                                      ....
[  178.373196][ T5845] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.381648][ T8511] ea_get: invalid extended attribute
[  178.387563][ T5126] bcm5974 2-1:1.0: could not read from device
[  178.392557][ T5101] usb 2-1: USB disconnect, device number 10
[  178.394297][ T8511] ffff88805e7fb170: 04 00 00 00                                      ....
[  178.412677][ T5126] bcm5974 2-1:1.0: could not read from device
[  178.437401][ T5845] usb 4-1: config 0 descriptor??
[  178.878052][ T5845] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  178.920063][ T5845] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  178.948359][ T5845] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  178.963853][ T5845] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  178.971748][ T5845] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  179.017476][ T5845] playstation 0003:054C:0DF2.0008: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.3-1/input0
[  179.129151][ T5845] playstation 0003:054C:0DF2.0008: Invalid byte count transferred, expected 20 got 0
[  179.173247][ T5845] playstation 0003:054C:0DF2.0008: Failed to retrieve DualSense pairing info: -22
[  179.200635][ T5845] playstation 0003:054C:0DF2.0008: Failed to get MAC address from DualSense
[  179.229933][ T5845] playstation 0003:054C:0DF2.0008: Failed to create dualsense.
[  179.266995][ T5845] playstation: probe of 0003:054C:0DF2.0008 failed with error -22
[  179.349990][ T5845] usb 4-1: USB disconnect, device number 12
[  179.904371][ T8529] loop0: detected capacity change from 0 to 40427
[  179.924993][ T8529] F2FS-fs (loop0): invalid crc value
[  179.930751][ T8545] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  179.953867][ T8529] F2FS-fs (loop0): Found nat_bits in checkpoint
[  180.073657][ T1322] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  180.113292][ T8529] F2FS-fs (loop0): Start checkpoint disabled!
[  180.183446][ T8529] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  180.316002][ T5849] IPVS: starting estimator thread 0...
[  180.434226][ T8558] IPVS: using max 25 ests per chain, 60000 per kthread
[  180.449128][   T11] kworker/u4:0: attempt to access beyond end of device
[  180.449128][   T11] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  180.517952][   T11] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  180.544365][   T11] kworker/u4:0: attempt to access beyond end of device
[  180.544365][   T11] loop0: rw=2049, sector=40976, nr_sectors = 8 limit=40427
[  180.547399][ T8565] loop3: detected capacity change from 0 to 1024
[  180.597487][   T11] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  180.626299][ T8565] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  180.663556][ T8565] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.937660][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  181.187964][ T8586] loop0: detected capacity change from 0 to 256
[  182.007534][ T8612] loop2: detected capacity change from 0 to 256
[  182.018962][ T8610] loop0: detected capacity change from 0 to 4096
[  182.061154][ T8610] EXT4-fs: Ignoring removed orlov option
[  182.123953][ T8610] EXT4-fs (loop0): Test dummy encryption mode enabled
[  182.178914][ T8610] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.197042][ T8612] FAT-fs (loop2): Directory bread(block 64) failed
[  182.233109][ T8612] FAT-fs (loop2): Directory bread(block 65) failed
[  182.265932][ T8612] FAT-fs (loop2): Directory bread(block 66) failed
[  182.312492][ T8612] FAT-fs (loop2): Directory bread(block 67) failed
[  182.339562][ T8612] FAT-fs (loop2): Directory bread(block 68) failed
[  182.354915][ T8610] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  182.360774][ T8612] FAT-fs (loop2): Directory bread(block 69) failed
[  182.375170][ T8610] EXT4-fs: Ignoring removed orlov option
[  182.380962][ T8610] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[  182.381239][ T8612] FAT-fs (loop2): Directory bread(block 70) failed
[  182.393315][ T8609] loop1: detected capacity change from 0 to 32768
[  182.414764][  T786] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  182.429853][ T8610] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  182.440241][ T8612] FAT-fs (loop2): Directory bread(block 71) failed
[  182.447946][ T8612] FAT-fs (loop2): Directory bread(block 72) failed
[  182.455184][ T8612] FAT-fs (loop2): Directory bread(block 73) failed
[  182.476609][ T8610] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  182.510906][ T8609] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  182.599624][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.633425][  T786] usb 4-1: Using ep0 maxpacket: 16
[  182.675064][  T786] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  182.752123][  T786] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  182.785651][  T786] usb 4-1: config 0 interface 0 has no altsetting 0
[  182.792670][  T786] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  182.794095][ T8609] XFS (loop1): Ending clean mount
[  182.816950][  T786] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.844206][  T786] usb 4-1: config 0 descriptor??
[  182.850863][ T8609] XFS (loop1): Quotacheck needed: Please wait.
[  182.906454][ T8609] XFS (loop1): Quotacheck: Done.
[  183.109668][ T5768] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  183.123489][ T8631] loop0: detected capacity change from 0 to 2048
[  183.171808][ T8631] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.292126][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.350704][  T786] hid (null): unknown global tag 0x7d
[  183.358374][  T786] hid (null): unknown global tag 0xed
[  183.373875][  T786] hid (null): global environment stack underflow
[  183.588648][ T5803] usb 4-1: USB disconnect, device number 13
[  183.608480][ T8644] loop0: detected capacity change from 0 to 1024
[  183.657885][ T8644] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.692123][ T8644] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.756930][ T3508] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm kworker/u4:12: bg 0: block 112: padding at end of block bitmap is not set
[  183.786111][ T3508] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 36 with max blocks 4 with error 117
[  183.808678][ T3508] EXT4-fs (loop0): This should not happen!! Data will be lost
[  183.808678][ T3508] 
[  183.831620][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  183.894624][ T8640] loop2: detected capacity change from 0 to 40427
[  183.931613][ T8640] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[  183.973204][ T8640] F2FS-fs (loop2): Image doesn't support compression
[  183.979998][ T8640] F2FS-fs (loop2): Image doesn't support compression
[  183.988071][ T8640] F2FS-fs (loop2): invalid crc value
[  184.004294][ T8640] F2FS-fs (loop2): Found nat_bits in checkpoint
[  184.059252][ T8640] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  184.099093][ T8640] syz.2.1020: attempt to access beyond end of device
[  184.099093][ T8640] loop2: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  184.141723][ T5765] syz-executor: attempt to access beyond end of device
[  184.141723][ T5765] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  184.156938][ T5765] F2FS-fs (loop2): Remounting filesystem read-only
[  184.207817][ T8652] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1024'.
[  184.216867][ T5849] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  184.245685][ T8652] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1024'.
[  184.303210][ T8652] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1024'.
[  184.440367][ T5849] usb 1-1: Using ep0 maxpacket: 16
[  184.461540][ T5849] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  184.483452][ T5849] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  184.510881][ T5849] usb 1-1: config 0 interface 0 has no altsetting 0
[  184.531164][ T5849] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  184.543437][ T5849] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.584277][ T5849] usb 1-1: config 0 descriptor??
[  185.017771][ T8648] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.040041][ T8648] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  185.071098][ T8668] netlink: 332 bytes leftover after parsing attributes in process `syz.1.1030'.
[  185.083227][ T8668] netlink: 'syz.1.1030': attribute type 9 has an invalid length.
[  185.091179][ T8668] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1030'.
[  185.118605][ T8668] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1030'.
[  185.277915][ T5849] usb 1-1: USB disconnect, device number 12
[  185.302884][ T8673] overlayfs: statfs failed on './file0'
[  185.448805][ T8679] netlink: 'syz.1.1036': attribute type 1 has an invalid length.
[  185.456855][ T8679] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.1036'.
[  185.584641][ T8681] loop9: detected capacity change from 0 to 7
[  185.610200][ T8681] Dev loop9: unable to read RDB block 7
[  185.620218][ T8681]  loop9: unable to read partition table
[  185.632432][ T8681] loop9: partition table beyond EOD, truncated
[  185.661486][ T8681] loop_reread_partitions: partition scan of loop9 (þ被xüÿÿÿÿÿÿÿ ) failed (rc=-5)
[  185.701824][ T8685] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1038'.
[  185.921235][ T5101] kernel write not supported for file /input/event2 (pid: 5101 comm: kworker/1:3)
[  186.876600][ T8717] loop1: detected capacity change from 0 to 1024
[  186.948171][ T8704] loop3: detected capacity change from 0 to 40427
[  186.967252][ T8717] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.993260][ T8704] F2FS-fs (loop3): heap/no_heap options were deprecated
[  187.000378][ T8704] F2FS-fs (loop3): build fault injection attr: rate: 19, type: 0x7ffff
[  187.008853][ T8704] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x77e8c
[  187.024310][ T8704] F2FS-fs (loop3): invalid crc value
[  187.074072][ T8704] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0
[  187.173753][ T8704] F2FS-fs (loop3): Found nat_bits in checkpoint
[  187.238811][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.324183][ T8704] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_bio+0x134/0x650
[  187.382172][    C0] F2FS-fs (loop3): inject read IO error in f2fs_read_end_io of blk_update_request+0x597/0xe40
[  187.457313][ T8704] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  187.514689][ T8704] F2FS-fs (loop3): inject no more block in inc_valid_node_count of f2fs_new_node_page+0x187/0x910
[  187.566149][ T8704] F2FS-fs (loop3): inject dquot initialize in f2fs_dquot_initialize of f2fs_new_inode+0x509/0x1030
[  187.724687][ T5775] syz-executor: attempt to access beyond end of device
[  187.724687][ T5775] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  187.751564][ T5775] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  188.386722][ T8768] loop0: detected capacity change from 0 to 512
[  188.401193][ T8768] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  188.407780][ T8765] loop3: detected capacity change from 0 to 2048
[  188.425071][ T8768] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1073: invalid indirect mapped block 4294967295 (level 1)
[  188.437385][ T8765] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  188.461267][ T8768] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1073: invalid indirect mapped block 4294967295 (level 1)
[  188.524048][ T8768] EXT4-fs (loop0): 2 truncates cleaned up
[  188.545214][ T8768] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.577770][ T8768] EXT4-fs error (device loop0): empty_inline_dir:1867: inode #12: block 7: comm syz.0.1073: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0
[  188.602413][ T8768] EXT4-fs warning (device loop0): empty_inline_dir:1874: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60
[  188.743338][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.021437][ T8779] loop3: detected capacity change from 0 to 4096
[  189.042234][ T8779] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  189.054251][ T8787] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  189.054251][ T8787] The task syz.2.1079 (8787) triggered the difference, watch for misbehavior.
[  189.111186][ T8779] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  189.213163][ T8779] ntfs3: loop3: ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" failed to parse mft record
[  189.242172][    C0] vkms_vblank_simulate: vblank timer overrun
[  189.362393][ T1322] ntfs3: loop3: ino=1e, failed to parse mft record
[  189.397321][ T8791] loop1: detected capacity change from 0 to 1024
[  189.517742][ T2905] hfsplus: b-tree write err: -5, ino 25
[  189.536571][ T2905] hfsplus: b-tree write err: -5, ino 4
[  189.542690][ T2905] hfsplus: b-tree write err: -5, ino 2
[  189.559987][ T2905] hfsplus: b-tree write err: -5, ino 26
[  189.670992][ T8783] loop0: detected capacity change from 0 to 32768
[  189.674476][ T8797] loop1: detected capacity change from 0 to 1024
[  189.739959][ T8783] JBD2: Ignoring recovery information on journal
[  189.935148][ T8783] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  190.021232][ T8783] (syz.0.1076,8783,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4097: rec_len is smaller than minimal - offset=255, inode=0, rec_len=0, name_len=0
[  190.161697][ T5772] ocfs2: Unmounting device (7,0) on (node local)
[  190.280190][ T8802] loop2: detected capacity change from 0 to 32768
[  190.295805][ T8802] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.1086 (8802)
[  190.335770][ T8802] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  190.352269][ T8802] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  190.385460][ T8802] BTRFS info (device loop2): enabling disk space caching
[  190.393186][ T5101] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  190.401249][ T8802] BTRFS info (device loop2): force clearing of disk cache
[  190.410615][ T8802] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  190.420343][ T8802] BTRFS info (device loop2): use zstd compression, level 3
[  190.437025][ T8802] BTRFS info (device loop2): disk space caching is enabled
[  190.525604][ T8802] BTRFS info (device loop2): enabling ssd optimizations
[  190.539525][ T8802] BTRFS info (device loop2): auto enabling async discard
[  190.583291][ T5101] usb 2-1: Using ep0 maxpacket: 32
[  190.583867][ T8802] BTRFS info (device loop2): rebuilding free space tree
[  190.599801][ T5101] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.618150][ T5101] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.642223][ T5101] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  190.654185][  T787] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  190.666104][ T8802] BTRFS info (device loop2): disabling free space tree
[  190.671995][ T5101] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.682336][ T8802] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  190.712398][ T8802] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  190.713422][ T5101] usb 2-1: config 0 descriptor??
[  190.746497][ T5101] hub 2-1:0.0: USB hub found
[  190.872801][  T787] usb 1-1: Using ep0 maxpacket: 32
[  190.880852][  T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.904180][  T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.933154][  T787] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  190.942275][  T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.960695][ T5765] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  190.991289][ T5101] hub 2-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  191.014185][  T787] usb 1-1: config 0 descriptor??
[  191.035192][  T787] hub 1-1:0.0: USB hub found
[  191.243802][  T787] hub 1-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  191.307459][ T5769] Bluetooth: hci2: command 0x0406 tx timeout
[  191.308159][ T5771] Bluetooth: hci1: command 0x0406 tx timeout
[  191.313924][ T5769] Bluetooth: hci0: command 0x0406 tx timeout
[  191.433253][ T5101] hid-generic 0003:046D:C31C.000B: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.1-1/input0
[  191.656800][  T787] hid-generic 0003:046D:C31C.000C: hidraw1: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.0-1/input0
[  191.763876][ T5803] usb 2-1: USB disconnect, device number 11
[  191.973467][ T5803] usb 1-1: USB disconnect, device number 13
[  192.586955][ T8853] loop0: detected capacity change from 0 to 1024
[  192.685349][ T8853] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  192.712263][ T8860] loop1: detected capacity change from 0 to 256
[  192.763219][ T8853] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.817910][ T8846] loop3: detected capacity change from 0 to 32768
[  192.843538][ T8846] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.1098 (8846)
[  192.865226][ T8860] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  192.870338][ T8853] EXT4-fs error (device loop0): ext4_free_blocks:6694: comm syz.0.1100: Freeing blocks not in datazone - block = 0, count = 16
[  192.910273][ T8846] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  192.926122][ T8853] EXT4-fs (loop0): Remounting filesystem read-only
[  192.948996][ T8846] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  192.990603][ T8846] BTRFS info (device loop3): using free space tree
[  193.030965][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  193.235405][ T8846] BTRFS info (device loop3): enabling ssd optimizations
[  193.253217][ T8846] BTRFS info (device loop3): auto enabling async discard
[  193.318382][ T8884] netlink: 'syz.1.1105': attribute type 21 has an invalid length.
[  193.349573][ T8884] netlink: 'syz.1.1105': attribute type 1 has an invalid length.
[  193.378171][ T8884] netlink: 16090 bytes leftover after parsing attributes in process `syz.1.1105'.
[  193.410168][ T8886] program syz.2.1107 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  193.538710][ T5775] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  193.612998][ T8892] loop1: detected capacity change from 0 to 1024
[  193.913687][  T786] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  194.143320][  T786] usb 1-1: Using ep0 maxpacket: 8
[  194.153796][  T786] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  194.162020][  T786] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  194.189335][  T786] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  194.241547][  T786] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  194.283440][  T786] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  194.326666][  T786] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  194.352457][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.359277][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  194.383513][  T786] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.589178][ T8914] loop1: detected capacity change from 0 to 1024
[  194.627780][  T786] usb 1-1: GET_CAPABILITIES returned 0
[  194.652684][  T786] usbtmc 1-1:16.0: can't read capabilities
[  194.721330][   T42] hfsplus: b-tree write err: -5, ino 25
[  194.738269][   T42] hfsplus: b-tree write err: -5, ino 4
[  194.744606][   T42] hfsplus: b-tree write err: -5, ino 2
[  194.832865][ T5849] usb 1-1: USB disconnect, device number 14
[  194.943277][ T5101] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  195.114361][ T8927] loop1: detected capacity change from 0 to 128
[  195.133700][ T5101] usb 3-1: Using ep0 maxpacket: 16
[  195.155162][ T5101] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  195.167734][ T5101] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.179929][ T5101] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  195.204880][ T5101] usb 3-1: New USB device found, idVendor=09da, idProduct=000a, bcdDevice= 0.00
[  195.215757][ T5101] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.226856][ T5101] usb 3-1: config 0 descriptor??
[  195.640657][ T5101] a4tech 0003:09DA:000A.000D: unknown main item tag 0x0
[  195.647752][ T5101] a4tech 0003:09DA:000A.000D: unknown main item tag 0x0
[  195.654811][ T5101] a4tech 0003:09DA:000A.000D: unknown main item tag 0x0
[  195.661784][ T5101] a4tech 0003:09DA:000A.000D: unknown main item tag 0x0
[  195.668849][ T5101] a4tech 0003:09DA:000A.000D: unknown main item tag 0x0
[  195.675873][ T5101] a4tech 0003:09DA:000A.000D: unknown main item tag 0x0
[  195.682834][ T5101] a4tech 0003:09DA:000A.000D: unknown global tag 0xe
[  195.689645][ T5101] a4tech 0003:09DA:000A.000D: item 0 0 1 14 parsing failed
[  195.697292][ T5101] a4tech 0003:09DA:000A.000D: parse failed
[  195.703336][ T5101] a4tech: probe of 0003:09DA:000A.000D failed with error -22
[  195.773182][  T786] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  195.781305][ T5845] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[  195.843196][ T5101] usb 3-1: USB disconnect, device number 9
[  195.983319][  T786] usb 1-1: Using ep0 maxpacket: 32
[  195.989999][ T5845] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  196.001476][ T5845] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  196.012162][  T786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  196.023267][ T5845] usb 4-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  196.032720][ T5845] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.040834][  T786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  196.051343][  T786] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  196.061504][ T5845] usb 4-1: config 0 descriptor??
[  196.066749][  T786] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.081655][  T786] usb 1-1: config 0 descriptor??
[  196.091157][  T786] hub 1-1:0.0: USB hub found
[  196.296759][  T786] hub 1-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  196.489251][ T5845] isku 0003:1E7D:319C.000E: unknown main item tag 0x0
[  196.516504][ T5845] isku 0003:1E7D:319C.000E: unknown main item tag 0x0
[  196.533118][ T5845] isku 0003:1E7D:319C.000E: unknown main item tag 0x0
[  196.563103][ T5845] isku 0003:1E7D:319C.000E: unknown main item tag 0x0
[  196.570171][ T5845] isku 0003:1E7D:319C.000E: unknown main item tag 0x0
[  196.587584][ T5845] isku 0003:1E7D:319C.000E: unknown main item tag 0x0
[  196.603135][ T5845] isku 0003:1E7D:319C.000E: unknown main item tag 0x0
[  196.645103][ T5845] isku 0003:1E7D:319C.000E: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.3-1/input0
[  196.701747][  T786] hid-generic 0003:046D:C31C.000F: item fetching failed at offset 0/1
[  196.736413][  T786] hid-generic: probe of 0003:046D:C31C.000F failed with error -22
[  196.893324][ T5845] usb 4-1: USB disconnect, device number 14
[  197.023406][ T5101] usb 1-1: USB disconnect, device number 15
[  197.065554][ T8962] kvm: kvm [8961]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010007) = 0xfbfffffffffffffb
[  197.283157][  T787] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  197.473301][  T787] usb 2-1: Using ep0 maxpacket: 32
[  197.510063][  T787] usb 2-1: config 0 has an invalid interface number: 196 but max is 0
[  197.518655][  T787] usb 2-1: config 0 has no interface number 0
[  197.529324][  T787] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  197.553169][  T787] usb 2-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  197.553873][ T8969] team0: No ports can be present during mode change
[  197.570507][  T787] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  197.610920][  T787] usb 2-1: config 0 interface 196 has no altsetting 0
[  197.644601][  T787] usb 2-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  197.655898][  T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  197.677700][  T787] usb 2-1: Product: syz
[  197.683153][  T787] usb 2-1: Manufacturer: syz
[  197.691236][  T787] usb 2-1: SerialNumber: syz
[  197.700924][  T787] usb 2-1: config 0 descriptor??
[  197.707469][ T8960] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  197.714950][ T8973] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1148'.
[  197.743565][ T5845] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  197.743666][ T8971] loop2: detected capacity change from 0 to 4096
[  197.776995][ T8971] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  197.821176][ T8971] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  197.830201][ T8971] ntfs3: loop2: mft corrupted
[  197.843670][ T8971] ntfs3: loop2: Failed to load $Extend (-22).
[  197.849802][ T8971] ntfs3: loop2: Failed to initialize $Extend.
[  197.950632][ T5845] usb 1-1: Using ep0 maxpacket: 8
[  197.968684][ T5845] usb 1-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  197.993314][ T5845] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.033168][ T5845] usb 1-1: Product: syz
[  198.037552][ T5845] usb 1-1: Manufacturer: syz
[  198.042186][ T5845] usb 1-1: SerialNumber: syz
[  198.064193][ T5845] usb 1-1: config 0 descriptor??
[  198.101223][ T5845] gspca_main: se401-2.14.0 probing 047d:5003
[  198.370047][  T787] ipheth 2-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[  198.416004][  T787] ipheth 2-1:0.196: Apple iPhone USB Ethernet device attached
[  198.514640][ T5845] gspca_se401: Too many frame sizes
[  198.641177][  T787] usb 2-1: USB disconnect, device number 12
[  198.725365][  T787] ipheth 2-1:0.196: Apple iPhone USB Ethernet now disconnected
[  198.771832][  T786] usb 1-1: USB disconnect, device number 16
[  199.216444][ T9012] loop3: detected capacity change from 0 to 256
[  199.351421][ T9012] FAT-fs (loop3): Directory bread(block 64) failed
[  199.373247][ T9012] FAT-fs (loop3): Directory bread(block 65) failed
[  199.399904][ T9012] FAT-fs (loop3): Directory bread(block 66) failed
[  199.433673][ T9012] FAT-fs (loop3): Directory bread(block 67) failed
[  199.463719][ T9012] FAT-fs (loop3): Directory bread(block 68) failed
[  199.470297][ T9012] FAT-fs (loop3): Directory bread(block 69) failed
[  199.523258][ T9012] FAT-fs (loop3): Directory bread(block 70) failed
[  199.529865][ T9012] FAT-fs (loop3): Directory bread(block 71) failed
[  199.570655][ T9012] FAT-fs (loop3): Directory bread(block 72) failed
[  199.607430][ T9012] FAT-fs (loop3): Directory bread(block 73) failed
[  199.789407][ T9027] loop0: detected capacity change from 0 to 256
[  199.913284][ T9027] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  200.102594][ T9037] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1170'.
[  200.488132][ T9053] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1175'.
[  201.417507][ T9046] loop3: detected capacity change from 0 to 131072
[  201.425461][ T9046] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  201.433641][ T9046] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  201.448622][ T9046] F2FS-fs (loop3): invalid crc value
[  201.494423][ T9046] F2FS-fs (loop3): Found nat_bits in checkpoint
[  201.549748][ T9046] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  201.557056][ T9046] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  201.765234][ T9078] netlink: 11 bytes leftover after parsing attributes in process `syz.1.1191'.
[  201.781704][ T9078] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1191'.
[  201.817528][ T9078] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1191'.
[  202.249965][ T9090] loop1: detected capacity change from 0 to 128
[  202.292145][ T9090] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  202.343954][ T9090] ext4 filesystem being mounted at /312/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.534226][  T787] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  202.554589][ T5768] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  202.658281][ T9073] loop2: detected capacity change from 0 to 40427
[  202.675661][ T9073] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  202.711079][ T9073] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  202.771863][  T787] usb 1-1: config 0 has no interfaces?
[  202.772915][ T9073] F2FS-fs (loop2): Found nat_bits in checkpoint
[  202.777803][  T787] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  202.813135][  T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.833791][  T787] usb 1-1: config 0 descriptor??
[  202.880744][ T9073] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  202.888637][ T9073] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  203.215977][  T787] usb 1-1: USB disconnect, device number 17
[  203.242571][ T9103] loop1: detected capacity change from 0 to 4096
[  203.353360][ T9103] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  203.370710][ T9097] loop3: detected capacity change from 0 to 40427
[  203.396424][ T9103] ntfs3: loop1: Failed to load $Extend (-22).
[  203.403633][ T9097] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  203.422354][ T9103] ntfs3: loop1: Failed to initialize $Extend.
[  203.431776][ T9097] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  203.466717][ T9097] F2FS-fs (loop3): invalid crc value
[  203.505833][ T9097] F2FS-fs (loop3): Found nat_bits in checkpoint
[  203.648956][ T9097] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  203.670768][ T9097] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  203.798780][ T9112] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1192'.
[  203.985995][ T5775] syz-executor: attempt to access beyond end of device
[  203.985995][ T5775] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  204.023424][ T5775] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  204.038989][ T1322] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  204.056779][ T1322] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  204.288247][ T9124] loop1: detected capacity change from 0 to 2048
[  204.316309][ T9124] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=2362, location=2362
[  204.371838][ T9124] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  204.394615][ T9124] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  204.434649][ T9124] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  204.508476][ T9124] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  204.912504][ T9139] loop3: detected capacity change from 0 to 128
[  204.931142][ T9139] EXT4-fs: Ignoring removed nomblk_io_submit option
[  204.964972][ T9139] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  204.978160][ T9139] ext4 filesystem being mounted at /280/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.023179][ T5849] usb 2-1: new full-speed USB device number 13 using dummy_hcd
[  205.057130][ T9146] loop0: detected capacity change from 0 to 64
[  205.135861][ T9146] MINIX-fs: mounting file system with errors, running fsck is recommended
[  205.164423][ T5775] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  205.225669][ T5849] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  205.237588][ T5849] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  205.290219][ T5849] usb 2-1: New USB device found, idVendor=06a3, idProduct=0621, bcdDevice= 0.00
[  205.312972][ T5849] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.344367][ T5849] usb 2-1: config 0 descriptor??
[  205.780030][ T5849] saitek 0003:06A3:0621.0010: ignoring exceeding usage max
[  205.804243][ T5849] saitek 0003:06A3:0621.0010: unknown main item tag 0x1
[  205.821520][ T5849] saitek 0003:06A3:0621.0010: collection stack underflow
[  205.851843][ T5849] saitek 0003:06A3:0621.0010: item 0 4 0 12 parsing failed
[  205.875133][ T5849] saitek 0003:06A3:0621.0010: parse failed
[  205.881053][ T5849] saitek: probe of 0003:06A3:0621.0010 failed with error -22
[  206.034603][ T5849] usb 2-1: USB disconnect, device number 13
[  206.141679][ T9176] program syz.0.1221 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  206.514123][ T9189] sctp: [Deprecated]: syz.0.1229 (pid 9189) Use of struct sctp_assoc_value in delayed_ack socket option.
[  206.514123][ T9189] Use struct sctp_sack_info instead
[  206.535641][ T9190] loop2: detected capacity change from 0 to 256
[  206.544570][ T9190] exfat: Deprecated parameter 'utf8'
[  206.571491][ T9186] loop3: detected capacity change from 0 to 4096
[  206.612196][ T9190] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  206.807277][ T9186] ntfs: volume version 3.1.
[  206.890358][ T9192] loop0: detected capacity change from 0 to 4096
[  206.973478][ T9192] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  206.980048][ T9192] ntfs3: loop0: Failed to initialize $Extend/$ObjId.
[  207.213238][ T2905] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22.
[  207.251848][ T5772] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  207.283323][ T5772] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  207.290342][ T5772] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  207.335983][   T49] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22.
[  207.458873][ T9207] loop2: detected capacity change from 0 to 512
[  207.509066][ T9207] EXT4-fs: Ignoring removed bh option
[  207.532663][ T9211] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  207.555763][ T9211] overlayfs: NFS export requires an index dir, falling back to nfs_export=off.
[  207.565957][ T9207] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  207.601422][ T9207] EXT4-fs (loop2): 1 truncate cleaned up
[  207.645235][ T9207] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.700112][ T9207] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.1238: bg 0: block 465: padding at end of block bitmap is not set
[  207.761021][ T9207] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  207.794537][ T9207] EXT4-fs (loop2): This should not happen!! Data will be lost
[  207.794537][ T9207] 
[  207.831445][ T9216] loop3: detected capacity change from 0 to 128
[  207.863196][ T9207] EXT4-fs (loop2): Total free blocks count 0
[  207.869224][ T9207] EXT4-fs (loop2): Free/Dirty block details
[  207.895900][ T9216] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  207.912914][ T9207] EXT4-fs (loop2): free_blocks=0
[  207.917867][ T9216] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  207.937856][ T9207] EXT4-fs (loop2): dirty_blocks=66
[  207.962657][ T9207] EXT4-fs (loop2): Block reservation details
[  207.982114][ T9207] EXT4-fs (loop2): i_reserved_data_blocks=66
[  208.013483][ T9204] (syz.1.1237,9204,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  208.032708][ T9204] (syz.1.1237,9204,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  208.157910][ T9204] JBD2: Ignoring recovery information on journal
[  208.221528][   T49] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  208.280547][ T9204] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  208.422132][ T9225] set_capacity_and_notify: 1 callbacks suppressed
[  208.422147][ T9225] loop2: detected capacity change from 0 to 512
[  208.522921][ T9225] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.571040][ T9225] ext4 filesystem being mounted at /352/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.752884][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.803877][ T5768] ocfs2: Unmounting device (7,1) on (node local)
[  208.806799][ T9218] loop0: detected capacity change from 0 to 32768
[  208.906286][ T9218] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  208.990440][ T9218] XFS (loop0): Ending clean mount
[  209.013370][ T9241] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1246'.
[  209.349289][ T5772] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  209.829845][ T9265] loop1: detected capacity change from 0 to 64
[  209.904409][ T9268] loop0: detected capacity change from 0 to 128
[  209.973595][ T9268] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  210.010498][ T9268] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  210.447515][ T9279] loop0: detected capacity change from 0 to 256
[  210.456425][ T9279] exfat: Deprecated parameter 'utf8'
[  210.494803][ T9279] exfat: Deprecated parameter 'namecase'
[  210.500534][ T9279] exfat: Deprecated parameter 'namecase'
[  210.539892][ T9284] input: syz0 as /devices/virtual/input/input20
[  210.542805][ T9279] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  210.561085][ T9282] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[  211.181043][ T9280] loop3: detected capacity change from 0 to 32768
[  211.188508][   T11] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  211.217289][ T9280] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.1263 (9280)
[  211.256159][ T9280] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  211.273266][ T9280] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  211.292507][ T9280] BTRFS info (device loop3): enabling disk space caching
[  211.332967][ T9280] BTRFS info (device loop3): force clearing of disk cache
[  211.353414][ T9280] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  211.362824][ T9280] BTRFS info (device loop3): use zstd compression, level 3
[  211.380595][ T9280] BTRFS info (device loop3): disk space caching is enabled
[  211.437915][ T9287] loop2: detected capacity change from 0 to 32768
[  211.481497][ T9287] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  211.512280][ T9287] JBD2: Ignoring recovery information on journal
[  211.543426][ T9280] BTRFS info (device loop3): enabling ssd optimizations
[  211.550416][ T9280] BTRFS info (device loop3): auto enabling async discard
[  211.640276][ T9280] BTRFS info (device loop3): rebuilding free space tree
[  211.687702][ T9287] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  211.710742][ T9280] BTRFS info (device loop3): disabling free space tree
[  211.725501][ T9280] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  211.759655][ T9280] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  211.839532][ T9318] program syz.1.1271 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  211.897546][ T9321] loop0: detected capacity change from 0 to 256
[  211.951621][ T9321] exfat: Deprecated parameter 'utf8'
[  211.973173][ T9321] exfat: Deprecated parameter 'utf8'
[  211.978550][ T9321] exfat: Deprecated parameter 'utf8'
[  212.058658][ T9321] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x0afbdf60, utbl_chksum : 0xe619d30d)
[  212.113553][ T5775] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  212.189885][ T5765] ocfs2: Unmounting device (7,2) on (node local)
[  212.350975][ T9327] loop0: detected capacity change from 0 to 512
[  212.429491][ T9327] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #15: comm syz.0.1277: iget: bad i_size value: 38620345925642
[  212.488087][ T9327] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.1277: couldn't read orphan inode 15 (err -117)
[  212.545556][ T9327] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.758617][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.904708][ T9340] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1283'.
[  213.171269][ T9349] netlink: 'syz.1.1286': attribute type 11 has an invalid length.
[  213.352953][ T9354] loop3: detected capacity change from 0 to 256
[  213.521844][ T9335] loop2: detected capacity change from 0 to 40427
[  213.575988][ T9335] F2FS-fs (loop2): Found nat_bits in checkpoint
[  213.725131][ T9335] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  213.838019][ T9367] vxfs: WRONG superblock magic 00000000 at 1
[  213.876413][ T9367] vxfs: WRONG superblock magic 00000000 at 8
[  213.877173][ T5765] syz-executor: attempt to access beyond end of device
[  213.877173][ T5765] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  213.882424][ T9367] vxfs: can't find superblock.
[  213.918888][ T5765] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  213.986679][ T9346] loop0: detected capacity change from 0 to 32768
[  214.009559][ T9371] input: syz1 as /devices/virtual/input/input21
[  214.096857][ T9346] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  214.291252][ T9346] XFS (loop0): Ending clean mount
[  214.356514][ T9346] XFS (loop0): Quotacheck needed: Please wait.
[  214.502199][ T9346] XFS (loop0): Quotacheck: Done.
[  214.618422][ T9392] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1300'.
[  214.817853][ T5772] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  215.023399][ T5849] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  215.212186][ T9396] loop3: detected capacity change from 0 to 32768
[  215.229956][ T5849] usb 3-1: Using ep0 maxpacket: 8
[  215.236930][ T9396] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.1302 (9396)
[  215.258943][ T5849] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  215.275810][ T5849] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  215.291154][ T5849] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  215.301257][ T9396] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  215.318721][ T9396] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  215.328500][ T5849] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  215.347869][ T9396] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  215.360625][ T5849] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  215.369924][ T9396] BTRFS info (device loop3): use zstd compression, level 3
[  215.377875][ T5849] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.386900][ T9396] BTRFS info (device loop3): using free space tree
[  215.485696][ T9396] BTRFS info (device loop3): enabling ssd optimizations
[  215.493267][ T9396] BTRFS info (device loop3): auto enabling async discard
[  215.614109][ T5849] usb 3-1: GET_CAPABILITIES returned 0
[  215.622279][   T27] audit: type=1800 audit(1775131823.180:13): pid=9396 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1302" name="file1" dev="loop3" ino=260 res=0 errno=0
[  215.623615][ T5849] usbtmc 3-1:16.0: can't read capabilities
[  215.683227][  T787] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  215.704838][ T5775] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  215.761525][ T9400] loop1: detected capacity change from 0 to 32768
[  215.849563][ T7044] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 9 /dev/loop3 scanned by udevd (7044)
[  215.855756][ T5849] usb 3-1: USB disconnect, device number 10
[  215.877718][  T787] usb 1-1: Using ep0 maxpacket: 32
[  215.909517][  T787] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  215.947898][  T787] usb 1-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  215.962225][  T787] usb 1-1: config 0 interface 0 has no altsetting 0
[  215.993386][  T787] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  216.009860][  T787] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.028140][  T787] usb 1-1: Product: syz
[  216.035550][  T787] usb 1-1: Manufacturer: syz
[  216.047010][  T787] usb 1-1: SerialNumber: syz
[  216.064231][  T787] usb 1-1: config 0 descriptor??
[  216.273778][  T786] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  216.463193][ T9428] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  216.477562][ T5803] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[  216.480001][  T787] gs_usb 1-1:0.0: Configuring for 112 interfaces
[  216.524733][  T786] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  216.535788][  T786] usb 4-1: config 0 interface 0 has no altsetting 0
[  216.546065][  T786] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  216.557126][  T786] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  216.565474][  T786] usb 4-1: Product: syz
[  216.569663][  T786] usb 4-1: Manufacturer: syz
[  216.574532][  T786] usb 4-1: SerialNumber: syz
[  216.581943][  T786] usb 4-1: config 0 descriptor??
[  216.591189][  T786] usb 4-1: selecting invalid altsetting 0
[  216.677118][ T5803] usb 2-1: config 5 has an invalid descriptor of length 0, skipping remainder of the config
[  216.687305][ T5803] usb 2-1: config 5 has 0 interfaces, different from the descriptor's value: 1
[  216.701750][ T5803] usb 2-1: New USB device found, idVendor=09fb, idProduct=602a, bcdDevice=fd.36
[  216.711480][ T5803] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.726729][ T5803] usb 2-1: Product: syz
[  216.730914][ T5803] usb 2-1: Manufacturer: syz
[  216.737304][ T5803] usb 2-1: SerialNumber: syz
[  216.832906][ T5803] usb 4-1: USB disconnect, device number 15
[  216.897339][  T787] gs_usb 1-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  216.909500][  T787] gs_usb 1-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[  216.919817][  T787] gs_usb: probe of 1-1:0.0 failed with error -71
[  216.933285][  T787] usb 1-1: USB disconnect, device number 18
[  216.971014][   T23] usb 2-1: USB disconnect, device number 14
[  217.601952][ T9434] loop0: detected capacity change from 0 to 1024
[  217.614660][ T9437] loop1: detected capacity change from 0 to 1024
[  217.668840][ T9437] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  217.733889][ T9437] ext4 filesystem being mounted at /346/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.766272][ T2905] hfsplus: bad catalog file entry
[  217.769242][ T9443] loop3: detected capacity change from 0 to 512
[  217.772005][ T2905] hfsplus: b-tree write err: -5, ino 3
[  217.868421][ T9443] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  217.942113][ T9443] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  218.039701][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  218.046207][ T9443] EXT4-fs (loop3): 1 truncate cleaned up
[  218.075693][ T9443] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.087105][ T9454] netem: change failed
[  218.217216][ T9443] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  218.274075][ T9443] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  218.316542][ T9460] program syz.0.1322 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  218.339079][ T9459] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  218.377050][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.161094][ T9497] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1340'.
[  219.188976][ T9497] netlink: 'syz.0.1340': attribute type 2 has an invalid length.
[  219.214323][ T9497] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1340'.
[  219.342885][ T9499] loop2: detected capacity change from 0 to 2048
[  219.393258][ T9499] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  219.438812][ T9499] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  219.673367][ T5849] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  219.863134][ T5849] usb 2-1: Using ep0 maxpacket: 16
[  219.894177][ T5849] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7
[  219.905272][  T787] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  219.937063][ T5849] usb 2-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f
[  219.953107][ T5849] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.968873][ T5849] usb 2-1: Product: syz
[  219.975820][ T5849] usb 2-1: Manufacturer: syz
[  219.980429][ T5849] usb 2-1: SerialNumber: syz
[  220.004029][ T5849] usb 2-1: config 0 descriptor??
[  220.015847][ T5849] hub 2-1:0.0: bad descriptor, ignoring hub
[  220.021772][ T5849] hub: probe of 2-1:0.0 failed with error -5
[  220.045749][ T5849] usb 2-1: Quirk or no altest; falling back to MIDI 1.0
[  220.140268][  T787] usb 3-1: unable to get BOS descriptor or descriptor too short
[  220.156703][  T787] usb 3-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40
[  220.173124][  T787] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.181136][  T787] usb 3-1: Product: syz
[  220.193304][  T787] usb 3-1: Manufacturer: syz
[  220.198063][  T787] usb 3-1: SerialNumber: syz
[  220.230068][  T787] usb 3-1: selecting invalid altsetting 1
[  220.272198][  T787] usb 3-1: unit 6 not found!
[  220.418561][ T5845] usb 2-1: USB disconnect, device number 15
[  220.423570][  T787] usb 3-1: 2:0: cannot get min/max values for control 1 (id 2)
[  220.437672][ T9511] loop0: detected capacity change from 0 to 32768
[  220.444458][  T787] snd-usb-audio: probe of 3-1:1.0 failed with error -22
[  220.462021][ T9511] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.1346 (9511)
[  220.487819][  T787] usb 3-1: selecting invalid altsetting 1
[  220.540124][ T9511] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  220.562856][ T9511] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  220.564232][  T787] usb 3-1: unit 6 not found!
[  220.572133][ T9511] BTRFS info (device loop0): setting nodatasum
[  220.593274][ T9511] BTRFS info (device loop0): force zlib compression, level 3
[  220.610418][ T9511] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8)
[  220.639732][ T9511] BTRFS info (device loop0): use lzo compression, level 0
[  220.647339][ T9511] BTRFS info (device loop0): turning on flush-on-commit
[  220.654898][ T9511] BTRFS info (device loop0): enabling auto defrag
[  220.661488][ T9511] BTRFS info (device loop0): max_inline at 4096
[  220.668314][ T9511] BTRFS info (device loop0): using free space tree
[  220.766507][ T9511] BTRFS info (device loop0): enabling ssd optimizations
[  220.807034][  T787] usb 3-1: 2:0: cannot get min/max values for control 1 (id 2)
[  220.837302][  T787] snd-usb-audio: probe of 3-1:1.1 failed with error -22
[  220.879314][  T787] usb 3-1: selecting invalid altsetting 1
[  220.884747][ T9533] loop3: detected capacity change from 0 to 1024
[  220.934538][  T787] usb 3-1: unit 6 not found!
[  220.935390][ T9533] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  220.952078][  T787] usb 3-1: 2:0: cannot get min/max values for control 1 (id 2)
[  220.984019][ T9533] ext4 filesystem being mounted at /321/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.012501][  T787] snd-usb-audio: probe of 3-1:1.2 failed with error -22
[  221.023661][  T787] usb 3-1: USB disconnect, device number 11
[  221.062268][ T5772] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  221.096426][ T9533] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 3: comm syz.3.1348: lblock 3 mapped to illegal pblock 3 (length 2)
[  221.145259][ T7001] udevd[7001]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.2/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  221.206848][ T9533] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: comm syz.3.1348: lblock 0 mapped to illegal pblock 0 (length 3)
[  221.236218][ T9533] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 117
[  221.248811][ T9533] EXT4-fs (loop3): This should not happen!! Data will be lost
[  221.248811][ T9533] 
[  221.315531][   T42] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 4: comm kworker/u4:2: lblock 4 mapped to illegal pblock 4 (length 1)
[  221.367422][   T42] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 117
[  221.411938][   T42] EXT4-fs (loop3): This should not happen!! Data will be lost
[  221.411938][   T42] 
[  221.452965][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  221.664441][ T9547] loop3: detected capacity change from 0 to 512
[  221.773459][ T9547] EXT4-fs (loop3): 1 truncate cleaned up
[  221.811681][ T9547] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.870726][ T9553] loop2: detected capacity change from 0 to 2048
[  221.888180][   T27] audit: type=1800 audit(1775131829.450:14): pid=9547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1351" name="file1" dev="loop3" ino=13 res=0 errno=0
[  221.941729][ T9553] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  221.991413][ T9553] NILFS (loop2): mounting unchecked fs
[  222.030333][ T9553] NILFS (loop2): recovery complete
[  222.038477][ T9558] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  222.492165][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.524650][ T9560] loop1: detected capacity change from 0 to 32768
[  222.765832][ T9567] loop0: detected capacity change from 0 to 64
[  222.837619][ T9567] Trying to free block not in datazone
[  222.866976][ T9567] Trying to free block not in datazone
[  222.872466][ T9567] Trying to free block not in datazone
[  222.882326][ T9567] Trying to free block not in datazone
[  222.917167][ T9567] Trying to free block not in datazone
[  222.924101][ T9567] Trying to free block not in datazone
[  222.946663][ T9567] Trying to free block not in datazone
[  222.952148][ T9567] Trying to free block not in datazone
[  222.967009][ T9567] Trying to free block not in datazone
[  222.980923][ T9567] Trying to free block not in datazone
[  222.997593][ T9567] Trying to free block not in datazone
[  223.013984][ T9567] Trying to free block not in datazone
[  223.019584][ T9567] Trying to free block not in datazone
[  223.053158][ T9567] Trying to free block not in datazone
[  223.063394][ T9567] Trying to free block not in datazone
[  223.073355][ T9567] Trying to free block not in datazone
[  223.084381][ T9567] Trying to free block not in datazone
[  223.090762][ T9567] Trying to free block not in datazone
[  223.097235][ T9567] Trying to free block not in datazone
[  223.102811][ T9567] Trying to free block not in datazone
[  223.108705][ T9567] Trying to free block not in datazone
[  223.114529][ T9567] Trying to free block not in datazone
[  223.120062][ T9567] Trying to free block not in datazone
[  223.125979][ T9567] Trying to free block not in datazone
[  223.155733][ T9567] Trying to free block not in datazone
[  223.161233][ T9567] Trying to free block not in datazone
[  223.213291][ T9567] Trying to free block not in datazone
[  223.242002][ T9567] Trying to free block not in datazone
[  223.253356][ T9567] Trying to free block not in datazone
[  223.258880][ T9567] Trying to free block not in datazone
[  223.268354][ T9567] Trying to free block not in datazone
[  223.278618][ T9567] Trying to free block not in datazone
[  223.296019][ T9567] Trying to free block not in datazone
[  223.301496][ T9567] Trying to free block not in datazone
[  223.312111][ T9567] Trying to free block not in datazone
[  223.321998][ T9567] Trying to free block not in datazone
[  223.331879][ T9567] Trying to free block not in datazone
[  223.341757][ T9567] Trying to free block not in datazone
[  223.356719][ T9567] Trying to free block not in datazone
[  223.362201][ T9567] Trying to free block not in datazone
[  223.371677][ T9567] Trying to free block not in datazone
[  223.381464][ T9567] Trying to free block not in datazone
[  223.387096][ T9567] Trying to free block not in datazone
[  223.392560][ T9567] Trying to free block not in datazone
[  223.405737][ T9567] Trying to free block not in datazone
[  223.411215][ T9567] Trying to free block not in datazone
[  223.443414][ T9567] Trying to free block not in datazone
[  223.448905][ T9567] Trying to free block not in datazone
[  223.492701][ T9567] Trying to free block not in datazone
[  223.505990][ T9567] Trying to free block not in datazone
[  223.511469][ T9567] Trying to free block not in datazone
[  223.529274][ T9567] Trying to free block not in datazone
[  223.531732][ T9583] loop3: detected capacity change from 0 to 128
[  223.536043][ T9567] Trying to free block not in datazone
[  223.555485][ T9567] Trying to free block not in datazone
[  223.561027][ T9567] Trying to free block not in datazone
[  223.573679][ T9567] Trying to free block not in datazone
[  223.579153][ T9567] Trying to free block not in datazone
[  223.600416][ T9567] Trying to free block not in datazone
[  223.622111][ T9567] Trying to free block not in datazone
[  223.633116][ T9567] Trying to free block not in datazone
[  223.650182][ T9567] Trying to free block not in datazone
[  223.662212][ T9567] Trying to free block not in datazone
[  223.672234][ T9567] Trying to free block not in datazone
[  223.688565][ T9567] Trying to free block not in datazone
[  223.695478][ T9567] Trying to free block not in datazone
[  223.701012][ T9567] Trying to free block not in datazone
[  223.728151][ T9567] Trying to free block not in datazone
[  223.742546][ T9567] Trying to free block not in datazone
[  223.750567][ T9567] Trying to free block not in datazone
[  223.773540][ T9567] Trying to free block not in datazone
[  223.779151][ T9567] Trying to free block not in datazone
[  223.789542][ T9585] loop1: detected capacity change from 0 to 256
[  223.797082][ T9567] Trying to free block not in datazone
[  223.802555][ T9567] Trying to free block not in datazone
[  223.823177][ T9567] Trying to free block not in datazone
[  223.836257][ T9567] Trying to free block not in datazone
[  223.841732][ T9567] Trying to free block not in datazone
[  223.848557][ T9567] Trying to free block not in datazone
[  223.869502][ T9567] Trying to free block not in datazone
[  223.879830][ T9567] Trying to free block not in datazone
[  223.889950][ T9567] Trying to free block not in datazone
[  223.900249][ T9567] Trying to free block not in datazone
[  223.912061][ T9567] Trying to free block not in datazone
[  223.949951][ T9567] Trying to free block not in datazone
[  223.966104][ T9567] Trying to free block not in datazone
[  223.990717][ T9567] Trying to free block not in datazone
[  224.005521][ T9567] Trying to free block not in datazone
[  224.023531][ T9567] Trying to free block not in datazone
[  224.031661][ T9567] Trying to free block not in datazone
[  224.053198][ T9567] Trying to free block not in datazone
[  224.058682][ T9567] Trying to free block not in datazone
[  224.064318][ T9567] Trying to free block not in datazone
[  224.069873][ T9567] Trying to free block not in datazone
[  224.075522][ T9567] Trying to free block not in datazone
[  224.081557][ T9567] Trying to free block not in datazone
[  224.093165][ T9567] Trying to free block not in datazone
[  224.103179][ T9567] Trying to free block not in datazone
[  224.120418][ T9567] Trying to free block not in datazone
[  224.130531][ T9567] Trying to free block not in datazone
[  224.143120][ T9567] Trying to free block not in datazone
[  224.148722][ T9567] Trying to free block not in datazone
[  224.163303][ T9567] Trying to free block not in datazone
[  224.168856][ T9567] Trying to free block not in datazone
[  224.181667][ T9567] Trying to free block not in datazone
[  224.200027][ T9567] Trying to free block not in datazone
[  224.210318][ T9567] Trying to free block not in datazone
[  224.223216][ T9567] Trying to free block not in datazone
[  224.232758][ T9567] Trying to free block not in datazone
[  224.245203][ T9567] Trying to free block not in datazone
[  224.250735][ T9567] Trying to free block not in datazone
[  224.256923][ T9567] Trying to free block not in datazone
[  224.262395][ T9567] Trying to free block not in datazone
[  224.273705][ T9567] Trying to free block not in datazone
[  224.283745][  T786] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  224.289385][ T9567] Trying to free block not in datazone
[  224.299506][ T9567] Trying to free block not in datazone
[  224.320131][ T9567] Trying to free block not in datazone
[  224.327523][ T9567] Trying to free block not in datazone
[  224.335066][ T9594] loop2: detected capacity change from 0 to 1024
[  224.341558][ T9567] Trying to free block not in datazone
[  224.348388][ T9567] Trying to free block not in datazone
[  224.354691][ T9567] Trying to free block not in datazone
[  224.360236][ T9567] Trying to free block not in datazone
[  224.367337][ T9567] Trying to free block not in datazone
[  224.379891][ T9567] Trying to free block not in datazone
[  224.385706][ T9567] Trying to free block not in datazone
[  224.391179][ T9567] Trying to free block not in datazone
[  224.397526][ T9567] Trying to free block not in datazone
[  224.420086][ T9567] Trying to free block not in datazone
[  224.426498][ T9567] Trying to free block not in datazone
[  224.434210][ T9594] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  224.452569][ T9567] Trying to free block not in datazone
[  224.459735][ T9567] Trying to free block not in datazone
[  224.471907][ T9594] ext4 filesystem being mounted at /377/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.483432][ T9567] Trying to free block not in datazone
[  224.485369][  T786] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[  224.488890][ T9567] Trying to free block not in datazone
[  224.488900][ T9567] Trying to free block not in datazone
[  224.513101][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.524982][  T786] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  224.543810][  T786] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  224.551816][  T786] usb 2-1: Manufacturer: syz
[  224.567988][  T786] usb 2-1: config 0 descriptor??
[  224.576957][ T9567] Trying to free block not in datazone
[  224.583586][ T9594] EXT4-fs error (device loop2): ext4_free_blocks:6694: comm syz.2.1372: Freeing blocks not in datazone - block = 0, count = 16
[  224.599174][ T9567] Trying to free block not in datazone
[  224.613662][ T9594] EXT4-fs (loop2): Remounting filesystem read-only
[  224.615590][ T9567] Trying to free block not in datazone
[  224.655053][ T9567] Trying to free block not in datazone
[  224.661045][ T9567] Trying to free block not in datazone
[  224.670654][ T9567] Trying to free block not in datazone
[  224.680766][ T9567] Trying to free block not in datazone
[  224.692094][ T9567] Trying to free block not in datazone
[  224.698527][ T9567] Trying to free block not in datazone
[  224.706701][ T9567] Trying to free block not in datazone
[  224.708657][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  224.714068][ T9567] Trying to free block not in datazone
[  224.726892][  T786] rc_core: IR keymap rc-hauppauge not found
[  224.727170][ T9567] Trying to free block not in datazone
[  224.732784][  T786] Registered IR keymap rc-empty
[  224.738682][ T9567] Trying to free block not in datazone
[  224.749483][ T9567] Trying to free block not in datazone
[  224.756951][ T9567] Trying to free block not in datazone
[  224.758714][  T786] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  224.764298][ T9567] Trying to free block not in datazone
[  224.789732][ T9567] Trying to free block not in datazone
[  224.800489][  T786] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input22
[  224.830183][ T9567] Trying to free block not in datazone
[  224.838714][    C0] igorplugusb 2-1:0.0: Error: urb status = -32
[  224.847192][ T9567] Trying to free block not in datazone
[  224.850749][ T5849] usb 2-1: USB disconnect, device number 16
[  224.853152][ T9567] Trying to free block not in datazone
[  224.867504][ T9567] Trying to free block not in datazone
[  224.880084][ T9567] Trying to free block not in datazone
[  224.885756][ T9567] Trying to free block not in datazone
[  224.891295][ T9567] Trying to free block not in datazone
[  224.921587][ T9567] Trying to free block not in datazone
[  224.937980][ T9567] Trying to free block not in datazone
[  224.946928][ T9567] Trying to free block not in datazone
[  224.957546][ T9567] Trying to free block not in datazone
[  224.969542][ T9567] Trying to free block not in datazone
[  224.981037][ T9567] Trying to free block not in datazone
[  224.991479][ T9567] Trying to free block not in datazone
[  224.999498][ T9567] Trying to free block not in datazone
[  225.005324][ T9567] Trying to free block not in datazone
[  225.012033][ T9567] Trying to free block not in datazone
[  225.017975][ T9567] Trying to free block not in datazone
[  225.024720][ T9567] Trying to free block not in datazone
[  225.030263][ T9567] Trying to free block not in datazone
[  225.036324][ T9567] Trying to free block not in datazone
[  225.042411][ T9567] Trying to free block not in datazone
[  225.057112][ T9567] Trying to free block not in datazone
[  225.062695][ T9567] Trying to free block not in datazone
[  225.080545][ T9567] Trying to free block not in datazone
[  225.088971][ T9567] Trying to free block not in datazone
[  225.091174][ T9610] loop2: detected capacity change from 0 to 1024
[  225.094957][ T9567] Trying to free block not in datazone
[  225.107086][ T9567] Trying to free block not in datazone
[  225.113708][ T9567] Trying to free block not in datazone
[  225.133782][ T9567] Trying to free block not in datazone
[  225.139414][ T9567] Trying to free block not in datazone
[  225.152934][ T9567] Trying to free block not in datazone
[  225.162616][ T9567] Trying to free block not in datazone
[  225.168764][ T9567] Trying to free block not in datazone
[  225.174436][ T9567] Trying to free block not in datazone
[  225.180070][ T9567] Trying to free block not in datazone
[  225.185702][ T9567] Trying to free block not in datazone
[  225.191241][ T9567] Trying to free block not in datazone
[  225.206535][ T9567] Trying to free block not in datazone
[  225.216977][ T9567] Trying to free block not in datazone
[  225.231749][ T9567] Trying to free block not in datazone
[  225.237714][ T3508] hfsplus: b-tree write err: -5, ino 25
[  225.253702][ T9567] Trying to free block not in datazone
[  225.259262][ T9567] Trying to free block not in datazone
[  225.269607][ T9567] Trying to free block not in datazone
[  225.272781][ T3508] hfsplus: b-tree write err: -5, ino 4
[  225.275220][ T9567] Trying to free block not in datazone
[  225.275228][ T9567] Trying to free block not in datazone
[  225.275234][ T9567] Trying to free block not in datazone
[  225.275239][ T9567] Trying to free block not in datazone
[  225.275245][ T9567] Trying to free block not in datazone
[  225.275250][ T9567] Trying to free block not in datazone
[  225.275256][ T9567] Trying to free block not in datazone
[  225.275262][ T9567] Trying to free block not in datazone
[  225.275268][ T9567] Trying to free block not in datazone
[  225.275273][ T9567] Trying to free block not in datazone
[  225.275280][ T9567] Trying to free block not in datazone
[  225.275286][ T9567] Trying to free block not in datazone
[  225.275291][ T9567] Trying to free block not in datazone
[  225.275298][ T9567] Trying to free block not in datazone
[  225.275304][ T9567] Trying to free block not in datazone
[  225.275310][ T9567] Trying to free block not in datazone
[  225.275317][ T9567] Trying to free block not in datazone
[  225.275322][ T9567] Trying to free block not in datazone
[  225.275327][ T9567] Trying to free block not in datazone
[  225.275333][ T9567] Trying to free block not in datazone
[  225.275338][ T9567] Trying to free block not in datazone
[  225.275344][ T9567] Trying to free block not in datazone
[  225.275350][ T9567] Trying to free block not in datazone
[  225.275356][ T9567] Trying to free block not in datazone
[  225.275362][ T9567] Trying to free block not in datazone
[  225.275367][ T9567] Trying to free block not in datazone
[  225.275372][ T9567] Trying to free block not in datazone
[  225.275378][ T9567] Trying to free block not in datazone
[  225.275384][ T9567] Trying to free block not in datazone
[  225.290661][ T3508] hfsplus: b-tree write err: -5, ino 2
[  225.292310][ T9567] Trying to free block not in datazone
[  225.299004][ T3508] hfsplus: b-tree write err: -5, ino 26
[  225.303190][ T9567] Trying to free block not in datazone
[  225.463801][ T9567] Trying to free block not in datazone
[  225.494305][ T9567] Trying to free block not in datazone
[  225.517631][ T9567] Trying to free block not in datazone
[  225.529835][ T9567] Trying to free block not in datazone
[  225.536418][ T9567] Trying to free block not in datazone
[  225.541961][ T9567] Trying to free block not in datazone
[  225.562759][ T9567] Trying to free block not in datazone
[  225.568713][ T9567] Trying to free block not in datazone
[  225.581780][ T9567] Trying to free block not in datazone
[  225.588294][ T9567] Trying to free block not in datazone
[  225.597892][ T9567] Trying to free block not in datazone
[  225.616917][ T9567] Trying to free block not in datazone
[  225.625790][ T9567] Trying to free block not in datazone
[  225.631262][ T9567] Trying to free block not in datazone
[  225.639975][ T9567] Trying to free block not in datazone
[  225.645875][ T9567] Trying to free block not in datazone
[  225.657349][ T9567] Trying to free block not in datazone
[  225.667671][ T9567] Trying to free block not in datazone
[  225.674236][ T9617] loop2: detected capacity change from 0 to 256
[  225.683344][ T9567] Trying to free block not in datazone
[  225.688816][ T9567] Trying to free block not in datazone
[  225.729449][ T9567] Trying to free block not in datazone
[  225.760716][ T9567] Trying to free block not in datazone
[  225.789700][ T9567] Trying to free block not in datazone
[  225.801042][ T9567] Trying to free block not in datazone
[  225.810557][ T9567] Trying to free block not in datazone
[  225.820289][ T9567] Trying to free block not in datazone
[  225.833401][ T9567] Trying to free block not in datazone
[  225.838874][ T9567] Trying to free block not in datazone
[  225.852017][ T9567] Trying to free block not in datazone
[  225.877681][ T9567] Trying to free block not in datazone
[  225.885494][ T9567] Trying to free block not in datazone
[  225.913242][ T9567] Trying to free block not in datazone
[  225.926913][ T9567] Trying to free block not in datazone
[  225.941700][ T9621] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1382'.
[  225.956018][ T9621] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1382'.
[  225.964989][ T9621] netlink: 'syz.2.1382': attribute type 6 has an invalid length.
[  226.144161][ T9626] loop2: detected capacity change from 0 to 1024
[  226.204715][ T9626] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.217863][ T9626] ext4 filesystem being mounted at /383/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.273475][   T49] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm kworker/u4:3: bg 0: block 112: padding at end of block bitmap is not set
[  226.292856][   T49] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 36 with max blocks 4 with error 117
[  226.306501][   T49] EXT4-fs (loop2): This should not happen!! Data will be lost
[  226.306501][   T49] 
[  226.332212][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  226.729023][ T9629] loop1: detected capacity change from 0 to 32768
[  226.772741][ T9629] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  226.888352][ T9627] loop0: detected capacity change from 0 to 40427
[  226.903829][ T9629] XFS (loop1): Ending clean mount
[  226.931394][ T9627] F2FS-fs (loop0): invalid crc value
[  226.963929][ T9627] F2FS-fs (loop0): Found nat_bits in checkpoint
[  227.085360][ T5768] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  227.125423][ T9627] F2FS-fs (loop0): Start checkpoint disabled!
[  227.136384][ T9627] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  227.462332][   T49] kworker/u4:3: attempt to access beyond end of device
[  227.462332][   T49] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  227.503175][   T49] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  227.523219][   T49] kworker/u4:3: attempt to access beyond end of device
[  227.523219][   T49] loop0: rw=2049, sector=40976, nr_sectors = 8 limit=40427
[  227.540776][   T49] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  228.352707][ T9657] loop1: detected capacity change from 0 to 32768
[  228.406656][ T9657] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  228.582059][ T7001] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  228.606586][ T9666] loop3: detected capacity change from 0 to 32768
[  228.640293][ T9666] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.1397 (9666)
[  228.703442][ T9666] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  228.730197][ T9666] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  228.740427][ T9666] BTRFS info (device loop3): using free space tree
[  228.891193][ T9666] BTRFS info (device loop3): enabling ssd optimizations
[  228.899999][ T9674] loop0: detected capacity change from 0 to 32768
[  228.913631][ T9666] BTRFS info (device loop3): auto enabling async discard
[  229.003286][ T9674] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  229.056627][ T9674] XFS (loop0): Ending clean mount
[  229.117857][ T5775] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  229.204088][ T5772] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  229.678339][ T9713] loop0: detected capacity change from 0 to 256
[  229.721768][ T9713] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  229.739293][ T9715] loop2: detected capacity change from 0 to 1024
[  230.138366][ T1322] hfsplus: bad catalog file entry
[  230.164365][ T1322] hfsplus: b-tree write err: -5, ino 3
[  230.174678][ T9723] kvm: kvm [9721]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010007) = 0xfbfffffffffffffb
[  231.030774][ T9734] loop1: detected capacity change from 0 to 32768
[  231.086946][ T9734] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  231.130402][ T9754] loop2: detected capacity change from 0 to 1024
[  231.138326][ T9734] JBD2: Ignoring recovery information on journal
[  231.195373][ T9754] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  231.214894][ T9754] ext4 filesystem being mounted at /395/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.274177][ T9734] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  231.436425][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  231.801019][ T5768] ocfs2: Unmounting device (7,1) on (node local)
[  232.102474][ T9784] loop0: detected capacity change from 0 to 128
[  232.269959][ T9787] FAT-fs (loop0): error, corrupted directory (invalid i_start)
[  232.279913][ T9787] FAT-fs (loop0): Filesystem has been set read-only
[  232.465353][ T9794] loop0: detected capacity change from 0 to 16
[  232.502332][ T9794] erofs: (device loop0): mounted with root inode @ nid 36.
[  232.646884][ T9801] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1442'.
[  232.689972][ T9801] netlink: 'syz.2.1442': attribute type 20 has an invalid length.
[  232.702815][ T9801] netlink: 'syz.2.1442': attribute type 21 has an invalid length.
[  232.775375][ T9802] loop3: detected capacity change from 0 to 2048
[  232.782659][ T9802] EXT4-fs: Ignoring removed oldalloc option
[  232.826121][ T9802] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002]
[  232.871211][ T9802] System zones: 0-7
[  232.882231][ T9802] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  232.983979][ T9802] EXT4-fs error (device loop3): ext4_find_extent:945: inode #2: comm syz.3.1441: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  233.064949][ T9802] EXT4-fs (loop3): Remounting filesystem read-only
[  233.184626][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.258843][ T9820] loop1: detected capacity change from 0 to 2048
[  233.301992][ T9820] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  233.466481][ T9826] syz.2.1454[9826] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  233.466613][ T9826] syz.2.1454[9826] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  233.971022][ T9816] loop0: detected capacity change from 0 to 40427
[  234.051055][ T9816] F2FS-fs (loop0): Corrupted extension count (33554469 + 1 > 64)
[  234.067910][ T9816] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  234.088472][ T9816] F2FS-fs (loop0): invalid crc value
[  234.233290][ T5803] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  234.332417][ T9816] F2FS-fs (loop0): Try to recover 2th superblock, ret: -30
[  234.350308][ T9816] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  234.434856][ T5803] usb 4-1: too many configurations: 9, using maximum allowed: 8
[  234.454351][ T5803] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  234.483270][ T5803] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  234.513231][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  234.524303][ T5803] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  234.551166][ T5803] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  234.583247][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  234.613940][ T5803] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  234.623609][ T5803] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  234.653542][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  234.671616][ T5803] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  234.700130][ T5803] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  234.741917][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  234.770991][ T5803] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  234.781577][ T5803] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  234.804242][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  234.812319][ T5803] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  234.833462][ T5803] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  234.873273][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  234.881200][ T5803] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  234.903766][ T5803] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  234.920438][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  234.935236][ T5803] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  234.945708][ T5803] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  234.956808][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  234.973398][ T5803] usb 4-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  234.982732][ T5803] usb 4-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  234.992170][ T5803] usb 4-1: Product: syz
[  234.996645][ T5803] usb 4-1: Manufacturer: syz
[  235.001250][ T5803] usb 4-1: SerialNumber: syz
[  235.013752][ T5849] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  235.024041][ T5803] usb 4-1: config 0 descriptor??
[  235.050823][ T5803] yurex 4-1:0.0: USB YUREX device now attached to Yurex #0
[  235.086400][ T9852] loop1: detected capacity change from 0 to 512
[  235.238581][ T9846] netlink: 27 bytes leftover after parsing attributes in process `syz.2.1463'.
[  235.262447][ T5849] usb 3-1: unable to get BOS descriptor or descriptor too short
[  235.282430][ T5849] usb 3-1: unable to read config index 0 descriptor/start: -71
[  235.302287][ T5849] usb 3-1: can't read configurations, error -71
[  235.361972][ T5803] usb 4-1: USB disconnect, device number 16
[  235.376232][ T5803] yurex 4-1:0.0: USB YUREX #0 now disconnected
[  235.400776][ T9858] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1467'.
[  235.409918][ T9858] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1467'.
[  235.420939][ T9858] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1467'.
[  235.437845][ T9858] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1467'.
[  235.446906][ T9858] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1467'.
[  235.456798][ T9858] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1467'.
[  235.573165][  T786] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  235.720029][ T9868] loop1: detected capacity change from 0 to 1024
[  235.780904][  T786] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.791588][ T1322] hfsplus: b-tree write err: -5, ino 25
[  235.792444][  T786] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  235.797543][ T1322] hfsplus: b-tree write err: -5, ino 4
[  235.815488][  T786] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.820656][ T1322] hfsplus: b-tree write err: -5, ino 2
[  235.842021][ T1322] hfsplus: b-tree write err: -5, ino 20
[  235.844454][  T786] usb 1-1: config 0 descriptor??
[  235.903230][  T786] pwc: Askey VC010 type 2 USB webcam detected.
[  236.287440][  T786] pwc: recv_control_msg error -32 req 02 val 2b00
[  236.375055][ T9882] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1479'.
[  236.511113][  T786] pwc: recv_control_msg error -71 req 02 val 2c00
[  236.522004][  T786] pwc: recv_control_msg error -71 req 04 val 1000
[  236.536618][  T786] pwc: recv_control_msg error -71 req 04 val 1300
[  236.557841][  T786] pwc: recv_control_msg error -71 req 04 val 1400
[  236.573523][  T786] pwc: recv_control_msg error -71 req 02 val 2000
[  236.581301][  T786] pwc: recv_control_msg error -71 req 02 val 2100
[  236.600594][  T786] pwc: recv_control_msg error -71 req 04 val 1500
[  236.614448][  T786] pwc: recv_control_msg error -71 req 02 val 2500
[  236.621498][ T9872] loop1: detected capacity change from 0 to 40427
[  236.628372][  T786] pwc: recv_control_msg error -71 req 02 val 2400
[  236.643343][ T5849] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  236.653688][  T786] pwc: recv_control_msg error -71 req 02 val 2600
[  236.661105][  T786] pwc: recv_control_msg error -71 req 02 val 2900
[  236.670820][ T9872] F2FS-fs (loop1): invalid crc value
[  236.679550][  T786] pwc: recv_control_msg error -71 req 02 val 2800
[  236.694872][ T9872] F2FS-fs (loop1): Found nat_bits in checkpoint
[  236.713277][  T786] pwc: recv_control_msg error -71 req 04 val 1100
[  236.733182][  T786] pwc: recv_control_msg error -71 req 04 val 1200
[  236.765343][  T786] pwc: Registered as video103.
[  236.771943][  T786] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input23
[  236.813433][  T786] usb 1-1: USB disconnect, device number 19
[  236.826663][ T9872] F2FS-fs (loop1): Start checkpoint disabled!
[  236.870465][ T5849] usb 3-1: too many configurations: 9, using maximum allowed: 8
[  236.872003][ T9872] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  236.912497][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  236.955390][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 9
[  237.007789][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.039716][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 9
[  237.069319][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.081820][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 9
[  237.093474][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.113177][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 9
[  237.123851][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.143135][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 9
[  237.153669][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.164092][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 9
[  237.182843][ T3508] kworker/u4:12: attempt to access beyond end of device
[  237.182843][ T3508] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  237.183104][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.205810][ T3508] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  237.220030][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 9
[  237.263797][ T3508] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  237.291151][ T5849] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.311694][ T5849] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 9
[  237.355025][ T5849] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  237.373126][ T5849] usb 3-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  237.381783][ T5849] usb 3-1: Product: syz
[  237.386286][ T5849] usb 3-1: Manufacturer: syz
[  237.391010][ T5849] usb 3-1: SerialNumber: syz
[  237.404352][ T5849] usb 3-1: config 0 descriptor??
[  237.638127][ T5849] usb 3-1: USB disconnect, device number 14
[  238.133240][ T5101] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  238.200528][    T9] IPVS: starting estimator thread 0...
[  238.201583][ T9908] IPVS: nq: FWM 3 0x00000003 - no destination available
[  238.215196][    C1] IPVS: nq: FWM 3 0x00000003 - no destination available
[  238.277621][ T9911] loop2: detected capacity change from 0 to 1024
[  238.303207][ T9909] IPVS: using max 25 ests per chain, 60000 per kthread
[  238.303344][ T5845] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  238.315520][ T5101] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  238.317888][  T786] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  238.339089][   T27] audit: type=1800 audit(1775131845.900:15): pid=9911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1491" name="file1" dev="loop2" ino=3 res=0 errno=0
[  238.343879][ T5101] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  238.402993][ T3508] hfsplus: b-tree write err: -5, ino 3
[  238.409405][ T5101] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  238.421520][ T5101] usb 2-1: SerialNumber: syz
[  238.554198][  T786] usb 1-1: Using ep0 maxpacket: 8
[  238.563150][ T5845] usb 4-1: Using ep0 maxpacket: 16
[  238.572620][  T786] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  238.590609][ T5845] usb 4-1: unable to get BOS descriptor or descriptor too short
[  238.599896][  T786] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  238.610272][  T786] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  238.620609][ T5845] usb 4-1: unable to read config index 0 descriptor/start: -71
[  238.630997][ T5845] usb 4-1: can't read configurations, error -71
[  238.637634][  T786] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  238.651378][  T786] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  238.660546][  T786] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.705924][ T5085] Bluetooth: hci0: unknown advertising packet type: 0x39
[  238.706010][ T5085] Bluetooth: hci0: Dropping invalid advertising data
[  238.720509][ T5085] Bluetooth: hci0: Malformed LE Event: 0x02
[  238.892044][  T786] usb 1-1: GET_CAPABILITIES returned 0
[  238.897913][  T786] usbtmc 1-1:16.0: can't read capabilities
[  239.057012][ T5101] cdc_ether 2-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.1-1, CDC Ethernet Device, 42:42:42:42:42:42
[  239.127385][    C1] usbtmc 1-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  239.163183][ T9906] usbtmc 1-1:16.0: Unable to send data, error -71
[  239.183841][ T5101] usb 1-1: USB disconnect, device number 20
[  239.314543][ T5803] usb 2-1: USB disconnect, device number 17
[  239.337142][ T5803] cdc_ether 2-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.1-1, CDC Ethernet Device
[  239.343788][ T9925] netlink: 'syz.2.1497': attribute type 7 has an invalid length.
[  239.372230][ T9925] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1497'.
[  239.576008][ T9930] loop3: detected capacity change from 0 to 4096
[  240.027683][ T9949] netlink: 'syz.1.1504': attribute type 1 has an invalid length.
[  240.107468][ T9952] loop3: detected capacity change from 0 to 2048
[  240.173487][ T9952] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  240.207670][ T7044] udevd[7044]: incorrect nilfs2 checksum on /dev/loop3
[  240.258262][ T9958] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  240.313369][ T5803] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  240.504680][ T9969] tap0: tun_chr_ioctl cmd 1074025677
[  240.517089][ T5803] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  240.520537][ T9969] tap0: linktype set to 776
[  240.553194][ T5803] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  240.595723][ T5803] usb 3-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  240.605206][ T5803] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.616286][ T5803] usb 3-1: config 0 descriptor??
[  241.038838][ T5803] hid-steam 0003:28DE:1142.0011: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.2-1/input0
[  241.146458][ T5803] hid-steam 0003:28DE:1142.0011: Steam wireless receiver connected
[  241.212093][ T5803] hid-steam 0003:28DE:1142.0012: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.2-1/input0
[  241.293172][ T5803] usb 3-1: USB disconnect, device number 15
[  241.348484][ T5803] hid-steam 0003:28DE:1142.0011: Steam wireless receiver disconnected
[  241.419154][T10004] af_packet: tpacket_rcv: packet too big, clamped from 108 to 4294967272. macoff=96
[  241.425534][ T9998] fido_id[9998]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  241.502525][T10006] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1521'.
[  241.583266][T10006] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1521'.
[  241.723314][T10006] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1521'.
[  242.220842][   T49] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  242.351639][T10015] loop0: detected capacity change from 0 to 32768
[  242.374648][T10015] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.1524 (10015)
[  242.419165][T10015] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  242.457447][T10015] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  242.483556][T10015] BTRFS info (device loop0): enabling auto defrag
[  242.510422][T10015] BTRFS info (device loop0): use no compression
[  242.524998][T10015] BTRFS info (device loop0): force clearing of disk cache
[  242.553376][T10015] BTRFS info (device loop0): max_inline at 4096
[  242.571156][T10015] BTRFS info (device loop0): disabling free space tree
[  242.741106][T10015] BTRFS info (device loop0): enabling ssd optimizations
[  242.774108][T10015] BTRFS info (device loop0): auto enabling async discard
[  242.793783][T10015] BTRFS info (device loop0): rebuilding free space tree
[  242.838899][T10015] BTRFS info (device loop0): disabling free space tree
[  242.883598][T10015] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  242.923196][T10015] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  243.079699][ T5772] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  243.802159][T10086] loop3: detected capacity change from 0 to 1024
[  243.970637][ T2905] hfsplus: b-tree write err: -5, ino 25
[  243.982616][ T2905] hfsplus: b-tree write err: -5, ino 4
[  244.001007][ T2905] hfsplus: b-tree write err: -5, ino 2
[  244.018929][T10096] loop0: detected capacity change from 0 to 512
[  244.029818][ T2905] hfsplus: b-tree write err: -5, ino 20
[  244.042255][T10096] EXT4-fs: Ignoring removed nobh option
[  244.114190][T10096] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.205475][T10096] ext4 filesystem being mounted at /340/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  244.244564][T10107] raw_sendmsg: syz.3.1555 forgot to set AF_INET. Fix it!
[  244.371956][T10096] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #2: block 3: comm syz.0.1549: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0
[  244.429435][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.576471][ T5849] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  244.654890][T10117] input: syz1 as /devices/virtual/input/input24
[  244.793304][ T5849] usb 2-1: Using ep0 maxpacket: 16
[  244.810514][ T5849] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  244.837074][ T5849] usb 2-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 25
[  244.880233][ T5849] usb 2-1: config 0 interface 0 has no altsetting 0
[  244.913254][ T5849] usb 2-1: New USB device found, idVendor=6666, idProduct=8801, bcdDevice= 0.00
[  244.937763][ T5849] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.971472][ T5849] usb 2-1: config 0 descriptor??
[  244.974694][T10129] GUP no longer grows the stack in syz.0.1565 (10129): 200000004000-200000b36000 (200000000000)
[  245.005932][T10129] CPU: 1 PID: 10129 Comm: syz.0.1565 Not tainted syzkaller #0
[  245.013441][T10129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  245.023525][T10129] Call Trace:
[  245.026839][T10129]  <TASK>
[  245.029838][T10129]  dump_stack_lvl+0x18c/0x250
[  245.034547][T10129]  ? show_regs_print_info+0x20/0x20
[  245.039776][T10129]  ? load_image+0x400/0x400
[  245.044299][T10129]  ? find_vma+0x134/0x1b0
[  245.048674][T10129]  __get_user_pages+0xf0e/0x1380
[  245.053661][T10129]  ? populate_vma_page_range+0x380/0x380
[  245.059322][T10129]  ? __gup_longterm_locked+0x20f6/0x2b80
[  245.064980][T10129]  ? down_read_killable+0x1d0/0x340
[  245.070206][T10129]  __gup_longterm_locked+0x2251/0x2b80
[  245.072675][T10131] loop2: detected capacity change from 0 to 1024
[  245.075690][T10129]  ? pin_user_pages_remote+0x220/0x220
[  245.075724][T10129]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  245.075748][T10129]  ? lock_chain_count+0x20/0x20
[  245.075771][T10129]  ? internal_get_user_pages_fast+0x1fc6/0x2760
[  245.075798][T10129]  internal_get_user_pages_fast+0x21bf/0x2760
[  245.075841][T10129]  ? asan.module_dtor+0x20/0x20
[  245.075871][T10129]  ? get_user_pages_fast_only+0xa0/0xa0
[  245.075894][T10129]  ? plist_add+0x3d8/0x490
[  245.075926][T10129]  get_futex_key+0x1aa/0x1010
[  245.075952][T10129]  ? futex_unqueue+0xcb/0xf0
[  245.075970][T10129]  ? futex_wait+0x4cc/0x5e0
[  245.075988][T10129]  ? futex_setup_timer+0xc0/0xc0
[  245.144304][T10129]  ? userfaultfd_unmap_complete+0x29f/0x320
[  245.150231][T10129]  futex_wake+0x127/0x4f0
[  245.154584][T10129]  ? mremap_to+0x535/0x5e0
[  245.159035][T10129]  ? futex_wake_mark+0x150/0x150
[  245.164002][T10129]  ? __se_sys_mremap+0x898/0x11f0
[  245.169054][T10129]  do_futex+0x35d/0x3e0
[  245.173229][T10129]  ? __ia32_sys_get_robust_list+0x110/0x110
[  245.179137][T10129]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  245.185141][T10129]  __se_sys_futex+0x3a9/0x440
[  245.189837][T10129]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  245.196022][T10129]  ? __x64_sys_futex+0xf0/0xf0
[  245.200812][T10129]  ? __x64_sys_futex+0x21/0xf0
[  245.205597][T10129]  do_syscall_64+0x55/0xa0
[  245.210045][T10129]  ? clear_bhb_loop+0x40/0x90
[  245.214739][T10129]  ? clear_bhb_loop+0x40/0x90
[  245.219428][T10129]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  245.224330][T10131] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.225318][T10129] RIP: 0033:0x7f369599c819
[  245.241709][T10129] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  245.261328][T10129] RSP: 002b:00007f369693a028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  245.269764][T10129] RAX: ffffffffffffffda RBX: 00007f3695c15fa0 RCX: 00007f369599c819
[  245.277750][T10129] RDX: 0000000000000001 RSI: 000000000000000a RDI: 0000200000000240
[  245.285736][T10129] RBP: 00007f3695a32c91 R08: 0000000000000000 R09: 0000000000000002
[  245.287239][T10137] loop3: detected capacity change from 0 to 256
[  245.293700][T10129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  245.293714][T10129] R13: 00007f3695c16038 R14: 00007f3695c15fa0 R15: 00007ffd18786128
[  245.293742][T10129]  </TASK>
[  245.419125][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.619020][T10144] loop2: detected capacity change from 0 to 512
[  245.685706][T10144] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  245.701701][T10144] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[  245.722226][T10144] EXT4-fs (loop2): 1 truncate cleaned up
[  245.746040][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0x0
[  245.757367][T10144] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.788336][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0x0
[  245.810809][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0x0
[  245.861226][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0x0
[  245.895525][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0x0
[  245.913616][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0x0
[  245.914304][T10144] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  245.922858][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0x4
[  245.981822][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0x6
[  246.004710][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0xd
[  246.015527][T10144] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  246.030571][ T5849] smartjoyplus 0003:6666:8801.0013: unknown main item tag 0xd
[  246.044740][ T5849] smartjoyplus 0003:6666:8801.0013: hidraw0: USB HID v0.08 Device [HID 6666:8801] on usb-dummy_hcd.1-1/input0
[  246.081016][ T5849] smartjoyplus 0003:6666:8801.0013: Force feedback for SmartJoy PLUS PS2/USB adapter
[  246.106679][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.120211][ T5849] usb 2-1: USB disconnect, device number 18
[  246.209246][T10153] fido_id[10153]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  246.728831][T10171] loop0: detected capacity change from 0 to 512
[  246.766273][T10171] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  246.779719][T10171] ext4 filesystem being mounted at /351/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.822829][T10171] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  246.875789][T10177] loop2: detected capacity change from 0 to 2048
[  246.885877][T10177] UDF-fs: bad mount option "vL‘Ëolume=000000000063" or missing value
[  246.904645][T10171] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[  247.074984][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.616838][T10175] loop3: detected capacity change from 0 to 32768
[  247.714380][T10175] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  247.843926][T10175] XFS (loop3): Ending clean mount
[  247.872872][T10175] XFS (loop3): Quotacheck needed: Please wait.
[  247.982903][T10204] loop1: detected capacity change from 0 to 256
[  247.999934][T10175] XFS (loop3): Quotacheck: Done.
[  248.031006][T10204] exfat: Deprecated parameter 'utf8'
[  248.071153][T10204] exfat: Deprecated parameter 'namecase'
[  248.093184][T10204] exfat: Deprecated parameter 'namecase'
[  248.121689][T10204] exfat: Deprecated parameter 'utf8'
[  248.149913][T10204] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[  248.185352][ T5775] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  248.225496][T10191] loop0: detected capacity change from 0 to 40427
[  248.269759][T10191] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x7ffff
[  248.317614][T10191] F2FS-fs (loop0): invalid crc value
[  248.376720][T10191] F2FS-fs (loop0): Found nat_bits in checkpoint
[  248.563416][T10191] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  248.741074][ T5772] syz-executor: attempt to access beyond end of device
[  248.741074][ T5772] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  248.785523][ T5772] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  249.062078][T10226] loop3: detected capacity change from 0 to 128
[  249.141348][T10226] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  249.223585][T10226] ext4 filesystem being mounted at /389/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  249.364533][T10226] fscrypt (loop3, inode 12): Unsupported encryption flags (0x10)
[  249.447665][ T5775] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  249.523173][ T5849] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  249.713984][ T5849] usb 2-1: Using ep0 maxpacket: 32
[  249.721149][ T5849] usb 2-1: config 0 has an invalid interface number: 85 but max is 0
[  249.733378][ T5849] usb 2-1: config 0 has no interface number 0
[  249.739502][ T5849] usb 2-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  249.767596][ T5849] usb 2-1: config 0 interface 85 has no altsetting 0
[  249.785969][ T5849] usb 2-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  249.803863][ T5849] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  249.811888][ T5849] usb 2-1: Product: syz
[  249.830810][ T5849] usb 2-1: Manufacturer: syz
[  249.859764][ T5849] usb 2-1: SerialNumber: syz
[  249.875985][ T5849] usb 2-1: config 0 descriptor??
[  249.893198][  T786] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  250.003486][T10260] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1618'.
[  250.091086][T10263] loop0: detected capacity change from 0 to 512
[  250.103381][  T786] usb 3-1: Using ep0 maxpacket: 8
[  250.110557][  T786] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  250.113265][T10263] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  250.135370][  T786] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.176496][  T786] pvrusb2: Hardware description: Terratec Grabster AV400
[  250.189326][T10263] EXT4-fs (loop0): 1 truncate cleaned up
[  250.214543][T10263] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.227303][  T786] pvrusb2: **********
[  250.237460][  T786] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  250.271497][  T786] pvrusb2: Important functionality might not be entirely working.
[  250.286921][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.291810][  T786] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  250.342397][  T786] pvrusb2: **********
[  250.387359][ T2315] pvrusb2: Invalid write control endpoint
[  250.492312][ T2315] pvrusb2: Invalid write control endpoint
[  250.504448][ T5849] appletouch 2-1:0.85: Geyser mode initialized.
[  250.513346][ T2315] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  250.524805][ T5849] input: appletouch as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.85/input/input25
[  250.536706][ T2315] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  250.566797][ T2315] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  250.612253][ T2315] pvrusb2: Device being rendered inoperable
[  250.637165][T10244] pvrusb2: Attempted to execute control transfer when device not ok
[  250.655113][ T2315] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  250.666870][ T2315] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  250.684630][ T5803] usb 3-1: USB disconnect, device number 16
[  250.710972][ T5849] usb 2-1: USB disconnect, device number 19
[  250.711091][    C0] appletouch 2-1:0.85: atp_complete: usb_submit_urb failed with result -19
[  250.742211][ T2315] pvrusb2: Attached sub-driver cx25840
[  250.777340][ T5849] appletouch 2-1:0.85: input: appletouch disconnected
[  250.793379][ T2315] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  250.819973][ T2315] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  251.099054][T10277] loop0: detected capacity change from 0 to 32768
[  251.115466][T10277] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.1624 (10277)
[  251.146415][T10277] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  251.167933][T10277] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  251.177163][T10277] BTRFS info (device loop0): setting nodatacow, compression disabled
[  251.187523][T10277] BTRFS info (device loop0): disabling tree log
[  251.203215][T10277] BTRFS info (device loop0): max_inline at 0
[  251.225207][T10277] BTRFS info (device loop0): using free space tree
[  251.251169][T10283] loop3: detected capacity change from 0 to 512
[  251.294336][T10283] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  251.405820][T10283] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  251.442530][T10283] EXT4-fs (loop3): 1 truncate cleaned up
[  251.449057][T10277] BTRFS info (device loop0): auto enabling async discard
[  251.522038][T10283] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.672529][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.689944][ T5772] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  251.883579][ T7044] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 10 /dev/loop0 scanned by udevd (7044)
[  252.721501][T10329] loop1: detected capacity change from 0 to 1024
[  252.870684][T10329] hfsplus: invalid extended attribute record
[  252.907221][T10334] hfsplus: catalog searching failed
[  252.986524][ T1322] hfsplus: b-tree write err: -5, ino 8
[  253.160388][   T27] audit: type=1326 audit(1775131860.710:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10335 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1af99c819 code=0x7ffc0000
[  253.247384][   T27] audit: type=1326 audit(1775131860.710:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10335 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1af99c819 code=0x7ffc0000
[  253.303313][   T27] audit: type=1326 audit(1775131860.710:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10335 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7fb1af99c819 code=0x7ffc0000
[  253.380642][   T27] audit: type=1326 audit(1775131860.720:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10335 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1af99c819 code=0x7ffc0000
[  253.443139][   T27] audit: type=1326 audit(1775131860.720:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10335 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=301 compat=0 ip=0x7fb1af99c819 code=0x7ffc0000
[  253.512518][T10327] loop3: detected capacity change from 0 to 32768
[  253.520741][   T27] audit: type=1326 audit(1775131860.720:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10335 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1af99c819 code=0x7ffc0000
[  253.553791][   T27] audit: type=1326 audit(1775131860.720:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10335 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1af99c819 code=0x7ffc0000
[  253.623977][T10327] ERROR: (device loop3): dbAdjCtl: the maximum free buddy is not the old root
[  253.623977][T10327] 
[  253.642741][T10331] loop2: detected capacity change from 0 to 32768
[  253.645923][T10327] ERROR: (device loop3): remounting filesystem as read-only
[  253.684650][T10344] vcan0: tx address claim with dlc 0
[  253.740159][T10331] JBD2: Ignoring recovery information on journal
[  253.896333][T10331] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  254.136949][  T112] BUG: Bad page state in process jfsCommit  pfn:2bd0d
[  254.164289][  T112] page:ffffea0000af4340 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1c pfn:0x2bd0d
[  254.182863][  T112] flags: 0xfff0800000820d(locked|referenced|uptodate|workingset|private|node=0|zone=1|lastcpupid=0x7ff)
[  254.203516][  T112] page_type: 0xffffffff()
[  254.208914][  T112] raw: 00fff0800000820d dead000000000100 dead000000000122 0000000000000000
[  254.219758][ T5765] ocfs2: Unmounting device (7,2) on (node local)
[  254.225668][  T112] raw: 000000000000001c ffff88807c6094d8 00000000ffffffff 0000000000000000
[  254.228087][T10352] loop1: detected capacity change from 0 to 4096
[  254.242829][  T112] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  254.250940][  T112] page_owner tracks the page as allocated
[  254.266044][  T112] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x140c40(GFP_NOFS|__GFP_COMP|__GFP_HARDWALL), pid 10327, tgid 10326 (syz.3.1637), ts 253594022552, free_ts 252621172002
[  254.301300][  T112]  post_alloc_hook+0x1c1/0x200
[  254.314807][  T112]  get_page_from_freelist+0x1951/0x19e0
[  254.320597][  T112]  __alloc_pages+0x1f0/0x460
[  254.338085][T10352] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.342916][  T112]  folio_alloc+0x1e/0x30
[  254.398979][  T112]  filemap_alloc_folio+0xdf/0x490
[  254.423624][  T112]  do_read_cache_folio+0x364/0x7d0
[  254.436857][T10356] Context (ID=0x10) not attached to queue pair (handle=0x2:0xf2)
[  254.449094][  T112]  do_read_cache_page+0x32/0x250
[  254.454237][  T112]  __get_metapage+0x31a/0xfa0
[  254.458982][  T112]  diRead+0x6d3/0xb90
[  254.462982][  T112]  jfs_iget+0x90/0x440
[  254.467214][  T112]  jfs_fill_super+0x712/0xad0
[  254.471983][  T112]  mount_bdev+0x221/0x2d0
[  254.476489][  T112]  legacy_get_tree+0xea/0x180
[  254.481303][  T112]  vfs_get_tree+0x8c/0x280
[  254.485871][  T112]  do_new_mount+0x24b/0xa40
[  254.490473][  T112]  __se_sys_mount+0x2e7/0x3d0
[  254.495382][  T112] page last free stack trace:
[  254.500254][  T112]  free_unref_page_prepare+0x7b2/0x8c0
[  254.505921][  T112]  free_unref_page_list+0xbe/0x860
[  254.511234][  T112]  release_pages+0x1f7a/0x2200
[  254.516233][  T112]  tlb_flush_mmu+0x379/0x510
[  254.520914][  T112]  tlb_finish_mmu+0xf9/0x220
[  254.525660][  T112]  exit_mmap+0x428/0xb90
[  254.530037][  T112]  __mmput+0x118/0x3c0
[  254.535319][  T112]  exit_mm+0x1f2/0x2c0
[  254.539548][  T112]  do_exit+0x8dd/0x2460
[  254.543876][  T112]  do_group_exit+0x21b/0x2d0
[  254.548598][  T112]  __x64_sys_exit_group+0x3f/0x40
[  254.553835][  T112]  do_syscall_64+0x55/0xa0
[  254.558411][  T112]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  254.564708][  T112] Modules linked in:
[  254.583164][  T112] CPU: 1 PID: 112 Comm: jfsCommit Not tainted syzkaller #0
[  254.584581][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.590380][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  254.590392][  T112] Call Trace:
[  254.590399][  T112]  <TASK>
[  254.590411][  T112]  dump_stack_lvl+0x18c/0x250
[  254.620277][  T112]  ? show_regs_print_info+0x20/0x20
[  254.625502][  T112]  ? swiotlb_print_info+0x70/0x70
[  254.630553][  T112]  ? dump_page+0xba3/0x14a0
[  254.635089][  T112]  bad_page+0x14b/0x170
[  254.639341][  T112]  free_unref_page_prepare+0x85f/0x8c0
[  254.644812][  T112]  free_unref_page+0x32/0x2e0
[  254.649508][  T112]  ? __folio_put+0xef/0x210
[  254.654020][  T112]  txUnlock+0x27e/0xcb0
[  254.658175][  T112]  ? lockdep_hardirqs_on+0x98/0x150
[  254.663370][  T112]  jfs_lazycommit+0x56e/0xa70
[  254.668041][  T112]  ? txFreelock+0x5a0/0x5a0
[  254.672531][  T112]  ? do_task_dead+0xd0/0xd0
[  254.677022][  T112]  ? __kthread_parkme+0x7a/0x1c0
[  254.681957][  T112]  kthread+0x2fa/0x390
[  254.686032][  T112]  ? txFreelock+0x5a0/0x5a0
[  254.690532][  T112]  ? kthread_blkcg+0xd0/0xd0
[  254.695134][  T112]  ret_from_fork+0x48/0x80
[  254.699563][  T112]  ? kthread_blkcg+0xd0/0xd0
[  254.704167][  T112]  ret_from_fork_asm+0x11/0x20
[  254.708969][  T112]  </TASK>
[  254.762257][  T112] Disabling lock debugging due to kernel taint
[  254.768927][  T112] page:ffffea0000af4340 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1c pfn:0x2bd0d
[  254.780567][  T112] flags: 0xfff0800000820d(locked|referenced|uptodate|workingset|private|node=0|zone=1|lastcpupid=0x7ff)
[  254.792244][  T112] page_type: 0xffffffff()
[  254.798554][  T112] raw: 00fff0800000820d dead000000000100 dead000000000122 0000000000000000
[  254.807342][  T112] raw: 000000000000001c ffff88807c6094d8 00000000ffffffff 0000000000000000
[  254.816216][  T112] page dumped because: VM_BUG_ON_FOLIO(((unsigned int) folio_ref_count(folio) + 127u <= 127u))
[  254.826872][  T112] page_owner tracks the page as allocated
[  254.832611][  T112] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x140c40(GFP_NOFS|__GFP_COMP|__GFP_HARDWALL), pid 10327, tgid 10326 (syz.3.1637), ts 253594022552, free_ts 252621172002
[  254.851069][  T112]  post_alloc_hook+0x1c1/0x200
[  254.855916][  T112]  get_page_from_freelist+0x1951/0x19e0
[  254.861535][  T112]  __alloc_pages+0x1f0/0x460
[  254.866196][  T112]  folio_alloc+0x1e/0x30
[  254.870438][  T112]  filemap_alloc_folio+0xdf/0x490
[  254.875916][  T112]  do_read_cache_folio+0x364/0x7d0
[  254.881018][  T112]  do_read_cache_page+0x32/0x250
[  254.885998][  T112]  __get_metapage+0x31a/0xfa0
[  254.890672][  T112]  diRead+0x6d3/0xb90
[  254.894662][  T112]  jfs_iget+0x90/0x440
[  254.898729][  T112]  jfs_fill_super+0x712/0xad0
[  254.903631][  T112]  mount_bdev+0x221/0x2d0
[  254.908028][  T112]  legacy_get_tree+0xea/0x180
[  254.912690][  T112]  vfs_get_tree+0x8c/0x280
[  254.917137][  T112]  do_new_mount+0x24b/0xa40
[  254.923084][  T112]  __se_sys_mount+0x2e7/0x3d0
[  254.927768][  T112] page last free stack trace:
[  254.932416][  T112]  free_unref_page_prepare+0x7b2/0x8c0
[  254.942291][  T112]  free_unref_page_list+0xbe/0x860
[  254.951594][  T112]  release_pages+0x1f7a/0x2200
[  254.956659][  T112]  tlb_flush_mmu+0x379/0x510
[  254.961263][  T112]  tlb_finish_mmu+0xf9/0x220
[  254.965876][  T112]  exit_mmap+0x428/0xb90
[  254.970120][  T112]  __mmput+0x118/0x3c0
[  254.974888][  T112]  exit_mm+0x1f2/0x2c0
[  254.978999][  T112]  do_exit+0x8dd/0x2460
[  254.983438][  T112]  do_group_exit+0x21b/0x2d0
[  254.983452][ T5085] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  254.983481][ T5085] Bluetooth: hci3: Injecting HCI hardware error event
[  254.988025][  T112]  __x64_sys_exit_group+0x3f/0x40
[  254.988046][  T112]  do_syscall_64+0x55/0xa0
[  254.996513][ T5085] Bluetooth: hci3: hardware error 0x00
[  255.003019][  T112]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  255.025209][  T112] ------------[ cut here ]------------
[  255.030664][  T112] kernel BUG at include/linux/mm.h:1458!
[  255.036385][  T112] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  255.042446][  T112] CPU: 1 PID: 112 Comm: jfsCommit Tainted: G    B              syzkaller #0
[  255.051100][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  255.061133][  T112] RIP: 0010:put_metapage+0x253/0x340
[  255.066406][  T112] Code: 38 c1 0f 8c 32 ff ff ff 4c 89 ef e8 57 78 d9 fe e9 25 ff ff ff e8 5d 3c 81 fe 48 8b 3c 24 48 c7 c6 80 07 04 8b e8 7d aa c1 fe <0f> 0b 4c 8b 2c 24 4c 89 ee 48 81 e6 ff 0f 00 00 31 ff e8 76 40 81
[  255.085993][  T112] RSP: 0018:ffffc90002d07cc0 EFLAGS: 00010246
[  255.092038][  T112] RAX: 252f8bbfe94ad800 RBX: ffff88807c6094d8 RCX: 252f8bbfe94ad800
[  255.099991][  T112] RDX: 0000000000000000 RSI: ffffffff8b1c8980 RDI: ffffffff8b1c8940
[  255.107947][  T112] RBP: 000000000000007f R08: ffffffff8e8b02af R09: 1ffffffff1d16055
[  255.115947][  T112] R10: dffffc0000000000 R11: fffffbfff1d16056 R12: ffff88807c609500
[  255.123904][  T112] R13: ffffea0000af4374 R14: 1ffff1100f8c12a0 R15: 1ffff1100f8c12ad
[  255.131861][  T112] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  255.140776][  T112] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  255.147352][  T112] CR2: 0000001b2d520ff8 CR3: 0000000030800000 CR4: 00000000003506e0
[  255.155310][  T112] Call Trace:
[  255.158572][  T112]  <TASK>
[  255.161516][  T112]  txUnlock+0x427/0xcb0
[  255.165667][  T112]  jfs_lazycommit+0x56e/0xa70
[  255.170332][  T112]  ? txFreelock+0x5a0/0x5a0
[  255.174819][  T112]  ? do_task_dead+0xd0/0xd0
[  255.179303][  T112]  ? __kthread_parkme+0x7a/0x1c0
[  255.184227][  T112]  kthread+0x2fa/0x390
[  255.188276][  T112]  ? txFreelock+0x5a0/0x5a0
[  255.192761][  T112]  ? kthread_blkcg+0xd0/0xd0
[  255.197332][  T112]  ret_from_fork+0x48/0x80
[  255.201732][  T112]  ? kthread_blkcg+0xd0/0xd0
[  255.206302][  T112]  ret_from_fork_asm+0x11/0x20
[  255.211052][  T112]  </TASK>
[  255.214052][  T112] Modules linked in:
[  255.223582][  T112] ---[ end trace 0000000000000000 ]---
[  255.229623][  T112] RIP: 0010:put_metapage+0x253/0x340
[  255.236514][  T112] Code: 38 c1 0f 8c 32 ff ff ff 4c 89 ef e8 57 78 d9 fe e9 25 ff ff ff e8 5d 3c 81 fe 48 8b 3c 24 48 c7 c6 80 07 04 8b e8 7d aa c1 fe <0f> 0b 4c 8b 2c 24 4c 89 ee 48 81 e6 ff 0f 00 00 31 ff e8 76 40 81
[  255.257381][  T112] RSP: 0018:ffffc90002d07cc0 EFLAGS: 00010246
[  255.263472][  T112] RAX: 252f8bbfe94ad800 RBX: ffff88807c6094d8 RCX: 252f8bbfe94ad800
[  255.271441][  T112] RDX: 0000000000000000 RSI: ffffffff8b1c8980 RDI: ffffffff8b1c8940
[  255.279592][  T112] RBP: 000000000000007f R08: ffffffff8e8b02af R09: 1ffffffff1d16055
[  255.287596][  T112] R10: dffffc0000000000 R11: fffffbfff1d16056 R12: ffff88807c609500
[  255.295597][  T112] R13: ffffea0000af4374 R14: 1ffff1100f8c12a0 R15: 1ffff1100f8c12ad
[  255.303644][  T112] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  255.312572][  T112] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  255.319372][  T112] CR2: 0000001b2d520ff8 CR3: 000000000cf32000 CR4: 00000000003506e0
[  255.327453][  T112] Kernel panic - not syncing: Fatal exception
[  255.333826][  T112] Kernel Offset: disabled
[  255.338133][  T112] Rebooting in 86400 seconds..