last executing test programs:

3.493780532s ago: executing program 1 (id=1644):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e24, @private=0xa010101}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000000c0), 0x4)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000200)={0x1, [<r1=>0x0]}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f00000008c0)={r1, 0x10, "83cd73d913625563f3877450d9e218b0"}, &(0x7f0000000340)=0x18)

2.603755439s ago: executing program 1 (id=1651):
socket$inet6_icmp(0xa, 0x2, 0x3a)

2.502623849s ago: executing program 1 (id=1653):
r0 = syz_open_dev$video(&(0x7f0000000040), 0x7f, 0x100)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x4, 0x40000003, 0x3231564e, 0x4, 0x4, 0x0, 0xc, 0xfeedcafe, 0x2, 0x3, 0x0, 0x4}})

2.323248842s ago: executing program 1 (id=1655):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000000)='./file1\x00', 0x1000400, &(0x7f0000000280)={[{@quota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@usrquota}, {@nodiscard}, {@uid}, {@uid={'uid', 0x3d, 0xee01}}]}, 0x21, 0x61b6, &(0x7f00000075c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc0185879, &(0x7f00000000c0)={@id={0x2, 0x0, @d}})

1.823222988s ago: executing program 1 (id=1663):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
dup(0xffffffffffffffff)
syz_emit_ethernet(0x4a, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r4, 0x4)
listen(r4, 0x7)

1.769939338s ago: executing program 2 (id=1665):
syz_usb_connect(0x0, 0x34, &(0x7f00000008c0)={{0x12, 0x1, 0x300, 0x65, 0xb5, 0x8e, 0x20, 0x5ac, 0x8501, 0x8542, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x22, 0x1, 0x2, 0x1, 0x60, 0xfa, [{{0x9, 0x4, 0xdd, 0x11, 0x0, 0xe, 0x1, 0x0, 0xd, [@uac_as={[@format_type_i_continuous={0x8, 0x24, 0x2, 0x1, 0x9, 0x2, 0x5, 0x80}, @format_type_i_continuous={0x8, 0x24, 0x2, 0x1, 0x3, 0x4, 0x0, 0x40}]}]}}]}}]}}, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x9})

773.758666ms ago: executing program 1 (id=1674):
syz_usb_connect(0x0, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x4b, 0x41, 0x46, 0x8, 0x1660, 0x932, 0x80ea, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x5, 0x10, 0xf}}]}}]}}, 0x0)
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000040)={&(0x7f0000001800)=[{0x63, 0x1011, 0x0, 0x0}], 0x1})

332.683905ms ago: executing program 2 (id=1675):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x80008, 0xc, 0x414}, 0x50)

223.898151ms ago: executing program 0 (id=1676):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x2}, 0xe)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe)

223.69906ms ago: executing program 2 (id=1677):
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r0, 0x8b2c, &(0x7f0000000040))

223.516329ms ago: executing program 2 (id=1678):
r0 = socket$inet(0x2, 0x3, 0x5)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000300)={'gre0\x00', &(0x7f00000000c0)={'syztnl1\x00', 0x0, 0x20, 0x7800, 0x1000, 0x8, {{0x5, 0x4, 0x2, 0x37, 0x14, 0x66, 0x0, 0xe9, 0x2f, 0x0, @private, @empty}}}})

223.460525ms ago: executing program 0 (id=1679):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000140)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)={0x20, r1, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_DEVKEY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000041}, 0x2000c0c0)

163.525819ms ago: executing program 2 (id=1680):
syz_emit_ethernet(0x36, &(0x7f0000000180)={@multicast, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @empty}, @timestamp_reply={0x11, 0xe0, 0x0, 0x0, 0x0, 0x10001}}}}}, 0x0)

163.329609ms ago: executing program 2 (id=1681):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file3\x00', 0xcc0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6865617274626561743d6e6f6e652c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c636f686572656e63793d62756666657265642c6572726f72733d636f6e74696e75652c757365725f78617474722c626172726965723d30303030303030303030303030303032363131352c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030362c696e74722c6a6f75726e616c5f6173796e635f636f6d6d69742c00535d4e036013ec9e6e7ecdee3849b40884b95e94f35cec9600cd19beb0"], 0x1, 0x442a, &(0x7f0000004480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2042, 0x0)
fallocate(r0, 0x0, 0x0, 0xffff)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0x0)
ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f00000000c0)={{r1}, 0x0, 0x0, 0x100000})
truncate(&(0x7f0000000040)='./file1\x00', 0x40006)

163.217675ms ago: executing program 0 (id=1682):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000180), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000c80)={0x0, [[0x8, 0x80, 0x6, 0x0, 0x4], [0x1, 0x100001, 0x587c5f32], [0x4000091, 0x0, 0x0, 0x8, 0x4000, 0x0, 0x4]], '\x00', [{0x400000, 0xfffffffe}, {}, {}, {}, {0x0, 0xfffffffc}, {0x3fec7e55, 0xfffffffd}, {}, {}, {0xfffffffc}, {}, {0x6}, {0xcbe, 0x3}], '\x00', 0x1300})

104.200566ms ago: executing program 0 (id=1683):
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0)
r0 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
io_setup(0x5ff, &(0x7f0000000400)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0xf4, 0x0, 0x0, r0, 0x0}])

176.659µs ago: executing program 0 (id=1684):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000340)=0x15)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x7d)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000300)=0x2)

0s ago: executing program 0 (id=1685):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', &(0x7f0000000240)=@reiserfs_5={0x14, 0x5, {0x3, 0x1, 0x2, 0x8000}}, &(0x7f0000000280), 0x0)

kernel console output (not intermixed with test programs):

67295 subj=unconfined pid=6544 comm="syz.0.254" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[   84.519301][ T6559] libceph: resolve '4' (ret=-3): failed
[   84.556620][ T6551] loop1: detected capacity change from 0 to 32768
[   84.567501][ T6551] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.257 (6551)
[   84.585808][ T6551] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   84.589828][ T6551] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   84.593219][ T6551] BTRFS info (device loop1): using free-space-tree
[   84.671564][ T5842] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   84.777392][ T6589] netlink: 104 bytes leftover after parsing attributes in process `syz.2.268'.
[   84.860421][ T6597] netlink: 8 bytes leftover after parsing attributes in process `syz.1.272'.
[   84.981472][ T6606] netlink: 56 bytes leftover after parsing attributes in process `syz.0.277'.
[   85.050029][ T6615] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   85.888511][ T5845] Bluetooth: hci2: command tx timeout
[   86.113710][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.149089][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.152539][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.155807][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.160939][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.166039][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.170410][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.175079][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.183916][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.190258][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.194089][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.201006][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.209948][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.214196][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.382770][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.413339][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.432696][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.451990][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.477925][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.499728][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.535531][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.543294][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.548724][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.551892][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.555322][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.559020][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.562186][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.565310][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.570937][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.574716][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.578341][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.582096][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.586542][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.591834][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.595118][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.598820][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.602105][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.605449][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.610420][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.614900][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.618912][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.622323][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.625729][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.631294][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.634668][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.638385][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.641853][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.645177][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.650873][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.654291][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.658057][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.661602][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.665332][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.670903][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.675163][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.679260][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.682641][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.686164][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.692204][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.695523][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.699296][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.702769][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.706189][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.711859][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.715249][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.719514][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.725530][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.734604][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.738172][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.741622][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.745025][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.748889][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.752203][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.755492][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.759391][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.762744][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.766081][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.769762][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.773213][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.776509][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.780421][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.783753][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.787473][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.908780][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.913940][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.931724][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   86.966551][ T6645] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[   87.376776][ T5910] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[   87.561234][ T5910] usb 2-1: unable to get BOS descriptor or descriptor too short
[   87.564934][ T5910] usb 2-1: not running at top speed; connect to a high speed hub
[   87.574502][ T5910] usb 2-1: config 8 has an invalid interface number: 59 but max is 0
[   87.579923][ T5910] usb 2-1: config 8 has no interface number 0
[   87.585140][ T5910] usb 2-1: New USB device found, idVendor=102c, idProduct=6251, bcdDevice=a9.94
[   87.589507][ T5910] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.593017][ T5910] usb 2-1: Product: syz
[   87.594848][ T5910] usb 2-1: Manufacturer: syz
[   87.599160][ T5910] usb 2-1: SerialNumber: syz
[   87.815544][ T5910] gspca_main: etoms-2.14.0 probing 102c:6251
[   87.853715][ T5910] usb 2-1: USB disconnect, device number 8
[   87.971427][ T6667] 9pnet_fd: Insufficient options for proto=fd
[   89.519596][ T6716] Zero length message leads to an empty skb
[   89.726246][ T6724] 9pnet_fd: Insufficient options for proto=fd
[   90.036898][   T10] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[   90.188427][   T10] usb 2-1: New USB device found, idVendor=041e, idProduct=400c, bcdDevice=af.98
[   90.192083][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.198477][   T10] usb 2-1: config 0 descriptor??
[   90.205391][   T10] pwc: Creative Labs Webcam 5 detected.
[   90.419104][   T10] pwc: Failed to set LED on/off time (-71)
[   90.424734][   T10] pwc: send_video_command error -71
[   90.432649][   T10] pwc: Failed to set video mode VGA@30 fps; return code = -71
[   90.436240][   T10] Philips webcam 2-1:0.0: probe with driver Philips webcam failed with error -71
[   90.456845][   T10] usb 2-1: USB disconnect, device number 9
[   90.559762][ T6752] loop2: detected capacity change from 0 to 256
[   90.577279][ T6752] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[   90.822997][ T6760] loop2: detected capacity change from 0 to 1024
[   90.829355][ T6760] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[   91.081323][ T6770] loop2: detected capacity change from 0 to 1024
[   91.121035][ T6770] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.144134][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.208890][ T6777] capability: warning: `syz.2.351' uses 32-bit capabilities (legacy support in use)
[   91.246877][  T972] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[   91.398296][  T972] usb 2-1: config 0 has an invalid interface number: 241 but max is 1
[   91.401882][  T972] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   91.406050][  T972] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2
[   91.412426][  T972] usb 2-1: config 0 has no interface number 0
[   91.413123][ T6779] loop2: detected capacity change from 0 to 32768
[   91.415055][  T972] usb 2-1: config 0 interface 241 altsetting 5 endpoint 0xD has an invalid bInterval 22, changing to 8
[   91.421218][ T6779] jfs_mount: dbMount failed w/rc = -5
[   91.425065][ T6779] Mount JFS Failure: -5
[   91.427440][ T6779] jfs_mount failed w/return code = -5
[   91.433510][  T972] usb 2-1: config 0 interface 241 has no altsetting 0
[   91.442594][  T972] usb 2-1: New USB device found, idVendor=2c42, idProduct=1608, bcdDevice=bd.4b
[   91.466608][  T972] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.481659][  T972] usb 2-1: config 0 descriptor??
[   91.712291][  T972] usb 2-1: string descriptor 0 read error: -71
[   91.714850][  T972] f81232 2-1:0.241: f81534a converter detected
[   91.720792][  T972] f81534a ttyUSB0: f81232_set_register failed status: -71
[   91.723419][  T972] f81534a ttyUSB0: probe with driver f81534a failed with error -5
[   91.728555][  T972] usb 2-1: USB disconnect, device number 10
[   91.736136][  T972] f81232 2-1:0.241: device disconnected
[   91.742620][   T47] libceph: connect (1)[c::]:6789 error -101
[   91.746606][   T47] libceph: mon0 (1)[c::]:6789 connect error
[   91.772759][ T6787] ceph: No mds server is up or the cluster is laggy
[   92.416251][ T6808] netlink: 'syz.1.363': attribute type 10 has an invalid length.
[   92.419055][ T6808] team0: Device dummy0 is up. Set it down before adding it as a team port
[   92.470080][ T6810] loop1: detected capacity change from 0 to 2048
[   92.489691][ T6810] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.501379][ T6810] EXT4-fs error (device loop1): ext4_ext_precache:649: inode #2: comm syz.1.364: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   92.508319][ T6814] loop2: detected capacity change from 0 to 1024
[   92.511018][ T6810] EXT4-fs (loop1): Remounting filesystem read-only
[   92.514094][ T6814] hfsplus: unable to find HFS+ superblock
[   92.534158][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.577812][ T6816] netlink: 'syz.2.367': attribute type 21 has an invalid length.
[   92.580353][ T6816] netlink: 8 bytes leftover after parsing attributes in process `syz.2.367'.
[   92.777716][ T6833] process 'syz.2.374' launched './file0' with NULL argv: empty string added
[   93.026772][ T5910] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[   93.077326][  T791] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[   93.176764][ T5910] usb 2-1: Using ep0 maxpacket: 16
[   93.182751][ T5910] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[   93.188065][ T5910] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.191280][ T5910] usb 2-1: Product: syz
[   93.193136][ T5910] usb 2-1: Manufacturer: syz
[   93.194908][ T5910] usb 2-1: SerialNumber: syz
[   93.202653][ T5910] usb 2-1: config 0 descriptor??
[   93.207648][ T5910] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[   93.210800][ T5910] usb 2-1: Detected FT232H
[   93.226900][  T791] usb 3-1: Using ep0 maxpacket: 32
[   93.231977][  T791] usb 3-1: config 0 has an invalid interface number: 67 but max is 0
[   93.234686][  T791] usb 3-1: config 0 has no interface number 0
[   93.239405][  T791] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[   93.242469][  T791] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.245171][  T791] usb 3-1: Product: syz
[   93.248207][  T791] usb 3-1: Manufacturer: syz
[   93.249858][  T791] usb 3-1: SerialNumber: syz
[   93.253747][  T791] usb 3-1: config 0 descriptor??
[   93.259674][  T791] smsc95xx v2.0.0
[   93.409599][ T5910] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[   93.823204][ T5910] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   94.025050][ T5910] usb 2-1: USB disconnect, device number 11
[   94.038924][ T5910] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   94.043500][ T5910] ftdi_sio 2-1:0.0: device disconnected
[   94.266348][  T791] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000034: -71
[   94.271539][  T791] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_DATA
[   94.275998][  T791] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[   94.281403][  T791] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -71
[   94.291912][  T791] usb 3-1: USB disconnect, device number 8
[   94.565360][ T6846] loop1: detected capacity change from 0 to 2048
[   94.569078][ T6846] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[   94.574423][ T6846] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   95.027252][  T791] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[   95.195808][  T791] usb 2-1: Using ep0 maxpacket: 8
[   95.202349][  T791] usb 2-1: config 0 has no interfaces?
[   95.204264][  T791] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   95.220540][  T791] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.228151][  T791] usb 2-1: config 0 descriptor??
[   95.435221][ T5910] usb 2-1: USB disconnect, device number 12
[   95.514774][ T6911] program syz.2.408 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   95.543701][ T6913] loop2: detected capacity change from 0 to 256
[   96.076926][   T47] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[   96.226902][   T47] usb 3-1: Using ep0 maxpacket: 16
[   96.231317][   T47] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   96.235124][   T47] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   96.239558][   T47] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   96.244661][   T47] usb 3-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[   96.252537][   T47] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.259022][   T47] usb 3-1: config 0 descriptor??
[   96.669285][   T47] hid-multitouch 0003:0457:07DA.0006: hidraw0: USB HID v0.00 Device [HID 0457:07da] on usb-dummy_hcd.2-1/input0
[   96.676745][ T5958] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[   96.836776][ T5958] usb 2-1: Using ep0 maxpacket: 32
[   96.840705][ T5958] usb 2-1: config 0 interface 0 has no altsetting 0
[   96.849172][ T5958] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[   96.852725][ T5958] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.866159][ T5958] usb 2-1: Product: syz
[   96.868101][ T5958] usb 2-1: Manufacturer: syz
[   96.869232][   T10] usb 3-1: USB disconnect, device number 9
[   96.870232][ T5958] usb 2-1: SerialNumber: syz
[   96.878857][ T5958] usb 2-1: config 0 descriptor??
[   96.894749][ T5958] gs_usb 2-1:0.0: Required endpoints not found
[   97.055648][ T6963] overlayfs: failed to clone upperpath
[   97.096505][ T5910] usb 2-1: USB disconnect, device number 13
[   97.121819][ T6967] overlayfs: failed to clone upperpath
[   97.404706][ T6980] tun0: tun_chr_ioctl cmd 1074025676
[   97.406604][ T6980] tun0: owner set to 0
[   98.072800][ T7009] loop1: detected capacity change from 0 to 4096
[   98.092019][ T7012] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   98.203394][ T7019] loop1: detected capacity change from 0 to 256
[   98.257810][ T7021] loop1: detected capacity change from 0 to 512
[   98.273242][ T7021] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   98.293428][ T7021] EXT4-fs warning (device loop1): dx_probe:837: inode #2: comm syz.1.459: Unimplemented hash flags: 0x0001
[   98.297889][ T7021] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.459: Corrupt directory, running e2fsck is recommended
[   98.300865][   T33] audit: type=1326 audit(1755271859.951:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7020 comm="syz.1.459" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[   98.307917][ T7021] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 3: comm syz.1.459: path /103/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[   98.350613][   T33] audit: type=1326 audit(1755271859.951:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7020 comm="syz.1.459" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[   98.358354][   T33] audit: type=1326 audit(1755271859.951:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7020 comm="syz.1.459" exe="/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[   98.365246][   T33] audit: type=1326 audit(1755271859.991:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7020 comm="syz.1.459" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[   98.387559][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.299635][ T7057] loop1: detected capacity change from 0 to 256
[   99.314173][ T7057] FAT-fs (loop1): bogus number of FAT sectors
[   99.319202][ T7057] FAT-fs (loop1): Can't find a valid FAT filesystem
[   99.637207][   T47] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[   99.870975][   T47] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[   99.873948][   T47] usb 2-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[   99.877119][   T47] usb 2-1: config 220 has an invalid descriptor of length 127, skipping remainder of the config
[   99.881679][   T47] usb 2-1: config 220 has no interface number 2
[   99.884247][   T47] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[   99.897103][   T47] usb 2-1: config 220 interface 0 has no altsetting 0
[   99.901910][   T47] usb 2-1: config 220 interface 76 has no altsetting 0
[   99.904542][   T47] usb 2-1: config 220 interface 1 has no altsetting 0
[   99.914956][   T47] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[   99.918988][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.924778][   T47] usb 2-1: Product: syz
[   99.927546][   T47] usb 2-1: Manufacturer: syz
[   99.930995][   T47] usb 2-1: SerialNumber: syz
[  100.218160][   T47] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  100.221069][   T47] usb 2-1: No valid video chain found.
[  100.223730][   T47] usb 2-1: selecting invalid altsetting 0
[  100.257119][   T47] usb 2-1: selecting invalid altsetting 0
[  100.259805][   T47] usbtest 2-1:220.1: probe with driver usbtest failed with error -22
[  100.282642][   T47] usb 2-1: USB disconnect, device number 14
[  100.791040][ T7083] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  100.856588][ T7091] loop2: detected capacity change from 0 to 1024
[  100.868973][ T7091] EXT4-fs: Ignoring removed bh option
[  100.923545][ T7091] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.223792][ T7091] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.489: inode #6: comm syz.2.489: iget: illegal inode #
[  101.232675][ T7091] EXT4-fs (loop2): Remounting filesystem read-only
[  101.235557][ T7091] EXT4-fs warning (device loop2): ext4_xattr_block_set:2190: inode #19: comm syz.2.489: dec ref error=-30
[  101.416052][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.487634][ T7106] loop2: detected capacity change from 0 to 4096
[  101.491000][ T7106] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  101.672278][ T7116] mkiss: ax0: crc mode is auto.
[  102.464426][ T7138] loop2: detected capacity change from 0 to 32768
[  102.480215][ T7138] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  102.501865][ T7138] XFS (loop2): Ending clean mount
[  102.510083][ T7138] XFS (loop2): Quotacheck needed: Please wait.
[  102.531134][ T7138] XFS (loop2): Quotacheck: Done.
[  102.559311][ T7141] loop1: detected capacity change from 0 to 32768
[  102.565576][ T7141] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  102.570889][ T5843] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  102.575305][ T7141] XFS (loop1): Ending clean mount
[  102.579634][ T7141] XFS (loop1): Quotacheck needed: Please wait.
[  102.596403][ T7141] XFS (loop1): Quotacheck: Done.
[  102.653763][ T5842] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  102.798573][ T7169] loop2: detected capacity change from 0 to 1024
[  102.808135][ T7169] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  102.833348][ T7170] loop1: detected capacity change from 0 to 256
[  102.861205][ T7170] exfat: Deprecated parameter 'utf8'
[  102.899547][ T7170] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x40a90196, utbl_chksum : 0xe619d30d)
[  103.124045][ T7185] loop1: detected capacity change from 0 to 32768
[  103.133547][ T7185] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.523 (7185)
[  103.158236][ T7185] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  103.161745][ T7185] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  103.177203][ T7185] BTRFS info (device loop1): using free-space-tree
[  103.274129][ T5845] Bluetooth: hci2: unexpected event 0x14 length: 20 > 6
[  103.328504][ T5842] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  103.531975][ T7222] loop1: detected capacity change from 0 to 256
[  103.722850][ T7230] loop1: detected capacity change from 0 to 1024
[  103.753186][ T7230] hfsplus: xattr exists yet
[  103.790591][   T26] hfsplus: b-tree write err: -5, ino 4
[  103.846491][ T7236] loop2: detected capacity change from 0 to 2048
[  103.869770][ T7236] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  104.058781][ T7245] netlink: 'syz.2.542': attribute type 1 has an invalid length.
[  104.061459][ T7245] netlink: 232 bytes leftover after parsing attributes in process `syz.2.542'.
[  104.066981][   T47] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  104.228767][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  104.232835][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.236317][   T47] usb 2-1: New USB device found, idVendor=0853, idProduct=0148, bcdDevice= 0.00
[  104.240346][   T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.247015][   T47] usb 2-1: config 0 descriptor??
[  104.516974][    T9] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  104.655973][   T47] topre 0003:0853:0148.0007: unknown main item tag 0x0
[  104.659388][   T47] topre 0003:0853:0148.0007: unknown main item tag 0x0
[  104.663084][   T47] topre 0003:0853:0148.0007: hidraw0: USB HID v0.00 Device [HID 0853:0148] on usb-dummy_hcd.1-1/input0
[  104.678927][    T9] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  104.687306][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  104.691979][    T9] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  104.694986][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.706561][    T9] usb 3-1: config 0 descriptor??
[  104.854886][   T10] usb 2-1: USB disconnect, device number 15
[  104.923529][    T9] ath6kl: Failed to submit usb control message: -71
[  104.937607][    T9] ath6kl: unable to send the bmi data to the device: -71
[  104.944603][    T9] ath6kl: Unable to send get target info: -71
[  104.958307][    T9] ath6kl: Failed to init ath6kl core: -71
[  104.962921][    T9] ath6kl_usb 3-1:0.0: probe with driver ath6kl_usb failed with error -71
[  104.997060][    T9] usb 3-1: USB disconnect, device number 10
[  105.593198][ T7276] loop1: detected capacity change from 0 to 256
[  105.623598][ T7276] FAT-fs (loop1): Directory bread(block 64) failed
[  105.626406][ T7276] FAT-fs (loop1): Directory bread(block 65) failed
[  105.629549][ T7276] FAT-fs (loop1): Directory bread(block 66) failed
[  105.632173][ T7276] FAT-fs (loop1): Directory bread(block 67) failed
[  105.634896][ T7276] FAT-fs (loop1): Directory bread(block 68) failed
[  105.638312][ T7276] FAT-fs (loop1): Directory bread(block 69) failed
[  105.641468][ T7276] FAT-fs (loop1): Directory bread(block 70) failed
[  105.644289][ T7276] FAT-fs (loop1): Directory bread(block 71) failed
[  105.652845][ T7276] FAT-fs (loop1): Directory bread(block 72) failed
[  105.655707][ T7276] FAT-fs (loop1): Directory bread(block 73) failed
[  105.876531][ T7287] syz.0.561 uses obsolete (PF_INET,SOCK_PACKET)
[  106.501190][ T7295] loop2: detected capacity change from 0 to 16
[  106.508769][ T7295] erofs (device loop2): bogus i_mode (0) @ nid 58320
[  107.236806][   T47] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  107.390088][   T47] usb 3-1: config 0 has an invalid interface number: 182 but max is 1
[  107.393538][   T47] usb 3-1: config 0 has no interface number 1
[  107.395977][   T47] usb 3-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=9c.af
[  107.400065][   T47] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.409550][   T47] usb 3-1: config 0 descriptor??
[  107.626185][   T47] usb 3-1: USB disconnect, device number 11
[  107.806993][ T5234] Bluetooth: hci3: command 0x1003 tx timeout
[  107.807293][ T5845] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  108.178907][ T7325] loop2: detected capacity change from 0 to 2048
[  108.191705][ T7325] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.217323][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.265286][ T7330] loop2: detected capacity change from 0 to 512
[  108.281922][ T7330] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.579: casefold flag without casefold feature
[  108.290961][ T7330] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.579: couldn't read orphan inode 15 (err -117)
[  108.298940][ T7330] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.310177][ T7330] syz.2.579 (pid 7330) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  108.342014][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.885284][ T7356] loop1: detected capacity change from 0 to 128
[  108.911308][   T33] audit: type=1800 audit(1755271870.571:13): pid=7356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.591" name="file2" dev="loop1" ino=1048627 res=0 errno=0
[  109.354207][ T7371] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  109.380176][ T7371] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  109.916720][ T7412] program syz.1.616 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  109.991826][   T33] audit: type=1326 audit(1755271871.641:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.0.619" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  110.036336][   T33] audit: type=1326 audit(1755271871.641:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.0.619" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  110.073519][   T33] audit: type=1326 audit(1755271871.641:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.0.619" exe="/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  110.107627][   T33] audit: type=1326 audit(1755271871.641:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.0.619" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  110.115084][   T33] audit: type=1326 audit(1755271871.641:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.0.619" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  110.144767][ T7425] loop1: detected capacity change from 0 to 256
[  110.177478][ T7425] exfat: Deprecated parameter 'utf8'
[  110.182366][ T7425] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  110.567494][ T7439] loop2: detected capacity change from 0 to 1024
[  110.667400][ T5910] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  110.815616][ T7443] vlan1: entered allmulticast mode
[  110.819849][ T7443] veth0_vlan: entered allmulticast mode
[  110.831004][ T5910] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  110.844357][ T5910] usb 2-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  110.859321][ T5910] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.879228][ T5910] usb 2-1: config 0 descriptor??
[  111.349190][ T5910] itetech 0003:258A:6A88.0008: ignoring exceeding usage max
[  111.367614][ T5910] itetech 0003:258A:6A88.0008: hidraw0: USB HID v0.00 Device [HID 258a:6a88] on usb-dummy_hcd.1-1/input0
[  111.517575][   T47] usb 2-1: USB disconnect, device number 16
[  111.666084][ T7457] overlayfs: failed to clone upperpath
[  111.897429][ T1095] hfsplus: b-tree write err: -5, ino 4
[  112.118156][ T7475] netlink: 20 bytes leftover after parsing attributes in process `syz.1.646'.
[  112.693504][   T33] audit: type=1326 audit(1755271874.351:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7487 comm="syz.0.651" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x0
[  112.814045][ T7499] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x13
[  112.923521][ T5845] Bluetooth: Wrong link type (-71)
[  112.982232][ T7501] loop1: detected capacity change from 0 to 32768
[  112.985307][ T7501] bcachefs (/dev/loop1): error reading default superblock: Bad minimum version 1.536: (unknown version), greater than version field 1.7: mi_btree_bitmap
[  112.991516][ T7501] bcachefs (/dev/loop1): error validating superblock: Invalid option invalid compression opt 7
[  112.996189][ T7501] bcachefs: bch2_fs_get_tree() error: invalid_sb_opt_compression
[  113.048340][ T7509] netlink: 44 bytes leftover after parsing attributes in process `syz.2.660'.
[  113.122731][ T7513] netlink: 4 bytes leftover after parsing attributes in process `syz.1.662'.
[  113.216531][ T7519] syzkaller1: entered promiscuous mode
[  113.218972][ T7519] syzkaller1: entered allmulticast mode
[  113.344151][ T7521] loop1: detected capacity change from 0 to 512
[  113.351776][ T7521] EXT4-fs: journaled quota format not specified
[  113.387868][   T24] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[  113.733209][   T24] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  113.735893][   T24] usb 3-1: config 0 has no interface number 0
[  113.738612][   T24] usb 3-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  113.741564][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.745455][   T24] usb 3-1: config 0 descriptor??
[  113.751101][   T24] usb 3-1: selecting invalid altsetting 1
[  113.756119][   T24] dvb_ttusb_budget: ttusb_init_controller: error
[  113.758462][   T24] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  113.785994][   T24] DVB: Unable to find symbol cx22700_attach()
[  114.034653][   T24] DVB: Unable to find symbol tda10046_attach()
[  114.037243][   T24] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  114.058628][   T10] usb 3-1: USB disconnect, device number 12
[  114.672921][ T7556] loop1: detected capacity change from 0 to 2048
[  114.680227][ T7556] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  114.683059][ T7556] UDF-fs: Scanning with blocksize 512 failed
[  114.693333][ T7556] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  114.701508][ T7556] overlayfs: conflicting options: userxattr,redirect_dir=on
[  114.936941][ T7567] warning: `syz.1.683' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  115.172466][   T33] audit: type=1326 audit(1755271876.831:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.689" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[  115.190262][   T33] audit: type=1326 audit(1755271876.831:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.689" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[  115.200220][ T7581] loop1: detected capacity change from 0 to 512
[  115.215209][   T33] audit: type=1326 audit(1755271876.831:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.689" exe="/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[  115.230202][   T33] audit: type=1326 audit(1755271876.831:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.689" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[  115.240499][   T33] audit: type=1326 audit(1755271876.831:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.689" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[  115.255773][ T7583] loop1: detected capacity change from 0 to 128
[  115.256436][   T33] audit: type=1326 audit(1755271876.831:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.689" exe="/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[  115.267565][ T7583] ext2: Unknown parameter 'context'
[  115.273043][   T33] audit: type=1326 audit(1755271876.831:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.689" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[  115.282379][   T33] audit: type=1326 audit(1755271876.831:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.1.689" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7ffc0000
[  115.291026][ T7583] loop1: detected capacity change from 0 to 128
[  115.303485][ T7583] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  115.309653][ T7583] ext4 filesystem being mounted at /182/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  115.705921][ T5842] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  117.106973][ T5910] usb 2-1: new full-speed USB device number 17 using dummy_hcd
[  117.270934][ T5910] usb 2-1: New USB device found, idVendor=1e7d, idProduct=3232, bcdDevice= 0.00
[  117.274375][ T5910] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.280102][ T5910] usb 2-1: config 0 descriptor??
[  117.693477][ T5910] ryos 0003:1E7D:3232.0009: unknown main item tag 0x0
[  117.698076][ T5910] ryos 0003:1E7D:3232.0009: unknown main item tag 0x0
[  117.701823][ T5910] ryos 0003:1E7D:3232.0009: unknown main item tag 0x0
[  117.704492][ T5910] ryos 0003:1E7D:3232.0009: unknown main item tag 0x0
[  117.713915][ T5910] ryos 0003:1E7D:3232.0009: hidraw0: USB HID v0.01 Device [HID 1e7d:3232] on usb-dummy_hcd.1-1/input0
[  117.826005][ T7642] netlink: 24 bytes leftover after parsing attributes in process `syz.0.717'.
[  117.899015][  T972] usb 2-1: USB disconnect, device number 17
[  118.533462][ T7655] could not allocate digest TFM handle sm3
[  118.830770][ T7666] netlink: 'syz.2.726': attribute type 6 has an invalid length.
[  119.131347][ T7675] loop2: detected capacity change from 0 to 4096
[  119.144010][ T7675] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  119.150286][ T7675] ntfs3(loop2): Failed to load $Extend (-22).
[  119.152478][ T7675] ntfs3(loop2): Failed to initialize $Extend.
[  119.472748][ T7685] loop2: detected capacity change from 0 to 40427
[  119.478139][ T7685] F2FS-fs (loop2): Image doesn't support compression
[  119.480373][ T7685] F2FS-fs (loop2): build fault injection rate: 690
[  119.483425][ T7685] F2FS-fs (loop2): invalid crc value
[  119.539432][ T7685] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  119.545418][ T7685] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  119.574150][ T7689] netlink: 13 bytes leftover after parsing attributes in process `syz.1.735'.
[  119.614425][ T7691] loop1: detected capacity change from 0 to 128
[  119.624745][ T7691] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  119.629579][ T7691] ext4 filesystem being mounted at /195/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  119.651126][ T5842] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  119.703932][ T7695] loop1: detected capacity change from 0 to 2048
[  119.760286][ T7695] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.781980][ T7695] EXT4-fs (loop1): Online resizing not supported with bigalloc
[  119.811324][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.855024][ T7707] netlink: 104 bytes leftover after parsing attributes in process `syz.1.741'.
[  119.859054][ T7707] netlink: 'syz.1.741': attribute type 6 has an invalid length.
[  119.966480][ T7718] loop1: detected capacity change from 0 to 512
[  119.981211][ T7718] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  120.010458][ T7718] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.745: invalid block
[  120.020222][ T7718] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.745: invalid indirect mapped block 4294967295 (level 1)
[  120.132422][ T7718] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.745: invalid indirect mapped block 4294967295 (level 1)
[  120.164128][ T7718] EXT4-fs (loop1): 2 truncates cleaned up
[  120.169453][ T7718] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.200542][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.249377][ T7722] loop1: detected capacity change from 0 to 512
[  120.257249][ T7722] EXT4-fs (loop1): bad s_want_extra_isize: 11962
[  120.825529][ T7761] netlink: 'syz.2.764': attribute type 3 has an invalid length.
[  120.829236][ T7761] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.764'.
[  120.965919][ T7766] netlink: 16 bytes leftover after parsing attributes in process `syz.2.765'.
[  122.026991][ T5910] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  122.191362][ T5910] usb 2-1: Using ep0 maxpacket: 8
[  122.198045][ T5910] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 13
[  122.203528][ T5910] usb 2-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  122.206578][ T5910] usb 2-1: New USB device strings: Mfr=241, Product=1, SerialNumber=3
[  122.211202][ T5910] usb 2-1: Product: syz
[  122.212699][ T5910] usb 2-1: Manufacturer: syz
[  122.214497][ T5910] usb 2-1: SerialNumber: syz
[  122.231771][ T5910] usb 2-1: config 0 descriptor??
[  122.242413][ T5910] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[  122.424084][ T7794] loop2: detected capacity change from 0 to 4096
[  122.428501][ T7794] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  122.436595][ T7794] ntfs3(loop2): $Secure::$SDH is corrupted.
[  122.442509][ T7794] ntfs3(loop2): Failed to initialize $Secure (-22).
[  122.492042][ T7800] loop2: detected capacity change from 0 to 512
[  122.532561][ T7800] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.541628][ T7800] ext4 filesystem being mounted at /248/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  122.558191][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.623599][ T7810] loop2: detected capacity change from 0 to 2048
[  122.660801][ T7810] EXT4-fs (loop2): mounted filesystem 00000000-0700-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.194629][ T5910] gspca_zc3xx: reg_w_i err -71
[  123.445011][ T7837] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  123.450803][ T7837] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  123.491755][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0700-0000-0000-000000000000.
[  123.514157][ T7839] netlink: 24 bytes leftover after parsing attributes in process `syz.2.796'.
[  123.518003][ T7839] netlink: 56 bytes leftover after parsing attributes in process `syz.2.796'.
[  123.520936][ T7839] netlink: 'syz.2.796': attribute type 10 has an invalid length.
[  123.796918][ T5910] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  123.799888][ T5910] gspca_zc3xx 2-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  123.807654][ T5910] usb 2-1: USB disconnect, device number 18
[  124.095941][ T7845] loop1: detected capacity change from 0 to 32768
[  124.116985][ T7845] JBD2: Ignoring recovery information on journal
[  124.148562][ T7845] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  124.168786][ T7845] (syz.1.799,7845,0):ocfs2_group_add:495 ERROR: The disk is too old and small. Force to do offline resize.
[  124.185232][ T5842] ocfs2: Unmounting device (7,1) on (node local)
[  124.299232][ T7852] loop1: detected capacity change from 0 to 1024
[  124.308883][ T7852] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  124.310358][ T7853] netlink: 104 bytes leftover after parsing attributes in process `syz.0.802'.
[  124.312214][ T7852] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  124.319800][ T7852] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.801: iget: special inode unallocated
[  124.324457][ T7852] EXT4-fs (loop1): no journal found
[  124.326188][ T7852] EXT4-fs (loop1): can't get journal size
[  124.331682][ T7852] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #32: comm syz.1.801: iget: special inode unallocated
[  124.337167][ T7852] EXT4-fs (loop1): failed to initialize system zone (-117)
[  124.340214][ T7852] EXT4-fs (loop1): mount failed
[  124.530120][ T7864] syz.0.803 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  124.768377][ T7868] loop1: detected capacity change from 0 to 1024
[  124.772584][ T7868] EXT4-fs: inline encryption not supported
[  124.801327][ T7868] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.834475][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.032926][ T7887] loop1: detected capacity change from 0 to 512
[  125.053030][ T7887] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.058113][ T7887] ext4 filesystem being mounted at /226/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.067862][ T5910] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  125.092571][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.216922][ T5910] usb 3-1: Using ep0 maxpacket: 32
[  125.222242][ T5910] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  125.231026][ T5910] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  125.234424][ T5910] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.237526][ T5910] usb 3-1: Product: syz
[  125.238919][ T5910] usb 3-1: Manufacturer: syz
[  125.240537][ T5910] usb 3-1: SerialNumber: syz
[  125.244160][ T5910] usb 3-1: config 0 descriptor??
[  125.247510][ T5910] usb 3-1: bad CDC descriptors
[  125.249693][ T5910] usb 3-1: unsupported MDLM descriptors
[  125.399116][    T9] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  125.451120][ T5910] usb 3-1: USB disconnect, device number 13
[  125.548173][    T9] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  125.552150][    T9] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  125.564299][    T9] usb 2-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  125.568655][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.571717][    T9] usb 2-1: Product: syz
[  125.573358][    T9] usb 2-1: Manufacturer: syz
[  125.574973][    T9] usb 2-1: SerialNumber: syz
[  125.582901][    T9] usb 2-1: config 0 descriptor??
[  125.585585][ T7893] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  125.590040][ T7893] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  125.798662][ T7893] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  125.801205][ T7893] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  125.986471][ T7925] loop2: detected capacity change from 0 to 256
[  126.008697][ T7925] FAT-fs (loop2): Directory bread(block 64) failed
[  126.010869][ T7925] FAT-fs (loop2): Directory bread(block 65) failed
[  126.013049][ T7925] FAT-fs (loop2): Directory bread(block 66) failed
[  126.015199][ T7925] FAT-fs (loop2): Directory bread(block 67) failed
[  126.018855][ T7925] FAT-fs (loop2): Directory bread(block 68) failed
[  126.021184][ T7925] FAT-fs (loop2): Directory bread(block 69) failed
[  126.023551][ T7925] FAT-fs (loop2): Directory bread(block 70) failed
[  126.025783][ T7925] FAT-fs (loop2): Directory bread(block 71) failed
[  126.028430][ T7925] FAT-fs (loop2): Directory bread(block 72) failed
[  126.030670][ T7925] FAT-fs (loop2): Directory bread(block 73) failed
[  126.109663][ T7927] loop2: detected capacity change from 0 to 1024
[  126.112572][ T7927] EXT4-fs: Ignoring removed bh option
[  126.118528][ T7927] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[  126.643814][    T9] dm9601 2-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[  126.662951][    T9] dm9601 2-1:0.0 eth1: register 'dm9601' at usb-dummy_hcd.1-1, Davicom DM96xx USB 10/100 Ethernet, 6e:f1:98:9e:dd:08
[  126.672245][    T9] usb 2-1: USB disconnect, device number 19
[  126.676029][    T9] dm9601 2-1:0.0 eth1: unregister 'dm9601' usb-dummy_hcd.1-1, Davicom DM96xx USB 10/100 Ethernet
[  127.035592][ T7952] netlink: 8 bytes leftover after parsing attributes in process `syz.2.845'.
[  127.040798][ T7952] netlink: 8 bytes leftover after parsing attributes in process `syz.2.845'.
[  127.201672][ T7961] loop1: detected capacity change from 0 to 1024
[  127.232318][ T7961] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.247447][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.323678][ T7972] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  127.606767][   T24] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  127.758338][   T24] usb 2-1: config 36 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1
[  127.762289][   T24] usb 2-1: config 36 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 13364, setting to 64
[  127.769272][   T24] usb 2-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=26.29
[  127.773362][   T24] usb 2-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  127.777282][   T24] usb 2-1: Manufacturer: syz
[  127.779356][   T24] usb 2-1: SerialNumber: syz
[  128.108201][   T24] usbhid 2-1:36.0: couldn't find an input interrupt endpoint
[  128.118320][   T24] usb 2-1: USB disconnect, device number 20
[  128.494526][ T8002] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  128.497281][ T8002] IPv6: NLM_F_CREATE should be set when creating new route
[  128.834937][ T8019] loop1: detected capacity change from 0 to 32768
[  128.888525][ T8019] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  128.922451][ T8019] XFS (loop1): Ending clean mount
[  129.015708][ T8033] loop2: detected capacity change from 0 to 4096
[  129.027016][ T8033] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  129.032058][ T5842] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  129.067043][ T8033] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  129.107128][ T8033] ntfs3(loop2): Failed to initialize $Extend/$Reparse.
[  129.236488][ T8045] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.884'.
[  129.276782][ T8047] geneve2: entered promiscuous mode
[  129.278577][ T8047] geneve2: entered allmulticast mode
[  129.297568][ T8049] tipc: Started in network mode
[  129.299763][ T8049] tipc: Node identity 0000000000000000000085d3ab8e0001, cluster identity 4711
[  129.303701][ T8049] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  129.426385][ T8061] netlink: 10 bytes leftover after parsing attributes in process `syz.2.891'.
[  129.529989][ T8069] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  129.532633][ T8069] comedi comedi3: 8255: I/O port conflict (0x8000006,4)
[  129.535590][ T8069] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  129.542725][ T8069] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  129.545769][ T8069] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  129.557521][ T8069] comedi comedi3: 8255: I/O port conflict (0x7fffffff,4)
[  129.562332][ T8069] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  129.578250][ T8069] comedi comedi3: 8255: I/O port conflict (0x3000000,4)
[  129.623374][ T8073] loop1: detected capacity change from 0 to 2048
[  129.631562][ T8073] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  129.640818][ T5856] udevd[5856]: incorrect nilfs2 checksum on /dev/loop1
[  129.657193][ T5856] udevd[5856]: incorrect nilfs2 checksum on /dev/loop1
[  129.666698][ T8074] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  129.671473][ T8073] NILFS (loop1): corrupt root inode
[  130.021533][ T8085] loop1: detected capacity change from 0 to 512
[  130.024176][ T8085] EXT4-fs: Ignoring removed mblk_io_submit option
[  130.026390][ T8085] EXT4-fs: inline encryption not supported
[  130.028892][ T8085] EXT4-fs: Ignoring removed mblk_io_submit option
[  130.031478][ T8085] EXT4-fs (loop1): Test dummy encryption mode enabled
[  130.033800][ T8085] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  130.041088][ T8085] EXT4-fs (loop1): 1 truncate cleaned up
[  130.043942][ T8085] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.064327][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.346819][  T972] usb 2-1: new full-speed USB device number 21 using dummy_hcd
[  130.400426][ T8095] tipc: Failed to remove unknown binding: 66,1,1/0:3925539452/3925539454
[  130.407426][ T8095] tipc: Failed to remove unknown binding: 66,1,1/0:3925539452/3925539454
[  130.410930][ T8095] tipc: Failed to remove unknown binding: 66,1,1/0:3925539452/3925539454
[  130.464809][ T8097] loop2: detected capacity change from 0 to 2048
[  130.500996][ T8098] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  130.529669][  T972] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  130.538087][  T972] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  130.544014][  T972] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  130.554823][  T972] usb 2-1: config 1 has no interface number 0
[  130.557862][  T972] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  130.562635][  T972] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  130.569991][  T972] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  130.573977][  T972] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.585970][  T972] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  130.597905][ T8097] loop2: detected capacity change from 2048 to 64
[  130.604522][ T8099] syz.2.907: attempt to access beyond end of device
[  130.604522][ T8099] loop2: rw=0, sector=136, nr_sectors = 4 limit=64
[  130.617090][ T8099] NILFS (loop2): I/O error reading meta-data file (ino=3, block-offset=1)
[  130.727700][ T5843] syz-executor: attempt to access beyond end of device
[  130.727700][ T5843] loop2: rw=0, sector=148, nr_sectors = 4 limit=64
[  130.739602][ T5843] NILFS (loop2): I/O error reading meta-data file (ino=3, block-offset=130)
[  130.743823][ T5843] syz-executor: attempt to access beyond end of device
[  130.743823][ T5843] loop2: rw=0, sector=148, nr_sectors = 4 limit=64
[  130.749248][ T5843] NILFS (loop2): I/O error reading meta-data file (ino=3, block-offset=130)
[  130.752067][ T5843] NILFS error (device loop2): nilfs_readdir: bad page in #12
[  130.757919][ T5843] syz-executor: attempt to access beyond end of device
[  130.757919][ T5843] loop2: rw=395265, sector=2040, nr_sectors = 4 limit=64
[  130.770439][ T5843] Buffer I/O error on dev loop2, logical block 510, lost sync page write
[  130.773142][ T5843] NILFS (loop2): unable to write superblock: err=-5
[  130.779340][ T5843] Remounting filesystem read-only
[  130.788073][ T5843] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[  131.193404][  T972] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now attached
[  131.237132][ T8117] netlink: 'syz.2.914': attribute type 4 has an invalid length.
[  131.240182][ T8117] netlink: 17 bytes leftover after parsing attributes in process `syz.2.914'.
[  131.292288][ T8119] netlink: 24 bytes leftover after parsing attributes in process `syz.2.915'.
[  131.295683][ T8119] netlink: 24 bytes leftover after parsing attributes in process `syz.2.915'.
[  131.324318][ T8121] loop2: detected capacity change from 0 to 1024
[  131.347107][   T28] hfsplus: b-tree write err: -5, ino 4
[  131.414719][  T972] usb 2-1: USB disconnect, device number 21
[  131.422627][  T972] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  131.944619][ T8134] loop1: detected capacity change from 0 to 1024
[  131.970508][ T8134] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.993282][ T8134] EXT4-fs error (device loop1): __ext4_remount:6736: comm syz.1.921: Abort forced by user
[  131.997299][ T8134] EXT4-fs (loop1): Remounting filesystem read-only
[  132.000090][ T8134] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  132.023242][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.331569][ T8148] loop2: detected capacity change from 0 to 128
[  132.354021][ T8148] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  132.360687][ T8148] ext4 filesystem being mounted at /291/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.415662][ T5843] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  132.618874][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  132.620921][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  133.311408][   T33] audit: type=1326 audit(1755271894.971:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.2.943" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x0
[  133.736791][  T972] usb 2-1: new full-speed USB device number 22 using dummy_hcd
[  133.888745][  T972] usb 2-1: config 0 has an invalid interface number: 147 but max is 0
[  133.892035][  T972] usb 2-1: config 0 has no interface number 0
[  133.894399][  T972] usb 2-1: config 0 interface 147 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  133.903153][  T972] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=51.03
[  133.907798][  T972] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.911358][  T972] usb 2-1: Product: syz
[  133.913262][  T972] usb 2-1: Manufacturer: syz
[  133.915305][  T972] usb 2-1: SerialNumber: syz
[  133.922237][  T972] usb 2-1: config 0 descriptor??
[  133.925696][ T8189] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  133.943504][  T972] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  134.139823][ T5909] usb 2-1: Failed to submit usb control message: -71
[  134.140138][  T972] usb 2-1: USB disconnect, device number 22
[  134.142644][ T5909] usb 2-1: unable to send the bmi data to the device: -71
[  134.142671][ T5909] usb 2-1: unable to get target info from device
[  134.165581][ T5909] usb 2-1: could not get target info (-71)
[  134.180885][ T5909] usb 2-1: could not probe fw (-71)
[  134.650731][ T8222] sit0: entered promiscuous mode
[  134.659073][ T8222] netlink: 21 bytes leftover after parsing attributes in process `syz.0.958'.
[  134.990304][ T8254] loop1: detected capacity change from 0 to 1764
[  135.565671][ T8263] loop2: detected capacity change from 0 to 40427
[  135.575019][ T8263] F2FS-fs (loop2): build fault injection rate: 14
[  135.577603][ T8263] F2FS-fs (loop2): build fault injection type: 0x3bfe8c
[  135.581424][ T8263] F2FS-fs (loop2): invalid crc value
[  135.585818][    C0] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  135.593253][    C0] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  135.637766][ T8263] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  135.641467][ T8263] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[  135.647486][ T8263] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  135.653962][ T8263] F2FS-fs (loop2): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  135.659862][   T33] audit: type=1800 audit(1755271897.321:29): pid=8263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.974" name="file1" dev="loop2" ino=10 res=0 errno=0
[  135.668276][ T8263] F2FS-fs (loop2): inject dquot initialize in f2fs_dquot_initialize of f2fs_symlink+0x23a/0x880
[  135.691493][ T5843] syz-executor: attempt to access beyond end of device
[  135.691493][ T5843] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  135.699219][ T5843] CPU: 1 UID: 0 PID: 5843 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  135.699235][ T5843] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  135.699241][ T5843] Call Trace:
[  135.699245][ T5843]  <TASK>
[  135.699250][ T5843]  dump_stack_lvl+0x189/0x250
[  135.699268][ T5843]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.699297][ T5843]  ? __pfx_queue_work_on+0x10/0x10
[  135.699308][ T5843]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  135.699321][ T5843]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  135.699345][ T5843]  f2fs_handle_critical_error+0x37c/0x540
[  135.699363][ T5843]  f2fs_write_end_io+0x886/0xb60
[  135.699385][ T5843]  __submit_merged_bio+0x27a/0x6a0
[  135.699402][ T5843]  __submit_merged_write_cond+0x255/0x530
[  135.699420][ T5843]  f2fs_write_data_pages+0x261d/0x3000
[  135.699455][ T5843]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  135.699514][ T5843]  ? __lock_acquire+0xab9/0xd20
[  135.699534][ T5843]  ? do_raw_spin_lock+0x121/0x290
[  135.699552][ T5843]  ? do_raw_spin_unlock+0x4d/0x240
[  135.699564][ T5843]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  135.699578][ T5843]  do_writepages+0x32e/0x550
[  135.699599][ T5843]  ? do_raw_spin_unlock+0x4d/0x240
[  135.699613][ T5843]  filemap_fdatawrite+0x199/0x240
[  135.699627][ T5843]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  135.699667][ T5843]  ? preempt_schedule_thunk+0x16/0x30
[  135.699686][ T5843]  f2fs_sync_dirty_inodes+0x31f/0x830
[  135.699706][ T5843]  f2fs_write_checkpoint+0x95a/0x1df0
[  135.699732][ T5843]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  135.699771][ T5843]  ? kill_f2fs_super+0x298/0x6c0
[  135.699785][ T5843]  kill_f2fs_super+0x2c3/0x6c0
[  135.699799][ T5843]  ? __pfx_kill_f2fs_super+0x10/0x10
[  135.699807][ T5843]  ? radix_tree_delete_item+0x2b6/0x400
[  135.699824][ T5843]  ? shrinker_free+0x2ce/0x3e0
[  135.699841][ T5843]  deactivate_locked_super+0xbc/0x130
[  135.699856][ T5843]  cleanup_mnt+0x425/0x4c0
[  135.699867][ T5843]  ? lockdep_hardirqs_on+0x9c/0x150
[  135.699882][ T5843]  task_work_run+0x1d4/0x260
[  135.699897][ T5843]  ? __pfx_task_work_run+0x10/0x10
[  135.699908][ T5843]  ? __x64_sys_umount+0x122/0x160
[  135.699924][ T5843]  ? exit_to_user_mode_loop+0x40/0x110
[  135.699940][ T5843]  exit_to_user_mode_loop+0xec/0x110
[  135.699953][ T5843]  do_syscall_64+0x2bd/0x3b0
[  135.699966][ T5843]  ? lockdep_hardirqs_on+0x9c/0x150
[  135.699978][ T5843]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.699987][ T5843]  ? exc_page_fault+0x9f/0xf0
[  135.700001][ T5843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.700010][ T5843] RIP: 0033:0x7f47eb18ff17
[  135.700019][ T5843] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  135.700027][ T5843] RSP: 002b:00007ffd522111e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  135.700038][ T5843] RAX: 0000000000000000 RBX: 00007f47eb211c05 RCX: 00007f47eb18ff17
[  135.700045][ T5843] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd522112a0
[  135.700050][ T5843] RBP: 00007ffd522112a0 R08: 0000000000000000 R09: 0000000000000000
[  135.700056][ T5843] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd52212330
[  135.700062][ T5843] R13: 00007f47eb211c05 R14: 0000000000021185 R15: 00007ffd52212370
[  135.700080][ T5843]  </TASK>
[  135.700208][ T5843] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  135.920244][ T8268] netlink: 20 bytes leftover after parsing attributes in process `syz.0.976'.
[  136.061297][ T8274] loop2: detected capacity change from 0 to 164
[  136.101654][ T8276] loop2: detected capacity change from 0 to 256
[  136.104254][ T8276] exfat: Deprecated parameter 'utf8'
[  136.106118][ T8276] exfat: Deprecated parameter 'namecase'
[  136.111540][ T8276] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x7b823c56, utbl_chksum : 0xe619d30d)
[  136.287303][    T9] usb 2-1: new full-speed USB device number 23 using dummy_hcd
[  136.468528][    T9] usb 2-1: config 5 has an invalid interface number: 42 but max is 0
[  136.478322][    T9] usb 2-1: config 5 has no interface number 0
[  136.485214][    T9] usb 2-1: config 5 interface 42 has no altsetting 0
[  136.517865][    T9] usb 2-1: New USB device found, idVendor=2304, idProduct=021f, bcdDevice= 0.15
[  136.528336][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.532804][    T9] usb 2-1: Product: syz
[  136.534610][    T9] usb 2-1: Manufacturer: syz
[  136.541009][    T9] usb 2-1: SerialNumber: syz
[  136.786246][    T9] dvb-usb: found a 'PCTV HDTV USB' in warm state.
[  136.788770][    T9] pctv452e: pctv452e_power_ctrl: 1
[  136.788770][    T9] 
[  136.791297][    T9] pctv452e: pctv452e_power_ctrl: Warning set interface returned: -22
[  136.791297][    T9] 
[  136.794675][    T9] dvb-usb: bulk message failed: -22 (5/0)
[  136.800038][    T9] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  136.806328][    T9] dvb-usb: PCTV HDTV USB error while loading driver (-19)
[  136.810836][    T9] usb 2-1: USB disconnect, device number 23
[  137.540718][ T8293] 9pnet: Could not find request transport: tצUunix
[  137.673338][ T8302] loop1: detected capacity change from 0 to 1024
[  137.728620][ T8295] hfsplus: b-tree write err: -5, ino 4
[  137.865611][ T8312] netlink: 40 bytes leftover after parsing attributes in process `syz.2.993'.
[  138.048208][ T5910] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  138.212224][ T5910] usb 2-1: config 0 has an invalid interface number: 47 but max is 0
[  138.215301][ T5910] usb 2-1: config 0 has no interface number 0
[  138.218083][ T5910] usb 2-1: New USB device found, idVendor=0c45, idProduct=624e, bcdDevice=aa.6c
[  138.222449][ T5910] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.239181][ T5910] usb 2-1: config 0 descriptor??
[  138.243517][ T5910] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:624e
[  138.452569][ T5910] gspca_sn9c20x: Write register 1000 failed -71
[  138.455247][ T5910] gspca_sn9c20x: Device initialization failed
[  138.473511][ T5910] gspca_sn9c20x 2-1:0.47: probe with driver gspca_sn9c20x failed with error -71
[  138.484249][ T5910] usb 2-1: USB disconnect, device number 24
[  138.716820][   T24] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  138.880050][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.884213][   T24] usb 3-1: New USB device found, idVendor=046d, idProduct=c262, bcdDevice= 0.00
[  138.888286][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.896944][   T24] usb 3-1: config 0 descriptor??
[  139.091384][ T8356] loop1: detected capacity change from 0 to 8
[  139.115610][ T8356] SQUASHFS error: xz decompression failed, data probably corrupt
[  139.120605][ T8356] SQUASHFS error: Failed to read block 0x108: -5
[  139.122756][ T8356] SQUASHFS error: Unable to read metadata cache entry [106]
[  139.125923][ T8356] SQUASHFS error: Unable to read inode 0x11f
[  139.250049][ T8361] netlink: 'syz.1.1016': attribute type 5 has an invalid length.
[  139.298541][ T8364] tmpfs: Unknown parameter 'no'
[  139.322736][   T24] logitech-hidpp-device 0003:046D:C262.000A: unknown main item tag 0x7
[  139.325920][   T24] logitech-hidpp-device 0003:046D:C262.000A: item fetching failed at offset 6/7
[  139.347341][   T24] logitech-hidpp-device 0003:046D:C262.000A: hidpp_probe:parse failed
[  139.480914][   T24] logitech-hidpp-device 0003:046D:C262.000A: probe with driver logitech-hidpp-device failed with error -22
[  139.525587][ T5910] usb 3-1: USB disconnect, device number 14
[  139.944033][ T8378] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  140.078538][ T8383] loop2: detected capacity change from 0 to 1024
[  140.131997][ T8295] hfsplus: b-tree write err: -5, ino 4
[  140.318306][ T8389] loop2: detected capacity change from 0 to 4096
[  140.392441][ T8398] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  140.396493][ T8396] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  140.466556][ T4982] ntfs3(loop2): ino=5, mi_enum_attr
[  140.897781][ T8409] loop2: detected capacity change from 0 to 4096
[  140.944058][ T8410] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  141.172343][ T8412] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  141.534487][ T8420] loop2: detected capacity change from 0 to 256
[  141.898653][ T8429] loop2: detected capacity change from 0 to 4096
[  142.048339][ T8295] ntfs3(loop2): ino=5, mi_enum_attr
[  142.065693][ T8430] loop1: detected capacity change from 0 to 32768
[  142.072607][ T8430] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1047 (8430)
[  142.095634][ T8430] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  142.102364][ T8430] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  142.105067][ T8430] BTRFS info (device loop1): using free-space-tree
[  142.105194][ T8443] capability: warning: `syz.2.1052' uses deprecated v2 capabilities in a way that may be insecure
[  142.193770][ T5842] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  142.317661][ T8466] loop1: detected capacity change from 0 to 1024
[  142.320594][ T8466] EXT4-fs (loop1): unsupported inode size: 4096
[  142.322714][ T8466] EXT4-fs (loop1): blocksize: 1024
[  142.602345][ T8488] overlayfs: failed to clone upperpath
[  142.952471][ T8509] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1075'.
[  143.774785][ T8546] loop2: detected capacity change from 0 to 1024
[  143.782897][ T8546] EXT4-fs: Ignoring removed oldalloc option
[  143.826186][ T8546] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.859057][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.063391][   T33] audit: type=1326 audit(1755271905.721:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8557 comm="syz.0.1096" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x0
[  144.131553][ T8559] bad cache= option: no%e
[  144.131553][ T8559] 
[  144.134620][ T8559] CIFS: VFS: bad cache= option: no%e
[  144.323257][ T8562] loop1: detected capacity change from 0 to 256
[  144.350103][ T8562] FAT-fs (loop1): Directory bread(block 64) failed
[  144.353091][ T8562] FAT-fs (loop1): Directory bread(block 65) failed
[  144.355865][ T8562] FAT-fs (loop1): Directory bread(block 66) failed
[  144.359535][ T8562] FAT-fs (loop1): Directory bread(block 67) failed
[  144.362457][ T8562] FAT-fs (loop1): Directory bread(block 68) failed
[  144.365387][ T8562] FAT-fs (loop1): Directory bread(block 69) failed
[  144.369422][ T8562] FAT-fs (loop1): Directory bread(block 70) failed
[  144.372097][ T8562] FAT-fs (loop1): Directory bread(block 71) failed
[  144.374882][ T8562] FAT-fs (loop1): Directory bread(block 72) failed
[  144.378257][ T8562] FAT-fs (loop1): Directory bread(block 73) failed
[  144.394966][ T8562] syz.1.1097: attempt to access beyond end of device
[  144.394966][ T8562] loop1: rw=2051, sector=1224, nr_sectors = 32 limit=256
[  144.462279][ T8564] loop1: detected capacity change from 0 to 16
[  144.471465][ T8564] erofs (device loop1): mounted with root inode @ nid 36.
[  145.121768][   T33] audit: type=1326 audit(1755271906.781:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.2.1102" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  145.131418][   T33] audit: type=1326 audit(1755271906.781:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.2.1102" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  145.140814][   T33] audit: type=1326 audit(1755271906.791:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.2.1102" exe="/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  145.154387][   T33] audit: type=1326 audit(1755271906.791:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.2.1102" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  145.163695][   T33] audit: type=1326 audit(1755271906.791:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.2.1102" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  145.197727][ T8578] loop2: detected capacity change from 0 to 256
[  145.202224][ T8578] exfat: Deprecated parameter 'namecase'
[  145.204416][ T8578] exfat: Deprecated parameter 'utf8'
[  145.209733][ T8578] exFAT-fs (loop2): bogus fat length
[  145.212508][ T8578] exFAT-fs (loop2): failed to read boot sector
[  145.214834][ T8578] exFAT-fs (loop2): failed to recognize exfat type
[  145.650242][ T8587] loop1: detected capacity change from 0 to 32768
[  145.688831][ T8587] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  145.692387][ T8587] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  145.766598][ T8595] loop2: detected capacity change from 0 to 32768
[  145.775375][ T8595] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1112 (8595)
[  145.783508][ T8595] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  145.787493][ T8595] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  145.790721][ T8595] BTRFS info (device loop2): using free-space-tree
[  145.794824][ T8587] XFS (loop1): Ending clean mount
[  145.813684][ T8587] XFS (loop1): Quotacheck needed: Please wait.
[  145.883007][ T8587] XFS (loop1): Quotacheck: Done.
[  146.024175][ T5842] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  146.124697][ T8595] BTRFS warning (device loop2 state M): remount supports changing free space tree only from RO to RW
[  146.129220][ T8595] BTRFS info (device loop2 state M): disabling log replay at mount time
[  146.132043][ T8595] BTRFS info (device loop2 state M): force clearing of disk cache
[  146.134628][ T8595] BTRFS info (device loop2 state M): ignoring bad roots
[  146.137288][ T8595] BTRFS info (device loop2 state M): ignoring data csums
[  146.139573][ T8595] BTRFS info (device loop2 state M): ignoring meta csums
[  146.141957][ T8595] BTRFS info (device loop2 state M): ignoring unknown super block flags
[  146.203956][ T5843] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  146.522699][ T8645] loop2: detected capacity change from 0 to 8192
[  146.528009][ T8645] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  146.542197][ T8645] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  146.547252][ T8645] ntfs3(loop2): Failed to load $Extend (-2).
[  146.561067][ T8645] ntfs3(loop2): Failed to initialize $Extend.
[  146.917791][ T5910] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  147.052898][ T8693] loop1: detected capacity change from 0 to 8192
[  147.068828][ T5910] usb 3-1: Using ep0 maxpacket: 8
[  147.076131][ T5910] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  147.079613][ T5910] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  147.082886][ T5910] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  147.086571][ T5910] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  147.090115][ T5910] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  147.093673][ T5910] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  147.098836][ T5910] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  147.102854][ T5910] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.120382][ T5910] usbtmc 3-1:16.0: probe with driver usbtmc failed with error -22
[  147.325304][  T791] usb 3-1: USB disconnect, device number 15
[  147.865244][ T8720] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1159'.
[  148.113414][ T8735] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  148.225805][ T8741] overlayfs: failed to clone upperpath
[  148.240900][ T8741] overlayfs: failed to clone upperpath
[  148.249737][ T8743] loop2: detected capacity change from 0 to 512
[  148.252848][ T8743] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  148.859519][ T8730] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  148.859909][ T8733] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  148.862468][ T8730] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  148.864986][ T8733] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  148.888290][ T8733] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  148.895921][ T8733] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  148.898290][ T8730] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  148.898317][ T8730] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  148.904421][ T8733] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  148.919544][ T8733] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  148.924363][ T8730] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  148.927983][ T8730] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  149.236759][  T972] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  149.304360][ T8782] loop2: detected capacity change from 0 to 64
[  149.317756][ T8782] BFS-fs: bfs_fill_super(): Inode 0x00000002 corrupted on loop2
[  149.391996][  T972] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  149.395797][  T972] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  149.398891][  T972] usb 2-1: config 1 has no interface number 0
[  149.404192][  T972] usb 2-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  149.417998][  T972] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  149.419871][ T8788] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1190'.
[  149.421128][  T972] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.423877][ T8788] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1190'.
[  149.423893][ T8788] netlink: 'syz.2.1190': attribute type 12 has an invalid length.
[  149.435317][  T972] usb 2-1: Product: syz
[  149.437684][  T972] usb 2-1: Manufacturer: syz
[  149.439490][  T972] usb 2-1: SerialNumber: syz
[  149.649828][  T972] cdc_ncm 2-1:1.1: skipping garbage
[  149.653477][  T972] usb 2-1: selecting invalid altsetting 1
[  149.656233][  T972] cdc_ncm 2-1:1.1: bind() failure
[  149.663329][  T972] usb 2-1: USB disconnect, device number 25
[  149.786726][ T5910] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  149.937378][ T8798] netlink: 'syz.0.1195': attribute type 3 has an invalid length.
[  149.940268][ T8798] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1195'.
[  149.943343][ T8798] netlink: 'syz.0.1195': attribute type 3 has an invalid length.
[  149.946349][ T8798] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1195'.
[  149.970448][ T5910] usb 3-1: config 0 has an invalid interface number: 168 but max is 0
[  149.973196][ T5910] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  149.976769][ T5910] usb 3-1: config 0 has no interface number 0
[  149.979093][ T5910] usb 3-1: config 0 interface 168 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  149.982791][ T5910] usb 3-1: config 0 interface 168 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 16
[  149.991113][ T5910] usb 3-1: New USB device found, idVendor=0959, idProduct=2bd0, bcdDevice=48.98
[  149.995103][ T5910] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.004290][ T5910] usb 3-1: config 0 descriptor??
[  150.011715][ T5910] HFC-S_USB 3-1:0.168: probe with driver HFC-S_USB failed with error -5
[  150.213286][ T5910] usb 3-1: USB disconnect, device number 16
[  150.553666][ T8808] loop1: detected capacity change from 0 to 40427
[  150.564388][ T8808] F2FS-fs (loop1): Fix alignment : internally, start(4096) end(16896) block(12288)
[  150.568435][ T8808] F2FS-fs (loop1): invalid crc value
[  150.570448][ T8808] F2FS-fs (loop1): invalid crc value
[  150.572210][ T8808] F2FS-fs (loop1): Failed to get valid F2FS checkpoint
[  150.750576][ T8812] loop2: detected capacity change from 0 to 1024
[  150.768643][ T8812] hfsplus: request for non-existent node 3 in B*Tree
[  150.771103][ T8812] hfsplus: request for non-existent node 3 in B*Tree
[  151.540966][   T33] audit: type=1326 audit(1755271913.201:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8809 comm="syz.1.1200" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fef78ebe9 code=0x7fc00000
[  151.608662][ T8829] loop1: detected capacity change from 0 to 8
[  151.613509][ T8829] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  151.862951][ T8840] loop2: detected capacity change from 0 to 1024
[  152.106843][ T5910] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  152.247943][  T972] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  152.258636][ T5910] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  152.263109][ T5910] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x61, changing to 0x1
[  152.269761][ T5910] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 97, changing to 7
[  152.274583][ T5910] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 24929, setting to 1024
[  152.281707][ T5910] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  152.285444][ T5910] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.289577][ T5910] usb 2-1: Product: syz
[  152.291323][ T5910] usb 2-1: Manufacturer: syz
[  152.293124][ T5910] usb 2-1: SerialNumber: syz
[  152.296090][ T5910] usb 2-1: config 0 descriptor??
[  152.302605][ T5910] usb 2-1: 0:0 : invalid sync pipe. bmAttributes 61, bLength 9, bSynchAddress 61
[  152.396761][  T972] usb 3-1: Using ep0 maxpacket: 32
[  152.400406][  T972] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9
[  152.410529][  T972] usb 3-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  152.414004][  T972] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.419456][  T972] usb 3-1: Product: syz
[  152.421087][  T972] usb 3-1: Manufacturer: syz
[  152.422860][  T972] usb 3-1: SerialNumber: syz
[  152.426482][  T972] usb 3-1: config 0 descriptor??
[  152.429838][ T8849] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  152.436460][  T972] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input5
[  152.529360][ T5910] usb 2-1: USB disconnect, device number 26
[  152.638249][  T791] usb 3-1: USB disconnect, device number 17
[  152.638367][    C1] usbtouchscreen 3-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  153.157218][ T8864] device ioctl magic numbers don't match! Did you rebuild pvfs2-client-core/libpvfs2? [cmd 704, magic 7 != 6b]
[  153.404739][ T8882] loop2: detected capacity change from 0 to 8
[  153.686901][  T972] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  153.839574][  T972] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  153.844390][  T972] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  153.852615][  T972] usb 3-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[  153.856594][  T972] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.865111][  T972] usb 3-1: config 0 descriptor??
[  154.159562][ T8898] loop1: detected capacity change from 0 to 256
[  154.294891][  T972] hkems 0003:2006:0118.000B: unknown main item tag 0x2
[  154.333721][  T972] hkems 0003:2006:0118.000B: hidraw0: USB HID v0.00 Device [HID 2006:0118] on usb-dummy_hcd.2-1/input0
[  154.342059][  T972] hkems 0003:2006:0118.000B: no inputs found
[  154.344331][  T972] hkems 0003:2006:0118.000B: force feedback init failed
[  154.491664][    T9] usb 3-1: USB disconnect, device number 18
[  155.477019][    T9] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  155.626875][    T9] usb 2-1: Using ep0 maxpacket: 32
[  155.631071][    T9] usb 2-1: unable to get BOS descriptor or descriptor too short
[  155.635294][    T9] usb 2-1: config 6 has an invalid interface number: 2 but max is 0
[  155.640197][    T9] usb 2-1: config 6 has no interface number 0
[  155.642763][    T9] usb 2-1: config 6 interface 2 has no altsetting 0
[  155.652137][    T9] usb 2-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=5e.56
[  155.655999][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.661232][    T9] usb 2-1: Product: syz
[  155.663064][    T9] usb 2-1: Manufacturer: syz
[  155.665181][    T9] usb 2-1: SerialNumber: syz
[  155.964415][ T8934] loop2: detected capacity change from 0 to 512
[  155.978609][ T8934] EXT4-fs: Ignoring removed bh option
[  155.983741][ T8934] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  155.993757][ T8934] EXT4-fs (loop2): 1 truncate cleaned up
[  155.996623][ T8934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.081616][    T9] qmi_wwan 2-1:6.2: bogus CDC Union: master=0, slave=0
[  156.187271][ T8938] lo speed is unknown, defaulting to 1000
[  156.190068][ T8938] lo speed is unknown, defaulting to 1000
[  156.195894][ T8938] lo speed is unknown, defaulting to 1000
[  156.228292][ T8938] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  156.342844][ T8938] lo speed is unknown, defaulting to 1000
[  156.348672][ T8938] lo speed is unknown, defaulting to 1000
[  156.354421][ T8938] lo speed is unknown, defaulting to 1000
[  156.587008][    T9] qmi_wwan 2-1:6.2: probe with driver qmi_wwan failed with error -22
[  156.597957][    T9] usb 2-1: USB disconnect, device number 27
[  156.746839][ T8947] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1260'.
[  156.749988][ T8947] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1260'.
[  156.889992][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.177054][    T9] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[  157.457808][  T972] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  157.615208][  T972] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  157.622920][  T972] usb 2-1: config 0 interface 0 has no altsetting 0
[  157.636555][  T972] usb 2-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce
[  157.641168][  T972] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.643939][  T972] usb 2-1: Product: syz
[  157.645499][  T972] usb 2-1: Manufacturer: syz
[  157.647525][  T972] usb 2-1: SerialNumber: syz
[  157.652706][  T972] usb 2-1: config 0 descriptor??
[  157.656357][  T972] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state.
[  157.664072][  T972] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  157.671525][  T972] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0)
[  157.675598][  T972] usb 2-1: media controller created
[  157.699363][  T972] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  157.733822][    T9] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  157.740869][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.741268][  T972] DVB: Unable to find symbol tda10046_attach()
[  157.744851][    T9] usb 3-1: Product: syz
[  157.744866][    T9] usb 3-1: Manufacturer: syz
[  157.744875][    T9] usb 3-1: SerialNumber: syz
[  157.747774][    T9] usb 3-1: config 0 descriptor??
[  157.755994][  T972] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0'
[  157.759792][  T972] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected.
[  157.987603][    T9] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  158.594187][ T8988] netlink: 'syz.0.1278': attribute type 1 has an invalid length.
[  158.623832][ T8988] 8021q: adding VLAN 0 to HW filter on device bond1
[  158.635301][ T8988] vlan2: entered allmulticast mode
[  158.637194][ T8988] bond1: entered allmulticast mode
[  158.870216][  T972] dvb_usb_m920x 2-1:0.0: probe with driver dvb_usb_m920x failed with error -71
[  158.880164][  T972] usb 2-1: USB disconnect, device number 28
[  159.175910][    T9] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  159.184045][    T9] usb 3-1: USB disconnect, device number 19
[  159.468644][ T9015] netlink: 'syz.1.1290': attribute type 1 has an invalid length.
[  159.473847][ T9015] netlink: 'syz.1.1290': attribute type 2 has an invalid length.
[  159.480550][ T9015] netlink: 1164 bytes leftover after parsing attributes in process `syz.1.1290'.
[  159.568914][ T9019] team_slave_0: entered promiscuous mode
[  159.571183][ T9019] team_slave_1: entered promiscuous mode
[  159.719912][ T9029] loop1: detected capacity change from 0 to 8
[  159.729446][ T9029] SQUASHFS error: Failed to read block 0x4de: -5
[  159.732684][ T9029] SQUASHFS error: Failed to read block 0x4de: -5
[  159.735685][   T33] audit: type=1800 audit(1755271921.391:37): pid=9029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1297" name="file1" dev="loop1" ino=5 res=0 errno=0
[  159.942426][ T9031] loop2: detected capacity change from 0 to 32768
[  159.976977][ T9031] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  160.008782][ T9031] XFS (loop2): Ending clean mount
[  160.054501][ T5843] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  160.293836][ T9057] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1306'.
[  160.465446][ T9075] netlink: 'syz.0.1314': attribute type 1 has an invalid length.
[  160.469165][ T9075] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1314'.
[  160.946869][    T9] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  161.107011][    T9] usb 2-1: Using ep0 maxpacket: 8
[  161.111972][    T9] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  161.115361][    T9] usb 2-1: config 179 has no interface number 0
[  161.118764][    T9] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  161.124112][    T9] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  161.131013][    T9] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  161.135579][    T9] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  161.141519][    T9] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  161.147432][    T9] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  161.151185][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.159454][ T9084] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  161.405523][ T9098] loop2: detected capacity change from 0 to 512
[  161.412189][ T9098] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  161.422604][    T9] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input6
[  161.427161][ T9098] EXT4-fs (loop2): 1 truncate cleaned up
[  161.434883][ T9098] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.477762][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.607015][ T9084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.621659][ T9084] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  162.366267][ T9122] loop2: detected capacity change from 0 to 32768
[  162.388266][ T9122] JBD2: Ignoring recovery information on journal
[  162.411196][ T9122] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  162.451537][ T5843] ocfs2: Unmounting device (7,2) on (node local)
[  162.579090][   T47] usb 2-1: USB disconnect, device number 29
[  162.579245][    C0] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  162.585109][    C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  163.826097][ T9152] loop1: detected capacity change from 0 to 256
[  164.459140][ T9157] loop2: detected capacity change from 0 to 32768
[  164.463021][ T9157] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1348 (9157)
[  164.483228][ T9157] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  164.490711][ T9157] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  164.494242][ T9157] BTRFS info (device loop2): using free-space-tree
[  164.797395][ T5843] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  165.122946][ T9194] netlink: 'syz.1.1357': attribute type 1 has an invalid length.
[  165.126173][ T9194] netlink: 236 bytes leftover after parsing attributes in process `syz.1.1357'.
[  165.272130][ T9202] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1360'.
[  165.320748][ T9204] overlayfs: missing 'lowerdir'
[  165.336821][    T9] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  165.486904][    T9] usb 3-1: Using ep0 maxpacket: 32
[  165.490822][    T9] usb 3-1: config 9 interface 0 altsetting 0 endpoint 0x8 has an invalid bInterval 0, changing to 7
[  165.494189][    T9] usb 3-1: config 9 interface 0 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0
[  165.513577][    T9] usb 3-1: config 9 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  165.520635][    T9] usb 3-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  165.524556][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.536980][    T9] usb 3-1: Product: syz
[  165.538810][    T9] usb 3-1: Manufacturer: syz
[  165.541836][    T9] usb 3-1: SerialNumber: syz
[  165.768393][   T47] usb 3-1: USB disconnect, device number 20
[  165.878501][ T9237] loop1: detected capacity change from 0 to 32768
[  165.900918][ T9237] ERROR: (device loop1): diAllocBit: iag inconsistent
[  165.900918][ T9237] 
[  165.906559][ T9237] ialloc: diAlloc returned -5!
[  166.021868][ T9243] loop1: detected capacity change from 0 to 512
[  166.024918][ T9243] EXT4-fs: Ignoring removed oldalloc option
[  166.051174][ T9243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.057971][ T9243] ext4 filesystem being mounted at /365/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.069121][ T9243] EXT4-fs error (device loop1): ext4_empty_dir:3081: inode #12: comm syz.1.1375: invalid size
[  166.085404][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.627164][    T9] usb 3-1: new full-speed USB device number 21 using dummy_hcd
[  166.798555][    T9] usb 3-1: config 0 has an invalid interface number: 84 but max is 0
[  166.808614][    T9] usb 3-1: config 0 has no interface number 0
[  166.811309][    T9] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x7 has invalid maxpacket 1279, setting to 64
[  166.829997][    T9] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  166.834811][    T9] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x87 has invalid wMaxPacketSize 0
[  166.850252][    T9] usb 3-1: config 0 interface 84 has no altsetting 0
[  166.853133][    T9] usb 3-1: New USB device found, idVendor=2c7c, idProduct=0191, bcdDevice= f.05
[  166.864461][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.880470][    T9] usb 3-1: config 0 descriptor??
[  166.890014][ T9250] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  166.895996][    T9] option 3-1:0.84: GSM modem (1-port) converter detected
[  166.903701][ T9262] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1384'.
[  167.201081][   T47] usb 3-1: USB disconnect, device number 21
[  167.204669][   T47] option 3-1:0.84: device disconnected
[  167.754738][ T9270] loop2: detected capacity change from 0 to 128
[  167.762881][ T9270] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  167.767471][ T9270] ext4 filesystem being mounted at /409/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  168.081313][ T5843] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  168.178200][ T9281] loop2: detected capacity change from 0 to 1024
[  168.181717][ T9281] EXT4-fs: Ignoring removed bh option
[  168.204956][ T9281] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  168.235683][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  168.508527][ T9290] loop2: detected capacity change from 0 to 4096
[  168.535570][ T9290] ntfs3(loop2): $Secure::$SDH is corrupted.
[  168.539380][ T9290] ntfs3(loop2): Failed to initialize $Secure (-22).
[  168.818797][ T9303] fuse: Unknown parameter 'grou00000000000000000000'
[  169.862798][ T9323] loop1: detected capacity change from 0 to 32768
[  169.869625][ T9323] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1405 (9323)
[  169.902558][ T9323] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  169.905952][ T9323] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  169.913086][ T9323] BTRFS info (device loop1): using free-space-tree
[  170.059369][ T5842] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  170.248569][ T9348] sp0: Synchronizing with TNC
[  170.495469][ T9350] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1409'.
[  170.911623][ T9358] loop2: detected capacity change from 0 to 128
[  171.569884][ T9404] loop2: detected capacity change from 0 to 256
[  171.584420][ T9404] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  171.631632][ T9408] loop2: detected capacity change from 0 to 8
[  171.914137][ T9421] loop1: detected capacity change from 0 to 1024
[  171.992433][   T36] hfsplus: b-tree write err: -5, ino 4
[  172.408943][ T9439] loop1: detected capacity change from 0 to 2048
[  172.433289][ T9439] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.479476][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.009875][ T9459] loop2: detected capacity change from 0 to 512
[  173.021537][ T9459] fscrypt (loop2, inode 2): Error -61 getting encryption context
[  173.028383][ T9459] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -61
[  173.035238][ T9459] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #13: comm syz.2.1461: iget: bad i_size value: 12154757448730
[  173.046096][ T9459] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1461: couldn't read orphan inode 13 (err -117)
[  173.051419][ T9463] loop1: detected capacity change from 0 to 4096
[  173.061124][ T9459] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.070261][ T9463] ntfs3(loop1): It is recommened to use chkdsk.
[  173.072830][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00
[  173.075492][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00
[  173.078435][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00
[  173.081095][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00
[  173.084165][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffc1c00
[  173.088023][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffc2c00
[  173.092303][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffc4c00
[  173.099436][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffc8c00
[  173.100036][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.102669][ T9463] ntfs3(loop1): try to read out of volume at offset 0x3fffffd0c00
[  174.074572][   T10] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  174.250361][   T10] usb 3-1: New USB device found, idVendor=0c45, idProduct=6005, bcdDevice=b5.55
[  174.253285][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.265462][ T9495] loop1: detected capacity change from 0 to 4096
[  174.267987][   T10] usb 3-1: Product: syz
[  174.269340][   T10] usb 3-1: Manufacturer: syz
[  174.270821][   T10] usb 3-1: SerialNumber: syz
[  174.274520][   T10] usb 3-1: config 0 descriptor??
[  174.279760][   T10] gspca_main: sonixb-2.14.0 probing 0c45:6005
[  174.309827][ T9496] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  174.481070][   T10] sonixb 3-1:0.0: Error reading register 00: -71
[  174.484362][   T10] usb 3-1: USB disconnect, device number 22
[  174.598211][ T9511] netlink: 'syz.1.1484': attribute type 1 has an invalid length.
[  174.600749][ T9511] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1484'.
[  174.722966][ T9517] lo speed is unknown, defaulting to 1000
[  175.024623][ T9530] loop2: detected capacity change from 0 to 2048
[  175.061960][ T9530] Alternate GPT is invalid, using primary GPT.
[  175.064233][ T9530]  loop2: p1 p2 p3
[  175.120214][ T5293] Alternate GPT is invalid, using primary GPT.
[  175.125269][ T5293]  loop2: p1 p2 p3
[  175.179055][ T5844] udevd[5844]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  175.184719][ T5856] udevd[5856]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  175.194043][ T6330] udevd[6330]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  175.221317][ T5844] udevd[5844]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  175.222197][ T6330] udevd[6330]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  175.229207][ T5856] udevd[5856]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  175.418915][   T47] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  175.435640][ T9564] 9pnet_fd: Insufficient options for proto=fd
[  175.499371][ T9569] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1511'.
[  175.586944][   T47] usb 2-1: Using ep0 maxpacket: 16
[  175.591087][   T47] usb 2-1: config 2 has an invalid interface number: 14 but max is 0
[  175.594499][   T47] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  175.600535][   T47] usb 2-1: config 2 has no interface number 0
[  175.603182][   T47] usb 2-1: config 2 interface 14 altsetting 9 has an invalid endpoint descriptor of length 6, skipping
[  175.608064][   T47] usb 2-1: config 2 interface 14 altsetting 9 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  175.613180][   T47] usb 2-1: config 2 interface 14 has no altsetting 0
[  175.618738][   T47] usb 2-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=77.73
[  175.622398][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.625600][   T47] usb 2-1: Product: syz
[  175.627828][   T47] usb 2-1: Manufacturer: syz
[  175.629764][   T47] usb 2-1: SerialNumber: syz
[  175.845239][   T47] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  175.884516][   T47] snd-usb-audio 2-1:2.14: probe with driver snd-usb-audio failed with error -2
[  175.891490][   T47] usb 2-1: USB disconnect, device number 30
[  175.908233][ T5855] udevd[5855]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:2.14/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  176.702832][ T9588] loop2: detected capacity change from 0 to 32768
[  176.707154][ T9588] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1520 (9588)
[  176.735310][ T9588] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  176.741079][ T9588] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  176.745619][ T9588] BTRFS info (device loop2): using free-space-tree
[  176.872665][ T9611] loop1: detected capacity change from 0 to 4096
[  176.877354][ T9611] NILFS: invalid option "cp=0": invalid checkpoint number 0
[  176.943512][ T5843] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  176.965202][ T9615] loop1: detected capacity change from 0 to 4096
[  177.000556][ T9615] ntfs3(loop1): ino=1a, mi_enum_attr
[  177.003145][ T9615] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  177.025805][ T9617] loop2: detected capacity change from 0 to 256
[  177.084026][ T9617] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  177.430493][ T9634] program syz.1.1533 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  177.449827][  T972] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  177.471649][ T9638] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1535'.
[  177.474601][ T9638] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1535'.
[  177.483033][ T9638] vlan0: entered promiscuous mode
[  177.527568][ T9644] loop1: detected capacity change from 0 to 128
[  177.534385][ T9644] FAT-fs (loop1): bogus number of reserved sectors
[  177.536831][ T9644] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  177.539798][ T9644] FAT-fs (loop1): Can't find a valid FAT filesystem
[  177.581998][ T9648] loop1: detected capacity change from 0 to 256
[  177.584919][ T9648] exfat: Deprecated parameter 'namecase'
[  177.616758][  T972] usb 3-1: Using ep0 maxpacket: 16
[  177.619935][  T972] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  177.626036][  T972] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  177.634958][  T972] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.655769][  T972] usb 3-1: config 0 descriptor??
[  177.922031][ T9666] loop1: detected capacity change from 0 to 40427
[  177.927955][ T9666] F2FS-fs: heap/no_heap options were deprecated
[  177.930337][ T9666] F2FS-fs (loop1): Image doesn't support compression
[  177.933667][ T9666] F2FS-fs (loop1): invalid crc value
[  177.961327][ T9666] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  177.965545][ T9666] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  177.980686][ T5842] syz-executor: attempt to access beyond end of device
[  177.980686][ T5842] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  177.985429][ T5842] CPU: 1 UID: 0 PID: 5842 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  177.985441][ T5842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  177.985446][ T5842] Call Trace:
[  177.985449][ T5842]  <TASK>
[  177.985453][ T5842]  dump_stack_lvl+0x189/0x250
[  177.985470][ T5842]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.985479][ T5842]  ? __pfx_queue_work_on+0x10/0x10
[  177.985487][ T5842]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  177.985516][ T5842]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  177.985531][ T5842]  f2fs_handle_critical_error+0x37c/0x540
[  177.985545][ T5842]  f2fs_write_end_io+0x886/0xb60
[  177.985561][ T5842]  __submit_merged_bio+0x27a/0x6a0
[  177.985575][ T5842]  __submit_merged_write_cond+0x255/0x530
[  177.985589][ T5842]  f2fs_write_data_pages+0x261d/0x3000
[  177.985616][ T5842]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  177.985625][ T5842]  ? is_bpf_text_address+0x26/0x2b0
[  177.985656][ T5842]  ? ktime_get+0x3e/0x1f0
[  177.985666][ T5842]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  177.985675][ T5842]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  177.985684][ T5842]  ? css_rstat_updated+0x23a/0x4f0
[  177.985703][ T5842]  ? __lock_acquire+0xab9/0xd20
[  177.985721][ T5842]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  177.985732][ T5842]  do_writepages+0x32e/0x550
[  177.985748][ T5842]  ? do_raw_spin_unlock+0x4d/0x240
[  177.985759][ T5842]  filemap_fdatawrite+0x199/0x240
[  177.985769][ T5842]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  177.985802][ T5842]  ? do_raw_spin_unlock+0x4d/0x240
[  177.985813][ T5842]  f2fs_sync_dirty_inodes+0x31f/0x830
[  177.985828][ T5842]  f2fs_write_checkpoint+0x95a/0x1df0
[  177.985847][ T5842]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  177.985899][ T5842]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  177.985906][ T5842]  ? kfree+0x18e/0x440
[  177.985916][ T5842]  ? kill_f2fs_super+0x298/0x6c0
[  177.985926][ T5842]  kill_f2fs_super+0x2c3/0x6c0
[  177.985937][ T5842]  ? __pfx_kill_f2fs_super+0x10/0x10
[  177.985943][ T5842]  ? radix_tree_delete_item+0x2b6/0x400
[  177.985956][ T5842]  ? shrinker_free+0x2ce/0x3e0
[  177.985965][ T5842]  deactivate_locked_super+0xbc/0x130
[  177.985976][ T5842]  cleanup_mnt+0x425/0x4c0
[  177.985984][ T5842]  ? lockdep_hardirqs_on+0x9c/0x150
[  177.985995][ T5842]  task_work_run+0x1d4/0x260
[  177.986007][ T5842]  ? __pfx_task_work_run+0x10/0x10
[  177.986015][ T5842]  ? __x64_sys_umount+0x122/0x160
[  177.986026][ T5842]  ? exit_to_user_mode_loop+0x40/0x110
[  177.986039][ T5842]  exit_to_user_mode_loop+0xec/0x110
[  177.986049][ T5842]  do_syscall_64+0x2bd/0x3b0
[  177.986060][ T5842]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.986066][ T5842]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  177.986077][ T5842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.986084][ T5842] RIP: 0033:0x7f7fef78ff17
[  177.986092][ T5842] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  177.986098][ T5842] RSP: 002b:00007fff1c75c378 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  177.986107][ T5842] RAX: 0000000000000000 RBX: 00007f7fef811c05 RCX: 00007f7fef78ff17
[  177.986112][ T5842] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff1c75c430
[  177.986116][ T5842] RBP: 00007fff1c75c430 R08: 0000000000000000 R09: 0000000000000000
[  177.986120][ T5842] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff1c75d4c0
[  177.986125][ T5842] R13: 00007f7fef811c05 R14: 000000000002b6b4 R15: 00007fff1c75d500
[  177.986139][ T5842]  </TASK>
[  177.987403][ T5842] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  178.070753][  T972] mcp2221 0003:04D8:00DD.000C: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  178.514007][  T972] usb 3-1: USB disconnect, device number 23
[  179.130218][   T10] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  179.160469][ T9690] loop2: detected capacity change from 0 to 2048
[  179.165566][ T9690] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  179.173143][ T9690] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  179.327517][   T10] usb 2-1: Using ep0 maxpacket: 16
[  179.352530][   T10] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  179.360488][   T10] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  179.364625][   T10] usb 2-1: config 1 interface 0 altsetting 1 endpoint 0x4 has invalid wMaxPacketSize 0
[  179.370039][   T10] usb 2-1: config 1 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[  179.375187][   T10] usb 2-1: config 1 interface 0 has no altsetting 0
[  179.381613][   T10] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0201, bcdDevice= 0.40
[  179.385365][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.389717][   T10] usb 2-1: Product: syz
[  179.391218][   T10] usb 2-1: Manufacturer: syz
[  179.392918][   T10] usb 2-1: SerialNumber: syz
[  179.585329][   T33] audit: type=1326 audit(1755271941.241:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.0.1565" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  179.593220][   T33] audit: type=1326 audit(1755271941.241:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.0.1565" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  179.601822][   T33] audit: type=1326 audit(1755271941.251:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.0.1565" exe="/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  179.613232][   T33] audit: type=1326 audit(1755271941.251:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.0.1565" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  179.617108][   T47] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  179.623179][   T10] usb 2-1: 0:2 : does not exist
[  179.626024][   T10] usb 2-1: unit 3 not found!
[  179.628077][   T33] audit: type=1326 audit(1755271941.251:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9701 comm="syz.0.1565" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f640438ebe9 code=0x7ffc0000
[  179.643511][   T10] usb 2-1: USB disconnect, device number 31
[  179.776788][   T47] usb 3-1: Using ep0 maxpacket: 8
[  179.779866][   T47] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.783143][   T47] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  179.786070][   T47] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  179.789265][   T47] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.793170][   T47] usb 3-1: config 0 descriptor??
[  180.140599][ T9716] loop1: detected capacity change from 0 to 256
[  180.144259][ T9716] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  180.147881][ T9716] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  180.153248][ T9716] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  180.251560][ T9721] usb usb6: usbfs: process 9721 (syz.1.1574) did not claim interface 46 before use
[  180.400872][ T9729] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1578'.
[  180.409141][ T9729] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1578'.
[  180.484704][ T9733] loop1: detected capacity change from 0 to 4096
[  180.491685][ T9733] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  180.544378][   T10] usb 3-1: USB disconnect, device number 24
[  180.710775][   T33] audit: type=1326 audit(1755271942.371:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9744 comm="syz.2.1586" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  180.734901][   T33] audit: type=1326 audit(1755271942.371:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9744 comm="syz.2.1586" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  180.762228][   T33] audit: type=1326 audit(1755271942.371:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9744 comm="syz.2.1586" exe="/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  180.782144][   T33] audit: type=1326 audit(1755271942.371:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9744 comm="syz.2.1586" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  180.811472][   T33] audit: type=1326 audit(1755271942.381:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9744 comm="syz.2.1586" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb18ebe9 code=0x7ffc0000
[  181.199855][   T47] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  181.356765][   T47] usb 2-1: Using ep0 maxpacket: 32
[  181.363092][   T47] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  181.374899][   T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.437393][   T47] usb 2-1: config 0 descriptor??
[  181.645186][   T47] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  181.664053][   T47] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  181.671110][   T47] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  181.674117][   T47] usb 2-1: media controller created
[  181.692653][   T47] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  182.009597][ T9769] loop2: detected capacity change from 0 to 512
[  182.020481][ T9769] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1596: casefold flag without casefold feature
[  182.025668][ T9769] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1596: couldn't read orphan inode 15 (err -117)
[  182.033936][ T9769] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.060745][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.257002][   T47] az6027: usb out operation failed. (-71)
[  182.259435][   T47] stb0899_attach: Driver disabled by Kconfig
[  182.261969][   T47] az6027: no front-end attached
[  182.261969][   T47] 
[  182.265488][   T47] az6027: usb out operation failed. (-71)
[  182.268253][   T47] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  182.273144][   T47] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input8
[  182.282396][   T47] dvb-usb: schedule remote query interval to 400 msecs.
[  182.285522][   T47] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  182.295873][   T47] usb 2-1: USB disconnect, device number 32
[  182.326007][   T47] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  182.358998][ T5910] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  182.510295][ T5910] usb 3-1: config 0 has an invalid interface number: 41 but max is 0
[  182.513680][ T5910] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  182.518404][ T5910] usb 3-1: config 0 has no interface number 0
[  182.525042][ T5910] usb 3-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[  182.530141][ T5910] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.534030][ T5910] usb 3-1: Product: syz
[  182.535800][ T5910] usb 3-1: Manufacturer: syz
[  182.539782][ T5910] usb 3-1: SerialNumber: syz
[  182.544478][ T5910] usb 3-1: config 0 descriptor??
[  182.552735][ T5910] ims_pcu 3-1:0.41: Missing CDC union descriptor
[  182.556405][ T5910] ims_pcu 3-1:0.41: probe with driver ims_pcu failed with error -22
[  182.776763][ T5910] usb 3-1: USB disconnect, device number 25
[  182.885573][ T9809] loop1: detected capacity change from 0 to 256
[  182.892331][ T9809] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  182.936201][ T9815] netlink: 'syz.0.1613': attribute type 11 has an invalid length.
[  183.567373][   T10] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  183.719561][   T10] usb 2-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  183.722880][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.739784][   T10] usb 2-1: config 0 descriptor??
[  183.749328][   T10] gspca_main: spca508-2.14.0 probing 8086:0110
[  183.753780][ T9821] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1616'.
[  183.954525][   T10] gspca_spca508: reg_read err -32
[  183.962129][   T10] gspca_spca508: reg_read err -32
[  184.170162][   T10] gspca_spca508: reg_read err -71
[  184.172718][   T10] gspca_spca508: reg_read err -71
[  184.178329][   T10] gspca_spca508: reg write: error -71
[  184.180899][   T10] spca508 2-1:0.0: probe with driver spca508 failed with error -71
[  184.205048][   T10] usb 2-1: USB disconnect, device number 33
[  186.085561][ T9893] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1648'.
[  186.091461][ T9893] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1648'.
[  187.214519][ T9907] loop1: detected capacity change from 0 to 32768
[  187.328439][ T9923] hfsplus: unable to find HFS+ superblock
[  187.597129][ T5910] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  187.987645][ T5910] usb 3-1: Using ep0 maxpacket: 32
[  187.991931][ T5910] usb 3-1: unable to get BOS descriptor or descriptor too short
[  187.995334][ T5910] usb 3-1: config 2 has an invalid interface number: 221 but max is 0
[  187.998085][ T5910] usb 3-1: config 2 has no interface number 0
[  188.000101][ T5910] usb 3-1: config 2 interface 221 has no altsetting 0
[  188.005657][ T5910] usb 3-1: string descriptor 0 read error: -22
[  188.008849][ T5910] usb 3-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=85.42
[  188.011751][ T5910] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.022159][ T5910] usb 3-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[  188.024416][ T5910] usb 3-1: No valid video chain found.
[  188.228374][ T5910] usb 3-1: USB disconnect, device number 26
[  188.586827][  T972] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  188.736855][  T972] usb 2-1: Using ep0 maxpacket: 8
[  188.743368][  T972] usb 2-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  188.748652][  T972] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.759932][  T972] usb 2-1: Product: syz
[  188.761794][  T972] usb 2-1: Manufacturer: syz
[  188.763828][  T972] usb 2-1: SerialNumber: syz
[  188.772622][  T972] usb 2-1: config 0 descriptor??
[  188.785259][  T972] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  188.789131][  T972] usb 2-1: setting power ON
[  188.791983][  T972] dvb-usb: bulk message failed: -22 (2/0)
[  188.802263][  T972] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  188.807333][  T972] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  188.811082][  T972] usb 2-1: media controller created
[  188.824988][  T972] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  188.836554][  T972] usb 2-1: selecting invalid altsetting 6
[  188.840982][  T972] usb 2-1: digital interface selection failed (-22)
[  188.843402][  T972] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  188.852009][  T972] usb 2-1: setting power OFF
[  188.861867][  T972] dvb-usb: bulk message failed: -22 (2/0)
[  188.864388][  T972] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  188.868642][  T972] (NULL device *): no alternate interface
[  188.895642][  T972] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  188.997927][  T791] usb 2-1: USB disconnect, device number 34
[  189.101522][ T9961] loop2: detected capacity change from 0 to 32768
[  189.123962][ T9961] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  189.145040][ T9961] 
[  189.146136][ T9961] ======================================================
[  189.149161][ T9961] WARNING: possible circular locking dependency detected
[  189.152171][ T9961] 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 Not tainted
[  189.156339][ T9961] ------------------------------------------------------
[  189.158899][ T9961] syz.2.1681/9961 is trying to acquire lock:
[  189.160913][ T9961] ffff88811a845df8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_init_acl+0x2f9/0x720
[  189.164238][ T9961] 
[  189.164238][ T9961] but task is already holding lock:
[  189.166733][ T9961] ffff88811b5dc950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  189.170053][ T9961] 
[  189.170053][ T9961] which lock already depends on the new lock.
[  189.170053][ T9961] 
[  189.173568][ T9961] 
[  189.173568][ T9961] the existing dependency chain (in reverse order) is:
[  189.176871][ T9961] 
[  189.176871][ T9961] -> #4 (jbd2_handle){++++}-{0:0}:
[  189.179326][ T9961]        lock_acquire+0x120/0x360
[  189.181309][ T9961]        start_this_handle+0x1fa7/0x21c0
[  189.183200][ T9961]        jbd2__journal_start+0x2c1/0x5b0
[  189.185116][ T9961]        jbd2_journal_start+0x2a/0x40
[  189.187041][ T9961]        ocfs2_start_trans+0x376/0x6d0
[  189.189018][ T9961]        ocfs2_mknod+0xe93/0x2050
[  189.190785][ T9961]        ocfs2_mkdir+0x191/0x440
[  189.192414][ T9961]        vfs_mkdir+0x306/0x510
[  189.193987][ T9961]        do_mkdirat+0x247/0x590
[  189.195582][ T9961]        __x64_sys_mkdirat+0x87/0xa0
[  189.197324][ T9961]        do_syscall_64+0xfa/0x3b0
[  189.198986][ T9961]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.201215][ T9961] 
[  189.201215][ T9961] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  189.204024][ T9961]        lock_acquire+0x120/0x360
[  189.205710][ T9961]        down_read+0x46/0x2e0
[  189.207436][ T9961]        ocfs2_start_trans+0x36a/0x6d0
[  189.209337][ T9961]        ocfs2_mknod+0xe93/0x2050
[  189.211005][ T9961]        ocfs2_mkdir+0x191/0x440
[  189.212720][ T9961]        vfs_mkdir+0x306/0x510
[  189.214326][ T9961]        do_mkdirat+0x247/0x590
[  189.215984][ T9961]        __x64_sys_mkdirat+0x87/0xa0
[  189.217777][ T9961]        do_syscall_64+0xfa/0x3b0
[  189.219463][ T9961]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.221599][ T9961] 
[  189.221599][ T9961] -> #2 (sb_internal#3){.+.+}-{0:0}:
[  189.224179][ T9961]        lock_acquire+0x120/0x360
[  189.225972][ T9961]        ocfs2_start_trans+0x26b/0x6d0
[  189.228123][ T9961]        ocfs2_xattr_set+0xd69/0x11f0
[  189.230385][ T9961]        __vfs_setxattr+0x43c/0x480
[  189.232506][ T9961]        __vfs_setxattr_noperm+0x12d/0x660
[  189.234895][ T9961]        vfs_setxattr+0x16b/0x2f0
[  189.236591][ T9961]        filename_setxattr+0x274/0x600
[  189.238406][ T9961]        path_setxattrat+0x364/0x3a0
[  189.240280][ T9961]        __x64_sys_setxattr+0xbc/0xe0
[  189.242103][ T9961]        do_syscall_64+0xfa/0x3b0
[  189.243754][ T9961]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.245920][ T9961] 
[  189.245920][ T9961] -> #1 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  189.250139][ T9961]        lock_acquire+0x120/0x360
[  189.252322][ T9961]        down_write+0x96/0x1f0
[  189.254457][ T9961]        ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  189.257262][ T9961]        ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  189.259630][ T9961]        ocfs2_init_xattr_set_ctxt+0x307/0x700
[  189.261667][ T9961]        ocfs2_xattr_set+0xb70/0x11f0
[  189.263494][ T9961]        __vfs_setxattr+0x43c/0x480
[  189.265463][ T9961]        __vfs_setxattr_noperm+0x12d/0x660
[  189.267376][ T9961]        vfs_setxattr+0x16b/0x2f0
[  189.269073][ T9961]        filename_setxattr+0x274/0x600
[  189.271055][ T9961]        path_setxattrat+0x364/0x3a0
[  189.272902][ T9961]        __x64_sys_setxattr+0xbc/0xe0
[  189.274810][ T9961]        do_syscall_64+0xfa/0x3b0
[  189.276633][ T9961]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.279053][ T9961] 
[  189.279053][ T9961] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}:
[  189.281866][ T9961]        validate_chain+0xb9b/0x2140
[  189.283924][ T9961]        __lock_acquire+0xab9/0xd20
[  189.285866][ T9961]        lock_acquire+0x120/0x360
[  189.287712][ T9961]        down_read+0x46/0x2e0
[  189.289318][ T9961]        ocfs2_init_acl+0x2f9/0x720
[  189.291327][ T9961]        ocfs2_mknod+0x1321/0x2050
[  189.293058][ T9961]        ocfs2_create+0x1a5/0x440
[  189.294946][ T9961]        path_openat+0x14f4/0x3830
[  189.296958][ T9961]        do_filp_open+0x1fa/0x410
[  189.298708][ T9961]        do_sys_openat2+0x121/0x1c0
[  189.300411][ T9961]        __x64_sys_openat+0x138/0x170
[  189.302549][ T9961]        do_syscall_64+0xfa/0x3b0
[  189.304632][ T9961]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.307255][ T9961] 
[  189.307255][ T9961] other info that might help us debug this:
[  189.307255][ T9961] 
[  189.311235][ T9961] Chain exists of:
[  189.311235][ T9961]   &oi->ip_xattr_sem --> &journal->j_trans_barrier --> jbd2_handle
[  189.311235][ T9961] 
[  189.316522][ T9961]  Possible unsafe locking scenario:
[  189.316522][ T9961] 
[  189.319417][ T9961]        CPU0                    CPU1
[  189.321297][ T9961]        ----                    ----
[  189.323081][ T9961]   rlock(jbd2_handle);
[  189.324470][ T9961]                                lock(&journal->j_trans_barrier);
[  189.327035][ T9961]                                lock(jbd2_handle);
[  189.329265][ T9961]   rlock(&oi->ip_xattr_sem);
[  189.331033][ T9961] 
[  189.331033][ T9961]  *** DEADLOCK ***
[  189.331033][ T9961] 
[  189.334162][ T9961] 8 locks held by syz.2.1681/9961:
[  189.336194][ T9961]  #0: ffff88811c9ba428 (sb_writers#17){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  189.340066][ T9961]  #1: ffff88811a8460c0 (&type->i_mutex_dir_key#12){+.+.}-{4:4}, at: path_openat+0x8da/0x3830
[  189.344614][ T9961]  #2: ffff88811a83ef40 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  189.350518][ T9961]  #3: ffff88811a8426c0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  189.356306][ T9961]  #4: ffff88811a839840 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  189.362496][ T9961]  #5: ffff88811c9ba618 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_mknod+0xe93/0x2050
[  189.366307][ T9961]  #6: ffff888111ea88e8 (&journal->j_trans_barrier){.+.+}-{4:4}, at: ocfs2_start_trans+0x36a/0x6d0
[  189.370981][ T9961]  #7: ffff88811b5dc950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  189.375150][ T9961] 
[  189.375150][ T9961] stack backtrace:
[  189.377703][ T9961] CPU: 1 UID: 0 PID: 9961 Comm: syz.2.1681 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  189.377721][ T9961] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  189.377729][ T9961] Call Trace:
[  189.377736][ T9961]  <TASK>
[  189.377742][ T9961]  dump_stack_lvl+0x189/0x250
[  189.377784][ T9961]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.377801][ T9961]  ? __pfx__printk+0x10/0x10
[  189.377816][ T9961]  ? stack_trace_save+0x9c/0xe0
[  189.377834][ T9961]  print_circular_bug+0x2ee/0x310
[  189.377850][ T9961]  check_noncircular+0x134/0x160
[  189.377866][ T9961]  validate_chain+0xb9b/0x2140
[  189.377886][ T9961]  __lock_acquire+0xab9/0xd20
[  189.377905][ T9961]  ? ocfs2_init_acl+0x2f9/0x720
[  189.377917][ T9961]  lock_acquire+0x120/0x360
[  189.377933][ T9961]  ? ocfs2_init_acl+0x2f9/0x720
[  189.377947][ T9961]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  189.377963][ T9961]  down_read+0x46/0x2e0
[  189.377972][ T9961]  ? ocfs2_init_acl+0x2f9/0x720
[  189.377985][ T9961]  ocfs2_init_acl+0x2f9/0x720
[  189.377997][ T9961]  ? ocfs2_mknod_locked+0x148/0x250
[  189.378011][ T9961]  ? __pfx_ocfs2_init_acl+0x10/0x10
[  189.378023][ T9961]  ? dquot_alloc_inode+0x216/0xa50
[  189.378037][ T9961]  ? ocfs2_block_signals+0x94/0xe0
[  189.378054][ T9961]  ? __pfx_ocfs2_block_signals+0x10/0x10
[  189.378073][ T9961]  ? ocfs2_init_security_get+0x139/0x1a0
[  189.378089][ T9961]  ocfs2_mknod+0x1321/0x2050
[  189.378104][ T9961]  ? __pfx_ocfs2_mknod+0x10/0x10
[  189.378115][ T9961]  ? __pfx_ocfs2_find_entry+0x10/0x10
[  189.378129][ T9961]  ? __lock_acquire+0xab9/0xd20
[  189.378151][ T9961]  ? look_up_lock_class+0x74/0x170
[  189.378167][ T9961]  ? register_lock_class+0x51/0x320
[  189.378185][ T9961]  ? __lock_acquire+0xab9/0xd20
[  189.378208][ T9961]  ? __lock_acquire+0xab9/0xd20
[  189.378226][ T9961]  ? do_raw_spin_lock+0x121/0x290
[  189.378242][ T9961]  ? do_raw_spin_unlock+0x4d/0x240
[  189.378258][ T9961]  ? rcu_is_watching+0x15/0xb0
[  189.378270][ T9961]  ? ocfs2_lookup+0x5b9/0x9b0
[  189.378282][ T9961]  ocfs2_create+0x1a5/0x440
[  189.378293][ T9961]  ? __pfx_ocfs2_lookup+0x10/0x10
[  189.378303][ T9961]  ? from_kgid+0x1b0/0x650
[  189.378319][ T9961]  ? __pfx_ocfs2_create+0x10/0x10
[  189.378328][ T9961]  ? HAS_UNMAPPED_ID+0x11a/0x180
[  189.378340][ T9961]  ? inode_permission+0x149/0x470
[  189.378349][ T9961]  ? __pfx_ocfs2_permission+0x10/0x10
[  189.378366][ T9961]  ? bpf_lsm_inode_create+0x9/0x20
[  189.378378][ T9961]  ? __pfx_ocfs2_create+0x10/0x10
[  189.378388][ T9961]  path_openat+0x14f4/0x3830
[  189.378400][ T9961]  ? arch_stack_walk+0xfc/0x150
[  189.378421][ T9961]  ? __pfx_path_openat+0x10/0x10
[  189.378433][ T9961]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.378449][ T9961]  do_filp_open+0x1fa/0x410
[  189.378461][ T9961]  ? __lock_acquire+0xab9/0xd20
[  189.378478][ T9961]  ? __pfx_do_filp_open+0x10/0x10
[  189.378496][ T9961]  ? _raw_spin_unlock+0x28/0x50
[  189.378509][ T9961]  ? alloc_fd+0x64c/0x6c0
[  189.378528][ T9961]  do_sys_openat2+0x121/0x1c0
[  189.378541][ T9961]  ? __se_sys_futex+0x36f/0x400
[  189.378555][ T9961]  ? __pfx_do_sys_openat2+0x10/0x10
[  189.378569][ T9961]  ? rcu_is_watching+0x15/0xb0
[  189.378580][ T9961]  __x64_sys_openat+0x138/0x170
[  189.378593][ T9961]  do_syscall_64+0xfa/0x3b0
[  189.378609][ T9961]  ? lockdep_hardirqs_on+0x9c/0x150
[  189.378623][ T9961]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.378634][ T9961]  ? exc_page_fault+0x9f/0xf0
[  189.378648][ T9961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.378660][ T9961] RIP: 0033:0x7f47eb18ebe9
[  189.378671][ T9961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.378681][ T9961] RSP: 002b:00007f47ebf98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  189.378694][ T9961] RAX: ffffffffffffffda RBX: 00007f47eb3b5fa0 RCX: 00007f47eb18ebe9
[  189.378702][ T9961] RDX: 0000000000002042 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  189.378710][ T9961] RBP: 00007f47eb211e19 R08: 0000000000000000 R09: 0000000000000000
[  189.378718][ T9961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  189.378725][ T9961] R13: 00007f47eb3b6038 R14: 00007f47eb3b5fa0 R15: 00007ffd52211f58
[  189.378737][ T9961]  </TASK>
[  189.579222][ T5843] ocfs2: Unmounting device (7,2) on (node local)
[  194.049537][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  194.052304][ T1363] ieee802154 phy1 wpan1: encryption failed: -22

VM DIAGNOSIS:
15:32:30  Registers:
info registers vcpu 0

CPU#0
RAX=ffffc900037b7601 RBX=ffffc900037b0000 RCX=0000000000000001 RDX=ffffc900037b7348
RSI=dffffc0000000000 RDI=ffffc900037b7308 RBP=1ffff920006f6e61 RSP=ffffc900037b71e0
R8 =ffffc900037b7698 R9 =0000000000000000 R10=ffffc900037b7358 R11=fffff520006f6e6d
R12=1ffff920006f6e62 R13=1ffff920006f6e63 R14=ffffc900037b8000 R15=ffffc900037b7308
RIP=ffffffff8172e894 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f614acd1c80 ffffffff 00c00000
GS =0000 ffff8880b861b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c39d96e CR3=000000010b578000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=ffffffffffffffff ffff00ff00000000 XMM05=622d383864342d63 6666352d63333536
XMM06=656431626632785c 646975752d796266 XMM07=32785c6b73696466 32785c2f736b6e69
XMM08=00000000ffffffff ffffffffffffffff XMM09=65642f2000000000 323a37622f396533
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=1ffffffff33bde60 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=00000000000022ec RDI=00000000000022ed RBP=ffffffff99def630 RSP=ffffc90008c4e890
R8 =ffff8880215e8237 R9 =1ffff110042bd046 R10=dffffc0000000000 R11=ffffffff854f1660
R12=dffffc0000000000 R13=0000000000000000 R14=ffffffff99def3a0 R15=0000000000000000
RIP=ffffffff854f16d7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f47ebf986c0 ffffffff 00c00000
GS =0000 ffff8881a3c1b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b3231dff8 CR3=0000000110152000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffff ffffff0000000000 XMM01=0101010101010101 0101010000000000
XMM02=695f746e756f6d5f 7a79730032736667 XMM03=ffffffffffffffff ffffffffffffffff
XMM04=1360034e5d53002c 74696d6d6f635f63 XMM05=5cf3945eb98408b4 4938eecd7e6e9eec
XMM06=0000000000000000 00b0be19cd0096ec XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 00001b7d1475bf98 XMM09=0000000000000000 00007f47eb212fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
