last executing test programs:

1m26.107530515s ago: executing program 1 (id=295):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="0000006aac", 0x5)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000002f40)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000001b00)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x2400c044}], 0x1, 0x8800)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1)
sendmsg$nl_route_sched_retired(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002f80)=@delchain={0x43c, 0x65, 0x200, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x4, 0xfff2}, {0x5, 0xa}, {0x4, 0xf}}, [@f_tcindex={{0xc}, {0x40c, 0x2, [@TCA_TCINDEX_POLICE={0x408, 0x6, [@TCA_POLICE_RATE={0x404, 0x2, [0x6, 0x8, 0x4d8, 0xffffffff, 0x8d1, 0x8, 0x9, 0x9, 0x0, 0xfffffff7, 0x4, 0x3, 0x81, 0x8, 0x6, 0x6, 0xd62, 0x6, 0x7, 0x29, 0x5, 0x5, 0x9, 0x2, 0x1000, 0x2, 0x793, 0x4, 0x101, 0xffffdc7a, 0x5, 0x7fff, 0x1, 0x5, 0x4b37, 0x2, 0x4, 0xd9a, 0x1, 0x4e, 0x3, 0x800, 0x9, 0x1, 0x9, 0x1, 0x0, 0x9, 0x8, 0x4e, 0x0, 0x80, 0x10000, 0x80, 0x10000, 0x8, 0x4, 0x5, 0x7, 0x9, 0x2, 0x7fffffff, 0xfcf, 0x7, 0x2, 0x2, 0x4, 0x1000, 0xea, 0x1, 0x9, 0x5, 0x200, 0xfec0, 0xffffe49a, 0x2, 0x4, 0x58e, 0xffffffff, 0x5, 0x6, 0x7f, 0x400, 0x8, 0x80, 0x7, 0x3, 0x6, 0xd, 0x3, 0xce, 0xd, 0x7fffffff, 0x1, 0x6, 0x4, 0x6, 0x3, 0x7f, 0x8001, 0xed4b, 0x68, 0x9, 0xc, 0xffff, 0x9, 0x7, 0xabe1, 0xf97, 0x5, 0x4, 0x80000001, 0x6, 0x7, 0x6, 0x5, 0xfff, 0x3, 0x46, 0x3ff, 0x7e4d, 0x5, 0x0, 0x6, 0x9, 0xf1, 0x4, 0x3, 0x3, 0xb, 0x8, 0x7, 0xa, 0x6, 0x9, 0x2, 0x0, 0x4, 0x5d6e5b73, 0x8, 0x3, 0x1, 0x4a0b, 0x9a0, 0x400, 0x3, 0x0, 0x3, 0x9, 0x401, 0x9e, 0x8000, 0xf8, 0x5, 0x2, 0xffffffff, 0x3, 0x7fffffff, 0x0, 0x2, 0x6, 0x8, 0x7, 0x80000000, 0x74, 0x1, 0x7, 0xa94, 0x3, 0x4, 0x44, 0x0, 0x1, 0x13, 0x5, 0x0, 0x7f, 0x4, 0x818, 0x1, 0x560, 0x6, 0x9, 0x3, 0x4, 0x1ff, 0x4, 0x8001, 0x44, 0x2, 0x9, 0x8, 0x3, 0x8000, 0x100, 0x1, 0x1b35709e, 0x9629, 0x1, 0x5, 0x400, 0x0, 0x0, 0xba9, 0x2, 0x7, 0xe1, 0x4, 0x7, 0x5, 0x2, 0x21, 0xfffffeff, 0x0, 0x2d5b, 0xd, 0x1, 0x1000, 0x9, 0x2a, 0x8, 0x4, 0x9, 0x7, 0x8, 0x5, 0x1, 0x6, 0x6, 0x1, 0x1, 0x80, 0x1, 0x5, 0x0, 0x7fffffff, 0x3ff, 0x2, 0x5, 0x9, 0x8001, 0x8ee, 0x8, 0x4, 0x2, 0x9, 0x8, 0xd, 0x8, 0x7, 0x1, 0x440, 0x1, 0xaa20, 0x5, 0x4]}]}]}}]}, 0x43c}}, 0x4080000)

1m25.899290671s ago: executing program 1 (id=298):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="b7ac4b58079df5acfa0146d76448677b0261de977a5bd38def098c82b7f15fb7092aa9d77d24d7f29d9d3398fd8f222075a222052c4c1f758b", 0x39)

1m25.467164731s ago: executing program 1 (id=302):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r0, &(0x7f0000000100)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x73}}, 0x10)

1m25.40947983s ago: executing program 1 (id=303):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x1010051, &(0x7f00000000c0)={[{@errors_remount}, {@noload}, {@noblock_validity}, {@norecovery}, {@nouid32}, {@nomblk_io_submit}]}, 0x1, 0x546, &(0x7f0000000180)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
lstat(&(0x7f0000000300)='./file2\x00', 0x0)

1m25.232740055s ago: executing program 1 (id=306):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="180000006a00290329bd700032f4679c00d0b5"], 0x18}, 0x1, 0x0, 0x0, 0x240080c4}, 0x0)

1m23.26026805s ago: executing program 1 (id=322):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000800), 0x400, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000000c0)=0x40)
read$dsp(r0, &(0x7f0000000500)=""/101, 0x65)

1m23.183456396s ago: executing program 32 (id=322):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000800), 0x400, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000000c0)=0x40)
read$dsp(r0, &(0x7f0000000500)=""/101, 0x65)

3.48943284s ago: executing program 3 (id=1492):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = socket$netlink(0x10, 0x3, 0x2)
bind$netlink(r1, &(0x7f0000000480)={0x10, 0x0, 0x25dfdbfd, 0x2}, 0xc)
close_range(r0, 0xffffffffffffffff, 0x0)

3.48921606s ago: executing program 3 (id=1494):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b03000000000000300012800b00010067656e65766500002000028008000100", @ANYRES32], 0x58}}, 0x0)

3.428231674s ago: executing program 3 (id=1496):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0)
mmap$snddsp_control(&(0x7f0000000000/0x3000)=nil, 0x1028, 0x1, 0x11, r0, 0x82000000)

3.427772507s ago: executing program 3 (id=1497):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x3008000, &(0x7f0000000140)={[{@quota}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@abort}]}, 0xfe, 0x452, &(0x7f0000000980)="$eJzs3M1vFOUfAPDvzG7L+6/8EF9A0CoaiS8tLS9y8ILRxIMmJnrAeKptIchCDa2JEKLoAY+GxLvxaOJf4EkvRj2ZeNW7ISGGC+hpzezOlKXdbbvtlq3M55MMPM/Os3me78w8u888z04DKK3h7J8kYntE/B4RQ83s3QWGm//dvnl58u+blyeTqNff+itplLt18/JkUbR437Zmpl7P85va1Hv13YiJWm36Qp4fnTv3wejsxUsvnDk3cXr69PT58ePHjxzeP3hs/GhP4sziurX345l9e15759obkyevvffzt1l7t+f7W+NYkXT5IsPNo9vW011VtvHtaEkn1T42hK5UIiI7XQON/j8Uldgyv28oXv2sr40D1lW9Xq+3+37OXakD97Ek+t0CoD+KL/rs/rfY7tHQY0O4caJ5A5TFfTvfmnuq87f4Awvub3tpOCJOXvnnq2yL1cxDAAB06fts/PN8u/FfGg+1lPtfvoayMyL+HxG7IuKBiNgdEQ9GNMo+HBGPdFn/whWSxeOf9PqqAluhbPz3Ur62dff4L22M+7KQK/lyz45G/APJqTO16UP5MTkYA5uy/NgSdfzwym9fdNrXOv7Ltqz+YiyYt+N6dcEE3dTE3MTaor7jxqcRe6vt4k+iWMZJImJPROxdZR1nnv1mX6d9y8e/hB6sM9W/jnimef6vxIL4C0nH9cmxF4+NHx3dHLXpQ6PFVbHYL79efbNT/WuKvwey87+17fU/H//OZHPE7MVLZxvrtbPd13H1j8873tOs9vofTN5upAfz1z6amJu7MBYxmLy++PXxO+8t8kX5LP6DB9r3/13VO0fi0YjILuL9EfFYRDyet/2JiHgyIg4sEf9PLz/1fvfxLzEr30NZ/FPLnf9oPf/dJypnf/yu+/gL2fk/0kgdzF9ZyeffShu4lmMHAAAA/xVp4zfwSToyn07TkZHmb/h3x9a0NjM799ypmQ/PTzV/K78zBtJipmuoZT50LJ8bLvLjC/KH83njLytbGvmRyZnaVL+Dh5Lb1qH/Z/6s9Lt1wLrzvBaUl/4P5aX/Q3np/1Be+j+UV7v+/0kf2gHce77/obz0fygv/R/KS/+HUur4bHy6pkf+1z1RfGRtlPbcD4kTXb0r0o3Q5hIkqiv+YxarTGxqu6vPH0wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA98m8AAAD//0Fo4Oc=")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x84)
lseek(r0, 0x1, 0x0)

3.378372795s ago: executing program 3 (id=1500):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
preadv(r0, &(0x7f00000011c0)=[{&(0x7f00000012c0)=""/214, 0xd6}], 0x1, 0x3c, 0xfffefff6)

3.15932854s ago: executing program 0 (id=1504):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xc0d6, &(0x7f00000000c0)={[{@noload}, {@discard}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nobarrier}, {@lazytime}, {@minixdf}, {@noquota}, {@usrquota}]}, 0x1, 0x45b, &(0x7f0000000b00)="$eJzs289vFFUcAPDvTH8ov+xK8Ac/lCoaiT9aWhA5eNFo4kETEz3gsbYLqSzU0JoIIQrG4NGQeDceTfgLPOnFqCejV/VsSIjhAnpaM7szdLvslu2m7Zbu55MMvDfz2ve+nfdm38zbCaBvjWb/JBHbI+KPiBipZ5cWGK3/d+vGhel/b1yYTqJafeefpFbu5o0L00XR4ue2FZnBiPTzJPa2qHf+3PlTU5VK+WyeH184/eH4/LnzL8yenjpZPlk+M3ns2JHDEy8dnXxxVeLM4rq555O5fbvfeO/KW9PHr7z/89WkiL8pjk4M3L3I6HIHn65WV1LdhrejIZ0M9rAhrMhAfZjGUG38j8RALJ68kXj9s542DlhT1Wq1+nD7w1drBYBNKjHEoU8VH/TZ/W+xrdPUY0O4/kr9BiiL+1a+1Y8MRpqXGWq6v11NoxFx/OJ/X2dbND+H2LJGlQIAfe37bP7zfKv5XxqNz4UeyNdQShHxYETsjIijEbErIh6KqJV9JCIeXWH9zYskd84/02tdBdahbP73cr62tXT+V8z+ojSQ53bU4h9KTsxWyoeyv8lv++slZivliWXq+OG1379sd6xx/pdtWf3FXDBvx7XB+5b+zMzUwlTXATe5filiz2Cr+JPbKwFJROyOiD1d1jH77Lf72h1rE/9wR794FdaZqt9EPFM//xejKf5Csvz65Pj9USkfGs97RYtlvV9+vfx2u/rvfv7X1vVLUfSuO85/3V+lpHG9dn7ldVz+84u295Td9v/h5N0l+z6eWlg4OxExnLxZy5ca9082lZtcLJ/1/4MHWo//nbH4l9gbEVknfiwiHo+I/Xnbn4iIJyPiwDLx//TqUx90H//ayuKfaXn9u93/m87/YmI4mve0Tgyc+vG7JZWWVhJ/dv6P1FIH8z2dXP86aVd3vRkAAADuPWlEbI8kHbudTtOxsfp3+HfF1rQyN7/w3Im5j87M1N8RKMVQWjz/HGl4HjqR39YX+cn8u8VF/nD+3PirgS21/Nj0XGWm18FDn9vWZvxn/u7gJRfgHte8jra1R+0A1p/3NaF/Gf/QnxLjH/pai/Hv1TPoE60+/z/tQTuA9dc0/pdd9jMxgM3F/T/0L+Mf+lf78Z+uazuAdTW/Je7+kvzmSGTXsg3QjM2SiHRDNENijRK9vjIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACsjv8DAAD//17S444=")
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)

3.059807354s ago: executing program 3 (id=1505):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)

2.900781206s ago: executing program 33 (id=1505):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)

2.858196491s ago: executing program 0 (id=1507):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file3\x00', 0x105042, 0x0)
mount(0x0, &(0x7f0000000300)='./file3\x00', &(0x7f0000000180)='nfs4\x00', 0x40, &(0x7f00000000c0)='acl=\x8cB\xd0\x02\x91\x91mt\x15\x85\xe4\xf2\xdd\r@B\xa7\x88\xbe\r\x82\x9c\x16\xe8~u\xd0\xba\xc8f\xc2\x12!\xc1\xeek\xa5~\x8f\x9c\xbe\n:\x91<\xac\x9f\xaa$Q\xc5\b\x9c\xe2v&\x83{\x10\x8b\x1e\x8f;\xa7G^\xfb\xd4\xa0\xfb\xbc\xab\xf7\x90\x84\xb6\x17\xf6\xabWt<4\'\x93\x87\xcfP\xa0h\xc0\x8e\xb3#\\\x89}\xe9q5\xfb \x8c}M\xf8/\'\xc1\xf9\xa9\xe8\x8e\xd8i\xcd\xc6\x12\x87\x95\xa84V\xf0\xf0\x86\xce*\xe9_h\xe1\x80\xdcn\xd12\xe0\x9b\xcdH\x82\x00\x0fV\x01\xa1\xd8\x14f\xe5\x16\xb4\x86\x89\xf2\x9e`\x17\xeb\xfcH\xbb\'G\xaa\x15\xf8\x04\x96m\xc6\x8a\xc1z&\x03;8gP\x10\xa8*\xa5')

2.809835676s ago: executing program 0 (id=1508):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x400, 0x2, &(0x7f0000000040))
times(0x0)

2.809594602s ago: executing program 0 (id=1509):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @private}, @in=@remote, 0x0, 0x2400, 0x1000, 0x0, 0x2, 0x20, 0x20, 0x84, 0x0, 0xee01}}}, 0xb8}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)

975.998085ms ago: executing program 0 (id=1520):
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./bus\x00', 0x2000c53, &(0x7f0000000300)=ANY=[@ANYBLOB="6d61703d6f66662c73686f776173736f632c756e686964652c696f636861727365743d6d616363726f617469616e6cd569643d", @ANYRESHEX=0x0, @ANYRESOCT, @ANYRES32, @ANYRES8], 0x0, 0xa00, &(0x7f0000000dc0)="$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")

918.82859ms ago: executing program 0 (id=1522):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x755, 0x2626, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xa0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x45}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x2}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f00000002c0)=ANY=[@ANYBLOB="402345000000453061639c545d2ce9daa7602630c6863773fddd911869efc89610aab1b0d2363bdd00b77c5bdfd51207b2908fceb485a8995d912501"], 0x0, 0x0, 0x0, 0x0}, 0x0)

788.691509ms ago: executing program 2 (id=1526):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@newqdisc={0x60, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_QUANTUM={0x6}]}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0x9, 0xc89f, 0xffff5ef5, 0x0, 0x19, 0x3}}, {0xfffffffffffffc7f}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c)

296.675705ms ago: executing program 2 (id=1527):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000006a00793628bd7000fddbbf8e88200000ffffffff08000a"], 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0xc4)

218.022367ms ago: executing program 2 (id=1528):
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f0000000300)='./file0\x00', 0x200001, &(0x7f0000000000)=ANY=[], 0x1, 0xabf, &(0x7f0000001c80)="$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")
syz_mount_image$msdos(&(0x7f0000003a40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000080)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='.\x00', &(0x7f00000000c0)='nilfs2\x00', 0x3, 0x0)

77.999792ms ago: executing program 2 (id=1529):
pipe2(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000024c0), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002380)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r2, &(0x7f0000004500)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000100)={0x50, 0x0, r3, {0x7, 0x2b, 0x0, 0x0, 0x160, 0x0, 0x4, 0x0, 0x0, 0x0, 0x80, 0xfffffffc}}, 0x50)
splice(r0, 0x0, r2, 0x0, 0x50, 0xf)

77.813256ms ago: executing program 2 (id=1530):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x28}, 0x1, 0x0, 0x0, 0x4000804}, 0x40)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="02c90010000c0005001a0608"], 0x15)

0s ago: executing program 2 (id=1531):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
setresuid(0xee01, 0x0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f00000008c0)=@file={0x1, './file0\x00'}, 0x6e)

kernel console output (not intermixed with test programs):

3] Bluetooth: hci0: command tx timeout
[   60.585662][   T55] Bluetooth: hci2: command tx timeout
[   61.336663][ T5889] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   61.354290][ T6063] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   61.504735][ T5889] usb 3-1: Using ep0 maxpacket: 16
[   61.518996][ T5889] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[   61.523208][ T5889] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   61.529270][ T5889] usb 3-1: Product: syz
[   61.531721][ T5889] usb 3-1: Manufacturer: syz
[   61.533949][ T5889] usb 3-1: SerialNumber: syz
[   61.557077][ T5889] r8152-cfgselector 3-1: Unknown version 0x0000
[   61.559898][ T5889] r8152-cfgselector 3-1: config 0 descriptor??
[   61.992517][   T10] r8152-cfgselector 3-1: USB disconnect, device number 2
[   62.400595][ T6072] loop1: detected capacity change from 0 to 40427
[   62.409939][ T6072] F2FS-fs (loop1): build fault injection rate: 771
[   62.415798][ T6072] F2FS-fs (loop1): invalid crc value
[   62.471615][ T6072] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   62.479305][ T6072] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   62.488324][ T6094] tipc: Started in network mode
[   62.491654][ T6094] tipc: Node identity , cluster identity 4711
[   62.494346][ T6094] tipc: Failed to set node id, please configure manually
[   62.498902][ T6094] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   62.586613][   T55] Bluetooth: hci0: command tx timeout
[   62.588777][ T5843] Bluetooth: hci1: command tx timeout
[   62.590258][ T5837] syz-executor: attempt to access beyond end of device
[   62.590258][ T5837] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   62.615523][ T5837] CPU: 1 UID: 0 PID: 5837 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[   62.615536][ T5837] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   62.615541][ T5837] Call Trace:
[   62.615544][ T5837]  <TASK>
[   62.615548][ T5837]  dump_stack_lvl+0x189/0x250
[   62.615562][ T5837]  ? __pfx_dump_stack_lvl+0x10/0x10
[   62.615570][ T5837]  ? __pfx_queue_work_on+0x10/0x10
[   62.615577][ T5837]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   62.615586][ T5837]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   62.615599][ T5837]  f2fs_handle_critical_error+0x37c/0x540
[   62.615612][ T5837]  f2fs_write_end_io+0x886/0xb60
[   62.615627][ T5837]  __submit_merged_bio+0x27a/0x6a0
[   62.615639][ T5837]  __submit_merged_write_cond+0x255/0x530
[   62.615651][ T5837]  f2fs_write_data_pages+0x261d/0x3000
[   62.615675][ T5837]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   62.615715][ T5837]  ? __lock_acquire+0xab9/0xd20
[   62.615729][ T5837]  ? do_raw_spin_lock+0x121/0x290
[   62.615741][ T5837]  ? do_raw_spin_unlock+0x4d/0x240
[   62.615749][ T5837]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   62.615759][ T5837]  do_writepages+0x32e/0x550
[   62.615773][ T5837]  ? do_raw_spin_unlock+0x4d/0x240
[   62.615782][ T5837]  filemap_fdatawrite+0x199/0x240
[   62.615792][ T5837]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   62.615821][ T5837]  ? do_raw_spin_unlock+0x4d/0x240
[   62.615860][ T5837]  f2fs_sync_dirty_inodes+0x31f/0x830
[   62.615874][ T5837]  f2fs_write_checkpoint+0x95a/0x1df0
[   62.615891][ T5837]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   62.615916][ T5837]  ? f2fs_stop_gc_thread+0x7f/0xb0
[   62.615922][ T5837]  ? kfree+0x18e/0x440
[   62.615931][ T5837]  ? kill_f2fs_super+0x298/0x6c0
[   62.615940][ T5837]  kill_f2fs_super+0x2c3/0x6c0
[   62.615950][ T5837]  ? __pfx_kill_f2fs_super+0x10/0x10
[   62.615955][ T5837]  ? radix_tree_delete_item+0x2b6/0x400
[   62.615967][ T5837]  ? shrinker_free+0x2ce/0x3e0
[   62.615976][ T5837]  deactivate_locked_super+0xbc/0x130
[   62.615986][ T5837]  cleanup_mnt+0x425/0x4c0
[   62.615994][ T5837]  ? lockdep_hardirqs_on+0x9c/0x150
[   62.616004][ T5837]  task_work_run+0x1d4/0x260
[   62.616015][ T5837]  ? __pfx_task_work_run+0x10/0x10
[   62.616022][ T5837]  ? __x64_sys_umount+0x122/0x160
[   62.616033][ T5837]  ? exit_to_user_mode_loop+0x40/0x110
[   62.616044][ T5837]  exit_to_user_mode_loop+0xec/0x110
[   62.616053][ T5837]  do_syscall_64+0x2bd/0x3b0
[   62.616062][ T5837]  ? lockdep_hardirqs_on+0x9c/0x150
[   62.616069][ T5837]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.616076][ T5837]  ? exc_page_fault+0x9f/0xf0
[   62.616085][ T5837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.616091][ T5837] RIP: 0033:0x7f324ad8ff17
[   62.616099][ T5837] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   62.616105][ T5837] RSP: 002b:00007ffc855828e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   62.616114][ T5837] RAX: 0000000000000000 RBX: 00007f324ae11c05 RCX: 00007f324ad8ff17
[   62.616118][ T5837] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc855829a0
[   62.616122][ T5837] RBP: 00007ffc855829a0 R08: 0000000000000000 R09: 0000000000000000
[   62.616126][ T5837] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc85583a30
[   62.616130][ T5837] R13: 00007f324ae11c05 R14: 000000000000f3f4 R15: 00007ffc85583a70
[   62.616143][ T5837]  </TASK>
[   62.616146][ T5837] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   62.632321][    C1] vcan0: j1939_tp_rxtimer: 0xffff888027da0400: rx timeout, send abort
[   62.652892][ T6102] loop2: detected capacity change from 0 to 2048
[   62.665213][   T55] Bluetooth: hci2: command tx timeout
[   62.717289][ T6102] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   62.964700][   T10] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[   63.127029][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[   63.131319][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[   63.132524][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811413b400: rx timeout, send abort
[   63.139163][    C1] vcan0: j1939_tp_rxtimer: 0xffff888027da0400: abort rx timeout. Force session deactivation
[   63.145797][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[   63.149867][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[   63.159503][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[   63.166785][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[   63.177091][   T10] usb 1-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=c0.b9
[   63.181010][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   63.186339][   T10] usb 1-1: Product: syz
[   63.188273][   T10] usb 1-1: Manufacturer: syz
[   63.190356][   T10] usb 1-1: SerialNumber: syz
[   63.199553][   T10] usb 1-1: config 0 descriptor??
[   63.211349][   T10] ti_usb_3410_5052 1-1:0.0: TI USB 5052 2 port adapter converter detected
[   63.218372][   T10] ti_usb_3410_5052 1-1:0.0: missing endpoints
[   63.378475][ T6126] loop2: detected capacity change from 0 to 2048
[   63.389581][ T6126] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.400607][ T6126] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[   63.417528][   T10] usb 1-1: USB disconnect, device number 2
[   63.433799][ T5846] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.469399][ T6131] loop2: detected capacity change from 0 to 8
[   63.484280][ T6131] SQUASHFS error: xz decompression failed, data probably corrupt
[   63.487578][ T6131] SQUASHFS error: Failed to read block 0x108: -5
[   63.490273][ T6131] SQUASHFS error: Unable to read metadata cache entry [106]
[   63.493256][ T6131] SQUASHFS error: Unable to read inode 0x11f
[   63.639069][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811413b400: abort rx timeout. Force session deactivation
[   64.452894][ T6169] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[   64.485583][ T5842] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   64.634642][  T791] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   64.698937][ T6175] vlan2: entered allmulticast mode
[   64.744588][   T10] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[   64.796137][  T791] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   64.802949][  T791] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   64.814496][  T791] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   64.817941][  T791] usb 1-1: Product: syz
[   64.819761][  T791] usb 1-1: Manufacturer: syz
[   64.821650][  T791] usb 1-1: SerialNumber: syz
[   64.848942][ T6179] loop1: detected capacity change from 0 to 4096
[   64.853006][ T6179] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[   64.868516][ T6179] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[   64.877352][ T6179] ntfs3(loop1): ino=1e, mi_enum_attr
[   64.879201][ T6179] ntfs3(loop1): ino=1e, mi_enum_attr
[   64.909013][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   64.913534][   T10] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[   64.917983][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.933150][   T10] usb 3-1: config 0 descriptor??
[   64.936274][ T6173] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   65.211950][ T6191] loop1: detected capacity change from 0 to 32768
[   65.225659][ T5867] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   65.280880][ T6191] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow,no_data_io
[   65.280897][ T6191]   allowing incompatible features above 0.0: (unknown version)
[   65.280905][ T6191]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   65.298290][ T6191] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[   65.301616][ T6191] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[   65.305095][ T6191] bcachefs (loop1): Version upgrade required:
[   65.305095][ T6191] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   65.305095][ T6191] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   65.305095][ T6191]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   65.331227][ T6191] bcachefs (loop1): dropping and reconstructing all alloc info
[   65.343781][ T6191] bcachefs (loop1): accounting_read... done
[   65.346574][ T6191] bcachefs (loop1): alloc_read... done
[   65.349107][ T6191] bcachefs (loop1): snapshots_read... done
[   65.351836][ T6191] bcachefs (loop1): done starting filesystem
[   65.360662][   T10] pyra 0003:1E7D:2CF6.0001: hidraw0: USB HID v1.01 Device [HID 1e7d:2cf6] on usb-dummy_hcd.2-1/input0
[   65.381702][ T5837] bcachefs (loop1): shutting down
[   65.385571][ T5842] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   65.405723][ T5837] bcachefs (loop1): shutdown complete
[   65.553555][ T5842] usb 3-1: USB disconnect, device number 3
[   65.843597][  T791] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[   65.847997][  T791] cdc_ncm 1-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[   65.850991][  T791] cdc_ncm 1-1:1.0: setting rx_max = 2048
[   66.245854][  T791] cdc_ncm 1-1:1.0: setting tx_max = 88
[   66.257117][  T791] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[   66.262823][  T791] usb 1-1: USB disconnect, device number 3
[   66.265340][   T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   66.267055][  T791] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP)
[   66.268988][   T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   66.720209][ T6210] loop1: detected capacity change from 0 to 32768
[   66.723852][ T6210] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.112 (6210)
[   66.731685][ T6210] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   66.736195][ T6210] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   66.738885][ T6210] BTRFS info (device loop1): using free-space-tree
[   66.752957][ T6210] BTRFS info (device loop1): rebuilding free space tree
[   66.832884][ T5837] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   66.981886][ T6246] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   66.985763][ T6246] overlayfs: missing 'lowerdir'
[   67.917143][   T47] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   67.938315][ T6253] atomic_op ffff88812579e998 conn xmit_atomic 0000000000000000
[   67.948257][ T6255] netlink: 4 bytes leftover after parsing attributes in process `syz.0.128'.
[   68.009686][ T6259] veth0: entered promiscuous mode
[   68.041897][ T6261] loop1: detected capacity change from 0 to 512
[   68.044264][ T6261] =======================================================
[   68.044264][ T6261] WARNING: The mand mount option has been deprecated and
[   68.044264][ T6261]          and is ignored by this kernel. Remove the mand
[   68.044264][ T6261]          option from the mount to silence this warning.
[   68.044264][ T6261] =======================================================
[   68.060986][ T6261] EXT4-fs: Ignoring removed bh option
[   68.062743][ T6261] EXT4-fs: Ignoring removed mblk_io_submit option
[   68.068105][ T6261] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   68.083411][ T6261] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   68.087254][ T6261] EXT4-fs (loop1): orphan cleanup on readonly fs
[   68.090944][ T6261] Quota error (device loop1): v2_read_file_info: Block with free entry 252928 out of range (1, 6).
[   68.096095][ T6261] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   68.101747][ T6261] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   68.105748][ T6261] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.131: Invalid block bitmap block 0 in block_group 0
[   68.111712][ T6261] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   68.119132][ T6261] EXT4-fs (loop1): 1 orphan inode deleted
[   68.122864][ T6261] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   68.156626][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.201673][ T6276] netlink: 20 bytes leftover after parsing attributes in process `syz.1.136'.
[   68.244943][   T24] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   68.301659][ T6286] syz_tun: entered allmulticast mode
[   68.324275][   T33] audit: type=1326 audit(1755400479.114:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.143" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f803bd8ebe9 code=0x0
[   68.374675][   T24] usb 1-1: device descriptor read/64, error -71
[   68.427496][ T6291] syz_tun: left allmulticast mode
[   68.480442][ T6290] loop1: detected capacity change from 0 to 32768
[   68.483446][ T6290] XFS: ikeep mount option is deprecated.
[   68.492733][ T6290] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   68.516608][ T6290] XFS (loop1): Ending clean mount
[   68.522452][ T6290] XFS (loop1): Quotacheck needed: Please wait.
[   68.543828][ T6290] XFS (loop1): Quotacheck: Done.
[   68.559204][   T33] audit: type=1800 audit(1755400479.354:3): pid=6290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.145" name="bus" dev="loop1" ino=9290 res=0 errno=0
[   68.578205][   T33] audit: type=1800 audit(1755400479.374:4): pid=6290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.145" name="file1" dev="loop1" ino=9286 res=0 errno=0
[   68.614891][   T24] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   68.648290][ T5837] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   68.744618][   T24] usb 1-1: device descriptor read/64, error -71
[   68.855402][   T24] usb usb1-port1: attempt power cycle
[   69.194666][   T24] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   69.217736][   T24] usb 1-1: device descriptor read/8, error -71
[   69.464590][   T24] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   69.486944][   T24] usb 1-1: device descriptor read/8, error -71
[   69.600630][   T24] usb usb1-port1: unable to enumerate USB device
[   70.104602][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   70.181578][ T6333] loop1: detected capacity change from 0 to 40427
[   70.181636][ T6339] dns_resolver: Unsupported server list version (0)
[   70.188333][ T6333] F2FS-fs (loop1): build fault injection rate: 14
[   70.190970][ T6333] F2FS-fs (loop1): build fault injection type: 0x1dff
[   70.196510][ T6333] F2FS-fs (loop1): invalid crc value
[   70.202900][ T6333] F2FS-fs (loop1): inject kmalloc in f2fs_kmalloc of f2fs_fill_super+0x4429/0x6ff0
[   70.207242][ T6333] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-12)
[   70.485393][   T24] IPVS: starting estimator thread 0...
[   70.735206][ T6359] IPVS: using max 81 ests per chain, 194400 per kthread
[   70.824626][   T24] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   70.975267][   T24] usb 2-1: Using ep0 maxpacket: 8
[   70.979469][   T24] usb 2-1: config 0 has an invalid interface number: 31 but max is 0
[   70.982844][   T24] usb 2-1: config 0 has no interface number 0
[   70.996925][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[   71.001293][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[   71.009646][   T24] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[   71.014250][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.017631][   T24] usb 2-1: Product: syz
[   71.019307][   T24] usb 2-1: Manufacturer: syz
[   71.021198][   T24] usb 2-1: SerialNumber: syz
[   71.026020][   T24] usb 2-1: config 0 descriptor??
[   71.026355][ T6259] veth0: left promiscuous mode
[   71.176949][ T6370] loop0: detected capacity change from 0 to 1024
[   71.179479][ T6370] EXT4-fs: Ignoring removed orlov option
[   71.181341][ T6370] EXT4-fs: Ignoring removed nomblk_io_submit option
[   71.206246][ T6370] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.235794][ T6375] IPv6: Can't replace route, no match found
[   71.238834][   T24] usb 2-1: Found UVC 0.04 device syz (046d:08c3)
[   71.241219][   T24] usb 2-1: No streaming interface found for terminal 6.
[   71.256005][   T24] usb 2-1: USB disconnect, device number 2
[   71.293196][ T5841] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.429322][ T6385] loop0: detected capacity change from 0 to 128
[   72.022472][ T6436] netlink: 16 bytes leftover after parsing attributes in process `syz.2.204'.
[   72.048826][ T6438] loop0: detected capacity change from 0 to 4096
[   72.079869][ T6441] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   72.111997][ T6438] overlayfs: upper fs does not support tmpfile.
[   72.123300][ T6438] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   72.126619][ T6438] overlayfs: failed to set xattr on upper
[   72.128620][ T6438] overlayfs: ...falling back to redirect_dir=nofollow.
[   72.130818][ T6438] overlayfs: ...falling back to index=off.
[   72.133051][ T6438] overlayfs: ...falling back to uuid=null.
[   72.747018][ T6472] syz.2.219 uses obsolete (PF_INET,SOCK_PACKET)
[   72.777586][ T6476] warning: `syz.1.221' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   73.479042][ T6503] loop1: detected capacity change from 0 to 32768
[   73.482480][ T6503] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.233 (6503)
[   73.489014][ T6503] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   73.492435][ T6503] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[   73.495325][ T6503] BTRFS info (device loop1): using free-space-tree
[   73.506199][   T10] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[   73.552199][   T33] audit: type=1804 audit(1755400484.344:5): pid=6503 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.233" name="/newroot/71/file1/file1" dev="loop1" ino=260 res=1 errno=0
[   73.593646][ T5837] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   73.669429][   T10] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[   73.672963][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.689408][   T10] usb 1-1: config 0 descriptor??
[   73.705222][   T10] gspca_main: cpia1-2.14.0 probing 0813:0001
[   73.786529][ T6535] loop1: detected capacity change from 0 to 2048
[   73.789623][ T6535] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[   73.798941][ T6535] NILFS (loop1): too large checkpoint size: 1741 bytes
[   73.801589][ T6535] NILFS (loop1): error -22 while loading super root
[   74.134562][ T5889] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   74.233110][   T10] cpia1 1-1:0.0: unexpected state after lo power cmd: 00
[   74.295331][ T5889] usb 2-1: Using ep0 maxpacket: 8
[   74.305587][ T5889] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1023
[   74.309409][ T5889] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[   74.321170][ T5889] usb 2-1: language id specifier not provided by device, defaulting to English
[   74.355624][ T5889] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   74.359587][ T5889] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.362825][ T5889] usb 2-1: Product: syz
[   74.364315][ T5889] usb 2-1: Manufacturer: 헣
[   74.366418][ T5889] usb 2-1: SerialNumber: syz
[   74.378359][ T6545] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   74.381162][ T6545] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   74.641169][ T6552] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.248'.
[   74.643503][ T5889] usblp 2-1:1.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 2 vid 0x0525 pid 0xA4A8
[   74.702981][ T5889] usb 2-1: USB disconnect, device number 3
[   74.759112][ T5889] usblp0: removed
[   74.773470][ T6554] netlink: 'syz.2.249': attribute type 2 has an invalid length.
[   74.777740][ T6554] netlink: 'syz.2.249': attribute type 1 has an invalid length.
[   74.781797][ T6554] netlink: 'syz.2.249': attribute type 1 has an invalid length.
[   75.717981][ T6565] netlink: 12 bytes leftover after parsing attributes in process `syz.2.254'.
[   75.721002][ T6565] netlink: 8 bytes leftover after parsing attributes in process `syz.2.254'.
[   75.766484][ T6569] netlink: 'syz.2.256': attribute type 39 has an invalid length.
[   75.834512][ T6560] loop1: detected capacity change from 0 to 131072
[   75.840208][ T6560] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[   75.843619][ T6560] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   75.847790][   T10] gspca_cpia1: usb_control_msg 01, error -71
[   75.856771][ T6560] F2FS-fs (loop1): invalid crc value
[   75.859598][   T10] cpia1 1-1:0.0: only firmware version 1 is supported (got: 0)
[   75.865703][   T10] usb 1-1: USB disconnect, device number 8
[   75.919561][ T6560] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   75.929480][ T6560] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   75.932362][ T6560] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[   75.933418][ T6575] netlink: 'syz.0.257': attribute type 10 has an invalid length.
[   75.963883][   T33] audit: type=1800 audit(1755400486.754:6): pid=6560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.252" name="file2" dev="loop1" ino=8 res=0 errno=0
[   76.235046][ T6595] netlink: 8 bytes leftover after parsing attributes in process `syz.2.268'.
[   76.240504][ T6595] netlink: 8 bytes leftover after parsing attributes in process `syz.2.268'.
[   76.418454][ T6618] netlink: 12 bytes leftover after parsing attributes in process `syz.1.278'.
[   76.423390][ T6618] netlink: 104 bytes leftover after parsing attributes in process `syz.1.278'.
[   76.643731][ T6628] loop1: detected capacity change from 0 to 32768
[   76.682204][ T6628] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[   76.710575][ T5837] ocfs2: Unmounting device (7,1) on (node local)
[   76.776880][ T6648] loop1: detected capacity change from 0 to 16
[   76.782952][ T6648] erofs (device loop1): mounted with root inode @ nid 36.
[   78.024541][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   78.620244][ T6682] loop1: detected capacity change from 0 to 512
[   78.626490][ T6682] EXT4-fs: Ignoring removed nomblk_io_submit option
[   78.636432][ T6682] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   78.639913][ T6682] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e128, mo2=0002]
[   78.644662][ T6682] EXT4-fs (loop1): orphan cleanup on readonly fs
[   78.647664][ T6682] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0
[   78.652020][ T6682] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   78.659686][ T6682] EXT4-fs (loop1): Cannot turn on quotas: error -22
[   78.671249][ T6682] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.303: bg 0: block 40: padding at end of block bitmap is not set
[   78.679756][ T6682] EXT4-fs (loop1): Remounting filesystem read-only
[   78.683851][ T6682] EXT4-fs (loop1): 1 truncate cleaned up
[   78.692277][ T6682] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   79.284648][ T6304] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[   79.304725][  T791] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   79.438707][ T6304] usb 1-1: not running at top speed; connect to a high speed hub
[   79.453850][ T6304] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   79.465186][ T6304] usb 1-1: New USB device found, idVendor=11ba, idProduct=1001, bcdDevice=ec.57
[   79.474668][ T6304] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   79.480039][ T6304] usb 1-1: Product: syz
[   79.481876][ T6304] usb 1-1: Manufacturer: syz
[   79.483850][ T6304] usb 1-1: SerialNumber: syz
[   79.714957][ T6304] pvrusb2: Hardware description: OnAir USB2 Hybrid USB tuner
[   79.721934][ T2396] pvrusb2: Invalid write control endpoint
[   79.722593][ T6304] usb 1-1: USB disconnect, device number 9
[   79.968792][ T2396] pvrusb2: Invalid write control endpoint
[   79.970871][ T2396] pvrusb2: Invalid write control endpoint
[   79.973449][ T2396] pvrusb2: Invalid write control endpoint
[   79.975516][ T2396] pvrusb2: Invalid write control endpoint
[   79.977578][ T2396] pvrusb2: Invalid write control endpoint
[   79.981034][ T2396] pvrusb2: Invalid write control endpoint
[   79.983069][ T2396] pvrusb2: Invalid write control endpoint
[   79.985773][ T2396] pvrusb2: Invalid write control endpoint
[   80.001309][ T2396] pvrusb2: Invalid write control endpoint
[   80.003282][ T2396] pvrusb2: Invalid write control endpoint
[   80.007674][ T2396] pvrusb2: Invalid write control endpoint
[   80.009541][ T2396] pvrusb2: Invalid write control endpoint
[   80.011598][ T2396] pvrusb2: Invalid write control endpoint
[   80.013478][ T2396] pvrusb2: Invalid write control endpoint
[   80.015755][ T2396] pvrusb2: Invalid write control endpoint
[   80.018002][ T2396] pvrusb2: Invalid write control endpoint
[   80.020420][ T2396] pvrusb2: Invalid write control endpoint
[   80.023123][ T2396] pvrusb2: Invalid write control endpoint
[   80.026377][ T2396] pvrusb2: Invalid write control endpoint
[   80.028788][ T2396] pvrusb2: Invalid write control endpoint
[   80.031119][ T2396] pvrusb2: Invalid write control endpoint
[   80.033923][ T2396] pvrusb2: Invalid write control endpoint
[   80.036710][ T2396] pvrusb2: Invalid write control endpoint
[   80.039207][ T2396] pvrusb2: Invalid write control endpoint
[   80.041669][ T2396] pvrusb2: Invalid write control endpoint
[   80.044337][ T2396] pvrusb2: Invalid write control endpoint
[   80.047007][ T2396] pvrusb2: Invalid write control endpoint
[   80.049440][ T2396] pvrusb2: Invalid write control endpoint
[   80.051903][ T2396] pvrusb2: Invalid write control endpoint
[   80.054734][ T2396] pvrusb2: Invalid write control endpoint
[   80.057142][ T2396] pvrusb2: Invalid write control endpoint
[   80.059522][ T2396] pvrusb2: Invalid write control endpoint
[   80.066951][ T2396] pvrusb2: Module ID 3 (saa7115) for device OnAir USB2 Hybrid USB tuner failed to load.  Possible missing sub-device kernel module or initialization failure within module.
[   80.097251][ T2396] cs53l32a 2-0011: chip found @ 0x22 (pvrusb2_a)
[   80.100210][ T2396] pvrusb2: Invalid write control endpoint
[   80.104138][ T2396] pvrusb2: Invalid write control endpoint
[   80.107031][ T2396] pvrusb2: Invalid write control endpoint
[   80.109497][ T2396] pvrusb2: Invalid write control endpoint
[   80.111961][ T2396] pvrusb2: Invalid write control endpoint
[   80.114385][ T2396] pvrusb2: Invalid write control endpoint
[   80.119454][ T2396] pvrusb2: Invalid write control endpoint
[   80.122235][ T2396] pvrusb2: Invalid write control endpoint
[   80.128010][ T2396] pvrusb2: Invalid write control endpoint
[   80.130434][ T2396] pvrusb2: Invalid write control endpoint
[   80.132898][ T2396] pvrusb2: Invalid write control endpoint
[   80.145919][ T2396] pvrusb2: Invalid write control endpoint
[   80.148526][ T2396] pvrusb2: Invalid write control endpoint
[   80.151332][ T2396] pvrusb2: Invalid write control endpoint
[   80.153833][ T2396] pvrusb2: Invalid write control endpoint
[   80.159078][ T2396] pvrusb2: Invalid write control endpoint
[   80.161702][ T2396] pvrusb2: Invalid write control endpoint
[   80.164253][ T2396] pvrusb2: Invalid write control endpoint
[   80.166977][ T2396] pvrusb2: Invalid write control endpoint
[   80.169538][ T2396] pvrusb2: Invalid write control endpoint
[   80.172078][ T2396] pvrusb2: Invalid write control endpoint
[   80.176479][ T2396] pvrusb2: Attached sub-driver cs53l32a
[   80.201881][ T2396] pvrusb2: Invalid write control endpoint
[   80.207469][ T2396] pvrusb2: Invalid write control endpoint
[   80.210268][ T2396] pvrusb2: Invalid write control endpoint
[   80.212646][ T2396] pvrusb2: Invalid write control endpoint
[   80.217000][ T2396] pvrusb2: Module ID 4 (tuner) for device OnAir USB2 Hybrid USB tuner failed to load.  Possible missing sub-device kernel module or initialization failure within module.
[   80.224298][ T2396] pvrusb2: Device being rendered inoperable
[   80.229184][ T2396] pvrusb2: ***WARNING*** pvrusb2 driver initialization failed due to the failure of one or more sub-device kernel modules.
[   80.235249][ T2396] pvrusb2: You need to resolve the failing condition before this driver can function.  There should be some earlier messages giving more information about the problem.
[   80.388902][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.536441][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.607802][ T6720] loop0: detected capacity change from 0 to 32768
[   80.625434][ T6720] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.320 (6720)
[   80.633093][ T6720] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[   80.637258][ T6720] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[   80.641003][ T6720] BTRFS info (device loop0): disk space caching is enabled
[   80.643558][ T6720] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[   80.677837][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.691323][ T6068] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.729569][ T6720] BTRFS info (device loop0): rebuilding free space tree
[   80.748944][ T6720] BTRFS info (device loop0): disabling free space tree
[   80.751899][ T6720] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   80.771480][ T6720] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   80.782982][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.840243][ T5841] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[   80.954741][   T12] bridge_slave_1: left allmulticast mode
[   80.957262][   T12] bridge_slave_1: left promiscuous mode
[   80.960904][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.994012][   T12] bridge_slave_0: left promiscuous mode
[   81.000894][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.028388][ T5843] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   81.032455][ T5843] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   81.036323][ T5843] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   81.039778][ T5843] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   81.043081][ T5843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   81.226439][  T792] cfg80211: failed to load regulatory.db
[   81.314411][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   81.321030][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   81.326125][   T12] bond0 (unregistering): Released all slaves
[   81.553365][ T6746] chnl_net:caif_netlink_parms(): no params data found
[   81.607195][ T6746] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.610163][ T6746] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.612582][ T6746] bridge_slave_0: entered allmulticast mode
[   81.616550][ T6746] bridge_slave_0: entered promiscuous mode
[   81.619682][ T6746] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.622015][ T6746] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.624350][ T6746] bridge_slave_1: entered allmulticast mode
[   81.627829][ T6746] bridge_slave_1: entered promiscuous mode
[   81.654707][ T5889] IPVS: starting estimator thread 0...
[   81.705186][    T9] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[   81.721191][ T6746] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.728379][ T6746] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.756485][ T6746] team0: Port device team_slave_0 added
[   81.760087][ T6746] team0: Port device team_slave_1 added
[   81.766096][ T6758] IPVS: using max 81 ests per chain, 194400 per kthread
[   81.781037][ T6746] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.783407][ T6746] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.792358][ T6746] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.801008][ T6746] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.803415][ T6746] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.812464][ T6746] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.865262][    T9] usb 1-1: Using ep0 maxpacket: 32
[   81.873844][    T9] usb 1-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[   81.882759][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.076990][    T9] usb 1-1: Product: syz
[   82.080196][    T9] usb 1-1: Manufacturer: syz
[   82.081930][    T9] usb 1-1: SerialNumber: syz
[   82.086310][    T9] usb 1-1: config 0 descriptor??
[   82.098680][    T9] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[   82.102892][ T6746] hsr_slave_0: entered promiscuous mode
[   82.106104][ T6746] hsr_slave_1: entered promiscuous mode
[   82.108984][ T6746] debugfs: 'hsr0' already exists in 'hsr'
[   82.111523][ T6746] Cannot create hsr debugfs directory
[   82.119850][   T12] hsr_slave_0: left promiscuous mode
[   82.122875][   T12] hsr_slave_1: left promiscuous mode
[   82.126983][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   82.130108][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   82.134170][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   82.138386][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   82.153248][   T12] veth1_macvtap: left promiscuous mode
[   82.156012][   T12] veth0_macvtap: left promiscuous mode
[   82.158533][   T12] veth1_vlan: left promiscuous mode
[   82.160915][   T12] veth0_vlan: left promiscuous mode
[   82.522717][   T12] team0 (unregistering): Port device team_slave_1 removed
[   82.552113][   T12] team0 (unregistering): Port device team_slave_0 removed
[   82.865692][ T6770] tipc: Started in network mode
[   82.870168][ T6770] tipc: Node identity c, cluster identity 4711
[   82.872831][ T6770] tipc: Node number set to 12
[   82.905241][    T9] gspca_ov534_9: reg_w failed -71
[   82.965182][ T6772] netlink: 28 bytes leftover after parsing attributes in process `syz.2.334'.
[   82.970353][ T6772] netlink: 8 bytes leftover after parsing attributes in process `syz.2.334'.
[   83.068512][ T5843] Bluetooth: hci0: command tx timeout
[   83.150767][ T6746] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   83.158517][ T6746] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   83.164059][ T6746] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   83.176748][ T6746] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   83.206803][   T12] IPVS: stop unused estimator thread 0...
[   83.255177][    T9] gspca_ov534_9: Unknown sensor 0000
[   83.255244][    T9] ov534_9 1-1:0.0: probe with driver ov534_9 failed with error -22
[   83.262152][ T6746] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.270987][    T9] usb 1-1: USB disconnect, device number 10
[   83.278661][ T6746] 8021q: adding VLAN 0 to HW filter on device team0
[   83.289284][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.291954][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.301153][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.303867][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.430413][ T6746] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.467276][ T6746] veth0_vlan: entered promiscuous mode
[   83.473862][ T6746] veth1_vlan: entered promiscuous mode
[   83.489491][ T6746] veth0_macvtap: entered promiscuous mode
[   83.498240][ T6746] veth1_macvtap: entered promiscuous mode
[   83.519259][ T6746] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.536120][ T6746] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.547170][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.550790][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.554252][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.578365][ T5902] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.658838][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.665073][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.850519][   T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.871423][   T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.920409][ T6819] netlink: 28 bytes leftover after parsing attributes in process `syz.3.323'.
[   83.943046][ T6821] netlink: 16 bytes leftover after parsing attributes in process `syz.2.350'.
[   83.946324][ T6821] netlink: 16 bytes leftover after parsing attributes in process `syz.2.350'.
[   83.949360][ T6821] netlink: 5 bytes leftover after parsing attributes in process `syz.2.350'.
[   84.236705][ T6840] netlink: 'syz.3.359': attribute type 2 has an invalid length.
[   84.239822][ T6840] netlink: 'syz.3.359': attribute type 1 has an invalid length.
[   84.467180][ T5889] kernel write not supported for file /video36 (pid: 5889 comm: kworker/0:4)
[   84.574677][    T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   84.768054][ T6863] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   84.874709][    T9] usb 4-1: Using ep0 maxpacket: 16
[   84.883191][    T9] usb 4-1: config 1 has an invalid descriptor of length 171, skipping remainder of the config
[   84.886735][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   84.896126][    T9] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   84.899263][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.906462][    T9] usb 4-1: Product: syz
[   84.908355][ T6865] 9pnet_fd: Insufficient options for proto=fd
[   84.911914][    T9] usb 4-1: Manufacturer: syz
[   84.913500][    T9] usb 4-1: SerialNumber: syz
[   85.010426][ T6871] netlink: 4 bytes leftover after parsing attributes in process `syz.2.373'.
[   85.133704][    T9] usb 4-1: 0:2 : does not exist
[   85.136536][    T9] usb 4-1: unit 9 not found!
[   85.151639][    T9] usb 4-1: USB disconnect, device number 2
[   85.634706][    T9] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[   85.786879][    T9] usb 1-1: unable to get BOS descriptor or descriptor too short
[   85.791270][    T9] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[   85.796712][    T9] usb 1-1: config 1 has no interface number 1
[   85.801623][    T9] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   85.805612][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   85.808998][    T9] usb 1-1: Product: syz
[   85.810808][    T9] usb 1-1: Manufacturer: syz
[   85.812786][    T9] usb 1-1: SerialNumber: syz
[   86.025917][    T9] usb 1-1: 2:1: invalid format type 0x1002 is detected, processed as PCM
[   86.028560][    T9] usb 1-1: 2:1 : sample bitwidth 139 in over sample bytes 13
[   86.031339][    T9] usb 1-1: 2:1 : unsupported sample bitwidth 139 in 13 bytes
[   86.056423][    T9] usb 1-1: USB disconnect, device number 11
[   86.262834][ T6902] 9pnet_fd: Insufficient options for proto=fd
[   86.784680][    T9] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[   86.898353][ T6924] capability: warning: `syz.2.397' uses deprecated v2 capabilities in a way that may be insecure
[   86.937700][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   86.942220][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   86.947951][    T9] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   86.953471][    T9] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   86.958184][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.964380][    T9] usb 1-1: config 0 descriptor??
[   86.970063][   T33] audit: type=1800 audit(1755400497.764:7): pid=6927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.398" name="file1" dev="tmpfs" ino=875 res=0 errno=0
[   87.062660][ T6931] netlink: 8 bytes leftover after parsing attributes in process `syz.2.400'.
[   87.101997][ T6933] openvswitch: netlink: VXLAN extension 11 out of range max 1
[   87.144682][ T5843] Bluetooth: hci0: command tx timeout
[   87.391475][    T9] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   87.400154][    T9] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   87.523771][ T6938] process 'syz.3.403' launched './file0' with NULL argv: empty string added
[   87.647317][  T792] usb 1-1: USB disconnect, device number 12
[   87.711125][ T6942] loop3: detected capacity change from 0 to 32768
[   87.716303][ T6942] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.405 (6942)
[   87.722837][ T6942] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   87.727125][ T6942] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[   87.730798][ T6942] BTRFS info (device loop3): using free-space-tree
[   87.754024][ T6942] BTRFS error (device loop3): balance: invalid convert data profile single
[   87.773294][ T6746] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   87.998721][   T33] audit: type=1326 audit(1755400498.794:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.2.408" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f803bd8ebe9 code=0x7ffc0000
[   88.005821][   T33] audit: type=1326 audit(1755400498.794:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.2.408" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f803bd8ebe9 code=0x7ffc0000
[   88.012692][   T33] audit: type=1326 audit(1755400498.794:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.2.408" exe="/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f803bd8ebe9 code=0x7ffc0000
[   88.020536][   T33] audit: type=1326 audit(1755400498.794:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.2.408" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f803bd8ebe9 code=0x7ffc0000
[   88.134559][  T792] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   88.308670][  T792] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   88.313536][  T792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   88.318260][  T792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   88.322752][  T792] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   88.329276][  T792] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   88.345299][  T792] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.352326][  T792] usb 4-1: config 0 descriptor??
[   88.422540][   T33] audit: type=1326 audit(1755400499.214:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.417" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f933838ebe9 code=0x7ffc0000
[   88.431073][   T33] audit: type=1326 audit(1755400499.214:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.417" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f933838ebe9 code=0x7ffc0000
[   88.441073][   T33] audit: type=1326 audit(1755400499.224:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.417" exe="/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f933838ebe9 code=0x7ffc0000
[   88.483313][   T33] audit: type=1326 audit(1755400499.274:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.417" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f933838ebe9 code=0x7ffc0000
[   88.550439][ T6987] loop0: detected capacity change from 0 to 512
[   88.560828][ T6987] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.567945][ T6987] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.007243][  T792] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   89.013651][  T792] usb 4-1: USB disconnect, device number 3
[   89.227536][ T5843] Bluetooth: hci0: command tx timeout
[   89.423582][ T5841] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.551813][ T7028] tmpfs: Bad value for 'mpol'
[   89.673572][ T7034] binder: 7029:7034 ioctl 4018620d 0 returned -22
[   89.676985][ T7034] binder: 7029:7034 ioctl c0306201 0 returned -14
[   90.128634][ T7056] veth0_macvtap: left promiscuous mode
[   91.258003][ T7090] loop3: detected capacity change from 0 to 128
[   91.262437][ T7090] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[   91.270687][ T7090] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   91.620645][   T33] audit: type=1326 audit(1755400502.414:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7127 comm="syz.2.479" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f803bd8ebe9 code=0x7ffc0000
[   92.174773][ T7144] loop0: detected capacity change from 0 to 32768
[   92.196807][ T7144] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nochanges,nojournal_transaction_names,read_only,version_upgrade=none
[   92.196821][ T7144]   allowing incompatible features above 0.0: (unknown version)
[   92.196827][ T7144]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   92.211658][ T7144] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   92.214836][ T7144] bcachefs (loop0): recovering from clean shutdown, journal seq 13
[   92.230443][ T7144] bcachefs (loop0): accounting_read... done
[   92.233451][ T7144] bcachefs (loop0): alloc_read... done
[   92.236018][ T7144] bcachefs (loop0): snapshots_read... done
[   92.240671][ T7144] bcachefs (loop0): journal_replay... done
[   92.243564][ T7144] bcachefs (loop0): resume_logged_ops... done
[   92.246154][ T7144] bcachefs (loop0): delete_dead_inodes... done
[   92.249863][ T7144] bcachefs (loop0): done starting filesystem
[   92.273272][ T5841] bcachefs (loop0): shutting down
[   92.297315][ T5841] bcachefs (loop0): shutdown complete
[   92.380478][ T7147] loop3: detected capacity change from 0 to 32768
[   92.397599][   T33] kauditd_printk_skb: 5 callbacks suppressed
[   92.397607][   T33] audit: type=1800 audit(1755400503.194:22): pid=7147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.487" name="file1" dev="loop3" ino=4 res=0 errno=0
[   92.512289][ T7149] loop3: detected capacity change from 0 to 2048
[   92.516764][ T7149] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   92.593190][ T7160] netlink: 24 bytes leftover after parsing attributes in process `syz.3.494'.
[   92.807912][ T7174] vcan0: tx drop: invalid da for name 0x0000000000000002
[   93.108970][ T7176] loop0: detected capacity change from 0 to 2048
[   93.112930][ T7176] UDF-fs: warning (device loop0): udf_fill_super: No partition found (2)
[   93.220651][ T7176] loop0: detected capacity change from 0 to 32768
[   93.223497][ T7176] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.488 (7176)
[   93.229947][ T7176] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   93.233236][ T7176] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[   93.236012][ T7176] BTRFS info (device loop0): using free-space-tree
[   93.271223][ T5841] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   93.384640][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   93.417622][ T7195] loop0: detected capacity change from 0 to 128
[   93.428755][ T7195] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   93.447841][ T7195] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   93.456893][ T7195] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 1986356271 (only 1 groups)
[   93.480850][ T5841] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   94.065396][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880285ba800: rx timeout, send abort
[   94.069114][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880285ba800: 0x0ff00: (3) A timeout occurred and this is the connection abort to close the session.
[   94.791679][ T7237] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   94.795936][ T7239] loop3: detected capacity change from 0 to 256
[   94.798699][ T7239] exfat: Deprecated parameter 'utf8'
[   94.800668][ T7239] exfat: Deprecated parameter 'namecase'
[   94.810997][ T7239] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[   94.988032][ T7247] loop3: detected capacity change from 0 to 32768
[   94.994830][    T9] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[   95.008048][ T7247] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[   95.038962][ T6746] ocfs2: Unmounting device (7,3) on (node local)
[   95.147627][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   95.151219][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   95.155611][    T9] usb 1-1: New USB device found, idVendor=056a, idProduct=0217, bcdDevice= 0.fc
[   95.158919][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.163710][    T9] usb 1-1: config 0 descriptor??
[   95.334521][ T5905] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   95.484568][ T5905] usb 4-1: Using ep0 maxpacket: 32
[   95.487992][ T5905] usb 4-1: config 191 has 1 interface, different from the descriptor's value: 9
[   95.497125][ T5905] usb 4-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=81.9b
[   95.500650][ T5905] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.503655][ T5905] usb 4-1: Product: syz
[   95.505231][ T5905] usb 4-1: Manufacturer: syz
[   95.507063][ T5905] usb 4-1: SerialNumber: syz
[   95.518551][ T5905] usb 4-1: active config #191 != 1 ??
[   95.547930][ T5843] Bluetooth: hci2: unexpected event 0x05 length: 10 > 4
[   95.573560][    T9] wacom 0003:056A:0217.0004: Unknown device_type for 'HID 056a:0217'. Ignoring.
[   95.726532][ T6304] usb 4-1: USB disconnect, device number 4
[   95.772159][    T9] usb 1-1: USB disconnect, device number 13
[   95.841581][ T7279] netlink: 4 bytes leftover after parsing attributes in process `syz.2.537'.
[   96.473927][ T7287] loop3: detected capacity change from 0 to 32768
[   96.557486][ T7287] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[   96.557497][ T7287]   allowing incompatible features above 0.0: (unknown version)
[   96.557501][ T7287]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   96.572841][ T7287] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[   96.575655][ T7287] bcachefs (loop3): initializing new filesystem
[   96.583151][ T7287] bcachefs (loop3): going read-write
[   96.591859][ T7287] bcachefs (loop3): marking superblocks
[   96.660430][ T7287] bcachefs (loop3): initializing freespace
[   96.706266][ T7287] bcachefs (loop3): done initializing freespace
[   96.785918][ T7287] bcachefs (loop3): reading snapshots table
[   96.788134][ T7287] bcachefs (loop3): reading snapshots done
[   96.817388][ T7287] bcachefs (loop3): done starting filesystem
[   96.847667][ T7287] syz.3.540 (7287) used greatest stack depth: 16200 bytes left
[   96.851117][ T6746] bcachefs (loop3): shutting down
[   96.852747][ T6746] bcachefs (loop3): going read-only
[   96.855375][ T6746] bcachefs (loop3): finished waiting for writes to stop
[   96.859875][ T6746] bcachefs (loop3): flushing journal and stopping allocators, journal seq 1
[   96.902029][ T6746] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 2
[   96.906975][ T6746] bcachefs (loop3): clean shutdown complete, journal seq 3
[   96.909897][ T6746] bcachefs (loop3): marking filesystem clean
[   96.926361][ T6746] bcachefs (loop3): shutdown complete
[   96.996806][ T7318] sctp: [Deprecated]: syz.2.548 (pid 7318) Use of struct sctp_assoc_value in delayed_ack socket option.
[   96.996806][ T7318] Use struct sctp_sack_info instead
[   97.274761][ T7337] Option 'TXƮ' to dns_resolver key: bad/missing value
[   98.251195][ T7370] loop0: detected capacity change from 0 to 256
[   99.174231][ T7387] netlink: 'syz.2.579': attribute type 3 has an invalid length.
[   99.577580][ T7423] Illegal XDP return value 4291146624 on prog  (id 45) dev N/A, expect packet loss!
[  101.031800][ T7474] netlink: 'syz.2.613': attribute type 1 has an invalid length.
[  101.034858][  T792] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  101.144012][ T7482] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  101.184658][  T792] usb 4-1: Using ep0 maxpacket: 8
[  101.191662][  T792] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  101.197005][  T792] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF9, changing to 0x89
[  101.201681][  T792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  101.208046][  T792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 59391, setting to 1024
[  101.212579][  T792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  101.216851][  T792] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  101.224872][  T792] usb 4-1: New USB device found, idVendor=0bc7, idProduct=0008, bcdDevice=4f.c8
[  101.229087][  T792] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.232387][  T792] usb 4-1: Product: syz
[  101.234218][  T792] usb 4-1: Manufacturer: syz
[  101.236685][  T792] usb 4-1: SerialNumber: syz
[  101.247527][  T792] usb 4-1: config 0 descriptor??
[  101.250418][ T7467] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  101.255773][  T792] ati_remote 4-1:0.0: ati_remote_probe: Unexpected endpoint_out
[  101.320947][ T7490] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993
[  101.440715][ T7502] overlayfs: failed to clone upperpath
[  101.462882][  T791] usb 4-1: USB disconnect, device number 5
[  102.156759][ T7515] openvswitch: netlink: Key type 31 is not supported
[  102.604695][  T792] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  102.748499][ T7548] loop3: detected capacity change from 0 to 40427
[  102.751796][ T7548] F2FS-fs: heap/no_heap options were deprecated
[  102.754695][  T792] usb 1-1: Using ep0 maxpacket: 16
[  102.764625][  T792] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  102.768302][ T7548] F2FS-fs (loop3): build fault injection rate: 19
[  102.770888][ T7548] F2FS-fs (loop3): build fault injection type: 0x3bfe8c
[  102.774914][  T792] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  102.778054][ T7548] F2FS-fs (loop3): invalid crc value
[  102.778273][  T792] usb 1-1: Product: syz
[  102.781836][  T792] usb 1-1: Manufacturer: syz
[  102.783884][  T792] usb 1-1: SerialNumber: syz
[  102.787049][ T7548] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  102.793131][  T792] r8152-cfgselector 1-1: Unknown version 0x0000
[  102.796217][  T792] r8152-cfgselector 1-1: config 0 descriptor??
[  102.818702][ T7548] F2FS-fs (loop3): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x20a/0x3f0
[  102.824240][ T7548] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  102.829808][ T7548] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  102.842874][ T7548] F2FS-fs (loop3): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  102.849475][ T7548] syz.3.648: attempt to access beyond end of device
[  102.849475][ T7548] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  102.855363][ T7548] CPU: 0 UID: 0 PID: 7548 Comm: syz.3.648 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  102.855375][ T7548] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  102.855380][ T7548] Call Trace:
[  102.855383][ T7548]  <TASK>
[  102.855387][ T7548]  dump_stack_lvl+0x189/0x250
[  102.855400][ T7548]  ? __pfx_dump_stack_lvl+0x10/0x10
[  102.855409][ T7548]  ? __pfx_queue_work_on+0x10/0x10
[  102.855416][ T7548]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  102.855426][ T7548]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  102.855440][ T7548]  f2fs_handle_critical_error+0x37c/0x540
[  102.855453][ T7548]  f2fs_write_end_io+0x886/0xb60
[  102.855468][ T7548]  __submit_merged_bio+0x27a/0x6a0
[  102.855481][ T7548]  __submit_merged_write_cond+0x255/0x530
[  102.855493][ T7548]  f2fs_write_data_pages+0x261d/0x3000
[  102.855519][ T7548]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  102.855550][ T7548]  ? check_path+0x21/0x40
[  102.855557][ T7548]  ? check_noncircular+0xe0/0x160
[  102.855587][ T7548]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  102.855597][ T7548]  do_writepages+0x32e/0x550
[  102.855617][ T7548]  ? do_raw_spin_unlock+0x4d/0x240
[  102.855632][ T7548]  filemap_fdatawrite+0x199/0x240
[  102.855645][ T7548]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  102.855693][ T7548]  ? do_raw_spin_unlock+0x4d/0x240
[  102.855713][ T7548]  f2fs_sync_dirty_inodes+0x31f/0x830
[  102.855738][ T7548]  f2fs_write_checkpoint+0x95a/0x1df0
[  102.855777][ T7548]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  102.855820][ T7548]  ? down_write+0x162/0x1f0
[  102.855832][ T7548]  ? __pfx_down_write+0x10/0x10
[  102.855856][ T7548]  f2fs_issue_checkpoint+0x3ac/0x570
[  102.855868][ T7548]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  102.855878][ T7548]  ? __lock_acquire+0xab9/0xd20
[  102.855906][ T7548]  ? __up_read+0x280/0x680
[  102.855922][ T7548]  ? f2fs_sync_fs+0x200/0x3d0
[  102.855937][ T7548]  f2fs_do_sync_file+0x869/0x1860
[  102.855954][ T7548]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  102.855989][ T7548]  ? __mark_inode_dirty+0x3ab/0xdf0
[  102.856003][ T7548]  ? vfs_fsync_range+0x149/0x1c0
[  102.856012][ T7548]  ? f2fs_sync_file+0xe9/0x160
[  102.856023][ T7548]  f2fs_file_write_iter+0x753/0x2410
[  102.856050][ T7548]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  102.856060][ T7548]  ? rcu_read_lock_any_held+0xb3/0x120
[  102.856089][ T7548]  vfs_write+0x5c9/0xb30
[  102.856107][ T7548]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  102.856119][ T7548]  ? __pfx_vfs_write+0x10/0x10
[  102.856143][ T7548]  ? __fget_files+0x2a/0x420
[  102.856161][ T7548]  ksys_write+0x145/0x250
[  102.856173][ T7548]  ? __pfx_ksys_write+0x10/0x10
[  102.856180][ T7548]  ? rcu_is_watching+0x15/0xb0
[  102.856190][ T7548]  ? do_syscall_64+0xbe/0x3b0
[  102.856201][ T7548]  do_syscall_64+0xfa/0x3b0
[  102.856209][ T7548]  ? lockdep_hardirqs_on+0x9c/0x150
[  102.856217][ T7548]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.856223][ T7548]  ? exc_page_fault+0x9f/0xf0
[  102.856233][ T7548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.856239][ T7548] RIP: 0033:0x7fe96b18ebe9
[  102.856247][ T7548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.856253][ T7548] RSP: 002b:00007fe96bfd8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  102.856262][ T7548] RAX: ffffffffffffffda RBX: 00007fe96b3b5fa0 RCX: 00007fe96b18ebe9
[  102.856266][ T7548] RDX: 0000000000000078 RSI: 0000200000000180 RDI: 0000000000000004
[  102.856271][ T7548] RBP: 00007fe96b211e19 R08: 0000000000000000 R09: 0000000000000000
[  102.856275][ T7548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  102.856278][ T7548] R13: 00007fe96b3b6038 R14: 00007fe96b3b5fa0 R15: 00007ffd9cc58018
[  102.856292][ T7548]  </TASK>
[  102.856295][ T7548] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  103.204785][  T792] r8152-cfgselector 1-1: USB disconnect, device number 14
[  103.424568][  T791] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  103.585710][  T791] usb 4-1: Using ep0 maxpacket: 32
[  103.589121][  T791] usb 4-1: config 4 has an invalid interface number: 8 but max is 0
[  103.591938][  T791] usb 4-1: config 4 has no interface number 0
[  103.593991][  T791] usb 4-1: config 4 interface 8 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  103.597443][  T791] usb 4-1: config 4 interface 8 altsetting 1 bulk endpoint 0x8A has invalid maxpacket 0
[  103.601218][  T791] usb 4-1: config 4 interface 8 has no altsetting 0
[  103.605915][  T791] usb 4-1: New USB device found, idVendor=065a, idProduct=0009, bcdDevice=60.65
[  103.609301][  T791] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.612281][  T791] usb 4-1: Product: syz
[  103.613669][  T791] usb 4-1: Manufacturer: syz
[  103.617410][  T791] usb 4-1: SerialNumber: syz
[  103.793089][ T7576] netlink: 512 bytes leftover after parsing attributes in process `syz.0.661'.
[  103.826576][  T791] opticon 4-1:4.8: opticon converter detected
[  103.832215][  T791] usb 4-1: opticon converter now attached to ttyUSB0
[  103.837498][  T791] usb 4-1: USB disconnect, device number 6
[  103.841214][  T791] opticon ttyUSB0: opticon converter now disconnected from ttyUSB0
[  103.844337][  T791] opticon 4-1:4.8: device disconnected
[  104.367254][ T7582] loop3: detected capacity change from 0 to 8
[  104.377379][ T7582] SQUASHFS error: xz decompression failed, data probably corrupt
[  104.380019][ T7582] SQUASHFS error: Failed to read block 0x108: -5
[  104.382152][ T7582] SQUASHFS error: Unable to read metadata cache entry [106]
[  104.387910][ T7582] SQUASHFS error: Unable to read inode 0x11f
[  104.549702][ T7589] netlink: 180 bytes leftover after parsing attributes in process `syz.3.667'.
[  104.863853][ T7596] loop3: detected capacity change from 0 to 4096
[  104.896072][ T7599] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  104.948243][ T6746] NILFS (loop3): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  104.952065][ T6746] NILFS error (device loop3): nilfs_bmap_truncate: broken bmap (inode number=12)
[  104.966006][ T6746] Remounting filesystem read-only
[  104.968317][ T6746] NILFS (loop3): error -5 truncating bmap (ino=12)
[  104.980578][ T6746] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer
[  106.466744][ T7608] netlink: 'syz.0.674': attribute type 4 has an invalid length.
[  106.504039][ T7612] sg_read: process 392 (syz.0.676) changed security contexts after opening file descriptor, this is not allowed.
[  107.562526][ T7610] loop3: detected capacity change from 0 to 262144
[  107.702353][ T7610] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.675 (7610)
[  107.844217][ T7610] BTRFS info (device loop3): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  107.850783][ T7610] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  107.855368][ T7610] BTRFS info (device loop3): using free-space-tree
[  108.038997][ T1089] BTRFS warning (device loop3): checksum verify failed on logical 22036480 mirror 1 wanted 0x23e101be1e001a29 found 0x09049c5cc74d15fb level 0
[  108.046320][ T7610] BTRFS info (device loop3): read error corrected: ino 0 off 22036480 (dev /dev/loop3 sector 43040)
[  108.049950][ T7610] BTRFS info (device loop3): read error corrected: ino 0 off 22040576 (dev /dev/loop3 sector 43048)
[  108.053579][ T7610] BTRFS info (device loop3): read error corrected: ino 0 off 22044672 (dev /dev/loop3 sector 43056)
[  108.058087][ T7610] BTRFS info (device loop3): read error corrected: ino 0 off 22048768 (dev /dev/loop3 sector 43064)
[  108.075093][   T33] audit: type=1800 audit(1755400518.864:23): pid=7610 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.675" name="file1" dev="loop3" ino=260 res=0 errno=0
[  108.099669][ T6746] BTRFS info (device loop3): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  108.210573][ T7628] loop0: detected capacity change from 0 to 40427
[  108.224783][ T7628] F2FS-fs (loop0): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  108.228225][ T7628] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  108.231710][ T7628] F2FS-fs (loop0): Fix alignment : done, start(4096) end(16896) block(12288)
[  108.245018][ T7628] F2FS-fs (loop0): invalid crc value
[  108.318431][ T7628] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  108.332474][ T7628] F2FS-fs (loop0): Start checkpoint disabled!
[  108.357703][ T7628] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  108.360339][ T7628] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  108.607225][   T33] audit: type=1326 audit(1755400519.404:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f933838ebe9 code=0x7ffc0000
[  108.665167][   T33] audit: type=1326 audit(1755400519.404:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f933838ebe9 code=0x7ffc0000
[  108.697831][   T33] audit: type=1326 audit(1755400519.414:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f933838ebe9 code=0x7ffc0000
[  108.716233][   T33] audit: type=1326 audit(1755400519.414:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.0.683" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f933838ebe9 code=0x7ffc0000
[  109.164528][ T6304] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  109.314543][ T6304] usb 4-1: Using ep0 maxpacket: 8
[  109.320596][ T6304] usb 4-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  109.324274][ T6304] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.327795][ T6304] usb 4-1: Product: syz
[  109.329669][ T6304] usb 4-1: Manufacturer: syz
[  109.331647][ T6304] usb 4-1: SerialNumber: syz
[  109.336860][ T6304] usb 4-1: config 0 descriptor??
[  109.366043][ T6304] gspca_main: se401-2.14.0 probing 047d:5003
[  109.440144][ T7669] netlink: 'syz.2.692': attribute type 3 has an invalid length.
[  109.443961][ T7669] netlink: 'syz.2.692': attribute type 3 has an invalid length.
[  109.803803][ T6304] gspca_se401: Bayer format not supported!
[  109.895683][ T7686] netlink: 4 bytes leftover after parsing attributes in process `syz.0.700'.
[  110.008354][  T791] usb 4-1: USB disconnect, device number 7
[  110.362473][ T7694] Device name cannot be null; rc = [-22]
[  111.222442][ T7716] loop0: detected capacity change from 0 to 256
[  111.269341][ T7716] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  111.551117][ T7727] loop3: detected capacity change from 0 to 32768
[  111.562190][ T7727] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  111.600965][   T33] audit: type=1804 audit(1755400522.394:28): pid=7727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.720" name="/newroot/109/file1/bus" dev="loop3" ino=17058 res=1 errno=0
[  111.785616][ T6746] ocfs2: Unmounting device (7,3) on (node local)
[  111.881967][  T792] libceph: connect (1)[c::]:6789 error -101
[  111.885681][  T792] libceph: mon0 (1)[c::]:6789 connect error
[  111.894871][ T6304] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  111.985064][ T7736] ceph: No mds server is up or the cluster is laggy
[  112.064712][ T6304] usb 1-1: Using ep0 maxpacket: 16
[  112.077961][ T6304] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  112.081409][ T6304] usb 1-1: config 0 interface 0 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  112.087671][ T6304] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  112.091855][ T6304] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  112.097598][ T6304] usb 1-1: config 0 interface 0 has no altsetting 0
[  112.103159][ T6304] usb 1-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  112.107614][ T6304] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.110605][ T6304] usb 1-1: Product: syz
[  112.112371][ T6304] usb 1-1: Manufacturer: syz
[  112.114274][ T6304] usb 1-1: SerialNumber: syz
[  112.120666][ T6304] usb 1-1: config 0 descriptor??
[  112.125184][ T7732] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  112.337668][ T7732] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  112.372431][ T6304] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input8
[  112.551106][    T9] usb 1-1: USB disconnect, device number 15
[  113.614605][ T5905] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  113.769960][ T5905] usb 4-1: unable to get BOS descriptor or descriptor too short
[  113.774874][ T5905] usb 4-1: not running at top speed; connect to a high speed hub
[  113.779887][ T5905] usb 4-1: config 14 has an invalid interface number: 18 but max is 0
[  113.783416][ T5905] usb 4-1: config 14 has an invalid descriptor of length 0, skipping remainder of the config
[  113.788842][ T5905] usb 4-1: config 14 has no interface number 0
[  113.794768][ T5905] usb 4-1: config 14 interface 18 altsetting 180 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  113.800995][ T5905] usb 4-1: config 14 interface 18 has no altsetting 0
[  113.809124][ T5905] usb 4-1: New USB device found, idVendor=3980, idProduct=0003, bcdDevice=de.62
[  113.813101][ T5905] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.816047][ T5905] usb 4-1: Product: syz
[  113.817542][ T5905] usb 4-1: Manufacturer: syz
[  113.819135][ T5905] usb 4-1: SerialNumber: syz
[  114.033823][ T5905] rtl8150 4-1:14.18: couldn't find required endpoints
[  114.036939][ T5905] rtl8150 4-1:14.18: probe with driver rtl8150 failed with error -5
[  114.046445][ T5905] usb 4-1: USB disconnect, device number 8
[  114.231972][ T7775] loop0: detected capacity change from 0 to 32768
[  114.239866][ T7775] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  114.253508][ T7775] XFS (loop0): Ending clean mount
[  114.287213][ T5841] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  114.479426][ T7793] netlink: 32 bytes leftover after parsing attributes in process `syz.0.744'.
[  114.709573][ T7803] loop0: detected capacity change from 0 to 2048
[  114.725964][ T7803] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  114.747626][ T7805] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  114.747807][ T7803] syz.0.749: attempt to access beyond end of device
[  114.747807][ T7803] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  115.266746][ T7816] loop0: detected capacity change from 0 to 1024
[  115.299779][ T1091] hfsplus: b-tree write err: -5, ino 4
[  115.420623][ T7824] netlink: 8 bytes leftover after parsing attributes in process `syz.2.758'.
[  115.600677][ T7829] evm: overlay not supported
[  115.871077][ T7830] loop3: detected capacity change from 0 to 4096
[  115.886956][ T7836] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  116.446831][ T7874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.780'.
[  116.449973][ T7874] netlink: 660 bytes leftover after parsing attributes in process `syz.2.780'.
[  116.594624][  T792] usb 1-1: new full-speed USB device number 16 using dummy_hcd
[  116.651433][ T7888] netlink: 24 bytes leftover after parsing attributes in process `syz.2.787'.
[  116.747995][  T792] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  116.754489][  T792] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.757880][  T792] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  116.762201][  T792] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.771695][  T792] usb 1-1: config 0 descriptor??
[  117.338387][  T792] savu 0003:1E7D:2D5A.0005: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  117.535331][    T9] usb 1-1: USB disconnect, device number 16
[  118.641068][ T7969] netlink: 88 bytes leftover after parsing attributes in process `syz.0.822'.
[  118.865975][ T7991] loop3: detected capacity change from 0 to 256
[  119.139834][ T7999] binder: 7998:7999 ioctl c0306201 200000000100 returned -14
[  119.281956][ T8019] loop0: detected capacity change from 0 to 512
[  119.349766][ T8024] Mount JFS Failure: -22
[  119.615078][ T8035] trusted_key: syz.2.853 sent an empty control message without MSG_MORE.
[  120.375955][ T8062] netlink: 16 bytes leftover after parsing attributes in process `syz.2.864'.
[  121.001228][ T8102] overlayfs: failed to clone upperpath
[  121.072728][ T8063] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  121.076382][ T8063] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  121.084263][ T8063] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  121.087000][ T8063] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  121.132061][ T8063] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  121.134046][ T8063] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  122.184630][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  122.720990][ T8176] loop0: detected capacity change from 0 to 512
[  122.726299][ T8176] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.900: casefold flag without casefold feature
[  122.731365][ T8176] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.900: couldn't read orphan inode 15 (err -117)
[  122.736268][ T8176] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.766959][ T5841] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.456432][ T8192] loop3: detected capacity change from 0 to 4096
[  124.008402][ T8202] loop3: detected capacity change from 0 to 32768
[  124.400270][ T8224] netlink: 'syz.0.917': attribute type 4 has an invalid length.
[  124.560574][ T8226] loop3: detected capacity change from 0 to 8192
[  124.566495][ T8226] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  124.930701][ T8241] loop0: detected capacity change from 0 to 4096
[  124.937800][ T8241] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  124.950676][ T8241] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  124.953826][ T8241] ntfs3(loop0): ino=3, ntfs_set_state failed, -22.
[  124.958739][ T8241] ntfs3(loop0): Failed to load $Bitmap (-22).
[  124.961321][ T8241] ntfs3(loop0): ino=3, ntfs3_write_inode failed, -22.
[  125.061913][ T8260] loop0: detected capacity change from 0 to 256
[  125.104101][ T8269] Zero length message leads to an empty skb
[  126.544547][  T791] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  126.696385][  T791] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  126.699050][  T791] usb 1-1: config 0 has no interface number 0
[  126.703557][  T791] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  126.707504][  T791] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.710073][  T791] usb 1-1: Product: syz
[  126.711434][  T791] usb 1-1: Manufacturer: syz
[  126.712908][  T791] usb 1-1: SerialNumber: syz
[  126.720309][  T791] usb 1-1: config 0 descriptor??
[  126.960012][  T791] usb 1-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  127.022066][  T791] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  127.026567][  T791] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  127.030367][  T791] usb 1-1: media controller created
[  127.082520][  T791] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  127.172123][  T791] i2c i2c-2: ec100: i2c rd failed=-71 reg=33
[  127.293751][  T791] usb 1-1: USB disconnect, device number 17
[  128.054088][ T8418] loop0: detected capacity change from 0 to 512
[  128.066039][ T8418] EXT4-fs: Ignoring removed bh option
[  128.069282][ T8418] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  128.071293][ T8421] netlink: 8 bytes leftover after parsing attributes in process `syz.2.993'.
[  128.075757][ T8418] EXT4-fs (loop0): orphan cleanup on readonly fs
[  128.079451][ T8418] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #3: comm syz.0.992: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  128.086965][ T8418] EXT4-fs error (device loop0): ext4_quota_enable:7127: comm syz.0.992: Bad quota inode: 3, type: 0
[  128.095710][ T8418] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  128.101834][ T8418] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  128.105903][ T8418] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  128.106131][ T8424] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.994'.
[  128.136407][ T5841] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.500321][ T8462] netlink: 'syz.2.1008': attribute type 30 has an invalid length.
[  128.544560][    T9] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  128.562783][ T8465] loop3: detected capacity change from 0 to 8192
[  128.704507][    T9] usb 1-1: Using ep0 maxpacket: 32
[  128.707858][    T9] usb 1-1: config 0 interface 0 altsetting 128 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  128.711737][    T9] usb 1-1: config 0 interface 0 has no altsetting 0
[  128.713927][    T9] usb 1-1: New USB device found, idVendor=1b1c, idProduct=1c09, bcdDevice= 0.00
[  128.718276][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.723688][    T9] usb 1-1: config 0 descriptor??
[  129.329118][ T8484] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1015'.
[  129.433082][ T8490] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  129.444061][ T8490] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  129.452469][ T8490] bond0 (unregistering): Released all slaves
[  129.500035][    T9] corsair-psu 0003:1B1C:1C09.0006: hidraw0: USB HID v4.08 Device [HID 1b1c:1c09] on usb-dummy_hcd.0-1/input0
[  129.854595][ T6304] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  129.897029][    T9] corsair-psu 0003:1B1C:1C09.0006: unable to query firmware (-71)
[  129.901515][    T9] corsair-psu 0003:1B1C:1C09.0006: probe with driver corsair-psu failed with error -71
[  129.907266][    T9] usb 1-1: USB disconnect, device number 18
[  130.004524][ T6304] usb 4-1: Using ep0 maxpacket: 32
[  130.010286][ T6304] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  130.014075][ T6304] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.021694][ T6304] usb 4-1: config 0 descriptor??
[  130.027824][ T6304] gspca_main: sunplus-2.14.0 probing 041e:400b
[  130.537888][ T8577] loop0: detected capacity change from 0 to 4096
[  130.542338][ T8577] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  130.546722][ T8577] ntfs3(loop0): ino=0, mi_enum_attr
[  130.549391][ T8577] ntfs3(loop0): Failed to load $MFT.
[  130.902250][ T8587] loop0: detected capacity change from 0 to 512
[  130.921252][ T8587] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.1037: Parent and EA inode have the same ino 15
[  130.930107][ T8587] EXT4-fs (loop0): Remounting filesystem read-only
[  130.932564][ T8587] EXT4-fs (loop0): 1 orphan inode deleted
[  130.936726][ T8587] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.959570][ T5841] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.110495][ T8601] Bluetooth: MGMT ver 1.23
[  131.187543][   T33] audit: type=1326 audit(1755400541.984:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8604 comm="syz.0.1043" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f933838ebe9 code=0x0
[  131.550942][ T6304] gspca_sunplus: reg_w_riv err -71
[  131.553371][ T6304] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[  131.559312][ T6304] usb 4-1: USB disconnect, device number 9
[  132.196246][ T8649] veth0: entered promiscuous mode
[  132.207550][ T8648] veth0: left promiscuous mode
[  132.358775][ T8665] netlink: 'syz.2.1065': attribute type 24 has an invalid length.
[  132.435470][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  132.438158][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  132.620425][ T8664] loop3: detected capacity change from 0 to 32768
[  132.625244][ T8664] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1066 (8664)
[  132.637002][ T8664] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  132.641397][ T8664] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  132.645219][ T8664] BTRFS info (device loop3): using free-space-tree
[  132.841231][ T6746] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  132.992156][ T8719] syz.0.1081: attempt to access beyond end of device
[  132.992156][ T8719] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  133.003463][ T8719] efs: cannot read volume header
[  133.597610][ T8749] sd 0:0:0:0: PR command failed: 1026
[  133.599914][ T8749] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[  133.602456][ T8749] sd 0:0:0:0: Add. Sense: Invalid command operation code
[  133.844021][ T8760] loop3: detected capacity change from 0 to 32768
[  133.856821][ T8760] syz.3.1094: attempt to access beyond end of device
[  133.856821][ T8760] loop3: rw=2049, sector=4680032, nr_sectors = 8 limit=32768
[  133.880148][  T116] blkno = 8ed2c, nblocks = 1
[  133.882324][  T116] ERROR: (device loop3): dbUpdatePMap: blocks are outside the map
[  133.882324][  T116] 
[  133.886962][  T116] ERROR: (device loop3): remounting filesystem as read-only
[  135.292298][ T8785] loop0: detected capacity change from 0 to 32768
[  135.300982][ T8785] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1104 (8785)
[  135.311945][ T8785] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  135.317725][ T8785] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  135.321264][ T8785] BTRFS info (device loop0): using free-space-tree
[  135.435122][ T5841] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  136.502458][ T8854] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1123'.
[  136.902395][ T8871] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1134'.
[  137.126778][ T8886] loop3: detected capacity change from 0 to 256
[  137.157501][ T8886] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  137.161915][ T8886] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  137.273837][ T8904] capability: warning: `syz.0.1146' uses 32-bit capabilities (legacy support in use)
[  137.341943][ T8914] loop0: detected capacity change from 0 to 24
[  137.345516][ T8914] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  137.347636][ T8918] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1150'.
[  137.351245][ T8914] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  137.800825][ T8925] loop3: detected capacity change from 0 to 32768
[  137.821715][ T8925] (syz.3.1153,8925,1):ocfs2_load_local_alloc:339 ERROR: inconsistent detected, clean journal with unrecovered local alloc, please run fsck.ocfs2!
[  137.821715][ T8925] found = 1, set = 0, taken = 0, off = 0
[  137.829779][ T8925] (syz.3.1153,8925,1):ocfs2_load_local_alloc:356 ERROR: status = -22
[  137.832418][ T8925] (syz.3.1153,8925,1):ocfs2_check_volume:2404 ERROR: status = -22
[  137.835992][ T8925] (syz.3.1153,8925,1):ocfs2_check_volume:2432 ERROR: status = -22
[  137.838545][ T8925] (syz.3.1153,8925,1):ocfs2_mount_volume:1764 ERROR: status = -22
[  137.843123][ T8925] (syz.3.1153,8925,1):ocfs2_inode_is_valid_to_delete:928 ERROR: Skipping delete of root inode.
[  137.851120][ T8925] (syz.3.1153,8925,1):ocfs2_fill_super:1177 ERROR: status = -22
[  138.985043][  T791] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  139.029081][ T8997] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1181'.
[  139.140197][  T791] usb 1-1: Using ep0 maxpacket: 8
[  139.163007][  T791] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  139.166034][  T791] usb 1-1: config 179 has no interface number 0
[  139.168063][  T791] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  139.172148][  T791] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  139.177026][  T791] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  139.181391][  T791] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  139.185819][  T791] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  139.190841][  T791] usb 1-1: config 179 interface 65 has no altsetting 0
[  139.193540][  T791] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  139.197614][  T791] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.279576][  T791] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input9
[  139.430115][  T791] usb 1-1: USB disconnect, device number 19
[  139.652724][ T9022] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  139.701116][ T9009] loop3: detected capacity change from 0 to 131072
[  139.707099][ T9009] F2FS-fs (loop3): invalid crc value
[  139.752351][ T9009] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  139.757683][ T9009] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  140.278695][ T9063] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.1199'.
[  140.493527][ T9091] loop0: detected capacity change from 0 to 4096
[  140.507069][ T9091] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[  140.582485][ T9107] loop0: detected capacity change from 0 to 256
[  140.599398][ T9107] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x19066d23, utbl_chksum : 0xe619d30d)
[  140.714770][  T791] usb 4-1: new low-speed USB device number 10 using dummy_hcd
[  140.879500][  T791] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 64, setting to 8
[  140.884017][  T791] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 is Bulk; changing to Interrupt
[  140.888213][  T791] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 is Bulk; changing to Interrupt
[  140.897350][  T791] usb 4-1: string descriptor 0 read error: -22
[  140.900223][  T791] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  140.904037][  T791] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.912583][ T9093] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  141.119591][  T791] cdc_ncm 4-1:1.0: bind() failure
[  141.127700][  T791] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  141.130714][  T791] cdc_ncm 4-1:1.1: bind() failure
[  141.137092][  T791] usb 4-1: USB disconnect, device number 10
[  141.708958][ T9129] loop0: detected capacity change from 0 to 32768
[  141.836418][ T9129] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=crc64,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  141.836434][ T9129]   allowing incompatible features above 0.0: (unknown version)
[  141.836441][ T9129]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  141.863037][ T9129] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[  141.867239][ T9129] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  141.883483][ T9129] bcachefs (loop0): Version upgrade required:
[  141.883483][ T9129] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  141.883483][ T9129] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  141.883483][ T9129]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  141.945659][ T9129] bcachefs (loop0): dropping and reconstructing all alloc info
[  141.969803][ T9129] bcachefs (loop0): accounting_read... done
[  141.975498][ T9129] bcachefs (loop0): alloc_read... done
[  141.978641][ T9129] bcachefs (loop0): snapshots_read... done
[  141.981922][ T9129] bcachefs (loop0): check_allocations...
[  141.985992][ T9135] loop3: detected capacity change from 0 to 32768
[  142.010863][ T9129]  done
[  142.013690][ T9129] bcachefs (loop0): going read-write
[  142.021759][ T9129] bcachefs (loop0): done starting filesystem
[  142.036629][ T9135] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.064770][ T5841] bcachefs (loop0): shutting down
[  142.066932][ T5841] bcachefs (loop0): going read-only
[  142.069782][ T9135] XFS (loop3): Ending clean mount
[  142.073386][ T5841] bcachefs (loop0): finished waiting for writes to stop
[  142.077970][ T9135] XFS (loop3): Quotacheck needed: Please wait.
[  142.085956][ T5841] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  142.096919][ T5841] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 11
[  142.113319][ T5841] bcachefs (loop0): unclean shutdown complete, journal seq 12
[  142.134822][ T5841] bcachefs (loop0): done going read-only, filesystem not clean
[  142.153117][ T9135] XFS (loop3): Quotacheck: Done.
[  142.178491][ T5841] bcachefs (loop0): shutdown complete
[  142.235394][ T6746] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.445698][ T9175] tipc: Failed to remove unknown binding: 66,3,3/0:3327046931/3327046932
[  142.719656][ T9191] proc: Bad value for 'gid'
[  142.991233][ T9195] loop3: detected capacity change from 0 to 40427
[  142.995149][ T9195] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  142.998392][ T9195] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  143.006222][ T9195] F2FS-fs (loop3): invalid crc value
[  143.053407][ T9195] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  143.059958][ T9195] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  143.062850][ T9195] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  143.735543][ T9206] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1238'.
[  143.753598][  T792] IPVS: starting estimator thread 0...
[  143.854730][ T9207] IPVS: using max 41 ests per chain, 98400 per kthread
[  144.053409][ T9221] netlink: 'syz.2.1244': attribute type 1 has an invalid length.
[  144.110323][ T9221] bond0: (slave vcan1): The slave device specified does not support setting the MAC address
[  144.116433][ T9221] bond0: (slave vcan1): Setting fail_over_mac to active for active-backup mode
[  144.124306][ T9221] bond0: (slave vcan1): making interface the new active one
[  144.131464][ T9221] bond0: (slave vcan1): Enslaving as an active interface with an up link
[  144.181478][ T9262] loop3: detected capacity change from 0 to 1024
[  144.206683][ T9262] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.210833][ T9262] ext4 filesystem being mounted at /223/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.223629][   T33] audit: type=1800 audit(1755400555.014:30): pid=9262 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1239" name="file1" dev="loop3" ino=15 res=0 errno=0
[  144.258872][ T6746] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.392940][ T9293] loop0: detected capacity change from 0 to 128
[  144.408080][ T9293] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  144.416226][ T9293] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  144.442730][ T9293] overlayfs: upper fs needs to support d_type.
[  144.457644][ T9293] overlayfs: upper fs does not support tmpfile.
[  144.953999][ T9322] loop0: detected capacity change from 0 to 4096
[  144.957311][ T9322] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  144.966344][ T9322] ntfs3(loop0): ino=1a, mi_enum_attr
[  144.968225][ T9322] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  144.992440][ T9322] ntfs3(loop0): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ntfs_sync_inode failed, -22.
[  145.023644][ T1089] ntfs3(loop0): ino=1e, ntfs3_write_inode failed, -22.
[  145.192643][ T9333] loop0: detected capacity change from 0 to 512
[  145.196866][ T9333] EXT4-fs: Ignoring removed nobh option
[  145.203849][ T9333] fscrypt (loop0, inode 2): Error -61 getting encryption context
[  145.208862][ T9333] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61
[  145.212457][ T9333] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #13: comm syz.0.1273: casefold flag without casefold feature
[  145.219256][ T9333] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1273: couldn't read orphan inode 13 (err -117)
[  145.227086][ T9333] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.245774][ T9333] EXT4-fs: group quota file already specified
[  145.283369][ T5841] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.307483][ T9339] netlink: 'syz.2.1275': attribute type 29 has an invalid length.
[  145.337731][ T9339] netlink: 'syz.2.1275': attribute type 29 has an invalid length.
[  145.364091][ T9343] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1277'.
[  145.781151][ T9367] loop0: detected capacity change from 0 to 32768
[  145.801901][ T9367] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  145.808600][ T9367] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  146.678364][ T9381] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1291'.
[  146.714392][ T5841] ocfs2: Unmounting device (7,0) on (node local)
[  146.789588][ T9394] loop3: detected capacity change from 0 to 1024
[  146.877003][ T9399] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[  146.887387][ T9399] hfsplus: xattr searching failed
[  147.786501][  T791] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  147.956550][   T53] hfsplus: b-tree write err: -5, ino 4
[  147.975632][  T791] usb 1-1: config 0 has no interfaces?
[  147.977979][  T791] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  147.996255][  T791] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.003639][  T791] usb 1-1: config 0 descriptor??
[  148.134269][ T9434] loop3: detected capacity change from 0 to 4096
[  148.137611][ T9434] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  148.147801][ T9434] ntfs3(loop3): ino=19, mi_enum_attr
[  148.149591][ T9434] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  148.424077][  T791] usb 1-1: USB disconnect, device number 20
[  149.065005][  T791] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  149.214852][  T791] usb 1-1: Using ep0 maxpacket: 16
[  149.229911][  T791] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  149.233896][  T791] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  149.243422][  T791] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  149.250862][  T791] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.254160][  T791] usb 1-1: Product: syz
[  149.256410][  T791] usb 1-1: Manufacturer: syz
[  149.260372][  T791] usb 1-1: SerialNumber: syz
[  149.271340][  T791] usb 1-1: config 0 descriptor??
[  149.282532][  T791] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  149.291938][  T791] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  149.907309][  T791] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[  149.914694][  T791] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  150.159553][ T9475] veth3: entered promiscuous mode
[  150.528340][  T791] em28xx 1-1:0.0: Unknown AC97 audio processor detected!
[  150.533220][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 2
[  150.537005][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 4
[  150.541033][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 6
[  150.544327][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 54
[  150.550127][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 56
[  150.605579][ T9513] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  150.730677][ T9527] loop3: detected capacity change from 0 to 256
[  150.752657][ T9527] FAT-fs (loop3): Directory bread(block 64) failed
[  150.755234][ T9527] FAT-fs (loop3): Directory bread(block 65) failed
[  150.761579][ T9527] FAT-fs (loop3): Directory bread(block 66) failed
[  150.764116][ T9527] FAT-fs (loop3): Directory bread(block 67) failed
[  150.767451][ T9527] FAT-fs (loop3): Directory bread(block 68) failed
[  150.769950][ T9527] FAT-fs (loop3): Directory bread(block 69) failed
[  150.772515][ T9527] FAT-fs (loop3): Directory bread(block 70) failed
[  150.777195][ T9527] FAT-fs (loop3): Directory bread(block 71) failed
[  150.779962][ T9527] FAT-fs (loop3): Directory bread(block 72) failed
[  150.782418][ T9527] FAT-fs (loop3): Directory bread(block 73) failed
[  150.897523][ T9536] loop3: detected capacity change from 0 to 4096
[  150.906312][ T9538] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  150.914400][ T9536] NILFS error (device loop3): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0
[  150.924089][ T9536] Remounting filesystem read-only
[  150.926024][ T9536] NILFS error (device loop3): nilfs_readdir: bad page in #2
[  151.160738][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 20
[  151.163798][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 16
[  151.167348][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 12
[  151.170068][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 14
[  151.172879][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 18
[  151.176409][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 22
[  151.179275][  T791] em28xx 1-1:0.0: couldn't setup AC97 register 24
[  151.182680][  T791] em28xx 1-1:0.0: Binding audio extension
[  151.186683][  T791] em28xx 1-1:0.0: em28xx-audio.c: Copyright (C) 2006 Markus Rechberger
[  151.189886][  T791] em28xx 1-1:0.0: em28xx-audio.c: Copyright (C) 2007-2016 Mauro Carvalho Chehab
[  151.201240][  T791] em28xx 1-1:0.0: alt 0 doesn't exist on interface 7
[  151.215599][  T791] usb 1-1: USB disconnect, device number 21
[  151.218855][  T791] em28xx 1-1:0.0: Disconnecting em28xx
[  151.221050][  T791] em28xx 1-1:0.0: Closing audio extension
[  151.228411][  T791] em28xx 1-1:0.0: Freeing device
[  151.304819][    T9] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  151.315223][ T9563] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1343'.
[  151.318927][ T9563] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1343'.
[  151.455591][    T9] usb 4-1: Using ep0 maxpacket: 8
[  151.462014][    T9] usb 4-1: unable to get BOS descriptor or descriptor too short
[  151.470639][    T9] usb 4-1: config 4 interface 0 has no altsetting 0
[  151.477135][    T9] usb 4-1: string descriptor 0 read error: -22
[  151.479533][    T9] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  151.482978][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.493155][    T9] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  151.498937][    T9] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  151.502931][    T9] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  151.507662][    T9] usb 4-1: media controller created
[  151.521491][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  151.703818][    T9] zl10353_read_register: readreg error (reg=127, ret==0)
[  151.745411][    T9] usb 4-1: USB disconnect, device number 11
[  151.805205][ T9594] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  151.858157][ T9596] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  151.861461][ T9596] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  151.870864][ T9596] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  153.053318][ T9623] loop3: detected capacity change from 0 to 4096
[  153.318240][ T9644] loop0: detected capacity change from 0 to 32768
[  153.340393][ T9644] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  153.371745][ T5841] ocfs2: Unmounting device (7,0) on (node local)
[  153.523391][ T9662] input: syz0 as /devices/virtual/input/input11
[  153.635400][ T9671] loop0: detected capacity change from 0 to 256
[  153.662202][ T9671] FAT-fs (loop0): Directory bread(block 64) failed
[  153.670959][ T9671] FAT-fs (loop0): Directory bread(block 65) failed
[  153.673874][ T9671] FAT-fs (loop0): Directory bread(block 66) failed
[  153.679203][ T9671] FAT-fs (loop0): Directory bread(block 67) failed
[  153.682147][ T9671] FAT-fs (loop0): Directory bread(block 68) failed
[  153.687291][ T9671] FAT-fs (loop0): Directory bread(block 69) failed
[  153.690186][ T9671] FAT-fs (loop0): Directory bread(block 70) failed
[  153.699377][ T9671] FAT-fs (loop0): Directory bread(block 71) failed
[  153.702592][ T9671] FAT-fs (loop0): Directory bread(block 72) failed
[  153.714588][ T9671] FAT-fs (loop0): Directory bread(block 73) failed
[  154.084667][    T9] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  154.224889][ T5905] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  154.238089][    T9] usb 4-1: config 0 has an invalid descriptor of length 89, skipping remainder of the config
[  154.244380][    T9] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  154.249372][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.252558][    T9] usb 4-1: Product: syz
[  154.254224][    T9] usb 4-1: Manufacturer: syz
[  154.256933][    T9] usb 4-1: SerialNumber: syz
[  154.261019][    T9] usb 4-1: config 0 descriptor??
[  154.374907][ T5905] usb 1-1: Using ep0 maxpacket: 16
[  154.380100][ T5905] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.384382][ T5905] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  154.388007][ T5905] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.395428][ T5905] usb 1-1: config 0 descriptor??
[  154.469656][    T9] usb 4-1: bad CDC descriptors
[  154.478198][    T9] usb 4-1: unsupported MDLM descriptors
[  154.483860][    T9] usb 4-1: USB disconnect, device number 12
[  154.807071][ T5905] usbhid 1-1:0.0: can't add hid device: -71
[  154.809892][ T5905] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  154.816060][ T5905] usb 1-1: USB disconnect, device number 22
[  154.999139][ T9735] loop3: detected capacity change from 0 to 128
[  155.004062][ T9735] FAT-fs (loop3): bogus number of FAT sectors
[  155.006178][ T9735] FAT-fs (loop3): Can't find a valid FAT filesystem
[  155.133422][ T9742] loop3: detected capacity change from 0 to 8192
[  155.382134][ T9762] loop0: detected capacity change from 0 to 512
[  155.386808][ T9762] EXT4-fs warning (device loop0): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[  155.538112][ T9771] input: syz0 as /devices/virtual/input/input12
[  155.594724][ T5905] usb 4-1: new low-speed USB device number 13 using dummy_hcd
[  155.716797][ T9791] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1414'.
[  155.725342][ T9791] bond0: entered promiscuous mode
[  155.727323][ T9791] bond_slave_0: entered promiscuous mode
[  155.729740][ T9791] bond_slave_1: entered promiscuous mode
[  155.733447][ T9791] bond0: left promiscuous mode
[  155.738436][ T9791] bond_slave_0: left promiscuous mode
[  155.740793][ T9791] bond_slave_1: left promiscuous mode
[  155.757528][ T5905] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  155.761027][ T5905] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.767602][ T5905] usb 4-1: config 0 descriptor??
[  155.878836][ T9801] loop0: detected capacity change from 0 to 256
[  155.891489][ T9801] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  155.978269][ T5905] asix 4-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  156.007996][ T9808] loop0: detected capacity change from 0 to 512
[  156.179263][ T5905] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  156.183543][ T5905] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  156.190318][ T5905] asix 4-1:0.0: probe with driver asix failed with error -71
[  156.198824][ T5905] usb 4-1: USB disconnect, device number 13
[  156.344726][ T6304] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  156.504910][ T6304] usb 1-1: Using ep0 maxpacket: 8
[  156.515831][ T6304] usb 1-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5
[  156.525580][ T6304] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.621461][ T6304] usb 1-1: config 0 descriptor??
[  156.807975][ T9839] loop3: detected capacity change from 0 to 128
[  156.816575][ T9839] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  156.820838][ T9839] ext4 filesystem being mounted at /272/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  156.841466][ T6746] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  156.844190][ T6304] usb 1-1: string descriptor 0 read error: -71
[  156.854411][ T6304] usb 1-1: Found UVC 0.00 device <unnamed> (2833:0201)
[  156.857696][ T6304] usb 1-1: No valid video chain found.
[  156.863190][ T6304] usb 1-1: USB disconnect, device number 23
[  157.134681][ T5905] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  157.304777][ T5905] usb 4-1: Using ep0 maxpacket: 32
[  157.310424][ T5905] usb 4-1: config index 0 descriptor too short (expected 164, got 36)
[  157.313770][ T5905] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.318829][ T5905] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.322582][ T5905] usb 4-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  157.326122][ T5905] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.331901][ T5905] usb 4-1: config 0 descriptor??
[  157.530943][ T9873] loop0: detected capacity change from 0 to 8192
[  157.568703][ T9873]  loop0: p1 p2 p3
[  157.570181][ T9873] loop0: partition table partially beyond EOD, truncated
[  157.575592][ T9873] loop0: p1 start 51379968 is beyond EOD, truncated
[  157.585938][ T9873] loop0: p3 size 100663552 extends beyond EOD, truncated
[  157.748961][ T5905] logitech 0003:046D:C29C.0007: reserved main item tag 0xe
[  157.759925][ T5905] logitech 0003:046D:C29C.0007: hidraw0: USB HID v0.00 Device [HID 046d:c29c] on usb-dummy_hcd.3-1/input0
[  157.816610][ T9897] netlink: 'syz.0.1440': attribute type 1 has an invalid length.
[  157.818241][ T9899] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1441'.
[  157.819738][ T9897] netlink: 232 bytes leftover after parsing attributes in process `syz.0.1440'.
[  157.941872][ T5905] logitech 0003:046D:C29C.0007: no inputs found
[  157.959149][ T5905] usb 4-1: USB disconnect, device number 14
[  158.301846][ T9933] loop0: detected capacity change from 0 to 32768
[  158.309446][ T9933] bcachefs (/dev/loop0): error validating superblock: Invalid superblock section members_v1: device 0: too many buckets (got 16981954538416098692, max 2147483583)
[  158.309446][ T9933] members_v1 (size 152):
[  158.309446][ T9933] Device:                        0
[  158.309446][ T9933]   Label:                       invalid label 98
[  158.309446][ T9933]   UUID:                        88000000-0000-0000-7af6-772b00de4159
[  158.309446][ T9933]   Size:                        0
[  158.309446][ T9933]   read errors:                 0
[  158.309446][ T9933]   write errors:                0
[  158.309446][ T9933]   checksum errors:             0
[  158.309446][ T9933]   seqread iops:                1611530240
[  158.309446][ T9933]   seqwrite iops:               0
[  158.309446][ T9933]   randread iops:               0
[  158.309446][ T9933]   randwrite iops:              0
[  158.309446][ T9933]   Bucket size:                 0
[  158.309446][ T9933]   First bucket:                128
[  158.309446][ T9933]   Buckets:                     16981954538416098692
[  158.309446][ T9933]   Last mount:                  34376515584
[  158.309446][ T9933]   Last superblock write:       0
[  158.309446][ T9933]   State:                       spare
[  158.309446][ T9933]   Data allowed:                free,sb,journal
[  158.309446][ T9933]   Has data:                    journal,btree,user
[  158.309446][ T9933]   Btree allocated bitmap blocksize:1
[  158.309446][ T9933]   Btree allocated bitmap:      00000000000000000
[  158.309567][ T9933] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  158.452353][ T9951] overlayfs: failed to clone upperpath
[  158.534030][ T9957] program syz.0.1457 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  158.550173][ T9959] loop3: detected capacity change from 0 to 1024
[  158.559155][ T9959] hfsplus: Unknown parameter 'creatS'
[  158.580045][ T9959] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  158.592832][ T9959] CIFS mount error: No usable UNC path provided in device string!
[  158.592832][ T9959] 
[  158.597055][ T9959] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  158.934782][ T5905] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  159.096338][ T5905] usb 4-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[  159.099759][ T5905] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.104361][ T5905] usb 4-1: config 0 descriptor??
[  159.392330][ T9995] 9pnet_fd: Insufficient options for proto=fd
[  159.517295][ T5905] pantherlord 0003:0F30:0111.0008: item fetching failed at offset 0/4
[  159.520678][ T5905] pantherlord 0003:0F30:0111.0008: parse failed
[  159.523228][ T5905] pantherlord 0003:0F30:0111.0008: probe with driver pantherlord failed with error -22
[  159.719708][  T791] usb 4-1: USB disconnect, device number 15
[  159.824932][  T792] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  159.984569][  T792] usb 1-1: Using ep0 maxpacket: 16
[  159.988387][  T792] usb 1-1: config 0 has an invalid interface number: 49 but max is 0
[  159.991936][  T792] usb 1-1: config 0 has no interface number 0
[  159.994666][  T792] usb 1-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 16
[  159.998637][  T792] usb 1-1: config 0 interface 49 altsetting 0 has an endpoint descriptor with address 0x69, changing to 0x9
[  160.003257][  T792] usb 1-1: config 0 interface 49 altsetting 0 endpoint 0x9 has an invalid bInterval 0, changing to 7
[  160.009997][  T792] usb 1-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7
[  160.013700][  T792] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.016835][  T792] usb 1-1: Product: syz
[  160.018478][  T792] usb 1-1: Manufacturer: syz
[  160.020355][  T792] usb 1-1: SerialNumber: syz
[  160.025505][  T792] usb 1-1: config 0 descriptor??
[  160.028372][T10012] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  160.256927][  T792] usb 1-1: USB disconnect, device number 24
[  160.493974][T10060] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1494'.
[  160.497549][T10060] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1494'.
[  160.552098][T10066] loop3: detected capacity change from 0 to 512
[  160.556110][T10066] EXT4-fs: Ignoring removed bh option
[  160.561297][T10066] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  160.575963][T10066] EXT4-fs (loop3): 1 truncate cleaned up
[  160.579364][T10066] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.597000][T10073] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1499'.
[  160.620535][ T6746] EXT4-fs error (device loop3): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 39
[  160.629992][ T6746] EXT4-fs error (device loop3): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 39
[  160.848495][ T6746] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.853966][T10085] loop0: detected capacity change from 0 to 512
[  160.872915][T10085] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  160.894531][T10085] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  160.897894][   T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.916168][T10085] EXT4-fs (loop0): 1 truncate cleaned up
[  160.919979][T10085] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.941890][T10085] EXT4-fs error (device loop0): ext4_get_verity_descriptor_location:298: inode #15: comm syz.0.1504: verity file has no extents
[  160.950417][T10085] fs-verity (loop0, inode 15): Error -117 getting verity descriptor size
[  160.978326][ T5841] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.985766][   T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.079774][   T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.115905][T10092] nfs4: Unexpected value for 'acl'
[  161.163013][   T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.329729][   T13] bridge_slave_1: left allmulticast mode
[  161.331886][   T13] bridge_slave_1: left promiscuous mode
[  161.334399][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.342956][   T13] bridge_slave_0: left allmulticast mode
[  161.352155][   T13] bridge_slave_0: left promiscuous mode
[  161.356344][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.710019][   T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  161.717100][   T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  161.729623][   T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  161.742444][   T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  161.747469][   T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  161.775435][ T5843] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  161.778811][ T5843] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  161.781898][ T5843] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  161.788207][ T5843] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  161.793062][ T5843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  162.056549][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  162.072016][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  162.082242][   T13] bond0 (unregistering): Released all slaves
[  162.517507][   T13] hsr_slave_0: left promiscuous mode
[  162.522994][   T13] hsr_slave_1: left promiscuous mode
[  162.528567][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  162.537924][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.546077][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  162.556960][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.592967][   T13] veth1_macvtap: left promiscuous mode
[  162.595289][   T13] veth0_macvtap: left promiscuous mode
[  162.597802][   T13] veth1_vlan: left promiscuous mode
[  162.599799][   T13] veth0_vlan: left promiscuous mode
[  163.041782][T10188] loop0: detected capacity change from 0 to 1764
[  163.212098][   T13] team0 (unregistering): Port device team_slave_1 removed
[  163.235834][   T13] team0 (unregistering): Port device team_slave_0 removed
[  163.328413][ T6304] usb 1-1: new full-speed USB device number 25 using dummy_hcd
[  163.491593][ T6304] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  163.495630][ T6304] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  163.499341][ T6304] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  163.508992][ T6304] usb 1-1: New USB device found, idVendor=0755, idProduct=2626, bcdDevice= 0.00
[  163.512383][ T6304] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.516272][ T6304] usb 1-1: config 0 descriptor??
[  163.519181][T10195] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  163.625456][T10206] netlink: 'syz.2.1526': attribute type 7 has an invalid length.
[  163.677824][T10116] chnl_net:caif_netlink_parms(): no params data found
[  163.868124][ T5843] Bluetooth: hci0: command tx timeout
[  163.880546][T10116] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.883830][T10116] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.886933][T10116] bridge_slave_0: entered allmulticast mode
[  163.891727][T10116] bridge_slave_0: entered promiscuous mode
[  163.899763][T10116] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.902476][T10116] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.910592][T10116] bridge_slave_1: entered allmulticast mode
[  163.915970][T10116] bridge_slave_1: entered promiscuous mode
[  163.948330][ T6304] aureal 0003:0755:2626.0009: fixing Aureal Cy se W-01RN USB_V3.1 report descriptor.
[  163.954261][ T6304] aureal 0003:0755:2626.0009: unknown main item tag 0x6
[  163.960847][ T6304] aureal 0003:0755:2626.0009: report_id 29495 is invalid
[  163.967056][ T6304] aureal 0003:0755:2626.0009: item 0 2 1 8 parsing failed
[  163.970543][ T6304] aureal 0003:0755:2626.0009: probe with driver aureal failed with error -22
[  163.994912][T10116] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  164.001264][T10116] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  164.006782][   T13] ------------[ cut here ]------------
[  164.008765][   T13] WARNING: CPU: 0 PID: 13 at net/xfrm/xfrm_state.c:3303 xfrm_state_fini+0x270/0x2f0
[  164.011842][   T13] Modules linked in:
[  164.013385][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  164.018740][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  164.022486][   T13] Workqueue: netns cleanup_net
[  164.024255][   T13] RIP: 0010:xfrm_state_fini+0x270/0x2f0
[  164.026511][   T13] Code: c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 f8 30 01 f8 48 8b 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 b6 f1 e1 f7 e8 91 c7 9d f7 90 <0f> 0b 90 e9 fd fd ff ff e8 83 c7 9d f7 90 0f 0b 90 e9 60 fe ff ff
[  164.033770][   T13] RSP: 0018:ffffc90000107898 EFLAGS: 00010293
[  164.036474][   T13] RAX: ffffffff8a21e3ff RBX: ffff888106c92440 RCX: ffff88801c2e0000
[  164.039918][   T13] RDX: 0000000000000000 RSI: ffffffff8dba6026 RDI: ffff88801c2e0000
[  164.043261][   T13] RBP: ffffc900001079b0 R08: ffffffff8fa37e37 R09: 1ffffffff1f46fc6
[  164.046706][   T13] R10: dffffc0000000000 R11: fffffbfff1f46fc7 R12: ffffffff8f630aa0
[  164.049869][   T13] R13: 1ffff92000020f40 R14: ffff888106c938c0 R15: dffffc0000000000
[  164.053280][   T13] FS:  0000000000000000(0000) GS:ffff8880b861c000(0000) knlGS:0000000000000000
[  164.057329][   T13] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  164.059530][   T13] CR2: 0000555563240608 CR3: 000000000df36000 CR4: 00000000000006f0
[  164.062786][   T13] Call Trace:
[  164.064155][   T13]  <TASK>
[  164.065580][   T13]  xfrm_net_exit+0x2d/0x70
[  164.067138][   T13]  ops_undo_list+0x49a/0x990
[  164.068723][   T13]  ? __pfx_ops_undo_list+0x10/0x10
[  164.070610][   T13]  ? do_raw_spin_unlock+0x4d/0x240
[  164.072643][   T13]  cleanup_net+0x4c5/0x800
[  164.074825][   T13]  ? __pfx_cleanup_net+0x10/0x10
[  164.076907][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  164.078913][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  164.081061][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  164.083402][   T13]  process_scheduled_works+0xae1/0x17b0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  164.086031][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  164.088465][   T13]  worker_thread+0x8a0/0xda0
[  164.090230][   T13]  kthread+0x711/0x8a0
[  164.091627][   T13]  ? __pfx_worker_thread+0x10/0x10
[  164.093354][   T13]  ? __pfx_kthread+0x10/0x10
[  164.095240][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  164.097028][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.098830][   T13]  ? __pfx_kthread+0x10/0x10
[  164.100435][   T13]  ret_from_fork+0x3fc/0x770
[  164.102097][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  164.103822][   T13]  ? __switch_to_asm+0x39/0x70
[  164.105479][   T13]  ? __switch_to_asm+0x33/0x70
[  164.107113][   T13]  ? __pfx_kthread+0x10/0x10
[  164.108694][   T13]  ret_from_fork_asm+0x1a/0x30
[  164.110314][   T13]  </TASK>
[  164.111369][   T13] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  164.113797][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  164.118610][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  164.122873][   T13] Workqueue: netns cleanup_net
[  164.124898][   T13] Call Trace:
[  164.126277][   T13]  <TASK>
[  164.127520][   T13]  dump_stack_lvl+0x99/0x250
[  164.129461][   T13]  ? __asan_memcpy+0x40/0x70
[  164.131395][   T13]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.133535][   T13]  ? __pfx__printk+0x10/0x10
[  164.135590][   T13]  vpanic+0x281/0x750
[  164.137247][   T13]  ? __pfx__printk+0x10/0x10
[  164.139255][   T13]  ? __pfx_vpanic+0x10/0x10
[  164.141143][   T13]  ? is_bpf_text_address+0x292/0x2b0
[  164.143341][   T13]  panic+0xb9/0xc0
[  164.144904][   T13]  ? __pfx_panic+0x10/0x10
[  164.146796][   T13]  __warn+0x31b/0x4b0
[  164.148454][   T13]  ? xfrm_state_fini+0x270/0x2f0
[  164.150412][   T13]  ? xfrm_state_fini+0x270/0x2f0
[  164.152462][   T13]  report_bug+0x2be/0x4f0
[  164.154246][   T13]  ? xfrm_state_fini+0x270/0x2f0
[  164.156287][   T13]  ? xfrm_state_fini+0x270/0x2f0
[  164.158351][   T13]  ? xfrm_state_fini+0x272/0x2f0
[  164.160412][   T13]  handle_bug+0x84/0x160
[  164.162097][   T13]  exc_invalid_op+0x1a/0x50
[  164.163897][   T13]  asm_exc_invalid_op+0x1a/0x20
[  164.165854][   T13] RIP: 0010:xfrm_state_fini+0x270/0x2f0
[  164.167973][   T13] Code: c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 f8 30 01 f8 48 8b 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 b6 f1 e1 f7 e8 91 c7 9d f7 90 <0f> 0b 90 e9 fd fd ff ff e8 83 c7 9d f7 90 0f 0b 90 e9 60 fe ff ff
[  164.174452][   T13] RSP: 0018:ffffc90000107898 EFLAGS: 00010293
[  164.176585][   T13] RAX: ffffffff8a21e3ff RBX: ffff888106c92440 RCX: ffff88801c2e0000
[  164.179593][   T13] RDX: 0000000000000000 RSI: ffffffff8dba6026 RDI: ffff88801c2e0000
[  164.182866][   T13] RBP: ffffc900001079b0 R08: ffffffff8fa37e37 R09: 1ffffffff1f46fc6
[  164.185980][   T13] R10: dffffc0000000000 R11: fffffbfff1f46fc7 R12: ffffffff8f630aa0
[  164.189182][   T13] R13: 1ffff92000020f40 R14: ffff888106c938c0 R15: dffffc0000000000
[  164.192478][   T13]  ? xfrm_state_fini+0x26f/0x2f0
[  164.194542][   T13]  ? xfrm_state_fini+0x26f/0x2f0
[  164.196629][   T13]  xfrm_net_exit+0x2d/0x70
[  164.198493][   T13]  ops_undo_list+0x49a/0x990
[  164.200543][   T13]  ? __pfx_ops_undo_list+0x10/0x10
[  164.202730][   T13]  ? do_raw_spin_unlock+0x4d/0x240
[  164.204881][   T13]  cleanup_net+0x4c5/0x800
[  164.206765][   T13]  ? __pfx_cleanup_net+0x10/0x10
[  164.208864][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  164.210858][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  164.212902][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  164.214838][   T13]  process_scheduled_works+0xae1/0x17b0
[  164.216853][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  164.218901][   T13]  worker_thread+0x8a0/0xda0
[  164.220533][   T13]  kthread+0x711/0x8a0
[  164.221978][   T13]  ? __pfx_worker_thread+0x10/0x10
[  164.223799][   T13]  ? __pfx_kthread+0x10/0x10
[  164.225462][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  164.227290][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.229135][   T13]  ? __pfx_kthread+0x10/0x10
[  164.230832][   T13]  ret_from_fork+0x3fc/0x770
[  164.232421][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  164.234159][   T13]  ? __switch_to_asm+0x39/0x70
[  164.235780][   T13]  ? __switch_to_asm+0x33/0x70
[  164.237660][   T13]  ? __pfx_kthread+0x10/0x10
[  164.239590][   T13]  ret_from_fork_asm+0x1a/0x30
[  164.241596][   T13]  </TASK>
[  164.243530][   T13] Kernel Offset: disabled
[  164.245336][   T13] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:16:14  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90000107030
R8 =ffff888020cb0237 R9 =1ffff11004196046 R10=dffffc0000000000 R11=ffffffff854efeb0
R12=dffffc0000000000 R13=ffffffff99af98e5 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854eff2c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555563240608 CR3=0000000110876000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 ff000000000000ff XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=6161616161616161 6161616161616161
XMM06=6161616161616161 6161616161616161 XMM07=6161616161616161 6161616161616161
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f803be12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000a02 RBX=ffff8881208fa700 RCX=dffffc0000000000 RDX=ffff8881208fa700
RSI=ffff888128adc660 RDI=ffff8881208fa740 RBP=1ffff1102411f4e1 RSP=ffffc900071069c8
R8 =0000000000000003 R9 =0000000000000004 R10=dffffc0000000000 R11=fffff52000e20d1c
R12=ffff8881208fa708 R13=dffffc0000000000 R14=ffff888128adc660 R15=ffff8881208fa740
RIP=ffffffff84cfffe4 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055555cbf1500 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055556321d808 CR3=0000000120914000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=ff00ff0000000000 0000000000000000 XMM05=0000000000000000 00007fb4d0212e53
XMM06=0000000000000000 00007fb4d0212e4d XMM07=0000000000000000 00007fb4d0212e61
XMM08=0000000000000000 00007fb4d0212ee7 XMM09=0000000000000000 00007fb4d0212fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
