last executing test programs:

4m26.205766241s ago: executing program 0 (id=269):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0x401, 0x4)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e27, 0x3, @rand_addr=' \x01\x00', 0x800}, 0x1c)
listen(r0, 0x39c)

4m26.205310848s ago: executing program 0 (id=270):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x18, &(0x7f00000004c0)={@flat=@weak_binder={0x77622a85, 0xa, 0x2}, @fd={0x66642a85, 0x0, r3}, @flat=@weak_handle={0x77682a85, 0x1001}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
prlimit64(0x0, 0x7, &(0x7f0000000ec0), 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x8, 0x0, &(0x7f00000001c0)=[@decrefs={0x40046307, 0x1}], 0x2, 0x1000000000000, &(0x7f0000000340)="cbe6"})

4m26.179812541s ago: executing program 0 (id=271):
syz_usb_connect(0x2, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="1201000043242108d81301006230010203010902120001000000000904"], 0x0)

4m24.050764775s ago: executing program 0 (id=279):
syz_mount_image$iso9660(&(0x7f0000000380), &(0x7f00000000c0)='./file0\x00', 0x204818, &(0x7f0000000700)={[{@overriderock}, {@mode={'mode', 0x3d, 0xfa}}, {@hide}, {@dmode={'dmode', 0x3d, 0xb}}, {@uid}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@map_off}, {@uid}]}, 0xff, 0x544, &(0x7f00000008c0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
write$cgroup_devices(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_devices(0xffffffffffffffff, 0x0, 0xa)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x199dc05, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

4m23.952795388s ago: executing program 0 (id=280):
r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000000580)={0x0, 0x5, 0x39})

4m23.52811315s ago: executing program 0 (id=282):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='huge=always,size=8'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x181)
ftruncate(r0, 0x82081fc)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14d0be, 0x48)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600402, 0x7ffffe, 0x4002011, r1, 0x800000)

4m23.402105221s ago: executing program 32 (id=282):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='huge=always,size=8'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x181)
ftruncate(r0, 0x82081fc)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14d0be, 0x48)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600402, 0x7ffffe, 0x4002011, r1, 0x800000)

3m57.661693006s ago: executing program 3 (id=525):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="12011f00abbe6740e9174e8b089c000000010902120001000000000904000000ff"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="201006000000065f"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000540)={0x2c, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0})

3m55.821056724s ago: executing program 3 (id=530):
r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x82, 0x2800)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000000)={0x1, 0x0, {0xffffffff, 0x9b, 0x2017, 0x8, 0x1, 0xa, 0x2, 0x700}})

3m55.61423342s ago: executing program 3 (id=531):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x6}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x80000001}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x8}]}}}]}]}], {0x14}}, 0xe8}}, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000a40)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb8100000086dd62a341"], 0x0)

3m55.472921033s ago: executing program 3 (id=532):
syz_mount_image$squashfs(&(0x7f00000006c0), &(0x7f0000000200)='./file0\x00', 0x2, &(0x7f0000000400)=ANY=[], 0x1, 0x1f8, &(0x7f0000000900)="$eJzslU1rE08cxz+zmSRN/zn0/D8VLLYXbbMF8ejNvgBfgCFda3HjQzegCQWjl148iG+i4KvwIOjdg4jgpR4U9FARhIqszM5vxgkJxMp6EPYL4ff8lNn5zfXsTtYEfhzv91iigKLNW6XQwKqyupOGpV+E5oIP2sod0T8V+l5oNhy9emTZ0Y1umiZ72XAOoxTM80lzLCPlmXTSM4o5z7mpXz6c1ChmOkfAb81TCvMtz/Mp06BmR5qOejyhac7ykVj+sLEGU6bF8mdfPsV3Yye1zNf25CfxsezG6vztcwev+d6ef0xvntjjnOlTk/BWeFOi6RMsnRmWnTA6VVSGrK/s8oOIz4Xw+ni/Z5irssWMbtv+3JUofIzwPPD5X8PYLEdyn0fDJSOsAuuD/u31bDg6t9vv7iQ7yc043ryw8eI/uaL5fdhNkw0VtGFWCG4vAeaetgJ7HXj3yz4mgApaM1gE1RC9C3HLee1MENiCKIgNc9i8z3z9puhq9LnCWRaAu2O1DDH231rBZNNcM6NtoaiJ0NFBn3BCxEJhON+7lW4foFAu7BDtc3SOqHshxgqmULJ50Y9/IHRF6JbQQ6FHQt3b5d4kXWT4JNLaGBrc6w4Ge8XjZTmvi70uXvKVI6nqXkPlOmlSoUKFChUqVKjwj+BnAAAA//85ykLy")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
listxattr(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

3m55.460594527s ago: executing program 3 (id=534):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'veth1_to_batadv\x00', &(0x7f0000000340)=@ethtool_gstrings={0x1b, 0x1}})

3m55.190559456s ago: executing program 3 (id=540):
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000377a4440ba0d00100900010203010902121001000000000904"], 0x0)

3m54.999288992s ago: executing program 33 (id=540):
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000377a4440ba0d00100900010203010902121001000000000904"], 0x0)

2m37.937428528s ago: executing program 2 (id=1241):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001180)=0x2000000)
ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000140))

2m37.845128165s ago: executing program 2 (id=1242):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000080)={0x0, 0x300})

2m37.844876588s ago: executing program 2 (id=1243):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@newlink={0x38, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, 0x0, 0x1, @sit={{0x8}, {0x4}}}, @IFLA_MTU={0x8, 0x4, 0x80503}]}, 0x38}, 0x1, 0x0, 0x0, 0x20040001}, 0x8000)

2m37.755996875s ago: executing program 2 (id=1244):
mkdir(&(0x7f00000002c0)='./file0\x00', 0xad32e1886e33d2fb)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2048c5, &(0x7f0000000480)={[{@utf8no}, {@shortname_winnt}, {@shortname_winnt}, {@fat=@tz_utc}, {@uni_xlate}, {@fat=@check_normal}, {@shortname_mixed}, {@fat=@usefree}, {@fat=@discard}, {@shortname_mixed}, {@fat=@quiet}, {@utf8no}]}, 0x0, 0x29f, &(0x7f0000000580)="$eJzs3UFrE1sYxvGnSdukKW2yKBfuhct9uW50M7TxEwRpQQwotRF1IUztREPGpGRiJCK2O7d+juLSlYL6Bbpx517cFEFw04UYaZKxaRswra1Tzf8HYU7OOe/MmZyZ8M5AJlvXn94rFwOn6NYVS5pi0rq2pcxOqWuku4y1y+Pqta5zk5/f/Xv1xs1LuXx+ftFsIbd0Pmtm0/+9evDo2f9v6pPXnk+/TGgzc2vrU/b95l+bf299XQrXXpVcW65W6+6y79lKKSg7Zld8zw08K1UCr1a3nvaiX11dbZpbWZlKrda8IDC30rSy17R61eq1prl33FLFHMexqZSGTfzQEYWNxUU3dyKDQRQm+lXWajk33rexsPErBgUAAE6XqPL/u6XASoFVqnvy+4P5f0yHyP+loc7/D4/8fxjs5P+p7vm7F/k/AAAAAAAAAAAAAAAAAAAAAAC/g+1WK91qtdLhMnwlJCUlhe+jHidOBvM/3Hp+uJeU/CeNQqPQWXbac0WV5MvT7Jj0pX08dHXKCxfz87PWltFrf60bv9YoxJUI40OZ/vFznXjrjV/TmFK9288qrZn+8dk+8Y3CuM6eaSW6W/bkKK23t1WVr5X2cb0b/3jO7MLl/L74iXY/AAAAAAD+BI59d+D6vd3uWPjYkH3tncrd+wNK/+D+wL7r61H9MxrdfgMAAAAAMEyC5sOy6/tebQgK4f8fHMsKo//okoN2HpXUrXlxWuZikEJM0lHD4z83yx8l7amZiXy6j6Pw4X7nDBikc5TfSgAAAABOQpj0j0Q9EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAhtigDw8L+x/l2WM9m4tHs5cAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA6fAtAAD//2kbF4o=")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333c06, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002d40)={0x2020}, 0x2020)

2m37.708734244s ago: executing program 2 (id=1246):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0x40405514, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4]})

2m37.383382376s ago: executing program 2 (id=1249):
r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x2180, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000300)={'pcl711\x00', [0x2f00, 0x1, 0xd09a, 0x2, 0x3, 0xfffffffe, 0x20002004, 0x3, 0xffe, 0xf723, 0xc, 0x3, 0x2, 0x0, 0xffff, 0x100006, 0x5, 0x6, 0x1000, 0x30000, 0xfff, 0x2, 0x2, 0xe2df, 0x2, 0x5, 0xff, 0xb, 0x7, 0x7, 0x470f]})
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0x4000000, 0xf, &(0x7f0000000080)=[0x3, 0xfff, 0xc, 0xb, 0x660, 0xfffffff9, 0xe0, 0xfffffff7, 0x9, 0xf5, 0xffffffff, 0x2, 0x0, 0x4, 0x6], 0x0, 0x4})

2m37.272302637s ago: executing program 34 (id=1249):
r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x2180, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000300)={'pcl711\x00', [0x2f00, 0x1, 0xd09a, 0x2, 0x3, 0xfffffffe, 0x20002004, 0x3, 0xffe, 0xf723, 0xc, 0x3, 0x2, 0x0, 0xffff, 0x100006, 0x5, 0x6, 0x1000, 0x30000, 0xfff, 0x2, 0x2, 0xe2df, 0x2, 0x5, 0xff, 0xb, 0x7, 0x7, 0x470f]})
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0x4000000, 0xf, &(0x7f0000000080)=[0x3, 0xfff, 0xc, 0xb, 0x660, 0xfffffff9, 0xe0, 0xfffffff7, 0x9, 0xf5, 0xffffffff, 0x2, 0x0, 0x4, 0x6], 0x0, 0x4})

1m25.738238178s ago: executing program 4 (id=1950):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@mpls_delroute={0xa0, 0x18, 0x9, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_NEWDST={0x84, 0x13, [{0xb, 0x0, 0x1}, {0xae5, 0x0, 0x1}, {0x9}, {0x1}, {0x6}, {0x8, 0x0, 0x1}, {0x3ff, 0x0, 0x1}, {0x9, 0x0, 0x1}, {0x6}, {0x7ff, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0x75a}, {0xfff, 0x0, 0x1}, {0x4}, {0xf0001, 0x0, 0x1}, {0x9}, {0xffff}, {}, {0x3, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x9}, {0x2}, {0x3ff}, {0x800, 0x0, 0x1}, {0x7ff, 0x0, 0x1}, {0x5}, {0xd24a2, 0x0, 0x1}, {0x572a, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x200}, {0x1a}]}]}, 0xa0}}, 0x0)

1m25.66568778s ago: executing program 4 (id=1952):
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x4)

1m25.587748531s ago: executing program 4 (id=1953):
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffe13)
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0xa2)

1m25.586971344s ago: executing program 4 (id=1955):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='./file0/../file0\x00')

1m25.509022362s ago: executing program 4 (id=1956):
r0 = fsopen(&(0x7f00000000c0)='nfsd\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsopen(&(0x7f00000000c0)='nfsd\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x5)

1m25.099333862s ago: executing program 4 (id=1959):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x1418, 0x1, 0x0, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x20}, 0x1, 0xf000000, 0x0, 0x4000804}, 0x44810)

1m25.025737813s ago: executing program 35 (id=1959):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x1418, 0x1, 0x0, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x20}, 0x1, 0xf000000, 0x0, 0x4000804}, 0x44810)

25.971649385s ago: executing program 6 (id=2484):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000580)={0x26, 'hash\x00', 0x0, 0x0, 'sha224\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x800)
recvmmsg$unix(r2, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)

25.103247995s ago: executing program 6 (id=2487):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000340)={'gre0\x00', &(0x7f0000000200)=@ethtool_ringparam={0x10, 0x80000001, 0x3, 0x1, 0xd, 0xefe, 0x0, 0x0, 0x8}})

25.022233786s ago: executing program 6 (id=2488):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f00000004c0)='./file1\x00', 0x80, &(0x7f0000000540)={[{@gid={'gid', 0x3d, 0xee00}}, {@nls={'nls', 0x3d, 'cp949'}}, {@creator={'creator', 0x3d, "7af940e2"}}, {@part={'part', 0x3d, 0x1}}, {@barrier}, {@gid}, {@creator={'creator', 0x3d, "1362a84f"}}]}, 0x1, 0x6f4, &(0x7f0000000680)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))

24.892875097s ago: executing program 6 (id=2489):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x9000, &(0x7f0000001dc0)={0x8, 0x70, 0x80000}, 0x20)

24.717133989s ago: executing program 6 (id=2492):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x4, 0x1}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0})
io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0)

24.48359064s ago: executing program 6 (id=2498):
r0 = memfd_create(&(0x7f0000000cc0)='\t^\x1ax1\xc7\xbe\xa1\xc6F\xfa\x9cq\xb1w&\xdfP\xba\xdf\xf9F\xc1\xd4x\xaa\x92~srQ\xeaS\x88\xad\xd1Js\\\xb2\xc5\xed\xe8\x7f\xdc(\x01\xcey\xc7\x15?\n\xad\xe7R\x9e\xe1K\xfd\xc95f@O}\\\xdd\xca!;\xf38\'L9\xcb\xda\xa1\xc1p\xd6)\x18x\x17\xab7\x06\x9f\xe3X\v\xf2\xcc\x05\xb4( m\xde\x0f\xf3\xf8\x1b\vW\x00\x90\x01\xfe\x1e<\xabL-3\xe6\x81\xd6\x8d3\x1b$\x0e\x00\x00\x00\x00\x00\x00\x03\x00\xac\x88\x95\xff\xda\x1cd\xcbx\bx\x95\xab\xcb\x05\x00\x00\x00I\xff\x87\x90\xd9\x89K\x98\x90\x86\xff\xcc\xc1\xf5\r\xea\x19c\xba\xa9\"d$\x01h\x0f&/B\xa5\x18%\xc7\x00\x17\x00\x00sH\xc7ex#\xb0\xe4\x1b\xce\x0f\xear,-\n\xe6gB#\x8ch=:F$\xe6\x87\xf0AF\xd5\x84c\xd5\xd5(\xb3\xac\x9b\x80\x81y\xf1\a\x0f \xbb\xfa\xd3\x88\xad=5J\x13>u\x8c\x00\x00\x00\x00\xff\xff\xff\xff\xb8~\xaa-\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1f\xdf\xcf\b\x9f\xb6\xf2\x84\xbag\xe5.\xe4\x1f\xb3\x02\x00\xad\x06\x1btb\"\x87\x0f\xd7\xf9\x10~\xdc7\xe7\xdc\x11\xd8?\x040\xc5%%\x1c\x8d\xe0\xb99\x10\x11\x84\xbb\xa9\x9em\x1d\xfd\xd4\xcf\x94\xf1\xf9\xec\xf3`\xc3\xff\x8b$\x0e\x04\xd8\xaa\x17\xac\xf4\xda\xd0z\x87H\x03Du\x91\x839\xec\xd7\xde\xf2P\xf6dj-b\x84\x18\xe9\fy`\xca\x86Za7\xe4P\x95B\xeefTdk\x83\xcc\xa4\xa5\b\x1e\x998\x042\xb2\xdd\x8a\xea\xefQ\xf3-Z\a\xd3\xbb\xd5\x80\xb7\v\xa9\xae*9\xc70\xc8\xf4_\xe9NK:\xe1\xa4\xf7G\a\xd4Q\f7\xdeK,&\xf8\xe7\xffj\xd1\xae\xa1\x04\xf9\xd5\xc5\\\xcc:\xb1\xa70\x84\xf72 \xd1\xcb}Ky\xa5\x9bx&\xad\xf0U\x1aK\x8bN\xcd\xf50\xa3\xc7\xee\x7f\x1a#\xc9\xb3^\xdd/\x13\xb6\xe9%\xed\x04\xf4o}\x17U\x16C\xb2\xea7C\xb6S\xe5p\xa28*\x98C\xa9\xf5\xf1*\xaa3\xb9\x88\xb3E\x03\x06\xf7\xa7U\xa4e\x95\x84r\xb5\x9d-\xc5\xea5\xdb\xcb\xf1n\xba\xc7A\\\xac\xf0\xb3`\x89`\xf9\x96\x9b\xbf%-J\xd5\x995\xd8\x1a\x84\xba\x17\x9c\xf7#\x14y\x97U\xb5\x92\\?^\x1c\x10\xd7\xe7\xa5A\x988I2B4\xd9\xd7\xab\xccr)D\xd6\x10o\xdf$F\xde^\xd5\'\x89\x1b\x86\xb3\xf4\xde \xa9\xf29[\x9f\xe4=#H\xady\xdci.\tG,\xb1Z\x82$\x98\x1d\xe6\xf2\xe8\x14\xbc\xc5\xbc\xb7\x12\x90\xd2HBZ\xb4\xd9S+,Z\x10\xe8M\x87\xde\x05\xdf8\xfe\xfe\xc4\x97\x0f=U\x8e\xbd!\x98\xd8\xc6,Y+~L\x9f0\x1bK\xa2\x9dL#\"R\x94\xdd\x1e_9I\a\x8c\x919\xf7\x04DO\xc7G\x9c|<\xb1\x91\xd3\x14~\x04\xac\x98\xba1uOH-', 0xf)
fchmod(r0, 0x184)

24.30094782s ago: executing program 36 (id=2498):
r0 = memfd_create(&(0x7f0000000cc0)='\t^\x1ax1\xc7\xbe\xa1\xc6F\xfa\x9cq\xb1w&\xdfP\xba\xdf\xf9F\xc1\xd4x\xaa\x92~srQ\xeaS\x88\xad\xd1Js\\\xb2\xc5\xed\xe8\x7f\xdc(\x01\xcey\xc7\x15?\n\xad\xe7R\x9e\xe1K\xfd\xc95f@O}\\\xdd\xca!;\xf38\'L9\xcb\xda\xa1\xc1p\xd6)\x18x\x17\xab7\x06\x9f\xe3X\v\xf2\xcc\x05\xb4( m\xde\x0f\xf3\xf8\x1b\vW\x00\x90\x01\xfe\x1e<\xabL-3\xe6\x81\xd6\x8d3\x1b$\x0e\x00\x00\x00\x00\x00\x00\x03\x00\xac\x88\x95\xff\xda\x1cd\xcbx\bx\x95\xab\xcb\x05\x00\x00\x00I\xff\x87\x90\xd9\x89K\x98\x90\x86\xff\xcc\xc1\xf5\r\xea\x19c\xba\xa9\"d$\x01h\x0f&/B\xa5\x18%\xc7\x00\x17\x00\x00sH\xc7ex#\xb0\xe4\x1b\xce\x0f\xear,-\n\xe6gB#\x8ch=:F$\xe6\x87\xf0AF\xd5\x84c\xd5\xd5(\xb3\xac\x9b\x80\x81y\xf1\a\x0f \xbb\xfa\xd3\x88\xad=5J\x13>u\x8c\x00\x00\x00\x00\xff\xff\xff\xff\xb8~\xaa-\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1f\xdf\xcf\b\x9f\xb6\xf2\x84\xbag\xe5.\xe4\x1f\xb3\x02\x00\xad\x06\x1btb\"\x87\x0f\xd7\xf9\x10~\xdc7\xe7\xdc\x11\xd8?\x040\xc5%%\x1c\x8d\xe0\xb99\x10\x11\x84\xbb\xa9\x9em\x1d\xfd\xd4\xcf\x94\xf1\xf9\xec\xf3`\xc3\xff\x8b$\x0e\x04\xd8\xaa\x17\xac\xf4\xda\xd0z\x87H\x03Du\x91\x839\xec\xd7\xde\xf2P\xf6dj-b\x84\x18\xe9\fy`\xca\x86Za7\xe4P\x95B\xeefTdk\x83\xcc\xa4\xa5\b\x1e\x998\x042\xb2\xdd\x8a\xea\xefQ\xf3-Z\a\xd3\xbb\xd5\x80\xb7\v\xa9\xae*9\xc70\xc8\xf4_\xe9NK:\xe1\xa4\xf7G\a\xd4Q\f7\xdeK,&\xf8\xe7\xffj\xd1\xae\xa1\x04\xf9\xd5\xc5\\\xcc:\xb1\xa70\x84\xf72 \xd1\xcb}Ky\xa5\x9bx&\xad\xf0U\x1aK\x8bN\xcd\xf50\xa3\xc7\xee\x7f\x1a#\xc9\xb3^\xdd/\x13\xb6\xe9%\xed\x04\xf4o}\x17U\x16C\xb2\xea7C\xb6S\xe5p\xa28*\x98C\xa9\xf5\xf1*\xaa3\xb9\x88\xb3E\x03\x06\xf7\xa7U\xa4e\x95\x84r\xb5\x9d-\xc5\xea5\xdb\xcb\xf1n\xba\xc7A\\\xac\xf0\xb3`\x89`\xf9\x96\x9b\xbf%-J\xd5\x995\xd8\x1a\x84\xba\x17\x9c\xf7#\x14y\x97U\xb5\x92\\?^\x1c\x10\xd7\xe7\xa5A\x988I2B4\xd9\xd7\xab\xccr)D\xd6\x10o\xdf$F\xde^\xd5\'\x89\x1b\x86\xb3\xf4\xde \xa9\xf29[\x9f\xe4=#H\xady\xdci.\tG,\xb1Z\x82$\x98\x1d\xe6\xf2\xe8\x14\xbc\xc5\xbc\xb7\x12\x90\xd2HBZ\xb4\xd9S+,Z\x10\xe8M\x87\xde\x05\xdf8\xfe\xfe\xc4\x97\x0f=U\x8e\xbd!\x98\xd8\xc6,Y+~L\x9f0\x1bK\xa2\x9dL#\"R\x94\xdd\x1e_9I\a\x8c\x919\xf7\x04DO\xc7G\x9c|<\xb1\x91\xd3\x14~\x04\xac\x98\xba1uOH-', 0xf)
fchmod(r0, 0x184)

4.060500376s ago: executing program 5 (id=2686):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2e, 0x1, 0x0, 0x0, "", [@nested={0x103, 0x3dff, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x8}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8c"]}]}, 0x114}], 0x1, 0x0, 0x0, 0xfffffffd}, 0x0)

3.945178176s ago: executing program 5 (id=2689):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='fd\x00')
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0xce, 0x0, 0x8}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fchdir(r0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f00000003c0)={0x0, 0x0, 0x5, 0x81, 0xffffffff, 0x7})
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x42, 0x2b)

3.381439034s ago: executing program 1 (id=2704):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_io_uring_setup(0x9e, &(0x7f0000000580)={0x0, 0x88af, 0x800, 0x2, 0x67}, &(0x7f0000000240)=<r2=>0x0, &(0x7f0000000480)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x6007, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x47ba, 0x0, 0x0, 0x0, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000000))

3.306909199s ago: executing program 1 (id=2708):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x1bdd, &(0x7f0000000300)={0x0, 0xab42, 0x10100, 0x0, 0x7f}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000240)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0, 0x120, 0x1})
syz_usb_connect(0x6, 0x24, &(0x7f0000001000)=ANY=[@ANYBLOB="120100030a242bff800410d0e50c01"], 0x0)
io_uring_enter(r1, 0x27e2, 0x0, 0x0, 0x0, 0x0)

3.051011368s ago: executing program 5 (id=2712):
socket(0x2, 0x80805, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x200000087}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000000))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x6)
dup2(r3, r2)
ioctl$TIOCMGET(r2, 0x5415, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x800, &(0x7f0000000240)={[{@rodir}, {@utf8}, {@uni_xlateno}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '864'}}, {@fat=@codepage={'codepage', 0x3d, '865'}}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@iocharset={'iocharset', 0x3d, 'cp864'}}, {@utf8no}, {@shortname_win95}, {@uni_xlate}]}, 0x1, 0x26c, &(0x7f0000000340)="$eJzs3U9rU1kYB+A3bTpJC0OyGCgzDMwdZjOr0HaYfcrQgWECipKFriw2RWlqoYWCLtruit9Bv4Iu3QouxK1fQASpghvrqgshEm//JDWJjZpG7PNs+nLu++Ock17upYueXPl1eWlhZW1xd3cn8vlMZMtRjr1MFGMkRiO1FQDA92Sv0Yg3jdSw1wIAnA7vfwA4e3q9/zNbh2PnT39lAMCgfNHf/yMDWRIAMGAXL13+f7ZSmbuQJPmI5e316no1/Zlen12M61GPWkxFId5FNA6l9b//VeamkqaXxcgvb46k+c316mh7fjoKUeycn05SUW3mDvJjMbGffzYRtZiJQvzUOT/TMf9D/PlHy/ylKMTTq7ES9ViIZjbN5yJiYzpJ/jlXOZbPfegDAAAAAAAAAAAAAAAAAAAAAIBBKCWHiu3n36Tn95RK3a6n+dbzgcZ7nQ/U2Dx2vk42fskOd+8AAAAAAAAAAAAAAAAAAADwrVi7eWtpvl6vrfYqbjy592gnlwY+2dy7yOzP219qu2fP+Ml2caz48fcXdzpdykWu38/n84qxiGgdSfanfPjbACf9WsXjnWs//7U2+Xe3nsi2jtxubrWtp8uNlB3UB/66ENG1J9/3Ddla3D8oym8/6jm4lWqr48P+xU3eLc8/2Hj+6qSpHg+NxuggHkUAAAAAAAAAAAAAAAAAAHDmHf3T77BXAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADDc/T9//0WuWgbyXdt3hr2HgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4H0AAAD//7qXlSU=")

2.472933038s ago: executing program 1 (id=2714):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="240000001d00070f000200000000000007000000", @ANYRES32=r2, @ANYBLOB='\x00\x00g\x00\b\x00\b\x00', @ANYRES64=r0], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)

2.359927373s ago: executing program 1 (id=2715):
unshare(0x22020600)
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_QUERYBUF_DMABUF(r0, 0xc0205648, &(0x7f0000000080)={0xf010000, 0x0, 0x4, 0x110821, 0x0, {0x77359400}, {0x5, 0x8, 0x0, 0x0, 0x0, 0xd, "3acfa8ee"}})

2.290603675s ago: executing program 1 (id=2716):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1404200bce)
r0 = syz_open_dev$evdev(0x0, 0xc898, 0x101000)
ioctl$EVIOCSKEYCODE(r0, 0x40084504, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000001b700)=""/102392, 0x18ff8)
syz_open_dev$sg(0x0, 0xa, 0x241)
r2 = openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000280)={{0x101, 0x200, 0x4, 0x5}, 'syz1\x00', 0x1c})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)

2.081478633s ago: executing program 5 (id=2720):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

930.206396ms ago: executing program 5 (id=2727):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240), 0xfe, 0x557, &(0x7f0000000280)="$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")
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x20)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20000008)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0xf1)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

601.590561ms ago: executing program 7 (id=2729):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x1, 0x0, 0x8000000008})
fcntl$lock(r0, 0x26, &(0x7f00000001c0)={0x0, 0x1, 0xa, 0xffff})
fcntl$lock(r0, 0x26, &(0x7f0000000280)={0x1, 0x0, 0x2f, 0x9})
fcntl$lock(r0, 0x26, &(0x7f00000000c0)={0x1, 0x2, 0x9, 0xe71})

540.376681ms ago: executing program 7 (id=2730):
msgget(0x1, 0x213)
msgget(0x1, 0x171)

401.394453ms ago: executing program 7 (id=2731):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x7}, 0x48)

395.407168ms ago: executing program 5 (id=2732):
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x4003, 0x2, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
recvmsg$unix(r0, &(0x7f0000000100)={0x0, 0x1d, &(0x7f0000000080)=[{&(0x7f0000000180)=""/254, 0xfe}], 0x1}, 0x20)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
setsockopt$sock_int(r0, 0x1, 0x13, &(0x7f0000000540)=0x223, 0x4)

309.467403ms ago: executing program 7 (id=2733):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r0, 0x0, 0x0)
write$char_usb(r0, &(0x7f0000002600)="b56511e72c", 0x5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=[0x5], 0x0, 0x0, 0x1}}, 0x40)

172.01227ms ago: executing program 7 (id=2734):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x3, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x7fffffff, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x80, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet_opts(r1, 0x0, 0xd, &(0x7f0000000100)="ac", 0x1)
recvmmsg$unix(r1, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10003, 0x0)

8.385633ms ago: executing program 7 (id=2735):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1f}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x2)
recvmsg$unix(r1, &(0x7f0000000780)={&(0x7f0000000180), 0x6e, &(0x7f00000003c0), 0x0, &(0x7f00000000c0)=[@rights={{0x10}}], 0x10}, 0x40)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
socket$nl_generic(0x10, 0x3, 0x10)
syz_clone3(0x0, 0x0)
r3 = shmget$private(0x0, 0x3000, 0x2, &(0x7f0000ffd000/0x3000)=nil)
shmat(r3, &(0x7f0000ffc000/0x3000)=nil, 0x4000)
shmctl$IPC_RMID(r3, 0x0)
remap_file_pages(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x28}, [@ldst={0x6, 0x3, 0x2, 0x0, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)

0s ago: executing program 1 (id=2736):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000340)={[{@nobh}, {@auto_da_alloc}, {@data_err_ignore}], [{@dont_measure}, {@flag='async'}, {@dont_measure}, {@appraise}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8071, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = fsopen(0x0, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = fsmount(r3, 0x0, 0x18)
ioctl$PTP_SYS_OFFSET_PRECISE(r4, 0xc0403d08, 0x0)
r5 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r6, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0x747, 0x3, 0x4, 0xfb, 0x8, 0x100}, 0xc)
connect$bt_l2cap(r6, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
sendmmsg(r6, &(0x7f0000001d00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044840)
fsmount(r5, 0x0, 0xf)
fsconfig$FSCONFIG_SET_FLAG(r5, 0x0, 0x0, 0x0, 0x0)
r7 = syz_open_dev$char_usb(0xc, 0xb4, 0x6)
ioctl$AUTOFS_IOC_FAIL(r7, 0x9361, 0x8000000000000000)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x1, 0xac, &(0x7f0000000100)="$eJzs0jFqwzAUBuBnY7cdu3foDXwHn6BnMB3tzZNLJ9+nlyh07RFygwxZsygYyUP2QAh8H0hPP/8ikP7PP2+xRryvESmlJu2aSPPyNQ7TvLTjMEVEG3+RVWU+Bw+uLs/ZR/4DWz72uatKfzh9f+4rNx+/eT7d7+IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcEPV63Wuo+vK8WXbLgEAAP//2Bwh+A==")

kernel console output (not intermixed with test programs):

ed
[  277.233429][T11090] batman_adv: batadv0: Adding interface: batadv_slave_0
[  277.240376][T11090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  277.252216][T11090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  277.261173][T11090] batman_adv: batadv0: Adding interface: batadv_slave_1
[  277.272822][T11090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  277.289506][T11090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  277.357869][T11090] hsr_slave_0: entered promiscuous mode
[  277.360653][T11090] hsr_slave_1: entered promiscuous mode
[  277.362920][T11090] debugfs: 'hsr0' already exists in 'hsr'
[  277.364718][T11090] Cannot create hsr debugfs directory
[  277.420146][T11149] netlink: 388 bytes leftover after parsing attributes in process `syz.1.1977'.
[  277.822874][T11090] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  277.829410][T11090] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  277.833794][T11090] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  277.847873][T11090] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  277.976122][    T9] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  278.012524][T11090] 8021q: adding VLAN 0 to HW filter on device bond0
[  278.024612][T11090] 8021q: adding VLAN 0 to HW filter on device team0
[  278.033152][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.035566][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state
[  278.040341][T11181] loop1: detected capacity change from 0 to 256
[  278.060042][T11181] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  278.060120][ T1098] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.067103][ T1098] bridge0: port 2(bridge_slave_1) entered forwarding state
[  278.146382][    T9] usb 6-1: Using ep0 maxpacket: 16
[  278.151976][    T9] usb 6-1: config 0 has an invalid interface number: 64 but max is 0
[  278.155144][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  278.179738][    T9] usb 6-1: config 0 has no interface number 0
[  278.186263][    T9] usb 6-1: New USB device found, idVendor=0bd3, idProduct=0555, bcdDevice= 0.1e
[  278.189438][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.221448][    T9] usb 6-1: config 0 descriptor??
[  278.242370][    T9] uvcvideo 6-1:0.64: probe with driver uvcvideo failed with error -22
[  278.382028][T11199] tmpfs: Bad value for 'mpol'
[  278.384936][T11090] 8021q: adding VLAN 0 to HW filter on device batadv0
[  278.446808][   T24] usb 6-1: USB disconnect, device number 8
[  278.606718][ T5966] Bluetooth: hci1: command tx timeout
[  278.614129][T11090] veth0_vlan: entered promiscuous mode
[  278.627481][T11090] veth1_vlan: entered promiscuous mode
[  278.661688][T11090] veth0_macvtap: entered promiscuous mode
[  278.667854][T11090] veth1_macvtap: entered promiscuous mode
[  278.678876][T11090] batman_adv: batadv0: Interface activated: batadv_slave_0
[  278.687623][T11090] batman_adv: batadv0: Interface activated: batadv_slave_1
[  278.697815][ T5973] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  278.701265][ T5973] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  278.704521][ T5973] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  278.708053][T11209] loop1: detected capacity change from 0 to 40427
[  278.717527][T11209] F2FS-fs (loop1): invalid crc value
[  278.727462][   T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  278.735422][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:1' failed: Read-only file system
[  278.782537][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:1' failed: Read-only file system
[  278.786731][T11209] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  278.793933][T11209] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  278.796271][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  278.806115][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  278.830278][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  278.832996][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  278.844094][ T5964] syz-executor: attempt to access beyond end of device
[  278.844094][ T5964] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  278.849049][ T5964] CPU: 1 UID: 0 PID: 5964 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  278.849061][ T5964] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  278.849066][ T5964] Call Trace:
[  278.849070][ T5964]  <TASK>
[  278.849074][ T5964]  dump_stack_lvl+0x189/0x250
[  278.849089][ T5964]  ? __pfx_dump_stack_lvl+0x10/0x10
[  278.849098][ T5964]  ? __pfx_queue_work_on+0x10/0x10
[  278.849105][ T5964]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  278.849115][ T5964]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  278.849129][ T5964]  f2fs_handle_critical_error+0x37c/0x540
[  278.849142][ T5964]  f2fs_write_end_io+0x886/0xb60
[  278.849160][ T5964]  __submit_merged_bio+0x27a/0x6a0
[  278.849171][ T5964]  __submit_merged_write_cond+0x255/0x530
[  278.849188][ T5964]  f2fs_write_data_pages+0x261d/0x3000
[  278.849214][ T5964]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  278.849245][ T5964]  ? __mod_zone_page_state+0xd7/0x140
[  278.849259][ T5964]  ? folios_put_refs+0x58b/0x670
[  278.849292][ T5964]  ? __lock_acquire+0xab9/0xd20
[  278.849308][ T5964]  ? do_raw_spin_lock+0x121/0x290
[  278.849323][ T5964]  ? do_raw_spin_unlock+0x4d/0x240
[  278.849332][ T5964]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  278.849341][ T5964]  do_writepages+0x32e/0x550
[  278.849354][ T5964]  ? do_raw_spin_unlock+0x4d/0x240
[  278.849365][ T5964]  filemap_fdatawrite+0x199/0x240
[  278.849373][ T5964]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  278.849405][ T5964]  ? do_raw_spin_unlock+0x4d/0x240
[  278.849416][ T5964]  f2fs_sync_dirty_inodes+0x31f/0x830
[  278.849433][ T5964]  f2fs_write_checkpoint+0x93e/0x2440
[  278.849443][ T5964]  ? __lock_acquire+0xab9/0xd20
[  278.849580][ T5964]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  278.849618][ T5964]  kill_f2fs_super+0x2cc/0x6d0
[  278.849632][ T5964]  ? __pfx_kill_f2fs_super+0x10/0x10
[  278.849651][ T5964]  ? shrinker_free+0x2ce/0x3e0
[  278.849664][ T5964]  deactivate_locked_super+0xbc/0x130
[  278.849694][ T5964]  cleanup_mnt+0x425/0x4c0
[  278.849708][ T5964]  ? lockdep_hardirqs_on+0x9c/0x150
[  278.849719][ T5964]  task_work_run+0x1d4/0x260
[  278.849731][ T5964]  ? __pfx_task_work_run+0x10/0x10
[  278.849739][ T5964]  ? __x64_sys_umount+0x122/0x160
[  278.849749][ T5964]  ? exit_to_user_mode_loop+0x40/0x130
[  278.849762][ T5964]  exit_to_user_mode_loop+0xe9/0x130
[  278.849773][ T5964]  do_syscall_64+0x2bd/0xfa0
[  278.849782][ T5964]  ? lockdep_hardirqs_on+0x9c/0x150
[  278.849790][ T5964]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.849798][ T5964]  ? exc_page_fault+0xab/0x100
[  278.849808][ T5964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.849815][ T5964] RIP: 0033:0x7f4e1938ff57
[  278.849823][ T5964] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  278.849830][ T5964] RSP: 002b:00007ffe5e7e6e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  278.849845][ T5964] RAX: 0000000000000000 RBX: 00007f4e19411c2d RCX: 00007f4e1938ff57
[  278.849850][ T5964] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe5e7e6f10
[  278.849855][ T5964] RBP: 00007ffe5e7e6f10 R08: 0000000000000000 R09: 0000000000000000
[  278.849859][ T5964] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe5e7e7fa0
[  278.849864][ T5964] R13: 00007f4e19411c2d R14: 00000000000440c1 R15: 00007ffe5e7e7fe0
[  278.849879][ T5964]  </TASK>
[  278.850511][ T5964] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  279.124666][T11221] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1994'.
[  279.237787][T11229] loop5: detected capacity change from 0 to 512
[  279.264246][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  279.268193][T11229] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities
[  279.272864][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/00000000-0000-0000-0000-000000000007.tmp-b7:5' failed: Read-only file system
[  279.289995][T11229] netlink: 260 bytes leftover after parsing attributes in process `syz.5.1998'.
[  280.468686][T11238] loop5: detected capacity change from 0 to 262144
[  280.496062][ T6025] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  280.508020][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/2ad00d6c-2669-47c3-8ea4-f154d3f9f816.tmp-b7:5' failed: Read-only file system
[  280.515209][T11238] F2FS-fs (loop5): invalid crc value
[  280.523586][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/2ad00d6c-2669-47c3-8ea4-f154d3f9f816.tmp-b7:5' failed: Read-only file system
[  280.558735][T11238] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  280.561841][T11238] F2FS-fs (loop5): Start checkpoint disabled!
[  280.564565][T11238] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  280.569410][T11238] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  280.658610][ T6025] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  280.668611][ T6025] usb 2-1: config 0 has no interface number 0
[  280.670822][ T6025] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.674366][ T6025] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  280.687575][ T6025] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  280.697384][ T5966] Bluetooth: hci1: command tx timeout
[  280.699484][ T6025] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.716451][ T6025] usb 2-1: config 0 descriptor??
[  280.771680][ T5966] Bluetooth: hci1: unexpected event 0x2f length: 1017 > 260
[  280.836424][T11264] loop6: detected capacity change from 0 to 2048
[  280.852482][T11264] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024)
[  280.877062][ T6234] udevd[6234]: incorrect nilfs2 checksum on /dev/loop6
[  280.878532][T11265] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  280.899408][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:6' failed: Read-only file system
[  281.020404][T11267] loop6: detected capacity change from 0 to 4096
[  281.030021][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  281.034247][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/399AA58E54924951.tmp-b7:6' failed: Read-only file system
[  281.056460][T11267] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  281.069284][T11267] ntfs3(loop6): ino=0, "file0" The size of extended attributes must not exceed 64KiB
[  281.147692][ T6025] prodikeys 0003:041E:2801.000C: collection stack underflow
[  281.150570][ T6025] prodikeys 0003:041E:2801.000C: item 0 1 0 12 parsing failed
[  281.153301][ T6025] prodikeys 0003:041E:2801.000C: hid parse failed
[  281.155333][ T6025] prodikeys 0003:041E:2801.000C: probe with driver prodikeys failed with error -22
[  281.213539][T11269] sd 0:0:0:0: PR command failed: 1026
[  281.215269][T11269] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[  281.217471][T11269] sd 0:0:0:0: Add. Sense: Invalid command operation code
[  281.349099][ T6025] usb 2-1: USB disconnect, device number 34
[  281.426378][T11280] loop6: detected capacity change from 0 to 256
[  281.441097][T11280] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  281.493188][T11282] loop6: detected capacity change from 0 to 512
[  281.502136][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  281.522685][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  281.524479][T11282] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.534489][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  281.538804][T11282] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.544396][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  281.768733][T11292] loop5: detected capacity change from 0 to 8
[  281.781727][T11292] SQUASHFS error: xz decompression failed, data probably corrupt
[  281.784950][T11292] SQUASHFS error: Failed to read block 0x108: -5
[  281.791082][T11292] SQUASHFS error: Unable to read metadata cache entry [106]
[  281.794502][T11292] SQUASHFS error: Unable to read inode 0x11f
[  282.042779][T11295] loop1: detected capacity change from 0 to 1024
[  282.183190][T11300] loop5: detected capacity change from 0 to 64
[  282.508545][ T6025] IPVS: starting estimator thread 0...
[  282.666882][    C0] hpet: Lost 1 RTC interrupts
[  282.678316][T11304] IPVS: using max 63 ests per chain, 151200 per kthread
[  282.796143][ T5966] Bluetooth: hci1: command tx timeout
[  282.800061][T11090] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.925909][ T1098] hfsplus: b-tree write err: -5, ino 4
[  283.306353][    C0] hpet: Lost 1 RTC interrupts
[  283.339560][    C0] hpet: Lost 1 RTC interrupts
[  283.406549][    C0] hpet: Lost 3 RTC interrupts
[  283.471985][    C0] hpet: Lost 3 RTC interrupts
[  285.061182][    C0] hpet: Lost 1 RTC interrupts
[  285.186089][ T9060] Bluetooth: hci1: command 0x0405 tx timeout
[  285.566997][ T5998] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  285.890521][ T5998] usb 2-1: config 0 has an invalid interface number: 120 but max is 0
[  285.893969][ T5998] usb 2-1: config 0 has no interface number 0
[  285.897785][ T5998] usb 2-1: config 0 interface 120 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  285.912837][ T5998] usb 2-1: config 0 interface 120 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  285.921197][ T5998] usb 2-1: config 0 interface 120 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  285.925892][ T5998] usb 2-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  285.929824][ T5998] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.935679][ T5998] usb 2-1: config 0 descriptor??
[  285.943834][T11338] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  285.969958][ T5998] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.120/input/input18
[  286.147026][T11356] loop6: detected capacity change from 0 to 32768
[  286.153969][T11356] (syz.6.2044,11356,1):ocfs2_check_set_options:1259 ERROR: Group quotas were requested, but this filesystem does not have the feature enabled.
[  286.173339][T11356] (syz.6.2044,11356,1):ocfs2_fill_super:1177 ERROR: status = -22
[  286.193816][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/03e7aa51-a951-448e-b9eb-6dd609435e20.tmp-b7:6' failed: Read-only file system
[  286.268474][T11359] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2045'.
[  286.313626][  T794] usb 2-1: USB disconnect, device number 35
[  286.421964][T11366] netlink: 'syz.6.2048': attribute type 21 has an invalid length.
[  286.425185][T11366] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2048'.
[  286.676109][ T5998] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  286.781662][T11371] loop6: detected capacity change from 0 to 32768
[  286.798544][T11371] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  286.798729][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/bfdc47fc-10d8-4eed-a562-11a831b3f791.tmp-b7:6' failed: Read-only file system
[  286.819527][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/bfdc47fc-10d8-4eed-a562-11a831b3f791.tmp-b7:6' failed: Read-only file system
[  286.828824][ T5998] usb 6-1: config index 0 descriptor too short (expected 1051, got 27)
[  286.832065][ T5998] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  286.835116][ T5998] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  286.844888][T11371] XFS (loop6): Ending clean mount
[  286.858797][ T5998] usb 6-1: config 0 interface 0 altsetting 12 bulk endpoint 0x87 has invalid maxpacket 149
[  286.865017][ T5998] usb 6-1: config 0 interface 0 has no altsetting 0
[  286.871621][ T5998] usb 6-1: New USB device found, idVendor=06cd, idProduct=010a, bcdDevice=d9.c3
[  286.875266][ T5998] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.882775][ T5998] usb 6-1: Product: syz
[  286.885034][ T5998] usb 6-1: Manufacturer: syz
[  286.887799][ T5998] usb 6-1: SerialNumber: syz
[  286.893155][ T5998] usb 6-1: config 0 descriptor??
[  286.895932][T11367] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  286.940533][T11090] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  287.117497][ T5998] keyspan 6-1:0.0: Keyspan 4 port adapter converter detected
[  287.121337][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 7
[  287.125564][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 81
[  287.146273][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 1
[  287.156386][ T5998] usb 6-1: Keyspan 4 port adapter converter now attached to ttyUSB0
[  287.161688][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 82
[  287.165344][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 2
[  287.183296][ T5998] usb 6-1: Keyspan 4 port adapter converter now attached to ttyUSB1
[  287.198654][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 83
[  287.201697][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 3
[  287.221441][ T5998] usb 6-1: Keyspan 4 port adapter converter now attached to ttyUSB2
[  287.227001][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 84
[  287.232368][ T5998] keyspan 6-1:0.0: found no endpoint descriptor for endpoint 4
[  287.241474][ T5998] usb 6-1: Keyspan 4 port adapter converter now attached to ttyUSB3
[  287.252789][ T5998] usb 6-1: USB disconnect, device number 9
[  287.268549][ T5998] keyspan_4 ttyUSB0: Keyspan 4 port adapter converter now disconnected from ttyUSB0
[  287.277134][ T5998] keyspan_4 ttyUSB1: Keyspan 4 port adapter converter now disconnected from ttyUSB1
[  287.289597][ T5998] keyspan_4 ttyUSB2: Keyspan 4 port adapter converter now disconnected from ttyUSB2
[  287.301687][ T5998] keyspan_4 ttyUSB3: Keyspan 4 port adapter converter now disconnected from ttyUSB3
[  287.318405][ T5998] keyspan 6-1:0.0: device disconnected
[  287.386685][T11383] loop1: detected capacity change from 0 to 32768
[  287.391192][T11383] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2053 (11383)
[  287.401808][T11383] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  287.405174][T11383] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  287.423570][ T7475] udevd[7475]: symlink '../../loop1' '/dev/disk/by-uuid/c9fe44da-de57-406a-8241-57ec7d4412cf.tmp-b7:1' failed: Read-only file system
[  287.454770][T11383] BTRFS info (device loop1): allowing degraded mounts
[  287.458285][T11383] BTRFS info (device loop1): enabling ssd optimizations
[  287.461034][T11383] BTRFS info (device loop1): enabling free space tree
[  287.463890][T11383] BTRFS info (device loop1): force zlib compression, level 3
[  287.486083][   T33] audit: type=1800 audit(1759223644.097:206): pid=11383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2053" name="file1" dev="loop1" ino=260 res=0 errno=0
[  287.519931][ T5964] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  287.749815][T11418] loop6: detected capacity change from 0 to 128
[  287.754934][T11418] EXT4-fs: Ignoring removed nomblk_io_submit option
[  287.766250][T11418] EXT4-fs: Ignoring removed nomblk_io_submit option
[  287.773862][T11418] EXT4-fs (loop6): Test dummy encryption mode enabled
[  287.795355][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:6' failed: Read-only file system
[  287.812851][T11418] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  287.829906][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:6' failed: Read-only file system
[  287.838390][T11418] ext4 filesystem being mounted at /41/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  287.901272][T11090] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  287.971028][T11429] loop6: detected capacity change from 0 to 16
[  287.974732][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/Compressed.tmp-b7:6' failed: Read-only file system
[  287.989315][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/Compressed.tmp-b7:6' failed: Read-only file system
[  288.366113][ T6025] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  288.516749][ T6025] usb 7-1: Using ep0 maxpacket: 16
[  288.525562][ T6025] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  288.543013][ T6025] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  288.547255][ T6025] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  288.552114][ T6025] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  288.559801][ T6025] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.563493][T11443] loop1: detected capacity change from 0 to 1024
[  288.570148][ T6025] usb 7-1: config 0 descriptor??
[  288.571555][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  288.590608][T11443] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  288.618548][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.670430][T11447] loop1: detected capacity change from 0 to 8
[  288.682549][T11447] SQUASHFS error: Unable to read inode 0x127
[  288.983305][ T6025] microsoft 0003:045E:07DA.000D: unbalanced delimiter at end of report description
[  288.987655][ T6025] microsoft 0003:045E:07DA.000D: parse failed
[  288.990098][ T6025] microsoft 0003:045E:07DA.000D: probe with driver microsoft failed with error -22
[  289.037565][  T794] usb 6-1: new full-speed USB device number 10 using dummy_hcd
[  289.076139][   T46] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  289.187814][ T5991] usb 7-1: USB disconnect, device number 2
[  289.195392][  T794] usb 6-1: config 12 has an invalid interface number: 65 but max is 0
[  289.200094][  T794] usb 6-1: config 12 has no interface number 0
[  289.202550][  T794] usb 6-1: config 12 interface 65 has no altsetting 0
[  289.211274][  T794] usb 6-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 0.02
[  289.214810][  T794] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.218126][  T794] usb 6-1: Product: syz
[  289.219897][  T794] usb 6-1: Manufacturer: syz
[  289.221628][  T794] usb 6-1: SerialNumber: syz
[  289.229348][   T46] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  289.234126][   T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  289.239818][   T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  289.247551][   T46] usb 2-1: New USB device found, idVendor=05f3, idProduct=0240, bcdDevice=1b.24
[  289.251072][   T46] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.254214][   T46] usb 2-1: Product: syz
[  289.255945][   T46] usb 2-1: Manufacturer: syz
[  289.259863][   T46] usb 2-1: SerialNumber: syz
[  289.265345][   T46] usb 2-1: config 0 descriptor??
[  289.269557][T11457] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  289.450534][  T794] usb 6-1: USB disconnect, device number 10
[  289.478381][   T46] powermate: unknown product id 0240
[  289.480499][   T46] powermate: Expected payload of 3--6 bytes, found 1024 bytes!
[  289.490664][   T46] input: Griffin SoundKnob as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input19
[  289.895453][    C1] powermate: config urb returned -71
[  289.895835][ T5998] usb 2-1: USB disconnect, device number 36
[  289.897090][    C1] powermate: usb_submit_urb(config) failed
[  289.897140][    C1] powermate 2-1:0.0: powermate_irq - usb_submit_urb failed with result: -19
[  290.186123][   T24] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  290.263649][T11491] netlink: 'syz.5.2084': attribute type 10 has an invalid length.
[  290.356134][   T24] usb 7-1: Using ep0 maxpacket: 16
[  290.367003][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  290.370417][   T24] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  290.374533][   T24] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 132
[  290.380135][   T24] usb 7-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=14.47
[  290.382924][   T24] usb 7-1: New USB device strings: Mfr=55, Product=172, SerialNumber=120
[  290.386337][   T24] usb 7-1: Product: syz
[  290.387732][   T24] usb 7-1: Manufacturer: syz
[  290.389256][   T24] usb 7-1: SerialNumber: syz
[  290.396534][   T24] usb 7-1: config 0 descriptor??
[  290.399564][T11475] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  290.420965][   T24] mcba_usb 7-1:0.0 can0: failed tx_urb -90
[  290.423118][   T24] mcba_usb 7-1:0.0 can0: Failed to send cmd (169)
[  290.425089][   T24] mcba_usb 7-1:0.0 can0: failed tx_urb -90
[  290.435119][   T24] mcba_usb 7-1:0.0 can0: Failed to send cmd (169)
[  290.437447][   T24] mcba_usb 7-1:0.0: Microchip CAN BUS Analyzer connected
[  290.521919][T11501] loop1: detected capacity change from 0 to 2048
[  290.546934][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:1' failed: Read-only file system
[  290.579748][T11505] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  290.620607][   T24] usb 7-1: USB disconnect, device number 3
[  290.623442][   T24] mcba_usb 7-1:0.0 can0: device disconnected
[  290.713165][T11506] loop5: detected capacity change from 0 to 8192
[  290.742032][ T5881]  loop5: p1 p3
[  290.743255][ T5881] loop5: partition table partially beyond EOD, truncated
[  290.749218][ T5881] loop5: p1 start 51314688 is beyond EOD, truncated
[  290.751338][ T5881] loop5: p3 start 65536 is beyond EOD, truncated
[  290.756949][T11506]  loop5: p1 p3
[  290.758899][T11506] loop5: partition table partially beyond EOD, truncated
[  290.762078][T11506] loop5: p1 start 51314688 is beyond EOD, truncated
[  290.764629][T11506] loop5: p3 start 65536 is beyond EOD, truncated
[  290.874427][T11516] pim6reg1: entered promiscuous mode
[  290.881283][T11516] pim6reg1: entered allmulticast mode
[  291.633435][T11534] loop5: detected capacity change from 0 to 32768
[  291.648120][T11534] (syz.5.2099,11534,1):ocfs2_verify_volume:2316 ERROR: bad system_dir_blkno: 0
[  291.652969][T11534] (syz.5.2099,11534,1):ocfs2_verify_volume:2331 ERROR: status = -22
[  291.656858][T11534] (syz.5.2099,11534,1):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  291.660687][T11534] (syz.5.2099,11534,1):ocfs2_fill_super:1177 ERROR: status = -22
[  291.803995][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:5' failed: Read-only file system
[  292.266551][   T24] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  292.426497][   T24] usb 6-1: Using ep0 maxpacket: 16
[  292.439394][   T24] usb 6-1: config 166 has an invalid descriptor of length 0, skipping remainder of the config
[  292.446679][   T24] usb 6-1: config 166 has 1 interface, different from the descriptor's value: 2
[  292.455105][   T24] usb 6-1: New USB device found, idVendor=0bda, idProduct=0138, bcdDevice=30.12
[  292.459979][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.462645][   T24] usb 6-1: Product: syz
[  292.464046][   T24] usb 6-1: Manufacturer: syz
[  292.465544][   T24] usb 6-1: SerialNumber: syz
[  292.472190][   T24] ums-realtek 6-1:166.0: USB Mass Storage device detected
[  292.493928][T11557] loop6: detected capacity change from 0 to 1024
[  292.508939][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-label/untitled.tmp-b7:6' failed: Read-only file system
[  292.513785][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:6' failed: Read-only file system
[  292.535303][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-label/untitled.tmp-b7:6' failed: Read-only file system
[  292.541576][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:6' failed: Read-only file system
[  292.549490][T11301] hfsplus: b-tree write err: -5, ino 4
[  292.672713][   T24] usb 6-1: USB disconnect, device number 11
[  292.986871][T11571] loop6: detected capacity change from 0 to 2048
[  293.010029][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:6' failed: Read-only file system
[  293.029487][T11574] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  293.044180][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:6' failed: Read-only file system
[  293.855023][T11585] loop5: detected capacity change from 0 to 32768
[  293.877274][T11586] loop6: detected capacity change from 0 to 40427
[  293.884664][T11586] F2FS-fs (loop6): invalid crc value
[  293.933104][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/35307472-fd4b-42de-878f-83186a645fa6.tmp-b7:5' failed: Read-only file system
[  293.939284][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:6' failed: Read-only file system
[  293.963673][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:6' failed: Read-only file system
[  294.011311][T11586] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  294.019914][T11586] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  294.031281][   T33] audit: type=1800 audit(1759223650.647:207): pid=11586 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2120" name="file1" dev="loop6" ino=10 res=0 errno=0
[  294.032157][T11586] syz.6.2120: attempt to access beyond end of device
[  294.032157][T11586] loop6: rw=0, sector=45096, nr_sectors = 8 limit=40427
[  294.098586][T11090] syz-executor: attempt to access beyond end of device
[  294.098586][T11090] loop6: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  294.103875][T11090] CPU: 1 UID: 0 PID: 11090 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  294.103894][T11090] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  294.103903][T11090] Call Trace:
[  294.103909][T11090]  <TASK>
[  294.103915][T11090]  dump_stack_lvl+0x189/0x250
[  294.103938][T11090]  ? __pfx_dump_stack_lvl+0x10/0x10
[  294.103954][T11090]  ? __pfx_queue_work_on+0x10/0x10
[  294.103965][T11090]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  294.103981][T11090]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  294.104002][T11090]  f2fs_handle_critical_error+0x37c/0x540
[  294.104022][T11090]  f2fs_write_end_io+0x886/0xb60
[  294.104050][T11090]  __submit_merged_bio+0x27a/0x6a0
[  294.104067][T11090]  __submit_merged_write_cond+0x255/0x530
[  294.104093][T11090]  f2fs_write_data_pages+0x261d/0x3000
[  294.104133][T11090]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  294.104159][T11090]  ? kernel_text_address+0xa5/0xe0
[  294.104195][T11090]  ? stack_depot_save_flags+0x40/0x860
[  294.104229][T11090]  ? __lock_acquire+0xab9/0xd20
[  294.104253][T11090]  ? do_raw_spin_lock+0x121/0x290
[  294.104276][T11090]  ? do_raw_spin_unlock+0x4d/0x240
[  294.104290][T11090]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  294.104306][T11090]  do_writepages+0x32e/0x550
[  294.104326][T11090]  ? do_raw_spin_unlock+0x4d/0x240
[  294.104344][T11090]  filemap_fdatawrite+0x199/0x240
[  294.104358][T11090]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  294.104407][T11090]  ? do_raw_spin_unlock+0x4d/0x240
[  294.104425][T11090]  f2fs_sync_dirty_inodes+0x31f/0x830
[  294.104452][T11090]  f2fs_write_checkpoint+0x93e/0x2440
[  294.104493][T11090]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  294.104507][T11090]  ? kasan_record_aux_stack+0xbd/0xd0
[  294.104604][T11090]  kill_f2fs_super+0x2cc/0x6d0
[  294.104628][T11090]  ? __pfx_kill_f2fs_super+0x10/0x10
[  294.104656][T11090]  ? shrinker_free+0x2ce/0x3e0
[  294.104676][T11090]  deactivate_locked_super+0xbc/0x130
[  294.104698][T11090]  cleanup_mnt+0x425/0x4c0
[  294.104716][T11090]  ? lockdep_hardirqs_on+0x9c/0x150
[  294.104733][T11090]  task_work_run+0x1d4/0x260
[  294.104750][T11090]  ? __pfx_task_work_run+0x10/0x10
[  294.104764][T11090]  ? __x64_sys_umount+0x122/0x160
[  294.104780][T11090]  ? exit_to_user_mode_loop+0x40/0x130
[  294.104800][T11090]  exit_to_user_mode_loop+0xe9/0x130
[  294.104817][T11090]  do_syscall_64+0x2bd/0xfa0
[  294.104832][T11090]  ? lockdep_hardirqs_on+0x9c/0x150
[  294.104846][T11090]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.104859][T11090]  ? exc_page_fault+0xab/0x100
[  294.104875][T11090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.104888][T11090] RIP: 0033:0x7fbfc5f8ff57
[  294.104901][T11090] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  294.104913][T11090] RSP: 002b:00007ffd7ce8ea38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  294.104927][T11090] RAX: 0000000000000000 RBX: 00007fbfc6011c2d RCX: 00007fbfc5f8ff57
[  294.104936][T11090] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7ce8eaf0
[  294.104944][T11090] RBP: 00007ffd7ce8eaf0 R08: 0000000000000000 R09: 0000000000000000
[  294.104951][T11090] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd7ce8fb80
[  294.104960][T11090] R13: 00007fbfc6011c2d R14: 0000000000047c30 R15: 00007ffd7ce8fbc0
[  294.104983][T11090]  </TASK>
[  294.104988][T11090] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  294.382893][T11599] netlink: 3 bytes leftover after parsing attributes in process `syz.5.2126'.
[  294.393005][T11599] batadv1: entered promiscuous mode
[  294.395366][T11599] batadv1: entered allmulticast mode
[  294.623300][T11604] overlayfs: failed to verify index (index/00fb2100014f379e6d78424e0fbbd101832f8e69bb2333cc286505000000000000, ftype=2000, err=-61)
[  294.629664][T11604] overlayfs: failed index dir cleanup (-61)
[  294.632007][T11604] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  294.715564][T11607] syzkaller1: entered promiscuous mode
[  294.718346][T11607] syzkaller1: entered allmulticast mode
[  294.853238][T11611] loop5: detected capacity change from 0 to 1024
[  294.903009][T11301] hfsplus: b-tree write err: -5, ino 4
[  295.159282][T11619] loop5: detected capacity change from 0 to 1024
[  295.311098][T11619] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.361151][ T9152] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.842764][T11626] loop1: detected capacity change from 0 to 32768
[  295.860811][T11626] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  295.881155][T11626] XFS (loop1): Ending clean mount
[  295.891264][T11626] XFS (loop1): Quotacheck needed: Please wait.
[  295.922909][T11626] XFS (loop1): Quotacheck: Done.
[  295.946338][   T24] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  295.986629][ T5964] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  296.096109][   T24] usb 6-1: Using ep0 maxpacket: 8
[  296.100020][   T24] usb 6-1: config 0 has an invalid interface number: 246 but max is 0
[  296.103280][   T24] usb 6-1: config 0 has no interface number 0
[  296.126904][   T24] usb 6-1: config 0 interface 246 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  296.161542][   T24] usb 6-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  296.170891][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.174030][   T24] usb 6-1: Product: syz
[  296.181805][   T24] usb 6-1: Manufacturer: syz
[  296.183603][   T24] usb 6-1: SerialNumber: syz
[  296.195487][   T24] usb 6-1: config 0 descriptor??
[  296.323101][   T24] msi2500 6-1:0.246: Registered as swradio24
[  296.325053][   T24] msi2500 6-1:0.246: SDR API is still slightly experimental and functionality changes may follow
[  296.352539][T11646] random: crng reseeded on system resumption
[  296.460894][   T24] usb 6-1: USB disconnect, device number 12
[  296.519137][T11651] sctp: [Deprecated]: syz.1.2142 (pid 11651) Use of struct sctp_assoc_value in delayed_ack socket option.
[  296.519137][T11651] Use struct sctp_sack_info instead
[  296.896324][ T5571] usb 2-1: new full-speed USB device number 37 using dummy_hcd
[  297.075045][ T5571] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  297.088554][ T5571] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  297.096800][ T5571] usb 2-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00
[  297.102202][ T5571] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.119890][ T5571] usb 2-1: config 0 descriptor??
[  297.509123][T11661] loop6: detected capacity change from 0 to 512
[  297.554061][T11663] netlink: 256 bytes leftover after parsing attributes in process `syz.6.2147'.
[  297.559055][T11663] netlink: 64 bytes leftover after parsing attributes in process `syz.6.2147'.
[  297.575122][ T5571] chicony 0003:04F2:1421.000E: hidraw0: USB HID v1.01 Device [HID 04f2:1421] on usb-dummy_hcd.1-1/input0
[  297.720585][T11665] loop6: detected capacity change from 0 to 32768
[  297.728149][T11665] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2148 (11665)
[  297.737998][T11665] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  297.741795][T11665] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  297.748616][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/395ef67a-297e-477c-816d-cd80a5b93e5d.tmp-b7:6' failed: Read-only file system
[  297.775779][   T24] usb 2-1: USB disconnect, device number 37
[  297.781875][T11665] BTRFS info (device loop6): enabling ssd optimizations
[  297.790559][T11665] BTRFS info (device loop6): enabling free space tree
[  297.915083][T11090] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  297.917374][   T13] BTRFS info (device loop6): qgroup scan completed (inconsistency flag cleared)
[  297.957412][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/395ef67a-297e-477c-816d-cd80a5b93e5d.tmp-b7:6' failed: Read-only file system
[  298.090124][T11686] netlink: 65039 bytes leftover after parsing attributes in process `syz.5.2150'.
[  298.498744][T11700] loop1: detected capacity change from 0 to 8
[  298.527454][T11700] SQUASHFS error: lzo decompression failed, data probably corrupt
[  298.530446][T11700] SQUASHFS error: Failed to read block 0x91: -5
[  298.532733][T11700] SQUASHFS error: Unable to read metadata cache entry [8f]
[  298.535441][T11700] SQUASHFS error: Unable to read inode 0x7
[  298.727732][T11702] netlink: 'syz.1.2157': attribute type 3 has an invalid length.
[  298.736169][T11702] netlink: 236 bytes leftover after parsing attributes in process `syz.1.2157'.
[  298.764067][T11694] loop6: detected capacity change from 0 to 32768
[  298.779604][T11694] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2153 (11694)
[  298.796754][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/14d642db-7b15-43e4-81e6-4b8fac6a25f8.tmp-b7:6' failed: Read-only file system
[  298.819542][T11694] BTRFS info (device loop6): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  298.823502][T11694] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  299.034497][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/14d642db-7b15-43e4-81e6-4b8fac6a25f8.tmp-b7:6' failed: Read-only file system
[  299.039003][T11694] BTRFS info (device loop6): enabling ssd optimizations
[  299.041686][T11694] BTRFS info (device loop6): enabling free space tree
[  299.044781][T11694] BTRFS info (device loop6): use zstd compression, level 3
[  299.235383][T11090] BTRFS info (device loop6): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  299.252404][T11729] mac80211_hwsim hwsim6 wlan1: entered promiscuous mode
[  299.282179][T11729] macvtap1: entered promiscuous mode
[  299.301150][T11729] mac80211_hwsim hwsim6 wlan1: left promiscuous mode
[  300.013251][T11753] tmpfs: Bad value for 'mpol'
[  301.211069][T11776] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2183'.
[  301.300022][T11780] bridge0: port 3(vxlan0) entered blocking state
[  301.305328][T11780] bridge0: port 3(vxlan0) entered disabled state
[  301.311728][T11780] vxlan0: entered allmulticast mode
[  301.315816][T11780] vxlan0: entered promiscuous mode
[  301.996138][  T795] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  302.158273][  T795] usb 6-1: config 1 has an invalid interface number: 7 but max is 0
[  302.161509][  T795] usb 6-1: config 1 has no interface number 0
[  302.164503][  T795] usb 6-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[  302.168921][  T795] usb 6-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  302.172739][  T795] usb 6-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  302.180667][  T795] usb 6-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  302.185015][  T795] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  302.188241][  T795] usb 6-1: Product: syz
[  302.189823][  T795] usb 6-1: Manufacturer: syz
[  302.191553][  T795] usb 6-1: SerialNumber: syz
[  302.197529][T11792] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  302.412887][T11792] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  302.620961][  T795] usb 6-1: Incompatible driver and firmware versions
[  302.628494][  T795] usb 6-1: USB disconnect, device number 13
[  302.643560][T11799] loop6: detected capacity change from 0 to 32768
[  302.648556][T11799] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2193 (11799)
[  302.657572][T11799] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  302.667300][T11799] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm
[  302.677403][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-uuid/c9fe44da-de57-406a-8241-57ec7d4412cf.tmp-b7:6' failed: Read-only file system
[  302.714197][T11799] BTRFS info (device loop6): enabling ssd optimizations
[  302.718667][T11799] BTRFS info (device loop6): enabling free space tree
[  302.765315][T11090] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  302.989107][T11821] netdevsim netdevsim6: Direct firmware load for .. failed with error -2
[  302.992627][T11821] netdevsim netdevsim6: Falling back to sysfs fallback for: ..
[  303.937412][T11834] syzkaller1: entered promiscuous mode
[  303.939272][T11834] syzkaller1: entered allmulticast mode
[  304.202699][T11842] loop5: detected capacity change from 0 to 2048
[  304.227677][T11842] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  304.243147][T11845] 9pnet: Could not find request transport: tצUunix
[  304.255194][T11849] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  304.260037][T11842] syz.5.2205: attempt to access beyond end of device
[  304.260037][T11842] loop5: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  304.268962][ T6234] udevd[6234]: symlink '../../loop5' '/dev/disk/by-uuid/8d5b9604-d7b7-4ece-ae00-6b765044cdb8.tmp-b7:5' failed: Read-only file system
[  304.277885][T11842] syz.5.2205: attempt to access beyond end of device
[  304.277885][T11842] loop5: rw=0, sector=9437254, nr_sectors = 2 limit=2048
[  304.283510][T11842] NILFS (loop5): I/O error reading meta-data file (ino=6, block-offset=0)
[  304.293964][T11848] loop6: detected capacity change from 0 to 128
[  304.301349][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:6' failed: Read-only file system
[  304.317270][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/8d5b9604-d7b7-4ece-ae00-6b765044cdb8.tmp-b7:5' failed: Read-only file system
[  304.332919][T11848] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  304.356856][T11848] ext4 filesystem being mounted at /97/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  304.360526][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:6' failed: Read-only file system
[  304.401009][T11848] fscrypt: loop6: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  304.413080][T11855] loop1: detected capacity change from 0 to 1024
[  304.440153][T11855] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.449319][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  304.456977][   T33] audit: type=1800 audit(1759223661.077:208): pid=11855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2210" name="file1" dev="loop1" ino=15 res=0 errno=0
[  304.458460][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  304.480511][T11090] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  304.529094][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.612309][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.615360][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.620397][   T33] audit: type=1326 audit(1759223661.217:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.634061][   T33] audit: type=1326 audit(1759223661.217:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.642723][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.645152][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.648353][   T33] audit: type=1326 audit(1759223661.217:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.655424][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.658026][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.660589][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.663020][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.665592][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.668302][   T33] audit: type=1326 audit(1759223661.217:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.676665][   T24] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  304.683441][   T33] audit: type=1326 audit(1759223661.217:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.705144][   T24] hid-generic 0003:0004:0000.000F: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  304.709089][   T33] audit: type=1326 audit(1759223661.217:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.733176][   T33] audit: type=1326 audit(1759223661.247:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.753780][   T33] audit: type=1326 audit(1759223661.247:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.766520][   T33] audit: type=1326 audit(1759223661.297:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11864 comm="syz.1.2212" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1938ec29 code=0x7ffc0000
[  304.818102][T11875] loop6: detected capacity change from 0 to 512
[  304.833848][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  304.860724][T11875] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  304.864004][T11875] EXT4-fs (loop6): orphan cleanup on readonly fs
[  304.886707][T11875] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm syz.6.2217: corrupted inode contents
[  304.892002][T11875] EXT4-fs (loop6): Remounting filesystem read-only
[  304.895906][T11875] EXT4-fs (loop6): 1 truncate cleaned up
[  304.911323][T11301] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  304.914838][T11301] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  304.920677][T11301] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started
[  304.940586][T11882] loop5: detected capacity change from 0 to 256
[  304.940715][T11875] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  304.964548][T11884] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2221'.
[  304.969719][T11882] FAT-fs (loop5): Directory bread(block 64) failed
[  304.978760][T11882] FAT-fs (loop5): Directory bread(block 65) failed
[  304.988937][T11882] FAT-fs (loop5): Directory bread(block 66) failed
[  304.990942][T11882] FAT-fs (loop5): Directory bread(block 67) failed
[  304.995034][T11882] FAT-fs (loop5): Directory bread(block 68) failed
[  305.002107][T11090] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.013629][T11882] FAT-fs (loop5): Directory bread(block 69) failed
[  305.027958][T11882] FAT-fs (loop5): Directory bread(block 70) failed
[  305.030781][T11882] FAT-fs (loop5): Directory bread(block 71) failed
[  305.033037][T11882] FAT-fs (loop5): Directory bread(block 72) failed
[  305.035256][T11882] FAT-fs (loop5): Directory bread(block 73) failed
[  305.074684][T11882] syz.5.2220: attempt to access beyond end of device
[  305.074684][T11882] loop5: rw=2051, sector=1224, nr_sectors = 544 limit=256
[  305.134729][T11891] loop6: detected capacity change from 0 to 256
[  305.165871][T11891] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  306.491205][T11934] loop1: detected capacity change from 0 to 1024
[  306.501534][T11934] hfsplus: Unknown parameter '00000000000000001629'
[  306.928092][T11941] netlink: 204 bytes leftover after parsing attributes in process `syz.5.2244'.
[  306.997056][T11925] loop6: detected capacity change from 0 to 65536
[  307.018563][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2.tmp-b7:6' failed: Read-only file system
[  307.054282][T11925] XFS (loop6): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  307.120430][T11925] XFS (loop6): Ending clean mount
[  307.139823][T11957] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2248'.
[  307.143424][T11957] dummy0: Caught tx_queue_len zero misconfig
[  307.156681][T11090] XFS (loop6): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  307.226289][T11961] loop1: detected capacity change from 0 to 128
[  307.410934][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/1DC8-5927.tmp-b7:1' failed: Read-only file system
[  307.632895][T11969] loop5: detected capacity change from 0 to 16
[  307.638828][T11969] erofs (device loop5): EXPERIMENTAL EROFS subpage compressed block support in use. Use at your own risk!
[  307.643512][T11969] erofs (device loop5): mounted with root inode @ nid 36.
[  307.649183][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/72b14b28-1ccd-4731-be5e-c43bd7b347d4.tmp-b7:5' failed: Read-only file system
[  307.669500][T11970] loop6: detected capacity change from 0 to 128
[  307.837148][T11964] loop1: detected capacity change from 0 to 32768
[  307.852695][T11964] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2252 (11964)
[  307.879424][T11964] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  307.883918][T11964] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  307.989066][T11964] BTRFS info (device loop1): enabling ssd optimizations
[  307.991662][T11964] BTRFS info (device loop1): enabling free space tree
[  308.074088][ T5964] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  308.168534][T11980] loop6: detected capacity change from 0 to 32768
[  308.179143][T11980] JBD2: Ignoring recovery information on journal
[  308.230088][T11980] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  308.486436][   T46] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  308.492479][T11980] OCFS2: ERROR (device loop6): int ocfs2_validate_inode_block(struct super_block *, struct buffer_head *): Invalid dinode #65: signature = 
[  308.498596][T11980] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  308.502484][T11980] OCFS2: File system is now read-only.
[  308.504756][T11980] (syz.6.2259,11980,0):ocfs2_find_entry_id:407 ERROR: status = -30
[  308.570787][T11090] ocfs2: Unmounting device (7,6) on (node local)
[  308.784627][   T46] usb 2-1: Using ep0 maxpacket: 8
[  308.788809][   T46] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  308.793389][   T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  308.798328][   T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  308.803891][   T46] usb 2-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  308.807141][   T46] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.810076][   T46] usb 2-1: Product: syz
[  308.811731][   T46] usb 2-1: Manufacturer: syz
[  308.813349][   T46] usb 2-1: SerialNumber: syz
[  308.817843][   T46] usb 2-1: config 0 descriptor??
[  308.821963][   T46] streamzap 2-1:0.0: streamzap_probe: endpoint Max Packet Size is 0!?!
[  308.922018][T12023] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2268'.
[  309.078882][   T46] usb 2-1: USB disconnect, device number 38
[  309.570823][T12029] loop6: detected capacity change from 0 to 128
[  309.575222][T12029] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  309.581315][T12029] hpfs: filesystem error: improperly stopped
[  309.589634][T12029] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  309.597248][T12029] hpfs: You really don't want any checks? You are crazy...
[  309.606427][T12029] hpfs: hpfs_map_sector(): read error
[  309.608494][T12029] hpfs: code page support is disabled
[  309.611068][T12029] hpfs: hpfs_map_4sectors(): unaligned read
[  309.614762][T12029] hpfs: hpfs_map_4sectors(): unaligned read
[  309.619210][T12029] hpfs: filesystem error: unable to find root dir
[  309.626575][T12029] hpfs: hpfs_map_4sectors(): unaligned read
[  309.631260][T12031] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2273'.
[  309.631903][T12029] hpfs: hpfs_map_sector(): read error
[  309.746736][   T46] usb 6-1: new full-speed USB device number 14 using dummy_hcd
[  309.914802][   T46] usb 6-1: too many endpoints for config 0 interface 0 altsetting 7: 34, using maximum allowed: 30
[  309.919009][   T46] usb 6-1: config 0 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  309.923127][   T46] usb 6-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 34
[  309.934330][   T46] usb 6-1: config 0 interface 0 has no altsetting 0
[  309.937754][   T46] usb 6-1: New USB device found, idVendor=056a, idProduct=0094, bcdDevice= 0.00
[  309.942017][   T46] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.951319][   T46] usb 6-1: config 0 descriptor??
[  310.041264][T12037] loop1: detected capacity change from 0 to 32768
[  310.050266][T12037] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2276 (12037)
[  310.070385][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/395ef67a-297e-477c-816d-cd80a5b93e5d.tmp-b7:1' failed: Read-only file system
[  310.113624][T12037] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  310.118582][T12037] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  310.267639][T12037] BTRFS info (device loop1): enabling ssd optimizations
[  310.274545][T12037] BTRFS info (device loop1): enabling free space tree
[  310.368473][ T5964] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  310.419711][   T46] wacom 0003:056A:0094.0010: Using device in hidraw-only mode
[  310.425142][   T46] wacom 0003:056A:0094.0010: hidraw0: USB HID v0.00 Device [HID 056a:0094] on usb-dummy_hcd.5-1/input0
[  310.650688][   T46] usb 6-1: USB disconnect, device number 14
[  310.804557][T12069] program syz.1.2283 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  311.059494][T12073] delete_channel: no stack
[  311.316451][   T46] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  311.663794][   T46] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  311.668074][   T46] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  311.671542][   T46] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  311.675303][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.686333][T12073] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  311.693284][   T46] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  312.296333][  T795] usb 6-1: new full-speed USB device number 15 using dummy_hcd
[  312.514783][  T795] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  312.519926][  T795] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.531534][  T795] usb 6-1: Product: syz
[  312.534076][  T795] usb 6-1: Manufacturer: syz
[  312.536330][  T795] usb 6-1: SerialNumber: syz
[  312.558320][  T795] usb 6-1: config 0 descriptor??
[  312.840173][  T795] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  314.088512][  T795] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  314.096223][  T795] usb 6-1: USB disconnect, device number 15
[  314.169698][   T24] usb 2-1: USB disconnect, device number 39
[  314.793284][T12111] netlink: 176 bytes leftover after parsing attributes in process `syz.1.2300'.
[  315.503012][T12129] [U] 2
[  315.504987][T12128] [U] 2
[  315.675843][T12135] syzkaller0: entered allmulticast mode
[  315.913802][T12156] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2319'.
[  315.917928][T12156] netlink: 35 bytes leftover after parsing attributes in process `syz.6.2319'.
[  315.920845][T12156] netlink: 'syz.6.2319': attribute type 5 has an invalid length.
[  315.923361][T12156] netlink: 'syz.6.2319': attribute type 6 has an invalid length.
[  315.931452][T12156] netlink: 35 bytes leftover after parsing attributes in process `syz.6.2319'.
[  316.057594][T12159] input: syz1 as /devices/virtual/input/input20
[  316.196061][ T5571] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  316.290550][T12163] netlink: 68 bytes leftover after parsing attributes in process `syz.6.2322'.
[  316.350276][ T5571] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  316.356287][ T5571] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  316.367627][ T5571] usb 6-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00
[  316.371412][ T5571] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.383885][ T5571] usb 6-1: config 0 descriptor??
[  316.663262][T12176] loop1: detected capacity change from 0 to 2048
[  316.682924][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:1' failed: Read-only file system
[  316.694632][T12177] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  316.708944][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:1' failed: Read-only file system
[  316.719739][T12176] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  316.740697][T12176] Remounting filesystem read-only
[  316.783528][ T5964] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  316.795213][ T5571] hid_parser_main: 8 callbacks suppressed
[  316.795225][ T5571] steelseries 0003:1038:12B6.0011: unknown main item tag 0x0
[  316.817051][ T5571] steelseries 0003:1038:12B6.0011: unknown main item tag 0x0
[  316.820098][ T5571] steelseries 0003:1038:12B6.0011: unknown main item tag 0x0
[  316.822753][ T5571] steelseries 0003:1038:12B6.0011: unknown main item tag 0x0
[  316.837807][ T5571] steelseries 0003:1038:12B6.0011: unknown main item tag 0x0
[  316.843759][ T5571] steelseries 0003:1038:12B6.0011: unknown main item tag 0x0
[  316.847449][ T5571] steelseries 0003:1038:12B6.0011: unknown main item tag 0x0
[  316.855458][ T5571] steelseries 0003:1038:12B6.0011: hidraw0: USB HID v0.00 Device [HID 1038:12b6] on usb-dummy_hcd.5-1/input0
[  316.894177][T12181] loop6: detected capacity change from 0 to 256
[  316.899044][T12181] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  316.903957][T12181] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  316.908179][T12181] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  316.928162][T12181] UDF-fs: Scanning with blocksize 512 failed
[  316.937274][T12181] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  316.959495][T12181] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  317.013726][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  317.021611][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  317.202829][  T794] usb 6-1: USB disconnect, device number 16
[  317.286117][   T24] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  317.324097][T12187] loop1: detected capacity change from 0 to 32768
[  317.335855][T12187] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  317.343917][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/c496e05e-540d-4c72-b591-04d79d8b4eeb.tmp-b7:1' failed: Read-only file system
[  317.358929][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/c496e05e-540d-4c72-b591-04d79d8b4eeb.tmp-b7:1' failed: Read-only file system
[  317.377324][T12187] XFS (loop1): Ending clean mount
[  317.383025][T12187] XFS (loop1): Quotacheck needed: Please wait.
[  317.420212][T12187] XFS (loop1): Quotacheck: Done.
[  317.454605][ T5964] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  317.456122][   T24] usb 7-1: Using ep0 maxpacket: 8
[  317.461919][   T24] usb 7-1: config index 0 descriptor too short (expected 30, got 18)
[  317.470739][   T24] usb 7-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  317.473693][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  317.476944][   T24] usb 7-1: Product: syz
[  317.478575][   T24] usb 7-1: Manufacturer: syz
[  317.480506][   T24] usb 7-1: SerialNumber: syz
[  317.484199][   T24] usb 7-1: config 0 descriptor??
[  317.490901][   T24] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  317.497509][   T24] usb 7-1: setting power ON
[  317.499245][   T24] dvb-usb: bulk message failed: -22 (2/0)
[  317.511434][   T24] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  317.515566][   T24] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  317.518972][   T24] usb 7-1: media controller created
[  317.534347][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  317.608103][   T24] usb 7-1: selecting invalid altsetting 6
[  317.610704][   T24] usb 7-1: digital interface selection failed (-22)
[  317.613251][   T24] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  317.636144][   T24] usb 7-1: setting power OFF
[  317.637924][   T24] dvb-usb: bulk message failed: -22 (2/0)
[  317.639662][   T24] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  317.642951][   T24] (NULL device *): no alternate interface
[  317.662296][   T24] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  317.700693][ T5571] usb 7-1: USB disconnect, device number 4
[  317.975204][T12199] loop1: detected capacity change from 0 to 32768
[  317.992366][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/35307472-fd4b-42de-878f-83186a645fa6.tmp-b7:1' failed: Read-only file system
[  317.996968][T12199] syz.1.2335: attempt to access beyond end of device
[  317.996968][T12199] loop1: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  318.009076][T12199] metapage_write_end_io: I/O error
[  318.012517][T12199] ERROR: (device loop1): release_metapage: metapage_write_one() failed
[  318.012517][T12199] 
[  318.017481][T12199] ERROR: (device loop1): remounting filesystem as read-only
[  318.019832][T12199] ERROR: (device loop1): diWrite: ixpxd invalid
[  318.019832][T12199] 
[  318.023301][T12199] ERROR: (device loop1): txCommit: 
[  318.023301][T12199] 
[  318.027871][T12199] blkno = 8ed2c, nblocks = 1
[  318.032133][T12199] ERROR: (device loop1): dbUpdatePMap: blocks are outside the map
[  318.032133][T12199] 
[  318.043798][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/35307472-fd4b-42de-878f-83186a645fa6.tmp-b7:1' failed: Read-only file system
[  318.050914][T12199] UFO tlock:0xffffc90001ff2048
[  318.060449][T12199] ERROR: (device loop1): dtSearch: DT_GETPAGE: dtree page corrupt
[  318.060449][T12199] 
[  318.064242][T12199] jfs_lookup: dtSearch returned -5
[  318.081884][  T117] blkno = 8ed2c, nblocks = 4
[  318.083635][  T117] ERROR: (device loop1): dbUpdatePMap: blocks are outside the map
[  318.083635][  T117] 
[  318.098702][ T5964] syz-executor: attempt to access beyond end of device
[  318.098702][ T5964] loop1: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  318.115680][ T5964] metapage_write_end_io: I/O error
[  318.125272][ T5964] JFS: metapage_get_blocks failed
[  318.147137][ T5964] JFS: metapage_get_blocks failed
[  318.149043][ T5964] JFS: metapage_get_blocks failed
[  318.150923][ T5964] JFS: metapage_get_blocks failed
[  318.255681][T12208] loop5: detected capacity change from 0 to 512
[  318.625596][T12214] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2339'.
[  318.787550][T12218] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2344'.
[  318.788998][T12216] lo: Caught tx_queue_len zero misconfig
[  320.004722][ T5571] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  320.157666][ T5571] usb 6-1: Using ep0 maxpacket: 16
[  320.162400][ T5571] usb 6-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[  320.165906][ T5571] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.171261][ T5571] usb 6-1: config 0 descriptor??
[  320.175855][ T5571] gspca_main: sonixj-2.14.0 probing 0471:0327
[  320.386364][ T6025] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  320.544251][ T6025] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  320.548916][ T6025] usb 7-1: config 0 has no interfaces?
[  320.555703][ T6025] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  320.560997][ T6025] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.564306][ T6025] usb 7-1: Product: syz
[  320.566572][ T6025] usb 7-1: Manufacturer: syz
[  320.568973][ T6025] usb 7-1: SerialNumber: syz
[  320.574106][ T6025] usb 7-1: config 0 descriptor??
[  320.734120][T12279] loop1: detected capacity change from 0 to 32768
[  320.742098][T12279] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2373 (12279)
[  320.759151][T12279] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  320.763115][T12279] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  320.774236][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/a6a605fc-d5f1-4e66-8595-3726e2b761d6.tmp-b7:1' failed: Read-only file system
[  320.788422][T12279] BTRFS info (device loop1): enabling ssd optimizations
[  320.791188][T12279] BTRFS info (device loop1): enabling free space tree
[  320.940492][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/a6a605fc-d5f1-4e66-8595-3726e2b761d6.tmp-b7:1' failed: Read-only file system
[  321.309881][  T795] usb 7-1: USB disconnect, device number 5
[  321.368625][T12299] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2374'.
[  321.373244][T12299] openvswitch: netlink: Message has 12 unknown bytes.
[  321.383953][ T5571] gspca_sonixj: reg_w1 err -71
[  321.416381][ T5571] sonixj 6-1:0.0: probe with driver sonixj failed with error -71
[  321.427023][ T5571] usb 6-1: USB disconnect, device number 17
[  321.460377][   T33] kauditd_printk_skb: 8 callbacks suppressed
[  321.460391][   T33] audit: type=1326 audit(1759223678.077:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.6.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5f8ec29 code=0x7ffc0000
[  321.472640][   T33] audit: type=1326 audit(1759223678.077:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.6.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5f8ec29 code=0x7ffc0000
[  321.482840][   T33] audit: type=1326 audit(1759223678.077:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.6.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7fbfc5f8ec29 code=0x7ffc0000
[  321.493138][   T33] audit: type=1326 audit(1759223678.077:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.6.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5f8ec29 code=0x7ffc0000
[  321.503380][   T33] audit: type=1326 audit(1759223678.077:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.6.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5f8ec29 code=0x7ffc0000
[  321.768822][ T5964] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  321.774124][T12311] loop6: detected capacity change from 0 to 1024
[  321.778649][T12311] EXT4-fs: Ignoring removed bh option
[  321.780782][T12311] EXT4-fs: inline encryption not supported
[  321.800152][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkal\xff\xff\xff\xff\xff\xff\xff\x7f.tmp-b7:6' failed: Read-only file system
[  321.808599][T12311] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  321.814435][T12311] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  321.821589][T12311] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 2: comm syz.6.2381: lblock 2 mapped to illegal pblock 2 (length 1)
[  321.827579][T12311] Quota error (device loop6): qtree_write_dquot: dquota write failed
[  321.830789][T12311] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 48: comm syz.6.2381: lblock 0 mapped to illegal pblock 48 (length 1)
[  321.841304][T12311] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  321.845834][T12311] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.2381: Failed to acquire dquot type 0
[  321.851993][T12311] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6305: Corrupt filesystem
[  321.855857][T12311] EXT4-fs error (device loop6): ext4_evict_inode:254: inode #11: comm syz.6.2381: mark_inode_dirty error
[  321.860496][T12311] EXT4-fs warning (device loop6): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  321.864347][T12311] EXT4-fs (loop6): 1 orphan inode deleted
[  321.867625][ T1092] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 1: comm kworker/u9:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  321.873129][ T1092] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  321.878016][T12311] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.883274][ T1092] EXT4-fs error (device loop6): ext4_release_dquot:6981: comm kworker/u9:5: Failed to release dquot type 0
[  321.898660][T12311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.902613][T12311] EXT4-fs error (device loop6): __ext4_get_inode_loc:4832: comm syz.6.2381: Invalid inode table block 1 in block_group 0
[  321.907449][T12311] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6305: Corrupt filesystem
[  321.911140][T12311] EXT4-fs error (device loop6): ext4_quota_off:7229: inode #3: comm syz.6.2381: mark_inode_dirty error
[  321.977384][T12315] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2382'.
[  322.721501][T12330] loop1: detected capacity change from 0 to 1024
[  322.741480][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  322.747334][T12330] EXT4-fs: Ignoring removed bh option
[  322.769648][T12330] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.853486][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.391997][T12351] loop6: detected capacity change from 0 to 16
[  323.404523][T12351] erofs (device loop6): mounted with root inode @ nid 36.
[  323.407964][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/72b14b28-1ccd-4731-be5e-c43bd7b347d4.tmp-b7:6' failed: Read-only file system
[  323.423388][T12351] syz.6.2396: attempt to access beyond end of device
[  323.423388][T12351] loop6: rw=0, sector=0, nr_sectors = 257 limit=16
[  323.431325][T12351] erofs (device loop6): read error -5 @ 0 of nid 36
[  323.559706][T12337] loop5: detected capacity change from 0 to 131072
[  323.586468][T12337] F2FS-fs (loop5): Skip to start discard thread for readonly image
[  323.641738][T12337] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  323.646265][T12337] F2FS-fs (loop5): Mounted with checkpoint version = 1b41e955
[  323.667846][T12337] F2FS-fs (loop5): Inconsistent error blkaddr:5633, sit bitmap:0
[  323.671568][T12337] CPU: 1 UID: 0 PID: 12337 Comm: syz.5.2389 Not tainted syzkaller #0 PREEMPT(full) 
[  323.671588][T12337] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  323.671605][T12337] Call Trace:
[  323.671613][T12337]  <TASK>
[  323.671621][T12337]  dump_stack_lvl+0x189/0x250
[  323.671646][T12337]  ? __pfx_dump_stack_lvl+0x10/0x10
[  323.671664][T12337]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  323.671687][T12337]  ? filemap_add_folio+0x35f/0x540
[  323.671705][T12337]  ? __pfx_f2fs_lookup_read_extent_cache_block+0x10/0x10
[  323.671726][T12337]  __f2fs_is_valid_blkaddr+0xd84/0x14f0
[  323.671750][T12337]  f2fs_get_read_data_folio+0x3d2/0x7d0
[  323.671768][T12337]  ? __pfx_f2fs_get_read_data_folio+0x10/0x10
[  323.671815][T12337]  ? __filemap_get_folio+0x9a6/0xaf0
[  323.671836][T12337]  ? f2fs_hash_filename+0x821/0xad0
[  323.671856][T12337]  f2fs_find_data_folio+0x195/0x3c0
[  323.671873][T12337]  __f2fs_find_entry+0x7a7/0xef0
[  323.671913][T12337]  ? __pfx___f2fs_find_entry+0x10/0x10
[  323.671936][T12337]  f2fs_lookup+0x264/0x9f0
[  323.671954][T12337]  ? __pfx_f2fs_lookup+0x10/0x10
[  323.671969][T12337]  ? __pfx_d_alloc_parallel+0x10/0x10
[  323.672002][T12337]  path_openat+0x1101/0x3830
[  323.672042][T12337]  ? __pfx_path_openat+0x10/0x10
[  323.672069][T12337]  do_filp_open+0x1fa/0x410
[  323.672082][T12337]  ? __lock_acquire+0xab9/0xd20
[  323.672101][T12337]  ? __pfx_do_filp_open+0x10/0x10
[  323.672131][T12337]  ? _raw_spin_unlock+0x28/0x50
[  323.672146][T12337]  ? alloc_fd+0x64c/0x6c0
[  323.672172][T12337]  do_sys_openat2+0x121/0x1c0
[  323.672195][T12337]  ? __pfx_do_sys_openat2+0x10/0x10
[  323.672217][T12337]  ? rcu_is_watching+0x15/0xb0
[  323.672235][T12337]  __x64_sys_openat+0x138/0x170
[  323.672259][T12337]  do_syscall_64+0xfa/0xfa0
[  323.672275][T12337]  ? lockdep_hardirqs_on+0x9c/0x150
[  323.672291][T12337]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.672305][T12337]  ? exc_page_fault+0xab/0x100
[  323.672323][T12337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.672337][T12337] RIP: 0033:0x7f529818ec29
[  323.672350][T12337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.672362][T12337] RSP: 002b:00007f5298ffa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  323.672378][T12337] RAX: ffffffffffffffda RBX: 00007f52983d5fa0 RCX: 00007f529818ec29
[  323.672389][T12337] RDX: 0000000000000080 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  323.672399][T12337] RBP: 00007f5298211e41 R08: 0000000000000000 R09: 0000000000000000
[  323.672408][T12337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  323.672418][T12337] R13: 00007f52983d6038 R14: 00007f52983d5fa0 R15: 00007fff49f12c98
[  323.672441][T12337]  </TASK>
[  323.795762][T12359] F2FS-fs (loop5): Inconsistent error blkaddr:5633, sit bitmap:0
[  323.799581][T12359] CPU: 0 UID: 0 PID: 12359 Comm: syz.5.2389 Not tainted syzkaller #0 PREEMPT(full) 
[  323.799593][T12359] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  323.799606][T12359] Call Trace:
[  323.799611][T12359]  <TASK>
[  323.799615][T12359]  dump_stack_lvl+0x189/0x250
[  323.799630][T12359]  ? __pfx_dump_stack_lvl+0x10/0x10
[  323.799640][T12359]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  323.799655][T12359]  ? __filemap_get_folio+0x79f/0xaf0
[  323.799666][T12359]  ? __pfx_f2fs_lookup_read_extent_cache_block+0x10/0x10
[  323.799679][T12359]  __f2fs_is_valid_blkaddr+0xd84/0x14f0
[  323.799691][T12359]  f2fs_get_read_data_folio+0x3d2/0x7d0
[  323.799699][T12359]  ? __pfx_folio_mark_accessed+0x10/0x10
[  323.799713][T12359]  ? __pfx_f2fs_get_read_data_folio+0x10/0x10
[  323.799724][T12359]  ? __filemap_get_folio+0x79f/0xaf0
[  323.799733][T12359]  ? validate_chain+0x897/0x2140
[  323.799743][T12359]  f2fs_find_data_folio+0x195/0x3c0
[  323.799752][T12359]  f2fs_readdir+0x4b0/0xa60
[  323.799772][T12359]  ? __pfx_f2fs_readdir+0x10/0x10
[  323.799815][T12359]  ? iterate_dir+0x292/0x570
[  323.799830][T12359]  ? down_read_killable+0x1d1/0x350
[  323.799844][T12359]  iterate_dir+0x399/0x570
[  323.799854][T12359]  ? 0xffffffff81000000
[  323.799862][T12359]  __se_sys_getdents+0xe4/0x250
[  323.799871][T12359]  ? __pfx___se_sys_getdents+0x10/0x10
[  323.799879][T12359]  ? __pfx_filldir+0x10/0x10
[  323.799886][T12359]  ? 0xffffffff81000000
[  323.799895][T12359]  ? do_syscall_64+0xbe/0xfa0
[  323.799906][T12359]  do_syscall_64+0xfa/0xfa0
[  323.799914][T12359]  ? lockdep_hardirqs_on+0x9c/0x150
[  323.799923][T12359]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.799930][T12359]  ? exc_page_fault+0xab/0x100
[  323.799940][T12359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.799947][T12359] RIP: 0033:0x7f529818ec29
[  323.799954][T12359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.799961][T12359] RSP: 002b:00007f5298fd9038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  323.799969][T12359] RAX: ffffffffffffffda RBX: 00007f52983d6090 RCX: 00007f529818ec29
[  323.799975][T12359] RDX: 00000000000000bb RSI: ffffffff81000000 RDI: 0000000000000005
[  323.799980][T12359] RBP: 00007f5298211e41 R08: 0000000000000000 R09: 0000000000000000
[  323.799984][T12359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  323.799989][T12359] R13: 00007f52983d6128 R14: 00007f52983d6090 R15: 00007fff49f12c98
[  323.799999][T12359]  ? 0xffffffff81000000
[  323.800008][T12359]  </TASK>
[  323.813001][ T6234] udevd[6234]: symlink '../../loop5' '/dev/disk/by-uuid/2a44064a-4a99-42f7-8899-4cbaeb781c24.tmp-b7:5' failed: Read-only file system
[  323.944340][ T6234] udevd[6234]: symlink '../../loop5' '/dev/disk/by-uuid/2a44064a-4a99-42f7-8899-4cbaeb781c24.tmp-b7:5' failed: Read-only file system
[  324.163460][T12373] loop6: detected capacity change from 0 to 2048
[  324.188253][T12373] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  324.191284][T12373] UDF-fs: Scanning with blocksize 512 failed
[  324.228482][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/LinuxUDF.tmp-b7:6' failed: Read-only file system
[  324.234598][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/1234567812345678.tmp-b7:6' failed: Read-only file system
[  324.235424][T12373] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  324.253235][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/LinuxUDF.tmp-b7:6' failed: Read-only file system
[  324.260099][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/1234567812345678.tmp-b7:6' failed: Read-only file system
[  324.585171][T12383] cgroup: name respecified
[  324.646086][   T46] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[  324.799422][   T46] usb 7-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  324.802507][   T46] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  324.811533][   T46] usb 7-1: Product: syz
[  324.813010][   T46] usb 7-1: Manufacturer: syz
[  324.814567][   T46] usb 7-1: SerialNumber: syz
[  324.819203][   T46] usb 7-1: config 0 descriptor??
[  325.231996][   T46] airspy 7-1:0.0: Board ID: 00
[  325.234053][   T46] airspy 7-1:0.0: Firmware version: 
[  325.854689][T12403] loop1: detected capacity change from 0 to 256
[  325.877894][T12403] FAT-fs (loop1): Directory bread(block 64) failed
[  325.881363][T12403] FAT-fs (loop1): Directory bread(block 65) failed
[  325.884372][T12403] FAT-fs (loop1): Directory bread(block 66) failed
[  325.889468][T12403] FAT-fs (loop1): Directory bread(block 67) failed
[  325.892254][T12403] FAT-fs (loop1): Directory bread(block 68) failed
[  325.895214][T12403] FAT-fs (loop1): Directory bread(block 69) failed
[  325.898567][T12403] FAT-fs (loop1): Directory bread(block 70) failed
[  325.900686][T12403] FAT-fs (loop1): Directory bread(block 71) failed
[  325.903246][T12403] FAT-fs (loop1): Directory bread(block 72) failed
[  325.905504][T12403] FAT-fs (loop1): Directory bread(block 73) failed
[  326.029635][T12407] loop1: detected capacity change from 0 to 1024
[  326.060393][T12407] hfsplus: bad catalog entry type
[  326.061805][ T6234] udevd[6234]: symlink '../../loop1' '/dev/disk/by-label/untitled.tmp-b7:1' failed: Read-only file system
[  326.097647][ T6470] hfsplus: b-tree write err: -5, ino 4
[  326.253811][   T46] airspy 7-1:0.0: usb_control_msg() failed -71 request 10
[  326.262840][T12411] loop1: detected capacity change from 0 to 512
[  326.265119][   T46] airspy 7-1:0.0: Registered as swradio24
[  326.276292][   T46] airspy 7-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  326.286759][   T46] usb 7-1: USB disconnect, device number 6
[  326.353813][T12411] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.383254][T12411] ext4 filesystem being mounted at /781/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.187766][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.277783][T12430] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2427'.
[  328.281568][T12430] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2427'.
[  328.517000][T12427] loop5: detected capacity change from 0 to 32768
[  328.523030][T12427] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2426 (12427)
[  328.561790][ T6234] udevd[6234]: symlink '../../loop5' '/dev/disk/by-uuid/a6a605fc-d5f1-4e66-8595-3726e2b761d6.tmp-b7:5' failed: Read-only file system
[  328.567570][T12427] BTRFS info (device loop5): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  328.567629][T12427] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  328.712870][T12427] BTRFS info (device loop5): enabling ssd optimizations
[  328.712893][T12427] BTRFS info (device loop5): enabling free space tree
[  328.757086][T12464] loop1: detected capacity change from 0 to 1024
[  328.781395][T12464] hfsplus: invalid btree flag
[  328.783715][T12464] hfsplus: failed to load catalog file
[  328.962776][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/a6a605fc-d5f1-4e66-8595-3726e2b761d6.tmp-b7:5' failed: Read-only file system
[  329.684706][T12481] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode broadcast(3)
[  330.015405][ T9152] BTRFS info (device loop5): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  330.106421][  T795] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  330.201127][T12493] loop1: detected capacity change from 0 to 16
[  330.204884][T12493] erofs (device loop1): dirblkbits 5 isn't supported
[  330.214310][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/dc080000-0000-0000-00db-a5c46e0e7dba.tmp-b7:1' failed: Read-only file system
[  330.268233][  T795] usb 7-1: config 0 has an invalid interface number: 2 but max is 0
[  330.273013][  T795] usb 7-1: config 0 has no interface number 0
[  330.274934][  T795] usb 7-1: config 0 interface 2 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  330.283154][  T795] usb 7-1: config 0 interface 2 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  330.293308][  T795] usb 7-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[  330.298364][  T795] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.314447][  T795] usb 7-1: config 0 descriptor??
[  330.323898][T12499] loop1: detected capacity change from 0 to 512
[  330.337943][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  330.344507][T12499] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  330.349455][T12499] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  330.352951][T12499] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.2450: Corrupt directory, running e2fsck is recommended
[  330.359009][T12499] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  330.362328][T12499] EXT4-fs error (device loop1): ext4_iget_extra_inode:5075: inode #15: comm syz.1.2450: corrupted in-inode xattr: invalid ea_ino
[  330.368311][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  330.368462][T12499] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.2450: couldn't read orphan inode 15 (err -117)
[  330.380023][T12499] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.407902][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.655852][T12498] loop5: detected capacity change from 0 to 40427
[  330.659809][T12498] F2FS-fs: heap/no_heap options were deprecated
[  330.679961][T12498] F2FS-fs (loop5): build fault injection rate: 19
[  330.682000][T12498] F2FS-fs (loop5): build fault injection type: 0x3bfe8c
[  330.688212][T12498] F2FS-fs (loop5): invalid crc value
[  330.742655][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:5' failed: Read-only file system
[  330.754844][T12498] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  330.760539][  T795] uclogic 0003:28BD:0905.0012: Interface probing failed: -22
[  330.760961][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:5' failed: Read-only file system
[  330.763500][  T795] uclogic 0003:28BD:0905.0012: interface is invalid, ignoring
[  330.801441][T12498] F2FS-fs (loop5): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x20a/0x3f0
[  330.819281][T12498] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  331.087038][T12498] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  331.119633][   T46] usb 7-1: USB disconnect, device number 7
[  331.194892][T12498] F2FS-fs (loop5): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  331.216488][T12498] F2FS-fs (loop5): inconsistent node block, node_type:1, nid:12, node_footer[nid:12,ino:3,ofs:521732,cpver:0,blkaddr:0]
[  331.252782][ T9152] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_folio of f2fs_grab_meta_folio+0x6a/0x1d0
[  331.938208][T12544] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  331.951258][T12544] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  332.544828][T12557] loop6: detected capacity change from 0 to 4096
[  332.601175][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  332.616370][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:6' failed: Read-only file system
[  332.829882][T12566] netlink: 'syz.6.2474': attribute type 83 has an invalid length.
[  332.922459][   T46] IPVS: starting estimator thread 0...
[  333.007211][T12577] loop6: detected capacity change from 0 to 1024
[  333.013198][T12577] EXT4-fs: Ignoring removed nobh option
[  333.019076][ T5881] udevd[5881]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  333.023648][T12577] EXT4-fs: Ignoring removed bh option
[  333.034093][T12573] IPVS: using max 64 ests per chain, 153600 per kthread
[  333.050435][T12577] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.099111][T11090] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.166249][  T794] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  333.242994][T12590] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2485'.
[  333.317154][  T794] usb 2-1: Using ep0 maxpacket: 16
[  333.966242][  T794] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  333.969636][  T794] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  333.973641][  T794] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  334.217288][  T794] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  334.220710][  T794] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  334.221848][T12600] loop6: detected capacity change from 0 to 1024
[  334.224165][  T794] usb 2-1: Product: syz
[  334.224182][  T794] usb 2-1: Manufacturer: syz
[  334.224195][  T794] usb 2-1: SerialNumber: syz
[  334.246264][T12600] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  334.264695][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-label/untitled.tmp-b7:6' failed: Read-only file system
[  334.270906][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-uuid/4da50ae9-7d30-3220-a998-cec1f675fd4a.tmp-b7:6' failed: Read-only file system
[  334.298452][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-label/untitled.tmp-b7:6' failed: Read-only file system
[  334.315677][ T6234] udevd[6234]: symlink '../../loop6' '/dev/disk/by-uuid/4da50ae9-7d30-3220-a998-cec1f675fd4a.tmp-b7:6' failed: Read-only file system
[  334.331662][T12602] loop6: detected capacity change from 0 to 256
[  334.347758][T12602] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  334.365458][T12602] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  334.380183][T12602] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  334.392753][T12602] exFAT-fs (loop6): failed to load alloc-bitmap
[  334.396396][T12602] exFAT-fs (loop6): failed to recognize exfat type
[  334.635341][  T794] usb 2-1: 0:2 : does not exist
[  334.830005][   T12] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  334.928099][   T12] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.018518][   T12] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.083592][   T12] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.140797][ T9060] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  335.152850][ T9060] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  335.157652][ T9060] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  335.170565][ T9060] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  335.175266][ T9060] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  335.246889][  T794] usb 2-1: 1:0: failed to get current value for ch 0 (-22)
[  335.247184][ T5571] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  335.286358][  T794] usb 2-1: USB disconnect, device number 40
[  335.304849][   T12] bridge_slave_1: left allmulticast mode
[  335.310495][ T5881] udevd[5881]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  335.315262][   T12] bridge_slave_1: left promiscuous mode
[  335.320603][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.325067][   T12] bridge_slave_0: left allmulticast mode
[  335.329829][   T12] bridge_slave_0: left promiscuous mode
[  335.333950][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.416043][ T5571] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  335.419301][ T5571] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  335.423651][ T5571] usb 6-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[  335.428268][ T5571] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.445671][ T5571] usb 6-1: config 0 descriptor??
[  335.685198][ T5571] usb 6-1: USB disconnect, device number 18
[  335.717957][ T5881] udevd[5881]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  335.859067][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  335.864555][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  335.870102][   T12] bond0 (unregistering): Released all slaves
[  336.279448][T12623] chnl_net:caif_netlink_parms(): no params data found
[  336.371780][   T12] hsr_slave_0: left promiscuous mode
[  336.374055][   T12] hsr_slave_1: left promiscuous mode
[  336.377657][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  336.379999][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  336.382806][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  336.385741][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  336.413115][   T12] veth1_macvtap: left promiscuous mode
[  336.414868][   T12] veth0_macvtap: left promiscuous mode
[  336.417712][   T12] veth1_vlan: left promiscuous mode
[  336.419511][   T12] veth0_vlan: left promiscuous mode
[  336.663697][T12658] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  336.667411][T12658] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  336.976214][   T46] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  337.157833][   T46] usb 2-1: unable to get BOS descriptor or descriptor too short
[  337.161481][   T46] usb 2-1: config 7 has an invalid interface number: 112 but max is 0
[  337.164080][   T46] usb 2-1: config 7 has no interface number 0
[  337.180677][   T46] usb 2-1: config 7 interface 112 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 1024
[  337.184612][   T46] usb 2-1: config 7 interface 112 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 1023
[  337.256144][ T5966] Bluetooth: hci1: command tx timeout
[  337.280061][   T46] usb 2-1: New USB device found, idVendor=054c, idProduct=02e1, bcdDevice=d0.57
[  337.286377][   T46] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.304432][   T46] usb 2-1: Product: syz
[  337.305772][   T46] usb 2-1: Manufacturer: syz
[  337.307690][   T46] usb 2-1: SerialNumber: syz
[  337.324402][T12656] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  337.337011][T12656] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  337.439320][   T12] team0 (unregistering): Port device team_slave_1 removed
[  337.489923][   T12] team0 (unregistering): Port device team_slave_0 removed
[  337.558620][   T46] pn533_usb 2-1:7.112: NFC: Could not find bulk-in or bulk-out endpoint
[  337.588160][   T46] usb 2-1: USB disconnect, device number 41
[  338.125643][T12623] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.131583][T12623] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.134224][T12623] bridge_slave_0: entered allmulticast mode
[  338.141067][T12623] bridge_slave_0: entered promiscuous mode
[  338.183641][T12623] bridge0: port 2(bridge_slave_1) entered blocking state
[  338.202618][T12623] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.209757][T12623] bridge_slave_1: entered allmulticast mode
[  338.228274][T12623] bridge_slave_1: entered promiscuous mode
[  338.298267][T12675] loop1: detected capacity change from 0 to 2048
[  338.321555][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/LinuxUDF.tmp-b7:1' failed: Read-only file system
[  338.330330][T12675] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  338.334558][T12623] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  338.340357][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/1234567812345678.tmp-b7:1' failed: Read-only file system
[  338.357834][T12623] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  338.390599][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/LinuxUDF.tmp-b7:1' failed: Read-only file system
[  338.395882][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/1234567812345678.tmp-b7:1' failed: Read-only file system
[  338.469724][T12623] team0: Port device team_slave_0 added
[  338.489350][T12623] team0: Port device team_slave_1 added
[  338.563483][T12684] loop5: detected capacity change from 0 to 8
[  338.571567][T12684] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  338.601001][T12684] cramfs: Error -5 while decompressing!
[  338.603490][T12684] cramfs: ffffffff99e0b928(26)->ffff888037147000(4096)
[  338.626531][T12684] cramfs: Error -3 while decompressing!
[  338.632078][T12684] cramfs: ffffffff99e0b942(26)->ffff888037146000(4096)
[  338.634796][T12684] cramfs: Error -3 while decompressing!
[  338.638569][T12684] cramfs: ffffffff99e0b95c(16)->ffff888037145000(4096)
[  338.641513][T12684] cramfs: Error -5 while decompressing!
[  338.643759][T12684] cramfs: ffffffff99e0b928(26)->ffff888037147000(4096)
[  338.664356][T12623] batman_adv: batadv0: Adding interface: batadv_slave_0
[  338.667664][T12623] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  338.683611][T12623] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  338.697232][T12623] batman_adv: batadv0: Adding interface: batadv_slave_1
[  338.702626][T12623] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  338.734551][T12623] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  338.784185][   T12] IPVS: stop unused estimator thread 0...
[  338.868119][T12623] hsr_slave_0: entered promiscuous mode
[  338.874757][T12623] hsr_slave_1: entered promiscuous mode
[  338.896457][T12623] debugfs: 'hsr0' already exists in 'hsr'
[  338.898705][T12623] Cannot create hsr debugfs directory
[  339.247736][T12623] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  339.254542][T12623] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  339.264260][T12623] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  339.280303][T12623] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  339.336860][ T5966] Bluetooth: hci1: command tx timeout
[  339.427598][T12623] 8021q: adding VLAN 0 to HW filter on device bond0
[  339.447735][T12623] 8021q: adding VLAN 0 to HW filter on device team0
[  339.500480][ T6463] bridge0: port 1(bridge_slave_0) entered blocking state
[  339.503444][ T6463] bridge0: port 1(bridge_slave_0) entered forwarding state
[  339.516871][ T6463] bridge0: port 2(bridge_slave_1) entered blocking state
[  339.520342][ T6463] bridge0: port 2(bridge_slave_1) entered forwarding state
[  339.886697][T12725] loop5: detected capacity change from 0 to 1024
[  339.904237][T12725] hfsplus: found bad thread record in catalog
[  339.910960][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:5' failed: Read-only file system
[  339.936508][   T69] hfsplus: b-tree write err: -5, ino 4
[  340.054841][T12623] 8021q: adding VLAN 0 to HW filter on device batadv0
[  340.262218][T12623] veth0_vlan: entered promiscuous mode
[  340.292780][T12623] veth1_vlan: entered promiscuous mode
[  340.333522][T12623] veth0_macvtap: entered promiscuous mode
[  340.339792][T12623] veth1_macvtap: entered promiscuous mode
[  340.347013][T12748] loop1: detected capacity change from 0 to 4096
[  340.372774][T12623] batman_adv: batadv0: Interface activated: batadv_slave_0
[  340.376652][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  340.387950][T12623] batman_adv: batadv0: Interface activated: batadv_slave_1
[  340.395530][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:1' failed: Read-only file system
[  340.400436][ T5973] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  340.407084][    T9] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  340.415474][ T5973] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  340.423340][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system
[  340.428051][ T5973] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  340.432222][ T5973] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  340.436849][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:1' failed: Read-only file system
[  340.569466][    T9] usb 6-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  340.571297][T12751] syzkaller1: entered promiscuous mode
[  340.572873][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.575579][T12751] syzkaller1: entered allmulticast mode
[  340.583040][    T9] usb 6-1: config 0 descriptor??
[  340.592550][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  340.595740][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  340.600120][    T9] gspca_main: cpia1-2.14.0 probing 0813:0001
[  340.662836][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  340.665877][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  340.828144][T12758] ALSA: mixer_oss: invalid OSS volume ''
[  341.166700][    T9] cpia1 6-1:0.0: unexpected state after lo power cmd: 00
[  341.375410][T12766] loop7: detected capacity change from 0 to 32768
[  341.402737][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:7' failed: Read-only file system
[  341.404327][T12766] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  341.407319][ T5966] Bluetooth: hci1: command tx timeout
[  341.435414][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:7' failed: Read-only file system
[  341.553725][T12623] ocfs2: Unmounting device (7,7) on (node local)
[  341.569830][    T9] gspca_cpia1: usb_control_msg 02, error -71
[  341.578867][    T9] cpia1 6-1:0.0: only firmware version 1 is supported (got: 0)
[  341.593528][    T9] usb 6-1: USB disconnect, device number 19
[  341.882444][T12784] pimreg: entered allmulticast mode
[  341.893405][T12784] dvmrp8: entered allmulticast mode
[  341.898862][T12784] pimreg: left allmulticast mode
[  341.900681][T12784] dvmrp8: left allmulticast mode
[  342.143161][T12794] loop7: detected capacity change from 0 to 256
[  342.710116][T12802] loop7: detected capacity change from 0 to 32768
[  342.713931][T12802] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.2553 (12802)
[  342.724879][T12802] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  342.734078][T12802] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[  342.745906][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-uuid/c9fe44da-de57-406a-8241-57ec7d4412cf.tmp-b7:7' failed: Read-only file system
[  342.779623][T12802] BTRFS info (device loop7): setting nodatasum
[  342.782267][T12802] BTRFS info (device loop7): enabling ssd optimizations
[  342.785575][T12802] BTRFS info (device loop7): disabling tree log
[  342.787987][T12802] BTRFS info (device loop7): enabling free space tree
[  342.790833][T12802] BTRFS info (device loop7): enabling auto defrag
[  342.872216][   T24] usb 2-1: new full-speed USB device number 42 using dummy_hcd
[  342.876980][T12623] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  342.999299][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-uuid/c9fe44da-de57-406a-8241-57ec7d4412cf.tmp-b7:7' failed: Read-only file system
[  343.071279][   T24] usb 2-1: not running at top speed; connect to a high speed hub
[  343.094788][   T24] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  343.097916][   T24] usb 2-1: config 1 has no interface number 1
[  343.099890][   T24] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  343.117750][   T24] usb 2-1: string descriptor 0 read error: -22
[  343.119821][   T24] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  343.122731][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.143855][   T24] usb 2-1: 2:1 : no UAC_FORMAT_TYPE desc
[  343.484075][   T24] usb 2-1: USB disconnect, device number 42
[  343.500750][ T5966] Bluetooth: hci1: command tx timeout
[  343.875605][T12861] netlink: 'syz.7.2572': attribute type 1 has an invalid length.
[  343.885136][T12861] netlink: 'syz.7.2572': attribute type 1 has an invalid length.
[  344.071030][T12873] netlink: 'syz.7.2578': attribute type 1 has an invalid length.
[  344.380265][T12883] loop5: detected capacity change from 0 to 2048
[  344.390362][T12883] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  344.396748][T12883] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  344.400241][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-label/LinuxUDF.tmp-b7:5' failed: Read-only file system
[  344.402374][T12883] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  344.656464][T12895] loop5: detected capacity change from 0 to 512
[  344.671129][T12895] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  344.675648][T12895] EXT4-fs (loop5): 1 truncate cleaned up
[  344.681279][T12895] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.691604][T12895] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  344.713702][ T9152] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.080389][T12913] loop7: detected capacity change from 0 to 4096
[  345.091126][T12913] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512).
[  345.102140][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system
[  345.108794][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-uuid/68CE0ED73BAA5F78.tmp-b7:7' failed: Read-only file system
[  345.125606][T12913] ntfs3(loop7): Failed to initialize $Extend/$Reparse.
[  345.156174][    T9] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  345.306199][    T9] usb 6-1: Using ep0 maxpacket: 8
[  345.311181][    T9] usb 6-1: unable to get BOS descriptor or descriptor too short
[  345.316531][    T9] usb 6-1: config 5 has an invalid interface number: 215 but max is 0
[  345.319885][    T9] usb 6-1: config 5 has no interface number 0
[  345.322508][    T9] usb 6-1: config 5 interface 215 has no altsetting 0
[  345.332229][    T9] usb 6-1: New USB device found, idVendor=1163, idProduct=0100, bcdDevice=dc.ba
[  345.336188][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  345.339400][    T9] usb 6-1: Product: syz
[  345.341112][    T9] usb 6-1: Manufacturer: syz
[  345.342997][    T9] usb 6-1: SerialNumber: syz
[  345.476180][ T5998] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[  345.559219][    T9] cypress_m8 6-1:5.215: DeLorme Earthmate USB converter detected
[  345.569072][    T9] usb 6-1: DeLorme Earthmate USB converter now attached to ttyUSB0
[  345.575355][    T9] usb 6-1: USB disconnect, device number 20
[  345.584172][    T9] earthmate ttyUSB0: DeLorme Earthmate USB converter now disconnected from ttyUSB0
[  345.588378][    T9] cypress_m8 6-1:5.215: device disconnected
[  345.629960][ T5998] usb 8-1: unable to get BOS descriptor or descriptor too short
[  345.633591][ T5998] usb 8-1: not running at top speed; connect to a high speed hub
[  345.639132][ T5998] usb 8-1: config 6 has an invalid interface number: 3 but max is 2
[  345.642215][ T5998] usb 8-1: config 6 has an invalid interface number: 3 but max is 2
[  345.645857][ T5998] usb 8-1: config 6 has an invalid interface number: 127 but max is 2
[  345.649447][ T5998] usb 8-1: config 6 has 2 interfaces, different from the descriptor's value: 3
[  345.652910][ T5998] usb 8-1: config 6 has no interface number 0
[  345.655238][ T5998] usb 8-1: config 6 has no interface number 1
[  345.658013][ T5998] usb 8-1: config 6 interface 127 altsetting 5 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  345.662921][ T5998] usb 8-1: config 6 interface 3 has no altsetting 0
[  345.665541][ T5998] usb 8-1: config 6 interface 3 has no altsetting 1
[  345.668285][ T5998] usb 8-1: config 6 interface 127 has no altsetting 0
[  345.673138][ T5998] usb 8-1: New USB device found, idVendor=19d2, idProduct=0176, bcdDevice=a7.02
[  345.677429][ T5998] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  345.680606][ T5998] usb 8-1: Product: syz
[  345.682294][ T5998] usb 8-1: Manufacturer: syz
[  345.684208][ T5998] usb 8-1: SerialNumber: syz
[  345.915658][ T5998] option 8-1:6.127: GSM modem (1-port) converter detected
[  345.922495][ T5998] usb 8-1: USB disconnect, device number 2
[  345.930895][ T5998] option 8-1:6.127: device disconnected
[  346.145475][T12921] fuse: Bad value for 'fd'
[  346.977878][ T5964] block device autoloading is deprecated and will be removed.
[  347.042892][T12937] loop7: detected capacity change from 0 to 4096
[  347.046479][T12937] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512).
[  347.061509][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system
[  347.066804][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-uuid/7089678B273CDB5C.tmp-b7:7' failed: Read-only file system
[  347.078004][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system
[  347.083522][ T5881] udevd[5881]: symlink '../../loop7' '/dev/disk/by-uuid/7089678B273CDB5C.tmp-b7:7' failed: Read-only file system
[  347.405380][   T24] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  347.766242][   T24] usb 2-1: Using ep0 maxpacket: 32
[  347.770038][   T24] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  347.774790][T12949] loop5: detected capacity change from 0 to 256
[  347.777678][   T24] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  347.781443][   T24] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  347.784787][   T24] usb 2-1: Product: syz
[  347.787819][   T24] usb 2-1: Manufacturer: syz
[  347.789721][   T24] usb 2-1: SerialNumber: syz
[  347.794093][   T24] usb 2-1: config 0 descriptor??
[  347.798509][T12949] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xf4000b14, utbl_chksum : 0xe619d30d)
[  347.798738][T12935] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  348.322385][ T5998] usb 2-1: USB disconnect, device number 43
[  348.906292][T12959] loop5: detected capacity change from 0 to 16
[  348.911795][T12959] erofs (device loop5): rootino(nid 36) is not a directory(i_mode 127766)
[  349.258224][T12978] loop1: detected capacity change from 0 to 1024
[  349.276299][   T24] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  349.283898][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/untitled.tmp-b7:1' failed: Read-only file system
[  349.291199][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:1' failed: Read-only file system
[  349.297999][T12978] hfsplus: cannot replace xattr
[  349.309383][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-label/untitled.tmp-b7:1' failed: Read-only file system
[  349.317835][ T5881] udevd[5881]: symlink '../../loop1' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:1' failed: Read-only file system
[  349.436929][   T24] usb 6-1: Using ep0 maxpacket: 32
[  349.457377][   T24] usb 6-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  349.460222][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.465237][   T24] usb 6-1: config 0 descriptor??
[  349.472262][   T24] gspca_main: sq930x-2.14.0 probing 041e:403c
[  350.356143][   T24] gspca_sq930x: reg_w 0305 fd00 failed -71
[  350.358486][   T24] sq930x 6-1:0.0: probe with driver sq930x failed with error -71
[  350.367215][   T24] usb 6-1: USB disconnect, device number 21
[  350.506612][    C0] hpet: Lost 1 RTC interrupts
[  351.041125][   T33] audit: type=1326 audit(1759223707.657:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13024 comm="syz.5.2632" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f529818ec29 code=0x7ffc0000
[  351.066439][   T33] audit: type=1326 audit(1759223707.657:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13024 comm="syz.5.2632" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f529818ec29 code=0x7ffc0000
[  351.089802][   T33] audit: type=1326 audit(1759223707.667:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13024 comm="syz.5.2632" exe="/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f529818ec29 code=0x7ffc0000
[  351.099897][   T33] audit: type=1326 audit(1759223707.667:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13024 comm="syz.5.2632" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f529818ec29 code=0x7ffc0000
[  351.110043][   T33] audit: type=1326 audit(1759223707.667:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13024 comm="syz.5.2632" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f529818ec29 code=0x7ffc0000
[  351.805782][T13048] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2638'.
[  351.854375][T13050] program syz.7.2639 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  351.904904][T13052] netlink: 'syz.7.2641': attribute type 29 has an invalid length.
[  351.922545][T13054] tmpfs: Bad value for 'mpol'
[  352.040418][T13060] usb usb1: usbfs: process 13060 (syz.5.2644) did not claim interface 0 before use
[  352.186232][ T5571] IPVS: starting estimator thread 0...
[  352.234551][T13077] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2653'.
[  352.297290][T13073] IPVS: using max 40 ests per chain, 96000 per kthread
[  352.304948][T13079] sp0: Synchronizing with TNC
[  352.604414][T13098] loop1: detected capacity change from 0 to 8
[  352.616790][T13098] SQUASHFS error: Failed to read block 0xe000000000001ea: -5
[  352.626213][T13098] unable to read xattr id index table
[  352.727419][T13100] loop5: detected capacity change from 0 to 4096
[  352.744132][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  352.757473][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:5' failed: Read-only file system
[  352.775633][T13100] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[  353.166228][T12752] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  353.331372][T13112] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  353.366873][T12752] usb 6-1: Using ep0 maxpacket: 8
[  353.411740][T12752] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x99, changing to 0x89
[  353.417257][T12752] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  353.856840][T12752] usb 6-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  353.860233][T12752] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.863760][T12752] usb 6-1: Product: syz
[  353.865326][T12752] usb 6-1: Manufacturer: syz
[  353.868587][T12752] usb 6-1: SerialNumber: syz
[  353.872605][T12752] usb 6-1: config 0 descriptor??
[  353.957103][T12752] rc_core: IR keymap rc-streamzap not found
[  353.961420][T12752] Registered IR keymap rc-empty
[  353.977562][T12752] rc rc0: Streamzap PC Remote Infrared Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[  354.031104][T12752] input: Streamzap PC Remote Infrared Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input21
[  354.109629][T12752] usb 6-1: USB disconnect, device number 22
[  354.266124][   T24] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  354.331759][ T5966] Bluetooth: hci1: Malformed HCI Event: 0x22
[  354.426081][   T24] usb 2-1: Using ep0 maxpacket: 8
[  354.430122][   T24] usb 2-1: unable to get BOS descriptor or descriptor too short
[  354.434426][   T24] usb 2-1: config 0 has an invalid interface number: 88 but max is 0
[  354.439502][   T24] usb 2-1: config 0 has no interface number 0
[  354.441974][   T24] usb 2-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  354.446353][   T24] usb 2-1: config 0 interface 88 altsetting 8 endpoint 0x86 has invalid wMaxPacketSize 0
[  354.450069][   T24] usb 2-1: config 0 interface 88 has no altsetting 0
[  354.455747][   T24] usb 2-1: string descriptor 0 read error: -22
[  354.458498][   T24] usb 2-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  354.461961][   T24] usb 2-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  354.467336][   T24] usb 2-1: config 0 descriptor??
[  354.474839][   T24] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.88/input/input22
[  354.516735][ T6234] udevd[6234]: Error opening device "/dev/input/event4": No such file or directory
[  354.520855][ T6234] udevd[6234]: Unable to EVIOCGABS device "/dev/input/event4"
[  354.523805][ T6234] udevd[6234]: Unable to EVIOCGABS device "/dev/input/event4"
[  354.682164][   T24] usb 2-1: USB disconnect, device number 44
[  354.808833][T13137] loop5: detected capacity change from 0 to 256
[  355.173117][T13158] netlink: 'syz.5.2686': attribute type 1 has an invalid length.
[  355.177589][T13158] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2686'.
[  355.309001][   T33] audit: type=1326 audit(1759223711.927:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13164 comm="syz.5.2689" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f529818ec29 code=0x0
[  355.624311][T13182] netlink: 'syz.1.2696': attribute type 10 has an invalid length.
[  355.629688][T13182] batman_adv: batadv0: Adding interface: wlan0
[  355.631907][T13182] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  355.645015][T13182] batman_adv: batadv0: Interface activated: wlan0
[  355.684018][T13186] sch_tbf: peakrate 4294967290 is lower than or equals to rate 4567553665213837456 !
[  355.792968][T13196] netlink: 40 bytes leftover after parsing attributes in process `syz.7.2703'.
[  356.103562][T13212] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2710'.
[  356.107435][T13212] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2710'.
[  356.714270][T13218] loop5: detected capacity change from 0 to 256
[  358.422549][T13254] loop5: detected capacity change from 0 to 1024
[  358.488611][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  358.502607][T13254] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  358.580497][ T5881] udevd[5881]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  358.623796][T13254] EXT4-fs error (device loop5): ext4_get_first_dir_block:3552: inode #11: comm syz.5.2727: directory missing '..'
[  358.838286][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.843781][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.852475][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.859619][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.870733][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.881597][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.888427][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.894728][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.901655][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  358.909864][ T9152] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  359.309654][T10036] ==================================================================
[  359.312699][T10036] BUG: KASAN: slab-use-after-free in __mutex_lock+0x801/0x1350
[  359.315685][T10036] Read of size 8 at addr ffff88801f0380a0 by task khidpd_15c25886/10036
[  359.319558][T10036] 
[  359.320833][T10036] CPU: 0 UID: 0 PID: 10036 Comm: khidpd_15c25886 Not tainted syzkaller #0 PREEMPT(full) 
[  359.320847][T10036] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  359.320855][T10036] Call Trace:
[  359.320861][T10036]  <TASK>
[  359.320866][T10036]  dump_stack_lvl+0x189/0x250
[  359.320884][T10036]  ? __kasan_check_byte+0x12/0x40
[  359.320900][T10036]  ? __pfx_dump_stack_lvl+0x10/0x10
[  359.320913][T10036]  ? lock_release+0x4b/0x3e0
[  359.320932][T10036]  ? __virt_addr_valid+0x4a5/0x5c0
[  359.320945][T10036]  print_report+0xca/0x240
[  359.320962][T10036]  ? __mutex_lock+0x801/0x1350
[  359.320976][T10036]  kasan_report+0x118/0x150
[  359.320992][T10036]  ? __mutex_lock+0x801/0x1350
[  359.321008][T10036]  __mutex_lock+0x801/0x1350
[  359.321024][T10036]  ? __mutex_lock+0x5bb/0x1350
[  359.321039][T10036]  ? l2cap_unregister_user+0x6a/0x1b0
[  359.321054][T10036]  ? __pfx___mutex_lock+0x10/0x10
[  359.321072][T10036]  ? __pfx___timer_delete_sync+0x10/0x10
[  359.321089][T10036]  l2cap_unregister_user+0x6a/0x1b0
[  359.321103][T10036]  hidp_session_thread+0x3c9/0x410
[  359.321120][T10036]  ? __pfx_hidp_session_thread+0x10/0x10
[  359.321132][T10036]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  359.321144][T10036]  ? __pfx_hidp_session_wake_function+0x10/0x10
[  359.321157][T10036]  ? __pfx_hidp_session_wake_function+0x10/0x10
[  359.321167][T10036]  ? __kthread_parkme+0x7b/0x200
[  359.321176][T10036]  ? __kthread_parkme+0x1a1/0x200
[  359.321185][T10036]  kthread+0x711/0x8a0
[  359.321197][T10036]  ? __pfx_hidp_session_thread+0x10/0x10
[  359.321206][T10036]  ? __pfx_kthread+0x10/0x10
[  359.321216][T10036]  ? _raw_spin_unlock_irq+0x23/0x50
[  359.321226][T10036]  ? lockdep_hardirqs_on+0x9c/0x150
[  359.321236][T10036]  ? __pfx_kthread+0x10/0x10
[  359.321247][T10036]  ret_from_fork+0x4bc/0x870
[  359.321262][T10036]  ? __pfx_ret_from_fork+0x10/0x10
[  359.321275][T10036]  ? __switch_to_asm+0x39/0x70
[  359.321287][T10036]  ? __switch_to_asm+0x33/0x70
[  359.321297][T10036]  ? __pfx_kthread+0x10/0x10
[  359.321308][T10036]  ret_from_fork_asm+0x1a/0x30
[  359.321326][T10036]  </TASK>
[  359.321330][T10036] 
[  359.399880][T10036] Allocated by task 9152:
[  359.401592][T10036]  kasan_save_track+0x3e/0x80
[  359.403450][T10036]  __kasan_kmalloc+0x93/0xb0
[  359.405251][T10036]  __kmalloc_noprof+0x411/0x7f0
[  359.407105][T10036]  hci_alloc_dev_priv+0x28/0x2060
[  359.409089][T10036]  vhci_create_device+0x120/0x650
[  359.411071][T10036]  vhci_write+0x3ce/0x4a0
[  359.412772][T10036]  vfs_write+0x5c9/0xb30
[  359.414359][T10036]  ksys_write+0x145/0x250
[  359.416081][T10036]  do_syscall_64+0xfa/0xfa0
[  359.417910][T10036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.420107][T10036] 
[  359.421085][T10036] Freed by task 9152:
[  359.422693][T10036]  kasan_save_track+0x3e/0x80
[  359.424522][T10036]  __kasan_save_free_info+0x46/0x50
[  359.426427][T10036]  __kasan_slab_free+0x5c/0x80
[  359.427181][T13274] loop1: detected capacity change from 0 to 512
[  359.428277][T10036]  kfree+0x19a/0x6d0
[  359.428292][T10036]  bt_host_release+0x82/0x90
[  359.428309][T10036]  device_release+0x9c/0x1c0
[  359.428320][T10036]  kobject_put+0x22b/0x480
[  359.428334][T10036]  vhci_release+0x15a/0x1a0
[  359.431619][T13274] EXT4-fs: Ignoring removed nobh option
[  359.432327][T10036]  __fput+0x44c/0xa70
[  359.434124][T13274] ext4: Unknown parameter 'dont_measure'
[  359.435914][T10036]  task_work_run+0x1d4/0x260
[  359.447001][T10036]  do_exit+0x6b5/0x2300
[  359.448654][T10036]  do_group_exit+0x21c/0x2d0
[  359.450523][T10036]  __x64_sys_exit_group+0x3f/0x40
[  359.452499][T10036]  x64_sys_call+0x21f7/0x2200
[  359.454333][T10036]  do_syscall_64+0xfa/0xfa0
[  359.456110][T10036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.458433][T10036] 
[  359.459388][T10036] Last potentially related work creation:
[  359.461655][T10036]  kasan_save_stack+0x3e/0x60
[  359.463519][T10036]  kasan_record_aux_stack+0xbd/0xd0
[  359.465511][T10036]  insert_work+0x3d/0x330
[  359.467152][T10036]  __queue_work+0xcd2/0xfb0
[  359.468856][T10036]  queue_work_on+0x181/0x270
[  359.470635][T10036]  l2cap_chan_send+0x1110/0x2790
[  359.472517][T10036]  l2cap_sock_sendmsg+0x32e/0x4a0
[  359.474375][T10036]  __sock_sendmsg+0x21c/0x270
[  359.476146][T10036]  kernel_sendmsg+0x175/0x250
[  359.478033][T10036]  hidp_process_transmit+0x18f/0x380
[  359.480023][T10036]  hidp_session_run+0x13b2/0x14a0
[  359.481917][T10036]  hidp_session_thread+0x28e/0x410
[  359.483903][T10036]  kthread+0x711/0x8a0
[  359.485436][T10036]  ret_from_fork+0x4bc/0x870
[  359.487284][T10036]  ret_from_fork_asm+0x1a/0x30
[  359.489172][T10036] 
[  359.490119][T10036] Second to last potentially related work creation:
[  359.492679][T10036]  kasan_save_stack+0x3e/0x60
[  359.494530][T10036]  kasan_record_aux_stack+0xbd/0xd0
[  359.496520][T10036]  insert_work+0x3d/0x330
[  359.498216][T10036]  __queue_work+0xcd2/0xfb0
[  359.500009][T10036]  queue_work_on+0x181/0x270
[  359.501842][T10036]  l2cap_chan_send+0x1110/0x2790
[  359.503790][T10036]  l2cap_sock_sendmsg+0x32e/0x4a0
[  359.505774][T10036]  __sock_sendmsg+0x21c/0x270
[  359.507634][T10036]  kernel_sendmsg+0x175/0x250
[  359.509500][T10036]  hidp_process_transmit+0x18f/0x380
[  359.511593][T10036]  hidp_session_run+0x8df/0x14a0
[  359.513494][T10036]  hidp_session_thread+0x28e/0x410
[  359.515488][T10036]  kthread+0x711/0x8a0
[  359.517073][T10036]  ret_from_fork+0x4bc/0x870
[  359.518894][T10036]  ret_from_fork_asm+0x1a/0x30
[  359.520731][T10036] 
[  359.521685][T10036] The buggy address belongs to the object at ffff88801f038000
[  359.521685][T10036]  which belongs to the cache kmalloc-8k of size 8192
[  359.526971][T10036] The buggy address is located 160 bytes inside of
[  359.526971][T10036]  freed 8192-byte region [ffff88801f038000, ffff88801f03a000)
[  359.532155][T10036] 
[  359.533069][T10036] The buggy address belongs to the physical page:
[  359.535512][T10036] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88801f03c000 pfn:0x1f038
[  359.539293][T10036] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  359.542567][T10036] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[  359.545751][T10036] page_type: f5(slab)
[  359.547284][T10036] raw: 00fff00000000240 ffff88801ac42280 ffffea0000942610 ffff88801ac40ac8
[  359.550634][T10036] raw: ffff88801f03c000 0000000000020001 00000000f5000000 0000000000000000
[  359.553884][T10036] head: 00fff00000000240 ffff88801ac42280 ffffea0000942610 ffff88801ac40ac8
[  359.557067][T10036] head: ffff88801f03c000 0000000000020001 00000000f5000000 0000000000000000
[  359.560272][T10036] head: 00fff00000000003 ffffea00007c0e01 00000000ffffffff 00000000ffffffff
[  359.563491][T10036] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  359.566762][T10036] page dumped because: kasan: bad access detected
[  359.569193][T10036] page_owner tracks the page as allocated
[  359.571320][T10036] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 7442, tgid 7441 (syz.1.588), ts 130781606833, free_ts 124223159807
[  359.579922][T10036]  post_alloc_hook+0x240/0x2a0
[  359.581813][T10036]  get_page_from_freelist+0x2365/0x2440
[  359.583982][T10036]  __alloc_frozen_pages_noprof+0x181/0x370
[  359.586261][T10036]  alloc_pages_mpol+0x232/0x4a0
[  359.588137][T10036]  allocate_slab+0x96/0x3a0
[  359.589932][T10036]  ___slab_alloc+0xe94/0x1920
[  359.591790][T10036]  __slab_alloc+0x65/0x100
[  359.593508][T10036]  __kmalloc_noprof+0x471/0x7f0
[  359.595385][T10036]  bpf_test_init+0x9f/0x150
[  359.597175][T10036]  bpf_prog_test_run_xdp+0x49e/0x10e0
[  359.599240][T10036]  bpf_prog_test_run+0x2c7/0x340
[  359.601134][T10036]  __sys_bpf+0x562/0x860
[  359.602764][T10036]  __x64_sys_bpf+0x7c/0x90
[  359.604498][T10036]  do_syscall_64+0xfa/0xfa0
[  359.606222][T10036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.608482][T10036] page last free pid 6533 tgid 6533 stack trace:
[  359.610885][T10036]  __free_frozen_pages+0xbc4/0xd30
[  359.612860][T10036]  vfree+0x25a/0x400
[  359.614343][T10036]  kcov_close+0x28/0x50
[  359.615895][T10036]  __fput+0x44c/0xa70
[  359.617422][T10036]  task_work_run+0x1d4/0x260
[  359.619206][T10036]  do_exit+0x6b5/0x2300
[  359.620819][T10036]  do_group_exit+0x21c/0x2d0
[  359.622614][T10036]  __x64_sys_exit_group+0x3f/0x40
[  359.624522][T10036]  x64_sys_call+0x21f7/0x2200
[  359.626297][T10036]  do_syscall_64+0xfa/0xfa0
[  359.628073][T10036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.630272][T10036] 
[  359.631198][T10036] Memory state around the buggy address:
[  359.633295][T10036]  ffff88801f037f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  359.636223][T10036]  ffff88801f038000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  359.639231][T10036] >ffff88801f038080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  359.642176][T10036]                                ^
[  359.644055][T10036]  ffff88801f038100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  359.647057][T10036]  ffff88801f038180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  359.650130][T10036] ==================================================================
[  359.653307][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.656941][    C0] hpet: Lost 21 RTC interrupts
[  359.660431][T10036] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  359.663265][T10036] CPU: 0 UID: 0 PID: 10036 Comm: khidpd_15c25886 Not tainted syzkaller #0 PREEMPT(full) 
[  359.666963][T10036] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  359.670783][T10036] Call Trace:
[  359.672070][T10036]  <TASK>
[  359.673224][T10036]  dump_stack_lvl+0x99/0x250
[  359.675036][T10036]  ? __asan_memcpy+0x40/0x70
[  359.676805][T10036]  ? __pfx_dump_stack_lvl+0x10/0x10
[  359.678787][T10036]  ? __pfx__printk+0x10/0x10
[  359.680619][T10036]  vpanic+0x237/0x6d0
[  359.682150][T10036]  ? __pfx_vpanic+0x10/0x10
[  359.683905][T10036]  panic+0xb9/0xc0
[  359.685355][T10036]  ? __pfx_panic+0x10/0x10
[  359.687050][T10036]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  359.689295][T10036]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  359.691540][T10036]  ? __mutex_lock+0x801/0x1350
[  359.693355][T10036]  check_panic_on_warn+0x89/0xb0
[  359.695244][T10036]  ? __mutex_lock+0x801/0x1350
[  359.697111][T10036]  end_report+0x78/0x160
[  359.698758][T10036]  kasan_report+0x129/0x150
[  359.700521][T10036]  ? __mutex_lock+0x801/0x1350
[  359.702333][T10036]  __mutex_lock+0x801/0x1350
[  359.704076][T10036]  ? __mutex_lock+0x5bb/0x1350
[  359.705941][T10036]  ? l2cap_unregister_user+0x6a/0x1b0
[  359.707900][T10036]  ? __pfx___mutex_lock+0x10/0x10
[  359.709820][T10036]  ? __pfx___timer_delete_sync+0x10/0x10
[  359.711907][T10036]  l2cap_unregister_user+0x6a/0x1b0
[  359.713854][T10036]  hidp_session_thread+0x3c9/0x410
[  359.715749][T10036]  ? __pfx_hidp_session_thread+0x10/0x10
[  359.717794][T10036]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  359.719999][T10036]  ? __pfx_hidp_session_wake_function+0x10/0x10
[  359.722349][T10036]  ? __pfx_hidp_session_wake_function+0x10/0x10
[  359.724739][T10036]  ? __kthread_parkme+0x7b/0x200
[  359.726665][T10036]  ? __kthread_parkme+0x1a1/0x200
[  359.728595][T10036]  kthread+0x711/0x8a0
[  359.730161][T10036]  ? __pfx_hidp_session_thread+0x10/0x10
[  359.732348][T10036]  ? __pfx_kthread+0x10/0x10
[  359.734098][T10036]  ? _raw_spin_unlock_irq+0x23/0x50
[  359.736023][T10036]  ? lockdep_hardirqs_on+0x9c/0x150
[  359.738025][T10036]  ? __pfx_kthread+0x10/0x10
[  359.739795][T10036]  ret_from_fork+0x4bc/0x870
[  359.741584][T10036]  ? __pfx_ret_from_fork+0x10/0x10
[  359.743549][T10036]  ? __switch_to_asm+0x39/0x70
[  359.745402][T10036]  ? __switch_to_asm+0x33/0x70
[  359.747200][T10036]  ? __pfx_kthread+0x10/0x10
[  359.749018][T10036]  ret_from_fork_asm+0x1a/0x30
[  359.750904][T10036]  </TASK>
[  359.752800][T10036] Kernel Offset: disabled
[  359.754512][T10036] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:15:16  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000035 RBX=0000000000000035 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90002f8f350
R8 =ffff8881065e8237 R9 =1ffff11020cbd046 R10=dffffc0000000000 R11=ffffffff8556cf10
R12=dffffc0000000000 R13=ffffffff99d19933 R14=ffffffff9a00f5a0 R15=0000000000000000
RIP=ffffffff8556cf8c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b83fc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f4e0f03f000 CR3=000000011724e000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff8169bc5f ffffffff8169bbcd
XMM02=ffffffff818cdf7d ffffffff8169bbcd XMM03=ffffffff818cde58 ffffffff818cddfd
XMM04=00007f193630d100 00007f19357a7460 XMM05=00007f19357a7478 00007f19357a74c0
XMM06=00007f19357a74b8 00007f19357a74b0 XMM07=00007f19357a74a8 00007f19357a74a0
XMM08=0000000000000000 00007f1935612f0f XMM09=0000000000000000 00007f1935612fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000100 RDX=0000000000000003
RSI=ffffffff8db9fb03 RDI=00000000ffffffff RBP=0000000000212110 RSP=ffffc900001e09a8
R8 =ffffffff8fc35777 R9 =1ffffffff1f86aee R10=dffffc0000000000 R11=fffffbfff1f86aef
R12=ffff88810ee26000 R13=ffff88810ee25ec0 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff84d752d0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f19363fc6c0 ffffffff 00c00000
GS =0000 ffff8881a39fc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f19357d16c8 CR3=000000011724e000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f19357a7498 00007f19357a7470 XMM03=00007f19357a74a8 00007f19357a74a0
XMM04=00007f193630d100 00007f19357a7460 XMM05=00007f19357a7478 00007f19357a74c0
XMM06=00007f19357a74b8 00007f19357a74b0 XMM07=00007f19357a74a8 00007f19357a74a0
XMM08=0000000000000000 00007f1935612f0f XMM09=0000000000000000 00007f1935612fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
