last executing test programs:

2.25301245s ago: executing program 0 (id=1835):
pipe2$watch_queue(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r1, 0x5760, 0x1)
close_range(r0, r1, 0x0)

2.172046002s ago: executing program 0 (id=1837):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001000)=@updpolicy={0x17c, 0x19, 0x1, 0x70bd2a, 0x0, {{@in, @in6=@remote, 0x4e20, 0x8000, 0x4e22, 0x0, 0x2, 0x0, 0x0, 0x11}, {0x0, 0x4007, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x2, 0x0, 0x2}, [@tmpl={0xc4, 0x5, [{{@in=@multicast2, 0x4d6, 0x3c}, 0x2, @in6=@mcast2, 0x3505, 0x0, 0x2, 0x7, 0x5, 0x1, 0x80000001}, {{@in=@broadcast, 0x4d5, 0x33}, 0x0, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x3502, 0x2, 0x3, 0x8, 0x3, 0x4, 0xa58}, {{@in6=@dev={0xfe, 0x80, '\x00', 0x12}, 0x4d2, 0x33}, 0x2, @in6=@mcast1, 0x3502, 0x4, 0x1, 0x7f, 0x6, 0x0, 0x55}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

2.121787528s ago: executing program 0 (id=1839):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d3000000000140005000c000100000008001300ffff000005000b00010000000800090057240b2b080002000101000008000e"], 0x5c}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)

2.069960095s ago: executing program 0 (id=1841):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="b7020000f7ffffffbfa70000000000009702000020febfff7a0af0fff8ff00f869a4f0ff00000000b70600001218d1fe2d640500000000002404000000ffffffd404000020000000b7040000100000207207f0ff00000000850000002f000000b70000000a00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x8}, 0x3b)

1.328050535s ago: executing program 2 (id=1850):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0x20000014})
epoll_wait(r0, 0x0, 0x0, 0x400)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)

1.327862557s ago: executing program 1 (id=1851):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000800)={r0, &(0x7f0000000780)}, 0x20)

1.273130542s ago: executing program 1 (id=1852):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000008c0)='sys_enter\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r2}, 0x10)
syz_clone(0x160480, 0x0, 0x0, 0x0, 0x0, 0x0)

1.131811309s ago: executing program 0 (id=1853):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB="b4000000000901020000000000000000010000050c000480f1ff004000000003080003400000ffff08000540000000135c0002000c00028005000100880000000c000280050001002f0000002c00018014000300fe88000000000000000000000000000114000400fe80000000000000000000000000002c0c000280050001000600000006000340000000000800034000000008090001"], 0xb4}, 0x1, 0x0, 0x0, 0x80}, 0x8000)

834.158512ms ago: executing program 0 (id=1854):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5, 0x14, 0xf7}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}}, 0x0)

754.175833ms ago: executing program 32 (id=1854):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5, 0x14, 0xf7}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}}, 0x0)

314.506172ms ago: executing program 1 (id=1856):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x10, 0x701, 0xfffffffc, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x14\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

314.118918ms ago: executing program 2 (id=1857):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x8001af84, &(0x7f00000003c0))

213.82982ms ago: executing program 1 (id=1858):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000000), 0x10)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000040)=0x47de, 0x4)

213.576556ms ago: executing program 2 (id=1859):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000380)=[{&(0x7f0000013580)="0dd2e7c8926dc6acd0ae6c178054e95986faff9544de5fc4c30adf404da41181a77466ac5075905ea5f50134fdd517a957fe2ee59b61f9fe8d7aabe595ea23de2723e437af0423a56686a4c2d957be1a0ab922fbbd3cb1d8c6ab0d58440a327c8eb05d445b4ac5f20abe449e4084f8b996268d0564f67980d3ed3479e0edfe5cec7b4f89bface391c9c4c58ad123b91c33173c72326d1df18804a9ea20f9ece48f784d8ca2318e3d2b316666b5dfb7295c4915989d5bcb120e8fedaa97b93a137c256ce4", 0x20013644}, {&(0x7f0000013680)="c578381bf5113dad8319d9ea5294285ae9a90384ce23866477bef9de4399237d8b3522c9c194e71edaf3332a2f169682f9d8fa271683d4d441b710409e506333e0c3b64e52e8720734b6787f4a84f5bebb046649c6c697d978affd349031b2cd874c7a8961a586a9f2d62f945e7a5bf2f5f7a31684c0503704881d2578a2a98ac3ef4e4a4b0dcdb70db735d5c1652eed3848b2dd4131bb0eb7cfadfaf5", 0x9d}], 0x2, 0x0)
read$FUSE(r0, &(0x7f00000003c0)={0x2020}, 0x2020)

142.216132ms ago: executing program 2 (id=1860):
mlockall(0x7)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x4000)
setresuid(r0, r0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

141.995186ms ago: executing program 1 (id=1861):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000004c0)={0x2c, 0x1, 0x2, 0x201, 0x0, 0x0, {0xa, 0x0, 0x8}, [@CTA_EXPECT_MASTER={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0x5, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0x0, 0x2, 0x0, 0x1, {0x0, 0x1, 0x1}}]}, @CTA_EXPECT_FN={0x0, 0xb, 'callforwarding\x00'}, @CTA_EXPECT_FLAGS={0x0, 0x8, 0x1, 0x0, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2ef84f70c2432ac2}, 0x0)

71.994909ms ago: executing program 2 (id=1862):
r0 = socket$packet(0x11, 0x3, 0x300)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0xd3283d036ae269b3, 0x8031, 0xffffffffffffffff, 0x99cf0000)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r1, &(0x7f0000000080)='\x00'/10, 0xfcf5, 0x0, &(0x7f0000000000)={0x2, 0x4e20, @empty}, 0x10)
recvmsg(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000c80)=""/4096, 0x1000}], 0x1}, 0x42)

71.709421ms ago: executing program 1 (id=1863):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000140)='fib_table_lookup\x00', r0, 0x0, 0x417}, 0x18)
r1 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r1, &(0x7f0000000680)={&(0x7f0000000000)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10, &(0x7f0000001780)=[{&(0x7f0000000240)="f9", 0x1}], 0x1}, 0x4000080)

0s ago: executing program 2 (id=1864):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
r1 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x1ff, 0x20000)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000540)={{0x1, 0x3, 0x6, 0x448, '\x00', 0x9}, 0x1, [0x7, 0xd5, 0x5, 0x9, 0x6, 0xa, 0x2, 0x5, 0xfffffffffffffffb, 0xbd, 0x80000000, 0x102d, 0x8, 0x1, 0x3, 0xffffffffffffffff, 0x1, 0x1ed40, 0x6, 0x1ff, 0x80, 0x7, 0x7, 0x7, 0xc, 0x2, 0x9, 0x7, 0xffffffffffffffff, 0x3, 0x8fffffffe, 0x403, 0x1, 0x4, 0x1, 0x3, 0x3, 0x1, 0x0, 0x6, 0x9, 0x4, 0x88, 0x50f, 0x9ac2, 0x6fe5, 0xffffffffba36ba58, 0x6, 0xa, 0x9, 0x6, 0xe000000000000000, 0xfffffffffffffffd, 0x403, 0x3, 0xfffffffffffff8f6, 0x4, 0xfffffffffffffff9, 0x0, 0xf9800000, 0x8, 0x9, 0x1800000, 0x5, 0x82b, 0x8, 0x5, 0x0, 0x4, 0xfffffffffffffffa, 0x5, 0x100000000000006, 0xca4f, 0x6, 0x1, 0x7, 0x40, 0x2, 0x42843379, 0x1, 0x6, 0x201, 0x77d, 0xb3, 0x5, 0x539, 0x623b, 0x6, 0x0, 0x7, 0x4, 0x7fffffffffffffff, 0x7, 0x8, 0x0, 0x9, 0x93, 0x5, 0x401, 0x2, 0x2775e12f, 0x680000000000, 0x5, 0x40007, 0xe88, 0x80000004, 0x0, 0xfffffffffffffffa, 0x10001, 0x5, 0x8, 0x1000, 0x1d68a423, 0x5, 0x5, 0xfffffffffffff000, 0x8, 0x7ffd, 0xfffffffffffffff7, 0x6, 0x100000001, 0xc, 0x80000000005, 0x6, 0x20000000004, 0xc3, 0x7f, 0x3]})

kernel console output (not intermixed with test programs):

 ==================
[   75.432355][   T10] usb 3-1: Product: syz
[   75.439735][   T10] usb 3-1: Manufacturer: syz
[   75.442022][   T10] usb 3-1: SerialNumber: syz
[   75.450330][   T10] usb 3-1: config 0 descriptor??
[   75.459626][   T10] hub 3-1:0.0: bad descriptor, ignoring hub
[   75.462084][   T10] hub 3-1:0.0: probe with driver hub failed with error -5
[   75.481975][   T10] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input4
[   75.504858][   T10] usbtouchscreen 3-1:0.0: usbtouch_probe - usb_submit_urb failed with result: -22
[   75.537877][   T10] usbtouchscreen 3-1:0.0: probe with driver usbtouchscreen failed with error -22
[   75.700787][ T6133] netlink: 16 bytes leftover after parsing attributes in process `syz.1.85'.
[   75.785794][   T10] usb 3-1: USB disconnect, device number 3
[   75.953449][   T47] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   76.108492][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 245, setting to 64
[   76.112553][   T47] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[   76.118725][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.127806][   T47] usb 1-1: config 0 descriptor??
[   76.412327][ T6151] loop2: detected capacity change from 0 to 40427
[   76.414426][ T6135] block nbd0: shutting down sockets
[   76.419677][ T6151] F2FS-fs (loop2): Image doesn't support compression
[   76.427618][ T6151] F2FS-fs (loop2): build fault injection rate: 690
[   76.436555][ T6151] F2FS-fs (loop2): invalid crc value
[   76.442294][   T47] ath6kl: Failed to submit usb control message: -71
[   76.447994][   T47] ath6kl: unable to send the bmi data to the device: -71
[   76.454254][   T47] ath6kl: Unable to send get target info: -71
[   76.464375][   T47] ath6kl: Failed to init ath6kl core: -71
[   76.469232][   T47] ath6kl_usb 1-1:0.0: probe with driver ath6kl_usb failed with error -71
[   76.490641][   T47] usb 1-1: USB disconnect, device number 3
[   76.499810][ T6151] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   76.504436][ T6151] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   76.534359][ T5854] syz-executor: attempt to access beyond end of device
[   76.534359][ T5854] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   76.542689][ T5854] CPU: 1 UID: 0 PID: 5854 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   76.542704][ T5854] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   76.542710][ T5854] Call Trace:
[   76.542715][ T5854]  <TASK>
[   76.542729][ T5854]  dump_stack_lvl+0x189/0x250
[   76.542747][ T5854]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.542756][ T5854]  ? __pfx_queue_work_on+0x10/0x10
[   76.542765][ T5854]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   76.542776][ T5854]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   76.542791][ T5854]  f2fs_handle_critical_error+0x37c/0x540
[   76.542813][ T5854]  f2fs_write_end_io+0x886/0xb60
[   76.542829][ T5854]  __submit_merged_bio+0x27a/0x6a0
[   76.542843][ T5854]  __submit_merged_write_cond+0x255/0x530
[   76.542857][ T5854]  f2fs_write_data_pages+0x261d/0x3000
[   76.542868][ T5854]  ? __lock_acquire+0xab9/0xd20
[   76.542894][ T5854]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   76.542929][ T5854]  ? read_node_folio+0x240/0x3f0
[   76.542967][ T5854]  ? __lock_acquire+0xab9/0xd20
[   76.542987][ T5854]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   76.542999][ T5854]  do_writepages+0x32e/0x550
[   76.543015][ T5854]  ? do_raw_spin_unlock+0x4d/0x240
[   76.543027][ T5854]  filemap_fdatawrite+0x199/0x240
[   76.543038][ T5854]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   76.543070][ T5854]  ? do_raw_spin_unlock+0x4d/0x240
[   76.543081][ T5854]  f2fs_sync_dirty_inodes+0x31f/0x830
[   76.543096][ T5854]  f2fs_write_checkpoint+0x95a/0x1df0
[   76.543115][ T5854]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   76.543143][ T5854]  ? kill_f2fs_super+0x298/0x6c0
[   76.543154][ T5854]  kill_f2fs_super+0x2c3/0x6c0
[   76.543164][ T5854]  ? __pfx_kill_f2fs_super+0x10/0x10
[   76.543171][ T5854]  ? radix_tree_delete_item+0x2b6/0x400
[   76.543185][ T5854]  ? shrinker_free+0x2ce/0x3e0
[   76.543195][ T5854]  deactivate_locked_super+0xbc/0x130
[   76.543210][ T5854]  cleanup_mnt+0x425/0x4c0
[   76.543224][ T5854]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.543243][ T5854]  task_work_run+0x1d4/0x260
[   76.543257][ T5854]  ? __pfx_task_work_run+0x10/0x10
[   76.543267][ T5854]  ? __x64_sys_umount+0x122/0x160
[   76.543280][ T5854]  ? exit_to_user_mode_loop+0x40/0x110
[   76.543296][ T5854]  exit_to_user_mode_loop+0xec/0x110
[   76.543315][ T5854]  do_syscall_64+0x2bd/0x3b0
[   76.543331][ T5854]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.543348][ T5854]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.543358][ T5854]  ? exc_page_fault+0x9f/0xf0
[   76.543369][ T5854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.543377][ T5854] RIP: 0033:0x7f1c6e98ff17
[   76.543386][ T5854] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   76.543393][ T5854] RSP: 002b:00007ffc70fb80a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   76.543402][ T5854] RAX: 0000000000000000 RBX: 00007f1c6ea11c05 RCX: 00007f1c6e98ff17
[   76.543408][ T5854] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70fb8160
[   76.543413][ T5854] RBP: 00007ffc70fb8160 R08: 0000000000000000 R09: 0000000000000000
[   76.543417][ T5854] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70fb91f0
[   76.543423][ T5854] R13: 00007f1c6ea11c05 R14: 0000000000012a6d R15: 00007ffc70fb9230
[   76.543436][ T5854]  </TASK>
[   76.655271][ T5854] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   76.957854][ T6163] loop1: detected capacity change from 0 to 256
[   77.226931][ T6176] capability: warning: `syz.1.103' uses deprecated v2 capabilities in a way that may be insecure
[   77.409332][ T6182] dvmrp0: entered allmulticast mode
[   77.532707][ T6172] loop0: detected capacity change from 0 to 32768
[   77.557469][ T6172] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.101 (6172)
[   77.661476][ T6172] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   77.679846][ T6172] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[   77.684131][ T6172] BTRFS info (device loop0): using free-space-tree
[   77.996515][   T10] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   78.019263][ T6172] BTRFS info (device loop0): rebuilding free space tree
[   78.122898][ T5850] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   78.153632][   T10] usb 2-1: Using ep0 maxpacket: 16
[   78.169547][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   78.174714][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   78.178800][   T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   78.187583][   T10] usb 2-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[   78.192603][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.200315][   T10] usb 2-1: config 0 descriptor??
[   78.564831][ T6213] loop2: detected capacity change from 0 to 1024
[   78.569199][ T6213] EXT4-fs: Ignoring removed nobh option
[   78.634487][ T6213] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.665055][   T10] input: HID 0955:7214 Haptics as /devices/virtual/input/input5
[   78.702293][   T10] shield 0003:0955:7214.0001: Registered Thunderstrike controller
[   78.705926][   T10] shield 0003:0955:7214.0001: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.1-1/input0
[   78.845243][  T793] usb 2-1: USB disconnect, device number 3
[   78.857533][ T5312] shield 0003:0955:7214.0001: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[   78.865526][ T5312] shield 0003:0955:7214.0001: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[   78.870393][ T5312] shield 0003:0955:7214.0001: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[   78.875948][ T5312] shield 0003:0955:7214.0001: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[   79.257409][ T6222] loop0: detected capacity change from 0 to 4096
[   79.273848][ T6222] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[   79.287815][ T6222] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   79.293477][ T6222] ntfs3(loop0): Failed to load $Bitmap (-22).
[   79.524998][ T5854] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.596369][ T6226] loop0: detected capacity change from 0 to 32768
[   79.606629][ T6226] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.629673][ T5850] ocfs2: Unmounting device (7,0) on (node local)
[   79.843138][   T47] usb 2-1: new low-speed USB device number 4 using dummy_hcd
[   80.670650][ T6252] trusted_key: syz.0.125 sent an empty control message without MSG_MORE.
[   80.798283][   T47] usb 2-1: string descriptor 0 read error: -22
[   80.800337][   T47] usb 2-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f
[   80.804746][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   80.809324][   T47] usb 2-1: config 0 descriptor??
[   80.816734][   T47] usbtest 2-1:0.0: FX2 device
[   80.818692][   T47] usbtest 2-1:0.0: low-speed {control intr-in intr-out} tests (+alt)
[   80.919092][ T6256] loop0: detected capacity change from 0 to 8192
[   81.023421][ T5312] usb 2-1: USB disconnect, device number 4
[   81.202275][ T6258] loop2: detected capacity change from 0 to 32768
[   81.221653][ T6258] (syz.2.128,6258,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   81.239848][ T6258] (syz.2.128,6258,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   81.258647][ T6258] JBD2: Ignoring recovery information on journal
[   81.294852][ T6258] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   81.399962][ T5854] ocfs2: Unmounting device (7,2) on (node local)
[   81.525621][ T6268] loop0: detected capacity change from 0 to 32768
[   81.562350][ T6268] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   81.606304][ T6268] XFS (loop0): Ending clean mount
[   81.717663][ T5850] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   81.967185][ T6297] loop0: detected capacity change from 0 to 8
[   82.009785][ T6297] SQUASHFS error: Corrupted symlink
[   82.142870][ T6306] netlink: 'syz.0.146': attribute type 9 has an invalid length.
[   82.149319][ T6306] netlink: 8 bytes leftover after parsing attributes in process `syz.0.146'.
[   82.790339][ T6309] loop2: detected capacity change from 0 to 32768
[   82.795417][ T6309] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[   82.808557][ T6309] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   82.945718][ T6309] syz.2.148 (6309) used greatest stack depth: 19488 bytes left
[   82.967842][ T5854] ocfs2: Unmounting device (7,2) on (node local)
[   83.152819][ T6328] team_slave_0: entered promiscuous mode
[   83.154682][ T6328] team_slave_1: entered promiscuous mode
[   83.681335][ T6352] loop0: detected capacity change from 0 to 32768
[   83.688090][ T6352] XFS: ikeep mount option is deprecated.
[   83.714009][ T6352] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   83.744765][ T6352] XFS (loop0): Ending clean mount
[   83.748982][ T6352] XFS (loop0): Quotacheck needed: Please wait.
[   83.771656][ T6352] XFS (loop0): Quotacheck: Done.
[   83.783138][ T5902] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   83.801094][ T5850] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   83.943990][ T5902] usb 3-1: Using ep0 maxpacket: 16
[   83.964067][ T5902] usb 3-1: config 0 has an invalid interface number: 126 but max is 0
[   83.966861][ T5902] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   83.981996][ T5902] usb 3-1: config 0 has no interface number 0
[   83.984969][ T5902] usb 3-1: config 0 interface 126 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[   83.988690][ T5902] usb 3-1: config 0 interface 126 altsetting 0 endpoint 0x87 has invalid maxpacket 34328, setting to 1024
[   83.992130][ T5902] usb 3-1: config 0 interface 126 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64
[   84.005493][ T5902] usb 3-1: config 0 interface 126 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[   84.010957][ T5902] usb 3-1: config 0 interface 126 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[   84.015414][ T5902] usb 3-1: config 0 interface 126 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[   84.020715][ T5902] usb 3-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88
[   84.024204][ T5902] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.029610][ T5902] usb 3-1: config 0 descriptor??
[   84.032283][ T6356] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   84.040282][ T5902] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[   84.156766][ T6371] netlink: 32 bytes leftover after parsing attributes in process `syz.1.171'.
[   84.182808][ T5902] snd-usb-audio 3-1:0.126: probe with driver snd-usb-audio failed with error -12
[   84.260552][   T47] usb 3-1: USB disconnect, device number 4
[   84.632537][ T6390] loop1: detected capacity change from 0 to 32768
[   84.684880][ T6390] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,str_hash=crc64,noinodes_32bit,nocow
[   84.684894][ T6390]   allowing incompatible features above 0.0: (unknown version)
[   84.684899][ T6390]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   84.700107][ T6390] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[   84.702674][ T6390] bcachefs (loop1): initializing new filesystem
[   84.712465][ T6390] bcachefs (loop1): going read-write
[   84.715032][   T47] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   84.724280][ T6390] bcachefs (loop1): marking superblocks
[   84.740362][ T6390] bcachefs (loop1): initializing freespace
[   84.745991][ T6390] bcachefs (loop1): done initializing freespace
[   84.751991][ T6390] bcachefs (loop1): reading snapshots table
[   84.754399][ T6390] bcachefs (loop1): reading snapshots done
[   84.782645][ T6390] bcachefs (loop1):  loop1: Superblock write was silently dropped! (seq 0 expected 42)
[   84.788119][ T6390] bcachefs (loop1): done starting filesystem
[   84.833965][ T6390] syz.1.178 (6390) used greatest stack depth: 17448 bytes left
[   84.866899][   T47] usb 1-1: New USB device found, idVendor=046d, idProduct=08b4, bcdDevice= e.32
[   84.873145][   T47] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.876402][   T47] usb 1-1: Product: syz
[   84.877743][   T47] usb 1-1: Manufacturer: syz
[   84.879238][   T47] usb 1-1: SerialNumber: syz
[   84.914372][ T5859] bcachefs (loop1): shutting down
[   84.916618][ T5859] bcachefs (loop1): going read-only
[   84.921712][ T5859] bcachefs (loop1): finished waiting for writes to stop
[   84.924629][   T47] usb 1-1: config 0 descriptor??
[   84.931743][   T47] pwc: Logitech QuickCam Zoom (new model) USB webcam detected.
[   84.940057][ T5859] bcachefs (loop1): flushing journal and stopping allocators, journal seq 3
[   84.988394][ T5859] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 4
[   84.994354][ T5859] bcachefs (loop1): clean shutdown complete, journal seq 5
[   84.998163][ T5859] bcachefs (loop1): marking filesystem clean
[   85.036374][ T5859] bcachefs (loop1): shutdown complete
[   85.148374][   T47] pwc: Failed to set LED on/off time (-71)
[   85.155279][   T47] pwc: send_video_command error -71
[   85.157446][   T47] pwc: Failed to set video mode VGA@30 fps; return code = -71
[   85.160503][   T47] Philips webcam 1-1:0.0: probe with driver Philips webcam failed with error -71
[   85.183621][   T47] usb 1-1: USB disconnect, device number 4
[   85.202436][ T6413] process 'syz.2.184' launched './file2' with NULL argv: empty string added
[   86.383079][   T47] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   86.525999][  T974] cfg80211: failed to load regulatory.db
[   86.573335][   T47] usb 1-1: Using ep0 maxpacket: 32
[   86.585261][   T47] usb 1-1: config 0 has no interfaces?
[   86.590377][   T47] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[   86.603874][   T47] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.609555][   T47] usb 1-1: Product: syz
[   86.611349][   T47] usb 1-1: Manufacturer: syz
[   86.623485][   T47] usb 1-1: SerialNumber: syz
[   86.633645][   T47] usb 1-1: config 0 descriptor??
[   86.715820][ T6437] netlink: 'syz.2.194': attribute type 10 has an invalid length.
[   86.726635][ T6437] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   86.807434][ T6438] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[   86.838780][ T6442] program syz.1.195 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   86.862202][ T6442] ata1.00: invalid command format 0
[   86.869002][  T974] usb 1-1: USB disconnect, device number 5
[   87.555008][ T6477] bond0: (slave wlan1): Releasing backup interface
[   87.886233][ T6481] loop0: detected capacity change from 0 to 32768
[   87.889399][ T6481] XFS: ikeep mount option is deprecated.
[   87.948205][ T6481] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   87.992915][ T6481] XFS (loop0): Ending clean mount
[   87.998465][ T6481] XFS (loop0): Quotacheck needed: Please wait.
[   88.020225][ T6481] XFS (loop0): Quotacheck: Done.
[   88.123233][  T974] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   88.300476][  T974] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   88.322557][  T974] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   88.350413][  T974] usb 2-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00
[   88.354698][ T6495] netlink: 8 bytes leftover after parsing attributes in process `syz.2.215'.
[   88.362757][  T974] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.403606][  T974] usb 2-1: config 0 descriptor??
[   88.711654][ T6499] netlink: 8 bytes leftover after parsing attributes in process `syz.2.216'.
[   88.949232][  T974] petalynx 0003:18B1:0037.0002: hidraw0: USB HID v0.00 Device [HID 18b1:0037] on usb-dummy_hcd.1-1/input0
[   89.090331][  T974] usb 2-1: USB disconnect, device number 5
[   89.294847][ T6504] netlink: 24 bytes leftover after parsing attributes in process `syz.2.219'.
[   89.378785][ T5850] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   89.564873][ T5902] IPVS: starting estimator thread 0...
[   89.609770][ T6515] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   89.673151][ T6513] IPVS: using max 61 ests per chain, 146400 per kthread
[   90.383084][  T974] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   90.407541][ T6565] capability: warning: `syz.0.245' uses 32-bit capabilities (legacy support in use)
[   90.544778][  T974] usb 2-1: Using ep0 maxpacket: 32
[   90.550335][  T974] usb 2-1: config 0 has an invalid interface number: 132 but max is 0
[   90.554877][  T974] usb 2-1: config 0 has no interface number 0
[   90.557897][  T974] usb 2-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[   90.568657][  T974] usb 2-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5
[   90.575944][  T974] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.583430][  T974] usb 2-1: Product: syz
[   90.585228][  T974] usb 2-1: Manufacturer: syz
[   90.587119][  T974] usb 2-1: SerialNumber: syz
[   90.597258][  T974] usb 2-1: config 0 descriptor??
[   90.604522][  T974] em28xx 2-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132)
[   90.616095][  T974] em28xx 2-1:0.132: Video interface 132 found:
[   90.821591][ T6580] loop0: detected capacity change from 0 to 1024
[   90.901064][   T26] hfsplus: b-tree write err: -5, ino 3
[   90.933748][ T5850] hfsplus: node 4:3 still has 1 user(s)!
[   91.004575][  T974] em28xx 2-1:0.132: unknown em28xx chip ID (0)
[   91.268622][  T974] em28xx 2-1:0.132: failed to trigger read from i2c address 0xa0 (error=-5)
[   91.272611][  T974] em28xx 2-1:0.132: board has no eeprom
[   91.338214][  T974] em28xx 2-1:0.132: Identified as Leadtek Winfast USB II (card=7)
[   91.341449][  T974] em28xx 2-1:0.132: analog set to bulk mode.
[   91.349060][  T974] usb 2-1: USB disconnect, device number 6
[   91.354425][  T974] em28xx 2-1:0.132: Disconnecting em28xx
[   91.358425][ T5902] em28xx 2-1:0.132: Registering V4L2 extension
[   91.377319][   T10] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   91.503912][ T5902] em28xx 2-1:0.132: Config register raw data: 0xffffffed
[   91.507020][ T5902] em28xx 2-1:0.132: AC97 chip type couldn't be determined
[   91.509902][ T5902] em28xx 2-1:0.132: No AC97 audio processor
[   91.536121][ T5902] usb 2-1: Decoder not found
[   91.538073][ T5902] em28xx 2-1:0.132: failed to create media graph
[   91.540634][ T5902] em28xx 2-1:0.132: V4L2 device video103 deregistered
[   91.558638][   T10] usb 1-1: config index 0 descriptor too short (expected 4114, got 18)
[   91.568800][   T10] usb 1-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice= 0.09
[   91.572449][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.579479][ T5902] em28xx 2-1:0.132: Remote control support is not available for this card.
[   91.585063][   T10] usb 1-1: Product: syz
[   91.587049][  T974] em28xx 2-1:0.132: Closing input extension
[   91.590720][   T10] usb 1-1: Manufacturer: syz
[   91.592684][   T10] usb 1-1: SerialNumber: syz
[   91.609397][   T10] usb 1-1: config 0 descriptor??
[   91.634970][  T974] em28xx 2-1:0.132: Freeing device
[   91.838086][  T974] usb 1-1: USB disconnect, device number 6
[   92.573168][   T10] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[   92.632210][ T6614] loop0: detected capacity change from 0 to 2048
[   92.755457][   T10] usb 2-1: config 0 interface 0 has no altsetting 0
[   92.758090][   T10] usb 2-1: New USB device found, idVendor=056e, idProduct=00fc, bcdDevice= 0.00
[   92.761672][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.769865][   T10] usb 2-1: config 0 descriptor??
[   92.797456][ T6617] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   92.799282][ T6616] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   93.257264][   T10] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[   93.259719][   T10] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[   93.262283][   T10] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[   93.266506][   T10] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[   93.268935][   T10] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[   93.271273][   T10] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[   93.285568][   T10] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[   93.292166][   T10] elecom 0003:056E:00FC.0003: hidraw0: USB HID v0.06 Device [HID 056e:00fc] on usb-dummy_hcd.1-1/input0
[   93.395980][   T24] usb 2-1: USB disconnect, device number 7
[   93.440849][ T6633] netlink: 144 bytes leftover after parsing attributes in process `syz.0.272'.
[   93.635326][ T6635] netlink: 36 bytes leftover after parsing attributes in process `syz.0.273'.
[   93.639945][ T6635] netlink: 16 bytes leftover after parsing attributes in process `syz.0.273'.
[   93.646065][ T6635] netlink: 36 bytes leftover after parsing attributes in process `syz.0.273'.
[   93.650393][ T6635] netlink: 36 bytes leftover after parsing attributes in process `syz.0.273'.
[   93.838283][ T6645] netlink: 16 bytes leftover after parsing attributes in process `syz.2.277'.
[   94.197384][ T6657] loop1: detected capacity change from 0 to 32768
[   94.232743][ T6657] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[   94.262797][   T33] audit: type=1800 audit(1755625431.145:4): pid=6657 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.283" name="file1" dev="loop1" ino=17058 res=0 errno=0
[   94.298369][ T5859] ocfs2: Unmounting device (7,1) on (node local)
[   94.698666][ T6687] netlink: 20 bytes leftover after parsing attributes in process `syz.0.296'.
[   94.992478][ T6710] netlink: 'syz.0.301': attribute type 1 has an invalid length.
[   95.001029][ T6710] netlink: 224 bytes leftover after parsing attributes in process `syz.0.301'.
[   95.248928][ T6732] netlink: 4 bytes leftover after parsing attributes in process `syz.0.306'.
[   95.251843][ T6732] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   95.302410][ T6732] batman_adv: batadv0: Removing interface: batadv_slave_1
[   96.091165][ T6794] netlink: 44 bytes leftover after parsing attributes in process `syz.0.313'.
[   96.443106][ T5902] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   96.553359][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[   96.593828][ T5902] usb 1-1: Using ep0 maxpacket: 8
[   96.597809][ T5902] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[   96.600386][ T5902] usb 1-1: config 179 has no interface number 0
[   96.602543][ T5902] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[   96.608239][ T5902] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[   96.614147][ T5902] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[   96.618088][ T5902] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[   96.621634][ T5902] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   96.626250][ T5902] usb 1-1: config 179 interface 65 has no altsetting 0
[   96.628971][ T5902] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[   96.632155][ T5902] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.652466][ T5902] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input6
[   96.706916][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   96.711421][ T5280] input input6: unable to receive magic message: -110
[   96.716370][   T24] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[   96.720066][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.730238][ T5280] input input6: unable to receive magic message: -32
[   96.740260][   T24] usb 2-1: config 0 descriptor??
[   96.748710][ T5280] input input6: unable to receive magic message: -32
[   96.802617][ T5280] input input6: unable to receive magic message: -32
[   96.809351][ T5280] input input6: unable to receive magic message: -32
[   96.834988][ T5280] input input6: unable to receive magic message: -32
[   96.860319][ T5280] input input6: unable to receive magic message: -32
[   97.062742][ T5902] usb 1-1: USB disconnect, device number 7
[   97.065283][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   97.159320][   T24] keytouch 0003:0926:3333.0004: fixing up Keytouch IEC report descriptor
[   97.168841][   T24] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0004/input/input7
[   97.284238][   T24] keytouch 0003:0926:3333.0004: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[   97.584200][ T5902] usb 2-1: USB disconnect, device number 8
[   97.947194][ T6852] 9pnet_virtio: no channels available for device syz
[   98.690676][ T6858] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   99.811847][ T6882] syz.1.350 uses obsolete (PF_INET,SOCK_PACKET)
[  100.925891][ T6919] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[  101.297388][ T6925] netlink: 8 bytes leftover after parsing attributes in process `syz.2.367'.
[  102.069803][ T6934] comedi comedi0: Minor -2147450880 is invalid!
[  102.449918][ T6942] netlink: 104 bytes leftover after parsing attributes in process `syz.0.374'.
[  104.248943][ T6979] netlink: 'syz.1.388': attribute type 1 has an invalid length.
[  104.524459][ T6986] loop1: detected capacity change from 0 to 32768
[  104.614110][ T6986] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.391 (6986)
[  104.639053][ T6986] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  104.643448][ T6986] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  104.646777][ T6986] BTRFS info (device loop1): disk space caching is enabled
[  104.649735][ T6986] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  104.791924][ T6986] BTRFS info (device loop1): rebuilding free space tree
[  104.809300][ T6986] BTRFS info (device loop1): disabling free space tree
[  104.812243][ T6986] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  104.816631][ T6986] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  104.945224][ T7014] BTRFS info (device loop1 state M): max_inline set to 4096
[  105.248574][ T5859] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  105.598512][ T7038] Zero length message leads to an empty skb
[  106.640117][ T7043] kexec: Could not allocate control_code_buffer
[  108.806654][ T7113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.435'.
[  108.809852][ T7113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.435'.
[  108.826710][ T7113] macvlan3: entered promiscuous mode
[  108.829018][ T7113] macvlan3: entered allmulticast mode
[  108.832265][ T7113] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  109.125505][   T10] usb 2-1: new full-speed USB device number 9 using dummy_hcd
[  109.287430][   T10] usb 2-1: config index 0 descriptor too short (expected 149, got 148)
[  109.291971][   T10] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  109.297325][   T10] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  109.302920][   T10] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  109.307276][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  109.312452][   T10] usb 2-1: SerialNumber: syz
[  109.324627][   T10] usb 2-1: 0:2 : does not exist
[  109.529234][   T10] usb 2-1: USB disconnect, device number 9
[  110.196418][ T5236] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  110.201306][ T5236] CPU: 1 UID: 0 PID: 5236 Comm: kworker/u11:1 Not tainted syzkaller #0 PREEMPT(full) 
[  110.201329][ T5236] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  110.201340][ T5236] Workqueue: hci2 hci_rx_work
[  110.201364][ T5236] Call Trace:
[  110.201371][ T5236]  <TASK>
[  110.201379][ T5236]  dump_stack_lvl+0x189/0x250
[  110.201403][ T5236]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.201422][ T5236]  ? __pfx__printk+0x10/0x10
[  110.201449][ T5236]  ? kernfs_path_from_node+0x250/0x290
[  110.201465][ T5236]  ? kernfs_path_from_node+0x2f/0x290
[  110.201485][ T5236]  sysfs_create_dir_ns+0x259/0x280
[  110.201640][ T5236]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  110.201660][ T5236]  ? do_raw_spin_unlock+0x4d/0x240
[  110.201683][ T5236]  kobject_add_internal+0x59f/0xb40
[  110.201715][ T5236]  kobject_add+0x155/0x220
[  110.201743][ T5236]  ? __pfx_kobject_add+0x10/0x10
[  110.201772][ T5236]  ? _raw_spin_unlock+0x28/0x50
[  110.201795][ T5236]  ? get_device_parent+0x366/0x3a0
[  110.201815][ T5236]  device_add+0x408/0xb50
[  110.201834][ T5236]  hci_conn_add_sysfs+0xd5/0x1e0
[  110.201854][ T5236]  le_conn_complete_evt+0xc3a/0x1220
[  110.201886][ T5236]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  110.201909][ T5236]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  110.201937][ T5236]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.201956][ T5236]  ? skb_pull_data+0xfb/0x200
[  110.201977][ T5236]  hci_le_enh_conn_complete_evt+0x189/0x470
[  110.201999][ T5236]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  110.202023][ T5236]  hci_event_packet+0x78f/0x1200
[  110.202065][ T5236]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  110.202088][ T5236]  ? __pfx_hci_event_packet+0x10/0x10
[  110.202107][ T5236]  ? kcov_remote_start+0x4d3/0x7f0
[  110.202128][ T5236]  ? lockdep_hardirqs_on+0x90/0x150
[  110.202151][ T5236]  ? hci_send_to_monitor+0xe2/0x570
[  110.202175][ T5236]  hci_rx_work+0x46a/0xe80
[  110.202200][ T5236]  ? process_scheduled_works+0x9ef/0x17b0
[  110.202217][ T5236]  process_scheduled_works+0xae1/0x17b0
[  110.202256][ T5236]  ? __pfx_process_scheduled_works+0x10/0x10
[  110.202285][ T5236]  worker_thread+0x8a0/0xda0
[  110.202322][ T5236]  kthread+0x711/0x8a0
[  110.202344][ T5236]  ? __pfx_worker_thread+0x10/0x10
[  110.202359][ T5236]  ? __pfx_kthread+0x10/0x10
[  110.202379][ T5236]  ? _raw_spin_unlock_irq+0x23/0x50
[  110.202397][ T5236]  ? lockdep_hardirqs_on+0x9c/0x150
[  110.202414][ T5236]  ? __pfx_kthread+0x10/0x10
[  110.202434][ T5236]  ret_from_fork+0x3fc/0x770
[  110.202453][ T5236]  ? __pfx_ret_from_fork+0x10/0x10
[  110.202473][ T5236]  ? __switch_to_asm+0x39/0x70
[  110.202491][ T5236]  ? __switch_to_asm+0x33/0x70
[  110.202537][ T5236]  ? __pfx_kthread+0x10/0x10
[  110.202557][ T5236]  ret_from_fork_asm+0x1a/0x30
[  110.202589][ T5236]  </TASK>
[  110.202641][ T5236] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  110.322598][ T5236] Bluetooth: hci2: failed to register connection device
[  110.418338][ T7169] fuse: Unknown parameter 'fd0x0000000000000006'
[  110.970359][ T7186] 9pnet_fd: p9_fd_create_unix (7186): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  111.463532][ T7195] PKCS7: Unknown OID: [4] 5.25.373.87(bad)
[  111.500435][ T7195] PKCS7: Only support pkcs7_signedData type
[  112.009159][ T7227] netlink: 8 bytes leftover after parsing attributes in process `syz.1.485'.
[  112.413159][   T10] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  112.564621][   T10] usb 2-1: Using ep0 maxpacket: 32
[  112.574364][   T10] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  112.577800][   T10] usb 2-1: config 0 has no interface number 0
[  112.580327][   T10] usb 2-1: config 0 interface 184 has no altsetting 0
[  112.999080][   T10] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  113.002857][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.006606][   T10] usb 2-1: Product: syz
[  113.008307][   T10] usb 2-1: Manufacturer: syz
[  113.010150][   T10] usb 2-1: SerialNumber: syz
[  113.017846][   T10] usb 2-1: config 0 descriptor??
[  113.027693][   T10] smsc75xx v1.0.0
[  113.831894][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  113.849082][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  114.078406][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  114.086188][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  114.090258][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  114.095178][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  114.099589][   T10] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -71
[  114.106657][   T10] usb 2-1: USB disconnect, device number 10
[  114.141312][ T7275] netlink: 8 bytes leftover after parsing attributes in process `syz.2.508'.
[  115.300214][ T5236] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  115.303690][ T5236] Bluetooth: hci1: Injecting HCI hardware error event
[  115.307587][ T5236] Bluetooth: hci1: hardware error 0x00
[  117.407129][ T5236] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  117.814695][ T5902] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  117.970378][ T5902] usb 2-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  117.976051][ T5902] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.979286][ T5902] usb 2-1: Product: syz
[  117.981157][ T5902] usb 2-1: Manufacturer: syz
[  117.983247][ T5902] usb 2-1: SerialNumber: syz
[  117.989360][ T5902] usb 2-1: config 0 descriptor??
[  118.211188][ T5902] usb 2-1: ignoring: probably an ADSL modem
[  119.673723][ T5902] cxacru 2-1:0.0: usbatm_usb_probe: bind failed: -19!
[  119.801696][   T24] usb 2-1: USB disconnect, device number 11
[  121.030851][ T7369] Device name cannot be null; rc = [-22]
[  121.860647][ T7373] overlayfs: failed to clone upperpath
[  122.199788][ T7377] netlink: 8 bytes leftover after parsing attributes in process `syz.2.551'.
[  122.714730][   T24] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  122.875444][   T24] usb 2-1: Using ep0 maxpacket: 8
[  122.886388][   T24] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  122.889725][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.926476][   T24] pvrusb2: Hardware description: Terratec Grabster AV400
[  122.937132][   T24] pvrusb2: **********
[  122.939414][   T24] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  122.945559][   T24] pvrusb2: Important functionality might not be entirely working.
[  122.948953][   T24] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  122.956982][   T24] pvrusb2: **********
[  123.133883][ T2396] pvrusb2: Invalid write control endpoint
[  123.217658][ T2396] pvrusb2: Invalid write control endpoint
[  123.220119][ T2396] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  123.231612][ T2396] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  123.239488][ T2396] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  123.253081][ T2396] pvrusb2: Device being rendered inoperable
[  123.263861][ T2396] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  123.266970][ T2396] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  123.287646][ T2396] pvrusb2: Attached sub-driver cx25840
[  123.294723][ T2396] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  123.303273][ T2396] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  123.331292][   T24] usb 2-1: USB disconnect, device number 12
[  124.137571][ T7411] netlink: 'syz.1.565': attribute type 5 has an invalid length.
[  124.588267][   T10] libceph: connect (1)[c::]:6789 error -101
[  124.590912][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  124.628768][ T7421] loop1: detected capacity change from 0 to 32768
[  124.653338][ T7421] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  124.660491][ T6369] udevd[6369]: symlink '../../loop1' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:1' failed: Read-only file system
[  124.728882][ T5859] ocfs2: Unmounting device (7,1) on (node local)
[  124.802797][  T793] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  124.826031][  T793] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  124.847626][  T974] libceph: connect (1)[c::]:6789 error -101
[  124.850130][  T974] libceph: mon0 (1)[c::]:6789 connect error
[  124.881644][ T7438] netlink: 56 bytes leftover after parsing attributes in process `syz.1.573'.
[  124.884852][ T7438] netlink: 8 bytes leftover after parsing attributes in process `syz.1.573'.
[  125.167555][ T7453] loop1: detected capacity change from 0 to 256
[  125.273072][   T33] audit: type=1326 audit(1755625462.155:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7096585ba7 code=0x7ffc0000
[  125.294771][   T33] audit: type=1326 audit(1755625462.155:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f709652add9 code=0x7ffc0000
[  125.314344][   T33] audit: type=1326 audit(1755625462.155:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f709658ebe9 code=0x7ffc0000
[  125.345299][ T7426] ceph: No mds server is up or the cluster is laggy
[  125.349594][   T33] audit: type=1326 audit(1755625462.155:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7096585ba7 code=0x7ffc0000
[  125.362766][   T33] audit: type=1326 audit(1755625462.155:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f709652add9 code=0x7ffc0000
[  125.375846][  T974] libceph: connect (1)[c::]:6789 error -101
[  125.378726][  T974] libceph: mon0 (1)[c::]:6789 connect error
[  125.388886][   T33] audit: type=1326 audit(1755625462.155:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f709658ebe9 code=0x7ffc0000
[  125.431413][   T33] audit: type=1326 audit(1755625462.155:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7096585ba7 code=0x7ffc0000
[  125.461560][   T33] audit: type=1326 audit(1755625462.155:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f709652add9 code=0x7ffc0000
[  125.474541][   T33] audit: type=1326 audit(1755625462.155:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f709658ebe9 code=0x7ffc0000
[  125.482805][   T33] audit: type=1326 audit(1755625462.155:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.1.583" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7096585ba7 code=0x7ffc0000
[  125.582809][ T7466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.588'.
[  125.591396][ T7466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.588'.
[  125.707715][ T7472] netlink: 'syz.1.591': attribute type 2 has an invalid length.
[  127.262730][ T7503] bond0: entered promiscuous mode
[  127.313174][ T7503] bond_slave_0: entered promiscuous mode
[  127.333456][ T7503] bond_slave_1: entered promiscuous mode
[  128.617424][ T7520] Driver unsupported XDP return value 0 on prog  (id 60) dev N/A, expect packet loss!
[  128.769639][ T7518] loop1: detected capacity change from 0 to 32768
[  128.799037][ T7518] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  128.855171][ T5859] ocfs2: Unmounting device (7,1) on (node local)
[  129.383501][  T793] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  129.563440][  T793] usb 2-1: Using ep0 maxpacket: 8
[  129.568377][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  129.577351][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  129.581619][  T793] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  129.588450][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  129.594105][  T793] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  129.598381][  T793] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  129.602206][  T793] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.612564][  T793] usb 2-1: config 0 descriptor??
[  129.619481][ T7538] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  129.855929][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.859029][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.861928][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.864753][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.868497][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.871325][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.874311][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.877106][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.879989][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.882769][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.886104][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.888954][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.978431][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.981209][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.984010][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.986770][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.989535][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.995296][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  129.997993][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.000786][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.003656][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.006423][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.009098][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.011885][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.017194][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.020035][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.022810][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.026572][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.029412][   T55] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  130.059934][ T5236] Bluetooth: hci3: Opcode 0x0c03 failed: -71
[  130.060159][   T24] usb 2-1: USB disconnect, device number 13
[  130.180704][ T7563] netlink: 'syz.0.624': attribute type 1 has an invalid length.
[  130.187030][ T7563] netlink: 232 bytes leftover after parsing attributes in process `syz.0.624'.
[  132.320172][ T7623] loop1: detected capacity change from 0 to 40427
[  132.330770][ T7623] F2FS-fs (loop1): invalid crc value
[  132.407000][ T7623] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  132.423518][ T7623] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  132.702761][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  132.706808][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  132.886927][ T5859] syz-executor: attempt to access beyond end of device
[  132.886927][ T5859] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  132.902778][ T5859] CPU: 1 UID: 0 PID: 5859 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  132.902800][ T5859] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  132.902809][ T5859] Call Trace:
[  132.902815][ T5859]  <TASK>
[  132.902822][ T5859]  dump_stack_lvl+0x189/0x250
[  132.902847][ T5859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.902863][ T5859]  ? __pfx_queue_work_on+0x10/0x10
[  132.902877][ T5859]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  132.902896][ T5859]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  132.902917][ T5859]  ? f2fs_hw_is_readonly+0x39b/0x470
[  132.902941][ T5859]  f2fs_handle_critical_error+0x37c/0x540
[  132.902991][ T5859]  f2fs_write_end_io+0x886/0xb60
[  132.903021][ T5859]  __submit_merged_bio+0x27a/0x6a0
[  132.903047][ T5859]  f2fs_submit_page_write+0xe16/0x21b0
[  132.903085][ T5859]  ? __f2fs_is_valid_blkaddr+0xd2a/0x14f0
[  132.903113][ T5859]  do_write_page+0x6a6/0x940
[  132.903136][ T5859]  f2fs_do_write_node_page+0x3b/0x60
[  132.903153][ T5859]  __write_node_folio+0x8c1/0x1550
[  132.903185][ T5859]  ? __pfx___write_node_folio+0x10/0x10
[  132.903201][ T5859]  ? folio_clear_dirty_for_io+0x6b5/0x8c0
[  132.903235][ T5859]  ? f2fs_folio_wait_writeback+0xa9/0x240
[  132.903255][ T5859]  f2fs_sync_node_pages+0xe6e/0x15e0
[  132.903292][ T5859]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  132.903354][ T5859]  ? f2fs_write_checkpoint+0xe43/0x1df0
[  132.903372][ T5859]  ? up_write+0x1c4/0x420
[  132.903386][ T5859]  ? do_raw_spin_unlock+0x4d/0x240
[  132.903407][ T5859]  f2fs_write_checkpoint+0xe6f/0x1df0
[  132.903468][ T5859]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  132.903520][ T5859]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  132.903534][ T5859]  ? kfree+0x18e/0x440
[  132.903568][ T5859]  ? kill_f2fs_super+0x298/0x6c0
[  132.903588][ T5859]  kill_f2fs_super+0x2c3/0x6c0
[  132.903608][ T5859]  ? __pfx_kill_f2fs_super+0x10/0x10
[  132.903627][ T5859]  ? radix_tree_delete_item+0x2b6/0x400
[  132.903652][ T5859]  ? shrinker_free+0x2ce/0x3e0
[  132.903671][ T5859]  deactivate_locked_super+0xbc/0x130
[  132.903691][ T5859]  cleanup_mnt+0x425/0x4c0
[  132.903707][ T5859]  ? lockdep_hardirqs_on+0x9c/0x150
[  132.903728][ T5859]  task_work_run+0x1d4/0x260
[  132.903750][ T5859]  ? __pfx_task_work_run+0x10/0x10
[  132.903766][ T5859]  ? __x64_sys_umount+0x122/0x160
[  132.903789][ T5859]  ? exit_to_user_mode_loop+0x40/0x110
[  132.903812][ T5859]  exit_to_user_mode_loop+0xec/0x110
[  132.903833][ T5859]  do_syscall_64+0x2bd/0x3b0
[  132.903852][ T5859]  ? lockdep_hardirqs_on+0x9c/0x150
[  132.903869][ T5859]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.903884][ T5859]  ? exc_page_fault+0x9f/0xf0
[  132.903904][ T5859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.903917][ T5859] RIP: 0033:0x7f709658ff17
[  132.903931][ T5859] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  132.903943][ T5859] RSP: 002b:00007ffc88bc5bc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  132.903959][ T5859] RAX: 0000000000000000 RBX: 00007f7096611c05 RCX: 00007f709658ff17
[  132.903968][ T5859] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc88bc5c80
[  132.903977][ T5859] RBP: 00007ffc88bc5c80 R08: 0000000000000000 R09: 0000000000000000
[  132.903985][ T5859] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc88bc6d10
[  132.903994][ T5859] R13: 00007f7096611c05 R14: 00000000000205fc R15: 00007ffc88bc6d50
[  132.904020][ T5859]  </TASK>
[  133.034882][    C1] vkms_vblank_simulate: vblank timer overrun
[  133.046395][ T5859] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  133.049619][ T5859] syz-executor: attempt to access beyond end of device
[  133.049619][ T5859] loop1: rw=2049, sector=41000, nr_sectors = 8 limit=40427
[  133.069238][ T5859] CPU: 0 UID: 0 PID: 5859 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  133.069260][ T5859] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  133.069268][ T5859] Call Trace:
[  133.069275][ T5859]  <TASK>
[  133.069281][ T5859]  dump_stack_lvl+0x189/0x250
[  133.069306][ T5859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.069323][ T5859]  ? __pfx_queue_work_on+0x10/0x10
[  133.069343][ T5859]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  133.069361][ T5859]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  133.069387][ T5859]  f2fs_handle_critical_error+0x37c/0x540
[  133.069443][ T5859]  f2fs_write_end_io+0x886/0xb60
[  133.069469][ T5859]  __submit_merged_bio+0x27a/0x6a0
[  133.069487][ T5859]  ? up_write+0x1c4/0x420
[  133.069505][ T5859]  __submit_merged_write_cond+0x44c/0x530
[  133.069528][ T5859]  __write_node_folio+0x10d2/0x1550
[  133.069559][ T5859]  ? __pfx___write_node_folio+0x10/0x10
[  133.069574][ T5859]  ? folio_clear_dirty_for_io+0x6b5/0x8c0
[  133.069607][ T5859]  ? f2fs_folio_wait_writeback+0xa9/0x240
[  133.069626][ T5859]  f2fs_sync_node_pages+0xe6e/0x15e0
[  133.069660][ T5859]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  133.069702][ T5859]  ? f2fs_write_checkpoint+0xe43/0x1df0
[  133.069720][ T5859]  ? up_write+0x1c4/0x420
[  133.069731][ T5859]  ? do_raw_spin_unlock+0x4d/0x240
[  133.069749][ T5859]  f2fs_write_checkpoint+0xe6f/0x1df0
[  133.069780][ T5859]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  133.069826][ T5859]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  133.069841][ T5859]  ? kfree+0x18e/0x440
[  133.069858][ T5859]  ? kill_f2fs_super+0x298/0x6c0
[  133.069877][ T5859]  kill_f2fs_super+0x2c3/0x6c0
[  133.069896][ T5859]  ? __pfx_kill_f2fs_super+0x10/0x10
[  133.069909][ T5859]  ? radix_tree_delete_item+0x2b6/0x400
[  133.069933][ T5859]  ? shrinker_free+0x2ce/0x3e0
[  133.069952][ T5859]  deactivate_locked_super+0xbc/0x130
[  133.069970][ T5859]  cleanup_mnt+0x425/0x4c0
[  133.069986][ T5859]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.070007][ T5859]  task_work_run+0x1d4/0x260
[  133.070027][ T5859]  ? __pfx_task_work_run+0x10/0x10
[  133.070042][ T5859]  ? __x64_sys_umount+0x122/0x160
[  133.070064][ T5859]  ? exit_to_user_mode_loop+0x40/0x110
[  133.070087][ T5859]  exit_to_user_mode_loop+0xec/0x110
[  133.070106][ T5859]  do_syscall_64+0x2bd/0x3b0
[  133.070124][ T5859]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.070140][ T5859]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.070154][ T5859]  ? exc_page_fault+0x9f/0xf0
[  133.070173][ T5859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.070186][ T5859] RIP: 0033:0x7f709658ff17
[  133.070200][ T5859] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  133.070211][ T5859] RSP: 002b:00007ffc88bc5bc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  133.070225][ T5859] RAX: 0000000000000000 RBX: 00007f7096611c05 RCX: 00007f709658ff17
[  133.070233][ T5859] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc88bc5c80
[  133.070241][ T5859] RBP: 00007ffc88bc5c80 R08: 0000000000000000 R09: 0000000000000000
[  133.070249][ T5859] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc88bc6d10
[  133.070257][ T5859] R13: 00007f7096611c05 R14: 00000000000205fc R15: 00007ffc88bc6d50
[  133.070282][ T5859]  </TASK>
[  133.070289][ T5859] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  134.603193][ T5902] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  134.754884][ T5902] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  134.758544][ T5902] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.765383][ T5902] usb 1-1: config 0 descriptor??
[  134.952753][ T7739] netlink: 'syz.1.668': attribute type 3 has an invalid length.
[  135.017042][ T7743] loop1: detected capacity change from 0 to 2048
[  135.026874][ T7743] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  135.784188][ T5902] usb 1-1: Cannot set autoneg
[  135.787335][ T5902] MOSCHIP usb-ethernet driver 1-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  135.797440][ T5902] usb 1-1: USB disconnect, device number 8
[  136.624745][ T7770] netlink: 8 bytes leftover after parsing attributes in process `syz.0.681'.
[  136.889678][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz.1.690'.
[  137.223568][ T5882] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[  137.384997][ T5882] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  137.392711][ T5882] usb 2-1: config 0 interface 0 has no altsetting 0
[  137.405525][ T5882] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  137.408869][ T5882] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.412068][ T5882] usb 2-1: Product: syz
[  137.422333][ T5882] usb 2-1: Manufacturer: syz
[  137.429087][ T5882] usb 2-1: SerialNumber: syz
[  137.437580][ T5882] usb 2-1: config 0 descriptor??
[  137.444782][ T5882] usb 2-1: selecting invalid altsetting 0
[  137.605944][ T7825] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0
[  137.659800][  T974] usb 2-1: USB disconnect, device number 14
[  137.809455][ T7835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.713'.
[  137.819426][ T7835] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[  137.917688][ T7840] netlink: 44 bytes leftover after parsing attributes in process `syz.2.715'.
[  138.416245][ T7868] sctp: [Deprecated]: syz.1.729 (pid 7868) Use of int in max_burst socket option deprecated.
[  138.416245][ T7868] Use struct sctp_assoc_value instead
[  139.051357][ T7892] netlink: 666 bytes leftover after parsing attributes in process `syz.1.740'.
[  139.687711][ T7908] netlink: 'syz.0.748': attribute type 1 has an invalid length.
[  139.738256][ T7908] bond1: entered promiscuous mode
[  139.741690][ T7908] 8021q: adding VLAN 0 to HW filter on device bond1
[  139.768024][ T7913] 8021q: adding VLAN 0 to HW filter on device bond1
[  139.779037][ T7913] bond1: (slave ip6gre1): The slave device specified does not support setting the MAC address
[  139.789127][ T7913] bond1: (slave ip6gre1): Setting fail_over_mac to active for active-backup mode
[  139.805032][ T7913] bond1: (slave ip6gre1): making interface the new active one
[  139.813129][ T7913] ip6gre1: entered promiscuous mode
[  139.820596][ T7913] bond1: (slave ip6gre1): Enslaving as an active interface with an up link
[  139.890591][ T7904] loop1: detected capacity change from 0 to 32768
[  139.903469][ T7904] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  139.955678][ T5859] ocfs2: Unmounting device (7,1) on (node local)
[  140.133910][ T7929] netlink: 'syz.1.757': attribute type 8 has an invalid length.
[  140.227913][ T7936] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  141.230482][ T7959] loop1: detected capacity change from 0 to 40427
[  141.238403][ T7959] F2FS-fs (loop1): invalid crc value
[  141.329384][ T7959] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  141.334048][ T7959] F2FS-fs (loop1): Start checkpoint disabled!
[  141.344352][ T7959] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  141.429047][ T6766] kworker/u10:15: attempt to access beyond end of device
[  141.429047][ T6766] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  141.438819][ T6766] CPU: 1 UID: 0 PID: 6766 Comm: kworker/u10:15 Not tainted syzkaller #0 PREEMPT(full) 
[  141.438839][ T6766] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  141.438848][ T6766] Workqueue: writeback wb_workfn (flush-7:1)
[  141.438870][ T6766] Call Trace:
[  141.438878][ T6766]  <TASK>
[  141.438884][ T6766]  dump_stack_lvl+0x189/0x250
[  141.438911][ T6766]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.438940][ T6766]  ? __pfx_queue_work_on+0x10/0x10
[  141.438952][ T6766]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  141.438968][ T6766]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  141.438992][ T6766]  f2fs_handle_critical_error+0x37c/0x540
[  141.439016][ T6766]  f2fs_write_end_io+0x886/0xb60
[  141.439043][ T6766]  __submit_merged_bio+0x27a/0x6a0
[  141.439069][ T6766]  __submit_merged_write_cond+0x255/0x530
[  141.439094][ T6766]  f2fs_write_data_pages+0x261d/0x3000
[  141.439148][ T6766]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  141.439181][ T6766]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  141.439229][ T6766]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  141.439261][ T6766]  ? trace_f2fs_writepages+0x7f/0x200
[  141.439281][ T6766]  ? f2fs_write_node_pages+0x478/0x6e0
[  141.439301][ T6766]  ? unwind_next_frame+0xa5/0x2390
[  141.439315][ T6766]  ? rcu_is_watching+0x15/0xb0
[  141.439328][ T6766]  ? __kasan_check_byte+0x12/0x40
[  141.439347][ T6766]  ? unwind_next_frame+0xa5/0x2390
[  141.439370][ T6766]  ? unwind_next_frame+0xa5/0x2390
[  141.439384][ T6766]  ? rcu_is_watching+0x15/0xb0
[  141.439401][ T6766]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  141.439423][ T6766]  do_writepages+0x32e/0x550
[  141.439447][ T6766]  ? reacquire_held_locks+0x127/0x1d0
[  141.439461][ T6766]  ? writeback_sb_inodes+0x384/0x1010
[  141.439487][ T6766]  __writeback_single_inode+0x145/0xff0
[  141.439506][ T6766]  ? do_raw_spin_unlock+0x4d/0x240
[  141.439528][ T6766]  writeback_sb_inodes+0x6c7/0x1010
[  141.439571][ T6766]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  141.439629][ T6766]  ? rcu_is_watching+0x15/0xb0
[  141.439678][ T6766]  wb_writeback+0x43b/0xaf0
[  141.439706][ T6766]  ? queue_io+0x361/0x590
[  141.439726][ T6766]  ? __pfx_wb_writeback+0x10/0x10
[  141.439752][ T6766]  ? _raw_spin_unlock_irq+0x23/0x50
[  141.439775][ T6766]  wb_workfn+0x409/0xef0
[  141.439805][ T6766]  ? __pfx_wb_workfn+0x10/0x10
[  141.439825][ T6766]  ? __lock_acquire+0xab9/0xd20
[  141.439856][ T6766]  ? process_scheduled_works+0x9ef/0x17b0
[  141.439876][ T6766]  ? _raw_spin_unlock_irq+0x23/0x50
[  141.439892][ T6766]  ? process_scheduled_works+0x9ef/0x17b0
[  141.439910][ T6766]  ? process_scheduled_works+0x9ef/0x17b0
[  141.439926][ T6766]  process_scheduled_works+0xae1/0x17b0
[  141.439970][ T6766]  ? __pfx_process_scheduled_works+0x10/0x10
[  141.440001][ T6766]  worker_thread+0x8a0/0xda0
[  141.440042][ T6766]  kthread+0x711/0x8a0
[  141.440063][ T6766]  ? __pfx_worker_thread+0x10/0x10
[  141.440077][ T6766]  ? __pfx_kthread+0x10/0x10
[  141.440096][ T6766]  ? _raw_spin_unlock_irq+0x23/0x50
[  141.440112][ T6766]  ? lockdep_hardirqs_on+0x9c/0x150
[  141.440129][ T6766]  ? __pfx_kthread+0x10/0x10
[  141.440147][ T6766]  ret_from_fork+0x3fc/0x770
[  141.440165][ T6766]  ? __pfx_ret_from_fork+0x10/0x10
[  141.440186][ T6766]  ? __switch_to_asm+0x39/0x70
[  141.440203][ T6766]  ? __switch_to_asm+0x33/0x70
[  141.440218][ T6766]  ? __pfx_kthread+0x10/0x10
[  141.440237][ T6766]  ret_from_fork_asm+0x1a/0x30
[  141.440270][ T6766]  </TASK>
[  141.440277][ T6766] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  142.305447][ T8001] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.785'.
[  142.428653][ T8011] netlink: 'syz.0.793': attribute type 1 has an invalid length.
[  142.444368][ T8014] netlink: 132 bytes leftover after parsing attributes in process `syz.1.794'.
[  142.460086][ T8011] 8021q: adding VLAN 0 to HW filter on device bond2
[  142.500174][ T8011] bond2: (slave bridge1): making interface the new active one
[  142.504933][ T8011] bond2: (slave bridge1): Enslaving as an active interface with an up link
[  142.546589][ T8011] bond2: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  143.218232][ T8052] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  143.228435][ T8052] CIFS mount error: No usable UNC path provided in device string!
[  143.228435][ T8052] 
[  143.232765][ T8052] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  143.730007][ T8056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.814'.
[  143.736648][ T8056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.814'.
[  143.740553][ T8056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.814'.
[  143.744549][ T8056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.814'.
[  143.965946][ T5882] IPVS: starting estimator thread 0...
[  144.064861][ T8070] IPVS: using max 43 ests per chain, 103200 per kthread
[  144.187216][   T33] kauditd_printk_skb: 9 callbacks suppressed
[  144.187233][   T33] audit: type=1326 audit(1755625481.075:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.211065][   T33] audit: type=1326 audit(1755625481.095:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.232438][   T33] audit: type=1326 audit(1755625481.095:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.242224][   T33] audit: type=1326 audit(1755625481.095:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.251512][   T33] audit: type=1326 audit(1755625481.095:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.261057][   T33] audit: type=1326 audit(1755625481.095:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.271289][   T33] audit: type=1326 audit(1755625481.095:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.281404][   T33] audit: type=1326 audit(1755625481.095:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.290199][   T33] audit: type=1326 audit(1755625481.095:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.298937][   T33] audit: type=1326 audit(1755625481.095:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  144.548105][ T8082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.824'.
[  144.808632][ T8065] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  146.563514][ T5882] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  146.714232][ T5882] usb 1-1: Using ep0 maxpacket: 16
[  146.721565][ T5882] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  146.730707][ T5882] usb 1-1: config 0 interface 0 has no altsetting 0
[  146.734986][ T5882] usb 1-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[  146.738316][ T5882] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.758255][ T8114] program syz.1.837 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  146.783782][ T5882] usb 1-1: config 0 descriptor??
[  147.039340][ T8118] loop1: detected capacity change from 0 to 32768
[  147.060524][ T8118] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  147.091499][ T8118] XFS (loop1): Ending clean mount
[  147.098035][ T8118] XFS (loop1): Quotacheck needed: Please wait.
[  147.124991][ T8118] XFS (loop1): Quotacheck: Done.
[  147.146145][ T5859] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  147.212940][ T5882] logitech-djreceiver 0003:046D:C71B.0006: hidraw0: USB HID v0.05 Device [HID 046d:c71b] on usb-dummy_hcd.0-1/input0
[  147.322088][ T8134] loop1: detected capacity change from 0 to 512
[  147.326407][ T8134] EXT4-fs: Ignoring removed bh option
[  147.331957][ T8134] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  147.346560][ T8134] EXT4-fs (loop1): 1 truncate cleaned up
[  147.349891][ T8134] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.358339][ T8134] EXT4-fs warning (device loop1): ext4_group_add:1736: No reserved GDT blocks, can't resize
[  147.388244][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.608699][ T5882] usb 1-1: USB disconnect, device number 9
[  147.628678][ T8150] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  147.642661][ T8150] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  150.050479][ T8206] loop1: detected capacity change from 0 to 512
[  150.074783][ T8206] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  150.087346][ T8206] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  150.090158][ T8206] EXT4-fs (loop1): orphan cleanup on readonly fs
[  150.105920][ T8206] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.873: corrupted inode contents
[  150.112690][ T8206] EXT4-fs (loop1): Remounting filesystem read-only
[  150.117477][ T8206] EXT4-fs (loop1): 1 truncate cleaned up
[  150.122282][ T6764] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  150.127732][ T6764] __quota_error: 22 callbacks suppressed
[  150.127742][ T6764] Quota error (device loop1): write_blk: dquota write failed
[  150.132033][ T6764] Quota error (device loop1): remove_free_dqentry: Can't write block (5) with free entries
[  150.136375][ T6764] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  150.140068][ T6764] Quota error (device loop1): write_blk: dquota write failed
[  150.142184][ T6764] Quota error (device loop1): free_dqentry: Can't move quota data block (5) to free list
[  150.145782][ T6764] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  150.148693][ T6764] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  150.154734][ T6764] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  150.160031][ T8206] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  150.188454][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.393272][ T8217] netlink: 96 bytes leftover after parsing attributes in process `syz.1.878'.
[  150.813587][ T8235] loop1: detected capacity change from 0 to 32768
[  150.819360][ T8235] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.886 (8235)
[  150.833392][ T8235] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  150.837260][ T8235] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  150.840736][ T8235] BTRFS info (device loop1): using free-space-tree
[  150.925017][ T8235] BTRFS info (device loop1): rebuilding free space tree
[  151.043429][ T5871] BTRFS info (device loop1): qgroup scan completed (inconsistency flag cleared)
[  151.098483][ T5859] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  151.238182][ T8268] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  151.515099][ T8280] loop1: detected capacity change from 0 to 16
[  151.526817][ T8280] erofs (device loop1): mounted with root inode @ nid 36.
[  151.795969][ T8293] loop1: detected capacity change from 0 to 4096
[  151.799894][ T8293] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  151.825301][ T8293] ntfs3(loop1): ino=19, mi_enum_attr
[  151.827709][ T8293] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  151.842089][ T8293] ntfs3(loop1): failed to convert "c46c" to cp861
[  151.849504][ T8293] ntfs3(loop1): ino=20, mi_enum_attr
[  152.864898][ T8312] netlink: 12 bytes leftover after parsing attributes in process `syz.1.915'.
[  152.868019][ T8312] netlink: 8 bytes leftover after parsing attributes in process `syz.1.915'.
[  153.216376][ T8320] netlink: 'syz.1.917': attribute type 3 has an invalid length.
[  153.219410][ T8320] netlink: 'syz.1.917': attribute type 3 has an invalid length.
[  153.234519][ T8320] netlink: 16 bytes leftover after parsing attributes in process `syz.1.917'.
[  153.997680][ T5902] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  154.143093][ T5902] usb 1-1: Using ep0 maxpacket: 32
[  154.152858][ T5902] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.163428][ T5902] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.174718][ T5902] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  154.182830][ T5902] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.227788][ T5902] usb 1-1: config 0 descriptor??
[  154.243654][ T5902] hub 1-1:0.0: USB hub found
[  154.446788][ T5902] hub 1-1:0.0: config failed, can't read hub descriptor (err -90)
[  154.461294][ T8353] netlink: 'syz.2.933': attribute type 10 has an invalid length.
[  154.472251][ T8353] team0: Port device syz_tun added
[  154.578533][ T8360] netlink: 64 bytes leftover after parsing attributes in process `syz.2.936'.
[  154.859970][ T5902] hid-generic 0003:046D:C31C.0007: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.0-1/input0
[  155.037851][ T8390] netlink: 'syz.1.950': attribute type 10 has an invalid length.
[  155.173301][ T5902] usb 1-1: USB disconnect, device number 10
[  156.274152][ T8423] loop1: detected capacity change from 0 to 2048
[  156.284759][ T8423] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  156.467507][ T8433] : entered promiscuous mode
[  156.589625][ T8439] sctp: [Deprecated]: syz.0.972 (pid 8439) Use of int in max_burst socket option.
[  156.589625][ T8439] Use struct sctp_assoc_value instead
[  156.903200][ T5882] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  157.319127][ T5882] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  157.322784][ T5882] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.330119][ T5882] usb 2-1: Product: syz
[  157.331896][ T5882] usb 2-1: Manufacturer: syz
[  157.334681][ T5882] usb 2-1: SerialNumber: syz
[  157.340876][ T5882] usb 2-1: config 0 descriptor??
[  157.390058][ T8454] overlayfs: failed to clone upperpath
[  157.598596][ T5882] airspy 2-1:0.0: usb_control_msg() failed -71 request 09
[  157.614428][ T5882] airspy 2-1:0.0: Could not detect board
[  157.616724][ T5882] airspy 2-1:0.0: probe with driver airspy failed with error -71
[  157.622817][ T5882] usb 2-1: USB disconnect, device number 15
[  157.629576][ T8458] netlink: 12 bytes leftover after parsing attributes in process `syz.0.980'.
[  157.685428][ T8460] PKCS7: Unknown OID: [4] 0.38.35.0.951690.11253
[  157.687584][ T8460] PKCS7: Only support pkcs7_signedData type
[  158.309173][ T8467] loop1: detected capacity change from 0 to 512
[  159.529095][ T8502] sock: sock_set_timeout: `syz.2.999' (pid 8502) tries to set negative timeout
[  159.816140][ T8517] openvswitch: netlink: Flow actions attr not present in new flow.
[  159.844002][ T5882] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  159.994761][ T5882] usb 2-1: Using ep0 maxpacket: 32
[  160.000322][ T5882] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.006009][ T5882] usb 2-1: New USB device found, idVendor=1020, idProduct=0006, bcdDevice= 0.00
[  160.009867][ T5882] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.020692][ T5882] usb 2-1: config 0 descriptor??
[  160.440684][ T5882] belkin 0003:1020:0006.0008: hidraw0: USB HID v0.00 Device [HID 1020:0006] on usb-dummy_hcd.1-1/input0
[  160.643168][ T5902] usb 2-1: USB disconnect, device number 16
[  162.174180][ T8601] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.1045'.
[  162.826050][ T8615] netlink: 11 bytes leftover after parsing attributes in process `syz.2.1052'.
[  163.619135][ T8627] netlink: 'syz.0.1057': attribute type 4 has an invalid length.
[  164.139780][ T8648] loop1: detected capacity change from 0 to 512
[  164.154543][ T8648] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.215527][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.493109][ T5902] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  164.643134][ T5902] usb 2-1: Using ep0 maxpacket: 16
[  164.647399][ T5902] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  164.651730][ T5902] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  164.658758][ T5902] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  164.662152][ T5902] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.665270][ T5902] usb 2-1: Product: syz
[  164.667036][ T5902] usb 2-1: Manufacturer: syz
[  164.668846][ T5902] usb 2-1: SerialNumber: syz
[  164.672702][ T5902] usb 2-1: config 0 descriptor??
[  164.678346][ T5902] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  164.682204][ T5902] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  164.721756][    C1] vcan0: j1939_tp_rxtimer: 0xffff88810ebf1000: rx timeout, send abort
[  164.727183][    C1] vcan0: j1939_tp_rxtimer: 0xffff888107abb000: rx timeout, send abort
[  164.730449][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88810ebf1000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  164.736267][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888107abb000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  165.281483][ T5902] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[  165.284650][ T5902] em28xx 2-1:0.0: Config register raw data: 0xfffffffb
[  165.867637][ T8670] tipc: Started in network mode
[  165.871092][ T8670] tipc: Node identity 4, cluster identity 4711
[  165.874269][ T8670] tipc: Node number set to 4
[  165.890786][ T5902] em28xx 2-1:0.0: Unknown AC97 audio processor detected!
[  165.896766][ T5902] em28xx 2-1:0.0: couldn't setup AC97 register 2
[  166.179328][ T5902] em28xx 2-1:0.0: couldn't setup AC97 register 4
[  166.206041][ T5902] em28xx 2-1:0.0: couldn't setup AC97 register 6
[  166.231194][ T5902] em28xx 2-1:0.0: couldn't setup AC97 register 54
[  166.241463][ T5902] em28xx 2-1:0.0: couldn't setup AC97 register 56
[  166.319463][ T5902] usb 2-1: USB disconnect, device number 17
[  167.503390][ T5882] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[  167.830276][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  167.834910][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  167.838963][ T5882] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  167.842796][ T5882] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.852184][ T5882] usb 1-1: config 0 descriptor??
[  168.137552][ T8728] fuse: Bad value for 'fd'
[  168.267831][ T8737] loop1: detected capacity change from 0 to 512
[  168.295280][ T8737] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.300314][ T8737] ext4 filesystem being mounted at /289/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.334037][ T5882] savu 0003:1E7D:2D5A.0009: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  168.364262][ T8737] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  168.384278][ T8737] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2 with error 28
[  168.390117][ T8737] EXT4-fs (loop1): This should not happen!! Data will be lost
[  168.390117][ T8737] 
[  168.395218][ T8737] EXT4-fs (loop1): Total free blocks count 0
[  168.397613][ T8737] EXT4-fs (loop1): Free/Dirty block details
[  168.399961][ T8737] EXT4-fs (loop1): free_blocks=65280
[  168.408334][ T8737] EXT4-fs (loop1): dirty_blocks=2
[  168.410425][ T8737] EXT4-fs (loop1): Block reservation details
[  168.412748][ T8737] EXT4-fs (loop1): i_reserved_data_blocks=2
[  168.448643][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.524829][ T5902] usb 1-1: USB disconnect, device number 11
[  168.536446][ T8748] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1104'.
[  168.596764][ T8753] loop1: detected capacity change from 0 to 512
[  168.605701][ T8753] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  168.609469][ T8753] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  168.620025][ T8753] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  168.624487][ T8753] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  168.627867][ T8753] System zones: 0-2, 18-18, 34-35
[  168.632072][ T8753] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.970919][ T8760] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1107: bg 0: block 353: padding at end of block bitmap is not set
[  169.185403][ T8766] syz_tun: entered allmulticast mode
[  169.195070][ T8765] syz_tun: left allmulticast mode
[  169.430378][ T8784] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1120'.
[  169.546537][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.113154][ T5882] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  170.263295][ T5882] usb 2-1: Using ep0 maxpacket: 32
[  170.267108][ T5882] usb 2-1: config 0 has an invalid interface number: 12 but max is 0
[  170.270208][ T5882] usb 2-1: config 0 has no interface number 0
[  170.272622][ T5882] usb 2-1: config 0 interface 12 has no altsetting 0
[  170.278276][ T5882] usb 2-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  170.281937][ T5882] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.285253][ T5882] usb 2-1: Product: syz
[  170.287031][ T5882] usb 2-1: Manufacturer: syz
[  170.288841][ T5882] usb 2-1: SerialNumber: syz
[  170.292879][ T5882] usb 2-1: config 0 descriptor??
[  170.907859][ T5882] f81534 2-1:0.12: f81534_set_register: reg: 1003 data: e0 failed: -71
[  170.911400][ T5882] f81534 2-1:0.12: f81534_find_config_idx: read failed: -71
[  170.915199][ T5882] f81534 2-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  170.929376][ T5882] f81534 2-1:0.12: probe with driver f81534 failed with error -71
[  170.936450][ T5882] usb 2-1: USB disconnect, device number 18
[  171.136367][ T8825] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1303
[  171.272444][ T8833] netlink: 204 bytes leftover after parsing attributes in process `syz.0.1143'.
[  171.670167][   T33] audit: type=1326 audit(1755625508.555:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8848 comm="syz.0.1149" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f756998ebe9 code=0x7ffc0000
[  171.712590][   T33] audit: type=1326 audit(1755625508.565:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8848 comm="syz.0.1149" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f756998ebe9 code=0x7ffc0000
[  171.743357][   T33] audit: type=1326 audit(1755625508.585:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8848 comm="syz.0.1149" exe="/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f756998ebe9 code=0x7ffc0000
[  171.763316][   T33] audit: type=1326 audit(1755625508.585:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8848 comm="syz.0.1149" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f756998ebe9 code=0x7ffc0000
[  171.779833][   T33] audit: type=1326 audit(1755625508.585:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8848 comm="syz.0.1149" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f756998ebe9 code=0x7ffc0000
[  171.900953][ T8856] syzkaller1: entered promiscuous mode
[  171.907711][ T8856] syzkaller1: entered allmulticast mode
[  172.869687][ T8863] loop1: detected capacity change from 0 to 40427
[  172.873388][ T8863] F2FS-fs (loop1): Image doesn't support compression
[  172.883855][ T8863] F2FS-fs (loop1): invalid crc value
[  172.914744][ T8863] F2FS-fs (loop1): SIT is corrupted node# 2 vs 7
[  173.112159][ T8863] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-117)
[  174.315658][ T8892] netlink: 'syz.0.1165': attribute type 7 has an invalid length.
[  174.323225][ T8892] netlink: 'syz.0.1165': attribute type 8 has an invalid length.
[  174.326929][ T8886] loop1: detected capacity change from 0 to 32768
[  174.330499][ T8886] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section replicas: no devices in entry sb: 33/0 []
[  174.330499][ T8886] replicas (size 24):
[  174.330499][ T8886] btree: 0/1 [2] sb: 33/0 [] (unknown data_type 144): 56/184 [0 0 0 0 0 0 108 1 0 0 6 0 0 0 0 0 0 0 0 0 0 0 10 0 0 0 0 0 0 0 1 0 1 0 5 0 0 0 8 0 0 0 0 0 0 0 1 0 2 0 5 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 5 0 0 0 0 0 0 0 0 0 0 0 1 0 0 1 5 0 0 0 0 0 0 0 0 0 0 0 1 0 0 2 5 0 0 0 0 0 0 0 0 0 0 0 1 0 0 3 5 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 6 0 0 0 0 11 0 0 0 0 0 0 3 1 1 0 0 0 0 0 2 0 0 0 6 0 0 0 0 0 0 0 0 0 0 0 2 1 1 0 0 0 0 0 2 0 0 0 6 0 0 0 16 0]
[  174.330499][ T8886] 
[  174.351126][ T8886] bcachefs: bch2_fs_get_tree() error: invalid_replicas_entry
[  174.398813][ T8895] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  174.483804][ T8898] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1168'.
[  175.372270][ T8917] overlayfs: failed to clone upperpath
[  175.432007][ T8921] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1177'.
[  175.436200][ T8921] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1177'.
[  175.613443][ T8933] netlink: 'syz.1.1183': attribute type 1 has an invalid length.
[  175.616541][ T8933] netlink: 'syz.1.1183': attribute type 2 has an invalid length.
[  175.705325][  T974] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  175.910630][  T974] usb 1-1: config 0 interface 0 altsetting 185 endpoint 0x81 has invalid wMaxPacketSize 0
[  175.925581][  T974] usb 1-1: config 0 interface 0 has no altsetting 0
[  175.936812][  T974] usb 1-1: New USB device found, idVendor=05ac, idProduct=027a, bcdDevice= 0.00
[  175.954743][  T974] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.108021][  T974] usb 1-1: config 0 descriptor??
[  176.204601][ T8935] loop1: detected capacity change from 0 to 32768
[  176.212818][ T8935] (syz.1.1184,8935,0):ocfs2_get_clusters:616 ERROR: status = -34
[  176.216089][ T8935] (syz.1.1184,8935,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -34
[  176.219439][ T8935] (syz.1.1184,8935,0):ocfs2_map_slot_buffers:378 ERROR: status = -34
[  176.221972][ T8935] (syz.1.1184,8935,0):ocfs2_init_slot_info:426 ERROR: status = -34
[  176.225021][ T8935] (syz.1.1184,8935,0):ocfs2_initialize_super:2222 ERROR: status = -34
[  176.228809][ T8935] (syz.1.1184,8935,0):ocfs2_fill_super:1177 ERROR: status = -34
[  176.526387][  T974] apple 0003:05AC:027A.000A: hidraw0: USB HID v8.00 Device [HID 05ac:027a] on usb-dummy_hcd.0-1/input0
[  176.731191][ T5882] usb 1-1: USB disconnect, device number 12
[  177.898259][ T8967] netlink: 'syz.2.1196': attribute type 21 has an invalid length.
[  177.910509][ T8967] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1196'.
[  177.947447][ T8967] netlink: 'syz.2.1196': attribute type 5 has an invalid length.
[  177.997855][ T8967] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1196'.
[  178.058492][ T8969] netlink: 384 bytes leftover after parsing attributes in process `syz.0.1195'.
[  178.063966][ T8969] netlink: 'syz.0.1195': attribute type 2 has an invalid length.
[  179.842562][ T9038] loop1: detected capacity change from 0 to 256
[  179.866554][ T9038] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5f96684, utbl_chksum : 0xe619d30d)
[  180.061070][ T5236] Bluetooth: hci2: unexpected event for opcode 0x1804
[  181.645136][ T9073] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1245'.
[  181.648916][ T9073] unsupported nlmsg_type 40
[  181.796464][ T9090] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1252'.
[  182.130418][ T9109] loop1: detected capacity change from 0 to 1024
[  182.147786][ T9109] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.169089][ T9109] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 13. Delete some EAs or run e2fsck.
[  182.203769][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.163725][ T9134] loop1: detected capacity change from 0 to 16
[  183.167712][ T9134] erofs (device loop1): unidentified incompatible feature 1000000, please upgrade kernel
[  183.287068][ T9138] ptrace attach of "/syz-executor exec"[5859] was attempted by ""[9138]
[  184.043090][ T5236] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  184.125594][   T55] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  184.131401][   T55] Bluetooth: hci2: Injecting HCI hardware error event
[  184.136307][   T55] Bluetooth: hci2: hardware error 0x00
[  184.174876][ T9143] loop1: detected capacity change from 0 to 40427
[  184.184281][ T9143] F2FS-fs: heap/no_heap options were deprecated
[  184.187905][ T9143] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  184.191181][ T9143] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  184.198667][ T9143] F2FS-fs (loop1): old and new quota format mixing
[  184.741202][ T9162] loop1: detected capacity change from 0 to 40427
[  184.747524][ T5889] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  184.808848][ T9162] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  184.816229][ T9162] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  184.971890][ T5889] usb 1-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e
[  184.976409][ T5889] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.006024][ T5889] pwc: Logitech/Cisco VT Camera webcam detected.
[  185.289767][ T9169] syz.1.1285: attempt to access beyond end of device
[  185.289767][ T9169] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  185.596922][ T5859] syz-executor: attempt to access beyond end of device
[  185.596922][ T5859] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  185.616817][ T5859] CPU: 1 UID: 0 PID: 5859 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  185.616837][ T5859] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  185.616846][ T5859] Call Trace:
[  185.616852][ T5859]  <TASK>
[  185.616859][ T5859]  dump_stack_lvl+0x189/0x250
[  185.616884][ T5859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  185.616902][ T5859]  ? __pfx_queue_work_on+0x10/0x10
[  185.616916][ T5859]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  185.616935][ T5859]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  185.616964][ T5859]  f2fs_handle_critical_error+0x37c/0x540
[  185.616994][ T5859]  f2fs_write_end_io+0x886/0xb60
[  185.617026][ T5859]  __submit_merged_bio+0x27a/0x6a0
[  185.617052][ T5859]  __submit_merged_write_cond+0x255/0x530
[  185.617080][ T5859]  f2fs_write_data_pages+0x261d/0x3000
[  185.617136][ T5859]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  185.617203][ T5859]  ? __mod_zone_page_state+0xd7/0x140
[  185.617231][ T5859]  ? folios_put_refs+0x560/0x640
[  185.617258][ T5859]  ? __pfx_folios_put_refs+0x10/0x10
[  185.617273][ T5859]  ? rcu_is_watching+0x15/0xb0
[  185.617297][ T5859]  ? __lock_acquire+0xab9/0xd20
[  185.617335][ T5859]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  185.617358][ T5859]  do_writepages+0x32e/0x550
[  185.617389][ T5859]  ? do_raw_spin_unlock+0x4d/0x240
[  185.617412][ T5859]  filemap_fdatawrite+0x199/0x240
[  185.617433][ T5859]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  185.617498][ T5859]  ? do_raw_spin_unlock+0x4d/0x240
[  185.617520][ T5859]  f2fs_sync_dirty_inodes+0x31f/0x830
[  185.617550][ T5859]  f2fs_write_checkpoint+0x95a/0x1df0
[  185.617586][ T5859]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  185.617698][ T5859]  ? kill_f2fs_super+0x298/0x6c0
[  185.617720][ T5859]  kill_f2fs_super+0x2c3/0x6c0
[  185.617742][ T5859]  ? __pfx_kill_f2fs_super+0x10/0x10
[  185.617760][ T5859]  ? radix_tree_delete_item+0x2b6/0x400
[  185.617785][ T5859]  ? shrinker_free+0x2ce/0x3e0
[  185.617805][ T5859]  deactivate_locked_super+0xbc/0x130
[  185.617824][ T5859]  cleanup_mnt+0x425/0x4c0
[  185.617841][ T5859]  ? lockdep_hardirqs_on+0x9c/0x150
[  185.617863][ T5859]  task_work_run+0x1d4/0x260
[  185.617886][ T5859]  ? __pfx_task_work_run+0x10/0x10
[  185.617904][ T5859]  ? __x64_sys_umount+0x122/0x160
[  185.617929][ T5859]  ? exit_to_user_mode_loop+0x40/0x110
[  185.617954][ T5859]  exit_to_user_mode_loop+0xec/0x110
[  185.617976][ T5859]  do_syscall_64+0x2bd/0x3b0
[  185.617995][ T5859]  ? lockdep_hardirqs_on+0x9c/0x150
[  185.618013][ T5859]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.618028][ T5859]  ? exc_page_fault+0x9f/0xf0
[  185.618049][ T5859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.618063][ T5859] RIP: 0033:0x7f709658ff17
[  185.618078][ T5859] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  185.618090][ T5859] RSP: 002b:00007ffc88bc5bc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  185.618106][ T5859] RAX: 0000000000000000 RBX: 00007f7096611c05 RCX: 00007f709658ff17
[  185.618115][ T5859] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc88bc5c80
[  185.618124][ T5859] RBP: 00007ffc88bc5c80 R08: 0000000000000000 R09: 0000000000000000
[  185.618133][ T5859] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc88bc6d10
[  185.618142][ T5859] R13: 00007f7096611c05 R14: 000000000002d424 R15: 00007ffc88bc6d50
[  185.618170][ T5859]  </TASK>
[  185.620485][ T5859] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  185.684905][ T5889] pwc: send_video_command error -71
[  185.684934][ T5889] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  185.685019][ T5889] Philips webcam 1-1:127.0: probe with driver Philips webcam failed with error -71
[  185.689952][ T5889] usb 1-1: USB disconnect, device number 13
[  186.101258][ T9175] 9pnet_fd: p9_fd_create_tcp (9175): problem connecting socket to 127.0.0.1
[  186.203462][   T55] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  186.423967][ T9183] loop1: detected capacity change from 0 to 32768
[  186.427065][ T9183] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1293 (9183)
[  186.434230][ T9183] BTRFS info (device loop1): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  186.437822][ T9183] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  186.440443][ T9183] BTRFS info (device loop1): using free-space-tree
[  186.514896][ T5859] BTRFS info (device loop1): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  186.668876][ T9209] loop1: detected capacity change from 0 to 256
[  186.681108][ T9209] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011d93, chksum : 0x4501cc6b, utbl_chksum : 0xe619d30d)
[  186.870356][ T9217] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  186.873244][ T9217] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  186.882729][ T9217] vhci_hcd vhci_hcd.0: Device attached
[  186.891117][ T9217] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(10)
[  186.893930][ T9217] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  186.897937][ T9217] vhci_hcd vhci_hcd.0: Device attached
[  186.907076][ T9217] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(12)
[  186.909852][ T9217] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  186.916876][ T9217] vhci_hcd vhci_hcd.0: Device attached
[  186.921263][ T9217] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  186.933639][ T9217] vhci_hcd vhci_hcd.0: pdev(1) rhport(4) sockfd(16)
[  186.936536][ T9217] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  186.941239][ T9217] vhci_hcd vhci_hcd.0: Device attached
[  186.954168][ T9217] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(18)
[  186.956602][ T9217] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  186.959902][ T9217] vhci_hcd vhci_hcd.0: Device attached
[  186.972073][ T9217] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  186.986721][ T9217] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  186.993445][ T9217] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  187.002714][ T9217] vhci_hcd vhci_hcd.0: port 0 already used
[  187.028169][ T9226] vhci_hcd: connection closed
[  187.028512][ T9222] vhci_hcd: connection closed
[  187.029536][ T9224] vhci_hcd: connection closed
[  187.032703][ T9218] vhci_hcd: connection closed
[  187.032711][ T9220] vhci_hcd: connection closed
[  187.038738][ T5881] vhci_hcd: stop threads
[  187.042126][ T5881] vhci_hcd: release socket
[  187.044484][ T5881] vhci_hcd: disconnect device
[  187.047890][ T5881] vhci_hcd: stop threads
[  187.049745][ T5881] vhci_hcd: release socket
[  187.054565][ T5881] vhci_hcd: disconnect device
[  187.057323][ T5881] vhci_hcd: stop threads
[  187.059416][ T5881] vhci_hcd: release socket
[  187.062305][ T5881] vhci_hcd: disconnect device
[  187.066582][ T5881] vhci_hcd: stop threads
[  187.068610][ T5881] vhci_hcd: release socket
[  187.071011][ T5881] vhci_hcd: disconnect device
[  187.075866][ T5881] vhci_hcd: stop threads
[  187.077662][ T5881] vhci_hcd: release socket
[  187.079664][ T5881] vhci_hcd: disconnect device
[  187.123447][ T5889] usb 35-1: new low-speed USB device number 2 using vhci_hcd
[  187.127310][ T5889] usb 35-1: enqueue for inactive port 0
[  187.193332][ T5889] vhci_hcd: vhci_device speed not set
[  187.769995][ T9245] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1308'.
[  187.777296][ T9245] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1308'.
[  187.940235][ T9249] loop1: detected capacity change from 0 to 4096
[  187.951453][ T9249] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.009155][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.094950][ T9262] loop1: detected capacity change from 0 to 1024
[  188.098212][ T9262] EXT4-fs: Ignoring removed nobh option
[  188.100353][ T9262] EXT4-fs: Ignoring removed bh option
[  188.142286][ T9262] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.182084][ T9269] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1317'.
[  188.325640][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.001818][ T9303] netlink: ct family unspecified
[  189.021040][ T9303] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  190.436832][ T9326] @: renamed from bond_slave_0
[  191.006058][   T55] Bluetooth: hci0: command 0x0406 tx timeout
[  191.223278][  T793] usb 2-1: new full-speed USB device number 19 using dummy_hcd
[  191.257181][ T9348] netlink: 176 bytes leftover after parsing attributes in process `syz.0.1350'.
[  191.385719][  T793] usb 2-1: unable to get BOS descriptor or descriptor too short
[  191.389798][  T793] usb 2-1: not running at top speed; connect to a high speed hub
[  191.402294][  T793] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 147, changing to 4
[  191.419333][  T793] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  191.423294][  T793] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.426555][  T793] usb 2-1: Product: syz
[  191.428349][  T793] usb 2-1: Manufacturer: syz
[  191.430381][  T793] usb 2-1: SerialNumber: syz
[  191.673474][  T793] usb 2-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  191.709990][  T793] usb 2-1: USB disconnect, device number 19
[  192.540056][ T9365] loop1: detected capacity change from 0 to 8
[  192.618760][ T9364] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1356'.
[  193.376944][ T9377] bridge1: entered allmulticast mode
[  194.050153][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  194.052687][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  195.899873][ T9444] loop1: detected capacity change from 0 to 32768
[  197.717902][ T9489] netlink: 'syz.2.1411': attribute type 10 has an invalid length.
[  197.759857][ T9492] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid
[  198.530203][ T9516] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1423'.
[  198.535471][ T9516] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1423'.
[  198.610617][ T9516] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1423'.
[  198.614887][ T9516] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1423'.
[  199.568056][ T9527] openvswitch: netlink: Unknown key attributes 2
[  200.678656][ T9561] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.1441'.
[  201.053094][ T5889] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  201.205209][ T9609] IPVS: Scheduler module ip_vs_sip not found
[  201.208674][ T9609] IPVS: length: 146 != 8
[  201.214129][ T5889] usb 2-1: Using ep0 maxpacket: 32
[  201.225662][ T5889] usb 2-1: config 0 has an invalid interface number: 12 but max is 0
[  201.229188][ T5889] usb 2-1: config 0 has no interface number 0
[  201.231589][ T5889] usb 2-1: config 0 interface 12 has no altsetting 0
[  201.242537][ T5889] usb 2-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=70.40
[  201.253087][ T5889] usb 2-1: New USB device strings: Mfr=231, Product=2, SerialNumber=3
[  201.256123][ T5889] usb 2-1: Product: syz
[  201.257856][ T5889] usb 2-1: Manufacturer: syz
[  201.259676][ T5889] usb 2-1: SerialNumber: syz
[  201.273917][ T5889] usb 2-1: config 0 descriptor??
[  202.344605][ T9653] fuse: Bad value for 'fd'
[  202.371202][ T9655] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1482'.
[  202.382862][ T9655] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1482'.
[  202.498091][ T5889] f81534 2-1:0.12: f81534_set_register: reg: 1003 data: b0 failed: -71
[  202.501697][ T5889] f81534 2-1:0.12: f81534_find_config_idx: read failed: -71
[  202.507089][ T5889] f81534 2-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  202.510193][ T5889] f81534 2-1:0.12: probe with driver f81534 failed with error -71
[  202.515565][ T9662] xt_socket: unknown flags 0xe4
[  202.519649][ T5889] usb 2-1: USB disconnect, device number 20
[  203.236046][ T9699] netlink: 'syz.0.1503': attribute type 1 has an invalid length.
[  203.239261][ T9699] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1503'.
[  203.542548][ T9719] fuse: Bad value for 'fd'
[  203.698078][ T9733] netlink: 'syz.0.1519': attribute type 1 has an invalid length.
[  203.700548][ T9733] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1519'.
[  203.706661][ T9733] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1519'.
[  203.861360][ T9744] loop1: detected capacity change from 0 to 512
[  203.889490][ T9744] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.905260][ T9744] ext4 filesystem being mounted at /398/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.926465][   T33] audit: type=1800 audit(1755625540.815:61): pid=9744 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1523" name="file1" dev="loop1" ino=15 res=0 errno=0
[  203.943078][   T33] audit: type=1800 audit(1755625540.815:62): pid=9744 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1523" name="file2" dev="loop1" ino=16 res=0 errno=0
[  203.960993][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.050377][ T9758] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1526'.
[  204.595299][ T9771] loop1: detected capacity change from 0 to 65536
[  204.617117][ T9771] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  204.622574][ T9771] XFS (loop1): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  204.626845][ T9776] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition
[  204.631302][ T9776] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0)
[  204.646490][ T9771] XFS (loop1): Ending clean mount
[  204.807568][ T5859] XFS (loop1): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  207.286263][ T9825] loop1: detected capacity change from 0 to 512
[  207.300988][ T9825] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1554: bg 0: block 5: invalid block bitmap
[  207.315774][ T9825] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  207.319919][ T9825] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1554: invalid indirect mapped block 3 (level 2)
[  207.326714][ T9825] EXT4-fs (loop1): 2 truncates cleaned up
[  207.331055][ T9825] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.375040][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.420230][ T9828] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  207.423686][ T9828] IPv6: NLM_F_CREATE should be set when creating new route
[  207.426618][ T9828] IPv6: NLM_F_CREATE should be set when creating new route
[  207.486928][ T9830] bridge1: entered promiscuous mode
[  207.853533][ T5902] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  208.007734][ T5902] usb 2-1: New USB device found, idVendor=1b80, idProduct=e396, bcdDevice=a7.b1
[  208.011319][ T5902] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.020360][ T5902] usb 2-1: config 0 descriptor??
[  208.032438][ T5902] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  208.039764][ T5902] dvb_usb_af9015 2-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  208.240677][ T5902] usb 2-1: USB disconnect, device number 21
[  210.639221][ T9890] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  210.644129][ T9890] batadv_slave_0: entered promiscuous mode
[  210.646588][ T9890] batadv_slave_0: entered allmulticast mode
[  210.652686][ T9890] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  210.710452][ T9892] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1582'.
[  210.717672][ T9892] openvswitch: netlink: Key 4 has unexpected len 0 expected 12
[  211.612499][ T9915] cgroup: Invalid name
[  211.775711][ T9927] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.1595'.
[  211.831302][ T9933] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1599'.
[  212.168341][   T24] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  212.453578][   T24] usb 2-1: Using ep0 maxpacket: 32
[  212.461423][   T24] usb 2-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  212.465796][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.471247][   T24] usb 2-1: config 0 descriptor??
[  212.487728][   T24] as10x_usb: device has been detected
[  212.492123][   T24] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  212.519508][   T24] usb 2-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  212.548993][   T24] as10x_usb: error during firmware upload part1
[  212.551552][   T33] audit: type=1326 audit(1755625549.435:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.2.1608" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1c6e98ebe9 code=0x0
[  212.551964][   T24] Registered device nBox DVB-T Dongle
[  212.710341][   T24] usb 2-1: USB disconnect, device number 22
[  212.732135][   T24] Unregistered device nBox DVB-T Dongle
[  212.733630][   T24] as10x_usb: device has been disconnected
[  213.518677][ T9984] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1621'.
[  213.622847][ T9996] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1627'.
[  213.796104][T10002] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1630'.
[  213.799841][T10002] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1630'.
[  214.368467][T10024] loop1: detected capacity change from 0 to 32768
[  214.380652][T10024] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1641 (10024)
[  214.388516][T10024] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  214.392730][T10024] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  214.398007][T10024] BTRFS info (device loop1): using free-space-tree
[  214.436343][T10040] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1646'.
[  214.447464][T10044] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1647'.
[  214.533852][ T5859] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  214.645542][T10059] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1652'.
[  214.701283][   T33] audit: type=1326 audit(1755625551.585:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10060 comm="syz.2.1653" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  214.723586][   T33] audit: type=1326 audit(1755625551.585:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10060 comm="syz.2.1653" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  214.745712][   T33] audit: type=1326 audit(1755625551.595:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10060 comm="syz.2.1653" exe="/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  214.761937][   T33] audit: type=1326 audit(1755625551.595:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10060 comm="syz.2.1653" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  214.782396][   T33] audit: type=1326 audit(1755625551.595:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10060 comm="syz.2.1653" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6e98ebe9 code=0x7ffc0000
[  215.808183][T10094] __nla_validate_parse: 1 callbacks suppressed
[  215.808196][T10094] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1666'.
[  216.178284][T10098] bond4: (slave geneve0): Enslaving as an active interface with an up link
[  216.194122][   T12] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  216.197119][   T12] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  216.201641][   T12] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  216.208415][   T12] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  216.820608][T10122] netlink: 212388 bytes leftover after parsing attributes in process `syz.2.1677'.
[  216.826306][T10122] openvswitch: netlink: Message has 5 unknown bytes.
[  217.143122][ T5882] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  217.296379][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  217.300168][ T5882] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  217.313262][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  217.318091][ T5882] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 0
[  217.328207][ T5882] usb 1-1: New USB device found, idVendor=04e6, idProduct=5591, bcdDevice=b5.39
[  217.331875][ T5882] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.344613][ T5882] usb 1-1: Product: syz
[  217.346303][ T5882] usb 1-1: Manufacturer: syz
[  217.348447][ T5882] usb 1-1: SerialNumber: syz
[  217.364199][ T5882] usb 1-1: config 0 descriptor??
[  217.369963][ T5882] usb 1-1: NFC: Unable to get FW version
[  217.383270][ T5882] pn533_usb 1-1:0.0: probe with driver pn533_usb failed with error -90
[  217.389395][T10135] loop1: detected capacity change from 0 to 128
[  217.422266][T10135] syz.1.1683: attempt to access beyond end of device
[  217.422266][T10135] loop1: rw=2049, sector=145, nr_sectors = 3 limit=128
[  217.496089][T10136] syz.1.1683: attempt to access beyond end of device
[  217.496089][T10136] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[  217.501614][T10136] syz.1.1683: attempt to access beyond end of device
[  217.501614][T10136] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[  217.508165][T10136] syz.1.1683: attempt to access beyond end of device
[  217.508165][T10136] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[  217.513524][T10136] syz.1.1683: attempt to access beyond end of device
[  217.513524][T10136] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[  217.518625][T10136] syz.1.1683: attempt to access beyond end of device
[  217.518625][T10136] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[  217.524078][T10136] syz.1.1683: attempt to access beyond end of device
[  217.524078][T10136] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[  217.529195][T10136] syz.1.1683: attempt to access beyond end of device
[  217.529195][T10136] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[  217.534872][T10136] syz.1.1683: attempt to access beyond end of device
[  217.534872][T10136] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[  217.540149][T10136] syz.1.1683: attempt to access beyond end of device
[  217.540149][T10136] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[  217.571461][ T5889] usb 1-1: USB disconnect, device number 14
[  217.833225][ T5902] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  218.007526][ T5902] usb 2-1: too many endpoints for config 4 interface 0 altsetting 0: 101, using maximum allowed: 30
[  218.011740][ T5902] usb 2-1: config 4 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1
[  218.017180][ T5902] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  218.021585][ T5902] usb 2-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 101
[  218.029683][ T5902] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  218.033993][ T5902] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.088756][T10151] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1690'.
[  218.092030][T10151] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1690'.
[  218.172835][ T5882] IPVS: starting estimator thread 0...
[  218.248875][ T5902] ath6kl: Failed to submit usb control message: -71
[  218.251353][ T5902] ath6kl: unable to send the bmi data to the device: -71
[  218.262233][ T5902] ath6kl: Unable to send get target info: -71
[  218.266123][ T5902] ath6kl: Failed to init ath6kl core: -71
[  218.268987][ T5902] ath6kl_usb 2-1:4.0: probe with driver ath6kl_usb failed with error -71
[  218.284253][T10160] IPVS: using max 61 ests per chain, 146400 per kthread
[  218.301667][ T5902] usb 2-1: USB disconnect, device number 23
[  218.427520][T10180] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1704'.
[  218.560302][T10190] bond0: (slave ipvlan0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  218.565732][T10190] bond0: (slave ipvlan0): The slave device specified does not support setting the MAC address
[  218.569887][T10190] bond0: (slave ipvlan0): Error -95 calling set_mac_address
[  218.772465][ T6764] Buffer I/O error on dev loop1, logical block 153, lost async page write
[  218.784494][T10208] vivid-000: disconnect
[  218.814411][T10205] vivid-000: reconnect
[  219.544780][T10234] loop1: detected capacity change from 0 to 1024
[  220.753679][  T974] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  220.933954][  T974] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  220.936801][  T974] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  220.940207][  T974] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  220.948159][  T974] usb 1-1: config 220 has no interface number 2
[  220.950950][  T974] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  220.967782][  T974] usb 1-1: config 220 interface 0 has no altsetting 0
[  220.970617][  T974] usb 1-1: config 220 interface 76 has no altsetting 0
[  220.977472][  T974] usb 1-1: config 220 interface 1 has no altsetting 0
[  220.986053][  T974] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  220.989585][  T974] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.992740][  T974] usb 1-1: Product: syz
[  220.997606][  T974] usb 1-1: Manufacturer: syz
[  221.000142][  T974] usb 1-1: SerialNumber: syz
[  221.193355][T10255] veth0: entered promiscuous mode
[  221.196777][T10254] veth0: left promiscuous mode
[  221.230070][  T974] usb 1-1: selecting invalid altsetting 0
[  221.242540][  T974] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[  221.245847][  T974] usb 1-1: No valid video chain found.
[  221.260193][  T974] usb 1-1: selecting invalid altsetting 0
[  221.262472][  T974] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[  221.285238][  T974] usb 1-1: USB disconnect, device number 15
[  221.346113][T10261] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1737'.
[  221.481732][T10253] loop1: detected capacity change from 0 to 32768
[  221.507477][T10253] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  221.554329][T10253] XFS (loop1): Ending clean mount
[  221.570441][T10253] XFS (loop1): Quotacheck needed: Please wait.
[  221.600744][T10253] XFS (loop1): Quotacheck: Done.
[  221.609401][T10278] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048)
[  221.636204][ T5859] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  222.077811][T10296] netlink: 'syz.1.1750': attribute type 49 has an invalid length.
[  222.312193][T10309] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1756'.
[  222.316331][T10309] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1756'.
[  222.320028][T10309] netlink: 'syz.0.1756': attribute type 6 has an invalid length.
[  223.026904][T10323] loop1: detected capacity change from 0 to 4096
[  223.055003][T10323] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  223.174451][T10328] bridge0: entered allmulticast mode
[  223.177660][T10328] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1765'.
[  223.181502][T10328] bridge_slave_1: left allmulticast mode
[  223.199990][   T33] audit: type=1800 audit(1755625560.085:69): pid=10323 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1763" name="file1" dev="loop1" ino=30 res=0 errno=0
[  223.208476][T10328] bridge_slave_1: left promiscuous mode
[  223.210945][T10328] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.270319][T10328] bridge_slave_0: left allmulticast mode
[  223.283198][T10328] bridge_slave_0: left promiscuous mode
[  223.312812][T10328] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.425869][T10328] bridge0 (unregistering): left allmulticast mode
[  224.012430][T10358] loop1: detected capacity change from 0 to 32768
[  224.068174][T10358]  loop1: p9 p11 p16
[  225.586913][T10401] loop1: detected capacity change from 0 to 512
[  225.597910][T10401] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  225.632826][T10401] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.1796: invalid indirect mapped block 83886080 (level 1)
[  225.642064][T10401] EXT4-fs (loop1): Remounting filesystem read-only
[  225.648984][T10401] EXT4-fs (loop1): 1 orphan inode deleted
[  225.654421][T10401] EXT4-fs (loop1): 1 truncate cleaned up
[  225.664232][T10401] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.921129][T10406] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1796'.
[  226.615445][T10414] veth0_to_bridge: entered promiscuous mode
[  226.622514][T10412] veth0_to_bridge: left promiscuous mode
[  226.908715][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.989642][T10453] bond0: entered promiscuous mode
[  227.991934][T10453] bond_slave_0: entered promiscuous mode
[  227.995192][T10453] bond_slave_1: entered promiscuous mode
[  228.312619][T10459] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (1024)
[  228.319535][T10459] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[  229.356319][T10511] binder: 10510:10511 ioctl c0306201 2000000003c0 returned -14
[  229.641895][T10517] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1845'.
[  229.648259][T10517] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1845'.
[  229.811714][T10520] loop1: detected capacity change from 0 to 2048
[  229.818096][T10520] EXT4-fs (loop1): cluster size (2048) smaller than block size (4096)
[  229.839474][T10520] loop1: detected capacity change from 0 to 16
[  229.844009][T10520] erofs (device loop1): mounted with root inode @ nid 36.
[  230.169882][T10538] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1853'.
[  230.177174][T10538] netlink: 'syz.0.1853': attribute type 2 has an invalid length.
[  230.187473][T10538] netlink: 'syz.0.1853': attribute type 2 has an invalid length.
[  230.197325][T10538] netlink: 'syz.0.1853': attribute type 1 has an invalid length.
[  230.200442][T10538] netlink: 'syz.0.1853': attribute type 2 has an invalid length.
[  230.207956][T10538] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1853'.
[  231.292107][   T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  231.302308][   T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  231.309310][   T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  231.313858][   T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  231.317326][   T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
Connection to localhost closed by remote host.
[  231.868599][ T9473] team0: Port device syz_tun removed
[  232.050842][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.149451][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.231599][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.289082][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.905537][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  232.909524][   T12] bond_slave_0: left promiscuous mode
[  232.916937][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  232.920717][   T12] bond_slave_1: left promiscuous mode
[  232.924757][   T12] bond0 (unregistering): Released all slaves
[  233.208570][   T12] hsr_slave_0: left promiscuous mode
[  233.211649][   T12] hsr_slave_1: left promiscuous mode
[  233.215371][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  233.218192][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  233.221693][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  233.226575][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  233.251855][   T12] veth1_macvtap: left promiscuous mode
[  233.254496][   T12] veth0_macvtap: left promiscuous mode
[  233.258140][   T12] veth1_vlan: left promiscuous mode
[  233.260340][   T12] veth0_vlan: left promiscuous mode
[  233.717836][   T12] team0 (unregistering): Port device team_slave_1 removed
[  233.756249][   T12] team0 (unregistering): Port device team_slave_0 removed
[  234.640128][   T12] IPVS: stop unused estimator thread 0...
[  234.650890][   T12] ------------[ cut here ]------------
[  234.653703][   T12] WARNING: CPU: 0 PID: 12 at net/xfrm/xfrm_state.c:3303 xfrm_state_fini+0x270/0x2f0
[  234.657421][   T12] Modules linked in:
[  234.659332][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT(full) 
[  234.664315][   T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  234.668566][   T12] Workqueue: netns cleanup_net
[  234.670477][   T12] RIP: 0010:xfrm_state_fini+0x270/0x2f0
[  234.672675][   T12] Code: c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 d8 30 01 f8 48 8b 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 96 f1 e1 f7 e8 b1 c6 9d f7 90 <0f> 0b 90 e9 fd fd ff ff e8 a3 c6 9d f7 90 0f 0b 90 e9 60 fe ff ff
[  234.680613][   T12] RSP: 0018:ffffc900000f7898 EFLAGS: 00010293
[  234.683318][   T12] RAX: ffffffff8a21e57f RBX: ffff888021998000 RCX: ffff88801c685640
[  234.686483][   T12] RDX: 0000000000000000 RSI: ffffffff8dba5bba RDI: ffff88801c685640
[  234.689600][   T12] RBP: ffffc900000f79b0 R08: ffffffff8fa37e37 R09: 1ffffffff1f46fc6
[  234.692726][   T12] R10: dffffc0000000000 R11: fffffbfff1f46fc7 R12: ffffffff8f630a60
[  234.695887][   T12] R13: 1ffff9200001ef40 R14: ffff888021999480 R15: dffffc0000000000
[  234.698970][   T12] FS:  0000000000000000(0000) GS:ffff8880b861c000(0000) knlGS:0000000000000000
[  234.702412][   T12] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  234.705272][   T12] CR2: 00007f4380da16c0 CR3: 0000000109550000 CR4: 00000000000006f0
[  234.708464][   T12] Call Trace:
[  234.709846][   T12]  <TASK>
[  234.711046][   T12]  xfrm_net_exit+0x2d/0x70
[  234.712853][   T12]  ops_undo_list+0x49a/0x990
[  234.714882][   T12]  ? __pfx_ops_undo_list+0x10/0x10
[  234.716974][   T12]  ? do_raw_spin_unlock+0x4d/0x240
[  234.719038][   T12]  cleanup_net+0x4c5/0x800
[  234.720788][   T12]  ? __pfx_cleanup_net+0x10/0x10
[  234.722794][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  234.725030][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  234.727348][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  234.729621][   T12]  process_scheduled_works+0xae1/0x17b0
[  234.731865][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  234.734423][   T12]  worker_thread+0x8a0/0xda0
[  234.736341][   T12]  kthread+0x711/0x8a0
[  234.738024][   T12]  ? __pfx_worker_thread+0x10/0x10
[  234.740128][   T12]  ? __pfx_kthread+0x10/0x10
[  234.741912][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  234.744194][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.746314][   T12]  ? __pfx_kthread+0x10/0x10
[  234.748204][   T12]  ret_from_fork+0x3fc/0x770
[  234.750313][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[  234.752303][   T12]  ? __switch_to_asm+0x39/0x70
[  234.754335][   T12]  ? __switch_to_asm+0x33/0x70
[  234.756252][   T12]  ? __pfx_kthread+0x10/0x10
[  234.758128][   T12]  ret_from_fork_asm+0x1a/0x30
[  234.760056][   T12]  </TASK>
[  234.761345][   T12] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  234.764308][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT(full) 
[  234.767973][   T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  234.771992][   T12] Workqueue: netns cleanup_net
[  234.774023][   T12] Call Trace:
[  234.775370][   T12]  <TASK>
[  234.776588][   T12]  dump_stack_lvl+0x99/0x250
[  234.778492][   T12]  ? __asan_memcpy+0x40/0x70
[  234.780372][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.782460][   T12]  ? __pfx__printk+0x10/0x10
[  234.784265][   T12]  vpanic+0x281/0x750
[  234.785876][   T12]  ? __pfx__printk+0x10/0x10
[  234.787710][   T12]  ? __pfx_vpanic+0x10/0x10
[  234.789527][   T12]  ? is_bpf_text_address+0x292/0x2b0
[  234.791692][   T12]  panic+0xb9/0xc0
[  234.793244][   T12]  ? __pfx_panic+0x10/0x10
[  234.795047][   T12]  __warn+0x31b/0x4b0
[  234.796684][   T12]  ? xfrm_state_fini+0x270/0x2f0
[  234.798710][   T12]  ? xfrm_state_fini+0x270/0x2f0
[  234.800713][   T12]  report_bug+0x2be/0x4f0
[  234.802483][   T12]  ? xfrm_state_fini+0x270/0x2f0
[  234.804470][   T12]  ? xfrm_state_fini+0x270/0x2f0
[  234.806472][   T12]  ? xfrm_state_fini+0x272/0x2f0
[  234.808395][   T12]  handle_bug+0x84/0x160
[  234.810047][   T12]  exc_invalid_op+0x1a/0x50
[  234.811894][   T12]  asm_exc_invalid_op+0x1a/0x20
[  234.813882][   T12] RIP: 0010:xfrm_state_fini+0x270/0x2f0
[  234.816121][   T12] Code: c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 d8 30 01 f8 48 8b 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 96 f1 e1 f7 e8 b1 c6 9d f7 90 <0f> 0b 90 e9 fd fd ff ff e8 a3 c6 9d f7 90 0f 0b 90 e9 60 fe ff ff
[  234.823602][   T12] RSP: 0018:ffffc900000f7898 EFLAGS: 00010293
[  234.825935][   T12] RAX: ffffffff8a21e57f RBX: ffff888021998000 RCX: ffff88801c685640
[  234.829118][   T12] RDX: 0000000000000000 RSI: ffffffff8dba5bba RDI: ffff88801c685640
[  234.832234][   T12] RBP: ffffc900000f79b0 R08: ffffffff8fa37e37 R09: 1ffffffff1f46fc6
[  234.835419][   T12] R10: dffffc0000000000 R11: fffffbfff1f46fc7 R12: ffffffff8f630a60
[  234.838618][   T12] R13: 1ffff9200001ef40 R14: ffff888021999480 R15: dffffc0000000000
[  234.841717][   T12]  ? xfrm_state_fini+0x26f/0x2f0
[  234.843793][   T12]  ? xfrm_state_fini+0x26f/0x2f0
[  234.845823][   T12]  xfrm_net_exit+0x2d/0x70
[  234.847638][   T12]  ops_undo_list+0x49a/0x990
[  234.849535][   T12]  ? __pfx_ops_undo_list+0x10/0x10
[  234.851603][   T12]  ? do_raw_spin_unlock+0x4d/0x240
[  234.853644][   T12]  cleanup_net+0x4c5/0x800
[  234.855463][   T12]  ? __pfx_cleanup_net+0x10/0x10
[  234.857472][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  234.859631][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  234.861806][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  234.863929][   T12]  process_scheduled_works+0xae1/0x17b0
[  234.866198][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  234.868679][   T12]  worker_thread+0x8a0/0xda0
[  234.870433][   T12]  kthread+0x711/0x8a0
[  234.872041][   T12]  ? __pfx_worker_thread+0x10/0x10
[  234.874121][   T12]  ? __pfx_kthread+0x10/0x10
[  234.875883][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  234.877980][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.880067][   T12]  ? __pfx_kthread+0x10/0x10
[  234.881845][   T12]  ret_from_fork+0x3fc/0x770
[  234.883707][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[  234.885795][   T12]  ? __switch_to_asm+0x39/0x70
[  234.887748][   T12]  ? __switch_to_asm+0x33/0x70
[  234.889707][   T12]  ? __pfx_kthread+0x10/0x10
[  234.891583][   T12]  ret_from_fork_asm+0x1a/0x30
[  234.893535][   T12]  </TASK>
[  234.895453][   T12] Kernel Offset: disabled
[  234.897220][   T12] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:46:20  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000003a RBX=000000000000003a RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900000f7030
R8 =ffff888107a08237 R9 =1ffff11020f41046 R10=dffffc0000000000 R11=ffffffff854f0030
R12=dffffc0000000000 R13=ffffffff99af98e2 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854f00ac RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f4380da16c0 CR3=0000000109550000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000040000005a 0000000000000000 XMM01=ffffffffffffffff ffffffffffffffff
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=00000000ff000000 0000000000000000 XMM05=000000ff00000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=000000000000ff00 0000ff00000000ff
XMM08=ff00000000000000 0000000000000000 XMM09=3435313230386565 65692f6d69737768
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=d37cfffa94220f00 RBX=ffffffff819683a8 RCX=d37cfffa94220f00 RDX=0000000000000001
RSI=ffffffff8d9b6935 RDI=ffffffff8be33300 RBP=ffffc90000177f20 RSP=ffffc90000177de0
R8 =ffff888136632f9b R9 =1ffff11026cc65f3 R10=dffffc0000000000 R11=ffffed1026cc65f4
R12=ffffffff8fa37e30 R13=0000000000000001 R14=0000000000000001 R15=1ffff110200d5000
RIP=ffffffff8b7943f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055d63cbe9600 CR3=000000010dce0000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000000000 00000000000000ff XMM01=0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
XMM02=0000000000000000 0000000000ffff00 XMM03=0000000000000000 0000000000000000
XMM04=ff00000000000000 00000000000000ff XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
